| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Code function: 2_2_0040626D FindFirstFileA,FindClose, |
2_2_0040626D |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Code function: 2_2_00405732 GetTempPathA,DeleteFileA,lstrcatA,lstrcatA,lstrlenA,FindFirstFileA,FindNextFileA,FindClose, |
2_2_00405732 |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Code function: 2_2_004026FE FindFirstFileA, |
2_2_004026FE |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Code function: 4_2_0040626D FindFirstFileA,FindClose, |
4_2_0040626D |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Code function: 4_2_00405732 GetTempPathA,DeleteFileA,lstrcatA,lstrcatA,lstrlenA,FindFirstFileA,FindNextFileA,FindClose, |
4_2_00405732 |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Code function: 4_2_004026FE FindFirstFileA, |
4_2_004026FE |
| Source: jpgcamscanner_20240521_0072345_JPEG.bat.exe, 00000004.00000002.24172966883.0000000033841000.00000004.00000800.00020000.00000000.sdmp |
String found in binary or memory: http://ip-api.com |
| Source: jpgcamscanner_20240521_0072345_JPEG.bat.exe, 00000004.00000002.24172966883.0000000033841000.00000004.00000800.00020000.00000000.sdmp |
String found in binary or memory: http://ip-api.com/line/?fields=hosting |
| Source: jpgcamscanner_20240521_0072345_JPEG.bat.exe |
String found in binary or memory: http://nsis.sf.net/NSIS_Error |
| Source: jpgcamscanner_20240521_0072345_JPEG.bat.exe |
String found in binary or memory: http://nsis.sf.net/NSIS_ErrorError |
| Source: jpgcamscanner_20240521_0072345_JPEG.bat.exe, 00000004.00000002.24172966883.0000000033841000.00000004.00000800.00020000.00000000.sdmp |
String found in binary or memory: http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name |
| Source: jpgcamscanner_20240521_0072345_JPEG.bat.exe, 00000004.00000002.24163498581.0000000004BD0000.00000004.00001000.00020000.00000000.sdmp, jpgcamscanner_20240521_0072345_JPEG.bat.exe, 00000004.00000002.24162722819.0000000002F78000.00000004.00000020.00020000.00000000.sdmp |
String found in binary or memory: http://veysiseker.com/FOB.bin |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Code function: 2_2_004051CF GetDlgItem,GetDlgItem,GetDlgItem,GetDlgItem,GetClientRect,GetSystemMetrics,SendMessageA,SendMessageA,SendMessageA,SendMessageA,SendMessageA,SendMessageA,ShowWindow,ShowWindow,GetDlgItem,SendMessageA,SendMessageA,SendMessageA,GetDlgItem,CreateThread,FindCloseChangeNotification,ShowWindow,ShowWindow,ShowWindow,SendMessageA,CreatePopupMenu,AppendMenuA,GetWindowRect,TrackPopupMenu,SendMessageA,OpenClipboard,EmptyClipboard,GlobalAlloc,GlobalLock,SendMessageA,GlobalUnlock,SetClipboardData,CloseClipboard, |
2_2_004051CF |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Code function: 2_2_004031D6 EntryPoint,SetErrorMode,GetVersion,lstrlenA,#17,OleInitialize,SHGetFileInfoA,GetCommandLineA,CharNextA,GetTempPathA,GetTempPathA,GetWindowsDirectoryA,lstrcatA,GetTempPathA,lstrcatA,SetEnvironmentVariableA,SetEnvironmentVariableA,SetEnvironmentVariableA,DeleteFileA,OleUninitialize,ExitProcess,lstrcatA,lstrcatA,lstrcatA,lstrcmpiA,SetCurrentDirectoryA,DeleteFileA,CopyFileA,CloseHandle,GetCurrentProcess,OpenProcessToken,LookupPrivilegeValueA,AdjustTokenPrivileges,ExitWindowsEx,ExitProcess, |
2_2_004031D6 |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Code function: 4_2_004031D6 EntryPoint,SetErrorMode,GetVersion,lstrlenA,#17,OleInitialize,SHGetFileInfoA,GetCommandLineA,CharNextA,GetTempPathA,GetTempPathA,GetWindowsDirectoryA,lstrcatA,GetTempPathA,lstrcatA,SetEnvironmentVariableA,SetEnvironmentVariableA,SetEnvironmentVariableA,DeleteFileA,OleUninitialize,ExitProcess,lstrcatA,lstrcatA,lstrcatA,lstrcmpiA,SetCurrentDirectoryA,DeleteFileA,CopyFileA,CloseHandle,GetCurrentProcess,OpenProcessToken,LookupPrivilegeValueA,AdjustTokenPrivileges,ExitWindowsEx,ExitProcess, |
4_2_004031D6 |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Code function: 2_2_00404A0E |
2_2_00404A0E |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Code function: 2_2_004065F6 |
2_2_004065F6 |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Code function: 2_2_6DDA1A9C |
