Source: windows-update-cve-wfw.exe, 00000000.00000003.713479876.000000C001000000.00000004.00000001.sdmp | String found in binary or memory: http://apache.org/xml/features/disallow-doctype-decl |
Source: windows-update-cve-wfw.exe, 00000000.00000003.713479876.000000C001000000.00000004.00000001.sdmp | String found in binary or memory: http://apache.org/xml/properties/xpointer-schema |
Source: windows-update-cve-wfw.exe | String found in binary or memory: http://cacerts.digicert.com/DigiCertAssuredIDCA-1.crt0 |
Source: windows-update-cve-wfw.exe | String found in binary or memory: http://cacerts.digicert.com/DigiCertAssuredIDRootCA.crt0 |
Source: windows-update-cve-wfw.exe | String found in binary or memory: http://cacerts.digicert.com/DigiCertSHA2AssuredIDCodeSigningCA.crt0 |
Source: windows-update-cve-wfw.exe | String found in binary or memory: http://crl3.digicert.com/DigiCertAssuredIDCA-1.crl08 |
Source: windows-update-cve-wfw.exe | String found in binary or memory: http://crl3.digicert.com/DigiCertAssuredIDRootCA.crl0: |
Source: windows-update-cve-wfw.exe | String found in binary or memory: http://crl3.digicert.com/DigiCertAssuredIDRootCA.crl0O |
Source: windows-update-cve-wfw.exe | String found in binary or memory: http://crl3.digicert.com/sha2-assured-cs-g1.crl05 |
Source: windows-update-cve-wfw.exe | String found in binary or memory: http://crl4.digicert.com/DigiCertAssuredIDCA-1.crl0w |
Source: windows-update-cve-wfw.exe | String found in binary or memory: http://crl4.digicert.com/DigiCertAssuredIDRootCA.crl0 |
Source: windows-update-cve-wfw.exe | String found in binary or memory: http://crl4.digicert.com/DigiCertAssuredIDRootCA.crl0: |
Source: windows-update-cve-wfw.exe | String found in binary or memory: http://crl4.digicert.com/sha2-assured-cs-g1.crl0L |
Source: windows-update-cve-wfw.exe, 00000000.00000003.722515676.000000C000136000.00000004.00000001.sdmp, notepad.exe, 00000015.00000002.996661309.00000002BBD67000.00000004.00000001.sdmp | String found in binary or memory: http://decryptu7o2cckt5.onion |
Source: windows-update-cve-wfw.exe, 00000000.00000003.713479876.000000C001000000.00000004.00000001.sdmp | String found in binary or memory: http://java.sun.com/j2se/1.6.0/docs/guide/standards/ |
Source: windows-update-cve-wfw.exe, 00000000.00000003.713479876.000000C001000000.00000004.00000001.sdmp | String found in binary or memory: http://java.sun.com/j2se/1.6.0/docs/guide/standards/) |
Source: windows-update-cve-wfw.exe, 00000000.00000003.713479876.000000C001000000.00000004.00000001.sdmp | String found in binary or memory: http://java.sun.com/j2se/1.6.0/docs/guide/standards/). |
Source: windows-update-cve-wfw.exe | String found in binary or memory: http://ocsp.digicert.com0A |
Source: windows-update-cve-wfw.exe | String found in binary or memory: http://ocsp.digicert.com0C |
Source: windows-update-cve-wfw.exe | String found in binary or memory: http://ocsp.digicert.com0N |
Source: windows-update-cve-wfw.exe | String found in binary or memory: http://www.digicert.com/ssl-cps-repository.htm0 |
Source: windows-update-cve-wfw.exe, 00000000.00000003.713479876.000000C001000000.00000004.00000001.sdmp | String found in binary or memory: http://www.ietf.org/rfc/rfc4051.txt |
Source: windows-update-cve-wfw.exe, 00000000.00000003.713479876.000000C001000000.00000004.00000001.sdmp | String found in binary or memory: http://www.nue.et-inf.uni-siegen.de/~geuer-pollmann/#xpathFilter |
Source: windows-update-cve-wfw.exe, 00000000.00000003.713479876.000000C001000000.00000004.00000001.sdmp | String found in binary or memory: http://www.xmlsecurity.org/NS/#configuration |
Source: windows-update-cve-wfw.exe, 00000000.00000003.713479876.000000C001000000.00000004.00000001.sdmp | String found in binary or memory: http://www.xmlsecurity.org/experimental# |
Source: windows-update-cve-wfw.exe | String found in binary or memory: https://mozilla.org0 |
Source: windows-update-cve-wfw.exe | String found in binary or memory: https://www.digicert.com/CPS0 |
Source: windows-update-cve-wfw.exe, 00000000.00000003.722515676.000000C000136000.00000004.00000001.sdmp, notepad.exe, 00000015.00000002.996661309.00000002BBD67000.00000004.00000001.sdmp | String found in binary or memory: https://www.torproject.org/dist/torbrowser/10.0.7/torbrowser-install-10.0.7_en-US.exe) |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Users\user\AppData\Local\Temp\52aa4a39bdb9cfcf01bf5470a20be258 entropy: 7.99987745189 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Users\user\AppData\Local\Temp\9de8349718ba35b3a7e034c2bd8d84ee entropy: 7.99011547221 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Program Files\Google\Chrome\Application\85.0.4183.121\VisualElements\Logo.png entropy: 7.99011547221 