Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Code function: 0_2_00405750 VirtualAlloc,CryptBinaryToStringA,CryptBinaryToStringA,CryptBinaryToStringA,lstrlenA,lstrlenA,lstrlenA,VirtualAlloc,lstrlenA,lstrlenA,lstrlenA,lstrlenA,lstrlenA,lstrlenA,lstrcatW,lstrcatW,lstrlenW,lstrlenW,lstrcatW,lstrlenW,lstrlenA,lstrlenW,MultiByteToWideChar,lstrcatW,lstrlenW,lstrlenA,lstrlenW,MultiByteToWideChar,lstrcatW,lstrlenW,lstrlenW,VirtualAlloc,lstrlenW,lstrlenW,_memset,lstrlenA,lstrlenA,CryptBinaryToStringA,GetLastError,lstrlenA,VirtualAlloc,lstrlenA,lstrlenA,lstrlenA,lstrlenA,MultiByteToWideChar,VirtualFree,VirtualFree,VirtualFree,VirtualFree,VirtualFree,VirtualFree,VirtualFree,VirtualFree,VirtualFree,VirtualFree, |
0_2_00405750 |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Code function: 0_2_00407C60 CryptAcquireContextW,VirtualAlloc,GetModuleHandleA,LoadLibraryA,GetProcAddress,CryptReleaseContext,VirtualFree,CryptReleaseContext,VirtualFree, |
0_2_00407C60 |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Code function: 0_2_00405D80 CryptAcquireContextW,GetLastError,CryptAcquireContextW,CryptGenKey,CryptExportKey,CryptExportKey,CryptDestroyKey,CryptReleaseContext,CryptAcquireContextW, |
0_2_00405D80 |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Code function: 0_2_004048A0 Sleep,ExitProcess,CreateThread,WaitForSingleObject,TerminateThread,CloseHandle,ExitProcess,Sleep,lstrlenA,VirtualAlloc,CryptStringToBinaryA,ExitProcess,InitializeCriticalSection,DeleteCriticalSection,VirtualAlloc,GetModuleFileNameW,VirtualFree,ShellExecuteW, |
0_2_004048A0 |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Code function: 0_2_00407DB0 VirtualAlloc,CryptAcquireContextW,VirtualAlloc,GetModuleHandleA,LoadLibraryA,GetProcAddress,CryptReleaseContext,VirtualFree,CryptReleaseContext,VirtualFree, |
0_2_00407DB0 |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Code function: 0_2_00405540 VirtualAlloc,wsprintfW,lstrlenW,lstrlenW,lstrlenW,_memset,lstrlenA,lstrlenW,lstrlenW,CryptBinaryToStringA,GetLastError,lstrlenA,lstrlenA,VirtualAlloc,lstrlenA,lstrlenA,lstrlenA,VirtualFree,VirtualFree,VirtualFree, |
0_2_00405540 |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Code function: 0_2_00405050 lstrlenA,VirtualAlloc,VirtualAlloc,CryptStringToBinaryA,_memset,lstrlenA,lstrlenA,VirtualAlloc,CryptStringToBinaryA,VirtualAlloc,MultiByteToWideChar,GetLastError,VirtualAlloc,VirtualFree,lstrlenA,VirtualAlloc,lstrcpyA,HeapFree,GetProcessHeap,HeapFree,GetProcessHeap,HeapFree,VirtualFree,GetLastError, |
0_2_00405050 |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Code function: 0_2_00406000 EnterCriticalSection,CryptAcquireContextW,GetLastError,CryptAcquireContextW,CryptImportKey,CryptGetKeyParam,CryptEncrypt,GetLastError,CryptReleaseContext,LeaveCriticalSection, |
0_2_00406000 |
Source: C:\Users\user\AppData\Roaming\Microsoft\ykbxzh.exe |
Code function: 12_2_004048A0 Sleep,ExitProcess,CreateThread,WaitForSingleObject,TerminateThread,CloseHandle,ExitProcess,Sleep,lstrlenA,VirtualAlloc,CryptStringToBinaryA,ExitProcess,InitializeCriticalSection,DeleteCriticalSection,VirtualAlloc,GetModuleFileNameW,VirtualFree,ShellExecuteW, |
12_2_004048A0 |
Source: C:\Users\user\AppData\Roaming\Microsoft\ykbxzh.exe |
Code function: 12_2_00405540 VirtualAlloc,wsprintfW,lstrlenW,lstrlenW,lstrlenW,_memset,lstrlenA,lstrlenW,lstrlenW,CryptBinaryToStringA,GetLastError,lstrlenA,lstrlenA,VirtualAlloc,lstrlenA,lstrlenA,lstrlenA,VirtualFree,VirtualFree,VirtualFree, |
12_2_00405540 |
Source: C:\Users\user\AppData\Roaming\Microsoft\ykbxzh.exe |
Code function: 12_2_00405750 VirtualAlloc,CryptBinaryToStringA,CryptBinaryToStringA,CryptBinaryToStringA,lstrlenA,lstrlenA,lstrlenA,VirtualAlloc,lstrlenA,lstrlenA,lstrlenA,lstrlenA,lstrlenA,lstrlenA,lstrcatW,lstrcatW,lstrlenW,lstrlenW,lstrcatW,lstrlenW,lstrlenA,lstrlenW,MultiByteToWideChar,lstrcatW,lstrlenW,lstrlenA,lstrlenW,MultiByteToWideChar,lstrcatW,lstrlenW,lstrlenW,VirtualAlloc,lstrlenW,lstrlenW,_memset,lstrlenA,lstrlenA,CryptBinaryToStringA,GetLastError,lstrlenA,VirtualAlloc,lstrlenA,lstrlenA,lstrlenA,lstrlenA,MultiByteToWideChar,VirtualFree,VirtualFree,VirtualFree,VirtualFree,VirtualFree,VirtualFree,VirtualFree,VirtualFree,VirtualFree,VirtualFree, |
12_2_00405750 |
Source: C:\Users\user\AppData\Roaming\Microsoft\ykbxzh.exe |
Code function: 12_2_00405050 lstrlenA,VirtualAlloc,VirtualAlloc,CryptStringToBinaryA,_memset,lstrlenA,lstrlenA,VirtualAlloc,CryptStringToBinaryA,VirtualAlloc,MultiByteToWideChar,GetLastError,VirtualAlloc,VirtualFree,lstrlenA,VirtualAlloc,lstrcpyA,HeapFree,GetProcessHeap,HeapFree,GetProcessHeap,HeapFree,VirtualFree,GetLastError, |
12_2_00405050 |
Source: C:\Users\user\AppData\Roaming\Microsoft\ykbxzh.exe |
Code function: 12_2_00407C60 CryptAcquireContextW,VirtualAlloc,GetModuleHandleA,LoadLibraryA,GetProcAddress,CryptReleaseContext,VirtualFree,CryptReleaseContext,VirtualFree, |
12_2_00407C60 |
Source: C:\Users\user\AppData\Roaming\Microsoft\ykbxzh.exe |
Code function: 12_2_00406000 EnterCriticalSection,CryptAcquireContextW,GetLastError,CryptAcquireContextW,CryptImportKey,CryptGetKeyParam,CryptEncrypt,GetLastError,CryptReleaseContext,LeaveCriticalSection, |
12_2_00406000 |
Source: C:\Users\user\AppData\Roaming\Microsoft\ykbxzh.exe |
Code function: 12_2_00405D80 CryptAcquireContextW,GetLastError,CryptAcquireContextW,CryptGenKey,CryptExportKey,CryptExportKey,CryptDestroyKey,CryptReleaseContext,CryptAcquireContextW, |
12_2_00405D80 |
Source: C:\Users\user\AppData\Roaming\Microsoft\ykbxzh.exe |
Code function: 12_2_00407DB0 VirtualAlloc,CryptAcquireContextW,VirtualAlloc,GetModuleHandleA,LoadLibraryA,GetProcAddress,CryptReleaseContext,VirtualFree,CryptReleaseContext,VirtualFree, |
12_2_00407DB0 |
Source: C:\Users\user\AppData\Roaming\Microsoft\ykbxzh.exe |
Code function: 25_2_004048A0 Sleep,ExitProcess,CreateThread,WaitForSingleObject,TerminateThread,CloseHandle,ExitProcess,Sleep,lstrlenA,VirtualAlloc,CryptStringToBinaryA,ExitProcess,InitializeCriticalSection,DeleteCriticalSection,VirtualAlloc,GetModuleFileNameW,VirtualFree,ShellExecuteW, |
25_2_004048A0 |
Source: C:\Users\user\AppData\Roaming\Microsoft\ykbxzh.exe |
Code function: 25_2_00405540 VirtualAlloc,wsprintfW,lstrlenW,lstrlenW,lstrlenW,_memset,lstrlenA,lstrlenW,lstrlenW,CryptBinaryToStringA,GetLastError,lstrlenA,lstrlenA,VirtualAlloc,lstrlenA,lstrlenA,lstrlenA,VirtualFree,VirtualFree,VirtualFree, |
25_2_00405540 |
Source: C:\Users\user\AppData\Roaming\Microsoft\ykbxzh.exe |
Code function: 25_2_00405750 VirtualAlloc,CryptBinaryToStringA,CryptBinaryToStringA,CryptBinaryToStringA,lstrlenA,lstrlenA,lstrlenA,VirtualAlloc,lstrlenA,lstrlenA,lstrlenA,lstrlenA,lstrlenA,lstrlenA,lstrcatW,lstrcatW,lstrlenW,lstrlenW,lstrcatW,lstrlenW,lstrlenA,lstrlenW,MultiByteToWideChar,lstrcatW,lstrlenW,lstrlenA,lstrlenW,MultiByteToWideChar,lstrcatW,lstrlenW,lstrlenW,VirtualAlloc,lstrlenW,lstrlenW,_memset,lstrlenA,lstrlenA,CryptBinaryToStringA,GetLastError,lstrlenA,VirtualAlloc,lstrlenA,lstrlenA,lstrlenA,lstrlenA,MultiByteToWideChar,VirtualFree,VirtualFree,VirtualFree,VirtualFree,VirtualFree,VirtualFree,VirtualFree,VirtualFree,VirtualFree,VirtualFree, |
