Source: INVOICE_MAY-888201-2024.exe, 00000003.00000002.2871663068.0000000002AE6000.00000004.00000800.00020000.00000000.sdmp |
String found in binary or memory: http://ipr-co.org |
Source: INVOICE_MAY-888201-2024.exe, 00000003.00000002.2871663068.0000000002AE6000.00000004.00000800.00020000.00000000.sdmp |
String found in binary or memory: http://mail.ipr-co.org |
Source: INVOICE_MAY-888201-2024.exe, 00000003.00000002.2877310742.00000000063D2000.00000004.00000020.00020000.00000000.sdmp, INVOICE_MAY-888201-2024.exe, 00000003.00000002.2871663068.0000000002AE6000.00000004.00000800.00020000.00000000.sdmp, INVOICE_MAY-888201-2024.exe, 00000003.00000002.2870609630.0000000000DE5000.00000004.00000020.00020000.00000000.sdmp |
String found in binary or memory: http://r3.i.lencr.org/0 |
Source: INVOICE_MAY-888201-2024.exe, 00000003.00000002.2877310742.00000000063D2000.00000004.00000020.00020000.00000000.sdmp, INVOICE_MAY-888201-2024.exe, 00000003.00000002.2871663068.0000000002AE6000.00000004.00000800.00020000.00000000.sdmp, INVOICE_MAY-888201-2024.exe, 00000003.00000002.2870609630.0000000000DE5000.00000004.00000020.00020000.00000000.sdmp |
String found in binary or memory: http://r3.o.lencr.org0 |
Source: INVOICE_MAY-888201-2024.exe |
String found in binary or memory: http://tempuri.org/DataSet1.xsd#tableLayoutPanel1 |
Source: INVOICE_MAY-888201-2024.exe, 00000000.00000002.1657160649.00000000070D2000.00000004.00000800.00020000.00000000.sdmp |
String found in binary or memory: http://www.apache.org/licenses/LICENSE-2.0 |
Source: INVOICE_MAY-888201-2024.exe, 00000000.00000002.1657160649.00000000070D2000.00000004.00000800.00020000.00000000.sdmp |
String found in binary or memory: http://www.carterandcone.coml |
Source: INVOICE_MAY-888201-2024.exe, 00000000.00000002.1657160649.00000000070D2000.00000004.00000800.00020000.00000000.sdmp |
String found in binary or memory: http://www.fontbureau.com |
Source: INVOICE_MAY-888201-2024.exe, 00000000.00000002.1657160649.00000000070D2000.00000004.00000800.00020000.00000000.sdmp |
String found in binary or memory: http://www.fontbureau.com/designers |
Source: INVOICE_MAY-888201-2024.exe, 00000000.00000002.1657160649.00000000070D2000.00000004.00000800.00020000.00000000.sdmp |
String found in binary or memory: http://www.fontbureau.com/designers/? |
Source: INVOICE_MAY-888201-2024.exe, 00000000.00000002.1657160649.00000000070D2000.00000004.00000800.00020000.00000000.sdmp |
String found in binary or memory: http://www.fontbureau.com/designers/cabarga.htmlN |
Source: INVOICE_MAY-888201-2024.exe, 00000000.00000002.1657160649.00000000070D2000.00000004.00000800.00020000.00000000.sdmp |
String found in binary or memory: http://www.fontbureau.com/designers/frere-user.html |
Source: INVOICE_MAY-888201-2024.exe, 00000000.00000002.1657160649.00000000070D2000.00000004.00000800.00020000.00000000.sdmp |
String found in binary or memory: http://www.fontbureau.com/designers8 |
Source: INVOICE_MAY-888201-2024.exe, 00000000.00000002.1657160649.00000000070D2000.00000004.00000800.00020000.00000000.sdmp |
String found in binary or memory: http://www.fontbureau.com/designers? |
Source: INVOICE_MAY-888201-2024.exe, 00000000.00000002.1657160649.00000000070D2000.00000004.00000800.00020000.00000000.sdmp |
String found in binary or memory: http://www.fontbureau.com/designersG |
Source: INVOICE_MAY-888201-2024.exe, 00000000.00000002.1657160649.00000000070D2000.00000004.00000800.00020000.00000000.sdmp |
String found in binary or memory: http://www.fonts.com |
Source: INVOICE_MAY-888201-2024.exe, 00000000.00000002.1657160649.00000000070D2000.00000004.00000800.00020000.00000000.sdmp |
String found in binary or memory: http://www.founder.com.cn/cn |
Source: INVOICE_MAY-888201-2024.exe, 00000000.00000002.1657160649.00000000070D2000.00000004.00000800.00020000.00000000.sdmp |
String found in binary or memory: http://www.founder.com.cn/cn/bThe |
Source: INVOICE_MAY-888201-2024.exe, 00000000.00000002.1657160649.00000000070D2000.00000004.00000800.00020000.00000000.sdmp |
String found in binary or memory: http://www.founder.com.cn/cn/cThe |
Source: INVOICE_MAY-888201-2024.exe, 00000000.00000002.1657160649.00000000070D2000.00000004.00000800.00020000.00000000.sdmp |
String found in binary or memory: http://www.galapagosdesign.com/DPlease |
Source: INVOICE_MAY-888201-2024.exe, 00000000.00000002.1657160649.00000000070D2000.00000004.00000800.00020000.00000000.sdmp |
String found in binary or memory: http://www.galapagosdesign.com/staff/dennis.htm |
Source: INVOICE_MAY-888201-2024.exe, 00000000.00000002.1657160649.00000000070D2000.00000004.00000800.00020000.00000000.sdmp |
String found in binary or memory: http://www.goodfont.co.kr |
Source: INVOICE_MAY-888201-2024.exe, 00000000.00000002.1657160649.00000000070D2000.00000004.00000800.00020000.00000000.sdmp |
String found in binary or memory: http://www.jiyu-kobo.co.jp/ |
Source: INVOICE_MAY-888201-2024.exe, 00000000.00000002.1657160649.00000000070D2000.00000004.00000800.00020000.00000000.sdmp |
String found in binary or memory: http://www.sajatypeworks.com |
Source: INVOICE_MAY-888201-2024.exe, 00000000.00000002.1657160649.00000000070D2000.00000004.00000800.00020000.00000000.sdmp |
String found in binary or memory: http://www.sakkal.com |
Source: INVOICE_MAY-888201-2024.exe, 00000000.00000002.1657160649.00000000070D2000.00000004.00000800.00020000.00000000.sdmp |
String found in binary or memory: http://www.sandoll.co.kr |
Source: INVOICE_MAY-888201-2024.exe, 00000000.00000002.1657160649.00000000070D2000.00000004.00000800.00020000.00000000.sdmp |
String found in binary or memory: http://www.tiro.com |
Source: INVOICE_MAY-888201-2024.exe, 00000000.00000002.1657160649.00000000070D2000.00000004.00000800.00020000.00000000.sdmp |
String found in binary or memory: http://www.typography.netD |
Source: INVOICE_MAY-888201-2024.exe, 00000000.00000002.1657160649.00000000070D2000.00000004.00000800.00020000.00000000.sdmp |
String found in binary or memory: http://www.urwpp.deDPlease |
Source: INVOICE_MAY-888201-2024.exe, 00000000.00000002.1657160649.00000000070D2000.00000004.00000800.00020000.00000000.sdmp |
String found in binary or memory: http://www.zhongyicts.com.cn |
Source: INVOICE_MAY-888201-2024.exe, 00000003.00000002.2871663068.0000000002AE6000.00000004.00000800.00020000.00000000.sdmp, INVOICE_MAY-888201-2024.exe, 00000003.00000002.2870609630.0000000000DC0000.00000004.00000020.00020000.00000000.sdmp, INVOICE_MAY-888201-2024.exe, 00000003.00000002.2870609630.0000000000DE5000.00000004.00000020.00020000.00000000.sdmp |
