moi.exe| Category | Machine | Started | Completed |
|---|---|---|---|
| FILE | s1_win7_x6401 | Sept. 26, 2024, 9:48 a.m. | Sept. 26, 2024, 9:56 a.m. |
| Name | Response | Post-Analysis Lookup |
|---|---|---|
| No hosts contacted. | ||
| IP Address | Status | Action |
|---|---|---|
| 164.124.101.2 | Active | Moloch |
Suricata Alerts
No Suricata Alerts
Suricata TLS
No Suricata TLS
| file | C:\Users\test22\AppData\Local\Temp\_MEI26562\libssl-3.dll |
| file | C:\Users\test22\AppData\Local\Temp\_MEI26562\libcrypto-3.dll |
| file | C:\Users\test22\AppData\Local\Temp\_MEI26562\libffi-8.dll |
| file | C:\Users\test22\AppData\Local\Temp\_MEI26562\python312.dll |
| file | C:\Users\test22\AppData\Local\Temp\_MEI26562\VCRUNTIME140.dll |
| Bkav | W64.AIDetectMalware |
| Lionic | Trojan.Win32.Generic.4!c |
| Cynet | Malicious (score: 100) |
| Skyhigh | BehavesLike.Win64.Agent.wc |
| ALYac | Gen:Variant.Zusy.554882 |
| Cylance | Unsafe |
| VIPRE | Gen:Variant.Zusy.554882 |
| Sangfor | Trojan.Win32.Save.a |
| CrowdStrike | win/malicious_confidence_100% (D) |
| BitDefender | Gen:Variant.Zusy.554882 |
| Arcabit | Trojan.Zusy.D87782 |
| Elastic | malicious (high confidence) |
| APEX | Malicious |
| Avast | Win64:Malware-gen |
| Alibaba | Trojan:Win64/Genric.190b82b2 |
| MicroWorld-eScan | Gen:Variant.Zusy.554882 |
| Emsisoft | Gen:Variant.Zusy.554882 (B) |
| Zillya | Tool.Miner.Win32.1629 |
| McAfeeD | ti!48A3558F5C4F |
| CTX | exe.trojan.zusy |
| FireEye | Generic.mg.1fb9195294d3f2c2 |
| Detected | |
| Antiy-AVL | Trojan/Win32.Agent |
| Gridinsoft | Trojan.Win64.Agent.sa |
| GData | Gen:Variant.Zusy.554882 |
| Varist | W64/ABTrojan.MKHL-6905 |
| McAfee | Artemis!1FB9195294D3 |
| DeepInstinct | MALICIOUS |
| TrendMicro-HouseCall | TROJ_GEN.R002H09IP24 |
| huorong | Trojan/Python.ShellLoader.am |
| Fortinet | W32/PossibleThreat |
| AVG | Win64:Malware-gen |
| Paloalto | generic.ml |
| alibabacloud | Trojan:Win/Zusy.Gen |