Windows Analysis Report
SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe

Overview

General Information

Sample name:	SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe
Analysis ID:	1459454
MD5:	a6c1b27e646cf5904a69e45ffc8808d5
SHA1:	7cbafd874594bf3ee91cc49d7fa8ec686b4cad80
SHA256:	d9cd6884ad7518018efaa52cde9c0ed46fba959e9ea093c97e68004dbf2cad66
Tags:	exe
Infos:

Detection

Score:	48
Range:	0 - 100
Whitelisted:	false
Confidence:	100%

Signatures

AI detected suspicious sample

Connects to a pastebin service (likely for C&C)

IP address seen in connection with other malware

Internet Provider seen in connection with other malware

Queries the volume information (name, serial number etc) of a device

Sample file is different than original file name gathered from version info

Classification

Signatures

AV Detection

AI detected suspicious sample

Source: Submited Sample

Integrated Neural Analysis Model: Matched 92.5% probability

Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe

Static PE information: HIGH_ENTROPY_VA, DYNAMIC_BASE, NX_COMPAT, TERMINAL_SERVER_AWARE

Source:

Binary string: D:\a\pkg-fetch\pkg-fetch\build\node\out\Release\node.pdb source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0E47000.00000002.00000001.01000000.00000003.sdmp

Networking

Connects to a pastebin service (likely for C&C)