String found in binary or memory: http://x1.c.lencr.org/0 |
Source: INVOICE_MAY-888201-2024.exe, 00000003.00000002.2871663068.0000000002AE6000.00000004.00000800.00020000.00000000.sdmp, INVOICE_MAY-888201-2024.exe, 00000003.00000002.2870609630.0000000000DC0000.00000004.00000020.00020000.00000000.sdmp, INVOICE_MAY-888201-2024.exe, 00000003.00000002.2870609630.0000000000DE5000.00000004.00000020.00020000.00000000.sdmp |
String found in binary or memory: http://x1.i.lencr.org/0 |
Source: INVOICE_MAY-888201-2024.exe, 00000000.00000002.1654398090.00000000040E6000.00000004.00000800.00020000.00000000.sdmp, INVOICE_MAY-888201-2024.exe, 00000000.00000002.1654398090.0000000003E79000.00000004.00000800.00020000.00000000.sdmp, INVOICE_MAY-888201-2024.exe, 00000003.00000002.2869740310.0000000000402000.00000040.00000400.00020000.00000000.sdmp |
String found in binary or memory: https://account.dyn.com/ |
Source: INVOICE_MAY-888201-2024.exe |
String found in binary or memory: https://github.com/romenrg/genetic-startups |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Section loaded: mscoree.dll |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Section loaded: apphelp.dll |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Section loaded: kernel.appcore.dll |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Section loaded: version.dll |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Section loaded: vcruntime140_clr0400.dll |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Section loaded: ucrtbase_clr0400.dll |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Section loaded: ucrtbase_clr0400.dll |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Section loaded: uxtheme.dll |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Section loaded: windows.storage.dll |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Section loaded: wldp.dll |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Section loaded: profapi.dll |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Section loaded: cryptsp.dll |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Section loaded: rsaenh.dll |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Section loaded: cryptbase.dll |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Section loaded: dwrite.dll |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Section loaded: amsi.dll |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Section loaded: userenv.dll |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Section loaded: msasn1.dll |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Section loaded: gpapi.dll |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Section loaded: windowscodecs.dll |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Section loaded: mscoree.dll |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Section loaded: kernel.appcore.dll |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Section loaded: version.dll |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Section loaded: vcruntime140_clr0400.dll |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Section loaded: ucrtbase_clr0400.dll |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Section loaded: ucrtbase_clr0400.dll |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Section loaded: uxtheme.dll |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Section loaded: windows.storage.dll |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Section loaded: wldp.dll |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Section loaded: profapi.dll |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Section loaded: cryptsp.dll |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Section loaded: rsaenh.dll |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Section loaded: cryptbase.dll |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Section loaded: wbemcomn.dll |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Section loaded: amsi.dll |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Section loaded: userenv.dll |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Section loaded: sspicli.dll |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Section loaded: vaultcli.dll |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Section loaded: wintypes.dll |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Section loaded: iphlpapi.dll |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Section loaded: dnsapi.dll |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Section loaded: dhcpcsvc6.dll |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Section loaded: dhcpcsvc.dll |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Section loaded: winnsi.dll |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Section loaded: mswsock.dll |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Section loaded: rasadhlp.dll |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Section loaded: fwpuclnt.dll |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Section loaded: secur32.dll |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Section loaded: schannel.dll |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Section loaded: mskeyprotect.dll |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Section loaded: ntasn1.dll |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Section loaded: ncrypt.dll |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Section loaded: ncryptsslp.dll |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Section loaded: msasn1.dll |
Jump to behavior |
Source: 0.2.INVOICE_MAY-888201-2024.exe.42672e0.5.raw.unpack, Kw8p261T624tr3QMnE.cs |
High entropy of concatenated method names: 'XcjwbuN9h9', 'C26windKpb', 'XLIw8SfMuB', 'C4B8awMXhU', 'Qnx8zTyk7g', 'Vr7wCNYtDq', 'L7ywFxaDaI', 'P99wSh6YnF', 'vF6wnxSWx3', 'hHawG2iV2U' |
Source: 0.2.INVOICE_MAY-888201-2024.exe.42672e0.5.raw.unpack, DOcNg6Kfi1wL7Vu5dp.cs |
High entropy of concatenated method names: 'Av58gLO56P', 'eUu8DrSXdu', 'nQs8XNWTZN', 'i6P8wAl6Nh', 'UfU8kLrJ5I', 'zq0X2nhwfO', 'c2rXf6Wd14', 'csLXui4arJ', 'STyX3MiKLm', 'GF9XynbkLw' |
Source: 0.2.INVOICE_MAY-888201-2024.exe.42672e0.5.raw.unpack, usFyFq6baBZYcaFtv7.cs |
High entropy of concatenated method names: 'ToString', 'fMvTK9SBLA', 'AIBTH9SZKF', 'SMPTJsOxfX', 'moqTeBBJ25', 'AecTIwZyak', 'u1wT7kxTj3', 'nbWTssgE73', 'Vl1T41gWLv', 'YTCTxdeLVT' |
Source: 0.2.INVOICE_MAY-888201-2024.exe.42672e0.5.raw.unpack, RSBT6oZSTqTq8ySqKr.cs |