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Users\user\AppData\Local\Temp\66c48474dbc33d211dc42eb3f4650a01 entropy: 7.99613555674 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Users\user\AppData\Local\Temp\6cf1ef39760fd7e6d978539030fbe05f entropy: 7.99982560553 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Users\user\AppData\Local\Temp\809fab766780fa4a6eab1952847650b3 entropy: 7.99987134018 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Users\user\AppData\Local\Temp\802eb91a25adc6d90c01924a107f9969 entropy: 7.99884976963 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\1494870C-9912-C184-4CC9-B401-A53F4D8DE290.pdf entropy: 7.99884976963 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Users\user\AppData\Local\Temp\660f141b1944c4f24861855628ae5f5a entropy: 7.99218019432 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\COPYING.LGPLv2.1.txt entropy: 7.99218019432 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Users\user\AppData\Local\Temp\f9c38968c2fb659f13b444fd8b438678 entropy: 7.9991504873 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\Click on 'Change' to select default PDF handler.pdf entropy: 7.9991504873 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Users\user\AppData\Local\Temp\41934eb08a24f3107798654256fe9400 entropy: 7.99679781181 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\Legal\ENU\license.html entropy: 7.99679781181 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Users\user\AppData\Local\Temp\dfe67d2a4fc7ecb7c8399a3f37ab8aa2 entropy: 7.99958007111 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\PDFSigQFormalRep.pdf entropy: 7.99958007111 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Users\user\AppData\Local\Temp\4336342177be0bc6137accc09b1e2986 entropy: 7.99176113308 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\plugins.js entropy: 7.99176113308 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Users\user\AppData\Local\Temp\bf3a094998b5b342bf8f9ed72db0101e entropy: 7.99363758535 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\images\core_icons.png entropy: 7.99363758535 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Users\user\AppData\Local\Temp\c9a589bab57b7fb45e907c3e13edda29 entropy: 7.99732149323 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\images\core_icons_retina.png entropy: 7.99732149323 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Users\user\AppData\Local\Temp\c3e86e14ebca2cf658f7e817a7fb45ed entropy: 7.9971185835 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Users\user\AppData\Local\Temp\f0d3bb265a115acaffbcc0dfd622e4b6 entropy: 7.99719156583 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Users\user\AppData\Local\Temp\52cc0dbeac99915d4ea434b0c0277202 entropy: 7.99676805657 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\images\file_types\aic_file_icons.png entropy: 7.9971185835 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\images\file_types\aic_file_icons_retina_thumb.png entropy: 7.99719156583 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\images\file_types\aic_file_icons_retina_thumb_new.png entropy: 7.99676805657 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Users\user\AppData\Local\Temp\8d749540ed4353f3c0372f4b99a0797c entropy: 7.99671159991 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Users\user\AppData\Local\Temp\c65f8b5e8c9e38ca6e1e78e026c5f9b7 entropy: 7.99645623911 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Users\user\AppData\Local\Temp\f20b2e655edd946c789e5a3c2808de87 entropy: 7.99649643504 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\images\file_types\hi_contrast\aic_file_icons_hiContrast_bow.png entropy: 7.99671159991 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\images\file_types\hi_contrast\aic_file_icons_hiContrast_wob.png entropy: 7.99645623911 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\images\file_types\hi_contrast\aic_file_icons_highcontrast.png entropy: 7.99649643504 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Users\user\AppData\Local\Temp\861dc3a33d77bb97ca73662eb663d262 entropy: 7.99646675884 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\images\file_types\hi_contrast\aic_file_icons_retina_thumb_highContrast_bow.png entropy: 7.99646675884 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Users\user\AppData\Local\Temp\bec8bb9ab6723faa5ce3bbcba66f18f1 entropy: 7.99647228621 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\images\file_types\hi_contrast\aic_file_icons_retina_thumb_highContrast_wob.png entropy: 7.99647228621 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Users\user\AppData\Local\Temp\08b45458cf0c032206fa3a0cb1da7e0e entropy: 7.99637827079 