Current Path : C:/ProgramData/Malwarebytes/MBAMService/ScanResults/ |
Current File : C:/ProgramData/Malwarebytes/MBAMService/ScanResults/db7353f0-99db-11eb-a99a-005056b197cd.json |
88938B19FEC49AD363F215EC2BE8FBBACD4777531F790759F5E39EA763EF4A50 { "applicationVersion" : "4.3.0.98", "chromeSyncResetQueryRequested" : false, "chromeSyncResetQueryResult" : false, "clientID" : "MbamUI", "clientType" : "fullUIScan", "componentsUpdatePackageVersion" : "1.0.1173", "coreDllFileVersion" : "3.0.0.1105", "cpu" : "x64", "dbSDKUpdatePackageVersion" : "1.0.37263", "detectionDateTime" : "2021-04-10T09:05:12Z", "fileSystem" : "NTFS", "id" : "db7353f0-99db-11eb-a99a-005056b197cd", "isUserAdmin" : true, "licenseState" : "licensed", "linkagePhaseComplete" : true, "loggedOnUserName" : "Moodle\\Administrator", "machineID" : "", "os" : "Windows 10 Server (Build 14393.4283)", "schemaVersion" : 18, "sourceDetails" : { "aggressiveMode" : false, "clientMetadata" : { "jobId" : "", "scheduleId" : "", "scheduleTag" : "" }, "ddsigEnabled" : true, "filesScannedByIG" : 5, "objectsScanned" : 290214, "scanEndTime" : "2021-04-10T09:06:54Z", "scanOnlineStatus" : "offline", "scanOptions" : { "pumHandling" : "detect", "pupHandling" : "detect", "scanArchives" : true, "scanFileSystem" : true, "scanMemoryObjects" : true, "scanPUMs" : true, "scanPUPs" : true, "scanRookits" : false, "scanStartupAndRegistry" : true, "scanType" : "threat", "useHeuristics" : true }, "scanResult" : "completed", "scanStartTime" : "2021-04-10T09:05:12Z", "scanState" : "completed", "shurikenEnabled" : true, "type" : "scan" }, "threats" : [ { "ddsSigFileVersion" : "01122568", "linkedTraces" : [ { "archiveMember" : "", "archiveMemberMD5" : "", "cleanAction" : "quarantine", "cleanContext" : { "unloadData" : { "pid" : 5712 } }, "cleanResult" : "successful", "cleanResultErrorCode" : 0, "cleanTime" : "2021-04-10T09:07:49Z", "generatedByPostCleanupAction" : false, "hubbleRequestErrorCode" : 0, "id" : "e75548cd-99db-11eb-8a33-005056b197cd", "igExitCode" : "", "isPEFile" : false, "isPEFileValid" : false, "linkType" : "linkedTrace", "objectMD5" : "E6B1FC5D7951003D8794379D47BFB6FF", "objectPath" : "C:\\WINDOWS\\SYSTEM32\\RVLKL.EXE", "objectSha256" : "E00A6E5143489FC3C133ABBC0943F208083A312622B0468C0614DACAA8ECC446", "objectSize" : -1, "objectType" : "process", "resolvedPath" : "", "suggestedAction" : { "archiveDir" : false, "chromeExtensionOther" : false, "chromeExtensionPreferences" : false, "chromeExtensionSecurePreferences" : false, "chromeExtensionSyncData" : false, "chromeUrlOther" : false, "chromeUrlSecurePreferences" : false, "chromeUrlSyncData" : false, "chromeUrlWebData" : false, "disableHubbleWhiteListing" : false, "disableSignatureWhiteListing" : false, "fileDelete" : false, "fileReplace" : false, "fileTxtReplace" : false, "folderDelete" : false, "isChromeObject" : false, "isDDS" : false, "isDoppleganging" : false, "isExternalDetection" : false, "isPUP" : false, "isShuriken" : false, "isWMIEventConsumer" : false, "killProcess" : false, "minimalWhiteListing" : false, "moduleUnload" : false, "noLinking" : false, "physicalSectorReplace" : false, "priorityHigh" : false, "priorityNormal" : false, "priorityUrgent" : false, "processUnload" : true, "regKeyDelete" : false, "regValueDelete" : false, "regValueReplace" : false, "shortcutReplace" : false, "silentMode" : false, "singleDelete" : false, "treatAsRootkit" : false, "useDDA" : false, "verifyResolvedPath" : false, "whitelistCheckError" : false } }, { "archiveMember" : "", "archiveMemberMD5" : "", "cleanAction" : "quarantine", "cleanContext" : { "unloadData" : { "pid" : 5712 } }, "cleanResult" : "successful", "cleanResultErrorCode" : 0, "cleanTime" : "2021-04-10T09:07:49Z", "generatedByPostCleanupAction" : false, "hubbleRequestErrorCode" : 0, "id" : "e75596e2-99db-11eb-9a62-005056b197cd", "igExitCode" : "", "isPEFile" : false, "isPEFileValid" : false, "linkType" : "linkedTrace", "objectMD5" : "E6B1FC5D7951003D8794379D47BFB6FF", "objectPath" : "C:\\WINDOWS\\SYSTEM32\\RVLKL.EXE", "objectSha256" : "E00A6E5143489FC3C133ABBC0943F208083A312622B0468C0614DACAA8ECC446", "objectSize" : -1, "objectType" : "module", "resolvedPath" : "", "suggestedAction" : { "archiveDir" : false, "chromeExtensionOther" : false, "chromeExtensionPreferences" : false, "chromeExtensionSecurePreferences" : false, "chromeExtensionSyncData" : false, "chromeUrlOther" : false, "chromeUrlSecurePreferences" : false, "chromeUrlSyncData" : false, "chromeUrlWebData" : false, "disableHubbleWhiteListing" : false, "disableSignatureWhiteListing" : false, "fileDelete" : false, "fileReplace" : false, "fileTxtReplace" : false, "folderDelete" : false, "isChromeObject" : false, "isDDS" : false, "isDoppleganging" : false, "isExternalDetection" : false, "isPUP" : false, "isShuriken" : false, "isWMIEventConsumer" : false, "killProcess" : false, "minimalWhiteListing" : false, "moduleUnload" : true, "noLinking" : false, "physicalSectorReplace" : false, "priorityHigh" : false, "priorityNormal" : false, "priorityUrgent" : false, "processUnload" : false, "regKeyDelete" : false, "regValueDelete" : false, "regValueReplace" : false, "shortcutReplace" : false, "silentMode" : false, "singleDelete" : false, "treatAsRootkit" : false, "useDDA" : false, "verifyResolvedPath" : false, "whitelistCheckError" : false } }, { "archiveMember" : "", "archiveMemberMD5" : "", "cleanAction" : "quarantine", "cleanContext" : { "unloadData" : { "pid" : 7772 } }, "cleanResult" : "successful", "cleanResultErrorCode" : 0, "cleanTime" : "2021-04-10T09:07:49Z", "generatedByPostCleanupAction" : false, "hubbleRequestErrorCode" : 0, "id" : "e75596e3-99db-11eb-8ae0-005056b197cd", "igExitCode" : "", "isPEFile" : false, "isPEFileValid" : false, "linkType" : "linkedTrace", "objectMD5" : "E6B1FC5D7951003D8794379D47BFB6FF", "objectPath" : "C:\\WINDOWS\\SYSTEM32\\RVLKL.EXE", "objectSha256" : "E00A6E5143489FC3C133ABBC0943F208083A312622B0468C0614DACAA8ECC446", "objectSize" : -1, "objectType" : "process", "resolvedPath" : "", "suggestedAction" : { "archiveDir" : false, "chromeExtensionOther" : false, "chromeExtensionPreferences" : false, "chromeExtensionSecurePreferences" : false, "chromeExtensionSyncData" : false, "chromeUrlOther" : false, "chromeUrlSecurePreferences" : false, "chromeUrlSyncData" : false, "chromeUrlWebData" : false, "disableHubbleWhiteListing" : false, "disableSignatureWhiteListing" : false, "fileDelete" : false, "fileReplace" : false, "fileTxtReplace" : false, "folderDelete" : false, "isChromeObject" : false, "isDDS" : false, "isDoppleganging" : false, "isExternalDetection" : false, "isPUP" : false, "isShuriken" : false, "isWMIEventConsumer" : false, "killProcess" : false, "minimalWhiteListing" : false, "moduleUnload" : false, "noLinking" : false, "physicalSectorReplace" : false, "priorityHigh" : false, "priorityNormal" : false, "priorityUrgent" : false, "processUnload" : true, "regKeyDelete" : false, "regValueDelete" : false, "regValueReplace" : false, "shortcutReplace" : false, "silentMode" : false, "singleDelete" : false, "treatAsRootkit" : false, "useDDA" : false, "verifyResolvedPath" : false, "whitelistCheckError" : false } }, { "archiveMember" : "", "archiveMemberMD5" : "", "cleanAction" : "quarantine", "cleanContext" : { "unloadData" : { "pid" : 7772 } }, "cleanResult" : "successful", "cleanResultErrorCode" : 0, "cleanTime" : "2021-04-10T09:07:49Z", "generatedByPostCleanupAction" : false, "hubbleRequestErrorCode" : 