Automated Malware Analysis IOC Report for

Files

File Path

Type

Category

Malicious

SecuriteInfo.com.PUA.INNO.APNToolbar.5344.7442.exe

PE32 executable (GUI) Intel 80386, for MS Windows

initial sample

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\FIELDS\GF_1.PNG (copy)

PNG image data, 800 x 600, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\FIELDS\GF_2.PNG (copy)

PNG image data, 800 x 600, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\FIELDS\GF_3.PNG (copy)

PNG image data, 800 x 600, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\FIELDS\GF_4.PNG (copy)

PNG image data, 800 x 600, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\FIELDS\GF_5.PNG (copy)

PNG image data, 800 x 600, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\FIELDS\GF_6.PNG (copy)

PNG image data, 800 x 600, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\FIELDS\GF_7.PNG (copy)

PNG image data, 800 x 600, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\GUYS\1\go_left.png (copy)

PNG image data, 2000 x 100, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\GUYS\1\go_right.png (copy)

PNG image data, 2000 x 100, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\GUYS\1\jump.png (copy)

PNG image data, 2000 x 100, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\GUYS\1\jump_left.png (copy)

PNG image data, 1800 x 100, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\GUYS\1\jump_right.png (copy)

PNG image data, 1800 x 100, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\GUYS\1\stand.png (copy)

PNG image data, 1400 x 100, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\GUYS\2\go_left.png (copy)

PNG image data, 2000 x 100, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\GUYS\2\go_right.png (copy)

PNG image data, 2000 x 100, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\GUYS\2\jump.png (copy)

PNG image data, 2000 x 100, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\GUYS\2\jump_left.png (copy)

PNG image data, 1800 x 100, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\GUYS\2\jump_right.png (copy)

PNG image data, 1800 x 100, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\GUYS\2\stand.png (copy)

PNG image data, 1400 x 100, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\GUYS\3\go_left.png (copy)

PNG image data, 2000 x 100, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\GUYS\3\go_right.png (copy)

PNG image data, 2000 x 100, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\GUYS\3\jump.png (copy)

PNG image data, 2000 x 100, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\GUYS\3\jump_left.png (copy)

PNG image data, 1800 x 100, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\GUYS\3\jump_right.png (copy)

PNG image data, 1800 x 100, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\GUYS\3\stand.png (copy)

PNG image data, 1400 x 100, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\GUYS\4\go_left.png (copy)

PNG image data, 2000 x 100, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\GUYS\4\go_right.png (copy)

PNG image data, 2000 x 100, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\GUYS\4\jump.png (copy)

PNG image data, 2000 x 100, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\GUYS\4\jump_left.png (copy)

PNG image data, 1800 x 100, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\GUYS\4\jump_right.png (copy)

PNG image data, 1800 x 100, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\GUYS\4\stand.png (copy)

PNG image data, 1400 x 100, 8-bit/color RGB, non-interlaced

dropped

C:\Users\user\AppData\Local\Temp\is-TA4DQ.tmp\SecuriteInfo.com.PUA.INNO.APNToolbar.5344.7442.tmp

PE32 executable (GUI) Intel 80386, for MS Windows

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\FIELDS\BALL.png (copy)

PNG image data, 160 x 40, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\FIELDS\is-088SQ.tmp

PNG image data, 800 x 600, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\FIELDS\is-0PCK4.tmp

PNG image data, 800 x 600, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\FIELDS\is-743T3.tmp

PNG image data, 160 x 40, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\FIELDS\is-ED0R5.tmp

PNG image data, 800 x 600, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\FIELDS\is-K47V6.tmp

PNG image data, 800 x 600, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\FIELDS\is-LCEPI.tmp

PNG image data, 800 x 600, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\FIELDS\is-OOB98.tmp

PNG image data, 800 x 600, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\FIELDS\is-UHOQJ.tmp

PNG image data, 800 x 600, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\GUYS\1\is-23R70.tmp

PNG image data, 1800 x 100, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\GUYS\1\is-BPR5C.tmp

PNG image data, 2000 x 100, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\GUYS\1\is-H40E0.tmp

PNG image data, 1400 x 100, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\GUYS\1\is-IKL8F.tmp

PNG image data, 1800 x 100, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\GUYS\1\is-OHCG9.tmp

PNG image data, 2000 x 100, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\GUYS\1\is-U5UKN.tmp

PNG image data, 2000 x 100, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\GUYS\2\is-7A2KE.tmp

PNG image data, 1400 x 100, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\GUYS\2\is-AGRK5.tmp

PNG image data, 2000 x 100, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\GUYS\2\is-FVD10.tmp

PNG image data, 2000 x 100, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\GUYS\2\is-JM4GE.tmp

PNG image data, 1800 x 100, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\GUYS\2\is-OEQP5.tmp

PNG image data, 2000 x 100, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\GUYS\2\is-RJDCG.tmp

PNG image data, 1800 x 100, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\GUYS\3\is-00C9G.tmp

PNG image data, 2000 x 100, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\GUYS\3\is-1CQ6P.tmp