Source: unknown

DNS query: name: rentry.co

IP address seen in connection with other malware

Source: Joe Sandbox View

IP Address: 172.67.75.40 172.67.75.40

Internet Provider seen in connection with other malware

Source: Joe Sandbox View

ASN Name: CLOUDFLARENETUS CLOUDFLARENETUS

Source: unknown

UDP traffic detected without corresponding DNS query: 1.1.1.1

Source: global traffic

DNS traffic detected: DNS query: rentry.co

Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: http://.css
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: http://.jpg
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: http://code.google.com/p/closure-compiler/wiki/SourceMaps
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1820398515.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823696218.0000018A90B50000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1826378794.0000018A90B51000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823372616.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1822927471.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://crl.certigna.fr/certignarootca.crl01
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1826257147.0000018A90B15000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1822633665.0000018A90B15000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1821059145.0000018A90B14000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1824624721.0000018A8EFE4000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823834958.0000018A8EFDA000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1820398515.0000018A90B0B000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823895788.0000018A8EFE2000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://crl.comodoca.com/AAACertificateServices.crl06
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1820398515.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823696218.0000018A90B50000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1826378794.0000018A90B51000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823372616.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1822927471.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://crl.comodoca.com/COMODOCertificationAuthority.crl
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1820398515.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823696218.0000018A90B50000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1826378794.0000018A90B51000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823372616.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1822927471.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://crl.comodoca.com/COMODOCertificationAuthority.crl%
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1826284724.0000018A90B1C000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1822633665.0000018A90B15000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1821059145.0000018A90B14000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823538944.0000018A90B19000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1820398515.0000018A90B0B000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://crl.comodoca.com/COMODOCertificationAuthority.crleateSecureConte
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1820398515.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823696218.0000018A90B50000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1826378794.0000018A90B51000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823372616.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1822927471.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://crl.dhimyotis.com/certignarootca.crl
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1820398515.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823696218.0000018A90B50000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1826378794.0000018A90B51000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823372616.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1822927471.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://crl.dhimyotis.com/certignarootca.crl.
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823834958.0000018A8EFDA000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823895788.0000018A8EFE2000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823924482.0000018A8EFEA000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1824651710.0000018A8EFEC000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://crl.globalsign.net/root-r2.crl
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1826257147.0000018A90B15000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1822633665.0000018A90B15000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1821059145.0000018A90B14000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1820398515.0000018A90B0B000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://crl.globalsign.net/root-r2.crl0
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823834958.0000018A8EFDA000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823895788.0000018A8EFE2000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823924482.0000018A8EFEA000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1824651710.0000018A8EFEC000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://crl.globalsign.net/root-r2.crl9
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1819848105.0000018A8F000000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1820398515.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823696218.0000018A90B50000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1819895006.0000018A8F006000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1824798469.0000018A8F007000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1826378794.0000018A90B51000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823372616.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1822927471.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://crl.netsolssl.com/NetworkSolutionsCertificateAuthority.crl
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1824651710.0000018A8EFEC000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://crl.securetrust.com/SGCA.crl
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1820398515.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823696218.0000018A90B50000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1826378794.0000018A90B51000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823372616.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1822927471.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://crl.securetrust.com/SGCA.crl0
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1814937284.0000018A90A6D000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1825568799.0000018A90A72000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1822096644.0000018A90A6D000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1822390615.0000018A90A6F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1817629079.0000018A90A6D000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://crl.securetrust.com/STCA.crl
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1820398515.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823696218.0000018A90B50000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1826378794.0000018A90B51000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823372616.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1822927471.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://crl.securetrust.com/STCA.crl0
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823834958.0000018A8EFDA000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823895788.0000018A8EFE2000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823924482.0000018A8EFEA000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1824651710.0000018A8EFEC000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://crl.xrampsecurity.com/XGCA.crl
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1820398515.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823696218.0000018A90B50000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1826378794.0000018A90B51000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823372616.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1822927471.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://crl.xrampsecurity.com/XGCA.crl0
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823834958.0000018A8EFDA000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823895788.0000018A8EFE2000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823924482.0000018A8EFEA000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1824651710.0000018A8EFEC000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://crl.xrampsecurity.com/XGCA.crla
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: http://html4/loose.dtd
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: http://narwhaljs.org)
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1824624721.0000018A8EFE4000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823834958.0000018A8EFDA000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823895788.0000018A8EFE2000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://ocsp.accv.es
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1820398515.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823696218.0000018A90B50000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1826378794.0000018A90B51000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823372616.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1822927471.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://ocsp.accv.es0
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1822927471.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://repository.swisssign.com/
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: http://src.chromium.org/viewvc/blink/trunk/Source/devtools/front_end/SourceMap.js
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: http://userguide.icu-project.org/strings/properties
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: http://www.3waylabs.com/nw/WWW/products/wizcon/vt220.html
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1820398515.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823696218.0000018A90B50000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1824624721.0000018A8EFE4000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823834958.0000018A8EFDA000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1826378794.0000018A90B51000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823372616.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1822927471.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823895788.0000018A8EFE2000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://www.accv.es/fileadmin/Archivos/certificados/raizaccv1.crt0
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1820398515.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823696218.0000018A90B50000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1826378794.0000018A90B51000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823372616.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1822927471.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://www.accv.es/fileadmin/Archivos/certificados/raizaccv1_der.crl
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1820398515.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823696218.0000018A90B50000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1826378794.0000018A90B51000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823372616.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1822927471.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://www.accv.es/fileadmin/Archivos/certificados/raizaccv1_der.crl0
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1820398515.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823696218.0000018A90B50000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1826378794.0000018A90B51000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823372616.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1822927471.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://www.accv.es/legislacion_c.htm
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1820398515.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823696218.0000018A90B50000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1826378794.0000018A90B51000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823372616.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1822927471.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://www.accv.es/legislacion_c.htm0U
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1820398515.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823696218.0000018A90B50000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1826378794.0000018A90B51000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823372616.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1822927471.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://www.accv.es/legislacion_c.htmD
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1820398515.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823696218.0000018A90B50000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1826378794.0000018A90B51000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823372616.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1822927471.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://www.accv.es00
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: http://www.apache.org/licenses/LICENSE-2.0
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1822927471.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://www.cert.fnmt.es/dpcs/
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1820398515.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823696218.0000018A90B50000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1822633665.0000018A90B15000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1821059145.0000018A90B14000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823372616.0000018A90B1F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1820398515.0000018A90B0B000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1826378794.0000018A90B51000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1826306486.0000018A90B2A000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823372616.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1822927471.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://www.firmaprofesional.com/cps0
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: http://www.midnight-commander.org/browser/lib/tty/key.c
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1819465168.0000018A90AD9000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1820216988.0000018A90AD9000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1819810298.0000018A90AD9000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1825961023.0000018A90AD9000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1814937284.0000018A90AD9000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1816098895.0000018A90AD9000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://www.quovadisglobal.com/cps
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1820398515.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823696218.0000018A90B50000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1826378794.0000018A90B51000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823372616.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1822927471.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://www.quovadisglobal.com/cps0
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: http://www.squid-cache.org/Doc/config/half_closed_clients/
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: http://www.unicode.org/copyright.html
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: https://bugs.chromium.org/p/v8/issues/detail?id=6593
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://bugzilla.mozilla.org/show_bug.cgi?id=745678
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://code.google.com/p/chromium/issues/detail?id=25916
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://console.spec.whatwg.org/#clear
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: https://console.spec.whatwg.org/#console-namespace
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://console.spec.whatwg.org/#count
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://console.spec.whatwg.org/#count-map
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://console.spec.whatwg.org/#countreset
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://console.spec.whatwg.org/#table
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://crbug.com/v8/7848
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://crbug.com/v8/8520
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://cs.chromium.org/chromium/src/v8/tools/SourceMap.js?rcl=dd10454c1d
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://developer.mozilla.org/en-US/docs/SpiderMonkey/Parser_API
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://developer.mozilla.org/en-US/docs/Web/JavaScript/Equality_comparisons_and_sameness#Loose_equa
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://encoding.spec.whatwg.org
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: https://encoding.spec.whatwg.org/#textdecoder
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: https://encoding.spec.whatwg.org/#textencoder
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: https://esdiscuss.org/topic/isconstructor#content-11
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://gist.github.com/XVilka/8346728#gistcomment-2823421
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://github.com/acornjs/acorn/blob/master/acorn/src/identifier.js#L23
