Virus

Riskware/KuaiZip

Analysis

Riskware/KuaiZip is a generic detection for a Riskware.
Since this is a generic detection, malware that are detected as Riskware/KuaiZip may have varying behaviour.
Below are some of its observed characteristics/behaviours:

This Riskware has been observed to connect to new[Removed].7654.com/mini_new3/jsb/

The Riskware displays an Adult Oriented User Interface:
Figure 1: Interface.

Recommended Action

Make sure that your FortiGate/FortiClient system is using the latest AV database.
Quarantine/delete files that are detected and replace infected files with clean backup copies.

Detection Availability

FortiGate
FortiClient
FortiAPS
FortiAPU
FortiMail
FortiSandbox
FortiWeb
Web Application Firewall
FortiIsolator
FortiDeceptor
FortiEDR

Version Updates

Date	Version	Detail
2023-12-08	91.09522
2023-12-07	91.09512
2023-12-07	91.09506
2023-12-06	91.09477
2023-12-06	91.09473
2023-12-03	91.09380
2023-12-02	91.09350
2023-12-02	91.09346
2023-11-30	91.09302
2023-11-29	91.09265

ID	7006110
Released	Feb 26, 2020
Description Updated	Mar 18, 2016
Aliases	not-a-virus:HEUR:RiskTool.Win32.KuaiZip.gen,PUP-XHW-XZ application,TROJ_GEN.R057C0PBP20,Win32/KuaiZip.W potentially unwanted application
Platform Profile	Riskware is a term for potentially unwanted or dangerous software programs that do not fall under Adware. They could be legitimate software applications that may be misused and pose possible security risks to users.