Threat name: Virus/Win32.WGeneric.ahiied
Threat ID: 320197275
File Hash: d67f35e5da420ab1e07e416c74bd7fbf7483c2f3a9e158ae3c48bdc14cad315d
Virustotal verdict: 0/71
Description: Visma InSchool Primus client ver: 4.60.16
Our internal traffic drop due to virus, i have checked on threat vault its shows threat id : 338884308
but there is no any changers in system we have scanned using end point protection but we cannot find any virus on mentioned server,
its shows name as : Virus/Win32.WGeneric.aiuxue
according to therat vault its having Hash sha256 value : 1e685762043b7177da14105fc1a7f4602f4389ae23fca600f92f0440b11ce4e8
but i have checked on monitoring section on our paloalto firewall its shown some file name i have checked that file hash also but hashes are not same.
that hashes : SHA256: BD35A2CB0F0595E5A25A72BA5B2E35BE0F76E8BCCAFE77CC8A7370C58EFD1471
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!