Source: supply us this product.exe, 00000005.00000002.476764881.0000000002881000.00000004.00000001.sdmp | String found in binary or memory: http://127.0.0.1:HTTP/1.1 |
Source: supply us this product.exe, 00000005.00000002.476764881.0000000002881000.00000004.00000001.sdmp | String found in binary or memory: http://DynDns.comDynDNS |
Source: supply us this product.exe, 00000005.00000002.474926872.0000000000BB3000.00000004.00000020.sdmp | String found in binary or memory: http://apps.identrust.com/roots/dstrootcax3.p7c0 |
Source: supply us this product.exe, 00000005.00000002.474926872.0000000000BB3000.00000004.00000020.sdmp | String found in binary or memory: http://cps.letsencrypt.org0 |
Source: supply us this product.exe, 00000005.00000002.474926872.0000000000BB3000.00000004.00000020.sdmp | String found in binary or memory: http://cps.root-x1.letsencrypt.org0 |
Source: supply us this product.exe, 00000005.00000002.474926872.0000000000BB3000.00000004.00000020.sdmp | String found in binary or memory: http://crl.identrust.com/DSTROOTCAX3CRL.crl0 |
Source: supply us this product.exe, 00000005.00000002.478257571.0000000002AF7000.00000004.00000001.sdmp, supply us this product.exe, 00000005.00000002.478643570.0000000002B54000.00000004.00000001.sdmp | String found in binary or memory: http://htwqxRSsZE4FT.org |
Source: supply us this product.exe, 00000005.00000002.478483716.0000000002B30000.00000004.00000001.sdmp | String found in binary or memory: http://mail.scottbyscott.com |
Source: supply us this product.exe, 00000005.00000002.474926872.0000000000BB3000.00000004.00000020.sdmp | String found in binary or memory: http://r3.i.lencr.org/0 |
Source: supply us this product.exe, 00000005.00000002.474926872.0000000000BB3000.00000004.00000020.sdmp | String found in binary or memory: http://r3.o.lencr.org0 |
Source: supply us this product.exe, 00000001.00000002.216030237.00000000024F1000.00000004.00000001.sdmp | String found in binary or memory: http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name |
Source: supply us this product.exe, 00000005.00000002.478483716.0000000002B30000.00000004.00000001.sdmp | String found in binary or memory: http://scottbyscott.com |
Source: supply us this product.exe, 00000005.00000002.476764881.0000000002881000.00000004.00000001.sdmp | String found in binary or memory: http://vmyBzt.com |
Source: supply us this product.exe, 00000005.00000002.474926872.0000000000BB3000.00000004.00000020.sdmp | String found in binary or memory: http://x1.c.lencr.org/0 |
Source: supply us this product.exe, 00000005.00000002.474926872.0000000000BB3000.00000004.00000020.sdmp | String found in binary or memory: http://x1.i.lencr.org/0 |
Source: supply us this product.exe, 00000001.00000002.216164536.000000000252E000.00000004.00000001.sdmp | String found in binary or memory: https://stackpath.bootstrapcdn.com/bootstrap/4.5.0/css/bootstrap.min.css |
Source: supply us this product.exe, 00000001.00000002.216940516.00000000034F9000.00000004.00000001.sdmp, supply us this product.exe, 00000005.00000000.212702747.0000000000402000.00000040.00000001.sdmp | String found in binary or memory: https://www.theonionrouter.com/dist.torproject.org/torbrowser/9.5.3/tor-win32-0.4.3.6.zip |
Source: supply us this product.exe, 00000005.00000002.476764881.0000000002881000.00000004.00000001.sdmp | String found in binary or memory: https://www.theonionrouter.com/dist.torproject.org/torbrowser/9.5.3/tor-win32-0.4.3.6.zip%tordir%%ha |
Source: C:\Users\user\Desktop\supply us this product.exe | Code function: 1_2_024B94A8 |
Source: C:\Users\user\Desktop\supply us this product.exe | Code function: 1_2_024BC148 |
Source: C:\Users\user\Desktop\supply us this product.exe | Code function: 1_2_024BA758 |
Source: C:\Users\user\Desktop\supply us this product.exe | Code function: 1_2_054FB440 |
Source: C:\Users\user\Desktop\supply us this product.exe | Code function: 1_2_054FF3B0 |
Source: C:\Users\user\Desktop\supply us this product.exe | Code function: 1_2_054FACF0 |
Source: C:\Users\user\Desktop\supply us this product.exe | Code function: 1_2_054FBE70 |
Source: C:\Users\user\Desktop\supply us this product.exe | Code function: 1_2_054F7B00 |
Source: C:\Users\user\Desktop\supply us this product.exe | Code function: 1_2_054F7548 |
Source: C:\Users\user\Desktop\supply us this product.exe | Code function: 1_2_054F7550 |