25_2_00405750 |
Source: C:\Users\user\AppData\Roaming\Microsoft\ykbxzh.exe |
Code function: 25_2_00405050 lstrlenA,VirtualAlloc,VirtualAlloc,CryptStringToBinaryA,_memset,lstrlenA,lstrlenA,VirtualAlloc,CryptStringToBinaryA,VirtualAlloc,MultiByteToWideChar,GetLastError,VirtualAlloc,VirtualFree,lstrlenA,VirtualAlloc,lstrcpyA,HeapFree,GetProcessHeap,HeapFree,GetProcessHeap,HeapFree,VirtualFree,GetLastError, |
25_2_00405050 |
Source: C:\Users\user\AppData\Roaming\Microsoft\ykbxzh.exe |
Code function: 25_2_00407C60 CryptAcquireContextW,VirtualAlloc,GetModuleHandleA,LoadLibraryA,GetProcAddress,CryptReleaseContext,VirtualFree,CryptReleaseContext,VirtualFree, |
25_2_00407C60 |
Source: C:\Users\user\AppData\Roaming\Microsoft\ykbxzh.exe |
Code function: 25_2_00406000 EnterCriticalSection,CryptAcquireContextW,GetLastError,CryptAcquireContextW,CryptImportKey,CryptGetKeyParam,CryptEncrypt,GetLastError,CryptReleaseContext,LeaveCriticalSection, |
25_2_00406000 |
Source: C:\Users\user\AppData\Roaming\Microsoft\ykbxzh.exe |
Code function: 25_2_00405D80 CryptAcquireContextW,GetLastError,CryptAcquireContextW,CryptGenKey,CryptExportKey,CryptExportKey,CryptDestroyKey,CryptReleaseContext,CryptAcquireContextW, |
25_2_00405D80 |
Source: C:\Users\user\AppData\Roaming\Microsoft\ykbxzh.exe |
Code function: 25_2_00407DB0 VirtualAlloc,CryptAcquireContextW,VirtualAlloc,GetModuleHandleA,LoadLibraryA,GetProcAddress,CryptReleaseContext,VirtualFree,CryptReleaseContext,VirtualFree, |
25_2_00407DB0 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:62912 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:62913 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:62914 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:62915 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:63865 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:63866 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:63867 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:63868 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:63231 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:63232 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:63233 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:63234 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:62540 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:62541 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:62542 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:62543 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:54905 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:54906 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:54907 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:54908 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:51532 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:51533 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:51534 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:51535 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:52558 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:52559 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:52560 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:52561 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:61611 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:61612 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:61613 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:61614 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:52483 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:52484 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:52485 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:52486 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:53945 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:53946 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:53947 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:53948 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:56088 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:56089 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:56090 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:56091 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:56549 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:56550 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:56551 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:56552 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:59883 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:59884 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:59885 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:59886 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:50345 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:50346 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:50347 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:50348 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:62522 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:62523 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:62524 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:62525 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:56571 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:61834 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:61835 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:61836 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:65046 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:65047 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:65048 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:65049 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:49234 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:49235 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:49236 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:49237 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:56125 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:56126 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:56127 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:56128 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:59754 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:59755 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:59756 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:59757 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:52867 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:52868 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:52869 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:52870 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:62960 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:62961 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:62962 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:62963 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:64406 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:64407 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:64408 