| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_00758863 | 1_2_00758863 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_00757824 | 1_2_00757824 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075D82A | 1_2_0075D82A |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075FDCF | 1_2_0075FDCF |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075B5A0 | 1_2_0075B5A0 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075D863 | 1_2_0075D863 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075F063 | 1_2_0075F063 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075E053 | 1_2_0075E053 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075F032 | 1_2_0075F032 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_00756820 | 1_2_00756820 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075D82C | 1_2_0075D82C |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075481B | 1_2_0075481B |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_007600F0 | 1_2_007600F0 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_007508F9 | 1_2_007508F9 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_007570DE | 1_2_007570DE |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_007548C3 | 1_2_007548C3 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075D8CC | 1_2_0075D8CC |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_007600C8 | 1_2_007600C8 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075D8BF | 1_2_0075D8BF |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_00757093 | 1_2_00757093 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_00760083 | 1_2_00760083 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075E088 | 1_2_0075E088 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075E170 | 1_2_0075E170 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_00754967 | 1_2_00754967 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0076016B | 1_2_0076016B |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075495D | 1_2_0075495D |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_00750943 | 1_2_00750943 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_00760132 | 1_2_00760132 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_00754933 | 1_2_00754933 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075D903 | 1_2_0075D903 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075E10E | 1_2_0075E10E |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_007541F7 | 1_2_007541F7 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_007511F3 | 1_2_007511F3 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075E1FF | 1_2_0075E1FF |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_007541C0 | 1_2_007541C0 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_007601CF | 1_2_007601CF |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_007511B1 | 1_2_007511B1 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075E1BB | 1_2_0075E1BB |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_00760195 | 1_2_00760195 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075498F | 1_2_0075498F |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_00751272 | 1_2_00751272 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075EA42 | 1_2_0075EA42 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_00760233 | 1_2_00760233 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075E22E | 1_2_0075E22E |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075EA2B | 1_2_0075EA2B |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075E2BE | 1_2_0075E2BE |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075EABB | 1_2_0075EABB |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075E287 | 1_2_0075E287 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075E369 | 1_2_0075E369 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075F342 | 1_2_0075F342 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075E333 | 1_2_0075E333 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075EB03 | 1_2_0075EB03 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075EBE3 | 1_2_0075EBE3 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075F3EF | 1_2_0075F3EF |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075E3D2 | 1_2_0075E3D2 