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Users\user\AppData\Local\Temp\e74f4b961c2a71a156cc2fe978a6318f entropy: 7.99639605946 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\images\file_types\themes\dark\aic_file_icons.png entropy: 7.99637827079 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\images\file_types\themes\dark\aic_file_icons_retina_thumb.png entropy: 7.99639605946 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Users\user\AppData\Local\Temp\7867d1852b766d4496890b914e11b227 entropy: 7.99511229303 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\images\hi_contrast\core_icons__retina_hiContrast_bow.png entropy: 7.99511229303 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Users\user\AppData\Local\Temp\117db969b66ac68dbec6b8586f1de0ff entropy: 7.9957314614 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\images\hi_contrast\core_icons__retina_hiContrast_wob.png entropy: 7.9957314614 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Users\user\AppData\Local\Temp\a2c372f6358748bbfce34a493e59ba2c entropy: 7.99415763844 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\images\hi_contrast\core_icons_highcontrast_retina.png entropy: 7.99415763844 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Users\user\AppData\Local\Temp\eb65cacac501bba9135cefb264975fcd entropy: 7.99238479155 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\images\ind_prog.gif entropy: 7.99238479155 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Users\user\AppData\Local\Temp\e18f90ab8622e041590ba504a15ab387 entropy: 7.99514633779 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\images\progress_spinner2x.gif entropy: 7.99514633779 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Users\user\AppData\Local\Temp\e4e3ca63b4e1ba916c84129e0d219959 entropy: 7.99343972675 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\images\progress_spinner_dark2x.gif entropy: 7.99343972675 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Users\user\AppData\Local\Temp\7b3d3b562b45acd5e38b4fe939cfdc56 entropy: 7.99044194323 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\images\themes\dark\S_IlluDCFilesEmpty_180x180.svg entropy: 7.99044194323 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Users\user\AppData\Local\Temp\fbcc33ca12b22594f4ffb8e1dd6d1252 entropy: 7.9919918831 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Users\user\AppData\Local\Temp\972b3ab73961fdc1e5f262690326a418 entropy: 7.99390410966 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\images\themes\dark\S_IlluEmptyStateCCFiles_280x192.svg entropy: 7.9919918831 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\images\themes\dark\S_IlluEmptyStateDCFiles_280x192.svg entropy: 7.99390410966 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Users\user\AppData\Local\Temp\0cff69e91d6af437eb2a21204293005d entropy: 7.99499133199 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\images\themes\dark\core_icons.png entropy: 7.99499133199 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Users\user\AppData\Local\Temp\598899759cdf923772492bcb17d3c05b entropy: 7.99729408668 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\images\themes\dark\core_icons_retina.png entropy: 7.99729408668 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Users\user\AppData\Local\Temp\399b369953edba265ad999da976a5ee7 entropy: 7.99054634059 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\images\themes\dark\ind_prog.gif entropy: 7.99054634059 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Users\user\AppData\Local\Temp\c2cc495e2c81c54062cec81d3fce4417 entropy: 7.99528401522 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\images\themes\dark\progress_spinner2x.gif entropy: 7.99528401522 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Users\user\AppData\Local\Temp\5e87e45abd18b979dc20aec5cc797cee entropy: 7.99313818723 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\images\themes\dark\progress_spinner_dark2x.gif entropy: 7.99313818723 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Users\user\AppData\Local\Temp\4c72c4a9212910a5e0d9a92c091efae8 entropy: 7.99457559017 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\images\themes\dark\s_signed_out.svg entropy: 7.99457559017 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Users\user\AppData\Local\Temp\88475cecb7fbd35eb32a7d96e0bd49bf entropy: 7.99460285568 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Users\user\AppData\Local\Temp\a9af928e771d66ea710e3cc5ea5310ec entropy: 7.99458164097 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\core\dev\nls\cs-cz\ui-strings.js entropy: 7.99458164097 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\core\dev\nls\ca-es\ui-strings.js entropy: 