DSC_Canon_23.12.2020.exe

Status: finished

Submission Time: 2020-12-24 02:36:02 +01:00

Malicious

E-Banking Trojan

Trojan

Ursnif

Comments

Details

Analysis ID:
333815
API (Web) ID:
569509
Analysis Started:

2020-12-24 02:36:02 +01:00
Analysis Finished:

2020-12-24 02:44:07 +01:00
MD5:
1900f3bd2b1848b0f4b1a0495f11d84e
SHA1:
38de4f6bbd82ee58259d39db4cbb14c505837b88
SHA256:
dddf5829a3bdcb2b6562eb194a138f8de5da26eb5dda0bbfacbbf1124ad51ec6
Technologies:

Engines
IOCs

Joe Sandbox

Engine	Download Report	Detection	Info
		malicious
	Full Report Management Report IOC Report	malicious Score: 80	System: Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01

IPs

IP	Country	Detection
108.177.15.154	United States
66.254.114.238	United States
67.22.48.104	Netherlands
Click to see the 7 hidden entries
45.130.151.85	Russian Federation
192.229.221.215	United States
66.254.114.38	United States
205.185.208.142	United States
205.185.208.79	United States
178.210.89.119	Russian Federation
66.254.114.32	United States

Domains

Name	IP	Detection
ads.trafficjunky.net	66.254.114.38
ei.rdtcdn.com	0.0.0.0
ht.redtube.com	0.0.0.0
Click to see the 20 hidden entries
massidfberiatersksilkavayssstezya.ru	0.0.0.0
vz-cdn.trafficjunky.net	0.0.0.0
stats.g.doubleclick.net	0.0.0.0
cdn1d-static-shared.phncdn.com	0.0.0.0
di.rdtcdn.com	0.0.0.0
www.redtube.com	0.0.0.0
cdn.speedcurve.com	0.0.0.0
static.trafficjunky.com	0.0.0.0
vip0x08e.ssl.rncdn5.com	205.185.208.142
cs742.wpc.rncdn4.com	192.229.221.215
dolsibegriaosersk4ermanderezya.chimkent.su	178.210.89.119
dolsggiberiaoserkmikluhasya.chimkent.su	178.210.89.119
www.google.co.uk	172.217.18.99
a.adtng.com	216.18.168.166
ei.rdtcdn.com.sds.rncdn7.com	67.22.48.100
sibedriamasterkkmoderatordstezya.ru	45.130.151.85
hubtraffic.com	66.254.114.32
vip0x04f.ssl.rncdn5.com	205.185.208.79
redtube.com	66.254.114.238
stats.l.doubleclick.net	108.177.15.154

