5Y2fQoEhHT.exe
| Engine | Download Report | Detection | Info |
|---|---|---|---|
|
|
malicious
|
||
|
|
malicious
Score: 96
|
System: Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 134, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
|
| IP | Country | Detection |
|---|---|---|
| 208.95.112.1 | United States |  |
| 149.154.167.220 | United Kingdom | |
| Name | IP | Detection |
|---|---|---|
| ip-api.com | 208.95.112.1 | |
| api.telegram.org | 149.154.167.220 | |
| cothdesigns2.com | 37.139.129.221 | |
| Name | Detection |
|---|---|
| https://github.com/Pester/Pester | |
| http://cothdesigns2.com:443/xmlo2.msi | |
| http://atziztfo.com:443/cmd.msi | |
| Click to see the 22 hidden entries | |
| http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name | |
| http://api.telegram.org | |
| http://ip-api.com/xml/ | |
| http://atziztfo.com:443/wniavctm.msi | |
| http://atziztfo.com:443/ubotwmqh.msi | |
| http://ip-api.com | |
| http://cothdesigns2.com:443 | |
| http://crl.microsoft.co | |
| http://crl.microsof | |
| https://api.telegram.orgx | |
| http://cothdesigns2.com:443/obieznne.msi | |
| http://ip-api.comx | |
| http://cothdesigns2.com:443/cmd.msi | |
| http://www.microsoft. | |
| http://atziztfo.com:443/xmlw2.msi | |
| https://api.telegram.org/botC | |
| http://cothdesigns2.c | |
| http://www.apache.org/licenses/LICENSE-2.0.html | |
| https://api.telegram.org/bot | |
| http://pesterbdd.com/images/Pester.png | |
| https://api.telegram.org | |
| https://api.telegram.org/bot5538205016:AAH7S9IGtFpb6RbC8W2TfNkjD7Cj_3qxCnI/sendMessage | |
| Name | File Type | Hashes | Detection |
|---|---|---|---|
C:\ProgramData\Google\unzip.exe |
PE32 executable (console) Intel 80386, for MS Windows | # |  |
C:\Users\user\AppData\Local\Microsoft\CLR_v4.0\UsageLogs\5Y2fQoEhHT.exe.log |
ASCII text, with CRLF line terminators | # | |
