IOC Report
https://ggg-logistics.com/

C:\Config.Msi\58addc.rbs

data

dropped

C:\Config.Msi\58adde.rbs

data

dropped

C:\Config.Msi\58ade0.rbs

data

dropped

C:\Config.Msi\58ade2.rbs

data

dropped

C:\Config.Msi\58ade4.rbs

data

dropped

C:\Config.Msi\58ade6.rbs

data

dropped

C:\Config.Msi\58ade8.rbs

data

dropped

C:\Config.Msi\58adea.rbs

data

dropped

C:\Config.Msi\58adec.rbs

data

dropped

C:\Config.Msi\58adee.rbs

data

dropped

C:\Config.Msi\58adf0.rbs

data

dropped

C:\Config.Msi\58adf2.rbs

data

dropped

C:\Config.Msi\58adf4.rbs

data

dropped

C:\Config.Msi\58adf6.rbs

data

dropped

C:\Config.Msi\58adf8.rbs

data

dropped

C:\Config.Msi\58adfa.rbs

data

dropped

C:\Config.Msi\58adfc.rbs

data

dropped

C:\Config.Msi\58adfe.rbs

data

dropped

C:\Users\user\AppData\Local\Microsoft\Windows\PowerShell\ModuleAnalysisCache

data

modified

C:\Users\user\AppData\Local\Temp\__PSScriptPolicyTest_bl25zx5c.ps3.ps1

ASCII text, with no line terminators

dropped

C:\Users\user\AppData\Local\Temp\__PSScriptPolicyTest_x0bqkozc.5rf.psm1

ASCII text, with no line terminators

dropped

C:\Windows\Installer\58adca.msi

Composite Document File V2 Document, Little Endian, Os: Windows, Version 6.2, MSI Installer, Code page: 1252, Title: Installation Database, Subject: GoToMeeting Updater, Author: CitrixSystems, Keywords: Installer, Comments: This installer database contains the logic and data required to install GoTo., Template: x64;1033, Revision Number: {8EB6C5B9-E3E4-4C99-901D-D3213245204A}, Create Time/Date: Fri May 30 13:03:54 2025, Last Saved Time/Date: Fri May 30 13:03:54 2025, Number of Pages: 200, Number of Words: 10, Name of Creating Application: Windows Installer XML Toolset (3.14.1.8722), Security: 2

dropped

C:\Windows\Installer\MSI15A3.tmp

Composite Document File V2 Document, Little Endian, Os: Windows, Version 6.2, MSI Installer, Code page: 1252, Title: Installation Database, Subject: GoToMeeting Updater, Author: CitrixSystems, Keywords: Installer, Comments: This installer database contains the logic and data required to install GoTo., Template: x64;1033, Revision Number: {8EB6C5B9-E3E4-4C99-901D-D3213245204A}, Create Time/Date: Fri May 30 13:03:54 2025, Last Saved Time/Date: Fri May 30 13:03:54 2025, Number of Pages: 200, Number of Words: 10, Name of Creating Application: Windows Installer XML Toolset (3.14.1.8722), Security: 2

dropped

C:\Windows\Installer\MSI1640.tmp

data

dropped

C:\Windows\Installer\MSI19BC.tmp

Composite Document File V2 Document, Little Endian, Os: Windows, Version 6.2, MSI Installer, Code page: 1252, Title: Installation Database, Subject: GoToMeeting Updater, Author: CitrixSystems, Keywords: Installer, Comments: This installer database contains the logic and data required to install GoTo., Template: x64;1033, Revision Number: {8EB6C5B9-E3E4-4C99-901D-D3213245204A}, Create Time/Date: Fri May 30 13:03:54 2025, Last Saved Time/Date: Fri May 30 13:03:54 2025, Number of Pages: 200, Number of Words: 10, Name of Creating Application: Windows Installer XML Toolset (3.14.1.8722), Security: 2

dropped

C:\Windows\Installer\MSI1C2E.tmp

data

dropped

C:\Windows\Installer\MSI21FB.tmp

Composite Document File V2 Document, Little Endian, Os: Windows, Version 6.2, MSI Installer, Code page: 1252, Title: Installation Database, Subject: GoToMeeting Updater, Author: CitrixSystems, Keywords: Installer, Comments: This installer database contains the logic and data required to install GoTo., Template: x64;1033, Revision Number: {8EB6C5B9-E3E4-4C99-901D-D3213245204A}, Create Time/Date: Fri May 30 13:03:54 2025, Last Saved Time/Date: Fri May 30 13:03:54 2025, Number of Pages: 200, Number of Words: 10, Name of Creating Application: Windows Installer XML Toolset (3.14.1.8722), Security: 2

