Source: 00000001.00000002.1725521935.000000C000512000.00000004.00001000.00020000.00000000.sdmp | String decryptor: covvercilverow.shop |
Source: 00000001.00000002.1725521935.000000C000512000.00000004.00001000.00020000.00000000.sdmp | String decryptor: surroundeocw.shop |
Source: 00000001.00000002.1725521935.000000C000512000.00000004.00001000.00020000.00000000.sdmp | String decryptor: abortinoiwiam.shop |
Source: 00000001.00000002.1725521935.000000C000512000.00000004.00001000.00020000.00000000.sdmp | String decryptor: pumpkinkwquo.shop |
Source: 00000001.00000002.1725521935.000000C000512000.00000004.00001000.00020000.00000000.sdmp | String decryptor: priooozekw.shop |
Source: 00000001.00000002.1725521935.000000C000512000.00000004.00001000.00020000.00000000.sdmp | String decryptor: deallyharvenw.shop |
Source: 00000001.00000002.1725521935.000000C000512000.00000004.00001000.00020000.00000000.sdmp | String decryptor: defenddsouneuw.shop |
Source: 00000001.00000002.1725521935.000000C000512000.00000004.00001000.00020000.00000000.sdmp | String decryptor: racedsuitreow.shop |
Source: 00000001.00000002.1725521935.000000C000512000.00000004.00001000.00020000.00000000.sdmp | String decryptor: pianoswimen.shop |
Source: 00000001.00000002.1725521935.000000C000512000.00000004.00001000.00020000.00000000.sdmp | String decryptor: lid=%s&j=%s&ver=4.0 |
Source: 00000001.00000002.1725521935.000000C000512000.00000004.00001000.00020000.00000000.sdmp | String decryptor: TeslaBrowser/5.5 |
Source: 00000001.00000002.1725521935.000000C000512000.00000004.00001000.00020000.00000000.sdmp | String decryptor: - Screen Resoluton: |
Source: 00000001.00000002.1725521935.000000C000512000.00000004.00001000.00020000.00000000.sdmp | String decryptor: - Physical Installed Memory: |
Source: 00000001.00000002.1725521935.000000C000512000.00000004.00001000.00020000.00000000.sdmp | String decryptor: Workgroup: - |
Source: 00000001.00000002.1725521935.000000C000512000.00000004.00001000.00020000.00000000.sdmp | String decryptor: tLYMe5--rui111 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then mov word ptr [eax], cx | 4_2_02B18BC0 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then mov eax, dword ptr [esi] | 4_2_02B0DEE8 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then mov eax, dword ptr [esp] | 4_2_02ADCD20 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then mov eax, dword ptr [esp] | 4_2_02ADCD20 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then push ebx | 4_2_02B0E20D |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then cmp word ptr [ecx+eax+02h], 0000h | 4_2_02AED26A |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then mov eax, dword ptr [esp+000009E4h] | 4_2_02AED26A |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then cmp word ptr [edi+ebp+02h], 0000h | 4_2_02AFD260 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then mov eax, dword ptr [esp+10h] | 4_2_02ADF380 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then movzx edx, byte ptr [ecx+eax] | 4_2_02ADF380 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then mov eax, dword ptr [esp] | 4_2_02ADF380 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then mov eax, dword ptr [esp+000001C0h] | 4_2_02AE2324 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then cmp word ptr [ecx+edx+02h], 0000h | 4_2_02B19310 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then cmp dword ptr [ebp+edx*8+00h], 81105F7Ah | 4_2_02B19310 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then mov dword ptr [esp+04h], eax | 4_2_02AD131E |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then movzx edx, word ptr [eax+ecx] | 4_2_02AEE35A |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then movzx ecx, word ptr [eax] | 4_2_02AEE35A |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then mov eax, dword ptr [esp+000004B0h] | 4_2_02AEE35A |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then cmp word ptr [edi+eax+02h], 0000h | 4_2_02AEE35A |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then mov eax, dword ptr [esp] | 4_2_02AEE35A |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then mov word ptr [eax], dx | 4_2_02AEE35A |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then mov word ptr [ebx], ax | 4_2_02AEE35A |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then mov eax, dword ptr [ebp-18h] | 4_2_02B16080 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then cmp al, 2Eh | 4_2_02AFB0D7 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then lea eax, dword ptr [esi+04h] | 4_2_02AFB0D7 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then cmp al, 25h | 4_2_02AD1000 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then