Detected presence of malicious files by a heuristic signature. (x1)

Detected presence of files containing URLs that use suspicious top-level domains. (x1)

Detected presence of files containing URLs that use punycode-spoofed variations of trusted domains. (x1)

Detected presence of files with behaviors commonly used by malicious software. (x1)

Detected presence of plaintext credentials within network protocol strings. (x1)

Detected Windows shared library files that do not suppress exports which reduces CFG vulnerability mitigation protection effectiveness. (x1)

Detected presence of files containing URLs that use non-standard ports. (x3)

Detected Windows executable files that do not implement long jump control flow vulnerability mitigation protection. (x1)