High entropy of concatenated method names: 'QFxmF2SSIo', 'nd6mnDkFb3', 'oPTmGOD3vv', 'gMxmbWi19k', 'AWEmDCZnqa', 'LtHmX6C0i0', 'a5am823Dsb', 'qfDQuRgxmt', 'Bb6Q3aL9sb', 'URZQyigaQE' |
Source: 0.2.INVOICE_MAY-888201-2024.exe.42672e0.5.raw.unpack, BJqXKI3HWiVSLZ0xpk.cs |
High entropy of concatenated method names: 'xnTDvvWGpt', 'ffFDLN4RYT', 'q3dDOb9dwi', 'uhTDrbZkkT', 'TD3D26TnCU', 'f7kDfhQj91', 'vqsDu1qw4i', 'oFZD3oaUdP', 'xiVDyH7nib', 'zwlDaIZ0fO' |
Source: 0.2.INVOICE_MAY-888201-2024.exe.42672e0.5.raw.unpack, E8QkDgzeDbXtqxheWf.cs |
High entropy of concatenated method names: 'CanConvertFrom', 'ConvertFrom', 'ConvertTo', 'p31m5GZE8q', 'tiemddBGgT', 'XwxmTVBA62', 'clNmhVoJIy', 'BTdmQaCKwu', 'Cqvmmk2kpt', 'R3Wmq6pU5x' |
Source: 0.2.INVOICE_MAY-888201-2024.exe.42672e0.5.raw.unpack, D6sqB4XSKgHBqpcXvu.cs |
High entropy of concatenated method names: 'MaeFwxYOXh', 'UhcFkod5F0', 'Xf8FYkh0Lb', 'e5AFAYkhfj', 'EUOFdfecn6', 'BNsFTuN6Jr', 'acLV28TVY3WUUq6HHg', 'Rp26Xy6aZpN8j6pegw', 'OcqJ3hbRiSRmcjtIIk', 'o97FFsAASj' |
Source: 0.2.INVOICE_MAY-888201-2024.exe.42672e0.5.raw.unpack, vfKy81FyeimwDiPc9A.cs |
High entropy of concatenated method names: 'PmA5prktr8', 'HO15ogpgTr', 'X9T5cOvs82', 'Hxq5Hk3cOw', 'bvS5eBZrui', 'Blt5IFsZ0q', 'O2X5sfswct', 'Vbf54dYwol', 'kpb59V9Ytb', 'euY5KQyMqo' |
Source: 0.2.INVOICE_MAY-888201-2024.exe.42672e0.5.raw.unpack, GL1sSyhb2FTyTeXApu.cs |
High entropy of concatenated method names: 'ifxh3Hlqq5', 's8YhaveprV', 'K9UQCpLRCj', 'V7lQFH15IP', 'uaehKPV4nn', 'qpGhZ49k1a', 'ndth0XTp6b', 'KYChv86vjD', 'r6NhLjjFgS', 'HpZhObwewR' |
Source: 0.2.INVOICE_MAY-888201-2024.exe.42672e0.5.raw.unpack, Dq1NQdjG4GhppsNcIko.cs |
High entropy of concatenated method names: 'CanConvertFrom', 'ConvertFrom', 'ConvertTo', 'GUsqv2xTvv', 'MAMqL4gqNq', 'kyHqOc0VPJ', 'HREqrjcbND', 'Uw5q2ORyQB', 'pUHqfPaNEx', 'JWOquLKFxS' |
Source: 0.2.INVOICE_MAY-888201-2024.exe.42672e0.5.raw.unpack, opbgTmsSm1QQLEJyW3.cs |
High entropy of concatenated method names: 'sK0iMsH6dV', 'cUriUC9e2o', 'Uo7iplhamP', 's9tioqYMoQ', 'GCOidWZ7pF', 'bE4iT5u3mh', 'QN5ihCBVVB', 'PLbiQ4KRAu', 'mnSimYWoAE', 'Uxwiqhhkbl' |
Source: 0.2.INVOICE_MAY-888201-2024.exe.42672e0.5.raw.unpack, FnNGpq8XHKNRD6jojh.cs |
High entropy of concatenated method names: 'h6XXROoQRw', 'c4rXWyBMfs', 'FtCiJRvLNl', 'LgAieXTvYm', 'FQtiI2Bkoi', 'yfxi7dk1AC', 'P6Gis1jK6X', 'JgSi4w2nke', 'sgpixfm4A5', 'jbwi97xOWm' |
Source: 0.2.INVOICE_MAY-888201-2024.exe.42672e0.5.raw.unpack, yuKX27E4oU7tkdDeru.cs |
High entropy of concatenated method names: 'JNed9VObBH', 'xXYdZMFe3a', 'n6Ddv0V4Ec', 'weKdLBlMMn', 'BjddHknqJO', 'qhOdJtwFLX', 'j5mde04sK5', 't61dIEwC5Q', 'vZSd7qmO4Q', 'D2hds2l5Xw' |
Source: 0.2.INVOICE_MAY-888201-2024.exe.42672e0.5.raw.unpack, BR9nsQwFIkZln20SGC.cs |
High entropy of concatenated method names: 'mJ8wjdp5Bc', 'LbEwNy7OA7', 'iGjwl5JasA', 'VHkwMuOJoi', 'vRWwRm1lK9', 'JUvwUpfEPM', 'f90wWwLkvN', 'uxYwpHQ3J1', 'DESwomE5Hw', 'v7qw6l0RKe' |
Source: 0.2.INVOICE_MAY-888201-2024.exe.42672e0.5.raw.unpack, kKOqnR59PALe4lSinq.cs |
High entropy of concatenated method names: 'kbThYHTP2r', 'RZQhA6Skd2', 'ToString', 'GvQhbDdSIg', 'yWNhDfyj40', 'Ny9hitF6SE', 'EShhXQh3Ku', 'dnIh8W2th8', 'mC8hwDwHyI', 'yMahkpdBWo' |
Source: 0.2.INVOICE_MAY-888201-2024.exe.42672e0.5.raw.unpack, kVDc5tg30l8SJy6L7t.cs |
High entropy of concatenated method names: 'sjeQcDluh5', 'VoOQHQFn0d', 'g0gQJUk9nC', 'rBLQewWK3j', 'EKtQvxIbPD', 'p8JQImAvvO', 'Next', 'Next', 'Next', 'NextBytes' |
Source: 0.2.INVOICE_MAY-888201-2024.exe.42672e0.5.raw.unpack, us5Qu0jrbviKDr1psuI.cs |
High entropy of concatenated method names: 'v1dmjeD38U', 'BQpmNagjof', 'SFpmlg84Py', 'sUxmMPBgZh', 'EuwmRn4Ddf', 'OVnmUuXgkn', 'r4smWGKCq5', 'RipmpVxWqm', 'fgSmod19Gn', 'h8Om6aMZSK' |
Source: 0.2.INVOICE_MAY-888201-2024.exe.42672e0.5.raw.unpack, dAy9nGkcxf1MLlG49k.cs |
High entropy of concatenated method names: 'EditValue', 'GetEditStyle', 'PMFSynMCue', 'z5jSaVPxoO', 'VsRSzZ48Ov', 'CdVnCTfORu', 'Jb6nF9UvOk', 'qOvnSjsMj0', 'wg4nn9mAg3', 'UIOwULWIKysIYKQ63Ev' |
Source: 0.2.INVOICE_MAY-888201-2024.exe.42672e0.5.raw.unpack, Rr81Etym4NnXSl69Xm.cs |
High entropy of concatenated method names: 'kLRngLMLK8', 'ksonbV6PHi', 'GkAnD4qTg2', 'z69nigLJNs', 'GVDnXMoac1', 'qotn8DEODB', 'zK0nwnQ2vp', 'Fx4nk8eIHy', 'i9YnBHCLlV', 'rq7nYanrvM' |
Source: 0.2.INVOICE_MAY-888201-2024.exe.42672e0.5.raw.unpack, TXpDnF7O0hYgXpxm4Q.cs |
High entropy of concatenated method names: 'mEflFCQUD', 'viMMmleds', 'cNbUCkQC6', 'SuVWV3WCX', 'kEEo2YWQp', 'Fkh6bYL4l', 'RedkVGy12Pcw6Jxvec', 'FiaeggjZRrcGSjRi04', 'kvFQ7q52a', 'NKqqAmceA' |
Source: 0.2.INVOICE_MAY-888201-2024.exe.42672e0.5.raw.unpack, BkTyYHpkDmTwKCuvOL.cs |
High entropy of concatenated method names: 'Dispose', 'kUyFyP0uaS', 'RRpSHKs3Mc', 'Yeo11PJ4li', 'uTtFa32asF', 'aTyFzM8tb9', 'ProcessDialogKey', 'yETSCYo33D', 'h79SFWQ0cc', 'cB7SSRtury' |
Source: 0.2.INVOICE_MAY-888201-2024.exe.42672e0.5.raw.unpack, D5qwyKtH9ISZRnuo1s.cs |
High entropy of concatenated method names: 'Io1Qb2UayA', 'UR3QDoVGj2', 'qS3QirKmsD', 'Os5QX3rrZO', 'ENoQ8ZtPaO', 'rscQwX8UN7', 'af8QkIGGWf', 'FcRQBhTiRv', 'yIfQYDganJ', 'K48QAvNd97' |
Source: 0.2.INVOICE_MAY-888201-2024.exe.42e3900.2.raw.unpack, Kw8p261T624tr3QMnE.cs |
High entropy of concatenated method names: 'XcjwbuN9h9', 'C26windKpb', 'XLIw8SfMuB', 'C4B8awMXhU', 'Qnx8zTyk7g', 'Vr7wCNYtDq', 'L7ywFxaDaI', 'P99wSh6YnF', 'vF6wnxSWx3', 'hHawG2iV2U' |
Source: 0.2.INVOICE_MAY-888201-2024.exe.42e3900.2.raw.unpack, DOcNg6Kfi1wL7Vu5dp.cs |
High entropy of concatenated method names: 'Av58gLO56P', 'eUu8DrSXdu', 'nQs8XNWTZN', 'i6P8wAl6Nh', 'UfU8kLrJ5I', 'zq0X2nhwfO', 'c2rXf6Wd14', 'csLXui4arJ', 'STyX3MiKLm', 'GF9XynbkLw' |
Source: 0.2.INVOICE_MAY-888201-2024.exe.42e3900.2.raw.unpack, usFyFq6baBZYcaFtv7.cs |
High entropy of concatenated method names: 'ToString', 'fMvTK9SBLA', 'AIBTH9SZKF', 'SMPTJsOxfX', 'moqTeBBJ25', 'AecTIwZyak', 'u1wT7kxTj3', 'nbWTssgE73', 'Vl1T41gWLv', 'YTCTxdeLVT' |
Source: 0.2.INVOICE_MAY-888201-2024.exe.42e3900.2.raw.unpack, RSBT6oZSTqTq8ySqKr.cs |
High entropy of concatenated method names: 'QFxmF2SSIo', 'nd6mnDkFb3', 'oPTmGOD3vv', 'gMxmbWi19k', 'AWEmDCZnqa', 'LtHmX6C0i0', 'a5am823Dsb', 'qfDQuRgxmt', 'Bb6Q3aL9sb', 'URZQyigaQE' |
Source: 0.2.INVOICE_MAY-888201-2024.exe.42e3900.2.raw.unpack, BJqXKI3HWiVSLZ0xpk.cs |
High entropy of concatenated method names: 'xnTDvvWGpt', 'ffFDLN4RYT', 'q3dDOb9dwi', 'uhTDrbZkkT', 'TD3D26TnCU', 'f7kDfhQj91', 'vqsDu1qw4i', 'oFZD3oaUdP', 'xiVDyH7nib', 'zwlDaIZ0fO' |
Source: 0.2.INVOICE_MAY-888201-2024.exe.42e3900.2.raw.unpack, E8QkDgzeDbXtqxheWf.cs |