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://github.com/acornjs/acorn/issues/575
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://github.com/antirez/linenoise
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://github.com/chalk/ansi-regex/blob/master/index.js
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://github.com/chalk/supports-color
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://github.com/da-x/rxvt-unicode/tree/v9.22-with-24bit-color
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://github.com/estree/estree/blob/a27003adf4fd7bfad44de9cef372a2eacd527b1c/es5.md#regexpliteral
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://github.com/google/caja/blob/master/src/com/google/caja/ses/repairES5.js
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://github.com/google/caja/blob/master/src/com/google/caja/ses/startSES.js
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://github.com/google/closure-compiler/wiki/Source-Maps
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://github.com/isaacs/color-support.
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://github.com/joyent/node/issues/3295.
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://github.com/mafintosh/end-of-stream
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://github.com/mafintosh/pump
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://github.com/nodejs/node-v0.x-archive/issues/2876.
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1805545245.0000018A90A8E000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1805607449.0000018A90A9B000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1816098895.0000018A90A9E000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1814937284.0000018A90A8D000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1815351663.000001B173D00000.00000004.00001000.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1815394051.000001AEF27C0000.00000004.00001000.00020000.00000000.sdmp	String found in binary or memory: https://github.com/nodejs/node/blob/1a96d83a223ff9f05f7d942fb84440d323f7b596/lib/internal/bootstrap/
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: https://github.com/nodejs/node/commit/ec2822adaad76b126b5cccdeaa1addf2376c9aa6
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://github.com/nodejs/node/commit/f7620fb96d339f704932f9bb9a0dceb9952df2d4
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://github.com/nodejs/node/issues
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://github.com/nodejs/node/issues/10673
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: https://github.com/nodejs/node/issues/13435
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://github.com/nodejs/node/issues/2006
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://github.com/nodejs/node/issues/2119
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://github.com/nodejs/node/issues/3392
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: https://github.com/nodejs/node/pull/12342
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://github.com/nodejs/node/pull/12607
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://github.com/nodejs/node/pull/13870#discussion_r124515293
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://github.com/nodejs/node/pull/1771#issuecomment-119351671
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: https://github.com/nodejs/node/pull/21313
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: https://github.com/nodejs/node/pull/26334.
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://github.com/nodejs/node/pull/30380#issuecomment-552948364
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: https://github.com/nodejs/node/pull/30958
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1805545245.0000018A90A8E000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1805607449.0000018A90A9B000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1816098895.0000018A90A9E000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1814937284.0000018A90A8D000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1815351663.000001B173D00000.00000004.00001000.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1815394051.000001AEF27C0000.00000004.00001000.00020000.00000000.sdmp	String found in binary or memory: https://github.com/nodejs/node/pull/33229
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://github.com/nodejs/node/pull/3394
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://github.com/nodejs/node/pull/34375
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://github.com/standard-things/esm/issues/821.
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://github.com/tc39/ecma262/issues/1209
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://github.com/tc39/proposal-ses/blob/e5271cc42a257a05dcae2fd94713ed2f46c08620/shim/src/freeze.j
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: https://github.com/v8/v8/blob/d6ead37d265d7215cf9c5f768f279e21bd170212/src/js/prologue.js#L152-L156
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1805545245.0000018A90A8E000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1805607449.0000018A90A9B000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1816098895.0000018A90A9E000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1814937284.0000018A90A8D000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1815351663.000001B173D00000.00000004.00001000.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1815394051.000001AEF27C0000.00000004.00001000.00020000.00000000.sdmp	String found in binary or memory: https://github.com/vercel/pkg/issues/1589
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://goo.gl/t5IS6M).
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: https://heycam.github.io/webidl/#define-the-operations
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://heycam.github.io/webidl/#dfn-class-string
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://heycam.github.io/webidl/#dfn-default-iterator-object
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://heycam.github.io/webidl/#dfn-iterator-prototype-object
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: https://heycam.github.io/webidl/#es-interfaces
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://heycam.github.io/webidl/#es-iterable
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://heycam.github.io/webidl/#es-iterable-entries
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://heycam.github.io/webidl/#es-iterators
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: https://heycam.github.io/webidl/#es-namespaces
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://heycam.github.io/webidl/#es-operations
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://heycam.github.io/webidl/#es-stringifier
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://html.spec.whatwg.org/multipage/browsers.html#ascii-serialisation-of-an-origin
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://html.spec.whatwg.org/multipage/browsers.html#concept-origin-opaque
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://html.spec.whatwg.org/multipage/timers-and-user-prompts.html#dom-setinterval
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: https://html.spec.whatwg.org/multipage/webappapis.html#windoworworkerglobalscope
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://invisible-island.net/ncurses/terminfo.ti.html#toc-_Specials
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://invisible-island.net/xterm/ctlseqs/ctlseqs.html
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://linux.die.net/man/1/dircolors).
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://mathiasbynens.be/notes/javascript-encoding
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://no-color.org/
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://nodejs.org/
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://nodejs.org/api/cli.html#cli_unhandled_rejections_mode).
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://nodejs.org/api/fs.html
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1815833034.000001BAC24C0000.00000004.00001000.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823895788.0000018A8EFE2000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823924482.0000018A8EFEA000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1824651710.0000018A8EFEC000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://nodejs.org/download/release/v12.22.11/node-v12.22.11-headers.tar.gz
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1815833034.000001BAC24C0000.00000004.00001000.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823895788.0000018A8EFE2000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823924482.0000018A8EFEA000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1824651710.0000018A8EFEC000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://nodejs.org/download/release/v12.22.11/node-v12.22.11.tar.gz
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://nodejs.org/download/release/v12.22.11/node-v12.22.11.tar.gzhttps://nodejs.org/download/relea
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1815833034.000001BAC24C0000.00000004.00001000.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823895788.0000018A8EFE2000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://nodejs.org/download/release/v12.22.11/win-x64/node.lib
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1824624721.0000018A8EFE4000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823834958.0000018A8EFDA000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823895788.0000018A8EFE2000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://nodejs.org/download/release/v12.22.11/win-x64/node.libj
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1815434388.000001AD9A298000.00000004.00001000.00020000.00000000.sdmp	String found in binary or memory: https://nodejs.org/download/release/v12.22.11/win-x64/node.libuL
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1816098895.0000018A90AD9000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://rentry.co/autodownload/raw
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1815958242.000002CDDE3C0000.00000004.00001000.00020000.00000000.sdmp	String found in binary or memory: https://rentry.co/autodownload/rawq
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://sourcemaps.info/spec.html
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://stackoverflow.com/a/5501711/3561
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://tc39.es/ecma262/#sec-IsHTMLDDA-internal-slot
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://tc39.github.io/ecma262/#sec-%iteratorprototype%-object
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: https://tc39.github.io/ecma262/#sec-%typedarray%.of
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://tc39.github.io/ecma262/#sec-object.prototype.tostring
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://tools.ietf.org/html/rfc2397#section-2
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://tools.ietf.org/html/rfc3492#section-3.4
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: https://tools.ietf.org/html/rfc3986#section-3.2.2
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://tools.ietf.org/html/rfc7230#section-3.2.2
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: https://tools.ietf.org/html/rfc7230#section-3.2.6
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://tools.ietf.org/html/rfc7540#section-8.1.2.5
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://url.spec.whatwg.org/#cannot-have-a-username-password-port
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://url.spec.whatwg.org/#concept-url
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://url.spec.whatwg.org/#concept-url-origin
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://url.spec.whatwg.org/#concept-urlencoded-byte-serializer
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://url.spec.whatwg.org/#concept-urlencoded-parser
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://url.spec.whatwg.org/#concept-urlencoded-serializer
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: https://url.spec.whatwg.org/#url
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: https://url.spec.whatwg.org/#urlsearchparams
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://url.spec.whatwg.org/#urlsearchparams-stringification-behavior
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://w3c.github.io/webappsec-subresource-integrity/#the-integrity-attribute
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: https://wiki.squid-cache.org/SquidFaq/InnerWorkings#What_is_a_half-closed_filedescriptor.3F
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1822927471.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://www.catcert.net/verarrel
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1820824545.0000018A90A4A000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1819910071.0000018A90A3C000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1820398515.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823696218.0000018A90B50000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1825507308.0000018A90A61000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1818705172.0000018A90A39000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1814937284.0000018A90A00000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1821942517.0000018A90A57000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1820945779.0000018A90A56000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1826378794.0000018A90B51000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823372616.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1822927471.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://www.catcert.net/verarrel05
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/#sec-line-terminators
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: https://www.ecma-international.org/ecma-262/#sec-promise.all
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/#sec-timeclip
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/5.1/#sec-15.1.3.4
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-Alternative
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-Atom
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-CharacterClass
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-CharacterClassEscape
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-ClassAtom
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-ClassAtomNoDash
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-ClassRanges
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-ControlEscape
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-ControlLetter
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-DecimalDigits
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-DecimalEscape
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-Disjunction
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-Hex4Digits
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-HexDigit
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-HexDigits
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-HexEscapeSequence
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-NonemptyClassRanges
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-NonemptyClassRangesNoDash
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-OctalDigit
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-Pattern
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-PatternCharacter
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-Quantifier
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-QuantifierPrefix
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-RegExpUnicodeEscapeSequence
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-SyntaxCharacter
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-annexB-Assertion
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-annexB-AtomEscape
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-annexB-CharacterEscape
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-annexB-ClassControlLetter
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-annexB-ClassEscape
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-annexB-ExtendedAtom
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-annexB-ExtendedPatternCharacter
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-annexB-IdentityEscape
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-annexB-InvalidBracedQuantifier
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-annexB-LegacyOctalEscapeSequence
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-annexB-Term
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#sec-atomescape
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#sec-term
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: https://www.iana.org/assignments/tls-extensiontype-values
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.unicode.org/Public/UNIDATA/EastAsianWidth.txt
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1820398515.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823696218.0000018A90B50000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1826378794.0000018A90B51000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823372616.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1822927471.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://wwww.certigna.fr/autorites/
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1820398515.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823696218.0000018A90B50000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1826378794.0000018A90B51000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823372616.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1822927471.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://wwww.certigna.fr/autorites/0m

