Windows
Analysis Report
svchost.exe
Overview
General Information
Detection
Score: | 72 |
Range: | 0 - 100 |
Whitelisted: | false |
Confidence: | 100% |
Signatures
Classification
- System is w10x64
- svchost.exe (PID: 6848 cmdline:
"C:\Users\ user\Deskt op\svchost .exe" MD5: 0A8A20F78887D083909131E3206E7EA3) - svchost.exe (PID: 6804 cmdline:
C:\Users\u ser\AppDat a\Local\Te mp\2nL7nS3 HEmMzaquEk AHxy2ighT7 \svchost.e xe MD5: C1290736DF9A2094B6039AA50D48C442) - cmd.exe (PID: 5952 cmdline:
C:\Windows \system32\ cmd.exe /d /s /c "ch cp" MD5: 8A2122E8162DBEF04694B9C3E0B6CDEE) - conhost.exe (PID: 4928 cmdline:
C:\Windows \system32\ conhost.ex e 0xffffff ff -ForceV 1 MD5: 0D698AF330FD17BEE3BF90011D49251D) - chcp.com (PID: 5436 cmdline:
chcp MD5: 33395C4732A49065EA72590B14B64F32) - svchost.exe (PID: 5024 cmdline:
"C:\Users\ user\AppDa ta\Local\T emp\2nL7nS 3HEmMzaquE kAHxy2ighT 7\svchost. exe" --typ e=gpu-proc ess --user -data-dir= "C:\Users\ user\AppDa ta\Roaming \svchost" --gpu-pref erences=WA AAAAAAAADg AAAMAAAAAA AAAAAAAAAA AABgAAEAAA A4AAAAAAAA AAAAAAAEAA AAAAAAAAAA AAAAAAAAAA AAAAAAAAAA AAAAGAAAAA AAAAAYAAAA AAAAAAgAAA AAAAAACAAA AAAAAAAIAA AAAAAAAA== --field-t rial-handl e=1880,i,1 0768761136 844148512, 6325765039 296928006, 262144 --d isable-fea tures=Spar eRendererF orSitePerP rocess,Win DelaySpell checkServi ceInit,Win RetrieveSu ggestionsO nlyOnDeman d --variat ions-seed- version -- mojo-platf orm-channe l-handle=1 876 /prefe tch:2 MD5: C1290736DF9A2094B6039AA50D48C442) - explorer.exe (PID: 2580 cmdline:
C:\Windows \Explorer. EXE MD5: 662F4F92FDE3557E86D110526BB578D5) - svchost.exe (PID: 888 cmdline:
"C:\Users\ user\AppDa ta\Local\T emp\2nL7nS 3HEmMzaquE kAHxy2ighT 7\svchost. exe" --typ e=utility --utility- sub-type=n etwork.moj om.Network Service -- lang=en-GB --service -sandbox-t ype=none - -user-data -dir="C:\U sers\user\ AppData\Ro aming\svch ost" --fie ld-trial-h andle=2972 ,i,1076876 1136844148 512,632576 5039296928 006,262144 --disable -features= SpareRende rerForSite PerProcess ,WinDelayS pellcheckS erviceInit ,WinRetrie veSuggesti onsOnlyOnD emand --va riations-s eed-versio n --mojo-p latform-ch annel-hand le=852 /pr efetch:3 MD5: C1290736DF9A2094B6039AA50D48C442) - svchost.exe (PID: 6248 cmdline:
"C:\Users\ user\AppDa ta\Local\T emp\2nL7nS 3HEmMzaquE kAHxy2ighT 7\svchost. exe" --typ e=renderer --user-da ta-dir="C: \Users\use r\AppData\ Roaming\sv chost" --a pp-path="C :\Users\us er\AppData \Local\Tem p\2nL7nS3H EmMzaquEkA Hxy2ighT7\ resources\ app.asar" --enable-s andbox --l ang=en-GB --device-s cale-facto r=1 --num- raster-thr eads=2 --e nable-main -frame-bef ore-activa tion --ren derer-clie nt-id=4 -- time-ticks -at-unix-e poch=-1728 8243267843 35 --launc h-time-tic ks=4868475 320 --fiel d-trial-ha ndle=2992, i,10768761 1368441485 12,6325765 0392969280 06,262144 --disable- features=S pareRender erForSiteP erProcess, WinDelaySp ellcheckSe rviceInit, WinRetriev eSuggestio nsOnlyOnDe mand --var iations-se ed-version --mojo-pl atform-cha nnel-handl e=3020 /pr efetch:1 MD5: C1290736DF9A2094B6039AA50D48C442)
- cleanup
System Summary |
---|
Source: | Author: Sander Wiebing, Tim Shelton, Nasreddine Bencherchali (Nextron Systems): |
Source: | Author: David Burkett, @signalblur: |
Source: | Author: Florian Roth (Nextron Systems), Patrick Bareiss, Anton Kutepov, oscd.community, Nasreddine Bencherchali: |
Source: | Author: Nasreddine Bencherchali (Nextron Systems): |
Source: | Author: _pete_0, TheDFIRReport: |
Source: | Author: Florian Roth (Nextron Systems): |
Source: | Author: vburov: |
Click to jump to signature section
Source: | Static PE information: |
Source: | File created: | Jump to behavior | ||
Source: | File created: | Jump to behavior | ||
Source: | File created: | Jump to behavior | ||
Source: | File created: | Jump to behavior | ||
Source: | File created: | Jump to behavior | ||
Source: | File created: | Jump to behavior | ||
Source: | File created: | Jump to behavior | ||
Source: | File created: | Jump to behavior |
Source: | Static PE information: |
Source: | Binary string: |
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior |
Networking |
---|
Source: | Network Connect: | Jump to behavior |
Source: | IP Address: | ||
Source: | IP Address: |
Source: | ASN Name: |
Source: | DNS query: |
Source: | UDP traffic detected without corresponding DNS query: |
Source: | DNS traffic detected: |
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: |
Source: | Network traffic detected: | ||
Source: | Network traffic detected: |
System Summary |
---|
Source: | File dump: | Jump to dropped file |
Source: | Process token adjusted: | Jump to behavior |
Source: | Static PE information: |
Source: | Static PE information: |
Source: | Classification label: |
Source: | File created: | Jump to behavior |
Source: | Mutant created: | ||
Source: | Mutant created: | ||
Source: | Mutant created: |
Source: | File created: | Jump to behavior |
Source: | Static PE information: |
Source: | File read: | Jump to behavior |
Source: | Key opened: | Jump to behavior |
Source: | File read: | Jump to behavior |
Source: | File read: | Jump to behavior |
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: |
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | |||
Source: | Section loaded: | |||
Source: | Section loaded: | |||
Source: | Section loaded: | |||
Source: | Section loaded: | |||
Source: | Section loaded: | |||
Source: | Section loaded: | |||
Source: | Section loaded: | |||
Source: | Section loaded: | |||
Source: | Section loaded: | |||
Source: | Section loaded: | |||
Source: | Section loaded: | |||
Source: | Section loaded: | |||
Source: | Section loaded: | |||
Source: | Section loaded: | |||
Source: | Section loaded: | |||
Source: | Section loaded: | |||
Source: | Section loaded: | |||
Source: | Section loaded: | |||
Source: | Section loaded: | |||
Source: | Section loaded: | |||
Source: | Section loaded: | |||
Source: | Section loaded: | |||
Source: | Section loaded: | |||
Source: | Section loaded: | |||
Source: | Section loaded: | |||
Source: | Section loaded: | |||
Source: | Section loaded: | |||
Source: | Section loaded: | |||
Source: | Section loaded: | |||
Source: | Section loaded: | |||
Source: | Section loaded: | |||
Source: | Section loaded: | |||
Source: | Section loaded: | |||
Source: | Section loaded: | |||
Source: | Section loaded: | |||
Source: | Section loaded: | |||
Source: | Section loaded: | |||
Source: | Section loaded: | |||
Source: | Section loaded: | |||
Source: | Section loaded: | |||
Source: | Section loaded: | |||
Source: | Section loaded: | |||
Source: | Section loaded: | |||
Source: | Section loaded: | |||
Source: | Section loaded: | |||
Source: | Section loaded: | |||
Source: | Section loaded: | |||
Source: | Section loaded: | |||
Source: | Section loaded: | |||
Source: | Section loaded: | |||
Source: | Section loaded: | |||
Source: | Section loaded: | |||
Source: | Section loaded: | |||
Source: | Section loaded: | |||
Source: | Section loaded: | |||
Source: | Section loaded: | |||
Source: | Section loaded: | |||
Source: | Section loaded: | |||
Source: | Section loaded: | |||
Source: | Section loaded: | |||
Source: | Section loaded: | |||
Source: | Section loaded: | |||
Source: | Section loaded: |
Source: | Key value queried: | Jump to behavior |
Source: | Static file information: |
Source: | Static PE information: |
Source: | Binary string: |
Source: | Static PE information: | ||
Source: | Static PE information: | ||
Source: | Static PE information: | ||
Source: | Static PE information: | ||
Source: | Static PE information: | ||
Source: | Static PE information: | ||
Source: | Static PE information: | ||
Source: | Static PE information: | ||
Source: | Static PE information: | ||
Source: | Static PE information: | ||
Source: | Static PE information: | ||
Source: | Static PE information: | ||
Source: | Static PE information: | ||
Source: | Static PE information: | ||
Source: | Static PE information: | ||
Source: | Static PE information: | ||
Source: | Static PE information: | ||
Source: | Static PE information: | ||
Source: | Static PE information: | ||
Source: | Static PE information: | ||
Source: | Static PE information: | ||
Source: | Static PE information: | ||
Source: | Static PE information: | ||
Source: | Static PE information: | ||
Source: | Static PE information: | ||
Source: | Static PE information: | ||
Source: | Static PE information: |
Persistence and Installation Behavior |
---|
Source: | File created: | Jump to dropped file |
Source: | File created: | Jump to dropped file | ||
Source: | File created: | Jump to dropped file | ||
Source: | File created: | Jump to dropped file | ||
Source: | File created: | Jump to dropped file | ||
Source: | File created: | Jump to dropped file | ||
Source: | File created: | Jump to dropped file | ||
Source: | File created: | Jump to dropped file | ||
Source: | File created: | Jump to dropped file | ||
Source: | File created: | Jump to dropped file | ||
Source: | File created: | Jump to dropped file | ||
Source: | File created: | Jump to dropped file | ||
Source: | File created: | Jump to dropped file | ||
Source: | File created: | Jump to dropped file | ||
Source: | File created: | Jump to dropped file | ||
Source: | File created: | Jump to dropped file | ||
Source: | File created: | Jump to dropped file | ||
Source: | File created: | Jump to dropped file | ||
Source: | File created: | Jump to dropped file | ||
Source: | File created: | Jump to dropped file |
Source: | File created: | Jump to dropped file | ||
Source: | File created: | Jump to dropped file | ||
Source: | File created: | Jump to dropped file | ||
Source: | File created: | Jump to dropped file | ||
Source: | File created: | Jump to dropped file | ||
Source: | File created: | Jump to dropped file | ||
Source: | File created: | Jump to dropped file |
Source: | File created: | Jump to behavior | ||
Source: | File created: | Jump to behavior | ||
Source: | File created: | Jump to behavior | ||
Source: | File created: | Jump to behavior | ||
Source: | File created: | Jump to behavior | ||
Source: | File created: | Jump to behavior | ||
Source: | File created: | Jump to behavior | ||
Source: | File created: | Jump to behavior |
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | |||
Source: | Process information set: | |||
Source: | Process information set: | |||
Source: | Process information set: | |||
Source: | Process information set: | |||
Source: | Process information set: | |||
Source: | Process information set: | |||
Source: | Process information set: |
Source: | Window / User API: |
Source: | Dropped PE file which has not been started: | Jump to dropped file | ||
Source: | Dropped PE file which has not been started: | Jump to dropped file | ||
Source: | Dropped PE file which has not been started: | Jump to dropped file | ||
Source: | Dropped PE file which has not been started: | Jump to dropped file | ||
Source: | Dropped PE file which has not been started: | Jump to dropped file | ||
Source: | Dropped PE file which has not been started: | Jump to dropped file | ||
Source: | Dropped PE file which has not been started: | Jump to dropped file | ||
Source: | Dropped PE file which has not been started: | Jump to dropped file | ||
Source: | Dropped PE file which has not been started: | Jump to dropped file | ||
Source: | Dropped PE file which has not been started: | Jump to dropped file | ||
Source: | Dropped PE file which has not been started: | Jump to dropped file | ||
Source: | Dropped PE file which has not been started: | Jump to dropped file | ||
Source: | Dropped PE file which has not been started: | Jump to dropped file | ||
Source: | Dropped PE file which has not been started: | Jump to dropped file | ||
Source: | Dropped PE file which has not been started: | Jump to dropped file | ||
Source: | Dropped PE file which has not been started: | Jump to dropped file |
Source: | Key opened: | Jump to behavior | ||
Source: | Key opened: |
Source: | File Volume queried: | Jump to behavior | ||
Source: | File Volume queried: | Jump to behavior | ||
Source: | File Volume queried: | Jump to behavior | ||
Source: | File Volume queried: | Jump to behavior | ||
Source: | File Volume queried: | Jump to behavior |
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior |
Source: | Binary or memory string: | ||
Source: | Binary or memory string: | ||
Source: | Binary or memory string: |
HIPS / PFW / Operating System Protection Evasion |
---|
Source: | Network Connect: | Jump to behavior |
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: |
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior |
Source: | Queries volume information: | Jump to behavior | ||
Source: | Queries volume information: | Jump to behavior | ||
Source: | Queries volume information: | Jump to behavior | ||
Source: | Queries volume information: | Jump to behavior |
Reconnaissance | Resource Development | Initial Access | Execution | Persistence | Privilege Escalation | Defense Evasion | Credential Access | Discovery | Lateral Movement | Collection | Command and Control | Exfiltration | Impact |
---|---|---|---|---|---|---|---|---|---|---|---|---|---|
Gather Victim Identity Information | Acquire Infrastructure | Valid Accounts | 1 Command and Scripting Interpreter | 1 DLL Side-Loading | 111 Process Injection | 111 Masquerading | OS Credential Dumping | 1 Security Software Discovery | Remote Services | Data from Local System | 2 Encrypted Channel | Exfiltration Over Other Network Medium | Abuse Accessibility Features |
Credentials | Domains | Default Accounts | Scheduled Task/Job | Boot or Logon Initialization Scripts | 1 DLL Side-Loading | 111 Process Injection | LSASS Memory | 1 Application Window Discovery | Remote Desktop Protocol | Data from Removable Media | 1 Non-Application Layer Protocol | Exfiltration Over Bluetooth | Network Denial of Service |
Email Addresses | DNS Server | Domain Accounts | At | Logon Script (Windows) | Logon Script (Windows) | 1 DLL Side-Loading | Security Account Manager | 1 Remote System Discovery | SMB/Windows Admin Shares | Data from Network Shared Drive | 2 Application Layer Protocol | Automated Exfiltration | Data Encrypted for Impact |
Employee Names | Virtual Private Server | Local Accounts | Cron | Login Hook | Login Hook | Binary Padding | NTDS | 1 System Network Configuration Discovery | Distributed Component Object Model | Input Capture | Protocol Impersonation | Traffic Duplication | Data Destruction |
Gather Victim Network Information | Server | Cloud Accounts | Launchd | Network Logon Script | Network Logon Script | Software Packing | LSA Secrets | 2 File and Directory Discovery | SSH | Keylogging | Fallback Channels | Scheduled Transfer | Data Encrypted for Impact |
Domain Properties | Botnet | Replication Through Removable Media | Scheduled Task | RC Scripts | RC Scripts | Steganography | Cached Domain Credentials | 22 System Information Discovery | VNC | GUI Input Capture | Multiband Communication | Data Transfer Size Limits | Service Stop |
This section contains all screenshots as thumbnails, including those not shown in the slideshow.
Source | Detection | Scanner | Label | Link |
---|---|---|---|---|
6% | Virustotal | Browse |
Source | Detection | Scanner | Label | Link |
---|---|---|---|---|
0% | ReversingLabs | |||
0% | ReversingLabs | |||
0% | ReversingLabs | |||
0% | ReversingLabs | |||
0% | ReversingLabs | |||
0% | ReversingLabs | |||
0% | ReversingLabs | |||
5% | ReversingLabs | |||
0% | ReversingLabs | |||
0% | ReversingLabs | |||
0% | ReversingLabs | |||
0% | ReversingLabs | |||
5% | ReversingLabs | |||
0% | ReversingLabs | |||
0% | ReversingLabs | |||
0% | ReversingLabs | |||
0% | ReversingLabs | |||
0% | ReversingLabs | |||
0% | ReversingLabs | |||
0% | ReversingLabs | |||
0% | ReversingLabs | |||
0% | ReversingLabs | |||
0% | ReversingLabs | |||
5% | ReversingLabs |
Source | Detection | Scanner | Label | Link |
---|---|---|---|---|
1% | Virustotal | Browse |
Source | Detection | Scanner | Label | Link |
---|---|---|---|---|
0% | URL Reputation | safe | ||
0% | Virustotal | Browse | ||
0% | Virustotal | Browse | ||
0% | Virustotal | Browse | ||
0% | Virustotal | Browse | ||
0% | Virustotal | Browse | ||
1% | Virustotal | Browse | ||
1% | Virustotal | Browse | ||
0% | Virustotal | Browse | ||
0% | Virustotal | Browse | ||
0% | Virustotal | Browse | ||
0% | Virustotal | Browse | ||
0% | Virustotal | Browse | ||
0% | Virustotal | Browse | ||
0% | Virustotal | Browse | ||
0% | Virustotal | Browse | ||
0% | Virustotal | Browse | ||
0% | Virustotal | Browse | ||
0% | Virustotal | Browse | ||
0% | Virustotal | Browse | ||
0% | Virustotal | Browse | ||
0% | Virustotal | Browse | ||
0% | Virustotal | Browse | ||
0% | Virustotal | Browse | ||
0% | Virustotal | Browse | ||
0% | Virustotal | Browse | ||
0% | Virustotal | Browse | ||
1% | Virustotal | Browse | ||
0% | Virustotal | Browse | ||
0% | Virustotal | Browse | ||
0% | Virustotal | Browse | ||
0% | Virustotal | Browse | ||
0% | Virustotal | Browse | ||
1% | Virustotal | Browse | ||
0% | Virustotal | Browse |
Name | IP | Active | Malicious | Antivirus Detection | Reputation |
---|---|---|---|---|---|
ipinfo.io | 34.117.59.81 | true | true |
| unknown |
Name | Source | Malicious | Antivirus Detection | Reputation |
---|---|---|---|---|
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false | unknown | |||
false |
| unknown | ||
false |
| unknown | ||
false | unknown | |||
false |
| unknown | ||
false |
| unknown | ||
false | unknown | |||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false | unknown | |||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false | unknown | |||
false |
| unknown | ||
false | unknown | |||
false | unknown | |||
false | unknown | |||
false | unknown | |||
false | unknown | |||
false | unknown | |||
false | unknown | |||
false | unknown | |||
false | unknown | |||
false | unknown | |||
false | unknown | |||
false | unknown | |||
false |
| unknown | ||
false | unknown | |||
false | unknown | |||
false | unknown | |||
false | unknown | |||
false | unknown | |||
false | unknown | |||
false | unknown | |||
false | unknown | |||
false | unknown | |||
false | unknown | |||
false | unknown | |||
false | unknown | |||
false | unknown | |||
false | unknown | |||
false | unknown | |||
false | unknown | |||
false | unknown | |||
false | unknown | |||
false | unknown | |||
false | unknown | |||
false | unknown | |||
false | unknown | |||
false | unknown | |||
false | unknown | |||
false | unknown | |||
false | unknown | |||
false | unknown | |||
false | unknown | |||
false | unknown | |||
false | unknown | |||
false | unknown | |||
false | unknown | |||
false | unknown | |||
false | unknown | |||
false | unknown | |||
false | unknown | |||
false | unknown | |||
false | unknown | |||
false | unknown | |||
false | unknown | |||
false | unknown | |||
false | unknown | |||
false | unknown | |||
false | unknown | |||
false | unknown | |||
false | unknown | |||
false | unknown | |||
false | unknown |
- No. of IPs < 25%
- 25% < No. of IPs < 50%
- 50% < No. of IPs < 75%
- 75% < No. of IPs
IP | Domain | Country | Flag | ASN | ASN Name | Malicious |
---|---|---|---|---|---|---|
34.117.59.81 | ipinfo.io | United States | 139070 | GOOGLE-AS-APGoogleAsiaPacificPteLtdSG | true |
Joe Sandbox version: | 41.0.0 Charoite |
Analysis ID: | 1532544 |
Start date and time: | 2024-10-13 16:18:17 +02:00 |
Joe Sandbox product: | CloudBasic |
Overall analysis duration: | 0h 9m 41s |
Hypervisor based Inspection enabled: | false |
Report type: | full |
Cookbook file name: | default.jbs |
Analysis system description: | Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01 |
Number of analysed new started processes analysed: | 14 |
Number of new started drivers analysed: | 0 |
Number of existing processes analysed: | 0 |
Number of existing drivers analysed: | 0 |
Number of injected processes analysed: | 1 |
Technologies: |
|
Analysis Mode: | default |
Analysis stop reason: | Timeout |
Sample name: | svchost.exe |
Detection: | MAL |
Classification: | mal72.evad.winEXE@14/502@1/1 |
EGA Information: | Failed |
HCA Information: |
|
Cookbook Comments: |
|
- Exclude process from analysis (whitelisted): MpCmdRun.exe, dllhost.exe, WMIADAP.exe, SIHClient.exe, conhost.exe, svchost.exe
- Excluded domains from analysis (whitelisted): fs.microsoft.com, ocsp.digicert.com, slscr.update.microsoft.com, otelrules.azureedge.net, 7.4.8.4.4.3.1.4.0.0.0.0.0.0.0.0.0.0.0.a.0.0.1.f.1.1.1.0.1.0.a.2.ip6.arpa, ctldl.windowsupdate.com, fe3cr.delivery.mp.microsoft.com
- Not all processes where analyzed, report is missing behavior information
- Report size exceeded maximum capacity and may have missing behavior information.
- Report size getting too big, too many NtCreateFile calls found.
- Report size getting too big, too many NtDeviceIoControlFile calls found.
- Report size getting too big, too many NtEnumerateKey calls found.
- Report size getting too big, too many NtOpenFile calls found.
- Report size getting too big, too many NtOpenKeyEx calls found.
- Report size getting too big, too many NtProtectVirtualMemory calls found.
- Report size getting too big, too many NtQueryAttributesFile calls found.
- Report size getting too big, too many NtQueryValueKey calls found.
- Report size getting too big, too many NtQueryVolumeInformationFile calls found.
- Report size getting too big, too many NtSetInformationFile calls found.
Time | Type | Description |
---|---|---|
10:20:00 | API Interceptor |
Match | Associated Sample Name / URL | SHA 256 | Detection | Threat Name | Link | Context |
---|---|---|---|---|---|---|
34.117.59.81 | Get hash | malicious | Unknown | Browse |
| |
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Icarus | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
|
Match | Associated Sample Name / URL | SHA 256 | Detection | Threat Name | Link | Context |
---|---|---|---|---|---|---|
ipinfo.io | Get hash | malicious | DCRat, PureLog Stealer, zgRAT | Browse |
| |
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
|
Match | Associated Sample Name / URL | SHA 256 | Detection | Threat Name | Link | Context |
---|---|---|---|---|---|---|
GOOGLE-AS-APGoogleAsiaPacificPteLtdSG | Get hash | malicious | Credential Flusher | Browse |
| |
Get hash | malicious | Credential Flusher | Browse |
| ||
Get hash | malicious | LummaC, Amadey, Stealc | Browse |
| ||
Get hash | malicious | DCRat, PureLog Stealer, zgRAT | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Anonymous Proxy | Browse |
| ||
Get hash | malicious | Credential Flusher | Browse |
| ||
Get hash | malicious | Credential Flusher | Browse |
| ||
Get hash | malicious | Credential Flusher | Browse |
| ||
Get hash | malicious | Credential Flusher | Browse |
|
Match | Associated Sample Name / URL | SHA 256 | Detection | Threat Name | Link | Context |
---|---|---|---|---|---|---|
C:\Users\user\AppData\Local\Temp\2nL7nS3HEmMzaquEkAHxy2ighT7\d3dcompiler_47.dll | Get hash | malicious | Unknown | Browse | ||
Get hash | malicious | Unknown | Browse | |||
Get hash | malicious | Unknown | Browse | |||
Get hash | malicious | Unknown | Browse | |||
Get hash | malicious | Unknown | Browse | |||
Get hash | malicious | Unknown | Browse | |||
Get hash | malicious | Unknown | Browse | |||
Get hash | malicious | Unknown | Browse | |||
Get hash | malicious | FormBook, GuLoader | Browse | |||
Get hash | malicious | PoshC2 | Browse |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 151856 |
Entropy (8bit): | 7.916234678329522 |
Encrypted: | false |
SSDEEP: | 3072:iz8JCGIdkwTPaNkx0auKdL2o418Gb0+VRLf0ld0GY3cQ3ERVm2I:iz81Idk8aqT5K18Gb0OV8ld0GecQ3Er2 |
MD5: | CB4F128469CD84711ED1C9C02212C7A8 |
SHA1: | 8AE60303BE80B74163D5C4132DE4A465A1EAFC52 |
SHA-256: | 7DD5485DEF22A53C0635EFDF8AE900F147EC8C8A22B9ED71C24668075DD605D3 |
SHA-512: | 0F0FEBE4EE321EB09D6A841FE3460D1F5B657B449058653111E7D0F7A9F36620B3D30369E367235948529409A6CE0CE625AEDE0C61B60926DEC4D2C308306277 |
Malicious: | false |
Reputation: | moderate, very likely benign file |
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 228784 |
Entropy (8bit): | 7.9464015763250755 |
Encrypted: | false |
SSDEEP: | 6144:3DQYajN6svyABnI86fTugx5GMRejnbdZnVE6YoppO4:cfjN6svyABOa6edhVELoXO4 |
MD5: | E9C1423FE5D139A4C88BA8B107573536 |
SHA1: | 46D3EFE892044761F19844C4C4B8F9576F9CA43E |
SHA-256: | 2408969599D3953AAE2FB36008E4D0711E30D0BC86FB4D03F8B0577D43C649FA |
SHA-512: | ABF8D4341C6DE9C722168D0A9CF7D9BAC5F491E1C9BEDFE10B69096DCC2EF2CD08FF4D0E7C9B499C9D1F45FDB053EAFC31ADD39D13C8287760F9304AF0727BF4 |
Malicious: | false |
Reputation: | moderate, very likely benign file |
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 4916728 |
Entropy (8bit): | 6.398031738914566 |
Encrypted: | false |
SSDEEP: | 49152:hCZnRO4XyM53Rkq4ypQqdoRpmruVNYvkaRwvdiD0N+YEzI4og/RfzHLeHTRhFRN1:oG2QCwmHjnog/pzHAo/Ayc |
MD5: | A7B7470C347F84365FFE1B2072B4F95C |
SHA1: | 57A96F6FB326BA65B7F7016242132B3F9464C7A3 |
SHA-256: | AF7B99BE1B8770C0E4D18E43B04E81D11BDEB667FA6B07ADE7A88F4C5676BF9A |
SHA-512: | 83391A219631F750499FD9642D59EC80FB377C378997B302D10762E83325551BB97C1086B181FFF0521B1CA933E518EAB71A44A3578A23691F215EBB1DCE463D |
Malicious: | false |
Antivirus: |
|
Joe Sandbox View: |
|
Reputation: | moderate, very likely benign file |
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2682880 |
Entropy (8bit): | 6.698550951912994 |
Encrypted: | false |
SSDEEP: | 49152:r1nRu1gjn93AXtsX7I8g4AScbz6Ox+pen6yfmb+ST1PqRrY3:rJsf83Sn6Ox+tP53 |
MD5: | BF71F43A11049F853E72C0B1552926BC |
SHA1: | 75BCC1F3F5E515491B32202AC3FAB2E2F4F40AA5 |
SHA-256: | 1178EBC025D6309975AA35DC37E3D9B400B5EF0B17EE4EE70E8C7F0585DC5F62 |
SHA-512: | 8AC6C94D49A33DAC22EDC0A73B95D09A5DA18FE56301304ACF43B600065775871621B80C7CCAD9C1C0DC451B4FBB9ADBDF46DB7DB1B054AB2EF80C29F0766223 |
Malicious: | false |
Antivirus: |
|
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 10468208 |
Entropy (8bit): | 6.265606239082294 |
Encrypted: | false |
SSDEEP: | 196608:+SPBhORiYAXHiXUxY/iJ53IWhlVjEeIu2Y6U:++wkpHiXUxY/iJ53IWhlVjEeIZU |
MD5: | FFD67C1E24CB35DC109A24024B1BA7EC |
SHA1: | 99F545BC396878C7A53E98A79017D9531AF7C1F5 |
SHA-256: | 9AE98C06CBB0EA43C5CD6B5725310C008C65E46072421A1118CB88E1DE9A8B92 |
SHA-512: | E1A865E685D2D3BACD0916D4238A79462519D887FEB273A251120BB6AF2B4481D025F3B21CE9A1A95A49371A0AA3ECF072175BA756974E831DBFDE1F0FEAEB79 |
Malicious: | false |
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1096 |
Entropy (8bit): | 5.13006727705212 |
Encrypted: | false |
SSDEEP: | 24:36DiJHxRHuyPP3GtIHw1Gg9QH+sUW8Ok4F+d1o36qjFD:36DiJzfPvGt7ICQH+sfIte36AFD |
MD5: | 4D42118D35941E0F664DDDBD83F633C5 |
SHA1: | 2B21EC5F20FE961D15F2B58EFB1368E66D202E5C |
SHA-256: | 5154E165BD6C2CC0CFBCD8916498C7ABAB0497923BAFCD5CB07673FE8480087D |
SHA-512: | 3FFBBA2E4CD689F362378F6B0F6060571F57E228D3755BDD308283BE6CBBEF8C2E84BEB5FCF73E0C3C81CD944D01EE3FCF141733C4D8B3B0162E543E0B9F3E63 |
Malicious: | false |
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 9453630 |
Entropy (8bit): | 4.7764843234558665 |
Encrypted: | false |
SSDEEP: | 24576:h+QQf6Ox6x5n1nZwReXe1GmfL6k6T6W6r656+eGj/dBIp+:oAZeGLp |
MD5: | AAEA51A605688FCB2F178FD60E4CA64C |
SHA1: | 69D4791BF3CFEDB68BC4D8F766878103578171CB |
SHA-256: | 96837A4A521A61BD3D34F2F660E29902D228AAEC501EEB2A84403F1926C3DF9D |
SHA-512: | D328BF2F9FF7372A716A09E5882B9E3C0051B0135412B3258453085DB1DE2C7699C8AAE24EDFACA7798F468802DB975977C9976E19FCA84FFFE884BF8594C33E |
Malicious: | false |
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 151856 |
Entropy (8bit): | 7.916234678329522 |
Encrypted: | false |
SSDEEP: | 3072:iz8JCGIdkwTPaNkx0auKdL2o418Gb0+VRLf0ld0GY3cQ3ERVm2I:iz81Idk8aqT5K18Gb0OV8ld0GecQ3Er2 |
MD5: | CB4F128469CD84711ED1C9C02212C7A8 |
SHA1: | 8AE60303BE80B74163D5C4132DE4A465A1EAFC52 |
SHA-256: | 7DD5485DEF22A53C0635EFDF8AE900F147EC8C8A22B9ED71C24668075DD605D3 |
SHA-512: | 0F0FEBE4EE321EB09D6A841FE3460D1F5B657B449058653111E7D0F7A9F36620B3D30369E367235948529409A6CE0CE625AEDE0C61B60926DEC4D2C308306277 |
Malicious: | false |
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 228784 |
Entropy (8bit): | 7.9464015763250755 |
Encrypted: | false |
SSDEEP: | 6144:3DQYajN6svyABnI86fTugx5GMRejnbdZnVE6YoppO4:cfjN6svyABOa6edhVELoXO4 |
MD5: | E9C1423FE5D139A4C88BA8B107573536 |
SHA1: | 46D3EFE892044761F19844C4C4B8F9576F9CA43E |
SHA-256: | 2408969599D3953AAE2FB36008E4D0711E30D0BC86FB4D03F8B0577D43C649FA |
SHA-512: | ABF8D4341C6DE9C722168D0A9CF7D9BAC5F491E1C9BEDFE10B69096DCC2EF2CD08FF4D0E7C9B499C9D1F45FDB053EAFC31ADD39D13C8287760F9304AF0727BF4 |
Malicious: | false |
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 4916728 |
Entropy (8bit): | 6.398031738914566 |
Encrypted: | false |
SSDEEP: | 49152:hCZnRO4XyM53Rkq4ypQqdoRpmruVNYvkaRwvdiD0N+YEzI4og/RfzHLeHTRhFRN1:oG2QCwmHjnog/pzHAo/Ayc |
MD5: | A7B7470C347F84365FFE1B2072B4F95C |
SHA1: | 57A96F6FB326BA65B7F7016242132B3F9464C7A3 |
SHA-256: | AF7B99BE1B8770C0E4D18E43B04E81D11BDEB667FA6B07ADE7A88F4C5676BF9A |
SHA-512: | 83391A219631F750499FD9642D59EC80FB377C378997B302D10762E83325551BB97C1086B181FFF0521B1CA933E518EAB71A44A3578A23691F215EBB1DCE463D |
Malicious: | false |
Antivirus: |
|
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2682880 |
Entropy (8bit): | 6.698550951912994 |
Encrypted: | false |
SSDEEP: | 49152:r1nRu1gjn93AXtsX7I8g4AScbz6Ox+pen6yfmb+ST1PqRrY3:rJsf83Sn6Ox+tP53 |
MD5: | BF71F43A11049F853E72C0B1552926BC |
SHA1: | 75BCC1F3F5E515491B32202AC3FAB2E2F4F40AA5 |
SHA-256: | 1178EBC025D6309975AA35DC37E3D9B400B5EF0B17EE4EE70E8C7F0585DC5F62 |
SHA-512: | 8AC6C94D49A33DAC22EDC0A73B95D09A5DA18FE56301304ACF43B600065775871621B80C7CCAD9C1C0DC451B4FBB9ADBDF46DB7DB1B054AB2EF80C29F0766223 |
Malicious: | false |
Antivirus: |
|
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 10468208 |
Entropy (8bit): | 6.265606239082294 |
Encrypted: | false |
SSDEEP: | 196608:+SPBhORiYAXHiXUxY/iJ53IWhlVjEeIu2Y6U:++wkpHiXUxY/iJ53IWhlVjEeIZU |
MD5: | FFD67C1E24CB35DC109A24024B1BA7EC |
SHA1: | 99F545BC396878C7A53E98A79017D9531AF7C1F5 |
SHA-256: | 9AE98C06CBB0EA43C5CD6B5725310C008C65E46072421A1118CB88E1DE9A8B92 |
SHA-512: | E1A865E685D2D3BACD0916D4238A79462519D887FEB273A251120BB6AF2B4481D025F3B21CE9A1A95A49371A0AA3ECF072175BA756974E831DBFDE1F0FEAEB79 |
Malicious: | false |
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 481280 |
Entropy (8bit): | 6.374241312701813 |
Encrypted: | false |
SSDEEP: | 6144:Qmi12qlTgeUDsnkcM2nDl83BgENhYCqNLfY24M:Qmk2qxgeUDsNnDcgENhYRNLfU |
MD5: | 5E461770B31BB938599F8786B1C885BB |
SHA1: | EC1428334166A3E569EF1D6B86392741BAD0D427 |
SHA-256: | 10CAA1A1E84D9A068A807F39DE6E502E6386261B07B37FFB8D382AF1FA814023 |
SHA-512: | B9577D55A8C373DB85F7B800AB2F616D3D0FFA6F532980B1F88D64B9E07356CEB2A9AAE9550BAA158A704045B7592C438DAEF80814C318EBA9DDE43FA061C0C4 |
Malicious: | false |
Antivirus: |
|
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 8049152 |
Entropy (8bit): | 6.505755773673647 |
Encrypted: | false |
SSDEEP: | 98304:zjY0cdUNfie4BN5SLnSy9/I+0Tv1XC3rbo:zjY2KeVtIhtmrM |
MD5: | AC8EACBC17FA238BEC9CD53583829D4F |
SHA1: | AED3A4B73DD6CAEC9302FED52EF844EF1F210468 |
SHA-256: | D2B525E5B5CA3EEF75CD5191D563F5F01008FD94B643189D4B0AFA502F34963A |
SHA-512: | 5105179D62287F53C41F20806D13B2FFCC1C9B626C1295577F867ADB247F5F93618621DC64CDB7EDA2DED513EB3E666E5BE26B109D8B34E38234665F3F4B5C90 |
Malicious: | false |
Antivirus: |
|
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 506356 |
Entropy (8bit): | 5.4104262865120925 |
Encrypted: | false |
SSDEEP: | 12288:VoFfnK2L9o38a6qyC/GT3q+62+H2JynwaD4IJzio0vpI5gJ2aU+tBHr+21s9YqpQ:VoZK2L9osa6qV/Sa+62+H2JynwaD4IJS |
MD5: | E48860FE82EF022FFAB38CBC4C96DFFC |
SHA1: | A832FA66BFDDABF3AE7F219CF379F66D2903162A |
SHA-256: | E2470090A09CA500679E68BB5E3B1ACC35A5873FEA4F93AF25A23C82122F2C13 |
SHA-512: | E4D0973CA7E59091C482D2ACC384AA48EC87D3CE72D8D42A03A183B230FD209E085A4E907473A05D02D41E15EBC527DF942774C23B4804C150367FCD727AF7B1 |
Malicious: | false |
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 818902 |
Entropy (8bit): | 4.888102842697675 |
Encrypted: | false |
SSDEEP: | 24576:O3iPSTZhZyOqxlVGZj+WRez7I5zYiMBgVTq+XG/6+7qPZx:O3iP45V |
MD5: | 5D55F8A437E65DD7962337857E78970B |
SHA1: | B83D6A98718459951DC9272344CFDE8F1291C05B |
SHA-256: | F7D24B9CD21562665BA250CAEE9C280A1C95EFEA4B5F37D1AFDD36C369A61B87 |
SHA-512: | 02CB8B52A58DAE796DECBFF871C45311396B29A7BA1737320B73C817CB3C417C447169940148958D7B741456B009C08461FB43F89A3A0205606FB407579341FF |
Malicious: | false |
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 895310 |
Entropy (8bit): | 4.91367700242768 |
Encrypted: | false |
SSDEEP: | 12288:4xo83mqeBjhS/l/RecEX4YvPU5pb3k8O5QNpJQKDBAGB:r9vH5mQi |
MD5: | C49F4AFCA050466AF21212E88860F8FE |
SHA1: | ADDDF85EA75A24B92F1FCC4FE07A81A35D08F2C4 |
SHA-256: | 11DF77DE069364D7F0E2B42FD2B7291ABD8DA5E4FA2D69A1B82C12A98A89DD00 |
SHA-512: | 6060D96A59E424F9A630E70EFCED6866C074F8BF0C89273A28F9766E8C2B625BC80EA5C691A8C33C1F11A3CF1C4D34D96CDACB19A2CA61B61FCD45365D138843 |
Malicious: | false |
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 935663 |
Entropy (8bit): | 4.6599828103801215 |
Encrypted: | false |
SSDEEP: | 24576:7wCIvq65SLYazQkEC/UTVbOVHv373ZfM3aAKZyVDuZWlumpfd2yo5ybXFRoZQ8Eu:7wCIvq65SLYn+UTVbOVHv373ZE3adyVM |
MD5: | E6608ECC589E87A6F78F9CE553EC2609 |
SHA1: | 9FDB2FF6291549DF773BA243B3A92B984B15BDF6 |
SHA-256: | 97EF7984074775282B68DCA5D5A469EFDB2B22474EE6669FDFB5197D3F1B3768 |
SHA-512: | 25450B23ACC962BE85977EF08BE9B484C2A9127775039C521158C1801CD57D5781BCD8D5B8784F8A8B9403CE44B59964A20DBE36CE181F1D239143B22B53D5E2 |
Malicious: | false |
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1205172 |
Entropy (8bit): | 4.277979519576092 |
Encrypted: | false |
SSDEEP: | 3072:8JwgtHnTLCGplsOmf9MCxQ6v2cq/jOxdCfYa6CHXk1cCrWBbY0QH5qYsqvA1:8SuHzsOmlMCxQG8HXycCrWBbs5Iqm |
MD5: | E9D2D6A60E167AD6FC9617B3F82247F2 |
SHA1: | 3D028CC6B04EB6879A5C01FA24F280FBA43A656F |
SHA-256: | E3F2A4B955B9A701829CD71D22BDCC562A67BC7926A3A349D99DFA2C5863BDF5 |
SHA-512: | E588EB68B853B9D39A483081B7D622DC3D7D4EEA0292BF15E8462F4FB3936BD803A3F077C3583A93DE42468CF53FA1898625E11A4E358729F50136F818D2C7F3 |
Malicious: | false |
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 569406 |
Entropy (8bit): | 5.404571240565211 |
Encrypted: | false |
SSDEEP: | 12288:dgsZ7tRE1DFCieke3Rj5PqF4N3Mw2juwHzejm0t3lvyb1TDn/RCHYwjcXI2lLEYX:RkosfRUeGiMNb5z75iUrab |
MD5: | 2C116E3A86DBBD83A0C4C3DED4EF4AB5 |
SHA1: | C88668807D5BCFFEF0FD8FB379DFCBD33C2A8A2F |
SHA-256: | 07C60044A97A4DF15D7061B2833E9CBE11EFA26B095FC7AEC269770EB36431BB |
SHA-512: | 235EECD6D39FE01E1A88D391B3040F8B62A31EED91E6D0923B3D0C20AA7951C3CEC8A4E3299046ACE03CD095BB0A97F471E3C7BF40BE0FD2B0A2F6A96F2804A7 |
Malicious: | false |
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 585751 |
Entropy (8bit): | 5.84253375707667 |
Encrypted: | false |
SSDEEP: | 6144:uo5vBQefQ3M0eqcZRnYAyeB2AC3O58QCoMbdNOlfzSBlpByI8Q8:uQv5f6Bdu9YAySv58QCoMbdNOZzSnpBI |
MD5: | 3607F223A1FDD2D016FA7A3761F26C54 |
SHA1: | 90A50FEA74A4982ABBA1AE86CDB08533D4180325 |
SHA-256: | 85699626522C2A8EB1EFA3354C570057C3F665217D9D02A5D366A7C9048DB59C |
SHA-512: | 80D5230FCA6398732B8003BBC73200C724682D05A743572997323CBAD2F43DE483E7840DAA748E069404D5FEF84A48958254C49EDB799742822C499990E2B85B |
Malicious: | false |
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 530871 |
Entropy (8bit): | 5.450904981636458 |
Encrypted: | false |
SSDEEP: | 6144:gHUipklzVZs15uHV9D1se8KnwlQGyJwiVobR/0aHtG5Vxvdet+id4YF7wv:Q1/EVCKRWo5VtdY8 |
MD5: | C22B2477E29DDBD8BCF1DF1B51B738A5 |
SHA1: | 482F5591E4938EE86AB2C2339FE63ED84D17EA8D |
SHA-256: | 4738F526D617A8EAE389E239925019BA73A7AB9D584F512B5E1000C9C3E81AF6 |
SHA-512: | CB23D13AB54DE8B232530EF5B9AC8AEA6BE942C32375323C5A88438AB79860D5B38C94642A35F2A42BE233DCF3D1F1D7FF7E2675DE9DAABABDFBD27B73B90FA9 |
Malicious: | false |
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 566516 |
Entropy (8bit): | 5.503421337268029 |
Encrypted: | false |
SSDEEP: | 12288:rq/9GW6+3K7Up8gOaA93kt5RMDUQ+/CO3:rIb6+3K7Up8gOaAV45RMDWCO3 |
MD5: | 112A6F63C2964D6B5502DA3F3F5CAFED |
SHA1: | E4590D638A3F18AAF282F33A42221716CC9F8330 |
SHA-256: | A6A0AB85E5FB2988778CEAB4FA526659574F1077EA063BB585C9185B12EB9874 |
SHA-512: | F902F2D92EA2D377F9223710E732A71F8127AF92C3FF9709315538AE29D50FBBDBA4F68376ECEE89735BE53D44683FB6C9050BCC8CA5ADF87FFC87C0E32F8D22 |
Malicious: | false |
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1026214 |
Entropy (8bit): | 4.744029977766451 |
Encrypted: | false |
SSDEEP: | 24576:Kt3lYcaPdGgxh1hxFGiYX9wK8JXDsSamqHB3D2Np6Wkj1m1mVT8yiRNQKPCt2rDQ:0YcaPdGgxh1hxFGiYX9wK8JXDsSamqHn |
MD5: | F86FEBA0F29BACAE666E5DAF69C99C3F |
SHA1: | 4B1A3CD58E455D9C9A8E6CA9EA8E26556295642E |
SHA-256: | 6A2DB5D60532C50501F247773AA225CC463772925FEDD6959AF4F64D69BCFE33 |
SHA-512: | 745F9C7224253F13090B6CCDADB629E3920F601A2CBA05939C372A30C3D05B93E7912B709F02B4C312FACDD044969804B8E221A53B4AFB5D725B6D08D54B9102 |
Malicious: | false |
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 461229 |
Entropy (8bit): | 5.519769884527008 |
Encrypted: | false |
SSDEEP: | 6144:2zyvXgRSCd98ZxE+J1RMP9ePsHjfaYIx556S5xTxVBctRVod:9oRSCdaZxdRMwsHO95NxZd |
MD5: | 5AB73DB0270109C3331B6026A6AF105C |
SHA1: | AC4CE9AC70CD9D69580E21919AEFC4AA98D7EFB3 |
SHA-256: | 210E37E95D20F65A0D414EFEEA4A2BF2929C6D58C0C69F6B6E78742AB07BF09B |
SHA-512: | EB70D001A5AC01144124F807AF033B1618EBDA032DE62B7565CCB2F64DD2CED003AF6922313E192934EC93ED23003324A3E03BEAB88E68F177D689632ABBAB52 |
Malicious: | false |
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 464974 |
Entropy (8bit): | 5.5133153950471625 |
Encrypted: | false |
SSDEEP: | 6144:4UiY4OkDkhhA/4muMP9e2qDWfaYe1Vcg5xdxOng5H/thTwB:4I4BDkhhYuM9qDvn5zxZTwB |
MD5: | 9BCE1A4C9A06D63E8B4F7EB40535C080 |
SHA1: | 11BC263876228D22B0BEE57C6BA80C523C79E5CC |
SHA-256: | 0013A8EFED8A17A93B0E718FB41652B8A2A6ED38128575CEE89A258134167E41 |
SHA-512: | B6D1EA3A81CB1B32EBA16A1CB4F337CBD15F28EFEA1E31EBF12EFB795C33F6EEA70ABBFA4FED1B241103A8F0865CB2DD138DB598C9CFBDCE34497D46119E7566 |
Malicious: | false |
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 560448 |
Entropy (8bit): | 5.37097339675972 |
Encrypted: | false |
SSDEEP: | 6144:Q3vIhrXtsE/nPzAg9puYdwqro8U5zivZ+XYidR:hScnfpoq65ziB+FR |
MD5: | BF24B0E8F3B5216A513D43E2C02D30E0 |
SHA1: | 53B76E36C7FF1D3D7B3B0C782C9933EF1FA5D0E3 |
SHA-256: | DD5FD63219FD11DA697687B6DDEAAB517109D2395762088C41C19573E7EDFE0E |
SHA-512: | F5C5332717B3AB7F93BAB35D20770883D4D4979E89CACC64254FF5D7EC884A48AC70273F47CB1362097F273762B746FD0548C7F9A6979B464419A05C93455E35 |
Malicious: | false |
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 560253 |
Entropy (8bit): | 5.350393284578339 |
Encrypted: | false |
SSDEEP: | 6144:jXKFTLLUUjE5XLHYc1RDVFa7bg0Hzp3+mc8uM53xnjJ5Jp2dCFaZ6PZcHu:7KFjnjaY+xFcTp48uMDnjJ5H2gF0O |
MD5: | 4D7AD9F98967F3636B98F3EE3BC9BEFB |
SHA1: | 777DF13BF07FBB06C2151CED861F32F3F2EF34A5 |
SHA-256: | 0E6E9B2F7810D1E69B5C4CFFA86A8F356BC3530F89DB59B6278E06A563B21135 |
SHA-512: | 5D8A1667D13006C4C9F7BCF5B37BFE2F87044CD7302FBFE566580A5E6F9E4B339B5BD117312A59052E83C3F63E51623FE7FC6165F30AC67E07B2F29486B40EAE |
Malicious: | false |
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 509761 |
Entropy (8bit): | 5.452749115455494 |
Encrypted: | false |
SSDEEP: | 6144:qICqnHGBIeqayJ1HNR5oSPg+syn/Fb0smFoLSdDWA/P5io50WxH5vMJRyiCKMLa4:q0HKIeFQoWkSpmFoaMWxH5vMNW |
MD5: | C0610F85A202BCA2F540756ACE2323E7 |
SHA1: | F770E638E59FDD47484CA51F1C1F42CD933616CA |
SHA-256: | 77822B71398A329C43B57D9D8C0B27FFF7F30C3A35FBD7850161549A23B0B9B2 |
SHA-512: | 386B65CE118EE0602DFD195290F922C5ABB7B38BF974B04EE4477F765D507CB4C41A0B443930ECA2AAE5B4E1DE23D8013BA241EBBB99713DA4D26DF46E9AA29C |
Malicious: | false |
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 833293 |
Entropy (8bit): | 5.031835002910696 |
Encrypted: | false |
SSDEEP: | 24576:WO8u313uyqoT+seq+LRmX1loTUOmdAQifaQ2XxFMJGk62YhwdrigHMX4qOzUrWd2:WpV5dU |
MD5: | FD518EBBA4A93DA744A4D9E81E5F350B |
SHA1: | 7C166D73FC2ACFFFA02D90CDAA2BC9D021432BEF |
SHA-256: | BE53BDE0194B76F8324B21B3528644A7A59C40579266C1A837A95B962E9E70DF |
SHA-512: | D1DCAD09F342C1C7D41678B9AFF7EC342151349D203DE9FE8417906EF632D297FFF58C34EE56AC9F4C7117CF9709A7D7CBC26BEB0F7FF7911A5B5DF03891C092 |
Malicious: | false |
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 520334 |
Entropy (8bit): | 5.422792193502567 |
Encrypted: | false |
SSDEEP: | 6144:hjtSFHk5y19uAA8r87LSzrFSrRUysLk+hOEcraV2LN5RwgUH06nIp0Wac9ondnHa:y5Gy19nAPWFIaW5RwgUU6nIp0Waq/jYM |
MD5: | 6D7AADDB1365B3EFEE94D4C510A3002E |
SHA1: | 2A970204894C5AC163C980EC0FAC2DBD1711E5B5 |
SHA-256: | 11B0B9B0F74D01F16DB7AA49BE9DCEEB55FDE9DA56F17419C4BCA159CDCAE274 |
SHA-512: | F44BAB9CEE552DDDAC17D4AC1949870943CF138B3FDB0E649E8827ACB6DE9528DD9CF738757E5B495587E165D1C750B8BCC6205BDD029A01EB92AECAB22BA49F |
Malicious: | false |
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 587316 |
Entropy (8bit): | 5.201691175706959 |
Encrypted: | false |
SSDEEP: | 6144:KoCySmeMLtmQ3zGvjQypDQFLCH2MYFGTdmb5SYw7jMoQcAsNqK:KcRmQjMcb547/ |
MD5: | C744B92C8FEFF1C026034F214DA59ACA |
SHA1: | 95780D3374841EFDBC0D8A46CDDC46BB860A26E0 |
SHA-256: | D7FDC7FD08DCC421BC8AAAE3FDC72599C60A3B96F05989A3E46736F0DE06E745 |
SHA-512: | EEEFC73474642E75DA61056F2841E7CFEB8D8475BE55A39852DFE7DE8A972F7D86E9D1DF4614B3CA3AE4FB01B68E5CED664BC8E46CCFC94F44B06E29A5035B43 |
Malicious: | false |
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 605474 |
Entropy (8bit): | 5.383379538018203 |
Encrypted: | false |
SSDEEP: | 12288:NFVbbZ9VMANR0yjZLqyluvpTZF6QuaMVWXKzEtSlZsZFMYnYFfLh9ujzl4m8zxpQ:NTLNRwVUVQ95Pt |
MD5: | 77D7BAD0F613B4C433986D03C5B7FC50 |
SHA1: | 6367D81A1CFD3E9B09861461036B70FF708EB83A |
SHA-256: | 6D669EA88E1FA4B253BF27E36BE05C9EAEA4286FEF6D4930518BA97EA7B2AB01 |
SHA-512: | 2EAE203462366F70FB05A9C11016180BA76128937D0DF0A162C73BACBE1E7B0337F4D655E761DAF6E05F5CBB51AD296897871AE8FCBD3D87AF4F989923915C77 |
Malicious: | false |
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1185869 |