2_2_6DDA1A9C |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Code function: 4_2_00404A0E |
4_2_00404A0E |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Code function: 4_2_004065F6 |
4_2_004065F6 |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Code function: 4_2_00158908 |
4_2_00158908 |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Code function: 4_2_00154908 |
4_2_00154908 |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Code function: 4_2_001581C5 |
4_2_001581C5 |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Code function: 4_2_00153CF0 |
4_2_00153CF0 |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Code function: 4_2_0015BD00 |
4_2_0015BD00 |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Code function: 4_2_00154038 |
4_2_00154038 |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Code function: 4_2_0015E73F |
4_2_0015E73F |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Code function: 4_2_359A3D20 |
4_2_359A3D20 |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Code function: 4_2_359A1BE0 |
4_2_359A1BE0 |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Code function: 4_2_359A9366 |
4_2_359A9366 |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Code function: 4_2_359A5E80 |
4_2_359A5E80 |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Code function: 4_2_359AA6B8 |
4_2_359AA6B8 |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Code function: 4_2_359A46E8 |
4_2_359A46E8 |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Code function: 4_2_359A0128 |
4_2_359A0128 |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Code function: 4_2_359A64CF |
4_2_359A64CF |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Code function: 4_2_359A5798 |
4_2_359A5798 |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Code function: 4_2_001589C2 |
4_2_001589C2 |
| Source: jpgcamscanner_20240521_0072345_JPEG.bat.exe, 00000002.00000000.19073539033.0000000000458000.00000002.00000001.01000000.00000003.sdmp |
Binary or memory string: OriginalFilenamerainiers.exe4 vs jpgcamscanner_20240521_0072345_JPEG.bat.exe |
| Source: jpgcamscanner_20240521_0072345_JPEG.bat.exe, 00000004.00000002.24158159870.0000000000458000.00000002.00000001.01000000.00000003.sdmp |
Binary or memory string: OriginalFilenamerainiers.exe4 vs jpgcamscanner_20240521_0072345_JPEG.bat.exe |
| Source: jpgcamscanner_20240521_0072345_JPEG.bat.exe, 00000004.00000002.24162722819.0000000002FD6000.00000004.00000020.00020000.00000000.sdmp |
Binary or memory string: OriginalFilenameclr.dllT vs jpgcamscanner_20240521_0072345_JPEG.bat.exe |
| Source: jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Binary or memory string: OriginalFilenamerainiers.exe4 vs jpgcamscanner_20240521_0072345_JPEG.bat.exe |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Code function: 2_2_004031D6 EntryPoint,SetErrorMode,GetVersion,lstrlenA,#17,OleInitialize,SHGetFileInfoA,GetCommandLineA,CharNextA,GetTempPathA,GetTempPathA,GetWindowsDirectoryA,lstrcatA,GetTempPathA,lstrcatA,SetEnvironmentVariableA,SetEnvironmentVariableA,SetEnvironmentVariableA,DeleteFileA,OleUninitialize,ExitProcess,lstrcatA,lstrcatA,lstrcatA,lstrcmpiA,SetCurrentDirectoryA,DeleteFileA,CopyFileA,CloseHandle,GetCurrentProcess,OpenProcessToken,LookupPrivilegeValueA,AdjustTokenPrivileges,ExitWindowsEx,ExitProcess, |
2_2_004031D6 |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Code function: 4_2_004031D6 EntryPoint,SetErrorMode,GetVersion,lstrlenA,#17,OleInitialize,SHGetFileInfoA,GetCommandLineA,CharNextA,GetTempPathA,GetTempPathA,GetWindowsDirectoryA,lstrcatA,GetTempPathA,lstrcatA,SetEnvironmentVariableA,SetEnvironmentVariableA,SetEnvironmentVariableA,DeleteFileA,OleUninitialize,ExitProcess,lstrcatA,lstrcatA,lstrcatA,lstrcmpiA,SetCurrentDirectoryA,DeleteFileA,CopyFileA,CloseHandle,GetCurrentProcess,OpenProcessToken,LookupPrivilegeValueA,AdjustTokenPrivileges,ExitWindowsEx,ExitProcess, |
