| 查杀引擎 | 查杀结果 | 查杀时间 | 查杀版本 |
|---|---|---|---|
| McAfee | GenericRXBK-VS!DB03AF99A86E | 20191122 | 6.0.6.653 |
| Alibaba | RiskTool:Win32/Miners.4fe05f61 | 20190527 | 0.3.0.5 |
| Avast | Win32:BitCoinMiner-JU [Trj] | 20191122 | 18.4.3895.0 |
| Tencent | 20191122 | 1.0.0.1 | |
| Baidu | 20190318 | 1.0.0.2 | |
| Kingsoft | 20191122 | 2013.8.14.323 | |
| CrowdStrike | 20190702 | 1.0 |
| host | 172.217.24.14 | |||
| DrWeb | Tool.BtcMine.150 |
| MicroWorld-eScan | Application.BitCoinMiner.FJ |
| CAT-QuickHeal | Risktool.Bitcoinmin.21102 |
| McAfee | GenericRXBK-VS!DB03AF99A86E |
| Cylance | Unsafe |
| Zillya | Backdoor.Klon.Win32.1093 |
| K7AntiVirus | Adware ( 0052c4711 ) |
| Alibaba | RiskTool:Win32/Miners.4fe05f61 |
| K7GW | Adware ( 0052c4711 ) |
| Cybereason | malicious.9a86e8 |
| Arcabit | Application.BitCoinMiner.FJ |
| Symantec | Trojan.Coinbitminer |
| ESET-NOD32 | a variant of Win32/CoinMiner.BA potentially unwanted |
| TotalDefense | Win32/Tnega.XAXD!suspicious |
| Kaspersky | not-a-virus:RiskTool.Win32.BitCoinMiner.lkl |
| BitDefender | Application.BitCoinMiner.FJ |
| NANO-Antivirus | Riskware.Win32.BitCoinMiner.eycizu |
| Avast | Win32:BitCoinMiner-JU [Trj] |
| Ad-Aware | Application.BitCoinMiner.FJ |
| Emsisoft | Application.BitCoinMiner.FJ (B) |
| F-Secure | PotentialRisk.PUA/CoinMiner.Gen |
| VIPRE | Trojan.Win32.CoinMiner.ba (v) |
| TrendMicro | Coinminer_MALXMR.THAOBDAH |
| McAfee-GW-Edition | BehavesLike.Win32.PUP.th |
| FireEye | Generic.mg.db03af99a86e88e4 |
| Sophos | Bitcoin Miner (PUA) |
| SentinelOne | DFI - Suspicious PE |
| Jiangmin | RiskTool.BitCoinMiner.ct |
| Webroot | PUA.Gen |
| Avira | PUA/CoinMiner.Gen |
| Antiy-AVL | Trojan/Win32.TSGeneric |
| Microsoft | PUA:Win32/CoinMiner |
| Endgame | malicious (high confidence) |
| ViRobot | Adware.Coinminer.1472526 |
| ZoneAlarm | not-a-virus:RiskTool.Win32.BitCoinMiner.lkl |
| GData | Application.BitCoinMiner.FJ |
| Acronis | suspicious |
| MAX | malware (ai score=99) |
| TrendMicro-HouseCall | Coinminer_MALXMR.THAOBDAH |
| Rising | Trojan.Generic@ML.92 (RDML:/433LkXcYEDigja5l0bnbg) |
| Yandex | Riskware.Agent! |
| Ikarus | Trojan.Crypt |
| Fortinet | Riskware/BitCoinMiner.BA!tr |
| AVG | Win32:BitCoinMiner-JU [Trj] |
| Panda | Trj/CI.A |
| Qihoo-360 | Win32/Virus.RiskTool.91f |
No hosts contacted.
| Name | Response | Post-Analysis Lookup |
|---|---|---|
| time.windows.com |
A 20.189.79.72
CNAME time.microsoft.akadns.net |
|
| dns.msftncsi.com | A 131.107.255.255 | 131.107.255.255 |
| dns.msftncsi.com | AAAA fd3e:4f5a:5b81::1 | 131.107.255.255 |
| teredo.ipv6.microsoft.com | 127.0.0.1 |
No TCP connections recorded.
| Source | Source Port | Destination | Destination Port |
|---|---|---|---|
| 192.168.56.101 | 49235 | 114.114.114.114 | 53 |
| 192.168.56.101 | 50534 | 114.114.114.114 | 53 |
| 192.168.56.101 | 56539 | 114.114.114.114 | 53 |
| 192.168.56.101 | 58367 | 114.114.114.114 | 53 |
| 192.168.56.101 | 65004 | 114.114.114.114 | 53 |
| 192.168.56.101 | 137 | 192.168.56.255 | 137 |
| 192.168.56.101 | 138 | 192.168.56.255 | 138 |
| 192.168.56.101 | 123 | 20.189.79.72 time.windows.com | 123 |
| 192.168.56.101 | 55368 | 224.0.0.252 | 5355 |
| 192.168.56.101 | 56804 | 224.0.0.252 | 5355 |
| 192.168.56.101 | 60123 | 224.0.0.252 | 5355 |
| 192.168.56.101 | 62191 | 224.0.0.252 | 5355 |
| 192.168.56.101 | 1900 | 239.255.255.250 | 1900 |
| 192.168.56.101 | 56807 | 239.255.255.250 | 1900 |
| 192.168.56.101 | 58368 | 239.255.255.250 | 3702 |
| 192.168.56.101 | 58370 | 239.255.255.250 | 3702 |
| 192.168.56.101 | 58707 | 239.255.255.250 | 3702 |
| 192.168.56.101 | 62192 | 239.255.255.250 | 3702 |
No HTTP requests performed.
No ICMP traffic performed.
No IRC requests performed.
No Suricata Alerts
No Suricata TLS
No Snort Alerts