Entropy (8bit): | 4.315347790487847 |
Encrypted: | false |
SSDEEP: | 3072:l70V+mcpemvwy2y0mM1VKIajZkkq4kkpyAfIwjAwREJKVMjNiT7llj63rFulPCpN:KV2XPu11VKsLku0jNl55qPhZ1XFR |
MD5: | 7667D758F90E0D3C147DA74BA06425DE |
SHA1: | A453E2F358095849612756A1FE6E2849E1F3F7FB |
SHA-256: | 94CB050BD6ED8E588FC0148123C0440F3A1BC8B459AB4CA54F954D098EEB2A46 |
SHA-512: | 0B469FDE98B8558A8A037A7CAE1066FF343D1355168E12FCFD80E9AAE9C870525FBF4113D7A282728A2E40B606108430E967B574104E8D192BE234A3EDA4D09A |
Malicious: | false |
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 730564 |
Entropy (8bit): | 4.619748763379673 |
Encrypted: | false |
SSDEEP: | 12288:PY5uhQh43XyfhR5ir+yc/fWqu/DK6oiACpXbDeQCajL5n6ltE+t+hO5xNmm++nA+:WaPz5b+l |
MD5: | A4C49DE130CC39EC8454A03171E0AF2E |
SHA1: | BE70FC9C3096FDE83E90A78DEA655D4F20DB545E |
SHA-256: | 1713E7CD1B63853068D3A8CB15D8C11DA417ACE8BE914C27789086726C40DA94 |
SHA-512: | A8855E65850364E488EA047489108BD133CC280FF6AA689E5A409C6C46A138F8D3209B9650557D9E47E62217230D89D5DB71D256C52100C169493364CC4EA894 |
Malicious: | false |
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1250569 |
Entropy (8bit): | 4.291162582500105 |
Encrypted: | false |
SSDEEP: | 3072:a0IodMSdgLBUAKBrLB63ZV/BB0ZV1dKuxlRLiW3VTOEOTByntDPtDlYpRYs4fe/I:aWdMSaeAKP638M5eKKh+y |
MD5: | B6213BC189D5D80607E756707DFA9F67 |
SHA1: | 8249B93BB4F6A861F0D42A5D950E0E0F8C03DF04 |
SHA-256: | AF4F84011A174AAD128B5801A5BD19C96364B984AF20511BD61EED9F1AAB0A33 |
SHA-512: | 1EB734EA48A8ED03AAF939315792CE9EC6A58DDF6AB9C4801C8018F43A27CDB1699F3EC28ADA7B8CA649AE7F134F9A313835AA8240E3F85962535A898C6BEC7D |
Malicious: | false |
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 564848 |
Entropy (8bit): | 5.510732589882541 |
Encrypted: | false |
SSDEEP: | 3072:SYfIJPJGp2Xbs/kex1s62OwaBV08H0rxy+wezXgr0wB+6hRQ6OSAqy1pYpvd0uP2:SGosp2LER2kiXwXxhAhR25jhYe3RkMK |
MD5: | D71FE557583C8DF4ED043233B9C2BF19 |
SHA1: | A7C86BA07A8465888B17BA1B7B9C212C28E6D989 |
SHA-256: | 723C65592D15311D33FE35B2865849CCCFFBBF58A280859AF972C77DF96E14D0 |
SHA-512: | D4A98E9D3C80D3CF1B71D3E63FA402462ED06E65CC7449D7253064D7B913140D49DA8D01BC45D5A6751DFEAED751DBFA4205D7F14A6E10F746783896E262310F |
Malicious: | false |
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 609356 |
Entropy (8bit): | 5.637090744563754 |
Encrypted: | false |
SSDEEP: | 6144:Fr5gRptZU80LM9rHs21fNAAbkit2V5RlVFZfpAaYGN2enVeWvRwnjDi54RYsR1tl:F29y/SAjV5RlV28HJd5kA7S |
MD5: | 2515BB367F56F282657B3DD3B9FFCBC3 |
SHA1: | 8CC350E359F1CFEFDF0CE3B016109DD483D45A8E |
SHA-256: | B4E6A1135DE8BDC42C04F4DB4EB1CE48256F18EB46A5146A21010B6165A90E7A |
SHA-512: | 779A77B3380F08DFB1D1E9BD65806F3D5AB56619D040BD6ECC9726C17944F4D0C3A619EDEE06D638549250FBF4C6A2BE46CD6196A3A8862D184A68D45D6F6D72 |
Malicious: | false |
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 502641 |
Entropy (8bit): | 5.37827588749491 |
Encrypted: | false |
SSDEEP: | 6144:9kLEQ8KEQMlk0YVRwlxD5uQgif+eVnjHF7TmiZIPk5V3pmwkK53vCqHi4pH7:7cDMYVyXDhgKVnjHF/m8Ic5V3pl7 |
MD5: | 766E11F881396ECD982F0B9DFEB0675D |
SHA1: | 210812C8C853AE2CED85AA8486E9872844201ADD |
SHA-256: | E95AC873B16983EF8A9019FC7141BD56315E082F531D37C5B8377645226FE5EE |
SHA-512: | FAB3AB4E70137CFE73F883A407F40D6B22AFD2461BFDCCAD720FB4E3E37B50C56CAE61FFD8044F6DC463CB8CBFA03BE989AB42304A29FF9432A6588580D31C87 |
Malicious: | false |
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 552524 |
Entropy (8bit): | 5.290672728769294 |
Encrypted: | false |
SSDEEP: | 6144:STns32kZ6S7fjORLDrwTx92/Fzw6N8uESIqRRRsO1St7VjRT9TjeUaCnfxLUAppC:usGu7qRffelZii8lZT91q8/5FZIm |
MD5: | 94C772C21818F1DF64179D69695A89FB |
SHA1: | 54CA1A6639F92F9D43CFE2ADAA3EAC2F1764292C |
SHA-256: | E950434E4449EDEC533BB63801A8AFFE17CDA7BB998B7F9FE06BE15E7E94111B |
SHA-512: | 078F14CB61BA69D2904DD9FC1946A053866A47741CBD7D6A336E4B39749C21BD8D1D096BD832B6864D15E0E142014F23F347BA082DCC0D2164468DCFD3E4615F |
Malicious: | false |
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 675334 |
Entropy (8bit): | 5.689802007234172 |
Encrypted: | false |
SSDEEP: | 6144:Khxu5BDUDz/LXgLA9NlW1XpZaQ2dVBbs5zNpeV7:KW5S/zgsmXpZaQ2dVG5zNI |
MD5: | 876EFF616B8BE74165D98AF07A44A89D |
SHA1: | B36BEF68C8299ABB376396299B6BD5A972789047 |
SHA-256: | 0E658EE3D63263B3A298DE006DE50F47510083647312191F2A8706ED8A48CEDF |
SHA-512: | 3865D8E9B6E0CBCEE0E837A014ECF6507F56488B5B64F18FDEF13646CF5DA00AE0E6F5DFB26DE28E34EC857CD83780E7DB2DB17195C775BB953BAE228178C8BC |
Malicious: | false |
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1357072 |
Entropy (8bit): | 4.227601032757716 |
Encrypted: | false |
SSDEEP: | 12288:7K4Z49Q6tD4QOnyFUJM77K5OPWO4Da1bjr:7vWcb5UW0 |
MD5: | BB4CA36F22833DBAF5C471B27B9333F0 |
SHA1: | 3F066305D5AB4C10F41E62E45EB657698A4EA6AC |
SHA-256: | 945A5C32C9B5A11EB710BF20F8E66FEC770F470527C4C995BDE82C13E48F80FC |
SHA-512: | 8D5EA3AE608A10AAA2516542BC94D347A90437ACCBFA56FA9DE68432486D70AEB9D7DF51775340219A21C53A16B3357D9ACAFA4543E28E8EE9681DB12E51D282 |
Malicious: | false |
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 570460 |
Entropy (8bit): | 6.060524950225244 |
Encrypted: | false |
SSDEEP: | 12288:BnxekHvBTptS2NHOXTTSIyxxMSAG0GlzRXfwj30t8OQ4E3heOGY5yCqhog/75d6P:/vxIYr51KeHXU |
MD5: | BB86F92AAFA4FA6A5A43DC836C51CB2A |
SHA1: | 8ECC78B69ADE046F6BB18529682A800596484B84 |
SHA-256: | 7234A1390377451087A764BD31C817A5CE6695FA517119E7DCCBA642FAC65E43 |
SHA-512: | 1CFA9AFAB366518F6E13C8ED4CE8ADDB3984E360263412486B7920F4B20C35B3E9DD7479B09FA879942E83BC112C6E9FCC70A56B72F261540648C2FECA2AD4B4 |
Malicious: | false |
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 611793 |
Entropy (8bit): | 5.633524979263792 |
Encrypted: | false |
SSDEEP: | 12288:zT2knvNMLM8rPedJaH9qs50zjGwaRpw6SNM:71M5KVs5KGdRpr |
MD5: | 20906AEC4A21BCBB8BC8BAB067075BA6 |
SHA1: | 369DA9C1567D4376852CEBDB87CD9213DC4BD321 |
SHA-256: | A1257D10E673311747363E6929832E70F36668B1FC0D6A5DDD550FE88007AA58 |
SHA-512: | 8D1EE40BFF980B889AF83B95FA408BDDF2FF5D257F532D2DA46BFC3DDBCC31B9CF14B473FDFCA1A574C0316FD689A424AE241E9BCC533B7DFE0C7203D4B252FE |
Malicious: | false |
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 611059 |
Entropy (8bit): | 5.633522991400227 |
Encrypted: | false |
SSDEEP: | 12288:hCNXccv2Js+zNy8JSvHkf5mF4TV5AzYg19:hCNc++zNy8JSPkf5mFTzR19 |
MD5: | 9F9D09B8E8B943733574C32E924CC834 |
SHA1: | CD68A843884AEC9EEBA36A287902E5B39F128F82 |
SHA-256: | 3E3C9953E679F391167A5D5536A4ACE4D56558909AC8AD5B9F08650254D99F40 |
SHA-512: | 8062EC8F8CA2507AC8E10D0A9A8A76AB02FEAB8993989043DBDFCE3807D216087017ED14E6E9F52D87A2DEB87AE5A69393E5D6C6963472ED98ECB22FC45D594E |
Malicious: | false |
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1413072 |
Entropy (8bit): | 4.261582511910921 |
Encrypted: | false |
SSDEEP: | 24576:q5T76ZRKuKfGBP1tX3tD3e55HY6bXaS3t:6Mk55 |
MD5: | 39D4A5ED8CF7C8E0DF946220FBFC0F68 |
SHA1: | 70794849B41D00F2B895F1211A6BAAAE3FA7D261 |
SHA-256: | 87384DB1DDCAC012B0B40EC89DAF47EBBBCF1497705F023A6983FB2470E4ABD6 |
SHA-512: | AC992B9CEBC2FD51F7477B36F1AA4D9157A84C3023949C02EA236D909C78FB5CCCE28DD213C089820131EE3F669164529DAF58901766630EBCF40546D33E132E |
Malicious: | false |
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1163258 |
Entropy (8bit): | 4.291083673562533 |
Encrypted: | false |
SSDEEP: | 6144:b17lQq7uu0DacX+KZmCneDsQcVgL5UmGQ0I:bB2q730DacX/ZHeDsQcVs5UmGQ0I |
MD5: | 649E76B6666096A2258B942745FF9FE1 |
SHA1: | 82EDF8CA68DFF0CAA36B17901C1E12A17172FA51 |
SHA-256: | 039F4E0176C38867FEF57482825D043FA63BF1356C85EAB0FC665F118DB125E4 |
SHA-512: | 92F51140416CD6DD53109DDCC1EE24C1D26999DE5CD48A11E6954DBBC985298C1B90C0B4A7BBD8701A2737B71340E8A257E8B1ACE85FF3B4876B714C60BEFDCE |
Malicious: | false |
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 527328 |
Entropy (8bit): | 5.2497576346833865 |
Encrypted: | false |
SSDEEP: | 6144:f7ssvP0riPt7BtWMxsvHN3LpRlBJdG4UcuS95b8AAUGIUZf0Vf+:o+PtdBRxyH1lB6I95npG7 |
MD5: | 10A8463902589CFDC41C1580373B7728 |
SHA1: | A2DD9BA97DAD457826F6043D80F756B8C13DCB1B |
SHA-256: | 354D7A3FC5C9F6E965F54DA155D66EAFC8E5B5EAB08CD782E9FDC379A5829E48 |
SHA-512: | 02BA5C950E2BE0C3E5F087D25E4D80AE544E53940A93A6381833BDF6538DFCB6FE51261B60AA376C2AAE8654717560094FBFDD29821183F1B32068F26BE092B9 |
Malicious: | false |
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 511244 |
Entropy (8bit): | 5.425939634203885 |
Encrypted: | false |
SSDEEP: | 12288:+DvXutIbnwQ5Op7f1IxJb6dkbD5EKQbW7pDrvt:mPutzPKb6dkbD5fQbiRB |
MD5: | 8FF27E7560B021587C15EB125C067A54 |
SHA1: | 8056CE2F55E940EC18D54B9EF75E8793C9A9CE66 |
SHA-256: | 56B4C3973462A81F8EEB3FF84843E039940589FC62A128FBE5D91462F9092095 |
SHA-512: | B7179C9AAEDEAC82F7EFC699E2B3FDF6E5500F10E87AA6FCD1F378E68A79E39C26758F0DE4D69C07FC8BCCE145889635A1DF0324EB35BD1D3D1C11F5B0220347 |
Malicious: | false |
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 528498 |
Entropy (8bit): | 5.364144888009966 |
Encrypted: | false |
SSDEEP: | 12288:+sv5HlbJ9WQuskxgb521Ex5btIQzbIrqqn9EOTy:nHlbJ9WQus9521Ex5biQzbIrqqn9v2 |
MD5: | D59FED8986EEE2B9D406AD52D88CBCF5 |
SHA1: | F7E409E17723E21174361BC81E54BCEF269F40F7 |
SHA-256: | 619C61701B3A142733D23AD8C7117BC013867A842D3D1D572FAA56895AD8257E |
SHA-512: | 234AADDAA7677B39667B4078DC3A630D67B4F2AB7DF5CE763D509183A4D88E8F7BD1A231113B8A51418D577E4AA630860A7F2735C34EF59E0F65966CEF825597 |
Malicious: | false |
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 588233 |
Entropy (8bit): | 5.769089511508446 |
Encrypted: | false |
SSDEEP: | 12288:e3hoyTG7gWoOB/kce5XfQfu4VUd6HA9btHP3CUdhe3mTUnMAml1QhqGY5TGs4jcc:e3ZG7ghuMt1QhG5Xc |
MD5: | 4DCC61567580814E3B121A966A29B81E |
SHA1: | 4BFB71F05B9818FF59D8C7B116BCCC27BF9A7109 |
SHA-256: | 0913C3B10B593FE25C27A4B2C22D4A1F67098ABEA6CDCFBBB8EAD03D9B546DE6 |
SHA-512: | A160D965DE34A2454355B7FA889F187C94868F809802EBD840D941E9748C88158FA1941E8C372DBB2413056B74676817C7E405182237EF176071E908540D551C |
Malicious: | false |
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 553077 |
Entropy (8bit): | 5.4225709138338125 |
Encrypted: | false |
SSDEEP: | 6144:0w7cOZqVF2QfXKQQNBXBLmdnayV35vnXRCrEsRn/Nqs:P7cOZ62QfXKQ5fXZsR/NZ |
MD5: | 7C01408447B075044AB34B35BD369678 |
SHA1: | 968D8D819F47FB191D25A3DF6E9CD7A54811508B |
SHA-256: | 903A50517E3B6AFA8E17687F6C154FDF8C097E09088975A7CB0E243F682E3386 |
SHA-512: | 5E582670FC9318C442541F0B235C9F24B5BE9CF73850D4A97441E0C75D3C1ABDE36DBEA7880A5C69EA62E37EED38DFBF5054C1D728786CB6E74C66D06EB94F6C |
Malicious: | false |
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 556968 |
Entropy (8bit): | 5.396625499232934 |
Encrypted: | false |
SSDEEP: | 6144:fNc5PLRKXosA46Lv6/CieJVJJxhFIKTcfV7Z5Ij6ySRDi:6P1KLGLKZ5IjFSRe |
MD5: | F2EAFA0BD70B7FF64C64FA0D5590EBB3 |
SHA1: | 9A945C61D79E886F05F3B13CAD0420B020E7019E |
SHA-256: | 8BA5D7DD9100E14A51A9E77E2F8CEDE706978BFD21EAA6F334140D12AF6BA974 |
SHA-512: | ED032C0373CCC59F64AE709F3C462F1C1C55B1ABAF5B16398C9B64480EA5DF94AB35E6897DFD1F98E18296E12528E3F27150948849B0BBB0E91BFEF140C0BAC5 |
Malicious: | false |
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 576470 |
Entropy (8bit): | 5.451860588973451 |
Encrypted: | false |
SSDEEP: | 6144:GuC1GHLiqYkXb21WgAbyFohxwdNijkHGpq5Q5+U6Ys2tE/bBO3:GuCgmqYkXb2ZAGFo3wSACq5QcUXE/Y3 |
MD5: | 15DCB56E5A1BBCF32F6503D63B88DD16 |
SHA1: | D234839AFF1E18845488F47F04B7568E226C3124 |
SHA-256: | F360247BE07A19A0A5A2F4A46195AB2411EA3F634E86CD884EF59FA60E9B6B7B |
SHA-512: | 62B7E37F2BD9A3977ACE1D19FDFA76BF764719E670C2C0E887BFDDE5B132A3ABEDCBAADBEDA28883A5A464B0CFD9F2D9EF5BF85AA07F4DDB2156F516944E4CC9 |
Malicious: | false |
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 946445 |
Entropy (8bit): | 4.8317639115640985 |
Encrypted: | false |
SSDEEP: | 12288:JSfQjRo4YSWKCx/KHizJ9ZF1WAaWlapqSvDs/uTXb3YHVeXN2hVO3j/LSbzvMPsP:ozy5g3sm |
MD5: | E3FB9DA109ED5C909DC5B0E9FCDFEB31 |
SHA1: | FE85FCB1B7D5B9EEC082F793C617DD6AC36FB4F9 |
SHA-256: | 22F6C531E4660C6FA2BE6CCA19C4E617AB40D5AE47A9D3425DF811B88B989130 |
SHA-512: | CB28B7FB674BEAF0274CCF08A023A8094D5F3408741656F4149E1E531253AC80297DDEC11FFE2F53A8D38E24A48C01DCCDFF946F0383D7133927639BF7C2F00F |
Malicious: | false |
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 594641 |
Entropy (8bit): | 5.81367954238106 |
Encrypted: | false |
SSDEEP: | 12288:1Q+gClqsxkldrM8ixiq8U5nH7wM6IzWTjPxt9cU:+ClqsA/iF5bwcGtWU |
MD5: | 7773015ADBFD66D42B4A9CB11A29A7D4 |
SHA1: | BD96538A2FF6C8884A545A7B10495107FC1F8395 |
SHA-256: | BFD5B52A544428C5AAA4F418903610F1373C808C20110C145D95B34C51C7CF80 |
SHA-512: | E8ABCEFFFF4FE1B6B1957AD99288BCF562FED2CCAA8EC20EE369FC5D50A3FAD1EE823045860AD1028503F4DC730C5E816861BA5B2E0417433000DBE2DB6BE795 |
Malicious: | false |
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 570310 |
Entropy (8bit): | 5.483894833668148 |
Encrypted: | false |
SSDEEP: | 12288:vrWxzCkR/PcB2e+ojNK5eVfnWJUU+i/fzurqc:Cxmq/o/NK5eVf1i/fzuN |
MD5: | 33AA83936F6FC0EAD34F2D89A3F6D3CE |
SHA1: | 7E3A1DF02DAA63760E689F4A4BD6FB47FD888DE8 |
SHA-256: | F7539DF33EA860BC42A76047FA4FA0DC75044DF6D602F8735C9ACFA5D7995198 |
SHA-512: | F37979E94063EF24897657E33D3AAB5CFE6258E071CBEF13AC01DEE1647353071F7E269F986D45E750013CDE5ECF69599E94DD27FCD097CAFA7054684018A684 |
Malicious: | false |
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 879894 |
Entropy (8bit): | 4.76137714695414 |
Encrypted: | false |
SSDEEP: | 12288:tdn6r7QnzIWUISuGSDd5S0Gj+uJPPX5YaEsuexNHgb374Vebd/k/q:td6qPURX57uIG |
MD5: | 449AD5559D52DF02F3474E2FA4272A7B |
SHA1: | DA675FB589E5B872F61A18FAC70A3D3BD03B16FC |
SHA-256: | 3AED83391C97CE05AAB07239D0CBFE5A2B596D7A3BEC39DBEBCED4E43704B8B7 |
SHA-512: | 6AF98BD5D58F73FF9724D171D56A6B844EBC01874765F1B322630B6B5571882511C2AB371DEB941BB71466E18502EB81F7082D9F7ABA4DDB358FC3B274DE341C |
Malicious: | false |
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 513761 |
Entropy (8bit): | 5.542596101087531 |
Encrypted: | false |
SSDEEP: | 6144:0qvFK1jOrdxwEaqqbCAxLUxlsWG4RFcz9RtGdJ2qF4ivMJSO8DE/xJuZpV5YiUr4:0hOdxwbCd95srSQEV |
MD5: | F4E50EA270EC5579D0E14D9554FCD85A |
SHA1: | C912C576549DBC1B82DC891E7A0743BD2E2463DB |
SHA-256: | 99A330EBEB222556D96D087E27158707CEB5B9050DB5FF0EA09CDC2B0137E6BB |
SHA-512: | E687DB806A3C984049DAFE646B6560C2002833B38F74D956B54DA60C1B9C0EC5205A6B743D9A8B54B2D9E61849C6A416810E145FB97483782121189FA934DBBD |
Malicious: | false |
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 541714 |
Entropy (8bit): | 5.340837548294858 |
Encrypted: | false |
SSDEEP: | 12288:e94aI3RfflncfD5WBqMCBfRd8FU1bQWNs4METOIQp2QVLKhzgKy5yvTCs0LMMkJx:2HI3Vf/5ml |
MD5: | D3AE31B63EB14FC353B6E8B872D266F8 |
SHA1: | 011647736EA51490CD7CCD49433F4529B708CCBE |
SHA-256: | 462809F4337C1D6511D53E496937828ED07D64E7144954DA794C36584C94B543 |
SHA-512: | AAD3C37BEAF1224478214623F95A549B6167D1D061BAF6C2E2ADF8B8D034E44E8BC4A1E9409533F2830EC3BDB06208A1E144BBC4E3CE2A6CFC6BC82002D32B04 |
Malicious: | false |
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1404121 |
Entropy (8bit): | 4.037061307244584 |
Encrypted: | false |
SSDEEP: | 6144:T7IDhn9dvYUVLK9VHPAQF5isBtRdjtm1vYpiMyp:T0DDNYAYhPxF5isTtm1vYpiMyp |
MD5: | 52EE28471F2F9D01EF3F57233496554B |
SHA1: | ABD7DD9989FAC90636626A41F007EB6AA5EC7A2E |
SHA-256: | 1CEBAC8D758298ED2763E62B9BDFB17351831E691FF3E1BA85252C9A66D66242 |
SHA-512: | AF2E9593FAF60319244C90E9C06604DD3830705F14C18CD380DC2338AAA0C1E137BF751603AB9BEAF7F1783839F83BCD4FDA357B7CEBC66EE94155D560B6F691 |
Malicious: | false |
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1295502 |
Entropy (8bit): | 4.292578254345873 |
Encrypted: | false |
SSDEEP: | 12288:AJlpcT7U7McKNOJI0ydc6dwIIRT5EbNQ8W8thBk3p1FZ5Kitlb2wsXgy3PiorOTu:azI7cmT5D+Hti |
MD5: | 3A71904057869C23D1BC108F1E8D0D31 |
SHA1: | 6FB6E60C80BC332A2BB66D02A1E3DB69961A9C41 |
SHA-256: | 8264244C6DE861817F5B19CEF282844A18ED8CB7D4E059451489652749FE931E |
SHA-512: | 7248058B2D357C4A8B9C2E95D580A2000A96D9A5ADB0B822ADEEBA5C4422E08CC12EF84B9B9A627A1F6CD07A08698EC000510885D14D64AFD40C6E8D69376022 |
Malicious: | false |
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1088236 |
Entropy (8bit): | 4.336969874052359 |
Encrypted: | false |
SSDEEP: | 12288:ho5WEVQN9LyZYAPTJz1L/L1XLJ7sgU6yaiW+v/K5U/afL3fgj80RUIwunRHpG4L0:C5W8+56Np |
MD5: | 879A881174501E22C3DE65B9F80BC19B |
SHA1: | A2E020D5ED1BE7DEE50A495A2F8581E751CBF735 |
SHA-256: | 647AD394E92E7610BD0F6C4E08D28748408FCD5A816A35E4622EA7F71CFA7A9D |
SHA-512: | B8961A90036B94340283237DA57659CC277E65E545764251F7D3E406DC5F70C9AE29366184D0AA8831AAA0A7CB5C12FF825078BB87528606CAE223FBA58C73D3 |
Malicious: | false |
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 552876 |
Entropy (8bit): | 5.6111056491144335 |
Encrypted: | false |
SSDEEP: | 12288:sSqYoqN+u4HzNs7DxqoOF1h1/Xl35M7Je:sSvEuCXl35EJe |
MD5: | 67C502D240B018FBF93C83AC04350F2D |
SHA1: | 0A4AF68147BA51FFE67E480BCE2A34F4C1618E62 |
SHA-256: | 4F4F9B81C22AAAD9C2E2383ACC8D968BBF1D8088C2ABAC05BF64F262111615DC |
SHA-512: | 8942B33910CE97A95AC40F224EA21FF8EFCC620523AA6B82E92027BB43E04E95B37CFE2B0ED45B385D8B0A9D8AB06E6BDD7A297A98402CA70C64F0C31689444D |
Malicious: | false |
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 946065 |
Entropy (8bit): | 4.8636964007114605 |
Encrypted: | false |
SSDEEP: | 12288:bK8J5IMlw3fmIsSr+Oh7+4w0ZZDSIHmBm5eB3IjCHA3brUkcuhLNiXEvqbz1TX:5XK15Prw |
MD5: | 5B0E0CDC5BB5439CEA7BBF22757C15C5 |
SHA1: | 131F7B5F72F1FF0E9D71D667674773766534C0C7 |
SHA-256: | 7DE252BB6F453C371F9BBF1EC51F96582C1637CF290ABD6F3A6C7F940D34E5CB |
SHA-512: | 838E8228D2CBFBE03490C96FA7EA93B4B61780B34EDDB5064F0B367C4670AE7FF775E28AD55011354DE2A9F23EE505BD6105A3500A00B1C5553CE05BE3F0DAF1 |
Malicious: | false |
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 828391 |
Entropy (8bit): | 5.142026440526027 |
Encrypted: | false |
SSDEEP: | 12288:VXiP4WLa3w8PYsR5Nimy0ciU55eOmEhuCEO5xlKQYrbYOwadcJKwUSu9co/9Njjw:VX8wI50Cs4 |
MD5: | FB978B7D211112A0774CE09CA54CA96F |
SHA1: | FB0C69801230437DCD20E3803DB81EE60FC042B0 |
SHA-256: | 60310F9A3457FAE0395B447A30646211EF4160BA84BD7C36D291AF4C8EC2B79A |
SHA-512: | ABDE8D79F46B27E0E315034025837A3126D6E5D2BC52504D49C946FE96828BD9B20CC4A5C05283FB9F8813E6820A28249CFD68B30CB27FBA216970C16ECC8D44 |
Malicious: | false |
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 655225 |
Entropy (8bit): | 5.787365145796892 |
Encrypted: | false |
SSDEEP: | 12288:ewR274E36+cywJ2roEsGV63wueX0bxzn4xs/FgGhx5a8hI+8qiOcLziKHhv0Zit7:ewRn+cywJ2pVPuS0bxwvo5a8u+OOcfii |
MD5: | 9DA50DF23181F5C2036DD20E2490111C |
SHA1: | 06A9C9F4C7E820DF7743A4B0B6326CE538140CB7 |
SHA-256: | 6E771FE02EC40375844C17C5B60389EBD46089864C24DF7FE9755EA916DE9469 |
SHA-512: | 16D2AAF019810E3BFE000B73F5CAD3C52C225D9DEBB43AED15DF60F3995CBBA66EEE44DE675D642E8BBAAF51BD1C2925078191D2954A0CD4A3DE4CFC1151E05F |
Malicious: | false |
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 471962 |
Entropy (8bit): | 6.6711722500210895 |
Encrypted: | false |
SSDEEP: | 6144:U6mVxHvFKkoEtB2HwWzv9O7F56SbRfI1DZ59x6m4kIk1Nd9Mlz:U3fLoEtBUfzlc56SbRfKZ53b4kIkz4 |
MD5: | 271D3A6DACE38055212286D872596283 |
SHA1: | A660D98324966A9F76DABF8E3BF565363323D4CC |
SHA-256: | EA08C31A5D4E6AAFBC5B657C5960135E64506593729FDB759874E55876580666 |
SHA-512: | D7BBB76A2B601B925D3BFC2D91534B0876459CEC6C8BE859ADF4890D68C2FF7DC882B0670976AA0FB2B1FC83C026EB8446476E8AFE443B2788928944A2CE1FB7 |
Malicious: | false |
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 466903 |
Entropy (8bit): | 6.682472885458438 |
Encrypted: | false |
SSDEEP: | 6144:zKOBV6L33vWecZM1uJJVI23uNw+H05exvnknN+nHE/ehTq:dV31ZM8Qw+H05exvn2Ok |
MD5: | E302E1102F3F5A21860F38F41B3C30F8 |
SHA1: | 78B5D1C451CF674A7641DFCC815F966FC920CF57 |
SHA-256: | D4033CB3264C7C4CD2636EA2A202421650C449E5BFB10F29949E4C44E91CA93B |
SHA-512: | 1F96B197EB7AE6B7983ED38D4CE33EA0C845FFE527FEDFBC9E53A6009871DD3C39084A04CD1D43FD6DD24E7F26E3EC4845D4225DF828DE0B9BA346CBC98EFEA4 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\node_modules\koffi\build\koffi\darwin_arm64\koffi.node
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 3831495 |
Entropy (8bit): | 6.129062638768725 |
Encrypted: | false |
SSDEEP: | 24576:W31wzTxWT+7Clr2t0oxp1kfvDNq3HXQeHUnMedmQJ6tfzSAqAL+YbXRtJ3Q7uism:HULnMed+NqW+UXjJ3ob |
MD5: | 50D6B3E136A345C3DD4DFC215E0BDA04 |
SHA1: | 73CF51ED64C9BC987907CADAD2A6836329663137 |
SHA-256: | A5315737F9993F67D707853F987D14F2BE1B891683C27A9A2CB47455218C3544 |
SHA-512: | 544AAF97D384EDB9527B34752460DD56EDAAAAD307F544F1027FDA93D15910223C413A605683C8A8F73CD93832DEB3FA035600F0774295B0A333D290698C2234 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\node_modules\koffi\build\koffi\darwin_x64\koffi.node
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 4124928 |
Entropy (8bit): | 5.833481997729643 |
Encrypted: | false |
SSDEEP: | 49152:BFd6LR0oebQwkemu6p6/X1SudSfgk2j9dFQDQoGlOcdmlnMj1wKQBAz:TJPW6/X1SudSFDQoGlOAmlnMj |
MD5: | 48F0D527C28704174D5D704D718E1A13 |
SHA1: | BCE0D21568A9583E6FBF71AFD5C40D901948E6B9 |
SHA-256: | 71797C049463105D48AFBE3DDD9A339C6F3172AAE88F4D7E38AA5940256B5C8F |
SHA-512: | 181CEF8616250464DE4102BF4E1C192FCF66C2852723CA5E6E3FAFF63CDDD6BD452A59A3B550F5484BE2651F8461E484F64A7F45C5364202C785408FF9CA97C5 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\node_modules\koffi\build\koffi\freebsd_arm64\koffi.node
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 4990944 |
Entropy (8bit): | 5.528491909162001 |
Encrypted: | false |
SSDEEP: | 24576:tRggLf9Dy69StE+wzOD5opu5x4qaqQqiPRpzlgkYtjaCqlh2eSf9:vgcfUNtEbpckTmq8 |
MD5: | 5D7511FF90244BC0CB665D5097707CBE |
SHA1: | E7CD18818EC22FBF1CA90EAE39F7637B99F7FCAB |
SHA-256: | 02811D7BC898112582A5BAB60AB9FF45B96536CAF016E60C9AAD8273095908BF |
SHA-512: | 1C0C191DB8D63B8D98022C49F7C7656357A0B057872D22C083785BEC6C9F9684E10FACAF2BC5418605E7A7D2342862F04560F78AA1EDD5ADD4C247158BB30E17 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\node_modules\koffi\build\koffi\freebsd_ia32\koffi.node
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 4180724 |
Entropy (8bit): | 5.976515990960587 |
Encrypted: | false |
SSDEEP: | 24576:/lQlcSZB9sZ3rbiyC5/FE9W1ihWLpJyP4UFzN9QME9:uYiyIvihX8 |
MD5: | E65A8A0209B356F7909A9A963491663D |
SHA1: | D72521B132523ADF331ACEC6EC5BAAE155D0A7CF |
SHA-256: | FC5A0779F0A6CDD4DC122032FAE7802DBAA83C3F4193ABCCC7896D61204251CC |
SHA-512: | C9613075C9469B5BCFC918244ACF3E734855C063AA1BB3439D4180E2F770D00D46C9BBE1FDCDE5A2546AB6787089BB4685F44C612DE637A2F9CBCE28BEDE3A7E |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\node_modules\koffi\build\koffi\freebsd_x64\koffi.node
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 5446192 |
Entropy (8bit): | 5.395686282510647 |
Encrypted: | false |
SSDEEP: | 49152:69MS4wP0OmQJ159NNHD+QbcS8S3lmpJPc+1gcvTU:69p4tIJcIViycvI |
MD5: | F65219783B15EB910B3AE0A958C0A03D |
SHA1: | E09ED43A396CF0F3A044302F4CB1B3419453168E |
SHA-256: | B8E64D356DDB6402F2A2DA70F53751C75E935B826C1B0A77896F3E6F2B13925C |
SHA-512: | A9CE37B546D62DC46105842C91A2B7A409724F6FC43C5DD94351645B47D03AF82ACFFA3895014E0E8892B21BC45A4129A10023CC3A6889C052470FB3346B6F44 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\node_modules\koffi\build\koffi\linux_arm64\koffi.node
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 4822104 |
Entropy (8bit): | 5.699925148936573 |
Encrypted: | false |
SSDEEP: | 24576:heYAt+/I+JP1JvVNamSdRhETj7X9v5yiXKDGpiJX4za5:hemX1Jv7vz9v5haDGJza5 |
MD5: | 7D28C4EF947B15C7585F4CC5D71D6F3A |
SHA1: | F8234B55A1850AEF79CBB91D2AC6B32312DC5DF1 |
SHA-256: | 21ECA0E6F2C13CC129A475032AE8B30D43967458E4F7634A1CA72E379F8D9CCE |
SHA-512: | CEB9515678C38C3745BC188868797CF119E102C2A7B4CB315CCF02ABE7DC2ED1B4508BD458DF0DFCCACE95D3A44768038EA2D9479BF9E0669425C2D2ACE4D9E7 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\node_modules\koffi\build\koffi\linux_armhf\koffi.node
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 3671900 |
Entropy (8bit): | 6.138780985159059 |
Encrypted: | false |
SSDEEP: | 24576:8S4fh4OKPwXauJNHwKl96W0g7JAdnGQYYzInyelANnscSPytysVYyP8:Cf2qHwKlQW0g7JAdnGQSjc9tykP8 |
MD5: | 1E2FDC196588926EC3DFF772A30507FB |
SHA1: | C827F3BE82F8912DC14768A2DD8AE64F72764BED |
SHA-256: | 86FB843A2ADCF82C733A6AA7094A8A129BE7358AAB7E4A4CF3D810A0F9DAA69F |
SHA-512: | 3B580A3DAEF4422F701116929B4F2D69AC4585921DDD527B39C5FA86772FCF44447BD733A90A1658B7207561C406D22D5BAEBC5331325B99A615B792A08E2DB7 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\node_modules\koffi\build\koffi\linux_ia32\koffi.node
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 4134680 |
Entropy (8bit): | 6.1022554113149035 |
Encrypted: | false |
SSDEEP: | 49152:7PowX2doXxylkpTRVSMp68h4HsNRm5eeMYYPx:DHxXtdbBs831yYPx |
MD5: | 5EE031CCFD91CB608D8938C9D0B8D864 |
SHA1: | 0D9C10D16CC4EE2D1DD3100567C1EC7C62F11305 |
SHA-256: | 828545994AB61867F29919AD897220BC2439B5D4A04BD601798814F9903E67CD |
SHA-512: | 9AE0100765307B4259F0A4D1980B63F34EDD97629F0CA9E121BD79E34CC66EA86B451F3E5AE25A5FDC54EBC47FF66D6C7DB36C7302E444B3229CAC320B3A0CF7 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\node_modules\koffi\build\koffi\linux_riscv64d\koffi.node
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 3478544 |
Entropy (8bit): | 5.488253190226225 |
Encrypted: | false |
SSDEEP: | 49152:ujl4c4KEeeeeCCCCCLhV9J5523wRy4ixdsmONN:u2c4K123wRixSmONN |
MD5: | 225716BEF12D79ED690D902E2AB1AF68 |
SHA1: | C3B27A409BA71386C748D2F4C3FF013485A8747B |
SHA-256: | ED226BA0CF384700183EAFF432F772224F6DF265CA27163738E1BABB04211639 |
SHA-512: | 26AD9FAC424470A859F3A34F5994B0FE75373DCFFBB1366426B71AD38B0B21FD4A411CAB2386365BB826CBE9339E49732B36408910AD9868F1063357FCA2F951 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\node_modules\koffi\build\koffi\linux_x64\koffi.node
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 5369560 |
Entropy (8bit): | 5.462478218283327 |
Encrypted: | false |
SSDEEP: | 24576:LBYK88TJAowz3NnAnVm0ENvNXDWlPwOaYvJswGa000000000000000000000000y:1MoE3NnAVm0ENvNXDnOas7ugcBiOKI |
MD5: | 417492F0773FB13A40B92B38F1903AC8 |
SHA1: | 099CF0EDB29D751E86356DB9704B24630C3DE109 |
SHA-256: | 472926A9E519093AB94B43602E7856E41B04CB17B5A8C80A714636634E1F8BB8 |
SHA-512: | EB57E6D5B85FA0BA721B32AB9573D6A2B27142F7E082BF9A3D054D3BC3E4B1440107F96350BCB0B984E6D4C0EB9B984C40A4E4C5B8AD21E4C16929BCCE2BFA07 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\node_modules\koffi\build\koffi\openbsd_ia32\koffi.node
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 4246036 |
Entropy (8bit): | 6.033960750127902 |
Encrypted: | false |
SSDEEP: | 24576:mNYJDVZavhtJq7Hy404TEHZBgyEZuXb3sYtC9ifeKK58fg2sSCFb8HpIl/IC3Y4M:hyg7SihywuXb3sDAfeKTbo//Y4M |
MD5: | 5F85C836B43DB943BF557A218955AB98 |
SHA1: | 5647DF0F8F4FB9D4EB964760952D11A7D328FF4E |
SHA-256: | 4DD4D4A79F410ACEF3D42361232DBF09A7C63C2A1B8B8D20BEAB0D2E423FF916 |
SHA-512: | F45A33EA16106E772394FBA3DEE4EF943FD3562116D5490E0A581547A6E548A9D460B47183B51F3C170D438E9B879BD7BA46D456C8A2675427A081597A3ABFD9 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\node_modules\koffi\build\koffi\openbsd_x64\koffi.node
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 5450696 |
Entropy (8bit): | 5.417570893453627 |
Encrypted: | false |
SSDEEP: | 24576:YW1NLEJxYmFCOJ/xeCZad7u9r43paDG6iLIQLoJ/HH3iS0bJgf:YWTnexe8Oar43pyG6oIQLoJfH3r0uf |
MD5: | 57015591824271DEBEAF37DAB567B3DB |
SHA1: | A0B1D1C8FB6D8943A25C2E7F024E088A5331CD80 |
SHA-256: | C822F6A7282B705EE75BAFF7188DAD067F9EDFFA9146CF375BD9B7234AD46360 |
SHA-512: | F60EF978675670C6DA894C87D1ED86D6882D8A193E104CC98B550C5F6C722C2E906108AB1834D43BC7CA34A567154C8997F8BD4124BF356E30B0E25E6F47114A |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\node_modules\koffi\build\koffi\win32_arm64\koffi.exp
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 994 |
Entropy (8bit): | 4.691763402396127 |
Encrypted: | false |
SSDEEP: | 24:tDJ7O19vcnTE1AKO7/o+PENjJ7AnHx2xu3g41J66J7O8:tDUHcnw2KObLPyER2xuQ41J66U8 |
MD5: | CE9C2BC5A2D4BC4AA10DD23ABF197FF9 |
SHA1: | F265B8A04B599E37500ADCFC526F8CF377F22B7B |
SHA-256: | 6B40E50DDD3E8203186BE828D7DB546EDA74C4E6F8A8CE8FCFCFFCCE842CDD5A |
SHA-512: | 38FAAB8311DBE063E4F8A2F1ED372BB9FDB8E21D94EBAFA7FFCA06E87BC422503917FC12EF4EEEC0CC8D92E3219891A4F4FDE3748755520098C560C01CF4790E |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\node_modules\koffi\build\koffi\win32_arm64\koffi.lib
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2054 |
Entropy (8bit): | 4.681109553132766 |
Encrypted: | false |
SSDEEP: | 48:zTjOr33kP9tkUL9FnF1K/yAOKY1KMBZ1KJeFF:3jOzUP9GUvKqKYKJeFF |
MD5: | 323BD2201A653FC61ED133441F8C09B9 |
SHA1: | CCE5EBD7946AB0C3049259CF82124B2F572A83C5 |
SHA-256: | 1A812C9B32F98CD6B0B2DF145710D58AC050F661ECE7277DBDDFC8F0E76511D1 |
SHA-512: | 0435D5E2D108377EAFE6BB898DCEB523611B3E15A5BD96C45949091E06D0B2E6EAAF4C5BC420DCF70A2DCA6928DF1C06E2EDBAAF504140146D1DA14D667CE66B |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\node_modules\koffi\build\koffi\win32_arm64\koffi.node
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1925120 |
Entropy (8bit): | 6.072897753666793 |
Encrypted: | false |
SSDEEP: | 24576:IiTH1poDDuAS+0KROeJAB248MqNAT5If:81ROeJA |
MD5: | D342FF0DB6B167F1ED55C4626EA93667 |
SHA1: | 86D63078F841455E9FFDB5C3F3DA502D61B349B3 |
SHA-256: | C80CEFA03B725B1A614E4F0E4843232ADCA9A2B6DFCA85BB57826A40A11E4285 |
SHA-512: | 758C4192D92CBDF3F604ABBBD3FC728BA83A261E7A4357B2202B54946C3CA15FE403A8670EC6D45DFDCBDDADCC4BF0417DF97A82F78BFFE63FCFC2BB178C5A33 |
Malicious: | false |
Antivirus: |
|
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\node_modules\koffi\build\koffi\win32_ia32\koffi.exp
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 992 |
Entropy (8bit): | 4.690639541557047 |
Encrypted: | false |
SSDEEP: | 24:3J7O7i6lPR0nTZyQHAKny7aEG+PEN1J7GHx2xu3g41J6beJ7iA8:3U7LJ0nlyhKy2EZPasR2xuQ41J6ix8 |
MD5: | F22F145C93CDF384A697772BCA98105D |
SHA1: | 9DA5B7AAB23A1A442888860A53FBF455E7284D3B |
SHA-256: | 11A8F2BFA154E737491D3DC92E369A2DF8409405F82797C65B8A99E8546ADF7E |
SHA-512: | 08A87D3E52131F47338469103549A1807489845F47B672268C6A5ED819C8BC75539768D1E01CB00583054CAB9A6E49664AF69D7BB1F43ACB6DB89F7EBEFABDAA |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\node_modules\koffi\build\koffi\win32_ia32\koffi.lib
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2056 |
Entropy (8bit): | 4.683959727845751 |
Encrypted: | false |
SSDEEP: | 48:sQrfrYh9Gr3xL9GnFAKwtyAO93YAKH1BAK/7h2V:1rUh9GDx/KDVKQK/7h2V |
MD5: | 255FB62E1E23B24EADA82E53E443F07F |
SHA1: | 23278E3F0B925AE584A7B5706B1A1D4A9C43468E |
SHA-256: | D9F3E452905F6ED62F2D6520B7812A1D6E25C80641E6BE18F6E489984D3FF549 |
SHA-512: | FA852D45B7B5DDA1C7C43BFF679B46246DD5509D60F352F4B4EC248C372EC03F16AD19ABA9B14CD2F76C824C1A5C7178174EC89120D48F18594C36025C5641A5 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\node_modules\koffi\build\koffi\win32_ia32\koffi.node
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1667072 |
Entropy (8bit): | 5.9415456745544475 |
Encrypted: | false |
SSDEEP: | 12288:MpBXB69Y4mIDZ4r3sPOEAjFbnQW/+5JQgPMnn9H8hF6cqcpQdCcq5ePBZwEj:aXB69Y4mICYPOFFoDqcedomS |
MD5: | 76FC2892D6DC45EFB44568216537BF48 |
SHA1: | FA3D2A4F2E6F9FAD387A836BCECBF8CB4C0B997B |
SHA-256: | A14DB9B048D562F81B6955F417B29A2785A2517F660D8A80C8C505A5FA7092FC |
SHA-512: | 1E57AD23A7403061C5A77B830C3D8E8D310A5968FF6277C1DFAFEC8C006638A4A0C8E08E12CBEA870415F457025E924EB1C75E82A788768DA77E15D4CB56E7ED |
Malicious: | false |
Antivirus: |
|
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\node_modules\koffi\build\koffi\win32_x64\koffi.exp
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 983 |
Entropy (8bit): | 4.687981769892313 |
Encrypted: | false |
SSDEEP: | 24:NJ7OajOLBLflnTiK6AK/b75b+PENZJ7AnHx2xu3g41J66J7O8:NUtL9nG6K/b9yPsER2xuQ41J66U8 |
MD5: | DAC8EE10A2B943D89635C78CC5F4CEE3 |
SHA1: | 5C0A565A1F1B3B2B5F93BD17CCFE28483E5C61C4 |
SHA-256: | 8E36F92A0B59EE52F7FE475B690494ED9AAAC63EEB7E135F145B26CFC9856B9A |
SHA-512: | E6AF8EDD01BB9D834CB718B31F815684A4D39C5E6509BC076EA863B9A6C05A92FA73EB3BBEFB627A99EA1CA8843B5557C88940B31E57759FD7F5E024006BEB9D |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\node_modules\koffi\build\koffi\win32_x64\koffi.lib
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2054 |
Entropy (8bit): | 4.673829772127721 |
Encrypted: | false |
SSDEEP: | 48:zTjOr33kP9tkUL9xnFbKtsyAOOYbKKBZbKUeMF:3jOzUP9GUpKttKQKUeMF |
MD5: | 19DA71311E3C842D5F4121CDF5E286E7 |
SHA1: | 9F19BBD5D0C871E9605185A7812C135BF5C4D725 |
SHA-256: | FAEF5139526F707CCF9340BE5B280179D726DAA8287635B0A20868B589FF0CDE |
SHA-512: | 68518A0BCA1B0E1DB763A53EBA9834A7F8BB3D1F64B8875B2608B7710414E6A7F6DB634B774F7D2A6F37FC4038E0D4999BD47F6EF1252E449A6CD57AC893B3BA |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\node_modules\koffi\build\koffi\win32_x64\koffi.node
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2335232 |
Entropy (8bit): | 5.920531471429678 |
Encrypted: | false |
SSDEEP: | 24576:/zwowHmvosz0j+3kXSxVkuOsPv/w+Yuz2TPl4y:/zwoimgsz0i3A10/w+ZwPl4 |
MD5: | 9694858C580F1CE0B7608AA5F29BCF99 |
SHA1: | B152DA6B0870356B5B2D554D6212787CFAC3EE29 |
SHA-256: | 303056C1AEEA3851183BA790B90FFB9730113A577E3C6B4EF1FC740B16F71067 |
SHA-512: | 4197CDA548D7F767EF949AB71E87EE379AAE240BE140881ED1780C67F77341074B5D5880E0108FFF403AA5B1224158C514B92AB3F8C93F6C2D2AD6F7CCB5E9EE |
Malicious: | false |
Antivirus: |
|
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 5547928 |
Entropy (8bit): | 7.996105811641855 |
Encrypted: | true |
SSDEEP: | 98304:fV9bNj3x7RkPe04srtXK5EmpJ0eBurTVK5M/AyrwreSjujBrTAVD:jbNTxtk1rlKdyVKckreSjuxTK |
MD5: | 6175C560FBBD33D77BB402792D32D0EB |
SHA1: | CA2928261A2BB621DCCFDECCFA40B6A8A6E4A186 |
SHA-256: | C5EA37D00531012E538EAA4D8388DEEE41D3104D0A0800EC720F5F6EDF4405BD |
SHA-512: | 322D1CFB8F04C7B3502089F1BA4BDECB96624CF401F9146AE4E6F7CE8445DDF7B31AF7208A222698F781BC2CB32B61B6A34C9398711F54EA4AD6A3A388B5C677 |
Malicious: | false |
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 16920732 |
Entropy (8bit): | 5.505856936767573 |
Encrypted: | false |
SSDEEP: | 49152:50zItZdfcqYYvd9Rndddm7ln3PsYNG0Iqz1bz9CZdqzEbZbqzVubOnzzPZQmzejI:IwmUVRv2pwv0i+ |
MD5: | BD1D0FC8D3A7CA4458817E66D43E6BA7 |
SHA1: | C2753211B86969D504B08E63C31A9D76550037C2 |
SHA-256: | 2A39B32C0425D5C7198D5640FB7E4E1A19DA01826CADB4E6346B8661D06320F3 |
SHA-512: | 6591BBCA49A113B004BDC58119EC73053E07B6EA32EC0427C0AE8531A8453A90011B8BB38158FDB93AFBAA1BFD8092B86579B1D0CA06223FBF5C9457A04702AA |
Malicious: | true |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\better-sqlite3\LICENSE
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1078 |
Entropy (8bit): | 5.103540476597519 |
Encrypted: | false |
SSDEEP: | 24:bwrmJHHH0yN3gtsHw1hC09QHOsUv4eOk4/+/m3oqLFh:bwaJHlxE3dQHOs5exm3ogFh |
MD5: | DAAA6378E66CAC5C1DE3EABC51C6020F |
SHA1: | AF2953C8DC440C83D917E16CA36146363A283AF0 |
SHA-256: | 09856B52897C91AB67E7456EF43067019F31DFD3B87FDA72E655736B1EBDEE55 |
SHA-512: | AB76E13A535D397DDD8E33CAF39FCC9CBDC8B63CB8C5DE70E4DF328D4A85D19978B1DA0A52BD795A2EB77A897AC2EDE8AA2E65D17BF286E1ECCFCD8CCBFFCD4D |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\better-sqlite3\build\Release\better_sqlite3.node
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1685504 |
Entropy (8bit): | 6.560399836402596 |
Encrypted: | false |
SSDEEP: | 24576:3EAOvmZZj5MaV9xpMhsO1GD3P74DMDSvDughqiieoE+rir8eg0px6KSchONV:3EWZjSsO1GDUDMDS7ubisyx9 |
MD5: | B2726D66E0C754A2879C7E84D0C32242 |
SHA1: | B91EB989B5EB400082EDE220A6E1FD550B370B4D |
SHA-256: | BD8F3F8D48F9B30B7B4C213BC9D4EF10442B4D7E464BE400BA32C71053E59C2C |
SHA-512: | D71B74E9663283BB326EABDCD4B3C96179230FF5A90BF7397EA5AA7C38C449B83C9844D97D69CE12ED164EA69C2B6E636FF77453CFB5588BADADE90D0595B994 |
Malicious: | false |
Antivirus: |
|
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\better-sqlite3\deps\common.gypi
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1584 |
Entropy (8bit): | 4.4855366640246706 |
Encrypted: | false |
SSDEEP: | 48:MJIZZkDU2ah4rKBBnI6M41IzS66yK3EdM5Qgqc:MKZZkDPah4rK/nI6MvzSgK3sM+w |
MD5: | BC44EAFB20590FEEF28F6382E0DB7EA7 |
SHA1: | DB26781B95D0B3E5D97371B8BE96D842F3E7C365 |
SHA-256: | E71A565CD7733E05EFC3A2792B54E260126F03F490325AA2A201202ACBBDB315 |
SHA-512: | C8BB9777D8BA552668CDA8E21BD5B7DFD57077B1D944B3FF2EA36502D2F2883374824F0E01AC57F9CEB98C9DCDBEC3CD8A6C6D0CB8C79BC627C0D20CD34F8F26 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\better-sqlite3\deps\copy.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 897 |
Entropy (8bit): | 5.055440910490356 |
Encrypted: | false |
SSDEEP: | 24:BGGumE7MsiMxR8Gdk7/GxhFBK1HriP2em5:IGumEgMK0BK1HriOe8 |
MD5: | 722C2B2DBEEE143A14C7BA04EDF8E3F7 |
SHA1: | 88321C5C15ED00C72570B28E8183B2440BBF6419 |
SHA-256: | 05A2BD41DBD96E33E2FC6CF4BCBC722B4BC8C529813B882F92113D7DBBBECE67 |
SHA-512: | 0537A881C397D0BB0836FF74A881D650D59FC151F0E4CCB1C4F5A9FE84549DC9753B886B3E14534C551C167FF702FAE71B58FE4FE90C78B43EF05A4CB2761855 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\better-sqlite3\deps\defines.gypi
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1095 |
Entropy (8bit): | 4.643248099871886 |
Encrypted: | false |
SSDEEP: | 24:yxCLejz1ujZY3lpsSD3/gfuimryWgiz/iMKQEt:mvjBujZY33Co/3K3t |
MD5: | 14557D89FBBA114837FC2F16A32C0CAB |
SHA1: | 1351A2A2A2CCBA0E89486BEA63C712E35D8468CF |
SHA-256: | 82FFB20E2FC2582D5D8AB02CE93C82FFD6B41FFD5D10E82A56B38E5D393D670C |
SHA-512: | 41E22012BA49BE744BFF203673FFD8FD711D72A8BD96E3E987ADDE382AF0F7DCC07E7C267B144C3427A76C8556A4B411A514ECCE4ABE889244A1C0B4953E79BC |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\better-sqlite3\deps\download.sh
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 3397 |
Entropy (8bit): | 5.676743612746229 |
Encrypted: | false |
SSDEEP: | 96:zVmQAoCV34eMK/Je3gudey9S1iiOZwnJfqfPf5:zVmos1x6WOCnRkn5 |
MD5: | 399FCC662B0D43E5BA676FE1F9F64FF0 |
SHA1: | B413C2F124D9559620D1F4CB2A01C572829B701E |
SHA-256: | 91050B5C6A1C7F147D53E84E68FD4978AE1831C1B3A2B24B1EA34A14F6821A35 |
SHA-512: | 8FA54994BC4C6345E462238AF171C22C016BFA551F81105720A37015CAA651F3100BA945B9F4746FE1416C5FC529BD436E5A314F5ED7B9BDD62A7EF1C81AAB70 |
Malicious: | false |
Antivirus: |
|
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\better-sqlite3\deps\sqlite3.gyp
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2543 |
Entropy (8bit): | 4.637561365815502 |
Encrypted: | false |
SSDEEP: | 48:MEza+wQ0/9nmv+QnGVnmQF+EgXr+2FDVckD3U13Us:MsOig3FVl2FDfD3U3V |
MD5: | 680DD2D54C2DAAFCDDF4097C030EE810 |
SHA1: | 98586D399C5A78008E96DFA1E096D4FC1608068D |
SHA-256: | B7BA45FF9AF4DF332AABF248E6CF4176B642F432D1D972FF6748CB5ACFC322FE |
SHA-512: | 53959797FD34056E9A55CE71122D1806E2F33F06A8A7BD8254226958215C43D1F3502606E098A9EDD287260E96E8EEE68351B313D2D9C6EEFB2301C1B04127A5 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\better-sqlite3\deps\sqlite3\sqlite3.c
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 9089893 |
Entropy (8bit): | 5.15493430193511 |
Encrypted: | false |
SSDEEP: | 98304:7ZYBeRB6MI7kr60tP6bhiAiJjwD3PvN8eVwgbA4LcL8FDIoZGqBvN57ECHqZTj9S:OBqztP6kerH9 |
MD5: | 4E218211223EF687DAB8F59928D79328 |
SHA1: | 3D8CC06C3648B6182FE60C66CC2C25AB3ADD3950 |
SHA-256: | A6CE1CE7703246FDF64FE2151BB247DED7B520E2FF8161DC03DB00D45331C017 |
SHA-512: | D66B115499C478051FA53A8D045A6F8A51AA3F0E3A5D0374172CC686DA632E1FF73728DA9EC190BFBBE5810BAE1F1C887844BE43A8CFA8341713CF247605141B |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\better-sqlite3\deps\sqlite3\sqlite3.h
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 644069 |
Entropy (8bit): | 5.013768690734426 |
Encrypted: | false |
SSDEEP: | 6144:ECuoMvF6PS9CM+UdGVxB0U76kKeJOZtIXXKHBlGGdrUEB4V+bYRtfs7LdKwlYppW:HN6IJ+GjZpPJOZEa3GGqa4MMhW |
MD5: | 823E22B06305DD7F4B9008A19544AAEA |
SHA1: | 71ACD5026DB5F6FCB4DF1CFFD226B60007B185FF |
SHA-256: | D088AA96AA70DB50F02ACC5C86ECA61A5D17556E4C363B9C06079239BF7F87B1 |
SHA-512: | 33372320471ABA5E7F72E6666CB6B888C926FA5E93A92B461FA4E98DA83E294F4228CEB8C8ABBEDB79E0B1A5D4F1BB6AEC68C8540E503DF441357D318BCFB026 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\better-sqlite3\deps\sqlite3\sqlite3ext.h
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 38149 |
Entropy (8bit): | 4.743999057442208 |
Encrypted: | false |
SSDEEP: | 384:Tuz4G/SLqcMgCRmTgVYmLEjMhN0/kvINuYY04vFJzITx:TC4NH7jT4YmeM7nIYYYA9 |
MD5: | F2686F8AC55C3975AC6B39238A2F3E8E |
SHA1: | B5F518E0F4EE9F67C064189B9F5BAB832EBED375 |
SHA-256: | B184DD1586D935133D37AD76FA353FAF0A1021FF2FDEDEEDCC3498FFF74BBB94 |
SHA-512: | 3784A9659F9C451CA26B764796996DF39F257E92CDE80D9B6409BA1E7879B17ABBD7B2AF294AA165530BD319A46FFD772B4FE064CA26DF6ABD7DB03498B0DAE4 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\better-sqlite3\deps\test_extension.c
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 588 |
Entropy (8bit): | 5.2590228925543 |
Encrypted: | false |
SSDEEP: | 12:RAXFt9+TXHMvELlMlQEx2BYT0ABuXZMoHUtzQJrtUFVtCEK:RI+AvELlMyqT0XXZWi5qVtfK |
MD5: | 0E6F9C6C729B15B527EC67C0DE02384B |
SHA1: | F998B9E3A6B3513F1CE2730663A53D2E835B9B0F |
SHA-256: | 4FB2C0E7B6ACDC4362895CA610549B70110BCE553CCE2F3FAC1B87675102896B |
SHA-512: | 93323961092DB446C3A12E2853005E3BF3A60C6CDAF952952201A48B823F99255570550223D70931B8ADCE700F98622C6D724A77A295E2A7FF13F0E27B2FFD6F |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\better-sqlite3\lib\database.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 4116 |
Entropy (8bit): | 5.085838374417024 |
Encrypted: | false |
SSDEEP: | 48:+FzYIUZFeVxWy3h9zxIEXMOK0ZHQZ27euTqQaqE8E+LC7yIGrhxtjFvcLd3s03Mb:ac1ZFjQBG1oQZi9qSvBBkLveomRz |
MD5: | 633100CB9DEC3E4AE1C672C0B494FBFB |
SHA1: | 185D7FD4070157AA1EB4AD0FC53C362AE649030E |
SHA-256: | 50FE0B490F29174D961C4D1AE54F22973447FF1255FD710E785D201C0EBFB4D0 |
SHA-512: | 1EF6D19F98B38AC368DDEEFA58D8F8A8E064E6402DD95D9B6E3B7A847C41CBD0F46DBB72646D27D01EB7B7F3200419C7EF8003B9FF53C9BFCA76A71D22423A7C |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\better-sqlite3\lib\index.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 110 |
Entropy (8bit): | 4.437265585838718 |
Encrypted: | false |
SSDEEP: | 3:agWmaBBbJ9uEiXm0BkJMXRtj6M/AHDMev:QmYBnuEp0BkJM7eDQw |
MD5: | 26660B3078523A953EE252B4E86E1C8B |
SHA1: | F7C22BDC8183F6A9CB73A9B4A735A5BAB7CA01B4 |
SHA-256: | 82DB11C4EE43A41D859988C5DB42C3771DFF565371F94BACBD1E4D8D6CEB47CD |
SHA-512: | D4F32BA712FF15E8B6A1634EEE089057A4716318B90E932B95A1C1CD30945BA708E7E725316FC824107637D2E97A2A64193AE81C0A3D2484651F52122BACE99F |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\better-sqlite3\lib\methods\aggregate.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1932 |
