Category | Machine | Started | Completed |
---|---|---|---|
FILE | s1_win7_x6403_us | June 7, 2024, 9:30 a.m. | June 7, 2024, 9:49 a.m. |
-
-
-
Lightshot.exe "C:\ProgramData\Lightshot\Lightshot.exe"
2628
-
-
-
explorer.exe C:\Windows\Explorer.EXE
1236
Name | Response | Post-Analysis Lookup |
---|---|---|
No hosts contacted. |
IP Address | Status | Action |
---|---|---|
No hosts contacted. |
Suricata Alerts
No Suricata Alerts
Suricata TLS
No Suricata TLS
registry | HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\MachineGuid |
pdb_path | D:\Projects\WinRAR\sfx\build\sfxrar32\Release\sfxrar.pdb |
section | .didat |
resource name | PNG |
file | C:\ProgramData\Lightshot\Lightshot.exe |
file | C:\ProgramData\Lightshot\uploader.dll |
file | C:\ProgramData\Lightshot\sqlite3.dll |
file | C:\Users\test22\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lightshot\Lightshot.lnk |
file | C:\ProgramData\Lightshot\Lightshot.dll |
file | C:\ProgramData\Lightshot\Lightbase.dll |
file | C:\ProgramData\Lightshot\DXGIODScreenshot.dll |
file | C:\Users\test22\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lightshot\Lightshot.lnk |
file | C:\ProgramData\Lightshot\Lightshot.exe |
Lionic | Trojan.Win32.Generic.4!c |
Cynet | Malicious (score: 100) |
Skyhigh | BehavesLike.Win32.CoinMiner.tc |
Cylance | Unsafe |
Sangfor | Trojan.Win32.Save.a |
Symantec | Trojan.Gen.MBT |
Elastic | malicious (moderate confidence) |
APEX | Malicious |
Kaspersky | UDS:DangerousObject.Multi.Generic |
Rising | Trojan.Generic@AI.94 (RDML:fgfwUXAapHkzJulE3MA42w) |
Zillya | Trojan.Generic.Win32.1866424 |
McAfeeD | ti!1184E49148BA |
FireEye | Generic.mg.42d41456f2eccff6 |
Sophos | Generic ML PUA (PUA) |
Kingsoft | Win32.Troj.Unknown.a |
Microsoft | Program:Win32/Wacapew.C!ml |
ZoneAlarm | UDS:DangerousObject.Multi.Generic |
BitDefenderTheta | Gen:NN.ZedlaF.36806.ru8@aeulFink |
DeepInstinct | MALICIOUS |
Paloalto | generic.ml |