PNG image data, 1400 x 100, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\GUYS\3\is-5PQGD.tmp

PNG image data, 1800 x 100, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\GUYS\3\is-G5LPI.tmp

PNG image data, 2000 x 100, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\GUYS\3\is-HNM8F.tmp

PNG image data, 2000 x 100, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\GUYS\3\is-JSFFJ.tmp

PNG image data, 1800 x 100, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\GUYS\4\is-0P8HD.tmp

PNG image data, 2000 x 100, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\GUYS\4\is-2C6A2.tmp

PNG image data, 1800 x 100, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\GUYS\4\is-GGP9K.tmp

PNG image data, 1400 x 100, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\GUYS\4\is-K7BHR.tmp

PNG image data, 2000 x 100, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\GUYS\4\is-P4899.tmp

PNG image data, 1800 x 100, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\GUYS\4\is-Q50OF.tmp

PNG image data, 2000 x 100, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\MENU\COMPL.jpg (copy)

JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=5, orientation=upper-left, software=ACD Systems Digital Imaging, datetime=2003:03:07 16:15:20], baseline, precision 8, 240x19, components 3

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\MENU\COMPR.jpg (copy)

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\MENU\CURSOR.PNG (copy)

PNG image data, 37 x 25, 4-bit colormap, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\MENU\EXIT.png (copy)

PNG image data, 412 x 24, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\MENU\FONT.PNG (copy)

PNG image data, 2016 x 30, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\MENU\HELP.png (copy)

PNG image data, 292 x 24, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\MENU\HELP_SC.jpg (copy)

JPEG image data, JFIF standard 1.02, resolution (DPCM), density 0x0, segment length 16, comment: "ACD Systems Digital Imaging", baseline, precision 8, 756x266, components 3

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\MENU\KEYL.jpg (copy)

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\MENU\KEYR.jpg (copy)

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\MENU\MUSIC_OFF.png (copy)

PNG image data, 548 x 24, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\MENU\MUSIC_ON.png (copy)

PNG image data, 548 x 24, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\MENU\NEW.png (copy)

PNG image data, 400 x 24, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\MENU\OVER.jpg (copy)

JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 800x600, components 3

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\MENU\SL_EASY.jpg (copy)

JPEG image data, JFIF standard 1.02, resolution (DPCM), density 0x0, segment length 16, comment: "ACD Systems Digital Imaging", baseline, precision 8, 280x22, components 3

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\MENU\SL_HARD.jpg (copy)

JPEG image data, JFIF standard 1.02, resolution (DPCM), density 0x0, segment length 16, comment: "ACD Systems Digital Imaging", baseline, precision 8, 352x22, components 3

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\MENU\SL_MEDIUM.jpg (copy)

JPEG image data, JFIF standard 1.02, resolution (DPCM), density 0x0, segment length 16, comment: "ACD Systems Digital Imaging", baseline, precision 8, 392x22, components 3

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\MENU\SOUND_OFF.png (copy)

PNG image data, 524 x 24, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\MENU\SOUND_ON.png (copy)

PNG image data, 524 x 24, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\MENU\is-15JM0.tmp

PNG image data, 524 x 24, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\MENU\is-24VT4.tmp

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\MENU\is-7RDDH.tmp

PNG image data, 548 x 24, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\MENU\is-ACVFI.tmp

PNG image data, 548 x 24, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\MENU\is-D0FI2.tmp

PNG image data, 400 x 24, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\MENU\is-DTTG6.tmp

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\MENU\is-E8B32.tmp

PNG image data, 524 x 24, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\MENU\is-G2FFC.tmp

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\MENU\is-GN7EQ.tmp

JPEG image data, JFIF standard 1.02, resolution (DPCM), density 0x0, segment length 16, comment: "ACD Systems Digital Imaging", baseline, precision 8, 352x22, components 3

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\MENU\is-H0Q0G.tmp

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\MENU\is-HGGVI.tmp

PNG image data, 37 x 25, 4-bit colormap, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\MENU\is-JSIHA.tmp

JPEG image data, JFIF standard 1.02, resolution (DPCM), density 0x0, segment length 16, comment: "ACD Systems Digital Imaging", baseline, precision 8, 392x22, components 3

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\MENU\is-KTGPD.tmp

JPEG image data, JFIF standard 1.02, resolution (DPCM), density 0x0, segment length 16, comment: "ACD Systems Digital Imaging", baseline, precision 8, 756x266, components 3

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\MENU\is-LVUIC.tmp

JPEG image data, JFIF standard 1.02, resolution (DPCM), density 0x0, segment length 16, comment: "ACD Systems Digital Imaging", baseline, precision 8, 280x22, components 3

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\MENU\is-N6BNT.tmp

JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS Windows, datetime=2008:03:13 06:28:05], baseline, precision 8, 800x600, components 3

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\MENU\is-PCKNO.tmp

JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 800x600, components 3

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\MENU\is-PMGBU.tmp

PNG image data, 412 x 24, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\MENU\is-PQ7B6.tmp

PNG image data, 2016 x 30, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\MENU\is-TJ4DM.tmp