0, "id" : "e755bdf2-99db-11eb-8360-005056b197cd", "igExitCode" : "", "isPEFile" : false, "isPEFileValid" : false, "linkType" : "linkedTrace", "objectMD5" : "E6B1FC5D7951003D8794379D47BFB6FF", "objectPath" : "C:\\WINDOWS\\SYSTEM32\\RVLKL.EXE", "objectSha256" : "E00A6E5143489FC3C133ABBC0943F208083A312622B0468C0614DACAA8ECC446", "objectSize" : -1, "objectType" : "module", "resolvedPath" : "", "suggestedAction" : { "archiveDir" : false, "chromeExtensionOther" : false, "chromeExtensionPreferences" : false, "chromeExtensionSecurePreferences" : false, "chromeExtensionSyncData" : false, "chromeUrlOther" : false, "chromeUrlSecurePreferences" : false, "chromeUrlSyncData" : false, "chromeUrlWebData" : false, "disableHubbleWhiteListing" : false, "disableSignatureWhiteListing" : false, "fileDelete" : false, "fileReplace" : false, "fileTxtReplace" : false, "folderDelete" : false, "isChromeObject" : false, "isDDS" : false, "isDoppleganging" : false, "isExternalDetection" : false, "isPUP" : false, "isShuriken" : false, "isWMIEventConsumer" : false, "killProcess" : false, "minimalWhiteListing" : false, "moduleUnload" : true, "noLinking" : false, "physicalSectorReplace" : false, "priorityHigh" : false, "priorityNormal" : false, "priorityUrgent" : false, "processUnload" : false, "regKeyDelete" : false, "regValueDelete" : false, "regValueReplace" : false, "shortcutReplace" : false, "silentMode" : false, "singleDelete" : false, "treatAsRootkit" : false, "useDDA" : false, "verifyResolvedPath" : false, "whitelistCheckError" : false } }, { "archiveMember" : "", "archiveMemberMD5" : "", "cleanAction" : "quarantine", "cleanContext" : { "unloadData" : { "pid" : 10180 } }, "cleanResult" : "successful", "cleanResultErrorCode" : 0, "cleanTime" : "2021-04-10T09:07:49Z", "generatedByPostCleanupAction" : false, "hubbleRequestErrorCode" : 0, "id" : "e755bdf3-99db-11eb-b614-005056b197cd", "igExitCode" : "", "isPEFile" : false, "isPEFileValid" : false, "linkType" : "linkedTrace", "objectMD5" : "E6B1FC5D7951003D8794379D47BFB6FF", "objectPath" : "C:\\WINDOWS\\SYSTEM32\\RVLKL.EXE", "objectSha256" : "E00A6E5143489FC3C133ABBC0943F208083A312622B0468C0614DACAA8ECC446", "objectSize" : -1, "objectType" : "process", "resolvedPath" : "", "suggestedAction" : { "archiveDir" : false, "chromeExtensionOther" : false, "chromeExtensionPreferences" : false, "chromeExtensionSecurePreferences" : false, "chromeExtensionSyncData" : false, "chromeUrlOther" : false, "chromeUrlSecurePreferences" : false, "chromeUrlSyncData" : false, "chromeUrlWebData" : false, "disableHubbleWhiteListing" : false, "disableSignatureWhiteListing" : false, "fileDelete" : false, "fileReplace" : false, "fileTxtReplace" : false, "folderDelete" : false, "isChromeObject" : false, "isDDS" : false, "isDoppleganging" : false, "isExternalDetection" : false, "isPUP" : false, "isShuriken" : false, "isWMIEventConsumer" : false, "killProcess" : false, "minimalWhiteListing" : false, "moduleUnload" : false, "noLinking" : false, "physicalSectorReplace" : false, "priorityHigh" : false, "priorityNormal" : false, "priorityUrgent" : false, "processUnload" : true, "regKeyDelete" : false, "regValueDelete" : false, "regValueReplace" : false, "shortcutReplace" : false, "silentMode" : false, "singleDelete" : false, "treatAsRootkit" : false, "useDDA" : false, "verifyResolvedPath" : false, "whitelistCheckError" : false } }, { "archiveMember" : "", "archiveMemberMD5" : "", "cleanAction" : "quarantine", "cleanContext" : { "unloadData" : { "pid" : 10180 } }, "cleanResult" : "successful", "cleanResultErrorCode" : 0, "cleanTime" : "2021-04-10T09:07:49Z", "generatedByPostCleanupAction" : false, "hubbleRequestErrorCode" : 0, "id" : "e755e516-99db-11eb-88df-005056b197cd", "igExitCode" : "", "isPEFile" : false, "isPEFileValid" : false, "linkType" : "linkedTrace", "objectMD5" : "E6B1FC5D7951003D8794379D47BFB6FF", "objectPath" : "C:\\WINDOWS\\SYSTEM32\\RVLKL.EXE", "objectSha256" : "E00A6E5143489FC3C133ABBC0943F208083A312622B0468C0614DACAA8ECC446", "objectSize" : -1, "objectType" : "module", "resolvedPath" : "", "suggestedAction" : { "archiveDir" : false, "chromeExtensionOther" : false, "chromeExtensionPreferences" : false, "chromeExtensionSecurePreferences" : false, "chromeExtensionSyncData" : false, "chromeUrlOther" : false, "chromeUrlSecurePreferences" : false, "chromeUrlSyncData" : false, "chromeUrlWebData" : false, "disableHubbleWhiteListing" : false, "disableSignatureWhiteListing" : false, "fileDelete" : false, "fileReplace" : false, "fileTxtReplace" : false, "folderDelete" : false, "isChromeObject" : false, "isDDS" : false, "isDoppleganging" : false, "isExternalDetection" : false, "isPUP" : false, "isShuriken" : false, "isWMIEventConsumer" : false, "killProcess" : false, "minimalWhiteListing" : false, "moduleUnload" : true, "noLinking" : false, "physicalSectorReplace" : false, "priorityHigh" : false, "priorityNormal" : false, "priorityUrgent" : false, "processUnload" : false, "regKeyDelete" : false, "regValueDelete" : false, "regValueReplace" : false, "shortcutReplace" : false, "silentMode" : false, "singleDelete" : false, "treatAsRootkit" : false, "useDDA" : false, "verifyResolvedPath" : false, "whitelistCheckError" : false } }, { "archiveMember" : "", "archiveMemberMD5" : "", "cleanAction" : "quarantine", "cleanResult" : "successful", "cleanResultErrorCode" : 0, "cleanTime" : "2021-04-10T09:07:49Z", "generatedByPostCleanupAction" : false, "hubbleRequestErrorCode" : 0, "id" : "e756332c-99db-11eb-aa32-005056b197cd", "igExitCode" : "", "isPEFile" : false, "isPEFileValid" : true, "linkType" : "linkedTrace", "objectMD5" : "684BA2E2525E2D54D8581F6C2C04038B", "objectPath" : "C:\\PROGRAMDATA\\MICROSOFT\\WINDOWS\\START MENU\\PROGRAMS\\STARTUP\\rvlkl.lnk", "objectSha256" : "35BA74700DC71BBFF37A04A8F38B9AD99A7B6CBE23A4046F862511758750DFF7", "objectSize" : 915, "objectType" : "file", "resolvedPath" : "C:\\ProgramData\\Microsoft\\Windows\\Start Menu\\Programs\\StartUp\\rvlkl.lnk", "suggestedAction" : { "archiveDir" : false, "chromeExtensionOther" : false, "chromeExtensionPreferences" : false, "chromeExtensionSecurePreferences" : false, "chromeExtensionSyncData" : false, "chromeUrlOther" : false, "chromeUrlSecurePreferences" : false, "chromeUrlSyncData" : false, "chromeUrlWebData" : false, "disableHubbleWhiteListing" : false, "disableSignatureWhiteListing" : false, "fileDelete" : true, "fileReplace" : false, "fileTxtReplace" : false, "folderDelete" : false, "isChromeObject" : false, "isDDS" : false, "isDoppleganging" : false, "isExternalDetection" : false, "isPUP" : false, "isShuriken" : false, "isWMIEventConsumer" : false, "killProcess" : false, "minimalWhiteListing" : false, "moduleUnload" : false, "noLinking" : false, "physicalSectorReplace" : false, "priorityHigh" : false, "priorityNormal" : false, "priorityUrgent" : false, "processUnload" : false, "regKeyDelete" : false, "regValueDelete" : false, "regValueReplace" : false, "shortcutReplace" : false, "silentMode" : false, "singleDelete" : false, "treatAsRootkit" : false, "useDDA" : false, "verifyResolvedPath" : true, "whitelistCheckError" : false } } ], "mainTrace" : { "archiveMember" : "", "archiveMemberMD5" : "", "cleanAction" : "quarantine", "cleanContext" : { }, "cleanResult" : "successful", "cleanResultErrorCode" : 5, "cleanTime" : "2021-04-10T09:07:46Z", "generatedByPostCleanupAction" : false, "hubbleRequestErrorCode" : -8, "id" : "e24a4bb6-99db-11eb-ac93-005056b197cd", "igExitCode" : "", "isPEFile" : true, "isPEFileValid" : true, "linkType" : "none", "objectMD5" : "E6B1FC5D7951003D8794379D47BFB6FF", "objectPath" : "C:\\WINDOWS\\SYSTEM32\\RVLKL.EXE", "objectSha256" : "E00A6E5143489FC3C133ABBC0943F208083A312622B0468C0614DACAA8ECC446", "objectSize" : 541600, "objectType" : "file", "resolvedPath" : "C:\\Windows\\System32\\rvlkl.exe", "suggestedAction" : { "archiveDir" : false, "chromeExtensionOther" : false, "chromeExtensionPreferences" : false, "chromeExtensionSecurePreferences" : false, "chromeExtensionSyncData" : false, "chromeUrlOther" : false, "chromeUrlSecurePreferences" : false, "chromeUrlSyncData" : false, "chromeUrlWebData" : false, "disableHubbleWhiteListing" : true, "disableSignatureWhiteListing" : true, "fileDelete" : true, "fileReplace" : false, "fileTxtReplace" : false, "folderDelete" : false, "isChromeObject" : false, "isDDS" : true, "isDoppleganging" : false, "isExternalDetection" : false, "isPUP" : false, "isShuriken" : false, "isWMIEventConsumer" : false, "killProcess" : false, "minimalWhiteListing" : false, "moduleUnload" : false, "noLinking" : false, "physicalSectorReplace" : false, "priorityHigh" : false, "priorityNormal" : false, "priorityUrgent" : false, "processUnload" : false, "regKeyDelete" : false, "regValueDelete" : false, "regValueReplace" : false, "shortcutReplace" : false, "silentMode" : false, "singleDelete" : false, "treatAsRootkit" : false, "useDDA" : false, "verifyResolvedPath" : true, "whitelistCheckError" : true }, "winVerifyTrustResult" : { "expectedError" : false, "lastErrorCode" : 0, "wvtCalled" : true, "wvtResult" : 0 } }, "ruleID" : 299332, "ruleString" : "5F125DCC5DA95DCBFEB818BF", "rulesVersion" : "1.0.37263", "srcEngineComponent" : "dds", "srcEngineThreatNames" : [ "Malware.AI.4273477823" ], "threatID" : 6824, "threatName" : "Trojan.LogixoftKeyLogger" }, { "ddsSigFileVersion" : "01122568", "linkedTraces" : [ ], "mainTrace" : { "archiveMember" : "", "archiveMemberMD5" : "", "cleanAction" : "ignore", "cleanContext" : { }, "cleanResult" : "ignored", "cleanResultErrorCode" : 0, "cleanTime" : "2021-04-10T09:07:46Z", "generatedByPostCleanupAction" : false, "hubbleRequestErrorCode" : -8, "id" : "e7a68a70-99db-11eb-8e3f-005056b197cd", "igExitCode" : "", "isPEFile" : true, "isPEFileValid" : true, "linkType" : "none", "objectMD5" : "E7A50A3912CD423740D4F4E64967FF23", "objectPath" : "C:\\WINDOWS\\SYSWOW64\\CYGWIN1.DLL", "objectSha256" : "631B5442832514B37F5F807A13922AD2AFDD44B3DF3D364FFA866BE311DFA1A1", "objectSize" : -1, "objectType" : "file", "resolvedPath" : "", "suggestedAction" : { "archiveDir" : false, "chromeExtensionOther" : false, "chromeExtensionPreferences" : false, "chromeExtensionSecurePreferences" : false, "chromeExtensionSyncData" : false, "chromeUrlOther" : false, "chromeUrlSecurePreferences" : false, "chromeUrlSyncData" : false, "chromeUrlWebData" : false, "disableHubbleWhiteListing" : true, "disableSignatureWhiteListing" : true, "fileDelete" : true, "fileReplace" : false, "fileTxtReplace" : false, "folderDelete" : false, "isChromeObject" : false, "isDDS" : true, "isDoppleganging" : false, "isExternalDetection" : false, "isPUP" : false, "isShuriken" : false, "isWMIEventConsumer" : false, "killProcess" : false, "minimalWhiteListing" : false, "moduleUnload" : false, "noLinking" : false, "physicalSectorReplace" : false, "priorityHigh" : false, "priorityNormal" : false, "priorityUrgent" : false, "processUnload" : false, "regKeyDelete" : false, "regValueDelete" : false, "regValueReplace" : false, "shortcutReplace" : false, "silentMode" : true, "singleDelete" : false, "treatAsRootkit" : false, "useDDA" : false, "verifyResolvedPath" : false, "whitelistCheckError" : true }, "winVerifyTrustResult" : { "expectedError" : true, "lastErrorCode" : -2146762496, "wvtCalled" : true, "wvtResult" : -2146762496 } }, "ruleID" : 0, "ruleString" : "0000000000000000000003E9", "rulesVersion" : "1.0.37263", "srcEngineComponent" : "dds", "srcEngineThreatNames" : [ "Malware.Heuristic.1001" ], "threatID" : 1000001, "threatName" : "Malware.Heuristic.1001" }, { "ddsSigFileVersion" : "01122568", "linkedTraces" : [ ], "mainTrace" : { "archiveMember" : "", "archiveMemberMD5" : "", "cleanAction" : "ignore", "cleanContext" : { }, "cleanResult" : "ignored", "cleanResultErrorCode" : 0, "cleanTime" : "2021-04-10T09:07:46Z", "generatedByPostCleanupAction" : false, "hubbleRequestErrorCode" : -8, "id" : "e7accc0a-99db-11eb-be18-005056b197cd", "igExitCode" : "", "isPEFile" : true, "isPEFileValid" : true, "linkType" : "none", "objectMD5" : "73978DD6DD93DFD1FDD83620AE604DD4", "objectPath" : "C:\\WINDOWS\\SYSWOW64\\VB40032.DLL", "objectSha256" : "07C89D29D1C88D58AB379799B56127C7DA2456C11D751C15DE6730EE01EF3B8A", "objectSize" : -1, "objectType" : "file", "resolvedPath" : "", "suggestedAction" : { "archiveDir" : false, "chromeExtensionOther" : false, "chromeExtensionPreferences" : false, "chromeExtensionSecurePreferences" : false, "chromeExtensionSyncData" : false, "chromeUrlOther" : false, "chromeUrlSecurePreferences" : false, "chromeUrlSyncData" : false, "chromeUrlWebData" : false, "disableHubbleWhiteListing" : true, "disableSignatureWhiteListing" : true, "fileDelete" : true, "fileReplace" : false, "fileTxtReplace" : false, "folderDelete" : false, "isChromeObject" : false, "isDDS" : true, "isDoppleganging" : false, "isExternalDetection" : false, "isPUP" : false, "isShuriken" : false, "isWMIEventConsumer" : false, "killProcess" : false, "minimalWhiteListing" : false, "moduleUnload" : false, "noLinking" : false, "physicalSectorReplace" : false, "priorityHigh" : false, "priorityNormal" : false, "priorityUrgent" : false, "processUnload" : false, "regKeyDelete" : false, "regValueDelete" : false, "regValueReplace" : false, "shortcutReplace" : false, "silentMode" : true, "singleDelete" : false, "treatAsRootkit" : false, "useDDA" : false, "verifyResolvedPath" : false, "whitelistCheckError" : true }, "winVerifyTrustResult" : { "expectedError" : true, "lastErrorCode" : -2146762496, "wvtCalled" : true, "wvtResult" : -2146762496 } }, "ruleID" : 0, "ruleString" : "0000000000000000000003E9", "rulesVersion" : "1.0.37263", "srcEngineComponent" : "dds", "srcEngineThreatNames" : [ "Malware.Heuristic.1001" ], "threatID" : 1000001, "threatName" : "Malware.Heuristic.1001" }, { "ddsSigFileVersion" : "01122568", "linkedTraces" : [ ], "mainTrace" : { "archiveMember" : "", "archiveMemberMD5" : "", "cleanAction" : "quarantine", "cleanContext" : { }, "cleanResult" : "duplicate", "cleanResultErrorCode" : 0, "cleanTime" : "2021-04-10T09:05:33Z", "generatedByPostCleanupAction" : false, "hubbleRequestErrorCode" : -8, "id" : "e7ae52aa-99db-11eb-9eda-005056b197cd", "igExitCode" : "", "isPEFile" : true, "isPEFileValid" : true, "linkType" : "none", "objectMD5" : "E6B1FC5D7951003D8794379D47BFB6FF", "objectPath" : "C:\\WINDOWS\\SYSTEM32\\RVLKL.EXE", "objectSha256" : "E00A6E5143489FC3C133ABBC0943F208083A312622B0468C0614DACAA8ECC446", "objectSize" : -1, "objectType" : "file", "resolvedPath" : "", "suggestedAction" : { "archiveDir" : false, "chromeExtensionOther" : false, "chromeExtensionPreferences" : false, "chromeExtensionSecurePreferences" : false, "chromeExtensionSyncData" : false, "chromeUrlOther" : false, "chromeUrlSecurePreferences" : false, "chromeUrlSyncData" : false, "chromeUrlWebData" : false, "disableHubbleWhiteListing" : true, "disableSignatureWhiteListing" : true, "fileDelete" : true, "fileReplace" : false, "fileTxtReplace" : false, "folderDelete" : false, "isChromeObject" : false, "isDDS" : true, "isDoppleganging" : false, "isExternalDetection" : false, "isPUP" : false, "isShuriken" : false, "isWMIEventConsumer" : false, "killProcess" : false, "minimalWhiteListing" : false, "moduleUnload" : false, "noLinking" : false, "physicalSectorReplace" : false, "priorityHigh" : false, "priorityNormal" : false, "priorityUrgent" : false, "processUnload" : false, "regKeyDelete" : false, "regValueDelete" : false, "regValueReplace" : false, "shortcutReplace" : false, "silentMode" : false, "singleDelete" : false, "treatAsRootkit" : false, "useDDA" : false, "verifyResolvedPath" : false, "whitelistCheckError" : true }, "winVerifyTrustResult" : { "expectedError" : false, "lastErrorCode" : 0, "wvtCalled" : true, "wvtResult" : 0 } }, "ruleID" : 299332, "ruleString" : "5F125DCC5DA95DCBFEB818BF", "rulesVersion" : "1.0.37263", "srcEngineComponent" : "dds", "srcEngineThreatNames" : [ "Malware.AI.4273477823" ], "threatID" : 6824, "threatName" : "Trojan.LogixoftKeyLogger" }, { "ddsSigFileVersion" : "01122568", "linkedTraces" : [ { "archiveMember" : "", "archiveMemberMD5" : "", "cleanAction" : "quarantine", "cleanContext" : { "unloadData" : { "pid" : 9512 } }, "cleanResult" : "successful", "cleanResultErrorCode" : 0, "cleanTime" : "2021-04-10T09:07:52Z", "generatedByPostCleanupAction" : false, "hubbleRequestErrorCode" : 0, "id" : "eafbec1a-99db-11eb-869b-005056b197cd", "igExitCode" : "", "isPEFile" : false, "isPEFileValid" : false, "linkType" : "linkedTrace", "objectMD5" : "D2BE607ECDBEE61CFA3843D3B8C2DE13", "objectPath" : "C:\\USERS\\MYSQLSERVER\\DESKTOP\\NL 