dropped

C:\Windows\Installer\MSI22B7.tmp

data

dropped

C:\Windows\Installer\MSI2623.tmp

Composite Document File V2 Document, Little Endian, Os: Windows, Version 6.2, MSI Installer, Code page: 1252, Title: Installation Database, Subject: GoToMeeting Updater, Author: CitrixSystems, Keywords: Installer, Comments: This installer database contains the logic and data required to install GoTo., Template: x64;1033, Revision Number: {8EB6C5B9-E3E4-4C99-901D-D3213245204A}, Create Time/Date: Fri May 30 13:03:54 2025, Last Saved Time/Date: Fri May 30 13:03:54 2025, Number of Pages: 200, Number of Words: 10, Name of Creating Application: Windows Installer XML Toolset (3.14.1.8722), Security: 2

dropped

C:\Windows\Installer\MSI26F0.tmp

data

dropped

C:\Windows\Installer\MSI2ED0.tmp

Composite Document File V2 Document, Little Endian, Os: Windows, Version 6.2, MSI Installer, Code page: 1252, Title: Installation Database, Subject: GoToMeeting Updater, Author: CitrixSystems, Keywords: Installer, Comments: This installer database contains the logic and data required to install GoTo., Template: x64;1033, Revision Number: {8EB6C5B9-E3E4-4C99-901D-D3213245204A}, Create Time/Date: Fri May 30 13:03:54 2025, Last Saved Time/Date: Fri May 30 13:03:54 2025, Number of Pages: 200, Number of Words: 10, Name of Creating Application: Windows Installer XML Toolset (3.14.1.8722), Security: 2

dropped

C:\Windows\Installer\MSI2F6D.tmp

data

dropped

C:\Windows\Installer\MSI32BA.tmp

Composite Document File V2 Document, Little Endian, Os: Windows, Version 6.2, MSI Installer, Code page: 1252, Title: Installation Database, Subject: GoToMeeting Updater, Author: CitrixSystems, Keywords: Installer, Comments: This installer database contains the logic and data required to install GoTo., Template: x64;1033, Revision Number: {8EB6C5B9-E3E4-4C99-901D-D3213245204A}, Create Time/Date: Fri May 30 13:03:54 2025, Last Saved Time/Date: Fri May 30 13:03:54 2025, Number of Pages: 200, Number of Words: 10, Name of Creating Application: Windows Installer XML Toolset (3.14.1.8722), Security: 2

dropped

C:\Windows\Installer\MSI3357.tmp

data

dropped

C:\Windows\Installer\MSI3656.tmp

Composite Document File V2 Document, Little Endian, Os: Windows, Version 6.2, MSI Installer, Code page: 1252, Title: Installation Database, Subject: GoToMeeting Updater, Author: CitrixSystems, Keywords: Installer, Comments: This installer database contains the logic and data required to install GoTo., Template: x64;1033, Revision Number: {8EB6C5B9-E3E4-4C99-901D-D3213245204A}, Create Time/Date: Fri May 30 13:03:54 2025, Last Saved Time/Date: Fri May 30 13:03:54 2025, Number of Pages: 200, Number of Words: 10, Name of Creating Application: Windows Installer XML Toolset (3.14.1.8722), Security: 2

dropped

C:\Windows\Installer\MSI3722.tmp

data

dropped

C:\Windows\Installer\MSI379E.tmp

Composite Document File V2 Document, Little Endian, Os: Windows, Version 6.2, MSI Installer, Code page: 1252, Title: Installation Database, Subject: GoToMeeting Updater, Author: CitrixSystems, Keywords: Installer, Comments: This installer database contains the logic and data required to install GoTo., Template: x64;1033, Revision Number: {8EB6C5B9-E3E4-4C99-901D-D3213245204A}, Create Time/Date: Fri May 30 13:03:54 2025, Last Saved Time/Date: Fri May 30 13:03:54 2025, Number of Pages: 200, Number of Words: 10, Name of Creating Application: Windows Installer XML Toolset (3.14.1.8722), Security: 2

dropped

C:\Windows\Installer\MSI3A7F.tmp

Composite Document File V2 Document, Little Endian, Os: Windows, Version 6.2, MSI Installer, Code page: 1252, Title: Installation Database, Subject: GoToMeeting Updater, Author: CitrixSystems, Keywords: Installer, Comments: This installer database contains the logic and data required to install GoTo., Template: x64;1033, Revision Number: {8EB6C5B9-E3E4-4C99-901D-D3213245204A}, Create Time/Date: Fri May 30 13:03:54 2025, Last Saved Time/Date: Fri May 30 13:03:54 2025, Number of Pages: 200, Number of Words: 10, Name of Creating Application: Windows Installer XML Toolset (3.14.1.8722), Security: 2

