IOC Report
new shipment list.exe

loading gif

Files

File Path
Type
Category
Malicious
new shipment list.exe
PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
initial sample
malicious
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\WrappedObject.vbs
ASCII text, with no line terminators
dropped
malicious
C:\Users\user\AppData\Roaming\WrappedObject.exe
PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
dropped
malicious
C:\Users\user\AppData\Roaming\WrappedObject.exe:Zone.Identifier
ASCII text, with CRLF line terminators
modified
malicious

Processes

Path
Cmdline
Malicious
C:\Users\user\Desktop\new shipment list.exe
"C:\Users\user\Desktop\new shipment list.exe"
malicious
C:\Windows\Microsoft.NET\Framework\v4.0.30319\InstallUtil.exe
"C:\Windows\Microsoft.NET\Framework\v4.0.30319\InstallUtil.exe"
malicious
C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -u -p 5024 -s 1144

URLs

Name
IP
Malicious
https://github.com/mgravell/protobuf-net
unknown
https://github.com/mgravell/protobuf-neti
unknown
https://stackoverflow.com/q/14436606/23354
unknown
https://github.com/mgravell/protobuf-netJ
unknown
http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name
unknown
https://stackoverflow.com/q/11564914/23354;
unknown
https://stackoverflow.com/q/2152978/23354
unknown

