Engine | Download Report | Detection | Info |
---|---|---|---|
|
malicious
Score: 100
|
System: Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
|
IP | Country | Detection |
---|---|---|
185.244.30.125 | Netherlands | |
216.58.207.65 | United States |
Name | IP | Detection |
---|---|---|
rex2016.hopto.org | 185.244.30.125 | |
jbarn.camdvr.org | 0.0.0.0 | |
site-cdn.onenote.net | 0.0.0.0 | |
Click to see the 5 hidden entries | ||
rex2015.freeddns.org | 0.0.0.0 | |
rex2016.freeddns.org | 0.0.0.0 | |
googlehosted.l.googleusercontent.com | 216.58.207.65 | |
jbarn.sytes.net | 0.0.0.0 | |
doc-0k-04-docs.googleusercontent.com | 0.0.0.0 |
Name | Detection |
---|---|
http://blackman.wp-club.net | |
http://pki.goog/gsr2/GTS1O1.crt0 | |
https://doc-0k-04-docs.googleusercontent.com/ | |
Click to see the 7 hidden entries | |
http://pki.goog/gsr2/GTS | |
http://crl.pki.goog/gsr2/gsr2.crl0? | |
http://ocsp.pki.goog/gsr202 | |
https://pki.goog/repository/0 | |
http://crl.pki.goog/GTS1O1.crl0 | |
http://ocsp.pki.goog/gts1o10 | |
https://doc-0k-04-docs.googleusercontent.com/docs/securesc/ha0ro937gcuc7l7deffksulhg5h7mbp1/6dvv3dkp |
Name | File Type | Hashes | Detection |
---|---|---|---|
C:\Users\user\AppData\Roaming\remcos\logs.dat |
ASCII text, with CRLF line terminators | # | |
C:\Users\user\Cseg\Csegsew.exe |
PE32 executable (GUI) Intel 80386, for MS Windows | # | |
C:\Users\Public\Yako.bat |
ASCII text, with CRLF line terminators | # | |
Click to see the 3 hidden entries | |||
C:\Users\user\Cseg.hta |
HTML document, ASCII text, with CRLF line terminators | # | |
C:\Users\Public\Fcc |
ASCII text, with no line terminators | # | |
C:\Users\Public\Natso.bat |
ASCII text, with CRLF line terminators | # |