Entropy (8bit): | 4.9124200881300295 |
Encrypted: | false |
SSDEEP: | 48:8CYSvJfUbFetRG6od0AUhv2ALBrLFL3zqZwrkwS:8JSvJsbFYo6od0AUAErLFL3zzi |
MD5: | 25FDD950809B2B22D0BA6917FE014C35 |
SHA1: | 5555B3223918668B5BF244E892B1D6A258F0099A |
SHA-256: | E9F74EB919EC93FE089C95DDF25A98F1F631C80418FA34FB2346CA1BC29F1B82 |
SHA-512: | 50516A2D2265513DD7EE727CF9CF21D118601A0EE2B9DE61111C6F5FD8933915F3029EF6F764F7803CF5438725C6017002D7F58CC36988D97CC1BDB805DD42C1 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\better-sqlite3\lib\methods\backup.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2380 |
Entropy (8bit): | 4.932426701712536 |
Encrypted: | false |
SSDEEP: | 48:c5xU0+BzUZFeYdoiM0TZR9U14vHDX9WzUb8DkU9Ktm5/Ea168:c5xUlBQZF1dLmiHDXzAIU9BS8 |
MD5: | 69638DC10C19961A0C05350AE333D6A4 |
SHA1: | 5941988B67C6FA083358002BA36538F1E39AD03B |
SHA-256: | EA29D34992BB02E006D0FDEDA9675AC5D2BB227AAF57468DECD997E9FC9C7DBF |
SHA-512: | 495ECFFDADBC8C9BB2E886F9F7A93668FA5B2192A0BA79A7E1A9D3C2640E0520E39F2D2C6F3A26B55C72FF882BFF43ED6439C0AD7C7622461E6CCAF1EE8F119A |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\better-sqlite3\lib\methods\function.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1396 |
Entropy (8bit): | 4.87274447959524 |
Encrypted: | false |
SSDEEP: | 24:MTCYB2wPI/KJVt3hZXPDlZdBFeEF3G6od0AUh4BzRZEYA4m:8CYMwPICJfxZhZFeaG6od0AUhinBRm |
MD5: | 1036CE624EFBB9FBBB387FEC25FD1BCB |
SHA1: | 35395F7EF4C18B845582B9289BC802D87C9E3C11 |
SHA-256: | F431D49303B8BBDC044B1F1B455BDAD21FC9B74B007DE0ACB22F08F25B4FEBD3 |
SHA-512: | 7D65A4BC5BF5C9B97DCE021CDB8C888CF975AD24613B12B239DB1E03A98DDA89FAF7B1B204C906F6DDE5439D22414D9B4410554D01EEA8FC121287ED8821F9A0 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\better-sqlite3\lib\methods\inspect.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 174 |
Entropy (8bit): | 4.632315293695044 |
Encrypted: | false |
SSDEEP: | 3:agWoNgRENSBpoQDTBbfHJAVHORqvjRqDLNLtHtSBWZXMAn:QoCi8hPBNAOo8DLMO |
MD5: | 21784EDFF107EAEC0E9EF7E66E83552B |
SHA1: | 6B59CAA4CC8A568A8ED3F184A075D66C68F17D08 |
SHA-256: | 4975A78DAEE850ADEE62BA98719D0F223819A0EC135A07C0E302994BD8DBFF61 |
SHA-512: | 9BF6D36DBC01DBAD11D5D01C0B662620BF6C0CEBD85C0065882E8EC57E3304BC4D301ADD25BF57EA425A270F3ACE6A44FCB958DCC8BF993F411EB81A5369ADFA |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\better-sqlite3\lib\methods\pragma.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 536 |
Entropy (8bit): | 4.8801839682610115 |
Encrypted: | false |
SSDEEP: | 12:MToiQYBD6J9Oh1l3PsZflB9zeYAH/uPJsMaUOrby9aPD:MTCYBOEP3EZdBFetmuDxr2I |
MD5: | 9354074A096EE1CF58905CA8DABFD60C |
SHA1: | 63E6C02339C45C252AE3BB24267610A636117EB6 |
SHA-256: | 8B1C54475BD4340B15E25C50D53D06308BE65F8F919ECBE4AA9D285CA859AD5A |
SHA-512: | 32BDF8866D1C4E3DB8A2CA65DF2C1BD0D33C064D4CC526E264587CBF9C09BA7B97C8ADC430A9DC019D9863E0E90B4318442FFB5CD08E0DE52CDD4F081B5150B5 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\better-sqlite3\lib\methods\serialize.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 625 |
Entropy (8bit): | 4.7867649190284105 |
Encrypted: | false |
SSDEEP: | 12:boiQYBtLJ9FgusZfl39zectR3ox9+laC9ofWzdC9Oo4dTsKR9fAw:bCYBRBqZt3FeZGTagdCLCQqRAw |
MD5: | 41CFEFFE67A2975F68AEEAAED0BF384C |
SHA1: | 321F3F817BC095C34B76D060D706ED2CC48F204D |
SHA-256: | 7A10EE5C2735384B7F0C361811BC6D017DB29F62B203FD3C68A35F667E2C2605 |
SHA-512: | 8A0AD9732B5A07866EEE742B2E884E521111F213AF9AE39EBD92FA029D88F087C43F8826672D1FAC5C571D14B284F20AE25E12AA4058A7881D6FD5E93C0B0A0C |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\better-sqlite3\lib\methods\table.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 7144 |
Entropy (8bit): | 5.057312865184636 |
Encrypted: | false |
SSDEEP: | 96:bJx7JBAUU6VtWpzwukGy2K3rN6gYMNEXxulo+yrgrm+IttSXFJ:bJx7J25PUyKb0+UklovOQk1J |
MD5: | 43137A36158617045D106A2FF534EDAA |
SHA1: | F365EE98F7E36D1BAB09E58187D467DD5F73B6F3 |
SHA-256: | 97C42D9DED1AA96C7D916B5B92F96B4E59581D50EAF629CD2C7AFB78FF26A9EA |
SHA-512: | F4330D881AE76D41083D3BA9D0056697ABD634638A9951A4EBE4044FB79ECEFF4DA034D22D9BA2AD4CD1A208FB0EC1C47855DA781D9C9DABC34979F6F7F9EFF3 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\better-sqlite3\lib\methods\transaction.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2663 |
Entropy (8bit): | 5.038581276780806 |
Encrypted: | false |
SSDEEP: | 48:bqxqZtmlAJrO8Pl7Z73n7Ig7nN/++iX0rPXXXiXaIx9sQUVAI19Q32ew:bqxfQy8PjBN/++ikzHyqIx9yai |
MD5: | 24EBF5AE6622B899148042F1EB9F63C7 |
SHA1: | 6FACDE1733ADE716AAD6AFFBF3B128F720F005BC |
SHA-256: | CC472F59D5AA3487F4AEBD53A1D886EDC6AA418F79BE90828A05CBE6CF97D4FE |
SHA-512: | EF1A396860792BFB07EEC777914CAADD7506DD135F673A4B2FEBD7154E33DAA691803281EF3167061C1AD6977923F0B150C188B4A63D410C5683FD113CACBBC3 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\better-sqlite3\lib\methods\wrappers.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1145 |
Entropy (8bit): | 4.885545880126655 |
Encrypted: | false |
SSDEEP: | 24:bKghcYOdc8e/RA6e7jTJ1cg2wNNwQuXtQVoTHVG6OBxGVnsJVYI3VD:bvhcrc8e/RPe7jTYPwNNwFdQVoTHVUcO |
MD5: | 9E2BA6058F66127065C27EA3E81B8E68 |
SHA1: | 92346423DAB9536CA4AFA50E7EF171843D5EBA5D |
SHA-256: | A150A6271D23F4E5F8953B129F370FF096C7CDC4B812AFBF080A6CF4AB741BCF |
SHA-512: | 2B6644404FEA27117B74F904BC608FA42E36E3B100F51010394EF917DF7C48F40AF018E5B06243D31D7CCBA5AB05CB32541566E79775DF482E09A107524D091D |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\better-sqlite3\lib\sqlite-error.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 717 |
Entropy (8bit): | 4.8494086674953705 |
Encrypted: | false |
SSDEEP: | 12:KK0XGXDI4F6ese8RYwpYzdsvwlB/NFMqRsuxOQhQsLEOqgStob0Bu:WmN6RRPwlBFFQux7xEOqzWb0Bu |
MD5: | E1372372CA8F94DD66666D886A81F9B5 |
SHA1: | 437034E71DEDF15013967B540DB157CBE3EAC3EF |
SHA-256: | 2582D61C27680DEAD168543F392EB102BE621DFBEF282A4CA4C7C21AA5E7C75D |
SHA-512: | 5BBFCE635AA1B10B30F1703EDED4256224500705E3B14C7CEFCD522AD703596D15D6CFEE7914DD70700827AFD01A50D61BEF1954D29B8788BF6347F96E9CD8D4 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\better-sqlite3\lib\util.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 331 |
Entropy (8bit): | 4.935492509251324 |
Encrypted: | false |
SSDEEP: | 6:QTcbpV40TvEzKF0osvWFtZ0Nd6F/tTQgMFQ9dT73I8TsH:ukVrzEWFwvwtaNdw1TQbQXT3C |
MD5: | A5D75FB36BEDB4938A8B9DC6525FD515 |
SHA1: | B5270AEF455A7DE04D31D19713ED7DFCEB55FA06 |
SHA-256: | 92B2E39E2151B43A2252E10B6D6DE876ECAF0008336A4FA1DFE1317B20F1916F |
SHA-512: | C181B25F5B991826159125A4F7AF8EC0F8A7BBCEBA674121F144F401295670136DAA64598D4E0F48CB8EA2849000AC8E7F59881220F6A30A4905CE9309DB8067 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\better-sqlite3\package.json
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 789 |
Entropy (8bit): | 4.811074735744315 |
Encrypted: | false |
SSDEEP: | 12:jhFr1iXlFFC6LZEkhF3tjQbmF2oCz8BAd1acrgunn0aAv0eWkMRhRtnPWtd+t:T1MlFFJ9ZbS1a8n0aAvzWRRRmO |
MD5: | 629B1C2E25FB59EE40517823DF0620C6 |
SHA1: | 6CA18431B7D9796F234D4FBEE3252BA93FAD0DB5 |
SHA-256: | 63ADC633F9045121ECC6963CE479BF029419774FB29C26A6DE511653513FBEAD |
SHA-512: | 5261AEBB837A496D5F3D55BD1B9C5FDFAC6CD754F98EB39B7C7D24B4BF76E492FDBB216B3CE0D943C76197B2139DFFD72791D9F245066FF8C17DA7B3A552345C |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\better-sqlite3\src\better_sqlite3.cpp
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 130834 |
Entropy (8bit): | 4.636641631216033 |
Encrypted: | false |
SSDEEP: | 3072:Bt4VS6vLXzBbPJpNdplB9RpgDfN+LAhs7LyrlOLmrw:lJfuA27LyrlOLmrw |
MD5: | 10C4A10BCCC5FAD38A6FE77A718D9CF5 |
SHA1: | FA1C969904E29D308111658F2E2BF293EA57C9F8 |
SHA-256: | 712C9E699DDE2BAE968157CACBACCAA44F259F6B185217B2EAD9CFFBB2744969 |
SHA-512: | B607F494499B2649A5D6649CDA06464E6CC151B3B5265ED0BF51865659F582E9349B1492543FED81936F334C9750CCCD75289D745665820C7C61F5A61EB88BE9 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\better-sqlite3\src\better_sqlite3.hpp
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 43382 |
Entropy (8bit): | 5.046053761534743 |
Encrypted: | false |
SSDEEP: | 768:T+4G+F/MhHU6JPLhcpHImIZKRiVnvx8NjxDXs0C:jGS/MhHU6JPWJn9ox8NVjsl |
MD5: | FA28B83BF992F4276808AFBC7C7D7F80 |
SHA1: | 459BF2302548B142969AA07B54922DBCD4034EE0 |
SHA-256: | 101E9085516DD06DC801AC232C036D676112BC7C464471DF055C11C3C2957134 |
SHA-512: | 1802CEEDEAE7FBDEC5F28A884DBD69B933936995023600D291F8A2CAA237A6746F49429D5DFDEA4E5F9EE16C7DA9C7851E30C7FF1B5A3654073CF645E2B9A820 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\LICENSE.txt
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1113 |
Entropy (8bit): | 5.157713602784361 |
Encrypted: | false |
SSDEEP: | 24:AQFrOJH0H0yP1gtEHw1hC09KAH+sUu8Ok4F+dxoBoqMSPz:AQFSJ8lP1EfdKAH+szIt6BoE7 |
MD5: | A006BB906868027CEB5D5ABF427C4DB8 |
SHA1: | 3376DF3B48AD31041825392F6598FF891CB58D5D |
SHA-256: | 54ABB741A2BA1A7FA89E98D2D3199575E548C8708885EEADAB0F5BB83AD22E0E |
SHA-512: | 7ECAF378AA4D4985CFA99DC7ED08CA3A23B57665AA0CC5B27C0C1E271EA43BB84422C5E1FA161753E8CB1A035AF8EAFBA725DFD78FCDC7FBA457F6588933086D |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\build\koffi\darwin_arm64\koffi.node
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 3831495 |
Entropy (8bit): | 6.129062638768725 |
Encrypted: | false |
SSDEEP: | 24576:W31wzTxWT+7Clr2t0oxp1kfvDNq3HXQeHUnMedmQJ6tfzSAqAL+YbXRtJ3Q7uism:HULnMed+NqW+UXjJ3ob |
MD5: | 50D6B3E136A345C3DD4DFC215E0BDA04 |
SHA1: | 73CF51ED64C9BC987907CADAD2A6836329663137 |
SHA-256: | A5315737F9993F67D707853F987D14F2BE1B891683C27A9A2CB47455218C3544 |
SHA-512: | 544AAF97D384EDB9527B34752460DD56EDAAAAD307F544F1027FDA93D15910223C413A605683C8A8F73CD93832DEB3FA035600F0774295B0A333D290698C2234 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\build\koffi\darwin_x64\koffi.node
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 4124928 |
Entropy (8bit): | 5.833481997729643 |
Encrypted: | false |
SSDEEP: | 49152:BFd6LR0oebQwkemu6p6/X1SudSfgk2j9dFQDQoGlOcdmlnMj1wKQBAz:TJPW6/X1SudSFDQoGlOAmlnMj |
MD5: | 48F0D527C28704174D5D704D718E1A13 |
SHA1: | BCE0D21568A9583E6FBF71AFD5C40D901948E6B9 |
SHA-256: | 71797C049463105D48AFBE3DDD9A339C6F3172AAE88F4D7E38AA5940256B5C8F |
SHA-512: | 181CEF8616250464DE4102BF4E1C192FCF66C2852723CA5E6E3FAFF63CDDD6BD452A59A3B550F5484BE2651F8461E484F64A7F45C5364202C785408FF9CA97C5 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\build\koffi\freebsd_arm64\koffi.node
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 4990944 |
Entropy (8bit): | 5.528491909162001 |
Encrypted: | false |
SSDEEP: | 24576:tRggLf9Dy69StE+wzOD5opu5x4qaqQqiPRpzlgkYtjaCqlh2eSf9:vgcfUNtEbpckTmq8 |
MD5: | 5D7511FF90244BC0CB665D5097707CBE |
SHA1: | E7CD18818EC22FBF1CA90EAE39F7637B99F7FCAB |
SHA-256: | 02811D7BC898112582A5BAB60AB9FF45B96536CAF016E60C9AAD8273095908BF |
SHA-512: | 1C0C191DB8D63B8D98022C49F7C7656357A0B057872D22C083785BEC6C9F9684E10FACAF2BC5418605E7A7D2342862F04560F78AA1EDD5ADD4C247158BB30E17 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\build\koffi\freebsd_ia32\koffi.node
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 4180724 |
Entropy (8bit): | 5.976515990960587 |
Encrypted: | false |
SSDEEP: | 24576:/lQlcSZB9sZ3rbiyC5/FE9W1ihWLpJyP4UFzN9QME9:uYiyIvihX8 |
MD5: | E65A8A0209B356F7909A9A963491663D |
SHA1: | D72521B132523ADF331ACEC6EC5BAAE155D0A7CF |
SHA-256: | FC5A0779F0A6CDD4DC122032FAE7802DBAA83C3F4193ABCCC7896D61204251CC |
SHA-512: | C9613075C9469B5BCFC918244ACF3E734855C063AA1BB3439D4180E2F770D00D46C9BBE1FDCDE5A2546AB6787089BB4685F44C612DE637A2F9CBCE28BEDE3A7E |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\build\koffi\freebsd_x64\koffi.node
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 5446192 |
Entropy (8bit): | 5.395686282510647 |
Encrypted: | false |
SSDEEP: | 49152:69MS4wP0OmQJ159NNHD+QbcS8S3lmpJPc+1gcvTU:69p4tIJcIViycvI |
MD5: | F65219783B15EB910B3AE0A958C0A03D |
SHA1: | E09ED43A396CF0F3A044302F4CB1B3419453168E |
SHA-256: | B8E64D356DDB6402F2A2DA70F53751C75E935B826C1B0A77896F3E6F2B13925C |
SHA-512: | A9CE37B546D62DC46105842C91A2B7A409724F6FC43C5DD94351645B47D03AF82ACFFA3895014E0E8892B21BC45A4129A10023CC3A6889C052470FB3346B6F44 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\build\koffi\linux_arm64\koffi.node
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 4822104 |
Entropy (8bit): | 5.699925148936573 |
Encrypted: | false |
SSDEEP: | 24576:heYAt+/I+JP1JvVNamSdRhETj7X9v5yiXKDGpiJX4za5:hemX1Jv7vz9v5haDGJza5 |
MD5: | 7D28C4EF947B15C7585F4CC5D71D6F3A |
SHA1: | F8234B55A1850AEF79CBB91D2AC6B32312DC5DF1 |
SHA-256: | 21ECA0E6F2C13CC129A475032AE8B30D43967458E4F7634A1CA72E379F8D9CCE |
SHA-512: | CEB9515678C38C3745BC188868797CF119E102C2A7B4CB315CCF02ABE7DC2ED1B4508BD458DF0DFCCACE95D3A44768038EA2D9479BF9E0669425C2D2ACE4D9E7 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\build\koffi\linux_armhf\koffi.node
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 3671900 |
Entropy (8bit): | 6.138780985159059 |
Encrypted: | false |
SSDEEP: | 24576:8S4fh4OKPwXauJNHwKl96W0g7JAdnGQYYzInyelANnscSPytysVYyP8:Cf2qHwKlQW0g7JAdnGQSjc9tykP8 |
MD5: | 1E2FDC196588926EC3DFF772A30507FB |
SHA1: | C827F3BE82F8912DC14768A2DD8AE64F72764BED |
SHA-256: | 86FB843A2ADCF82C733A6AA7094A8A129BE7358AAB7E4A4CF3D810A0F9DAA69F |
SHA-512: | 3B580A3DAEF4422F701116929B4F2D69AC4585921DDD527B39C5FA86772FCF44447BD733A90A1658B7207561C406D22D5BAEBC5331325B99A615B792A08E2DB7 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\build\koffi\linux_ia32\koffi.node
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 4134680 |
Entropy (8bit): | 6.1022554113149035 |
Encrypted: | false |
SSDEEP: | 49152:7PowX2doXxylkpTRVSMp68h4HsNRm5eeMYYPx:DHxXtdbBs831yYPx |
MD5: | 5EE031CCFD91CB608D8938C9D0B8D864 |
SHA1: | 0D9C10D16CC4EE2D1DD3100567C1EC7C62F11305 |
SHA-256: | 828545994AB61867F29919AD897220BC2439B5D4A04BD601798814F9903E67CD |
SHA-512: | 9AE0100765307B4259F0A4D1980B63F34EDD97629F0CA9E121BD79E34CC66EA86B451F3E5AE25A5FDC54EBC47FF66D6C7DB36C7302E444B3229CAC320B3A0CF7 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\build\koffi\linux_riscv64d\koffi.node
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 3478544 |
Entropy (8bit): | 5.488253190226225 |
Encrypted: | false |
SSDEEP: | 49152:ujl4c4KEeeeeCCCCCLhV9J5523wRy4ixdsmONN:u2c4K123wRixSmONN |
MD5: | 225716BEF12D79ED690D902E2AB1AF68 |
SHA1: | C3B27A409BA71386C748D2F4C3FF013485A8747B |
SHA-256: | ED226BA0CF384700183EAFF432F772224F6DF265CA27163738E1BABB04211639 |
SHA-512: | 26AD9FAC424470A859F3A34F5994B0FE75373DCFFBB1366426B71AD38B0B21FD4A411CAB2386365BB826CBE9339E49732B36408910AD9868F1063357FCA2F951 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\build\koffi\linux_x64\koffi.node
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 5369560 |
Entropy (8bit): | 5.462478218283327 |
Encrypted: | false |
SSDEEP: | 24576:LBYK88TJAowz3NnAnVm0ENvNXDWlPwOaYvJswGa000000000000000000000000y:1MoE3NnAVm0ENvNXDnOas7ugcBiOKI |
MD5: | 417492F0773FB13A40B92B38F1903AC8 |
SHA1: | 099CF0EDB29D751E86356DB9704B24630C3DE109 |
SHA-256: | 472926A9E519093AB94B43602E7856E41B04CB17B5A8C80A714636634E1F8BB8 |
SHA-512: | EB57E6D5B85FA0BA721B32AB9573D6A2B27142F7E082BF9A3D054D3BC3E4B1440107F96350BCB0B984E6D4C0EB9B984C40A4E4C5B8AD21E4C16929BCCE2BFA07 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\build\koffi\openbsd_ia32\koffi.node
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 4246036 |
Entropy (8bit): | 6.033960750127902 |
Encrypted: | false |
SSDEEP: | 24576:mNYJDVZavhtJq7Hy404TEHZBgyEZuXb3sYtC9ifeKK58fg2sSCFb8HpIl/IC3Y4M:hyg7SihywuXb3sDAfeKTbo//Y4M |
MD5: | 5F85C836B43DB943BF557A218955AB98 |
SHA1: | 5647DF0F8F4FB9D4EB964760952D11A7D328FF4E |
SHA-256: | 4DD4D4A79F410ACEF3D42361232DBF09A7C63C2A1B8B8D20BEAB0D2E423FF916 |
SHA-512: | F45A33EA16106E772394FBA3DEE4EF943FD3562116D5490E0A581547A6E548A9D460B47183B51F3C170D438E9B879BD7BA46D456C8A2675427A081597A3ABFD9 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\build\koffi\openbsd_x64\koffi.node
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 5450696 |
Entropy (8bit): | 5.417570893453627 |
Encrypted: | false |
SSDEEP: | 24576:YW1NLEJxYmFCOJ/xeCZad7u9r43paDG6iLIQLoJ/HH3iS0bJgf:YWTnexe8Oar43pyG6oIQLoJfH3r0uf |
MD5: | 57015591824271DEBEAF37DAB567B3DB |
SHA1: | A0B1D1C8FB6D8943A25C2E7F024E088A5331CD80 |
SHA-256: | C822F6A7282B705EE75BAFF7188DAD067F9EDFFA9146CF375BD9B7234AD46360 |
SHA-512: | F60EF978675670C6DA894C87D1ED86D6882D8A193E104CC98B550C5F6C722C2E906108AB1834D43BC7CA34A567154C8997F8BD4124BF356E30B0E25E6F47114A |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\build\koffi\win32_arm64\koffi.exp
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 994 |
Entropy (8bit): | 4.691763402396127 |
Encrypted: | false |
SSDEEP: | 24:tDJ7O19vcnTE1AKO7/o+PENjJ7AnHx2xu3g41J66J7O8:tDUHcnw2KObLPyER2xuQ41J66U8 |
MD5: | CE9C2BC5A2D4BC4AA10DD23ABF197FF9 |
SHA1: | F265B8A04B599E37500ADCFC526F8CF377F22B7B |
SHA-256: | 6B40E50DDD3E8203186BE828D7DB546EDA74C4E6F8A8CE8FCFCFFCCE842CDD5A |
SHA-512: | 38FAAB8311DBE063E4F8A2F1ED372BB9FDB8E21D94EBAFA7FFCA06E87BC422503917FC12EF4EEEC0CC8D92E3219891A4F4FDE3748755520098C560C01CF4790E |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\build\koffi\win32_arm64\koffi.lib
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2054 |
Entropy (8bit): | 4.681109553132766 |
Encrypted: | false |
SSDEEP: | 48:zTjOr33kP9tkUL9FnF1K/yAOKY1KMBZ1KJeFF:3jOzUP9GUvKqKYKJeFF |
MD5: | 323BD2201A653FC61ED133441F8C09B9 |
SHA1: | CCE5EBD7946AB0C3049259CF82124B2F572A83C5 |
SHA-256: | 1A812C9B32F98CD6B0B2DF145710D58AC050F661ECE7277DBDDFC8F0E76511D1 |
SHA-512: | 0435D5E2D108377EAFE6BB898DCEB523611B3E15A5BD96C45949091E06D0B2E6EAAF4C5BC420DCF70A2DCA6928DF1C06E2EDBAAF504140146D1DA14D667CE66B |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\build\koffi\win32_arm64\koffi.node
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1925120 |
Entropy (8bit): | 6.072897753666793 |
Encrypted: | false |
SSDEEP: | 24576:IiTH1poDDuAS+0KROeJAB248MqNAT5If:81ROeJA |
MD5: | D342FF0DB6B167F1ED55C4626EA93667 |
SHA1: | 86D63078F841455E9FFDB5C3F3DA502D61B349B3 |
SHA-256: | C80CEFA03B725B1A614E4F0E4843232ADCA9A2B6DFCA85BB57826A40A11E4285 |
SHA-512: | 758C4192D92CBDF3F604ABBBD3FC728BA83A261E7A4357B2202B54946C3CA15FE403A8670EC6D45DFDCBDDADCC4BF0417DF97A82F78BFFE63FCFC2BB178C5A33 |
Malicious: | false |
Antivirus: |
|
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\build\koffi\win32_ia32\koffi.exp
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 992 |
Entropy (8bit): | 4.690639541557047 |
Encrypted: | false |
SSDEEP: | 24:3J7O7i6lPR0nTZyQHAKny7aEG+PEN1J7GHx2xu3g41J6beJ7iA8:3U7LJ0nlyhKy2EZPasR2xuQ41J6ix8 |
MD5: | F22F145C93CDF384A697772BCA98105D |
SHA1: | 9DA5B7AAB23A1A442888860A53FBF455E7284D3B |
SHA-256: | 11A8F2BFA154E737491D3DC92E369A2DF8409405F82797C65B8A99E8546ADF7E |
SHA-512: | 08A87D3E52131F47338469103549A1807489845F47B672268C6A5ED819C8BC75539768D1E01CB00583054CAB9A6E49664AF69D7BB1F43ACB6DB89F7EBEFABDAA |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\build\koffi\win32_ia32\koffi.lib
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2056 |
Entropy (8bit): | 4.683959727845751 |
Encrypted: | false |
SSDEEP: | 48:sQrfrYh9Gr3xL9GnFAKwtyAO93YAKH1BAK/7h2V:1rUh9GDx/KDVKQK/7h2V |
MD5: | 255FB62E1E23B24EADA82E53E443F07F |
SHA1: | 23278E3F0B925AE584A7B5706B1A1D4A9C43468E |
SHA-256: | D9F3E452905F6ED62F2D6520B7812A1D6E25C80641E6BE18F6E489984D3FF549 |
SHA-512: | FA852D45B7B5DDA1C7C43BFF679B46246DD5509D60F352F4B4EC248C372EC03F16AD19ABA9B14CD2F76C824C1A5C7178174EC89120D48F18594C36025C5641A5 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\build\koffi\win32_ia32\koffi.node
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1667072 |
Entropy (8bit): | 5.9415456745544475 |
Encrypted: | false |
SSDEEP: | 12288:MpBXB69Y4mIDZ4r3sPOEAjFbnQW/+5JQgPMnn9H8hF6cqcpQdCcq5ePBZwEj:aXB69Y4mICYPOFFoDqcedomS |
MD5: | 76FC2892D6DC45EFB44568216537BF48 |
SHA1: | FA3D2A4F2E6F9FAD387A836BCECBF8CB4C0B997B |
SHA-256: | A14DB9B048D562F81B6955F417B29A2785A2517F660D8A80C8C505A5FA7092FC |
SHA-512: | 1E57AD23A7403061C5A77B830C3D8E8D310A5968FF6277C1DFAFEC8C006638A4A0C8E08E12CBEA870415F457025E924EB1C75E82A788768DA77E15D4CB56E7ED |
Malicious: | false |
Antivirus: |
|
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\build\koffi\win32_x64\koffi.exp
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 983 |
Entropy (8bit): | 4.687981769892313 |
Encrypted: | false |
SSDEEP: | 24:NJ7OajOLBLflnTiK6AK/b75b+PENZJ7AnHx2xu3g41J66J7O8:NUtL9nG6K/b9yPsER2xuQ41J66U8 |
MD5: | DAC8EE10A2B943D89635C78CC5F4CEE3 |
SHA1: | 5C0A565A1F1B3B2B5F93BD17CCFE28483E5C61C4 |
SHA-256: | 8E36F92A0B59EE52F7FE475B690494ED9AAAC63EEB7E135F145B26CFC9856B9A |
SHA-512: | E6AF8EDD01BB9D834CB718B31F815684A4D39C5E6509BC076EA863B9A6C05A92FA73EB3BBEFB627A99EA1CA8843B5557C88940B31E57759FD7F5E024006BEB9D |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\build\koffi\win32_x64\koffi.lib
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2054 |
Entropy (8bit): | 4.673829772127721 |
Encrypted: | false |
SSDEEP: | 48:zTjOr33kP9tkUL9xnFbKtsyAOOYbKKBZbKUeMF:3jOzUP9GUpKttKQKUeMF |
MD5: | 19DA71311E3C842D5F4121CDF5E286E7 |
SHA1: | 9F19BBD5D0C871E9605185A7812C135BF5C4D725 |
SHA-256: | FAEF5139526F707CCF9340BE5B280179D726DAA8287635B0A20868B589FF0CDE |
SHA-512: | 68518A0BCA1B0E1DB763A53EBA9834A7F8BB3D1F64B8875B2608B7710414E6A7F6DB634B774F7D2A6F37FC4038E0D4999BD47F6EF1252E449A6CD57AC893B3BA |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\build\koffi\win32_x64\koffi.node
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2335232 |
Entropy (8bit): | 5.920531471429678 |
Encrypted: | false |
SSDEEP: | 24576:/zwowHmvosz0j+3kXSxVkuOsPv/w+Yuz2TPl4y:/zwoimgsz0i3A10/w+ZwPl4 |
MD5: | 9694858C580F1CE0B7608AA5F29BCF99 |
SHA1: | B152DA6B0870356B5B2D554D6212787CFAC3EE29 |
SHA-256: | 303056C1AEEA3851183BA790B90FFB9730113A577E3C6B4EF1FC740B16F71067 |
SHA-512: | 4197CDA548D7F767EF949AB71E87EE379AAE240BE140881ED1780C67F77341074B5D5880E0108FFF403AA5B1224158C514B92AB3F8C93F6C2D2AD6F7CCB5E9EE |
Malicious: | false |
Antivirus: |
|
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\doc\Makefile
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 632 |
Entropy (8bit): | 5.181106422536829 |
Encrypted: | false |
SSDEEP: | 12:o+JYk3Ia5httkkDQJL9Lk6zGJ4GYO+R/wRBvehK2IacjOsaw:LIa4kDQXoSGYOWIRBGhKDdjOi |
MD5: | 6E0D2A5731A5FBA2A071BA9A7C631003 |
SHA1: | CA8D9EC46516B65D0F2DB881A48909C130565415 |
SHA-256: | F9DC0EC6C169E122E1CFB28FCEE331207C383371B6442634964A680CAB906078 |
SHA-512: | C904509B68858819D23A86D2B8A68D09792220FD04BD1DBAFCD234379289E38FC44E6399CF75D019018E9C8CCC72DC5C12E6CB9E24B97134575B7378A72019C6 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\doc\benchmarks.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 6010 |
Entropy (8bit): | 4.828543656337613 |
Encrypted: | false |
SSDEEP: | 96:MF+y+s+1+KRb8FKqOVABOlhVAM+svt+QF+7+HBZAfYju8CKqOVAVLRhVAMNgd+nU:MoHN4KRb8FnOVhlhVN+MwQo7+HBZNy87 |
MD5: | C6926DD71ED91606B6F18BE48BA74453 |
SHA1: | D4F2093E2059D40C98A410042E0C73C8D0E133F4 |
SHA-256: | 108EA2635D7CA49A16A6F9577AC7AC2823FC22049467758FDE176283650996CC |
SHA-512: | CB5BEAE82A708C6B30DE54BE8C654EE0776DEAD406551D94937AA83F727D1736D22DC1D096B02A0EE265BE7C0F6E41EEFA3A6277AE26F2C6ACF10AD3EE0E8230 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\doc\benchmarks.xlsx
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 26050 |
Entropy (8bit): | 7.523107787833651 |
Encrypted: | false |
SSDEEP: | 384:7PFO4QQu/yoKxD/ZiwvWFeAm7GTvOVjye4LgS50kGqawVjyeyKO8s8jOA6:7PoaZjEbeOgS55GFeyWVj36 |
MD5: | EBEB4124429C36059E251E5AC0E75A7E |
SHA1: | B33AA7E1BF60DF58954105641EFE97D2D98F74AA |
SHA-256: | 889CB6D4573C0EB51547668B103D35384A40F3CEBC1C23DEEF702C9A8468C460 |
SHA-512: | 0732EF3A3E0FB5AF3AE005912569C6B803806C734BCBD0EB7B0684D55EEEB7C0B96F3F9BDD330B741FB9F5DD2612F1B68E7AA2A96743122B545B58850F7DD0BF |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\doc\callbacks.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 9173 |
Entropy (8bit): | 4.944051405070789 |
Encrypted: | false |
SSDEEP: | 192:HRo/bxZkLVLiOhoHrG95jSrKySR41jrqDQsGxvqjrlSSl8RFCuTCVZITb51sbap:ODjXwoLsfPl1K |
MD5: | 800DECADBE5C2C428517CED5CA3600C8 |
SHA1: | 346A28C79076EE4E62E3DA2FD1E0A56F9F8A6F98 |
SHA-256: | 58DEB5F7B921C60AFB340485F82831EBEC1D38B233E916FFF6609C054D8A1C30 |
SHA-512: | A9D4FE46B8C0873AF36FFC378E0488F3B0D58093817ECD1A0261338C99C95E816B1CDB695C277559F22371E7442CE45B0C0EDD21C50AE1D3EB8FC3FDB9D514BA |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\doc\conf.py
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2557 |
Entropy (8bit): | 4.772190877022467 |
Encrypted: | false |
SSDEEP: | 48:7Hu3dFaQEFdE6AKiZOifKzfxEfKNlyl8RP3VxkYmZadgcfJC:GFaQEFdEw23V8lylWP3VxkYmZCJC |
MD5: | 91DA1DDB617E87AF0F4671289DFC5E14 |
SHA1: | ABA772D13A03DC5454CE56671636516337A3FB6D |
SHA-256: | 7E6B63449D0E4169F3AA20CA799CC1430A69A9279B1733F68A0A1818E22FFC4D |
SHA-512: | A091F8EC359F0EAFC2AB9AB67F5D0C4813BA6D57BDC395ED3CE1877AEF4316573BC33661D0910395B9FCFC9982CE60E732A4477BEE326412E1F3F1ABF1835CA9 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\doc\contribute.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 5326 |
Entropy (8bit): | 4.868660476282196 |
Encrypted: | false |
SSDEEP: | 96:kH08TE0YKHtxIdIWuGT9yv+lqyv+UcvB71T1SNFZDVd0NlrCbaSpPcu:W0w/YqCam/mUcJ71TCLDfArCbaS6u |
MD5: | 664BB71444F4DA4B402EA3C6F94E4FDB |
SHA1: | A65444834BDF2BCBF7B07133F017BC12586F5992 |
SHA-256: | B066A610D84146DC4E4ED5C29383C3A437E51232CD531AA3DC15652ED985050D |
SHA-512: | 4BBC4252EE1BC7CAAED31844F5E9D1D55C35EEA201108FC03F97AA5F6F423E398597C8B7D4F4485E45AEE86500302336019257AB2F122D876A3B4F676FD43467 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\doc\functions.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 9731 |
Entropy (8bit): | 4.980766463138892 |
Encrypted: | false |
SSDEEP: | 192:kjTeRkqD2uonoiy1TsVUo/0UID09qrmQSDyHNFVYSnUI4wrwKNzEyLKtjvb:oeRAoiYAmoS0kCtuNFzeUwEI8Ktjvb |
MD5: | 858DA198AE5111763CC6635EEA6E82C5 |
SHA1: | 9840F8BCC25D75358D074B6E71ECC360BA8D6DE8 |
SHA-256: | 569EF614B4BBEA829F7E8509B8C23BE545D417D313FBD90CF2F7D7F4D01F2A24 |
SHA-512: | FC520E3E83943D3F88FBA2CC2144B56DBCFA1072529B076A871CB6B6B34518E2530221B5B0F46E6B6B59B4BA1F6F983399585920260BDE13BF8BBAD356B080D4 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\doc\index.rst
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1246 |
Entropy (8bit): | 4.8222351919545705 |
Encrypted: | false |
SSDEEP: | 24:sflcWuPo8nw1o3/dyL6MyGv4dkOhP4KTwzrM8WqRoe3H/P+ZQd/J9OvHTqn:s9Io8nw1oPao60wDP6AH3+ZCP8qn |
MD5: | D742287C9311A3264B0FD21D29D0EB71 |
SHA1: | FDC1C9C3B145D208FFE57E06BEF7095E5E4E76C5 |
SHA-256: | 0E565D14222A0138ED6C887C7A325E330FCEF415A228229E69272C9222D12199 |
SHA-512: | 570C685909A2023C29ADED8FA84831FB8297487841A17CA26C71BB66FC50CF89D6A7BDC13108325D4E7C3DC772E31D5580E5F0FA1A7005B7535F8C401FDA87D6 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\doc\input.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 14637 |
Entropy (8bit): | 4.801095691232102 |
Encrypted: | false |
SSDEEP: | 192:rRml101t9JpUNefqYvF4UGQrY7GWna9CQg3bXjHIRpTmDH2ei8gyEZvWs0Q5G:lWSMNwVF4QrrWna9C/DwYl+dd0Q5G |
MD5: | 369F2155FE5DAC4A51B5D125E3ED0B71 |
SHA1: | 64396362BDB4FFFC74B7FF5B004B3C65A1D0CD5B |
SHA-256: | 48DE9C0AF5C1BE74F04D3C8F36EF8B12D3A3B215B8CCAF4F22AC96B46734EA09 |
SHA-512: | E4D61C892FB364E622E137DA378C4853773046D4A7DC6E147410CA908C89BFDD27F4D90E47A9D00D1D05745543E8D5EBB77A7E2723858ADF4B2E97A179040F8B |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\doc\make.bat
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 763 |
Entropy (8bit): | 5.346721964153218 |
Encrypted: | false |
SSDEEP: | 12:/bOG2XivO5XEXTNiEQye1zW8BjQl/DEc8iooTAfuy5TQomXcrOVEXcuO07n:TAivO5XATnWWWjQlLEVBIAW0POctc87n |
MD5: | 26990BB64675E3155CBAB9633EEE7469 |
SHA1: | 9BB64DD553AFFD19313D3EB975ADC2BC99B6A4AF |
SHA-256: | A93DD1E6409C05EC39CAE708BAE0BEDAF6C7CC1BCE7D9CA06B027A94878301BC |
SHA-512: | DD9F89191701C0209F4C841CA082E0F9E92CC1125A168F72C521A3BF5C11F1C77156BB68A30EB3000F374267B7F31D8513DFBC346A03DB79D108F3C8EED44540 |
Malicious: | true |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\doc\migration.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 5006 |
Entropy (8bit): | 5.206857415729483 |
Encrypted: | false |
SSDEEP: | 96:2y/ZlexELVLi1esRqnE3Js7wlevMr8+i8qNrNw5ZK0wWDVmsVlP:3/DLVLipkEZs7l98aTsf |
MD5: | 019FD8B46BDA42C8463E7207369016F5 |
SHA1: | DB7FFBD8E9FC6A1519D7A215B053F08DD77E75BC |
SHA-256: | 5D9C02553AF834639A2E70AEB976E2AE769BD5204A6F738D2985FE6B03E6D28C |
SHA-512: | C8B5A790CF43E262FAE64588E3EA0A05030DC6771F345D2D7AC2A045E62DEDF370815F210CE9D627F9518821C614CBDA7B959C264338575E5258010F595B7B41 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\doc\misc.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 4927 |
Entropy (8bit): | 4.911713453417361 |
Encrypted: | false |
SSDEEP: | 96:WcKdQRvPYzRaNFH0fh3QKEO1E4S9QTQ2SWg5+PS+dPXbhKmoskytvOlbyh+:jKdGHYzRaNFe3QKJvS9wQ2E+PS+dTHob |
MD5: | 2C746E3DD0A05705095518D5D0A69F0B |
SHA1: | 7769F32EA3706074A600EA8A5F59E43B5FBAC2FF |
SHA-256: | 61AE6799BE330102A740A4A5CC68FB7E485CB67041D2323B28228ADF91B4B1DA |
SHA-512: | E7E76A02A6B2C7253A608DF6663DCFD360E1839AECAD85CCC974831FF21F60EF125AC8AA894F1236C139163581B1C81BED27BAEDE29A644182F3F724E2973289 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\doc\output.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 8188 |
Entropy (8bit): | 5.092213227402612 |
Encrypted: | false |
SSDEEP: | 192:qYZRTLUanz3E8D6CO/TKMi775rxPxesqw28y:qYTvUanrjDAOl/qIy |
MD5: | 8519D7629A42B974D7986E2AC792DB40 |
SHA1: | 3FDC5A057E2A5483A086641D5BFFEE98915A9E35 |
SHA-256: | 801CC61C9E3A726FD06C940C52CAF821DB39B3A89E61DAB03754AF4D8CD5FCDB |
SHA-512: | 33077C3E2B8959C3883EC747BCACC608B2F69CBB172B7494A3DF45CE73DB91928D9ACBCF1052DE2DAF0B55A102BCCD4FAF8D2135931140FEDC0EAA4FC2CA2535 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\doc\packaging.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2430 |
Entropy (8bit): | 4.841315860057721 |
Encrypted: | false |
SSDEEP: | 48:GMVT9l6RxaUSmQi5YRXapCMi7SgCRC+GCW6CXyvHJ6o:vT9VUnQi5KqpCTugCRC+GCW6CiR6o |
MD5: | 926D55296C1323461C4B6EB1CE222B41 |
SHA1: | 89D66D208A58858E1DCE0E7D1F7DA0C3E2816D42 |
SHA-256: | 23600B7A690326E8080B94280ED45431B277D131CCBF746874CB02E3522E2E73 |
SHA-512: | 5B423D18CD939842331AF6CC496911F29B951F6995D3081787FB4CE63615CA856CBA23D66272D8D282BF159DBE0E182EF05338504337A8D615CEEB41487B561F |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\doc\platforms.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1869 |
Entropy (8bit): | 5.145308632054346 |
Encrypted: | false |
SSDEEP: | 48:0wdA/WSWSzOAQE7hUUnK+JQQNDOJQQ9FjtDOROLV:0wdALKAvNnK+JQQNDOJQQnL |
MD5: | E9A3C543CAEAFEC9D25ED142A990F6FA |
SHA1: | 0A85A5D9D7712B20C4CCC368004CA7EAFB41AA96 |
SHA-256: | 5FA10992240173AF7DB2CC75FB2789ED027914841E43A62CA54071F104633641 |
SHA-512: | DB40935E52B8EA72863990FEEAA6A1781BDB0AC0720A630F6F12630CF3A4AA6EB904A8B8DD3B03139FF305469964B2996FFDF60CC650B4614683240A45DC5BE4 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\doc\poetry.lock
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 13358 |
Entropy (8bit): | 5.087133241596997 |
Encrypted: | false |
SSDEEP: | 192:w6j0G8GaXVG1m619iiv1ksczc1nSItnxGBh+w1u+0wF0QXAU5GEOBK9GKpU6buI0:sG8GkVGpwvk+lG0GAbtlgl |
MD5: | 5286B32E86776F17707C7C34EE2D2909 |
SHA1: | D17509E36B595808B6966947E5ED13C43CBD6FB9 |
SHA-256: | EBD1E919279CF736DA4A373F58DB734675514D7E2CCF1CB6876CA8F6FF5B6438 |
SHA-512: | 99532C910B8A5EE58712385F12B911885A1FCB77B353953BCEDE7929E7B1887F6FFCB24B9024456BB72632715363B651ED8DC32AB4F3D7A8E01F302707E8416D |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\doc\pointers.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 10475 |
Entropy (8bit): | 4.900053715401539 |
Encrypted: | false |
SSDEEP: | 192:t6oVGNQ3ICF3x+29u8I3jaD2mDxC+tbygI4qYkztgd1E/t8WganQu:HVuQb3oQXCjKT/OlYUQu |
MD5: | C01611E9CD4F2941685333598D3AABA8 |
SHA1: | 4439C240E4D0F78C4D0844EC12F330FE94C9D66D |
SHA-256: | 7811E6FD226CA1C15DF5D3ABD57526CCDE7ECADA0BEE02F59BD8D40A4DEDA964 |
SHA-512: | 9F5E958FE22EAADDA753519F0D9B77E937F0948699EFD8DA7F6036AAB1CC79B000F93A64FD2A421F5583EA6DF5C26C04E426F82D5CD5DA68B4D937253E958A0D |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\doc\pyproject.toml
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 420 |
Entropy (8bit): | 4.95360084861476 |
Encrypted: | false |
SSDEEP: | 6:sJThAmHOkHuLQhoNyEJAV2jlHqTyXbTm2gOC5QTOytU10dJ2YFH3+dHqVO5jSDMf:IuXc2j0OvDTPtUGLU5mDMVHiKb |
MD5: | 1C7D20B2FA457F92C26925D9EB9860AC |
SHA1: | CF8DE69C9A8BD598051D44C0F273AEF059A2A76B |
SHA-256: | AE0A6563582712FEAA6DBA820BBCB2DAB89F62B4CDF6EF55122A114ED2276008 |
SHA-512: | 7252B182DEB5BE4E16D70DF1A8B3DBF1F526697AD7A7ACE717A20E269A71790A41D616F2117E5887CEE97D333CC3FD1E88815577CC6D3B78A23789B11760296C |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\doc\start.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 3341 |
Entropy (8bit): | 5.144139173743683 |
Encrypted: | false |
SSDEEP: | 48:tjE7dgei2qsY2h1pDrcCOQIkKKTQmTbYYy6ff7ds7eT1pDQctuwEpFgRvuCJ:tjEmeiBfyHcCOQmKYYV7d7TkP2vTJ |
MD5: | FC3D331C7D17823A1CA4A85215B6DDC5 |
SHA1: | ABD710178320A58DA9FEAACE36172C529459E11E |
SHA-256: | B125F3D136E1F3649F6355A72F0CF5B2C5F289D60BF87A57F450B6B799ACDD53 |
SHA-512: | D487EC68CCC11583B65FBC305ABF57FB6709C093CF80BAA1FE5D08FBDC81211B9E896BFD80FFD708CA83E2DD6F4C4ED20ADCDDF04A7A66C4A53B5F59EF79F123 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\doc\static\bench_linux.png
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 50684 |
Entropy (8bit): | 7.84617352152404 |
Encrypted: | false |
SSDEEP: | 768:ouC/tnaS6y1gevqzx/0uloiUygNllks3hDQ0LYUzFCaSzQedrQ64yOku8c8A6R7G:oraeqzx/xCh0UpClud/k7TUn |
MD5: | 98DB0B11CBFF7CDD07602084C163F6E2 |
SHA1: | 0C7828979C1E2A559C5CBE21ABE5295E0B8742C3 |
SHA-256: | 7910199A404A5604AA5C4CF12F196FD41411AA971232E0B353C2AAE7C6FFB445 |
SHA-512: | C357293FBAFE5A33EA13329D39E5AEAE0C584483BB04E5675E955CEB8EEBE5821E738D04E96A66685FFD1309B8E2AF652AD2F79429AC41915FF69B0A502DF51F |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\doc\static\bench_windows.png
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 51775 |
Entropy (8bit): | 7.8798702535518625 |
Encrypted: | false |
SSDEEP: | 768:LwBcsFZ1Xlt/9dTZLdAo+gy97iDdNgbyUgyDI+am7ttbbfldAH8gpvW2hMzC:LwBciravgUEuuyTaettbbfzNgpXhMG |
MD5: | 001048ECF67FF6BF7AAC9819169A0956 |
SHA1: | 983E6B1369E4F619A8D607CE34104F8DEAAFDB96 |
SHA-256: | 258D0DD876EA67F3195D0B01B79EEB58C3463D4527F16D45DDC489210DCB3567 |
SHA-512: | 6FC6E3F35D9CFD055A1A21C8DFFCF4F4ED60D5782B2EA6BFF3E9D9DDF1CC96B98DA53401577B615E66CDD86755E47A3615325D768FB35398BFE318BA52122D97 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\doc\static\custom.css
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2118 |
Entropy (8bit): | 5.1716550066273 |
Encrypted: | false |
SSDEEP: | 48:CQFTyJYlPY2En+YKAH+sbIT9WXoHmW3YRIPAryqA6sulC5zRc5FnHDzgTi:rrPYV+YRHzoZ34WkHDzT |
MD5: | E25D4D03556DA6E612EAA74CB8E698B6 |
SHA1: | C09E3123D868325E83F197906DC56436FFF7328D |
SHA-256: | 1A5F01A60193F6F8A2F3CD32F86CBF753EEDEC0D6BF1337720AB395B9002EABB |
SHA-512: | A8796AD6EAE4FE9ED5ED57C8A3AC35710528DB0677341F112CBE9B02636102DDFC2F95A10951FCA4153F6C9AE42D4C00189206A59930464DAED24F737FBBF510 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\doc\static\node_c.webp
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 9892 |
Entropy (8bit): | 7.876879987703738 |
Encrypted: | false |
SSDEEP: | 192:Yg1171nCEURn3+VKzcT/VGQZfD5S5fefc78E9RrBbVa0zPa3:/b1MJHcBGo7I5YeP9RrNMCPa3 |
MD5: | E4F92440790608848DC364C5942EB1B5 |
SHA1: | E494A362471EFD62D9232A986E3BC47F4725E558 |
SHA-256: | DF6010A9EF056B4DCB0577B6BC4D803EF07948C2A844C32B593A7286A7B91034 |
SHA-512: | AB8F1487341B3F034ACE663DD1D4AAD24A0F4F96A8291ADF542F71F961EA94064AFCF5534C2F73B80F663F306BA9DBBF69DC88D1A301EFBD5D1089D635460056 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\doc\static\opensans\LICENSE.txt
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 11358 |
Entropy (8bit): | 4.4267168336581415 |
Encrypted: | false |
SSDEEP: | 192:nU6G5KXSD9VYUKhu1JVF9hFGvV/QiGkS594drFjuHYx5dvTrLh3kTSEn7HbHR:U9vlKM1zJlFvmNz5VrlkTS07Ht |
MD5: | 3B83EF96387F14655FC854DDC3C6BD57 |
SHA1: | 2B8B815229AA8A61E483FB4BA0588B8B6C491890 |
SHA-256: | CFC7749B96F63BD31C3C42B5C471BF756814053E847C10F3EB003417BC523D30 |
SHA-512: | 98F6B79B778F7B0A15415BD750C3A8A097D650511CB4EC8115188E115C47053FE700F578895C097051C9BC3DFB6197C2B13A15DE203273E1A3218884F86E90E8 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\doc\static\opensans\OpenSans.css
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1581 |
Entropy (8bit): | 5.128438923992306 |
Encrypted: | false |
SSDEEP: | 48:1IXOLo81aW5j5gZ0ilY3QLoKX1uZ0lOCov667Z0LlY3QCo3SWvZC:1mOL75j5w0oYgLT1G0lOCv6l0JYgCJWA |
MD5: | 486A1D2DAEC89BE0B1F525C7261A4A9A |
SHA1: | 7896C89C8F4B56159418723C70746EDD3B6B75C5 |
SHA-256: | 074336574A726D69F77F55639AB4338FC8D30C41F661E82519F02A29A34C9585 |
SHA-512: | 37E2884B5D6A1CA91ADD6E61854DE708B619A933D5F70345DE21BB9D0F1107911431621745E336893C48C89158849FE1A382B354A628ADA24474AA1550B47FD7 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\doc\static\opensans\OpenSans_v17_Latin_Bold.woff
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 18900 |
Entropy (8bit): | 7.96514104643824 |
Encrypted: | false |
SSDEEP: | 384:nejx4dDcsFhu/3v79dEAUdH6XSw1fz9fKQm9LQNG/X1epB:ejadDrhYTf3Udaieza98Nbz |
MD5: | 1F85E92D8FF443980BC0F83AD7B23B60 |
SHA1: | EE8642C4FAE325BB460EC29C0C2C9AD8A4C7817D |
SHA-256: | EA20E5DB3BA915C503173FAE268445FC2745FC9A5DCE2F58D47F5A355E1CDB18 |
SHA-512: | F34099C30F35F782C8BB2B92D7F44549013D90E9EEDE13816D4C7380147D5B2C8373CC4D858CDF3248AAA8A73948350340EE57DAE9734038FC80615848C7133E |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\doc\static\opensans\OpenSans_v17_Latin_Bold.woff2
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 15056 |
Entropy (8bit): | 7.984680532189018 |
Encrypted: | false |
SSDEEP: | 384:30+gD+0lYYJjB8XuRkEZ60P+iit7TEmfT3zj/o:xp0lYqjGXu7ZN+pEcTjj/o |
MD5: | 0EDB76284A7A0F8DB4665B560EE2B48F |
SHA1: | 02496387A5F7BF7B79DF52C7B76ECE4EBC7A0710 |
SHA-256: | 74201A4B97EC1D5E86252DD0180EAFD8C5378A9235864DBCD682F3575B41C85B |
SHA-512: | 6A835B18154581C56EFDB906CFB10E3DABECE6679EB4EA980CFD4506B2B1C2CC23A637D01B3D577C399C8CE1033A9DBB47A28142C3BF95EEFE70BB72F2729669 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\doc\static\opensans\OpenSans_v17_Latin_BoldItalic.woff
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 17452 |
Entropy (8bit): | 7.960788191365059 |
Encrypted: | false |
SSDEEP: | 384:gVRT8VGShcBuPgTnSzgEuY86rgt710WmLonjMKsZMQAZ:s3ShcBuASzgEuYPNn0nDRQAZ |
MD5: | BF72679CA22E53320BEAEA090E8BB07D |
SHA1: | F3BAA33E986EC10D6F0C8211A826242441D52CC7 |
SHA-256: | 1E742589D91A4B7E3888284A43A73675F312D3D6C4E78B3B76EBC36292646100 |
SHA-512: | F8FFC70E2E187EFBC785A52959BB26F605FEFB904D27B73EA4E1012DCC35569A78144751F761AA30D7B4AB0E5951B91322EA322BAF792C18E359C2ED79BBAF6E |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\doc\static\opensans\OpenSans_v17_Latin_BoldItalic.woff2
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 13880 |
Entropy (8bit): | 7.984947987575616 |
Encrypted: | false |
SSDEEP: | 384:MV9NOSEyPyVE6KbCZ7rIzI0/+YFi+5sGU4bMGFq:MVMoA9fezIK+YFi+5H3MGFq |
MD5: | A49393F2171A2F4D6927CE6C14F73DBC |
SHA1: | 8E0716C7023FC80C65E999D9506603595D410689 |
SHA-256: | D850554475A4336419AE7485D6381151D076A6DB032975F193197AF9FC775AF2 |
SHA-512: | 4A7F962017E565FBE57A58505A08DC94E5671CEA00AD99EE0719A8902EEB0306F03849CABBE0599F47DE23A94ED3A82B41E5C62BAB4FBA479C72884035AED38E |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\doc\static\opensans\OpenSans_v17_Latin_Italic.woff
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 17440 |
Entropy (8bit): | 7.962704570077627 |
Encrypted: | false |
SSDEEP: | 384:2QHZz7pdg60gyjkXImq2+GTFGc+Hq8pMG2dKQWS:9HTyAYa+GIHzyKQX |
MD5: | 06B4BFDA4E139EAF3AB9872A6D66F42F |
SHA1: | E5C5999D6AF4869BC60EEA92D1A8C328FB0E1378 |
SHA-256: | 39EC493A5A688A85B60A1E889A22CFB93F23C900E0FDC0BE8AB8543DC9DAA783 |
SHA-512: | D6665B3CDD7E759D4A2B1BF916654A9C7FCA24ACBEBA1FB4A75668F5B451C7542B5683C097A6A62ACCE76B98694A4F6847CE2DC5193113D02200A04EC85A65B8 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\doc\static\opensans\OpenSans_v17_Latin_Italic.woff2
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 13780 |
Entropy (8bit): | 7.983784399637722 |
Encrypted: | false |
SSDEEP: | 384:Fn0nqDX1NzIcg96kcFze6sw8dub+kWy2b9Y5v5T:yyX8V67FIw8uzxL |
MD5: | B61A9055D92AC56C15CACF4271D4F072 |
SHA1: | B908B01CCF478E0A72F8C6FBCFD5C31A6C61BA36 |
SHA-256: | DA407A15B1EA0C1B4BB774BD77BB608D6B1C90397B5A75B8895BBCCFDA5FEB63 |
SHA-512: | 6D529369B406A1063DF89F570BE0DADD0D0FC9BBFE0380F894121AB91B7B50D1BEAE694C8C920DA01391A57F9665929B8CA3B0806AA24E55D0DEB6377592D55B |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\doc\static\opensans\OpenSans_v17_Latin_Regular.woff
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 18100 |
Entropy (8bit): | 7.962027637722169 |
Encrypted: | false |
SSDEEP: | 384:aHQHZuiZQFFIimUy1oml4hN2Vmw1Qa57YC74ObDDj08X0UJQiXc:1ZQT0UySml4bEmAP5EC7PbDH4U1M |
MD5: | DE0869E324680C99EFA1250515B4B41C |
SHA1: | 8033A128504F11145EA791E481E3CF79DCD290E2 |
SHA-256: | 81F0EC27796225EA29F9F1C7B74F083EDCD7BC97A09D5FC4E8D03C0134E62445 |
SHA-512: | CD616DB99B91C6CBF427969F715197D54287BAFA60C3B58B93FF7837C21A6AAC1A984451AEEB9E07FD5B1B0EC465FE020ACBE1BFF8320E1628E970DDF37B0F0E |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\doc\static\opensans\OpenSans_v17_Latin_Regular.woff2
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 14380 |
Entropy (8bit): | 7.9845370486959855 |
Encrypted: | false |
SSDEEP: | 384:V9e9MoSnw455BJzE0wBQSBUjJWpKlsyIyY8lQGSsrtAvHM:V9e0wK5BJVR9C6sKVlQcJ2M |
MD5: | 33543C5CC5D88F5695DD08C87D280DFD |
SHA1: | 600DB9374E47E4F73A59CCC0A99BCC42F4A3E02A |
SHA-256: | 9C50A96C859B9BEEA47B71740BD14E7F69A4DF586D015F47434037F8DEF53B52 |
