Virus

Riskware/KuaiZip

Analysis

Riskware/KuaiZip is a generic detection for a Riskware.
Since this is a generic detection, malware that are detected as Riskware/KuaiZip may have varying behaviour.
Below are some of its observed characteristics/behaviours:

This Riskware has been observed to connect to new[Removed].7654.com/mini_new3/jsb/

The Riskware displays an Adult Oriented User Interface:
Figure 1: Interface.

Recommended Action

Make sure that your FortiGate/FortiClient system is using the latest AV database.
Quarantine/delete files that are detected and replace infected files with clean backup copies.

Detection Availability

FortiGate
FortiClient
FortiAPS
FortiAPU
FortiMail
FortiSandbox
FortiWeb
Web Application Firewall
FortiIsolator
FortiDeceptor
FortiEDR

Version Updates

Date	Version	Detail
2024-04-24	92.03667
2024-04-23	92.03625
2024-04-22	92.03612
2024-04-22	92.03607
2024-04-18	92.03503
2024-04-15	92.03397
2024-04-14	92.03367
2024-04-13	92.03351
2024-04-13	92.03350
2024-04-13	92.03347

ID	7006110
Released	Feb 26, 2020
Description Updated	Mar 18, 2016
Aliases	not-a-virus:HEUR:RiskTool.Win32.KuaiZip.gen,PUP-XHW-XZ application,TROJ_GEN.R057C0PBP20,Win32/KuaiZip.W potentially unwanted application
Platform Profile	Riskware is a term for potentially unwanted or dangerous software programs that do not fall under Adware. They could be legitimate software applications that may be misused and pose possible security risks to users.