IOC Report

loading gif

Processes

Path
Cmdline
Malicious
C:\Windows\SysWOW64\cmd.exe
cmd /C ""C:\Users\aullom\AppData\Roaming\{28e56cfb-e30e-4f66-85d8-339885b726b8}\Helper.exe" http:%2F%2Fsearch.easytelevisionaccess.com%2F%3Fuc=20200418%26uid=d805634c-a765-41aa-8b89-ace0e55d48c3%26i_id=tv_spt__1.30%26ap=appfocus686%26source=gdn_v1-bb9-iei-msn-su 21600 true"
C:\Windows\System32\conhost.exe
C:\Windows\system32\conhost.exe 0xffffffff -ForceV1