SHA-512: | 131AFCE4CECA8E606F46BA8BEDE1A7D84793C04AA507E09FB0D88F0FB5E49DFF61C70A739A279AF185C8C0D2F937761D4D70DC9069F3771EF7A13448E2D1230D |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\doc\static\perf_linux_20220623.png
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 71663 |
Entropy (8bit): | 7.9016582948529415 |
Encrypted: | false |
SSDEEP: | 1536:OLfakSBytyz7bnN/DoFu8aOO0y9Gua0lFCrAFA0x1Zx:uEBXbN/p8aZ0y9WG/hx |
MD5: | 51C9A22DC6D35E9A029E5656CD2EC32B |
SHA1: | 513C2B44449A84B909B948FAC51B7DD26C0E4E9B |
SHA-256: | DE0B88B5466AA487872B882BC91E1860DFCFF8757E0212A4C875AF9E03882169 |
SHA-512: | 568AA7B19E67D10935FC754A4D0ABC20317121409CF38CB2402221822258A464124C76470CF44C5246715C0DD6207361ACF12EB5635A887BC34E251A6FF58C64 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\doc\static\perf_linux_20220623_2.png
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 60461 |
Entropy (8bit): | 7.856703993318378 |
Encrypted: | false |
SSDEEP: | 1536:inRZ8pyx3acPJbj2iNyeGjvbWTbfl7fpp99A:inRl5TP1ae3GLbWXfl7TA |
MD5: | 7C37FD3395ABEAECBF4672AE4AD937A7 |
SHA1: | 18CDB965EAA19EB54A9532741689CD565E177BBE |
SHA-256: | 023486D3E683E262A6E0C5A355E7495A14E724BA6445141A74F7BEB6ADD03F1C |
SHA-512: | E1678B45ABF8AB85E61FB7BCF5DCBF505A97E11C32E98A25D8A723C5C728B2246140E11AF911D1897411E8E06DF8A41AF5AB0CBC78FF21A59647B14F3230E654 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\doc\static\perf_linux_20220627.png
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 78409 |
Entropy (8bit): | 7.851163629305737 |
Encrypted: | false |
SSDEEP: | 1536:4I0L3MezdjimaSj9yyyyyyyyyyyyyyyyyyyyyyDL1x3vv3Hz/xojELiyyyHJ3n+T:4I+cez1DyyyyyyyyyyyyyyyyyyyyyyXa |
MD5: | EFB6C0A0E4AFEB75827AF37A735C72E5 |
SHA1: | AA3B76D02B3DFE55C0356F35290117D289DB9DE2 |
SHA-256: | 026EC253D68449AA47182809AE96C5A435013D2D61649A145929B87E577ADEB9 |
SHA-512: | 7911898FFC8133B0C2592650ED98E196EE502FA3768403AF69E5B2961D7BD577B8AFE0D1716DF2613B763CF28F994A37C9E41F8062274DBAC84200A8DB93D3EC |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\doc\static\perf_linux_20220628.png
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 77568 |
Entropy (8bit): | 7.852756720803334 |
Encrypted: | false |
SSDEEP: | 1536:xIqhusfNqq3XqefmtyyyyyyyyyyyyyyyyyyyyyyWWIqPyyyyqPLvUl68kyyyyyyC:hAIfvetyyyyyyyyyyyyyyyyyyyyyyWWp |
MD5: | 704D7117DA77EEABC3DCC507A1F41D09 |
SHA1: | 39B7EB717040C106C9B58F67BAB6B1CB49F401C9 |
SHA-256: | 6F6B9BD68F8270F5E4BCFC9AF9ED0FAF7EDE15D4FC5849F594C13B06D605468A |
SHA-512: | B177446FC029A8BF41DFC798DD97B8975197D444F0B9EEAE9A8D4124A105C24FC4029A681E90FDF458880C88DE65B22590084B569397C71016E137FEE4A7A353 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\doc\static\perf_linux_20220812.png
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 77459 |
Entropy (8bit): | 7.850526894479626 |
Encrypted: | false |
SSDEEP: | 1536:2epWs+4T0qd3+Kk35s+PdxC6UPh8eWQv6e:9SqB+e+PGlPh9Rh |
MD5: | E7EECC947A489FEC0911CD3B739B6A9C |
SHA1: | 9CEE1D343B24740B2F85858E9C80D3F4D0FFFB05 |
SHA-256: | 2184742935F64A615CBF2F39F50264263F567FD20B29C9CEDF4272FB1CE30F05 |
SHA-512: | D61F2AA777711924B0C4ECE52EDF1BFC3EAEB9026CEAD890E22B4152D9EF13797028A6D4BD60DE15903488361717DC65B2DA783AAC7F0FB5CF8920847E74E3F5 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\doc\static\perf_linux_20231028.png
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 76823 |
Entropy (8bit): | 7.835907762094981 |
Encrypted: | false |
SSDEEP: | 1536:m+KRRH1+tGEj1JQzQ5k+hyWZB0Vz0l/RsYFmgajd0bE/vV:BKjOjQzakCq10tFmu4V |
MD5: | D21B17F7EC29BDE787030A664E16A62E |
SHA1: | D4D4F0F25B2AEB41AF35DA0CE342B7860CE5A36D |
SHA-256: | 7E261ABCC5DE3998EB67E2CA16F6F13B688C5BC1CB25E60E25A9C363D0B68469 |
SHA-512: | AFCBF2DC63AEE6E081BA1AC35A84605E7868C1BDC9B7DC4CF775C4FB1BA9243AC0E33354F1D8CE5EDC328F9BC2FC0C379452EF7992BBE6640A8ED27AA406E0BA |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\doc\static\perf_windows_20220623.png
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 72157 |
Entropy (8bit): | 7.899876679950469 |
Encrypted: | false |
SSDEEP: | 1536:kDzsRMws1ooooooooooooofDGvvphMWg6jDrrPooooooooooooonp+DPLdomp2LA:EuMws1oooooooooooooLGZhMWDrrPooV |
MD5: | C2805CE9833E60D5706487F40D841BB8 |
SHA1: | 83E36C05EB988B1DB85492F95F699B4FCF47DBBA |
SHA-256: | ED8F52FC21993760A74060D724A08DC391AEF3194FC3C686F8A820BC4D859755 |
SHA-512: | E64EE6CE5CB24AA8EDFE4D7AE9CCD60C0F90640C1A4BFFEEC550088CF1978811CE4CD0E4F66DE438ACC7FAF184E1470066BC51493CF1FC57444D1785E1DBB426 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\doc\static\perf_windows_20220623_2.png
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 62386 |
Entropy (8bit): | 7.85639296511247 |
Encrypted: | false |
SSDEEP: | 1536:O74tb3JDc4k4jgeSG0bo6CD5GGFxUS3XEdhPg:OEtZZk/GAi5GGUSHao |
MD5: | 594BF18F17F2C61CA87F75CD59C67E64 |
SHA1: | 03FBCD106103985F60C81655C55FE7A61265B2F0 |
SHA-256: | 1DD2E637E14A0A3C07A24C3C672DB1EA9F7B833B3215A27AE0BF12DC8A614D5A |
SHA-512: | BE30E3039676960B90B03B792D4F0587A79FC2BF7CE6F016519AB7316534855E024C592AAFC6B369E0219E31850FB43E079C02ADBAC69BC3EA884650FCFE2125 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\doc\static\perf_windows_20220627.png
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 79458 |
Entropy (8bit): | 7.869412778275254 |
Encrypted: | false |
SSDEEP: | 1536:HpnZ1e5evmm+cJBGnIbbbbWno2Eyn1xny4be7MX88KV/NabCCCCCCCCCCCvS9qjc:H1ZrvmmDzKdEKy4C7MXQxNabCCCCCCC2 |
MD5: | 63D45D9379B88F1B88B6283A6DD52B73 |
SHA1: | 96AD6AD8F18D82DD22540165DD16ECBC9E670C41 |
SHA-256: | 4830418FDA55CFDDB8DF11F80B95E143961C9EA8B28F3B1F9D0A00D9EDAF9793 |
SHA-512: | 131C61F04252ECBC01D90E985868F61838505F0AADA57D63CD71A8EE57C80B7B3E1A35052BD59DD0DFA525A038D92F893CD019CCD8B6091F1D91FE1BD31C2097 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\doc\static\perf_windows_20220628.png
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 78886 |
Entropy (8bit): | 7.855950310396339 |
Encrypted: | false |
SSDEEP: | 1536:+askJJeBNCLHb0x/X5SWUNr4ERprY8sf1sMeG5ZqeyQjcxdKLJsQvfr8:+asmYaWa/rYZ1GG5b1jcxd4bvz8 |
MD5: | 4A89EA7045D9238EFB9D3D6A3CCE3248 |
SHA1: | 9AE7D698318632D05B5E55671C203CAB78161EA0 |
SHA-256: | F2524BE89BC8C2647A3B07A3DEF05A6A14C4ACA729D5F817200FE80A66DFF2D9 |
SHA-512: | 3F68B46188DE5A0E2729947421E1087DE11B669B31318DB33B1137B16F56E816133B281BC86CB7DD67C375D393D949DC2BED540FCB5F7D9410F815972769EE32 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\doc\static\perf_windows_20220812.png
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 79257 |
Entropy (8bit): | 7.858579649173777 |
Encrypted: | false |
SSDEEP: | 1536:0dbiDFQJW6K67opelTq58+vkPJU6TgaxdKFnBOOih4:0VQQId67/Tbes8axdC |
MD5: | 1272CD587393B5DB7DDFCE66F1FFBCCB |
SHA1: | 106857201FD566707FE5BF22B40309FF2377E877 |
SHA-256: | 9A517D7496A537D555ABCF30E86345E2829B82F75CA004912E592F65CB475892 |
SHA-512: | 5595728837A1A7F02F8B296BDF10063ACFC7368AE0437F7FF8E11BEF9E2CDDA291C6C4112AB7000A686AC7914CAE15AD1F35B971EA08BD02E86BA0CA86A5DB1C |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\doc\static\perf_windows_20231028.png
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 78744 |
Entropy (8bit): | 7.840390546770536 |
Encrypted: | false |
SSDEEP: | 1536:u7EtycGsGCHpBU7SqE0qpmKMnDKG1AE8gmF78y74ww:u7bsbBGSqE0qpgDKG1APrz4D |
MD5: | 07181C934629494BA1E5477B99F77409 |
SHA1: | 2DD2CFB02C89E9683892CBDD2021486169FF00DE |
SHA-256: | A8AFAB14C14C6A1F113FD310F48521AB88812A0D953BE13273061A8CFE6650EA |
SHA-512: | FC0F3C32721BEF84F72C628B0674F7BBFA9DB250273EEBE91ACE440BC24EB12438DD14915F8F84954BE515E68E37EBCCF1B09887DD49419ADDFD4C1928DCB930 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\doc\templates\badges.html
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 471 |
Entropy (8bit): | 5.073080211258217 |
Encrypted: | false |
SSDEEP: | 12:FlX/DqK1c06OFZIqKzK571vqgrwU2quqf2b/:brqQcB9Onvq1U4qo/ |
MD5: | B739C5CC9562F40C3337AFAF06399CA7 |
SHA1: | 454C29EDA3B7FB03E0BFD4D37D8365D3A04039C3 |
SHA-256: | 2CC81D6DBE3B3E0627BA1C0EBE52FBF03A7D1E910EF0A3FA20AFC1B4E944D461 |
SHA-512: | 5775830688739D0EF7B322B50D09356823283252668708E9C332B34CEBCE81DDD7A89B516A129EC6CF8D13D5760C63560211F213F8096D168B740075D62046A7 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\doc\templates\logo.html
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 162 |
Entropy (8bit): | 4.8641028630571554 |
Encrypted: | false |
SSDEEP: | 3:uWjqVmXvvsmte5FCWY/FbWv1iEYrKMjqfNfuNbvUK+2DEi:FqoXPte+rLjqlfuhr |
MD5: | 59EB404FDB80F9748A0F4FDD02C83497 |
SHA1: | E20E08640256553A87145FE57595C19845839AB2 |
SHA-256: | 5589BAB5DF29E5EB6F4E0F23CEBD02D35CC760A720E7AF73D42253272BBB3101 |
SHA-512: | BB7C10E2F18D5AADCA1678921669E931CFC5AEDC706D3EEE695018C242D84096D326BE02D474CE4706DB133BEBAF4314226F3C2AD804449CDFF1495B4BCCBCB1 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\doc\unions.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 5141 |
Entropy (8bit): | 5.1370866049207695 |
Encrypted: | false |
SSDEEP: | 96:x7RlE6khPlUpagSrp8xMC162WM2TvaLETY3S1pyUsD7sOke:xtG6khPlU1Sr6+C0v4JibyUsD7sOke |
MD5: | CE6F434320B333902ACD1175714A9AD0 |
SHA1: | 5230E4E9F5F7EFB5ED2A240D83A2854BD0424B61 |
SHA-256: | ACB2E6F7FA5F83257AA413D9F9156BDAAD03FCA6ABF2E554E11CA871CE6F1DDB |
SHA-512: | 9182E2B6F89051F63BFE46F179FE23A18694F67C09CF4A3A8E585730F1632A8F67A448CA63E1441716A77179DC1B28ABC39FBB00D161A11109AAD3D41B8EA674 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\doc\variables.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 3798 |
Entropy (8bit): | 4.9184985881547405 |
Encrypted: | false |
SSDEEP: | 96:ob3SXZmH07ldeQhzjj1+b3jNoLtXpmH0tz4na7rRk72:obscslA0zd+zhopsKpf |
MD5: | 29D718BB98FE187B507FA8FBDAFE9BAA |
SHA1: | E57D03C11CF14716E802BCA4BB31647F09423327 |
SHA-256: | BDDC1255B85CF836E0CB3583EDF99A9AD050962C8D016084DF023D97E426C496 |
SHA-512: | 04C2C1C3E51E7649B0E49C4DBD12A89DE4759772F0D95C443081BBE1B832E1C2C269272209BE3A2320A3BF2ADAFE7F0F99ED468DB47DB26002F62ECFBD625DA1 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\index.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 18313 |
Entropy (8bit): | 4.5667753012351815 |
Encrypted: | false |
SSDEEP: | 384:WXyj8X1/XV2chh/9r1Y4Va+h51d0T91+T:W1/XV2chhlr1Jht |
MD5: | 8796DA1B1E817F2CF3BFD280D174F975 |
SHA1: | 3CCDA1503527D9D94C5DFF8B565528E30F33F5DB |
SHA-256: | E0FB4B60BB129D3D1CE171596D9E599645793932B8591AF20C118D5C0B2288FD |
SHA-512: | 63798C8CECB9EE8EA1C86844D55F4E76DB30FCC95136D0C321B5AE2CE64390775BBD92D57CB4BD197D909141698A6464C6E87736D7FC0A34AA2B6579A91B8539 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\indirect.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 16460 |
Entropy (8bit): | 4.5511134961162965 |
Encrypted: | false |
SSDEEP: | 192:POcO3oqiuThaiRED6C3Sjzb81dqpV1mttNWG56q5Cdj+Hq274VLQwANW4oPqaJrv:WXyj8X1/XV2chh/9r1Y4Va+h10T91+T |
MD5: | D9C3606B2A7EFF3706B220619832B7FA |
SHA1: | AD950695529398ECC19AB4CD9C90363C320FBDD4 |
SHA-256: | 1D7743118832164226D027DBE23FC2876C0A5E2ED58CEE916FBA1DACC2331E02 |
SHA-512: | 3F363597FA207241C2935477910E1A8BB4EC9164C12B4B2DFBC3D66FC608E4B9738EABF8BB0D15F881414EE819D2A018875D8EEE2CB890498D6967276DA4AA47 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\package.json
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 654 |
Entropy (8bit): | 4.71597622088714 |
Encrypted: | false |
SSDEEP: | 12:M11TTkzT7eFbBq6HQbmPK5Po2S92GNxeE9GGjSaMIZ:M11keFbTHDSR9S9NgWl |
MD5: | 293AAB878FFD52BA61D943C2BF06EE31 |
SHA1: | 4EAA5650EB8DFDABBF67B4149786BC0CBA615B2C |
SHA-256: | 8B8745AEE26B8A1C1DA7B238210202FF597EF7AAE125120479EE7472399DF2C2 |
SHA-512: | C8E02CB746054E8BEE5EE52438F77CC16331E2DD60B36C6867649A4A2A49D3525C11C439DE1D92AD880C104DFEF8692845BC1BAF26718607E0AEB7E775EED411 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\src\cnoke\LICENSE.txt
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1113 |
Entropy (8bit): | 5.157713602784361 |
Encrypted: | false |
SSDEEP: | 24:AQFrOJH0H0yP1gtEHw1hC09KAH+sUu8Ok4F+dxoBoqMSPz:AQFSJ8lP1EfdKAH+szIt6BoE7 |
MD5: | A006BB906868027CEB5D5ABF427C4DB8 |
SHA1: | 3376DF3B48AD31041825392F6598FF891CB58D5D |
SHA-256: | 54ABB741A2BA1A7FA89E98D2D3199575E548C8708885EEADAB0F5BB83AD22E0E |
SHA-512: | 7ECAF378AA4D4985CFA99DC7ED08CA3A23B57665AA0CC5B27C0C1E271EA43BB84422C5E1FA161753E8CB1A035AF8EAFBA725DFD78FCDC7FBA457F6588933086D |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\src\cnoke\README.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 3374 |
Entropy (8bit): | 4.899173810575735 |
Encrypted: | false |
SSDEEP: | 48:3VZ3w2E+Ef1aMu4M02dQ22LrCd0Rl8ezR1Rp13RjU8/yhV8dYgs0FryevxBG75XZ:lJw2EfLS0aQ2q+dIH/68HpF2ELG7mRxo |
MD5: | AF493EED3BE918D6A12635DEE6D4BE78 |
SHA1: | C8BB513216DCDC7FAB8AECF42CCBA3B784EC2FAF |
SHA-256: | AE5258A702A207107C4844BD2A726D3B03C4992BE69D7359C058AF4C7BD99B60 |
SHA-512: | BC870A7DF179D595F1D9E3D38951523D63007A5A4B32CEFFC5385296FC8463B3F12C8FF2DCE74757973F8F15367666AC89499F5C9C58B64242179F516E40E936 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\src\cnoke\assets\FindCNoke.cmake
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 4862 |
Entropy (8bit): | 5.095387277125654 |
Encrypted: | false |
SSDEEP: | 96:pPPpSRH2oaqnmNmE3XeMZd7PgNSTwP0Mlz6I/Tj:ORH2OQNZd7PgSTwMMlz6I/Tj |
MD5: | C0C555D208460774A1F29C5A0BF37B48 |
SHA1: | 64AAAF689DED68BDAE02BF632EBF67D5F9D2E46E |
SHA-256: | 6597159F665BA48E46B095D41BE1851B9D5F88EDA031502D202D0C66A591E1EA |
SHA-512: | 5416EDEBDEB1CB8837E8C8E5FCCDA9284F17E8AD860CA2E71AB85D05A5AE90FF14524CEDF4AC49A9D53B9E3D205A27751D22C91379CFEA92071205D3E858C4D0 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\src\cnoke\assets\win_delay_hook.c
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1822 |
Entropy (8bit): | 5.27744698105447 |
Encrypted: | false |
SSDEEP: | 48:RQhwJOlPQYEsQ5VKAHQsdI/4toE2rB+m/LN8eOW:uzPQPJPRHFodTjKeOW |
MD5: | FE17F98699CE9B64186FB6BB14EBCD8A |
SHA1: | B47B58D6BE5788EF77725BFC09491E67EA252873 |
SHA-256: | B61233FCA5FE2C7F06C64E465EFB715C0023EE98B293E952EF9549BAE6105400 |
SHA-512: | EC60FDB28FA6FA0300CDAA1A6B4380413641FAF5DC089660C943C289A4221D46D13C0A77FFA46B9E1BDD00F73540DEDB0196BEC4665E9F75FA3062BD5F227EFA |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\src\cnoke\cnoke.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 8065 |
Entropy (8bit): | 4.511784691008174 |
Encrypted: | false |
SSDEEP: | 96:HzPQPJPRHFoZGJlhDS8zU32I1X8SjxBaZzszJmCyx83g+FbcwG7lvRxA:kRPRHFZJlhDSSIBX8SWY9mCymp7G7y |
MD5: | F1FE1776C8263D4E70CBD94A634929A9 |
SHA1: | 1341B3D21880602FF3C51D999C681C17B87903C2 |
SHA-256: | 46B7F3564416FD0F5906856781EA400C91E6BB314D04EE200E274696F78771E5 |
SHA-512: | 9EFE8FB5EC03E91A730FFF66D62F07F706894811FF94735C2A8DFC2D1DFE7563A63B24764F0959B64DFBD7784ABE2AAC591C43F83B1E6A47B65D73BF10713DBF |
Malicious: | false |
Antivirus: |
|
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\src\cnoke\package.json
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 423 |
Entropy (8bit): | 4.646356843458145 |
Encrypted: | false |
SSDEEP: | 12:x1k3+fZfcobmPKu4S92GNxeK6RKaFi/4L:x1MZ7SZS9NnGl0/2 |
MD5: | 46FC489218EA5EC0672D6F4335637FA2 |
SHA1: | 121074A7E8239D8B35A7F467FA31EA707A8450B7 |
SHA-256: | F11843340BABD002572EEAC7A93FCEB6AA71671B455EFF8D9B75341BADD56268 |
SHA-512: | 88332D619DD989452CB69743A417A4A47FE979983492D775ACAD96A4566A1CE3A54DF207A01146557311DF16BAA6789674EDA4E762AD8D78FE803C764AE46175 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\src\cnoke\src\builder.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 16113 |
Entropy (8bit): | 4.687232131816133 |
Encrypted: | false |
SSDEEP: | 192:7RPRHF5XvbYKiXew2EIT//B6wybq2H9xt/YCBOstFua8rfGd3hi/LLyQ5ur6jc:79PhYrew8//UdlgJsGjc |
MD5: | 6111232616BEDE063604016B2C6FD35E |
SHA1: | 75E94AA9EEFFF8A9BEC2CB0DF9DA93EAC8D3F38B |
SHA-256: | 53623DDD72CCF565ECED6D4231F46BC74E1CAE00920232DB8FF5996B3278A2CB |
SHA-512: | 368D5E0D938FF4295E1CA06FE6F9E4E01E991D9BFCE09DEC0C75E50BDBCDD18E4488442B0F4485518EDB5CC8F8651F4408BB048FF41574274704916D39A6B20C |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\src\cnoke\src\index.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1288 |
Entropy (8bit): | 5.2281927291349355 |
Encrypted: | false |
SSDEEP: | 24:RQhrkJHOH0yPQYgtsp6eHVM1hzT9KAHQsUSn8Ok41+dwMotoqMu5qQGUBfc:RQhwJOlPQYEsQ5VKAHQsdI/4toE+UG |
MD5: | 146F28A2EA80EF3EA03A682DC60387B8 |
SHA1: | 945EB4486750858DAFDCA96035850B2849F77880 |
SHA-256: | 3492DCCF8C87EF96CCC09ACD71C2F886506A73B543D8BD617012AE7BDAEC6D3D |
SHA-512: | 26D19948866914B7A5A073847AA8D4661484B2F39105E00EDDDD2470F9C54E8A986F834EBF4B0B5B647CA3D7FA78BF04EB079A779F5EBBD9B3E7BEA5C17D2D42 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\src\cnoke\src\tools.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 13298 |
Entropy (8bit): | 4.514395595703174 |
Encrypted: | false |
SSDEEP: | 384:79P4YQaH7D100A25bRRgDDd00ssRwfgNr:940p00A25FeDDX |
MD5: | 1246EC660B387D39E19053FB83B7A127 |
SHA1: | 221BA2AE6686CE5DFB340E036AC425CF33CCA6A3 |
SHA-256: | 851B567C55C366FD3667CF3E848AD743B49B905BE71A24DA22E7E227AE2B0337 |
SHA-512: | BEB24EF4398FC79487916C8BF9FB166D7F8503C98246A516B28F0E5064C9F5400810AAAC029DEC64C0231FBFB07228A8278344B79B3CF742ECE20FBF8C866094 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\src\core\libcc\libcc.hh
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 145329 |
Entropy (8bit): | 4.939967775308238 |
Encrypted: | false |
SSDEEP: | 1536:b17xoBYEIOtnF2UUIV3w90VA6fY6MCABRBl8Q:JWYUtnF2UUIVF9U |
MD5: | 39EA79F3C22D2C2C3B3FF7FDDCFEEA53 |
SHA1: | 8F4ED23E6BE12D2FD991FD8D06134E2F2F94D152 |
SHA-256: | EF0A3033A5CF818588FD3847C970311B0567BAA9D16723397C5A8F481DDE857F |
SHA-512: | B436DFDED10D724F646F3FE3CA7A65E8F5030D219EEA00DB5BD42A6BCFC8DDD2C34BADEC9C97BF2C3BBE5462A5D78CF47936927F4AB21A95798DE01847AED1AF |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\src\core\libcc\mimetypes.inc
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 54504 |
Entropy (8bit): | 5.077962203801449 |
Encrypted: | false |
SSDEEP: | 1536:9jkNkAISxu2witlSI3/mi34b56hTl1WO/DxXpZz:H8 |
MD5: | 30C25C7E53CEC33EB667621F9BEB03B3 |
SHA1: | 70C7D905FC4EDBA59181C457460C7A5BAD279EB1 |
SHA-256: | BE5CCE4EB873C2102E4B2548B10CCD0856C4E4424048856FA29F90FEB684FCB0 |
SHA-512: | 35EFC9FD5EAC312DE7D85E45311FF14A2A007B14E6ECBD92090BAE62431DA29DCFF877565C1C325BEDFEF65B794D126482A5DA1AEF532EC6E585068B574CCF45 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\src\core\libcc\mimetypes_gen.py
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2912 |
Entropy (8bit): | 5.017636433304035 |
Encrypted: | false |
SSDEEP: | 48:UQVhJTlP6E3TGKAHlsMIOXGobDbi3DU9pbp4LzuZCFrsyHX5:hPPpSRH2or4Y9pbo6C1p |
MD5: | D2276EB8986A8BA72F848CA4E3B875CC |
SHA1: | CFFB9913B980D50DB111C9F2A8307391D79D70C4 |
SHA-256: | CCBF319D9EC13CAB5DBF23C9502C46BAF777B714FE46992E2D6A061B986894EE |
SHA-512: | BBAC3AF55A43A6FE18B1A604EFCBB1629AAB95A58F8599202990FB2A12FF741F214A33245945D2981DB7FCBD84435C96162E5586697AEF062DB08AB3F1656DA0 |
Malicious: | false |
Antivirus: |
|
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\src\koffi\CMakeLists.txt
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 5769 |
Entropy (8bit): | 5.356249644937277 |
Encrypted: | false |
SSDEEP: | 96:pPPpSRH2o4eZDX4x14qjX3jSMwjf158jzlMGpQWcnTLK/9VpBnaX/RDxSD2D4v:ORH2SEtjX3jSVjLmlbI/AXapIKW |
MD5: | E785D77700553D03766B4F1B92327DA8 |
SHA1: | C6DB6DA359B3CF246C441DF747C996187E89E5E3 |
SHA-256: | 0D71EECD4A9B83F590014FF85875085E5D312648D69FEF85540D663420C7A72D |
SHA-512: | EA8CE4FADCA2925DD3F32EFFD0407E2FC11932135DB29ADB05C0E0E1E1305E581B3EB01CAE4056C24D600CE5DEFB02167A0C612EF2C8BA354C2FD193D9FCBFD5 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\src\koffi\cmake\raylib.cmake
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 4144 |
Entropy (8bit): | 5.325959315771822 |
Encrypted: | false |
SSDEEP: | 96:pPPpSRH2oDbIK9ic0SVG7EMXSnT0GPV1SnBjOtL5BtwvKK1P9:ORH2QbP0iG7Eoy0GPD0jOtjU1P9 |
MD5: | 366CDB978856BFF21A8F7C2DC84BC08D |
SHA1: | AE1373FEBEBC31AE12979F8B0DB1361BFB13FA43 |
SHA-256: | FD99CF650B78F66C7C335B3110BF91D5C786805690CDC6291CB25023D3A421C9 |
SHA-512: | 7F35B06ECF12A76810F6FB83A914E7A1FA347D6A0B661BB4A644CE06298FDAFE6BB79357D5EF6EDCBB9AECECD3FA043EB7F02ED60A8AD90EC42877E480B0A2D8 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\src\koffi\cmake\sqlite.cmake
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1354 |
Entropy (8bit): | 5.3008757490467175 |
Encrypted: | false |
SSDEEP: | 24:Q9Q5rr9JHTH0yPozgtIHe1hTmV9KAHlsUh8Ok46+dU/oGoqMtc+IwCFAcQOSu:cQVhJTlP6E3TGKAHlsMIOXGobcB64 |
MD5: | D9674C6043E30108655971B51438D5B1 |
SHA1: | 0852784378032DC7DEEBBCF08B9BCFC3518451AC |
SHA-256: | 613DAB091E34FA19238FFAB3377F40049336660322C3FBA3B5FB35DC17055592 |
SHA-512: | BE0D2B33B393A5F0D01D6DD9FE3ACB535C533B6880D0F6A4A24C44170FEF9404DEDAB2B530A489383D4801511DC0BD67112E1341720242F17361EDD5E2712449 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\src\koffi\examples\electron-builder\README.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 254 |
Entropy (8bit): | 4.438932807877794 |
Encrypted: | false |
SSDEEP: | 6:hu2AnVAMGvUK42ALBEamCwp5CWFUkVgLgry5EqT7FV:hunerayaFCFZeohcBV |
MD5: | 0B8CAEE50132E7374C0C64D479263FDC |
SHA1: | 89DFAB033233AC72D33D39629CF28E5B20811FC3 |
SHA-256: | 84EDE9AB08CD48A4FDF07EE547E7177931BB1AA17CDD263B41BE45C92079E575 |
SHA-512: | 80D0CF704437576F5B3FA6F6A0507809404FD412FCEB1AF7BB4E37F84CEABB78F6B7B1B3D2C68FBF6CF362FAF21B71BC1FE9DF1967E6253E831AF0C3A0BC5BA9 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\src\koffi\examples\electron-builder\package.json
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 367 |
Entropy (8bit): | 4.7964399064543715 |
Encrypted: | false |
SSDEEP: | 6:vvgv/KS18tf/0YC/qxKE79AV2jTM3+2q4OLf0W9QOAyf6p4AHyC27Qgb:6/1181jSQKsG2jtYasWqRyf5AHan |
MD5: | 92704981F927189CF18158E0B5238AF2 |
SHA1: | D52E28EC7F3F7B1F23CD879228118285D96798EE |
SHA-256: | 7E7B5FE42421F53FFD963D5E47D13F7E59C6B1B65F87C4835818EFAB23932169 |
SHA-512: | C276DFAE0CEFE012969C1CF2138E05FF8861CEE8A38F8B19F1B9152EBA0238573FE4DFAC81525568EF6154234DC37BB375CB2B9DC4E38916BA49EF6B84996572 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\src\koffi\examples\electron-builder\src\app.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 467 |
Entropy (8bit): | 4.7406257676665655 |
Encrypted: | false |
SSDEEP: | 12:KwDe9vFlAC/ZC229SXMA6DMAafn3CdcKSvcw6EqVj:HDeXlAC00XB6DBaf3C8EZEqVj |
MD5: | 668F6275911CBD85504C87CB7293769A |
SHA1: | 60A56AC2846499583A9C8A33DEC3FA83214CB7B8 |
SHA-256: | E89EC58CE11D1E3076D92ADE00B159D683FDCCF1A73068A6E8022360CBF9CA14 |
SHA-512: | 69859BFB946583405E1A2A4CC2E3C46314B7930CA76009A610372EECEB952B11D6C9B408E46CA2CB6D69DCE7672C92DE35B5C4EFF450A6E050B44EEDB62D6A8F |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\src\koffi\examples\electron-builder\src\index.html
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 4208 |
Entropy (8bit): | 3.809769918260182 |
Encrypted: | false |
SSDEEP: | 48:2XNlpycYyskPseE+fE8qiZ8HOtfeXmscZnrb4GZ4nRXySThrY6pBrke:2XN6NkkeEQEFiZWOtfZsIrB2XpThRLge |
MD5: | E7123489FD6C85E3D59386579F85E875 |
SHA1: | 324AC869369DE273D108454C6E027BD8A6233786 |
SHA-256: | 618F27D04B9318A59BF20F7A49BB8E78A5B5F03B7B9401FB505E6CA3CECAA4AE |
SHA-512: | 35AA7FFA2C2D3317F0027D635B8255C59AB1A9D7A7B7E8C1D98372B6B684D7D9E6485A23361D56BA5D49AF3F380285DC7AAE5100D9CF8725181455DC3D0ADCB4 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\src\koffi\examples\electron-builder\src\preload.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 176 |
Entropy (8bit): | 4.730432532636917 |
Encrypted: | false |
SSDEEP: | 3:cKLR4RXnJ1yFUoJjM2PGQRATXnPOLZXZNvXtN/L+CLF2I1WTKUD0LDC/pB:7Lq3J4FxjNGEc3POLFXtN/iCx2IITPDD |
MD5: | 01CD88BC8C17FC45B881AA8D59B31EFE |
SHA1: | B3A776359B1C1008BD6F129C27B650995863104F |
SHA-256: | BD494F25EB144B0514E55412BD67AA3DCB98F42EFE9E1C94AE8C4A5B320044AF |
SHA-512: | 324739DCF0995CD5DEC4FBCE6A15BE79608C765F197E4534EB04EFF1D7EE2A32955CFF0B11FCC66D0B6D41F4F09A78F20A46138988D78179ADCEBAD933655424 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\src\koffi\examples\electron-forge\README.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 475 |
Entropy (8bit): | 4.591837936215052 |
Encrypted: | false |
SSDEEP: | 6:hu2AaRJ8ztxFnQjoorAQgL5Y/AW3O+hRI/bnhHiqr4RGRAlnhHiqllCqhF:hunavctx6joBruIWvRyim9SriohF |
MD5: | 798D7BFB08B0A65261618FD5AA78C4A9 |
SHA1: | D8CF1A6FA87511BE378BC9A0AD1F707FBC4FFEA5 |
SHA-256: | 6CEF4311B98D8F59AE99983352F84D000864C4A922B8A6F2EE18E263DA7A8285 |
SHA-512: | 690AD73A773B07ECBA9050667753EB4E242BE7BE871ECAF943E00DD0F5B1D53DFFA6E5D72A52A79ECB2AE8A012B3090F825BB73B99CA5874C065BFD3F6A9C776 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\src\koffi\examples\electron-forge\forge.config.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 881 |
Entropy (8bit): | 4.14458570880529 |
Encrypted: | false |
SSDEEP: | 24:DBSiOjODSPEzDSPqdKHOD0HS4/DzDg3TrTBjtXaVOB0:D0z+R3vKS0Pr3gzaVH |
MD5: | 82104AC65ECE1DBA18251919EE92B0E4 |
SHA1: | 7253B3FE45DABCA3F1017C97F1BE63167765330C |
SHA-256: | 29E6D9869C330C7ECCE487EC6223BD2A06ADE0EC2DD039015F57D9811F280A06 |
SHA-512: | 52C56236665381F65DA79657CF270372FBDF8DE472CF1CB95483FB7E4AD2132F2A29148784453537850B73E2E6BF48F19352CE26531AD131206018D794BF855E |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\src\koffi\examples\electron-forge\package.json
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 847 |
Entropy (8bit): | 4.8126998861826555 |
Encrypted: | false |
SSDEEP: | 24:6/11eujvuS9qc38PjrPHFPLP/JHSB3Q1JWmblIjn:63e/sqc383M3Q14cle |
MD5: | 0687BDACC0CA1B3D27C1C8F04E5611A3 |
SHA1: | 1F2B86C2F88F43757492D6F9CB897FAD6C460828 |
SHA-256: | DD02240771102F776BEA4C2A4DB58F9BB87A71133B5D8E88CC5F120A84CF26EC |
SHA-512: | A793CD58296B2B30654C7361833075EA823293A2DCE13E3F0C72F7291F451BCE4D9605E1867667542AC0930DC4280DE679B81D53BF31F4E0219FAFD36D4AEC67 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\src\koffi\examples\electron-forge\src\index.css
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 166 |
Entropy (8bit): | 4.860543258222546 |
Encrypted: | false |
SSDEEP: | 3:UHDKlIYCLVOID0hcW/U1ACbFZNaQMTJdFFFk1JLWsdZZPFdaJRGkE82lXsvYv:U/hnD+WhHAHFe1JLfZPFsRGkG |
MD5: | 0357F89D5491126F52FAFE818ACE97B4 |
SHA1: | A089E1E83BBC364FDBCC8B963A9EE0883EF57EEC |
SHA-256: | 8ECA98051BBFDEB945936CD9ABB1F1B0D3CFDD1D1CBD50D02689D2EB773DE8FD |
SHA-512: | 228122452E2C7B0B4338CAED94C8A89210CD32845D8ACAEC836B72E5977FE3A0C08E8275840D4EF86420B00820ACF6EB907B5ED1EEB3C7EE5851FF8131A83864 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\src\koffi\examples\electron-forge\src\index.html
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 4208 |
Entropy (8bit): | 3.809769918260182 |
Encrypted: | false |
SSDEEP: | 48:2XNlpycYyskPseE+fE8qiZ8HOtfeXmscZnrb4GZ4nRXySThrY6pBrke:2XN6NkkeEQEFiZWOtfZsIrB2XpThRLge |
MD5: | E7123489FD6C85E3D59386579F85E875 |
SHA1: | 324AC869369DE273D108454C6E027BD8A6233786 |
SHA-256: | 618F27D04B9318A59BF20F7A49BB8E78A5B5F03B7B9401FB505E6CA3CECAA4AE |
SHA-512: | 35AA7FFA2C2D3317F0027D635B8255C59AB1A9D7A7B7E8C1D98372B6B684D7D9E6485A23361D56BA5D49AF3F380285DC7AAE5100D9CF8725181455DC3D0ADCB4 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\src\koffi\examples\electron-forge\src\main.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1583 |
Entropy (8bit): | 4.9802878978692195 |
Encrypted: | false |
SSDEEP: | 24:rgD/tLOLrfWHXBfQMzeHCsx25BL0mD9DEfZmXBZltARxM+OUxnopmmwXC1bWEe/M:6/6W3BzIfsR0s9DEBChZTgBy4X7K5y0J |
MD5: | AB7453B2320D75215F9032ED9DE86B7A |
SHA1: | 952DB200B83A8B12DD939C935550F5F71F61CA6F |
SHA-256: | 0DEBB558AAD1B339B8BFD2CA4A4EC33050C0EBD06F7AD5D7BE72E19A178EBD9A |
SHA-512: | CCA855E2AA3024828D31EB7BBAF8C23A726E2AF16C427994F616685297F0EEEE980321FF3F28FF6AF4C8285A3CE4B0218EF96F5086CD04CD2B3DBC0B6B0AFD05 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\src\koffi\examples\electron-forge\src\preload.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 176 |
Entropy (8bit): | 4.730432532636917 |
Encrypted: | false |
SSDEEP: | 3:cKLR4RXnJ1yFUoJjM2PGQRATXnPOLZXZNvXtN/L+CLF2I1WTKUD0LDC/pB:7Lq3J4FxjNGEc3POLFXtN/iCx2IITPDD |
MD5: | 01CD88BC8C17FC45B881AA8D59B31EFE |
SHA1: | B3A776359B1C1008BD6F129C27B650995863104F |
SHA-256: | BD494F25EB144B0514E55412BD67AA3DCB98F42EFE9E1C94AE8C4A5B320044AF |
SHA-512: | 324739DCF0995CD5DEC4FBCE6A15BE79608C765F197E4534EB04EFF1D7EE2A32955CFF0B11FCC66D0B6D41F4F09A78F20A46138988D78179ADCEBAD933655424 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\src\koffi\examples\electron-forge\src\renderer.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 994 |
Entropy (8bit): | 4.702284571610043 |
Encrypted: | false |
SSDEEP: | 24:i3NJ0Hm//V7d1NLXZ15iLc1TEEr3zzxRCP9JrUtn:+uHgjL+AEErjzLQO |
MD5: | 7F09BCC6E102182402CD40437804E756 |
SHA1: | B7685C49AA1B8424E5DC28E76AEBF03CCCB77838 |
SHA-256: | 22B8B96BB8F0129BDBD3F58E4EA671EF5CF9BDFFE3D9B77DDD1CA17A3C51A5CE |
SHA-512: | 3807E7E1A6F6C571CB254F0DBA4CB8A1441CA53D8522609D4FF39790E871BE6BDF3DEED92B8E448C1F40D802E7D1B006555F816E2DCFD92F074211DBA1684A7C |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\src\koffi\examples\electron-forge\webpack.main.config.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 275 |
Entropy (8bit): | 4.572689658769606 |
Encrypted: | false |
SSDEEP: | 6:xBBSC3Zoe51LdX+Ht4se0lyv/ANuxh/jnIvA9G8IOWft5dQ5G:xBBp3Z3e4b0gv/IUh28I5ft5CG |
MD5: | 2AC2195FD84F2C1B05D59AD59C3404BE |
SHA1: | BBCAE478D8B46DB4372798F36A31D56C816D7C09 |
SHA-256: | 5B9A5F13E67E9C7352056A89072518E59BBB9C6D544D601635B052516F3B783E |
SHA-512: | 632B42971B19E98CD904E944FD49653AFBF568FD0B74BE9FCFB1ADA33D4097A0069EC2E237AE5B7A67F455593408898ABC730EF9AB5EF8184D78D646B8E3820E |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\src\koffi\examples\electron-forge\webpack.renderer.config.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 239 |
Entropy (8bit): | 4.715220368389235 |
Encrypted: | false |
SSDEEP: | 6:xFbGdQ5Yqf8f6wswf6kz8RIKBSCcIvA9G8IOWJY:xFGCYqf8iuUIKBpc28I5+ |
MD5: | BA821389E6A14966CC557CDDA62D4A7E |
SHA1: | 5B0F09DF7EDB0EAE017C157923765BDCBEE4DF94 |
SHA-256: | 2F2993B233366B434AC6CC9490F5FAA76604BCD15F587BB7125F567BFED73D6F |
SHA-512: | C26475FBAC7C894A752F4884361E58CA4D4279510921FD5231D4A30679FE503CB779B5BBD7CF8103F62FEBAB536F2DE55AD379911299088EE7ED36F69F7334CC |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\src\koffi\examples\electron-forge\webpack.rules.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 892 |
Entropy (8bit): | 4.568202058022995 |
Encrypted: | false |
SSDEEP: | 12:xBBFCHrhum+4BQG9A+DwagiPFHUymEOy/EOimM5LmRZG6dWSOnqoL93YCRdM/Kj:DBFEumnldsErjI5LCZGGNoHRiU |
MD5: | 3E0C3B766B00A46070C680CB13ADC423 |
SHA1: | 94538A1CF16CA75AD3FFBD6D918B40BBC7978954 |
SHA-256: | 94AA1B7D2111FE527EF9EEA68D58EF7779676171F6C153BC2E021744BD26DE96 |
SHA-512: | 22A5547527A84FF5794F9B704EBCA1FD759257DF542B110BB0EA50D9DB69B5962E35607A6CB248CB37B14BB2AC0A7BEE1BAC78F840631ACD151DE5ACA3BCF77B |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\src\koffi\examples\node-esbuild\README.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 408 |
Entropy (8bit): | 4.506047635138462 |
Encrypted: | false |
SSDEEP: | 6:hu2Aj/ANGOfFUqYRI/byiqrnH+Y+PrgKIaQFAQgLje4yiqVQc10cY4FBCwmMhAxv:hunrYFSRgmkgKIahrPXbLvMCwGxv |
MD5: | 4C9220A42E1BC3B66B3DA3E763C525F7 |
SHA1: | 60969CCC26579D8E4743077B918C6C560A0F6B2B |
SHA-256: | F9FA58991F5EB49E806AF2AD60E6388643A0CCE6FDD85FF0FAFE65F1F6623C56 |
SHA-512: | 48E9BED360D8FB34B784998B1FB6C5E658205658B396B9970EACA9DE4DAABFEDCAB17F1F1DB5250C81EBC82704F5AE20257D82EEB4684AAB01F08A2DF3EC850F |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\src\koffi\examples\node-esbuild\index.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 61 |
Entropy (8bit): | 4.216879346677896 |
Encrypted: | false |
SSDEEP: | 3:aZJmYDLvGKpAiXdLDqH:ADLeWAGLM |
MD5: | 689832A2E35D7E861453918C61E2BC6E |
SHA1: | B48C444B3BCBEE6DDC9DCCFD2A8AF86FA1F00833 |
SHA-256: | 73F3E73DB61B9FA5E48B584969103CCB0F74FE9E816080B347A886A059E555DE |
SHA-512: | A30B060346FD1C92377402B2C999A2B1660FC23DBA457B9D2C97AA6BCE7A6877B47AC7ECE0C2354B50CE20138F6588AD06071A05FD1E69600FD55700EF490D49 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\src\koffi\examples\node-esbuild\package.json
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 203 |
Entropy (8bit): | 4.457355691287043 |
Encrypted: | false |
SSDEEP: | 3:mifFpgv/KS18tTHAUNVpZcfEB47svBedJAWesBpdEQWNwFiA3BRVmU0TNHOKk/9F:vvgv/KS18tf/oc67OhMdEC4Ask7Qgb |
MD5: | 94BE6B71F18FA4B11A13249812B126BA |
SHA1: | BFC985F15A61D2B9EF145510DA8FF9B3214ACC8D |
SHA-256: | 578F5D0D02CFB663DF145B022A3016D4161AF8D4BBB9ED5EB15966FC6BEC74D1 |
SHA-512: | 3C520EBF814BC21F220339959E3B538DF85D59C2A57026D5263B170FBC782BF2642349C9FDFE723BCE876A82C1CDA37E18998854D0E67F230054B0E68762E10D |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\src\koffi\examples\nwjs\README.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 468 |
Entropy (8bit): | 4.794940632773541 |
Encrypted: | false |
SSDEEP: | 12:hunerhKNpBDfMrhRgNWWLuZFNAOrSPiIC:igybLMrhR/McFyOrMC |
MD5: | BD01294DF461109C7A275CE28F523A3E |
SHA1: | CB140001F25D696ED1B6E16B32101237784BFA57 |
SHA-256: | CFCE78D228A197DF303FEBB80C25FCEF14D6C2F1F26B05CD7524137D5206388D |
SHA-512: | FFF8893C080365E189345C2745FA666089DB857810CB2078E1203CD7D4A904B2C6706A599F9F516C73F5ECA827A04C47604598869C232EF4810D7270412190C0 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\src\koffi\examples\nwjs\package.json
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 170 |
Entropy (8bit): | 4.7500838516105786 |
Encrypted: | false |
SSDEEP: | 3:mifFKTv/ZekFEpLA4MuXKQ5MJ2bHJdSWeoQpUh1LBAoWNwFp7HAHfF1iyiA:vov/SAV2jTM3+2q3ifa4 |
MD5: | 7BEE03D953F1082E7967408D73DA074D |
SHA1: | 3F83F85E6968BD2E94B23F7C055388587129C455 |
SHA-256: | 85BC58988D258045A4ED73C044A6171C74A6899B198B4B6EF6AB279BA6E0481C |
SHA-512: | A45B8F16043D9713C614162F4D6890C7B3F1587F3E671738F32C55C9EE76643266E52534F08C84F728D00E6FB19F22CE5520A10015C4A66A981DE97B9C39C775 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\src\koffi\examples\nwjs\src\index.html
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 4222 |
Entropy (8bit): | 3.8036813972764643 |
Encrypted: | false |
SSDEEP: | 48:2XNlpycYyskPseE+fE8qiZ8HjzeXmscZnrb4GZ4nRXkSThrY6DBrke:2XN6NkkeEQEFiZW3ZsIrB2X/ThRVge |
MD5: | A3F3DD0D6D1EB233A31463F8ED54CF2C |
SHA1: | F341B09543D7759FB274A06561CE10D56E9F3932 |
SHA-256: | 81ECA5062954CAC63CF6878819D1707069CAFBA2A390D6AD79CD35C092B19CB0 |
SHA-512: | A473D336F8FD6800856BEB64690AC1EED3200717ECC7FE087AFA2433141E12C3C34D3579B5BCEFEC75C17C024AB209B051729EE8114B98D6E9EA774546210DC0 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\src\koffi\examples\nwjs\src\package.json
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 209 |
Entropy (8bit): | 4.689323942592966 |
Encrypted: | false |
SSDEEP: | 3:mifFpgv/KS18tT/cfEB45QJdnekFEpLA4MuXKQ5MJ2bHJdSWeoQpSQWNwFsKk/9V:vvgv/KS18tIc65cdIAV2jTM34C27QgL |
MD5: | 85875B56A307392AD7F36FBD7D101025 |
SHA1: | 307BEF6D89F9C181D9C7ED6B836018555EB85326 |
SHA-256: | 1B8DFA535B609038AD8CE26C0E76A5534797771989965E7D4C9FAA4C85002C40 |
SHA-512: | A2CD7711F995274AF7B2A802049988B90FA9AAFEC4CA4E5A750D15629036E84FF1F3D9B4027B3BFE5E904F1F3B8043BEBD23262A881F8CFF465B87357B4C3EC5 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\src\koffi\src\abi_arm32_asm.S
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 5538 |
Entropy (8bit): | 5.017478157431643 |
Encrypted: | false |
SSDEEP: | 96:pPPpSRH2o2jTHExRKsKYdNokkZMjU1nGrK0Pv4qHUYExRKsKJPinkZMjVZExRKsK:ORH2LTHgRH5DokkZMjvz90YgRH8wkZMb |
MD5: | E96656DEB55D35BBBC8627E620AB8204 |
SHA1: | A4750D393A2A32839CFC7983C73BA06C9AE6FB27 |
SHA-256: | 99942E6A0196B7B8B1F3084EC954EF4556D4EC189E89B2F4BF79E861D5BACD0E |
SHA-512: | E959ABBEB2F4406BC78E3992AA9231241DA01BC788230DBAF71EAD451FA91D154E6B35E99364140A24942B3071F268EAD02C09CFD9D3065496F5522E821E962E |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\src\koffi\src\abi_arm64_asm.S
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 6376 |
Entropy (8bit): | 5.130604049301439 |
Encrypted: | false |
SSDEEP: | 192:ORH2Q+TScYzAOO+ZTDCucgIoF0YcYz1X9S5+ZTDCVZcYz1X9mix9g+ZTDC5mS9c3:OwujcLUg9KmX |
MD5: | 1C1856FB7CE965001D846009EAB16257 |
SHA1: | 60DD0940FB8A020F53076BB29F18B0D9D5AF1E47 |
SHA-256: | 673744707808DA29C9FE2B0759535764B61153407D0DAC983A19DAF05F137642 |
SHA-512: | 22D2723667EE87C63B71A7DF62030773CB7B93A089937661545B6B04F0E61718E87EDFA07CE53D992E068AA1D84EAD61AEFD3495EA124FCA88A77D465F6F2E23 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\src\koffi\src\abi_arm64_asm.asm
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 5364 |
Entropy (8bit): | 5.036202294822439 |
Encrypted: | false |
SSDEEP: | 96:xPPgwKRH0RoDy2nXOdvuFywptzJNnFeH4CsCHRDKY++sRDmiZeCdlUfmyBgZFl:mRH0RWy2nCvQyBtsCH9KY++s9miZeCoa |
MD5: | 601FCCEC3E81AB8D57543784C19F17E4 |
SHA1: | 37554297427D3D5F50A38F99C77C8383FB433800 |
SHA-256: | 76CE637D80F598FD1967C021DBA9C6CC6002B2444F64DB5FC99239395E32BBC6 |
SHA-512: | 47FFDAD84930696B3067BDEE814B2814919E57A9E37B50A23C60316C5AFB5ADD8B59074A45B651F2C87FAC5FB927B53266C34F53CB69045853DB038EFB6A58B5 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\src\koffi\src\abi_riscv64_asm.S
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 5757 |
Entropy (8bit): | 4.981870295794071 |
Encrypted: | false |
SSDEEP: | 96:pPPpSRH2ojjovU3kob59yzx8GxQFHOPrEa4qHUEzQunCbzQTTJxtUnmSwBbqD:ORH2QovUUob5I/oI0EzQoCbzQ50mSwuD |
MD5: | F38AB7575F3F736BD7C3C0866CF6F698 |
SHA1: | 46028162AAA9A4A2B4D446F18BB72B946B053622 |
SHA-256: | FAEFD3B91193A44C1E49B8A2BC12297621EFE25D2A546D0DFE87772C943C1ED0 |
SHA-512: | 3A36977C71453449D7D356257914915687AF028964D9B782B4EFC660D0FDBD4637E67BE8BB719589F0988AA7889DA6543A9B7C4D1277B82017018A80F0222973 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\src\koffi\src\abi_x64_sysv_asm.S
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 6941 |
Entropy (8bit): | 5.186536658874495 |
Encrypted: | false |
SSDEEP: | 192:ORH2Qtbp1qONd4HCSCadGSI0YqJGVWlQEHC7eWqJGTWlQNsHHC5mSDnqbSnYHCW:OwejN1JVWlQ1TWlQNsMmb |
MD5: | F0E7D029E01240F6B38C38E072A3082E |
SHA1: | 6273748745912F7CBF77B6F9E1E07EDA9AA7EF95 |
SHA-256: | 058CE0C087D20094C1600843786562EBF122D6B171980C6EA39517AB1C3C9FA9 |
SHA-512: | AE6C30277B6EADB2912BC1B088C718E8ACA5288E66716C561A6949D30D76453BFF7828D50E68DB6C48DA60038B9EE37B74959C4C2A33562BD811B0EE445E206D |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\src\koffi\src\abi_x64_win_asm.asm
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 5620 |
Entropy (8bit): | 5.029414613828223 |
Encrypted: | false |
SSDEEP: | 96:xPPgwKRH0RoIbQI3vaxd1vnj7ZAhldTu8tSszM74SVMLni9Ae/nvaUZXP/w7dlUK:mRH0Rlb6vnvZdRMz8AefyPo+yDVE |
MD5: | 78B3F08A59F11DF9E6A5ADD2D6D5B1C6 |
SHA1: | 47D3A219322B9D94A301196606F2A21367D339CE |
SHA-256: | 0831157F0663376ECAFC166FDEC189975B56D3BBA029D5A8ED992C01DAEEF1A2 |
SHA-512: | 224A6679445917652ACF3079556CDB8096EADB0EB6A3B8782BF23419FBEDB96D63D66C52A35DAD7DCF85A9FD967E1E5832B3BEA6783B89D5BC252655CE5754DA |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\src\koffi\src\abi_x86_asm.S
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 5519 |
Entropy (8bit): | 5.075662466168818 |
Encrypted: | false |
SSDEEP: | 96:pPPpSRH2ojhilvWqYjQVMC9HxyRyiy4zGHUO7C/q9i9wMCZaRq9i9PAMKMCahtUi:ORH2NWqYj8MCV0v/q9iuMCWq9iKMKMCI |
MD5: | DD16E1F04FC4F6AE169862E4FB6E20B0 |
SHA1: | 465BB03C42C09DC74A94129B0F6BA4F6B7653346 |
SHA-256: | 52851F086A94EBC2B1C41D7CB70692575112604D5E46B6EF0BBFD657F56C66B3 |
SHA-512: | 6C84E9874BA30EE7122E5AD7F2B2383EF4409DE9FD797639D829DEE293779FD99CE3A3866BBA9CABCB2DA0F84DFE61490B94A55E3D87FFE030E0501674454A77 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\src\koffi\src\abi_x86_asm.asm
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 5228 |
Entropy (8bit): | 4.983675778834651 |
Encrypted: | false |
SSDEEP: | 96:xPPgwKRH0RoRI3xhGhdhLprIcZaXKUAKfWKZeM2+EhkMywah7KdlUfmP9nh:mRH0RgFLM3Ehk2ah7Ko+P9h |
MD5: | AABF9CFE68537316E75B81344B88319D |
SHA1: | 666DCDA528DF3E6635494D8E7D2E7809722F06E0 |
SHA-256: | 65B139A994579B4A706F6904E6EF7C8CCDEF5C3BAC4BB83F24958EB70CBA80E0 |
SHA-512: | 96AD6A8EE559B9231469746AFC350758439803BA088A68AB264B091AC835CB28B4DBB76E84BD4578D051DAAC21AF453822320B5ACE8AC1F495F3A1A3C4B0CEFB |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\src\koffi\src\call.hh
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 5883 |
Entropy (8bit): | 5.150409876288633 |
Encrypted: | false |
SSDEEP: | 96:uzPQPJPRHFo5PCfa9OQbfvu+158egLSQGN60z6it/O+vEXuZv0z+aKCF1:7RPRHFIafa9/LD158eTQq60z3t/JMXuu |
MD5: | 5B90E0618060955B7E875C4054615629 |
SHA1: | E1F031AE43F34E320F8C7A1CF87CBDF9894A2FA2 |
SHA-256: | 3595D81A68E97C274546B30F713FB6AB93C931163CE908EA9F56A05D6108D858 |
SHA-512: | 40C2BB658D355692390496A6A78BC4E368DBDBDAF694453837760EBA174674BBB25AC45A38E3B73BC94B8801A4B0181ABCB852E6D7D1B92D1917A3E6807015E6 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\src\koffi\src\errno.inc
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 8917 |
Entropy (8bit): | 4.929606223757531 |
Encrypted: | false |
SSDEEP: | 96:uzPQPJPRHFojtB7nh9JhFJhtbPQpAZYrstNmRZtjG5EMSzPRXs8SG61sR9P1kB3i:7RPRHFGI7TyTNva5XKCtpUAj5B47Ded |
MD5: | 06C397C11EDDEDA20AF0ED74EB0FDE05 |
SHA1: | 5105236243B75E2557303E35578752CF896BC3E4 |
SHA-256: | 611B1276454508D41DFFB6DE9E081BE8E22E9B1CDA51D922C77D3A0BC0FF02BA |
SHA-512: | 7D4BE72470DA1A44C5008C221B4E4DB25694CA8452897CA969ECCF73C0ECA647F65179B8C3FCD4A58CB8A878E195E756D32A479110BF5AF09521CE117B2E4903 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\src\koffi\src\ffi.hh
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 8942 |
Entropy (8bit): | 5.086631812252 |
Encrypted: | false |
SSDEEP: | 192:7RPRHFm6ju860QSkcUjHw4OVTvg/lHC8c2jm4IBQgF5jODt9lAV5ZbZj93PdLzo8:79PpjuYQSkcUjHw4cM/lHC8NjmrBQq5T |
MD5: | A17C12DAB7E603825E9430105AB07923 |
SHA1: | 524B04E21DD4827A846B476559927ED28A36981A |
SHA-256: | BCFBA02DF9D4CC8FFBB583C5599921DC3660198F6F2CE5E9EB42A8F1C9E59D5C |
SHA-512: | D577D0B42F4862B903A491F02198727A597DD5DD36A0D417C4B5183305A320F4AF524767D47E81A9A895FAAA7ABD38186B2F10D23CD17C1FAFEACE0692E7843D |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\src\koffi\src\parser.hh
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2299 |
Entropy (8bit): | 5.160314901751441 |
Encrypted: | false |
SSDEEP: | 48:RQhwJOlPQYEsQ5VKAHQsdI/4toE2AT5Ak8M3sqZGVv6Oa3Fs35vC:uzPQPJPRHFoa7s3DTpK |