5\\TITAN_PRIVAT.EXE", "objectSha256" : "A332F863DA1709B27B62F3A3F2A06DCA48C7DABE6B8DB76EC7BB81CE3786E527", "objectSize" : -1, "objectType" : "process", "resolvedPath" : "", "suggestedAction" : { "archiveDir" : false, "chromeExtensionOther" : false, "chromeExtensionPreferences" : false, "chromeExtensionSecurePreferences" : false, "chromeExtensionSyncData" : false, "chromeUrlOther" : false, "chromeUrlSecurePreferences" : false, "chromeUrlSyncData" : false, "chromeUrlWebData" : false, "disableHubbleWhiteListing" : false, "disableSignatureWhiteListing" : false, "fileDelete" : false, "fileReplace" : false, "fileTxtReplace" : false, "folderDelete" : false, "isChromeObject" : false, "isDDS" : false, "isDoppleganging" : false, "isExternalDetection" : false, "isPUP" : false, "isShuriken" : false, "isWMIEventConsumer" : false, "killProcess" : false, "minimalWhiteListing" : false, "moduleUnload" : false, "noLinking" : false, "physicalSectorReplace" : false, "priorityHigh" : false, "priorityNormal" : false, "priorityUrgent" : false, "processUnload" : true, "regKeyDelete" : false, "regValueDelete" : false, "regValueReplace" : false, "shortcutReplace" : false, "silentMode" : false, "singleDelete" : false, "treatAsRootkit" : false, "useDDA" : false, "verifyResolvedPath" : false, "whitelistCheckError" : false } }, { "archiveMember" : "", "archiveMemberMD5" : "", "cleanAction" : "quarantine", "cleanContext" : { "unloadData" : { "pid" : 9512 } }, "cleanResult" : "successful", "cleanResultErrorCode" : 0, "cleanTime" : "2021-04-10T09:07:52Z", "generatedByPostCleanupAction" : false, "hubbleRequestErrorCode" : 0, "id" : "eafc1352-99db-11eb-81c9-005056b197cd", "igExitCode" : "", "isPEFile" : false, "isPEFileValid" : false, "linkType" : "linkedTrace", "objectMD5" : "D2BE607ECDBEE61CFA3843D3B8C2DE13", "objectPath" : "C:\\USERS\\MYSQLSERVER\\DESKTOP\\NL 5\\TITAN_PRIVAT.EXE", "objectSha256" : "A332F863DA1709B27B62F3A3F2A06DCA48C7DABE6B8DB76EC7BB81CE3786E527", "objectSize" : -1, "objectType" : "module", "resolvedPath" : "", "suggestedAction" : { "archiveDir" : false, "chromeExtensionOther" : false, "chromeExtensionPreferences" : false, "chromeExtensionSecurePreferences" : false, "chromeExtensionSyncData" : false, "chromeUrlOther" : false, "chromeUrlSecurePreferences" : false, "chromeUrlSyncData" : false, "chromeUrlWebData" : false, "disableHubbleWhiteListing" : false, "disableSignatureWhiteListing" : false, "fileDelete" : false, "fileReplace" : false, "fileTxtReplace" : false, "folderDelete" : false, "isChromeObject" : false, "isDDS" : false, "isDoppleganging" : false, "isExternalDetection" : false, "isPUP" : false, "isShuriken" : false, "isWMIEventConsumer" : false, "killProcess" : false, "minimalWhiteListing" : false, "moduleUnload" : true, "noLinking" : false, "physicalSectorReplace" : false, "priorityHigh" : false, "priorityNormal" : false, "priorityUrgent" : false, "processUnload" : false, "regKeyDelete" : false, "regValueDelete" : false, "regValueReplace" : false, "shortcutReplace" : false, "silentMode" : false, "singleDelete" : false, "treatAsRootkit" : false, "useDDA" : false, "verifyResolvedPath" : false, "whitelistCheckError" : false } } ], "mainTrace" : { "archiveMember" : "", "archiveMemberMD5" : "", "cleanAction" : "quarantine", "cleanContext" : { }, "cleanResult" : "successful", "cleanResultErrorCode" : 5, "cleanTime" : "2021-04-10T09:07:49Z", "generatedByPostCleanupAction" : false, "hubbleRequestErrorCode" : -8, "id" : "ea0f2cb8-99db-11eb-99e0-005056b197cd", "igExitCode" : "", "isPEFile" : true, "isPEFileValid" : true, "linkType" : "none", "objectMD5" : "D2BE607ECDBEE61CFA3843D3B8C2DE13", "objectPath" : "C:\\USERS\\MYSQLSERVER\\DESKTOP\\NL 5\\TITAN_PRIVAT.EXE", "objectSha256" : "A332F863DA1709B27B62F3A3F2A06DCA48C7DABE6B8DB76EC7BB81CE3786E527", "objectSize" : 6943232, "objectType" : "file", "resolvedPath" : "C:\\Users\\MYSQLSERVER\\Desktop\\NL 5\\TITAN_PRIVAT.exe", "suggestedAction" : { "archiveDir" : false, "chromeExtensionOther" : false, "chromeExtensionPreferences" : false, "chromeExtensionSecurePreferences" : false, "chromeExtensionSyncData" : false, "chromeUrlOther" : false, "chromeUrlSecurePreferences" : false, "chromeUrlSyncData" : false, "chromeUrlWebData" : false, "disableHubbleWhiteListing" : true, "disableSignatureWhiteListing" : true, "fileDelete" : true, "fileReplace" : false, "fileTxtReplace" : false, "folderDelete" : false, "isChromeObject" : false, "isDDS" : true, "isDoppleganging" : false, "isExternalDetection" : false, "isPUP" : false, "isShuriken" : false, "isWMIEventConsumer" : false, "killProcess" : false, "minimalWhiteListing" : false, "moduleUnload" : false, "noLinking" : false, "physicalSectorReplace" : false, "priorityHigh" : false, "priorityNormal" : false, "priorityUrgent" : false, "processUnload" : false, "regKeyDelete" : false, "regValueDelete" : false, "regValueReplace" : false, "shortcutReplace" : false, "silentMode" : false, "singleDelete" : false, "treatAsRootkit" : false, "useDDA" : false, "verifyResolvedPath" : true, "whitelistCheckError" : true }, "winVerifyTrustResult" : { "expectedError" : true, "lastErrorCode" : -2146762496, "wvtCalled" : true, "wvtResult" : -2146762496 } }, "ruleID" : 473932, "ruleString" : "64823C0DF8575084FF3BDED2", "rulesVersion" : "1.0.37263", "srcEngineComponent" : "dds", "srcEngineThreatNames" : [ "Malware.AI.4282113746" ], "threatID" : 3459, "threatName" : "RiskWare.HackTool" }, { "ddsSigFileVersion" : "01122568", "linkedTraces" : [ ], "mainTrace" : { "archiveMember" : "", "archiveMemberMD5" : "", "cleanAction" : "ignore", "cleanContext" : { }, "cleanResult" : "ignored", "cleanResultErrorCode" : 0, "cleanTime" : "2021-04-10T09:07:46Z", "generatedByPostCleanupAction" : false, "hubbleRequestErrorCode" : -8, "id" : "faa71afe-99db-11eb-9671-005056b197cd", "igExitCode" : "", "isPEFile" : true, "isPEFileValid" : true, "linkType" : "none", "objectMD5" : "E7A50A3912CD423740D4F4E64967FF23", "objectPath" : "C:\\WINDOWS\\SYSWOW64\\CYGWIN1.DLL", "objectSha256" : "631B5442832514B37F5F807A13922AD2AFDD44B3DF3D364FFA866BE311DFA1A1", "objectSize" : -1, "objectType" : "file", "resolvedPath" : "", "suggestedAction" : { "archiveDir" : false, "chromeExtensionOther" : false, "chromeExtensionPreferences" : false, "chromeExtensionSecurePreferences" : false, "chromeExtensionSyncData" : false, "chromeUrlOther" : false, "chromeUrlSecurePreferences" : false, "chromeUrlSyncData" : false, "chromeUrlWebData" : false, "disableHubbleWhiteListing" : true, "disableSignatureWhiteListing" : true, "fileDelete" : true, "fileReplace" : false, "fileTxtReplace" : false, "folderDelete" : false, "isChromeObject" : false, "isDDS" : true, "isDoppleganging" : false, "isExternalDetection" : false, "isPUP" : false, "isShuriken" : false, "isWMIEventConsumer" : false, "killProcess" : false, "minimalWhiteListing" : false, "moduleUnload" : false, "noLinking" : false, "physicalSectorReplace" : false, "priorityHigh" : false, "priorityNormal" : false, "priorityUrgent" : false, "processUnload" : false, "regKeyDelete" : false, "regValueDelete" : false, "regValueReplace" : false, "shortcutReplace" : false, "silentMode" : true, "singleDelete" : false, "treatAsRootkit" : false, "useDDA" : false, "verifyResolvedPath" : false, "whitelistCheckError" : true }, "winVerifyTrustResult" : { "expectedError" : true, "lastErrorCode" : -2146762496, "wvtCalled" : true, "wvtResult" : -2146762496 } }, "ruleID" : 0, "ruleString" : "0000000000000000000003E9", "rulesVersion" : "1.0.37263", "srcEngineComponent" : "dds", "srcEngineThreatNames" : [ "Malware.Heuristic.1001" ], "threatID" : 1000001, "threatName" : "Malware.Heuristic.1001" }, { "ddsSigFileVersion" : "01122568", "linkedTraces" : [ ], "mainTrace" : { "archiveMember" : "", "archiveMemberMD5" : "", "cleanAction" : "ignore", "cleanContext" : { }, "cleanResult" : "ignored", "cleanResultErrorCode" : 