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:64409 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:62850 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:62851 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:62852 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:62853 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:55958 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:55959 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:55960 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:55961 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:57517 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:57518 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:57519 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:57520 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:51323 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:51324 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:51325 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:51326 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:61091 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:61092 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:61093 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:61094 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:60132 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:60133 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:60134 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:60135 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:62734 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:62735 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:62736 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:62737 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:60692 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:60693 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:60694 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:60695 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:56752 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:56753 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:56754 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:56755 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:59338 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:59339 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:59340 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:59341 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:52717 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:52718 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:52719 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:52720 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:62223 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:62224 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:62225 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:62226 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:63265 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:63266 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:63267 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:63268 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:61231 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:61232 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:61233 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:61234 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:51774 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:51775 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:51776 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:51777 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:59224 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:59225 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:59226 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:59227 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:57756 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:57757 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:57758 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:57759 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:53592 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:53593 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:53594 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:53595 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:56360 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:56361 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:56362 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:56363 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:49334 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:49335 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:49336 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:49337 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:59967 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:59968 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:59969 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:59970 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:58159 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:58160 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:58161 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:58162 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:57788 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:57789 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:57790 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:57791 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:64963 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:64964 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:64965 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:64966 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:56297 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:56298 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:56299 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:56300 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:64649 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:64650 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:64651 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:64652 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:54505 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:54506 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:54507 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:54508 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:51889 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:51890 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:51891 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:51892 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:54510 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:54511 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:54512 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:54513 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:53195 