Memdumps

Base Address
Regiontype
Protect
Malicious
5BD0000
trusted library section
page read and write
malicious
2B9E000
trusted library allocation
page read and write
malicious
2FBC000
trusted library allocation
page read and write
2B30000
heap
page read and write
3168000
trusted library allocation
page read and write
2F9B000
trusted library allocation
page read and write
316E000
trusted library allocation
page read and write
30F2000
trusted library allocation
page read and write
1226000
heap
page read and write
307D000
trusted library allocation
page read and write
956000
heap
page read and write
2E08000
trusted library allocation
page read and write
CE3000
trusted library allocation
page execute and read and write
D0A000
trusted library allocation
page execute and read and write
3CEC000
trusted library allocation
page read and write
5360000
trusted library allocation
page read and write
30D3000
trusted library allocation
page read and write
31B3000
trusted library allocation
page read and write
2E8C000
trusted library allocation
page read and write
3211000
trusted library allocation
page read and write
2ACE000
stack
page read and write
3085000
trusted library allocation
page read and write
3166000
trusted library allocation
page read and write
2E2E000
trusted library allocation
page read and write
2E04000
trusted library allocation
page read and write
FE7000
trusted library allocation
page execute and read and write
5350000
trusted library allocation
page read and write
3219000
trusted library allocation
page read and write
2E06000
trusted library allocation
page read and write
2F80000
trusted library allocation
page read and write
5AC0000
trusted library allocation
page read and write
2EA7000
trusted library allocation
page read and write
D77000
heap
page read and write
306D000
trusted library allocation
page read and write
5580000
heap
page read and write
5190000
heap
page read and write
301E000
trusted library allocation
page read and write
2FF2000
trusted library allocation
page read and write
5A20000
trusted library allocation
page execute and read and write
2FEE000
trusted library allocation
page read and write
3BE5000
trusted library allocation
page read and write
2E1D000
trusted library allocation
page read and write
2F78000
trusted library allocation
page read and write
2F7C000
trusted library allocation
page read and write
30EA000
trusted library allocation
page read and write
D90000
trusted library allocation
page read and write
3164000
trusted library allocation
page read and write
2EAE000
trusted library allocation
page read and write
2F9E000
trusted library allocation
page read and write
305C000
trusted library allocation
page read and write
318D000
trusted library allocation
page read and write
1030000
heap
page read and write
4E7E000
stack
page read and write
2CD5000
trusted library allocation
page read and write
2F1F000
trusted library allocation
page read and write
1000000
trusted library allocation
page read and write
2CDF000
trusted library allocation
page read and write
AE0000
heap
page read and write
281D000
heap
page read and write
3139000
trusted library allocation
page read and write
2FDB000
trusted library allocation
page read and write
3148000
trusted library allocation
page read and write
3101000
trusted library allocation
page read and write
3092000
trusted library allocation
page read and write
31B5000
trusted library allocation
page read and write
2B46000
trusted library allocation
page read and write
2E99000
trusted library allocation
page read and write
2E84000
trusted library allocation
page read and write
2A01000
trusted library allocation
page read and write
305E000
trusted library allocation
page read and write
3081000
trusted library allocation
page read and write
31D2000
trusted library allocation
page read and write
5170000
trusted library allocation
page read and write
2E56000
trusted library allocation
page read and write
2EFE000
trusted library allocation
page read and write
2F99000
trusted library allocation
page read and write
3068000
trusted library allocation
page read and write
30BC000
trusted library allocation
page read and write
2F1D000
trusted library allocation
page read and write
4E90000
heap
page execute and read and write
5ECE000
stack
page read and write
285E000
stack
page read and write
2FD5000
trusted library allocation
page read and write
316A000
trusted library allocation
page read and write
2F61000
trusted library allocation
page read and write
2F13000
trusted library allocation
page read and write
3127000
trusted library allocation
page read and write
3B79000
trusted library allocation
page read and write
6A2000
unkown
page readonly
29B0000
trusted library section
page read and write
2EE1000
trusted library allocation
page read and write
FB0000
trusted library allocation
page read and write
548A000
heap
page read and write
2E9D000
trusted library allocation
page read and write
2FF0000
trusted library allocation
page read and write
2B39000
heap
page read and write
2F95000
trusted library allocation
page read and write
2B1C000
stack
page read and write
3022000
trusted library allocation
page read and write
310C000
trusted library allocation
page read and write
52AD000
stack
page read and write
918000
heap
page read and write
30CB000
trusted library allocation
page read and write
308E000
trusted library allocation
page read and write
2F3A000
trusted library allocation
page read and write
31B7000
trusted library allocation
page read and write
2FDD000
trusted library allocation
page read and write
2E0C000
trusted library allocation
page read and write
311C000
trusted library allocation
page read and write
3185000
trusted library allocation
page read and write
94A000
heap
page read and write
2EC4000
trusted library allocation
page read and write
5AF0000
heap
page read and write
407F000
trusted library allocation
page read and write
2E36000
trusted library allocation
page read and write
D5E000
heap
page read and write
9FD000
heap
page read and write
3183000
trusted library allocation
page read and write
D5A000
heap
page read and write
2F44000
trusted library allocation
page read and write
5340000
trusted library allocation