High entropy of concatenated method names: 'CanConvertFrom', 'ConvertFrom', 'ConvertTo', 'p31m5GZE8q', 'tiemddBGgT', 'XwxmTVBA62', 'clNmhVoJIy', 'BTdmQaCKwu', 'Cqvmmk2kpt', 'R3Wmq6pU5x' |
Source: 0.2.INVOICE_MAY-888201-2024.exe.42e3900.2.raw.unpack, D6sqB4XSKgHBqpcXvu.cs |
High entropy of concatenated method names: 'MaeFwxYOXh', 'UhcFkod5F0', 'Xf8FYkh0Lb', 'e5AFAYkhfj', 'EUOFdfecn6', 'BNsFTuN6Jr', 'acLV28TVY3WUUq6HHg', 'Rp26Xy6aZpN8j6pegw', 'OcqJ3hbRiSRmcjtIIk', 'o97FFsAASj' |
Source: 0.2.INVOICE_MAY-888201-2024.exe.42e3900.2.raw.unpack, vfKy81FyeimwDiPc9A.cs |
High entropy of concatenated method names: 'PmA5prktr8', 'HO15ogpgTr', 'X9T5cOvs82', 'Hxq5Hk3cOw', 'bvS5eBZrui', 'Blt5IFsZ0q', 'O2X5sfswct', 'Vbf54dYwol', 'kpb59V9Ytb', 'euY5KQyMqo' |
Source: 0.2.INVOICE_MAY-888201-2024.exe.42e3900.2.raw.unpack, GL1sSyhb2FTyTeXApu.cs |
High entropy of concatenated method names: 'ifxh3Hlqq5', 's8YhaveprV', 'K9UQCpLRCj', 'V7lQFH15IP', 'uaehKPV4nn', 'qpGhZ49k1a', 'ndth0XTp6b', 'KYChv86vjD', 'r6NhLjjFgS', 'HpZhObwewR' |
Source: 0.2.INVOICE_MAY-888201-2024.exe.42e3900.2.raw.unpack, Dq1NQdjG4GhppsNcIko.cs |
High entropy of concatenated method names: 'CanConvertFrom', 'ConvertFrom', 'ConvertTo', 'GUsqv2xTvv', 'MAMqL4gqNq', 'kyHqOc0VPJ', 'HREqrjcbND', 'Uw5q2ORyQB', 'pUHqfPaNEx', 'JWOquLKFxS' |
Source: 0.2.INVOICE_MAY-888201-2024.exe.42e3900.2.raw.unpack, opbgTmsSm1QQLEJyW3.cs |
High entropy of concatenated method names: 'sK0iMsH6dV', 'cUriUC9e2o', 'Uo7iplhamP', 's9tioqYMoQ', 'GCOidWZ7pF', 'bE4iT5u3mh', 'QN5ihCBVVB', 'PLbiQ4KRAu', 'mnSimYWoAE', 'Uxwiqhhkbl' |
Source: 0.2.INVOICE_MAY-888201-2024.exe.42e3900.2.raw.unpack, FnNGpq8XHKNRD6jojh.cs |
High entropy of concatenated method names: 'h6XXROoQRw', 'c4rXWyBMfs', 'FtCiJRvLNl', 'LgAieXTvYm', 'FQtiI2Bkoi', 'yfxi7dk1AC', 'P6Gis1jK6X', 'JgSi4w2nke', 'sgpixfm4A5', 'jbwi97xOWm' |
Source: 0.2.INVOICE_MAY-888201-2024.exe.42e3900.2.raw.unpack, yuKX27E4oU7tkdDeru.cs |
High entropy of concatenated method names: 'JNed9VObBH', 'xXYdZMFe3a', 'n6Ddv0V4Ec', 'weKdLBlMMn', 'BjddHknqJO', 'qhOdJtwFLX', 'j5mde04sK5', 't61dIEwC5Q', 'vZSd7qmO4Q', 'D2hds2l5Xw' |
Source: 0.2.INVOICE_MAY-888201-2024.exe.42e3900.2.raw.unpack, BR9nsQwFIkZln20SGC.cs |
High entropy of concatenated method names: 'mJ8wjdp5Bc', 'LbEwNy7OA7', 'iGjwl5JasA', 'VHkwMuOJoi', 'vRWwRm1lK9', 'JUvwUpfEPM', 'f90wWwLkvN', 'uxYwpHQ3J1', 'DESwomE5Hw', 'v7qw6l0RKe' |
Source: 0.2.INVOICE_MAY-888201-2024.exe.42e3900.2.raw.unpack, kKOqnR59PALe4lSinq.cs |
High entropy of concatenated method names: 'kbThYHTP2r', 'RZQhA6Skd2', 'ToString', 'GvQhbDdSIg', 'yWNhDfyj40', 'Ny9hitF6SE', 'EShhXQh3Ku', 'dnIh8W2th8', 'mC8hwDwHyI', 'yMahkpdBWo' |
Source: 0.2.INVOICE_MAY-888201-2024.exe.42e3900.2.raw.unpack, kVDc5tg30l8SJy6L7t.cs |
High entropy of concatenated method names: 'sjeQcDluh5', 'VoOQHQFn0d', 'g0gQJUk9nC', 'rBLQewWK3j', 'EKtQvxIbPD', 'p8JQImAvvO', 'Next', 'Next', 'Next', 'NextBytes' |
Source: 0.2.INVOICE_MAY-888201-2024.exe.42e3900.2.raw.unpack, us5Qu0jrbviKDr1psuI.cs |
High entropy of concatenated method names: 'v1dmjeD38U', 'BQpmNagjof', 'SFpmlg84Py', 'sUxmMPBgZh', 'EuwmRn4Ddf', 'OVnmUuXgkn', 'r4smWGKCq5', 'RipmpVxWqm', 'fgSmod19Gn', 'h8Om6aMZSK' |
Source: 0.2.INVOICE_MAY-888201-2024.exe.42e3900.2.raw.unpack, dAy9nGkcxf1MLlG49k.cs |
High entropy of concatenated method names: 'EditValue', 'GetEditStyle', 'PMFSynMCue', 'z5jSaVPxoO', 'VsRSzZ48Ov', 'CdVnCTfORu', 'Jb6nF9UvOk', 'qOvnSjsMj0', 'wg4nn9mAg3', 'UIOwULWIKysIYKQ63Ev' |
Source: 0.2.INVOICE_MAY-888201-2024.exe.42e3900.2.raw.unpack, Rr81Etym4NnXSl69Xm.cs |
High entropy of concatenated method names: 'kLRngLMLK8', 'ksonbV6PHi', 'GkAnD4qTg2', 'z69nigLJNs', 'GVDnXMoac1', 'qotn8DEODB', 'zK0nwnQ2vp', 'Fx4nk8eIHy', 'i9YnBHCLlV', 'rq7nYanrvM' |
Source: 0.2.INVOICE_MAY-888201-2024.exe.42e3900.2.raw.unpack, TXpDnF7O0hYgXpxm4Q.cs |
High entropy of concatenated method names: 'mEflFCQUD', 'viMMmleds', 'cNbUCkQC6', 'SuVWV3WCX', 'kEEo2YWQp', 'Fkh6bYL4l', 'RedkVGy12Pcw6Jxvec', 'FiaeggjZRrcGSjRi04', 'kvFQ7q52a', 'NKqqAmceA' |
Source: 0.2.INVOICE_MAY-888201-2024.exe.42e3900.2.raw.unpack, BkTyYHpkDmTwKCuvOL.cs |
High entropy of concatenated method names: 'Dispose', 'kUyFyP0uaS', 'RRpSHKs3Mc', 'Yeo11PJ4li', 'uTtFa32asF', 'aTyFzM8tb9', 'ProcessDialogKey', 'yETSCYo33D', 'h79SFWQ0cc', 'cB7SSRtury' |
Source: 0.2.INVOICE_MAY-888201-2024.exe.42e3900.2.raw.unpack, D5qwyKtH9ISZRnuo1s.cs |
High entropy of concatenated method names: 'Io1Qb2UayA', 'UR3QDoVGj2', 'qS3QirKmsD', 'Os5QX3rrZO', 'ENoQ8ZtPaO', 'rscQwX8UN7', 'af8QkIGGWf', 'FcRQBhTiRv', 'yIfQYDganJ', 'K48QAvNd97' |
Source: 0.2.INVOICE_MAY-888201-2024.exe.7af0000.8.raw.unpack, Kw8p261T624tr3QMnE.cs |
High entropy of concatenated method names: 'XcjwbuN9h9', 'C26windKpb', 'XLIw8SfMuB', 'C4B8awMXhU', 'Qnx8zTyk7g', 'Vr7wCNYtDq', 'L7ywFxaDaI', 'P99wSh6YnF', 'vF6wnxSWx3', 'hHawG2iV2U' |
Source: 0.2.INVOICE_MAY-888201-2024.exe.7af0000.8.raw.unpack, DOcNg6Kfi1wL7Vu5dp.cs |
High entropy of concatenated method names: 'Av58gLO56P', 'eUu8DrSXdu', 'nQs8XNWTZN', 'i6P8wAl6Nh', 'UfU8kLrJ5I', 'zq0X2nhwfO', 'c2rXf6Wd14', 'csLXui4arJ', 'STyX3MiKLm', 'GF9XynbkLw' |
Source: 0.2.INVOICE_MAY-888201-2024.exe.7af0000.8.raw.unpack, usFyFq6baBZYcaFtv7.cs |
High entropy of concatenated method names: 'ToString', 'fMvTK9SBLA', 'AIBTH9SZKF', 'SMPTJsOxfX', 'moqTeBBJ25', 'AecTIwZyak', 'u1wT7kxTj3', 'nbWTssgE73', 'Vl1T41gWLv', 'YTCTxdeLVT' |
Source: 0.2.INVOICE_MAY-888201-2024.exe.7af0000.8.raw.unpack, RSBT6oZSTqTq8ySqKr.cs |
High entropy of concatenated method names: 'QFxmF2SSIo', 'nd6mnDkFb3', 'oPTmGOD3vv', 'gMxmbWi19k', 'AWEmDCZnqa', 'LtHmX6C0i0', 'a5am823Dsb', 'qfDQuRgxmt', 'Bb6Q3aL9sb', 'URZQyigaQE' |
Source: 0.2.INVOICE_MAY-888201-2024.exe.7af0000.8.raw.unpack, BJqXKI3HWiVSLZ0xpk.cs |
High entropy of concatenated method names: 'xnTDvvWGpt', 'ffFDLN4RYT', 'q3dDOb9dwi', 'uhTDrbZkkT', 'TD3D26TnCU', 'f7kDfhQj91', 'vqsDu1qw4i', 'oFZD3oaUdP', 'xiVDyH7nib', 'zwlDaIZ0fO' |
Source: 0.2.INVOICE_MAY-888201-2024.exe.7af0000.8.raw.unpack, E8QkDgzeDbXtqxheWf.cs |
High entropy of concatenated method names: 'CanConvertFrom', 'ConvertFrom', 'ConvertTo', 'p31m5GZE8q', 'tiemddBGgT', 'XwxmTVBA62', 'clNmhVoJIy', 'BTdmQaCKwu', 'Cqvmmk2kpt', 'R3Wmq6pU5x' |
Source: 0.2.INVOICE_MAY-888201-2024.exe.7af0000.8.raw.unpack, D6sqB4XSKgHBqpcXvu.cs |
High entropy of concatenated method names: 'MaeFwxYOXh', 'UhcFkod5F0', 'Xf8FYkh0Lb', 'e5AFAYkhfj', 'EUOFdfecn6', 'BNsFTuN6Jr', 'acLV28TVY3WUUq6HHg', 'Rp26Xy6aZpN8j6pegw', 'OcqJ3hbRiSRmcjtIIk', 'o97FFsAASj' |
Source: 0.2.INVOICE_MAY-888201-2024.exe.7af0000.8.raw.unpack, vfKy81FyeimwDiPc9A.cs |