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:53196 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:53197 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:53198 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:60010 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:60011 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:60012 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:60013 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:54202 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:54203 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:54204 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:54205 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:50254 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:50255 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:50256 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:50257 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:64798 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:64799 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:64800 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:64801 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:62539 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:62038 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:62039 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:62040 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:62041 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:63672 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:63673 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:63674 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:63675 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:61172 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:61173 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:61174 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:61175 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:56429 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:56430 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:56431 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:56432 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:56433 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:56434 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:56435 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:56436 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:54881 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:54882 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:54883 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:54884 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:54298 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:54299 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:54300 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:54301 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:59625 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:59626 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:59627 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:59628 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:63256 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:63257 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:63258 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:63259 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:60356 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:60357 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:60358 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:60359 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:52727 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:52728 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:52729 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:52730 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:62633 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:62634 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:62635 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:62636 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:52120 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:52121 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:52122 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:52123 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:54754 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:54755 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:54756 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:54757 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:51686 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:51687 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:51688 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:51689 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:62946 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:62947 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:62948 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:62949 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:54331 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:54332 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:54333 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:54334 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:57056 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:57057 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:57058 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:57059 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:64640 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:64641 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:64642 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:64643 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:60169 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:60170 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:60171 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:60172 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:53048 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:53049 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:53050 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:53051 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:49505 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:49506 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:49507 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:49508 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:50537 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:50538 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:50539 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:50540 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:50968 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:50969 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:50970 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:50971 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:57690 