W32/Agent.HY!tr.dldr
Analysis
W32/Agent.HY!tr.dldr - 06-06-21
General Info:
This threat is a "PE" executable file, with file size 14174
Network/Internet:
- Connects to Server: HTTP
More Info:
Downloads malicious files from the following URLs: http://www.evko.biz/soft/3.exe http://www.evko.biz/soft/2.exe http://www.evko.biz/soft/1.exe Saves them as qvxgamet?.exe and executes.
Telemetry
Detection Availability
FortiGate | |
---|---|
Extended | |
FortiClient | |
FortiMail | |
FortiSandbox | |
FortiWeb | |
Web Application Firewall | |
FortiIsolator | |
FortiDeceptor | |
FortiEDR |