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49731
Source: unknown	Network traffic detected: HTTP traffic on port 49731 -> 443

Sample file is different than original file name gathered from version info

Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1804529814.00007FF7B14F2000.00000002.00000001.01000000.00000003.sdmp

Binary or memory string: OriginalFilenamenode.exe* vs SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe

Source: classification engine

Classification label: mal48.troj.winEXE@1/0@1/1

Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe

Static PE information: Section: .text IMAGE_SCN_CNT_CODE, IMAGE_SCN_MEM_EXECUTE, IMAGE_SCN_MEM_READ

Source: C:\Users\user\Desktop\SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe

Key opened: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\Safer\CodeIdentifiers

Jump to behavior

Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: // lib/internal/modules/cjs/loader.js (CommonJS Modules) or
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: // require('internal/bootstrap/loaders') even when this file is not written in
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: const loaderId = 'internal/bootstrap/loaders';
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: // - `lib/internal/bootstrap/loaders.js`: to setup internal binding and
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: const CJSLoader = require('internal/modules/cjs/loader');
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: require('internal/bootstrap/loaders').NativeModule.exposeInternals();
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: const { NativeModule } = require('internal/bootstrap/loaders');
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: } = require('internal/modules/cjs/loader');
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: const { NativeModule } = require('internal/bootstrap/loaders');
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: // Mark this socket as available, AFTER user-added end
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: const { Module } = require('internal/modules/cjs/loader');

Source: C:\Users\user\Desktop\SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe

File read: C:\Users\user\Desktop\SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe

Jump to behavior

Source: C:\Users\user\Desktop\SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	Section loaded: dbghelp.dll	Jump to behavior
Source: C:\Users\user\Desktop\SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	Section loaded: iphlpapi.dll	Jump to behavior
Source: C:\Users\user\Desktop\SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	Section loaded: userenv.dll	Jump to behavior
Source: C:\Users\user\Desktop\SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	Section loaded: winmm.dll	Jump to behavior
Source: C:\Users\user\Desktop\SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	Section loaded: cryptbase.dll	Jump to behavior
Source: C:\Users\user\Desktop\SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	Section loaded: powrprof.dll	Jump to behavior
Source: C:\Users\user\Desktop\SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	Section loaded: umpdc.dll	Jump to behavior
Source: C:\Users\user\Desktop\SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	Section loaded: uxtheme.dll	Jump to behavior
Source: C:\Users\user\Desktop\SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	Section loaded: mswsock.dll	Jump to behavior
Source: C:\Users\user\Desktop\SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	Section loaded: kernel.appcore.dll	Jump to behavior
Source: C:\Users\user\Desktop\SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	Section loaded: dhcpcsvc6.dll	Jump to behavior
Source: C:\Users\user\Desktop\SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	Section loaded: dhcpcsvc.dll	Jump to behavior
Source: C:\Users\user\Desktop\SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	Section loaded: dnsapi.dll	Jump to behavior
Source: C:\Users\user\Desktop\SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	Section loaded: napinsp.dll	Jump to behavior
Source: C:\Users\user\Desktop\SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	Section loaded: pnrpnsp.dll	Jump to behavior
Source: C:\Users\user\Desktop\SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	Section loaded: wshbth.dll	Jump to behavior
Source: C:\Users\user\Desktop\SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	Section loaded: nlaapi.dll	Jump to behavior
Source: C:\Users\user\Desktop\SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	Section loaded: winrnr.dll	Jump to behavior
Source: C:\Users\user\Desktop\SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	Section loaded: rasadhlp.dll	Jump to behavior
Source: C:\Users\user\Desktop\SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	Section loaded: fwpuclnt.dll	Jump to behavior

Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe

Static PE information: More than 8191 > 100 exports found

Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe

Static PE information: Virtual size of .text is bigger than: 0x100000

Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe

Static PE information: Image base 0x140000000 > 0x60000000

Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe

Static file information: File size 29894260 > 1048576

Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	Static PE information: Raw size of .text is bigger than: 0x100000 < 0xf47a00
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	Static PE information: Raw size of .rdata is bigger than: 0x100000 < 0xc07000

Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe

Static PE information: More than 200 imports for KERNEL32.dll

Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	Static PE information: data directory type: IMAGE_DIRECTORY_ENTRY_IMPORT
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	Static PE information: data directory type: IMAGE_DIRECTORY_ENTRY_RESOURCE
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	Static PE information: data directory type: IMAGE_DIRECTORY_ENTRY_BASERELOC
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	Static PE information: data directory type: IMAGE_DIRECTORY_ENTRY_DEBUG
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	Static PE information: data directory type: IMAGE_DIRECTORY_ENTRY_LOAD_CONFIG
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	Static PE information: data directory type: IMAGE_DIRECTORY_ENTRY_IAT

Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe

Static PE information: HIGH_ENTROPY_VA, DYNAMIC_BASE, NX_COMPAT, TERMINAL_SERVER_AWARE

Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe

Static PE information: data directory type: IMAGE_DIRECTORY_ENTRY_DEBUG

Source:

Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	Static PE information: Data directory: IMAGE_DIRECTORY_ENTRY_IMPORT is in: .rdata
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	Static PE information: Data directory: IMAGE_DIRECTORY_ENTRY_RESOURCE is in: .rsrc
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	Static PE information: Data directory: IMAGE_DIRECTORY_ENTRY_BASERELOC is in: .reloc
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	Static PE information: Data directory: IMAGE_DIRECTORY_ENTRY_LOAD_CONFIG is in: .rdata
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	Static PE information: Data directory: IMAGE_DIRECTORY_ENTRY_IAT is in: .rdata

Source: C:\Users\user\Desktop\SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe

Process information set: NOGPFAULTERRORBOX | NOOPENFILEERRORBOX

Jump to behavior

Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1824427574.0000018A8EFA0000.00000004.00000020.00020000.00000000.sdmp	Binary or memory string: Hyper-V RAW
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	Binary or memory string: lgnW2/4/PEZB31jiVg88O8EckzXZOFKs7sjsLjBOlDW0JB9LeGna8gI4zJVSk/BwJVmcIGfE

Queries the volume information (name, serial number etc) of a device

Source: C:\Users\user\Desktop\SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe

Queries volume information: C:\Users\user\Desktop\SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe VolumeInformation

Jump to behavior

Screenshots

Behavior Graph

Hide Legend

Legend:

Process
Signature
Created File
DNS/IP Info
Is Dropped
Is Windows Process
Number of created Registry Values
Number of created Files
Visual Basic
Delphi
Java
.Net C# or VB.NET
C, C++ or other language
Is malicious
Internet

Network Map

No. of IPs < 25%
25% < No. of IPs < 50%
50% < No. of IPs < 75%
75% < No. of IPs

Contacted Public IPs

IP	Domain	Country	Flag	ASN	ASN Name	Malicious
172.67.75.40	rentry.co	United States		13335	CLOUDFLARENETUS	true