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:57691 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:57692 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:57693 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:61805 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:61806 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:61807 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:61808 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:53271 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:53272 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:53273 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:53274 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:54490 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:54491 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:54492 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:54493 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:56064 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:56065 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:56066 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:56067 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:61846 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:61847 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:61848 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:61849 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:59337 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:59338 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:59339 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:59340 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:63435 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:63436 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:63437 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:63438 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:64931 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:64932 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:64933 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:64934 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:62441 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:62442 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:62443 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:62444 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:63987 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:63988 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:63989 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:63990 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:52392 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:52393 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:52394 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:52395 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:57188 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:57189 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:57190 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:57191 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:56772 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:56773 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:56774 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:56775 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:56905 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:56906 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:56907 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:56908 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:57095 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:57096 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:57097 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:57098 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:59721 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:59722 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:59723 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:59724 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:51593 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:51594 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:51595 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:51596 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:55297 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:55298 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:55299 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:55300 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:59531 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:59532 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:59533 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:59534 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:60776 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:60777 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:60778 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:60779 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:50808 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:50809 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:50810 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:50811 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:54099 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:54100 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:54101 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:54102 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:61575 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:61576 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:61577 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:61578 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:51624 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:51625 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:51626 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:51627 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:60786 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:60787 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:60788 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:60789 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:53956 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:53957 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:53958 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:53959 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:60755 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:60756 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:60757 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:60758 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:59792 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:59793 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:59794 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:59795 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:54312 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:54313 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:54314 