Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
pdf_novichki.rar
|
RAR archive data, v5
|
initial sample
|
||
|
C:\Users\alfredo\Desktop\pdf\ne trogaite.txt
|
Composite Document File V2 Document, Little Endian, Os: Windows, Version 5.0, MSI Installer, Code page: 1252, Title: Installation
Database, Subject: PuTTY release 0.78 installer, Author: Simon Tatham, Keywords: Installer, Comments: This installer database
contains the logic and data required to install PuTTY release 0.78 (64-bit)., Template: x64;1033, Revision Number: {F5BABDF1-815A-4F73-82E1-B79790A1551E},
Create Time/Date: Fri Oct 28 19:24:49 2022, Last Saved Time/Date: Fri Oct 28 19:24:49 2022, Number of Pages: 200, Number of
Words: 2, Number of Characters: 0, Name of Creating Application: Windows Installer XML Toolset (), Security: 2
|
dropped
|
||
|
C:\Users\alfredo\Documents\Outlook Files\Outlook Data File - NoEmail.pst
|
data
|
dropped
|
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
52.109.8.45
|
unknown
|
United States
|
||
|
192.229.221.95
|
unknown
|
United States
|
||
|
52.109.76.141
|
unknown
|
United States
|