Automated Malware Analysis IOC Report for

Details

Filetype:	PE32 executable (GUI) Intel 80386, for MS Windows
Entropy:	7.999022513003077
Filename:	ppadsetup.exe
Filesize:	3113128
MD5:	ede1757f5e2021ef1bd1eab95e3bf050
SHA1:	7f7b7292c23768bda2d0bc265b2206b3f71f56ce
SHA256:	5fd9f3598e9014c1e322e18ff8858694e9d9bfc3f7b76f0ff7c48aaaf613e8d3
SHA512:	1cf19bc7936cb6fb72c7d67936d0a5945fc66f563cdb7dfa2dfe5a9aab5ab5239341fed0dc278af4d08cac131b9c6f886f956a478827d608e8938ea900f6865d
SSDEEP:	49152:tldP2q4OWPuzwlYxnkM6zEXAGEDBSsKvucz7u1wCQS4S19c6X8VEH0s7GW53ifhQ:tldP51WP69eZzmEDAXvX4qOLX8SHt3Sm
Preview:	MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$.......W.!z..O)..O)..O)...)..O)..N)3.O)...)..O)...)..O)...)..O)Rich..O)................PE..L......e....................."/............

Signature Hits	Behavior Group	Mitre Attack
Creates a process in suspended mode (likely to inject code)	HIPS / PFW / Operating System Protection Evasion	Process Injection
DLL planting / hijacking vulnerabilities found	Privilege Escalation, Compliance	DLL Search Order Hijacking
PE file contains executable resources (Code or Archives)	System Summary
Queries the installation date of Windows	Language, Device and Operating System Detection
Uses 32bit PE files	Compliance, System Summary	Masquerading
Creates temporary files	System Summary
Disables application error messsages (SetErrorMode)	Hooking and other Techniques for Hiding and Protection
PE file has an executable .text section and no other executable section	System Summary
Reads ini files	System Summary	File and Directory Discovery
Reads software policies	System Summary
Uses an in-process (OLE) Automation server	System Summary
Contains modern PE file flags such as dynamic base (ASLR) or NX	Compliance, System Summary
PE file has a big raw section	System Summary
PE / OLE file has a valid certificate	Compliance, System Summary
Submission file is bigger than most known malware samples	System Summary

Details

File:	C:\Users\user\AppData\Local\Temp\n1s\nchsetup.exe
Category:	dropped
Dump:	nchsetup.exe.0.dr
ID:	dr_1
Target ID:	0
Process:	C:\Users\user\Desktop\ppadsetup.exe
Type:	PE32 executable (GUI) Intel 80386, for MS Windows
Entropy:	6.507310732641724
Encrypted:	false
Size:	7282856
Whitelisted:	false
Reputation:	low

Signature Hits	Behavior Group	Mitre Attack
Yara detected Parallax RAT	Stealing of Sensitive Information, Remote Access Functionality
Creates a process in suspended mode (likely to inject code)	HIPS / PFW / Operating System Protection Evasion	Process Injection
Drops PE files	Persistence and Installation Behavior
Found dropped PE file which has not been started or loaded	Malware Analysis System Evasion
Queries the volume information (name, serial number etc) of a device	Language, Device and Operating System Detection	System Information Discovery
Stores files to the Windows start menu directory	Boot Survival	Registry Run Keys / Startup Folder
Creates an autostart registry key	Boot Survival	Registry Run Keys / Startup Folder
Creates files inside the program directory	System Summary	Masquerading
Creates files inside the user directory	System Summary	Masquerading
Creates guard pages, often used to prevent reverse engineering and debugging	Anti Debugging	Disable or Modify Tools
Disables application error messsages (SetErrorMode)	Hooking and other Techniques for Hiding and Protection
Queries a list of all running processes	Malware Analysis System Evasion	Process Discovery
Spawns processes	System Summary	Process Injection

Details

File:	C:\Program Files (x86)\NCH Software\PhotoPad\photopadsetup_v11.92.exe
Category:	dropped
Dump:	photopadsetup_v11.92.exe.2.dr
ID:	dr_32
Target ID:	2
Process:	C:\Users\user\AppData\Local\Temp\n1s\nchsetup.exe
Type:	PE32 executable (GUI) Intel 80386, for MS Windows
Entropy:	7.999022513003077
Encrypted:	true
Size:	3113128
Whitelisted:	false
Reputation:	low

Signature Hits	Behavior Group	Mitre Attack
Drops PE files	Persistence and Installation Behavior

Details

File:	C:\Program Files (x86)\NCH Software\PhotoPad\photopadsetup_v11.92.exe:Zone.Identifier
Category:	modified
Dump:	photopadsetup_v11.92.exe_Zone.Identifier.2.dr
ID:	dr_25
Target ID:	2
Process:	C:\Users\user\AppData\Local\Temp\n1s\nchsetup.exe
Type:	ASCII text, with CRLF line terminators
Entropy:	3.95006375643621
Encrypted:	false
Size:	26
Whitelisted:	false
Reputation:	low

Details

File:	C:\Program Files (x86)\NCH Software\PhotoPad\shellmenu.dll
Category:	dropped
Dump:	shellmenu.dll.2.dr
ID:	dr_30
Target ID:	2
Process:	C:\Users\user\AppData\Local\Temp\n1s\nchsetup.exe
Type:	PE32+ executable (DLL) (GUI) x86-64, for MS Windows
Entropy:	6.107319660711233
Encrypted:	false
Size:	143360
Whitelisted:	false
Reputation:	low

Signature Hits	Behavior Group	Mitre Attack
Drops PE files	Persistence and Installation Behavior
Found dropped PE file which has not been started or loaded	Malware Analysis System Evasion

Details

File:	C:\Program Files (x86)\NCH Software\PhotoPad\shellmenua.msix
Category:	dropped
Dump:	shellmenua.msix.2.dr
ID:	dr_31
Target ID:	2
Process:	C:\Users\user\AppData\Local\Temp\n1s\nchsetup.exe
Type:	Zip archive data, at least v4.5 to extract, compression method=deflate
Entropy:	7.914018187001045
Encrypted:	false
Size:	9540
Whitelisted:	false
Reputation:	low

Details

File:	C:\Program Files (x86)\NCH Software\PhotoPad\shellmenub.msix
Category:	dropped
Dump:	shellmenub.msix.2.dr
ID:	dr_14
Target ID:	2
Process:	C:\Users\user\AppData\Local\Temp\n1s\nchsetup.exe
Type:	Zip archive data, at least v4.5 to extract, compression method=deflate
Entropy:	7.9192868692230105
Encrypted:	false
Size:	9548
Whitelisted:	false
Reputation:	low

Details

File:	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCH Software Suite\Accounting Software.lnk
Category:	dropped
Dump:	Accounting Software.lnk.2.dr
ID:	dr_9
Target ID:	2
Process:	C:\Users\user\AppData\Local\Temp\n1s\nchsetup.exe
Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Description string, Has Relative path, Has command line arguments, Icon number=19, Archive, ctime=Tue Dec 5 02:39:51 2023, mtime=Tue Dec 5 02:39:52 2023, atime=Mon Dec 4 08:32:32 2023, length=7282856, window=hide
Entropy:	4.6039586911080415
Encrypted:	false
Size:	1333
Whitelisted:	false
Reputation:	low

Signature Hits	Behavior Group	Mitre Attack
Stores files to the Windows start menu directory	Boot Survival	Registry Run Keys / Startup Folder

Details

File:	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCH Software Suite\Audio Editing Software.lnk
Category:	dropped
Dump:	Audio Editing Software.lnk0.2.dr
ID:	dr_53
Target ID:	2
Process:	C:\Users\user\AppData\Local\Temp\n1s\nchsetup.exe
Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Description string, Has Relative path, Has command line arguments, Icon number=19, Archive, ctime=Tue Dec 5 02:39:51 2023, mtime=Tue Dec 5 02:39:52 2023, atime=Mon Dec 4 08:32:32 2023, length=7282856, window=hide
Entropy:	4.597161859596456
Encrypted:	false
Size:	1323
Whitelisted:	false
Reputation:	low

Signature Hits	Behavior Group	Mitre Attack
Stores files to the Windows start menu directory	Boot Survival	Registry Run Keys / Startup Folder

Details

File:	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCH Software Suite\Audio File Converter.lnk
Category:	dropped
Dump:	Audio File Converter.lnk0.2.dr
ID:	dr_55
Target ID:	2
Process:	C:\Users\user\AppData\Local\Temp\n1s\nchsetup.exe
Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Description string, Has Relative path, Has command line arguments, Icon number=19, Archive, ctime=Tue Dec 5 02:39:51 2023, mtime=Tue Dec 5 02:39:52 2023, atime=Mon Dec 4 08:32:32 2023, length=7282856, window=hide
Entropy:	4.6057010077081815
Encrypted:	false
Size:	1317
Whitelisted:	false
Reputation:	low

Signature Hits	Behavior Group	Mitre Attack
Stores files to the Windows start menu directory	Boot Survival	Registry Run Keys / Startup Folder

Details

File:	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCH Software Suite\Classic FTP Software.lnk
Category:	dropped
Dump:	Classic FTP Software.lnk.2.dr
ID:	dr_21
Target ID:	2
Process:	C:\Users\user\AppData\Local\Temp\n1s\nchsetup.exe
Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Description string, Has Relative path, Has command line arguments, Icon number=19, Archive, ctime=Tue Dec 5 02:39:51 2023, mtime=Tue Dec 5 02:39:52 2023, atime=Mon Dec 4 08:32:32 2023, length=7282856, window=hide
Entropy:	4.601831922503475
Encrypted:	false
Size:	1325
Whitelisted:	false
Reputation:	low

Signature Hits	Behavior Group	Mitre Attack
Stores files to the Windows start menu directory	Boot Survival	Registry Run Keys / Startup Folder

Details

File:	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCH Software Suite\Diagram and Flowchart Software.lnk
Category:	dropped
Dump:	Diagram and Flowchart Software.lnk.2.dr
ID:	dr_12
Target ID:	2
Process:	C:\Users\user\AppData\Local\Temp\n1s\nchsetup.exe
Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Description string, Has Relative path, Has command line arguments, Icon number=19, Archive, ctime=Tue Dec 5 02:39:51 2023, mtime=Tue Dec 5 02:39:52 2023, atime=Mon Dec 4 08:32:32 2023, length=7282856, window=hide
Entropy:	4.589001998609886
Encrypted:	false
Size:	1347
Whitelisted:	false
Reputation:	low

Signature Hits	Behavior Group	Mitre Attack
Stores files to the Windows start menu directory	Boot Survival	Registry Run Keys / Startup Folder