Source: C:\Users\user\Desktop\supply us this product.exe | Code function: 1_2_054FB433 |
Source: C:\Users\user\Desktop\supply us this product.exe | Code function: 1_2_054FA179 |
Source: C:\Users\user\Desktop\supply us this product.exe | Code function: 1_2_054FA188 |
Source: C:\Users\user\Desktop\supply us this product.exe | Code function: 1_2_054FF1B8 |
Source: C:\Users\user\Desktop\supply us this product.exe | Code function: 1_2_054F0040 |
Source: C:\Users\user\Desktop\supply us this product.exe | Code function: 1_2_054F003E |
Source: C:\Users\user\Desktop\supply us this product.exe | Code function: 1_2_054FACEB |
Source: C:\Users\user\Desktop\supply us this product.exe | Code function: 1_2_054FECE8 |
Source: C:\Users\user\Desktop\supply us this product.exe | Code function: 1_2_054FEF20 |
Source: C:\Users\user\Desktop\supply us this product.exe | Code function: 1_2_054FBE6E |
Source: C:\Users\user\Desktop\supply us this product.exe | Code function: 1_2_054FDB60 |
Source: C:\Users\user\Desktop\supply us this product.exe | Code function: 1_2_054F7AFB |
Source: C:\Users\user\Desktop\supply us this product.exe | Code function: 1_2_0B12B510 |
Source: C:\Users\user\Desktop\supply us this product.exe | Code function: 1_2_0B124500 |
Source: C:\Users\user\Desktop\supply us this product.exe | Code function: 1_2_0B1289E7 |
Source: C:\Users\user\Desktop\supply us this product.exe | Code function: 1_2_0B124018 |
Source: C:\Users\user\Desktop\supply us this product.exe | Code function: 1_2_0B1247F8 |
Source: C:\Users\user\Desktop\supply us this product.exe | Code function: 1_2_0B1247E9 |
Source: C:\Users\user\Desktop\supply us this product.exe | Code function: 1_2_0B128A4E |
Source: C:\Users\user\Desktop\supply us this product.exe | Code function: 1_2_0B1236DC |
Source: C:\Users\user\Desktop\supply us this product.exe | Code function: 1_2_0B123110 |
Source: C:\Users\user\Desktop\supply us this product.exe | Code function: 1_2_0B128810 |
Source: C:\Users\user\Desktop\supply us this product.exe | Code function: 1_2_0B126810 |
Source: C:\Users\user\Desktop\supply us this product.exe | Code function: 1_2_0B128801 |
Source: C:\Users\user\Desktop\supply us this product.exe | Code function: 1_2_0B120006 |
Source: C:\Users\user\Desktop\supply us this product.exe | Code function: 1_2_0B124008 |
Source: C:\Users\user\Desktop\supply us this product.exe | Code function: 1_2_0B125C31 |
Source: C:\Users\user\Desktop\supply us this product.exe | Code function: 1_2_0B128450 |
Source: C:\Users\user\Desktop\supply us this product.exe | Code function: 1_2_0B120040 |
Source: C:\Users\user\Desktop\supply us this product.exe | Code function: 1_2_0B125C40 |
Source: C:\Users\user\Desktop\supply us this product.exe | Code function: 1_2_0B128441 |
Source: C:\Users\user\Desktop\supply us this product.exe | Code function: 1_2_0B1230C9 |
Source: C:\Users\user\Desktop\supply us this product.exe | Code function: 1_2_0B1244EF |
Source: C:\Users\user\Desktop\supply us this product.exe | Code function: 5_2_00D147A0 |
Source: C:\Users\user\Desktop\supply us this product.exe | Code function: 5_2_00D14790 |
Source: C:\Users\user\Desktop\supply us this product.exe | Code function: 5_2_00D383B0 |
Source: C:\Users\user\Desktop\supply us this product.exe | Code function: 5_2_00D3A778 |
Source: C:\Users\user\Desktop\supply us this product.exe | Code function: 5_2_00D35940 |
Source: C:\Users\user\Desktop\supply us this product.exe | Code function: 5_2_00D32EC8 |
Source: C:\Users\user\Desktop\supply us this product.exe | Code function: 5_2_00D32F3A |
Source: C:\Users\user\Desktop\supply us this product.exe | Code function: 5_2_00D66818 |
Source: C:\Users\user\Desktop\supply us this product.exe | Code function: 5_2_00D65AB8 |
Source: C:\Users\user\Desktop\supply us this product.exe | Code function: 5_2_00D66230 |
Source: supply us this product.exe, 00000001.00000002.220189281.0000000005620000.00000004.00000001.sdmp | Binary or memory string: OriginalFilenameDSASignature.dll@ vs supply us this product.exe |
Source: supply us this product.exe, 00000001.00000002.214120101.000000000018A000.00000002.00020000.sdmp | Binary or memory string: OriginalFilenameMultiProducerMultiConsumerQueue.exe< vs supply us this product.exe |
Source: supply us this product.exe, 00000001.00000002.216030237.00000000024F1000.00000004.00000001.sdmp | Binary or memory string: OriginalFilenamedpmEuvYxooWcRZhqwNkcIIeFuEcnrQym.exe4 vs supply us this product.exe |