mov eax, esi | 4_2_02AD1000 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then cmp dword ptr [ebx+edx*8], 7E28BDA7h | 4_2_02B19000 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then cmp dword ptr [ebx+edx*8], 7E28BDA7h | 4_2_02B19190 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then mov word ptr [eax], cx | 4_2_02AF71F0 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then jmp edx | 4_2_02B18120 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then mov eax, dword ptr [esp] | 4_2_02B1417F |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then dec eax | 4_2_02AD36A0 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then push 00000000h | 4_2_02AD36A0 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then mov dword ptr [esp+24h], 525E5C56h | 4_2_02AFE607 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then cmp dword ptr [ebx+edx*8], 1B788DCFh | 4_2_02B12660 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then mov eax, dword ptr [esp+0Ch] | 4_2_02ADD670 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then cmp word ptr [edi+eax+02h], 0000h | 4_2_02AEF7B0 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then mov eax, dword ptr [esp] | 4_2_02AEF7B0 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then mov word ptr [eax], dx | 4_2_02AEF7B0 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then mov word ptr [ebx], ax | 4_2_02AEF7B0 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then push esi | 4_2_02AE0785 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then mov eax, dword ptr [ebp-10h] | 4_2_02B0E79E |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then push esi | 4_2_02AE27F9 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then cmp word ptr [ebp+edi+02h], 0000h | 4_2_02AF5730 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then movzx edx, byte ptr [esi+ebx] | 4_2_02AD5710 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then mov ebx, dword ptr [edi+04h] | 4_2_02AFF4B0 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then mov eax, dword ptr [esp+04h] | 4_2_02AF34D0 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then jmp edx | 4_2_02B18460 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then cmp byte ptr [eax+01h], 00000000h | 4_2_02AF658F |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then cmp dword ptr [edi+edx*8], 0633C81Dh | 4_2_02B17570 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then jmp eax | 4_2_02AFD541 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then cmp dword ptr [esi+edx*8], CECD21FDh | 4_2_02AFAA90 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then cmp dword ptr [edi+edx*8], CECD21FDh | 4_2_02AFAA90 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then cmp dword ptr [esi+edx*8], 0716B6A2h | 4_2_02B0DAF0 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then cmp dword ptr [edi+edx*8], 7D006057h | 4_2_02B0DAF0 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then mov eax, dword ptr [esp+000004B0h] | 4_2_02AECA10 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then jmp eax | 4_2_02AFDB9C |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then mov eax, dword ptr [esp+04h] | 4_2_02AE0BD3 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then cmp dword ptr [edi+edx*8], 54CA534Eh | 4_2_02B16B00 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then movzx edx, word ptr [ebp+eax*4+00h] | 4_2_02ADBB40 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then add eax, dword ptr [esp+ecx*4+34h] | 4_2_02ADBB40 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then mov word ptr [ebx], cx | 4_2_02B156C9 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then mov eax, dword ptr [ebp-18h] | 4_2_02B156C9 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then lea esi, dword ptr [esi+esi*4] | 4_2_02ADC810 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then cmp dword ptr [edi+edx*8], 0633C81Dh | 4_2_02B13840 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then mov word ptr [eax], cx | 4_2_02AF59A0 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then movzx ebx, byte ptr [edx] | 4_2_02B09980 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then cmp byte ptr [esi+ebx], 00000000h | 4_2_02AFF9E0 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then movzx ecx, byte ptr [edi] | 4_2_02AFE9C6 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then mov dword ptr [esp], 00000000h | 4_2_02AE9FB0 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then mov ebx, eax | 4_2_02AD9FC0 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then mov ebp, eax | 4_2_02AD9FC0 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then movzx ecx, word ptr [esi+eax] | 4_2_02B0FFC0 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then mov eax, dword ptr [esp+68h] | 4_2_02B16CF0 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then mov dword ptr [esp+1Ch], CF5AC950h | 4_2_02ADEC76 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then jmp eax | 4_2_02AFDD67 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then cmp dword ptr [esi+edx*8], 0633C81Dh | 4_2_02B12DE0 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then mov eax, dword ptr [esi+000001B8h] | 4_2_02B00DD0 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then mov byte ptr [edx], cl | 4_2_02B00DD0 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then mov byte ptr [edi], al | 4_2_02B00DD0 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then mov byte ptr [edi], al | 4_2_02B00DD0 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then mov eax, dword ptr [esi+00000088h] | 4_2_02B00DD0 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then mov byte ptr [edx], cl | 4_2_02B00DD0 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then mov byte ptr [edi], al | 4_2_02B00DD0 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then mov byte ptr [ebx], al | 4_2_02B00DD0 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then mov byte ptr [ebx], al | 4_2_02B00DD0 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then mov byte ptr [edi], al | 4_2_02B00DD0 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4x nop then jmp eax | 4_2_02AFDD67 |
Source: p37SE6gM52.exe | String found in binary or memory: https://github.com/golang/protobuf/issues/1609): |
Source: p37SE6gM52.exe | String found in binary or memory: https://github.com/uber-go/dig/issues/new |
Source: p37SE6gM52.exe | String found in binary or memory: https://golang.org/doc/faq#nil_errorMemory |
Source: p37SE6gM52.exe | String found in binary or memory: https://opentelemetry.io/schemas/1.26.0google.golang.org/genproto/protobuf/apigoogle.golang.org/prot |
Source: p37SE6gM52.exe | String found in binary or memory: https://protobuf.dev/reference/go/faq#namespace-conflictserver |
Source: BitLockerToGo.exe, 00000004.00000002.1744682940.0000000002E0B000.00000004.00000020.00020000.00000000.sdmp | String found in binary or memory: https://racedsuitreow.shop/ |
Source: BitLockerToGo.exe, 00000004.00000003.1731257436.0000000002E33000.00000004.00000020.00020000.00000000.sdmp, BitLockerToGo.exe, 00000004.00000003.1731449847.0000000002E35000.00000004.00000020.00020000.00000000.sdmp, BitLockerToGo.exe, 00000004.00000002.1744682940.0000000002E33000.00000004.00000020.00020000.00000000.sdmp, BitLockerToGo.exe, 00000004.00000003.1731257436.0000000002E23000.00000004.00000020.00020000.00000000.sdmp | String found in binary or memory: https://racedsuitreow.shop/api |
Source: BitLockerToGo.exe, 00000004.00000002.1744682940.0000000002E0B000.00000004.00000020.00020000.00000000.sdmp | String found in binary or memory: https://racedsuitreow.shop/p |
Source: BitLockerToGo.exe, 00000004.00000003.1731257436.0000000002E33000.00000004.00000020.00020000.00000000.sdmp, BitLockerToGo.exe, 00000004.00000003.1731193361.0000000002E8C000.00000004.00000020.00020000.00000000.sdmp, BitLockerToGo.exe, 00000004.00000003.1731449847.0000000002E35000.00000004.00000020.00020000.00000000.sdmp | String found in binary or memory: https://www.cloudflare.com/5xx-error-landing |
Source: BitLockerToGo.exe, 00000004.00000003.1731257436.0000000002E33000.00000004.00000020.00020000.00000000.sdmp, BitLockerToGo.exe, 00000004.00000003.1731554267.0000000002E45000.00000004.00000020.00020000.00000000.sdmp, BitLockerToGo.exe, 00000004.00000003.1731193361.0000000002E8C000.00000004.00000020.00020000.00000000.sdmp, BitLockerToGo.exe, 00000004.00000003.1731449847.0000000002E35000.00000004.00000020.00020000.00000000.sdmp | String found in binary or memory: https://www.cloudflare.com/learning/access-management/phishing-attack/ |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4_2_02B0E468 | 4_2_02B0E468 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4_2_02B0DEE8 | 4_2_02B0DEE8 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4_2_02AED26A | 4_2_02AED26A |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4_2_02B0D240 | 4_2_02B0D240 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4_2_02AD13B8 | 4_2_02AD13B8 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4_2_02AD131E | 4_2_02AD131E |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4_2_02AD8340 | 4_2_02AD8340 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4_2_02AEE35A | 4_2_02AEE35A |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4_2_02B17090 | 4_2_02B17090 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4_2_02AFB0D7 | 4_2_02AFB0D7 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4_2_02ADB030 | 4_2_02ADB030 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4_2_02AFC007 | 4_2_02AFC007 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4_2_02AD1000 | 4_2_02AD1000 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4_2_02AFA070 | 4_2_02AFA070 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4_2_02B071B0 | 4_2_02B071B0 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4_2_02B1618A | 4_2_02B1618A |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4_2_02AFC1CD | 4_2_02AFC1CD |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4_2_02B18120 | 4_2_02B18120 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4_2_02B056B0 | 4_2_02B056B0 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4_2_02AD36A0 | 4_2_02AD36A0 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4_2_02AD979A | 4_2_02AD979A |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4_2_02B19720 | 4_2_02B19720 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4_2_02AE076F | 4_2_02AE076F |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4_2_02B185A2 | 4_2_02B185A2 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4_2_02AF658F | 4_2_02AF658F |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4_2_02ADA510 | 4_2_02ADA510 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4_2_02B17570 | 4_2_02B17570 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4_2_02AECA10 | 4_2_02AECA10 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4_2_02B17BB0 | 4_2_02B17BB0 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4_2_02AF7BA6 | 4_2_02AF7BA6 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4_2_02ADABA0 | 4_2_02ADABA0 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4_2_02AFDB9C | 4_2_02AFDB9C |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4_2_02AD6BF0 | 4_2_02AD6BF0 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4_2_02ADBB40 | 4_2_02ADBB40 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4_2_02B156C9 | 4_2_02B156C9 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4_2_02ADC810 | 4_2_02ADC810 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4_2_02B13840 | 4_2_02B13840 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4_2_02AD79A0 | 4_2_02AD79A0 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4_2_02B17E90 | 4_2_02B17E90 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4_2_02AD4E50 | 4_2_02AD4E50 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4_2_02AD6FA0 | 4_2_02AD6FA0 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4_2_02AD9FC0 | 4_2_02AD9FC0 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4_2_02AE0F20 | 4_2_02AE0F20 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4_2_02AD8DA0 | 4_2_02AD8DA0 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4_2_02AFDD67 | 4_2_02AFDD67 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4_2_02B12DE0 | 4_2_02B12DE0 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4_2_02B00DD0 | 4_2_02B00DD0 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4_2_02B17D00 | 4_2_02B17D00 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4_2_02AFDD67 | 4_2_02AFDD67 |
Source: C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe | Code function: 4_2_02B17D6B | 4_2_02B17D6B |
Source: p37SE6gM52.exe | String found in binary or memory: pages/cpu/classes/gc/pause:cpu-seconds/cpu/classes/gc/total:cpu-seconds/gc/limiter/last-enabled:gc-cycle/memory/classes/heap/stacks:bytes/memory/classes/heap/unused:bytes/sched/pauses/stopping/gc:seconds/sched/pauses/total/other:secondsmin must be a non-zero p |
Source: p37SE6gM52.exe | String found in binary or memory: pages/cpu/classes/gc/pause:cpu-seconds/cpu/classes/gc/total:cpu-seconds/gc/limiter/last-enabled:gc-cycle/memory/classes/heap/stacks:bytes/memory/classes/heap/unused:bytes/sched/pauses/stopping/gc:seconds/sched/pauses/total/other:secondsmin must be a non-zero p |
Source: p37SE6gM52.exe | String found in binary or memory: (this is measured directly in /sched/pauses/stopping/gc:seconds), during which some threads may still be running. Bucket counts increase monotonically.Estimated total CPU time spent performing GC tasks on spare CPU resources that the Go scheduler could not ot |
Source: p37SE6gM52.exe | String found in binary or memory: (this is measured directly in /sched/pauses/stopping/gc:seconds), during which some threads may still be running. Bucket counts increase monotonically.Estimated total CPU time spent performing GC tasks on spare CPU resources that the Go scheduler could not ot |