MD5: | B97D00550D0C1D53C7BF571B970B3D26 |
SHA1: | 97611FEE24D7EEC9E4843467C20032A0A9ECAAF8 |
SHA-256: | 442131586A7ED8F788C0A8DC49C2E3FDE3B037BE3B57EB802FDBB9F7C14BEC2E |
SHA-512: | E99728818AAF8D17DB82E37065ED805DDF6E7FDCA37A2E2197BF27E01229E39884B7A3ABDACFB34165C539C2F6F447CE2540A7217C92969BED0DEE0CEBDCB0B2 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\src\koffi\src\trampolines\armasm.inc
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1272442 |
Entropy (8bit): | 4.611245149428231 |
Encrypted: | false |
SSDEEP: | 12288:2mygPSJaBtJlptRlxe/SrbRHpjhX5LOnhXF3xndXYrtnFzVX9LKvV3BnlP5fArh6:L9NpmX9hL |
MD5: | 51CC2712FC17962FEDA5543019040974 |
SHA1: | 107ED7CD34D6ECF9412C5F0AEB97E4042DFA8D66 |
SHA-256: | 260057B57B74B853B5D424E14EEC71526F669BE8252B4C892326882280E3B06A |
SHA-512: | 02A644632D78433EAFC2B65811D9E350221DF2DC5D9F851E4EBF175939CAC9E428C99BF5B8EF7B1F157E63425942A218521CA467581FE43388B78812BBA95D6B |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\src\koffi\src\trampolines\gnu.inc
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1272433 |
Entropy (8bit): | 5.030233126913274 |
Encrypted: | false |
SSDEEP: | 12288:/o2A92JXsd9lNt9FNdb2aLNTd/VbVPt6lPBHNPRnVYNXtDFH1r9+FDpTVzBDFY1I:QrJOTLPzU3z7zs5 |
MD5: | 14A4DCE8EA8A31D3FA43BF12A4EF5E20 |
SHA1: | E93D98DFD3E8CFB4A40D34ED886638615F8F0842 |
SHA-256: | AD598C919C43558BE25903C346630D273E2CB9AC6A74AD3BFCA2160B7E59EF38 |
SHA-512: | 1BCA97D0D8BE514B7FEA6E7E2C64EFCC85FFEA94FD0E802A5DBAC20C4D15DCA613B1B6D4B6DD57E47FC7FA0E4BDEFAA9A7C91B9215AD3DF6CBEA47C869515DCC |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\src\koffi\src\trampolines\masm32.inc
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1393093 |
Entropy (8bit): | 4.564164551677838 |
Encrypted: | false |
SSDEEP: | 12288:ERxFGMi03mlMDShoPaRg/qXcF6DwhufvEXqVIrOJ8+ZG7odCfUxtmpQrCVMH+UzP:iDFZk1dZkkY+OFOfH |
MD5: | 5CD614B4DF126D8653D3EEDE833C5809 |
SHA1: | 786F900D89EE8720E729E180ED12969F830D3D67 |
SHA-256: | BA983A7E38A88EADD7E2A6D3FDACE4B660588861B72529640E9A91F57E23CBF4 |
SHA-512: | CD0C690DDE4AC81EF9D556F40D5E02C30EB666F354850C4116EED941678018D5B3777A399541ECAA50EDBF0C653DE303B3B8A381D17FF76A1DD14A3A7372092C |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\src\koffi\src\trampolines\masm64.inc
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1491397 |
Entropy (8bit): | 4.567897548855278 |
Encrypted: | false |
SSDEEP: | 12288:ERxFGMIl4RePcliDgbIQmKY/+9cbiJQA3YNuj0p6f5qxkDm1QnSWRa701uPo5nsx:iDOxIAkBsHPOyheHo |
MD5: | 08ADFE5EE2A34563CB5557B01733AE75 |
SHA1: | C2576DB57F167DEAED7047ED3C17D5ADDB76CB76 |
SHA-256: | 4973C9B76DD68E9CFE32995CBA9F71C5AE7108B2C730F62707D29690F1ACE56A |
SHA-512: | 3AE6C2A1E0D9540798D2B471838F1410FC4A1DE8B5DC17D6F63DB1F0AF424170E9AF3A03CD46C6EDF5E4CBB19E314E11B1AB492B11ADBF1E21BD7D4BB0DCF930 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\src\koffi\src\trampolines\prototypes.inc
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 865167 |
Entropy (8bit): | 4.639818383581237 |
Encrypted: | false |
SSDEEP: | 6144:jMvUK4+WvxWrMOXfv3r3bbjDUugujfAG/n380rLwWjjbTTvvfbC5:jMvY+WvxPRJJV5 |
MD5: | D51C64EC2D1C080BE3289CC190068CCA |
SHA1: | 7C47426CB4DDC56B5AF9907BAEA124BB2437BFE2 |
SHA-256: | 4FB300793584851A13B0D281FEA3DD323C0F363DD097837D9A532B29A4409E3A |
SHA-512: | B17802D3EE958BAFF2851A7B4BBC6ED4B98156A2423A9156551DA5DEFA9F9F229E2E0C7F922A71162D16A9D5259891E3856ABA9E79CF6348042C9F1BAD172910 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\src\koffi\src\util.hh
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 7586 |
Entropy (8bit): | 5.199154675030029 |
Encrypted: | false |
SSDEEP: | 192:7RPRHFIpUndAHMsBHWjrPKeWMAGbhllSQ6z2cic:79PRczv |
MD5: | 4C8DD54735784D68009FE4C6ECBD6EEB |
SHA1: | ADF9D183E41F351835E035659A84404CCE73E50A |
SHA-256: | 3134358902D5850C4296CCBEEF29622C3C1452C3D0FFDA3139198FB30A766BAA |
SHA-512: | 2D76C1280782FF62C1A39A1F56DC461DFCF3CCC3EEBD7A5369AB7B8DAD5D3F6CABD82DAF99143CFAF15319AE7AC489F714F9976CF52DC56D69452F54E1C262F4 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\src\koffi\src\win32.hh
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 3532 |
Entropy (8bit): | 5.351506324936535 |
Encrypted: | false |
SSDEEP: | 48:RQhwJOlPQYEsQ5VKAHQsdI/4toE2bSYl4v/vl9gKih9FKvAVBABAv0e8x4FQbj0M:uzPQPJPRHFokYCv/voxEaQn0uyY |
MD5: | 15D8F400FE46CD3C7258E08757D50CCE |
SHA1: | 3AA1D6FC82117EE1FC1FA41F631BC0642E115641 |
SHA-256: | F638027790A8D8B8F727B9A56B109ED3FDB7980268773684FE440863D41CE92E |
SHA-512: | C1745FCA1BF2B56AB67288A585163E7A73D2AE9D30D281DA5F25B6129CBF5130D6371B337C744E8382146DC93624872B1E71AB6AC92C583FC3707BAFA223B88D |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\CODE_OF_CONDUCT.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 157 |
Entropy (8bit): | 4.83608330466695 |
Encrypted: | false |
SSDEEP: | 3:SjAFgSFeZFmpECFkRL9ZGXx9eFuRGEd7LPWfz+Q2q26NrA:SjAqSF6FFL9ZGXxsFux5WyQ2qbrA |
MD5: | 35673F334CF1EEF8E2168634F4C95A44 |
SHA1: | 30FCF636A3795583BF729C1DF1B22054808850C8 |
SHA-256: | BCB01BE700928A7D419DCEC42C0C872D5303B6192041B2A4713761E10CC720CE |
SHA-512: | D9DA7E66385A4934AA933331AF09C33E36306618149D05B6404E514D472B530FEBF6D5780D5DAEEF3813F174A1F690A2ED38AB0260C10BDC7616490065DA47F2 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\CONTRIBUTING.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 4395 |
Entropy (8bit): | 4.526486211816185 |
Encrypted: | false |
SSDEEP: | 96:wMQRtXE5hiTv28b1xvHM+Gxw4wDea0OexsL49:wMCtXEnI1ZxvdGmhDlbexm0 |
MD5: | 21840BEFD36C11431AD152DC6B8490E4 |
SHA1: | 4771E8DAFE8B343EE0F385ACB3F42BBA7B14F551 |
SHA-256: | 6023BC19CE5637D04EFAA686F267E4B8B9506D456B57914B97728D3D6985342F |
SHA-512: | 5704456DAF243A9D621BC79EF16FD002723A7462D70BBD276D733A4C4B718B45F3BA31D64464E81EE87079DC81EF81558910C43E8CAA9AD6714604E706A4EE3C |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\LICENSE.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1150 |
Entropy (8bit): | 5.128918748605585 |
Encrypted: | false |
SSDEEP: | 24:bH9WHtIr4JHBH0yPP3gtAHw1hl9QHcsUv48Ok4/+dbo3oqxFD:bdUtI8JplPvEDvQHcs5ITc3omFD |
MD5: | FC3FF1120869BE6B3CCE17F9A06BFE2E |
SHA1: | 59CBD579B31F0C6932DEAF31D0181203C501C9B1 |
SHA-256: | 89024017B88A9F2B763F79B941A4F2DB3B4428EDFCACDC0B23866B2DA633AD0C |
SHA-512: | 54481C328231787E3319E8678B56B0C898BB6D7B1302A7C74320060116FC03A6D747D02DF068BBA7960A71A78608F3A5B40A3E110BAE107D41BB40988D8FC2B2 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\README.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 14050 |
Entropy (8bit): | 5.0739380147759094 |
Encrypted: | false |
SSDEEP: | 384:baXz3XErPRKNoFRjMip+Vxnh0b2LmLrLCLgLcLxLgLaaG7bonXIHHDLHnbzdsn63:baLXhoFRoi8PnSnGnowL |
MD5: | 8AF8B6639AAB9D615C8314214258E0A9 |
SHA1: | 1D5D08DCAC30D06A7F2D4E7C3ADBDB728E224FE4 |
SHA-256: | 09733CCD9B392B9AAA83F811E4411CF0DB963A97D54ABD7167B0B5E7684A55E5 |
SHA-512: | BA37607B07870606B9AF65E4ABF7D5EEF87960A682C33405A6B182D5773C8A473FAEF4950D3D9BCB2978650C951A25BBC17C3B67269FF57EB1521914C927BCBB |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\benchmark\README.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1526 |
Entropy (8bit): | 4.566927093858658 |
Encrypted: | false |
SSDEEP: | 24:MbS+7+t3rjADRJ+xYuTA+BmsQ+tD+8AfEA+RYG+gaAkM5J3dpAuYJtanoYJHnXXp:MbS+7+t3PADL+6wA+c+tD+RfEA+Z+gVb |
MD5: | B5E304F1B7799729FFD1E8AF0A0ADCCE |
SHA1: | E799FCAD0B4BC34D98ECA74C09FB0AA68BE2A68B |
SHA-256: | BFD207279B26DE744FD44421F38D4063DEAC14B682FB563671F57D25779CABEF |
SHA-512: | CD9F19AB17A8C36138AB6CE31034EA6FA49BA600DF848CDB85DBF046DF821ABF8734579496B6050926A973AB544CECB241D9F0E9C4EC4A24206771889EF3352A |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\benchmark\function_args.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2146 |
Entropy (8bit): | 4.773943239715566 |
Encrypted: | false |
SSDEEP: | 48:9ztLU+206juatpJ5NJ5xJ5D/J584fDJ57:9zNrShJzJjJdJDrJB |
MD5: | 8167011BC83867DD48CF3FF4D3C83E3D |
SHA1: | 48DD03D36B98DB73C12833BF26B47451D5CB53FB |
SHA-256: | 6C431015D41E05C644AC250507BCA304C5875ABB39B8F514FFBF422E2747C3D6 |
SHA-512: | 4D57E54D29999A75864BBF7BCD5442DC32DCAB4012BCE7B25CFC6468551EACF78068EA8AA999314FF0FD391A1FC075868ACE3B70D317592233F3B8FAF3D9CE38 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\benchmark\index.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 969 |
Entropy (8bit): | 4.833363070020405 |
Encrypted: | false |
SSDEEP: | 24:Atp+aSS+NWSZfqp4+sm+hkbEYW4AnOE8bKONK35Vs6:u+5S+N9ZSdsm+hUEYW4WOE8uRpu6 |
MD5: | 9500C718C2CFF0E68FD573A9374CBD28 |
SHA1: | F2EA721C286C8A8F19C1934D1B585B76790829E5 |
SHA-256: | E81F7EB6585009A812B3B40D2DD7BF29D277AB13C95EC0E6CCDAA863B6957D35 |
SHA-512: | 4E9B9E0BAC98F5BB94DF2C4AB71C7DAB9B17D68703FC139C0553302366094A54AE448F832143C43538BEF38447CBA37B6026589F3122F54B5287C715380FC584 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\benchmark\property_descriptor.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1105 |
Entropy (8bit): | 4.806134811408852 |
Encrypted: | false |
SSDEEP: | 24:CWztznJJQ+2XHEclnglYykjyQpoBKIwE9BOIOraK+vraK+G:9ztLU+20clnglYyvQiMuA5i57 |
MD5: | 9CB2AFCB46B14AD24DAACFC1F6974E17 |
SHA1: | B774458E2657835E089D94A3E597573A7685C12E |
SHA-256: | 4876726682F02A52B1BF26D6B16EB0B729036572C8DAB505A0F506D881473253 |
SHA-512: | 9049F9A0681102BF63CA8725624AA410E364B26FA78A846A963105C8E8C15EA8E6FDBDD242597B5D339A7AA0830C14C440AB6731F5DE92A6CD7F150E991AD240 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\common.gypi
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 724 |
Entropy (8bit): | 5.176944134630747 |
Encrypted: | false |
SSDEEP: | 12:mCtwwcw9cVmlCLRLCv9cxznCGyNeR0a5VCTze5hsLV2FfWN+AEuQcWnqLpA5UNnL:4lwDuRWGyNeR0gYSTsLgjAEFn8A5QHiC |
MD5: | 3B40C0A5CB6A8389C9A2CB3F25282D7A |
SHA1: | 7A3C3551EC4D896D96E5ADB31606367BF4D4011C |
SHA-256: | 60083CA8544CFEE3B47CE2AE1FAF394DA40BF24722AD4FB7828EB9598E8101D6 |
SHA-512: | F05C7CE5558731CE30CA17EF1B952DCF15C54641B784E09EC4272150041016B5B016845B36B337C84B63A63A8F8937CB61D3A07ACD2D9DC7E74E4DC258614E89 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\doc\addon.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 6315 |
Entropy (8bit): | 4.847321924990071 |
Encrypted: | false |
SSDEEP: | 96:EVwv7N5ICs3dgFT1O9121Ov31RXwgRaqUbdk98pgWsF7:E0s3dgjOHeONuxPphS |
MD5: | FA0CDF6989375EA3102536F83AF31F80 |
SHA1: | A3648E6B570D01A01BE0D6AA43D88313F804E860 |
SHA-256: | 8E783BF73B8255F6F384DE4687333E56EC108D9AE63A9D7E20070E4247ECE469 |
SHA-512: | 671B71DF74776363DFC9A16A76ADEBF11B0E9F40E759CB12337D85CB2A8609855603C56D412FA9DD110DB4B9C802526BA0A42D9926B7ACE18316E58D9568062B |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\doc\array.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2724 |
Entropy (8bit): | 4.8986980591573985 |
Encrypted: | false |
SSDEEP: | 48:0pw7leuZSJwLYnJVc1TEe+CxFJqc1T+C2kJqc1T+otD014KJqc1T+yJJqc1TtSlM:XTL6cmJWecac9mwcccZ |
MD5: | A3B1EC795BE7CEB590A877481B3F711F |
SHA1: | CACB3AB39855B121DE46FDC73F5259F4E53BEE4E |
SHA-256: | 8D9A455EC74EE1DE5D808D11C06C2DCD17865FB13C951872260034CB7F3D107C |
SHA-512: | DD9F2C2B4F4CDF094E15EE7631586F5709F27A2C92FE894A5108B1198D6162C01A00A2F077A94D3574217FB196197EAE5667230A23517CA516C4A5E77AAE9E9D |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\doc\array_buffer.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 5480 |
Entropy (8bit): | 4.853548692903038 |
Encrypted: | false |
SSDEEP: | 96:NVF/yEewuoGwF3LC5EdSuoGwFE5deyuoGwdZcaads9s4mL69An:NVFBewu4F37Iu4FGFu4dZ1aEs44pn |
MD5: | D22393CA35DDED0E46FFF2F849CFBBD5 |
SHA1: | 3D515B5E519A8CE0003C64AF4FA7E63652971A43 |
SHA-256: | 9AA1312AFB4266AD515D698C31BA4136109DA27DF4016AE98A51098B8620E368 |
SHA-512: | C95809C995164DED5A6FC024B5E1F07CF07CE73F1F3C7D2574AA0A5410E55C53DC582A8F3311795ACD3F9CDF29A53A4A53C9531B3FA5CEFC6D43B6AF0BDA3AA4 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\doc\async_context.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2601 |
Entropy (8bit): | 4.896833033974508 |
Encrypted: | false |
SSDEEP: | 48:7grBwNJrlXUEDgZvDHKZv1HQ0FVRMqyRCBP+k8sg+kWGu41kGulJ8Wd64GVfV:7g2G+6a3aCis5VlJxd0fV |
MD5: | A57DA580EFE9115432B1C099FE309BD9 |
SHA1: | BD9E9B6A26B32E66E4FE995638DFAB2E4BD9B3AA |
SHA-256: | E898641BA063BA95FC842F0EA87C985D638BADDBFEDBCEB48E82C77BDEDCE1DA |
SHA-512: | 2AE95F8B2D631303933E7EBED6BD6C99FF1C617C8DE6A8C60F767D2DCC3B17A0E4DD9297D1C13BA2B30DC87AA89C582B13C5533F77F4013A58E9416DC701A90F |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\doc\async_operations.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1368 |
Entropy (8bit): | 4.559038674721569 |
Encrypted: | false |
SSDEEP: | 24:/FuZPGaRFceIMtIHQ9tFlXuBtdMMMBK1gA7gcXFETna7qYBI+q:kPGHott9tuXOTa7qYBI+q |
MD5: | F44EABEC6A074B8E3B50D54B167F8F33 |
SHA1: | D9D4FC2D4AF4F6948DF6A818C1BE763497D119EC |
SHA-256: | 0AF08FA50AD34CFB0DA251906C9244BA9A2B71AB752C822593B3BAFE2B8BAC3C |
SHA-512: | 3A6C4AF854736AADF90FB8622E0744B3A8C34ACB649627C5DE15B08A7E745811CFF7F57B72A9221C2A55AFA19E379EA941E52BEACF8E5E488634048C5E084413 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\doc\async_worker.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 14647 |
Entropy (8bit): | 4.820565527916045 |
Encrypted: | false |
SSDEEP: | 192:3WY2Oo9D+cM/99yD5T104s0r0v0n0j03f4Y9SancJ5:3Ho9DRMaDH050r0v0n0j03fd9SanK |
MD5: | 63F45840EA3765E84A4CE80F1003E1AD |
SHA1: | 340350C08E56E6672C44DDB5C660B3C8799A555F |
SHA-256: | ED199A4B4A3AFFA3DFBC0C69F17605AA2384FAD0E337A3F0025BCAA7989B26AF |
SHA-512: | 54B19F37B6A08F178AFB4839430D488E68C8D3C3D21E62ACC48FE339CD2C938E36F7C3EBEFB63CD30BF939BCB2888416088E485A8D5EA70CC8B8A67210BFF12A |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\doc\async_worker_variants.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 21279 |
Entropy (8bit): | 4.878291994608546 |
Encrypted: | false |
SSDEEP: | 384:ofvKvN6iEoX6w0h0c0c0I0Z0nqhqNxXnqupa1Vm/VWqGWU:onKv8iE7w0h0c0c0I0Z0nqErXZ2VrqGz |
MD5: | BD72F5E283E21BFC345CD3940AF24955 |
SHA1: | 621930ED5D0EED9F9E4583CEF440E86426F7A599 |
SHA-256: | CCCBB46D912E7B89562C73228886650AE6C3198F05911B4AA0DD8A3CAF626E77 |
SHA-512: | 0482D603BAFB52F1690C138EFCC71265EFB29C88CFD09B8D4C66317CA7F0CAFBCF1A2410C14AB433620C421FE04DF63FFA8619A15FE4EF11B9C94CFF6BEC2348 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\doc\bigint.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2720 |
Entropy (8bit): | 4.952642560788757 |
Encrypted: | false |
SSDEEP: | 48:5jDUwFwbQM1dMHY2n7FxZROh2JP7vsxZROh/bqL0Piu7fWN0:5jT6MH9nRx+hkPIx+hzB/WK |
MD5: | 4F029AF17D2B105A30F298EAD4090C5A |
SHA1: | 051881DC0B5AF633C3815C65B90A84EAFB7564FB |
SHA-256: | ED272BCA594D83B41B950E6485142C3095B620909322CBAF63A678073BAAE02E |
SHA-512: | C461F16723822031A8744570DDF7EF6423285D3E517F44C6313AF65E9A219C3212F54A8F2247ADA7E18051E8040624640B9842B0DFC4BA83B16765A5CB29DBD9 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\doc\boolean.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1597 |
Entropy (8bit): | 4.697839226148773 |
Encrypted: | false |
SSDEEP: | 48:21gGavLG6zPW8IgLGQzQLGuU+MnMHe/M20:24vpykPcW+T |
MD5: | ECA4EF4264C7BFAF84935433F069AADD |
SHA1: | 1E8563A3C218A8B82E3AD5DDAB2588F63F6CDD98 |
SHA-256: | AADCB80D5B8CC1B67135893044405CD60A7ABBE275688DF753FE5A63605A7468 |
SHA-512: | CAEBD47D6A0EF130626AF8C42D4A78299D49986A0687119E6A91A87E34B9CA5EDE51E36A210858A3ABECF7EA03A5E175D93002A6E94876E64214409C58186CA3 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\doc\buffer.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 9194 |
Entropy (8bit): | 4.707771600263743 |
Encrypted: | false |
SSDEEP: | 192:MyPHFdpHCQHwz6HdBTHzbHxo2Hd+HCHCn:MizpL2KdB7zjxoedmyCn |
MD5: | 8D527DBB28B418FD86313257217CF94B |
SHA1: | 7E2F5C4FAB4F9E6F823E31DEDB1705E897BE87C5 |
SHA-256: | 4D5D8994EAB2D96D11C0A4278BE3DB1E4D4459C4592FF67AEDCE230970CCC011 |
SHA-512: | 1DAA6AE5BAF9B614EF995D2A46D53C062450634947E8BD631134095EB5E2422F793F0B6E47DCFC2F81EFC95A5E5BBE5F0FBDD152D039A493AF2A27CB1271BDB0 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\doc\callback_scope.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1336 |
Entropy (8bit): | 4.824790290758569 |
Encrypted: | false |
SSDEEP: | 24:kTFcUnSLQnASESEuNGpGGNtwASESECcNGpGQxiABsoGPDjZOQ/bSQOnFwSBNU:+FcUnkQFESsrGESz8AvGHZV/WznCkU |
MD5: | 227BC6A6B8A3544E5F76F8E9D97F1722 |
SHA1: | 7963F52DAA9923EA7DA6DE4A6A876BCFDD00837F |
SHA-256: | 3F127A65315DD994F9919F1F6CE023648B375D0E75755A0AACCD615DD0B55F96 |
SHA-512: | B2AC672573F4FE6A3A93526EC89CAF89757307EE954592A4A43BEF57DDA4821174AEE6295CDE055550544DCB64541406AAFEE95C5EF17EBEE39B76FB67ABC664 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\doc\callbackinfo.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2547 |
Entropy (8bit): | 4.886313054403744 |
Encrypted: | false |
SSDEEP: | 24:SdJdjID+GFmqve12bk0gvF1g4RhAtG+TdRBVQrTtkWE9PiUgh6M/084nbdL7LtR2:ShE+GFmq21CxrA+TdRMdNstERKAe+zH |
MD5: | D5842843493FD7343EA565A908DFD85D |
SHA1: | 225127E4D48DC9034079B3E9825712E8AFEEBB27 |
SHA-256: | 45CC121F899F10FD4E702A8055333F36DF398B6185E1E966754553FD6FB3CF2E |
SHA-512: | BA02AAD52845F74364C5C3096AA7581B78A4D113B46EA119005A443C3409E9A21D45BB846F7C653BFA30086C2EC4DCD0A078A54B151167DA0FEF2B05A752CCF6 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\doc\checker-tool.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1027 |
Entropy (8bit): | 4.536683574638428 |
Encrypted: | false |
SSDEEP: | 24:t7zFxqFo4U7E7hNQxaRcNHDuF7n6Zz+GF6HXQdGTZCDnf:tMU7E7hNMNHCFT6ZidQdGTZAnf |
MD5: | 99FB9EB08B0AFA7F6FC840CE08EEFB11 |
SHA1: | 4910C808695DF0B53C188ED6511CF9DE75EAEC7A |
SHA-256: | 8506BE24C0DB1AEC70C7A316658C6630610FD344562984116E221BBE112101DC |
SHA-512: | BAD535FAD0D165293126218D86A9A08C4BF849828FE68C6D700D478DAF7341C4E4893746678452F92C4E1E805734A99A8A326A2412575270AA1B7AB7BEE6B0C6 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\doc\class_property_descriptor.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 3597 |
Entropy (8bit): | 5.088969147853677 |
Encrypted: | false |
SSDEEP: | 96:D/3NPO7MPH/xsvP02dDQNmI1CJBeqfz/BX/3mzQwndndxAwbeu:DfNPOQPpsHLdD81Cn7x/3m9dHAmeu |
MD5: | 3583C5355400370D50C6DB165CDFBEEE |
SHA1: | E3F71DA3D44581C7131D5CA454710C65A4789663 |
SHA-256: | 5BE5CAD872811062E69FA9101499870C0C0B9CF082B569D5EF5A79DCE6D14407 |
SHA-512: | 6EDC39EAFE93C540E7501818130715C865075EC6BA0A79D4B9CF92F253FFF806912EF5668DFBB01336D9BED7419D67336B15915054B18EDECEEC4D9530245446 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\doc\cmake-js.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 3095 |
Entropy (8bit): | 5.101496017591935 |
Encrypted: | false |
SSDEEP: | 96:VdBq0YaNp0CYqLS5KjqCJd7xy3GeGJnzOLCNtMrhHo:V7q0YwvYqnq0yp/LCNtMrhI |
MD5: | 3EA75A23BC72734219EDC0261A50CCF5 |
SHA1: | FA21B01B6DEF71490D77F0F6C204BB5D6FEF5185 |
SHA-256: | C3CF90772869DFA289A8D35305A9B227220A6E241584F89CC8FA522D685DBA3C |
SHA-512: | ACD134D7D64020D6EF80BF56C35ABBF263DB2DEF030F4B3C3E769E4C4A2F280486DCC182E891743B7C2DF1D8C055E1D86ACEE40B00AF0D952B38AED69F4A6288 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\doc\conversion-tool.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 643 |
Entropy (8bit): | 4.5498229244929975 |
Encrypted: | false |
SSDEEP: | 12:4JBKCNc/aW+6R0rtS784KbS83wHysufQURFlaIZBQmKZz75KRt:4qs6jcYQfPFl1Blwz9G |
MD5: | 7B33545041B5A0996DAADF0AA0752E43 |
SHA1: | F013394116B8E562A8965C9BC5A881912E15DB64 |
SHA-256: | CFD00C102DDF3EA80C0A96585E57D99310909846CA23D5D58BE26183EFB12E77 |
SHA-512: | E8DFE33C6A2145CC91BFAFAEC597055A85C8C47EFD352C180601542569624D333F56BC8F63C60F8603173AEA90FD5887E7594A2C9937FDFB40A8A80E01DAD776 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\doc\creating_a_release.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 3164 |
Entropy (8bit): | 4.83305267082959 |
Encrypted: | false |
SSDEEP: | 96:sv90l6e5Y441ajzSEevditYXuStzbA5MYxs:sVCY441k7tAuyQxs |
MD5: | 56EC258CB92A324A0B7015A31EE550A1 |
SHA1: | 60911A0B592E59088E0CCB0FE2D37D82BE9FD81F |
SHA-256: | D03385F02AE4B58A2532B4AA8D96F399F9B541CB336F7EBF2CE436382B2FAE7D |
SHA-512: | DA37E348B9E5DB9AFBE87659E821B1B10D4A4E4BE03EBD495F0F0EDEF4B86022B9BD983B4F07AF8DA8B7FDAA44F7B35BDD8F0361E4AA5C74D3E3EA0FC6385A93 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\doc\dataview.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 6743 |
Entropy (8bit): | 4.886432645503065 |
Encrypted: | false |
SSDEEP: | 96:ht/jgMAB3LM3RMAe3oM3RMANG3XINM3R3O32zE/:rrSLc8ocOXINcNaD |
MD5: | F7A3323BA8BF3E6E206B780849D3E243 |
SHA1: | D7C28639FDC3FDF5AEA95F1071937298F7280FFD |
SHA-256: | BA4AE9E4EF331636DF3B34B9CB86558B61F3C7925AA1804188D122F348E9EC92 |
SHA-512: | 7CB1FAB0309C67F70978EDD91C6E20626BAF7A9856DA29F114F02992E54D760EACE6C4F731EF1C68BAFCF81CA25120C2A9715E4C8C6926DCA9F92C182651E399 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\doc\date.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1581 |
Entropy (8bit): | 4.853117216248774 |
Encrypted: | false |
SSDEEP: | 48:hU8cTLGYZLGYTPa2LGY6S5bwiLGdV1vsHVpEVZRfGxd:hyH7wiAV1vsbmud |
MD5: | 5EF1D9919619425A678A329EEF4B544A |
SHA1: | 264DE8A8053C5D779BE61DDA8435EAE0E743BABB |
SHA-256: | F625D2E88CCB90E4BC2E711F97A7600F3AF30AA36C218FEB76644F5B9F2AD506 |
SHA-512: | BE3E1A738ACB6BF2DC0E0DAE97CDB9F53469669D9181E3D087DF97EB068B6A71F3B3E5F755D3B3F00B6362AC9A88EFAD27190B9D93D54E7E839C1339CA7C3B8F |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\doc\env.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 6068 |
Entropy (8bit): | 4.845428617104237 |
Encrypted: | false |
SSDEEP: | 96:hjfJSirbJ394oolUBitX1olHd4PtAqJ4EQUUQnmyxaQUXQnJR4Y4yHsQOAtPQXe:R8irRolUBwlolStAqVZmym4JR4Y4aPse |
MD5: | 6C0CBFEC5A37932F2F36CFF51C10A517 |
SHA1: | 00E197F267CC685928187D0111C0E157A4A44A32 |
SHA-256: | DC4BE2D3FE2E6BE8D4916DFD4151F22D9278DF9F6A57E53E59411D82C2AC1BA5 |
SHA-512: | E09A2796FB2EAC5300AC8ECCC59A31E308EC575110108870D40430155F8906730BDF102BBD69EB33A2D9327B8D5DD4C9F2DED42B4EEF740223FBCB1637EB20F5 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\doc\error.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 3265 |
Entropy (8bit): | 4.786939766391779 |
Encrypted: | false |
SSDEEP: | 48:UtJMlPf7JePMWMss5W3+5MhGfE2GdGoEV7GMGEE3JJ7GKVMgVCmGf6G2I4GoOaCr:UtAPzJSO5/W0bE1MgA5oOwMP6Yck |
MD5: | D0B19387359B478A03050EE80285548A |
SHA1: | 7C1A3F298B84FB4C55B755A3FAF975710A63B485 |
SHA-256: | 9B3DC5A9A5398E6C12A750076D8748D77C0FD67C40F8A718999F09A928409EAF |
SHA-512: | 2372AF54694D5E52F27C12DB5EB89C17A08654090059AE812B438F19EB7EF7556935FF3D9D09E271D8DBFBCF9103BEFEB098053AEEFEEAD634FA5CC19A340C84 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\doc\error_handling.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 10067 |
Entropy (8bit): | 4.944332633401688 |
Encrypted: | false |
SSDEEP: | 192:qBaCrglEWzyh8BJ0T2OtpzNxMrDCw91TdYu:qkCfDT2ueD1RYu |
MD5: | 74CDD1ECFBD8E894BAEA8649F823157F |
SHA1: | 79E089B5205AF7C35514A60F40045EED2B5470CA |
SHA-256: | 35450AFC06CF9A11AB31F747599DDDDC8131E29A28260964A1636252E947578E |
SHA-512: | CDEA6D2BA1BACAC5B0AC4DCA536E00520F8444F8626F369DCE77A78969CFE9B617EF2AF83F36CDE0C3F25D46EB5915682C803470E8CBD46D0AECF9D3932D13B1 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\doc\escapable_handle_scope.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2590 |
Entropy (8bit): | 4.697781321600616 |
Encrypted: | false |
SSDEEP: | 48:tO3MjXCpoCAE8qf5HjOtPfJQOLXGXfvqkA9mnpdMuklE78LXGQZKQiNSFwfqnV/g:tO3cAoCL8qfVytPfJDLI895a78LNUNSS |
MD5: | 814E046920B1EDE0345EDB12C65D4C6B |
SHA1: | 039CB86555E1BC3A6B0DFDA3C4D23BB2E7F97BC2 |
SHA-256: | E3A69AB1D2B9C9A5DC42D075C020D4D26E2EEEE3E31CEDF44BD9F0A490528CDC |
SHA-512: | 0A3F0CEF465F8F15CF32705C30529E21D90612C64B725E15CA0D02623C1A96308F1C10AB5944627566AB3C102CCEA1FBC4B37C7C0E824EFED64D6A83594DE25A |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\doc\external.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2833 |
Entropy (8bit): | 4.766896676491048 |
Encrypted: | false |
SSDEEP: | 48:iUYpf+Zl9xU8d4Qbe1JzMXnI9tY7No0w9Y7NoLTQr28Y7NoLTtLRYed:1Ypfsl9Jd4Cid9tY7m02Y7mLU68Y7mLF |
MD5: | E2711F9B597277852B11BB9813F65C22 |
SHA1: | ACB1EA91D8CF0973C7D14F2A5229393059F3440C |
SHA-256: | 01BF70FF3145F862779BB3030860D23E256AC96A6A07E0C3E535DD875D8F615E |
SHA-512: | C5426D6AAC8A53F5EFAB52CF27EF0B34B92EB76E3276B230D340B7E4D1A7DE76BBC1B6B690ECF9F703B9F80667DDA62F360DB38EE91227A1F1EEAE7C37B46988 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\doc\external_buffer.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 917 |
Entropy (8bit): | 4.7958516262804105 |
Encrypted: | false |
SSDEEP: | 24:iUu7SdQZXLPRPoClmFfKHhvx+wkNekVX35jyJHC+sD4rpSAO:iUTs9oFCdxfcekDeN1sD49RO |
MD5: | 6DE78868CCDE5ACD35330F548DC53B75 |
SHA1: | D83C4042AE74EADD575A76DB19DA067DD325F0F8 |
SHA-256: | 067B4C4CD58C5E3098BC934A0DE65152D875A614B009668B8512DB714C10C63F |
SHA-512: | A6738DF4F0E1D7000E7379E908668D05BB27F111EDBAA890D16AE870746A551476A43E9734539646A2CFC20E5CE44CF850F64F0994D4562E0C10BF72BC6CF967 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\doc\function.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 12967 |
Entropy (8bit): | 4.81942599186814 |
Encrypted: | false |
SSDEEP: | 96:HeyPIMhQQD2tiifg4FgRgwtOQ61LIQ1LIS1gIQ1gIJz2ItzhIbd9/dC5dlPdlbLf:ldMiifHMebcau2mhaQRbbL0i |
MD5: | 58D4F76B73FB79E1B68A3B91B6B2EF3D |
SHA1: | CA83487DE4750AABD5C9734D5C911ACCFCED5E14 |
SHA-256: | 1242118A2819C568830DFE3D8555229BABB2E28CA36F53CC8445E8E7F48BC9C0 |
SHA-512: | CDE3221BD76713F213C03C526C60CBAAF109B17A78286881812F27A5C9EA38AFD596AD1F3F8971C78C05C85E2CF3847A447FFF493D6CC5B97CCC159A90B182B1 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\doc\function_reference.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 8079 |
Entropy (8bit): | 4.768770873446272 |
Encrypted: | false |
SSDEEP: | 48:IJEBCGIr2fzOm2uCYXz0PCr6Ebu7F8ZlruqZtZlKGU6LGB3XLaFJBLGhB/d6owL8:99zOWCt2hHz7OdyGUdgldLDdXuFQWdq |
MD5: | A15F69C29D958CCBF425B3603C91F986 |
SHA1: | CC42D61D6F1AFD6448AC06E9E43F0BDD60519063 |
SHA-256: | 9A9A7819F73627F3CCAFC1FCD74BB5BDF9C18D3AAAB4680E69EC02E805F4F1EC |
SHA-512: | 4077C9E00BEBD70FAC76B2F662E304F3E76A832E8BAE85F303E69292E349C76E404C81A2AD44DFE25B90AEFEF3517A7BF8848A6BF088477EABC49AC2C4A2B5CB |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\doc\generator.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 584 |
Entropy (8bit): | 4.784053572487125 |
Encrypted: | false |
SSDEEP: | 12:8cFX/U3XfrFSsWRZ0Ok6SngfynApVEsgX0lV+p/XvFA0yqV3XWKw:8SM3Z1ECrganO9am2Ntl37w |
MD5: | AFEB699C15BA3BF2E4278EEAE9528BE2 |
SHA1: | B6DB7458D276D12AC4611B43A47C14E3B870CAF9 |
SHA-256: | A7B070A16BDA177684C00593ADF7D8FDCCB9C22C742F0E4EA9800E56AD195195 |
SHA-512: | 8EE219DEB3864FD3465A73751435351D83C4E38BB633A77AC3B1E2CBC63708D0ED2C8DE936A33B404D1316BBFD3D9E23467F5B63D0136DE86B5FD1B2CC2346A2 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\doc\handle_scope.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2242 |
Entropy (8bit): | 4.828837199010446 |
Encrypted: | false |
SSDEEP: | 48:Bs7MjXOI+qp1Mqjj4tyqp1Mq9aGc4LXGXwAH3xX4MukV5RWLXGQ/KQdUnV/hNOua:Bs7cOIlp1Dctpp1daGTLIwcxT1XWLNyw |
MD5: | 59B18C5D61B1C208C0BD60C0FCB77116 |
SHA1: | 6BAB586DC02118A2E4C4E5F382868800606A393F |
SHA-256: | 8598967939C96EB8B7976A4F2F5008B7B1EBB941C6611651EDE9A322D48189F0 |
SHA-512: | 68E76E4FC8C4A960F74F4898AE45C97606E0278344CF48432FCDEE7DAA392A3A1F16E049D48D90E50F21DC0E84F282ACE28643541BA9249E0D84576BA8DB0F9F |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\doc\hierarchy.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 4004 |
Entropy (8bit): | 4.989963838708432 |
Encrypted: | false |
SSDEEP: | 48:++usNdyWq8kMQEUh5Mbj+xMnmsd2kbHDhPeD2pNrN/cDFnBztSlAd71UM/M/lfdE:SHW6ThAR+2pxZcDtBzYAQr5hc |
MD5: | CB7E9313BB122F9AF952EB8CB8F2AC7F |
SHA1: | 2EB00EC21816B1E47FFDE2B5C88920F1C9F9C1C5 |
SHA-256: | CEF6B6739C4613C2812958C37F93DE2170D93918155FDB91FE4EEEF5118FB630 |
SHA-512: | C202C3DB1EC83E9774E2AA1714BA04AA20F762742BC954FA5D1761ABB1E0D67E1120CE920341BDD290CFC640EF901318FF4B9FCFF9DFE600C15ACCF83A81D21B |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\doc\instance_wrap.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 15183 |
Entropy (8bit): | 4.627248130645462 |
Encrypted: | false |
SSDEEP: | 192:rdU1iLoBsBm2zXl6RKS0vKpBvKzt2J5G35Xl:Rgfsao1l |
MD5: | C597357BA2C1CE398DE349B5FFF935F4 |
SHA1: | 6BAC3905A01E1C4964168ED025DB6F550B62BFC5 |
SHA-256: | 213A42B10138B01D2B36DAF51D030A06CFA015C17EAEA7CBD9F563DB3E93A0FC |
SHA-512: | 5C7A28F40D09E897FF37B398284B8C97F915D89C2A886EADD7E79E563BDD63E8B619C0E084E43D6469B8C24D9B1530CC64922460997489776CEAA6D0EB143BC2 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\doc\maybe.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1819 |
Entropy (8bit): | 4.821206817256967 |
Encrypted: | false |
SSDEEP: | 24:rKZTdcCSNzNNXoVAxunN81V60IvFObSVRC2pHiK4ctvAtHiIocvtCZjoyF7gkE20:rLNaAx4aUdOCpHiKWHiIDgdEkb0 |
MD5: | BB8CE46B6EA17337C85F9C49E38A4EFC |
SHA1: | 96C948AFA7E8E00CDACDC04AF3BE9EEAEB746A6A |
SHA-256: | 9E653B016D9D63733BF9AEFAD4160C271F660819A3EC3FF2DB60C69258BD4491 |
SHA-512: | 104AFE46BD4B69F2B35B2D33BA989C6DB2B78E11A22C278E491D478F9B8541993375667069472046BC877BFA6A0730D91D2EC76D4A8166864F0EEE5A529EC34A |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\doc\memory_management.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1117 |
Entropy (8bit): | 4.67845571408907 |
Encrypted: | false |
SSDEEP: | 24:k5urxpsJQ4UvnCUXZrsw8xpsOV5iCTAtGTcs9xlRVb:nmfmCOWvncSlB5 |
MD5: | B38CEBF78AA3EBD4DEA8FF3FF6543E26 |
SHA1: | 33D3F326373C604DA5ACC06243B79E02D87FD773 |
SHA-256: | 7244A7F245D6F2ED54ED20E0816D6FBB52C43480A14966DF634B32D156D440BF |
SHA-512: | 18B9A3A6EEF9AD07689A40FD5745290D89E4E7FC02351356ACF52E58F3B4B77A9E06FCDF9BF6D6A1D1AB55A155D88F85419C67BCC0E6A605DC41CFDB4CB2CA1F |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\doc\name.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 657 |
Entropy (8bit): | 4.814660480038454 |
Encrypted: | false |
SSDEEP: | 12:N3B44HAvX8q0QIkO9OrQ4VGUpiNpfqNC1y4eA24tc5:NCj0fNINVGUpGpf2C1y4eP20 |
MD5: | 09FE0CEC4D887D6F8F59B4FB3B7FAE5E |
SHA1: | 853B20B1A9C7A6265323785BE645D0B755689F54 |
SHA-256: | FB33C4EAC02FA5340900245D17F582997E5521C5EE4A07DBFD4F68DBA8490FC6 |
SHA-512: | 5C82EBEF6E2CDB215EA9406DFE099DD152A969AA84E7F169D97F905F2EC97226FABC521DB64CB41ADF6DC34B5ADC1D560E1137B6185896D29DB943B00B908531 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\doc\node-gyp.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2990 |
Entropy (8bit): | 4.888097327459311 |
Encrypted: | false |
SSDEEP: | 48:flIVgc5t/wRj+W00j0iaQe209Gk4ezKvulke905dfzz2Ktvy7Y0KW5Sfd4sT9eyK:flKxn4Rj+x0AiaQe2DMjlkxPz/+KQ+BK |
MD5: | 440E267B8987DD2A795D0ED246C4D9A3 |
SHA1: | 9E3C560266FB9AFE0A4118D09459538FC3FDEC6C |
SHA-256: | 076BEE5B507DE2E8AAF6CB11866484C37130C393D97A63E72BA8275060124A4D |
SHA-512: | 35634982B667BFDEA3728DD38CA572D56C810CEC417B1D32E1925BB403D084665EFED51274ABB494CE00C3A59BE11F59CD45B80FFF0DA9453C9EFB266A74196D |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\doc\number.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 3648 |
Entropy (8bit): | 4.82437246833322 |
Encrypted: | false |
SSDEEP: | 48:cwTLGY12LGYAGc6y+LGYBcZ38oLGYK+aSMMPpZMSv+oRzMte1MoMN67Me8+PMAVJ:7n2XZy+jUHfrcoHK4pwI |
MD5: | FEFF1CBFB7029736C79FA64D23724512 |
SHA1: | F57FE205F2581AEC8966B08700B1525ED7C08914 |
SHA-256: | 9FB062F05F9DE0B85216C115448B41A58594B5126FCB009A8137A4202D0450C0 |
SHA-512: | F509492F0FECE215C20A2EFF9ACDC013EB1F179A504D4C7EF18CF8F1BDC468DB2A129AEAFDBF4F9396F459913A6540F085BD56134270C0F3B9F9C984D9ACDF2A |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\doc\object.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 11105 |
Entropy (8bit): | 4.999645191672927 |
Encrypted: | false |
SSDEEP: | 192:tFlg5WbchJXQafnYrYsz2Tfq135eBg2VwGzdI90n3zTJr:tFlkWkJXbfnYrYsz2a3i/z5R |
MD5: | 218BBC139BF54F72716C1CC6DEDE8066 |
SHA1: | 7A2E6305E2F151A8A918796226612BBC9DEF2AEB |
SHA-256: | 227C1610AF49B9EC7A63134E12C9BA6CF96AD02964C539BC80712375A1E75DE7 |
SHA-512: | 6B2E759D05D54E85D4ACE96E122B300DCA7157111D90132971F74B284905B8361CB271C2DB1640EEE61AEA1FC66CDDA118AEF0F1AC142D2D013DB61388C0E76F |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\doc\object_lifetime_management.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 3899 |
Entropy (8bit): | 4.559881603083799 |
Encrypted: | false |
SSDEEP: | 96:nGzzNvu2m9AihUnx+wGtd2vWz5Veidf2LrbY8aa8EDW:CNvdm9tCxQ7orkE8 |
MD5: | DCB4BA62A2513F83861055E4073D89E9 |
SHA1: | A3819C9BC4A42EF1B70E115E0CA1BB87D5F38246 |
SHA-256: | C86D7B24783F52650F0F2BE94DD298D810E636D5A0F522AF4D26E9BEF3AF6FA4 |
SHA-512: | 6BC964E43A1E30E6979C124E5F3E1DA135A4A86075DBD269F3B43E5B3CBE97856BA5E5573271E530CD93AE3976EA5EFC59D6461515A68EC39B7D049AD06C897A |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\doc\object_reference.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 3423 |
Entropy (8bit): | 4.8462537641042225 |
Encrypted: | false |
SSDEEP: | 48:NMJEBwG5rMM4qxnG8sBCOCL27f9Eady9CXyUJZtYK3H1MeEnFVOiMRvu46ZlXMZa:zPxnoC8fByQZSK0AQgZbCFm6wgJF |
MD5: | 32B515AA6D17F488E6012C62538C2ECF |
SHA1: | E39CECA2E7B74707243C96DE24D706B84F9FA93B |
SHA-256: | 179DC3E5824CAFEBCEA9804D6DB7BBC8775CC6206856B51B78CAA4E8D17260CC |
SHA-512: | 3D4D5B6B226EF3CCA568DFFD7B4AB4162B3255544C770002054EE14083BDEC3194D82E9F6ACF501EA2C272BF0BD960497946FED4AF9C9A4E2A614430D07ED047 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\doc\object_wrap.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 22542 |
Entropy (8bit): | 4.6935926703332065 |
Encrypted: | false |
SSDEEP: | 384:71cClPOOPCseJz0UTJ34h73XGouM/Uw9RK2fUB:aOOECdJz0U934h73X1usUiM2I |
MD5: | 90ED6EE555F4D947FD6EB26FC4371532 |
SHA1: | F4CD4A613FCBB797C973D42E1632165FE190BDA4 |
SHA-256: | F81E173FAF8DF223A987F50B66E54A3C539FBC3B9E0C5CA4E940C06CF87F4246 |
SHA-512: | B92FDA19FF5A54A837A6DBEB12E48F63D08C032B0938B5A76428BF1FF56531CD5103E9B8A1531ED7A4FDF1FBE0BB0C6D23B4B73F3C2357531AD1AEFE621C436E |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\doc\prebuild_tools.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 872 |
Entropy (8bit): | 4.664373986795287 |
Encrypted: | false |
SSDEEP: | 24:zy9qDw6MRN3o9BaIQQsF/24ev+7QEqqGsP6dR77vqt:G98wrudQoL+7rzPgR77vqt |
MD5: | 799DEA819D9D5540D6BEC2DFE2EB1C4F |
SHA1: | F6AADBAD57410A572D90792A53D5C4D11396E2B0 |
SHA-256: | D3138493C9122F879791BBFCFDA62E79FD779C49CCCA9C1C16CFE4DEF8D7737D |
SHA-512: | B2D7C96D2DF287CA065F72812AFFF0F1F48A2973A168417DDC070B206C0AF752914424C2B63382BAD50D49C6907196BF9B48576BC3532AAA7D7EF723E684135F |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\doc\promises.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2127 |
Entropy (8bit): | 4.834856642687884 |
Encrypted: | false |
SSDEEP: | 48:r8oUPYxsxqAn7Og/3GX9wGdWmwdoop3hr1R2hrub:rJCYir7Og/3GNwGdWx1Fjwm |
MD5: | D2C9C66B8C405404A7E5B6FA7BF0AAAF |
SHA1: | 4FEE2F3A5019BE6B3D45D03E8ECB02FE6C4F9C13 |
SHA-256: | E021D7351ADEFF13DE6B5BB9E4D214DCE07BDCDF899E68A8058B82E6EF63366E |
SHA-512: | DE4DDDA580CE2B20F26FD581B6ECE930DE92B5483BF343B32E681EA5674E0541B43CA8F00EDF579520F0245C5EE54077688BFB427DB52C4A274B82852D54D073 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\doc\property_descriptor.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 9719 |
Entropy (8bit): | 4.670041901466804 |
Encrypted: | false |
SSDEEP: | 192:3vHkkRNERmNJKhN2aEhNq9RxNHY/RxNcQqMgiqvawx28dA:3vE8NcmNEhNmhNiRxNERxNHq+qMEA |
MD5: | E972445C38ED28A00FF094A9301FF1DF |
SHA1: | 7C317ADD29FA5DB5AEE8B2783EDED6EF5401E873 |
SHA-256: | 19AB6BBBDB00520A40F99E70D87D2E346F206D1A709C311C56B15B02702FEA8D |
SHA-512: | 71CDF029AB01108BE22E50280131E5A16AC700CEECC22CD6DCB0751AD76035F80574807F819C2FAC1C458D3B5B280EDBC4CC49DAF2927B1CAB0FEAEBA1818709 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\doc\propertylvalue.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1250 |
Entropy (8bit): | 4.907644970819577 |
Encrypted: | false |
SSDEEP: | 24:Sfhvcgpjb0SqucXLGAXVJ7uaBsuWMvf+o3FAGm4WORWRWgTvR6LND1xou8v56Wg:iLn0VLGALqAXWMnJ3FAz4IUgpUIQv |
MD5: | 3A05400840FA70CA3CD5ADF0ED15777B |
SHA1: | 3CC297640EC4F71689F60CC7856889064D895AE5 |
SHA-256: | 24AAC5FBD8FCF45F0ED34CF7BE0957D7C1A8059C2791974486FE80F9CF35FA24 |
SHA-512: | 6EF2EFF9D74F849C5EB8F0CB96B8B7A465A1188EE078A2E23BB4B13E34D0CC4B6D451BEBC316EAE2F2120D2803B147B96CA76F195792A65E0D3ADA0E7C11E5B7 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\doc\range_error.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1684 |
Entropy (8bit): | 4.683872421335166 |
Encrypted: | false |
SSDEEP: | 48:5C9MZLGYlEyJGYtLGYlE3QJJGYKGYMOIhRGo7lxJ9GYt:5EirJ1rBn/7T |
MD5: | 88CA5716AB13CEC56509A25CC37CE814 |
SHA1: | CFE12A4DFAE35A1E19FBFA32CEF35D9E51354D22 |
SHA-256: | DFB777AC33783837DF92DD6FA9E8B23494AD5842B11463340CFABDE1408679DE |
SHA-512: | BB834F0F7AFFF7C3C869FB47829A12CB9FAAD831726278D6E0CD313571DF272830D20A8028BBA64464350948B7351218DACE2A7BF088D46BDF4A4ECEFA6C77F6 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\doc\reference.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 3169 |
Entropy (8bit): | 4.7715853564101955 |
Encrypted: | false |
SSDEEP: | 48:DySGjFIo+O3GpYxh/9171N9xCMsE/hEumPZOVR4GuMQ2hr1ZOFVbiAbMMPPIEE2c:4eo+8hfXmhqIMP4iC4ECEEkhfW/ |
MD5: | C58F495958BDE335E6ADAC493D8F80D3 |
SHA1: | 1B97668080254B00072397A22869C679E499C026 |
SHA-256: | 4B0BA3B14E4E1992BA3A37850FCF0EF3CAE306D4A8962669323C399AC1E3BC46 |
SHA-512: | 0EA7C111294E257CF6F5F9773F2E1B98160EF7C83F5B29F48C6E35A1AE518163D7FA9E71C528FF7378B6EF63D75DDA37A85B6FA1200B1C501A37E42BC5C86A0B |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\doc\setup.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2990 |
Entropy (8bit): | 4.850923824994328 |
Encrypted: | false |
SSDEEP: | 48:T78MK2WMbzZ+SlU5oGSzE4mE4tcFr6E4fMpv/l4MlDcTulwVcUBqN6:T78MsMBL9GSQ4t4O14fe/l4NLKMP |
MD5: | FAFDAC245D277BD9535E5ADC6885E07F |
SHA1: | ED4C23649CCEDFCF9CC09FE0C49306D9B1EF7B3A |
SHA-256: | C53CC898E80AE372F44D6320B815E8BB455CB9FD6B890A2C958BBE600BFD2069 |
SHA-512: | FF814A78EAB5085999EC6B4562F907B07EE0C0F0AEE00F51EC64FB7FB4291E7F96BEBA7BA90CFF0831636FE6D87E833239EF868898884B83FA53E62677AB7526 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\doc\string.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2565 |
Entropy (8bit): | 4.957005673424271 |
Encrypted: | false |
SSDEEP: | 48:r2uGuVJqc1TEqptgCXFJqc1T+AHxeCz1wZ3eUcIrDCAJqc1T+NF1r6:rTucm5Oecog1LSrucu3O |
MD5: | 639763D9EB87D7A6E40B0A3890BAA552 |
SHA1: | 0673D61269BA6271F8E3D03A9840C4F428934919 |
SHA-256: | E370AB2F2BC199DE3836F415F7D138A23E494E741DE7C1D66416F5DB3C7B0667 |
SHA-512: | 088BA2F46183F60B3D48B45A917E46B98BCFA5879AFC9C7F995AFE70EF25FF13B87DCE6D80B859D932DD4FF8E44E981880C04EFECA7C3FE89E43F937E676FFFB |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\doc\symbol.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2257 |
Entropy (8bit): | 4.90039003595869 |
Encrypted: | false |
SSDEEP: | 48:GledkXjB+LEvJqO1T+iDoM02g1I+M3jMdkJlBMu:GcdkzwL7OdD9022MCOB9 |
MD5: | E2526AAA662719B6F077FA11468CC5EF |
SHA1: | 3773D329FB2278E9DFA5BB0BB3339999748573B1 |
SHA-256: | 5731EF3E7F7EE802B15E4741E6E480624EBD2B6C12E76AFB156BB08764BED3D1 |
SHA-512: | 049336172F92081868B6616BE371DA2F55E7EA849A472B787A0513F6CC3061753919D3FC82E3A46C220A989351D1B38C8F1805D787270CA8EA183FBD75E5A918 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\doc\syntax_error.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1726 |
Entropy (8bit): | 4.742452942501468 |
Encrypted: | false |
SSDEEP: | 48:333xAssAkE+ZLGYMG3Eji24GYM0LGYMG3E3RGJ24GYMFGYM/38nIhMOGoL38W3NH:HumR8Rj/RbNPLL |
MD5: | 962D047F6110ED5B9FEFCFAB86D1E735 |
SHA1: | 96C7353FBE6D3DB7FD81A649F0F7577CFF90BF23 |
SHA-256: | A8E38CAA67CCD1E1C5D24201F80818D52D1F765A6E5D04AFBCCFD34C8B7BC321 |
SHA-512: | E4DDF853AAB00112408D545182E6AB7E707A5210E441CA3107645D39C5D0D3A01061B8026F475230F169A9837390AC3D6C6C31FD098175F48A86FE158C4C8A47 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\doc\threadsafe.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 6951 |
Entropy (8bit): | 4.766688228327722 |
Encrypted: | false |
SSDEEP: | 96:G7X/1N8bOyNz0XuqS6EgXa1ThQyDVUR19qGKddE4PW+T1ReDZM3Rhe5K:GkOO0fScETSpVAE4mDZmhcK |
MD5: | 0321E25571EEE38AE70302B9D40DFDBA |
SHA1: | 83F27D4ACE3FC772EA25917F7282221CC5F68A42 |
SHA-256: | 8D10DF04228F15BA0463CD4E4E5DFB6B14D3BF041F7C427F268D3D6B58D5B825 |
SHA-512: | B1E95677C1F8B1169F8C9D5CF912D18E600B6DAD01D3DDF092CA889D76B8184A8A756E70EB283C5C051DDE007ABDAC0D89338BB91BBB392A414FFC1A529174EA |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\doc\threadsafe_function.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 10131 |
Entropy (8bit): | 4.867162160520744 |
Encrypted: | false |
SSDEEP: | 192:GPLx68zta/T7nMpXsAHPIQlI8nBg83XseJfa:GP968zta/HmXzI/IvQ |
MD5: | D1894B9AC3A4F4A513CE5FF58E579E11 |
SHA1: | 18F07AF7AA202E45090D580CF2ED366BAE538FDA |
SHA-256: | 86A7CD2B1738C6AFB1EE843E9B9CA7B5C4A090AC003F4E6CB25B5FFAFA1F9BB9 |
SHA-512: | 06F2FE7DDC3B71A6A787833A8AB41AC3527C3A788DE8D555F9C1EF49B31C406B8789CF99B90805DD771E3144AACE6396FD611CB16F12EC4862EF999097A95BFC |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\doc\type_error.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1671 |
Entropy (8bit): | 4.7197587012253575 |
Encrypted: | false |
SSDEEP: | 48:kDayfsshMZLGpXgEX1gxGYYNLGYYXgE3d3JgxGYYqGYY8gIeIhYxGotgIVDEJ9G3:kDaMhiCXgE1gIN6XgQ5gIv8gIsjtgI9R |
MD5: | A05CB464FCD2020D46FA9D7019195DB6 |
SHA1: | ADD3AE9A911B8B1DE2F75A2B7C1FBCFE09A02D42 |
SHA-256: | 8AA61B940E9BD16973A53656ECA13D50A803C2EF7D3315A8DB43312D7887326C |
SHA-512: | 4CC22180F6098985F0969E3E63C18B08663D9836F815E41E0DD141E593E2FFE1D23C57A3A67E0F394B8E311B67BF5D6F95F1C27C6004F5E0452BAB5DAA91476D |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\doc\type_taggable.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1385 |
Entropy (8bit): | 4.797921580116478 |
Encrypted: | false |
SSDEEP: | 24:T8dbgEgqvpVXgjwqIm/4zzO6DanOer/ApVXrVLG2ezo8qiJskifCCiD2Ye+Tz:Tcbgg0x4OWqsIbrifC/CYHz |
MD5: | 158107ADC7B3B1E6BEB4F027DC8F27E2 |
SHA1: | AB9B184C585A9FD973FC21129D7AA1FD6D91003E |
SHA-256: | E212442D320D19C2DD0A07A7CC30072E128A8F2C0DF8D729578BC0C5D5940E76 |
