Engine | Download Report | Detection | Info |
---|---|---|---|
|
malicious
|
||
|
malicious
Score: 92
|
System: Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
|
IP | Country | Detection |
---|---|---|
108.177.96.128 | United States | |
8.8.8.8 | United States |
Name | Detection |
---|---|
http://pki.goog/gsr2/GTS1O1.crt0 | |
http://crl.pki.goog/gsr2/gsr2.crl0? | |
http://ocsp.pki.goog/gsr202 | |
Click to see the 5 hidden entries | |
https://pki.goog/repository/0 | |
http://ocsp.pki.goog/gts1o1core0 | |
http://crl.pki.goog/GTS1O1core.crl0 | |
http://ocsp.pki.goog/gts1 | |
http://ocsp.pki.goog/ |
Name | File Type | Hashes | Detection |
---|---|---|---|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PEJLKQA8\P-16-5[1].dll |
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows | # | |
C:\Users\user\AppData\Roaming\0.zip |
Zip archive data, at least v2.0 to extract | # | |
C:\Users\user\AppData\Roaming\64317583203315\wkoyrphebhxonpimm60602927029132.dll |
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows | # | |
Click to see the 3 hidden entries | |||
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\tgwpxyohqm .lnk |
MS Windows shortcut, Item id list present, Has Relative path, Has Working directory, Has command line arguments, ctime=Sun Dec 31 23:06:32 1600, mtime=Sun Dec 31 23:06:32 1600, atime=Sun Dec 31 23:06:32 1600, length=0, window=hide | # | |
C:\Users\user\AppData\Roaming\phewmqhjwxh.vbs |
ASCII text, with CRLF line terminators | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\B87Z87FM\0[1].zip |
Zip archive data, at least v2.0 to extract | # |