Source: p37SE6gM52.exe | String found in binary or memory: rom deciding to stop the world until the world is started again. Some of this time is spent getting all threads to stop (measured directly in /sched/pauses/stopping/other:seconds). Bucket counts increase monotonically.Distribution of individual GC-related stop |
Source: p37SE6gM52.exe | String found in binary or memory: rom deciding to stop the world until the world is started again. Some of this time is spent getting all threads to stop (measured directly in /sched/pauses/stopping/other:seconds). Bucket counts increase monotonically.Distribution of individual GC-related stop |
Source: p37SE6gM52.exe | String found in binary or memory: github.com/saferwall/pe@v1.5.4/loadconfig.go |
Source: p37SE6gM52.exe | String found in binary or memory: net/addrselect.go |
Source: p37SE6gM52.exe | String found in binary or memory: error.in-addr.arpa.unknown mode: unreachable: /log/filter.go/log/helper.godata truncated ... omitting case_not_founddata_exceptiongrouping_errorquery_canceledadmin_shutdowncrash_shutdownundefined_fileduplicate_filefdw_no_schemasinternal_errordata_corruptedpos |
Source: p37SE6gM52.exe | String found in binary or memory: ifRmlZMLlG/load.go |
Source: p37SE6gM52.exe | String found in binary or memory: runqueue= stopwait= runqsize= gfreecnt= throwing= spinning=atomicand8float64nanfloat32nanException ptrSize= targetpc= until pc=unknown pcruntime: ggoroutine .localhostwsarecvmsgwsasendmsgIP addressunixpacket netGo = RIPEMD-160ChorasmianDevanagariGlagoliticKharoshthiManichaeanOld_ItalicOld_PermicOld_TurkicOld_UyghurPhoenicianSaurashtraSHA256-RSASHA384-RSASHA512-RSADSA-SHA256ECDSA-SHA1POSTALCODEexecerrdotSYSTEMROOT for type trim_errorPGPASSFILEkrbsrvname READ ONLYdecode: %sConnectionlocal-addrUser-AgentRST_STREAMEND_STREAMSet-Cookie stream=%dset-cookieuser-agentkeep-alive:authorityconnectionequivalentHost: %s |
Source: p37SE6gM52.exe | String found in binary or memory: stopm spinning nmidlelocked= needspinning=randinit twicestore64 failedsemaRoot queuebad allocCountbad span statestack overflow untyped args out of range no module data in goroutine runtime: seq1=runtime: goid=RegSetValueExWinternal error.in-addr.arpa.unknown mode: unreachable: /log/filter.go/log/helper.godata truncated |
Source: p37SE6gM52.exe | String found in binary or memory: too many Questions to pack (>65535)transform: short destination buffermime: bogus characters after %%: %qhpack: invalid Huffman-encoded datadynamic table size update too largemlkem768: crypto/rand Read failed: mlkem768: invalid ciphertext lengthcbor: invalid ByteSliceLaterFormat P224 point is the point at infinityP256 point is the point at infinityP384 point is the point at infinityP521 point is the point at infinitymissing EncodeTime in EncoderConfigcannot create scope info metric: %wmanual reader: invalid producer: %Tduplicate list-member in tracestatetoo many list-members in tracestatego.opentelemetry.io/otel/sdk/tracerdelimiters may only be "{}" or "<>"string field contains invalid UTF-8%v already implements proto.Messageflate: corrupt input before offset range can only initialize variablesexpected unsigned integer; found %snon-comparable types %s: %v, %s: %vcannot use an unfiltered option: %vambiguous set of applicable optionschacha20: output smaller than inputGOMEMLIMIT is already set, skippingprocess.runtime.go.mem.heap_objectsprocess.runtime.go.mem.live_objectsAGGREGATION_TEMPORALITY_UNSPECIFIEDno ErrorHandler delegate configuredprocess_network_receive_bytes_totalgrpc.internal.transport.networktypethere is an empty key in the headerGRPC_ALTS_MAX_CONCURRENT_HANDSHAKES%s: none of the oneof fields is setcrypto/cipher: input not full blocksTime.UnmarshalBinary: invalid lengthmethod ABI and value ABI don't alignreflect.Value.Equal: values of type strings.Builder.Grow: negative countstrings: Join output length overflowThunk Address Of Data too spread outPower PC with floating point supportCherokee United States (chr-Cher-US)Chinese (Traditional) Taiwan (zh-TW)English United Arab Emirates (en-AE)Error parsing certificate from ASN.1accessing a corrupted shared library444089209850062616169452667236328125ryuFtoaFixed64 called with prec > 180123456789abcdefghijklmnopqrstuvwxyzbytes: Repeat output length overflowbytes.Reader.ReadAt: negative offsetbytes.Reader.Seek: negative positionlfstack node allocated from the heap) is larger than maximum page size (key size not a multiple of key alignruntime: invalid typeBitsBulkBarrieruncaching span but s.allocCount == 0/memory/classes/metadata/other:bytes/sched/pauses/stopping/other:secondsuser arena span is on the wrong listruntime: marked free object in span runtime: unblock on closing polldescruntime: inconsistent write deadlineUnable to determine system directoryruntime: VirtualQuery fa |