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:54315 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:56506 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:56507 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:56508 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:56509 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:57979 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:57980 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:57981 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:57982 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:63500 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:63501 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:63502 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829498 ETPRO TROJAN GandCrab DNS Lookup 1 192.168.2.6:63503 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:60383 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:60384 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:60385 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2829500 ETPRO TROJAN GandCrab DNS Lookup 3 192.168.2.6:60386 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:55636 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:55637 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:55638 -> 8.8.8.8:53 |
Source: Traffic |
Snort IDS: 2026737 ET TROJAN Observed GandCrab Domain (gandcrab .bit) 192.168.2.6:55639 -> 8.8.8.8:53 |
Source: BUgAyPXboK.exe, 00000000.00000000.252253377.000000000040E000.00000008.00000001.01000000.00000003.sdmp |
String found in binary or memory: 4. Open link in tor browser: http://gdcbghvjyqy7jclk.onion/e644d32fec6144de |
Source: BUgAyPXboK.exe, 00000000.00000000.252253377.000000000040E000.00000008.00000001.01000000.00000003.sdmp |
String found in binary or memory: 1. http://gdcbghvjyqy7jclk.onion.top/e644d32fec6144de |
Source: BUgAyPXboK.exe, 00000000.00000000.252253377.000000000040E000.00000008.00000001.01000000.00000003.sdmp |
String found in binary or memory: 2. http://gdcbghvjyqy7jclk.onion.casa/e644d32fec6144de |
Source: BUgAyPXboK.exe, 00000000.00000000.252253377.000000000040E000.00000008.00000001.01000000.00000003.sdmp |
String found in binary or memory: 3. http://gdcbghvjyqy7jclk.onion.guide/e644d32fec6144de |
Source: BUgAyPXboK.exe, 00000000.00000000.252253377.000000000040E000.00000008.00000001.01000000.00000003.sdmp |
String found in binary or memory: 4. http://gdcbghvjyqy7jclk.onion.rip/e644d32fec6144de |
Source: BUgAyPXboK.exe, 00000000.00000000.252253377.000000000040E000.00000008.00000001.01000000.00000003.sdmp |
String found in binary or memory: 5. http://gdcbghvjyqy7jclk.onion.plus/e644d32fec6144de |
Source: BUgAyPXboK.exe, 00000000.00000002.584330728.000000000040E000.00000004.00000001.01000000.00000003.sdmp |
String found in binary or memory: 4. Open link in tor browser: http://gdcbghvjyqy7jclk.onion/e644d32fec6144de |
Source: BUgAyPXboK.exe, 00000000.00000002.584330728.000000000040E000.00000004.00000001.01000000.00000003.sdmp |
String found in binary or memory: 1. http://gdcbghvjyqy7jclk.onion.top/e644d32fec6144de |
Source: BUgAyPXboK.exe, 00000000.00000002.584330728.000000000040E000.00000004.00000001.01000000.00000003.sdmp |
String found in binary or memory: 2. http://gdcbghvjyqy7jclk.onion.casa/e644d32fec6144de |
Source: BUgAyPXboK.exe, 00000000.00000002.584330728.000000000040E000.00000004.00000001.01000000.00000003.sdmp |
String found in binary or memory: 3. http://gdcbghvjyqy7jclk.onion.guide/e644d32fec6144de |
Source: BUgAyPXboK.exe, 00000000.00000002.584330728.000000000040E000.00000004.00000001.01000000.00000003.sdmp |
String found in binary or memory: 4. http://gdcbghvjyqy7jclk.onion.rip/e644d32fec6144de |
Source: BUgAyPXboK.exe, 00000000.00000002.584330728.000000000040E000.00000004.00000001.01000000.00000003.sdmp |
String found in binary or memory: 5. http://gdcbghvjyqy7jclk.onion.plus/e644d32fec6144de |
Source: ykbxzh.exe, 0000000C.00000002.292150068.0000000000412000.00000008.00000001.01000000.00000006.sdmp |
String found in binary or memory: 4. Open link in tor browser: http://gdcbghvjyqy7jclk.onion/e644d32fec6144de |
Source: ykbxzh.exe, 0000000C.00000002.292150068.0000000000412000.00000008.00000001.01000000.00000006.sdmp |
String found in binary or memory: 1. http://gdcbghvjyqy7jclk.onion.top/e644d32fec6144de |
Source: ykbxzh.exe, 0000000C.00000002.292150068.0000000000412000.00000008.00000001.01000000.00000006.sdmp |
String found in binary or memory: 2. http://gdcbghvjyqy7jclk.onion.casa/e644d32fec6144de |
Source: ykbxzh.exe, 0000000C.00000002.292150068.0000000000412000.00000008.00000001.01000000.00000006.sdmp |
String found in binary or memory: 3. http://gdcbghvjyqy7jclk.onion.guide/e644d32fec6144de |
Source: ykbxzh.exe, 0000000C.00000002.292150068.0000000000412000.00000008.00000001.01000000.00000006.sdmp |
String found in binary or memory: 4. http://gdcbghvjyqy7jclk.onion.rip/e644d32fec6144de |
Source: ykbxzh.exe, 0000000C.00000002.292150068.0000000000412000.00000008.00000001.01000000.00000006.sdmp |
String found in binary or memory: 5. http://gdcbghvjyqy7jclk.onion.plus/e644d32fec6144de |
Source: ykbxzh.exe, 0000000C.00000000.289414377.000000000040E000.00000008.00000001.01000000.00000006.sdmp |
String found in binary or memory: 4. Open link in tor browser: http://gdcbghvjyqy7jclk.onion/e644d32fec6144de |
Source: ykbxzh.exe, 0000000C.00000000.289414377.000000000040E000.00000008.00000001.01000000.00000006.sdmp |
String found in binary or memory: 1. http://gdcbghvjyqy7jclk.onion.top/e644d32fec6144de |
Source: ykbxzh.exe, 0000000C.00000000.289414377.000000000040E000.00000008.00000001.01000000.00000006.sdmp |
String found in binary or memory: 2. http://gdcbghvjyqy7jclk.onion.casa/e644d32fec6144de |
Source: ykbxzh.exe, 0000000C.00000000.289414377.000000000040E000.00000008.00000001.01000000.00000006.sdmp |
String found in binary or memory: 3. http://gdcbghvjyqy7jclk.onion.guide/e644d32fec6144de |
Source: ykbxzh.exe, 0000000C.00000000.289414377.000000000040E000.00000008.00000001.01000000.00000006.sdmp |
String found in binary or memory: 4. http://gdcbghvjyqy7jclk.onion.rip/e644d32fec6144de |
Source: ykbxzh.exe, 0000000C.00000000.289414377.000000000040E000.00000008.00000001.01000000.00000006.sdmp |
String found in binary or memory: 5. http://gdcbghvjyqy7jclk.onion.plus/e644d32fec6144de |
Source: ykbxzh.exe, 00000019.00000000.303643193.000000000040E000.00000008.00000001.01000000.00000006.sdmp |
String found in binary or memory: 4. Open link in tor browser: http://gdcbghvjyqy7jclk.onion/e644d32fec6144de |
Source: ykbxzh.exe, 00000019.00000000.303643193.000000000040E000.00000008.00000001.01000000.00000006.sdmp |
String found in binary or memory: 1. http://gdcbghvjyqy7jclk.onion.top/e644d32fec6144de |
Source: ykbxzh.exe, 00000019.00000000.303643193.000000000040E000.00000008.00000001.01000000.00000006.sdmp |
String found in binary or memory: 2. http://gdcbghvjyqy7jclk.onion.casa/e644d32fec6144de |
Source: ykbxzh.exe, 00000019.00000000.303643193.000000000040E000.00000008.00000001.01000000.00000006.sdmp |