URLs

Name	Detection
https://ei.rdtcdn.com/m=bIa44NVg5p/media/videos/202012/07/38736091/original/6.webp
https://ei.rdtcdn.com/m=eah-8f/media/videos/201810/15/11133961/original/12.jpg
https://cdn1d-static-shared.phncdn.com/timings-1.0.0.js
Click to see the 97 hidden entries
https://ci-ph.rdtcdn.com/m=bIWpYLVg5p/pics/pornstars/000/020/291/thumb_24861.webp
https://ei.rdtcdn.com/m=bIaMwLVg5p/media/videos/202012/08/38758551/original/15.webp
https://ei.rdtcdn.com/m=bIaMwLVg5p/media/videos/201802/16/4502521/original/16.webp
https://de.redtube.com/
https://ei.rdtcdn.com/m=eGJF8f/media/videos/202012/08/38755441/original/11.jpg
https://ei.rdtcdn.com/m=eah-8f/media/videos/202012/07/38725381/original/9.jpg
https://ei.rdtcdn.com/m=eW0Q8f/media/videos/202012/07/38726001/original/10.jpg
https://ei.rdtcdn.com/m=bIaMwLVg5p/media/videos/201608/29/1701085/original/10.webp
https://ei.rdtcdn.com/m=ejrk8f/media/videos/201612/20/1880893/original/9.jpg
https://ei.rdtcdn.com/m=eGJF8f/media/videos/201710/27/2578878/original/7.jpg
https://ei.rdtcdn.com/m=eW0Q8f/media/videos/202012/07/38726741/original/14.jpg
https://ei.rdtcdn.com/m=eW0Q8f/media/videos/202012/08/38753381/original/2.jpg
https://ei.rdtcdn.com/m=bIaMwLVg5p/media/videos/202012/07/38736091/original/6.webp
https://ei.rdtcdn.com/m=eah-8f/media/videos/202012/08/38755441/original/11.jpg
http://modernizr.com/download/#-video-shiv-cssclasses-load
https://www.etahub.com/trackn?app_id=
https://ci.rdtcdn.com/m=eGJF8f/media/videos/202010/15/37001911/original/
https://ei.rdtcdn.com/m=bIa44NVg5p/media/videos/201802/16/4502521/original/16.webp
https://di.rdtcdn.com/m=eGJF8f/media/videos/202008/14/35096611/original/
https://ei.rdtcdn.com/m=bIa44NVg5p/media/videos/201612/20/1880893/original/9.webp
https://dw.rdtcdn.com/media/videos/201606/01/1598150/360P_360K_1598150.mp4
https://ci-ph.rdtcdn.com/videos/202002/10/283600732/original/(m=eah-8f)(mh=CPA-BIsCEohICDUU)0.jpg
https://ci-ph.rdtcdn.com/m=bIWpYLVg5p/pics/pornstars/000/113/421/thumb_1603511.webp
https://di.rdtcdn.com/m=eGJF8f/media/videos/201908/11/20264951/original/
https://di.rdtcdn.com/m=eGJF8f/media/videos/201905/24/16763151/original/12.jpg
https://di.rdtcdn.com/m=bIaMwLVg5p/media/videos/202006/03/32270141/original/1.webp
https://di.rdtcdn.com/m=bIaMwLVg5p/media/videos/202011/24/38329471/original/14.webp
https://ei.rdtcdn.com/m=bIijsHVg5p/media/videos/201607/13/1645342/original/5.webp
https://di.rdtcdn.com/m=eGJF8f/media/videos/202006/23/33015621/original/
https://ei.rdtcdn.com/www-static/cdn_files/redtube/fonts/rt_font.eot?v=4a9dc4c355497ed4f02c60b9b605e