7.99460285568 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Users\user\AppData\Local\Temp\781b61ff7c96c56753776ba7e8b39f03 entropy: 7.99354864862 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Users\user\AppData\Local\Temp\2d9d59914ceedce483ba53565fc7d093 entropy: 7.99479698126 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\core\dev\nls\da-dk\ui-strings.js entropy: 7.99354864862 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\core\dev\nls\de-de\ui-strings.js entropy: 7.99479698126 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Users\user\AppData\Local\Temp\e8e9b8409b8dceda91d5eea8f5391a2d entropy: 7.99364262658 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\core\dev\nls\en-ae\ui-strings.js entropy: 7.99364262658 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Users\user\AppData\Local\Temp\3669154cb42e10e08e304dce7a470ec8 entropy: 7.99352001445 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\core\dev\nls\en-il\ui-strings.js entropy: 7.99352001445 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Users\user\AppData\Local\Temp\f8115d79a2252c73b9156e422f9fc780 entropy: 7.99447623397 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Users\user\AppData\Local\Temp\af4cbe0f612e21c0e61fdc6de124438d entropy: 7.99442895669 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\core\dev\nls\es-es\ui-strings.js entropy: 7.99447623397 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Users\user\AppData\Local\Temp\1155b08358c8c99aa0f466d555510549 entropy: 7.99403531561 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\core\dev\nls\eu-es\ui-strings.js entropy: 7.99442895669 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Users\user\AppData\Local\Temp\a08ed5ee6cd41ee08243e64cd6c5725f entropy: 7.99494939508 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\core\dev\nls\fi-fi\ui-strings.js entropy: 7.99403531561 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\core\dev\nls\fr-fr\ui-strings.js entropy: 7.99494939508 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Users\user\AppData\Local\Temp\3b269d0fc275fecc911fda856e0d9194 entropy: 7.99548194026 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\core\dev\nls\fr-ma\ui-strings.js entropy: 7.99548194026 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Users\user\AppData\Local\Temp\8f309c56316a2ff751772e39f8bf5b26 entropy: 7.99357134128 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Users\user\AppData\Local\Temp\04eb909f7b1f73ecab2e2f2da31ae3d5 entropy: 7.99439601105 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\core\dev\nls\hr-hr\ui-strings.js entropy: 7.99357134128 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Users\user\AppData\Local\Temp\0ca4a7f173a52dbe9dde503debb31151 entropy: 7.99414935931 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\core\dev\nls\hu-hu\ui-strings.js entropy: 7.99439601105 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Users\user\AppData\Local\Temp\ca48139197eb77532a97c94e61c6f0f1 entropy: 7.99448228763 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\core\dev\nls\it-it\ui-strings.js entropy: 7.99414935931 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Users\user\AppData\Local\Temp\5a30521d6b445b44d6c83e6560047ad8 entropy: 7.99479052134 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\core\dev\nls\ja-jp\ui-strings.js entropy: 7.99448228763 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Users\user\AppData\Local\Temp\4794c5a4925025032d21c3a5824c4e7e entropy: 7.99366900452 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\core\dev\nls\ko-kr\ui-strings.js entropy: 7.99479052134 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\core\dev\nls\nb-no\ui-strings.js entropy: 7.99366900452 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Users\user\AppData\Local\Temp\4a8a8823c1f5926f0f69b4ee71497534 entropy: 7.99463263634 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Users\user\AppData\Local\Temp\5287bd44aa99570eaaee2924f539a3b0 entropy: 7.9944758494 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\core\dev\nls\nl-nl\ui-strings.js entropy: 7.99463263634 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\core\dev\nls\pl-pl\ui-strings.js entropy: 7.9944758494 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Users\user\AppData\Local\Temp\7db3bef052625c17a171d726e5e22b55 entropy: 7.99387743155 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Users\user\AppData\Local\Temp\00bd70c69e79653b5cae4722a7bde7bd entropy: 7.99477905585 | Jump to dropped file |
Source: C:\Users\user\Desktop\windows-update-cve-wfw.exe | File created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\core\dev\nls\pt-br\ui-strings.js entropy: 7.99387743155 | Jump to dropped file |