H
HASBI HISMANUDIN
Guest
Good morning,I detect file update.exe with hash VirusTotal in my company and i found ip traffic cnc in behavior update.exe and hash malicious in virus totalUDP a83f:8110:8000:0:0:0:8000:0:53UDP 192.168.0.47:137TCP 20.99.185.48:443TCP 52.154.209.174:443TCP 23.44.252.205:80 (www.microsoft.com)TCP 152.195.19.97:443 (res.public.onecdn.static.microsoft)TCP 20.99.186.246:443This is legitimate or malicious? Because i found ip microsoft
Continue reading...
Continue reading...