Details

File:	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCH Software Suite\Doxillion Document Converter.lnk
Category:	dropped
Dump:	Doxillion Document Converter.lnk.2.dr
ID:	dr_15
Target ID:	2
Process:	C:\Users\user\AppData\Local\Temp\n1s\nchsetup.exe
Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Description string, Has Relative path, Has command line arguments, Icon number=19, Archive, ctime=Tue Dec 5 02:39:51 2023, mtime=Tue Dec 5 02:39:52 2023, atime=Mon Dec 4 08:32:32 2023, length=7282856, window=hide
Entropy:	4.596438784488791
Encrypted:	false
Size:	1339
Whitelisted:	false
Reputation:	low

Signature Hits	Behavior Group	Mitre Attack
Stores files to the Windows start menu directory	Boot Survival	Registry Run Keys / Startup Folder

Details

File:	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCH Software Suite\Express Burn CD, DVD or Blu-Ray.lnk
Category:	dropped
Dump:	Express Burn CD, DVD or Blu-Ray.lnk.2.dr
ID:	dr_4
Target ID:	2
Process:	C:\Users\user\AppData\Local\Temp\n1s\nchsetup.exe
Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Description string, Has Relative path, Has command line arguments, Icon number=19, Archive, ctime=Tue Dec 5 02:39:51 2023, mtime=Tue Dec 5 02:39:52 2023, atime=Mon Dec 4 08:32:32 2023, length=7282856, window=hide
Entropy:	4.608225952048389
Encrypted:	false
Size:	1349
Whitelisted:	false
Reputation:	low

Signature Hits	Behavior Group	Mitre Attack
Stores files to the Windows start menu directory	Boot Survival	Registry Run Keys / Startup Folder

Details

File:	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCH Software Suite\House Design Software.lnk
Category:	dropped
Dump:	House Design Software.lnk.2.dr
ID:	dr_13
Target ID:	2
Process:	C:\Users\user\AppData\Local\Temp\n1s\nchsetup.exe
Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Description string, Has Relative path, Has command line arguments, Icon number=19, Archive, ctime=Tue Dec 5 02:39:51 2023, mtime=Tue Dec 5 02:39:52 2023, atime=Mon Dec 4 08:32:32 2023, length=7282856, window=hide
Entropy:	4.589987383094164
Encrypted:	false
Size:	1325
Whitelisted:	false
Reputation:	low

Signature Hits	Behavior Group	Mitre Attack
Stores files to the Windows start menu directory	Boot Survival	Registry Run Keys / Startup Folder

Details

File:	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCH Software Suite\Image File Converter.lnk
Category:	dropped
Dump:	Image File Converter.lnk.2.dr
ID:	dr_11
Target ID:	2
Process:	C:\Users\user\AppData\Local\Temp\n1s\nchsetup.exe
Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Description string, Has Relative path, Has command line arguments, Icon number=19, Archive, ctime=Tue Dec 5 02:39:51 2023, mtime=Tue Dec 5 02:39:52 2023, atime=Mon Dec 4 08:32:32 2023, length=7282856, window=hide
Entropy:	4.6005163758232746
Encrypted:	false
Size:	1323
Whitelisted:	false
Reputation:	low

Signature Hits	Behavior Group	Mitre Attack
Stores files to the Windows start menu directory	Boot Survival	Registry Run Keys / Startup Folder

Details

File:	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCH Software Suite\Invoice Software.lnk
Category:	dropped
Dump:	Invoice Software.lnk.2.dr
ID:	dr_5
Target ID:	2
Process:	C:\Users\user\AppData\Local\Temp\n1s\nchsetup.exe
Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Description string, Has Relative path, Has command line arguments, Icon number=19, Archive, ctime=Tue Dec 5 02:39:51 2023, mtime=Tue Dec 5 02:39:52 2023, atime=Mon Dec 4 08:32:32 2023, length=7282856, window=hide
Entropy:	4.609400323922549
Encrypted:	false
Size:	1325
Whitelisted:	false
Reputation:	low

Signature Hits	Behavior Group	Mitre Attack
Stores files to the Windows start menu directory	Boot Survival	Registry Run Keys / Startup Folder

Details

File:	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCH Software Suite\Multitrack Recording Software.lnk
Category:	dropped
Dump:	Multitrack Recording Software.lnk.2.dr
ID:	dr_8
Target ID:	2
Process:	C:\Users\user\AppData\Local\Temp\n1s\nchsetup.exe
Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Description string, Has Relative path, Has command line arguments, Icon number=19, Archive, ctime=Tue Dec 5 02:39:51 2023, mtime=Tue Dec 5 02:39:52 2023, atime=Mon Dec 4 08:32:32 2023, length=7282856, window=hide
Entropy:	4.603632075171244
Encrypted:	false
Size:	1335
Whitelisted:	false
Reputation:	low

Signature Hits	Behavior Group	Mitre Attack
Stores files to the Windows start menu directory	Boot Survival	Registry Run Keys / Startup Folder

Details

File:	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCH Software Suite\Photo Editing Software.lnk
Category:	dropped
Dump:	Photo Editing Software.lnk.2.dr
ID:	dr_10
Target ID:	2
Process:	C:\Users\user\AppData\Local\Temp\n1s\nchsetup.exe
Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Description string, Has Relative path, Has command line arguments, Icon number=19, Archive, ctime=Tue Dec 5 02:39:51 2023, mtime=Tue Dec 5 02:39:52 2023, atime=Mon Dec 4 08:32:32 2023, length=7282856, window=hide
Entropy:	4.585814155573993
Encrypted:	false
Size:	1325
Whitelisted:	false
Reputation:	low

Signature Hits	Behavior Group	Mitre Attack
Stores files to the Windows start menu directory	Boot Survival	Registry Run Keys / Startup Folder

Details

File:	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCH Software Suite\Slideshow Software.lnk
Category:	dropped
Dump:	Slideshow Software.lnk.2.dr
ID:	dr_7
Target ID:	2
Process:	C:\Users\user\AppData\Local\Temp\n1s\nchsetup.exe
Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Description string, Has Relative path, Has command line arguments, Icon number=19, Archive, ctime=Tue Dec 5 02:39:51 2023, mtime=Tue Dec 5 02:39:52 2023, atime=Mon Dec 4 08:32:32 2023, length=7282856, window=hide
Entropy:	4.591055836229685
Encrypted:	false
Size:	1321
Whitelisted:	false
Reputation:	low

Signature Hits	Behavior Group	Mitre Attack
Stores files to the Windows start menu directory	Boot Survival	Registry Run Keys / Startup Folder

Details

File:	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCH Software Suite\Text Expander Software.lnk
Category:	dropped
Dump:	Text Expander Software.lnk.2.dr
ID:	dr_19
Target ID:	2
Process:	C:\Users\user\AppData\Local\Temp\n1s\nchsetup.exe
Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Description string, Has Relative path, Has command line arguments, Icon number=19, Archive, ctime=Tue Dec 5 02:39:51 2023, mtime=Tue Dec 5 02:39:52 2023, atime=Mon Dec 4 08:32:32 2023, length=7282856, window=hide
Entropy:	4.589463503004529
Encrypted:	false
Size:	1323
Whitelisted:	false
Reputation:	low

Signature Hits	Behavior Group	Mitre Attack
Stores files to the Windows start menu directory	Boot Survival	Registry Run Keys / Startup Folder

Details

File:	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCH Software Suite\Transcription Software.lnk
Category:	dropped
Dump:	Transcription Software.lnk0.2.dr
ID:	dr_56
Target ID:	2
Process:	C:\Users\user\AppData\Local\Temp\n1s\nchsetup.exe
Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Description string, Has Relative path, Has command line arguments, Icon number=19, Archive, ctime=Tue Dec 5 02:39:51 2023, mtime=Tue Dec 5 02:39:52 2023, atime=Mon Dec 4 08:32:32 2023, length=7282856, window=hide
Entropy:	4.601799756050959
Encrypted:	false
Size:	1321
Whitelisted:	false
Reputation:	low

Signature Hits	Behavior Group	Mitre Attack
Stores files to the Windows start menu directory	Boot Survival	Registry Run Keys / Startup Folder

Details

File:	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCH Software Suite\Video Capture Software.lnk
Category:	dropped
Dump:	Video Capture Software.lnk0.2.dr
ID:	dr_54
Target ID:	2
Process:	C:\Users\user\AppData\Local\Temp\n1s\nchsetup.exe
Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Description string, Has Relative path, Has command line arguments, Icon number=19, Archive, ctime=Tue Dec 5 02:39:51 2023, mtime=Tue Dec 5 02:39:52 2023, atime=Mon Dec 4 08:32:32 2023, length=7282856, window=hide
Entropy:	4.6004686704031315
Encrypted:	false
Size:	1319
Whitelisted:	false
Reputation:	low

Signature Hits	Behavior Group	Mitre Attack
Stores files to the Windows start menu directory	Boot Survival	Registry Run Keys / Startup Folder

Details

File:	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCH Software Suite\Video Editing Software.lnk
Category:	dropped
Dump:	Video Editing Software.lnk0.2.dr
ID:	dr_52
Target ID:	2
Process:	C:\Users\user\AppData\Local\Temp\n1s\nchsetup.exe
Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Description string, Has Relative path, Has command line arguments, Icon number=19, Archive, ctime=Tue Dec 5 02:39:51 2023, mtime=Tue Dec 5 02:39:52 2023, atime=Mon Dec 4 08:32:32 2023, length=7282856, window=hide
Entropy:	4.59434319570552
Encrypted:	false
Size:	1325
Whitelisted:	false
Reputation:	low

Signature Hits	Behavior Group	Mitre Attack
Stores files to the Windows start menu directory	Boot Survival	Registry Run Keys / Startup Folder

Details

File:	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCH Software Suite\Video File Converter.lnk
Category:	dropped
Dump:	Video File Converter.lnk.2.dr
ID:	dr_6
Target ID:	2
Process:	C:\Users\user\AppData\Local\Temp\n1s\nchsetup.exe
Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Description string, Has Relative path, Has command line arguments, Icon number=19, Archive, ctime=Tue Dec 5 02:39:51 2023, mtime=Tue Dec 5 02:39:52 2023, atime=Mon Dec 4 08:32:32 2023, length=7282856, window=hide
Entropy:	4.604340126714559
Encrypted:	false
Size:	1315
Whitelisted:	false
Reputation:	low

Signature Hits	Behavior Group	Mitre Attack
Stores files to the Windows start menu directory	Boot Survival	Registry Run Keys / Startup Folder

Details

File:	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCH Software Suite\Zip Program.lnk
Category:	dropped
Dump:	Zip Program.lnk.2.dr
ID:	dr_17
Target ID:	2
Process:	C:\Users\user\AppData\Local\Temp\n1s\nchsetup.exe
Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Description string, Has Relative path, Has command line arguments, Icon number=19, Archive, ctime=Tue Dec 5 02:39:51 2023, mtime=Tue Dec 5 02:39:52 2023, atime=Mon Dec 4 08:32:32 2023, length=7282856, window=hide
Entropy:	4.607026134736191
Encrypted:	false
Size:	1307
Whitelisted:	false
Reputation:	low

Signature Hits	Behavior Group	Mitre Attack
Stores files to the Windows start menu directory	Boot Survival	Registry Run Keys / Startup Folder

