Engine | Download Report | Detection | Info |
---|---|---|---|
|
malicious
Score: 100
|
System: Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
|
IP | Country | Detection |
---|---|---|
13.107.43.12 | United States |
Name | IP | Detection |
---|---|---|
l-0003.l-dc-msedge.net | 13.107.43.12 | |
onedrive.live.com | 0.0.0.0 | |
p5lwwa.am.files.1drv.com | 0.0.0.0 |
Name | Detection |
---|---|
www.kingnat.xyz/t3c9/ | |
http://schemas.xmlsoap.org/wsdl/soap12/ | |
https://p5lwwa.am.files.1drv.com/y4mgzNYyFWCuoL1CpJfXG2nhOmpagM85vjzT_hk23otZxY8j9kthxhLVo3LgW441-iw | |
Click to see the 42 hidden entries | |
http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702sedge. | |
http://www.emerge.deDVarFileInfo$ | |
https://onedrive.live.com/X | |
http://schemas.xmlsoap.org/wsdl/.311.64.1.1 | |
http://schemas.xmlsoap.org/wsdl/soap12/2M | |
http://schemas.xmlsoap.org/ws/2005/07/securitypolicy | |
http://schemas.xmlsoap.org/wsdl/soap12/_MtR | |
http://schemas.xmlsoap.org/wsdl/uM | |
https://p5lwwa.am.files.1drv.com/y4msw-fK9n4RvVHniohtl1pJS-yLFYm8CD02pmUoRRn43kEG_ADEfWFKSlO_5d-N-oIPgs43fFTG0AhbrwTaPAJ85Dl25iL1IoO7lHS9lk80VOWo8yA7O8gsh7f_1W-YE4WSTx_DyFGHvC6ylTsygqSOJ1QGvVToggN3Vrt2wBfOq_inO0YBhZfikv3CrmcRYGDeWlhoaRiIuAqhUoiGtrzvQ/Tdcecogbbgrxarcelvdgocpkcdmqukp?download&psid=1 | |
https://onedrive.live.com/ | |
http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd- | |
http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsdu(#u | |
http://schemas.xmlsoap.org/wsdl/ | |
https://p5lwwa.am.files.1drv.com/I | |
http://docs.oasis-open.org/ws-sx/ws-trust/200512pi.DLL | |
http://schemas.xmlsoap.org/ws/2005/07/securitypolicyl | |
http://www.emerge.de | |
https://p5lwwa.am.files.1drv.com/y4mgzNYyFWCuoL1CpJfXG2nhOmpagM85vjzT_hk23otZxY8j9kthxhLVo3LgW441-iwIh8I2hDn-UNAyUZte-8CDcbI6mjERFyHQvM5lOMpPUcp7dXSNoVMY08rwVPjcDqmshWD_m0BtUzyYLclLlxVwpniw7rMNzYknJCnTKcNFoNHorlwCremlDoXBOv5xoKy9xFHzExo4SqFx77jluAO1w/Tdcecogbbgrxarcelvdgocpkcdmqukp?download&psid=1 | |
http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd | |
https://p5lwwa.am.files.1drv.com/ | |
https://p5lwwa.am.files.1drv.com/y4mvhKZp4Gd64KYamq2Wfd2SQv3HKrsqfBmLESdWEMe08HDbW6BDnz0-DxqxDMbfg2p | |
http://www.pregrad.netopenU | |
http://schemas.xmlsoap.org/ws/2004/09/policylw# | |
https://p5lwwa.am.files.1drv.com/y4msw-fK9n4RvVHniohtl1pJS-yLFYm8CD02pmUoRRn43kEG_ADEfWFKSlO_5d-N-oI | |
https://onedrive.live.com/download?cid=FB5C5DB4B53601EB&resid=FB5C5DB4B53601EB%21540&authkey=ANMH1EL | |
https://p5lwwa.am.files.1drv.com/y4mWaWHLDrKa1inK4H1-418q8gR5LOHQWd0yslABzjJdjTslqzhgckkVhZZLptEbF7ndQ_lX3hAzKtmxmKLkKoh_hOoV_JQR-EgEudu5yE6WeSxYG9Dp8AYZBrdKmH4vWosv4HmD7AL1CuOg2XRAncH98temHxOIl2gz4xWzEHjt_yiVKKE7vnQWji5idDo64O4jlghaSFcD1evnS6W_9DV8Q/Tdcecogbbgrxarcelvdgocpkcdmqukp?download&psid=1 | |
http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702 | |
http://www.pregrad.net | |
http://schemas.xmlsoap.org/ws/2004/09/policyF& | |
http://schemas.xmlsoap.org/ws/2004/09/policy | |
http://schemas.xmlsoap.org/ws/2005/07/securitypolicyLL | |
http://schemas.xmlsoap.org/wsdl/soap12/qN | |
https://p5lwwa.am.files.1drv.com/y4mg-DHcHfDPwIEu14sqxJyRZsryuh1g85uk6OFK2GIjs72wZESTb1fRA8K_iSfWQEYtoouzDxBltKddN1Av6UMrT1igS3asX2Ub5nMyzzNHe1ElN6oIFeFAsb76-p7XcS9XaWDDD0uiOMHwkSOZMFc0reu1fq666DxIfR2x7R8JpvyoQZ7Fo6AbBps1dyU-ZtyLWKa7YwP_DeWKIrs8ghU8A/Tdcecogbbgrxarcelvdgocpkcdmqukp?download&psid=1 | |