SHA-512: | 8530FFE29A16703DC01AB7D53D951EDC384221EBC986B3BB4B44B45C3C8D289711C4FD60A7F60441D71F8AE8753FFCF3700759D12F384A191A90FDB229779CAA |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\doc\typed_array.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1487 |
Entropy (8bit): | 4.945266133170729 |
Encrypted: | false |
SSDEEP: | 24:E4ZYNbS5lvI4xI5TIdGPynuuIwIGPxhGuWuYGpxhGuWIp1aQ0uzVGu/3Q7YR2LI4:DadSzMIdGEIwIGDGu1LGuWwocGu2PJfl |
MD5: | D97F2AC399BB620260E5439D4352AE92 |
SHA1: | 75F8D6606F008693384D524FE45A5F7C345C7C39 |
SHA-256: | 9ADC6F2442947FC51F83123C3442F7B248F916945A466FA301A7CD971A255B37 |
SHA-512: | 842022C13D47EA4EE53A080065E48EFB8DBCC9FC15972393BA407C3EA382D753F89FDD86D891113CBE953D24A0DB0C05D27664E7A04E1B2301E0C354964B9B9F |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\doc\typed_array_of.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 3919 |
Entropy (8bit): | 4.885179159776415 |
Encrypted: | false |
SSDEEP: | 96:yLpvHGr39NoNsvcsyHTjyVJsvFsyHE64yKpYKQdKwFK7:yN4/oN5zGVJCk6thKwFK7 |
MD5: | 3C98FE31AD4662673F62ED58461F3385 |
SHA1: | A34A498F2D6F64DD8E7D7ACE2A84B74D5B14B4AF |
SHA-256: | 2A816A6C2D539266862D57E715B3605E8F80B8FBEF3768FE8FEE1D9E8BE065F7 |
SHA-512: | 7F07A2970EA95840203FAB55FAD0A17ED1171533E96B55CAC3E7896C1F75A42B9C27032F030072A221B17A515909EF552D9A478A8057446D5FB10B752B864AB9 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\doc\typed_threadsafe_function.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 10823 |
Entropy (8bit): | 4.9661376025037605 |
Encrypted: | false |
SSDEEP: | 96:+L+vBr3J6z0L6DNrn86JUVpzF0YL3lJMIg9Jc4bnMhuZxQsgMgygpjpi+tacJOl5:peE16mbtL3lJM7KMnMhvLjn0COlAdwJ |
MD5: | BFA416B7A9C1D10E0928B33B17C09F82 |
SHA1: | 856291FB4AE211E99069B2D79D01B564CB04E134 |
SHA-256: | 93D647521BBFD707D6C14A20704C5DE59684646E86EFFF9C8A505A6EF950A63A |
SHA-512: | BC2AB2882137F9F6C598D34558D058923D2A681A7B7CD42252ABF19371B2E9036A5F601B089E40206B2196FF70B49501A9871C6FEFA99D86FF8EF3D2F6A092FC |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\doc\value.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 8161 |
Entropy (8bit): | 4.936733921445766 |
Encrypted: | false |
SSDEEP: | 96:D4ZpB8Zz8kGpTeEDnfGz4k0S0LakT4lc8JY3eHEeBrmrZWjXPWi4yLrSqbPZ4Of+:D4pqlITPfGz4LRa8uHYeJrSq7I5isOp4 |
MD5: | 2F937B772DAEAB503414B0EC42DB5274 |
SHA1: | 9A2E439B32984652EADEB92CD1D784E7B34722C3 |
SHA-256: | 94595B0DF53E64C8898AD2A30D9D3A83514AF5CD5B2B8ACEF404CF3D8718E70F |
SHA-512: | 8A26C7CFD34FC688E9E584AA44B03EC53938F5745ACCA9304191A1535A0D2060D63A345FEE07B56EF09369FC71ECD87E43811A1C7E8AA8BCE215017B68AAB0F4 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\doc\version_management.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1163 |
Entropy (8bit): | 4.695629579212135 |
Encrypted: | false |
SSDEEP: | 24:zbAnNUvNMCYbCsMCYGvJS0jP2+3xshvOdEDoCU800cn:gnq1M8sMYxVju+BsJOdEDhU80h |
MD5: | FC4AAF573004E64C5144EB34C0A5FA1C |
SHA1: | D4B7B9CF81982BD1386210BD80CC46B9E123FF52 |
SHA-256: | BDD71213315C4A40DAF68AA52C609465FDE9DFC46A29DBAB4C50C52A07B3798C |
SHA-512: | 4FEF4E541ED025E81B34D2E150CAD42C93AE165F25971F443EE9693D94A6BC0048DA69339B1E612F9D96ED01E3F005988CCD4A5AACBA02F1A99E84A8BA39AD1A |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\except.gypi
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 560 |
Entropy (8bit): | 4.74785336192161 |
Encrypted: | false |
SSDEEP: | 12:GeUuvuHL3dVjE4p0C9aYWilpQcWYBJbyGaOXH4:GeFvuHDp0QoYBJNI |
MD5: | 1FE1FF8CA630AC3F8A8B9C4AC7E08AAD |
SHA1: | 5D5716C9CAC44EEB2D911CCE7DC68F32BF49D47C |
SHA-256: | DDBC09F5B66FE24DD898FBE659085A6FF72E9575025004FC3762271DBA781E8B |
SHA-512: | F34EABBB5C9539EC64F9470754783E8D2AD004F2F1613DDF2A4E7CBF2D3E0427496B60ACB3D2E0CE03D68E38117351E88EF1D2A9123659A0556F0A3D0DFF50A7 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\index.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 377 |
Entropy (8bit): | 4.875137951099572 |
Encrypted: | false |
SSDEEP: | 6:FcPAhheOTfL6RTBSElAbEgjZ2JwKjlA3uyeAhCVehpmM2LH7AwehpCBlEpE0kT:C4TeM6RTBiggjs/u3vfAM2rLbAweyBl7 |
MD5: | 76046A66F40449026E5B595AD0424518 |
SHA1: | 11A716C723F52E55494C0F1FC48DFCFAE23A848F |
SHA-256: | BE71328F325CF541F37704A644E53CD04AF1B69BC119B39733D64589E64DFFDB |
SHA-512: | ECF086016A9B06F9970D919E3AEAA138BD8311F86AB93999B9487E8B1BF124BFBFE0D856AAED1C01601DF85C6FED13B2E640D05C14A148010B03049BE10F3883 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\napi-inl.deprecated.h
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 6323 |
Entropy (8bit): | 4.324246293418274 |
Encrypted: | false |
SSDEEP: | 192:2h3Gk+qh6Ge1gT0xUHggy0xxE7itK9NlDit/9r5:2hWk+qhjGgWUHggPx8itkNlDitlF |
MD5: | AFA451C950B59BF34189CF627881FC38 |
SHA1: | F420000CB09F5546BD8F04D69C9736F6511AC46E |
SHA-256: | B66ED1E565E735BBFABCC2F72D466AB7C5414D3EF8851D1AF440B81BE7F2375C |
SHA-512: | 3B85FC0BB429FF1519B697BF7B543E8265224BB9027CEB6A947BDF6108DFF56DF797D911E6F42F74664AE9AF798B060BEC1B081065EBE67286725F22445388D6 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\napi-inl.h
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 219411 |
Entropy (8bit): | 4.936498759320801 |
Encrypted: | false |
SSDEEP: | 6144:FXs+DJEkNBA8iOV65H05Ho8mhRMf3t/FtapJiK5rflzb/QNJnThjODNjZXobBHb5:FXs8EkNBA8iOV65H05Ho8mhRMf3t/FtD |
MD5: | EEABF0F97BC38EF266CA00C3AE93C65A |
SHA1: | B5E210F136E169374FA1A421896EF3D9AE57865C |
SHA-256: | 4B053C184DFED740FBD802FDCF97E85FB8C7B0EB1D83322000D932D31662EDA7 |
SHA-512: | AFDEBB4991BA10FC668C5BCA74AF6E012BAEBA5729169B18FE439FBE85DDAEBF27F9AC89B0459C403595577121246234F2D09A2C9199E5E980812CA61E46EBC7 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\napi.h
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 115423 |
Entropy (8bit): | 4.8106882141048875 |
Encrypted: | false |
SSDEEP: | 1536:JRElFe9P2PLtK2nrmsr7N11zKmRZmJu6dSRViYcE:JWe9PmTHr7N11DZmJ/dQ/cE |
MD5: | 7E2699EFB1E4ADFC553C568FAF7E8684 |
SHA1: | A7E78CAFB8E4360AC8DD95D7F1D8AA79029C6511 |
SHA-256: | 2F2F5D1E4CA96F315C51AD96C292C18294DBB999B98F8B2F33B80816A3189FB0 |
SHA-512: | F102BA1E882A850F8229F88AA115E115ED2F73DE00DF5CBFCCF2C81969DA8A40C26B06DABAB636F2FBA6260BA0A4DCC928EC9DC06E7870978F3C67DE3C60A578 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\node_addon_api.gyp
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 793 |
Entropy (8bit): | 4.268400332144667 |
Encrypted: | false |
SSDEEP: | 24:2YT/F/ta+M7/l0hYTlta+M7ul0hYT4ta+M7/lsTs5C:284+3hh+whs+rg5C |
MD5: | 11A027235C92C4253B61B1B7595FF761 |
SHA1: | F44CC4179B8B5AEBF5C8160F3C317ABCA62F658B |
SHA-256: | A1F080CA22F191902D118BC2A169984A9E761AF091CA6D0EA456197BF7B6543C |
SHA-512: | 4386611FD3BDCC9CD041E17A6B5B7939C13F75733F3D2B56FBCB8A5C37D431C28139E680B5AAF78D1956FED965630F72364E4A51F9F57247784BE9FB33383CEF |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\node_api.gyp
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 132 |
Entropy (8bit): | 4.010854302019321 |
Encrypted: | false |
SSDEEP: | 3:S9Wcz/t969fFIKNKFNFt5wDAvXFuCGQj+mGsFFFiCYv:S9Wa96aFd5UJmhKbv |
MD5: | FCEC1557AC47891385AE1F67E6DA343A |
SHA1: | E361D3A3BE19E802820F2FE59BFDF7C9EF72FC74 |
SHA-256: | 3CD2C44FB0974F016376B676D46BBEBBCA7C89D4383B09ECE30E4CB4122A1499 |
SHA-512: | 43715845F701ABDC09FE59D33E3F61E19278ABBACB122EDAF1B26DE55BD80B3354B76D5616905C8038EB6158C3399162B40A73742B7E4C733B3AC187E9DB0AA3 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\noexcept.gypi
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 639 |
Entropy (8bit): | 4.818477314989795 |
Encrypted: | false |
SSDEEP: | 12:GeTs7VmEvuHVyDb143FeVjEaM9aYWilpQcWbyGaOXAV4:GeTeMEvuHN0QoNwS |
MD5: | D75852A9F1E16B44A8E8D568CD2CEF04 |
SHA1: | 4BF93F1EF3E5875CC40632CF229DEA170C8F03B3 |
SHA-256: | 494060B87197C489497A038504147C435B1D09306152048ADD42BA0D7D16E747 |
SHA-512: | 857923151649B77E35C0D1A4F3191FE65463AB2FB5746256692F96F8DC810A9E40EEFA85EAA8141AFED49DD896F7CB58E2EB4893F94B40E4259718C50B93074C |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\package-support.json
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 467 |
Entropy (8bit): | 4.019589958784576 |
Encrypted: | false |
SSDEEP: | 6:lQS1kS0NwPpUjCAnqHZmA/yOQzFwWJBBzz5WQrBy+qkZGx5WKvNCL1e9TuPi1/zL:d1d0Nc0qKRzrnP5WI8+8x5W5eTT9v |
MD5: | 33E3FB94807BCD5102535F476C6A46A8 |
SHA1: | DEDC07E9973F104E29D2EEE9AD3468B0F40DD620 |
SHA-256: | B1CB7DA23CCA1681C7392A3C889EB0CC4916C53D2D7692D4B654AE751F3442F3 |
SHA-512: | BBC762C8886EC78FD889B46ABFD9F9ACA7F5D2CADBF9676F6A010026D4056CAA076516380B3C0737C61962E8BB5B0555095DD0386C99D9DA773C200CFA130755 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\package.json
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 982 |
Entropy (8bit): | 4.816470042790057 |
Encrypted: | false |
SSDEEP: | 12:m6fItW6KgQVcIL+zi5Z7Xsn8r1gk4h5WIK6a2HHbmF25WIYkVG38S/Fq1/kHOPF7:m6kW6OcIL+eZ48JrIW068W3Md18H+t |
MD5: | 3AFA985031D54D0F229494D1AC99B910 |
SHA1: | 2A69C10C9DFA9B21DC3A8D13535A39F90381077E |
SHA-256: | D885A767626924434302EE9092092E401FEB1DCB367D0700F08D2B9681716E88 |
SHA-512: | A916143B549B65D0A06EB14536E9F047EDF2F64F13F1A09819F9A854902FDA5978F4EADBB3AE22108D90A19F85E5F00A9F91E16A33CC742235ED5B096B1EB65E |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\README.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2725 |
Entropy (8bit): | 5.174570063053816 |
Encrypted: | false |
SSDEEP: | 48:HDVHvdZosQfmHLA9vPqd+cXYW8w+Y9zhm1pd6Wzow1juBD3lSkDp:jVHp+PHUf/8C1MdUt1 |
MD5: | 4FC792A2B8CADB9ACE4A811DE1A1F605 |
SHA1: | 059C38C3D11C8D4AEB4BBA9D28F23379BC3732AD |
SHA-256: | A423FE1FFFCDCBDD9EE020B290D15F8BC1F85060A49DE4D2756040B1B97EC147 |
SHA-512: | F7D45BD4373CA5BB142FB03BE6B42C83084237AAEB9A110C358FE7809622831ABE7FB495D4E0DB314CE24A57BB685BE84F804B0021A2091B6BF9B8A380B5397A |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\addon.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 169 |
Entropy (8bit): | 4.818377974057476 |
Encrypted: | false |
SSDEEP: | 3:agWLBBbJ5bjuAndd6Ne2QMc35mWrE9tsXO5KkncyzJvxW8HYMev:QFBSdNe2Q/4WrWtsmJdzJpdHYMev |
MD5: | B48A92B992F7D36806DD22E9B317259D |
SHA1: | C6B8711D61188E0E52B46E43413E272F88DB78D6 |
SHA-256: | 81BC2D10736021D897C4636F4E74B43572666CF4C91B70FAEB96D738C6945B95 |
SHA-512: | 70E320817A4B9370AA5112A9E12E6238DCEC247F587792311F6A39A1E5765255F1E5FE17BFC55D12486856A71CC4ACD86192DC1E387EDFF281F213238B0753F7 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\addon_build\index.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1577 |
Entropy (8bit): | 5.032861093895107 |
Encrypted: | false |
SSDEEP: | 24:W1RAjtiyMB8RENQYxfz2FGOwEYpSOO2f4f3vpja5mYelInNyFQnjWBwc3+Pi:fteEENQYF2yEYkO5q++O03y8 |
MD5: | C4B6D2B2A616A2068DC944CA0497387B |
SHA1: | 7FEE0B164960E1CB058BB3C08DB4633577F25CEB |
SHA-256: | CDD5880B91889425341BD167B87E3669D6D3D8E82E39267DC41714AABF8D98E7 |
SHA-512: | F29684E187C8474E8A676E63180D74BAAF8B7FB032BB8DE2A78EBE50EAC45483D8DC89B72ACCB8C3E262ED645054D3FFB1A37F09DB91636B1341A954F4439C97 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\addon_build\tpl\index.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 160 |
Entropy (8bit): | 4.488289280861345 |
Encrypted: | false |
SSDEEP: | 3:agW/iRWBYFBpvHEg38BEMYFBpvHEgv/dWHfzBbmIEAv9GmDn:Q/JBEHXevEHtSzBSIEAv97Dn |
MD5: | CDB03F6EA1F566333C10A2DADC39612F |
SHA1: | DDF42EAA20413F40AB4A2F0D2B76C9A06136EE33 |
SHA-256: | 90D84D981DB4FE1358487EF55EFBEA2B00A21AA89A78248B841F1274AE0AF66D |
SHA-512: | 4F5715901ABC41B837204E5BC1A5517B4DCACCA09CABA2C90246A1711DCF3D761A9569D1B50C1537352899AD9557FA2E7C4EFFBD0D1B8A6F5A18ECBF45EBC6A1 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\addon_build\tpl\package.json
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 182 |
Entropy (8bit): | 4.378491831348799 |
Encrypted: | false |
SSDEEP: | 3:mifFIBZS1DLRHAUNVezFoMW4AHHhwQWNwFpVBB/tRjLeVC9+CkQGxFY:v23S1J/ezF/WNHHSCfBzp+CktFY |
MD5: | 3872FC9B8497A09656D12DCB51678A99 |
SHA1: | 0CE03FC6DC77A5F74FE1812DF16440BDA08DFF10 |
SHA-256: | 60FD91D20A2FFA0F76D6DEB92A8AC98BD30DB3F4AD072C1B3CC64D47A8335EC6 |
SHA-512: | 4C106A4710637D944DC446CAEA4026FE894720D4F6F7D22CFD24A94C967E2A0BE62C2B8238739EC04F55EE0E32893238CE9F6AC8E3FAF7391A5235781FAA7130 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\addon_data.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 540 |
Entropy (8bit): | 4.782836488030992 |
Encrypted: | false |
SSDEEP: | 12:CHIYBl8+bMwCts8uMwCtOfQcBMwCt6fQc9Fn:KBl8EMhGMhgdMhM3 |
MD5: | DF03B93279F129808D125D26573AB0E5 |
SHA1: | 59DA0315D933957825FE5FF16DBE8FD825DE80FA |
SHA-256: | 243D6F57E3A3B3F02B56D86A3E9E91D5E856C8C7160673A87848CD5E114AD452 |
SHA-512: | 908037DCF3D1DC5492E8EA8D2CB7B43CA16957816018180C8626EE8C391067693F6607487FC9DD8003EBA8411F7E358A096D4AB833B453FC167BAC4853B94289 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\array_buffer.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2354 |
Entropy (8bit): | 4.740627596180176 |
Encrypted: | false |
SSDEEP: | 48:6YkQsFYWr5pGbOABYWrEpGbZOoWrRYpGbZXbWrRHpGbZXlrlpGbSJ9UYB3qlFdEj:RGh5dABhEBRK4CdQlB9p3qlrEll |
MD5: | FF22DE09C17E0A0CFDE9600445B68520 |
SHA1: | D76ED31FF65053531998F929A43602CE8EFDE9A4 |
SHA-256: | BEA217096C17DA6140FDB2A22D21F25E3E661C51838AFCAAD499E5B44E5633C4 |
SHA-512: | F79E86C6F646A73D71C371551A58CFDA5F6D53389129B97F85ED3FFA81D8A038D360931BE554256A588BE2544CECA263929CC1C483BD75669099E694A65D7F49 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\async_context.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 3362 |
Entropy (8bit): | 4.673707196763269 |
Encrypted: | false |
SSDEEP: | 96:wQlxRoASknEtpYt3arpQUgleTtgleu9L5F:wQlbosnEtpYt3a1FgQZgQuVv |
MD5: | CE466EC2FC920ED5AFC193F5A42B33A7 |
SHA1: | 3D0CEEA89ADE56189D4B29D61DC44DDE479BC960 |
SHA-256: | 6723550746BE8009B689AEB85ABA9F7087DE065E48FAD789DAE5B1281A8B1F78 |
SHA-512: | BAEC02E36F1D2D7DF97A493F45B05E478C6BFADB41E1C07119BC1A40F0E5E1A8BC214A9AFA8BBB8C9422EC7FE5540D99A51FE9644BE451ED2BEB2A78526F7A4F |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\async_progress_queue_worker.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 5091 |
Entropy (8bit): | 4.693423589616799 |
Encrypted: | false |
SSDEEP: | 48:1roi1QeHR5bm7q8Lho5VLfwzQ56g+wnqo5ct5IWpwn9Ewn3iXwEeho5at5IWp5QU:1rQek65hfwzvi5UZXXwEJ5WH7Xwek2bb |
MD5: | 5935FA2EEF9DE1F386488F07CCF270ED |
SHA1: | 270C4297D125CD1370D284070E317EEC6D2CA71C |
SHA-256: | 6F50FDC0F279E69B9558C7267D235D55967937CDD8E5C68130A51BA27446F5F7 |
SHA-512: | 185C51F45C0AD4FB0B34868D09D4E05D0356747F0A1EDD2670CA078A723F100835BD6FC6545E7A0C87F53C9549E8585B82DBBA8B44307A069A9D55DCF9792454 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\async_progress_worker.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 5450 |
Entropy (8bit): | 4.679383919277992 |
Encrypted: | false |
SSDEEP: | 48:1roi1QeHC56W/oP1yqPhLho5VLleTQ56g+wnqo5ct5IWpwn9Ewn3itle3o5at5IC:1rQepP565hleTvi5UZXtlf5WH7t3Ri1O |
MD5: | A98E0ECB5F4A9C09864A7D9C8925B130 |
SHA1: | 5E9138E425E619C3CB15F8EE2D78948A3822834D |
SHA-256: | 9428BCFF6921177F309582B81506F28222802B6D897FB2984B5B65F6999C86D6 |
SHA-512: | 0965AC07BA98DAE7A6B99D691A5CF24EB6420B2C7B577CAAD1756DDFD0B25980D18C83E780C68DBE37D8F06D043678C4DAAE9195CFC4ED75185CBBE61A3ABE65 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\async_worker.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 7727 |
Entropy (8bit): | 4.586917054990484 |
Encrypted: | false |
SSDEEP: | 192:mQlio5GnEtpYt3ajM4LJvPUYgJUbgg+g4gNgT:fipErYSI |
MD5: | E49A0FF07099E4E66FA195B8FBFBB47F |
SHA1: | DB25B424FCDB35C8C4D556ECEEF2209140245429 |
SHA-256: | 0292C24B16EBE4707DCB6788BFE9A796B7D15AC145B6340FB3993A85408A4FBC |
SHA-512: | 30AECE521BE5CE8090B494EFAAAA72377CBA31140FB021A490AC88E847717763B83071441EFA51C1C1461755FF5E599965AF8C4C610D285BE2482CDB872AED02 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\async_worker_nocallback.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 591 |
Entropy (8bit): | 4.769774514722144 |
Encrypted: | false |
SSDEEP: | 12:CHIYBl8/sw0JflrJwTd0JaIwTf205wTf20jlIwTf/:KBl8EwYlrOTdRTf2LTf2WlfTf/ |
MD5: | 8BCFEBF3B1F84057595201F83D1C5ABF |
SHA1: | DD3A4991C1F36D34E78993B4F380380DB1C8458A |
SHA-256: | CE9FF028474563DB1644AE8D9059349377E7BDA31BDB6CA9CB276C1A85C99983 |
SHA-512: | C85658D2E55549F7D70032D079E77F27D2F48F7EAFEFC87E58B1CD808FC14570B6279C1034BEF30EE2F1A05D3E7400ADE763C5C3F43734BE98B2DB9D1429D6EB |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\async_worker_persistent.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 832 |
Entropy (8bit): | 4.564286127804293 |
Encrypted: | false |
SSDEEP: | 12:CSnMdnP1Xz2dH4eX254GZJFMvFHoKCrOM9YOL0BS88mFFhyhhySCv:XMdNcmy2wOa5BS88mFFwhwSs |
MD5: | EC02A02A8A91F835894DBBF7DC23D2A1 |
SHA1: | C9BB5C248148C21F624C0B313EB18504A690156E |
SHA-256: | AAAECA0094EB693E26C7B3291B37C614A82EA598C9C47BFD896ED1DC9B570837 |
SHA-512: | FEF2FCEC33C776CC933D6D4DEBE9D7EB09BA7152ACBF58110786CB61FD02DCCE3A9C5C23F688F9F0FEE9F190957919EF1E3A1AA1B9995EC01D4C06284D44DF2F |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\basic_types\array.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1195 |
Entropy (8bit): | 4.706057357189327 |
Encrypted: | false |
SSDEEP: | 12:dnMUBmQnsamIAv7BjXy0dAVVhev1hJ5sUP2ev05wEU97bI:JMUBmQstIK7BjXPdAThahDsUP2h5wrRs |
MD5: | CBF23649116C854AAB55F116728DF03E |
SHA1: | 3059BDFA1B9EE04BF85115F6798DBF595B614501 |
SHA-256: | 4A1EAA7EDF34ADBD054CD187CDEE1E28E8DC27D13EEE8B9AC4D7AB28D57A9B8D |
SHA-512: | 5A959922849CEAD2B962A2902AC91F89BB994023D86932FF31F9D32FA8AD555E63564B24E00CA1E8D0C2184D63928F2BAD27094A04DA0E161922B0C8E5F4A57F |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\basic_types\boolean.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1121 |
Entropy (8bit): | 4.721361814484849 |
Encrypted: | false |
SSDEEP: | 24:XMUBmQszbvbVb17b/brtb58ba3Db0gVb00gYv:rgQsfT11XDr95ckJ9v |
MD5: | 21AF85A77DA941B9C9B9779896528480 |
SHA1: | 405DA11EAD85D0B398A1F26624E4C0F518D21215 |
SHA-256: | 5315C190F5572D4FC6E3673CA8D0F6F48D06280E706411CF15595199D49EC3D3 |
SHA-512: | 4DF2DB8A29F554F9C215907AD7835F9BA06D3412C27871E0A36A265F90D26DC1F428793EB164880D85C054571CE12768F53E93C06A6638E600F9E1A431813C1F |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\basic_types\number.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 5875 |
Entropy (8bit): | 5.242888119907162 |
Encrypted: | false |
SSDEEP: | 96:mLPL7KInZ8wVoPy+FbW9q3WSy7WPjWFPWZ:mLPL58OoPy+FbW9q3WSy7WPjWFPWZ |
MD5: | FBFAF163E0C80D8F74494F76C447969B |
SHA1: | 3CD053FBF648D23F97DCB089E9111C0842E28B3B |
SHA-256: | F757625612F0EBAB9B11EB850160679FE2447837AB45F43BFAAF50B387B7ED35 |
SHA-512: | 176BF9A24FD8D61343B56FCF6A238613347B44C35C402FD04EF83D7F45EEA5D9D37708017C730231D197CBE4B5BC18333CFAA1B8A2307CFF9CFF42FA0CC3E8BC |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\basic_types\value.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 4454 |
Entropy (8bit): | 4.795492456622818 |
Encrypted: | false |
SSDEEP: | 96:rc4D104NxSdoLAOd3RTGqCQ2xOJ2QCuVqSzJ:rc4ZRNAdFOhT7z2UvjJ |
MD5: | 06F0EBFFD9B5A488AC3586F0E74135FA |
SHA1: | 233E25596BA6D992E31F9CDFDFB68043BF825392 |
SHA-256: | C754D0E52145D640EEEC5A19ADCEDCDAE5CAEBD53B7A904F2EC9135EE708FDBE |
SHA-512: | B870F5DC40374845EB37000472F3E19B8B140786026EDD608B5C7E1B48D61D4B2DA238B8B86600A5802E8B4635886C36878ED010DD0FB797FCF43DDDA35A7BC2 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\bigint.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1211 |
Entropy (8bit): | 4.989952339207613 |
Encrypted: | false |
SSDEEP: | 24:XMUBSQs6oW8uNXkP4UhI28NITRjUxBThcPGwD5ST4awTGE1ThuwThJHKxUgKaG:rkQs6DGZ8ut+KGdvwdAw3q+gKaG |
MD5: | 56C1FA1AA2B73809659E38771E5A0DFB |
SHA1: | C3BCF5E30241A687131D48DFC8715AD23B69449E |
SHA-256: | 041725648E876BAFA087911528E7BB09235781AA3F2F80D27FC57781BA449F49 |
SHA-512: | AD7BF868C34570B7DCBD4BE4C952FC0703949ADEC08F50E08A84849F391F8FE15210DAD909B5529594E047537128CB6DD2A5458FF328DBFBBD88AAF316B50828 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\buffer.h
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 519 |
Entropy (8bit): | 4.729887094057045 |
Encrypted: | false |
SSDEEP: | 12:RAtGAtSur0bxFkALWZVjef3skFekrJcDif3sxOeTBSTrY:R/k8WfefjcOf+Ss |
MD5: | 8F2103635B0ACFAA4BF9377C1BC52D75 |
SHA1: | 1FD3AD970D1EAA4DDE633F84101CBABBA1D5F184 |
SHA-256: | 3CC041044DA442C68125D773C288C19E3288A8485BD05A19D988F70CE6BDD500 |
SHA-512: | 3562EECB4F5F772BDEA1DE1E884E29E78A54CBBB83A1B71DCF51AB3B70EF69A86A0FD2051A9D2AB4F56EF52F49C8D21F77E693777B5A1F2A7822C25B8FD1A4F1 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\buffer.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 4606 |
Entropy (8bit): | 4.754015325326537 |
Encrypted: | false |
SSDEEP: | 96:BGl5jF2O4lELHK08dQlgHhHgZQ8g6QNzLxHhvzLxZ14zLx6P:BaahW6KgtgbgJzVFzVIzVW |
MD5: | D2D00FEB2AAB27D543D21581E0B2C1CE |
SHA1: | 7A053680D27348AB36F1BE0743781A9D87135063 |
SHA-256: | B5B733929D3DBD6A928084762EC48D2615393C1AD91245A0ACA963A85D5EB7FB |
SHA-512: | 30F5E18EC61E58711279012FA6683816417C4B84AF5982EF00CA3460F2F9102A46E2289B15B7BBDB86D706CA2DEBDF181AE1EC9598285715E646CCA4735467F7 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\buffer_new_or_copy-inl.h
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1789 |
Entropy (8bit): | 5.0207936450022155 |
Encrypted: | false |
SSDEEP: | 24:gZbSNeYSRTn8wA75VtIMeZZeKRg8nvalxkyE7vQd72r5VtIMeZZeKRg15nvam3wa:+bSeRTXA7iMXog8ruAiMXogTNZDpiMXf |
MD5: | 5247B1BFABED1062492C26A758966CFD |
SHA1: | 40324252DA44E8169C21B2CD3CC2472DFF9A8DD7 |
SHA-256: | 81E27BEE6F8AE550A7AB9037BF054AEEF7406619A8ADEABB5C5939B11DF08BE9 |
SHA-512: | 9920CF20E2A9962BC6C7C334AFEA5BF83E93C83873CB92558551B7C71AB7F0D332F15DD2CA870EE231DA985F56CBBE8A575CB3B29DBF3741F8003B26E6013DBD |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\callbackInfo.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 166 |
Entropy (8bit): | 4.709132534618 |
Encrypted: | false |
SSDEEP: | 3:agW/iRbZQU5baIKzBbb1tLxAbW1ntOyX6gPWsLBMsGg5zHERvv:Q/HIKzBzJ8/gPlSg6v |
MD5: | D21CB4835BD6CE92B17DBA51401623F5 |
SHA1: | BB2A7AFF28EB090E80734819FC1F7BE8550AF699 |
SHA-256: | A7975FF4E6F10122CFECE21AE34F817D0FDF662EE709A80EF6A4265D852291A8 |
SHA-512: | BC52B2006911E379691E5B69288A46DE20DF8C51859A3088D095EB2BA78116B5B4CEEB12184840C0D5C224029E20A7EE54BD898AC34F7BA897F4CF09F8134CB9 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\callbackscope.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1240 |
Entropy (8bit): | 4.669277598328173 |
Encrypted: | false |
SSDEEP: | 24:JM0eTjqioMQlBSQs1F5wmViYsTKxVME5/hd:uei1QlkQs1PxVfsTKxnpb |
MD5: | A16A1C42ED03C8ECE336A34D00A23950 |
SHA1: | 01B3CC4079F8A8675726FACE91A72C535D0FDB9F |
SHA-256: | 64A335179F95259D71EDEEB0AE71BFE4D4AEF1CE3235FBB2B4E3D1DB991AC8AD |
SHA-512: | 62D5673BD20C3D59E9B1D460F87DE8B6AD1388D170F425E6D0293FA90C0A504F767AD9B8248D561B2017AF0D9422BFFA71D530770B2FE4EAC32B2C4D848079BF |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\child_processes\addon.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 289 |
Entropy (8bit): | 4.6731127428165244 |
Encrypted: | false |
SSDEEP: | 6:QoPnMWzBSa0E8mFHC9VO6LqANlKLw+ANlK1FWANpAsLFn:dnMUBxv8mFAkgtJBWAsn |
MD5: | F3893BD8295EE26BD6EB1468B0137FEC |
SHA1: | DEBBC4A711EFE253355CE4458A7B68A02D6476AB |
SHA-256: | FEBDB90439B029E6DF72E23C9F4F90750A8EC3D3C8BFD62DEE201D6FDB342707 |
SHA-512: | C3AFC819DAA9607B1EF10F2A7E21BF8BCC0A7DFDB4091C8211C98FD056CACDD49C0BF1370538E01EA4BEBC61F4117B1ADA93AA66834FB5B7C636C2042D8DAFEC |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\child_processes\addon_data.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 785 |
Entropy (8bit): | 4.712105962146806 |
Encrypted: | false |
SSDEEP: | 24:XMgoGJj/QZX7glKAIBxv8mFdgKGQLksp2kcka2kj:WG9QWl+vPwKGQY |
MD5: | 3B3ACB77C17582316426C8B1786169CC |
SHA1: | EE2065E64D40ABAC0F836713EBB0D693EA3A6DD2 |
SHA-256: | 306C6EDF8E68F68262936C4ADD749A2DF1066C080A854BD5A2B36DFDAAA4A922 |
SHA-512: | 1983F74F6398308EC89A1DA300AEAB67A45CFF69F718A9DFB2F38BC4CCD9E232187535B718B12ABAF659AD7F353B54D663E99B075E91E890A7078FD0FE26661D |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\child_processes\objectwrap_function.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 645 |
Entropy (8bit): | 4.419052537802399 |
Encrypted: | false |
SSDEEP: | 12:CSnMlaQYBG0lV9vFQYQN5DwYZFt6YZFFyfXGbCY0vXGbCYqIM9G/tn:XMzYBG0lVXCDrFtpFFsXGbsvXGbes/t |
MD5: | F39B9D08E98EEB721794C48A5168B850 |
SHA1: | 9281BCCE243D814518274AA6873E92F054FF9C8C |
SHA-256: | C52C7E49EA83A8B7286492E7791EF0DF6E95C43562537400BB79AF556BB325FF |
SHA-512: | 880EB7298C3D1195FB9D053B0BE3EFA90D8A3D014120FD81B2B6FEE4EC51E775793AC570CA130FC456E4243255D92F5C4E0E7131C4F0A2A29E18C780DF6EBB1A |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\child_processes\threadsafe_function_exception.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 862 |
Entropy (8bit): | 4.672251618709164 |
Encrypted: | false |
SSDEEP: | 24:XMiBaW8mFp0pbdsY2dwQLCwwyGN8mFGpbdsY2Hc:78criqYmGhWqYv |
MD5: | 06C7EB546594F900837C1464F626EE85 |
SHA1: | B0C7C44BEF84657045CB80747AEBDDE2F07BDCBD |
SHA-256: | 4B02748FF49384409963306AFE1F55891664D9184749860862BBF85998E06322 |
SHA-512: | 8B8379EC14C0ABA6F2E739A3582747A9CE8AD491C11A2F85B2C5CEF920EC3B5C401DCBDC8B2BAA5E3184F4691F3A15AFD18C45B682D0E26F76FB740644DEDE44 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\child_processes\typed_threadsafe_function_exception.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 436 |
Entropy (8bit): | 4.645212740627076 |
Encrypted: | false |
SSDEEP: | 12:CSnMoIYBaW8mFRX00szgFSQdxfsY25xzi9BH3n:XMiBaW8mFp0WbdsY2HQX |
MD5: | 59D7EEBC29BA66CC3805370EF11F11A9 |
SHA1: | 0FF9EA2915D2D8DDF4A9AAD62042870B6E1D7E20 |
SHA-256: | 971C1F415C13B215BF49BF6075C710751CA528B41887039247BE1C7B0ED23E89 |
SHA-512: | 96C7467EA3FF0F525E64A021F3CA4DB489497780707E463ECD71FD9B86EE5944B26AFCE6913A6AB45101339C81E5A9ED95BB37C3BE65E7A5D7F68660D929109D |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\common\index.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 7889 |
Entropy (8bit): | 4.891709770311067 |
Encrypted: | false |
SSDEEP: | 192:y+BoGnEtpYt3a1NsSHkUS6RjFUpN7/K8X90RG+iM1c:vFErYKsAkL2E/JX1MG |
MD5: | A49A26709D3B86F1AB1973B6A9C3DE83 |
SHA1: | 19EE782E8F2C8AB8CE4699F2089A6795556F22BB |
SHA-256: | 17A014249CBBC2E6097901BD8846E9F901D76B07DEA23CAD911F8A22C30571F5 |
SHA-512: | FD7C30FA778C3748421D1F2EB081F67F5D6CE6BBD9A98D2088FD92C6F837B88D7DEF0EC7766E4D2BD93F6DBA7C2F9F6DBD61BB1931DEED6BA6B4DDFA1C718D36 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\common\test_helper.h
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1911 |
Entropy (8bit): | 5.13765519126748 |
Encrypted: | false |
SSDEEP: | 48:Rc71UKLeEQimtkLZ9UAIbFAkL+9quIAFnLi9Xl3jm8k:6ZU6QfA7f3avZk |
MD5: | 2397309ED70E8FB6706C5FD07BC5B8D6 |
SHA1: | AE828609FC118A2F6966F427C327BBEBA8723238 |
SHA-256: | 8DBDC734E9573C4CE37CA1212CB24D695C4789DBF174C4F11BB0E5A3E28547D9 |
SHA-512: | C1BE11D6A5356361D179979D73F80DEBAAA14D77D64FE78F5BD7158CF49A3C600C7C18715263E6E0A75A650CF33E70C86ABF6F6C5052EA8E15CF491230FE1196 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\dataview\dataview.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1367 |
Entropy (8bit): | 4.750187877293772 |
Encrypted: | false |
SSDEEP: | 24:XMh0BmQs2GbIR/fMepvbdLvJLpHLwL88LtLU/ZpDI9ZpDzZpDD:G0gQs2Gbk35v1Rp0rpcLE9LHL/ |
MD5: | B75BD25F4C691191655AAA7D2D6F2308 |
SHA1: | 30CE02B90AB983210AD191962E66C52151231BFA |
SHA-256: | 2860868B3DB492D2B24AD3763DAEFC0CDDD146E728443562537F01AE7ADC85E6 |
SHA-512: | 3DDE97E7A103C93EE04BECF56D217644F821DA56D36C855D0A4E2320950AAEADBEFED64C6BB6CD7AE2F6997AAC8C1776E4AE6A7D16632DD9226E257AF5075A4A |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\dataview\dataview_read_write.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 3181 |
Entropy (8bit): | 4.9095684784961815 |
Encrypted: | false |
SSDEEP: | 48:JgQsWJwc2Z5pxrBewtMeR7/rWdX/UgKT7RG0i1LPTouDqK8LQsD:JTxIxEwtvR |
MD5: | E648F6CFC43447FB4C59144F03E833C5 |
SHA1: | FB4C412CC549FD6D5DCCAA7C6AE9327237614C06 |
SHA-256: | 65EEFB89205EAA5F59E93B74EAD8383C79211ED99DCF042D6D28E4D20CE4C253 |
SHA-512: | 7506B204FFF5D6CAD45CE52C623D4712BBFA8F063CA108C551E0A52EB19B1A337AFFA450A67C9F63313B98DEB895FB325A77E4FF48FB441C1E98DE682976A691 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\date.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 429 |
Entropy (8bit): | 4.692063151573465 |
Encrypted: | false |
SSDEEP: | 6:Q/SnMWzBS5CngPaCw/2mi6WmZKJQNCb016lNx/ifhwswhSJrbPJrPB71bJrZK:CSnMUBSQns6OFm0J+g0VyiJHPlDlQ |
MD5: | 0501FB47677A1C8F6ECB91A824A3843A |
SHA1: | 1DC08541B34C2C360A7A4BA50EB86B6003BFFA32 |
SHA-256: | 259A56412893118273B5D752F0235515F59FC1B1A52EE60F332709106B1B0A39 |
SHA-512: | 1CF0947B82DCC287A0CFF9782DCB035F24FB49850683046A66A205A10026B669464B10D4D2C1BD909960E22315C5B3CF72E6FD95151333B6D1FA27070C5DEA7A |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\env_cleanup.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1654 |
Entropy (8bit): | 4.685760255220444 |
Encrypted: | false |
SSDEEP: | 24:XM8mwUYHFxXizujBSD///3Lmz93fV9vnB+0LKCm/OR1Zof4SmQKNe+9IaF/IajIJ:Ywt2ujkDnyz9PVJBnw/mZjSmie6qjY |
MD5: | 816ACC24672E2841E428D336454DDDBC |
SHA1: | 85976ADF6D170F5EC6DC0E24C4F7EC082EDEB092 |
SHA-256: | 03E322D8BE97B46C7BEBCF69691D1516D8BAD2F22B44012EF1BF2EA061F3931A |
SHA-512: | 842851086283CDB0C9DCFB28747C4A263208E71DDDCD20C0696EE3DBAC1715311E286BBA484BEAAE1BB04B26A2EB40A1EAEBBCDC4822F23CBA821DDAB4D039C6 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\env_misc.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 350 |
Entropy (8bit): | 4.855041019680864 |
Encrypted: | false |
SSDEEP: | 6:Q/SnMC4x0/gIKzBS5CngmuzkT8CufKqrmEI9TA+pPjYLewXHA+2:CSnMC4x0/gIYBSQnvTqrIpsLeG2 |
MD5: | 6EE190023997BDC930EB2BE0932AA51F |
SHA1: | 4C59B9166BBAE73FF21541AED3653E5220A82B59 |
SHA-256: | CFA4E3DA0B4860D4474830A0318D4E2753C25ABC512A250AC522505BF698486A |
SHA-512: | 380FF8BE28FFC533DBF3A3CFA7FBE9CB503061AC0E38425949C1642E69C82AF92A2DE2E3677889D829A1D8C9C21247A63D9232021F3683C759D8C315738254B2 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\error.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 3832 |
Entropy (8bit): | 4.708885923213986 |
Encrypted: | false |
SSDEEP: | 96:e8CSewGodw9AomAbfbWovbqCr4IQ1W4DTw6wWZbh:eJTC1Kzq8EtHh |
MD5: | 1DAB653910AB8F33BAD40EC07CEF6789 |
SHA1: | 9BF730530D4046FDB61C55C4D5A46C9FF3289CFE |
SHA-256: | FF017081C6A0C978E052DA50684A4FFAF5CB4A1B8B297E5490096B4B600EC172 |
SHA-512: | C5740283AA804F5815E2CAF0BFA6E3E8AA3E9BC9C9E658B2960A67D245914474F12E4DFE9E5E24B9726256A9BFC56A3B5C1C55F97B9853BC269EF06F4F9F7472 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\error_handling_for_primitives.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 843 |
Entropy (8bit): | 4.890410182897766 |
Encrypted: | false |
SSDEEP: | 12:CSnMUBSJTFpNhq9mW3ubnZAq9bvFJHwTlv1Jn7O4+nsZeCTd5YTAZJz4ShfODVk6:XMUBSJJpNVYEFI7ysbdn8Du/Jl0eK |
MD5: | B97DE5DC5B9A38D083F8200EB772B011 |
SHA1: | 47BC9A412DDA7A669D286BBC2DF2524995A20B00 |
SHA-256: | F3BC6620BBF0B28119389EA3F0FC7CEFC07D41C256BAC991FFD2260DBA5F316A |
SHA-512: | C834334D61CD4711938484AE30A4CE1A9CFF368441B5223FBAA958808F87A6DAAD8090C2EBDF905E93D7CA8D9D6BB55AC803959CCBE8793B6F386A5A93871F42 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\error_terminating_environment.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2700 |
Entropy (8bit): | 4.771622220115169 |
Encrypted: | false |
SSDEEP: | 48:EH2/a7q+b4GzPxEsghWvMSdJBDz0RXRkkFT4PdoqbXJe:Ba7q+FCsgAvMEaMe |
MD5: | E516C10BCFDCAB0ABDFBAF3203A1EBC5 |
SHA1: | 8D81CF9D2CDBB00F4E06B801AA419B2229710D4B |
SHA-256: | B6C4858902DDC297399441D10E3B2A28967D312A5C5A7A0E4794EF4F1325E171 |
SHA-512: | 87E0D4BEB0CA6469D6456BC5833AB1B7855BC0084CEA0B86F1873CEC7D3B07606D3A883DBF9CBC2145277AE620375D19E67348E154A30D9E8EFD020F59E5CB0F |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\external.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2760 |
Entropy (8bit): | 4.736363292980332 |
Encrypted: | false |
SSDEEP: | 48:GuEU/WKvnvOmOH/QDTAZDOjk1qxlFBuveEohTuNeEo0WuoeEoMO:zEU/WKvn/OH/QPAZDK53FkfkofRkfNO |
MD5: | C10BD097BA0ACA4E2E1E98B12DCCC7BA |
SHA1: | B55BD4E1D605F9AB32B69252C121DC490802FB6C |
SHA-256: | 302D5F22F4FC20F14199C11C0359C5BBB5669BFCEC76D22CAE7326183FF8E9A8 |
SHA-512: | 39D18B099B0257BD358BF6BBC1A22761D17D33BAED446657573BBAD36F5D2EFDB2E9E759686E416A0BAA25EB238BCB81886DF245580F29A5BFD8E319B8FA37D9 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\function.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 4775 |
Entropy (8bit): | 4.99792635757049 |
Encrypted: | false |
SSDEEP: | 48:rkG/NYNOosSNwjmbDaFA6+TKXTxG9xBqcMBqUexEVeUp4c/oGb/NPoGbwVqoGbNz:rqOjmbDOTbfjgRXhzRDWJ |
MD5: | EA926D076D0BB66C2959A59F43ADD778 |
SHA1: | 3B1358250737960A462C0BCA254BF781AE6DC9D2 |
SHA-256: | A2265E6D72CCECE2B56F60D3778A06334B3B1E16F939A7965BCBACB459C9B87A |
SHA-512: | 2F26E748AF8A458D4B71105409F26734FDD1DB24C05CABC5263FEDD7F07EAC4CA34317DF60FB17C14204B1AF4D9A65DC8A5C32F19F62E8744BDFC28FA268DAFA |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\function_reference.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 4265 |
Entropy (8bit): | 4.825525673806708 |
Encrypted: | false |
SSDEEP: | 96:ocpY3MtBgl/y/KXPBtvxlo7CSo7C7KLMFa+Fa5Xo7KaO:oQY3MtBgl/yAZtvx4ClC5JOog |
MD5: | A14D68E670310BDE854B940002AAE33C |
SHA1: | 5C1351C80E4170D3C558E54FD91E98549E608CE0 |
SHA-256: | 003671AF3C547BB9EB3C57B2566F64F5695A3D8A220E75AFBD842A4B64F73AB6 |
SHA-512: | 2ECB2FB5E76DDD765156231E2611304288C86BE45126FE73055BC6BE5589F8638BBE698303A8D73C6F89A2A4AB2EE98EFB7103AB0F750B5A1F2196B3E7CF61BF |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\globalObject\global_object_delete_property.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2103 |
Entropy (8bit): | 5.184485678011814 |
Encrypted: | false |
SSDEEP: | 48:rgQsqe4CoH3HzHwiHAm+uhreI1oXI1SMYfVfdfU:rzCoXTQigm+uGeSMYt1s |
MD5: | 6FA6896628E9FCB9046A83427F74A09A |
SHA1: | B88CDF8A3D14D5B054C8FDBB2CCAF9ECB969F822 |
SHA-256: | E388B00F23A8191FC08F73F78C06D81BC99B205F526B1B7C7E7F72C5EBDC4801 |
SHA-512: | 92CA2EFD56CA84F1B1B9F461C118BED46B2BBFE9CBFBAB7620A0F563059724F89A93A69B9F7FAC07EF7E30BB44941415B1344F9EBA83A7262ABE30C14885E710 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\globalObject\global_object_get_property.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2025 |
Entropy (8bit): | 5.130147837881433 |
Encrypted: | false |
SSDEEP: | 48:rgQsqe4ZIeeHUvHVP9/ZEGD+dA3xmsc+fQf4fo:rzm5CyQ+Cksc+Iww |
MD5: | 37167D9728898FCDBDA9E68D37B11FF7 |
SHA1: | 70805EAEA4AE135293B67379E086DCFF0928FABE |
SHA-256: | CB5D42C123946DC0131F42E89ACDDF5C22B013DA1BA5804FC05AB885FEE7CED9 |
SHA-512: | F0FB0D09739CE92FDECB45D2EB0FAC28D77C83B31D1144C034926790F37DBE9511044F1294E66BDC9069C83900291C168E400A1A57EF8D40FABDB5FA659D5634 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\globalObject\global_object_has_own_property.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1569 |
Entropy (8bit): | 5.179616141405802 |
Encrypted: | false |
SSDEEP: | 24:XMUBmQsAeWe42k59+8U+GtmBmq/sxg9Ikhoc9nr29tT29X29gns5i+Ss5i2Ss5iU:rgQsqe4ORcYW+uhrsejfVfdfU |
MD5: | 138AD9AFC5F2A7F9F2857DCA8D556415 |
SHA1: | 5C0380B14F8D74C622B7FFB5CEC5EEB433AA5C2E |
SHA-256: | 550B26DA3230C52C62EA7098540323EBC2B8F8BE24448126163937C2526A863A |
SHA-512: | 83C1C74CE09D9044759050CBBB4DE663420AA23426AFF154CCC02BE1EE708D7DBB33EC4813A9580391B96880E7391D760AE80600862911AD5072D69E19AE7C2B |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\globalObject\global_object_set_property.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1878 |
Entropy (8bit): | 5.211553390321425 |
Encrypted: | false |
SSDEEP: | 24:XMUBmQsAeWe42kp/XUfh7fhTegh4j+/hc/sxMiigf6TnE+Env6zH7s5iGSs5i+S0:rgQsqe4MhDhagh4Uhs+MbSaG67fNfVfM |
MD5: | A4C296770A0777C5444B11CEFE89315E |
SHA1: | 019244986D974944434ABBC9CBA8543561ECD4E0 |
SHA-256: | 5D84CF3C09B4CD271947F2937ABD8B3199D2E0CE4D018F5A912BC7B48BA55D81 |
SHA-512: | AAC16D754F807C1E9B1E5DDB4E0EDB8F352338EE2F44BEA38DFF1323194DD58989C3D699629F831C190014D975D9DA68DF58CA37D04E23DC47ED68E3BA80D1CC |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\handlescope.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 671 |
Entropy (8bit): | 4.748176975771786 |
Encrypted: | false |
SSDEEP: | 12:CSnMUBSQnsglugKluFkuKlNfKln3MKlAkwlEAUgMORJ+HKSd:XMUBSQsgG7ZDydfykwnUBOv+d |
MD5: | 0C743869E0904D341E2D78AC18CB4909 |
SHA1: | 7BC33D403937EDD84136F964288824B5AC6CDDE7 |
SHA-256: | 56B300DD3B6F4DE6E54FCD688DDC4BB6DFD0E94DBFD5A774BDEE3B11C8C222C1 |
SHA-512: | 1B2E5328E2277425EA85B2B680E0E12B54D0B7D627A6FB2CEA214AB18434FF1A77869BF92371C1266FC7EB14F52C2B810839EF12A032E768155B19500E664EAF |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\index.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 5613 |
Entropy (8bit): | 4.9601228273176226 |
Encrypted: | false |
SSDEEP: | 96:6x2eX5X6ZQcppt+M7fyrqaL4jE/VSNpPdRZ1e72hh+FTQ81Wfg:6x2qJEQcpptRKOaL4w0v1e6hhXq |
MD5: | EE531AD562F707E99BD9190343037510 |
SHA1: | 6C06644AE980AAD7637D3C753967EE770CE77BB0 |
SHA-256: | 053399A1F1C080C0DB7F8F18D05C8435951842E2B8C573D250D88F08CDDE190F |
SHA-512: | 2A0C9548CD764CC9274CB1FABA5CC9B249064C6F4E68DB831019FB10A0E36F5A74EFCD8092CB2A2E4C8DBD54C2EE1EC9E98220BD536D8E04F4B8D3E3C1070C95 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\maybe\index.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1267 |
Entropy (8bit): | 5.179284066328419 |
Encrypted: | false |
SSDEEP: | 24:XM5kSRBeJ+c7N4Nn9ssOUsj5UpoV+yLQbyUD8QVYdMlq+KL6tYF605GB2XCV53ko:ENRUp7N4d9sscj5UpfUQRxxltC6tYgYY |
MD5: | BF6307537162D42B88CF1B15C90B7118 |
SHA1: | A2196F4B25E186095B4792CB935E8328ABF95E9F |
SHA-256: | C55C0B479FAEB7B3832A98197E7AB7E47ABFCB951A6E476B93BCA7935C61590E |
SHA-512: | 10C5CCB428BCE66436BD9C58DFB595AAD06C95755AEC7BF0E6AAEAA8FEE2BDF9A58C0583C723961381A7257E8CA33680A5FD83AFCD96E1F97143E875B5B22D1A |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\memory_management.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 212 |
Entropy (8bit): | 4.656453558179403 |
Encrypted: | false |
SSDEEP: | 3:agW/iRNzwpsWWCCMWzBbJ5bjuAbW1IQ6gPW1Qx21MLIIo9jRAgqmAeXCWAfK:Q/SnMWzBS5CngPcc1syK |
MD5: | 7E34B345366C68208AD3C9630E2F119F |
SHA1: | 3264E41E373DC28260A3E07C49FEB9F1A7315C15 |
SHA-256: | 798AA3FB59B6D4E5CB1FC03FE7DE5CA7F1A51D88024988615107CEE520BEFD41 |
SHA-512: | 2F3EEA2E71BDD764AE975CC7807BE2B976384D2D9F9742CB16B5E1AF30577CF39A2FD3C09C060D82EBFC9F4ECED890D801DE65B2CE1B412F2CEAB41D0C70531C |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\movable_callbacks.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 437 |
Entropy (8bit): | 4.6548975845915805 |
Encrypted: | false |
SSDEEP: | 12:CccQYBSHpvIEv/sB9vFvB0vF/lmal9vFFNm:TYBSHpBvEBXZC/8alXFNm |
MD5: | 722E12763FA471F54D00A922E153C5CC |
SHA1: | 99D7D13040E8318A314A1A8AA761D5D04AB01BA2 |
SHA-256: | 5BC89EAC3C168863AA60D54FDF4BC8FC9B406A99044AAC900422B428BBB48BE8 |
SHA-512: | 455A014569D9197B459F92EBDC480DDF1286A9771D171F80D5400BFDBBFE4B0F481137C67A8DA6275B521A8301601C0BC687E643AA480F31DB7ACE3D89857EFD |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\name.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2297 |
Entropy (8bit): | 5.0275545278118114 |
Encrypted: | false |
SSDEEP: | 24:XMUBSQsaLL7CuGgNgkkyS0Y7WYWoIa/WhWAne6HIjsXUr42XLuqglRJhMs/eK+CA:rkQsaL3FmgS0jJCoUrTa177f21CTs |
MD5: | 7E2EEA6452F5F007E2F8E906EF83817D |
SHA1: | 8540A84DA0BABE1F08C1C1CF7AE35BFE7DE4C277 |
SHA-256: | 2820CCC085BB5A93ACBCF8B9F8E59165431B187D6E8CCB5A5CB75B951CEF3932 |
SHA-512: | D2EC9F026169AC5FA8258AD4825CCABA0B5A55E45C892058F8FDA8C88288703B4A5318D1C10CFF017C12F6A8E6E283527B2E8663EC312FC0760CDD6BD560D883 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\napi_child.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 479 |
Entropy (8bit): | 4.798719734706413 |
Encrypted: | false |
SSDEEP: | 12:jvD5DX2Q7KgQbAU+n8RVEQoQbAU+n8R4D:z9L+gqRHoqRW |
MD5: | 2F630B633E69E5BE2868739944739269 |
SHA1: | D16F5F7358AED31ECCDF47CCC6DE3D80D56E0A0E |
SHA-256: | E00386F5F6E66DE9FB5C0B325641D494EDF90F14F77A39D5D730B7B0F5EFF7B1 |
SHA-512: | E29EF665B6CC11E75765E735089C751385D65E9BC2169B15F49458FA13B40F3CB8B65C18B9367B23E96086116687A1C0075D7EB1263E86EDBB3280863B8856B4 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\object\delete_property.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1714 |
Entropy (8bit): | 4.917258764614198 |
Encrypted: | false |
SSDEEP: | 48:rgQshjaiMoMicMkNinMUcWlk6O7OyOLOG:rWja1vaIKMU/ |
MD5: | A92C31AEE11FDA0FB35BDB3FF505C12A |
SHA1: | F0D5F4C3156E489455FF67E8AACDF7C3019428D0 |
SHA-256: | C4C01E294F57D4DAA9AC8903402EDF6DCEC71BF0DB0936B1A8EC42621526582F |
SHA-512: | 7B093C8FC2D92E545DFB70E3434366E1CFEFB5B09539B065E336122F95CF481C82399B476D438E320B4C0FF65428C36D67427C740E2436764E341D3D1A9E5472 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\object\finalizer.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 680 |
Entropy (8bit): | 4.863153220501801 |
Encrypted: | false |
SSDEEP: | 12:CSnMlaQYBmQDA3TgZnQnsHRZLU9vFDXAgAAZtvaAtpM+q9vFUAAOva7a+Y57:XMzYBmQDA3gnQsxZIXDX3AAZtvaAtpM1 |
MD5: | 50C2C487E9CCEE24F0C8B4131AA46898 |
SHA1: | EA5460C0ECC3AD1B7BF879701F64DFFF0317D030 |
SHA-256: | 14EAABB40560A7D34F1A985269D4AF1D5E0DFD635824AD60FBA51BF047222184 |
SHA-512: | AE8E81DDE24B5F220A6F2DE83B1B660CE8362406625BA32BB07BD8E5516E39F0C2E5EBEE6C4282C7E91785E8444F2E94C30C58236AF2DF6399AE3262DF7BAEA5 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\object\get_property.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1224 |
Entropy (8bit): | 4.902617411247634 |
Encrypted: | false |
SSDEEP: | 24:XMUBmQsY4F1dMkwjWz4Fm5Mk9jNGiZwlEbGdD9MgJmagrSgriMg4:rgQsYI/MxWzIm5MIN/uMuMgbgrSgr1g4 |
MD5: | 58526215BC4DF72EA9D5C43F4005AE00 |
SHA1: | 4A550A97E5D9C64A0E2FCC1E13E5AD47BB863B8B |
SHA-256: | 3E1767C5C0CF0C8A1238104C3565F872BEDB8B9D77663C0EE8F9F523788C68D4 |
SHA-512: | 6DEBE307FCCDCC456175DB0AEAFD9E35A5145111D90B60C1ABE1AA5F43AF86A1C54CAC6F5D107788EB54EFBD95716CD661C746B138DA5A9A8EA05B6A1B8F54D3 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\object\has_own_property.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1348 |
Entropy (8bit): | 4.98946542924641 |
Encrypted: | false |
SSDEEP: | 24:XMUBmQsseFknMdMMMrjNkirwlEbG5tUthdt2tkOSOTdOgOB:rgQssaknMdMMMHN5QM6tUtzt2tkOSOZ2 |
MD5: | 7C3107DE9C8685E4672877D735A76E76 |