PNG image data, 292 x 24, 8-bit/color RGB, non-interlaced

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\MENU\start.jpg (copy)

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\MUSIC\Solovey.mp3 (copy)

MPEG ADTS, layer III, v1, 48 kbps, 44.1 kHz, JntStereo

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\MUSIC\is-UTDHN.tmp

MPEG ADTS, layer III, v1, 48 kbps, 44.1 kHz, JntStereo

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\SOUND\goul.wav (copy)

RIFF (little-endian) data, WAVE audio, Microsoft PCM, 8 bit, mono 11025 Hz

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\SOUND\is-0MDVI.tmp

RIFF (little-endian) data, WAVE audio, Microsoft PCM, 8 bit, mono 11025 Hz

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\SOUND\is-39E43.tmp

RIFF (little-endian) data, WAVE audio, Microsoft PCM, 8 bit, mono 11025 Hz

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\SOUND\is-AQEM4.tmp

RIFF (little-endian) data, WAVE audio, Microsoft PCM, 8 bit, mono 11025 Hz

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\SOUND\is-US0R1.tmp

RIFF (little-endian) data, WAVE audio, Microsoft PCM, 8 bit, mono 11025 Hz

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\SOUND\pl_str.wav (copy)

RIFF (little-endian) data, WAVE audio, Microsoft PCM, 8 bit, mono 11025 Hz

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\SOUND\s_str.wav (copy)

RIFF (little-endian) data, WAVE audio, Microsoft PCM, 8 bit, mono 11025 Hz

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\SOUND\wall_str.wav (copy)

RIFF (little-endian) data, WAVE audio, Microsoft PCM, 8 bit, mono 11025 Hz

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\game.exe (copy)

PE32 executable (GUI) Intel 80386, for MS Windows

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\install.url (copy)

MS Windows 95 Internet shortcut text (URL=<http://www.myrealgames.com?utm_source=VolleyballFight&utm_medium=downloadable_install>), ASCII text, with CRLF line terminators

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\is-893OV.tmp

MS Windows 95 Internet shortcut text (URL=<http://www.myrealgames.com?utm_source=VolleyballFight&utm_medium=downloadable_website>), ASCII text, with CRLF line terminators

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\is-GCN1I.tmp

MS Windows 95 Internet shortcut text (URL=<http://www.myrealgames.com?utm_source=VolleyballFight&utm_medium=downloadable_install>), ASCII text, with CRLF line terminators

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\is-IAKEI.tmp

MS Windows 95 Internet shortcut text (URL=<http://www.myrealgames.com?utm_source=VolleyballFight&utm_medium=downloadable_uninstall>), ASCII text, with CRLF line terminators

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\is-IEG5U.tmp

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\is-MD5KH.tmp

MS Windows 95 Internet shortcut text (URL=<http://www.myrealgames.com?utm_source=VolleyballFight&utm_medium=downloadable_play>), ASCII text, with CRLF line terminators

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\is-NQGNM.tmp

PE32 executable (GUI) Intel 80386, for MS Windows

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\is-PI5E6.tmp

PE32 executable (GUI) Intel 80386, for MS Windows

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\is-U9U0U.tmp

JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 800x600, components 3

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\play.url (copy)

MS Windows 95 Internet shortcut text (URL=<http://www.myrealgames.com?utm_source=VolleyballFight&utm_medium=downloadable_play>), ASCII text, with CRLF line terminators

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\reglib.dll (copy)

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\start.jpg (copy)

JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 800x600, components 3

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\unins000.dat

InnoSetup Log Volleyball Fight, version 0x418, 31013 bytes, 849224\37\user\, C:\Program Files (x86)\MyRealGames.com\Vol

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\unins000.exe (copy)

PE32 executable (GUI) Intel 80386, for MS Windows

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\uninstall.url (copy)

MS Windows 95 Internet shortcut text (URL=<http://www.myrealgames.com?utm_source=VolleyballFight&utm_medium=downloadable_uninstall>), ASCII text, with CRLF line terminators

dropped

C:\Program Files (x86)\MyRealGames.com\Volleyball Fight\website.url (copy)

MS Windows 95 Internet shortcut text (URL=<http://www.myrealgames.com?utm_source=VolleyballFight&utm_medium=downloadable_website>), ASCII text, with CRLF line terminators

dropped

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyRealGames.com\Volleyball Fight\Play Volleyball Fight.lnk

MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Archive, ctime=Wed May 22 19:08:25 2024, mtime=Wed May 22 19:08:26 2024, atime=Mon May 5 20:29:20 2008, length=1323008, window=hide

dropped

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyRealGames.com\Volleyball Fight\Uninstall Volleyball Fight.lnk

MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Archive, ctime=Wed May 22 19:08:25 2024, mtime=Wed May 22 19:08:25 2024, atime=Wed May 22 19:08:00 2024, length=1194185, window=hide

dropped

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyRealGames.com\Volleyball Fight\Visit MyRealGames.com.lnk

MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Icon number=0, Archive, ctime=Wed May 22 19:08:26 2024, mtime=Wed May 22 19:08:26 2024, atime=Fri Jun 6 23:56:28 2014, length=111, window=hide

dropped

C:\Users\user\AppData\Local\Temp\is-S9K2R.tmp\_isetup\_setup64.tmp

PE32+ executable (console) x86-64, for MS Windows

dropped

C:\Users\user\AppData\Local\Temp\is-S9K2R.tmp\_isetup\_shfoldr.dll

PE32 executable (DLL) (GUI) Intel 80386 (stripped to external PDB), for MS Windows

dropped

C:\Users\user\Desktop\Volleyball Fight.lnk

MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Archive, ctime=Wed May 22 19:08:25 2024, mtime=Wed May 22 19:08:25 2024, atime=Mon May 5 20:29:20 2008, length=1323008, window=hide

dropped

Chrome Cache Entry: 118

PNG image data, 81 x 71, 8-bit/color RGBA, non-interlaced

dropped

Chrome Cache Entry: 119

PNG image data, 92 x 286, 8-bit/color RGBA, non-interlaced

downloaded

Chrome Cache Entry: 120

ASCII text, with very long lines (65518)

downloaded

Chrome Cache Entry: 121

GIF image data, version 89a, 31 x 26

downloaded

Chrome Cache Entry: 122

ASCII text, with very long lines (1210)

downloaded

Chrome Cache Entry: 123

PNG image data, 92 x 286, 8-bit/color RGBA, non-interlaced

dropped

Chrome Cache Entry: 124

JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS5 Windows, datetime=2019:01:24 12:11:53], baseline, precision 8, 80x80, components 3

downloaded

Chrome Cache Entry: 125

GIF image data, version 89a, 31 x 26

dropped

Chrome Cache Entry: 126

MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel

downloaded

Chrome Cache Entry: 127

GIF image data, version 89a, 31 x 26

dropped

Chrome Cache Entry: 128

dropped

Chrome Cache Entry: 129

PNG image data, 81 x 71, 8-bit/color RGBA, non-interlaced

downloaded

Chrome Cache Entry: 130

MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel

dropped

Chrome Cache Entry: 131

GIF image data, version 89a, 31 x 26

downloaded

There are 141 hidden files, click here to show them.

Processes

Path

Cmdline

Malicious

C:\Users\user\AppData\Local\Temp\is-TA4DQ.tmp\SecuriteInfo.com.PUA.INNO.APNToolbar.5344.7442.tmp

"C:\Users\user\AppData\Local\Temp\is-TA4DQ.tmp\SecuriteInfo.com.PUA.INNO.APNToolbar.5344.7442.tmp" /SL5="$10416,8952147,119296,C:\Users\user\Desktop\SecuriteInfo.com.PUA.INNO.APNToolbar.5344.7442.exe"

Details

Is windows:	false
Is dropped:	true
PID:	5280
Target ID:	2
Parent PID:	4420
Name:	SecuriteInfo.com.PUA.INNO.APNToolbar.5344.7442.tmp
Path:	C:\Users\user\AppData\Local\Temp\is-TA4DQ.tmp\SecuriteInfo.com.PUA.INNO.APNToolbar.5344.7442.tmp
Commandline:	"C:\Users\user\AppData\Local\Temp\is-TA4DQ.tmp\SecuriteInfo.com.PUA.INNO.APNToolbar.5344.7442.tmp" /SL5="$10416,8952147,119296,C:\Users\user\Desktop\SecuriteInfo.com.PUA.INNO.APNToolbar.5344.7442.exe"
Size:	1171456
MD5:	E4A2856522E6A817E3F0EDD2677FA647
Time:	16:08:00
Date:	22/05/2024
Reason:	newprocess
Reputation:	moderate
Is admin:	true
Is elevated:	true
Modulebase:	0x400000
Modulesize:	1224704
Wow64:	true

Signature Hits	Behavior Group	Mitre Attack
Drops PE files	Persistence and Installation Behavior
Spawns processes	System Summary	Process Injection

C:\Users\user\Desktop\SecuriteInfo.com.PUA.INNO.APNToolbar.5344.7442.exe

"C:\Users\user\Desktop\SecuriteInfo.com.PUA.INNO.APNToolbar.5344.7442.exe"

Details

Is windows:	false
Is dropped:	false
PID:	4420
Target ID:	1
Parent PID:	4004
Name:	SecuriteInfo.com.PUA.INNO.APNToolbar.5344.7442.exe
Path:	C:\Users\user\Desktop\SecuriteInfo.com.PUA.INNO.APNToolbar.5344.7442.exe
Commandline:	"C:\Users\user\Desktop\SecuriteInfo.com.PUA.INNO.APNToolbar.5344.7442.exe"
Size:	9361914
MD5:	16A4DB609AD33CD94252D33D78869A04
Time:	16:08:00
Date:	22/05/2024
Reason:	newprocess
Reputation:	low
Is admin:	true
Is elevated:	true
Modulebase:	0x400000
Modulesize:	163840
Wow64:	true

