Score: | 48 |
Range: | 0 - 100 |
Whitelisted: | false |
Confidence: | 100% |
Source: |
HTTPS traffic detected: |
||
Source: |
HTTPS traffic detected: |
Source: |
Binary string: |
||
Source: |
Binary string: |
Source: |
Code function: |
8_2_00007FFBBDCA3784 |
Source: |
Network traffic detected: |
||
Source: |
Network traffic detected: |
||
Source: |
Network traffic detected: |
||
Source: |
Network traffic detected: |
Source: |
UDP traffic detected without corresponding DNS query: |
||
Source: |
UDP traffic detected without corresponding DNS query: |
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
Source: |
DNS traffic detected: |
Source: |
HTTP traffic detected: |
||
Source: |
HTTP traffic detected: |
Source: |
HTTPS traffic detected: |
||
Source: |
HTTPS traffic detected: |
Source: |
Process created: |
Source: |
Code function: |
8_2_00007FFBBDC94E30 | |
Source: |
Code function: |
8_2_00007FFBBDC825E0 | |
Source: |
Code function: |
8_2_00007FFBBDC8FE10 | |
Source: |
Code function: |
8_2_00007FFBBDC945B0 | |
Source: |
Code function: |
8_2_00007FFBBDC9FDA4 | |
Source: |
Code function: |
8_2_00007FFBBDC905A0 | |
Source: |
Code function: |
8_2_00007FFBBDCA3578 | |
Source: |
Code function: |
8_2_00007FFBBDC91580 | |
Source: |
Code function: |
8_2_00007FFBBDCAB4D3 | |
Source: |
Code function: |
8_2_00007FFBBDC83CC0 | |
Source: |
Code function: |
8_2_00007FFBBDC894C0 | |
Source: |
Code function: |
8_2_00007FFBBDC82890 | |
Source: |
Code function: |
8_2_00007FFBBDCAA098 | |
Source: |
Code function: |
8_2_00007FFBBDCAA890 | |
Source: |
Code function: |
8_2_00007FFBBDC90880 | |
Source: |
Code function: |
8_2_00007FFBBDC88800 | |
Source: |
Code function: |
8_2_00007FFBBDC81FA0 | |
Source: |
Code function: |
8_2_00007FFBBDCA5760 | |
Source: |
Code function: |
8_2_00007FFBBDC8DF80 | |
Source: |
Code function: |
8_2_00007FFBBDC89720 | |
Source: |
Code function: |
8_2_00007FFBBDCAAEFC | |
Source: |
Code function: |
8_2_00007FFBBDC94280 | |
Source: |
Code function: |
8_2_00007FFBBDC861F0 | |
Source: |
Code function: |
8_2_00007FFBBDC8A9D0 | |
Source: |
Code function: |
8_2_00007FFBBDCAB170 | |
Source: |
Code function: |
8_2_00007FFBBDC9D910 | |
Source: |
Code function: |
8_2_00007FFBBDC860C0 | |
Source: |
Code function: |
8_2_00007FFBBDC920C0 | |
Source: |
Code function: |
8_2_00007FFBBDCA5C30 | |
Source: |
Code function: |
8_2_00007FFBBDC89C30 | |
Source: |
Code function: |
8_2_00007FFBBDC823D0 | |
Source: |
Code function: |
8_2_00007FFBBDC87B90 | |
Source: |
Code function: |
8_2_00007FFBBDC9DB8C | |
Source: |
Code function: |
8_2_00007FFBBDC88330 | |
Source: |
Code function: |
8_2_00007FFBBDC8F350 | |
Source: |
Code function: |
8_2_00007FFBBDC8AB00 | |
Source: |
Code function: |
8_2_00007FFBBDC8FAA0 | |
Source: |
Code function: |
8_2_00007FFBBDC90AD0 | |
Source: |
Code function: |
8_2_00007FFBBDC8E2D0 |
Source: |
Static PE information: |
||
Source: |
Static PE information: |
||
Source: |
Static PE information: |
||
Source: |
Static PE information: |
||
Source: |
Static PE information: |
||
Source: |
Static PE information: |
||
Source: |
Static PE information: |
||
Source: |
Static PE information: |
||
Source: |
Static PE information: |
||
Source: |
Static PE information: |
Source: |
Section loaded: |
Jump to behavior | ||
Source: |
Section loaded: |
Jump to behavior | ||
Source: |
Section loaded: |
Jump to behavior |
Source: |
Key opened: |
Jump to behavior |
Source: |
Process created: |
|||
Source: |
Process created: |
|||
Source: |
Process created: |
|||
Source: |
Process created: |
|||
Source: |
Process created: |
|||
Source: |
Process created: |
|||
Source: |
Process created: |
|||
Source: |
Process created: |
|||
Source: |
Process created: |
|||
Source: |
Process created: |
|||
Source: |
Process created: |
|||
Source: |
Process created: |
|||
Source: |
Process created: |
|||
Source: |
Process created: |
|||
Source: |
Process created: |
|||
Source: |
Process created: |
|||
Source: |
Process created: |
|||
Source: |
Process created: |
|||
Source: |
Process created: |
|||
Source: |
Process created: |
|||
Source: |
Process created: |
Jump to behavior | ||
Source: |
Process created: |
Jump to behavior | ||
Source: |
Process created: |
Jump to behavior | ||
Source: |
Process created: |
Jump to behavior | ||
Source: |
Process created: |
Jump to behavior | ||
Source: |
Process created: |