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075EBB3 | 1_2_0075EBB3 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075F3A9 | 1_2_0075F3A9 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075EC42 | 1_2_0075EC42 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075E428 | 1_2_0075E428 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075EC0F | 1_2_0075EC0F |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075ECD3 | 1_2_0075ECD3 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075EC93 | 1_2_0075EC93 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075B48A | 1_2_0075B48A |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075ED73 | 1_2_0075ED73 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075855D | 1_2_0075855D |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075FDE7 | 1_2_0075FDE7 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075EDB8 | 1_2_0075EDB8 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075B5AB | 1_2_0075B5AB |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075ED8A | 1_2_0075ED8A |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_00751E67 | 1_2_00751E67 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_00751E5C | 1_2_00751E5C |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075EE44 | 1_2_0075EE44 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075FE49 | 1_2_0075FE49 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075FE14 | 1_2_0075FE14 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075FEB3 | 1_2_0075FEB3 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_00757EA0 | 1_2_00757EA0 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075EEAF | 1_2_0075EEAF |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075DF76 | 1_2_0075DF76 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075FF67 | 1_2_0075FF67 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075D76D | 1_2_0075D76D |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075EF53 | 1_2_0075EF53 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075DF44 | 1_2_0075DF44 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_00756F34 | 1_2_00756F34 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075DF39 | 1_2_0075DF39 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075EF13 | 1_2_0075EF13 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075FF0F | 1_2_0075FF0F |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_00756F0E | 1_2_00756F0E |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_00756FF3 | 1_2_00756FF3 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_007547EF | 1_2_007547EF |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075DFD0 | 1_2_0075DFD0 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_007567C6 | 1_2_007567C6 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075DFA4 | 1_2_0075DFA4 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_007567AF | 1_2_007567AF |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075FF94 | 1_2_0075FF94 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075EF93 | 1_2_0075EF93 |
| Source: C:\Program Files (x86)\Internet Explorer\ieinstal.exe | Code function: 6_2_0056D82A | 6_2_0056D82A |
| Source: C:\Program Files (x86)\Internet Explorer\ieinstal.exe | Code function: 6_2_0056FDCF | 6_2_0056FDCF |
| Source: C:\Program Files (x86)\Internet Explorer\ieinstal.exe | Code function: 6_2_0056B5A0 | 6_2_0056B5A0 |
| Source: C:\Program Files (x86)\Internet Explorer\ieinstal.exe | Code function: 6_2_0056481B | 6_2_0056481B |
| Source: C:\Program Files (x86)\Internet Explorer\ieinstal.exe | Code function: 6_2_0056F032 | 6_2_0056F032 |
| Source: C:\Program Files (x86)\Internet Explorer\ieinstal.exe | Code function: 6_2_00567824 | 6_2_00567824 |
| Source: C:\Program Files (x86)\Internet Explorer\ieinstal.exe | Code function: 6_2_00566820 | 6_2_00566820 |
| Source: C:\Program Files (x86)\Internet Explorer\ieinstal.exe | Code function: 6_2_005670DE | 6_2_005670DE |
| Source: C:\Program Files (x86)\Internet Explorer\ieinstal.exe | Code function: 6_2_005648C3 | 6_2_005648C3 |
| Source: C:\Program Files (x86)\Internet Explorer\ieinstal.exe | Code function: 6_2_005608F9 | 6_2_005608F9 |
| Source: C:\Program Files (x86)\Internet Explorer\ieinstal.exe | Code function: 6_2_00567093 | 6_2_00567093 |
