Engine | Download Report | Detection | Info |
---|---|---|---|
|
malicious
|
||
|
malicious
Score: 100
|
System: Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
|
IP | Country | Detection |
---|---|---|
62.204.41.4 | United Kingdom |
Name | Detection |
---|---|
http://62.204.41.4/Gol478Ns/Plugins/cred64.dll | |
http://62.204.41.4/Gol478Ns/Plugins/clip64.dll | |
62.204.41.4/Gol478Ns/index.php | |
Click to see the 1 hidden entries | |
http://62.204.41.4/Gol478Ns/index.php |
Name | File Type | Hashes | Detection |
---|---|---|---|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OTUW0Q90\clip64[1].dll |
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows | # | |
C:\Users\user\AppData\Local\Temp\4b9a106e76\mnolyk.exe |
PE32 executable (GUI) Intel 80386, for MS Windows | # | |
C:\Users\user\AppData\Local\Temp\IXP000.TMP\bfCg.exe |
PE32 executable (GUI) Intel 80386, for MS Windows | # | |
Click to see the 8 hidden entries | |||
C:\Users\user\AppData\Local\Temp\IXP000.TMP\xriv.exe |
PE32 executable (GUI) Intel 80386, for MS Windows | # | |
C:\Users\user\AppData\Local\Temp\IXP001.TMP\afCf.exe |
PE32 executable (GUI) Intel 80386, for MS Windows | # | |
C:\Users\user\AppData\Local\Temp\IXP001.TMP\nika.exe |
PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows | # | |
C:\Users\user\AppData\Roaming\c1ec479e5342a2\clip64.dll |
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows | # | |
C:\Users\user\AppData\Local\Microsoft\CLR_v4.0\UsageLogs\nika.exe.log |
CSV text | # | |
C:\Users\user\AppData\Local\Microsoft\CLR_v4.0_32\UsageLogs\afCf.exe.log |
ASCII text, with CRLF line terminators | # | |
C:\Users\user\AppData\Roaming\c1ec479e5342a2\cred64.dll |
HTML document, ASCII text, with CRLF line terminators | # | |
\Device\ConDrv |
ASCII text, with no line terminators | # |