Source: unknown |
TCP traffic detected without corresponding DNS query: 82.115.223.189 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 82.115.223.189 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 82.115.223.189 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 82.115.223.189 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 82.115.223.189 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 82.115.223.189 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 82.115.223.189 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 82.115.223.189 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 82.115.223.189 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 82.115.223.189 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 82.115.223.189 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 82.115.223.189 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 82.115.223.189 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 82.115.223.189 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 82.115.223.189 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 82.115.223.189 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 82.115.223.189 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 82.115.223.189 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 82.115.223.189 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 82.115.223.189 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 82.115.223.189 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 82.115.223.189 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 82.115.223.189 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 82.115.223.189 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 82.115.223.189 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 82.115.223.189 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 82.115.223.189 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 82.115.223.189 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 82.115.223.189 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 82.115.223.189 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 82.115.223.189 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 82.115.223.189 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 82.115.223.189 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 82.115.223.189 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 82.115.223.189 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 82.115.223.189 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 82.115.223.189 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 82.115.223.189 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 82.115.223.189 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 82.115.223.189 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 82.115.223.189 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 82.115.223.189 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 82.115.223.189 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 82.115.223.189 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 82.115.223.189 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 82.115.223.189 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 82.115.223.189 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 82.115.223.189 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 82.115.223.189 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 82.115.223.189 |
Source: BWuMwnE7tw.exe, 00000000.00000002.2111212039.0000000002689000.00000004.00000020.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2111136503.000000000259F000.00000004.00000020.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2110976596.0000000002380000.00000004.00001000.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2110378123.00000000021CB000.00000004.00000020.00020000.00000000.sdmp |
String found in binary or memory: http://82.115.223.189/chromeum.bat |
Source: BWuMwnE7tw.exe, 00000000.00000002.2111212039.0000000002689000.00000004.00000020.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2111136503.000000000259F000.00000004.00000020.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2110976596.0000000002380000.00000004.00001000.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2110378123.00000000021CB000.00000004.00000020.00020000.00000000.sdmp |
String found in binary or memory: http://82.115.223.189/chromeum.bat#tempinstpath#chromeum.bat0 |
Source: BWuMwnE7tw.exe, 00000000.00000002.2111599935.0000000002B64000.00000004.00000020.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2111471538.0000000002874000.00000004.00000020.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2111212039.0000000002689000.00000004.00000020.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2110976596.0000000002380000.00000004.00001000.00020000.00000000.sdmp, ssleay32.dll.0.dr, libeay32.dll.0.dr |