modified

C:\Windows\Installer\MSI447.tmp

Composite Document File V2 Document, Little Endian, Os: Windows, Version 6.2, MSI Installer, Code page: 1252, Title: Installation Database, Subject: GoToMeeting Updater, Author: CitrixSystems, Keywords: Installer, Comments: This installer database contains the logic and data required to install GoTo., Template: x64;1033, Revision Number: {8EB6C5B9-E3E4-4C99-901D-D3213245204A}, Create Time/Date: Fri May 30 13:03:54 2025, Last Saved Time/Date: Fri May 30 13:03:54 2025, Number of Pages: 200, Number of Words: 10, Name of Creating Application: Windows Installer XML Toolset (3.14.1.8722), Security: 2

dropped

C:\Windows\Installer\MSI4E4.tmp

data

dropped

C:\Windows\Installer\MSI5D.tmp

Composite Document File V2 Document, Little Endian, Os: Windows, Version 6.2, MSI Installer, Code page: 1252, Title: Installation Database, Subject: GoToMeeting Updater, Author: CitrixSystems, Keywords: Installer, Comments: This installer database contains the logic and data required to install GoTo., Template: x64;1033, Revision Number: {8EB6C5B9-E3E4-4C99-901D-D3213245204A}, Create Time/Date: Fri May 30 13:03:54 2025, Last Saved Time/Date: Fri May 30 13:03:54 2025, Number of Pages: 200, Number of Words: 10, Name of Creating Application: Windows Installer XML Toolset (3.14.1.8722), Security: 2

dropped

C:\Windows\Installer\MSI8FC.tmp

Composite Document File V2 Document, Little Endian, Os: Windows, Version 6.2, MSI Installer, Code page: 1252, Title: Installation Database, Subject: GoToMeeting Updater, Author: CitrixSystems, Keywords: Installer, Comments: This installer database contains the logic and data required to install GoTo., Template: x64;1033, Revision Number: {8EB6C5B9-E3E4-4C99-901D-D3213245204A}, Create Time/Date: Fri May 30 13:03:54 2025, Last Saved Time/Date: Fri May 30 13:03:54 2025, Number of Pages: 200, Number of Words: 10, Name of Creating Application: Windows Installer XML Toolset (3.14.1.8722), Security: 2

dropped

C:\Windows\Installer\MSI9E8.tmp

data

dropped

C:\Windows\Installer\MSIADD8.tmp

data

dropped

C:\Windows\Installer\MSIB4DE.tmp

Composite Document File V2 Document, Little Endian, Os: Windows, Version 6.2, MSI Installer, Code page: 1252, Title: Installation Database, Subject: GoToMeeting Updater, Author: CitrixSystems, Keywords: Installer, Comments: This installer database contains the logic and data required to install GoTo., Template: x64;1033, Revision Number: {8EB6C5B9-E3E4-4C99-901D-D3213245204A}, Create Time/Date: Fri May 30 13:03:54 2025, Last Saved Time/Date: Fri May 30 13:03:54 2025, Number of Pages: 200, Number of Words: 10, Name of Creating Application: Windows Installer XML Toolset (3.14.1.8722), Security: 2

dropped

C:\Windows\Installer\MSIB5CA.tmp

data

dropped

C:\Windows\Installer\MSIB955.tmp

Composite Document File V2 Document, Little Endian, Os: Windows, Version 6.2, MSI Installer, Code page: 1252, Title: Installation Database, Subject: GoToMeeting Updater, Author: CitrixSystems, Keywords: Installer, Comments: This installer database contains the logic and data required to install GoTo., Template: x64;1033, Revision Number: {8EB6C5B9-E3E4-4C99-901D-D3213245204A}, Create Time/Date: Fri May 30 13:03:54 2025, Last Saved Time/Date: Fri May 30 13:03:54 2025, Number of Pages: 200, Number of Words: 10, Name of Creating Application: Windows Installer XML Toolset (3.14.1.8722), Security: 2

dropped

C:\Windows\Installer\MSIBA02.tmp

data

dropped

C:\Windows\Installer\MSIBD00.tmp

Composite Document File V2 Document, Little Endian, Os: Windows, Version 6.2, MSI Installer, Code page: 1252, Title: Installation Database, Subject: GoToMeeting Updater, Author: CitrixSystems, Keywords: Installer, Comments: This installer database contains the logic and data required to install GoTo., Template: x64;1033, Revision Number: {8EB6C5B9-E3E4-4C99-901D-D3213245204A}, Create Time/Date: Fri May 30 13:03:54 2025, Last Saved Time/Date: Fri May 30 13:03:54 2025, Number of Pages: 200, Number of Words: 10, Name of Creating Application: Windows Installer XML Toolset (3.14.1.8722), Security: 2

dropped

C:\Windows\Installer\MSIBE78.tmp

data

dropped

C:\Windows\Installer\MSIC213.tmp

Composite Document File V2 Document, Little Endian, Os: Windows, Version 6.2, MSI Installer, Code page: 1252, Title: Installation Database, Subject: GoToMeeting Updater, Author: CitrixSystems, Keywords: Installer, Comments: This installer database contains the logic and data required to install GoTo., Template: x64;1033, Revision Number: {8EB6C5B9-E3E4-4C99-901D-D3213245204A}, Create Time/Date: Fri May 30 13:03:54 2025, Last Saved Time/Date: Fri May 30 13:03:54 2025, Number of Pages: 200, Number of Words: 10, Name of Creating Application: Windows Installer XML Toolset (3.14.1.8722), Security: 2

dropped

C:\Windows\Installer\MSIC34D.tmp

data

dropped

C:\Windows\Installer\MSIC7B3.tmp

Composite Document File V2 Document, Little Endian, Os: Windows, Version 6.2, MSI Installer, Code page: 1252, Title: Installation Database, Subject: GoToMeeting Updater, Author: CitrixSystems, Keywords: Installer, Comments: This installer database contains the logic and data required to install GoTo., Template: x64;1033, Revision Number: {8EB6C5B9-E3E4-4C99-901D-D3213245204A}, Create Time/Date: Fri May 30 13:03:54 2025, Last Saved Time/Date: Fri May 30 13:03:54 2025, Number of Pages: 200, Number of Words: 10, Name of Creating Application: Windows Installer XML Toolset (3.14.1.8722), Security: 2

dropped

C:\Windows\Installer\MSIC9B7.tmp

data

dropped

C:\Windows\Installer\MSICEBA.tmp

Composite Document File V2 Document, Little Endian, Os: Windows, Version 6.2, MSI Installer, Code page: 1252, Title: Installation Database, Subject: GoToMeeting Updater, Author: CitrixSystems, Keywords: Installer, Comments: This installer database contains the logic and data required to install GoTo., Template: x64;1033, Revision Number: {8EB6C5B9-E3E4-4C99-901D-D3213245204A}, Create Time/Date: Fri May 30 13:03:54 2025, Last Saved Time/Date: Fri May 30 13:03:54 2025, Number of Pages: 200, Number of Words: 10, Name of Creating Application: Windows Installer XML Toolset (3.14.1.8722), Security: 2

dropped

C:\Windows\Installer\MSICF76.tmp

data

dropped

C:\Windows\Installer\MSID2E2.tmp

Composite Document File V2 Document, Little Endian, Os: Windows, Version 6.2, MSI Installer, Code page: 1252, Title: Installation Database, Subject: GoToMeeting Updater, Author: CitrixSystems, Keywords: Installer, Comments: This installer database contains the logic and data required to install GoTo., Template: x64;1033, Revision Number: {8EB6C5B9-E3E4-4C99-901D-D3213245204A}, Create Time/Date: Fri May 30 13:03:54 2025, Last Saved Time/Date: Fri May 30 13:03:54 2025, Number of Pages: 200, Number of Words: 10, Name of Creating Application: Windows Installer XML Toolset (3.14.1.8722), Security: 2

dropped

C:\Windows\Installer\MSID3DD.tmp

data

dropped

C:\Windows\Installer\MSID71A.tmp

Composite Document File V2 Document, Little Endian, Os: Windows, Version 6.2, MSI Installer, Code page: 1252, Title: Installation Database, Subject: GoToMeeting Updater, Author: CitrixSystems, Keywords: Installer, Comments: This installer database contains the logic and data required to install GoTo., Template: x64;1033, Revision Number: {8EB6C5B9-E3E4-4C99-901D-D3213245204A}, Create Time/Date: Fri May 30 13:03:54 2025, Last Saved Time/Date: Fri May 30 13:03:54 2025, Number of Pages: 200, Number of Words: 10, Name of Creating Application: Windows Installer XML Toolset (3.14.1.8722), Security: 2

