Engine | Download Report | Detection | Info |
---|---|---|---|
|
malicious
Score: 100
|
System: Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
|
IP | Country | Detection |
---|---|---|
162.159.130.233 | United States | |
162.159.133.233 | United States |
Name | IP | Detection |
---|---|---|
cdn.discordapp.com | 162.159.130.233 |
Name | Detection |
---|---|
www.llaa11.xyz/scb0/ | |
https://cdn.discordapp.com/attachments/836211098164265024/892047706770509844/Qybpdxzxxjklicipydzdiinowujxlof |
Name | File Type | Hashes | Detection |
---|---|---|---|
C:\Users\Public\Libraries\Qybpdxz\Qybpdxz.exe |
PE32 executable (GUI) Intel 80386, for MS Windows | # | |
C:\ProgramData\Microsoft\Windows\WER\Temp\WER81DC.tmp.xml |
XML 1.0 document, ASCII text, with CRLF line terminators | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9QTQHWWN\Qybpdxzxxjklicipydzdiinowujxlof[2] |
data | # | |
Click to see the 19 hidden entries | |||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9QTQHWWN\Qybpdxzxxjklicipydzdiinowujxlof[1] |
data | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\3Y2ADQKS\Qybpdxzxxjklicipydzdiinowujxlof[1] |
data | # | |
C:\Users\Public\nest.bat |
ASCII text, with CRLF line terminators | # | |
C:\Users\Public\nest |
ASCII text, with CRLF line terminators | # | |
C:\Users\Public\UKO.bat |
ASCII text, with CRLF line terminators | # | |
C:\Users\Public\Trast.bat |
ASCII text, with no line terminators | # | |
C:\Users\Public\Libraries\zxdpbyQ.url |
MS Windows 95 Internet shortcut text (URL=<file:"C:\\Users\\Public\\Libraries\\Qybpdxz\\Qybpdxz.exe">), ASCII text, with CRLF line terminators | # | |
C:\Users\Public\KDECO.bat |
ASCII text, with no line terminators | # | |
C:\ProgramData\Microsoft\Windows\WER\ReportQueue\AppCrash_mobsync.exe_4f8d1df0fba57de648265d9a2130aefb6b3891a_cdf4f12b_145ad42c\Report.wer |
Little-endian UTF-16 Unicode text, with CRLF line terminators | # | |
C:\ProgramData\Microsoft\Windows\WER\Temp\WER7D67.tmp.WERInternalMetadata.xml |
XML 1.0 document, Little-endian UTF-16 Unicode text, with CRLF line terminators | # | |
C:\ProgramData\Microsoft\Windows\WER\Temp\WER79AC.tmp.dmp |
Mini DuMP crash report, 14 streams, Tue Sep 28 03:33:16 2021, 0x1205a4 type | # | |
C:\ProgramData\Microsoft\Windows\WER\Temp\WER55F5.tmp.xml |
XML 1.0 document, ASCII text, with CRLF line terminators | # | |
C:\ProgramData\Microsoft\Windows\WER\Temp\WER4E91.tmp.WERInternalMetadata.xml |
XML 1.0 document, Little-endian UTF-16 Unicode text, with CRLF line terminators | # | |
C:\ProgramData\Microsoft\Windows\WER\Temp\WER46C0.tmp.dmp |
Mini DuMP crash report, 14 streams, Tue Sep 28 03:34:10 2021, 0x1205a4 type | # | |
C:\ProgramData\Microsoft\Windows\WER\Temp\WER25CD.tmp.xml |
XML 1.0 document, ASCII text, with CRLF line terminators | # | |
C:\ProgramData\Microsoft\Windows\WER\Temp\WER1F25.tmp.WERInternalMetadata.xml |
XML 1.0 document, Little-endian UTF-16 Unicode text, with CRLF line terminators | # | |
C:\ProgramData\Microsoft\Windows\WER\Temp\WER1560.tmp.dmp |
Mini DuMP crash report, 14 streams, Tue Sep 28 03:33:58 2021, 0x1205a4 type | # | |
C:\ProgramData\Microsoft\Windows\WER\ReportQueue\AppCrash_secinit.exe_1cc8228464a2edeca80f27db11b39d78dd97a3a_b4caafd3_1af6fb99\Report.wer |
Little-endian UTF-16 Unicode text, with CRLF line terminators | # | |
C:\ProgramData\Microsoft\Windows\WER\ReportQueue\AppCrash_secinit.exe_1cc8228464a2edeca80f27db11b39d78dd97a3a_b4caafd3_0c460f36\Report.wer |
Little-endian UTF-16 Unicode text, with CRLF line terminators | # |