String found in binary or memory: http://crl.certum.pl/cscasha2.crl0q |
Source: BWuMwnE7tw.exe, 00000000.00000002.2111599935.0000000002B64000.00000004.00000020.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2111471538.0000000002874000.00000004.00000020.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2111212039.0000000002689000.00000004.00000020.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2110976596.0000000002380000.00000004.00001000.00020000.00000000.sdmp, ssleay32.dll.0.dr, libeay32.dll.0.dr |
String found in binary or memory: http://crl.certum.pl/ctnca.crl0k |
Source: BWuMwnE7tw.exe, 00000000.00000002.2111599935.0000000002B64000.00000004.00000020.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2111471538.0000000002874000.00000004.00000020.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2111212039.0000000002689000.00000004.00000020.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2110976596.0000000002380000.00000004.00001000.00020000.00000000.sdmp, ssleay32.dll.0.dr, libeay32.dll.0.dr |
String found in binary or memory: http://crl.thawte.com/ThawteTimestampingCA.crl0 |
Source: BWuMwnE7tw.exe, 00000000.00000002.2111599935.0000000002B64000.00000004.00000020.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2111471538.0000000002874000.00000004.00000020.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2111212039.0000000002689000.00000004.00000020.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2110976596.0000000002380000.00000004.00001000.00020000.00000000.sdmp, ssleay32.dll.0.dr, libeay32.dll.0.dr |
String found in binary or memory: http://cscasha2.ocsp-certum.com04 |
Source: BWuMwnE7tw.exe, 00000000.00000002.2111599935.0000000002B64000.00000004.00000020.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2111471538.0000000002874000.00000004.00000020.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2111212039.0000000002689000.00000004.00000020.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2110976596.0000000002380000.00000004.00001000.00020000.00000000.sdmp, ssleay32.dll.0.dr, libeay32.dll.0.dr |
String found in binary or memory: http://ocsp.thawte.com0 |
Source: BWuMwnE7tw.exe, 00000000.00000002.2111599935.0000000002B64000.00000004.00000020.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2111471538.0000000002874000.00000004.00000020.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2111212039.0000000002689000.00000004.00000020.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2110976596.0000000002380000.00000004.00001000.00020000.00000000.sdmp, ssleay32.dll.0.dr, libeay32.dll.0.dr |
String found in binary or memory: http://repository.certum.pl/cscasha2.cer0 |
Source: BWuMwnE7tw.exe, 00000000.00000002.2111599935.0000000002B64000.00000004.00000020.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2111471538.0000000002874000.00000004.00000020.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2111212039.0000000002689000.00000004.00000020.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2110976596.0000000002380000.00000004.00001000.00020000.00000000.sdmp, ssleay32.dll.0.dr, libeay32.dll.0.dr |
String found in binary or memory: http://repository.certum.pl/ctnca.cer09 |
Source: BWuMwnE7tw.exe, 00000000.00000002.2111599935.0000000002B64000.00000004.00000020.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2111471538.0000000002874000.00000004.00000020.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2111212039.0000000002689000.00000004.00000020.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2110976596.0000000002380000.00000004.00001000.00020000.00000000.sdmp, ssleay32.dll.0.dr, libeay32.dll.0.dr |
String found in binary or memory: http://s.symcb.com/universal-root.crl0 |
Source: BWuMwnE7tw.exe, 00000000.00000002.2111599935.0000000002B64000.00000004.00000020.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2111471538.0000000002874000.00000004.00000020.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2111212039.0000000002689000.00000004.00000020.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2110976596.0000000002380000.00000004.00001000.00020000.00000000.sdmp, ssleay32.dll.0.dr, libeay32.dll.0.dr |
String found in binary or memory: http://s.symcd.com06 |
Source: BWuMwnE7tw.exe, 00000000.00000002.2111599935.0000000002B64000.00000004.00000020.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2111471538.0000000002874000.00000004.00000020.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2111212039.0000000002689000.00000004.00000020.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2110976596.0000000002380000.00000004.00001000.00020000.00000000.sdmp, ssleay32.dll.0.dr, libeay32.dll.0.dr |
