Engine | Download Report | Detection | Info |
---|---|---|---|
|
malicious
|
||
|
malicious
Score: 100
|
System: Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
|
IP | Country | Detection |
---|---|---|
80.76.42.141 | Russian Federation | |
37.140.192.158 | Russian Federation |
Name | IP | Detection |
---|---|---|
kukaryka.ru | 80.76.42.141 | |
dindunketagestan.ru | 37.140.192.158 | |
telemetry.skype.com | 0.0.0.0 |
Name | Detection |
---|---|
http://dindunketagestan.ru/ | |
http://goalichkindomik.ru/ | |
http://pali44unkis9.ru/ | |
Click to see the 4 hidden entries | |
http://klenoviycdesss.ru/ | |
http://www.autoitscript.com/autoit3/J | |
http://telemetry.skype.com/drew/ | |
http://kukaryka.ru/iTunesHelper.exe |
Name | File Type | Hashes | Detection |
---|---|---|---|
C:\Users\user\AppData\Local\Temp\3196.exe |
PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows | # | |
C:\Users\user\AppData\Local\Temp\loader_250246_15072022_2203_31102022.exe |
PE32 executable (GUI) Intel 80386, for MS Windows | # | |
C:\Users\user\AppData\Roaming\vcivdjd |
PE32 executable (GUI) Intel 80386, for MS Windows | # | |
Click to see the 2 hidden entries | |||
C:\Users\user\AppData\Roaming\vcivdjd:Zone.Identifier |
ASCII text, with CRLF line terminators | # | |
C:\Users\user\AppData\Local\Microsoft\CLR_v4.0_32\UsageLogs\3196.exe.log |
ASCII text, with CRLF line terminators | # |