sync.exe| Category | Machine | Started | Completed |
|---|---|---|---|
| FILE | s1_win7_x6401 | July 8, 2024, 4:59 p.m. | July 8, 2024, 5:01 p.m. |
-
sync.exe "C:\Users\test22\AppData\Local\Temp\sync.exe"
2560
| Name | Response | Post-Analysis Lookup |
|---|---|---|
| No hosts contacted. | ||
| IP Address | Status | Action |
|---|---|---|
| No hosts contacted. | ||
Suricata Alerts
No Suricata Alerts
Suricata TLS
No Suricata TLS
| section | {u'size_of_data': u'0x005aa800', u'virtual_address': u'0x00a7b000', u'entropy': 7.892060234392221, u'name': u'UPX1', u'virtual_size': u'0x005ab000'} | entropy | 7.89206023439 | description | A section with a high entropy has been found | |||||||||
| entropy | 0.999913830246 | description | Overall entropy of this PE file is high | |||||||||||
| section | UPX0 | description | Section name indicates UPX | ||||||
| section | UPX1 | description | Section name indicates UPX | ||||||
| section | UPX2 | description | Section name indicates UPX | ||||||
| Bkav | W64.AIDetectMalware |
| Elastic | malicious (moderate confidence) |
| Cynet | Malicious (score: 100) |
| Skyhigh | BehavesLike.Win64.Generic.tc |
| Cylance | Unsafe |
| Sangfor | Trojan.Win32.Save.a |
| ESET-NOD32 | a variant of WinGo/Kryptik.FF |
| APEX | Malicious |
| Kaspersky | VHO:Trojan.Win32.Convagent.gen |
| McAfeeD | ti!FBD74855722A |
| FireEye | Generic.mg.69bf43760932bccc |
| Sophos | CXrep/MalGo-B |
| Ikarus | Trojan.WinGo.Injector |
| Detected | |
| Antiy-AVL | GrayWare/Win32.Kryptik.ffp |
| ZoneAlarm | VHO:Trojan.Win32.Convagent.gen |
| Varist | W64/Agent.FXW.gen!Eldorado |
| DeepInstinct | MALICIOUS |
| MaxSecure | Trojan.Malware.300983.susgen |