查杀引擎 | 查杀结果 | 查杀时间 | 查杀版本 |
---|---|---|---|
McAfee | Artemis!8B4C02511FCE | 20190802 | 6.0.6.653 |
Alibaba | Trojan:Win32/JackServn.9c66a700 | 20190527 | 0.3.0.5 |
Baidu | 20190318 | 1.0.0.2 | |
Kingsoft | 20190802 | 2013.8.14.323 | |
Tencent | Win32.Trojan.Generic.Ebhc | 20190802 | 1.0.0.1 |
CrowdStrike | win/malicious_confidence_70% (W) | 20190212 | 1.0 |
section | .itext |
section | .didata |
host | 172.217.24.14 |
MicroWorld-eScan | Trojan.GenericKD.32115577 |
FireEye | Generic.mg.8b4c02511fce1d8f |
CAT-QuickHeal | Trojan.Agent |
McAfee | Artemis!8B4C02511FCE |
K7AntiVirus | Trojan ( 7000000f1 ) |
Alibaba | Trojan:Win32/JackServn.9c66a700 |
K7GW | Trojan ( 7000000f1 ) |
Cybereason | malicious.11fce1 |
Arcabit | Trojan.Generic.D1EA0B79 |
Cyren | W32/Trojan.NBEO-5402 |
Symantec | ML.Attribute.HighConfidence |
APEX | Malicious |
Paloalto | generic.ml |
BitDefender | Trojan.GenericKD.32115577 |
ViRobot | Trojan.Win32.Z.Krserv.2312704 |
Rising | Trojan.Delf!8.67 (TFE:5:4TF6CL8nllC) |
Ad-Aware | Trojan.GenericKD.32115577 |
Emsisoft | Trojan.GenericKD.32115577 (B) |
Comodo | TrojWare.Win32.Spy.Banker.Gen@1qlojk |
F-Secure | Trojan.TR/JackServn.xdutn |
VIPRE | Trojan.Win32.Generic!BT |
McAfee-GW-Edition | BehavesLike.Win32.Backdoor.vh |
Sophos | Mal/Generic-S |
Ikarus | Trojan.Win32.Jackservn |
Jiangmin | Trojan.KrServ.bg |
Avira | TR/JackServn.xdutn |
MAX | malware (ai score=100) |
Microsoft | Trojan:Win32/Occamy.C |
AegisLab | Trojan.Win32.Rwwi.4!c |
AhnLab-V3 | Trojan/Win32.Agent.C3312525 |
Acronis | suspicious |
VBA32 | Trojan.KrServ |
ALYac | Trojan.GenericKD.32115577 |
ESET-NOD32 | a variant of Win32/Delf.TXA |
TrendMicro-HouseCall | TROJ_GEN.R002C0PFQ19 |
Tencent | Win32.Trojan.Generic.Ebhc |
SentinelOne | DFI - Suspicious PE |
GData | Trojan.GenericKD.32115577 |
AVG | Win32:Trojan-gen |
Panda | Trj/Genetic.gen |
CrowdStrike | win/malicious_confidence_70% (W) |
Qihoo-360 | Win32/Trojan.64e |
No hosts contacted.
Name | Response | Post-Analysis Lookup |
---|---|---|
time.windows.com |
A 20.189.79.72
CNAME time.microsoft.akadns.net |
|
dns.msftncsi.com | A 131.107.255.255 | 131.107.255.255 |
dns.msftncsi.com | AAAA fd3e:4f5a:5b81::1 | 131.107.255.255 |
teredo.ipv6.microsoft.com |
No TCP connections recorded.
Source | Source Port | Destination | Destination Port |
---|---|---|---|
192.168.56.101 | 49713 | 114.114.114.114 | 53 |
192.168.56.101 | 50002 | 114.114.114.114 | 53 |
192.168.56.101 | 53237 | 114.114.114.114 | 53 |
192.168.56.101 | 58367 | 114.114.114.114 | 53 |
192.168.56.101 | 60384 | 114.114.114.114 | 53 |
192.168.56.101 | 137 | 192.168.56.255 | 137 |
192.168.56.101 | 138 | 192.168.56.255 | 138 |
192.168.56.101 | 123 | 20.189.79.72 time.windows.com | 123 |
192.168.56.101 | 49235 | 224.0.0.252 | 5355 |
192.168.56.101 | 50534 | 224.0.0.252 | 5355 |
192.168.56.101 | 51963 | 224.0.0.252 | 5355 |
192.168.56.101 | 53657 | 224.0.0.252 | 5355 |
192.168.56.101 | 56804 | 224.0.0.252 | 5355 |
192.168.56.101 | 57874 | 224.0.0.252 | 5355 |
192.168.56.101 | 62191 | 224.0.0.252 | 5355 |
192.168.56.101 | 62318 | 224.0.0.252 | 5355 |
192.168.56.101 | 63429 | 224.0.0.252 | 5355 |
192.168.56.101 | 1900 | 239.255.255.250 | 1900 |
192.168.56.101 | 50539 | 239.255.255.250 | 1900 |
192.168.56.101 | 53658 | 239.255.255.250 | 3702 |
No HTTP requests performed.
No ICMP traffic performed.
No IRC requests performed.
No Suricata Alerts
No Suricata TLS
No Snort Alerts