High entropy of concatenated method names: 'PmA5prktr8', 'HO15ogpgTr', 'X9T5cOvs82', 'Hxq5Hk3cOw', 'bvS5eBZrui', 'Blt5IFsZ0q', 'O2X5sfswct', 'Vbf54dYwol', 'kpb59V9Ytb', 'euY5KQyMqo' |
Source: 0.2.INVOICE_MAY-888201-2024.exe.7af0000.8.raw.unpack, GL1sSyhb2FTyTeXApu.cs |
High entropy of concatenated method names: 'ifxh3Hlqq5', 's8YhaveprV', 'K9UQCpLRCj', 'V7lQFH15IP', 'uaehKPV4nn', 'qpGhZ49k1a', 'ndth0XTp6b', 'KYChv86vjD', 'r6NhLjjFgS', 'HpZhObwewR' |
Source: 0.2.INVOICE_MAY-888201-2024.exe.7af0000.8.raw.unpack, Dq1NQdjG4GhppsNcIko.cs |
High entropy of concatenated method names: 'CanConvertFrom', 'ConvertFrom', 'ConvertTo', 'GUsqv2xTvv', 'MAMqL4gqNq', 'kyHqOc0VPJ', 'HREqrjcbND', 'Uw5q2ORyQB', 'pUHqfPaNEx', 'JWOquLKFxS' |
Source: 0.2.INVOICE_MAY-888201-2024.exe.7af0000.8.raw.unpack, opbgTmsSm1QQLEJyW3.cs |
High entropy of concatenated method names: 'sK0iMsH6dV', 'cUriUC9e2o', 'Uo7iplhamP', 's9tioqYMoQ', 'GCOidWZ7pF', 'bE4iT5u3mh', 'QN5ihCBVVB', 'PLbiQ4KRAu', 'mnSimYWoAE', 'Uxwiqhhkbl' |
Source: 0.2.INVOICE_MAY-888201-2024.exe.7af0000.8.raw.unpack, FnNGpq8XHKNRD6jojh.cs |
High entropy of concatenated method names: 'h6XXROoQRw', 'c4rXWyBMfs', 'FtCiJRvLNl', 'LgAieXTvYm', 'FQtiI2Bkoi', 'yfxi7dk1AC', 'P6Gis1jK6X', 'JgSi4w2nke', 'sgpixfm4A5', 'jbwi97xOWm' |
Source: 0.2.INVOICE_MAY-888201-2024.exe.7af0000.8.raw.unpack, yuKX27E4oU7tkdDeru.cs |
High entropy of concatenated method names: 'JNed9VObBH', 'xXYdZMFe3a', 'n6Ddv0V4Ec', 'weKdLBlMMn', 'BjddHknqJO', 'qhOdJtwFLX', 'j5mde04sK5', 't61dIEwC5Q', 'vZSd7qmO4Q', 'D2hds2l5Xw' |
Source: 0.2.INVOICE_MAY-888201-2024.exe.7af0000.8.raw.unpack, BR9nsQwFIkZln20SGC.cs |
High entropy of concatenated method names: 'mJ8wjdp5Bc', 'LbEwNy7OA7', 'iGjwl5JasA', 'VHkwMuOJoi', 'vRWwRm1lK9', 'JUvwUpfEPM', 'f90wWwLkvN', 'uxYwpHQ3J1', 'DESwomE5Hw', 'v7qw6l0RKe' |
Source: 0.2.INVOICE_MAY-888201-2024.exe.7af0000.8.raw.unpack, kKOqnR59PALe4lSinq.cs |
High entropy of concatenated method names: 'kbThYHTP2r', 'RZQhA6Skd2', 'ToString', 'GvQhbDdSIg', 'yWNhDfyj40', 'Ny9hitF6SE', 'EShhXQh3Ku', 'dnIh8W2th8', 'mC8hwDwHyI', 'yMahkpdBWo' |
Source: 0.2.INVOICE_MAY-888201-2024.exe.7af0000.8.raw.unpack, kVDc5tg30l8SJy6L7t.cs |
High entropy of concatenated method names: 'sjeQcDluh5', 'VoOQHQFn0d', 'g0gQJUk9nC', 'rBLQewWK3j', 'EKtQvxIbPD', 'p8JQImAvvO', 'Next', 'Next', 'Next', 'NextBytes' |
Source: 0.2.INVOICE_MAY-888201-2024.exe.7af0000.8.raw.unpack, us5Qu0jrbviKDr1psuI.cs |
High entropy of concatenated method names: 'v1dmjeD38U', 'BQpmNagjof', 'SFpmlg84Py', 'sUxmMPBgZh', 'EuwmRn4Ddf', 'OVnmUuXgkn', 'r4smWGKCq5', 'RipmpVxWqm', 'fgSmod19Gn', 'h8Om6aMZSK' |
Source: 0.2.INVOICE_MAY-888201-2024.exe.7af0000.8.raw.unpack, dAy9nGkcxf1MLlG49k.cs |
High entropy of concatenated method names: 'EditValue', 'GetEditStyle', 'PMFSynMCue', 'z5jSaVPxoO', 'VsRSzZ48Ov', 'CdVnCTfORu', 'Jb6nF9UvOk', 'qOvnSjsMj0', 'wg4nn9mAg3', 'UIOwULWIKysIYKQ63Ev' |
Source: 0.2.INVOICE_MAY-888201-2024.exe.7af0000.8.raw.unpack, Rr81Etym4NnXSl69Xm.cs |
High entropy of concatenated method names: 'kLRngLMLK8', 'ksonbV6PHi', 'GkAnD4qTg2', 'z69nigLJNs', 'GVDnXMoac1', 'qotn8DEODB', 'zK0nwnQ2vp', 'Fx4nk8eIHy', 'i9YnBHCLlV', 'rq7nYanrvM' |
Source: 0.2.INVOICE_MAY-888201-2024.exe.7af0000.8.raw.unpack, TXpDnF7O0hYgXpxm4Q.cs |
High entropy of concatenated method names: 'mEflFCQUD', 'viMMmleds', 'cNbUCkQC6', 'SuVWV3WCX', 'kEEo2YWQp', 'Fkh6bYL4l', 'RedkVGy12Pcw6Jxvec', 'FiaeggjZRrcGSjRi04', 'kvFQ7q52a', 'NKqqAmceA' |
Source: 0.2.INVOICE_MAY-888201-2024.exe.7af0000.8.raw.unpack, BkTyYHpkDmTwKCuvOL.cs |
High entropy of concatenated method names: 'Dispose', 'kUyFyP0uaS', 'RRpSHKs3Mc', 'Yeo11PJ4li', 'uTtFa32asF', 'aTyFzM8tb9', 'ProcessDialogKey', 'yETSCYo33D', 'h79SFWQ0cc', 'cB7SSRtury' |
Source: 0.2.INVOICE_MAY-888201-2024.exe.7af0000.8.raw.unpack, D5qwyKtH9ISZRnuo1s.cs |
High entropy of concatenated method names: 'Io1Qb2UayA', 'UR3QDoVGj2', 'qS3QirKmsD', 'Os5QX3rrZO', 'ENoQ8ZtPaO', 'rscQwX8UN7', 'af8QkIGGWf', 'FcRQBhTiRv', 'yIfQYDganJ', 'K48QAvNd97' |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Process information set: NOOPENFILEERRORBOX |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe TID: 7000 |
Thread sleep time: -922337203685477s >= -30000s |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe TID: 1856 |
Thread sleep time: -27670116110564310s >= -30000s |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe TID: 1856 |
Thread sleep time: -100000s >= -30000s |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe TID: 1744 |
Thread sleep count: 5114 > 30 |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe TID: 1744 |
Thread sleep count: 3073 > 30 |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe TID: 1856 |
Thread sleep time: -99875s >= -30000s |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe TID: 1856 |
Thread sleep time: -99765s >= -30000s |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe TID: 1856 |
Thread sleep time: -99656s >= -30000s |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe TID: 1856 |
Thread sleep time: -99546s >= -30000s |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe TID: 1856 |
Thread sleep time: -99437s >= -30000s |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe TID: 1856 |
Thread sleep time: -99328s >= -30000s |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe TID: 1856 |
Thread sleep time: -99205s >= -30000s |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe TID: 1856 |
Thread sleep time: -99076s >= -30000s |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe TID: 1856 |
Thread sleep time: -98956s >= -30000s |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe TID: 1856 |
Thread sleep time: -98814s >= -30000s |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe TID: 1856 |
Thread sleep time: -98527s >= -30000s |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe TID: 1856 |
Thread sleep time: -98418s >= -30000s |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe TID: 1856 |
Thread sleep time: -98303s >= -30000s |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe TID: 1856 |
Thread sleep time: -98187s >= -30000s |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe TID: 1856 |
Thread sleep time: -98078s >= -30000s |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe TID: 1856 |
Thread sleep time: -97968s >= -30000s |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe TID: 1856 |
Thread sleep time: -97859s >= -30000s |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe TID: 1856 |
Thread sleep time: -97750s >= -30000s |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe TID: 1856 |
