Category | Machine | Started | Completed |
---|---|---|---|
FILE | s1_win7_x6403_us | June 3, 2024, 7:24 a.m. | June 3, 2024, 7:33 a.m. |
-
-
@DDRI2_2.exe "C:\Users\test22\AppData\Local\Temp\@DDRI2_2.exe"
2108
-
Name | Response | Post-Analysis Lookup |
---|---|---|
No hosts contacted. |
IP Address | Status | Action |
---|---|---|
No hosts contacted. |
Suricata Alerts
No Suricata Alerts
Suricata TLS
No Suricata TLS
section | .gfids |
resource name | MUI |
file | C:\Users\test22\AppData\Local\Temp\_MEI15722\libssl-1_1.dll |
file | C:\Users\test22\AppData\Local\Temp\_MEI15722\libcrypto-1_1.dll |
file | C:\Users\test22\AppData\Local\Temp\_MEI15722\pywintypes37.dll |
file | C:\Users\test22\AppData\Local\Temp\_MEI15722\VCRUNTIME140.dll |
file | C:\Users\test22\AppData\Local\Temp\_MEI15722\python37.dll |
file | C:\Users\test22\AppData\Local\Temp\_MEI15722\unicodedata.pyd |
file | C:\Users\test22\AppData\Local\Temp\_MEI15722\libssl-1_1.dll |
file | C:\Users\test22\AppData\Local\Temp\_MEI15722\_bz2.pyd |
file | C:\Users\test22\AppData\Local\Temp\_MEI15722\_ctypes.pyd |
file | C:\Users\test22\AppData\Local\Temp\_MEI15722\win32evtlog.pyd |
file | C:\Users\test22\AppData\Local\Temp\_MEI15722\select.pyd |
file | C:\Users\test22\AppData\Local\Temp\_MEI15722\python37.dll |
file | C:\Users\test22\AppData\Local\Temp\_MEI15722\pywintypes37.dll |
file | C:\Users\test22\AppData\Local\Temp\_MEI15722\VCRUNTIME140.dll |
file | C:\Users\test22\AppData\Local\Temp\_MEI15722\_socket.pyd |
file | C:\Users\test22\AppData\Local\Temp\_MEI15722\pyexpat.pyd |
file | C:\Users\test22\AppData\Local\Temp\_MEI15722\libcrypto-1_1.dll |
file | C:\Users\test22\AppData\Local\Temp\_MEI15722\win32api.pyd |
file | C:\Users\test22\AppData\Local\Temp\_MEI15722\_lzma.pyd |
file | C:\Users\test22\AppData\Local\Temp\_MEI15722\_queue.pyd |
file | C:\Users\test22\AppData\Local\Temp\_MEI15722\_ssl.pyd |
file | C:\Users\test22\AppData\Local\Temp\_MEI15722\_hashlib.pyd |
Bkav | W32.AIDetectMalware |
Lionic | Trojan.Win32.Stealer.trqf |
Elastic | malicious (moderate confidence) |
Cylance | Unsafe |
Sangfor | Trojan.Win32.Agent.Vj0s |
APEX | Malicious |
Avast | Win32:Malware-gen |
Kaspersky | UDS:DangerousObject.Multi.Generic |
F-Secure | Trojan.TR/Redcap.ltrvm |
McAfeeD | ti!139B21A0BA2E |
FireEye | Generic.mg.1cfa70c1b2f1eb15 |
Avira | TR/Redcap.ltrvm |
Kingsoft | Win32.Troj.Unknown.a |
Microsoft | Trojan:Script/Wacatac.H!ml |
ZoneAlarm | HEUR:Trojan.Python.Pytr.di |
BitDefenderTheta | Gen:NN.ZexaF.36806.@B3@aSKES0di |
DeepInstinct | MALICIOUS |
Malwarebytes | Malware.AI.4232333952 |
Fortinet | W32/PossibleThreat |
AVG | Win32:Malware-gen |
Paloalto | generic.ml |