0, "cleanTime" : "2021-04-10T09:07:46Z", "generatedByPostCleanupAction" : false, "hubbleRequestErrorCode" : -8, "id" : "00041f6a-99dc-11eb-8ccf-005056b197cd", "igExitCode" : "", "isPEFile" : true, "isPEFileValid" : true, "linkType" : "none", "objectMD5" : "73978DD6DD93DFD1FDD83620AE604DD4", "objectPath" : "C:\\WINDOWS\\SYSWOW64\\VB40032.DLL", "objectSha256" : "07C89D29D1C88D58AB379799B56127C7DA2456C11D751C15DE6730EE01EF3B8A", "objectSize" : -1, "objectType" : "file", "resolvedPath" : "", "suggestedAction" : { "archiveDir" : false, "chromeExtensionOther" : false, "chromeExtensionPreferences" : false, "chromeExtensionSecurePreferences" : false, "chromeExtensionSyncData" : false, "chromeUrlOther" : false, "chromeUrlSecurePreferences" : false, "chromeUrlSyncData" : false, "chromeUrlWebData" : false, "disableHubbleWhiteListing" : true, "disableSignatureWhiteListing" : true, "fileDelete" : true, "fileReplace" : false, "fileTxtReplace" : false, "folderDelete" : false, "isChromeObject" : false, "isDDS" : true, "isDoppleganging" : false, "isExternalDetection" : false, "isPUP" : false, "isShuriken" : false, "isWMIEventConsumer" : false, "killProcess" : false, "minimalWhiteListing" : false, "moduleUnload" : false, "noLinking" : false, "physicalSectorReplace" : false, "priorityHigh" : false, "priorityNormal" : false, "priorityUrgent" : false, "processUnload" : false, "regKeyDelete" : false, "regValueDelete" : false, "regValueReplace" : false, "shortcutReplace" : false, "silentMode" : true, "singleDelete" : false, "treatAsRootkit" : false, "useDDA" : false, "verifyResolvedPath" : false, "whitelistCheckError" : true }, "winVerifyTrustResult" : { "expectedError" : true, "lastErrorCode" : -2146762496, "wvtCalled" : true, "wvtResult" : -2146762496 } }, "ruleID" : 0, "ruleString" : "0000000000000000000003E9", "rulesVersion" : "1.0.37263", "srcEngineComponent" : "dds", "srcEngineThreatNames" : [ "Malware.Heuristic.1001" ], "threatID" : 1000001, "threatName" : "Malware.Heuristic.1001" }, { "ddsSigFileVersion" : "01122568", "linkedTraces" : [ { "archiveMember" : "", "archiveMemberMD5" : "", "cleanAction" : "quarantine", "cleanResult" : "successful", "cleanResultErrorCode" : 0, "cleanTime" : "2021-04-10T09:07:52Z", "generatedByPostCleanupAction" : false, "hubbleRequestErrorCode" : 0, "id" : "04601e60-99dc-11eb-b034-005056b197cd", "igExitCode" : "", "isPEFile" : false, "isPEFileValid" : true, "linkType" : "linkedTrace", "objectMD5" : "66A5AFF58AB7C5517522D7EED3AB4DFB", "objectPath" : "C:\\USERS\\MYSQLSERVER\\APPDATA\\ROAMING\\Microsoft\\Windows\\Recent\\NL Titan.lnk", "objectSha256" : "5F287029285AD27CC84D38A6EAA1A9EDBCDC2F15810FBEB4300D08FA94DDA545", "objectSize" : 589, "objectType" : "file", "resolvedPath" : "C:\\Users\\MYSQLSERVER\\AppData\\Roaming\\Microsoft\\Windows\\Recent\\NL Titan.lnk", "suggestedAction" : { "archiveDir" : false, "chromeExtensionOther" : false, "chromeExtensionPreferences" : false, "chromeExtensionSecurePreferences" : false, "chromeExtensionSyncData" : false, "chromeUrlOther" : false, "chromeUrlSecurePreferences" : false, "chromeUrlSyncData" : false, "chromeUrlWebData" : false, "disableHubbleWhiteListing" : false, "disableSignatureWhiteListing" : false, "fileDelete" : true, "fileReplace" : false, "fileTxtReplace" : false, "folderDelete" : false, "isChromeObject" : false, "isDDS" : false, "isDoppleganging" : false, "isExternalDetection" : false, "isPUP" : false, "isShuriken" : false, "isWMIEventConsumer" : false, "killProcess" : false, "minimalWhiteListing" : false, "moduleUnload" : false, "noLinking" : false, "physicalSectorReplace" : false, "priorityHigh" : false, "priorityNormal" : false, "priorityUrgent" : false, "processUnload" : false, "regKeyDelete" : false, "regValueDelete" : false, "regValueReplace" : false, "shortcutReplace" : false, "silentMode" : false, "singleDelete" : false, "treatAsRootkit" : false, "useDDA" : false, "verifyResolvedPath" : true, "whitelistCheckError" : false } } ], "mainTrace" : { "archiveMember" : "NL 1\\NLBrute 1.2 x64 & VPN - KeyGen.exe", "archiveMemberMD5" : "62B039B2AF7BF5F6ABF35EF903024300", "cleanAction" : "quarantine", "cleanContext" : { }, "cleanResult" : "successful", "cleanResultErrorCode" : 0, "cleanTime" : "2021-04-10T09:07:52Z", "generatedByPostCleanupAction" : false, "hubbleRequestErrorCode" : -8, "id" : "039c00d4-99dc-11eb-9dfd-005056b197cd", "igExitCode" : "", "isPEFile" : false, "isPEFileValid" : true, "linkType" : "none", "objectMD5" : "AF7D79877175469A8DDC18A8E6D73FA0", "objectPath" : "C:\\USERS\\MYSQLSERVER\\DESKTOP\\NL TITAN.ZIP", "objectSha256" : "C5AA9DA8EF25DF0A0F23A78556CFBB20DE17C943EADA58ED0E50462CEB6E1E19", "objectSize" : 9244538, "objectType" : "file", "resolvedPath" : "C:\\Users\\MYSQLSERVER\\Desktop\\NL Titan.zip", "suggestedAction" : { "archiveDir" : false, "chromeExtensionOther" : false, "chromeExtensionPreferences" : false, "chromeExtensionSecurePreferences" : false, "chromeExtensionSyncData" : false, "chromeUrlOther" : false, "chromeUrlSecurePreferences" : false, "chromeUrlSyncData" : false, "chromeUrlWebData" : false, "disableHubbleWhiteListing" : false, "disableSignatureWhiteListing" : false, "fileDelete" : true, "fileReplace" : false, "fileTxtReplace" : false, "folderDelete" : false, "isChromeObject" : false, "isDDS" : true, "isDoppleganging" : false, "isExternalDetection" : false, "isPUP" : false, "isShuriken" : false, "isWMIEventConsumer" : false, "killProcess" : false, "minimalWhiteListing" : false, "moduleUnload" : false, "noLinking" : false, "physicalSectorReplace" : false, "priorityHigh" : false, "priorityNormal" : false, "priorityUrgent" : false, "processUnload" : false, "regKeyDelete" : false, "regValueDelete" : false, "regValueReplace" : false, "shortcutReplace" : false, "silentMode" : false, "singleDelete" : false, "treatAsRootkit" : false, "useDDA" : false, "verifyResolvedPath" : true, "whitelistCheckError" : true }, "winVerifyTrustResult" : { "expectedError" : false, "lastErrorCode" : 0, "wvtCalled" : true, "wvtResult" : 0 } }, "ruleID" : 589444, "ruleString" : "0000000000000000000003EB", "rulesVersion" : "1.0.37263", "srcEngineComponent" : "dds", "srcEngineThreatNames" : [ "Malware.Heuristic.1003" ], "threatID" : 497, "threatName" : "CrackTool.Agent.Keygen" }, { "ddsSigFileVersion" : "01122568", "linkedTraces" : [ ], "mainTrace" : { "archiveMember" : "", "archiveMemberMD5" : "", "cleanAction" : "ignore", "cleanContext" : { }, "cleanResult" : "ignored", "cleanResultErrorCode" : 0, "cleanTime" : "2021-04-10T09:07:46Z", "generatedByPostCleanupAction" : false, "hubbleRequestErrorCode" : -8, "id" : "0666031e-99dc-11eb-993c-005056b197cd", "igExitCode" : "", "isPEFile" : true, "isPEFileValid" : true, "linkType" : "none", "objectMD5" : "EA08C74D9BE05E53D3C92456413AA656", "objectPath" : "C:\\WINDOWS\\ASSEMBLY\\GAC\\SYSTEM.ENTERPRISESERVICES\\1.0.5000.0__B03F5F7F11D50A3A\\SYSTEM.ENTERPRISESERVICES.THUNK.DLL", "objectSha256" : "B77E0FA4A4C973A4F1645F5B8C553A49BCCC98DB7C8A53EFD5F2F6500250EE0C", "objectSize" : -1, "objectType" : "file", "resolvedPath" : "", "suggestedAction" : { "archiveDir" : false, "chromeExtensionOther" : false, "chromeExtensionPreferences" : false, "chromeExtensionSecurePreferences" : false, "chromeExtensionSyncData" : false, "chromeUrlOther" : false, "chromeUrlSecurePreferences" : false, "chromeUrlSyncData" : false, "chromeUrlWebData" : false, "disableHubbleWhiteListing" : true, "disableSignatureWhiteListing" : true, "fileDelete" : true, "fileReplace" : false, "fileTxtReplace" : false, "folderDelete" : false, "isChromeObject" : false, "isDDS" : true, "isDoppleganging" : false, "isExternalDetection" : false, "isPUP" : false, "isShuriken" : false, "isWMIEventConsumer" : false, "killProcess" : false, "minimalWhiteListing" : false, "moduleUnload" : false, "noLinking" : false, "physicalSectorReplace" : false, "priorityHigh" : false, "priorityNormal" : false, "priorityUrgent" : false, "processUnload" : false, "regKeyDelete" : false, "regValueDelete" : false, "regValueReplace" : false, "shortcutReplace" : false, "silentMode" : true, "singleDelete" : false, "treatAsRootkit" : false, "useDDA" : false, "verifyResolvedPath" : false, "whitelistCheckError" : true }, "winVerifyTrustResult" : { "expectedError" : true, "lastErrorCode" : -2146762496, "wvtCalled" : true, "wvtResult" : -2146762496 } }, "ruleID" : 0, "ruleString" : "0000000000000000000003E9", "rulesVersion" : "1.0.37263", "srcEngineComponent" : "dds", "srcEngineThreatNames" : [ "Malware.Heuristic.1001" ], "threatID" : 1000001, "threatName" : "Malware.Heuristic.1001" }, { "ddsSigFileVersion" : "01122568", "linkedTraces" : [ ], "mainTrace" : { "archiveMember" : "NL Titan\\NLBrute 1.2 x64 & VPN - KeyGen.exe", "archiveMemberMD5" : "62B039B2AF7BF5F6ABF35EF903024300", "cleanAction" : "quarantine", "cleanContext" : { }, "cleanResult" : "successful", "cleanResultErrorCode" : 0, "cleanTime" : "2021-04-10T09:07:52Z", "generatedByPostCleanupAction" : false, "hubbleRequestErrorCode" : -8, "id" : "07f48f70-99dc-11eb-af7b-005056b197cd", "igExitCode" : "", "isPEFile" : false, "isPEFileValid" : true, "linkType" : "none", "objectMD5" : "6E9737D8FB985D4C1E3DB781E90D9A23", "objectPath" : "C:\\USERS\\MYSQLSERVER\\DOWNLOADS\\NL TITAN.ZIP", "objectSha256" : "1FE642B4AF6BB3DA32AD8B1E77F2D9A63569F45FAB80DA911A566553336AF5F2", "objectSize" : 9244577, "objectType" : "file", "resolvedPath" : "C:\\Users\\MYSQLSERVER\\Downloads\\NL Titan.zip", "suggestedAction" : { "archiveDir" : false, "chromeExtensionOther" : false, "chromeExtensionPreferences" : false, "chromeExtensionSecurePreferences" : false, "chromeExtensionSyncData" : false, "chromeUrlOther" : false, "chromeUrlSecurePreferences" : false, "chromeUrlSyncData" : false, "chromeUrlWebData" : false, "disableHubbleWhiteListing" : false, "disableSignatureWhiteListing" : false, "fileDelete" : true, "fileReplace" : false, "fileTxtReplace" : false, "folderDelete" : false, "isChromeObject" : false, "isDDS" : true, "isDoppleganging" : false, "isExternalDetection" : false, "isPUP" : false, "isShuriken" : false, "isWMIEventConsumer" : false, "killProcess" : false, "minimalWhiteListing" : false, "moduleUnload" : false, "noLinking" : false, "physicalSectorReplace" : false, "priorityHigh" : false, "priorityNormal" : false, "priorityUrgent" : false, "processUnload" : false, "regKeyDelete" : false, "regValueDelete" : false, "regValueReplace" : false, "shortcutReplace" : false, "silentMode" : false, "singleDelete" : false, "treatAsRootkit" : false, "useDDA" : false, "verifyResolvedPath" : true, "whitelistCheckError" : true }, "winVerifyTrustResult" : { "expectedError" : false, "lastErrorCode" : 0, "wvtCalled" : true, "wvtResult" : 0 } }, "ruleID" : 589444, "ruleString" : "0000000000000000000003EB", "rulesVersion" : "1.0.37263", "srcEngineComponent" : "dds", "srcEngineThreatNames" : [ "Malware.Heuristic.1003" ], "threatID" : 497, "threatName" : "CrackTool.Agent.Keygen" }, { "ddsSigFileVersion" : "01122568", "linkedTraces" : [ ], "mainTrace" : { "archiveMember" : "", "archiveMemberMD5" : "", "cleanAction" : "ignore", "cleanContext" : { }, "cleanResult" : "ignored", "cleanResultErrorCode" : 0, "cleanTime" : "2021-04-10T09:07:46Z", "generatedByPostCleanupAction" : false, "hubbleRequestErrorCode" : -8, "id" : "0a39cb6a-99dc-11eb-9446-005056b197cd", "igExitCode" : "", "isPEFile" : true, "isPEFileValid" : true, "linkType" : "none", "objectMD5" : "EA08C74D9BE05E53D3C92456413AA656", "objectPath" : "C:\\WINDOWS\\MICROSOFT.NET\\FRAMEWORK\\V1.1.4322\\SYSTEM.ENTERPRISESERVICES.THUNK.DLL", "objectSha256" : "B77E0FA4A4C973A4F1645F5B8C553A49BCCC98DB7C8A53EFD5F2F6500250EE0C", "objectSize" : -1, "objectType" : "file", "resolvedPath" : "", "suggestedAction" : { "archiveDir" : false, "chromeExtensionOther" : false, "chromeExtensionPreferences" : false, "chromeExtensionSecurePreferences" : false, "chromeExtensionSyncData" : false, "chromeUrlOther" : false, "chromeUrlSecurePreferences" : false, "chromeUrlSyncData" : false, "chromeUrlWebData" : false, "disableHubbleWhiteListing" : true, "disableSignatureWhiteListing" : true, "fileDelete" : true, "fileReplace" : false, "fileTxtReplace" : false, "folderDelete" : false, "isChromeObject" : false, "isDDS" : true, "isDoppleganging" : false, "isExternalDetection" : false, "isPUP" : false, "isShuriken" : false, "isWMIEventConsumer" : false, "killProcess" : false, "minimalWhiteListing" : false, "moduleUnload" : false, "noLinking" : false, "physicalSectorReplace" : false, "priorityHigh" : false, "priorityNormal" : false, "priorityUrgent" : false, "processUnload" : false, "regKeyDelete" : false, "regValueDelete" : false, "regValueReplace" : false, "shortcutReplace" : false, "silentMode" : true, "singleDelete" : false, "treatAsRootkit" : false, "useDDA" : false, "verifyResolvedPath" : false, "whitelistCheckError" : true }, "winVerifyTrustResult" : { "expectedError" : true, "lastErrorCode" : -2146762496, "wvtCalled" : true, "wvtResult" : -2146762496 } }, "ruleID" : 0, "ruleString" : "0000000000000000000003E9", "rulesVersion" : "1.0.37263", "srcEngineComponent" : "dds", "srcEngineThreatNames" : [ "Malware.Heuristic.1001" ], "threatID" : 1000001, "threatName" : "Malware.Heuristic.1001" }, { "ddsSigFileVersion" : "01122568", "linkedTraces" : [ ], "mainTrace" : { "archiveMember" : "", "archiveMemberMD5" : "", "cleanAction" : "quarantine", "cleanContext" : { }, "cleanResult" : "successful", "cleanResultErrorCode" : 0, "cleanTime" : "2021-04-10T09:07:52Z", "generatedByPostCleanupAction" : false, "hubbleRequestErrorCode" : -8, "id" : "0e1b448e-99dc-11eb-9ea1-005056b197cd", "igExitCode" : "", "isPEFile" : true, "isPEFileValid" : true, "linkType" : "none", "objectMD5" : "62B039B2AF7BF5F6ABF35EF903024300", "objectPath" : "C:\\USERS\\MYSQLSERVER\\DESKTOP\\NL 1\\NLBRUTE 1.2 X64 & VPN - KEYGEN.EXE", "objectSha256" : "83D7F6EAF7FE075503EA6A0BC726633C34595A6EAE7EDD7DEAB95AB4D4A66FD5", "objectSize" : 2583040, "objectType" : "file", "resolvedPath" : "C:\\Users\\MYSQLSERVER\\Desktop\\NL 1\\NLBrute 1.2 x64 & VPN - KeyGen.exe", "suggestedAction" : { "archiveDir" : false, "chromeExtensionOther" : false, "chromeExtensionPreferences" : false, "chromeExtensionSecurePreferences" : false, "chromeExtensionSyncData" : false, "chromeUrlOther" : false, "chromeUrlSecurePreferences" : false, "chromeUrlSyncData" : false, "chromeUrlWebData" : false, "disableHubbleWhiteListing" : true, "disableSignatureWhiteListing" : true, "fileDelete" : true, "fileReplace" : false, "fileTxtReplace" : false, "folderDelete" : false, "isChromeObject" : false, "isDDS" : true, "isDoppleganging" : false, "isExternalDetection" : false, "isPUP" : false, "isShuriken" : false, "isWMIEventConsumer" : false, "killProcess" : false, "minimalWhiteListing" : false, "moduleUnload" : false, "noLinking" : false, "physicalSectorReplace" : false, "priorityHigh" : false, "priorityNormal" : false, "priorityUrgent" : false, "processUnload" : false, "regKeyDelete" : false, "regValueDelete" : false, "regValueReplace" : false, "shortcutReplace" : false, "silentMode" : false, "singleDelete" : false, "treatAsRootkit" : false, "useDDA" : false, "verifyResolvedPath" : true, "whitelistCheckError" : true }, "winVerifyTrustResult" : { "expectedError" : true, "lastErrorCode" : -2146762496, "wvtCalled" : true, "wvtResult" : -2146762496 } }, "ruleID" : 589444, "ruleString" : "0000000000000000000003EB", "rulesVersion" : "1.0.37263", "srcEngineComponent" : "dds", "srcEngineThreatNames" : [ "Malware.Heuristic.1003" ], "threatID" : 497, "threatName" : "CrackTool.Agent.Keygen" }, { "ddsSigFileVersion" : "01122568", "linkedTraces" : [ ], "mainTrace" : { "archiveMember" : "", "archiveMemberMD5" : "", "cleanAction" : "quarantine", "cleanContext" : { }, "cleanResult" : "successful", "cleanResultErrorCode" : 