Thread sleep time: -97640s >= -30000s |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe TID: 1856 |
Thread sleep time: -97528s >= -30000s |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe TID: 1856 |
Thread sleep time: -97422s >= -30000s |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe TID: 1856 |
Thread sleep time: -97299s >= -30000s |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe TID: 1856 |
Thread sleep time: -97172s >= -30000s |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe TID: 1856 |
Thread sleep time: -97047s >= -30000s |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe TID: 1856 |
Thread sleep time: -96937s >= -30000s |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe TID: 1856 |
Thread sleep time: -96828s >= -30000s |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe TID: 1856 |
Thread sleep time: -96718s >= -30000s |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe TID: 1856 |
Thread sleep time: -96609s >= -30000s |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe TID: 1856 |
Thread sleep time: -96498s >= -30000s |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe TID: 1856 |
Thread sleep time: -96390s >= -30000s |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe TID: 1856 |
Thread sleep time: -96275s >= -30000s |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe TID: 1856 |
Thread sleep time: -96172s >= -30000s |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe TID: 1856 |
Thread sleep time: -96047s >= -30000s |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe TID: 1856 |
Thread sleep time: -95861s >= -30000s |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe TID: 1856 |
Thread sleep time: -95697s >= -30000s |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe TID: 1856 |
Thread sleep time: -95577s >= -30000s |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe TID: 1856 |
Thread sleep time: -95413s >= -30000s |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe TID: 1856 |
Thread sleep time: -95312s >= -30000s |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe TID: 1856 |
Thread sleep time: -95203s >= -30000s |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe TID: 1856 |
Thread sleep time: -95093s >= -30000s |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe TID: 1856 |
Thread sleep time: -94984s >= -30000s |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe TID: 1856 |
Thread sleep time: -922337203685477s >= -30000s |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Thread delayed: delay time: 922337203685477 |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Thread delayed: delay time: 922337203685477 |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Thread delayed: delay time: 100000 |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Thread delayed: delay time: 99875 |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Thread delayed: delay time: 99765 |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Thread delayed: delay time: 99656 |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Thread delayed: delay time: 99546 |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Thread delayed: delay time: 99437 |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Thread delayed: delay time: 99328 |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Thread delayed: delay time: 99205 |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Thread delayed: delay time: 99076 |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Thread delayed: delay time: 98956 |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Thread delayed: delay time: 98814 |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Thread delayed: delay time: 98527 |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Thread delayed: delay time: 98418 |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Thread delayed: delay time: 98303 |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Thread delayed: delay time: 98187 |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Thread delayed: delay time: 98078 |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Thread delayed: delay time: 97968 |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Thread delayed: delay time: 97859 |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Thread delayed: delay time: 97750 |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Thread delayed: delay time: 97640 |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Thread delayed: delay time: 97528 |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Thread delayed: delay time: 97422 |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Thread delayed: delay time: 97299 |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Thread delayed: delay time: 97172 |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Thread delayed: delay time: 97047 |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Thread delayed: delay time: 96937 |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Thread delayed: delay time: 96828 |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Thread delayed: delay time: 96718 |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Thread delayed: delay time: 96609 |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Thread delayed: delay time: 96498 |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Thread delayed: delay time: 96390 |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Thread delayed: delay time: 96275 |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Thread delayed: delay time: 96172 |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Thread delayed: delay time: 96047 |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Thread delayed: delay time: 95861 |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Thread delayed: delay time: 95697 |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Thread delayed: delay time: 95577 |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Thread delayed: delay time: 95413 |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Thread delayed: delay time: 95312 |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Thread delayed: delay time: 95203 |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Thread delayed: delay time: 95093 |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Thread delayed: delay time: 94984 |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Thread delayed: delay time: 922337203685477 |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Windows.Forms\v4.0_4.0.0.0__b77a5c561934e089\System.Windows.Forms.dll VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Drawing\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Microsoft.NET\assembly\GAC_MSIL\Accessibility\v4.0_4.0.0.0__b03f5f7f11d50a3a\Accessibility.dll VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\bahnschrift.