dropped

C:\Windows\Installer\MSID873.tmp

data

dropped

C:\Windows\Installer\MSIDC9B.tmp

Composite Document File V2 Document, Little Endian, Os: Windows, Version 6.2, MSI Installer, Code page: 1252, Title: Installation Database, Subject: GoToMeeting Updater, Author: CitrixSystems, Keywords: Installer, Comments: This installer database contains the logic and data required to install GoTo., Template: x64;1033, Revision Number: {8EB6C5B9-E3E4-4C99-901D-D3213245204A}, Create Time/Date: Fri May 30 13:03:54 2025, Last Saved Time/Date: Fri May 30 13:03:54 2025, Number of Pages: 200, Number of Words: 10, Name of Creating Application: Windows Installer XML Toolset (3.14.1.8722), Security: 2

dropped

C:\Windows\Installer\MSIDDF3.tmp

data

dropped

C:\Windows\Installer\MSIE19E.tmp

Composite Document File V2 Document, Little Endian, Os: Windows, Version 6.2, MSI Installer, Code page: 1252, Title: Installation Database, Subject: GoToMeeting Updater, Author: CitrixSystems, Keywords: Installer, Comments: This installer database contains the logic and data required to install GoTo., Template: x64;1033, Revision Number: {8EB6C5B9-E3E4-4C99-901D-D3213245204A}, Create Time/Date: Fri May 30 13:03:54 2025, Last Saved Time/Date: Fri May 30 13:03:54 2025, Number of Pages: 200, Number of Words: 10, Name of Creating Application: Windows Installer XML Toolset (3.14.1.8722), Security: 2

dropped

C:\Windows\Installer\MSIE22B.tmp

data

dropped

C:\Windows\Installer\MSIE597.tmp

Composite Document File V2 Document, Little Endian, Os: Windows, Version 6.2, MSI Installer, Code page: 1252, Title: Installation Database, Subject: GoToMeeting Updater, Author: CitrixSystems, Keywords: Installer, Comments: This installer database contains the logic and data required to install GoTo., Template: x64;1033, Revision Number: {8EB6C5B9-E3E4-4C99-901D-D3213245204A}, Create Time/Date: Fri May 30 13:03:54 2025, Last Saved Time/Date: Fri May 30 13:03:54 2025, Number of Pages: 200, Number of Words: 10, Name of Creating Application: Windows Installer XML Toolset (3.14.1.8722), Security: 2

dropped

C:\Windows\Installer\MSIE625.tmp

data

dropped

C:\Windows\Installer\MSIEB.tmp

data

dropped

C:\Windows\Installer\MSIEB75.tmp

Composite Document File V2 Document, Little Endian, Os: Windows, Version 6.2, MSI Installer, Code page: 1252, Title: Installation Database, Subject: GoToMeeting Updater, Author: CitrixSystems, Keywords: Installer, Comments: This installer database contains the logic and data required to install GoTo., Template: x64;1033, Revision Number: {8EB6C5B9-E3E4-4C99-901D-D3213245204A}, Create Time/Date: Fri May 30 13:03:54 2025, Last Saved Time/Date: Fri May 30 13:03:54 2025, Number of Pages: 200, Number of Words: 10, Name of Creating Application: Windows Installer XML Toolset (3.14.1.8722), Security: 2

dropped

C:\Windows\Installer\MSIECBF.tmp

data

dropped

C:\Windows\Installer\MSIF03A.tmp

Composite Document File V2 Document, Little Endian, Os: Windows, Version 6.2, MSI Installer, Code page: 1252, Title: Installation Database, Subject: GoToMeeting Updater, Author: CitrixSystems, Keywords: Installer, Comments: This installer database contains the logic and data required to install GoTo., Template: x64;1033, Revision Number: {8EB6C5B9-E3E4-4C99-901D-D3213245204A}, Create Time/Date: Fri May 30 13:03:54 2025, Last Saved Time/Date: Fri May 30 13:03:54 2025, Number of Pages: 200, Number of Words: 10, Name of Creating Application: Windows Installer XML Toolset (3.14.1.8722), Security: 2

dropped

C:\Windows\Installer\MSIF26E.tmp

data

dropped

C:\Windows\Installer\MSIF28.tmp

Composite Document File V2 Document, Little Endian, Os: Windows, Version 6.2, MSI Installer, Code page: 1252, Title: Installation Database, Subject: GoToMeeting Updater, Author: CitrixSystems, Keywords: Installer, Comments: This installer database contains the logic and data required to install GoTo., Template: x64;1033, Revision Number: {8EB6C5B9-E3E4-4C99-901D-D3213245204A}, Create Time/Date: Fri May 30 13:03:54 2025, Last Saved Time/Date: Fri May 30 13:03:54 2025, Number of Pages: 200, Number of Words: 10, Name of Creating Application: Windows Installer XML Toolset (3.14.1.8722), Security: 2

dropped