Engine | Download Report | Detection | Info |
---|---|---|---|
|
malicious
|
||
|
malicious
Score: 100
|
System: Windows 7 x64 SP1 with Office 2010 SP1 (IE 11, FF52, Chrome 57, Adobe Reader DC 15, Flash 25.0.0.127, Java 8 Update 121, .NET 4.6.2)
|
IP | Country | Detection |
---|---|---|
192.210.214.146 | United States |
Name | Detection |
---|---|
http://192.210.214.146/webpanel-majorboy1/inc/8d7b442291cce3.php | |
http://192.210.214.146/new.exe | |
http://o0VOknSTi6os4KGPlT.net | |
Click to see the 19 hidden entries | |
https://api.ipify.orgGETMozilla/5.0 | |
http://cNhFXD.com | |
https://www.theonionrouter.com/dist.torproject.org/torbrowser/9.5.3/tor-win32-0.4.3.6.zip | |
https://api.telegram.org/bot%telegramapi%/sendDocumentdocument---------------------------x | |
http://192.210.214.146/webpanel-majorboy1/inc/8d7b442291cce3.php127.0.0.1POST | |
http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name | |
http://ns.a | |
http://www.%s.comPA | |
https://management.azure.com/Chttps://login.microsoftonline.com | |
http://192.210.214.146 | |
https://management.azure.com/ | |
http://192.210.214.146P | |
https://api.telegram.org/bot%telegramapi%/ | |
https://www.theonionrouter.com/dist.torproject.org/torbrowser/9.5.3/tor-win32-0.4.3.6.zip%tordir%%ha | |
https://management.azure.com/subscriptions/ | |
https://login.microsoftonline.com | |
http://schemas.xmlsoap.org/ws/2004/08/addressing/role/anonymous. | |
http://DynDns.comDynDNS | |
http://127.0.0.1:HTTP/1.1 |
Name | File Type | Hashes | Detection |
---|---|---|---|
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZAE7RW1P\new[1].exe |
PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows | # | |
C:\Users\user\Desktop\~$Financial draft.xlsx |
data | # | |
C:\Users\Public\vbc.exe |
PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows | # | |
Click to see the 3 hidden entries | |||
C:\Windows\System32\drivers\etc\hosts |
ASCII text, with CRLF line terminators | # | |
C:\Users\user\AppData\Roaming\bjkher0q.t03\Chrome\Default\Cookies |
SQLite 3.x database, last written using SQLite version 3032001 | # | |
C:\Users\user\AppData\Roaming\bjkher0q.t03\Firefox\Profiles\7xwghk55.default\cookies.sqlite |
SQLite 3.x database, user version 7, last written using SQLite version 3017000 | # |