String found in binary or memory: 3. http://gdcbghvjyqy7jclk.onion.guide/e644d32fec6144de |
Source: ykbxzh.exe, 00000019.00000000.303643193.000000000040E000.00000008.00000001.01000000.00000006.sdmp |
String found in binary or memory: 4. http://gdcbghvjyqy7jclk.onion.rip/e644d32fec6144de |
Source: ykbxzh.exe, 00000019.00000000.303643193.000000000040E000.00000008.00000001.01000000.00000006.sdmp |
String found in binary or memory: 5. http://gdcbghvjyqy7jclk.onion.plus/e644d32fec6144de |
Source: ykbxzh.exe, 00000019.00000002.306381807.0000000000412000.00000008.00000001.01000000.00000006.sdmp |
String found in binary or memory: 4. Open link in tor browser: http://gdcbghvjyqy7jclk.onion/e644d32fec6144de |
Source: ykbxzh.exe, 00000019.00000002.306381807.0000000000412000.00000008.00000001.01000000.00000006.sdmp |
String found in binary or memory: 1. http://gdcbghvjyqy7jclk.onion.top/e644d32fec6144de |
Source: ykbxzh.exe, 00000019.00000002.306381807.0000000000412000.00000008.00000001.01000000.00000006.sdmp |
String found in binary or memory: 2. http://gdcbghvjyqy7jclk.onion.casa/e644d32fec6144de |
Source: ykbxzh.exe, 00000019.00000002.306381807.0000000000412000.00000008.00000001.01000000.00000006.sdmp |
String found in binary or memory: 3. http://gdcbghvjyqy7jclk.onion.guide/e644d32fec6144de |
Source: ykbxzh.exe, 00000019.00000002.306381807.0000000000412000.00000008.00000001.01000000.00000006.sdmp |
String found in binary or memory: 4. http://gdcbghvjyqy7jclk.onion.rip/e644d32fec6144de |
Source: ykbxzh.exe, 00000019.00000002.306381807.0000000000412000.00000008.00000001.01000000.00000006.sdmp |
String found in binary or memory: 5. http://gdcbghvjyqy7jclk.onion.plus/e644d32fec6144de |
Source: BUgAyPXboK.exe |
String found in binary or memory: 4. Open link in tor browser: http://gdcbghvjyqy7jclk.onion/e644d32fec6144de |
Source: BUgAyPXboK.exe |
String found in binary or memory: 1. http://gdcbghvjyqy7jclk.onion.top/e644d32fec6144de |
Source: BUgAyPXboK.exe |
String found in binary or memory: 2. http://gdcbghvjyqy7jclk.onion.casa/e644d32fec6144de |
Source: BUgAyPXboK.exe |
String found in binary or memory: 3. http://gdcbghvjyqy7jclk.onion.guide/e644d32fec6144de |
Source: BUgAyPXboK.exe |
String found in binary or memory: 4. http://gdcbghvjyqy7jclk.onion.rip/e644d32fec6144de |
Source: BUgAyPXboK.exe |
String found in binary or memory: 5. http://gdcbghvjyqy7jclk.onion.plus/e644d32fec6144de |
Source: ykbxzh.exe.0.dr |
String found in binary or memory: 4. Open link in tor browser: http://gdcbghvjyqy7jclk.onion/e644d32fec6144de |
Source: ykbxzh.exe.0.dr |
String found in binary or memory: 1. http://gdcbghvjyqy7jclk.onion.top/e644d32fec6144de |
Source: ykbxzh.exe.0.dr |
String found in binary or memory: 2. http://gdcbghvjyqy7jclk.onion.casa/e644d32fec6144de |
Source: ykbxzh.exe.0.dr |
String found in binary or memory: 3. http://gdcbghvjyqy7jclk.onion.guide/e644d32fec6144de |
Source: ykbxzh.exe.0.dr |
String found in binary or memory: 4. http://gdcbghvjyqy7jclk.onion.rip/e644d32fec6144de |
Source: ykbxzh.exe.0.dr |
String found in binary or memory: 5. http://gdcbghvjyqy7jclk.onion.plus/e644d32fec6144de |
Source: unknown |
Process created: C:\Users\user\Desktop\BUgAyPXboK.exe "C:\Users\user\Desktop\BUgAyPXboK.exe" |
|
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\SysWOW64\nslookup.exe nslookup nomoreransom.bit dns1.soprodns.ru |
|
Source: C:\Windows\SysWOW64\nslookup.exe |
Process created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 |
|
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\SysWOW64\nslookup.exe nslookup emsisoft.bit dns1.soprodns.ru |
|
Source: C:\Windows\SysWOW64\nslookup.exe |
Process created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 |
|
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\SysWOW64\nslookup.exe nslookup gandcrab.bit dns1.soprodns.ru |
|
Source: C:\Windows\SysWOW64\nslookup.exe |
Process created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 |
|
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\SysWOW64\nslookup.exe nslookup nomoreransom.bit dns1.soprodns.ru |
|
Source: C:\Windows\SysWOW64\nslookup.exe |
Process created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 |
|
Source: unknown |
Process created: C:\Users\user\AppData\Roaming\Microsoft\ykbxzh.exe "C:\Users\user\AppData\Roaming\Microsoft\ykbxzh.exe" |
|
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\SysWOW64\nslookup.exe nslookup emsisoft.bit dns1.soprodns.ru |
|
Source: C:\Windows\SysWOW64\nslookup.exe |
Process created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 |
|
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\SysWOW64\nslookup.exe nslookup gandcrab.bit dns1.soprodns.ru |
|
Source: C:\Windows\SysWOW64\nslookup.exe |
Process created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 |
|
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\SysWOW64\nslookup.exe nslookup nomoreransom.bit dns1.soprodns.ru |
|
Source: C:\Windows\SysWOW64\nslookup.exe |
Process created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 |
|
Source: unknown |
Process created: C:\Users\user\AppData\Roaming\Microsoft\ykbxzh.exe "C:\Users\user\AppData\Roaming\Microsoft\ykbxzh.exe" |
|
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\SysWOW64\nslookup.exe nslookup emsisoft.bit dns1.soprodns.ru |
|
Source: C:\Windows\SysWOW64\nslookup.exe |
Process created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 |
|
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\SysWOW64\nslookup.exe nslookup gandcrab.bit dns1.soprodns.ru |
|
Source: C:\Windows\SysWOW64\nslookup.exe |
Process created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 |
|
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\SysWOW64\nslookup.exe nslookup nomoreransom.bit dns1.soprodns.ru |
|
Source: C:\Windows\SysWOW64\nslookup.exe |
Process created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 |
|
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\SysWOW64\nslookup.exe nslookup emsisoft.bit dns1.soprodns.ru |
|
Source: C:\Windows\SysWOW64\nslookup.exe |
Process created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 |
|
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\SysWOW64\nslookup.exe nslookup gandcrab.bit dns1.soprodns.ru |
|
Source: C:\Windows\SysWOW64\nslookup.exe |
Process created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 |
|
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\SysWOW64\nslookup.exe nslookup nomoreransom.bit dns1.soprodns.ru |
|
Source: C:\Windows\SysWOW64\nslookup.exe |
Process created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 |
|
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\SysWOW64\nslookup.exe nslookup emsisoft.bit dns1.soprodns.ru |
|
Source: C:\Windows\SysWOW64\nslookup.exe |
Process created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 |
|
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\SysWOW64\nslookup.exe nslookup gandcrab.bit dns1.soprodns.ru |
|
Source: C:\Windows\SysWOW64\nslookup.exe |