String found in binary or memory: http://subca.ocsp-certum.com01 |
Source: BWuMwnE7tw.exe, 00000000.00000002.2111599935.0000000002B64000.00000004.00000020.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2111471538.0000000002874000.00000004.00000020.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2111212039.0000000002689000.00000004.00000020.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2110976596.0000000002380000.00000004.00001000.00020000.00000000.sdmp, ssleay32.dll.0.dr, libeay32.dll.0.dr |
String found in binary or memory: http://ts-aia.ws.symantec.com/sha256-tss-ca.cer0( |
Source: BWuMwnE7tw.exe, 00000000.00000002.2111599935.0000000002B64000.00000004.00000020.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2111471538.0000000002874000.00000004.00000020.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2111212039.0000000002689000.00000004.00000020.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2110976596.0000000002380000.00000004.00001000.00020000.00000000.sdmp, ssleay32.dll.0.dr, libeay32.dll.0.dr |
String found in binary or memory: http://ts-aia.ws.symantec.com/tss-ca-g2.cer0 |
Source: BWuMwnE7tw.exe, 00000000.00000002.2111599935.0000000002B64000.00000004.00000020.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2111471538.0000000002874000.00000004.00000020.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2111212039.0000000002689000.00000004.00000020.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2110976596.0000000002380000.00000004.00001000.00020000.00000000.sdmp, ssleay32.dll.0.dr, libeay32.dll.0.dr |
String found in binary or memory: http://ts-crl.ws.symantec.com/sha256-tss-ca.crl0 |
Source: BWuMwnE7tw.exe, 00000000.00000002.2111599935.0000000002B64000.00000004.00000020.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2111471538.0000000002874000.00000004.00000020.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2111212039.0000000002689000.00000004.00000020.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2110976596.0000000002380000.00000004.00001000.00020000.00000000.sdmp, ssleay32.dll.0.dr, libeay32.dll.0.dr |
String found in binary or memory: http://ts-crl.ws.symantec.com/tss-ca-g2.crl0( |
Source: BWuMwnE7tw.exe, 00000000.00000002.2111599935.0000000002B64000.00000004.00000020.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2111471538.0000000002874000.00000004.00000020.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2111212039.0000000002689000.00000004.00000020.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2110976596.0000000002380000.00000004.00001000.00020000.00000000.sdmp, ssleay32.dll.0.dr, libeay32.dll.0.dr |
String found in binary or memory: http://ts-ocsp.ws.symantec.com07 |
Source: BWuMwnE7tw.exe, 00000000.00000002.2111599935.0000000002B64000.00000004.00000020.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2111471538.0000000002874000.00000004.00000020.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2111212039.0000000002689000.00000004.00000020.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2110976596.0000000002380000.00000004.00001000.00020000.00000000.sdmp, ssleay32.dll.0.dr, libeay32.dll.0.dr |
String found in binary or memory: http://ts-ocsp.ws.symantec.com0; |
Source: BWuMwnE7tw.exe, 00000000.00000002.2111599935.0000000002B64000.00000004.00000020.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2111471538.0000000002874000.00000004.00000020.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2111212039.0000000002689000.00000004.00000020.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2110976596.0000000002380000.00000004.00001000.00020000.00000000.sdmp, ssleay32.dll.0.dr, libeay32.dll.0.dr |
String found in binary or memory: http://www.certum.pl/CPS0 |
Source: BWuMwnE7tw.exe, 00000000.00000002.2112068924.000000001000E000.00000002.00000001.01000000.00000004.sdmp, genteert.dll.0.dr |
String found in binary or memory: http://www.gentee.comB |
Source: BWuMwnE7tw.exe, 00000000.00000002.2111599935.0000000002B64000.00000004.00000020.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2111471538.0000000002874000.00000004.00000020.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2111212039.0000000002689000.00000004.00000020.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2110976596.0000000002380000.00000004.00001000.00020000.00000000.sdmp, ssleay32.dll.0.dr, libeay32.dll.0.dr |
String found in binary or memory: http://www.openssl.org/f |
Source: libeay32.dll.0.dr |
String found in binary or memory: http://www.openssl.org/support/faq.html |
Source: BWuMwnE7tw.exe, 00000000.00000002.2111599935.0000000002B64000.00000004.00000020.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2111471538.0000000002874000.00000004.00000020.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2111212039.0000000002689000.00000004.00000020.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2110976596.0000000002380000.00000004.00001000.00020000.00000000.sdmp, ssleay32.dll.0.dr, libeay32.dll.0.dr |