SHA1: | 9D931E1BB1A83303F99E5CDC187ECC1651993A19 |
SHA-256: | 39DF0FD13674378718EC176424E8D5AA63B53C80C00A8E9792D455CF6C5AF9A6 |
SHA-512: | C143A34BCD5A7190016291ACD9E9952F346F5B3A9C0CEE7A156E6B835CD22C7B68F59F3784DC8D11D892C7011E745DC771E26FDAD185B6184992160D13791E63 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\object\has_property.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1423 |
Entropy (8bit): | 4.987801712559751 |
Encrypted: | false |
SSDEEP: | 24:XMUBmQs0sFknMbMiMMjNqi1wlEbG5nStOtXdt8tSOCOjdOQOx:rgQs0kknMbMiMgNTCMOStOttt8tSOCOE |
MD5: | 9987ADF85E5B5B6C1F837A3D420C7324 |
SHA1: | 24C2067D025FE2AC7469C502266B735035C37E0E |
SHA-256: | FDC146E103FC6F6E44712DEA47351E9DA8B6F4D5DD03B182F903551919C78576 |
SHA-512: | C5FEEB0A5B0FF508468A1CE7C9BA0D0E0D11BCA6EF30B226BB0DDDCEA66DFE835B5B01F8605F9561E6023828BC0AFBA4008B137170AE4840696ACB4A6AB7ED2E |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\object\object.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 6944 |
Entropy (8bit): | 4.883096545149577 |
Encrypted: | false |
SSDEEP: | 192:rPtktCsDK9BK3OvcTANR6ne2CtlKEYOByOIus:ry8sDK9BK3OvcTANR6ne2CvrbHs |
MD5: | 20747D2B3E191ACBD73BF0BFD015FDD4 |
SHA1: | CB539AA905C5AC8404AA1B652D1296427F2B6124 |
SHA-256: | 4C1D150638C01A2CE036AE9AA8EA9C2A623EC35DB694E8E3F0E9FF1E2939B891 |
SHA-512: | DEF346CAA48E9EBD1B6121E2A4DCD5D1327732B89DFBC6CC8147E9606222955CD74089DF98B768516C55AC2AD2B0881CE3CA7F6364C23242F6ADF49DBD0D84AE |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\object\object_deprecated.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1309 |
Entropy (8bit): | 4.71729097866484 |
Encrypted: | false |
SSDEEP: | 24:XMUBmQsxgY5LrNPATEqFtKohwoaj5oqwohLV/ujEjD3jEugFpCz:rgQseY5nNCtSGU1g/Cz |
MD5: | F5137C6DC9270130FFDF68F9AF153047 |
SHA1: | E219CDEC1552862A19409AAEC1BE0D2570C58B8C |
SHA-256: | 5AEA154ED87910741C9D5E4142F83F55CA4411B6B7C9EFC8DB079C1DA8849F7D |
SHA-512: | 02193D09F0F449F82483FA28F01853FB8C067345E1B5035F63A3352E550AEFE42878361DECA5DBB5EADA35BC32941BE08F32B599469B82F32FE901D665D9C8C6 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\object\object_freeze_seal.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1562 |
Entropy (8bit): | 4.6648373423843665 |
Encrypted: | false |
SSDEEP: | 24:XMUBmQsdFhAjZnY0H/lkYQT3WYiF40k+ifiFpeIw3kYQT3WYudKTyF40k+mK:rgQsHhAtd/lm3sFbifmpum3cAWFbmK |
MD5: | 01DD5F59B92E8982428BC37BA9DD2233 |
SHA1: | 5BDF7A831431F47CD809D638130839DFD3F62B41 |
SHA-256: | DD97330B489AA48BB510A0A42A5F8C1D68D811014E3490BFEFB9EA9E39F26021 |
SHA-512: | 34C3ED97EB7A205C801196352A34DC60A3B656A6023FB1C2CEE784DB4A377B0BAE61376642F1BCCB0A1B82431E1AF4449FC1CAA7B0EA08D15D785BF59915F027 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\object\set_property.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1167 |
Entropy (8bit): | 4.917690123532416 |
Encrypted: | false |
SSDEEP: | 24:XMUBmQsM1kDFtKM4hjNKi1EbG5Itda6D3O6OLdOoOJ:rgQsMmZtKM+Nz1M6I/a6D3O6OROoOJ |
MD5: | 6B98F4E81A767E30336046E43C5004E0 |
SHA1: | CEA52085797DA1D433E481967915C245E1CFF5C0 |
SHA-256: | 068F9932D66D19FF14C1D203724F53A6AD98C7ED45356428DC5AA885FD956442 |
SHA-512: | E1C552527870ACA7F3ADD315D3F140C2249B460050DEB22F2338EC14C9DB011AD3B0E8B62518118DBECD149C3D953EAEFAFAECBB6177B82AC88F1ABB4DC3EB05 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\object\subscript_operator.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 823 |
Entropy (8bit): | 4.872836325707075 |
Encrypted: | false |
SSDEEP: | 12:CSnMUBmQnsu5xtwRmM11fcbh1fchmbR1fZRn1fchrRK:XMUBmQs67wRmM11A10hi17n10hNK |
MD5: | F869A46B29FA3554810042A5BE53B54B |
SHA1: | 244F3030E3015E302FE9BF16789FD18FD6083C15 |
SHA-256: | FCF241E640ABEA0915139DE277470E40A4FC024469D5AE4B0AA462986E6C87D6 |
SHA-512: | 167FF24FB08D49A3A6F970554EB7F913A5F1BFFB4326A4019DE2C017DC72B2753A82439AB9F7EED711B618BEB11BDD5FBD04BE0C774D0742E1EA9F68DAAA8655 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\object_reference.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 10438 |
Entropy (8bit): | 4.854168355282629 |
Encrypted: | false |
SSDEEP: | 192:sbfLqDDnFnvnwIcKUYSdUhU7UhCiyNI6izNK3VdCivVEVhNGVzouX:sbfLqDDnFnvnwIcKUYSdUhU7UhCM6/3d |
MD5: | F7028F1B7D47325EF45869234BDE3426 |
SHA1: | 9F1D71F555E629A90B7949E2F8B4D2D9D4429452 |
SHA-256: | 19E69F22F5C499D883685B864CD5E2E4A09079A0933022D8086078268631AA32 |
SHA-512: | 52336CF2BC8A6A6D5706910ED3A548561D85458FEF13BC869B8E011240A48FE2F4525F010B727B9A62C996619B1C51F10D15E0F6EB4A2E598BCAACC0DE6358DB |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\objectwrap.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 9731 |
Entropy (8bit): | 4.73646720610571 |
Encrypted: | false |
SSDEEP: | 96:4nzuIwDGaR9K6Do5SYHrT2nHXpXVITZJ+oz/GVGwgsve9JHYvnGE+A+r4pfc:4CIwDl9HnHXpXVITZJ+oz/GVl3c |
MD5: | 6E547157854ABB8CA0374299AEC2B33F |
SHA1: | 797BF68D62B75A99901B1B41BE616AAE8EAA2FBA |
SHA-256: | 92452C0879120E477CE479AF38C40F3DF39D837878A6FA6FD9D20945A78DCEBB |
SHA-512: | D17DD92F78BADF897F1E376A83C55EA1101CD8EDFB588555ED349C98B3F8664343601D878A8EFD23C407CBFD49FD346EBFB9B61119B1883FE1DD76F510490139 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\objectwrap_constructor_exception.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 474 |
Entropy (8bit): | 4.619015691426307 |
Encrypted: | false |
SSDEEP: | 6:Q/SnMSWYJ1IngPAUwqmF+4Xz9vFfC4+Q1AEFjBAJWhtLw51U9GJBS51:CSnMlcInsC+4Xz9vF4Qni/U9GJBSv |
MD5: | 64166B7EE606C12BE1653A55EA6A6418 |
SHA1: | 85694B82D940F3AE74B9835C09781894476FF82C |
SHA-256: | 559649B0AF4BCC42A3E604E77BEE085161837EA1333BDB3EEB1876F052D5305A |
SHA-512: | 35131727E85AC39AC8EF10A7AD675705F7D53E88984C4A922910B7C129F04676DEDD7F956057311B3204A05BF614125C39112838B085CA5F0EBAA10429B3C4F4 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\objectwrap_function.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 134 |
Entropy (8bit): | 4.785535695293695 |
Encrypted: | false |
SSDEEP: | 3:agWLBBbJ5bjuAndd6Ne2QMSHlNQDvKJmWrE9tLjMw:QFBSdNe2QyDvKoWrWt3 |
MD5: | 42B4D86AFFBE19D5BB06C9AEF481F7A7 |
SHA1: | 3174598680C153481A89CF494642AA26B2873C1B |
SHA-256: | 0FEAFC6934C28560D6049A961B1FC27087A8DB2C525986F81EF4831FACB5EBCE |
SHA-512: | 9ED90DF443E6FC2F271DCC17928D8F577598C889B70FE2A854BE4D983B1265CDB19BA4E8D776E9796401D79534C60DE3C26E0FB7A78DD902457DDEEC5B3791B9 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\objectwrap_multiple_inheritance.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 326 |
Entropy (8bit): | 4.735885069741481 |
Encrypted: | false |
SSDEEP: | 6:Q/SnM0WjVAiwFvCBZKsGuAYVMrFBDe9WmWofFBARv3BSRB:CSnMvjCNF95xe92K8Z3BSv |
MD5: | 7254AD4C9606755AFFD70E1AD9F07EAF |
SHA1: | 00F2FFD3564ABD5572A8D95F8B4CC0439C0DB266 |
SHA-256: | 5DD8CDA88F8CAFC4CB20FF898FD199ED063D0457A29B38E7B9C133084CBFED9F |
SHA-512: | 9307293F8526473DD000107447A88D2BABF3402A2FE44D49DA2CBEC164206D7B0F57E22E8CA9C6FF577B6E6E3B4382328340F0B5FEF3A029EABF0F0699CDB2FF |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\objectwrap_removewrap.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 921 |
Entropy (8bit): | 4.657684063027497 |
Encrypted: | false |
SSDEEP: | 12:RMeZaGurlvnLcMFQvYnMlcjBS1ydz9vFLCFgewXLvFglvQAF5NyQ79G/s:haGuHwyM2BS1kzX/xAFjf7s/s |
MD5: | 50250BDA956DE16C49424974338E964F |
SHA1: | FF002548C75F1D68DF71F82A7405A7DBB760FBEB |
SHA-256: | 965FD9F23A73E46B6F3A8AB140AA0C4E94ED610DBA4FDD219960C04BF55DCE7F |
SHA-512: | 1F9857215AAFA33C0D7FE8C4EE9D43A6F6D47FC8718544F39A1ED1F3D2E5DC3C072164509A0CA49E0F4CA0C8B9F70B487B5DF37CDCA726E4BD9245579200D7CA |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\objectwrap_worker_thread.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 584 |
Entropy (8bit): | 4.790332757513641 |
Encrypted: | false |
SSDEEP: | 12:BOIpqzYpkoQPIYBMr8+nO+cyi82fzY1XzSFjjvFq5IgzjaEW:BO5UkHBMr8L+cyKYCjJczmEW |
MD5: | 3D3EF6533B7D3CD6E8503A1A76240921 |
SHA1: | 536C5B2D64B6E55694B87840BCE84A2E30CC95D1 |
SHA-256: | B636F4607B056BFD6E1BEEE18BCA40D38402F19556DAB65C23C901E59E83F4F5 |
SHA-512: | 810AE66044092EE5B4A1487D61D5563939F36066D3F464F6B40B36858247CDCC6AB732FC1F09678E87804465C6CC97CC3CC7D070125DED0AC0BEB74BE2E465F8 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\promise.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 675 |
Entropy (8bit): | 4.695238697991762 |
Encrypted: | false |
SSDEEP: | 12:CSnMMIYBl8/s/QAtQ9wAGQZBJwT0QlRBNAGQr5SwTf6QErD+:XM2Bl8E4AW7frOTNlR4frbTfjE/+ |
MD5: | 315B643B29B2DEEF0EBD017791518E7E |
SHA1: | 77178D4FA0D8D70F8C517BD883A864F9AFA4241D |
SHA-256: | 956BB37157EAFC73B7DA5E6E3A322550D72CE1BEF58BF4EC534DB625D67C6032 |
SHA-512: | DD8F73EE3D5B1B7B1776EC37D5BC99E071F8B5B03028CBF1CE4B755EDC6A8DB258DA1C3C49E682E990B6C1FCD3B3F93F7129CEB8E29140A7C49389F681510D14 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\reference.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 579 |
Entropy (8bit): | 4.547787231068992 |
Encrypted: | false |
SSDEEP: | 12:CSnMlcQYBSQns9hlAkaGGgRT8rUETBU99TcRTBd:XMpYBSQsvlAkNGg58rU+OXcR1d |
MD5: | 029CFB4949A020880EB30DCD4DADCA89 |
SHA1: | E8C233B3486E94213115D8DEA9B5003B74F5F8F3 |
SHA-256: | 76DDABBC0CEF4F327C24F9C288DBB6FFB31CDC95EE52C071DF4702C0ADA315B0 |
SHA-512: | EF5F12548DC7E75068556FEB840EDC098080FF069700FC8303861FB1701E64A61E59346DBF613C054357E1FD27B82778297E1CE2EDB614971A19EDD20AB98288 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\run_script.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1039 |
Entropy (8bit): | 4.555072127820127 |
Encrypted: | false |
SSDEEP: | 24:XMpYBSQsaX28j/TX2Dj/VdX2Tpj/VEXv2IX7gXG4I7T/E:6YkQsaRT0Vd+VEO5WrE |
MD5: | F5B3D8D8EFB97149F4DE7C1674ACAD92 |
SHA1: | 2C0CDBF577DEB679153055D1744F25D8AD5E80F3 |
SHA-256: | FB144B56D7C047F367532C5C56B789D7C38A9081302C2056F3A39DDE0FC33B70 |
SHA-512: | 4738B5F93A2F4E72B7E256C5C599E09BA7626470BAA12926E55858D0AC9B80C353995227F8C582219A3C32D6EFF7215F27E264B20BD8C3884FD3DACC73368E08 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\symbol.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2603 |
Entropy (8bit): | 4.961144934265467 |
Encrypted: | false |
SSDEEP: | 48:rkQs9PC6mAjIjFMQ2469xJE5Y213YyxfcAi0lUY2QY3YoDEXAkAlzuAJzb:r6ecAWDEXAkAlSAlb |
MD5: | 53BA41D44F2966E75DABDAF52E847840 |
SHA1: | C5006B2BE381E74E461E3D206BB3EC9D55E93AC0 |
SHA-256: | 99B5F4A687BE156C752EB5281224DD1AF848AC341D7E11C91F5AE27B3A5409A9 |
SHA-512: | 4B8FAAEB4C9B5FDDE8D85331A5EA41EE09404551F2E519D9C7598003557AF3ACE63DFF460CBB0CDC0B695327E7BBD51F6766FE481C07710D9409F6897D319346 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\testUtil.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1168 |
Entropy (8bit): | 4.189894127521391 |
Encrypted: | false |
SSDEEP: | 24:t1RutLL+zg8VKzAetJnwvoj8cela06dya7Bi:TA6gfzA+nQg8nbAya7E |
MD5: | 3FF01E2CA8E90D15006BCEA0E46C49B3 |
SHA1: | 5C2C1430879431D7F7A38FDC473DBCDC7F26C96A |
SHA-256: | 41DC433E285AF6C65BD7D16EBBDFF86A71213F6A2B91A2D3376312689AD67764 |
SHA-512: | E2D74D58ECA9B38A82340EA235B463B501552CE849F28A0F252831DDB4F2D17325C7FB61D25E31AF555FE980212E601119C82E7A7946349CD3C6ED9CC18DBBC1 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\threadsafe_function\threadsafe_function.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 6987 |
Entropy (8bit): | 4.807404671087354 |
Encrypted: | false |
SSDEEP: | 192:7/u8Qhtlk5FaruHgRjznHzCzIYzlSYzFYzmzhEczDpz7zxzbtz6zqzc:7/u8FwUFW |
MD5: | B82BA334DFFBBE02C07FED42C138EAAB |
SHA1: | 7BF36CDF38FE9A52B0B66203963E779D18947F43 |
SHA-256: | C7C36AAC0F2B62777DDA65D68B0272F7E308E58CBB9F1A47F079F858E77275F1 |
SHA-512: | 073BCAC3DFC0A1C82DD38901C3EEE43C28D05561F3AED8F666EB144A0CC5058E6043311010073127E1F209C4905948262AC5C4C5675761420CA9559724C238A2 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\threadsafe_function\threadsafe_function_ctx.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 346 |
Entropy (8bit): | 4.714664576611174 |
Encrypted: | false |
SSDEEP: | 6:Q/SnMWzBm5J8/gPaCGjNMwvD/1niryYcEGD/1u6peK:CSnMUBmv8/syNDvcrfGteK |
MD5: | B8E37067928041935CA789094A873928 |
SHA1: | E04E24F7E11F89076C9E1DEB061F0A50692EB8F5 |
SHA-256: | 2D4F7DE642E0B3C48B4698709CDD7792E99302A15C8CDE84D39F4DDA339F4B12 |
SHA-512: | A35191A8389BADFA2FCDBED1C2C6C1C060B165079D7110003EFF0CA25657B8C66ED12A8643092933CD9F3CA7F6DB6CF0817C15004CE73AE60351D2ABE9525BB4 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\threadsafe_function\threadsafe_function_exception.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 466 |
Entropy (8bit): | 4.8514101875617 |
Encrypted: | false |
SSDEEP: | 12:CZIYBTy/qT8+bMXCtpSCEvIMXCtqKGCEvTn:GBm/DEMyveIMynKT |
MD5: | A8454DE562342E65CFB653BB2528134D |
SHA1: | 0E62BD860F970776295485D8A9D21791CEA71945 |
SHA-256: | F49DCFA01EF136AF42A3F5E52CFB606E010D28F31FD78D13EAA6A2D9A0F5A3BA |
SHA-512: | 095C276E2DA8FEDFC5FE1E49DC14D17B008CD60852B24A4DAE9B139829D08381882FF0F77408FAE10716D07D3C1E8CC84BEADBB3D396C48A1A3EAF702C105242 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\threadsafe_function\threadsafe_function_existing_tsfn.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 568 |
Entropy (8bit): | 4.724766526140754 |
Encrypted: | false |
SSDEEP: | 12:CSnMUBmv8/sLTr+V928U92Jhx192zPU92zYhxi:XMUBmv8EPqV928U92Jhx192bU920hxi |
MD5: | 96CCF4ACFEE476AD816802D1196CDA67 |
SHA1: | 8719B5DFEAC57D84792A508832008E806154ABF4 |
SHA-256: | 9311BB2A60FA873A3CDCB3BC1D7262685326DAA72B2488AD44DD8DEE433A6666 |
SHA-512: | 8CAADD81C702ECF7165AB0D895B4078A5E6D930CA32D2D8F8F8F9944767CEDB8342A568D5CA66905B6DA455B3686B3229DA707CF683D2FCD3C6F8E78A636D3BA |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\threadsafe_function\threadsafe_function_ptr.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 151 |
Entropy (8bit): | 4.7254527005887965 |
Encrypted: | false |
SSDEEP: | 3:agWLBBbJtfjuAbW1IQ6gPWsLBMsRFXDDLGXlvrejYfvC:QFBm5CngPlXD/G1vr0IK |
MD5: | 92D04A9244E3372E713D3E9744D8FCEE |
SHA1: | 3A55E7A5C40B3BC323250BB984826D939F932D64 |
SHA-256: | 18FD9522DA309BC877DE0FEB60331681F33BE03CCD0F1E44E6E4FA347A4E5E04 |
SHA-512: | F961CD118F89146D6E60392B127F3756D769648B4FAFE2FCF139E82D5392AD3EAB10C48B057603F7900E3A52C7782C543E5ECAF0EAEB2B02AB1B203548CD69E9 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\threadsafe_function\threadsafe_function_sum.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2219 |
Entropy (8bit): | 4.926055079200092 |
Encrypted: | false |
SSDEEP: | 48:szxgY1rB5Fn8zzHPCFsFWjr6WdgWBY6sZE7T4RYrnTO8:sd9Bv8zjPCyWhT2Nc4yrTp |
MD5: | 918E364770CD03B8FC5423C3CC43E645 |
SHA1: | BBD96C3E0C5EBD2BFC68C33F422E4E1182465B74 |
SHA-256: | 47955E82295D84F2C8DA5914D363049D8CFB2074AAA4CE50B87F7043BBF7C0E5 |
SHA-512: | 886979C3F365CEF34DB26A6520175590B5D4BD80D992AC9A796119BBDBF73050D749428BEDE07F0302484AAEC7A8EB6614BF9E9FA431A26EE11DE2A2746605BA |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\threadsafe_function\threadsafe_function_unref.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2740 |
Entropy (8bit): | 4.863941487620277 |
Encrypted: | false |
SSDEEP: | 48:izfttUMGDmRgxW5+Tg42RW8jbK6m6lB33jjbK6L64i2MsVze7bztV8C:qMzxW+rQhZ3H3hu4+swh |
MD5: | 4447B4A877FC33132F90D831C1C31A57 |
SHA1: | D0C3B33692DB025F0F79B2C81B8C0732D2DECEB2 |
SHA-256: | 7E2CDF44354E1B7DF7733549B97A5B38F000B829EFBF07B371702286C9591012 |
SHA-512: | C75073E38416D8FED511AB59AA4802CA3629FF401D59AAAFF5AB204FC43305407CCEE0154CC32B13D0B1FB51D0D52FEEF380B8D3FC4962B5EDF0DF2F09E2D9A7 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\thunking_manual.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 468 |
Entropy (8bit): | 4.850333516959226 |
Encrypted: | false |
SSDEEP: | 12:jRKoClBSQnsDkxpkvedz0z96MQjWlvfNWFIVOTpA:N7UBSQsDQCvenjOEFIENA |
MD5: | 2BA2FA9985843BE1208F2387FA656E75 |
SHA1: | 9C1DC4A17562D3AB1A9FA0CBD11D9BFED7446B20 |
SHA-256: | EE7BB7EDBA09F30F8755E27770B36922847C5488256A821109C941C3C18F9071 |
SHA-512: | 052B878B4737E3F13D269568E7E8D9E753FFB9FB8160F9B99DB003846A02C114CB20E31D795A920C30BB0148AE7D895B3CFB1FA2A85BE92456E237EECE2D7AB7 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\type_taggable.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2155 |
Entropy (8bit): | 4.953027345268203 |
Encrypted: | false |
SSDEEP: | 24:XMUBSQKikPi1pKiUVW7ywH/NG0WaKWFW7oI752CUi1giy/LW73kws45mb7K:rkQYGywH/N+ZkIos5Dk/LG0ws45mb7K |
MD5: | 6020A04A3C11CA2A306B1DF8447059DC |
SHA1: | B6525C9DAD80A4871CDD8724424AFC7E031AECAD |
SHA-256: | 9C5137382E0D94EA3EDA3A96180B01F4E10F9407F81C86F4666E131AE8B4AFC7 |
SHA-512: | 67C26B7A2A267D9770A168E5C5AEC4CEE8B6F9F34DEDBE68A639F0E458970E5DB644D34E87A332B08D89DB1B53F157AF14E2AD82CF0B91FCE52339AEE90B86FE |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\typed_threadsafe_function\typed_threadsafe_function.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 5963 |
Entropy (8bit): | 4.786567198630464 |
Encrypted: | false |
SSDEEP: | 96:7gw8QMt/9/uwisj7RakAuOz1LHz1jzqYz1KSYz13YzDEcz1apzrz1Etz1UzH:7p8QMtlkAFakROzlHzZzqYzESYzFYzDc |
MD5: | A251AB83ED71D5758CF8AC5517BF50B4 |
SHA1: | 55E544C5E8209BD1C7A980564ABA581A853510DD |
SHA-256: | 960E0676D2B43328C6828ACC15752C96785080540FE92D5E05186122681792A2 |
SHA-512: | 503330ED602E3335663079E915AC14D96670C78A64D73EA40D91C5109B1E7F2EFFE43E865BB066A8BB3ED9509E7304F2E07AB88B15FD3159CCFD858862FEDE6F |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\typed_threadsafe_function\typed_threadsafe_function_ctx.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 361 |
Entropy (8bit): | 4.769050261828384 |
Encrypted: | false |
SSDEEP: | 6:Q/SnMWzBm5J8/gPaCGjNMwgcw/1niryYcEZncw/1apeK:CSnMUBmv8/syNDNrf4eK |
MD5: | 546DE689BC2C4BD30464B8228F109FBE |
SHA1: | D9815DF1F5F5C13AA4AED8507AB3CD2FBBB4A3DE |
SHA-256: | EB90706D118145C9E5F08D9BCDF50D9D0C61898C17DFFABD8F31C51A28D173CC |
SHA-512: | 70594E580D532DE041C8977317D0462BA850AB553B3C00DA706C374FA80B9F143A6E3954E4E8D99F5EC565E50568FF9A59DBB6CB23AF8361B55456FEF92B819D |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\typed_threadsafe_function\typed_threadsafe_function_exception.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 308 |
Entropy (8bit): | 4.823104051511892 |
Encrypted: | false |
SSDEEP: | 6:Q/ZIKzBzJ8+bNefqP6cw/mrWtpSCEfEw/lAzmn:CZIYBl8+bMpeCtpSCEff/qmn |
MD5: | DBF39F0149371CDF1F55348ADE1B39E8 |
SHA1: | 38085A5EFD3516633D651D71A505653D46019FBA |
SHA-256: | 467B53B4E69F5EF5D90241E367687A6D9AD9F9F191BD4E9338CF7C204C292953 |
SHA-512: | 4B7C80554A77232E4A6C445C1DD2CA59378423DFB6CD1C39F5E449C8B395A8C8075BC72C02B8AB1BA65615114607BAD20DC94D423B4F67334A1B218B880E6A2E |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\typed_threadsafe_function\typed_threadsafe_function_existing_tsfn.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 574 |
Entropy (8bit): | 4.733383758394559 |
Encrypted: | false |
SSDEEP: | 12:CSnMUBmv8/sLT3V928U92Jhx192zPU92zYhxi:XMUBmv8EP3V928U92Jhx192bU920hxi |
MD5: | 978F59BEF7CF4F2D872E6AE56D1294CE |
SHA1: | EC11D55224126C2DD9F7DC32BAD5C36796651019 |
SHA-256: | F7907B6AF6935060B3CBFADABFB9B12EC489966AE44B3225463ED1CE510C6F0E |
SHA-512: | 8BD237EEEC9BA5A013AF211446A633E2E28DAC7719967B05D58FA1E98B0730AE24826375B70DCB8E634D32AD052E87B8B2F0DC2EE5A343BE990FB4C53E14339A |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\typed_threadsafe_function\typed_threadsafe_function_ptr.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 277 |
Entropy (8bit): | 4.711210044388611 |
Encrypted: | false |
SSDEEP: | 6:QoPnMh0Bm5CngP0Dcw/G1vr0uFKCDcw/GvQJaC:dnMh0BmQnsl1D0uFYIwC |
MD5: | 7D8A4C5748E8FF8CE9C42BB45764A74E |
SHA1: | 959B43CA44494B6AB51D453CA5864CF20C8A4EE7 |
SHA-256: | B8C11DAFD5CC609D5D8696B1049CD68F7D4914F985AB369C17F5E7398A17EC12 |
SHA-512: | A0ADEEA98E2D4E6DB37BAEE36FE470F49D45EDA6E252BD8247DABE23739E8047F16E03AEE74CA7B10C9ED2F865F3FEE6562AFBE5129B89F20D7F8FAE690DF290 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\typed_threadsafe_function\typed_threadsafe_function_sum.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2237 |
Entropy (8bit): | 4.932033832489186 |
Encrypted: | false |
SSDEEP: | 48:szxgY1rB5Fn8zzHPCFsFWjr6WdgWBY6sZE7T4RVrnTT7:sd9Bv8zjPCyWhT2Nc4DrTn |
MD5: | 7033340C3394D5A84E440A7B7304BBCF |
SHA1: | 9CE51E544C74F3FA6A05D8715C5FE0F249721326 |
SHA-256: | D3EBBA073E7EE662F8BE8272D70293256C214192D3C63D89B36702C32EAD714C |
SHA-512: | 26F55EEE63CD560DA2E7F801AF4023828B5A0848A92FDB9917E229F85192E9C22E54C4DE6217FA813D9D17515FC2625D5FC2980B20665B397E16736B452790EE |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\typed_threadsafe_function\typed_threadsafe_function_unref.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2752 |
Entropy (8bit): | 4.871132391309413 |
Encrypted: | false |
SSDEEP: | 48:izfttUMGDmRgxW5+Tg42RW8jbK6m6lB33jjbK6L64i2MsVzD7bzMV8C:qMzxW+rQhZ3H3hu4+s8h |
MD5: | 714EF8EA3AEA9A8A551B8D025411242A |
SHA1: | D47423EF63D6E9D233CC72853F79642722A6886D |
SHA-256: | D10613B84C8ABBCBC32410807A703C093A54B04D32686789450C2B77B05E41A5 |
SHA-512: | F6E6D8B59D4BC04CD66EB834083752BF990850FE40B1EE204ADCE5F01F2D47B502EDFE973EF4A354FA5BA105368D976CE42C1D2935F0773570BE6B21421C11C6 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\typedarray-bigint.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1914 |
Entropy (8bit): | 4.759707531055228 |
Encrypted: | false |
SSDEEP: | 48:rkQshH5GjvGbUu5siK4jsc2tGb4IKGbUu5siK4jsc37KX:rOGYeG+ |
MD5: | 1E7DBA87AAE10931610E509F3AB800BF |
SHA1: | EDBECED4105C60DE94F03DBFA2776EF85BCE5DE2 |
SHA-256: | 73E5D30D5D4151DC43578D8A95A30AAF4D4616B8AE6932F31BE7D53A87E3DA59 |
SHA-512: | 5FB5BDD851429686183014FCC9326D672C0F3BEF9A26720C04BC5FA3329772BA2617DA1E8B8BB193CE2A074F4D63DED5C50FBE7FAF8EAAD80B20A515C33AAF0A |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\typedarray.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 4451 |
Entropy (8bit): | 4.995319256575061 |
Encrypted: | false |
SSDEEP: | 48:rkQsNru26oMziNwKdE1sOzACWuVGbl6ysJE/vRsH4Tscnbzh9CLlGblyKsJsvvNq:rfcNwAqcjssJf2CH/JfW |
MD5: | 43D50A514D3C952DCBECED462ECC2F33 |
SHA1: | BC3231E181A1BA42EE151302CB8CE53007846528 |
SHA-256: | 58E930D55F973B06069193017073675349F6760E9B670706F81D1EB61002BDD2 |
SHA-512: | 79B80C69F4EBDE8436E7266D0BCC2ACDC2AE5D5A34F367F8C2F097D9A25D07189E1A453FECDAEB9733263DF3F6EC27859C0FB61A34AF173BD9C8BE863ECD6F7E |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\value_type_cast.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 3829 |
Entropy (8bit): | 4.898146333530087 |
Encrypted: | false |
SSDEEP: | 48:0kRM8KB2SJ1lwqjSXKJbfrLfy20PqM1fHUAfAb5B8ss0M8t8FJlk8748tdiF:0HmsLrbl0SW0bb5eCkcD6diF |
MD5: | 9A47178425265C0BD28B26CBC0E0A016 |
SHA1: | DA42A6B1E2B274D59621CFE9CB18245DB1F47723 |
SHA-256: | C589511A6965C6869A74287E8420E7A606D20B5FD35DDA78CE03169AEBEBA734 |
SHA-512: | 42FC75BB4BD0890F27272FBBD89934D098C13248413B5E557A5B3BC8ADC641118368E65A1FAF0E5BBDC9C20AA53183D5484A3DD30151AF0430DFCD015D3C2105 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\test\version_management.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 941 |
Entropy (8bit): | 4.608160303751254 |
Encrypted: | false |
SSDEEP: | 12:CSnMUBSQFyfmYSlMf9FRrCRNI7YYTSBInsTvIrGLMq3IrSKi5ptixZtiJiC8C:XMUBSQFy+YSAXTeIsjqq32WeGX |
MD5: | 3550D28EF795899E28C3017210E35062 |
SHA1: | 6FBC5B3D70E083B02AC4DA9F0FCA3A06ED063A9F |
SHA-256: | 68CCE18A5000EEE51EEC685D9B7CDF30FF2704B3F042B908BFFA88142DCBC09B |
SHA-512: | 68CB9F985141929044B291BA540A4B778EEC571217A4ECEA1049B95FA884F3DF6D0D7F814D6151A7708C14745428EC44EB34B3EAE79A1426FA57E21581EF82DB |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\tools\README.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 3217 |
Entropy (8bit): | 4.926428555338531 |
Encrypted: | false |
SSDEEP: | 48:3ZLLUOJJN8urv5xC6YiOCNGtALdb8sbgn14vghToliQejA5dfUeUAhgjLMGKxMRw:3xL3ePvGgn1PEPUJ4ILLKw/Hdyf |
MD5: | 34143C24D232AC62205EC0B7601CB109 |
SHA1: | 3DECBDEED6F0C742925A5BE9B78F5251A4C0B569 |
SHA-256: | 65E9EA918538F453166B10A1D609CF44CEC3D2D01F23FECB5265FB3A4BF303D5 |
SHA-512: | 07DAD1D9C5C618AFC5FE2B8183EA40DB0CD736E0600BA8BDE4F38DB726D85E277C460140EF312C91A748A208FFA72283BE01A224F976F3421F144A2977EA4B2F |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\tools\check-napi.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 3176 |
Entropy (8bit): | 4.715168207401501 |
Encrypted: | false |
SSDEEP: | 48:xDyDtQV0x4Xv1KaWfNX8A4GcaiQLKOUiQQKOq/+AQBh+Y0q1ud/Th:xDHVc4XvYBlMABcaiQLOiQQK0jv+/b/l |
MD5: | 30DFFF807DD17DB0A258056B727BCC78 |
SHA1: | FAA0140EF82603F8BCFA99923F88D7787C3F51C0 |
SHA-256: | 9E1207808023CD998FE9E377AEFBE77D6C59FA129F94E6ACBF24907149D8C11E |
SHA-512: | 6C825B5B28224007EFD005CBF65FFDB52F20400C9C80A2FE45BED375CE8862A656A30367E531315BEBC7D687C7FA35433E65975EB90DD404B42DC9C3B1152AE4 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\tools\clang-format.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2002 |
Entropy (8bit): | 4.949399364905905 |
Encrypted: | false |
SSDEEP: | 48:5OFy5LKJUu4EnBeQtU9ekC2E2h2Rpo/ljIWpIWa:kFMI4EnBeQIZjIWpIWa |
MD5: | E549F9E10D94D3D9C2EF12EC461B2F79 |
SHA1: | 599BF11EB9272E54371B35255C68F7999FE52985 |
SHA-256: | 3E0B5E6D6F1A0C5ED106115871D0FD48F37BAC5554EFFDACAF8D2439F4ED0C65 |
SHA-512: | FBEFE82DFC7EA9E1E13A534348145F26A5395EE0E79B1FAC445D8DB8F9C137CC80B6DE2973D22FE33906B6E166FB65E564A12235AD8DE0E4773193256E5A66D2 |
Malicious: | false |
Antivirus: |
|
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\tools\conversion.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 15013 |
Entropy (8bit): | 5.554404836968548 |
Encrypted: | false |
SSDEEP: | 192:N5NyA2jQTzIxgpscPG/1Zpw2YiXPi+i7y1blqxuCerleZ:DcA2jQTEG+cubpw2vXPi+Iy1bAtP |
MD5: | D021B061D75659901614E8C6F87AA6C0 |
SHA1: | 9B916186796D7E77C067DA569FDB4F58DEAFBFD5 |
SHA-256: | E089CBAD94331AD07DFB103B5D5AAFAAF99FBA89E9674D64F4F35E9DFC432357 |
SHA-512: | B0E361924E70C86FAFD657D4D36F9006187B9F88DC9B1D09ACDEC1D88DA6D4E3006892DD2409E500BC538864685DF5ACEA6509DA05AC8A020659CBBF4BA60266 |
Malicious: | false |
Antivirus: |
|
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\tools\eslint-format.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2071 |
Entropy (8bit): | 5.018331604537307 |
Encrypted: | false |
SSDEEP: | 24:y2y+RJFDmMpxxdVLMwRVyEQZIfMO5iczZCLIh9eLb3mAiRfLoovP/WG9yBBV0eQj:5jFDvxdLhFALaeuXp4/lzIGUWqlQS |
MD5: | 25B89785C5ACDBB07279914A4E320F96 |
SHA1: | C98E334CE1333889E348BBE75864C1713026F3CF |
SHA-256: | BEFBDA4868248093B1F5E4307D28F412D12FA16929CD0C07F5E2575E2635646D |
SHA-512: | 9D8D0847FAC664ED450175F0F792256F3FFEA701DB5B737453B3D96B963C8E3A54F68DFF54C91E73094A6488772561A4A343D2BDA92B5625C1F43CEF2DEE9457 |
Malicious: | false |
Antivirus: |
|
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\unit-test\README.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 637 |
Entropy (8bit): | 4.534046460149645 |
Encrypted: | false |
SSDEEP: | 12:sCPFHfDkQHPsb3L6xj+DkF6AAyJbt1vpgDzPFkFzZfDkBLoM+hPb5:jPFHAQviWfF6AlTpSPFeZABS15 |
MD5: | 0F5E1D304CB6BEA2153C02FF9DB7FB15 |
SHA1: | 5EACF17355CBAB6672FE11CF93CC9465F069E3A1 |
SHA-256: | 0F509BF46C47BC5DD686167ADEA86BD09EFAC4BB6C60845D938A7E252D5AE451 |
SHA-512: | FB0923C956A771A81F4ACF4A7DD688AE24A95D77EA5D2BA910FA2009105BFE56D6805093F247E312AB8469E5FDC3A7196B47C219A05DCAE169607FFAEA667144 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\unit-test\binding-file-template.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1239 |
Entropy (8bit): | 4.971772053048201 |
Encrypted: | false |
SSDEEP: | 24:Cv0pBOYB10P7TbyiMqFS4bIAsuNMM8XK2S8AHU24kBprL3UBavE//aeVreVhPwn:2SOY70Dfy0FS4bTwM8XK6A024kBprL30 |
MD5: | 845B7F8CCD9AC6A5064D0EBFE8119902 |
SHA1: | 43FEC8E20824BF281D2A7883D0AEBECFE9A0463E |
SHA-256: | BAF864D0125C811792D8AF96FD2E4D97C9AFD7017ED1AF313D8BB344D99A0AD1 |
SHA-512: | B40341A8348A8D231079A0532030DB69416F12E299040D0175710F71FB03CDC7D62174DE8B734DB328328F90827473A519B896E63F167A97ED89A43892F20CD1 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\unit-test\exceptions.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 955 |
Entropy (8bit): | 4.665385127447252 |
Encrypted: | false |
SSDEEP: | 24:igxpPwCIMecOa6RBSktWOt1oc3o6m6v+pv:BpPwCIJcOpRt8U1Bvkv |
MD5: | 0CEDB368B94CDA5E2C90F51AB5E987B2 |
SHA1: | BA3BEF1E8BE5A15E0144A3E92EAB906DF9BEF191 |
SHA-256: | CE71208AE79C663A88F3C6AFA8CD5B93A5D86B7A79D2E4227DB7B443D63BDC71 |
SHA-512: | 545F09C1B00A43C408DFFA84DEF92A0B76705A2F6D9CEC4ECD167651AEB93FF13EF8D5C1E034644A52B6B99E1D501C3F3CED47B4DB9D285EBA363150B886AA28 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\unit-test\generate-binding-cc.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1979 |
Entropy (8bit): | 4.918948276470701 |
Encrypted: | false |
SSDEEP: | 24:+nQbLLnyBut9OjhlABRWXMdixDGGSbEn7J4nlm8r0LoMLCLfTmMr1JwQodC:+nQvLkjhqyksSbE7an4ZufTmMRJAdC |
MD5: | 3B2DC6431883A8906827710F732912B8 |
SHA1: | 627EAA42A3ED3B54D8F095D872EDBAD2381EEACE |
SHA-256: | CEE98C4CB4C4A6224D00798D03117B7D8A7D3377916C312D6E9229B19CB1B338 |
SHA-512: | 5E5AE0556D107E3910E9372B7FAFD1475386724A5B5D9C89473784FF3DE8506971A738A7A1769EC1232D5030DBC0BAB4A68A0C2B563EC4378AD63F85561289D3 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\unit-test\injectTestParams.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 4223 |
Entropy (8bit): | 4.876978238690491 |
Encrypted: | false |
SSDEEP: | 48:qnnqYMFRZ76knnqexv5EETBcZgc2vGEX17YKEXgd6MZ8KEC9/gQdZW0:qn/ORZ7LnqexviETB+27l8MZXF7dZW0 |
MD5: | 19366F6AE6ED426AABDFBB3F94AA46F9 |
SHA1: | 83BE76398562E11CE8934B7C8CB35C71A3202104 |
SHA-256: | D3F3DD43BF5055F51CBEAC2BA708772216C6B4B281717F7494F1A5BB490440D7 |
SHA-512: | F088AEDFB91FFF5CFF0CC4648F9EF73DD8517B8CE508ADB2BB67B66864C460A7399D32A304DA5C58C5FC497304F30B3D74BD8F5C448960A727D90F50B2DFDE0F |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\unit-test\listOfTestModules.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 3381 |
Entropy (8bit): | 4.9949594730228 |
Encrypted: | false |
SSDEEP: | 96:P+Sef+XL6z0eUNGeyrZDSTlbyZEnM5dtZgap:PZef+bQ0eUNGftDioZEadvB |
MD5: | 3FD826E12F5799590AF238A0A6363D21 |
SHA1: | B043BBBA89FB6C4061CB3240AF75DEDDC9CE6A1C |
SHA-256: | 6F2F24CA09753D3EE08E8DBCD9DC837E9937FD6E5540D07A0CA9A6A744615902 |
SHA-512: | 1D75D22529651102790505B4204501C9F84C28C222D3250E5A8CA9C7E9F46E77003F1D7D28B479DBC61B4456ABF54B6CB26DEA5F65C618CF9C365E1C6B0C214F |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\unit-test\matchModules.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2668 |
Entropy (8bit): | 4.907941201161906 |
Encrypted: | false |
SSDEEP: | 48:+nT8olYM/TR9AwtE9GWDEl79uA6WElvlASDYG18Ad016Tv64OdML:+nAob/ptE9GWDEd9uApED1DYG/0R4OA |
MD5: | E8E92C29D37F41160029E30E09F60AF0 |
SHA1: | 646387F724CB4683C918284F7143E4C0ADA373BB |
SHA-256: | A1B729EF749317BDB3E2310DDAFA4443FAAAAAB8B9A69C368C998D6B78C026C3 |
SHA-512: | 0135BF2CB95BFE3E997A3AD7968045ECFB384B8C72D695C7A68B49D6872A6D2878DFEEAE0448CCA2F2393A6515E0B394B16D2C11B5ACF1B82D0373798A0BEF94 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\unit-test\setup.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 472 |
Entropy (8bit): | 4.791329282780677 |
Encrypted: | false |
SSDEEP: | 12:+LLtF7v/JJDN4aEP6JHyTIUavLQyTYLhT47wA5sMcBAWc:+LLnJJGjPFTIUaj9TYLm8+8mWc |
MD5: | D300BF3918B161C84941312ABB1895AB |
SHA1: | 2B415571D7A38F8CEA7A7CEBB203451C0924F11E |
SHA-256: | 019A8E6700306C097DA63159E3346DB844454E6286811614CB2B6B67901BA607 |
SHA-512: | FB002683FA8FE2149E97FBFE2EEAC6FD27DDB0214BFB8C53A8ED4CE95FB1D54894047B2048279B59ADBF522FC3FE1FA4113F11ED46F3667F9B390312BA6CE946 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\unit-test\spawnTask.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 699 |
Entropy (8bit): | 4.662830614683603 |
Encrypted: | false |
SSDEEP: | 12:ZwTUBbmVDMNxjZveLG2CkdkbLGELvkdQQ1XzSFVmLQdIvFE4SdemLQjCvF3XDecX:2IBbmWNWS2Cy2SELy/CcRdKlPd7 |
MD5: | 7136EA085D0CDF46F4948D4D567373E3 |
SHA1: | B00384764F628BBFF2C18C32B9D6DA30E92EBFE3 |
SHA-256: | AB0A36968D0E70E705E5DE04E33817A377FA99CA47FA39397B3938953E219AB3 |
SHA-512: | 5CFC9945A1FF4D0C5C4EF0714329D7A7DBABF8A99AC8FEA7F0A8622F032F7D1C7F7C22144704682B8618D7CD6BD3091F38B4F78319D0198C2CAA643F3207E83F |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-addon-api\unit-test\test.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 909 |
Entropy (8bit): | 4.882370375523992 |
Encrypted: | false |
SSDEEP: | 24:ByRsaB2PFrdF+BEfw8FO8B5Et8zICoMqDUgz:QRsaBqVdF+BEfz7/E2aFP |
MD5: | 809AE2E47E4AA33B80D567E5BA309F3E |
SHA1: | 99BA60FA56A6C852A88EEC4F14CC61C4DF7B1485 |
SHA-256: | A01263D7383E979F05BF373367C81A96C8E3B0F5ED1B982727EEF00D86C3B7EB |
SHA-512: | 2AC83392BC7BA06494027A7A88398E078C2EF7956D860FBAC626ADF0AF40B3162E0C9492B8FAD16FA45D49B64EC4EAAE12E8AA8D6FA46072A6066060606784C3 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-api-headers\CODE_OF_CONDUCT.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 159 |
Entropy (8bit): | 4.776973145899778 |
Encrypted: | false |
SSDEEP: | 3:SjAFgSFeZFmpECFkRL9ZGXx9eFuRGEd7LPWfz+SEHMgGrA:SjAqSF6FFL9ZGXxsFux5WyS+MFrA |
MD5: | 80D44D5D4ADCF57984365FFE00994B5E |
SHA1: | EDE7EE4913F31D530C9402FE555D00F961D1F416 |
SHA-256: | 4C771222BB82F2BD7D2B1B78A29E97B62244D198C065A815FF2C49F59C14FE84 |
SHA-512: | 1CDB36216FC7DECA133CF6CD9FA7F4B0316C7DD3B6DAB858F0BFE46F34A1BE3E702C91E4E6A8C293B73CD6B177645FCF0DE60ACD1E11F0DC1FF0A967246C7720 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-api-headers\CONTRIBUTING.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1287 |
Entropy (8bit): | 4.489124530048509 |
Encrypted: | false |
SSDEEP: | 24:QwR9mO04Jm6unbvCFKFtW68NL1Yh9eaYZgWL:TR9u486ovC8Xl8No9eGs |
MD5: | E7C96C2F22F829B62B0984A86BB04E3A |
SHA1: | D9269339855C5617C062320B0A450184AE44DFC7 |
SHA-256: | 2AD4BF62C8A9E29E6633266790E6C6D43E3A50FFA6385199872AED4281411817 |
SHA-512: | 3B8509DA9A95D9548914871ED3288D7F421133F74CCB3A1F9D37863DBC45A3732AE152E4E425DD06E705881CBD64C40EF77579F4DFCF805B58663762BE083507 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-api-headers\CREATING_A_RELEASE.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1859 |
Entropy (8bit): | 4.694649490608221 |
Encrypted: | false |
SSDEEP: | 48:bA6xsN00E3BM71Vr1Cyj4++RCkiH+XuD6:sFN0VK7Jjjz+R3ieXuu |
MD5: | 69AAE1958FB16B326D9D83559EA14621 |
SHA1: | 020191C00F6A46D341B97CC398D2306E3E8C3172 |
SHA-256: | C58CD189E6CFE32F5EE847F51E4C67E9C6C1618D8DEA28263598B8B9B4DCA14A |
SHA-512: | 87A11F3458073E489FB215B0366721552E1D02324AAE5CAC463CCDAD713D6DAE921C888D8AAC36285C301C59EFDD62114E18B67DB48B97FD46667F5AD97EE81A |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-api-headers\LICENSE
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1064 |
Entropy (8bit): | 5.099693971203208 |
Encrypted: | false |
SSDEEP: | 24:VermJHHH0yN3gtsHw1hC09QHOsUv4eOk4/+/m3oqLFh:QaJHlxE3dQHOs5exm3ogFh |
MD5: | 6ADB2909701D4605B4B2AE1A9B25D8BD |
SHA1: | BD154892BAFFC0504F1ED936D83882D209BEB0CC |
SHA-256: | A553508F516031C91F3AF1148D44970CB81BBAE6C4F091BE6835D39CC252238C |
SHA-512: | A60FB76E9DDF6CA0DB27CB5FE5956FDBAB8923130FE8D3B06ED2E33DD79C4E75FBFC3B11D91484313CB9E81667F6C0D89A27F3A06E3DD24686C5662D20B90C19 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-api-headers\README.md
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 3476 |
Entropy (8bit): | 5.020707025678678 |
Encrypted: | false |
SSDEEP: | 96:Ezq/+9OojzdGN05JKF9gW+nP/f9cWKsWKmGhnjRo8wD:Ezq/+8ojzdu0nKFd+nP/f+NsNmGhj4 |
MD5: | BCB683ABC22349344F9BF154130BFCC6 |
SHA1: | 0A9F5B8B81A648D11B0F5090F41A5D49AF63FBAA |
SHA-256: | D0543E7F486BA3E223D44F2AC6E9324843355C5EC3DA2B7ED422533370E067D9 |
SHA-512: | A52779E64CC72AE745C9CF9A16286E217A9B9ACFD9834DBD00CC1983058516E99BBB64CAE45655C64B8AE6A2C7C588EB2E6F477E40B943C3B77EADBD4F9398B0 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-api-headers\def\js_native_api.def
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2552 |
Entropy (8bit): | 4.217542889652023 |
Encrypted: | false |
SSDEEP: | 48:Ix2eU2ivcUxzOkoXfuFSbB3pBKb8fVSJSPSn3wDOc9Q:IxJU2ivcUWXfp3vKb8f4kwwKcu |
MD5: | B98F6CAB5AEAA25E52C875074A43BB47 |
SHA1: | 2D846A43A62F78A05B2673210963151AEA0AF75D |
SHA-256: | 960BE34EBAD9556120F7DF844D1BA43DA886FF4D7585F9B6BBB05C5DE142733B |
SHA-512: | 527349477217963C3344BF316283551BD4EE5748EDC8D28CB07D649F966844F5D22EFBC4D2D959A8609561F765AE21FAEAEE3A00806ECF8563B34D88A715D1AE |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-api-headers\def\node_api.def
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 3328 |
Entropy (8bit): | 4.238441566971149 |
Encrypted: | false |
SSDEEP: | 96:IxoniJHPq6U2ivcUWXfp3vKb8f4knTCPswKcT:IhJv7UNvcU2VvKaCPswKcT |
MD5: | 9719C72F6A0CF9B30F3E2DD7A25B9D6F |
SHA1: | F530AA8E6013EA3B1552F98183085021F6C53464 |
SHA-256: | 1C17BE5C862211DEC76FFCA62071A56AE37D8F84D6638BC10CF9BCA207B6B8C7 |
SHA-512: | 9B82F28018E17BDDFFD9B80112B6F3EB3C6BACD8618354989B4B84A74E584455D7C9012773AAFEC42804C93710C44C309EDABB9C70CDB89A5620635E5616FABF |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-api-headers\include\js_native_api.h
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 30688 |
Entropy (8bit): | 3.811516884851908 |
Encrypted: | false |
SSDEEP: | 384:4GgvnA4VTY6kMUZn5RS6ppGHgtHM7HbtLCz:49A4VU6kHZn5lGEs7HbtLCz |
MD5: | FFBC1E7217352DAB106C1A631891F38F |
SHA1: | 3483B26AE4C554182A2E797B5C17347D99284A49 |
SHA-256: | 0F2065C6D59D639E29DADEFA209D5F4D10929545C6C1FD184D69EB48BD719205 |
SHA-512: | 3A3E326A9F2D325E119B512984907E2996FDB2ABF6B1F21972EE81000E34AB2473E6BF145C7CA69D5F707EE195241897F9F7ED160205B794B3288D6BB4CAA59C |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-api-headers\include\js_native_api_types.h
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 4543 |
Entropy (8bit): | 4.9136601028372615 |
Encrypted: | false |
SSDEEP: | 96:QyKRkR/zi2M/r2LR6hRr86AyrUHvdsSweR4pR9R2R2Y:bhGCQJcvdsSJ4Tnq |
MD5: | E0C20624B27887D4AB449722DDBF424C |
SHA1: | 2804DAA310AB3742794A411A7967994AED815282 |
SHA-256: | 7D805521F313D58AB00395B55019DBEE8FA71CEE21EF89E09521998E879A97B4 |
SHA-512: | 588B079A2F486BBB9D9F46C0EEAF49B359CF44CAB090E2FABBFD3F507893A0F92FF1F627F624859636F8DB3397DD518E86E4B77BDBCD3B73CE281B2CF7747508 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-api-headers\include\node_api.h
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 10070 |
Entropy (8bit): | 4.520409040429521 |
Encrypted: | false |
SSDEEP: | 192:/au8bOh98n9Vg7iECm/6O6dG4ZGhIIjWnIJo1cQukvAkup:/au8bOhSeRJ86kYkE |
MD5: | 0394F8748E51CB934DFCDC23CA521448 |
SHA1: | D7829DFA5AAAB598B911ADFDB52F07B9BAE0C6E4 |
SHA-256: | 89435A0F172A459AE7BA6A1829D3B6A2B727981A815EFDFBCA4D8DF8729443C3 |
SHA-512: | D32E024D1D837140C29C22524CB459B27E295A91BB83F7F326BD2B73F1A2B30D7CE3EBAC929968211FDBD23DFD4184DE7FC5849B249C83BA65B41D80B79E1DD2 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-api-headers\include\node_api_types.h
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1603 |
Entropy (8bit): | 4.992260892336601 |
Encrypted: | false |
SSDEEP: | 48:RZVJ2M6eLA2c0ELcncR8RycJRS58cWsJOd/g/6KgRc1:aeLM0VncR8RTJRS5hM5UT1 |
MD5: | 8E9D5DDBA747267B628AFE7D6554F9D7 |
SHA1: | DECF8452AA1A854FA3358466CD86B1B486074EC6 |
SHA-256: | 8D5D854088D5725FEC9775510E0AEEEB790A41AD083C49BB721D950B86E6BD61 |
SHA-512: | 555DB0A531DCD3FB15C76AA2A46019FC0AFDA1366ECFE0DA435216C0F067407091952EDF846CADCA1F3FFF716898EDF2D8FB893EF7F154FCFDB57D66F124BF72 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-api-headers\index.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 391 |
Entropy (8bit): | 4.738241426815586 |
Encrypted: | false |
SSDEEP: | 6:QKG+ceyQYA3WV4qEFaqBIdEFtn++gRVIiM9d21WBSYA3W6u0FETYv:obe9t3WeqEFaPEF252By39jFeC |
MD5: | 6F6B826912036AEB32162A7AF28604B5 |
SHA1: | 6A569274EE6F5F23A88149D0396D524BD649A517 |
SHA-256: | 22DA40F7AC5C1B9EC08261AF5C6835B848D40A9C1751AD06163F4FA28E7850D2 |
SHA-512: | 5E8B9035274783364EC38BBEA4C6C775935B300B03B2DA9FF3D5B25DB4E26D3E107D3FDB048E148D232D015F6C40927B561F98E85F179B6EE75284552F33F691 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-api-headers\package.json
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 455 |
Entropy (8bit): | 4.66186004466075 |
Encrypted: | false |
SSDEEP: | 12:mQNAvCyir1gk4h5WcC6aitsRHbmF25WcQV1tku:mQSvCyiJrIWcteR68Wce1Su |
MD5: | 7735944D83FCCE7BEB7E30760C233A2A |
SHA1: | 8EF9D9526E7188DF0248D617C40F38C9B08BAECF |
SHA-256: | 47D15FDD2609D3E251F84338AB62F3290A43D27C76D620132507369215C78647 |
SHA-512: | B86B6B43F211712B36B01F0F2FD489807EDC20296248DB7F5698BB4CE3A422DC20130D2F534111F3878B18BBBB225569173166BCA0D7E2C92ECD39E9A5A7BD62 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-api-headers\scripts\clang-utils.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1348 |
Entropy (8bit): | 4.2959423005075426 |
Encrypted: | false |
SSDEEP: | 24:RZ8MdvfThT0YwULAw2rSxsAwfrABONmar9Svqu8vSvo8HB5+:X8Mdvb/APA1cr9Syt61Hz+ |
MD5: | 925FC8BCDFF1C974E90EAD77C22F15EE |
SHA1: | 6B336C166BD3A253EA081FCAA3BF42068CF87E4D |
SHA-256: | 5A0867A36B1257E74D50CB6EF053473C7E33D419DB5C433ED3C7CDBE5E3A64AF |
SHA-512: | 5DA44702201FA6D8CBA82E1EC56DB459E47EBF0A1FEF6EFE4B1312F6B6CB2CBA3EF0FCACE79BE55CBC9198FBA2F8F3E018DA31ABF5E27368C0A7FEA8D05B2CA8 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-api-headers\scripts\update-headers.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 5968 |
Entropy (8bit): | 4.439964282065222 |
Encrypted: | false |
SSDEEP: | 96:wbcA2ARwRC6Kx/maMLC4VsiCK47i4zZNi91RC07Z023rOadfC:AcAURC6Kx/zMLC4LCK4+49Ni91RC07hG |
MD5: | D03196AE2A0EA9758C820E6C1475C6B1 |
SHA1: | 5D50E59044DCCD5D96FA48CB619C87B70BFC8203 |
SHA-256: | F14BFB0927F8608E5A2B250F9FEEE8F74FD9D99B1CA3CE055A5C8A850303BD0C |
SHA-512: | 060267F500CC164D5B695A9EB943F6ECA94983EC55ABBF10A104159AEE7B4F910E4DBEF6DDB6FD62DF26755B06885DB8746CD6465901EBF734FBF87B4D71A187 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-api-headers\scripts\write-symbols.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 4561 |
Entropy (8bit): | 4.8196145378982695 |
Encrypted: | false |
SSDEEP: | 48:vEQ3v1s9EHE5fOTLXrs61kBfK/LmgDty39y2FPWkjJ35Nhii9SiiQQUcNaX4919y:8Q3tP5kBCqtyIj+ifiQaNeDXK91RsIfC |
MD5: | 1C5ACEB97BD0596EC43062EC90FED7EC |
SHA1: | 32E5A523DC084368279474A72564AF193F426F9E |
SHA-256: | E57054066677A3D22ED686E46D572573CE6F11056745131683673403C83B9B34 |
SHA-512: | 0E16845F169DFCA1685005D79B65CA0E1BCDACC1307C2A477BAF4758B079C9AD46F994A6FE112B766AB017BDD3E4E3B3CD800CB7151F1667A18C0F0E63909163 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-api-headers\scripts\write-win32-def.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1508 |