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\bahnschrift.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\bahnschrift.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\bahnschrift.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\bahnschrift.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\bahnschrift.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\bahnschrift.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\bahnschrift.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\bahnschrift.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\bahnschrift.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\bahnschrift.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\calibrili.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\calibrib.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\calibriz.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\cambria.ttc VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\cambriai.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\cambria.ttc VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\Candara.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\Candarab.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\Candaraz.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\comic.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\comici.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\comicbd.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\comicz.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\constan.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\constani.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\constanb.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\constanz.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\corbel.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\corbell.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\corbeli.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\corbelli.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\corbelb.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\corbelz.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\cour.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\couri.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\courbd.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\courbi.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\ebrima.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\ebrimabd.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\framd.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\FRADM.TTF VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\framdit.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\FRADMIT.TTF VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\FRAMDCN.TTF VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\FRADMCN.TTF VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\gadugi.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\gadugib.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\georgia.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\georgiai.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\georgiab.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\georgiaz.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\impact.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\Inkfree.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\javatext.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\LeelawUI.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\LeelUIsl.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\LeelaUIb.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\lucon.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\l_10646.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\malgun.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\malgunsl.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\malgunbd.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\himalaya.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\msjh.ttc VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\msjhl.ttc VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\msjhbd.ttc VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\msjh.ttc VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\msjhl.ttc VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\ntailu.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\ntailub.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\phagspa.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\phagspab.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\micross.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\taile.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\taileb.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\msyh.ttc VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\msyhl.ttc VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\msyhbd.ttc VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\msyh.ttc VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\msyhl.ttc VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\mingliub.ttc VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\mingliub.ttc VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\mingliub.ttc VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\monbaiti.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\msgothic.ttc VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\msgothic.ttc VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\mvboli.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\mmrtext.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\mmrtextb.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\Nirmala.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\NirmalaS.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\NirmalaB.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\pala.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\palai.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\palab.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\palabi.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\segoepr.