| Source: C:\Program Files (x86)\Internet Explorer\ieinstal.exe | Code function: 6_2_0056B48A | 6_2_0056B48A |
| Source: C:\Program Files (x86)\Internet Explorer\ieinstal.exe | Code function: 6_2_00568556 | 6_2_00568556 |
| Source: C:\Program Files (x86)\Internet Explorer\ieinstal.exe | Code function: 6_2_0056495D | 6_2_0056495D |
| Source: C:\Program Files (x86)\Internet Explorer\ieinstal.exe | Code function: 6_2_00560943 | 6_2_00560943 |
| Source: C:\Program Files (x86)\Internet Explorer\ieinstal.exe | Code function: 6_2_00564967 | 6_2_00564967 |
| Source: C:\Program Files (x86)\Internet Explorer\ieinstal.exe | Code function: 6_2_00564933 | 6_2_00564933 |
| Source: C:\Program Files (x86)\Internet Explorer\ieinstal.exe | Code function: 6_2_005641C0 | 6_2_005641C0 |
| Source: C:\Program Files (x86)\Internet Explorer\ieinstal.exe | Code function: 6_2_005641F7 | 6_2_005641F7 |
| Source: C:\Program Files (x86)\Internet Explorer\ieinstal.exe | Code function: 6_2_005611F3 | 6_2_005611F3 |
| Source: C:\Program Files (x86)\Internet Explorer\ieinstal.exe | Code function: 6_2_0056498F | 6_2_0056498F |
| Source: C:\Program Files (x86)\Internet Explorer\ieinstal.exe | Code function: 6_2_005611B1 | 6_2_005611B1 |
| Source: C:\Program Files (x86)\Internet Explorer\ieinstal.exe | Code function: 6_2_0056B5AB | 6_2_0056B5AB |
| Source: C:\Program Files (x86)\Internet Explorer\ieinstal.exe | Code function: 6_2_00561E5C | 6_2_00561E5C |
| Source: C:\Program Files (x86)\Internet Explorer\ieinstal.exe | Code function: 6_2_00561272 | 6_2_00561272 |
| Source: C:\Program Files (x86)\Internet Explorer\ieinstal.exe | Code function: 6_2_00561E67 | 6_2_00561E67 |
| Source: C:\Program Files (x86)\Internet Explorer\ieinstal.exe | Code function: 6_2_0056EA2B | 6_2_0056EA2B |
| Source: C:\Program Files (x86)\Internet Explorer\ieinstal.exe | Code function: 6_2_0056D76D | 6_2_0056D76D |
| Source: C:\Program Files (x86)\Internet Explorer\ieinstal.exe | Code function: 6_2_00566F0E | 6_2_00566F0E |
| Source: C:\Program Files (x86)\Internet Explorer\ieinstal.exe | Code function: 6_2_00566F34 | 6_2_00566F34 |
| Source: C:\Program Files (x86)\Internet Explorer\ieinstal.exe | Code function: 6_2_005667C6 | 6_2_005667C6 |
| Source: C:\Program Files (x86)\Internet Explorer\ieinstal.exe | Code function: 6_2_00566FF3 | 6_2_00566FF3 |
| Source: C:\Program Files (x86)\Internet Explorer\ieinstal.exe | Code function: 6_2_005647EF | 6_2_005647EF |
| Source: C:\Program Files (x86)\Internet Explorer\ieinstal.exe | Code function: 6_2_005667AF | 6_2_005667AF |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_00758863 NtWriteVirtualMemory,Sleep, | 1_2_00758863 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075D82A NtAllocateVirtualMemory, | 1_2_0075D82A |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075F8E2 NtProtectVirtualMemory, | 1_2_0075F8E2 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075F872 NtProtectVirtualMemory, | 1_2_0075F872 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075887B NtWriteVirtualMemory, | 1_2_0075887B |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075D863 NtAllocateVirtualMemory, | 1_2_0075D863 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075D82C NtAllocateVirtualMemory, | 1_2_0075D82C |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075D8CC NtAllocateVirtualMemory, | 1_2_0075D8CC |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075D8BF NtAllocateVirtualMemory, | 1_2_0075D8BF |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075F8A8 NtProtectVirtualMemory, | 1_2_0075F8A8 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075896B NtWriteVirtualMemory, | 1_2_0075896B |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075D93B NtAllocateVirtualMemory, | 1_2_0075D93B |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075D903 NtAllocateVirtualMemory, | 1_2_0075D903 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075D9E5 NtAllocateVirtualMemory, | 1_2_0075D9E5 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075D9B2 NtAllocateVirtualMemory, | 1_2_0075D9B2 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075D983 NtAllocateVirtualMemory, | 1_2_0075D983 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075DA6A