Engine | Download Report | Detection | Info |
---|---|---|---|
|
malicious
|
||
|
malicious
Score: 92
|
System: Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
|
IP | Country | Detection |
---|---|---|
115.134.40.77 | Malaysia | |
172.217.168.33 | United States |
Name | IP | Detection |
---|---|---|
marketingsiamgrains.zapto.org | 115.134.40.77 | |
googlehosted.l.googleusercontent.com | 172.217.168.33 | |
doc-0c-18-docs.googleusercontent.com | 0.0.0.0 | |
Click to see the 1 hidden entries | ||
doc-14-60-docs.googleusercontent.com | 0.0.0.0 |
Name | Detection |
---|---|
http://www.sysinternals.com |
Name | File Type | Hashes | Detection |
---|---|---|---|
C:\Users\user\AppData\Local\Rsxrsec.exe |
PE32 executable (GUI) Intel 80386, for MS Windows | # | |
C:\Users\user\AppData\Roaming\remcos\logs.dat |
ASCII text, with CRLF line terminators | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\B87Z87FM\Rsxr[1] |
ASCII text, with very long lines, with no line terminators | # | |
Click to see the 3 hidden entries | |||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\NUEPGTR9\Rsxr[1] |
ASCII text, with very long lines, with no line terminators | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PEJLKQA8\Rsxr[1] |
ASCII text, with very long lines, with no line terminators | # | |
C:\Users\user\AppData\Local\Rsxr.url |
MS Windows 95 Internet shortcut text (URL=<file:\\\C:\\Users\\user\\AppData\\Local\\Rsxrsec.exe>), ASCII text, with CRLF line terminators | # |