Entropy (8bit): | 4.848393354900309 |
Encrypted: | false |
SSDEEP: | 24:cU2TvSz04JFepDFWFiQpA5+SZb3gJFepSFiQpA5+SZ/2Es+yDIt8GMUP7V8GMU2+:t/z0I4p+iQcZbg4CiQcZ/2E0I2GM0iGF |
MD5: | 5FE301D0B6D5326A06097966C02A7BCC |
SHA1: | 23875AA52EEA8A46E90907232C78F9E61464A8FC |
SHA-256: | A6FF16AE4F78B7C55C5EB5F1942EFBA210AD33249D24284CB31B68462056048F |
SHA-512: | 6866022F044449E30DF81EC1953C86236D5F203DE061A669A406C650A5EB0E55A278DC11780DD68EA8899FA1FBAE579207CD3ACA195EC9786B3B0E12C9EB6D9C |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\nssB89F.tmp\7z-out\resources\app.asar.unpacked\node_modules\koffi\vendor\node-api-headers\symbols.js
Download File
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 6324 |
Entropy (8bit): | 4.2641500265477 |
Encrypted: | false |
SSDEEP: | 96:JpolnHsijLuua+x+4apSD2JRrmDa9xl/TBDze:JpolMijSuOZJ5v9xl/TBDze |
MD5: | 66F2B4DA7B852C421A02520F6CF8AD3B |
SHA1: | E415EECA00008B2E4953C35F5A25D532882411A8 |
SHA-256: | 4898BC861FE3765155727A0F03CB740BA033B74EAE06E8767039570D3DA16F9F |
SHA-512: | 88DBA9DB3B90C58BBAB2DC0C1671EED0583442F61A8A99FEC7C47525ED316D3CA5D2FF1D4022FF82317B346C27E876E755BEEAE29118DB200AA97442F8674991 |
Malicious: | false |
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 107520 |
Entropy (8bit): | 6.442687067441468 |
Encrypted: | false |
SSDEEP: | 3072:1bLnrwQoRDtdMMgSXiFJWcIgUVCfRjV/GrWl:1PrwRhte1XsE1l |
MD5: | 792B92C8AD13C46F27C7CED0810694DF |
SHA1: | D8D449B92DE20A57DF722DF46435BA4553ECC802 |
SHA-256: | 9B1FBF0C11C520AE714AF8AA9AF12CFD48503EEDECD7398D8992EE94D1B4DC37 |
SHA-512: | 6C247254DC18ED81213A978CCE2E321D6692848C64307097D2C43432A42F4F4F6D3CF22FB92610DFA8B7B16A5F1D94E9017CF64F88F2D08E79C0FE71A9121E40 |
Malicious: | false |
Antivirus: |
|
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 310242 |
Entropy (8bit): | 4.161808375572815 |
Encrypted: | false |
SSDEEP: | 3072:x639kvvDaxLwqU1pedJ/sK6VrKe5VtZW1P3BU5qt5IiVboVKdc5:x62vvKwqIu+KgV0PRU5qticrdc5 |
MD5: | 8E8920B608B962E073BA3A15B7BBB1FE |
SHA1: | 60995EEA8977BF2EFA21D35464D7B93954332AA3 |
SHA-256: | 8E105F7073C063E658E245EF779FC2DC98504C2A80AF1A699CD7EB8958572AFF |
SHA-512: | 56151B21182BA409D9F74DEF2927C3F19F6AB09F2581ECC62E7B8CC24891ADCFE043A9DE8887E4ABE267DF1E17FFA4747B651CD6A9515A66F1543EE2FA84063B |
Malicious: | false |
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 180436992 |
Entropy (8bit): | 6.752433972463824 |
Encrypted: | false |
SSDEEP: | 1572864:ZOzoFp1uzWYCKLT08vzzFN3hK7hYOWFZdL3m4aazO3+v591RxmLVhe:1ub7xmL |
MD5: | C1290736DF9A2094B6039AA50D48C442 |
SHA1: | E635B13692ADEA94A7B4ADC3B3AE545FE4910AAC |
SHA-256: | 0FBC573B2546E90E82CC4B26D5F20B478ED55F4B6F13EE524BE270947CC8FF92 |
SHA-512: | 45122D4F93189EAF22E48D2DDB93943436E23AB526A29B9BA70E69FD2292105C00610E5D9BEA9C8287881DD76D88C42DBCE5061EF6458CA88924337F86878DA5 |
Malicious: | true |
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 662053 |
Entropy (8bit): | 5.1763132499577615 |
Encrypted: | false |
SSDEEP: | 12288:I97k1vtORkeGWFDjesZeLEY4QUH7zRpA8W:I97k1v42eGWFDjZ427/RpAB |
MD5: | 95FBAA11048D03E4205EEFE0A631B694 |
SHA1: | 0B96FCEC99112DBF855EC23001E231C11187633B |
SHA-256: | 0C063D0737CBD70D3029324C213518DDB8CA40EF4417609AF05973AFF1FD24C9 |
SHA-512: | BC0431E120166B0BE912D55478159D89F4DD15055520DE4B7323457825AC507E21B3B4EA690950E09E267F2DFD4D9DF23D91C4C4B1B70B1BB3CE10BD047A52C1 |
Malicious: | false |
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 5475328 |
Entropy (8bit): | 6.341303717117767 |
Encrypted: | false |
SSDEEP: | 49152:mgQpJ5yZBtfCp00oSO8hCsDsbJQk/tJ4q0nLhII1ytiT45z+WEjNHsRLf7OFJOMZ:un5yZBXLxkf5FJIayS |
MD5: | D709D2D427F8DDFA79C525AC73A276B7 |
SHA1: | 5044A6A5F05F121820A8AA8A78FD2BD94F9DB69D |
SHA-256: | BB15D6E52BFD91A9FACFDE9AB777FE881E51011FD76EB4D674495FEDA1708B07 |
SHA-512: | 92DAA8DE0428774BB9494BB9F5A5AD58AAE91AB91E3A4ED9003538ABC54E7BD399FB0CD51D83FEF3655503A0909060A01E44066EE7B42DF34F5BE4858EB72918 |
Malicious: | false |
Antivirus: |
|
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 106 |
Entropy (8bit): | 4.724752649036734 |
Encrypted: | false |
SSDEEP: | 3:YD96WyV18tzsmyXLVi1rTVWSCwW2TJHzeZ18rY:Y8WyV18tAZLVmCwXFiZ18rY |
MD5: | 8642DD3A87E2DE6E991FAE08458E302B |
SHA1: | 9C06735C31CEC00600FD763A92F8112D085BD12A |
SHA-256: | 32D83FF113FEF532A9F97E0D2831F8656628AB1C99E9060F0332B1532839AFD9 |
SHA-512: | F5D37D1B45B006161E4CEFEEBBA1E33AF879A3A51D16EE3FF8C3968C0C36BBAFAE379BF9124C13310B77774C9CBB4FA53114E83F5B48B5314132736E5BB4496F |
Malicious: | false |
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 961024 |
Entropy (8bit): | 6.59750083195471 |
Encrypted: | false |
SSDEEP: | 24576:+awxZ1onv5Sp+D9R6StDWb36Z5W1DYsHq6g3P0zAk7Mh:LSSApY90IDWb36Z5W1DYsHq6g3P0zAkw |
MD5: | 9AC2B03DF92E7A9296850D600847147E |
SHA1: | BF4F04FBBD2E36BE6D9C52151970FB27849C853B |
SHA-256: | 822CDA1133A8542566404BF854D72F45B02D154508F3C621D5FA01DDF3FE53F8 |
SHA-512: | 3B1F9517F591D9BD20FC80FC479B8BD98A75D94244EA0DEE114259B4325871ADA3DA7857C6C8F7F550936663A7EF55DFA7E22EA18D16AC3B64507224DF15CDCA |
Malicious: | false |
Antivirus: |
|
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 12288 |
Entropy (8bit): | 5.719859767584478 |
Encrypted: | false |
SSDEEP: | 192:1enY0LWelt70elWjvfstJcVtwtYbjnIOg5AaDnbC7ypXhtIj:18PJlt70esj0Mt9vn6ay6 |
MD5: | 0D7AD4F45DC6F5AA87F606D0331C6901 |
SHA1: | 48DF0911F0484CBE2A8CDD5362140B63C41EE457 |
SHA-256: | 3EB38AE99653A7DBC724132EE240F6E5C4AF4BFE7C01D31D23FAF373F9F2EACA |
SHA-512: | C07DE7308CB54205E8BD703001A7FE4FD7796C9AC1B4BB330C77C872BF712B093645F40B80CE7127531FE6746A5B66E18EA073AB6A644934ABED9BB64126FEA9 |
Malicious: | false |
Antivirus: |
|
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 87325986 |
Entropy (8bit): | 7.9999965644354845 |
Encrypted: | true |
SSDEEP: | 1572864:f9eyHWNREPsHOrTkGfShdCrto6VlVes3/G+nJ/THR5T02NeJmoOJNbF3/:fa+NnjahsK6VLxdHj0uMmoWbFP |
MD5: | DFE6985151652242F50396F0364E73B7 |
SHA1: | BBA19EBB1CB785F9A736C124E126B585BA11C9C5 |
SHA-256: | 9B3C33DBE74B626195DCA558BE990EE89DF61E4E25A2FB1FFE60ACC21E46CE5F |
SHA-512: | 8C6279855E3E35314642B80CD616CC113260D0C688EE699A1A2B109F413A3E63D7BF82C8BC17C6B9F42BF9A74111C62DDA7B9CA3C1045ACC3AD2780B645C8667 |
Malicious: | false |
Preview: |
Process: | C:\Users\user\Desktop\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 434176 |
Entropy (8bit): | 6.584811966667578 |
Encrypted: | false |
SSDEEP: | |
MD5: | 80E44CE4895304C6A3A831310FBF8CD0 |
SHA1: | 36BD49AE21C460BE5753A904B4501F1ABCA53508 |
SHA-256: | B393F05E8FF919EF071181050E1873C9A776E1A0AE8329AEFFF7007D0CADF592 |
SHA-512: | C8BA7B1F9113EAD23E993E74A48C4427AE3562C1F6D9910B2BBE6806C9107CF7D94BC7D204613E4743D0CD869E00DAFD4FB54AAD1E8ADB69C553F3B9E5BC64DF |
Malicious: | false |
Antivirus: |
|
Preview: |
Process: | C:\Users\user\AppData\Local\Temp\2nL7nS3HEmMzaquEkAHxy2ighT7\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2 |
Entropy (8bit): | 1.0 |
Encrypted: | false |
SSDEEP: | |
MD5: | F3B25701FE362EC84616A93A45CE9998 |
SHA1: | D62636D8CAEC13F04E28442A0A6FA1AFEB024BBB |
SHA-256: | B3D510EF04275CA8E698E5B3CBB0ECE3949EF9252F0CDC839E9EE347409A2209 |
SHA-512: | 98C5F56F3DE340690C139E58EB7DAC111979F0D4DFFE9C4B24FF849510F4B6FFA9FD608C0A3DE9AC3C9FD2190F0EFAF715309061490F9755A9BFDF1C54CA0D84 |
Malicious: | false |
Preview: |
Process: | C:\Users\user\AppData\Local\Temp\2nL7nS3HEmMzaquEkAHxy2ighT7\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2 |
Entropy (8bit): | 1.0 |
Encrypted: | false |
SSDEEP: | |
MD5: | F3B25701FE362EC84616A93A45CE9998 |
SHA1: | D62636D8CAEC13F04E28442A0A6FA1AFEB024BBB |
SHA-256: | B3D510EF04275CA8E698E5B3CBB0ECE3949EF9252F0CDC839E9EE347409A2209 |
SHA-512: | 98C5F56F3DE340690C139E58EB7DAC111979F0D4DFFE9C4B24FF849510F4B6FFA9FD608C0A3DE9AC3C9FD2190F0EFAF715309061490F9755A9BFDF1C54CA0D84 |
Malicious: | false |
Preview: |
Process: | C:\Users\user\AppData\Local\Temp\2nL7nS3HEmMzaquEkAHxy2ighT7\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2 |
Entropy (8bit): | 1.0 |
Encrypted: | false |
SSDEEP: | |
MD5: | F3B25701FE362EC84616A93A45CE9998 |
SHA1: | D62636D8CAEC13F04E28442A0A6FA1AFEB024BBB |
SHA-256: | B3D510EF04275CA8E698E5B3CBB0ECE3949EF9252F0CDC839E9EE347409A2209 |
SHA-512: | 98C5F56F3DE340690C139E58EB7DAC111979F0D4DFFE9C4B24FF849510F4B6FFA9FD608C0A3DE9AC3C9FD2190F0EFAF715309061490F9755A9BFDF1C54CA0D84 |
Malicious: | false |
Preview: |
Process: | C:\Users\user\AppData\Local\Temp\2nL7nS3HEmMzaquEkAHxy2ighT7\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 24 |
Entropy (8bit): | 2.1431558784658327 |
Encrypted: | false |
SSDEEP: | |
MD5: | 54CB446F628B2EA4A5BCE5769910512E |
SHA1: | C27CA848427FE87F5CF4D0E0E3CD57151B0D820D |
SHA-256: | FBCFE23A2ECB82B7100C50811691DDE0A33AA3DA8D176BE9882A9DB485DC0F2D |
SHA-512: | 8F6ED2E91AED9BD415789B1DBE591E7EAB29F3F1B48FDFA5E864D7BF4AE554ACC5D82B4097A770DABC228523253623E4296C5023CF48252E1B94382C43123CB0 |
Malicious: | false |
Preview: |
Process: | C:\Users\user\AppData\Local\Temp\2nL7nS3HEmMzaquEkAHxy2ighT7\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 48 |
Entropy (8bit): | 2.868671614087538 |
Encrypted: | false |
SSDEEP: | |
MD5: | 1120A9C6AA8D7CA41AC03B895FA82288 |
SHA1: | 7C93739D39160CC1B41EE0BF7D77B34B81E359DD |
SHA-256: | 15C09F07958989A731F95E5C6E4BBD9273AEBD82325794AA13DE3D978017064F |
SHA-512: | 09BEC244DAAF9EE4D293799856345B02B2A7EF8D3A173F61D3DD017298CA124880D81DF94FD0791E29B859A75D437E6E04053C27586A29F1739254AF7170F81B |
Malicious: | false |
Preview: |
Process: | C:\Users\user\AppData\Local\Temp\2nL7nS3HEmMzaquEkAHxy2ighT7\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 48 |
Entropy (8bit): | 2.868671614087538 |
Encrypted: | false |
SSDEEP: | |
MD5: | 1120A9C6AA8D7CA41AC03B895FA82288 |
SHA1: | 7C93739D39160CC1B41EE0BF7D77B34B81E359DD |
SHA-256: | 15C09F07958989A731F95E5C6E4BBD9273AEBD82325794AA13DE3D978017064F |
SHA-512: | 09BEC244DAAF9EE4D293799856345B02B2A7EF8D3A173F61D3DD017298CA124880D81DF94FD0791E29B859A75D437E6E04053C27586A29F1739254AF7170F81B |
Malicious: | false |
Preview: |
Process: | C:\Users\user\AppData\Local\Temp\2nL7nS3HEmMzaquEkAHxy2ighT7\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 24 |
Entropy (8bit): | 2.1431558784658327 |
Encrypted: | false |
SSDEEP: | |
MD5: | 54CB446F628B2EA4A5BCE5769910512E |
SHA1: | C27CA848427FE87F5CF4D0E0E3CD57151B0D820D |
SHA-256: | FBCFE23A2ECB82B7100C50811691DDE0A33AA3DA8D176BE9882A9DB485DC0F2D |
SHA-512: | 8F6ED2E91AED9BD415789B1DBE591E7EAB29F3F1B48FDFA5E864D7BF4AE554ACC5D82B4097A770DABC228523253623E4296C5023CF48252E1B94382C43123CB0 |
Malicious: | false |
Preview: |
Process: | C:\Users\user\AppData\Local\Temp\2nL7nS3HEmMzaquEkAHxy2ighT7\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 48 |
Entropy (8bit): | 2.955557653394731 |
Encrypted: | false |
SSDEEP: | |
MD5: | CCC3EA938BD24A090C629EA2DBBECC8F |
SHA1: | 9A5D293D6F1FF831CA91B4587169844706F6E2DA |
SHA-256: | 3A10869A597FEB6E6D048099EC70809920896ED8FAE12DB68FFCF132050CA367 |
SHA-512: | 54D140319A56266A795AF13105478FA2D6E269001366B9B0E8C6378A28CC50CF31CC32842EF6AAB8CDFC21DFE09D647D78DF4ACA051C5EBF9E7C2C54AE89E123 |
Malicious: | false |
Preview: |
Process: | C:\Users\user\AppData\Local\Temp\2nL7nS3HEmMzaquEkAHxy2ighT7\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 48 |
Entropy (8bit): | 2.955557653394731 |
Encrypted: | false |
SSDEEP: | |
MD5: | CCC3EA938BD24A090C629EA2DBBECC8F |
SHA1: | 9A5D293D6F1FF831CA91B4587169844706F6E2DA |
SHA-256: | 3A10869A597FEB6E6D048099EC70809920896ED8FAE12DB68FFCF132050CA367 |
SHA-512: | 54D140319A56266A795AF13105478FA2D6E269001366B9B0E8C6378A28CC50CF31CC32842EF6AAB8CDFC21DFE09D647D78DF4ACA051C5EBF9E7C2C54AE89E123 |
Malicious: | false |
Preview: |
Process: | C:\Users\user\AppData\Local\Temp\2nL7nS3HEmMzaquEkAHxy2ighT7\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 8192 |
Entropy (8bit): | 0.01057775872642915 |
Encrypted: | false |
SSDEEP: | |
MD5: | CF89D16BB9107C631DAABF0C0EE58EFB |
SHA1: | 3AE5D3A7CF1F94A56E42F9A58D90A0B9616AE74B |
SHA-256: | D6A5FE39CD672781B256E0E3102F7022635F1D4BB7CFCC90A80FFFE4D0F3877E |
SHA-512: | 8CB5B059C8105EB91E74A7D5952437AAA1ADA89763C5843E7B0F1B93D9EBE15ED40F287C652229291FAC02D712CF7FF5ECECEF276BA0D7DDC35558A3EC3F77B0 |
Malicious: | false |
Preview: |
Process: | C:\Users\user\AppData\Local\Temp\2nL7nS3HEmMzaquEkAHxy2ighT7\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 270336 |
Entropy (8bit): | 0.0012471779557650352 |
Encrypted: | false |
SSDEEP: | |
MD5: | F50F89A0A91564D0B8A211F8921AA7DE |
SHA1: | 112403A17DD69D5B9018B8CEDE023CB3B54EAB7D |
SHA-256: | B1E963D702392FB7224786E7D56D43973E9B9EFD1B89C17814D7C558FFC0CDEC |
SHA-512: | BF8CDA48CF1EC4E73F0DD1D4FA5562AF1836120214EDB74957430CD3E4A2783E801FA3F4ED2AFB375257CAEED4ABE958265237D6E0AACF35A9EDE7A2E8898D58 |
Malicious: | false |
Preview: |
Process: | C:\Users\user\AppData\Local\Temp\2nL7nS3HEmMzaquEkAHxy2ighT7\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 8192 |
Entropy (8bit): | 0.011852361981932763 |
Encrypted: | false |
SSDEEP: | |
MD5: | 0962291D6D367570BEE5454721C17E11 |
SHA1: | 59D10A893EF321A706A9255176761366115BEDCB |
SHA-256: | EC1702806F4CC7C42A82FC2B38E89835FDE7C64BB32060E0823C9077CA92EFB7 |
SHA-512: | F555E961B69E09628EAF9C61F465871E6984CD4D31014F954BB747351DAD9CEA6D17C1DB4BCA2C1EB7F187CB5F3C0518748C339C8B43BBD1DBD94AEAA16F58ED |
Malicious: | false |
Preview: |
Process: | C:\Users\user\AppData\Local\Temp\2nL7nS3HEmMzaquEkAHxy2ighT7\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 8192 |
Entropy (8bit): | 0.012340643231932763 |
Encrypted: | false |
SSDEEP: | |
MD5: | 41876349CB12D6DB992F1309F22DF3F0 |
SHA1: | 5CF26B3420FC0302CD0A71E8D029739B8765BE27 |
SHA-256: | E09F42C398D688DCE168570291F1F92D079987DEDA3099A34ADB9E8C0522B30C |
SHA-512: | E9A4FC1F7CB6AE2901F8E02354A92C4AAA7A53C640DCF692DB42A27A5ACC2A3BFB25A0DE0EB08AB53983132016E7D43132EA4292E439BB636AAFD53FB6EF907E |
Malicious: | false |
Preview: |
Process: | C:\Users\user\AppData\Local\Temp\2nL7nS3HEmMzaquEkAHxy2ighT7\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 262512 |
Entropy (8bit): | 9.553120663130604E-4 |
Encrypted: | false |
SSDEEP: | |
MD5: | 3BB39DD0EB941F033D0BB310BC5FCFEC |
SHA1: | F3C9599F08C5285EFF702D901BD072419C61BC02 |
SHA-256: | 4E61EC9DAE3E6500580AB1B194A7B252D17DEB6430D1D928C9973BB33E034C96 |
SHA-512: | 5948C847283C0EBD18CAC2CCF8DE1A9D91D88A3FC925B654EF1975AD1751E862EF42B49E6064EAC36BF166AD10024305B4D6E0EF8D7C88FF611C742194C033C6 |
Malicious: | false |
Preview: |
Process: | C:\Users\user\AppData\Local\Temp\2nL7nS3HEmMzaquEkAHxy2ighT7\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 8192 |
Entropy (8bit): | 0.01057775872642915 |
Encrypted: | false |
SSDEEP: | |
MD5: | CF89D16BB9107C631DAABF0C0EE58EFB |
SHA1: | 3AE5D3A7CF1F94A56E42F9A58D90A0B9616AE74B |
SHA-256: | D6A5FE39CD672781B256E0E3102F7022635F1D4BB7CFCC90A80FFFE4D0F3877E |
SHA-512: | 8CB5B059C8105EB91E74A7D5952437AAA1ADA89763C5843E7B0F1B93D9EBE15ED40F287C652229291FAC02D712CF7FF5ECECEF276BA0D7DDC35558A3EC3F77B0 |
Malicious: | false |
Preview: |
Process: | C:\Users\user\AppData\Local\Temp\2nL7nS3HEmMzaquEkAHxy2ighT7\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 270336 |
Entropy (8bit): | 0.0012471779557650352 |
Encrypted: | false |
SSDEEP: | |
MD5: | F50F89A0A91564D0B8A211F8921AA7DE |
SHA1: | 112403A17DD69D5B9018B8CEDE023CB3B54EAB7D |
SHA-256: | B1E963D702392FB7224786E7D56D43973E9B9EFD1B89C17814D7C558FFC0CDEC |
SHA-512: | BF8CDA48CF1EC4E73F0DD1D4FA5562AF1836120214EDB74957430CD3E4A2783E801FA3F4ED2AFB375257CAEED4ABE958265237D6E0AACF35A9EDE7A2E8898D58 |
Malicious: | false |
Preview: |
Process: | C:\Users\user\AppData\Local\Temp\2nL7nS3HEmMzaquEkAHxy2ighT7\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 8192 |
Entropy (8bit): | 0.011852361981932763 |
Encrypted: | false |
SSDEEP: | |
MD5: | 0962291D6D367570BEE5454721C17E11 |
SHA1: | 59D10A893EF321A706A9255176761366115BEDCB |
SHA-256: | EC1702806F4CC7C42A82FC2B38E89835FDE7C64BB32060E0823C9077CA92EFB7 |
SHA-512: | F555E961B69E09628EAF9C61F465871E6984CD4D31014F954BB747351DAD9CEA6D17C1DB4BCA2C1EB7F187CB5F3C0518748C339C8B43BBD1DBD94AEAA16F58ED |
Malicious: | false |
Preview: |
Process: | C:\Users\user\AppData\Local\Temp\2nL7nS3HEmMzaquEkAHxy2ighT7\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 8192 |
Entropy (8bit): | 0.012340643231932763 |
Encrypted: | false |
SSDEEP: | |
MD5: | 41876349CB12D6DB992F1309F22DF3F0 |
SHA1: | 5CF26B3420FC0302CD0A71E8D029739B8765BE27 |
SHA-256: | E09F42C398D688DCE168570291F1F92D079987DEDA3099A34ADB9E8C0522B30C |
SHA-512: | E9A4FC1F7CB6AE2901F8E02354A92C4AAA7A53C640DCF692DB42A27A5ACC2A3BFB25A0DE0EB08AB53983132016E7D43132EA4292E439BB636AAFD53FB6EF907E |
Malicious: | false |
Preview: |
Process: | C:\Users\user\AppData\Local\Temp\2nL7nS3HEmMzaquEkAHxy2ighT7\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 262512 |
Entropy (8bit): | 9.553120663130604E-4 |
Encrypted: | false |
SSDEEP: | |
MD5: | 3AD390FB187ABC68018AF28D0BCCBB27 |
SHA1: | DEAA7A22F23DE7939F792A65DA4AE2A62DA7C699 |
SHA-256: | E9FC238FC5E0CD2409ED827923FF27C8D62E923B6132316C6EECA925BB127F71 |
SHA-512: | 3CD703CC2043CBD3346B3BA24FCE8A48D95405C327CF7AE2E659F5C81669767FF5CD6234DF3E6736BB43500DDCC61FCA1737DB13EE6D5B0CE9205B147C0187D7 |
Malicious: | false |
Preview: |
Process: | C:\Users\user\AppData\Local\Temp\2nL7nS3HEmMzaquEkAHxy2ighT7\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 8192 |
Entropy (8bit): | 0.01057775872642915 |
Encrypted: | false |
SSDEEP: | |
MD5: | CF89D16BB9107C631DAABF0C0EE58EFB |
SHA1: | 3AE5D3A7CF1F94A56E42F9A58D90A0B9616AE74B |
SHA-256: | D6A5FE39CD672781B256E0E3102F7022635F1D4BB7CFCC90A80FFFE4D0F3877E |
SHA-512: | 8CB5B059C8105EB91E74A7D5952437AAA1ADA89763C5843E7B0F1B93D9EBE15ED40F287C652229291FAC02D712CF7FF5ECECEF276BA0D7DDC35558A3EC3F77B0 |
Malicious: | false |
Preview: |
Process: | C:\Users\user\AppData\Local\Temp\2nL7nS3HEmMzaquEkAHxy2ighT7\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 270336 |
Entropy (8bit): | 0.0012471779557650352 |
Encrypted: | false |
SSDEEP: | |
MD5: | F50F89A0A91564D0B8A211F8921AA7DE |
SHA1: | 112403A17DD69D5B9018B8CEDE023CB3B54EAB7D |
SHA-256: | B1E963D702392FB7224786E7D56D43973E9B9EFD1B89C17814D7C558FFC0CDEC |
SHA-512: | BF8CDA48CF1EC4E73F0DD1D4FA5562AF1836120214EDB74957430CD3E4A2783E801FA3F4ED2AFB375257CAEED4ABE958265237D6E0AACF35A9EDE7A2E8898D58 |
Malicious: | false |
Preview: |
Process: | C:\Users\user\AppData\Local\Temp\2nL7nS3HEmMzaquEkAHxy2ighT7\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 8192 |
Entropy (8bit): | 0.011852361981932763 |
Encrypted: | false |
SSDEEP: | |
MD5: | 0962291D6D367570BEE5454721C17E11 |
SHA1: | 59D10A893EF321A706A9255176761366115BEDCB |
SHA-256: | EC1702806F4CC7C42A82FC2B38E89835FDE7C64BB32060E0823C9077CA92EFB7 |
SHA-512: | F555E961B69E09628EAF9C61F465871E6984CD4D31014F954BB747351DAD9CEA6D17C1DB4BCA2C1EB7F187CB5F3C0518748C339C8B43BBD1DBD94AEAA16F58ED |
Malicious: | false |
Preview: |
Process: | C:\Users\user\AppData\Local\Temp\2nL7nS3HEmMzaquEkAHxy2ighT7\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 8192 |
Entropy (8bit): | 0.012340643231932763 |
Encrypted: | false |
SSDEEP: | |
MD5: | 41876349CB12D6DB992F1309F22DF3F0 |
SHA1: | 5CF26B3420FC0302CD0A71E8D029739B8765BE27 |
SHA-256: | E09F42C398D688DCE168570291F1F92D079987DEDA3099A34ADB9E8C0522B30C |
SHA-512: | E9A4FC1F7CB6AE2901F8E02354A92C4AAA7A53C640DCF692DB42A27A5ACC2A3BFB25A0DE0EB08AB53983132016E7D43132EA4292E439BB636AAFD53FB6EF907E |
Malicious: | false |
Preview: |
Process: | C:\Users\user\AppData\Local\Temp\2nL7nS3HEmMzaquEkAHxy2ighT7\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 262512 |
Entropy (8bit): | 9.553120663130604E-4 |
Encrypted: | false |
SSDEEP: | |
MD5: | 5D8B4473DED7CD2E58EF3A4506C18E2D |
SHA1: | 327188321B2262E04F1FEB5A49455B8933D96397 |
SHA-256: | AC00B43E6BFD7ABD1DF166C4152B32C030EB367B83D4DC36F88F9F44BF0F3A12 |
SHA-512: | 528865EDD4D9F8E4357403F0871854E08A7A3DCEF351C98634806F2184CF616384EB2995F491C06EC509BEBEA4FC8DBA02C34BEA67937D6D77AFA57042AE5525 |
Malicious: | false |
Preview: |
Process: | C:\Users\user\AppData\Local\Temp\2nL7nS3HEmMzaquEkAHxy2ighT7\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 434 |
Entropy (8bit): | 5.670640852038448 |
Encrypted: | false |
SSDEEP: | |
MD5: | 0D8389F8AC7E1DA1AE32E27BB0590094 |
SHA1: | 8C4C2F3FB898A770EE34A8DD454A4D91FC60A65F |
SHA-256: | 12DD68940AA7168F308FFA3540EE3ED209EEFD3E2F74C250222F6DB947688C19 |
SHA-512: | 5397BC065C346945548E41F211B93055FB9F977E31468EA6E1855A461332FF4A5E8B82CD2E68FB7AEA5A43C3C3E9613C09656C8728F708A2AAA6EA73959E66E3 |
Malicious: | false |
Preview: |
Process: | C:\Users\user\AppData\Local\Temp\2nL7nS3HEmMzaquEkAHxy2ighT7\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 16 |
Entropy (8bit): | 3.2743974703476995 |
Encrypted: | false |
SSDEEP: | |
MD5: | 46295CAC801E5D4857D09837238A6394 |
SHA1: | 44E0FA1B517DBF802B18FAF0785EEEA6AC51594B |
SHA-256: | 0F1BAD70C7BD1E0A69562853EC529355462FCD0423263A3D39D6D0D70B780443 |
SHA-512: | 8969402593F927350E2CEB4B5BC2A277F3754697C1961E3D6237DA322257FBAB42909E1A742E22223447F3A4805F8D8EF525432A7C3515A549E984D3EFF72B23 |
Malicious: | false |
Preview: |
Process: | C:\Users\user\AppData\Local\Temp\2nL7nS3HEmMzaquEkAHxy2ighT7\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 16 |
Entropy (8bit): | 3.2743974703476995 |
Encrypted: | false |
SSDEEP: | |
MD5: | 46295CAC801E5D4857D09837238A6394 |
SHA1: | 44E0FA1B517DBF802B18FAF0785EEEA6AC51594B |
SHA-256: | 0F1BAD70C7BD1E0A69562853EC529355462FCD0423263A3D39D6D0D70B780443 |
SHA-512: | 8969402593F927350E2CEB4B5BC2A277F3754697C1961E3D6237DA322257FBAB42909E1A742E22223447F3A4805F8D8EF525432A7C3515A549E984D3EFF72B23 |
Malicious: | false |
Preview: |
Process: | C:\Users\user\AppData\Local\Temp\2nL7nS3HEmMzaquEkAHxy2ighT7\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 247 |
Entropy (8bit): | 5.232116328366527 |
Encrypted: | false |
SSDEEP: | |
MD5: | 5B94C0D7FF489758216176E71A3EE417 |
SHA1: | 3AF37B001FF4A67F2B0300C121ACD4CAB9C0E8C9 |
SHA-256: | 695063B43AC8720FF69C8FAE9F87A927816A5A23EA203D38BD444D0C6B428F72 |
SHA-512: | 58FCE588D183C6630C27CBC539737010FF95CF67253185F6964CC554CC9FDE813E5C6BDCB0824C554D777AEF4BC25464DB8B8768728021FC49EC97C4F7785630 |
Malicious: | false |
Preview: |
Process: | C:\Users\user\AppData\Local\Temp\2nL7nS3HEmMzaquEkAHxy2ighT7\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 41 |
Entropy (8bit): | 4.704993772857998 |
Encrypted: | false |
SSDEEP: | |
MD5: | 5AF87DFD673BA2115E2FCF5CFDB727AB |
SHA1: | D5B5BBF396DC291274584EF71F444F420B6056F1 |
SHA-256: | F9D31B278E215EB0D0E9CD709EDFA037E828F36214AB7906F612160FEAD4B2B4 |
SHA-512: | DE34583A7DBAFE4DD0DC0601E8F6906B9BC6A00C56C9323561204F77ABBC0DC9007C480FFE4092FF2F194D54616CAF50AECBD4A1E9583CAE0C76AD6DD7C2375B |
Malicious: | false |
Preview: |
Process: | C:\Users\user\AppData\Local\Temp\2nL7nS3HEmMzaquEkAHxy2ighT7\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 57 |
Entropy (8bit): | 4.283088322451805 |
Encrypted: | false |
SSDEEP: | |
MD5: | 329622F40165883B656ABAB0D93674C4 |
SHA1: | DD0DDF3B58BA7BF841B7664F890C65DC7B20CE87 |
SHA-256: | 2A2BF0F32B2E88B7394AB518C2EF85880824317076DCE7E932BB8C9B8F218488 |
SHA-512: | BF9173F47118D3FD466378CA186B74EFB7481AF15AEABD0BDBA43331721D93F5F9E4D1FD94F38873B8DBA9352D2EB4BF8044A21C52A52409615E3E25894393CF |
Malicious: | false |
Preview: |
Process: | C:\Users\user\AppData\Local\Temp\2nL7nS3HEmMzaquEkAHxy2ighT7\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 16 |
Entropy (8bit): | 3.2743974703476995 |
Encrypted: | false |
SSDEEP: | |
MD5: | 46295CAC801E5D4857D09837238A6394 |
SHA1: | 44E0FA1B517DBF802B18FAF0785EEEA6AC51594B |
SHA-256: | 0F1BAD70C7BD1E0A69562853EC529355462FCD0423263A3D39D6D0D70B780443 |
SHA-512: | 8969402593F927350E2CEB4B5BC2A277F3754697C1961E3D6237DA322257FBAB42909E1A742E22223447F3A4805F8D8EF525432A7C3515A549E984D3EFF72B23 |
Malicious: | false |
Preview: |
Process: | C:\Users\user\AppData\Local\Temp\2nL7nS3HEmMzaquEkAHxy2ighT7\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 61 |
Entropy (8bit): | 3.7273991737283296 |
Encrypted: | false |
SSDEEP: | |
MD5: | 9F7EADC15E13D0608B4E4D590499AE2E |
SHA1: | AFB27F5C20B117031328E12DD3111A7681FF8DB5 |
SHA-256: | 5C3A5B578AB9FE853EAD7040BC161929EA4F6902073BA2B8BB84487622B98923 |
SHA-512: | 88455784C705F565C70FA0A549C54E2492976E14643E9DD0A8E58C560D003914313DF483F096BD33EC718AEEC7667B8DE063A73627AA3436BA6E7E562E565B3F |
Malicious: | false |
Preview: |
Process: | C:\Users\user\AppData\Local\Temp\2nL7nS3HEmMzaquEkAHxy2ighT7\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 16 |
Entropy (8bit): | 3.2743974703476995 |
Encrypted: | false |
SSDEEP: | |
MD5: | 46295CAC801E5D4857D09837238A6394 |
SHA1: | 44E0FA1B517DBF802B18FAF0785EEEA6AC51594B |
SHA-256: | 0F1BAD70C7BD1E0A69562853EC529355462FCD0423263A3D39D6D0D70B780443 |
SHA-512: | 8969402593F927350E2CEB4B5BC2A277F3754697C1961E3D6237DA322257FBAB42909E1A742E22223447F3A4805F8D8EF525432A7C3515A549E984D3EFF72B23 |
Malicious: | false |
Preview: |
Process: | C:\Users\user\AppData\Local\Temp\2nL7nS3HEmMzaquEkAHxy2ighT7\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 235 |
Entropy (8bit): | 5.096493870207839 |
Encrypted: | false |
SSDEEP: | |
MD5: | BCD402B3695275D42FFB7DD0A5BAFECD |
SHA1: | 2B907066EE7FAE824E633E44A21DF8CDFA84AD53 |
SHA-256: | 0252E039568ECE146F9A69A4D757F90820C39E8E550AB83A912B41811C67021D |
SHA-512: | 742CA57A92F35348C5C54B0616463640D6D764E51E5161F4036E4FE8DF940388CBE5DFE9010235F2FAF04A69A16D94E00553B5E783D2E50F27AEAD270C24CB3E |
Malicious: | false |
Preview: |
Process: | C:\Users\user\AppData\Local\Temp\2nL7nS3HEmMzaquEkAHxy2ighT7\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 41 |
Entropy (8bit): | 4.704993772857998 |
Encrypted: | false |
SSDEEP: | |
MD5: | 5AF87DFD673BA2115E2FCF5CFDB727AB |
SHA1: | D5B5BBF396DC291274584EF71F444F420B6056F1 |
SHA-256: | F9D31B278E215EB0D0E9CD709EDFA037E828F36214AB7906F612160FEAD4B2B4 |
SHA-512: | DE34583A7DBAFE4DD0DC0601E8F6906B9BC6A00C56C9323561204F77ABBC0DC9007C480FFE4092FF2F194D54616CAF50AECBD4A1E9583CAE0C76AD6DD7C2375B |
Malicious: | false |
Preview: |
Process: | C:\Users\user\AppData\Local\Temp\2nL7nS3HEmMzaquEkAHxy2ighT7\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 434 |
Entropy (8bit): | 5.670640852038448 |
Encrypted: | false |
SSDEEP: | |
MD5: | 0D8389F8AC7E1DA1AE32E27BB0590094 |
SHA1: | 8C4C2F3FB898A770EE34A8DD454A4D91FC60A65F |
SHA-256: | 12DD68940AA7168F308FFA3540EE3ED209EEFD3E2F74C250222F6DB947688C19 |
SHA-512: | 5397BC065C346945548E41F211B93055FB9F977E31468EA6E1855A461332FF4A5E8B82CD2E68FB7AEA5A43C3C3E9613C09656C8728F708A2AAA6EA73959E66E3 |
Malicious: | false |
Preview: |
Process: | C:\Users\user\AppData\Local\Temp\2nL7nS3HEmMzaquEkAHxy2ighT7\svchost.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 57 |
Entropy (8bit): | 4.283088322451805 |
Encrypted: | false |
SSDEEP: | |
MD5: | 329622F40165883B656ABAB0D93674C4 |
SHA1: | DD0DDF3B58BA7BF841B7664F890C65DC7B20CE87 |
SHA-256: | 2A2BF0F32B2E88B7394AB518C2EF85880824317076DCE7E932BB8C9B8F218488 |
SHA-512: | BF9173F47118D3FD466378CA186B74EFB7481AF15AEABD0BDBA43331721D93F5F9E4D1FD94F38873B8DBA9352D2EB4BF8044A21C52A52409615E3E25894393CF |
Malicious: | false |
Preview: |
File type: | |
Entropy (8bit): | 7.999975803440211 |
TrID: |
|
File name: | svchost.exe |
File size: | 87'716'694 bytes |
MD5: | 0a8a20f78887d083909131e3206e7ea3 |
SHA1: | d72ccda934c157750a7a415c8caef1b7a3576720 |
SHA256: | 2e463e9569f44d2c1f91b72e9b5fe140959738b436b25faf57b1ec5e9f253980 |
SHA512: | 9fc0ba688845512dee331f23ceb121ec4f98fef52823a4cee958067a0a0890b2708340d81342699c4541a08d8996e58a0fc901781ab42467867fcd268ce7f7c0 |
SSDEEP: | 1572864:89eyHWNREPsHOrTkGfShdCrto6VlVes3/G+nJ/THR5T02NeJmoOJNbF3x7:8a+NnjahsK6VLxdHj0uMmoWbFB7 |
TLSH: | 43183338C70A8D33FEA49D36B1A51FD946C97D35DED68997886C601834B90434AFC3AE |
File Content Preview: | MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$........1...Pf..Pf..Pf.*_9..Pf..Pg.LPf.*_;..Pf..sV..Pf..V`..Pf.Rich.Pf.........................PE..L......\.................h...8...@. |
Icon Hash: | 80969696969696a8 |
Entrypoint: | 0x40338f |
Entrypoint Section: | .text |
Digitally signed: | false |
Imagebase: | 0x400000 |
Subsystem: | windows gui |
Image File Characteristics: | RELOCS_STRIPPED, EXECUTABLE_IMAGE, LINE_NUMS_STRIPPED, LOCAL_SYMS_STRIPPED, 32BIT_MACHINE |
DLL Characteristics: | DYNAMIC_BASE, NX_COMPAT, NO_SEH, TERMINAL_SERVER_AWARE |
Time Stamp: | 0x5C157F86 [Sat Dec 15 22:26:14 2018 UTC] |
TLS Callbacks: | |
CLR (.Net) Version: | |
OS Version Major: | 4 |
OS Version Minor: | 0 |
File Version Major: | 4 |
File Version Minor: | 0 |
Subsystem Version Major: | 4 |
Subsystem Version Minor: | 0 |
Import Hash: | b34f154ec913d2d2c435cbd644e91687 |
Instruction |
---|
sub esp, 000002D4h |
push ebx |
push esi |
push edi |
push 00000020h |
pop edi |
xor ebx, ebx |
push 00008001h |
mov dword ptr [esp+14h], ebx |
mov dword ptr [esp+10h], 0040A2E0h |
mov dword ptr [esp+1Ch], ebx |
call dword ptr [004080A8h] |
call dword ptr [004080A4h] |
and eax, BFFFFFFFh |
cmp ax, 00000006h |
mov dword ptr [0047AEECh], eax |
je 00007F57A0CC7673h |
push ebx |
call 00007F57A0CCA925h |
cmp eax, ebx |
je 00007F57A0CC7669h |
push 00000C00h |
call eax |
mov esi, 004082B0h |
push esi |
call 00007F57A0CCA89Fh |
push esi |
call dword ptr [00408150h] |
lea esi, dword ptr [esi+eax+01h] |
cmp byte ptr [esi], 00000000h |
jne 00007F57A0CC764Ch |
push 0000000Ah |
call 00007F57A0CCA8F8h |
push 00000008h |
call 00007F57A0CCA8F1h |
push 00000006h |
mov dword ptr [0047AEE4h], eax |
call 00007F57A0CCA8E5h |
cmp eax, ebx |
je 00007F57A0CC7671h |
push 0000001Eh |
call eax |
test eax, eax |
je 00007F57A0CC7669h |
or byte ptr [0047AEEFh], 00000040h |
push ebp |
call dword ptr [00408044h] |
push ebx |
call dword ptr [004082A0h] |
mov dword ptr [0047AFB8h], eax |
push ebx |
lea eax, dword ptr [esp+34h] |
push 000002B4h |
push eax |
push ebx |
push 00440208h |
call dword ptr [00408188h] |
push 0040A2C8h |
Programming Language: |
|
Name | Virtual Address | Virtual Size | Is in Section |
---|---|---|---|
IMAGE_DIRECTORY_ENTRY_EXPORT | 0x0 | 0x0 | |
IMAGE_DIRECTORY_ENTRY_IMPORT | 0x8610 | 0xa0 | .rdata |
IMAGE_DIRECTORY_ENTRY_RESOURCE | 0x10b000 | 0xd8b8 | .rsrc |
IMAGE_DIRECTORY_ENTRY_EXCEPTION | 0x0 | 0x0 | |
IMAGE_DIRECTORY_ENTRY_SECURITY | 0x0 | 0x0 | |
IMAGE_DIRECTORY_ENTRY_BASERELOC | 0x0 | 0x0 | |
IMAGE_DIRECTORY_ENTRY_DEBUG | 0x0 | 0x0 | |
IMAGE_DIRECTORY_ENTRY_COPYRIGHT | 0x0 | 0x0 | |
IMAGE_DIRECTORY_ENTRY_GLOBALPTR | 0x0 | 0x0 | |
IMAGE_DIRECTORY_ENTRY_TLS | 0x0 | 0x0 | |
IMAGE_DIRECTORY_ENTRY_LOAD_CONFIG | 0x0 | 0x0 | |
IMAGE_DIRECTORY_ENTRY_BOUND_IMPORT | 0x0 | 0x0 | |
IMAGE_DIRECTORY_ENTRY_IAT | 0x8000 | 0x2b0 | .rdata |
IMAGE_DIRECTORY_ENTRY_DELAY_IMPORT | 0x0 | 0x0 | |
IMAGE_DIRECTORY_ENTRY_COM_DESCRIPTOR | 0x0 | 0x0 | |
IMAGE_DIRECTORY_ENTRY_RESERVED | 0x0 | 0x0 |
Name | Virtual Address | Virtual Size | Raw Size | MD5 | Xored PE | ZLIB Complexity | File Type | Entropy | Characteristics |
---|---|---|---|---|---|---|---|---|---|
.text | 0x1000 | 0x6627 | 0x6800 | 7618d4c0cd8bb67ea9595b4266b3a91f | False | 0.6646259014423077 | data | 6.450282348506287 | IMAGE_SCN_CNT_CODE, IMAGE_SCN_MEM_EXECUTE, IMAGE_SCN_MEM_READ |
.rdata | 0x8000 | 0x14a2 | 0x1600 | eecac1fed9cc6b447d50940d178404d8 | False | 0.4405184659090909 | data | 5.025178929113415 | IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_READ |
.data | 0xa000 | 0x70ff8 | 0x600 | db8f31a08a2242d80c29e1f9500c6527 | False | 0.5182291666666666 | data | 4.037117731448378 | IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_READ, IMAGE_SCN_MEM_WRITE |
.ndata | 0x7b000 | 0x90000 | 0x0 | d41d8cd98f00b204e9800998ecf8427e | False | 0 | empty | 0.0 | IMAGE_SCN_CNT_UNINITIALIZED_DATA, IMAGE_SCN_MEM_READ, IMAGE_SCN_MEM_WRITE |
.rsrc | 0x10b000 | 0xd8b8 | 0xda00 | cab5b0009dbb2d9dcb0551d938ecd4ea | False | 0.25808127866972475 | data | 4.742205898198625 | IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_READ |
Name | RVA | Size | Type | Language | Country | ZLIB Complexity |
---|---|---|---|---|---|---|
RT_ICON | 0x10b328 | 0x4228 | Device independent bitmap graphic, 64 x 128 x 32, image size 0 | English | United States | 0.06565895134624469 |
RT_ICON | 0x10f550 | 0x25c4 | PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced | English | United States | 0.9738311956971453 |
RT_ICON | 0x111b18 | 0x25a8 | Device independent bitmap graphic, 48 x 96 x 32, image size 0 | English | United States | 0.08236514522821577 |
RT_ICON | 0x1140c0 | 0x1a68 | Device independent bitmap graphic, 40 x 80 x 32, image size 0 | English | United States | 0.10488165680473373 |
RT_ICON | 0x115b28 | 0x10a8 | Device independent bitmap graphic, 32 x 64 x 32, image size 0 | English | United States | 0.13062851782363977 |
RT_ICON | 0x116bd0 | 0x988 | Device independent bitmap graphic, 24 x 48 x 32, image size 0 | English | United States | 0.1610655737704918 |
RT_ICON | 0x117558 | 0x6b8 | Device independent bitmap graphic, 20 x 40 x 32, image size 0 | English | United States | 0.19127906976744186 |
RT_ICON | 0x117c10 | 0x468 | Device independent bitmap graphic, 16 x 32 x 32, image size 0 | English | United States | 0.2393617021276596 |
RT_DIALOG | 0x118078 | 0x100 | data | English | United States | 0.5234375 |
RT_DIALOG | 0x118178 | 0xf8 | data | English | United States | 0.6330645161290323 |
RT_DIALOG | 0x118270 | 0x60 | data | English | United States | 0.7291666666666666 |
RT_GROUP_ICON | 0x1182d0 | 0x76 | data | English | United States | 0.7457627118644068 |
RT_VERSION | 0x118348 | 0x230 | data | English | United States | 0.49107142857142855 |
RT_MANIFEST | 0x118578 | 0x33e | XML 1.0 document, ASCII text, with very long lines (830), with no line terminators | English | United States | 0.5542168674698795 |
DLL | Import |
---|---|
KERNEL32.dll | SetEnvironmentVariableW, SetFileAttributesW, Sleep, GetTickCount, GetFileSize, GetModuleFileNameW, GetCurrentProcess, CopyFileW, SetCurrentDirectoryW, GetFileAttributesW, GetWindowsDirectoryW, GetTempPathW, GetCommandLineW, GetVersion, SetErrorMode, lstrlenW, lstrcpynW, GetDiskFreeSpaceW, ExitProcess, GetShortPathNameW, CreateThread, GetLastError, CreateDirectoryW, CreateProcessW, RemoveDirectoryW, lstrcmpiA, CreateFileW, GetTempFileNameW, WriteFile, lstrcpyA, MoveFileExW, lstrcatW, GetSystemDirectoryW, GetProcAddress, GetModuleHandleA, GetExitCodeProcess, WaitForSingleObject, lstrcmpiW, MoveFileW, GetFullPathNameW, SetFileTime, SearchPathW, CompareFileTime, lstrcmpW, CloseHandle, ExpandEnvironmentStringsW, GlobalFree, GlobalLock, GlobalUnlock, GlobalAlloc, FindFirstFileW, FindNextFileW, DeleteFileW, SetFilePointer, ReadFile, FindClose, lstrlenA, MulDiv, MultiByteToWideChar, WideCharToMultiByte, GetPrivateProfileStringW, WritePrivateProfileStringW, FreeLibrary, LoadLibraryExW, GetModuleHandleW |
USER32.dll | GetSystemMenu, SetClassLongW, EnableMenuItem, IsWindowEnabled, SetWindowPos, GetSysColor, GetWindowLongW, SetCursor, LoadCursorW, CheckDlgButton, GetMessagePos, LoadBitmapW, CallWindowProcW, IsWindowVisible, CloseClipboard, SetClipboardData, EmptyClipboard, OpenClipboard, ScreenToClient, GetWindowRect, GetDlgItem, GetSystemMetrics, SetDlgItemTextW, GetDlgItemTextW, MessageBoxIndirectW, CharPrevW, CharNextA, wsprintfA, DispatchMessageW, PeekMessageW, ReleaseDC, EnableWindow, InvalidateRect, SendMessageW, DefWindowProcW, BeginPaint, GetClientRect, FillRect, DrawTextW, EndDialog, RegisterClassW, SystemParametersInfoW, CreateWindowExW, GetClassInfoW, DialogBoxParamW, CharNextW, ExitWindowsEx, DestroyWindow, GetDC, SetTimer, SetWindowTextW, LoadImageW, SetForegroundWindow, ShowWindow, IsWindow, SetWindowLongW, FindWindowExW, TrackPopupMenu, AppendMenuW, CreatePopupMenu, EndPaint, CreateDialogParamW, SendMessageTimeoutW, wsprintfW, PostQuitMessage |
GDI32.dll | SelectObject, SetBkMode, CreateFontIndirectW, SetTextColor, DeleteObject, GetDeviceCaps, CreateBrushIndirect, SetBkColor |
SHELL32.dll | SHGetSpecialFolderLocation, ShellExecuteExW, SHGetPathFromIDListW, SHBrowseForFolderW, SHGetFileInfoW, SHFileOperationW |
ADVAPI32.dll | AdjustTokenPrivileges, RegCreateKeyExW, RegOpenKeyExW, SetFileSecurityW, OpenProcessToken, LookupPrivilegeValueW, RegEnumValueW, RegDeleteKeyW, RegDeleteValueW, RegCloseKey, RegSetValueExW, RegQueryValueExW, RegEnumKeyW |
COMCTL32.dll | ImageList_Create, ImageList_AddMasked, ImageList_Destroy |
ole32.dll | OleUninitialize, OleInitialize, CoTaskMemFree, CoCreateInstance |
Language of compilation system | Country where language is spoken | Map |
---|---|---|
English | United States |
Timestamp | Source Port | Dest Port | Source IP | Dest IP |
---|---|---|---|---|
Oct 13, 2024 16:19:51.637015104 CEST | 49738 | 443 | 192.168.2.4 | 34.117.59.81 |
Oct 13, 2024 16:19:51.637104034 CEST | 443 | 49738 | 34.117.59.81 | 192.168.2.4 |
Oct 13, 2024 16:19:51.637191057 CEST | 49738 | 443 | 192.168.2.4 | 34.117.59.81 |
Oct 13, 2024 16:19:51.656552076 CEST | 49738 | 443 | 192.168.2.4 | 34.117.59.81 |
Oct 13, 2024 16:19:51.656590939 CEST | 443 | 49738 | 34.117.59.81 | 192.168.2.4 |
Oct 13, 2024 16:19:52.384347916 CEST | 443 | 49738 | 34.117.59.81 | 192.168.2.4 |
Oct 13, 2024 16:19:52.391175032 CEST | 49738 | 443 | 192.168.2.4 | 34.117.59.81 |
Oct 13, 2024 16:19:52.391254902 CEST | 443 | 49738 | 34.117.59.81 | 192.168.2.4 |
Oct 13, 2024 16:19:52.392899990 CEST | 443 | 49738 | 34.117.59.81 | 192.168.2.4 |
Oct 13, 2024 16:19:52.392992020 CEST | 49738 | 443 | 192.168.2.4 | 34.117.59.81 |
Oct 13, 2024 16:19:52.409096956 CEST | 49738 | 443 | 192.168.2.4 | 34.117.59.81 |
Oct 13, 2024 16:19:52.409427881 CEST | 443 | 49738 | 34.117.59.81 | 192.168.2.4 |
Oct 13, 2024 16:19:52.409642935 CEST | 49738 | 443 | 192.168.2.4 | 34.117.59.81 |
Timestamp | Source Port | Dest Port | Source IP | Dest IP |
---|---|---|---|---|
Oct 13, 2024 16:19:51.546751022 CEST | 57376 | 53 | 192.168.2.4 | 1.1.1.1 |
Oct 13, 2024 16:19:51.554151058 CEST | 53 | 57376 | 1.1.1.1 | 192.168.2.4 |
Oct 13, 2024 16:20:02.857757092 CEST | 53 | 64655 | 162.159.36.2 | 192.168.2.4 |
Oct 13, 2024 16:20:03.358102083 CEST | 53 | 53930 | 1.1.1.1 | 192.168.2.4 |
Timestamp | Source IP | Dest IP | Trans ID | OP Code | Name | Type | Class | DNS over HTTPS |
---|---|---|---|---|---|---|---|---|
Oct 13, 2024 16:19:51.546751022 CEST | 192.168.2.4 | 1.1.1.1 | 0xb20b | Standard query (0) | A (IP address) | IN (0x0001) | false |
Timestamp | Source IP | Dest IP | Trans ID | Reply Code | Name | CName | Address | Type | Class | DNS over HTTPS |
---|---|---|---|---|---|---|---|---|---|---|
Oct 13, 2024 16:19:51.554151058 CEST | 1.1.1.1 | 192.168.2.4 | 0xb20b | No error (0) | 34.117.59.81 | A (IP address) | IN (0x0001) | false |
Click to jump to process
Click to jump to process
back
Click to dive into process behavior distribution
Click to jump to process
Target ID: | 0 |
Start time: | 10:19:18 |
Start date: | 13/10/2024 |
Path: | C:\Users\user\Desktop\svchost.exe |
Wow64 process (32bit): | true |
Commandline: | |
Imagebase: | 0x400000 |
File size: | 87'716'694 bytes |
MD5 hash: | 0A8A20F78887D083909131E3206E7EA3 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | true |
Target ID: | 4 |
Start time: | 10:19:47 |
Start date: | 13/10/2024 |
Path: | C:\Users\user\AppData\Local\Temp\2nL7nS3HEmMzaquEkAHxy2ighT7\svchost.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff6f49d0000 |
File size: | 180'436'992 bytes |
MD5 hash: | C1290736DF9A2094B6039AA50D48C442 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | true |
Target ID: | 7 |
Start time: | 10:19:50 |
Start date: | 13/10/2024 |
Path: | C:\Windows\System32\cmd.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff6c9390000 |
File size: | 289'792 bytes |
MD5 hash: | 8A2122E8162DBEF04694B9C3E0B6CDEE |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | high |
Has exited: | true |
Target ID: | 8 |
Start time: | 10:19:50 |
Start date: | 13/10/2024 |
Path: | C:\Windows\System32\conhost.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff7699e0000 |
File size: | 862'208 bytes |
MD5 hash: | 0D698AF330FD17BEE3BF90011D49251D |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | high |
Has exited: | true |
Target ID: | 9 |
Start time: | 10:19:50 |
Start date: | 13/10/2024 |
Path: | C:\Windows\System32\chcp.com |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff7d7fb0000 |
File size: | 14'848 bytes |
MD5 hash: | 33395C4732A49065EA72590B14B64F32 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | moderate |
Has exited: | true |
Target ID: | 10 |
Start time: | 10:19:51 |
Start date: | 13/10/2024 |
Path: | C:\Users\user\AppData\Local\Temp\2nL7nS3HEmMzaquEkAHxy2ighT7\svchost.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff6f49d0000 |
File size: | 180'436'992 bytes |
MD5 hash: | C1290736DF9A2094B6039AA50D48C442 |
Has elevated privileges: | false |
Has administrator privileges: | false |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | true |
Target ID: | 11 |
Start time: | 10:19:51 |
Start date: | 13/10/2024 |
Path: | C:\Windows\explorer.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff72b770000 |
File size: | 5'141'208 bytes |
MD5 hash: | 662F4F92FDE3557E86D110526BB578D5 |
Has elevated privileges: | false |
Has administrator privileges: | false |
Programmed in: | C, C++ or other language |
Reputation: | high |
Has exited: | false |
Target ID: | 12 |
Start time: | 10:19:54 |
Start date: | 13/10/2024 |
Path: | C:\Users\user\AppData\Local\Temp\2nL7nS3HEmMzaquEkAHxy2ighT7\svchost.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff6f49d0000 |
File size: | 180'436'992 bytes |
MD5 hash: | C1290736DF9A2094B6039AA50D48C442 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | true |
Target ID: | 13 |
Start time: | 10:19:56 |
Start date: | 13/10/2024 |
Path: | C:\Users\user\AppData\Local\Temp\2nL7nS3HEmMzaquEkAHxy2ighT7\svchost.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff6f49d0000 |
File size: | 180'436'992 bytes |
MD5 hash: | C1290736DF9A2094B6039AA50D48C442 |
Has elevated privileges: | false |
Has administrator privileges: | false |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | true |