Details

File:	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCH Suite.lnk
Category:	dropped
Dump:	NCH Suite.lnk0.2.dr
ID:	dr_29
Target ID:	2
Process:	C:\Users\user\AppData\Local\Temp\n1s\nchsetup.exe
Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Description string, Has Relative path, Has command line arguments, Icon number=-910, Archive, ctime=Tue Dec 5 02:39:51 2023, mtime=Tue Dec 5 02:39:52 2023, atime=Mon Dec 4 08:32:32 2023, length=7282856, window=hide
Entropy:	3.4957634511019857
Encrypted:	false
Size:	2127
Whitelisted:	false
Reputation:	low

Signature Hits	Behavior Group	Mitre Attack
Stores files to the Windows start menu directory	Boot Survival	Registry Run Keys / Startup Folder

Details

File:	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotoPad Image Editor.lnk
Category:	dropped
Dump:	PhotoPad Image Editor.lnk.2.dr
ID:	dr_27
Target ID:	2
Process:	C:\Users\user\AppData\Local\Temp\n1s\nchsetup.exe
Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Description string, Has Relative path, Archive, ctime=Tue Dec 5 02:39:51 2023, mtime=Tue Dec 5 02:39:51 2023, atime=Mon Dec 4 08:32:32 2023, length=7282856, window=hide
Entropy:	4.668934802229302
Encrypted:	false
Size:	1349
Whitelisted:	false
Reputation:	low

Signature Hits	Behavior Group	Mitre Attack
Stores files to the Windows start menu directory	Boot Survival	Registry Run Keys / Startup Folder

Details

File:	C:\ProgramData\NCH Software\PhotoPad\firefoxsearchplugins\defaults\bing.xml
Category:	dropped
Dump:	bing.xml.2.dr
ID:	dr_24
Target ID:	2
Process:	C:\Users\user\AppData\Local\Temp\n1s\nchsetup.exe
Type:	exported SGML document, ASCII text, with very long lines (1815)
Entropy:	5.97743841631416
Encrypted:	false
Size:	2857
Whitelisted:	false
Reputation:	low

Details

File:	C:\ProgramData\NCH Software\PhotoPad\firefoxsearchplugins\defaults\google.xml
Category:	dropped
Dump:	google.xml.2.dr
ID:	dr_16
Target ID:	2
Process:	C:\Users\user\AppData\Local\Temp\n1s\nchsetup.exe
Type:	exported SGML document, ASCII text, with very long lines (1627)
Entropy:	5.963523098507873
Encrypted:	false
Size:	3027
Whitelisted:	false
Reputation:	low

Details

File:	C:\ProgramData\NCH Software\PhotoPad\firefoxsearchplugins\defaults\yahoo.xml
Category:	dropped
Dump:	yahoo.xml.2.dr
ID:	dr_18
Target ID:	2
Process:	C:\Users\user\AppData\Local\Temp\n1s\nchsetup.exe
Type:	exported SGML document, ASCII text, with very long lines (1835)
Entropy:	6.035993144979458
Encrypted:	false
Size:	2657
Whitelisted:	false
Reputation:	low

Details

File:	C:\ProgramData\NCH Software\PhotoPad\firefoxsearchplugins\profile\duckduckgo.xml
Category:	dropped
Dump:	duckduckgo.xml.2.dr
ID:	dr_20
Target ID:	2
Process:	C:\Users\user\AppData\Local\Temp\n1s\nchsetup.exe
Type:	ASCII text, with very long lines (1369)
Entropy:	5.956360128872597
Encrypted:	false
Size:	1874
Whitelisted:	false
Reputation:	low

Details

File:	C:\ProgramData\NCH Software\PhotoPad\firefoxsearchplugins\profile\nchfastsearch.xml
Category:	dropped
Dump:	nchfastsearch.xml.2.dr
ID:	dr_22
Target ID:	2
Process:	C:\Users\user\AppData\Local\Temp\n1s\nchsetup.exe
Type:	ASCII text
Entropy:	5.210809637902639
Encrypted:	false
Size:	529
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\Public\Desktop\NCH Suite.lnk
Category:	dropped
Dump:	NCH Suite.lnk.2.dr
ID:	dr_26
Target ID:	2
Process:	C:\Users\user\AppData\Local\Temp\n1s\nchsetup.exe
Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Description string, Has Relative path, Has command line arguments, Icon number=-910, Archive, ctime=Tue Dec 5 02:39:51 2023, mtime=Tue Dec 5 02:39:51 2023, atime=Mon Dec 4 08:32:32 2023, length=7282856, window=hide
Entropy:	4.591196722084669
Encrypted:	false
Size:	1363
Whitelisted:	false
Reputation:	low

Signature Hits	Behavior Group	Mitre Attack
Creates files inside the user directory	System Summary	Masquerading

Details

File:	C:\Users\Public\Desktop\PhotoPad Image Editor.lnk
Category:	dropped
Dump:	PhotoPad Image Editor.lnk0.2.dr
ID:	dr_28
Target ID:	2
Process:	C:\Users\user\AppData\Local\Temp\n1s\nchsetup.exe
Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Description string, Has Relative path, Archive, ctime=Tue Dec 5 02:39:51 2023, mtime=Tue Dec 5 02:39:51 2023, atime=Mon Dec 4 08:32:32 2023, length=7282856, window=hide
Entropy:	4.675189379194508
Encrypted:	false
Size:	1337
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Temp\TWAIN.LOG
Category:	dropped
Dump:	TWAIN.LOG.8.dr
ID:	dr_58
Target ID:	8
Process:	C:\Program Files (x86)\NCH Software\PhotoPad\photopad.exe
Type:	ASCII text, with CRLF, CR line terminators
Entropy:	5.087716810996067
Encrypted:	false
Size:	290
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Temp\Twain001.Mtx
Category:	dropped
Dump:	Twain001.Mtx.8.dr
ID:	dr_57
Target ID:	8
Process:	C:\Program Files (x86)\NCH Software\PhotoPad\photopad.exe
Type:	data
Entropy:	1.0
Encrypted:	false
Size:	2
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Temp\Twunk001.MTX
Category:	dropped
Dump:	Twunk001.MTX.8.dr
ID:	dr_59
Target ID:	8
Process:	C:\Program Files (x86)\NCH Software\PhotoPad\photopad.exe
Type:	data
Entropy:	0.3773502345746709
Encrypted:	false
Size:	156
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Temp\_photopad_rl_user
Category:	dropped
Dump:	_photopad_rl_user.8.dr
ID:	dr_70
Target ID:	8
Process:	C:\Program Files (x86)\NCH Software\PhotoPad\photopad.exe
Type:	data
Entropy:	3.0
Encrypted:	false
Size:	8
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Temp\n1s\nchdata.cab
Category:	dropped
Dump:	nchdata.cab.0.dr
ID:	dr_2
Target ID:	0
Process:	C:\Users\user\Desktop\ppadsetup.exe
Type:	Microsoft Cabinet archive data, Windows 2000/XP setup, 91283 bytes, 1 file, at 0x2c +A "resource.dat", number 1, 6 datablocks, 0x1503 compression
Entropy:	7.997538526966158
Encrypted:	true
Size:	91283
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Temp\n1s\nchdata.dat
Category:	dropped
Dump:	nchdata.dat.0.dr
ID:	dr_3
Target ID:	0
Process:	C:\Users\user\Desktop\ppadsetup.exe
Type:	PE32+ executable (DLL) (GUI) x86-64, for MS Windows
Entropy:	6.529712034224267
Encrypted:	false
Size:	173428
Whitelisted:	false
Reputation:	low

Signature Hits	Behavior Group	Mitre Attack
Creates a process in suspended mode (likely to inject code)	HIPS / PFW / Operating System Protection Evasion	Process Injection
Drops PE files	Persistence and Installation Behavior
Found dropped PE file which has not been started or loaded	Malware Analysis System Evasion
Spawns processes	System Summary	Process Injection

Details

File:	C:\Users\user\AppData\Local\Temp\n1s\nchsetup.cab
Category:	dropped
Dump:	nchsetup.cab.0.dr
ID:	dr_0
Target ID:	0
Process:	C:\Users\user\Desktop\ppadsetup.exe
Type:	Microsoft Cabinet archive data, Windows 2000/XP setup, 2984677 bytes, 1 file, at 0x2c +A "PhotoPad.exe", number 1, 223 datablocks, 0x1503 compression
Entropy:	7.999797741455753
Encrypted:	true
Size:	2984677
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Temp\~DF5FEA5A501C10AF53.TMP
Category:	dropped
Dump:	~DF5FEA5A501C10AF53.TMP.8.dr
ID:	dr_69
Target ID:	8
Process:	C:\Program Files (x86)\NCH Software\PhotoPad\photopad.exe
Type:	Composite Document File V2 Document, Cannot read section info
Entropy:	7.504003081366065
Encrypted:	false
Size:	163840
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Roaming\Microsoft\Crypto\RSA\S-1-5-21-2246122658-3693405117-2476756634-1003\44457de06a537985124f90911a5dd7b7_9e146be9-c76a-4720-bcdb-53011b87bd06
Category:	dropped
Dump:	44457de06a537985124f90911a5dd7b7_9e146be9-c76a-4720-bcdb-53011b87bd06.8.dr
ID:	dr_60
Target ID:	8
Process:	C:\Program Files (x86)\NCH Software\PhotoPad\photopad.exe
Type:	data
Entropy:	0.9111711733157262
Encrypted:	false
Size:	45
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk
Category:	dropped
Dump:	Docs.lnk.10.dr
ID:	dr_68
Target ID:	10
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Tue Dec 5 02:40:02 2023, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
Entropy:	3.9738447900673606
Encrypted:	false
Size:	2673
Whitelisted:	false
Reputation:	low

Signature Hits	Behavior Group	Mitre Attack
Stores files to the Windows start menu directory	Boot Survival	Registry Run Keys / Startup Folder

Details

File:	C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk
Category:	dropped
Dump:	Gmail.lnk.10.dr
ID:	dr_66
Target ID:	10
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Tue Dec 5 02:40:02 2023, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
Entropy:	3.9901267776007443
Encrypted:	false
Size:	2675
Whitelisted:	false
Reputation:	low

Signature Hits	Behavior Group	Mitre Attack
Stores files to the Windows start menu directory	Boot Survival	Registry Run Keys / Startup Folder

Details

File:	C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk
Category:	dropped
Dump:	Google Drive.lnk.10.dr
ID:	dr_63
Target ID:	10
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Oct 6 08:05:01 2023, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
Entropy:	3.9978707690524558
Encrypted:	false
Size:	2689
Whitelisted:	false
Reputation:	low

Signature Hits	Behavior Group	Mitre Attack
Stores files to the Windows start menu directory	Boot Survival	Registry Run Keys / Startup Folder

Details

File:	C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk
Category:	dropped
Dump:	Sheets.lnk.10.dr
ID:	dr_65
Target ID:	10
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Tue Dec 5 02:40:01 2023, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
Entropy:	3.986271248734153
Encrypted:	false
Size:	2677
Whitelisted:	false
Reputation:	low

