Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
FileOpenInstaller.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
initial sample
|
||
|
C:\Users\user\AppData\Local\Temp\is-IK3FC.tmp\FileOpenInstaller.tmp
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
dropped
|
 |
|
|
C:\Users\user\AppData\Local\Temp\Setup Log 2023-02-07 #001.txt
|
Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
|
dropped
|
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Users\user\Desktop\FileOpenInstaller.exe
|
C:\Users\user\Desktop\FileOpenInstaller.exe
|
|
|
|
C:\Users\user\AppData\Local\Temp\is-IK3FC.tmp\FileOpenInstaller.tmp
|
"C:\Users\user\AppData\Local\Temp\is-IK3FC.tmp\FileOpenInstaller.tmp" /SL5="$202B6,6054369,1320960,C:\Users\user\Desktop\FileOpenInstaller.exe"
|
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
http://www.innosetup.com/
|
unknown
|
||
|
https://jrsoftware.org/ishelp/index.php?topic=setupcmdlineSetupU
|
unknown
|
||
|
http://www.fileopen.com/0
|
unknown
|
||
|
http://www.fileopen.com/request-tech-support/
|
unknown
|
||
|
http://www.remobjects.com/ps
|
unknown
|
||
|
http://www.fileopen.com/request-tech-support/Zhttp://www.fileopen.com/request-tech-support/
|
unknown
|
||
|
http://www.fileopen.com/request-tech-support/Q
|
unknown
|
||
|
http://www.fileopen.com/request-tech-support/q
|
unknown
|
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
90C000
|
direct allocation
|
page read and write
|
||
|
3713000
|
direct allocation
|
page read and write
|
||
|
3715000
|
direct allocation
|
page read and write
|
||
|
640000
|
direct allocation
|
page read and write
|
||
|
3ACF000
|
stack
|
page read and write
|
||
|
4FE000
|
unkown
|
page readonly
|
||
|
375E000
|
direct allocation
|
page read and write
|
||
|
521000
|
unkown
|
page readonly
|
||
|
39C1000
|
direct allocation
|
page read and write
|
||
|
27D4000
|
heap
|
page read and write
|
||
|
401000
|
unkown
|
page execute read
|
||
|
632000
|
direct allocation
|
page read and write
|
||
|
8FE000
|
direct allocation
|
page read and write
|
||
|
7A0000
|
direct allocation
|
page read and write
|
||
|
7EF83000
|
direct allocation
|
page read and write
|
||
|
7EFA2000
|
direct allocation
|
page read and write
|
||
|
25AB000
|
heap
|
page read and write
|
||
|
664000
|
direct allocation
|
page read and write
|
||
|
7EF67000
|
direct allocation
|
page read and write
|
||
|
10000
|
heap
|
page read and write
|
||
|
6AC000
|
unkown
|
page readonly
|
||
|
399B000
|
direct allocation
|
page read and write
|
||
|
56E000
|
direct allocation
|
page read and write
|
||
|
592000
|
direct allocation
|
page read and write
|
||
|
7EF6E000
|
direct allocation
|
page read and write
|
||
|
39A0000
|
direct allocation
|
page read and write
|
||
|
7EF4E000
|
direct allocation
|
page read and write
|
||
|
39B3000
|
direct allocation
|
page read and write
|
||
|
24CB000
|
direct allocation
|
page read and write
|
||
|
9F4000
|
direct allocation
|
page read and write
|
||
|
3690000
|
direct allocation
|
page read and write
|
||
|
2410000
|
direct allocation
|
page read and write
|
||
|
7E7000
|
heap
|
page read and write
|
||
|
656000
|
direct allocation
|
page read and write
|
||
|
36FB000
|
direct allocation
|
page read and write
|
||
|
A40000
|
heap
|
page read and write
|
||
|
558000
|
direct allocation
|
page read and write
|
||
|
7EF91000
|
direct allocation
|
page read and write
|
||
|
7EF7A000
|
direct allocation
|
page read and write
|
||
|
599000
|
direct allocation
|
page read and write
|
||
|
39C8000
|
direct allocation
|
page read and write
|
||
|
371D000
|
direct allocation
|
page read and write
|
||
|
A18000
|
direct allocation
|
page read and write
|
||
|
22AF000
|
stack
|
page read and write
|
||
|
36F8000
|
direct allocation
|
page read and write
|
||
|
6C7000
|
heap
|
page read and write
|
||
|
22D0000
|
direct allocation
|
page read and write
|
||
|
8B000
|
stack
|
page read and write
|
||
|
A46000
|
heap
|
page read and write