String found in binary or memory: https://d.symcb.com/cps0% |
Source: BWuMwnE7tw.exe, 00000000.00000002.2111599935.0000000002B64000.00000004.00000020.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2111471538.0000000002874000.00000004.00000020.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2111212039.0000000002689000.00000004.00000020.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2110976596.0000000002380000.00000004.00001000.00020000.00000000.sdmp, ssleay32.dll.0.dr, libeay32.dll.0.dr |
String found in binary or memory: https://d.symcb.com/rpa0 |
Source: BWuMwnE7tw.exe, 00000000.00000002.2111599935.0000000002B64000.00000004.00000020.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2111471538.0000000002874000.00000004.00000020.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2111212039.0000000002689000.00000004.00000020.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2110976596.0000000002380000.00000004.00001000.00020000.00000000.sdmp, ssleay32.dll.0.dr, libeay32.dll.0.dr |
String found in binary or memory: https://d.symcb.com/rpa0. |
Source: BWuMwnE7tw.exe, 00000000.00000002.2111599935.0000000002B64000.00000004.00000020.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2111471538.0000000002874000.00000004.00000020.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2111212039.0000000002689000.00000004.00000020.00020000.00000000.sdmp, BWuMwnE7tw.exe, 00000000.00000002.2110976596.0000000002380000.00000004.00001000.00020000.00000000.sdmp, ssleay32.dll.0.dr, libeay32.dll.0.dr |
String found in binary or memory: https://www.certum.pl/CPS0 |
Source: BWuMwnE7tw.exe, 00000000.00000002.2111599935.0000000002B64000.00000004.00000020.00020000.00000000.sdmp |
Binary or memory string: OriginalFilenamessleay32.dllH vs BWuMwnE7tw.exe |
Source: BWuMwnE7tw.exe, 00000000.00000002.2112068924.000000001000E000.00000002.00000001.01000000.00000004.sdmp |
Binary or memory string: OriginalFilenamegentee.dll vs BWuMwnE7tw.exe |
Source: BWuMwnE7tw.exe, 00000000.00000002.2111471538.0000000002874000.00000004.00000020.00020000.00000000.sdmp |
Binary or memory string: OriginalFilenamelibeay32.dllH vs BWuMwnE7tw.exe |
Source: BWuMwnE7tw.exe, 00000000.00000002.2111212039.0000000002689000.00000004.00000020.00020000.00000000.sdmp |
Binary or memory string: OriginalFilenamelibeay32.dllH vs BWuMwnE7tw.exe |
Source: BWuMwnE7tw.exe, 00000000.00000002.2111212039.0000000002689000.00000004.00000020.00020000.00000000.sdmp |
Binary or memory string: OriginalFilenamessleay32.dllH vs BWuMwnE7tw.exe |
Source: BWuMwnE7tw.exe, 00000000.00000002.2110976596.0000000002380000.00000004.00001000.00020000.00000000.sdmp |
Binary or memory string: OriginalFilenamelibeay32.dllH vs BWuMwnE7tw.exe |
Source: BWuMwnE7tw.exe, 00000000.00000002.2110976596.0000000002380000.00000004.00001000.00020000.00000000.sdmp |
Binary or memory string: OriginalFilenamessleay32.dllH vs BWuMwnE7tw.exe |
Source: C:\Users\user\Desktop\BWuMwnE7tw.exe |
Section loaded: mpr.dll |
Jump to behavior |
Source: C:\Users\user\Desktop\BWuMwnE7tw.exe |
Section loaded: winsta.dll |
Jump to behavior |
Source: C:\Users\user\Desktop\BWuMwnE7tw.exe |
Section loaded: sspicli.dll |
Jump to behavior |
Source: C:\Users\user\Desktop\BWuMwnE7tw.exe |
Section loaded: windows.storage.dll |
Jump to behavior |
Source: C:\Users\user\Desktop\BWuMwnE7tw.exe |
Section loaded: wldp.dll |
Jump to behavior |
Source: C:\Users\user\Desktop\BWuMwnE7tw.exe |
Section loaded: kernel.appcore.dll |
Jump to behavior |
Source: C:\Users\user\Desktop\BWuMwnE7tw.exe |
Section loaded: uxtheme.dll |
Jump to behavior |
Source: C:\Users\user\Desktop\BWuMwnE7tw.exe |
Section loaded: propsys.dll |
Jump to behavior |
Source: C:\Users\user\Desktop\BWuMwnE7tw.exe |
Section loaded: profapi.dll |
Jump to behavior |
Source: C:\Users\user\Desktop\BWuMwnE7tw.exe |
Section loaded: riched20.dll |
Jump to behavior |
Source: C:\Users\user\Desktop\BWuMwnE7tw.exe |
Section loaded: usp10.dll |
Jump to behavior |
Source: C:\Users\user\Desktop\BWuMwnE7tw.exe |
Section loaded: msls31.dll |
Jump to behavior |
Source: C:\Users\user\Desktop\BWuMwnE7tw.exe |
Section loaded: explorerframe.dll |
Jump to behavior |
Source: C:\Users\user\Desktop\BWuMwnE7tw.exe |
Section loaded: mswsock.dll |
Jump to behavior |
Source: C:\Windows\SysWOW64\cmd.exe |
Section loaded: cmdext.dll |
Jump to behavior |
Source: C:\Windows\SysWOW64\PING.EXE |
Section loaded: iphlpapi.dll |
Jump to behavior |
Source: C:\Windows\SysWOW64\PING.EXE |
Section loaded: winnsi.dll |
Jump to behavior |
Source: C:\Windows\SysWOW64\PING.EXE |
Section loaded: mswsock.dll |
Jump to behavior |