Category | Machine | Started | Completed |
---|---|---|---|
FILE | s1_win7_x6401 | July 11, 2024, 1:22 p.m. | July 11, 2024, 1:35 p.m. |
-
huor.exe "C:\Users\test22\AppData\Local\Temp\huor.exe"
2568
Name | Response | Post-Analysis Lookup |
---|---|---|
No hosts contacted. |
IP Address | Status | Action |
---|---|---|
No hosts contacted. |
Suricata Alerts
No Suricata Alerts
Suricata TLS
No Suricata TLS
section | .symtab |
section | {u'size_of_data': u'0x000d9c00', u'virtual_address': u'0x009b1000', u'entropy': 7.9956749759277255, u'name': u'/19', u'virtual_size': u'0x000d9b46'} | entropy | 7.99567497593 | description | A section with a high entropy has been found | |||||||||
section | {u'size_of_data': u'0x0002b400', u'virtual_address': u'0x00a8b000', u'entropy': 7.941510334875773, u'name': u'/32', u'virtual_size': u'0x0002b296'} | entropy | 7.94151033488 | description | A section with a high entropy has been found | |||||||||
section | {u'size_of_data': u'0x00179c00', u'virtual_address': u'0x00ab8000', u'entropy': 7.998754476368338, u'name': u'/65', u'virtual_size': u'0x00179bd6'} | entropy | 7.99875447637 | description | A section with a high entropy has been found | |||||||||
section | {u'size_of_data': u'0x00101400', u'virtual_address': u'0x00c32000', u'entropy': 7.995732582251606, u'name': u'/78', u'virtual_size': u'0x00101355'} | entropy | 7.99573258225 | description | A section with a high entropy has been found | |||||||||
section | {u'size_of_data': u'0x0004da00', u'virtual_address': u'0x00d34000', u'entropy': 7.814521456172196, u'name': u'/90', u'virtual_size': u'0x0004d8e1'} | entropy | 7.81452145617 | description | A section with a high entropy has been found | |||||||||
entropy | 0.2771886121 | description | Overall entropy of this PE file is high |
Bkav | W64.AIDetectMalware |
Lionic | Trojan.Win32.Generic.4!c |
Elastic | Multi.Generic.Threat |
Sangfor | Trojan.Win32.Agent.Vcnt |
Symantec | ML.Attribute.HighConfidence |
ESET-NOD32 | a variant of WinGo/PSW.Agent.FO |
McAfee | Artemis!5E808B04B297 |
Avast | Win64:Evo-gen [Trj] |
Kaspersky | Trojan-PSW.Win64.BroPass.csl |
Alibaba | Trojan:Win32/HackBrowser.8862 |
McAfeeD | ti!D08AA043D210 |
Sophos | Generic Reputation PUA (PUA) |
Ikarus | Trojan-PSW.Agent |
Detected | |
Microsoft | Trojan:Win32/Malgent!MSR |
ZoneAlarm | Trojan-PSW.Win64.BroPass.csl |
GData | Win64.Trojan.Agent.FARI0K |
AhnLab-V3 | Malware/Win.Generic.R643960 |
DeepInstinct | MALICIOUS |
Malwarebytes | Malware.AI.2738830890 |
MaxSecure | Trojan.Malware.300983.susgen |
Fortinet | W32/Agent.FO!tr.pws |
AVG | Win64:Evo-gen [Trj] |
Paloalto | generic.ml |
CrowdStrike | win/grayware_confidence_60% (D) |
alibabacloud | Hacktool:Multi/HackBrowserData |