page read and write
5AFA000
heap
page read and write
2E58000
trusted library allocation
page read and write
2EE7000
trusted library allocation
page read and write
59E0000
trusted library allocation
page read and write
5A10000
trusted library allocation
page read and write
30D8000
trusted library allocation
page read and write
3133000
trusted library allocation
page read and write
2ECE000
trusted library allocation
page read and write
2EAC000
trusted library allocation
page read and write
2A56000
trusted library allocation
page read and write
535C000
trusted library allocation
page read and write
3122000
trusted library allocation
page read and write
2F97000
trusted library allocation
page read and write
402000
remote allocation
page execute and read and write
29E0000
remote allocation
page read and write
2EEE000
trusted library allocation
page read and write
4F90000
trusted library allocation
page read and write
2F8F000
trusted library allocation
page read and write
3189000
trusted library allocation
page read and write
2FD9000
trusted library allocation
page read and write
308C000
trusted library allocation
page read and write
2EC8000
trusted library allocation
page read and write
5B2E000
heap
page read and write
113E000
stack
page read and write
302A000
trusted library allocation
page read and write
2F67000
trusted library allocation
page read and write
2F11000
trusted library allocation
page read and write
2E0A000
trusted library allocation
page read and write
31BF000
trusted library allocation
page read and write
5D40000
trusted library allocation
page execute and read and write
2EA1000
trusted library allocation
page read and write
304B000
trusted library allocation
page read and write
519B000
heap
page read and write
CF0000
trusted library allocation
page read and write
2E54000
trusted library allocation
page read and write
3162000
trusted library allocation
page read and write
311E000
trusted library allocation
page read and write
532E000
stack
page read and write
2F2E000
trusted library allocation
page read and write
FC3000
trusted library allocation
page read and write
304D000
trusted library allocation
page read and write
665F000
stack
page read and write
4F80000
trusted library allocation
page read and write
6760000
heap
page read and write
2FBE000
trusted library allocation
page read and write
2F82000
trusted library allocation
page read and write
D9F000
trusted library allocation
page read and write
2EFA000
trusted library allocation
page read and write
3060000
trusted library allocation
page read and write
3011000
trusted library allocation
page read and write
2E75000
trusted library allocation
page read and write
276E000
stack
page read and write
910000
heap
page read and write
B87000
stack
page read and write
2E6B000
trusted library allocation
page read and write
2B41000
trusted library allocation
page read and write
2EF2000
trusted library allocation
page read and write
306A000
trusted library allocation
page read and write
2D26000
trusted library allocation
page read and write
5010000
heap
page read and write
2FF8000
trusted library allocation
page read and write
2F4C000
trusted library allocation
page read and write
117E000
stack
page read and write
316C000
trusted library allocation
page read and write
D84000
heap
page read and write
4FF0000
heap
page read and write
2EE5000
trusted library allocation
page read and write
2EC2000
trusted library allocation
page read and write
3050000
trusted library allocation
page read and write
5AF2000
heap
page read and write
319C000
trusted library allocation
page read and write
6550000
trusted library allocation
page read and write
2E3A000
trusted library allocation
page read and write
A30000
heap
page read and write
FA0000
trusted library allocation
page read and write
1188000
trusted library allocation
page read and write
311A000
trusted library allocation
page read and write
2E4C000
trusted library allocation
page read and write
2F26000
trusted library allocation
page read and write
59E4000
trusted library allocation
page read and write
2E69000
trusted library allocation
page read and write
30E6000
trusted library allocation
page read and write
307B000
trusted library allocation
page read and write
309A000
trusted library allocation
page read and write
A8B000
stack
page read and write
5330000
trusted library allocation
page read and write
2E71000
trusted library allocation
page read and write
314A000
trusted library allocation
page read and write
31BD000
trusted library allocation
page read and write
3103000
trusted library allocation
page read and write
2EC6000
trusted library allocation
page read and write
3009000
trusted library allocation
page read and write
5AB0000
trusted library allocation
page execute and read and write
2C45000
trusted library allocation
page read and write
5000000
trusted library allocation
page read and write
2CE3000
trusted library allocation
page read and write
2FF6000
trusted library allocation
page read and write
2DF8000
trusted library allocation
page read and write
2FA6000
trusted library allocation
page read and write
FC0000
trusted library allocation
page read and write
DB0000
heap
page read and write
2D8D000
trusted library allocation
page read and write
309C000
trusted library allocation
page read and write
2F30000
trusted library allocation
page read and write
3200000
trusted library allocation
page read and write
981000
heap
page read and write
CE4000
trusted library allocation
page read and write
4C3D000
stack
page read and write
2F24000
trusted library allocation
page read and write
2EB2000
trusted library allocation
page read and write
30BA000
trusted library allocation
page read and write
5780000
trusted library section
page read and write
30AD000
trusted library allocation
page read and write
2F91000
trusted library allocation
page read and write
3083000
trusted library allocation
page read and write
5CA0000
trusted library section
page read and write
F8E000
stack
page read and write
2F4A000
trusted library allocation
page read and write
2E5B000
trusted library allocation
page read and write
CF4000
trusted library allocation
page read and write
6A0000
unkown
page readonly