Contacted Domains

Name	IP	Active
rentry.co	172.67.75.40	true

AV Detection

AI detected suspicious sample

Source: Submited Sample

Integrated Neural Analysis Model: Matched 92.5% probability

Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe

Static PE information: HIGH_ENTROPY_VA, DYNAMIC_BASE, NX_COMPAT, TERMINAL_SERVER_AWARE

Source:

Networking

Connects to a pastebin service (likely for C&C)

Source: unknown

DNS query: name: rentry.co

IP address seen in connection with other malware

Source: Joe Sandbox View

IP Address: 172.67.75.40 172.67.75.40

Internet Provider seen in connection with other malware

Source: Joe Sandbox View

ASN Name: CLOUDFLARENETUS CLOUDFLARENETUS

Source: unknown

UDP traffic detected without corresponding DNS query: 1.1.1.1

Source: global traffic

DNS traffic detected: DNS query: rentry.co

Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: http://.css
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: http://.jpg
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: http://code.google.com/p/closure-compiler/wiki/SourceMaps
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1820398515.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823696218.0000018A90B50000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1826378794.0000018A90B51000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823372616.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1822927471.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://crl.certigna.fr/certignarootca.crl01
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1826257147.0000018A90B15000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1822633665.0000018A90B15000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1821059145.0000018A90B14000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1824624721.0000018A8EFE4000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823834958.0000018A8EFDA000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1820398515.0000018A90B0B000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823895788.0000018A8EFE2000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://crl.comodoca.com/AAACertificateServices.crl06
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1820398515.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823696218.0000018A90B50000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1826378794.0000018A90B51000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823372616.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1822927471.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://crl.comodoca.com/COMODOCertificationAuthority.crl
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1820398515.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823696218.0000018A90B50000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1826378794.0000018A90B51000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823372616.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1822927471.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://crl.comodoca.com/COMODOCertificationAuthority.crl%
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1826284724.0000018A90B1C000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1822633665.0000018A90B15000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1821059145.0000018A90B14000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823538944.0000018A90B19000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1820398515.0000018A90B0B000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://crl.comodoca.com/COMODOCertificationAuthority.crleateSecureConte
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1820398515.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823696218.0000018A90B50000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1826378794.0000018A90B51000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823372616.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1822927471.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://crl.dhimyotis.com/certignarootca.crl
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1820398515.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823696218.0000018A90B50000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1826378794.0000018A90B51000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823372616.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1822927471.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://crl.dhimyotis.com/certignarootca.crl.
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823834958.0000018A8EFDA000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823895788.0000018A8EFE2000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823924482.0000018A8EFEA000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1824651710.0000018A8EFEC000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://crl.globalsign.net/root-r2.crl
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1826257147.0000018A90B15000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1822633665.0000018A90B15000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1821059145.0000018A90B14000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1820398515.0000018A90B0B000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://crl.globalsign.net/root-r2.crl0
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823834958.0000018A8EFDA000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823895788.0000018A8EFE2000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823924482.0000018A8EFEA000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1824651710.0000018A8EFEC000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://crl.globalsign.net/root-r2.crl9
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1819848105.0000018A8F000000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1820398515.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823696218.0000018A90B50000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1819895006.0000018A8F006000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1824798469.0000018A8F007000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1826378794.0000018A90B51000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823372616.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1822927471.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://crl.netsolssl.com/NetworkSolutionsCertificateAuthority.crl
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1824651710.0000018A8EFEC000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://crl.securetrust.com/SGCA.crl
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1820398515.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823696218.0000018A90B50000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1826378794.0000018A90B51000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823372616.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1822927471.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://crl.securetrust.com/SGCA.crl0
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1814937284.0000018A90A6D000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1825568799.0000018A90A72000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1822096644.0000018A90A6D000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1822390615.0000018A90A6F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1817629079.0000018A90A6D000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://crl.securetrust.com/STCA.crl
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1820398515.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823696218.0000018A90B50000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1826378794.0000018A90B51000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823372616.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1822927471.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://crl.securetrust.com/STCA.crl0
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823834958.0000018A8EFDA000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823895788.0000018A8EFE2000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823924482.0000018A8EFEA000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1824651710.0000018A8EFEC000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://crl.xrampsecurity.com/XGCA.crl
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1820398515.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823696218.0000018A90B50000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1826378794.0000018A90B51000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823372616.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1822927471.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://crl.xrampsecurity.com/XGCA.crl0
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823834958.0000018A8EFDA000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823895788.0000018A8EFE2000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823924482.0000018A8EFEA000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1824651710.0000018A8EFEC000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://crl.xrampsecurity.com/XGCA.crla
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: http://html4/loose.dtd
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: http://narwhaljs.org)
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1824624721.0000018A8EFE4000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823834958.0000018A8EFDA000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823895788.0000018A8EFE2000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://ocsp.accv.es
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1820398515.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823696218.0000018A90B50000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1826378794.0000018A90B51000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823372616.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1822927471.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://ocsp.accv.es0
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1822927471.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://repository.swisssign.com/
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: http://src.chromium.org/viewvc/blink/trunk/Source/devtools/front_end/SourceMap.js
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: http://userguide.icu-project.org/strings/properties
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: http://www.3waylabs.com/nw/WWW/products/wizcon/vt220.html
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1820398515.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823696218.0000018A90B50000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1824624721.0000018A8EFE4000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823834958.0000018A8EFDA000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1826378794.0000018A90B51000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823372616.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1822927471.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823895788.0000018A8EFE2000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://www.accv.es/fileadmin/Archivos/certificados/raizaccv1.crt0
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1820398515.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823696218.0000018A90B50000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1826378794.0000018A90B51000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823372616.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1822927471.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://www.accv.es/fileadmin/Archivos/certificados/raizaccv1_der.crl
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1820398515.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823696218.0000018A90B50000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1826378794.0000018A90B51000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823372616.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1822927471.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://www.accv.es/fileadmin/Archivos/certificados/raizaccv1_der.crl0
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1820398515.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823696218.0000018A90B50000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1826378794.0000018A90B51000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823372616.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1822927471.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://www.accv.es/legislacion_c.htm
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1820398515.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823696218.0000018A90B50000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1826378794.0000018A90B51000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823372616.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1822927471.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://www.accv.es/legislacion_c.htm0U
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1820398515.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823696218.0000018A90B50000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1826378794.0000018A90B51000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823372616.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1822927471.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://www.accv.es/legislacion_c.htmD
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1820398515.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823696218.0000018A90B50000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1826378794.0000018A90B51000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823372616.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1822927471.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://www.accv.es00
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: http://www.apache.org/licenses/LICENSE-2.0
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1822927471.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://www.cert.fnmt.es/dpcs/
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1820398515.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823696218.0000018A90B50000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1822633665.0000018A90B15000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1821059145.0000018A90B14000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823372616.0000018A90B1F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1820398515.0000018A90B0B000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1826378794.0000018A90B51000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1826306486.0000018A90B2A000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823372616.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1822927471.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://www.firmaprofesional.com/cps0
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: http://www.midnight-commander.org/browser/lib/tty/key.c
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1819465168.0000018A90AD9000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1820216988.0000018A90AD9000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1819810298.0000018A90AD9000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1825961023.0000018A90AD9000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1814937284.0000018A90AD9000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1816098895.0000018A90AD9000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://www.quovadisglobal.com/cps
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1820398515.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823696218.0000018A90B50000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1826378794.0000018A90B51000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823372616.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1822927471.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://www.quovadisglobal.com/cps0
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: http://www.squid-cache.org/Doc/config/half_closed_clients/
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: http://www.unicode.org/copyright.html
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: https://bugs.chromium.org/p/v8/issues/detail?id=6593
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://bugzilla.mozilla.org/show_bug.cgi?id=745678
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://code.google.com/p/chromium/issues/detail?id=25916
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://console.spec.whatwg.org/#clear
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: https://console.spec.whatwg.org/#console-namespace
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://console.spec.whatwg.org/#count
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://console.spec.whatwg.org/#count-map
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://console.spec.whatwg.org/#countreset
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://console.spec.whatwg.org/#table
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://crbug.com/v8/7848
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://crbug.com/v8/8520
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://cs.chromium.org/chromium/src/v8/tools/SourceMap.js?rcl=dd10454c1d
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://developer.mozilla.org/en-US/docs/SpiderMonkey/Parser_API
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://developer.mozilla.org/en-US/docs/Web/JavaScript/Equality_comparisons_and_sameness#Loose_equa
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://encoding.spec.whatwg.org
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: https://encoding.spec.whatwg.org/#textdecoder
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: https://encoding.spec.whatwg.org/#textencoder
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: https://esdiscuss.org/topic/isconstructor#content-11
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://gist.github.com/XVilka/8346728#gistcomment-2823421
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://github.com/acornjs/acorn/blob/master/acorn/src/identifier.js#L23
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://github.com/acornjs/acorn/issues/575
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://github.com/antirez/linenoise
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://github.com/chalk/ansi-regex/blob/master/index.js
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://github.com/chalk/supports-color
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://github.com/da-x/rxvt-unicode/tree/v9.22-with-24bit-color
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://github.com/estree/estree/blob/a27003adf4fd7bfad44de9cef372a2eacd527b1c/es5.md#regexpliteral
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://github.com/google/caja/blob/master/src/com/google/caja/ses/repairES5.js
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://github.com/google/caja/blob/master/src/com/google/caja/ses/startSES.js
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://github.com/google/closure-compiler/wiki/Source-Maps
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://github.com/isaacs/color-support.
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://github.com/joyent/node/issues/3295.
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://github.com/mafintosh/end-of-stream
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://github.com/mafintosh/pump
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://github.com/nodejs/node-v0.x-archive/issues/2876.
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1805545245.0000018A90A8E000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1805607449.0000018A90A9B000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1816098895.0000018A90A9E000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1814937284.0000018A90A8D000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1815351663.000001B173D00000.00000004.00001000.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1815394051.000001AEF27C0000.00000004.00001000.00020000.00000000.sdmp	String found in binary or memory: https://github.com/nodejs/node/blob/1a96d83a223ff9f05f7d942fb84440d323f7b596/lib/internal/bootstrap/
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: https://github.com/nodejs/node/commit/ec2822adaad76b126b5cccdeaa1addf2376c9aa6
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://github.com/nodejs/node/commit/f7620fb96d339f704932f9bb9a0dceb9952df2d4
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://github.com/nodejs/node/issues
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://github.com/nodejs/node/issues/10673
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: https://github.com/nodejs/node/issues/13435
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://github.com/nodejs/node/issues/2006
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://github.com/nodejs/node/issues/2119
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://github.com/nodejs/node/issues/3392
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: https://github.com/nodejs/node/pull/12342
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://github.com/nodejs/node/pull/12607
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://github.com/nodejs/node/pull/13870#discussion_r124515293
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://github.com/nodejs/node/pull/1771#issuecomment-119351671
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: https://github.com/nodejs/node/pull/21313
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: https://github.com/nodejs/node/pull/26334.
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://github.com/nodejs/node/pull/30380#issuecomment-552948364
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: https://github.com/nodejs/node/pull/30958
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1805545245.0000018A90A8E000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1805607449.0000018A90A9B000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1816098895.0000018A90A9E000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1814937284.0000018A90A8D000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1815351663.000001B173D00000.00000004.00001000.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1815394051.000001AEF27C0000.00000004.00001000.00020000.00000000.sdmp	String found in binary or memory: https://github.com/nodejs/node/pull/33229
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://github.com/nodejs/node/pull/3394
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://github.com/nodejs/node/pull/34375
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://github.com/standard-things/esm/issues/821.
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://github.com/tc39/ecma262/issues/1209
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://github.com/tc39/proposal-ses/blob/e5271cc42a257a05dcae2fd94713ed2f46c08620/shim/src/freeze.j
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: https://github.com/v8/v8/blob/d6ead37d265d7215cf9c5f768f279e21bd170212/src/js/prologue.js#L152-L156
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1805545245.0000018A90A8E000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1805607449.0000018A90A9B000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1816098895.0000018A90A9E000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1814937284.0000018A90A8D000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1815351663.000001B173D00000.00000004.00001000.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1815394051.000001AEF27C0000.00000004.00001000.00020000.00000000.sdmp	String found in binary or memory: https://github.com/vercel/pkg/issues/1589
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://goo.gl/t5IS6M).
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: https://heycam.github.io/webidl/#define-the-operations
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://heycam.github.io/webidl/#dfn-class-string
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://heycam.github.io/webidl/#dfn-default-iterator-object
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://heycam.github.io/webidl/#dfn-iterator-prototype-object
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: https://heycam.github.io/webidl/#es-interfaces
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://heycam.github.io/webidl/#es-iterable
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://heycam.github.io/webidl/#es-iterable-entries
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://heycam.github.io/webidl/#es-iterators
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: https://heycam.github.io/webidl/#es-namespaces
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://heycam.github.io/webidl/#es-operations
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://heycam.github.io/webidl/#es-stringifier
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://html.spec.whatwg.org/multipage/browsers.html#ascii-serialisation-of-an-origin
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://html.spec.whatwg.org/multipage/browsers.html#concept-origin-opaque
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://html.spec.whatwg.org/multipage/timers-and-user-prompts.html#dom-setinterval
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: https://html.spec.whatwg.org/multipage/webappapis.html#windoworworkerglobalscope
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://invisible-island.net/ncurses/terminfo.ti.html#toc-_Specials
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://invisible-island.net/xterm/ctlseqs/ctlseqs.html
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://linux.die.net/man/1/dircolors).
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://mathiasbynens.be/notes/javascript-encoding
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://no-color.org/
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://nodejs.org/
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://nodejs.org/api/cli.html#cli_unhandled_rejections_mode).
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://nodejs.org/api/fs.html
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1815833034.000001BAC24C0000.00000004.00001000.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823895788.0000018A8EFE2000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823924482.0000018A8EFEA000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1824651710.0000018A8EFEC000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://nodejs.org/download/release/v12.22.11/node-v12.22.11-headers.tar.gz
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1815833034.000001BAC24C0000.00000004.00001000.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823895788.0000018A8EFE2000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823924482.0000018A8EFEA000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1824651710.0000018A8EFEC000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://nodejs.org/download/release/v12.22.11/node-v12.22.11.tar.gz
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://nodejs.org/download/release/v12.22.11/node-v12.22.11.tar.gzhttps://nodejs.org/download/relea
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1815833034.000001BAC24C0000.00000004.00001000.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823895788.0000018A8EFE2000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://nodejs.org/download/release/v12.22.11/win-x64/node.lib
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1824624721.0000018A8EFE4000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823834958.0000018A8EFDA000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823895788.0000018A8EFE2000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://nodejs.org/download/release/v12.22.11/win-x64/node.libj
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1815434388.000001AD9A298000.00000004.00001000.00020000.00000000.sdmp	String found in binary or memory: https://nodejs.org/download/release/v12.22.11/win-x64/node.libuL
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1816098895.0000018A90AD9000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://rentry.co/autodownload/raw
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1815958242.000002CDDE3C0000.00000004.00001000.00020000.00000000.sdmp	String found in binary or memory: https://rentry.co/autodownload/rawq
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://sourcemaps.info/spec.html
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://stackoverflow.com/a/5501711/3561
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://tc39.es/ecma262/#sec-IsHTMLDDA-internal-slot
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://tc39.github.io/ecma262/#sec-%iteratorprototype%-object
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: https://tc39.github.io/ecma262/#sec-%typedarray%.of
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://tc39.github.io/ecma262/#sec-object.prototype.tostring
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://tools.ietf.org/html/rfc2397#section-2
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://tools.ietf.org/html/rfc3492#section-3.4
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: https://tools.ietf.org/html/rfc3986#section-3.2.2
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://tools.ietf.org/html/rfc7230#section-3.2.2
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: https://tools.ietf.org/html/rfc7230#section-3.2.6
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://tools.ietf.org/html/rfc7540#section-8.1.2.5
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://url.spec.whatwg.org/#cannot-have-a-username-password-port
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://url.spec.whatwg.org/#concept-url
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://url.spec.whatwg.org/#concept-url-origin
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://url.spec.whatwg.org/#concept-urlencoded-byte-serializer
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://url.spec.whatwg.org/#concept-urlencoded-parser
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://url.spec.whatwg.org/#concept-urlencoded-serializer
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: https://url.spec.whatwg.org/#url
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: https://url.spec.whatwg.org/#urlsearchparams
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://url.spec.whatwg.org/#urlsearchparams-stringification-behavior
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://w3c.github.io/webappsec-subresource-integrity/#the-integrity-attribute
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: https://wiki.squid-cache.org/SquidFaq/InnerWorkings#What_is_a_half-closed_filedescriptor.3F
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1822927471.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://www.catcert.net/verarrel
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1820824545.0000018A90A4A000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1819910071.0000018A90A3C000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1820398515.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823696218.0000018A90B50000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1825507308.0000018A90A61000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1818705172.0000018A90A39000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1814937284.0000018A90A00000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1821942517.0000018A90A57000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1820945779.0000018A90A56000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1826378794.0000018A90B51000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823372616.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1822927471.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://www.catcert.net/verarrel05
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/#sec-line-terminators
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: https://www.ecma-international.org/ecma-262/#sec-promise.all
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/#sec-timeclip
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/5.1/#sec-15.1.3.4
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-Alternative
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-Atom
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-CharacterClass
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-CharacterClassEscape
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-ClassAtom
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-ClassAtomNoDash
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-ClassRanges
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-ControlEscape
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-ControlLetter
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-DecimalDigits
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-DecimalEscape
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-Disjunction
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-Hex4Digits
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-HexDigit
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-HexDigits
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-HexEscapeSequence
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-NonemptyClassRanges
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-NonemptyClassRangesNoDash
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-OctalDigit
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-Pattern
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-PatternCharacter
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-Quantifier
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-QuantifierPrefix
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-RegExpUnicodeEscapeSequence
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-SyntaxCharacter
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-annexB-Assertion
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-annexB-AtomEscape
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-annexB-CharacterEscape
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-annexB-ClassControlLetter
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-annexB-ClassEscape
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-annexB-ExtendedAtom
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-annexB-ExtendedPatternCharacter
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-annexB-IdentityEscape
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-annexB-InvalidBracedQuantifier
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-annexB-LegacyOctalEscapeSequence
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#prod-annexB-Term
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#sec-atomescape
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.ecma-international.org/ecma-262/8.0/#sec-term
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: https://www.iana.org/assignments/tls-extensiontype-values
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1803092409.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	String found in binary or memory: https://www.unicode.org/Public/UNIDATA/EastAsianWidth.txt
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1820398515.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823696218.0000018A90B50000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1826378794.0000018A90B51000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823372616.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1822927471.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://wwww.certigna.fr/autorites/
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1820398515.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823696218.0000018A90B50000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1826378794.0000018A90B51000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1823372616.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000003.1822927471.0000018A90B4F000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://wwww.certigna.fr/autorites/0m

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49731
Source: unknown	Network traffic detected: HTTP traffic on port 49731 -> 443

Sample file is different than original file name gathered from version info

Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000000.1804529814.00007FF7B14F2000.00000002.00000001.01000000.00000003.sdmp

Binary or memory string: OriginalFilenamenode.exe* vs SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe

Source: classification engine

Classification label: mal48.troj.winEXE@1/0@1/1

Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe

Static PE information: Section: .text IMAGE_SCN_CNT_CODE, IMAGE_SCN_MEM_EXECUTE, IMAGE_SCN_MEM_READ

Source: C:\Users\user\Desktop\SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe

Key opened: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\Safer\CodeIdentifiers

Jump to behavior

Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: // lib/internal/modules/cjs/loader.js (CommonJS Modules) or
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: // require('internal/bootstrap/loaders') even when this file is not written in
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: const loaderId = 'internal/bootstrap/loaders';
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: // - `lib/internal/bootstrap/loaders.js`: to setup internal binding and
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: const CJSLoader = require('internal/modules/cjs/loader');
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: require('internal/bootstrap/loaders').NativeModule.exposeInternals();
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: const { NativeModule } = require('internal/bootstrap/loaders');
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: } = require('internal/modules/cjs/loader');
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: const { NativeModule } = require('internal/bootstrap/loaders');
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: // Mark this socket as available, AFTER user-added end
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	String found in binary or memory: const { Module } = require('internal/modules/cjs/loader');