Signature Hits	Behavior Group	Mitre Attack
Stores files to the Windows start menu directory	Boot Survival	Registry Run Keys / Startup Folder

Details

File:	C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk
Category:	dropped
Dump:	Slides.lnk.10.dr
ID:	dr_67
Target ID:	10
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Tue Dec 5 02:40:02 2023, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
Entropy:	3.9744267749397166
Encrypted:	false
Size:	2677
Whitelisted:	false
Reputation:	low

Signature Hits	Behavior Group	Mitre Attack
Stores files to the Windows start menu directory	Boot Survival	Registry Run Keys / Startup Folder

Details

File:	C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk
Category:	dropped
Dump:	YouTube.lnk.10.dr
ID:	dr_64
Target ID:	10
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Tue Dec 5 02:40:01 2023, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
Entropy:	3.986681265417256
Encrypted:	false
Size:	2679
Whitelisted:	false
Reputation:	low

Signature Hits	Behavior Group	Mitre Attack
Stores files to the Windows start menu directory	Boot Survival	Registry Run Keys / Startup Folder

Details

File:	C:\Users\user\AppData\Roaming\NCH Software\PhotoPad\camera1.ns
Category:	dropped
Dump:	camera1.ns.8.dr
ID:	dr_61
Target ID:	8
Process:	C:\Program Files (x86)\NCH Software\PhotoPad\photopad.exe
Type:	data
Entropy:	4.454657444776073
Encrypted:	false
Size:	214015
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Roaming\NCH Software\PhotoPad\camera1.wav
Category:	dropped
Dump:	camera1.wav.8.dr
ID:	dr_62
Target ID:	8
Process:	C:\Program Files (x86)\NCH Software\PhotoPad\photopad.exe
Type:	RIFF (little-endian) data, WAVE audio, Microsoft PCM, 16 bit, stereo 44100 Hz
Entropy:	4.454249905047407
Encrypted:	false
Size:	214000
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\Favorites\NCH Software Download Site.lnk
Category:	dropped
Dump:	NCH Software Download Site.lnk.2.dr
ID:	dr_23
Target ID:	2
Process:	C:\Users\user\AppData\Local\Temp\n1s\nchsetup.exe
Type:	MS Windows shortcut, Item id list present, Has Description string, ctime=Sun Dec 31 23:06:32 1600, mtime=Sun Dec 31 23:06:32 1600, atime=Sun Dec 31 23:06:32 1600, length=0, window=hide
Entropy:	3.559508141577259
Encrypted:	false
Size:	388
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\NCH Software Suite\Accounting Software.lnk
Category:	dropped
Dump:	Accounting Software.lnk0.2.dr
ID:	dr_43
Target ID:	2
Process:	C:\Users\user\AppData\Local\Temp\n1s\nchsetup.exe
Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Description string, Has Relative path, Has command line arguments, Icon number=19, Archive, ctime=Tue Dec 5 02:39:51 2023, mtime=Tue Dec 5 02:39:52 2023, atime=Mon Dec 4 08:32:32 2023, length=7282856, window=hide
Entropy:	4.620129448394896
Encrypted:	false
Size:	1315
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\NCH Software Suite\Audio Editing Software.lnk
Category:	dropped
Dump:	Audio Editing Software.lnk.2.dr
ID:	dr_34
Target ID:	2
Process:	C:\Users\user\AppData\Local\Temp\n1s\nchsetup.exe
Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Description string, Has Relative path, Has command line arguments, Icon number=19, Archive, ctime=Tue Dec 5 02:39:51 2023, mtime=Tue Dec 5 02:39:52 2023, atime=Mon Dec 4 08:32:32 2023, length=7282856, window=hide
Entropy:	4.6127391634484205
Encrypted:	false
Size:	1305
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\NCH Software Suite\Audio File Converter.lnk
Category:	dropped
Dump:	Audio File Converter.lnk.2.dr
ID:	dr_36
Target ID:	2
Process:	C:\Users\user\AppData\Local\Temp\n1s\nchsetup.exe
Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Description string, Has Relative path, Has command line arguments, Icon number=19, Archive, ctime=Tue Dec 5 02:39:51 2023, mtime=Tue Dec 5 02:39:52 2023, atime=Mon Dec 4 08:32:32 2023, length=7282856, window=hide
Entropy:	4.619786750998452
Encrypted:	false
Size:	1299
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\NCH Software Suite\Classic FTP Software.lnk
Category:	dropped
Dump:	Classic FTP Software.lnk0.2.dr
ID:	dr_51
Target ID:	2
Process:	C:\Users\user\AppData\Local\Temp\n1s\nchsetup.exe
Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Description string, Has Relative path, Has command line arguments, Icon number=19, Archive, ctime=Tue Dec 5 02:39:51 2023, mtime=Tue Dec 5 02:39:52 2023, atime=Mon Dec 4 08:32:32 2023, length=7282856, window=hide
Entropy:	4.6105102728412675
Encrypted:	false
Size:	1307
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\NCH Software Suite\Diagram and Flowchart Software.lnk
Category:	dropped
Dump:	Diagram and Flowchart Software.lnk0.2.dr
ID:	dr_46
Target ID:	2
Process:	C:\Users\user\AppData\Local\Temp\n1s\nchsetup.exe
Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Description string, Has Relative path, Has command line arguments, Icon number=19, Archive, ctime=Tue Dec 5 02:39:51 2023, mtime=Tue Dec 5 02:39:52 2023, atime=Mon Dec 4 08:32:32 2023, length=7282856, window=hide
Entropy:	4.602708293796883
Encrypted:	false
Size:	1329
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\NCH Software Suite\Doxillion Document Converter.lnk
Category:	dropped
Dump:	Doxillion Document Converter.lnk0.2.dr
ID:	dr_48
Target ID:	2
Process:	C:\Users\user\AppData\Local\Temp\n1s\nchsetup.exe
Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Description string, Has Relative path, Has command line arguments, Icon number=19, Archive, ctime=Tue Dec 5 02:39:51 2023, mtime=Tue Dec 5 02:39:52 2023, atime=Mon Dec 4 08:32:32 2023, length=7282856, window=hide
Entropy:	4.603024640681915
Encrypted:	false
Size:	1321
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\NCH Software Suite\Express Burn CD, DVD or Blu-Ray.lnk
Category:	dropped
Dump:	Express Burn CD, DVD or Blu-Ray.lnk0.2.dr
ID:	dr_38
Target ID:	2
Process:	C:\Users\user\AppData\Local\Temp\n1s\nchsetup.exe
Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Description string, Has Relative path, Has command line arguments, Icon number=19, Archive, ctime=Tue Dec 5 02:39:51 2023, mtime=Tue Dec 5 02:39:52 2023, atime=Mon Dec 4 08:32:32 2023, length=7282856, window=hide
Entropy:	4.619168306510442
Encrypted:	false
Size:	1331
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\NCH Software Suite\House Design Software.lnk
Category:	dropped
Dump:	House Design Software.lnk0.2.dr
ID:	dr_47
Target ID:	2
Process:	C:\Users\user\AppData\Local\Temp\n1s\nchsetup.exe
Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Description string, Has Relative path, Has command line arguments, Icon number=19, Archive, ctime=Tue Dec 5 02:39:51 2023, mtime=Tue Dec 5 02:39:52 2023, atime=Mon Dec 4 08:32:32 2023, length=7282856, window=hide
Entropy:	4.614097155329975
Encrypted:	false
Size:	1307
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\NCH Software Suite\Image File Converter.lnk
Category:	dropped
Dump:	Image File Converter.lnk0.2.dr
ID:	dr_45
Target ID:	2
Process:	C:\Users\user\AppData\Local\Temp\n1s\nchsetup.exe
Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Description string, Has Relative path, Has command line arguments, Icon number=19, Archive, ctime=Tue Dec 5 02:39:51 2023, mtime=Tue Dec 5 02:39:52 2023, atime=Mon Dec 4 08:32:32 2023, length=7282856, window=hide
Entropy:	4.613265274689554
Encrypted:	false
Size:	1305
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\NCH Software Suite\Invoice Software.lnk
Category:	dropped
Dump:	Invoice Software.lnk0.2.dr
ID:	dr_39
Target ID:	2
Process:	C:\Users\user\AppData\Local\Temp\n1s\nchsetup.exe
Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Description string, Has Relative path, Has command line arguments, Icon number=19, Archive, ctime=Tue Dec 5 02:39:51 2023, mtime=Tue Dec 5 02:39:52 2023, atime=Mon Dec 4 08:32:32 2023, length=7282856, window=hide
Entropy:	4.625460109572005
Encrypted:	false
Size:	1307
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\NCH Software Suite\Multitrack Recording Software.lnk
Category:	dropped
Dump:	Multitrack Recording Software.lnk0.2.dr
ID:	dr_42
Target ID:	2
Process:	C:\Users\user\AppData\Local\Temp\n1s\nchsetup.exe
Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Description string, Has Relative path, Has command line arguments, Icon number=19, Archive, ctime=Tue Dec 5 02:39:51 2023, mtime=Tue Dec 5 02:39:52 2023, atime=Mon Dec 4 08:32:32 2023, length=7282856, window=hide
Entropy:	4.617744275140975
Encrypted:	false
Size:	1317
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\NCH Software Suite\Photo Editing Software.lnk
Category:	dropped
Dump:	Photo Editing Software.lnk0.2.dr
ID:	dr_44
Target ID:	2
Process:	C:\Users\user\AppData\Local\Temp\n1s\nchsetup.exe
Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Description string, Has Relative path, Has command line arguments, Icon number=19, Archive, ctime=Tue Dec 5 02:39:51 2023, mtime=Tue Dec 5 02:39:52 2023, atime=Mon Dec 4 08:32:32 2023, length=7282856, window=hide
Entropy:	4.604507376801876
Encrypted:	false
Size:	1307
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\NCH Software Suite\Slideshow Software.lnk
Category:	dropped
Dump:	Slideshow Software.lnk0.2.dr
ID:	dr_41
Target ID:	2
Process:	C:\Users\user\AppData\Local\Temp\n1s\nchsetup.exe
Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Description string, Has Relative path, Has command line arguments, Icon number=19, Archive, ctime=Tue Dec 5 02:39:51 2023, mtime=Tue Dec 5 02:39:52 2023, atime=Mon Dec 4 08:32:32 2023, length=7282856, window=hide
Entropy:	4.604771775378914
Encrypted:	false
Size:	1303
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\NCH Software Suite\Text Expander Software.lnk
Category:	dropped
Dump:	Text Expander Software.lnk0.2.dr
ID:	dr_50
Target ID:	2
Process:	C:\Users\user\AppData\Local\Temp\n1s\nchsetup.exe
Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Description string, Has Relative path, Has command line arguments, Icon number=19, Archive, ctime=Tue Dec 5 02:39:51 2023, mtime=Tue Dec 5 02:39:52 2023, atime=Mon Dec 4 08:32:32 2023, length=7282856, window=hide
Entropy:	4.608827584667069
Encrypted:	false
Size:	1305
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\NCH Software Suite\Transcription Software.lnk
Category:	dropped
Dump:	Transcription Software.lnk.2.dr
ID:	dr_37
Target ID:	2
Process:	C:\Users\user\AppData\Local\Temp\n1s\nchsetup.exe
Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Description string, Has Relative path, Has command line arguments, Icon number=19, Archive, ctime=Tue Dec 5 02:39:51 2023, mtime=Tue Dec 5 02:39:52 2023, atime=Mon Dec 4 08:32:32 2023, length=7282856, window=hide
Entropy:	4.619357905041308
Encrypted:	false
Size:	1303
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\NCH Software Suite\Video Capture Software.lnk
Category:	dropped
Dump:	Video Capture Software.lnk.2.dr
ID:	dr_35
Target ID:	2
Process:	C:\Users\user\AppData\Local\Temp\n1s\nchsetup.exe
Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Description string, Has Relative path, Has command line arguments, Icon number=19, Archive, ctime=Tue Dec 5 02:39:51 2023, mtime=Tue Dec 5 02:39:52 2023, atime=Mon Dec 4 08:32:32 2023, length=7282856, window=hide
Entropy:	4.617104659363741
Encrypted:	false
Size:	1301
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\NCH Software Suite\Video Editing Software.lnk
Category:	dropped
Dump:	Video Editing Software.lnk.2.dr
ID:	dr_33
Target ID:	2
Process:	C:\Users\user\AppData\Local\Temp\n1s\nchsetup.exe
Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Description string, Has Relative path, Has command line arguments, Icon number=19, Archive, ctime=Tue Dec 5 02:39:51 2023, mtime=Tue Dec 5 02:39:52 2023, atime=Mon Dec 4 08:32:32 2023, length=7282856, window=hide
Entropy:	4.610937287243321
Encrypted:	false
Size:	1307
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\NCH Software Suite\Video File Converter.lnk
Category:	dropped
Dump:	Video File Converter.lnk0.2.dr
ID:	dr_40
Target ID:	2
Process:	C:\Users\user\AppData\Local\Temp\n1s\nchsetup.exe
Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Description string, Has Relative path, Has command line arguments, Icon number=19, Archive, ctime=Tue Dec 5 02:39:51 2023, mtime=Tue Dec 5 02:39:52 2023, atime=Mon Dec 4 08:32:32 2023, length=7282856, window=hide
Entropy:	4.618818447518445
Encrypted:	false
Size:	1297
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\NCH Software Suite\Zip Program.lnk