|
||
|
372B000
|
direct allocation
|
page read and write
|
||
|
58B000
|
direct allocation
|
page read and write
|
||
|
5A2000
|
direct allocation
|
page read and write
|
||
|
A11000
|
direct allocation
|
page read and write
|
||
|
3736000
|
direct allocation
|
page read and write
|
||
|
813000
|
heap
|
page read and write
|
||
|
9ED000
|
direct allocation
|
page read and write
|
||
|
3744000
|
direct allocation
|
page read and write
|
||
|
29F000
|
stack
|
page read and write
|
||
|
39A3000
|
direct allocation
|
page read and write
|
||
|
9DF000
|
direct allocation
|
page read and write
|
||
|
23F0000
|
direct allocation
|
page read and write
|
||
|
39BA000
|
direct allocation
|
page read and write
|
||
|
3707000
|
direct allocation
|
page read and write
|
||
|
75F000
|
stack
|
page read and write
|
||
|
66B000
|
unkown
|
page write copy
|
||
|
4B7000
|
unkown
|
page write copy
|
||
|
4B7000
|
unkown
|
page read and write
|
||
|
66C000
|
direct allocation
|
page read and write
|
||
|
7EF9F000
|
direct allocation
|
page read and write
|
||
|
62A000
|
direct allocation
|
page read and write
|
||
|
4C2000
|
unkown
|
page write copy
|
||
|
27D0000
|
heap
|
page read and write
|
||
|
567000
|
direct allocation
|
page read and write
|
||
|
65D000
|
unkown
|
page write copy
|
||
|
6E4000
|
heap
|
page read and write
|
||
|
4B9000
|
unkown
|
page read and write
|
||
|
7EF61000
|
direct allocation
|
page read and write
|
||
|
8EF000
|
direct allocation
|
page read and write
|
||
|
25A4000
|
heap
|
page read and write
|
||
|
670000
|
unkown
|
page readonly
|
||
|
673000
|
direct allocation
|
page read and write
|
||
|
6EF000
|
unkown
|
page readonly
|
||
|
5B7000
|
direct allocation
|
page read and write
|
||
|
533000
|
unkown
|
page readonly
|
||
|
2302000
|
heap
|
page read and write
|
||
|
9D8000
|
direct allocation
|
page read and write
|
||
|
22E4000
|
heap
|
page read and write
|
||
|
9D0000
|
direct allocation
|
page read and write
|
||
|
98E000
|
direct allocation
|
page read and write
|
||
|
39AD000
|
direct allocation
|
page read and write
|
||
|
401000
|
unkown
|
page execute read
|
||
|
2408000
|
direct allocation
|
page read and write
|
||
|
8E0000
|
direct allocation
|
page read and write
|
||
|
7EF81000
|
direct allocation
|
page read and write
|
||
|
971000
|
direct allocation
|
page read and write
|
||
|
639000
|
direct allocation
|
page read and write
|
||
|
5B0000
|
direct allocation
|
page read and write
|
||
|
9E6000
|
direct allocation
|
page read and write
|
||
|
374A000
|
direct allocation
|
page read and write
|
||
|
7ECB0000
|
direct allocation
|
page read and write
|
||
|
18D000
|
stack
|
page read and write
|
||
|
98B000
|
direct allocation
|
page read and write
|
||
|
7EF6C000
|
direct allocation
|
page read and write
|
||
|
65F000
|
unkown
|
page read and write
|
||
|
24DA000
|
direct allocation
|
page read and write
|
||
|
9C2000
|
direct allocation
|
page read and write
|
||
|
2A0000
|
heap
|
page read and write
|
||
|
67A000
|
direct allocation
|
page read and write
|
||
|
7EFAC000
|
direct allocation
|
page read and write
|
||
|
241F000
|
stack
|
page read and write
|
||
|
25A8000
|
heap
|
page read and write
|
||
|
8E8000
|
direct allocation
|
page read and write
|
||
|
24B2000
|
direct allocation
|
page read and write
|
||
|
681000
|
direct allocation
|
page read and write
|
||
|
804000
|
heap
|
page read and write
|
||
|
370E000
|
direct allocation
|
page read and write
|
||
|
3710000
|
direct allocation
|
page read and write
|
||
|
36F5000
|
direct allocation
|
page read and write
|
||
|
7A0000
|
direct allocation
|
page read and write
|
||
|
615000
|
direct allocation
|
page read and write
|
||
|
3705000
|
direct allocation
|
page read and write
|
||
|
979000
|
direct allocation
|
page read and write
|
||
|
905000
|
direct allocation
|
page read and write
|
||
|
672000
|
unkown
|
page readonly
|
||
|
371A000
|
direct allocation
|
page read and write
|
||
|
3986000
|
