| 查杀引擎 | 查杀结果 | 查杀时间 | 查杀版本 |
|---|---|---|---|
| McAfee | GenericRXBU-QY!932997240DB3 | 20201129 | 6.0.6.653 |
| Alibaba | RiskWare:Win32/Generic.7e08ab5a | 20190527 | 0.3.0.5 |
| Avast | Win32:Malware-gen | 20201129 | 20.10.5736.0 |
| Tencent | 20201129 | 1.0.0.1 | |
| Baidu | 20190318 | 1.0.0.2 | |
| Kingsoft | 20201129 | 2017.9.26.565 | |
| CrowdStrike | win/malicious_confidence_80% (W) | 20190702 | 1.0 |
| host | 172.217.24.14 | |||
| Bkav | W32.AIDetectVM.malware1 |
| Elastic | malicious (high confidence) |
| MicroWorld-eScan | Gen:Variant.Mikey.61370 |
| FireEye | Generic.mg.932997240db37b33 |
| CAT-QuickHeal | Hacktool.Vigram |
| Qihoo-360 | Win32/Virus.RiskTool.f09 |
| McAfee | GenericRXBU-QY!932997240DB3 |
| AegisLab | Hacktool.Win32.Gamehack.3!c |
| Sangfor | Malware |
| K7AntiVirus | Riskware ( 0050e8131 ) |
| BitDefender | Gen:Variant.Mikey.61370 |
| K7GW | Riskware ( 0050e8131 ) |
| BitDefenderTheta | Gen:NN.ZexaF.34658.MuW@aKF!hCd |
| Symantec | ML.Attribute.HighConfidence |
| APEX | Malicious |
| Paloalto | generic.ml |
| Kaspersky | HEUR:HackTool.Win32.Gamehack.gen |
| Alibaba | RiskWare:Win32/Generic.7e08ab5a |
| Avast | Win32:Malware-gen |
| Ad-Aware | Gen:Variant.Mikey.61370 |
| Sophos | Generic PUA MN (PUA) |
| Comodo | ApplicUnwnt@#23up38i9bd0sp |
| F-Secure | Heuristic.HEUR/AGEN.1111158 |
| VIPRE | Trojan.Win32.Generic!BT |
| TrendMicro | TROJ_GEN.R002C0PIF20 |
| McAfee-GW-Edition | BehavesLike.Win32.Generic.jh |
| Emsisoft | Gen:Variant.Mikey.61370 (B) |
| GData | Gen:Variant.Mikey.61370 |
| Jiangmin | RiskTool.Gamehack.ahy |
| Avira | HEUR/AGEN.1111158 |
| Antiy-AVL | RiskWare[RiskTool]/Win32.Gamehack |
| Arcabit | Trojan.Mikey.DEFBA |
| SUPERAntiSpyware | Hack.Tool/Gen-GameHack |
| ZoneAlarm | HEUR:HackTool.Win32.Gamehack.gen |
| Microsoft | Program:Win32/Vigram.A |
| Cynet | Malicious (score: 90) |
| AhnLab-V3 | Malware/Win32.Generic.C1950485 |
| MAX | malware (ai score=99) |
| Cylance | Unsafe |
| ESET-NOD32 | a variant of Win32/RiskWare.GameHack.BK |
| TrendMicro-HouseCall | TROJ_GEN.R002C0PIF20 |
| Rising | Trojan.Generic@ML.100 (RDML:hYg2zmN2HtP3v/dhTnqaZA) |
| Yandex | Trojan.GenAsa!aeH/kM7J0WY |
| SentinelOne | Static AI - Suspicious PE |
| Fortinet | Riskware/GameHack |
| AVG | Win32:Malware-gen |
| Panda | Trj/GdSda.A |
| CrowdStrike | win/malicious_confidence_80% (W) |
No hosts contacted.
| Name | Response | Post-Analysis Lookup |
|---|---|---|
| time.windows.com |
A 20.189.79.72
CNAME time.microsoft.akadns.net |
|
| dns.msftncsi.com | A 131.107.255.255 | 131.107.255.255 |
| dns.msftncsi.com | AAAA fd3e:4f5a:5b81::1 | 131.107.255.255 |
| teredo.ipv6.microsoft.com | 127.0.0.1 |
No TCP connections recorded.
| Source | Source Port | Destination | Destination Port |
|---|---|---|---|
| 192.168.56.101 | 49713 | 114.114.114.114 | 53 |
| 192.168.56.101 | 50002 | 114.114.114.114 | 53 |
| 192.168.56.101 | 53657 | 114.114.114.114 | 53 |
| 192.168.56.101 | 60384 | 114.114.114.114 | 53 |
| 192.168.56.101 | 62318 | 114.114.114.114 | 53 |
| 192.168.56.101 | 137 | 192.168.56.255 | 137 |
| 192.168.56.101 | 138 | 192.168.56.255 | 138 |
| 192.168.56.101 | 123 | 20.189.79.72 time.windows.com | 123 |
| 192.168.56.101 | 49235 | 224.0.0.252 | 5355 |
| 192.168.56.101 | 50534 | 224.0.0.252 | 5355 |
| 192.168.56.101 | 51808 | 224.0.0.252 | 5355 |
| 192.168.56.101 | 51963 | 224.0.0.252 | 5355 |
| 192.168.56.101 | 56804 | 224.0.0.252 | 5355 |
| 192.168.56.101 | 57756 | 224.0.0.252 | 5355 |
| 192.168.56.101 | 57874 | 224.0.0.252 | 5355 |
| 192.168.56.101 | 62191 | 224.0.0.252 | 5355 |
| 192.168.56.101 | 63429 | 224.0.0.252 | 5355 |
| 192.168.56.101 | 1900 | 239.255.255.250 | 1900 |
| 192.168.56.101 | 49238 | 239.255.255.250 | 1900 |
| 192.168.56.101 | 53658 | 239.255.255.250 | 3702 |
No HTTP requests performed.
No ICMP traffic performed.
No IRC requests performed.
No Suricata Alerts
No Suricata TLS
No Snort Alerts