Signature Hits	Behavior Group	Mitre Attack
Sample file is different than original file name gathered from version info	System Summary
Uses 32bit PE files	Compliance, System Summary
Sample might require command line arguments	System Summary	Command and Scripting Interpreter
Sample reads its own file content	System Summary
Spawns processes	System Summary	Process Injection
URLs found in memory or binary data	Networking
Submission file is bigger than most known malware samples	System Summary

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --single-argument http://www.myrealgames.com/?utm_source=VolleyballFight&utm_medium=downloadable_install

Details

Is windows:	true
Is dropped:	false
PID:	2656
Target ID:	6
Parent PID:	5280
Name:	chrome.exe
Path:	C:\Program Files\Google\Chrome\Application\chrome.exe
Commandline:	"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --single-argument http://www.myrealgames.com/?utm_source=VolleyballFight&utm_medium=downloadable_install
Size:	3242272
MD5:	5BBFA6CBDF4C254EB368D534F9E23C92
Time:	16:08:28
Date:	22/05/2024
Reason:	newprocess
Reputation:	high
Is admin:	true
Is elevated:	true
Modulebase:	0x7ff684c40000
Modulesize:	3325952
Wow64:	false

Signature Hits	Behavior Group	Mitre Attack
Creates a process in suspended mode (likely to inject code)	HIPS / PFW / Operating System Protection Evasion	Process Injection
Spawns processes	System Summary	Process Injection

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2092 --field-trial-handle=2040,i,4332193433497221283,9164000764175656258,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8

Details

Is windows:	true
Is dropped:	false
PID:	3000
Target ID:	8
Parent PID:	2656
Name:	chrome.exe
Path:	C:\Program Files\Google\Chrome\Application\chrome.exe
Commandline:	"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2092 --field-trial-handle=2040,i,4332193433497221283,9164000764175656258,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Size:	3242272
MD5:	5BBFA6CBDF4C254EB368D534F9E23C92
Time:	16:08:29
Date:	22/05/2024
Reason:	newprocess
Reputation:	high
Is admin:	true
Is elevated:	true
Modulebase:	0x7ff684c40000
Modulesize:	3325952
Wow64:	false

Signature Hits	Behavior Group	Mitre Attack
Creates a process in suspended mode (likely to inject code)	HIPS / PFW / Operating System Protection Evasion	Process Injection
Spawns processes	System Summary	Process Injection

URLs

Name

Malicious

http://www.innosetup.com/

unknown

http://www.myrealgames.com/?utm_source=VolleyballFight&utm_medium=downloadable_installi6;

unknown

https://www.myrealgames.com/images/flags/fr.gif

66.242.8.2

http://www.6ixsoft.com.

unknown

http://www.myrealgames.com?utm_source=VolleyballFight&utm_medium=downloadable_installr

unknown

http://www.myrealgames.com?utm_source=VolleyballFight&utm_medium=downloadable_install

unknown

http://www.myrealgames.com/?utm_source=VolleyballFight&utm_medium=downloadable_installC:

unknown

https://github.com/twbs/bootstrap/blob/main/LICENSE)

unknown

http://www.jrsoftware.org/ishelp/index.php?topic=setupcmdlineSetupU

unknown

http://www.myrealgames.com/?utm_source=VolleyballFight&utm_medium=downloadable_install#

unknown

http://about.ask.com/en/docs/about/privacy.shtml

unknown

http://www.myrealgames.com?utm_source=VolleyballFight&utm_medium=downloadable_play

unknown

http://www.myrealgames.com?utm_source=VolleyballFight&utm_medium=downloadable_website

unknown

http://www.myrealgames.com/?utm_source=VolleyballFight&utm_medium=downloadable_installV6

unknown

http://www.myrealgames.com/?utm_source=VolleyballFight&utm_medium=downloadable_installb

unknown

http://www.myrealgames.com/?utm_source=VolleyballFight&utm_medium=downloadable_installlM

unknown

https://www.myrealgames.com/favicon.ico

66.242.8.2

http://www.myrealgames.com/?utm_source=VolleyballFight&utm_medium=downloadable_installKM

unknown

http://www.myrealgames.com?utm_source=VolleyballFight&utm_medium=downloadable_installDXi

unknown

https://cdn.myrealgames.com/images/bg.jpg

67.216.91.202

http://www.myrealgames.com/Z

unknown

https://getbootstrap.com/)

unknown

http://www.6ixsoft.com.2.4.1zlib

unknown

https://jquery.org/license

unknown

https://cdn.myrealgames.com/minify/38f176f009d31d679ce5017dd72c4b1d68ebdb1c.js

67.216.91.202

http://www.myrealgames.com/?utm_source=VolleyballFight&utm_medium=downloadable_install

66.242.8.2

https://github.com/twbs/bootstrap/graphs/contributors)

unknown

https://jquery.com/

unknown

http://www.myrealgames.com/?utm_source=VolleyballFight&utm_medium=downloadable_installC

unknown

https://www.myrealgames.com/?utm_source=VolleyballFight&utm_medium=downloadable_install