https://ei.rdtcdn.com/m=eGJF8f/media/videos/201810/15/11133961/original/12.jpg
https://ei.rdtcdn.com/m=bIa44NVg5p/media/videos/201701/18/1942360/original/10.webp
https://ei.rdtcdn.com/www-static/cdn_files/redtube/js/generated/pc/default-redtube.js?v=4a9dc4c35549
https://di.rdtcdn.com/m=bIaMwLVg5p/media/videos/202008/27/35456791/original/14.webp
https://ei.rdtcdn.com/www-static/cdn_files/redtube/js/common/lib/jquery-2.1.3.min.js?v=4a9dc4c355497
https://ei.rdtcdn.com/www-static/cdn_files/redtube/images/pc/category/lesbian_001.jpg
https://ei.rdtcdn.com/m=bIa44NVg5p/media/videos/201608/29/1701085/original/10.webp
https://ei.rdtcdn.com/m=eW0Q8f/media/videos/201511/04/1348007/original/12.jpg
https://ei.rdtcdn.com/m=eGJF8f/media/videos/202012/07/38739611/original/
https://ei.rdtcdn.com/m=eGJF8f/media/videos/201712/06/2695068/original/
http://www.twitter.com/
https://ei.rdtcdn.com/m=eah-8f/media/videos/202012/07/38726001/original/10.jpg
https://cw.rdtcdn.com/media/videos/202012/07/38725381/360P_360K_38725381_fb.mp4
https://cw.rdtcdn.com/media/videos/202012/07/38736091/360P_360K_38736091_fb.mp4
https://ei.rdtcdn.com/m=eah-8f/media/videos/202012/08/38758001/original/6.jpg
https://dw.rdtcdn.com/media/videos/202008/27/35456791/360P_360K_35456791_fb.mp4
https://jp.redtube.com/
https://ei.rdtcdn.com/m=bIaMwLVg5p/media/videos/202012/07/38725381/original/9.webp
https://ei.rdtcdn.com/www-static/cdn_files/redtube/images/pc/network-bar-sprite.png?v=4a9dc4c355497e
https://ei.rdtcdn.com/m=bIaMwLVg5p/media/videos/201806/12/7678031/original/12.webp
https://ei.rdtcdn.com/m=eW0Q8f/media/videos/201606/01/1598150/original/15.jpg
https://ei.rdtcdn.com/m=bIa44NVg5p/media/videos/201810/15/11133961/original/12.webp
https://di.rdtcdn.com/m=bIaMwLVg5p/media/videos/202007/30/34644641/original/16.webp
https://ei.rdtcdn.com/www-static/cdn_files/redtube/images/pc/category/amateur_001.jpg
https://ei.rdtcdn.com/m=bIaC8JVg5p/media/videos/201703/01/2037488/original/6.webp
https://di.rdtcdn.com/m=eah-8f/media/videos/202010/15/37001911/original/14.jpg
https://www.redtube.com/?page=2
https://dw.rdtcdn.com/media/videos/201511/04/1348007/360P_360K_1348007.mp4
https://dw.rdtcdn.com/media/videos/201612/20/1880893/360P_360K_1880893.mp4
https://github.com/jquery/jquery-color
https://ei.rdtcdn.com/m=eah-8f/media/videos/202012/08/38753051/original/9.jpg
https://www.tube8.com/?utm_source=redtube&utm_medium=network-bar&utm_campaign=redtube-networkbar
https://ei.rdtcdn.com/m=eW0Q8f/media/videos/202012/07/38728641/original/10.jpg
https://ei.rdtcdn.com/m=bIaMwLVg5p/media/videos/202012/07/38718651/original/8.webp