2F42000
trusted library allocation
page read and write
4EA0000
trusted library section
page read and write
56F0000
heap
page read and write
93E000
heap
page read and write
307F000
trusted library allocation
page read and write
3098000
trusted library allocation
page read and write
3181000
trusted library allocation
page read and write
2FC0000
trusted library allocation
page read and write
5A80000
trusted library allocation
page execute and read and write
3096000
trusted library allocation
page read and write
1220000
heap
page read and write
97C000
heap
page read and write
3020000
trusted library allocation
page read and write
5D10000
trusted library allocation
page execute and read and write
3202000
trusted library allocation
page read and write
557E000
stack
page read and write
2EA3000
trusted library allocation
page read and write
DA0000
trusted library allocation
page read and write
2F17000
trusted library allocation
page read and write
31C2000
trusted library allocation
page read and write
6860000
trusted library section
page read and write
2F28000
trusted library allocation
page read and write
4D50000
heap
page read and write
3066000
trusted library allocation
page read and write
2E8F000
trusted library allocation
page read and write
2E8A000
trusted library allocation
page read and write
2CE1000
trusted library allocation
page read and write
50DE000
stack
page read and write
5AD0000
heap
page read and write
2B26000
trusted library allocation
page read and write
50FB000
stack
page read and write
3045000
trusted library allocation
page read and write
2FE8000
trusted library allocation
page read and write
D80000
trusted library allocation
page execute and read and write
2F7E000
trusted library allocation
page read and write
300B000
trusted library allocation
page read and write
2E73000
trusted library allocation
page read and write
68F0000
trusted library allocation
page execute and read and write
4FEB000
stack
page read and write
2F04000
trusted library allocation
page read and write
2F6C000
trusted library allocation
page read and write
EC0000
heap
page read and write
2ED0000
trusted library allocation
page read and write
2FD3000
trusted library allocation
page read and write
F4F000
stack
page read and write
51A0000
heap
page execute and read and write
2B20000
trusted library allocation
page read and write
2F8B000
trusted library allocation
page read and write
31A7000
trusted library allocation
page read and write
2F69000
trusted library allocation
page read and write
FCD000
trusted library allocation
page execute and read and write
2EAA000
trusted library allocation
page read and write
2FEC000
trusted library allocation
page read and write
2A5C000
trusted library allocation
page read and write
321E000
trusted library allocation
page read and write
312D000
trusted library allocation
page read and write
3049000
trusted library allocation
page read and write
5370000
heap
page read and write
2F5D000
trusted library allocation
page read and write
D7E000
stack
page read and write
29F0000
heap
page execute and read and write
3A01000
trusted library allocation
page read and write
2EC0000
trusted library allocation
page read and write
314C000
trusted library allocation
page read and write
FBD000
trusted library allocation
page execute and read and write
2ECA000
trusted library allocation
page read and write
5A05000
trusted library allocation
page read and write
3187000
trusted library allocation
page read and write
2E1F000
trusted library allocation
page read and write
1020000
trusted library allocation
page read and write
2E21000
trusted library allocation
page read and write
5F0E000
stack
page read and write
3043000
trusted library allocation
page read and write
2EFC000
trusted library allocation
page read and write
31FA000
trusted library allocation
page read and write
5130000
trusted library allocation
page execute and read and write
2E86000
trusted library allocation
page read and write
2FBA000
trusted library allocation
page read and write
2F65000
trusted library allocation
page read and write
2EDF000
trusted library allocation
page read and write
FEB000
trusted library allocation
page execute and read and write
5A90000
trusted library allocation
page read and write
977000
heap
page read and write
3062000
trusted library allocation
page read and write
31F4000
trusted library allocation
page read and write
2E30000
trusted library allocation
page read and write
5A60000
trusted library allocation
page execute and read and write
3135000
trusted library allocation
page read and write
31A9000
trusted library allocation
page read and write
547D000
stack
page read and write
675F000
stack
page read and write
2FB8000
trusted library allocation
page read and write
CD0000
trusted library allocation
page read and write
5AA0000
trusted library allocation
page read and write
5F70000
trusted library allocation
page read and write
2FA0000
trusted library allocation
page read and write
31F8000
trusted library allocation
page read and write
2EEC000
trusted library allocation
page read and write
3024000
trusted library allocation
page read and write
3131000
trusted library allocation
page read and write
5F40000
trusted library allocation
page read and write
3154000
trusted library allocation
page read and write
FB3000
trusted library allocation
page execute and read and write
313B000
trusted library allocation
page read and write
30EE000
trusted library allocation
page read and write
FB4000
trusted library allocation
page read and write
2F40000
trusted library allocation
page read and write
3173000
trusted library allocation
page read and write
2E50000
trusted library allocation
page read and write
D1B000
trusted library allocation
page execute and read and write
3194000
trusted library allocation
page read and write
4D40000
heap
page read and write
D07000
trusted library allocation
page execute and read and write
C10000
heap
page read and write
31FE000
trusted library allocation
page read and write
577E000
stack
page read and write
31FC000
trusted library allocation
page read and write
3026000
trusted library allocation
page read and write
59CF000
stack
page read and write
31A2000
