Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
C:\Users\user\Downloads\Stars_pack_version_21.3.1\version_21\Comn.dll
|
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
|
dropped
|
 |
|
|
C:\Users\user\Downloads\Stars_pack_version_21.3.1\version_21\QtCore4.dll
|
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\Downloads\Stars_pack_version_21.3.1\version_21\QtGui4.dll
|
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\Downloads\Stars_pack_version_21.3.1\version_21\QtNetwork4.dll
|
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\Downloads\Stars_pack_version_21.3.1\version_21\libcrypto-1_1.dll
|
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\Downloads\Stars_pack_version_21.3.1\version_21\libssl-1_1.dll
|
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\Downloads\Stars_pack_version_21.3.1\version_21\msvcp80.dll
|
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\Downloads\Stars_pack_version_21.3.1\version_21\msvcr80.dll
|
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\Downloads\Stars_pack_version_21.3.1\version_21\zkwindow.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\c149800b
|
data
|
dropped
|
||
|
C:\Users\user\Downloads\Stars_pack_version_21.3.1.zip (copy)
|
Zip archive data, at least v2.0 to extract, compression method=store
|
dropped
|
||
|
C:\Users\user\Downloads\Stars_pack_version_21.3.1.zip.crdownload
|
Zip archive data, at least v2.0 to extract, compression method=store
|
dropped
|
||
|
C:\Users\user\Downloads\Stars_pack_version_21.3.1\version_21\acajou.dmg
|
Matlab v4 mat-file (little endian) l, numeric, rows 20557, columns 7301632
|
dropped
|
||
|
C:\Users\user\Downloads\Stars_pack_version_21.3.1\version_21\mickey.db
|
data
|
dropped
|
||
|
C:\Users\user\Downloads\d5d6b308-bfbb-4dd4-bf8b-ff8f825d0b61.tmp
|
Zip archive data, at least v2.0 to extract, compression method=store
|
dropped
|
There are 6 hidden files, click here to show them.
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
https://westmaidentrue.click/mirage/magestique
|
|
||
|
https://otelrules.svc.static.microsoft/rules/rule702450v1s19.xml
|
13.107.246.76
|
||
|
https://otelrules.svc.static.microsoft/rules/rule701100v1s19.xml
|
13.107.246.76
|
||
|
https://otelrules.svc.static.microsoft/rules/rule120128v0s19.xml
|
13.107.246.76
|
||
|
https://otelrules.svc.static.microsoft/rules/rule120603v8s19.xml
|
13.107.246.76
|
||
|
https://otelrules.svc.static.microsoft/rules/rule701101v1s19.xml
|
13.107.246.76
|
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
westmaidentrue.click
|
104.21.16.1
|
||
|
www.google.com
|
142.250.181.228
|
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
142.250.185.99
|
unknown
|
United States
|
||
|
142.250.110.84
|
unknown
|
United States
|
||
|
142.250.181.238
|
unknown
|
United States
|
||
|
104.21.16.1
|
westmaidentrue.click
|
United States
|
||
|
142.250.185.206
|
unknown
|
United States
|
||
|
1.1.1.1
|
unknown
|
Australia
|
||
|
142.250.181.228
|
www.google.com
|
United States
|
||
|
192.168.2.17
|
unknown
|
unknown
|
||
|
142.250.186.142
|
unknown
|
United States
|
||
|
142.250.184.227
|
unknown
|
United States
|
||
|
216.58.212.163
|
unknown
|
United States
|
There are 1 hidden IPs, click here to show them.