https://ei.rdtcdn.com/m=ejrk8f/media/videos/201607/21/1655172/original/5.jpg
https://ci-ph.rdtcdn.com/videos/202011/13/369786102/original/(m=eGJF8f)(mh=-wbq1RH9rFeTI7M0)
https://ci-ph.rdtcdn.com/videos/202011/13/369786102/original/(m=eah-8f)(mh=U81MWqXD4An5YSJW)3.jpg
https://cw.rdtcdn.com/media/videos/202012/07/38729421/360P_360K_38729421_fb.mp4
https://ei.rdtcdn.com/m=ejrk8f/media/videos/201408/19/860611/original/15.jpg
https://ei.rdtcdn.com/m=bIa44NVg5p/media/videos/202012/07/38725381/original/9.webp
https://ei.rdtcdn.com/m=bIa44NVg5p/media/videos/202012/07/38718651/original/8.webp
https://cdn.speedcurve.com/js/lux.js?id=609859533
https://ei.rdtcdn.com/m=eGJF8f/media/videos/202012/05/38664591/original/9.jpg
https://ei.rdtcdn.com/www-static/cdn_files/redtube/fonts/rt_font.woff2?v=4a9dc4c355497ed4f02c60b9b60
http://designer.videojs.com
https://ci-ph.rdtcdn.com/m=e_rU8f/pics/pornstars/000/260/871/thumb_1024761.jpg
https://static.trafficjunky.com/invocation/embeddedads/
https://ei.rdtcdn.com/m=eW0Q8f/media/videos/201902/28/14233291/original/5.jpg
https://ei.rdtcdn.com/m=eGJF8f/media/videos/202012/08/38753051/original/
https://di.rdtcdn.com/m=bIa44NVg5p/media/videos/202006/03/32270141/original/1.webp
https://ei.rdtcdn.com/m=eGJF8f/media/videos/201902/28/14233291/original/5.jpg
https://cw.rdtcdn.com/media/videos/202012/07/38726741/360P_360K_38726741_fb.mp4
https://ei.rdtcdn.com/m=bIaMwLVg5p/media/videos/202012/08/38754371/original/11.webp
https://dw.rdtcdn.com/media/videos/201605/02/1564667/360P_360K_1564667.mp4
https://ei.rdtcdn.com/m=bIijsHVg5p/media/videos/201412/30/998020/original/15.webp
https://ei.rdtcdn.com/m=IbTvgzPf2lWL2yZ9sDZvMCZ9cmWqZl1itnVetmY8sy2fgDHjxoZKdn2Kdn28cBVD2BFf2y1yMyWC
https://ci-ph.rdtcdn.com/m=e_rU8f/pics/pornstars/000/002/511/thumb_95052.jpg
https://ci-ph.rdtcdn.com/videos/202004/03/299834992/original/(m=bIa44NVg5p)(mh=9OitNrdinJF2nc_r)8.we
http://www.reddit.com/
https://ei.rdtcdn.com/m=eGJF8f/media/videos/201606/01/1598150/original/15.jpg
https://ei.rdtcdn.com/m=bIa44NVg5p/media/videos/201806/12/7678031/original/12.webp
https://ei.rdtcdn.com/www-static/cdn_files/redtube/images/pc/category/mature_001.jpg
https://ei.rdtcdn.com/www-static/cdn_files/redtube/images/pc/ajax-loader.gif
https://ei.rdtcdn.com/m=bIa44NVg5p/media/videos/202012/05/38664591/original/9.webp
https://di.rdtcdn.com/m=eW0Q8f/media/videos/202011/30/38518451/original/15.jpg
https://ei.rdtcdn.com/m=bIaMwLVg5p/media/videos/202012/05/38664591/original/9.webp
https://ei.rdtcdn.com/www-static/cdn_files/redtube/icons/favicon.png?v=4a9dc4c355497ed4f02c60b9b605e