Category:	dropped
Dump:	Zip Program.lnk0.2.dr
ID:	dr_49
Target ID:	2
Process:	C:\Users\user\AppData\Local\Temp\n1s\nchsetup.exe
Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Description string, Has Relative path, Has command line arguments, Icon number=19, Archive, ctime=Tue Dec 5 02:39:51 2023, mtime=Tue Dec 5 02:39:52 2023, atime=Mon Dec 4 08:32:32 2023, length=7282856, window=hide
Entropy:	4.629130864140594
Encrypted:	false
Size:	1289
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 193
Category:	downloaded
Dump:	chromecache_193.11.dr
ID:	dr_359
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	HTML document, ASCII text, with very long lines (24949)
Entropy:	5.385621571724382
Encrypted:	false
Size:	38263
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 194
Category:	downloaded
Dump:	chromecache_194.11.dr
ID:	dr_360
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	HTML document, ASCII text, with very long lines (1384)
Entropy:	5.371372172830349
Encrypted:	false
Size:	9466
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 195
Category:	dropped
Dump:	chromecache_195.11.dr
ID:	dr_252
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 191 x 232, 8-bit/color RGBA, non-interlaced
Entropy:	7.988238634134114
Encrypted:	false
Size:	36259
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 196
Category:	downloaded
Dump:	chromecache_196.11.dr
ID:	dr_361
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	Unicode text, UTF-8 text, with very long lines (38752)
Entropy:	5.182774926043122
Encrypted:	false
Size:	93065
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 197
Category:	downloaded
Dump:	chromecache_197.11.dr
ID:	dr_362
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	GIF image data, version 89a, 106 x 106
Entropy:	7.803810468162341
Encrypted:	false
Size:	4769
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 204
Category:	dropped
Dump:	chromecache_204.11.dr
ID:	dr_127
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	RIFF (little-endian) data, Web/P image, VP8 encoding, 769x332, Suserng: [none]x[none], YUV color, decoders should clamp
Entropy:	7.986724594995754
Encrypted:	false
Size:	18374
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 206
Category:	downloaded
Dump:	chromecache_206.11.dr
ID:	dr_363
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced
Entropy:	7.96916829458624
Encrypted:	false
Size:	10971
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 207
Category:	downloaded
Dump:	chromecache_207.11.dr
ID:	dr_364
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	ASCII text, with very long lines (2835), with no line terminators
Entropy:	5.899229799032225
Encrypted:	false
Size:	2835
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 208
Category:	downloaded
Dump:	chromecache_208.11.dr
ID:	dr_365
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced
Entropy:	7.965573873817347
Encrypted:	false
Size:	7805
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 209
Category:	dropped
Dump:	chromecache_209.11.dr
ID:	dr_134
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=15], baseline, precision 8, 240x336, components 3
Entropy:	7.890864813571482
Encrypted:	false
Size:	98276
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 211
Category:	downloaded
Dump:	chromecache_211.11.dr
ID:	dr_366
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced
Entropy:	7.895382784041384
Encrypted:	false
Size:	3759
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 212
Category:	dropped
Dump:	chromecache_212.11.dr
ID:	dr_141
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced
Entropy:	7.9416287913288315
Encrypted:	false
Size:	6493
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 214
Category:	dropped
Dump:	chromecache_214.11.dr
ID:	dr_145
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 250x169, components 3
Entropy:	7.97251912104187
Encrypted:	false
Size:	31650
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 216
Category:	dropped
Dump:	chromecache_216.11.dr
ID:	dr_146
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 25.1 (20230905.m.2316 979c86d) (Windows), datetime=2023:10:17 08:05:12], baseline, precision 8, 250x150, components 3
Entropy:	7.78708762006519
Encrypted:	false
Size:	49365
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 217
Category:	downloaded
Dump:	chromecache_217.11.dr
ID:	dr_367
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced
Entropy:	7.917029762223058
Encrypted:	false
Size:	3077
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 219
Category:	downloaded
Dump:	chromecache_219.11.dr
ID:	dr_368
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 175 x 56, 8-bit/color RGB, non-interlaced
Entropy:	7.887433959733753
Encrypted:	false
Size:	5583
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 221
Category:	downloaded
Dump:	chromecache_221.11.dr
ID:	dr_369
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	ASCII text, with very long lines (813)
Entropy:	5.304032032504991
Encrypted:	false
Size:	3011
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 223
Category:	downloaded
Dump:	chromecache_223.11.dr
ID:	dr_370
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced
Entropy:	7.9627218678141
Encrypted:	false
Size:	6051
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 225
Category:	dropped
Dump:	chromecache_225.11.dr
ID:	dr_161
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	JSON data
Entropy:	4.557768118179261
Encrypted:	false
Size:	870
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 227
Category:	downloaded
Dump:	chromecache_227.11.dr
ID:	dr_371
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced
Entropy:	7.926894444081308
Encrypted:	false
Size:	3422
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 228
Category:	dropped
Dump:	chromecache_228.11.dr
ID:	dr_167
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced
Entropy:	7.380541536487119
Encrypted:	false
Size:	599
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 229
Category:	dropped
Dump:	chromecache_229.11.dr
ID:	dr_168
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 108x40, components 3
Entropy:	7.662721100291616
Encrypted:	false
Size:	2167
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 231
Category:	downloaded
Dump:	chromecache_231.11.dr
ID:	dr_372
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced
Entropy:	7.950028709009132
Encrypted:	false
Size:	7013
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 232
Category:	dropped
Dump:	chromecache_232.11.dr
ID:	dr_175
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced
Entropy:	7.876617339857763
Encrypted:	false
Size:	2105
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 234
Category:	dropped
Dump:	chromecache_234.11.dr
ID:	dr_179
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
Entropy:	6.203724919922315
Encrypted:	false
Size:	192
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 239
Category:	dropped
Dump:	chromecache_239.11.dr
ID:	dr_182
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=17, height=1405, bps=218, PhotometricIntepretation=RGB, description=Hand With Photo of Beach., manufacturer=Canon, model=Canon EOS 5D Mark II, orientation=upper-left, width=2133], baseline, precision 8, 250x150, components 3
Entropy:	7.656111104539179
Encrypted:	false
Size:	47904
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 242
Category:	dropped
Dump:	chromecache_242.11.dr
ID:	dr_188
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced
Entropy:	7.784980274880933
Encrypted:	false
Size:	1550
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 244
Category:	dropped
Dump:	chromecache_244.11.dr
ID:	dr_192
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=14, height=355, bps=182, PhotometricIntepretation=RGB, orientation=upper-left, width=250], baseline, precision 8, 200x284, components 3
Entropy:	7.793828588827173
Encrypted:	false
Size:	52061
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 245
Category:	downloaded
Dump:	chromecache_245.11.dr
ID:	dr_373
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced
Entropy:	7.948407979980782
Encrypted:	false
Size:	6268
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 246
Category:	downloaded
Dump:	chromecache_246.11.dr
ID:	dr_374
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	ASCII text, with very long lines (7891), with no line terminators
Entropy:	5.098850578793758
Encrypted:	false
Size:	7891
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 247
Category:	dropped
Dump:	chromecache_247.11.dr
ID:	dr_198
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced
Entropy:	7.912892937119278
Encrypted:	false
Size:	4396
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 248
Category:	dropped
Dump:	chromecache_248.11.dr
ID:	dr_199
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 100 x 75, 8-bit/color RGBA, non-interlaced
Entropy:	7.6989112471364
Encrypted:	false
Size:	2997
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 249
Category:	dropped
Dump:	chromecache_249.11.dr
ID:	dr_200
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 80 x 60, 8-bit colormap, non-interlaced
Entropy:	7.88703669956554
Encrypted:	false
Size:	4086
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 251
Category:	dropped
Dump:	chromecache_251.11.dr
ID:	dr_204
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 59 x 71, 8-bit/color RGBA, non-interlaced
Entropy:	7.118085760764999
Encrypted:	false
Size:	3483
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 252
Category:	downloaded
Dump:	chromecache_252.11.dr
ID:	dr_375
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	HTML document, ASCII text, with very long lines (491), with CRLF line terminators
Entropy:	5.312511979008081
Encrypted:	false
Size:	3628
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 256
Category:	downloaded
Dump:	chromecache_256.11.dr
ID:	dr_376
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced
Entropy:	7.929783413148903
Encrypted:	false
Size:	4892
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 257
Category:	downloaded
Dump:	chromecache_257.11.dr
ID:	dr_377
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=771, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=1139], baseline, precision 8, 320x216, components 3
Entropy:	7.839989385974533
Encrypted:	false
Size:	101769
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 260
Category:	downloaded
Dump:	chromecache_260.11.dr
ID:	dr_378
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced
Entropy:	7.750733095425127
Encrypted:	false
Size:	1386
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 263
Category:	downloaded
Dump:	chromecache_263.11.dr
ID:	dr_379
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	HTML document, ASCII text, with very long lines (6394)
Entropy:	5.248087270151739
Encrypted:	false
Size:	9775
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 265
Category:	downloaded
Dump:	chromecache_265.11.dr
ID:	dr_380
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	HTML document, ASCII text, with very long lines (56043)
Entropy:	5.5061054495525745
Encrypted:	false
Size:	327164
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 267
Category:	dropped
Dump:	chromecache_267.11.dr
ID:	dr_223
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 350x272, components 3
Entropy:	7.9579258104040775
Encrypted:	false
Size:	23302
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 268
Category:	dropped
Dump:	chromecache_268.11.dr
ID:	dr_224
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced
Entropy:	7.936090164076509
Encrypted:	false
Size:	3585
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 269
Category:	downloaded
Dump:	chromecache_269.11.dr
ID:	dr_381
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 32 x 24, 8-bit colormap, non-interlaced
Entropy:	6.067655842393533
Encrypted:	false
Size:	554
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 270
Category:	dropped
Dump:	chromecache_270.11.dr
ID:	dr_227
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 16 x 16, 8-bit colormap, non-interlaced
Entropy:	7.312888090405707
Encrypted:	false
Size:	510
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 272
Category:	downloaded
Dump:	chromecache_272.11.dr
ID:	dr_382
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 16 x 16, 8-bit colormap, non-interlaced
Entropy:	5.280052635092167
Encrypted:	false
Size:	299