trusted library allocation
page read and write
DAC000
trusted library allocation
page read and write
7F6000
unkown
page readonly
31F6000
trusted library allocation
page read and write
8F8000
stack
page read and write
5D00000
trusted library allocation
page read and write
3028000
trusted library allocation
page read and write
3170000
trusted library allocation
page read and write
5A30000
trusted library allocation
page read and write
2FAA000
trusted library allocation
page read and write
295D000
stack
page read and write
C00000
heap
page read and write
2ECC000
trusted library allocation
page read and write
2FD1000
trusted library allocation
page read and write
2FC4000
trusted library allocation
page read and write
2F48000
trusted library allocation
page read and write
300D000
trusted library allocation
page read and write
2F46000
trusted library allocation
page read and write
2FA2000
trusted library allocation
page read and write
2FE0000
trusted library allocation
page read and write
2E97000
trusted library allocation
page read and write
2E78000
trusted library allocation
page read and write
3007000
trusted library allocation
page read and write
2F15000
trusted library allocation
page read and write
2F76000
trusted library allocation
page read and write
2E27000
trusted library allocation
page read and write
567E000
stack
page read and write
D17000
trusted library allocation
page execute and read and write
D2E000
stack
page read and write
2E25000
trusted library allocation
page read and write
2E4E000
trusted library allocation
page read and write
300F000
trusted library allocation
page read and write
31A0000
trusted library allocation
page read and write
2E88000
trusted library allocation
page read and write
1010000
trusted library allocation
page execute and read and write
303B000
trusted library allocation
page read and write
A02000
heap
page read and write
2C96000
trusted library allocation
page read and write
30EC000
trusted library allocation
page read and write
319E000
trusted library allocation
page read and write
2DFC000
trusted library allocation
page read and write
2E32000
trusted library allocation
page read and write
2EE3000
trusted library allocation
page read and write
312F000
trusted library allocation
page read and write
2F7A000
trusted library allocation
page read and write
31A4000
trusted library allocation
page read and write
5CC000
stack
page read and write
30CF000
trusted library allocation
page read and write
5E8F000
stack
page read and write
7F820000
trusted library allocation
page execute and read and write
3124000
trusted library allocation
page read and write
5D8E000
stack
page read and write
2A9B000
trusted library allocation
page read and write
2F5F000
trusted library allocation
page read and write
5D20000
trusted library allocation
page read and write
5F50000
trusted library allocation
page execute and read and write
30E8000
trusted library allocation
page read and write
2A3B000
trusted library allocation
page read and write
400000
remote allocation
page execute and read and write
2A4F000
trusted library allocation
page read and write
FD2000
trusted library allocation
page read and write
2970000
heap
page read and write
2FC2000
trusted library allocation
page read and write
FDA000
trusted library allocation
page execute and read and write
5140000
heap
page read and write
5590000
heap
page read and write
2A39000
trusted library allocation
page read and write
2F00000
trusted library allocation
page read and write
31AB000
trusted library allocation
page read and write
3150000
trusted library allocation
page read and write
FE2000
trusted library allocation
page read and write
509E000
stack
page read and write
511E000
stack
page read and write
2810000
heap
page read and write
3047000
trusted library allocation
page read and write
2E52000
trusted library allocation
page read and write
30D5000
trusted library allocation
page read and write
9E9000
heap
page read and write
2E6D000
trusted library allocation
page read and write
3213000
trusted library allocation
page read and write
2E02000
trusted library allocation
page read and write
2F8D000
trusted library allocation
page read and write
DED000
heap
page read and write
2CDD000
trusted library allocation
page read and write
314E000
trusted library allocation
page read and write
FD0000
trusted library allocation
page read and write
3137000
trusted library allocation
page read and write
3105000
trusted library allocation
page read and write
3014000
trusted library allocation
page read and write
2990000
heap
page read and write
40C4000
trusted library allocation
page read and write
DE1000
heap
page read and write
2FF4000
trusted library allocation
page read and write
321B000
trusted library allocation
page read and write
2F2C000
trusted library allocation
page read and write
5AED000
heap
page read and write
2E1B000
trusted library allocation
page read and write
CF8000
trusted library allocation
page read and write
3120000
trusted library allocation
page read and write
3B41000
trusted library allocation
page read and write
52EE000
stack
page read and write
30FF000
trusted library allocation
page read and write
D91000
heap
page read and write
D50000
heap
page read and write
2E38000
trusted library allocation
page read and write
BF0000
heap
page read and write
A80000
heap
page read and write
309F000
trusted library allocation
page read and write
3079000
trusted library allocation
page read and write
2E46000
trusted library allocation
page read and write
FD6000
trusted library allocation
page execute and read and write
2F5B000
trusted library allocation
page read and write
CED000
trusted library allocation
page execute and read and write
30CD000
trusted library allocation
page read and write
2F02000
trusted library allocation
page read and write
2AD0000
heap
page execute and read and write
2FD7000
trusted library allocation
page read and write
2EA5000
trusted library allocation
page read and write
5D30000
trusted library allocation
page execute and read and write
31B9000
trusted library allocation
page read and write
2F1B000
trusted library allocation
page read and write
There are 472 hidden memdumps, click here to show them.