66.242.8.2

https://cdn.myrealgames.com/images/logo-middle.png

67.216.91.202

http://about.ask.com/en/docs/about/ask_eula.shtml

unknown

http://www.myrealgames.com/?utm_source=VolleyballFight&utm_medium=downloadable_installA

unknown

http://www.myrealgames.com

unknown

https://www.myrealgames.com/images/flags/ru.gif

66.242.8.2

http://www.remobjects.com/ps

unknown

https://cdn.myrealgames.com/minify/76ed5da15d06d5fb97dde5b6ace0430b2b443b2a.css

67.216.91.202

https://popper.js.org)

unknown

http://www.myrealgames.com?utm_source=VolleyballFight&utm_medium=downloadable_uninstall

unknown

http://www.myrealgames.com/privacy.html

unknown

http://www.myrealgames.com/

unknown

http://www.myrealgames.com/?utm_source=VolleyballFight&utm_medium=downloadable_install3

unknown

http://www.myrealgames.com/?utm_source=VolleyballFight&utm_medium=downloadable_installPY

unknown

https://www.myrealgames.com/pcgame-install.html?utm_source=VolleyballFight&utm_medium=downloadable_install

https://cdn.myrealgames.com/images/sprite.png

67.216.91.202

There are 35 hidden URLs, click here to show them.

Domains

Name

Malicious

myrealgames.com

66.242.8.2

Details

Name:	myrealgames.com
IP:	66.242.8.2
TargetID:	8
Current Path:	C:\Program Files\Google\Chrome\Application\chrome.exe
Active:	true

Signature Hits	Behavior Group	Mitre Attack
Creates a process in suspended mode (likely to inject code)	HIPS / PFW / Operating System Protection Evasion	Process Injection
Downloads files from webservers via HTTP	Networking	Application Layer Protocol Non-Application Layer Protocol Ingress Tool Transfer
Performs DNS lookups	Networking	Application Layer Protocol Non-Application Layer Protocol
Spawns processes	System Summary	Process Injection
URLs found in memory or binary data	Networking

static.getclicky.com

104.16.224.240

Details

Name:	static.getclicky.com
IP:	104.16.224.240
TargetID:	8
Current Path:	C:\Program Files\Google\Chrome\Application\chrome.exe
Active:	true

Signature Hits	Behavior Group	Mitre Attack
Performs DNS lookups	Networking	Application Layer Protocol Non-Application Layer Protocol

cdnjs.cloudflare.com

104.17.24.14

Details

Name:	cdnjs.cloudflare.com
IP:	104.17.24.14
TargetID:	8
Current Path:	C:\Program Files\Google\Chrome\Application\chrome.exe
Active:	true

Signature Hits	Behavior Group	Mitre Attack
Performs DNS lookups	Networking	Application Layer Protocol Non-Application Layer Protocol

11133-1.b.cdn12.com

67.216.91.202

www.google.com

142.250.186.100

Details

Name:	www.google.com
IP:	142.250.186.100
TargetID:	8
Current Path:	C:\Program Files\Google\Chrome\Application\chrome.exe
Active:	true

Signature Hits	Behavior Group	Mitre Attack
Performs DNS lookups	Networking	Application Layer Protocol Non-Application Layer Protocol

cdn.myrealgames.com

unknown

Details

Name:	cdn.myrealgames.com
TargetID:	8
Current Path:	C:\Program Files\Google\Chrome\Application\chrome.exe

Signature Hits	Behavior Group	Mitre Attack
Downloads files from webservers via HTTP	Networking	Application Layer Protocol Non-Application Layer Protocol Ingress Tool Transfer
Performs DNS lookups	Networking	Application Layer Protocol Non-Application Layer Protocol

www.myrealgames.com

unknown

Details

Name:	www.myrealgames.com
TargetID:	8
Current Path:	C:\Program Files\Google\Chrome\Application\chrome.exe

Signature Hits	Behavior Group	Mitre Attack
Creates a process in suspended mode (likely to inject code)	HIPS / PFW / Operating System Protection Evasion	Process Injection
Downloads files from webservers via HTTP	Networking	Application Layer Protocol Non-Application Layer Protocol Ingress Tool Transfer
Performs DNS lookups	Networking	Application Layer Protocol Non-Application Layer Protocol
Spawns processes	System Summary	Process Injection
URLs found in memory or binary data	Networking