Jump to behavior | ||
Source: |
Process created: |
Jump to behavior | ||
Source: |
Process created: |
Jump to behavior | ||
Source: |
Process created: |
Jump to behavior | ||
Source: |
Process created: |
Jump to behavior | ||
Source: |
Process created: |
Jump to behavior |
Source: |
Key value queried: |
Jump to behavior |
Source: |
File created: |
Jump to behavior |
Source: |
File created: |
Jump to behavior |
Source: |
Classification label: |
Source: |
Binary or memory string: |
||
Source: |
Binary or memory string: |
||
Source: |
Binary or memory string: |
||
Source: |
Binary or memory string: |
||
Source: |
Binary or memory string: |
||
Source: |
Binary or memory string: |
||
Source: |
Binary or memory string: |
||
Source: |
Binary or memory string: |
||
Source: |
Binary or memory string: |
||
Source: |
Binary or memory string: |
||
Source: |
Binary or memory string: |
Source: |
Process created: |
Source: |
Mutant created: |
||
Source: |
Mutant created: |
||
Source: |
Mutant created: |
||
Source: |
Mutant created: |
||
Source: |
Mutant created: |
||
Source: |
Mutant created: |
||
Source: |
Mutant created: |
||
Source: |
Mutant created: |
||
Source: |
Mutant created: |
Source: |
Code function: |
8_2_00007FFBBDC961D0 |
Source: |
Window detected: |
Source: |
Binary string: |
||
Source: |
Binary string: |
Source: |
Code function: |
2_3_02DF38E3 | |
Source: |
Code function: |
2_3_02DECBBD | |
Source: |
Code function: |
2_3_02DECEA3 | |
Source: |
Code function: |
2_3_02DECC35 | |
Source: |
Code function: |
2_2_00A68003 | |
Source: |
Code function: |
2_2_00A68E4C | |
Source: |
Code function: |
2_2_02DF38E3 |
Source: |
Static PE information: |
Source: |
Code function: |
8_2_00007FFBBDC91870 |
Source: |
File created: |
Jump to dropped file | ||
Source: |
File created: |
Jump to dropped file | ||
Source: |
File created: |
Jump to dropped file |
Source: |
Code function: |
8_2_00007FFBBDC91870 |
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior | ||
Source: |
Process information set: |
Jump to behavior |
Source: |
Thread sleep time: |
Jump to behavior |
Source: |
Last function: |
Source: |
Dropped PE file which has not been started: |
Jump to dropped file | ||
Source: |
Dropped PE file which has not been started: |
Jump to dropped file |
Source: |
API coverage: |
Source: |
Code function: |
8_2_00007FFBBDCA3784 |
Source: |
Thread delayed: |
Jump to behavior |
Source: |
Binary or memory string: |
||
Source: |
Binary or memory string: |
||
Source: |
Binary or memory string: |
Source: |
Code function: |
8_2_00007FFBBDC98F40 |
Source: |
Code function: |
8_2_00007FFBBDC91870 |
Source: |
Code function: |
8_2_00007FFBBDCA47F4 |
Source: |
Process queried: |
Jump to behavior | ||
Source: |
Process queried: |
Jump to behavior | ||
Source: |
Process queried: |
Jump to behavior | ||
Source: |
Process queried: |
Jump to behavior | ||
Source: |
Process queried: |
Jump to behavior | ||
Source: |
Process queried: |
Jump to behavior | ||
Source: |
Process queried: |
Jump to behavior | ||
Source: |
Process queried: |
Jump to behavior | ||
Source: |
Process queried: |
Jump to behavior | ||
Source: |
Process queried: |
Jump to behavior |
Source: |
Code function: |
8_2_00007FFBBDC98F40 | |
Source: |
Code function: |
8_2_00007FFBBDC98270 | |
Source: |
Code function: |
8_2_00007FFBBDC9C2DC |
HIPS / PFW / Operating System Protection Evasion |
|
---|
Source: |
Section loaded: |
Jump to behavior | ||
Source: |
Section loaded: |
Jump to behavior |
Source: |
Process created: |
Jump to behavior |
Source: |
Queries volume information: |
Jump to behavior |
Source: |
Code function: |
8_2_00007FFBBDCA9C70 |
Source: |
Key value queried: |
Jump to behavior |
Source: |
Code function: |
8_2_00007FFBBDC99090 |
Source: |
Binary or memory string: |
||
Source: |
Binary or memory string: |
||
Source: |
Binary or memory string: |
||
Source: |
Binary or memory string: |
IP | Domain | Country | Flag | ASN | ASN Name | Malicious |
---|---|---|---|---|---|---|
140.82.121.4 | github.com | United States | 36459 | GITHUBUS | false | |
185.199.110.133 | objects.githubusercontent.com | Netherlands | 54113 | FASTLYUS | false |
Name | IP | Active |
---|---|---|
github.com | 140.82.121.4 | true |
objects.githubusercontent.com | 185.199.110.133 | true |
Name | Malicious | Antivirus Detection | Reputation |
---|---|---|---|
false |
|
high |