Source: supply us this product.exe, 00000001.00000002.216940516.00000000034F9000.00000004.00000001.sdmp | Binary or memory string: OriginalFilenameKygo.dll* vs supply us this product.exe |
Source: supply us this product.exe, 00000003.00000000.210980526.00000000004EA000.00000002.00020000.sdmp | Binary or memory string: OriginalFilenameMultiProducerMultiConsumerQueue.exe< vs supply us this product.exe |
Source: supply us this product.exe, 00000005.00000002.472757335.000000000058A000.00000002.00020000.sdmp | Binary or memory string: OriginalFilenameMultiProducerMultiConsumerQueue.exe< vs supply us this product.exe |
Source: supply us this product.exe, 00000005.00000002.475727960.0000000000D70000.00000002.00000001.sdmp | Binary or memory string: OriginalFilenamemscorrc.dllT vs supply us this product.exe |
Source: supply us this product.exe, 00000005.00000002.473311587.00000000009D0000.00000002.00000001.sdmp | Binary or memory string: OriginalFilenamewshom.ocx.mui vs supply us this product.exe |
Source: supply us this product.exe, 00000005.00000002.471383380.0000000000402000.00000040.00000001.sdmp | Binary or memory string: OriginalFilenamedpmEuvYxooWcRZhqwNkcIIeFuEcnrQym.exe4 vs supply us this product.exe |
Source: supply us this product.exe, 00000005.00000002.473017146.0000000000938000.00000004.00000001.sdmp | Binary or memory string: OriginalFilenameUNKNOWN_FILET vs supply us this product.exe |
Source: supply us this product.exe | Binary or memory string: OriginalFilenameMultiProducerMultiConsumerQueue.exe< vs supply us this product.exe |
Source: supply us this product.exe, 00000001.00000002.216164536.000000000252E000.00000004.00000001.sdmp | Binary or memory string: Select * from Clientes WHERE id=@id;; |
Source: supply us this product.exe, 00000001.00000002.216164536.000000000252E000.00000004.00000001.sdmp | Binary or memory string: Select * from Aluguel Erro ao listar Banco sql-Aluguel.INSERT INTO Aluguel VALUES(@clienteID, @data); |
Source: supply us this product.exe, 00000001.00000002.216164536.000000000252E000.00000004.00000001.sdmp | Binary or memory string: Select * from SecurityLogonType WHERE id=@id; |
Source: supply us this product.exe, 00000001.00000002.216164536.000000000252E000.00000004.00000001.sdmp | Binary or memory string: Select * from SecurityLogonType WHERE modelo=@modelo; |
Source: supply us this product.exe, 00000001.00000002.216164536.000000000252E000.00000004.00000001.sdmp | Binary or memory string: INSERT INTO Itens_Aluguel VALUES(@aluguelID, @aviaoID, @validade); |
Source: supply us this product.exe, 00000001.00000002.216164536.000000000252E000.00000004.00000001.sdmp | Binary or memory string: Insert into Clientes values (@nome, @cpf, @rg, @cidade, @endereco, @uf, @telefone); |
Source: supply us this product.exe, 00000001.00000002.216164536.000000000252E000.00000004.00000001.sdmp | Binary or memory string: INSERT INTO Aluguel VALUES(@clienteID, @data); |
Source: supply us this product.exe, 00000001.00000002.216164536.000000000252E000.00000004.00000001.sdmp | Binary or memory string: INSERT INTO SecurityLogonType VALUES(@modelo, @fabricante, @ano, @cor); |
Source: supply us this product.exe, 00000001.00000002.216164536.000000000252E000.00000004.00000001.sdmp | Binary or memory string: Select * from SecurityLogonType*Erro ao listar Banco sql-SecurityLogonType,Select * from SecurityLogonType WHERE id=@id;Select * from SecurityLogonType WHERE (modelo LIKE @modelo) |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\supply us this product.exe | Process information set: NOOPENFILEERRORBOX |
Source: supply us this product.exe, 00000001.00000002.216164536.000000000252E000.00000004.00000001.sdmp | Binary or memory string: vmware |
Source: supply us this product.exe, 00000001.00000002.216164536.000000000252E000.00000004.00000001.sdmp | Binary or memory string: C:\PROGRAM FILES\VMWARE\VMWARE TOOLS\ |
Source: supply us this product.exe, 00000001.00000002.216164536.000000000252E000.00000004.00000001.sdmp | Binary or memory string: SOFTWARE\VMware, Inc.\VMware Tools |
Source: supply us this product.exe, 00000001.00000002.216164536.000000000252E000.00000004.00000001.sdmp | Binary or memory string: VMware SVGA II!Add-MpPreference -ExclusionPath " |
Source: supply us this product.exe, 00000001.00000002.216164536.000000000252E000.00000004.00000001.sdmp | Binary or memory string: VMWARE |