NtAllocateVirtualMemory, | 1_2_0075DA6A |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075DA3B NtAllocateVirtualMemory, | 1_2_0075DA3B |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075DAD3 NtAllocateVirtualMemory, | 1_2_0075DAD3 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075DAA6 NtAllocateVirtualMemory, | 1_2_0075DAA6 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075DB76 NtAllocateVirtualMemory, | 1_2_0075DB76 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075DB38 NtAllocateVirtualMemory, | 1_2_0075DB38 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075DB00 NtAllocateVirtualMemory, | 1_2_0075DB00 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075DBC7 NtAllocateVirtualMemory, | 1_2_0075DBC7 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075DC13 NtAllocateVirtualMemory, | 1_2_0075DC13 |
| Source: C:\Program Files (x86)\Internet Explorer\ieinstal.exe | Code function: 6_2_0056F872 NtProtectVirtualMemory, | 6_2_0056F872 |
| Source: C:\Program Files (x86)\Internet Explorer\ieinstal.exe | Code function: 6_2_0056D82A NtAllocateVirtualMemory, | 6_2_0056D82A |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_00407484 push 1002C579h; iretd | 1_2_00407491 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_00404764 push esi; ret | 1_2_0040488D |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075116B pushfd ; iretd | 1_2_0075116C |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_00755A4B pushad ; retf | 1_2_00755A4E |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075037F push ds; ret | 1_2_00750516 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_007503BB push ds; ret | 1_2_00750516 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_00750383 push ds; ret | 1_2_00750516 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075046F push ds; ret | 1_2_00750516 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075043F push ds; ret | 1_2_00750516 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_00750403 push ds; ret | 1_2_00750516 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_007504EC push ds; ret | 1_2_00750516 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_00750CD1 push ds; ret | 1_2_00750D73 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_00750CD3 push ds; ret | 1_2_00750D73 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_007504A7 push ds; ret | 1_2_00750516 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_007595F5 push es; iretd | 1_2_00759615 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_00759605 push es; iretd | 1_2_00759615 |
| Source: C:\Users\user\Desktop\Hong Tak Engineering SB Payment Receipt 241121_PDF.exe | Code function: 1_2_0075A7FF push cs; iretd | 1_2_0075A806 |
| Source: C:\Program Files (x86)\Internet Explorer\ieinstal.exe | Code function: 6_2_0056046F push ds; ret | 6_2_00560516 |
| Source: C:\Program Files (x86)\Internet Explorer\ieinstal.exe | Code function: 6_2_00560403 push ds; ret | 6_2_00560516 |
| Source: C:\Program Files (x86)\Internet Explorer\ieinstal.exe | Code function: 6_2_0056043F push ds; ret | 6_2_00560516 |
| Source: C:\Program Files (x86)\Internet Explorer\ieinstal.exe | Code function: 6_2_00560CD3 push ds; ret | 6_2_00560D73 |
| Source: C:\Program Files (x86)\Internet Explorer\ieinstal.exe | Code function: 6_2_00560CD1 push ds; ret | 6_2_00560D73 |
| Source: C:\Program Files (x86)\Internet Explorer\ieinstal.exe | Code function: 6_2_005604EC push ds; ret | 6_2_00560516 |
| Source: C:\Program Files (x86)\Internet Explorer\ieinstal.exe | Code function: 6_2_005604A7 push ds; ret | 6_2_00560516 |
| Source: C:\Program Files (x86)\Internet Explorer\ieinstal.exe | Code function: 6_2_0056116B pushfd ; iretd | 6_2_0056116C |
| Source: C:\Program Files (x86)\Internet Explorer\ieinstal.exe | Code function: 6_2_005695F5 push es; iretd | 6_2_00569615 |
| Source: C:\Program Files (x86)\Internet Explorer\ieinstal.exe | Code function: 6_2_00565A4B pushad ; retf | 6_2_00565A4E |
| Source: C:\Program Files (x86)\Internet Explorer\ieinstal.exe | Code function: 6_2_00569605 push es; iretd | 6_2_00569615 |
| Source: C:\Program Files (x86)\Internet Explorer\ieinstal.exe | Code function: 6_2_0056037F push ds; ret | 6_2_00560516 |
