![]() String found in binary or memory: p2.globals ign.com/ro otr306 String found in binary or memory: p2.globals ign.com/gs timestampi ngg20 String found in binary or memory: p2.globals ign.com/gs extendcode signsha2g3 0U String found in binary or memory: /i nformaciya /91-manife st.html String found in binary or memory: /h ttp://lrep String found in binary or memory: /d onate.html String found in binary or memory: s.oasis-op en.org/wss /2004/01/o asis-20040 1-wss-wsse curity-uti lity-1.0.x sd String found in binary or memory: s.oasis-op en.org/wss /2004/01/o asis-20040 1-wss-wsse curity-sec ext-1.0.xs d globalsig n.com/gsex tendcodesi gnsha2g3.c rl0 globalsig n.com/gs/g stimestamp ingg2.crl0 String found in binary or memory: Http://lre /i nformaciya /91-manife st.html String found in binary or memory: Http://lre /d onate.html 0) like Ge ckoAccept- Encoding: gzip, defl ateHost: l Connection : Keep-Ali veĭNS traffic detected: queries fo r: lrepack s.ru HTTP traffic detected: GET / HTTP /1.1Accept : text/htm l, applica tion/xhtml +xml, imag e/jxr, */* Accept-Lan guage: en- USUser-Age nt: Mozill a/5.0 (Win dows NT 10. JA3 SSL client fingerprint seen in connection with other malware IP address seen in connection with other malware 1498.tmpĬode function: 7_2_0045EA 70 FindFir stFileA,Ge tLastError ,Ĭode function: 7_2_00480B 88 FindFir stFileA,Fi ndNextFile A,FindClos e,įile opened: C:\Users\u ser\AppDat a\Roamingįile opened: C:\Users\u ser\AppDat a\Roaming\ Microsoft\ Windows\St art Menu\d esktop.iniįile opened: C:\Users\u ser\AppDat a\Roaming\ Microsoftįile opened: C:\Users\u ser\AppDat a\Roaming\ Microsoft\ Windows Source: C:\Users\u ser\AppDat a\Local\Te mp\is-HMQB L.tmp\Tree Size 8.0.1. 1498.tmpĬode function: 4_2_0045EA 70 FindFir stFileA,Ge tLastError ,Ĭode function: 4_2_00480B 88 FindFir stFileA,Fi ndNextFile A,FindClos e,Ĭode function: 4_2_0046F1 8C SetErro rMode,Find FirstFileA ,FindNextF ileA,FindC lose,SetEr rorMode, Source: C:\Users\u ser\AppDat a\Local\Te mp\is-EOJ9 2.tmp\Tree Size 8.0.1. ![]() 1498.tmpĬode function: 2_2_0045EA 70 FindFir stFileA,Ge tLastError ,Ĭode function: 2_2_00480B 88 FindFir stFileA,Fi ndNextFile A,FindClos e, Source: C:\Users\u ser\AppDat a\Local\Te mp\is-K0C1 9.tmp\Tree Size 8.0.1. exeĬontains functionality to enumerate / list files inside a directory ![]() Source: C:\Program Files (x8 6)\Interne t Explorer \iexplore. Source: C:\Program Files\JAM Software\ TreeSize\T reeSize.ex e Checks for available system drives (often done to infect USB drives)
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |