Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
SumatraPDF-3.5.2-64.exe
|
PE32+ executable (GUI) x86-64, for MS Windows
|
initial sample
|
||
|
C:\Users\user\Desktop\SumatraPDF-settings.txt
|
Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
|
dropped
|
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Users\user\Desktop\SumatraPDF-3.5.2-64.exe
|
"C:\Users\user\Desktop\SumatraPDF-3.5.2-64.exe"
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
http://www.idpf.org/2007/opf
|
unknown
|
||
|
https://github.com/sumatrapdfreader/sumatrapdf/commit/%s)
|
unknown
|
||
|
http://www.idpf.org/2007/opfapplication/xhtml
|
unknown
|
||
|
https://www.sumatrapdfreader.org/settings/settings3-5-1.html8.33
|
unknown
|
||
|
https://www.sumatrapdfreader.org/docs/Submit-crash-report.htmlShowCrashHandlerMessage:
|
unknown
|
||
|
http://www.ibm.com/data/dtd/v11/ibmxhtml1-transitional.dtd
|
unknown
|
||
|
https://www.google.com/search?q=$
|
unknown
|
||
|
https://www.sumatrapdfreader.org/manualArialwebsiteArial
|
unknown
|
||
|
http://docs.oasis-open.org/ns/office/1.2/meta/pkg#
|
unknown
|
||
|
https://github.com/sumatrapdfreader/sumatrapdf/discussions/2316
|
unknown
|
||
|
https://github.com/sumatrapdfreader/sumatrapdf/discussionsSumatraPDF
|
unknown
|
||
|
https://github.com/sumatrapdfreader/sumatrapdf/commit/646d1feddcc80b3b51072c5b27a1446487904175)
|
unknown
|
||
|
http://docs.oasis-open.org/ns/office/1.2/meta/pkg#Document
|
unknown
|
||
|
https://www.sumatrapdfreader.org/download-free-pdf-viewer-------------
|
unknown
|
||
|
http://docs.oasis-open.org/ns/office/1.2/meta/odf#ContentFile
|
unknown
|
||
|
https://github.com/sumatrapdfreader/sumatrapdf/discussions
|
unknown
|
||
|
https://www.sumatrapdfreader.org/settings/settings3-5-1.html
|
unknown
|
||
|
https://github.com/sumatrapdfreader/sumatrapdf/blob/master/AUTHORShttps://github.com/sumatrapdfreade
|
unknown
|
||
|
http://docs.oasis-open.org/ns/office/1.2/meta/odf#StylesFile
|
unknown
|
||
|
https://www.sumatrapdfreader.org/update-check-rel.txt
|
unknown
|
||
|
https://www.sumatrapdfreader.org/docs/Installer-cmd-line-arguments
|
unknown
|
||
|
http://www.gribuser.ru/xml/fictionbook/2.0
|
unknown
|
||
|
https://github.com/sumatrapdfreader/sumatrapdf/blob/master/AUTHORS
|
unknown
|
||
|
https://www.sumatrapdfreader.org/docs/Contribute-translation
|
unknown
|
||
|
https://www.sumatrapdfreader.org/dl/rel/SumatraPDF-3.5.2
|
unknown
|
||
|
https://www.sumatrapdfreader.org/
|
unknown
|
||
|
https://www.sumatrapdfreader.org/dl/rel/SumatraPDF-3.5.2-64.pdb.lzsa
|
unknown
|
||
|
https://www.sumatrapdfreader.org/dl/prerel/PRE_RELEASE_VER/SumatraPDF-prerel
|
unknown
|
||
|
https://sumatra-website.onrender.com/update-check-rel.txtInstaller64LatestInstaller32InstallerArm64P
|
unknown
|
||
|
https://www.sumatrapdfreader.org/update-check-rel.txtnotifUpdateCheckInProgress
|
unknown
|
||
|
https://github.com/sumatrapdfreader/sumatrapdf/commit/646d1feddcc80b3b51072c5b27a1446487904175
|
unknown
|
||
|
https://www.sumatrapdfreader.org/docs/Corrupted-installation
|
unknown
|
||
|
https://www.sumatrapdfreader.org/docs/Keyboard-shortcuts
|
unknown
|
||
|
https://www.sumatrapdfreader.org/docs/Keyboard-shortcutssumatrapdfrestrict.inihttps://www.sumatrapdf
|
unknown
|
||
|
https://www.sumatrapdfreader.org/docs/Submit-crash-report.html
|
unknown
|
||
|
https://://https://translate.google.com/?op=translate&sl=auto&tl=$
|
unknown
|
||
|
https://github.com/sumatrapdfreader/sumatrapdf/blob/master/TRANSLATORS
|
unknown
|
||
|
https://www.sumatrapdfreader.org/dl/rel/SumatraPDF-3.5.2-64.pdb.lzsa%
|
unknown
|
||
|
https://sumatra-website.onrender.com/update-check-rel.txt
|
unknown
|
||
|
https://www.sumatrapdfreader.org/docs/Version-history.html
|
unknown
|
||
|
https://www.sumatrapdfreader.org/URLUpdateInfohttps://www.sumatrapdfreader.org/docs/Version-history.
|
unknown
|
||
|
http://www.daisy.org/z3986/2005/ncx/
|
unknown
|
||
|
https://www.deepl.com/translator#-/$
|
unknown
|
||
|
https://www.sumatrapdfreader.org/manual
|
unknown
|
||
|
https://www.sumatrapdfreader.org/download-free-pdf-viewer
|
unknown
|
There are 35 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
bg.microsoft.map.fastly.net
|
199.232.214.172
|
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
HKEY_CURRENT_USER\Software\Microsoft\GDIPlus
|
FontCachePath
|
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
487000
|
heap
|
page read and write
|
||
|
5DDF000
|
heap
|
page read and write
|
||
|
4B6B000
|
heap
|
page read and write
|
||
|
3981000
|
heap
|
page read and write
|
||
|
27CF000
|
heap
|
page read and write
|
||
|
140A19000
|
unkown
|
page write copy
|
||
|
2338000
|
heap
|
page read and write
|
||
|
5220000
|
heap
|
page read and write
|
||
|
2301000
|
heap
|
page read and write
|
||
|
54B1000
|
heap
|
page read and write
|
||
|
27A6000
|
heap
|
page read and write
|
||
|
236C000
|
heap
|
page read and write
|
||
|
52A9000
|
heap
|
page read and write
|
||
|
4D23000
|
heap
|
page read and write
|
||
|
238B000
|
heap
|
page read and write
|
||
|
140A06000
|
unkown
|
page write copy
|
||
|
52A0000
|
heap
|
page read and write
|
||
|
4DBF000
|
heap
|
page read and write
|
||
|
59E5000
|
heap
|
page read and write
|
||
|
4BE3000
|
heap
|
page read and write
|
||
|
4B20000
|
heap
|
page read and write
|
||
|
140A8F000
|
unkown
|
page readonly
|
||
|
4EF6000
|
heap
|
page read and write
|
||
|
2386000
|
heap
|
page read and write
|
||
|
4CE0000
|
heap
|
page read and write
|
||
|
13FBE0000
|
unkown
|
page readonly
|
||
|
27A6000
|
heap
|
page read and write
|
||
|
38B0000
|
heap
|
page read and write
|
||
|
5265000
|
heap
|
page read and write
|
||
|
5577000
|
heap
|
page read and write
|
||
|
4DE8000
|
heap
|
page read and write
|
||
|
24A0000
|
heap
|
page read and write
|
||
|
548A000
|
heap
|
page read and write
|
||
|
513F000
|
heap
|
page read and write
|
||
|
54FA000
|
heap
|
page read and write
|
||
|
4D80000
|
heap
|
page read and write
|
||
|
2386000
|
heap
|
page read and write
|
||
|
597C000
|
heap
|
page read and write
|
||
|
5227000
|
heap
|
page read and write
|
||
|
4E7A000
|
heap
|
page read and write
|
||
|
27CF000
|
heap
|
page read and write
|
||
|
557C000
|
heap
|
page read and write
|
||
|
553D000
|
heap
|
page read and write
|
||
|
3983000
|
heap
|
page read and write
|
||
|
27AE000
|
heap
|
page read and write
|
||
|
54AB000
|
heap
|
page read and write
|
||
|
54EE000
|
heap
|
page read and write
|
||
|
5127000
|
heap
|
page read and write
|
||
|
4F59000
|
heap
|
page read and write
|
||
|
38B3000
|
heap
|
page read and write
|
||
|
6079000
|
heap
|
page read and write
|
||
|
2780000
|
heap
|
page read and write
|
||
|
4D73000
|
heap
|
page read and write
|
||
|
28B2000
|
heap
|
page read and write
|
||
|
2C6000
|
heap
|
page read and write
|
||
|
5260000
|
heap
|
page read and write
|
||
|
2368000
|
heap
|
page read and write
|
||
|
4E68000
|
heap
|
page read and write
|
||
|
236C000
|
heap
|
page read and write
|
||
|
28B2000
|
heap
|
page read and write
|
||
|
23D0000
|
heap
|
page read and write
|
||
|
140A00000
|
unkown
|
page read and write
|
||
|
10000
|
heap
|
page read and write
|
||
|
2386000
|
heap
|
page read and write
|
||
|
27CD000
|
heap
|
page read and write
|
||
|
2368000
|
heap
|
page read and write
|
||
|
4F0A000
|
heap
|
page read and write
|
||
|
4F52000
|
heap
|
page read and write
|
||
|
5EC0000
|
heap
|
page read and write
|
||
|
6228000
|
heap
|
page read and write
|
||
|
28B2000
|
heap
|
page read and write
|
||
|
3F8F000
|
stack
|
page read and write
|
||
|
2376000
|
heap
|
page read and write
|
||
|
59B8000
|
heap
|
page read and write
|
||
|
104000
|
heap
|
page read and write
|
||
|
2C2F000
|
stack
|
page read and write
|
||
|
5170000
|
heap
|
page read and write
|
||
|
14030E000
|
unkown
|
page readonly
|
||
|
2386000
|
heap
|
page read and write
|
||
|
5472000
|
heap
|
page read and write
|
||
|
27AD000
|
heap
|
page read and write
|
||
|
27AE000
|
heap
|
page read and write
|
||
|
22FF000
|
stack
|
page read and write
|
||
|
27A6000
|
heap
|
page read and write
|
||
|
5A94000
|
heap
|
page read and write
|
||
|
2110000
|
heap
|
page read and write
|
||
|
54FC000
|
heap
|
page read and write
|
||
|
3D7000
|
heap
|
page read and write
|
||
|
5123000
|
heap
|
page read and write
|
||
|
140A29000
|
unkown
|
page read and write
|
||
|
27AC000
|
heap
|
page read and write
|
||
|
290000
|
heap
|
page read and write
|
||
|
5142000
|
heap
|
page read and write
|
||
|
572C000
|
heap
|
page read and write
|
||
|
50F3000
|
heap
|
page read and write
|
||
|
550C000
|
heap
|
page read and write
|
||
|
2376000
|
heap
|
page read and write
|
||
|
59A5000
|
heap
|
page read and write
|
||
|
51EA000
|
heap
|
page read and write
|
||
|
2F00000
|
heap
|
page read and write
|
||
|
140A35000
|
unkown
|
page read and write
|
||
|
4D75000
|
heap
|
page read and write
|
||
|
100000
|
heap
|
page read and write
|
||
|
4E87000
|
heap
|
page read and write
|
||
|
27AE000
|
heap
|
page read and write
|
||
|
3996000
|
heap
|
page read and write
|
||
|
558C000
|
heap
|
page read and write
|
||
|
2781000
|
heap
|
page read and write
|
||
|
4B77000
|
heap
|
page read and write
|
||
|
4F83000
|
heap
|
page read and write
|
||
|
5278000
|
heap
|
page read and write
|
||
|
14030E000
|
unkown
|
page readonly
|
||
|
4BE1000
|
heap
|
page read and write
|
||
|
5304000
|
heap
|
page read and write
|
||
|
4F60000
|
heap
|
page read and write
|
||
|
4E80000
|
heap
|
page read and write
|
||
|
54B8000
|
heap
|
page read and write
|
||
|
27CF000
|
heap
|
page read and write
|
||
|
4DEC000
|
heap
|
page read and write
|
||
|
2F05000
|
heap
|
page read and write
|
||
|
40E000
|
heap
|
page read and write
|
||
|
38EA000
|
heap
|
page read and write
|
||
|
5236000
|
heap
|
page read and write
|
||
|
4B15000
|
heap
|
page read and write
|
||
|
61CC000
|
heap
|
page read and write
|
||
|
1403F7000
|
unkown
|
page write copy
|
||
|
27CD000
|
heap
|
page read and write
|
||
|
4BF5000
|
heap
|
page read and write
|
||
|
517F000
|
heap
|
page read and write
|
||
|
140A1F000
|
unkown
|
page read and write
|
||
|
546D000
|
heap
|
page read and write
|
||
|
5470000
|
heap
|
page read and write
|
||
|
5A03000
|
heap
|
page read and write
|
||
|
1E30000
|
heap
|
page read and write
|
||
|
51A0000
|
heap
|
page read and write
|
||
|
4B40000
|
heap
|
page read and write
|
||
|
140A8F000
|
unkown
|
page readonly
|
||
|
4F11000
|
heap
|
page read and write
|
||
|
27A6000
|
heap
|
page read and write
|
||
|
5538000
|
heap
|
page read and write
|
||
|
4F0C000
|
heap
|
page read and write
|
||
|
239A000
|
heap
|
page read and write
|
||
|
28A000
|
stack
|
page read and write
|
||
|
54CF000
|
heap
|
page read and write
|
||
|
4F18000
|
heap
|
page read and write
|
||
|
54C1000
|
heap
|
page read and write
|
||
|
27A8000
|
heap
|
page read and write
|
||
|
468000
|
heap
|
page read and write
|
||
|
4CD4000
|
heap
|
page read and write
|
||
|
27CF000
|
heap
|
page read and write
|
||
|
5504000
|
heap
|
page read and write
|
||
|
4CE7000
|
heap
|
page read and write
|
||
|
2338000
|
heap
|
page read and write
|
||
|
58E0000
|
heap
|
page read and write
|
||
|
5749000
|
heap
|
page read and write
|
||
|
5533000
|
heap
|
page read and write
|
||
|
623D000
|
heap
|
page read and write
|
||
|
45C000
|
heap
|
page read and write
|
||
|
449000
|
heap
|
page read and write
|
||
|
458000
|
heap
|
page read and write
|
||
|
14017D000
|
unkown
|
page readonly
|
||
|
27A7000
|
heap
|
page read and write
|
||
|
27AC000
|
heap
|
page read and write
|
||
|
237A000
|
heap
|
page read and write
|
||
|
1E65000
|
heap
|
page read and write
|
||
|
553F000
|
heap
|
page read and write
|
||
|
52BD000
|
heap
|
page read and write
|
||
|
4F9A000
|
heap
|
page read and write
|
||
|
5574000
|
heap
|
page read and write
|
||
|
4F3B000
|
heap
|
page read and write
|
||
|
547D000
|
heap
|
page read and write
|
||
|
27CD000
|
heap
|
page read and write
|
||
|
477000
|
heap
|
page read and write
|
||
|
5467000
|
heap
|
page read and write
|
||
|
2791000
|
heap
|
page read and write
|
||
|
14017D000
|
unkown
|
page readonly
|
||
|
50ED000
|
heap
|
page read and write
|
||
|
27CD000
|
heap
|
page read and write
|
||
|
39A6000
|
heap
|
page read and write
|
||
|
239F000
|
heap
|
page read and write
|
||
|
27CD000
|
heap
|
page read and write
|
||
|
513B000
|
heap
|
page read and write
|
||
|
13FBE1000
|
unkown
|
page execute read
|
||
|
140301000
|
unkown
|
page readonly
|
||
|
4E6C000
|
heap
|
page read and write
|
||
|
446000
|
heap
|
page read and write
|
||
|
54AE000
|
heap
|
page read and write
|
||
|
28B2000
|
heap
|
page read and write
|
||
|
54F7000
|
heap
|
page read and write
|
||
|
54F1000
|
heap
|
page read and write
|
||
|
51F9000
|
heap
|
page read and write
|
||
|
54F4000
|
heap
|
page read and write
|
||
|
4F86000
|
heap
|
page read and write
|
||
|
2F09000
|
heap
|
page read and write
|
||
|
58DA000
|
heap
|
page read and write
|
||
|
61F8000
|
heap
|
page read and write
|
||
|
2790000
|
heap
|
page read and write
|
||
|
4E63000
|
heap
|
page read and write
|
||
|
140303000
|
unkown
|
page readonly
|
||
|
2386000
|
heap
|
page read and write
|
||
|
4B6D000
|
heap
|
page read and write
|
||
|
140A20000
|
unkown
|
page write copy
|
||
|
53E0000
|
heap
|
page read and write
|
||
|
5359000
|
heap
|
page read and write
|
||
|
140A02000
|
unkown
|
page write copy
|
||
|
4EF3000
|
heap
|
page read and write
|
||
|
4B8F000
|
heap
|
page read and write
|
||
|
53CC000
|
heap
|
page read and write
|
||
|
27CD000
|
heap
|
page read and write
|
||
|
1E60000
|
heap
|
page read and write
|
||
|
5511000
|
heap
|
page read and write
|
||
|