4_2_004031D6 |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Section loaded: edgegdi.dll |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Section loaded: uxtheme.dll |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Section loaded: userenv.dll |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Section loaded: apphelp.dll |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Section loaded: propsys.dll |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Section loaded: dwmapi.dll |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Section loaded: cryptbase.dll |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Section loaded: oleacc.dll |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Section loaded: version.dll |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Section loaded: shfolder.dll |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Section loaded: kernel.appcore.dll |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Section loaded: windows.storage.dll |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Section loaded: wldp.dll |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Section loaded: riched20.dll |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Section loaded: usp10.dll |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Section loaded: msls31.dll |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Section loaded: textinputframework.dll |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Section loaded: coreuicomponents.dll |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Section loaded: coremessaging.dll |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Section loaded: ntmarta.dll |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Section loaded: wintypes.dll |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Section loaded: wintypes.dll |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Section loaded: wintypes.dll |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Section loaded: textshaping.dll |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Section loaded: winmm.dll |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Section loaded: winmm.dll |
Jump to behavior |
| Source: C:\Windows\System32\dllhost.exe |
Section loaded: kernel.appcore.dll |
Jump to behavior |
| Source: C:\Windows\System32\dllhost.exe |
Section loaded: edgegdi.dll |
Jump to behavior |
| Source: C:\Windows\System32\dllhost.exe |
Section loaded: uxtheme.dll |
Jump to behavior |
| Source: C:\Windows\System32\dllhost.exe |
Section loaded: thumbcache.dll |
Jump to behavior |
| Source: C:\Windows\System32\dllhost.exe |
Section loaded: propsys.dll |
Jump to behavior |
| Source: C:\Windows\System32\dllhost.exe |
Section loaded: photometadatahandler.dll |
Jump to behavior |
| Source: C:\Windows\System32\dllhost.exe |
Section loaded: windowscodecs.dll |
Jump to behavior |
| Source: C:\Windows\System32\dllhost.exe |
Section loaded: onecoreuapcommonproxystub.dll |
Jump to behavior |
| Source: C:\Windows\System32\dllhost.exe |
Section loaded: windows.storage.dll |
Jump to behavior |
| Source: C:\Windows\System32\dllhost.exe |
Section loaded: wldp.dll |
Jump to behavior |
| Source: C:\Windows\System32\dllhost.exe |
Section loaded: windows.staterepositoryps.dll |
Jump to behavior |
| Source: C:\Windows\System32\dllhost.exe |
Section loaded: wintypes.dll |
Jump to behavior |
| Source: C:\Windows\System32\dllhost.exe |
Section loaded: apphelp.dll |
Jump to behavior |
| Source: C:\Windows\System32\dllhost.exe |
Section loaded: mfsrcsnk.dll |
Jump to behavior |
| Source: C:\Windows\System32\dllhost.exe |
Section loaded: mfplat.dll |
Jump to behavior |
| Source: C:\Windows\System32\dllhost.exe |
Section loaded: rtworkq.dll |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Section loaded: edgegdi.dll |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Section loaded: wininet.dll |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Section loaded: iertutil.dll |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Section loaded: sspicli.dll |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Section loaded: windows.storage.dll |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Section loaded: wldp.dll |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Section loaded: profapi.dll |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Section loaded: kernel.appcore.dll |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Section loaded: ondemandconnroutehelper.dll |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Section loaded: winhttp.dll |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Section loaded: mswsock.dll |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Section loaded: iphlpapi.dll |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Section loaded: winnsi.dll |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Section loaded: urlmon.dll |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Section loaded: srvcli.dll |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Section loaded: netutils.dll |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Section loaded: dnsapi.dll |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Section loaded: rasadhlp.dll |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Section loaded: fwpuclnt.dll |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Section loaded: mscoree.dll |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Section loaded: version.dll |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Section loaded: vcruntime140_clr0400.dll |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Section loaded: ucrtbase_clr0400.dll |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Section loaded: uxtheme.dll |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Section loaded: cryptsp.dll |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Section loaded: rsaenh.dll |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Section loaded: cryptbase.dll |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Section loaded: wbemcomn.dll |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Section loaded: amsi.dll |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Section loaded: userenv.dll |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Section loaded: rasapi32.dll |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Section loaded: rasman.dll |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Section loaded: rtutils.dll |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Section loaded: dhcpcsvc6.dll |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Section loaded: dhcpcsvc.dll |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Section loaded: dpapi.dll |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Section loaded: vaultcli.dll |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Section loaded: wintypes.dll |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Code function: 2_2_0040626D FindFirstFileA,FindClose, |
2_2_0040626D |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Code function: 2_2_00405732 GetTempPathA,DeleteFileA,lstrcatA,lstrcatA,lstrlenA,FindFirstFileA,FindNextFileA,FindClose, |
2_2_00405732 |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Code function: 2_2_004026FE FindFirstFileA, |
2_2_004026FE |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Code function: 4_2_0040626D FindFirstFileA,FindClose, |
4_2_0040626D |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Code function: 4_2_00405732 GetTempPathA,DeleteFileA,lstrcatA,lstrcatA,lstrlenA,FindFirstFileA,FindNextFileA,FindClose, |
4_2_00405732 |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Code function: 4_2_004026FE FindFirstFileA, |
4_2_004026FE |
| Source: C:\Users\user\Desktop\jpgcamscanner_20240521_0072345_JPEG.bat.exe |
Code function: 2_2_004031D6 EntryPoint,SetErrorMode,GetVersion,lstrlenA,#17,OleInitialize,SHGetFileInfoA,GetCommandLineA,CharNextA,GetTempPathA,GetTempPathA,GetWindowsDirectoryA,lstrcatA,GetTempPathA,lstrcatA,SetEnvironmentVariableA,SetEnvironmentVariableA,SetEnvironmentVariableA,DeleteFileA,OleUninitialize,ExitProcess,lstrcatA,lstrcatA,lstrcatA,lstrcmpiA,SetCurrentDirectoryA,DeleteFileA,CopyFileA,CloseHandle,GetCurrentProcess,OpenProcessToken,LookupPrivilegeValueA,AdjustTokenPrivileges,ExitWindowsEx,ExitProcess, |
2_2_004031D6 |
Is Dropped
Is Windows Process
Number of created Registry Values
Number of created Files
Visual Basic
Delphi
Java
.Net C# or VB.NET
C, C++ or other language
Is malicious
Internet