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 273
Category:	dropped
Dump:	chromecache_273.11.dr
ID:	dr_231
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced
Entropy:	7.939385344932021
Encrypted:	false
Size:	5743
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 274
Category:	dropped
Dump:	chromecache_274.11.dr
ID:	dr_232
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 25x25, components 3
Entropy:	7.25577699268854
Encrypted:	false
Size:	2299
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 275
Category:	downloaded
Dump:	chromecache_275.11.dr
ID:	dr_383
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 48x48, components 3
Entropy:	7.632276373562364
Encrypted:	false
Size:	1820
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 277
Category:	downloaded
Dump:	chromecache_277.11.dr
ID:	dr_384
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 25 x 34, 8-bit/color RGBA, non-interlaced
Entropy:	7.274504772056122
Encrypted:	false
Size:	2639
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 282
Category:	downloaded
Dump:	chromecache_282.11.dr
ID:	dr_385
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	HTML document, ASCII text, with very long lines (517)
Entropy:	5.228145080852029
Encrypted:	false
Size:	851
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 284
Category:	downloaded
Dump:	chromecache_284.11.dr
ID:	dr_386
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=4016, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=6016], progressive, precision 8, 250x150, components 3
Entropy:	7.843576975572867
Encrypted:	false
Size:	70173
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 285
Category:	downloaded
Dump:	chromecache_285.11.dr
ID:	dr_387
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 108 x 40, 8-bit colormap, non-interlaced
Entropy:	7.597399444601819
Encrypted:	false
Size:	2516
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 286
Category:	downloaded
Dump:	chromecache_286.11.dr
ID:	dr_388
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 32 x 24, 8-bit colormap, non-interlaced
Entropy:	6.0738848839716395
Encrypted:	false
Size:	530
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 287
Category:	downloaded
Dump:	chromecache_287.11.dr
ID:	dr_389
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 59 x 71, 8-bit/color RGBA, non-interlaced
Entropy:	7.007336255405525
Encrypted:	false
Size:	3297
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 288
Category:	dropped
Dump:	chromecache_288.11.dr
ID:	dr_244
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced
Entropy:	7.946694950333966
Encrypted:	false
Size:	7272
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 292
Category:	dropped
Dump:	chromecache_292.11.dr
ID:	dr_245
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 350x229, components 3
Entropy:	7.945053133776511
Encrypted:	false
Size:	32778
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 293
Category:	downloaded
Dump:	chromecache_293.11.dr
ID:	dr_390
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 131 x 40, 8-bit colormap, non-interlaced
Entropy:	7.410181349332559
Encrypted:	false
Size:	1578
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 295
Category:	dropped
Dump:	chromecache_295.11.dr
ID:	dr_247
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced
Entropy:	7.807354124012218
Encrypted:	false
Size:	1372
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 296
Category:	downloaded
Dump:	chromecache_296.11.dr
ID:	dr_391
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	HTML document, ASCII text, with very long lines (21382)
Entropy:	5.103997117299655
Encrypted:	false
Size:	34347
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 299
Category:	downloaded
Dump:	chromecache_299.11.dr
ID:	dr_392
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	HTML document, ASCII text, with very long lines (13477)
Entropy:	5.491092423649586
Encrypted:	false
Size:	73268
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 300
Category:	dropped
Dump:	chromecache_300.11.dr
ID:	dr_100
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 150x198, components 3
Entropy:	7.941300237233537
Encrypted:	false
Size:	7743
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 302
Category:	dropped
Dump:	chromecache_302.11.dr
ID:	dr_101
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1583x346, components 3
Entropy:	7.907610165913792
Encrypted:	false
Size:	35736
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 306
Category:	dropped
Dump:	chromecache_306.11.dr
ID:	dr_104
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=1, copyright=Jacob Ammentorp Lund], baseline, precision 8, 774x491, components 3
Entropy:	7.976656494971762
Encrypted:	false
Size:	259934
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 307
Category:	dropped
Dump:	chromecache_307.11.dr
ID:	dr_106
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=14, height=355, bps=182, PhotometricIntepretation=RGB, orientation=upper-left, width=250], baseline, precision 8, 200x284, components 3
Entropy:	7.820116019065509
Encrypted:	false
Size:	60426
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 309
Category:	dropped
Dump:	chromecache_309.11.dr
ID:	dr_107
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 32 x 24, 4-bit colormap, non-interlaced
Entropy:	5.696560210147431
Encrypted:	false
Size:	176
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 313
Category:	dropped
Dump:	chromecache_313.11.dr
ID:	dr_111
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 25x25, components 3
Entropy:	7.398169428266479
Encrypted:	false
Size:	2477
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 314
Category:	downloaded
Dump:	chromecache_314.11.dr
ID:	dr_393
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 25x25, components 3
Entropy:	7.277660679102772
Encrypted:	false
Size:	2260
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 315
Category:	downloaded
Dump:	chromecache_315.11.dr
ID:	dr_394
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 25.1 (20230905.m.2316 979c86d) (Windows), datetime=2023:10:17 08:02:37], baseline, precision 8, 250x150, components 3
Entropy:	7.822752610068325
Encrypted:	false
Size:	58616
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 316
Category:	downloaded
Dump:	chromecache_316.11.dr
ID:	dr_395
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	ASCII text, with no line terminators
Entropy:	3.875
Encrypted:	false
Size:	16
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 317
Category:	downloaded
Dump:	chromecache_317.11.dr
ID:	dr_396
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 48x48, components 3
Entropy:	7.656064496979148
Encrypted:	false
Size:	2348
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 318
Category:	dropped
Dump:	chromecache_318.11.dr
ID:	dr_118
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced
Entropy:	7.92827587677017
Encrypted:	false
Size:	5389
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 319
Category:	dropped
Dump:	chromecache_319.11.dr
ID:	dr_120
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 50 x 53, 8-bit/color RGBA, non-interlaced
Entropy:	7.479023429255689
Encrypted:	false
Size:	657
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 322
Category:	dropped
Dump:	chromecache_322.11.dr
ID:	dr_123
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 43 x 44, 8-bit/color RGBA, non-interlaced
Entropy:	7.9558846996303725
Encrypted:	false
Size:	4757
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 323
Category:	downloaded
Dump:	chromecache_323.11.dr
ID:	dr_397
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	RIFF (little-endian) data, Web/P image
Entropy:	6.94238110742729
Encrypted:	false
Size:	358
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 324
Category:	downloaded
Dump:	chromecache_324.11.dr
ID:	dr_398
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 64 x 64, 8-bit colormap, non-interlaced
Entropy:	7.781757603710383
Encrypted:	false
Size:	1753
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 327
Category:	dropped
Dump:	chromecache_327.11.dr
ID:	dr_130
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 7 x 7, 8-bit/color RGBA, non-interlaced
Entropy:	5.176636248613145
Encrypted:	false
Size:	135
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 328
Category:	dropped
Dump:	chromecache_328.11.dr
ID:	dr_132
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 59 x 71, 8-bit/color RGBA, non-interlaced
Entropy:	7.119054267297962
Encrypted:	false
Size:	3412
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 330
Category:	dropped
Dump:	chromecache_330.11.dr
ID:	dr_135
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	ASCII text, with very long lines (19142)
Entropy:	5.432437260022553
Encrypted:	false
Size:	540147
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 331
Category:	dropped
Dump:	chromecache_331.11.dr
ID:	dr_136
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 175 x 56, 8-bit/color RGB, non-interlaced
Entropy:	7.872745235754911
Encrypted:	false
Size:	5202
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 332
Category:	dropped
Dump:	chromecache_332.11.dr
ID:	dr_139
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced
Entropy:	7.94702148764746
Encrypted:	false
Size:	6550
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 333
Category:	dropped
Dump:	chromecache_333.11.dr
ID:	dr_142
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 25x25, components 3
Entropy:	7.299561804543592
Encrypted:	false
Size:	2324
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 337
Category:	dropped
Dump:	chromecache_337.11.dr
ID:	dr_147
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	RIFF (little-endian) data, Web/P image
Entropy:	7.99229751709485
Encrypted:	true
Size:	25876
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 340
Category:	dropped
Dump:	chromecache_340.11.dr
ID:	dr_151
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 350x213, components 3
Entropy:	7.961321360362012
Encrypted:	false
Size:	24161
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 341
Category:	downloaded
Dump:	chromecache_341.11.dr
ID:	dr_399
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced
Entropy:	7.962083744976528
Encrypted:	false
Size:	8866
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 343
Category:	downloaded
Dump:	chromecache_343.11.dr
ID:	dr_400
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 25x25, components 3
Entropy:	7.175267460745174
Encrypted:	false
Size:	2148
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 345
Category:	downloaded
Dump:	chromecache_345.11.dr
ID:	dr_401
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	GIF image data, version 89a, 41 x 41
Entropy:	7.348870046916817
Encrypted:	false
Size:	1668
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 346
Category:	downloaded
Dump:	chromecache_346.11.dr
ID:	dr_402
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=15], baseline, precision 8, 240x336, components 3
Entropy:	7.900764210730118
Encrypted:	false
Size:	101553
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 347
Category:	dropped
Dump:	chromecache_347.11.dr
ID:	dr_164
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 32 x 24, 4-bit colormap, non-interlaced
Entropy:	5.548019694038233
Encrypted:	false
Size:	169
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 350
Category:	dropped
Dump:	chromecache_350.11.dr
ID:	dr_170
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 64 x 64, 8-bit colormap, non-interlaced
Entropy:	7.511899295815406
Encrypted:	false
Size:	1172
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 351
Category:	dropped
Dump:	chromecache_351.11.dr
ID:	dr_171
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced
Entropy:	7.949990990672299
Encrypted:	false
Size:	6764
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 352
Category:	downloaded
Dump:	chromecache_352.11.dr
ID:	dr_403
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 32 x 24, 8-bit colormap, non-interlaced
Entropy:	6.21657916103107
Encrypted:	false
Size:	557
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 353
Category:	dropped
Dump:	chromecache_353.11.dr
ID:	dr_176
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced
Entropy:	7.9277527582001
Encrypted:	false
Size:	4867
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 354
Category:	dropped
Dump:	chromecache_354.11.dr
ID:	dr_177