Process created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 |
|
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\SysWOW64\nslookup.exe nslookup nomoreransom.bit dns1.soprodns.ru |
|
Source: C:\Windows\SysWOW64\nslookup.exe |
Process created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 |
|
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\SysWOW64\nslookup.exe nslookup emsisoft.bit dns1.soprodns.ru |
|
Source: C:\Windows\SysWOW64\nslookup.exe |
Process created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 |
|
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\SysWOW64\nslookup.exe nslookup gandcrab.bit dns1.soprodns.ru |
|
Source: C:\Windows\SysWOW64\nslookup.exe |
Process created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 |
|
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\SysWOW64\nslookup.exe nslookup nomoreransom.bit dns1.soprodns.ru |
|
Source: C:\Windows\SysWOW64\nslookup.exe |
Process created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 |
|
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\SysWOW64\nslookup.exe nslookup emsisoft.bit dns1.soprodns.ru |
|
Source: C:\Windows\SysWOW64\nslookup.exe |
Process created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 |
|
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\SysWOW64\nslookup.exe nslookup gandcrab.bit dns1.soprodns.ru |
|
Source: C:\Windows\SysWOW64\nslookup.exe |
Process created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 |
|
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\SysWOW64\nslookup.exe nslookup nomoreransom.bit dns1.soprodns.ru |
|
Source: C:\Windows\SysWOW64\nslookup.exe |
Process created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 |
|
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\SysWOW64\nslookup.exe nslookup emsisoft.bit dns1.soprodns.ru |
|
Source: C:\Windows\SysWOW64\nslookup.exe |
Process created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 |
|
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\SysWOW64\nslookup.exe nslookup nomoreransom.bit dns1.soprodns.ru |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\SysWOW64\nslookup.exe nslookup emsisoft.bit dns1.soprodns.ru |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\SysWOW64\nslookup.exe nslookup gandcrab.bit dns1.soprodns.ru |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\SysWOW64\nslookup.exe nslookup nomoreransom.bit dns1.soprodns.ru |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\SysWOW64\nslookup.exe nslookup emsisoft.bit dns1.soprodns.ru |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\SysWOW64\nslookup.exe nslookup gandcrab.bit dns1.soprodns.ru |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\SysWOW64\nslookup.exe nslookup nomoreransom.bit dns1.soprodns.ru |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\SysWOW64\nslookup.exe nslookup emsisoft.bit dns1.soprodns.ru |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\SysWOW64\nslookup.exe nslookup gandcrab.bit dns1.soprodns.ru |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\SysWOW64\nslookup.exe nslookup nomoreransom.bit dns1.soprodns.ru |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\SysWOW64\nslookup.exe nslookup emsisoft.bit dns1.soprodns.ru |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\SysWOW64\nslookup.exe nslookup gandcrab.bit dns1.soprodns.ru |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\SysWOW64\nslookup.exe nslookup nomoreransom.bit dns1.soprodns.ru |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\SysWOW64\nslookup.exe nslookup emsisoft.bit dns1.soprodns.ru |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\SysWOW64\nslookup.exe nslookup nomoreransom.bit dns1.soprodns.ru |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\SysWOW64\nslookup.exe nslookup emsisoft.bit dns1.soprodns.ru |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\SysWOW64\nslookup.exe nslookup gandcrab.bit dns1.soprodns.ru |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\SysWOW64\nslookup.exe nslookup nomoreransom.bit dns1.soprodns.ru |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\SysWOW64\nslookup.exe nslookup emsisoft.bit dns1.soprodns.ru |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\SysWOW64\nslookup.exe nslookup gandcrab.bit dns1.soprodns.ru |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\SysWOW64\nslookup.exe nslookup nomoreransom.bit dns1.soprodns.ru |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\SysWOW64\nslookup.exe nslookup nomoreransom.bit dns1.soprodns.ru |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\SysWOW64\nslookup.exe nslookup emsisoft.bit dns1.soprodns.ru |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\SysWOW64\nslookup.exe nslookup gandcrab.bit dns1.soprodns.ru |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\SysWOW64\nslookup.exe nslookup nomoreransom.bit dns1.soprodns.ru |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\SysWOW64\nslookup.exe nslookup emsisoft.bit dns1.soprodns.ru |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\SysWOW64\nslookup.exe nslookup gandcrab.bit dns1.soprodns.ru |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\SysWOW64\nslookup.exe nslookup nomoreransom.bit dns1.soprodns.ru |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\SysWOW64\nslookup.exe nslookup emsisoft.bit dns1.soprodns.ru |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\SysWOW64\nslookup.exe nslookup gandcrab.bit dns1.soprodns.ru |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\SysWOW64\nslookup.exe nslookup nomoreransom.bit dns1.soprodns.ru |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\SysWOW64\nslookup.exe nslookup emsisoft.bit dns1.soprodns.ru |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\SysWOW64\nslookup.exe nslookup gandcrab.bit dns1.soprodns.ru |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\SysWOW64\nslookup.exe nslookup nomoreransom.bit dns1.soprodns.ru |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\SysWOW64\nslookup.exe nslookup emsisoft.bit dns1.soprodns.ru |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\SysWOW64\nslookup.exe nslookup nomoreransom.bit dns1.soprodns.ru |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\SysWOW64\nslookup.exe nslookup emsisoft.bit dns1.soprodns.ru |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\SysWOW64\nslookup.exe nslookup gandcrab.bit dns1.soprodns.ru |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\SysWOW64\nslookup.exe nslookup nomoreransom.bit dns1.soprodns.ru |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\SysWOW64\nslookup.exe nslookup emsisoft.bit dns1.soprodns.ru |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\SysWOW64\nslookup.exe nslookup gandcrab.bit dns1.soprodns.ru |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\SysWOW64\nslookup.exe nslookup nomoreransom.bit dns1.soprodns.ru |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Users\user\Desktop\BUgAyPXboK.exe |
Process created: unknown unknown |
Jump to behavior |