Source: C:\Users\user\Desktop\SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe

File read: C:\Users\user\Desktop\SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe

Jump to behavior

Source: C:\Users\user\Desktop\SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	Section loaded: dbghelp.dll	Jump to behavior
Source: C:\Users\user\Desktop\SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	Section loaded: iphlpapi.dll	Jump to behavior
Source: C:\Users\user\Desktop\SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	Section loaded: userenv.dll	Jump to behavior
Source: C:\Users\user\Desktop\SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	Section loaded: winmm.dll	Jump to behavior
Source: C:\Users\user\Desktop\SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	Section loaded: cryptbase.dll	Jump to behavior
Source: C:\Users\user\Desktop\SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	Section loaded: powrprof.dll	Jump to behavior
Source: C:\Users\user\Desktop\SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	Section loaded: umpdc.dll	Jump to behavior
Source: C:\Users\user\Desktop\SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	Section loaded: uxtheme.dll	Jump to behavior
Source: C:\Users\user\Desktop\SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	Section loaded: mswsock.dll	Jump to behavior
Source: C:\Users\user\Desktop\SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	Section loaded: kernel.appcore.dll	Jump to behavior
Source: C:\Users\user\Desktop\SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	Section loaded: dhcpcsvc6.dll	Jump to behavior
Source: C:\Users\user\Desktop\SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	Section loaded: dhcpcsvc.dll	Jump to behavior
Source: C:\Users\user\Desktop\SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	Section loaded: dnsapi.dll	Jump to behavior
Source: C:\Users\user\Desktop\SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	Section loaded: napinsp.dll	Jump to behavior
Source: C:\Users\user\Desktop\SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	Section loaded: pnrpnsp.dll	Jump to behavior
Source: C:\Users\user\Desktop\SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	Section loaded: wshbth.dll	Jump to behavior
Source: C:\Users\user\Desktop\SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	Section loaded: nlaapi.dll	Jump to behavior
Source: C:\Users\user\Desktop\SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	Section loaded: winrnr.dll	Jump to behavior
Source: C:\Users\user\Desktop\SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	Section loaded: rasadhlp.dll	Jump to behavior
Source: C:\Users\user\Desktop\SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	Section loaded: fwpuclnt.dll	Jump to behavior

Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe

Static PE information: More than 8191 > 100 exports found

Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe

Static PE information: Virtual size of .text is bigger than: 0x100000

Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe

Static PE information: Image base 0x140000000 > 0x60000000

Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe

Static file information: File size 29894260 > 1048576

Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	Static PE information: Raw size of .text is bigger than: 0x100000 < 0xf47a00
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	Static PE information: Raw size of .rdata is bigger than: 0x100000 < 0xc07000

Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe

Static PE information: More than 200 imports for KERNEL32.dll

Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	Static PE information: data directory type: IMAGE_DIRECTORY_ENTRY_IMPORT
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	Static PE information: data directory type: IMAGE_DIRECTORY_ENTRY_RESOURCE
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	Static PE information: data directory type: IMAGE_DIRECTORY_ENTRY_BASERELOC
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	Static PE information: data directory type: IMAGE_DIRECTORY_ENTRY_DEBUG
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	Static PE information: data directory type: IMAGE_DIRECTORY_ENTRY_LOAD_CONFIG
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	Static PE information: data directory type: IMAGE_DIRECTORY_ENTRY_IAT

Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe

Static PE information: HIGH_ENTROPY_VA, DYNAMIC_BASE, NX_COMPAT, TERMINAL_SERVER_AWARE

Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe

Static PE information: data directory type: IMAGE_DIRECTORY_ENTRY_DEBUG

Source:

Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	Static PE information: Data directory: IMAGE_DIRECTORY_ENTRY_IMPORT is in: .rdata
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	Static PE information: Data directory: IMAGE_DIRECTORY_ENTRY_RESOURCE is in: .rsrc
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	Static PE information: Data directory: IMAGE_DIRECTORY_ENTRY_BASERELOC is in: .reloc
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	Static PE information: Data directory: IMAGE_DIRECTORY_ENTRY_LOAD_CONFIG is in: .rdata
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe	Static PE information: Data directory: IMAGE_DIRECTORY_ENTRY_IAT is in: .rdata

Source: C:\Users\user\Desktop\SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe

Process information set: NOGPFAULTERRORBOX | NOOPENFILEERRORBOX

Jump to behavior

Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1824427574.0000018A8EFA0000.00000004.00000020.00020000.00000000.sdmp	Binary or memory string: Hyper-V RAW
Source: SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe, 00000000.00000002.1827854112.00007FF7B0619000.00000002.00000001.01000000.00000003.sdmp	Binary or memory string: lgnW2/4/PEZB31jiVg88O8EckzXZOFKs7sjsLjBOlDW0JB9LeGna8gI4zJVSk/BwJVmcIGfE

Queries the volume information (name, serial number etc) of a device

Source: C:\Users\user\Desktop\SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe

Queries volume information: C:\Users\user\Desktop\SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe VolumeInformation

Jump to behavior

ID:	1459454
Product:	CloudBasic
Start time:	13:27:11
Start date:	19.06.2024
Sample:	SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe
Cookbook:	default.jbs
System description:	Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
Architecture:	WINDOWS
MD5:	a6c1b27e646cf5904a69e45ffc8808d5
SHA1:	7cbafd874594bf3ee91cc49d7fa8ec686b4cad80
SHA256:	d9cd6884ad7518018efaa52cde9c0ed46fba959e9ea093c97e68004dbf2cad66
Filetype:	Win64 Executable GUI (202006/5) 92.65%

Windows Analysis Report
SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe

Overview

General Information

Detection

Signatures

Classification

Signatures

AV Detection

Compliance

Networking

System Summary

Hooking and other Techniques for Hiding and Protection

Malware Analysis System Evasion

Language, Device and Operating System Detection

Screenshots

Behavior Graph

Network Map

Contacted Public IPs

Contacted Domains

Windows Analysis Report SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe

Overview

General Information

Detection

Signatures

Classification

Signatures

AV Detection

Compliance

Networking

System Summary

Hooking and other Techniques for Hiding and Protection

Malware Analysis System Evasion

Language, Device and Operating System Detection

Screenshots

Behavior Graph

Network Map

Contacted Public IPs

Contacted Domains

Windows Analysis Report
SecuriteInfo.com.Win64.Malware-gen.18902.30045.exe