http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsdcmh | |
http://schemas.xmlsoap.org/ws/2005/02/trustJslw | |
http://schemas.xmlsoap.org/ws/2005/02/trustJslwg | |
https://onedrive.live.com/B&resid=FB5C5DB4B53601EB%21540&authkey=ANMH1ELgXQdJslw | |
http://schemas.xmlsoap.org/ws/2005/07/securitypolicyN | |
https://p5lwwa.am.files.1drv.com/y4mWaWHLDrKa1inK4H1-418q8gR5LOHQWd0yslABzjJdjTslqzhgckkVhZZLptEbF7n | |
http://docs.oasis-open.org/ws-sx/ws-trust/2005129 | |
http://schemas.xmlsoap.org/wsdl/JMiR | |
http://schemas.xmlsoap.org/ws/2004/09/policylw |
Name | File Type | Hashes | Detection |
---|---|---|---|
C:\Users\Public\Libraries\Tdceco.exe:Zone.Identifier |
ASCII text, with CRLF line terminators | # | |
C:\Users\Public\Libraries\Tdceco.exe |
PE32 executable (GUI) Intel 80386, for MS Windows | # | |
C:\ProgramData\Microsoft\Windows\WER\Temp\WERE768.tmp.dmp |
Mini DuMP crash report, 14 streams, Fri Aug 5 19:52:26 2022, 0x1205a4 type | # | |
Click to see the 15 hidden entries | |||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\G62TDH9B\Tdcecogbbgrxarcelvdgocpkcdmqukp[1] |
data | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9QTQHWWN\Tdcecogbbgrxarcelvdgocpkcdmqukp[2] |
data | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\3Y2ADQKS\Tdcecogbbgrxarcelvdgocpkcdmqukp[1] |
data | # | |
C:\Users\Public\Libraries\ocecdT.url |
MS Windows 95 Internet shortcut text (URL=<file:"C:\\Users\\Public\\Libraries\\Tdceco.exe">), ASCII text, with CRLF line terminators | # | |
C:\ProgramData\Microsoft\Windows\WER\Temp\WERF351.tmp.xml |
XML 1.0 document, ASCII text, with CRLF line terminators | # | |
C:\ProgramData\Microsoft\Windows\WER\Temp\WEREDA3.tmp.WERInternalMetadata.xml |
XML 1.0 document, Little-endian UTF-16 Unicode text, with CRLF line terminators | # | |
C:\ProgramData\Microsoft\Windows\WER\ReportQueue\AppCrash_logagent.exe_3e894c43284c62ca8825101ba19eb171b9823b5f_0357e9de_162dfe0d\Report.wer |
Little-endian UTF-16 Unicode text, with CRLF line terminators | # | |
C:\ProgramData\Microsoft\Windows\WER\Temp\WERA7FF.tmp.xml |
XML 1.0 document, ASCII text, with CRLF line terminators | # | |
C:\ProgramData\Microsoft\Windows\WER\Temp\WERA5DC.tmp.WERInternalMetadata.xml |
XML 1.0 document, Little-endian UTF-16 Unicode text, with CRLF line terminators | # | |
C:\ProgramData\Microsoft\Windows\WER\Temp\WERA0F9.tmp.dmp |
Mini DuMP crash report, 14 streams, Fri Aug 5 19:52:08 2022, 0x1205a4 type | # | |
C:\ProgramData\Microsoft\Windows\WER\Temp\WER2D32.tmp.xml |
XML 1.0 document, ASCII text, with CRLF line terminators | # | |
C:\ProgramData\Microsoft\Windows\WER\Temp\WER2B3D.tmp.WERInternalMetadata.xml |
XML 1.0 document, Little-endian UTF-16 Unicode text, with CRLF line terminators | # | |
C:\ProgramData\Microsoft\Windows\WER\Temp\WER2754.tmp.dmp |
Mini DuMP crash report, 14 streams, Fri Aug 5 19:51:37 2022, 0x1205a4 type | # | |
C:\ProgramData\Microsoft\Windows\WER\ReportQueue\AppCrash_logagent.exe_96c1d13f279867748ea9992828437f88fb7a_0357e9de_16cd672c\Report.wer |
Little-endian UTF-16 Unicode text, with CRLF line terminators | # | |
C:\ProgramData\Microsoft\Windows\WER\ReportQueue\AppCrash_logagent.exe_96c1d13f279867748ea9992828437f88fb7a_0357e9de_081db646\Report.wer |
Little-endian UTF-16 Unicode text, with CRLF line terminators | # |