54B6000
|
heap
|
page read and write
|
||
|
2370000
|
heap
|
page read and write
|
||
|
5553000
|
heap
|
page read and write
|
||
|
3D0000
|
heap
|
page read and write
|
||
|
4D37000
|
heap
|
page read and write
|
||
|
5571000
|
heap
|
page read and write
|
||
|
51E0000
|
heap
|
page read and write
|
||
|
2365000
|
heap
|
page read and write
|
||
|
51AD000
|
heap
|
page read and write
|
||
|
140301000
|
unkown
|
page readonly
|
||
|
3D5E000
|
stack
|
page read and write
|
||
|
5548000
|
heap
|
page read and write
|
||
|
6207000
|
heap
|
page read and write
|
||
|
27AE000
|
heap
|
page read and write
|
||
|
4C77000
|
heap
|
page read and write
|
||
|
2D7F000
|
stack
|
page read and write
|
||
|
27BE000
|
heap
|
page read and write
|
||
|
566A000
|
heap
|
page read and write
|
||
|
4EFC000
|
heap
|
page read and write
|
||
|
557F000
|
heap
|
page read and write
|
||
|
1E9B000
|
heap
|
page read and write
|
||
|
140303000
|
unkown
|
page readonly
|
||
|
4F13000
|
heap
|
page read and write
|
||
|
51BC000
|
heap
|
page read and write
|
||
|
553B000
|
heap
|
page read and write
|
||
|
237A000
|
heap
|
page read and write
|
||
|
5135000
|
heap
|
page read and write
|
||
|
1403F7000
|
unkown
|
page write copy
|
||
|
13FBE0000
|
unkown
|
page readonly
|
||
|
110000
|
heap
|
page read and write
|
||
|
202F000
|
stack
|
page read and write
|
||
|
4C8B000
|
heap
|
page read and write
|
||
|
4FA0000
|
heap
|
page read and write
|
||
|
2370000
|
heap
|
page read and write
|
||
|
4AE0000
|
heap
|
page read and write
|
||
|
52F0000
|
heap
|
page read and write
|
||
|
554C000
|
heap
|
page read and write
|
||
|
50FA000
|
heap
|
page read and write
|
||
|
140A05000
|
unkown
|
page read and write
|
||
|
1D40000
|
heap
|
page read and write
|
||
|
27AC000
|
heap
|
page read and write
|
||
|
56E4000
|
heap
|
page read and write
|
||
|
13FBE1000
|
unkown
|
page execute read
|
||
|
28B2000
|
heap
|
page read and write
|
||
|
23DF000
|
heap
|
page read and write
|
||
|
61F0000
|
heap
|
page read and write
|
||
|
3951000
|
heap
|
page read and write
|
||
|
4D88000
|
heap
|
page read and write
|
||
|
5474000
|
heap
|
page read and write
|
||
|
23EF000
|
heap
|
page read and write
|
||
|
5587000
|
heap
|
page read and write
|
||
|
54CC000
|
heap
|
page read and write
|
||
|
4D25000
|
heap
|
page read and write
|
||
|
546A000
|
heap
|
page read and write
|
||
|
4C3D000
|
heap
|
page read and write
|
||
|
59AA000
|
heap
|
page read and write
|
||
|
4DD1000
|
heap
|
page read and write
|
||
|
543A000
|
heap
|
page read and write
|
||
|
4CC8000
|
heap
|
page read and write
|
||
|
4F3E000
|
heap
|
page read and write
|
||
|
4EFE000
|
heap
|
page read and write
|
||
|
50E0000
|
heap
|
page read and write
|
||
|
27CD000
|
heap
|
page read and write
|
||
|
28B2000
|
heap
|
page read and write
|
||
|
5D72000
|
heap
|
page read and write
|
||
|
5592000
|
heap
|
page read and write
|
||
|
23CE000
|
heap
|
page read and write
|
||
|
140A16000
|
unkown
|
page read and write
|
||
|
140A23000
|
unkown
|
page read and write
|
||
|
2376000
|
heap
|
page read and write
|
||
|
5535000
|
heap
|
page read and write
|
||
|
23BE000
|
heap
|
page read and write
|
||
|
27CD000
|
heap
|
page read and write
|
There are 274 hidden memdumps, click here to show them.