Dropped files

Name	File Type	Hashes
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\default-redtube_logged_out[1].css	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\12[1].jpg	JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 304x171, frames 3	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\timings-1.0.0[1].js	ASCII text, with very long lines, with no line terminators	#
Click to see the 76 hidden entries
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\popunder.min[1].js	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\load-1.0.3[1].js	ASCII text, with very long lines	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\jquery-ui-1.10.3[1].js	ASCII text, with very long lines	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\jquery-2.1.3.min[1].js	ASCII text, with very long lines	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\httpErrorPagesScripts[1]	UTF-8 Unicode (with BOM) text, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\embeddedads.es5.min[1].js	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\down[1]	PNG image data, 15 x 15, 8-bit colormap, non-interlaced	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\14[1].jpg	JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 304x171, frames 3	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\ads_batch[2].json	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\ads_batch[1].json	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\NewErrorPageTemplate[1]	UTF-8 Unicode (with BOM) text, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\video-js[1].css	ASCII text	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\site_sprite[1].png	PNG image data, 42 x 471, 8-bit colormap, non-interlaced	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\modernizr[1].js	HTML document, ASCII text, with very long lines	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\lux[1].js	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\httpErrorPagesScripts[1]	UTF-8 Unicode (with BOM) text, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\errorPageStrings[1]	UTF-8 Unicode (with BOM) text, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\video-index[1].js	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Temp\~DFF394FB777E6E1197.TMP	data	#
C:\Users\user\AppData\Local\Temp\~DFE3678D592D676093.TMP	data	#
C:\Users\user\AppData\Local\Temp\~DFC430449BEEBB0167.TMP	data	#
C:\Users\user\AppData\Local\Temp\~DFACFDB95E0DFC4F5A.TMP	data	#
C:\Users\user\AppData\Local\Temp\~DF4E38F7F5D61F5CD2.TMP	data	#
C:\Users\user\AppData\Local\Temp\~DF2792CC1130C1EFC3.TMP	data	#
C:\Users\user\AppData\Local\Temp\~DF1780119403EA8AE0.TMP	data	#
C:\Users\user\AppData\Local\Temp\~DF07CE18EF49690518.TMP	data	#
C:\Users\user\AppData\Local\Temp\JavaDeployReg.log	ASCII text, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\dnserror[1]	HTML document, UTF-8 Unicode (with BOM) text, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\rt_font[1].eot	Embedded OpenType (EOT), rt_font family	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\mg_utils-2.0.0[1].js	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\favicon[1].png	PNG image data, 192 x 192, 8-bit/color RGBA, interlaced	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\down[1]	PNG image data, 15 x 15, 8-bit colormap, non-interlaced	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\dnserror[1]	HTML document, UTF-8 Unicode (with BOM) text, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\default-redtube_logged_out[1].js	HTML document, ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\analytics[1].js	ASCII text, with very long lines	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\4[1].jpg	JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 304x171, frames 3	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\16[1].jpg	JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 304x171, frames 3	#
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-18270793970\msapplication.xml	XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\NewErrorPageTemplate[1]	UTF-8 Unicode (with BOM) text, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\imagestore\ynfz0jx\imagestore.dat	data	#
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin8215062560\msapplication.xml	XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin20332743330\msapplication.xml	XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin20259167780\msapplication.xml	XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-8760897390\msapplication.xml	XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-6757900\msapplication.xml	XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-4759708130\msapplication.xml	XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-21706820\msapplication.xml	XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\down[1]	PNG image data, 15 x 15, 8-bit colormap, non-interlaced	#
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-17529550060\msapplication.xml	XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{F3308787-45D3-11EB-90E4-ECF4BB862DED}.dat	Microsoft Word Document	#
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{29E3FA41-45D4-11EB-90E4-ECF4BB862DED}.dat	Microsoft Word Document	#
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{1C5239D1-45D4-11EB-90E4-ECF4BB862DED}.dat	Microsoft Word Document	#
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{0D017A31-45D4-11EB-90E4-ECF4BB862DED}.dat	Microsoft Word Document	#
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{F3308785-45D3-11EB-90E4-ECF4BB862DED}.dat	Microsoft Word Document	#
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{29E3FA3F-45D4-11EB-90E4-ECF4BB862DED}.dat	Microsoft Word Document	#
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{1C5239CF-45D4-11EB-90E4-ECF4BB862DED}.dat	Microsoft Word Document	#
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{0D017A2F-45D4-11EB-90E4-ECF4BB862DED}.dat	Microsoft Word Document	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\redtube_logo[1].svg	SVG Scalable Vector Graphics image	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\default-redtube[1].js	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\default-redtube[1].css	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\ads_test[1].js	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\V8EBMGK4.htm	HTML document, UTF-8 Unicode text, with very long lines, with CRLF, LF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\NewErrorPageTemplate[1]	UTF-8 Unicode (with BOM) text, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\14[1].jpg	JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 304x171, frames 3	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\10[1].jpg	JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 304x171, frames 3	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\video[1].js	UTF-8 Unicode text, with very long lines	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\video-index[1].css	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\DOMStore\0UW3VU4U\www.redtube[1].xml	ASCII text, with no line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\mg_lazyload-v1.0.0[1].js	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\lazyload.min[1].js	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\jquery.cookie-1.4.0[1].js	ASCII text, with very long lines	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\intersection-observer[1].js	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\httpErrorPagesScripts[1]	UTF-8 Unicode (with BOM) text, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\ht[1].js	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\generated-service_worker_starter-1.0.0[1].js	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\errorPageStrings[1]	UTF-8 Unicode (with BOM) text, with CRLF line terminators	#

DSC_Canon_23.12.2020.exe

Comments

Tags

Available tags:

Details

Joe Sandbox

IPs

Domains

URLs

Dropped files

DSC_Canon_23.12.2020.exe Options

Comments

Tags

Available tags:

Details

Joe Sandbox

IPs

Domains

URLs

Dropped files

Search started

DSC_Canon_23.12.2020.exe