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced
Entropy:	7.930661849465295
Encrypted:	false
Size:	4891
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 355
Category:	downloaded
Dump:	chromecache_355.11.dr
ID:	dr_404
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
Entropy:	7.424090962126229
Encrypted:	false
Size:	525
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 360
Category:	downloaded
Dump:	chromecache_360.11.dr
ID:	dr_405
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 89 x 55, 8-bit colormap, non-interlaced
Entropy:	7.802883834338761
Encrypted:	false
Size:	1600
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 361
Category:	downloaded
Dump:	chromecache_361.11.dr
ID:	dr_406
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 300x191, components 3
Entropy:	7.928952199037104
Encrypted:	false
Size:	18235
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 362
Category:	downloaded
Dump:	chromecache_362.11.dr
ID:	dr_407
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=14, height=355, bps=182, PhotometricIntepretation=RGB, orientation=upper-left, width=250], baseline, precision 8, 200x284, components 3
Entropy:	7.742996973206735
Encrypted:	false
Size:	46631
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 363
Category:	downloaded
Dump:	chromecache_363.11.dr
ID:	dr_408
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	C source, ASCII text, with very long lines (3682)
Entropy:	5.001825384938199
Encrypted:	false
Size:	8577
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 364
Category:	downloaded
Dump:	chromecache_364.11.dr
ID:	dr_409
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	ASCII text, with very long lines (2426), with no line terminators
Entropy:	5.832381333072109
Encrypted:	false
Size:	2426
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 366
Category:	dropped
Dump:	chromecache_366.11.dr
ID:	dr_194
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=14, height=355, bps=182, PhotometricIntepretation=RGB, orientation=upper-left, width=250], baseline, precision 8, 200x284, components 3
Entropy:	7.788629220546719
Encrypted:	false
Size:	53041
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 367
Category:	dropped
Dump:	chromecache_367.11.dr
ID:	dr_196
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 48x48, components 3
Entropy:	7.676341355546696
Encrypted:	false
Size:	1836
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 375
Category:	dropped
Dump:	chromecache_375.11.dr
ID:	dr_207
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 16 x 16, 8-bit colormap, non-interlaced
Entropy:	7.387890977787813
Encrypted:	false
Size:	492
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 376
Category:	downloaded
Dump:	chromecache_376.11.dr
ID:	dr_410
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 16 x 16, 8-bit colormap, non-interlaced
Entropy:	6.668933130299492
Encrypted:	false
Size:	471
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 378
Category:	downloaded
Dump:	chromecache_378.11.dr
ID:	dr_411
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	ASCII text, with very long lines (4093), with no line terminators
Entropy:	5.001371392044979
Encrypted:	false
Size:	4093
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 379
Category:	downloaded
Dump:	chromecache_379.11.dr
ID:	dr_412
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 16 x 16, 8-bit colormap, non-interlaced
Entropy:	7.202465421145695
Encrypted:	false
Size:	417
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 380
Category:	downloaded
Dump:	chromecache_380.11.dr
ID:	dr_413
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	ASCII text, with very long lines (4136), with no line terminators
Entropy:	5.0067282426795705
Encrypted:	false
Size:	4136
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 383
Category:	dropped
Dump:	chromecache_383.11.dr
ID:	dr_218
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 81 x 60, 8-bit colormap, non-interlaced
Entropy:	7.81397399691245
Encrypted:	false
Size:	3600
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 385
Category:	dropped
Dump:	chromecache_385.11.dr
ID:	dr_220
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	GIF image data, version 89a, 1 x 1
Entropy:	3.0314906788435274
Encrypted:	false
Size:	43
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 387
Category:	downloaded
Dump:	chromecache_387.11.dr
ID:	dr_414
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 100 x 75, 8-bit/color RGBA, non-interlaced
Entropy:	6.860419107484353
Encrypted:	false
Size:	1403
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 389
Category:	downloaded
Dump:	chromecache_389.11.dr
ID:	dr_415
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 105x40, components 3
Entropy:	7.608870758224503
Encrypted:	false
Size:	1909
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 391
Category:	downloaded
Dump:	chromecache_391.11.dr
ID:	dr_416
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	GIF image data, version 89a, 1 x 1
Entropy:	2.7374910194847146
Encrypted:	false
Size:	43
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 393
Category:	downloaded
Dump:	chromecache_393.11.dr
ID:	dr_417
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 25.1 (20230905.m.2316 979c86d) (Windows), datetime=2023:10:17 08:04:37], progressive, precision 8, 250x150, components 3
Entropy:	7.875104357113017
Encrypted:	false
Size:	71026
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 395
Category:	dropped
Dump:	chromecache_395.11.dr
ID:	dr_233
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	RIFF (little-endian) data, Web/P image, VP8 encoding, 553x341, Suserng: [none]x[none], YUV color, decoders should clamp
Entropy:	7.994447738406724
Encrypted:	true
Size:	33454
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 396
Category:	downloaded
Dump:	chromecache_396.11.dr
ID:	dr_418
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced
Entropy:	7.956456835722324
Encrypted:	false
Size:	7531
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 398
Category:	downloaded
Dump:	chromecache_398.11.dr
ID:	dr_419
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 44 x 44, 8-bit/color RGBA, non-interlaced
Entropy:	7.937805380785756
Encrypted:	false
Size:	3796
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 399
Category:	downloaded
Dump:	chromecache_399.11.dr
ID:	dr_420
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 175 x 56, 8-bit/color RGB, non-interlaced
Entropy:	7.821114372732909
Encrypted:	false
Size:	4261
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 400
Category:	downloaded
Dump:	chromecache_400.11.dr
ID:	dr_421
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 64 x 64, 8-bit colormap, non-interlaced
Entropy:	7.767855585361767
Encrypted:	false
Size:	2413
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 402
Category:	dropped
Dump:	chromecache_402.11.dr
ID:	dr_86
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 48x48, components 3
Entropy:	7.649435419054714
Encrypted:	false
Size:	1725
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 407
Category:	dropped
Dump:	chromecache_407.11.dr
ID:	dr_92
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced
Entropy:	7.709713389218591
Encrypted:	false
Size:	1352
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 408
Category:	downloaded
Dump:	chromecache_408.11.dr
ID:	dr_422
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	ASCII text, with very long lines (7711)
Entropy:	5.588928586048646
Encrypted:	false
Size:	268243
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 409
Category:	dropped
Dump:	chromecache_409.11.dr
ID:	dr_95
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 150x198, components 3
Entropy:	7.920731737399425
Encrypted:	false
Size:	6914
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 411
Category:	downloaded
Dump:	chromecache_411.11.dr
ID:	dr_423
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced
Entropy:	7.506538311019193
Encrypted:	false
Size:	610
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 416
Category:	dropped
Dump:	chromecache_416.11.dr
ID:	dr_98
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced
Entropy:	7.932864584743508
Encrypted:	false
Size:	5049
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 418
Category:	dropped
Dump:	chromecache_418.11.dr
ID:	dr_99
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 50 x 60, 8-bit colormap, non-interlaced
Entropy:	7.900833608252349
Encrypted:	false
Size:	2669
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 423
Category:	dropped
Dump:	chromecache_423.11.dr
ID:	dr_102
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced
Entropy:	7.948393616426337
Encrypted:	false
Size:	7716
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 426
Category:	downloaded
Dump:	chromecache_426.11.dr
ID:	dr_424
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=14, height=355, bps=182, PhotometricIntepretation=RGB, orientation=upper-left, width=250], baseline, precision 8, 200x284, components 3
Entropy:	7.854962255151724
Encrypted:	false
Size:	65771
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 427
Category:	dropped
Dump:	chromecache_427.11.dr
ID:	dr_105
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	GIF image data, version 89a, 20 x 20
Entropy:	7.369047334086588
Encrypted:	false
Size:	477
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 430
Category:	downloaded
Dump:	chromecache_430.11.dr
ID:	dr_425
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	ASCII text, with very long lines (19927), with no line terminators
Entropy:	5.680495692183685
Encrypted:	false
Size:	19927
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 432
Category:	downloaded
Dump:	chromecache_432.11.dr
ID:	dr_426
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	ASCII text, with very long lines (4179)
Entropy:	5.550610737437265
Encrypted:	false
Size:	190953
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 433
Category:	dropped
Dump:	chromecache_433.11.dr
ID:	dr_110
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced
Entropy:	7.962967211196776
Encrypted:	false
Size:	9317
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 434
Category:	dropped
Dump:	chromecache_434.11.dr
ID:	dr_112
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 48x48, components 3
Entropy:	7.505856248728611
Encrypted:	false
Size:	1359
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 435
Category:	downloaded
Dump:	chromecache_435.11.dr
ID:	dr_427
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	HTML document, ASCII text, with very long lines (857)
Entropy:	5.228344799110231
Encrypted:	false
Size:	3374
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 439
Category:	downloaded
Dump:	chromecache_439.11.dr
ID:	dr_428
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced
Entropy:	7.965296764296073
Encrypted:	false
Size:	9600
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 440
Category:	dropped
Dump:	chromecache_440.11.dr
ID:	dr_121
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced
Entropy:	7.921324272415993
Encrypted:	false
Size:	3148
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 442
Category:	downloaded
Dump:	chromecache_442.11.dr
ID:	dr_429
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced
Entropy:	7.963800873395796
Encrypted:	false
Size:	7298
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 444
Category:	downloaded
Dump:	chromecache_444.11.dr
ID:	dr_430
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	exported SGML document, ASCII text, with very long lines (916)
Entropy:	5.3792359570859505
Encrypted:	false
Size:	3050
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 446
Category:	dropped
Dump:	chromecache_446.11.dr
ID:	dr_128
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 61 x 60, 8-bit colormap, non-interlaced
Entropy:	7.644743073778644
Encrypted:	false
Size:	1605
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 452
Category:	dropped
Dump:	chromecache_452.11.dr
ID:	dr_137
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 64 x 65, 8-bit/color RGBA, non-interlaced
Entropy:	7.91942574057568
Encrypted:	false
Size:	3110
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 453
Category:	dropped
Dump:	chromecache_453.11.dr
ID:	dr_140
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced
Entropy:	7.9374734002667475
Encrypted:	false
Size:	5860
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 454