| Source: C:\Program Files (x86)\Internet Explorer\ieinstal.exe | Code function: 6_2_0056A7FF push cs; iretd | 6_2_0056A806 |
| Source: C:\Program Files (x86)\Internet Explorer\ieinstal.exe | Code function: 6_2_00560383 push ds; ret | 6_2_00560516 |
| Source: Hong Tak Engineering SB Payment Receipt 241121_PDF.exe, 00000001.00000002.521048300.00000000031AA000.00000004.00000001.sdmp, ieinstal.exe, 00000006.00000002.564969808.000000000435A000.00000004.00000001.sdmp | Binary or memory string: Hyper-V Guest Shutdown Service |
| Source: Hong Tak Engineering SB Payment Receipt 241121_PDF.exe, 00000001.00000002.521048300.00000000031AA000.00000004.00000001.sdmp, ieinstal.exe, 00000006.00000002.564969808.000000000435A000.00000004.00000001.sdmp | Binary or memory string: Hyper-V Remote Desktop Virtualization Service |
| Source: ieinstal.exe, 00000006.00000002.564969808.000000000435A000.00000004.00000001.sdmp | Binary or memory string: vmicshutdown |
| Source: Hong Tak Engineering SB Payment Receipt 241121_PDF.exe, 00000001.00000002.521048300.00000000031AA000.00000004.00000001.sdmp, ieinstal.exe, 00000006.00000002.564969808.000000000435A000.00000004.00000001.sdmp | Binary or memory string: Hyper-V Volume Shadow Copy Requestor |
| Source: Hong Tak Engineering SB Payment Receipt 241121_PDF.exe, 00000001.00000002.521048300.00000000031AA000.00000004.00000001.sdmp, ieinstal.exe, 00000006.00000002.564969808.000000000435A000.00000004.00000001.sdmp | Binary or memory string: Hyper-V PowerShell Direct Service |
| Source: Hong Tak Engineering SB Payment Receipt 241121_PDF.exe, 00000001.00000002.521048300.00000000031AA000.00000004.00000001.sdmp, ieinstal.exe, 00000006.00000002.564969808.000000000435A000.00000004.00000001.sdmp | Binary or memory string: Hyper-V Time Synchronization Service |
| Source: ieinstal.exe, 00000006.00000002.564386334.0000000000D70000.00000004.00000001.sdmp | Binary or memory string: ntdllkernel32C:\Program Files\Qemu-ga\qemu-ga.exeC:\Program Files\qga\qga.exeuser32psapi.dllMsi.dllPublisherwininet.dllMozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36shell32advapi32TEMP= |
| Source: ieinstal.exe, 00000006.00000002.564969808.000000000435A000.00000004.00000001.sdmp | Binary or memory string: vmicvss |
| Source: Hong Tak Engineering SB Payment Receipt 241121_PDF.exe, 00000001.00000002.520996387.00000000030E0000.00000004.00000001.sdmp, ieinstal.exe, 00000006.00000002.564386334.0000000000D70000.00000004.00000001.sdmp | Binary or memory string: C:\Program Files\Qemu-ga\qemu-ga.exe |
| Source: Hong Tak Engineering SB Payment Receipt 241121_PDF.exe, 00000001.00000002.521048300.00000000031AA000.00000004.00000001.sdmp, ieinstal.exe, 00000006.00000002.564969808.000000000435A000.00000004.00000001.sdmp | Binary or memory string: Hyper-V Data Exchange Service |
| Source: Hong Tak Engineering SB Payment Receipt 241121_PDF.exe, 00000001.00000002.521048300.00000000031AA000.00000004.00000001.sdmp, ieinstal.exe, 00000006.00000002.564969808.000000000435A000.00000004.00000001.sdmp | Binary or memory string: Hyper-V Heartbeat Service |
| Source: Hong Tak Engineering SB Payment Receipt 241121_PDF.exe, 00000001.00000002.521048300.00000000031AA000.00000004.00000001.sdmp, ieinstal.exe, 00000006.00000002.564969808.000000000435A000.00000004.00000001.sdmp | Binary or memory string: Hyper-V Guest Service Interface |
| Source: Hong Tak Engineering SB Payment Receipt 241121_PDF.exe, 00000001.00000002.520996387.00000000030E0000.00000004.00000001.sdmp | Binary or memory string: ntdllkernel32C:\Program Files\Qemu-ga\qemu-ga.exeC:\Program Files\qga\qga.exeuser32psapi.dllMsi.dllPublisherwininet.dllMozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36shell32advapi32TEMP=ProgramFiles=\internet explorer\ieinstal.exewindir=\syswow64\msvbvm60.dllProgramFiles=\internet explorer\ieinstal.exewindir=\syswow64\msvbvm60.dll |
| Source: ieinstal.exe, 00000006.00000002.564969808.000000000435A000.00000004.00000001.sdmp | Binary or memory string: vmicheartbeat |
Play interactive tour
Edit tour
Is Dropped
Is Windows Process
Number of created Registry Values
Number of created Files
Visual Basic
Delphi
Java
.Net C# or VB.NET
C, C++ or other language
Is malicious
Internet
Key Decision
Richest Path
Thread / callback creation
Lower opacity -> Library Node