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\segoeprb.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\segoesc.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\segoescb.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\seguihis.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\simsun.ttc VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\simsunb.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\Sitka.ttc VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\SitkaI.ttc VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\SitkaB.ttc VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\SitkaZ.ttc VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\Sitka.ttc VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\SitkaI.ttc VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\SitkaB.ttc VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\sylfaen.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\symbol.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\tahoma.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\tahomabd.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\timesi.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\timesbi.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\trebuc.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\trebucit.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\trebucbd.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\trebucbi.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\verdana.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\verdanai.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\verdanab.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\verdanaz.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\webdings.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\YuGothR.ttc VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\YuGothM.ttc VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\YuGothL.ttc VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\YuGothB.ttc VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\YuGothM.ttc VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\YuGothL.ttc VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\YuGothB.ttc VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\holomdl2.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\AGENCYR.TTF VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\AGENCYB.TTF VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\ALGER.TTF VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\BKANT.TTF VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\ANTQUAI.TTF VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\ANTQUABI.TTF VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\ARLRDBD.TTF VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\BAUHS93.TTF VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\BELLI.TTF VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\BOD_BI.TTF VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\BOD_CI.TTF VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\BOOKOSB.TTF VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\BOOKOSBI.TTF VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\BRADHITC.TTF VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\BRITANIC.TTF VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\BRUSHSCI.TTF VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\BSSYM7.TTF VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\CALIFR.TTF VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\CALIFI.TTF VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\CALIFB.TTF VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\CENSCBK.TTF VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\ELEPHNTI.TTF VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\ENGR.TTF VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\ERASLGHT.TTF VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\ERASDEMI.TTF VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\ERASBD.TTF VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\FELIXTI.TTF VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\FORTE.TTF VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\FRABKIT.TTF VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\GARA.TTF VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\GARABD.TTF VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\GIGI.TTF VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\GILI____.TTF VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\GILC____.TTF VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\GLECB.TTF VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\GOTHICBI.TTF VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\HARLOWSI.TTF VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\HARNGTON.TTF VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\INFROMAN.TTF VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\KUNSTLER.TTF VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\LEELAWDB.TTF VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\LFAX.TTF VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\LTYPE.TTF VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\MAIAN.TTF VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\MSUIGHUB.TTF VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\MTCORSVA.TTF VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\NIAGENG.TTF VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\OCRAEXT.TTF VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\ONYX.TTF VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Fonts\micross.ttf VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.VisualBasic\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.dll VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Windows.Forms\v4.0_4.0.0.0__b77a5c561934e089\System.Windows.Forms.dll VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Security\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Security.dll VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.VisualBasic\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.dll VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Drawing\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll VolumeInformation |
Jump to behavior |
Source: C:\Users\user\Desktop\INVOICE_MAY-888201-2024.exe |
Queries volume information: C:\Windows\Microsoft.NET\assembly\GAC_MSIL\Accessibility\v4.0_4.0.0.0__b03f5f7f11d50a3a\Accessibility.dll VolumeInformation |
Jump to behavior |