IPs

Domain

Country

Malicious

104.17.24.14

cdnjs.cloudflare.com

United States

67.216.91.202

11133-1.b.cdn12.com

United States

104.16.224.240

static.getclicky.com

United States

192.168.2.6

unknown

239.255.255.250

unknown

Reserved

142.250.186.100

www.google.com

United States

66.242.8.2

myrealgames.com

United States

Registry

Path

Value

Malicious

HKEY_CURRENT_USER\SOFTWARE\Microsoft\RestartManager\Session0000

Owner

HKEY_CURRENT_USER\SOFTWARE\Microsoft\RestartManager\Session0000

SessionHash

HKEY_CURRENT_USER\SOFTWARE\Microsoft\RestartManager\Session0000

Sequence

HKEY_CURRENT_USER\SOFTWARE\Microsoft\RestartManager\Session0000

RegFiles0000

HKEY_CURRENT_USER\SOFTWARE\Microsoft\RestartManager\Session0000

RegFilesHash

HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Volleyball Fight_is1

Inno Setup: Setup Version

HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Volleyball Fight_is1

Inno Setup: App Path

HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Volleyball Fight_is1

InstallLocation

HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Volleyball Fight_is1

Inno Setup: Icon Group

HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Volleyball Fight_is1

Inno Setup: User

HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Volleyball Fight_is1

Inno Setup: Language

HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Volleyball Fight_is1

DisplayName

HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Volleyball Fight_is1

UninstallString

HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Volleyball Fight_is1

QuietUninstallString

HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Volleyball Fight_is1

Publisher

HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Volleyball Fight_is1

URLInfoAbout

HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Volleyball Fight_is1

NoModify

HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Volleyball Fight_is1

NoRepair

HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Volleyball Fight_is1

InstallDate

HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Volleyball Fight_is1

EstimatedSize

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Cached

{FBF23B40-E3F0-101B-8488-00AA003E56F8} {000214E4-0000-0000-C000-000000000046} 0xFFFF

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer

SlowContextMenuEntries

There are 12 hidden registries, click here to show them.

Memdumps

Base Address

Regiontype

Protect

Malicious

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

889000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

417000

unkown

page read and write

83D000

heap

page read and write

6E4000

heap

page read and write

86E000

heap

page read and write

6E4000

heap

page read and write

854000

heap

page read and write

223E000

direct allocation

page read and write

3560000

heap

page read and write

22F3000

direct allocation

page read and write

232C000

direct allocation

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

87A000

heap

page read and write

6E4000

heap

page read and write

22B6000

direct allocation

page read and write

6E4000

heap

page read and write

6E0000

heap

page read and write

401000

unkown

page execute read

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

831000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

2212000

direct allocation

page read and write

817000

heap

page read and write

412000

unkown

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

419000

unkown

page write copy

6E4000

heap

page read and write

7B9000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

93000

stack

page read and write

6E4000

heap

page read and write

81C000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

80B000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

5F40000

direct allocation

page read and write

5EAE000

stack

page read and write

6E4000

heap

page read and write

801000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

31A0000

direct allocation

page read and write

6E4000

heap

page read and write

233B000

direct allocation

page read and write

22EA000

direct allocation

page read and write

2236000

direct allocation

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

50B000

unkown

page write copy

6E4000

heap

page read and write

6E4000

heap

page read and write

849000

heap

page read and write

50B000

unkown

page read and write

6E4000

heap

page read and write

6BDF000

stack

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

385E000

stack

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

590000

heap

page read and write

7C0000

heap

page read and write

6E4000

heap

page read and write

7FE000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

808000

heap

page read and write

6E4000

heap

page read and write

743000

heap

page read and write

81C000

heap

page read and write

400000

unkown

page readonly

2440000

direct allocation

page read and write

ABF000

stack

page read and write

5E6E000

stack

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

7FD30000

direct allocation

page read and write

6E4000

heap

page read and write

222F000

direct allocation

page read and write

3521000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

831000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

400000

unkown

page readonly

6E4000

heap

page read and write

9B0000

heap

page read and write

6E4000

heap

page read and write

518000

unkown

page readonly

2228000

direct allocation

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

3190000

direct allocation

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

7CE000

heap

page read and write

8A2000

heap

page read and write

34C1000

direct allocation

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

822000

heap

page read and write

504000

unkown

page read and write

816000

heap

page read and write

710000

direct allocation

page execute and read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

31D2000

direct allocation

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

430000

heap

page read and write

2291000

direct allocation

page read and write

22E3000

direct allocation

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

2271000

direct allocation

page read and write

511000

unkown

page readonly

349C000

direct allocation

page read and write

81C000

heap

page read and write

22BF000

direct allocation

page read and write

6E4000

heap

page read and write

85C000

heap

page read and write

6E4000

heap

page read and write

2349000

direct allocation

page read and write

227B000

direct allocation

page read and write

22A9000

direct allocation

page read and write

87E000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

2283000

direct allocation

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

34A4000

direct allocation

page read and write

6E4000

heap

page read and write

6E5000

heap

page read and write

338E000

stack

page read and write

6E4000

heap

page read and write

22C5000

direct allocation

page read and write

31A0000

direct allocation

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

813000

heap

page read and write

6E4000

heap

page read and write

226A000

direct allocation

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

22CD000

direct allocation

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

3621000

heap

page read and write

6E4000

heap

page read and write

8A2000

heap

page read and write

6E4000

heap

page read and write

230B000

direct allocation

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E5000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