direct allocation
|
page read and write
|
||
|
3690000
|
direct allocation
|
page read and write
|
||
|
A0A000
|
direct allocation
|
page read and write
|
||
|
99D000
|
direct allocation
|
page read and write
|
||
|
22E0000
|
heap
|
page read and write
|
||
|
10000
|
heap
|
page read and write
|
||
|
7EF76000
|
direct allocation
|
page read and write
|
||
|
583000
|
direct allocation
|
page read and write
|
||
|
396E000
|
direct allocation
|
page read and write
|
||
|
7EF94000
|
direct allocation
|
page read and write
|
||
|
9BB000
|
direct allocation
|
page read and write
|
||
|
64F000
|
direct allocation
|
page read and write
|
||
|
7EF2E000
|
direct allocation
|
page read and write
|
||
|
995000
|
direct allocation
|
page read and write
|
||
|
3990000
|
direct allocation
|
page read and write
|
||
|
980000
|
direct allocation
|
page read and write
|
||
|
251F000
|
stack
|
page read and write
|
||
|
7EF71000
|
direct allocation
|
page read and write
|
||
|
340000
|
heap
|
page read and write
|
||
|
65D000
|
unkown
|
page read and write
|
||
|
4C6000
|
unkown
|
page readonly
|
||
|
3722000
|
direct allocation
|
page read and write
|
||
|
550000
|
direct allocation
|
page read and write
|
||
|
4C0000
|
unkown
|
page read and write
|
||
|
398D000
|
direct allocation
|
page read and write
|
||
|
400000
|
unkown
|
page readonly
|
||
|
25A0000
|
heap
|
page read and write
|
||
|
5A9000
|
direct allocation
|
page read and write
|
||
|
7E0000
|
heap
|
page read and write
|
||
|
8F7000
|
direct allocation
|
page read and write
|
||
|
668000
|
unkown
|
page read and write
|
||
|
6CF000
|
unkown
|
page readonly
|
||
|
2170000
|
heap
|
page read and write
|
||
|
A03000
|
direct allocation
|
page read and write
|
||
|
9B4000
|
direct allocation
|
page read and write
|
||
|
3730000
|
direct allocation
|
page read and write
|
||
|
818000
|
heap
|
page read and write
|
||
|
3999000
|
direct allocation
|
page read and write
|
||
|
20000
|
heap
|
page read and write
|
||
|
6E1000
|
unkown
|
page readonly
|
||
|
4C4000
|
unkown
|
page readonly
|
||
|
3988000
|
direct allocation
|
page read and write
|
||
|
65D000
|
direct allocation
|
page read and write
|
||
|
24F5000
|
direct allocation
|
page read and write
|
||
|
3717000
|
direct allocation
|
page read and write
|
||
|
36FE000
|
direct allocation
|
page read and write
|
||
|
9AC000
|
direct allocation
|
page read and write
|
||
|
3992000
|
direct allocation
|
page read and write
|
||
|
688000
|
direct allocation
|
page read and write
|
||
|
6C5000
|
unkown
|
page readonly
|
||
|
9FC000
|
direct allocation
|
page read and write
|
||
|
7EF89000
|
direct allocation
|
page read and write
|
||
|
3995000
|
direct allocation
|
page read and write
|
||
|
541000
|
unkown
|
page readonly
|
||
|
8A000
|
stack
|
page read and write
|
||
|
7EF73000
|
direct allocation
|
page read and write
|
||
|
27F2000
|
heap
|
page read and write
|
||
|
9C9000
|
direct allocation
|
page read and write
|
||
|
373A000
|
direct allocation
|
page read and write
|
||
|
57C000
|
direct allocation
|
page read and write
|
||
|
575000
|
direct allocation
|
page read and write
|
||
|
517000
|
unkown
|
page readonly
|
||
|
240000
|
direct allocation
|
page execute and read and write
|
||
|
7EF5E000
|
direct allocation
|
page read and write
|
||
|
6C0000
|
heap
|
page read and write
|
||
|
7EF83000
|
direct allocation
|
page read and write
|
||
|
24E7000
|
direct allocation
|
page read and write
|
||
|
7EF87000
|
direct allocation
|
page read and write
|
||
|
648000
|
direct allocation
|
page read and write
|
||
|
6B7000
|
unkown
|
page readonly
|
||
|
55F000
|
direct allocation
|
page read and write
|
||
|
18D000
|
stack
|
page read and write
|
||
|
400000
|
unkown
|
page readonly
|
||
|
9A4000
|
direct allocation
|
page read and write
|
||
|
5BE000
|
direct allocation
|
page read and write
|
||
|
7EF98000
|
direct allocation
|
page read and write
|
There are 191 hidden memdumps, click here to show them.