0, "cleanTime" : "2021-04-10T09:07:52Z", "generatedByPostCleanupAction" : false, "hubbleRequestErrorCode" : -8, "id" : "0f265cf6-99dc-11eb-95f7-005056b197cd", "igExitCode" : "", "isPEFile" : true, "isPEFileValid" : true, "linkType" : "none", "objectMD5" : "D2BE607ECDBEE61CFA3843D3B8C2DE13", "objectPath" : "C:\\USERS\\MYSQLSERVER\\DESKTOP\\NL 2\\TITAN_PRIVAT.EXE", "objectSha256" : "A332F863DA1709B27B62F3A3F2A06DCA48C7DABE6B8DB76EC7BB81CE3786E527", "objectSize" : 6943232, "objectType" : "file", "resolvedPath" : "C:\\Users\\MYSQLSERVER\\Desktop\\NL 2\\TITAN_PRIVAT.exe", "suggestedAction" : { "archiveDir" : false, "chromeExtensionOther" : false, "chromeExtensionPreferences" : false, "chromeExtensionSecurePreferences" : false, "chromeExtensionSyncData" : false, "chromeUrlOther" : false, "chromeUrlSecurePreferences" : false, "chromeUrlSyncData" : false, "chromeUrlWebData" : false, "disableHubbleWhiteListing" : true, "disableSignatureWhiteListing" : true, "fileDelete" : true, "fileReplace" : false, "fileTxtReplace" : false, "folderDelete" : false, "isChromeObject" : false, "isDDS" : true, "isDoppleganging" : false, "isExternalDetection" : false, "isPUP" : false, "isShuriken" : false, "isWMIEventConsumer" : false, "killProcess" : false, "minimalWhiteListing" : false, "moduleUnload" : false, "noLinking" : false, "physicalSectorReplace" : false, "priorityHigh" : false, "priorityNormal" : false, "priorityUrgent" : false, "processUnload" : false, "regKeyDelete" : false, "regValueDelete" : false, "regValueReplace" : false, "shortcutReplace" : false, "silentMode" : false, "singleDelete" : false, "treatAsRootkit" : false, "useDDA" : false, "verifyResolvedPath" : true, "whitelistCheckError" : true }, "winVerifyTrustResult" : { "expectedError" : true, "lastErrorCode" : -2146762496, "wvtCalled" : true, "wvtResult" : -2146762496 } }, "ruleID" : 473932, "ruleString" : "64823C0DF8575084FF3BDED2", "rulesVersion" : "1.0.37263", "srcEngineComponent" : "dds", "srcEngineThreatNames" : [ "Malware.AI.4282113746" ], "threatID" : 3459, "threatName" : "RiskWare.HackTool" }, { "ddsSigFileVersion" : "01122568", "linkedTraces" : [ ], "mainTrace" : { "archiveMember" : "", "archiveMemberMD5" : "", "cleanAction" : "quarantine", "cleanContext" : { }, "cleanResult" : "successful", "cleanResultErrorCode" : 0, "cleanTime" : "2021-04-10T09:07:52Z", "generatedByPostCleanupAction" : false, "hubbleRequestErrorCode" : -8, "id" : "1052f1ac-99dc-11eb-b1c9-005056b197cd", "igExitCode" : "", "isPEFile" : true, "isPEFileValid" : true, "linkType" : "none", "objectMD5" : "D2BE607ECDBEE61CFA3843D3B8C2DE13", "objectPath" : "C:\\USERS\\MYSQLSERVER\\DESKTOP\\NL 4\\TITAN_PRIVAT.EXE", "objectSha256" : "A332F863DA1709B27B62F3A3F2A06DCA48C7DABE6B8DB76EC7BB81CE3786E527", "objectSize" : 6943232, "objectType" : "file", "resolvedPath" : "C:\\Users\\MYSQLSERVER\\Desktop\\NL 4\\TITAN_PRIVAT.exe", "suggestedAction" : { "archiveDir" : false, "chromeExtensionOther" : false, "chromeExtensionPreferences" : false, "chromeExtensionSecurePreferences" : false, "chromeExtensionSyncData" : false, "chromeUrlOther" : false, "chromeUrlSecurePreferences" : false, "chromeUrlSyncData" : false, "chromeUrlWebData" : false, "disableHubbleWhiteListing" : true, "disableSignatureWhiteListing" : true, "fileDelete" : true, "fileReplace" : false, "fileTxtReplace" : false, "folderDelete" : false, "isChromeObject" : false, "isDDS" : true, "isDoppleganging" : false, "isExternalDetection" : false, "isPUP" : false, "isShuriken" : false, "isWMIEventConsumer" : false, "killProcess" : false, "minimalWhiteListing" : false, "moduleUnload" : false, "noLinking" : false, "physicalSectorReplace" : false, "priorityHigh" : false, "priorityNormal" : false, "priorityUrgent" : false, "processUnload" : false, "regKeyDelete" : false, "regValueDelete" : false, "regValueReplace" : false, "shortcutReplace" : false, "silentMode" : false, "singleDelete" : false, "treatAsRootkit" : false, "useDDA" : false, "verifyResolvedPath" : true, "whitelistCheckError" : true }, "winVerifyTrustResult" : { "expectedError" : true, "lastErrorCode" : -2146762496, "wvtCalled" : true, "wvtResult" : -2146762496 } }, "ruleID" : 473932, "ruleString" : "64823C0DF8575084FF3BDED2", "rulesVersion" : "1.0.37263", "srcEngineComponent" : "dds", "srcEngineThreatNames" : [ "Malware.AI.4282113746" ], "threatID" : 3459, "threatName" : "RiskWare.HackTool" }, { "ddsSigFileVersion" : "01122568", "linkedTraces" : [ ], "mainTrace" : { "archiveMember" : "", "archiveMemberMD5" : "", "cleanAction" : "quarantine", "cleanContext" : { }, "cleanResult" : "successful", "cleanResultErrorCode" : 0, "cleanTime" : "2021-04-10T09:07:52Z", "generatedByPostCleanupAction" : false, "hubbleRequestErrorCode" : -8, "id" : "1052f1ad-99dc-11eb-a81c-005056b197cd", "igExitCode" : "", "isPEFile" : true, "isPEFileValid" : true, "linkType" : "none", "objectMD5" : "62B039B2AF7BF5F6ABF35EF903024300", "objectPath" : "C:\\USERS\\MYSQLSERVER\\DESKTOP\\NL 2\\NLBRUTE 1.2 X64 & VPN - KEYGEN.EXE", "objectSha256" : "83D7F6EAF7FE075503EA6A0BC726633C34595A6EAE7EDD7DEAB95AB4D4A66FD5", "objectSize" : 2583040, "objectType" : "file", "resolvedPath" : "C:\\Users\\MYSQLSERVER\\Desktop\\NL 2\\NLBrute 1.2 x64 & VPN - KeyGen.exe", "suggestedAction" : { "archiveDir" : false, "chromeExtensionOther" : false, "chromeExtensionPreferences" : false, "chromeExtensionSecurePreferences" : false, "chromeExtensionSyncData" : false, "chromeUrlOther" : false, "chromeUrlSecurePreferences" : false, "chromeUrlSyncData" : false, "chromeUrlWebData" : false, "disableHubbleWhiteListing" : true, "disableSignatureWhiteListing" : true, "fileDelete" : true, "fileReplace" : false, "fileTxtReplace" : false, "folderDelete" : false, "isChromeObject" : false, "isDDS" : true, "isDoppleganging" : false, "isExternalDetection" : false, "isPUP" : false, "isShuriken" : false, "isWMIEventConsumer" : false, "killProcess" : false, "minimalWhiteListing" : false, "moduleUnload" : false, "noLinking" : false, "physicalSectorReplace" : false, "priorityHigh" : false, "priorityNormal" : false, "priorityUrgent" : false, "processUnload" : false, "regKeyDelete" : false, "regValueDelete" : false, "regValueReplace" : false, "shortcutReplace" : false, "silentMode" : false, "singleDelete" : false, "treatAsRootkit" : false, "useDDA" : false, "verifyResolvedPath" : true, "whitelistCheckError" : true }, "winVerifyTrustResult" : { "expectedError" : true, "lastErrorCode" : -2146762496, "wvtCalled" : true, "wvtResult" : -2146762496 } }, "ruleID" : 589444, "ruleString" : "0000000000000000000003EB", "rulesVersion" : "1.0.37263", "srcEngineComponent" : "dds", "srcEngineThreatNames" : [ "Malware.Heuristic.1003" ], "threatID" : 497, "threatName" : "CrackTool.Agent.Keygen" }, { "ddsSigFileVersion" : "01122568", "linkedTraces" : [ ], "mainTrace" : { "archiveMember" : "", "archiveMemberMD5" : "", "cleanAction" : "quarantine", "cleanContext" : { }, "cleanResult" : "successful", "cleanResultErrorCode" : 0, "cleanTime" : "2021-04-10T09:07:52Z", "generatedByPostCleanupAction" : false, "hubbleRequestErrorCode" : -8, "id" : "1052f1ae-99dc-11eb-96e6-005056b197cd", "igExitCode" : "", "isPEFile" : true, "isPEFileValid" : true, "linkType" : "none", "objectMD5" : "62B039B2AF7BF5F6ABF35EF903024300", "objectPath" : "C:\\USERS\\MYSQLSERVER\\DESKTOP\\NL 5\\NLBRUTE 1.2 X64 & VPN - KEYGEN.EXE", "objectSha256" : "83D7F6EAF7FE075503EA6A0BC726633C34595A6EAE7EDD7DEAB95AB4D4A66FD5", "objectSize" : 2583040, "objectType" : "file", "resolvedPath" : "C:\\Users\\MYSQLSERVER\\Desktop\\NL 5\\NLBrute 1.2 x64 & VPN - KeyGen.exe", "suggestedAction" : { "archiveDir" : false, "chromeExtensionOther" : false, "chromeExtensionPreferences" : false, "chromeExtensionSecurePreferences" : false, "chromeExtensionSyncData" : false, "chromeUrlOther" : false, "chromeUrlSecurePreferences" : false, "chromeUrlSyncData" : false, "chromeUrlWebData" : false, "disableHubbleWhiteListing" : true, "disableSignatureWhiteListing" : true, "fileDelete" : true, "fileReplace" : false, "fileTxtReplace" : false, "folderDelete" : false, "isChromeObject" : false, "isDDS" : true, "isDoppleganging" : false, "isExternalDetection" : false, "isPUP" : false, "isShuriken" : false, "isWMIEventConsumer" : false, "killProcess" : false, "minimalWhiteListing" : false, "moduleUnload" : false, "noLinking" : false, "physicalSectorReplace" : false, "priorityHigh" : false, "priorityNormal" : false, "priorityUrgent" : false, "processUnload" : false, "regKeyDelete" : false, "regValueDelete" : false, "regValueReplace" : false, "shortcutReplace" : false, "silentMode" : false, "singleDelete" : false, "treatAsRootkit" : false, "useDDA" : false, "verifyResolvedPath" : true, "whitelistCheckError" : true }, "winVerifyTrustResult" : { "expectedError" : true, "lastErrorCode" : -2146762496, "wvtCalled" : true, "wvtResult" : -2146762496 } }, "ruleID" : 589444, "ruleString" : "0000000000000000000003EB", "rulesVersion" : "1.0.37263", "srcEngineComponent" : "dds", "srcEngineThreatNames" : [ "Malware.Heuristic.1003" ], "threatID" : 497, "threatName" : "CrackTool.Agent.Keygen" }, { "ddsSigFileVersion" : "01122568", "linkedTraces" : [ ], "mainTrace" : { "archiveMember" : "", "archiveMemberMD5" : "", "cleanAction" : "quarantine", "cleanContext" : { }, "cleanResult" : "successful", "cleanResultErrorCode" : 0, "cleanTime" : "2021-04-10T09:07:52Z", "generatedByPostCleanupAction" : false, "hubbleRequestErrorCode" : -8, "id" : "1052f1af-99dc-11eb-9432-005056b197cd", "igExitCode" : "", "isPEFile" : true, "isPEFileValid" : true, "linkType" : "none", "objectMD5" : "62B039B2AF7BF5F6ABF35EF903024300", "objectPath" : "C:\\USERS\\MYSQLSERVER\\DESKTOP\\NL 4\\NLBRUTE 1.2 X64 & VPN - KEYGEN.EXE", "objectSha256" : "83D7F6EAF7FE075503EA6A0BC726633C34595A6EAE7EDD7DEAB95AB4D4A66FD5", "objectSize" : 2583040, "objectType" : "file", "resolvedPath" : "C:\\Users\\MYSQLSERVER\\Desktop\\NL 4\\NLBrute 1.2 x64 & VPN - KeyGen.exe", "suggestedAction" : { "archiveDir" : false, "chromeExtensionOther" : false, "chromeExtensionPreferences" : false, "chromeExtensionSecurePreferences" : false, "chromeExtensionSyncData" : false, "chromeUrlOther" : false, "chromeUrlSecurePreferences" : false, "chromeUrlSyncData" : false, "chromeUrlWebData" : false, "disableHubbleWhiteListing" : true, "disableSignatureWhiteListing" : true, "fileDelete" : true, "fileReplace" : false, "fileTxtReplace" : false, "folderDelete" : false, "isChromeObject" : false, "isDDS" : true, "isDoppleganging" : false, "isExternalDetection" : false, "isPUP" : false, "isShuriken" : false, "isWMIEventConsumer" : false, "killProcess" : false, "minimalWhiteListing" : false, "moduleUnload" : false, "noLinking" : false, "physicalSectorReplace" : false, "priorityHigh" : false, "priorityNormal" : false, "priorityUrgent" : false, "processUnload" : false, "regKeyDelete" : false, "regValueDelete" : false, "regValueReplace" : false, "shortcutReplace" : false, "silentMode" : false, "singleDelete" : false, "treatAsRootkit" : false, "useDDA" : false, "verifyResolvedPath" : true, "whitelistCheckError" : true }, "winVerifyTrustResult" : { "expectedError" : true, "lastErrorCode" : -2146762496, "wvtCalled" : true, "wvtResult" : -2146762496 } }, "ruleID" : 589444, "ruleString" : "0000000000000000000003EB", "rulesVersion" : "1.0.37263", "srcEngineComponent" : "dds", "srcEngineThreatNames" : [ "Malware.Heuristic.1003" ], "threatID" : 497, "threatName" : "CrackTool.Agent.Keygen" }, { "ddsSigFileVersion" : "01122568", "linkedTraces" : [ ], "mainTrace" : { "archiveMember" : "", "archiveMemberMD5" : "", "cleanAction" : "quarantine", "cleanContext" : { }, "cleanResult" : "successful", "cleanResultErrorCode" : 0, "cleanTime" : "2021-04-10T09:07:52Z", "generatedByPostCleanupAction" : false, "hubbleRequestErrorCode" : -8, "id" : "119dac96-99dc-11eb-a4d7-005056b197cd", "igExitCode" : "", "isPEFile" : true, "isPEFileValid" : true, "linkType" : "none", "objectMD5" : "D2BE607ECDBEE61CFA3843D3B8C2DE13", "objectPath" : "C:\\USERS\\MYSQLSERVER\\DESKTOP\\NL 3\\TITAN_PRIVAT.EXE", "objectSha256" : "A332F863DA1709B27B62F3A3F2A06DCA48C7DABE6B8DB76EC7BB81CE3786E527", "objectSize" : 6943232, "objectType" : "file", "resolvedPath" : "C:\\Users\\MYSQLSERVER\\Desktop\\NL 3\\TITAN_PRIVAT.exe", "suggestedAction" : { "archiveDir" : false, "chromeExtensionOther" : false, "chromeExtensionPreferences" : false, "chromeExtensionSecurePreferences" : false, "chromeExtensionSyncData" : false, "chromeUrlOther" : false, "chromeUrlSecurePreferences" : false, "chromeUrlSyncData" : false, "chromeUrlWebData" : false, "disableHubbleWhiteListing" : true, "disableSignatureWhiteListing" : true, "fileDelete" : true, "fileReplace" : false, "fileTxtReplace" : false, "folderDelete" : false, "isChromeObject" : false, "isDDS" : true, "isDoppleganging" : false, "isExternalDetection" : false, "isPUP" : false, "isShuriken" : false, "isWMIEventConsumer" : false, "killProcess" : false, "minimalWhiteListing" : false, "moduleUnload" : false, "noLinking" : false, "physicalSectorReplace" : false, "priorityHigh" : false, "priorityNormal" : false, "priorityUrgent" : false, "processUnload" : false, "regKeyDelete" : false, "regValueDelete" : false, "regValueReplace" : false, "shortcutReplace" : false, "silentMode" : false, "singleDelete" : false, "treatAsRootkit" : false, "useDDA" : false, "verifyResolvedPath" : true, "whitelistCheckError" : true }, "winVerifyTrustResult" : { "expectedError" : true, "lastErrorCode" : -2146762496, "wvtCalled" : true, "wvtResult" : -2146762496 } }, "ruleID" : 473932, "ruleString" : "64823C0DF8575084FF3BDED2", "rulesVersion" : "1.0.37263", "srcEngineComponent" : "dds", "srcEngineThreatNames" : [ "Malware.AI.4282113746" ], "threatID" : 3459, "threatName" : "RiskWare.HackTool" }, { "ddsSigFileVersion" : "01122568", "linkedTraces" : [ ], "mainTrace" : { "archiveMember" : "", "archiveMemberMD5" : "", "cleanAction" : "quarantine", "cleanContext" : { }, "cleanResult" : "successful", "cleanResultErrorCode" : 0, "cleanTime" : "2021-04-10T09:07:52Z", "generatedByPostCleanupAction" : false, "hubbleRequestErrorCode" : -8, "id" : "174c4378-99dc-11eb-a62a-005056b197cd", "igExitCode" : "", "isPEFile" : true, "isPEFileValid" : true, "linkType" : "none", "objectMD5" : "62B039B2AF7BF5F6ABF35EF903024300", "objectPath" : "C:\\USERS\\MYSQLSERVER\\DESKTOP\\NL 3\\NLBRUTE 1.2 X64 & VPN - KEYGEN.EXE", "objectSha256" : "83D7F6EAF7FE075503EA6A0BC726633C34595A6EAE7EDD7DEAB95AB4D4A66FD5", "objectSize" : 2583040, "objectType" : "file", "resolvedPath" : "C:\\Users\\MYSQLSERVER\\Desktop\\NL 3\\NLBrute 1.2 x64 & VPN - KeyGen.exe", "suggestedAction" : { "archiveDir" : false, "chromeExtensionOther" : false, "chromeExtensionPreferences" : false, "chromeExtensionSecurePreferences" : false, "chromeExtensionSyncData" : false, "chromeUrlOther" : false, "chromeUrlSecurePreferences" : false, "chromeUrlSyncData" : false, "chromeUrlWebData" : false, "disableHubbleWhiteListing" : true, "disableSignatureWhiteListing" : true, "fileDelete" : true, "fileReplace" : false, "fileTxtReplace" : false, "folderDelete" : false, "isChromeObject" : false, "isDDS" : true, "isDoppleganging" : false, "isExternalDetection" : false, "isPUP" : false, "isShuriken" : false, "isWMIEventConsumer" : false, "killProcess" : false, "minimalWhiteListing" : false, "moduleUnload" : false, "noLinking" : false, "physicalSectorReplace" : false, "priorityHigh" : false, "priorityNormal" : false, "priorityUrgent" : false, "processUnload" : false, "regKeyDelete" : false, "regValueDelete" : false, "regValueReplace" : false, "shortcutReplace" : false, "silentMode" : false, "singleDelete" : false, "treatAsRootkit" : false, "useDDA" : false, "verifyResolvedPath" : true, "whitelistCheckError" : true }, "winVerifyTrustResult" : { "expectedError" : true, "lastErrorCode" : -2146762496, "wvtCalled" : true, "wvtResult" : -2146762496 } }, "ruleID" : 589444, "ruleString" : "0000000000000000000003EB", "rulesVersion" : "1.0.37263", "srcEngineComponent" : "dds", "srcEngineThreatNames" : [ "Malware.Heuristic.1003" ], "threatID" : 497, "threatName" : "CrackTool.Agent.Keygen" } ], "threatsDetected" : 12 }