Source: supply us this product.exe, 00000001.00000002.216164536.000000000252E000.00000004.00000001.sdmp | Binary or memory string: InstallPath%C:\PROGRAM FILES\VMWARE\VMWARE TOOLS\ |
Source: supply us this product.exe, 00000001.00000002.216164536.000000000252E000.00000004.00000001.sdmp | Binary or memory string: VMWARE"SOFTWARE\VMware, Inc.\VMware ToolsLHARDWARE\DEVICEMAP\Scsi\Scsi Port 1\Scsi Bus 0\Target Id 0\Logical Unit Id 0LHARDWARE\DEVICEMAP\Scsi\Scsi Port 2\Scsi Bus 0\Target Id 0\Logical Unit Id 0'SYSTEM\ControlSet001\Services\Disk\Enum |
Source: supply us this product.exe, 00000001.00000002.216164536.000000000252E000.00000004.00000001.sdmp | Binary or memory string: VMware SVGA II |
Source: supply us this product.exe, 00000001.00000002.216164536.000000000252E000.00000004.00000001.sdmp | Binary or memory string: vmwareNSYSTEM\ControlSet001\Control\Class\{4D36E968-E325-11CE-BFC1-08002BE10318}\0000 |
Source: supply us this product.exe, 00000005.00000002.474926872.0000000000BB3000.00000004.00000020.sdmp | Binary or memory string: Hyper-V RAW%SystemRoot%\system32\mswsock.dll}"_ |
Source: C:\Users\user\Desktop\supply us this product.exe | Queries volume information: C:\Users\user\Desktop\supply us this product.exe VolumeInformation |
Source: C:\Users\user\Desktop\supply us this product.exe | Queries volume information: C:\Windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.VisualBasic\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.dll VolumeInformation |
Source: C:\Users\user\Desktop\supply us this product.exe | Queries volume information: C:\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Windows.Forms\v4.0_4.0.0.0__b77a5c561934e089\System.Windows.Forms.dll VolumeInformation |
Source: C:\Users\user\Desktop\supply us this product.exe | Queries volume information: C:\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Drawing\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll VolumeInformation |
Source: C:\Users\user\Desktop\supply us this product.exe | Queries volume information: C:\Windows\Microsoft.NET\assembly\GAC_MSIL\Accessibility\v4.0_4.0.0.0__b03f5f7f11d50a3a\Accessibility.dll VolumeInformation |
Source: C:\Users\user\Desktop\supply us this product.exe | Queries volume information: C:\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Remoting\v4.0_4.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll VolumeInformation |
Source: C:\Users\user\Desktop\supply us this product.exe | Queries volume information: C:\Users\user\Desktop\supply us this product.exe VolumeInformation |
Source: C:\Users\user\Desktop\supply us this product.exe | Queries volume information: C:\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Windows.Forms\v4.0_4.0.0.0__b77a5c561934e089\System.Windows.Forms.dll VolumeInformation |
Source: C:\Users\user\Desktop\supply us this product.exe | Queries volume information: C:\Windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.VisualBasic\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.dll VolumeInformation |
Source: C:\Users\user\Desktop\supply us this product.exe | Queries volume information: C:\Windows\Microsoft.NET\assembly\GAC_32\CustomMarshalers\v4.0_4.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll VolumeInformation |
Source: C:\Users\user\Desktop\supply us this product.exe | Queries volume information: C:\Windows\Microsoft.NET\assembly\GAC_32\CustomMarshalers\v4.0_4.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll VolumeInformation |
Source: C:\Users\user\Desktop\supply us this product.exe | Queries volume information: C:\Windows\Microsoft.NET\assembly\GAC_32\CustomMarshalers\v4.0_4.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll VolumeInformation |
Source: C:\Users\user\Desktop\supply us this product.exe | Queries volume information: C:\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Management\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Management.dll VolumeInformation |
Source: C:\Users\user\Desktop\supply us this product.exe | Queries volume information: C:\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Drawing\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll VolumeInformation |
Source: C:\Users\user\Desktop\supply us this product.exe | Queries volume information: C:\Windows\Microsoft.NET\assembly\GAC_MSIL\Accessibility\v4.0_4.0.0.0__b03f5f7f11d50a3a\Accessibility.dll VolumeInformation |