Category:	downloaded
Dump:	chromecache_454.11.dr
ID:	dr_431
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 175 x 56, 8-bit/color RGB, non-interlaced
Entropy:	7.871519647103774
Encrypted:	false
Size:	5465
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 455
Category:	downloaded
Dump:	chromecache_455.11.dr
ID:	dr_432
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced
Entropy:	7.951982453860213
Encrypted:	false
Size:	6884
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 460
Category:	downloaded
Dump:	chromecache_460.11.dr
ID:	dr_433
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel
Entropy:	3.4425839358241284
Encrypted:	false
Size:	5430
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 461
Category:	downloaded
Dump:	chromecache_461.11.dr
ID:	dr_434
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 48x48, components 3
Entropy:	7.592079243037705
Encrypted:	false
Size:	1591
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 462
Category:	downloaded
Dump:	chromecache_462.11.dr
ID:	dr_435
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 16 x 16, 8-bit colormap, non-interlaced
Entropy:	7.1722329817359105
Encrypted:	false
Size:	396
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 463
Category:	downloaded
Dump:	chromecache_463.11.dr
ID:	dr_436
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	HTML document, ASCII text, with no line terminators
Entropy:	2.7773627950641693
Encrypted:	false
Size:	13
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 466
Category:	downloaded
Dump:	chromecache_466.11.dr
ID:	dr_437
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 320x233, components 3
Entropy:	7.9654549011774005
Encrypted:	false
Size:	29627
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 467
Category:	dropped
Dump:	chromecache_467.11.dr
ID:	dr_163
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=14, height=355, bps=182, PhotometricIntepretation=RGB, orientation=upper-left, width=250], baseline, precision 8, 200x284, components 3
Entropy:	7.8717957981095905
Encrypted:	false
Size:	80416
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 469
Category:	downloaded
Dump:	chromecache_469.11.dr
ID:	dr_438
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=15, height=4000, bps=194, PhotometricIntepretation=RGB, description=Collage of India images - travel background (my photos), orientation=upper-left, width=3979], progressive, precision 8, 250x150, components 3
Entropy:	7.861833249820695
Encrypted:	false
Size:	76322
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 470
Category:	downloaded
Dump:	chromecache_470.11.dr
ID:	dr_439
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	RIFF (little-endian) data, Web/P image, VP8 encoding, 350x321, Suserng: [none]x[none], YUV color, decoders should clamp
Entropy:	7.996147993622464
Encrypted:	true
Size:	52550
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 473
Category:	dropped
Dump:	chromecache_473.11.dr
ID:	dr_174
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 25x25, components 3
Entropy:	7.35724467643822
Encrypted:	false
Size:	2407
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 475
Category:	downloaded
Dump:	chromecache_475.11.dr
ID:	dr_440
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 150x198, components 3
Entropy:	7.946298913559915
Encrypted:	false
Size:	8135
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 478
Category:	dropped
Dump:	chromecache_478.11.dr
ID:	dr_181
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 65 x 64, 8-bit/color RGBA, non-interlaced
Entropy:	7.860670320286306
Encrypted:	false
Size:	1936
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 480
Category:	dropped
Dump:	chromecache_480.11.dr
ID:	dr_183
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=15], baseline, precision 8, 240x336, components 3
Entropy:	7.830698253501489
Encrypted:	false
Size:	81049
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 482
Category:	dropped
Dump:	chromecache_482.11.dr
ID:	dr_186
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 58 x 60, 8-bit colormap, non-interlaced
Entropy:	7.924359832865836
Encrypted:	false
Size:	3417
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 485
Category:	downloaded
Dump:	chromecache_485.11.dr
ID:	dr_441
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 48x48, components 3
Entropy:	7.700993774157886
Encrypted:	false
Size:	2327
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 488
Category:	downloaded
Dump:	chromecache_488.11.dr
ID:	dr_442
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced
Entropy:	7.893672538105915
Encrypted:	false
Size:	3869
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 490
Category:	downloaded
Dump:	chromecache_490.11.dr
ID:	dr_443
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	HTML document, ASCII text, with very long lines (1007)
Entropy:	5.255457977265869
Encrypted:	false
Size:	6116
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 491
Category:	downloaded
Dump:	chromecache_491.11.dr
ID:	dr_444
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced
Entropy:	7.867307484273802
Encrypted:	false
Size:	3182
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 492
Category:	downloaded
Dump:	chromecache_492.11.dr
ID:	dr_445
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	ASCII text, with very long lines (2343)
Entropy:	5.51283890397623
Encrypted:	false
Size:	52916
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 493
Category:	downloaded
Dump:	chromecache_493.11.dr
ID:	dr_446
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 60 x 60, 8-bit colormap, non-interlaced
Entropy:	7.706047394766769
Encrypted:	false
Size:	2702
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 496
Category:	downloaded
Dump:	chromecache_496.11.dr
ID:	dr_447
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	HTML document, ASCII text, with very long lines (519)
Entropy:	5.247598105244769
Encrypted:	false
Size:	3281
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 497
Category:	downloaded
Dump:	chromecache_497.11.dr
ID:	dr_448
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 64 x 64, 8-bit colormap, non-interlaced
Entropy:	7.7714377807035975
Encrypted:	false
Size:	1452
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 499
Category:	downloaded
Dump:	chromecache_499.11.dr
ID:	dr_449
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	RIFF (little-endian) data, Web/P image, VP8 encoding, 769x248, Suserng: [none]x[none], YUV color, decoders should clamp
Entropy:	7.980174918942205
Encrypted:	false
Size:	11266
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 502
Category:	downloaded
Dump:	chromecache_502.11.dr
ID:	dr_450
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	ASCII text, with very long lines (2664)
Entropy:	5.53990278073423
Encrypted:	false
Size:	57797
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 503
Category:	downloaded
Dump:	chromecache_503.11.dr
ID:	dr_451
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 175 x 40, 8-bit colormap, non-interlaced
Entropy:	7.732981963121503
Encrypted:	false
Size:	2502
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 505
Category:	downloaded
Dump:	chromecache_505.11.dr
ID:	dr_452
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 48x48, components 3
Entropy:	7.702769293348073
Encrypted:	false
Size:	2759
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 506
Category:	downloaded
Dump:	chromecache_506.11.dr
ID:	dr_453
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	GIF image data, version 89a, 1 x 1
Entropy:	3.16293190511019
Encrypted:	false
Size:	43
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 508
Category:	dropped
Dump:	chromecache_508.11.dr
ID:	dr_75
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 300x211, components 3
Entropy:	7.8539914593355356
Encrypted:	false
Size:	45091
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 510
Category:	downloaded
Dump:	chromecache_510.11.dr
ID:	dr_454
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced
Entropy:	7.886820849991812
Encrypted:	false
Size:	2609
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 512
Category:	dropped
Dump:	chromecache_512.11.dr
ID:	dr_77
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced
Entropy:	6.43145127207669
Encrypted:	false
Size:	1986
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 513
Category:	downloaded
Dump:	chromecache_513.11.dr
ID:	dr_455
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced
Entropy:	7.908760547152259
Encrypted:	false
Size:	4310
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 515
Category:	downloaded
Dump:	chromecache_515.11.dr
ID:	dr_456
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced
Entropy:	7.916782110168894
Encrypted:	false
Size:	4859
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 516
Category:	downloaded
Dump:	chromecache_516.11.dr
ID:	dr_457
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 48x48, components 3
Entropy:	7.595198337370567
Encrypted:	false
Size:	1646
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 517
Category:	dropped
Dump:	chromecache_517.11.dr
ID:	dr_81
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 100 x 75, 8-bit/color RGBA, non-interlaced
Entropy:	7.793823334194017
Encrypted:	false
Size:	3812
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 518
Category:	dropped
Dump:	chromecache_518.11.dr
ID:	dr_82
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 32 x 24, 8-bit colormap, non-interlaced
Entropy:	6.0985523339845376
Encrypted:	false
Size:	500
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 519
Category:	dropped
Dump:	chromecache_519.11.dr
ID:	dr_83
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 175 x 56, 8-bit/color RGB, non-interlaced
Entropy:	7.915908992589697
Encrypted:	false
Size:	6475
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 521
Category:	dropped
Dump:	chromecache_521.11.dr
ID:	dr_85
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	GIF image data, version 89a, 8 x 12
Entropy:	4.886736505003253
Encrypted:	false
Size:	108
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 523
Category:	downloaded
Dump:	chromecache_523.11.dr
ID:	dr_458
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	HTML document, ASCII text, with very long lines (1231)
Entropy:	5.329787912150878
Encrypted:	false
Size:	3197
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 524
Category:	downloaded
Dump:	chromecache_524.11.dr
ID:	dr_459
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	HTML document, Unicode text, UTF-8 text, with very long lines (36831)
Entropy:	5.29718436786275
Encrypted:	false
Size:	97299
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 525
Category:	dropped
Dump:	chromecache_525.11.dr
ID:	dr_89
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	GIF image data, version 89a, 316 x 188
Entropy:	7.918171665024786
Encrypted:	false
Size:	26249
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 526
Category:	downloaded
Dump:	chromecache_526.11.dr
ID:	dr_460
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 16 x 16, 8-bit colormap, non-interlaced
Entropy:	7.477973005695002
Encrypted:	false
Size:	567
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 527
Category:	downloaded
Dump:	chromecache_527.11.dr
ID:	dr_461
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	HTML document, ASCII text, with very long lines (446)
Entropy:	5.322128000292896
Encrypted:	false
Size:	964
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 529
Category:	downloaded
Dump:	chromecache_529.11.dr
ID:	dr_462
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
Entropy:	7.613395524287263
Encrypted:	false
Size:	776
Whitelisted:	false
Reputation:	low

Details

File:	Chrome Cache Entry: 532
Category:	dropped
Dump:	chromecache_532.11.dr
ID:	dr_97
Target ID:	11
Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
Type:	JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=1, copyright=Jacob Ammentorp Lund], baseline, precision 8, 774x491, components 3
Entropy:	7.983195687503847
Encrypted:	false
Size:	236380
Whitelisted:	false
Reputation:	low

Behavior Section

Behavior Chronological

Disassembly

Uncategorized

Graph

IOC Report
ppadsetup.exe

Files

URLs

Domains

IPs

Behavior Section

Behavior Chronological

Disassembly

Uncategorized

Graph

IOC Reportppadsetup.exe

Files

URLs

Domains

IPs

IOC Report
ppadsetup.exe