2342000

direct allocation

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

19C000

stack

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

69E000

stack

page read and write

2278000

direct allocation

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

2304000

direct allocation

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

22F8000

direct allocation

page read and write

31C1000

direct allocation

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

225C000

direct allocation

page read and write

6E4000

heap

page read and write

7CB000

heap

page read and write

22AE000

direct allocation

page read and write

76A000

heap

page read and write

228A000

direct allocation

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

508000

unkown

page read and write

6E4000

heap

page read and write

424000

unkown

page readonly

6E4000

heap

page read and write

6E4000

heap

page read and write

355C000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

836000

heap

page read and write

85F000

heap

page read and write

760000

heap

page read and write

226E000

direct allocation

page read and write

7FE40000

direct allocation

page read and write

3560000

heap

page read and write

6E4000

heap

page read and write

3340000

direct allocation

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

22A7000

direct allocation

page read and write

41C000

unkown

page readonly

6E4000

heap

page read and write

6E4000

heap

page read and write

81E000

heap

page read and write

500000

unkown

page write copy

6E4000

heap

page read and write

897000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

3520000

heap

page read and write

8A3000

heap

page read and write

5EC0000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

2260000

direct allocation

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

21EC000

direct allocation

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

805000

heap

page read and write

34B6000

direct allocation

page read and write

A10000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

3621000

heap

page read and write

6E4000

heap

page read and write

2263000

direct allocation

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

18C000

stack

page read and write

829000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

76E000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

22CC000

direct allocation

page read and write

2440000

direct allocation

page read and write

858000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

2298000

direct allocation

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

22F1000

direct allocation

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

832000

heap

page read and write

6E4000

heap

page read and write

69F000

stack

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

2325000

direct allocation

page read and write

530000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

69E0000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

870000

heap

page read and write

5D2C000

stack

page read and write

6E4000

heap

page read and write

84D000

heap

page read and write

9B000

stack

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

51D000

unkown

page readonly

3620000

heap

page read and write

6E4000

heap

page read and write

801000

heap

page read and write

22DC000

direct allocation

page read and write

6E4000

heap

page read and write

781000

heap

page read and write

875000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

869000

heap

page read and write

6E4000

heap

page read and write

2291000

direct allocation

page read and write

867000

heap

page read and write

2554000

direct allocation

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

610000

heap

page read and write

6E4000

heap

page read and write

7A0000

heap

page read and write

6E4000

heap

page read and write

65E000

stack

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

500000

unkown

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

700000

heap

page read and write

6E4000

heap

page read and write

332E000

stack

page read and write

864000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

879000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

69DF000

stack

page read and write

6E4000

heap

page read and write

7B5000

heap

page read and write

2274000

direct allocation

page read and write

231D000

direct allocation

page read and write

6E4000

heap

page read and write

224C000

direct allocation

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

22A1000

direct allocation

page read and write

6E4000

heap

page read and write

2204000

direct allocation

page read and write

401000

unkown

page execute read

221A000

direct allocation

page read and write

836000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

3190000

direct allocation

page read and write

34AE000

direct allocation

page read and write

6E4000

heap

page read and write

3499000

direct allocation

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

2990000

trusted library allocation

page read and write

5B3F000

stack

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

3490000

direct allocation

page read and write

22D4000

direct allocation

page read and write

381C000

stack

page read and write

9BF000

stack

page read and write

22D3000

direct allocation

page read and write

6E4000

heap

page read and write

22C6000

direct allocation

page read and write

6E4000

heap

page read and write

7FE3C000

direct allocation

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

346E000

direct allocation

page read and write

355C000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

811000

heap

page read and write

22E1000

direct allocation

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E5000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

412000

unkown

page write copy

6E4000

heap

page read and write

22DA000

direct allocation

page read and write

55E000

stack

page read and write

2221000

direct allocation

page read and write

6E4000

heap

page read and write

5E2D000

stack

page read and write

6E4000

heap

page read and write

825000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

22BE000

direct allocation

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

2253000

direct allocation

page read and write

6E4000

heap

page read and write

740000

heap

page read and write

34D1000

direct allocation

page read and write

2312000

direct allocation

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

885000

heap

page read and write

6E4000

heap

page read and write

2550000

direct allocation

page read and write

6E4000

heap

page read and write

811000

heap

page read and write

6E4000

heap

page read and write

7B0000

heap

page read and write

843000

heap

page read and write

22B0000

direct allocation

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

87B000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

229F000

direct allocation

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

510000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

2245000

direct allocation

page read and write

6E4000

heap

page read and write

395F000

stack

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

220B000

direct allocation

page read and write

825000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

6E4000

heap

page read and write

There are 499 hidden memdumps, click here to show them.

DOM / HTML

URL

Malicious

https://www.myrealgames.com/pcgame-install.html?utm_source=VolleyballFight&utm_medium=downloadable_install

Behavior Section

Behavior Chronological

Disassembly

Uncategorized

Graph

IOC Report
SecuriteInfo.com.PUA.INNO.APNToolbar.5344.7442.exe

Files

Processes

URLs

Domains

IPs

Registry

Memdumps

DOM / HTML

Behavior Section

Behavior Chronological

Disassembly

Uncategorized

Graph

IOC ReportSecuriteInfo.com.PUA.INNO.APNToolbar.5344.7442.exe

Files

Processes

URLs

Domains

IPs

Registry

Memdumps

DOM / HTML

IOC Report
SecuriteInfo.com.PUA.INNO.APNToolbar.5344.7442.exe