PKO_TRANS_DETAILS_20211216_0809521.exe
| Full Report | Management Report | IOC Report | Engine | Info | Verdict | Score | Reports |
|---|---|---|---|---|---|---|---|
|
System: Windows 10 64 bit v1803 with Office Professional Plus 2016, Chrome 85, IE 11, Adobe Reader DC 19, Java 8 Update 211 |
|
72/100
|
||||
|
|
System: Windows 10 64 bit 20H2 Native physical Machine for testing VM-aware malware (Office 2019, IE 11, Chrome 93, Firefox 91, Adobe Reader DC 21, Java 8 Update 301 |
|
100/100
|
||||
 |
|
14/68
|
| IP | Country | Detection |
|---|---|---|
| 142.250.185.129 | United States |  |
| 77.88.21.158 | Russian Federation | |
| 216.58.212.174 | United States | |
| Name | IP | Detection |
|---|---|---|
| smtp.yandex.ru | 77.88.21.158 | |
| drive.google.com | 216.58.212.174 | |
| googlehosted.l.googleusercontent.com | 142.250.185.129 | |
| Click to see the 2 hidden entries | ||
| doc-00-10-docs.googleusercontent.com | 0.0.0.0 | |
| smtp.yandex.com | 0.0.0.0 | |
| Name | Detection |
|---|---|
| https://drive.google.com/~ | |
| https://ffT40WCIhVVniAbESQ.comt- | |
| http://127.0.0.1:HTTP/1.1 | |
| Click to see the 24 hidden entries | |
| http://DynDns.comDynDNS | |
| http://repository.certum.pl/ctnca.cer09 | |
| https://www.theonionrouter.com/dist.torproject.org/torbrowser/9.5.3/tor-win32-0.4.3.6.zip%tordir%%ha | |
| http://crl.certum.pl/ctnca.crl0k | |
| http://yandex.crl.certum.pl/ycasha2.crl0q | |
| https://ffT40WCIhVVniAbESQ.com | |
| https://support.google.com/chrome/?p=plugin_flash | |
| https://doc-00-10-docs.googleusercontent.com/docs/securesc/ha0ro937gcuc7l7deffksulhg5h7mbp1/1h4vdo343qt36t0eav1jpdhsqf81bcjc/1639657200000/05069790638565246300/*/1byST7n55z6cYoUjFqb0Ef6QjVn6HNywC?e=download | |
| https://www.certum.pl/CPS0 | |
| http://smtp.yandex.com | |
| http://yandex.ocsp-responder.com03 | |
| http://subca.ocsp-certum.com0. | |
| http://repository.certum.pl/ca.cer09 | |
| http://crls.yandex.net/certum/ycasha2.crl0- | |
| http://eVxhAq.com | |
| https://drive.google.com/ | |
| http://subca.ocsp-certum.com01 | |
| http://crl.certum.pl/ca.crl0h | |
| http://www.certum.pl/CPS0 | |
| https://doc-00-10-docs.googleusercontent.com/ | |
| http://repository.certum.pl/ycasha2.cer0 | |
| https://csp.withgoogle.com/csp/report-to/gse_l9ocaq | |
| https://doc-00-10-docs.googleusercontent.com/2 | |
| https://doc-00-10-docs.googleusercontent.com/docs/securesc/ha0ro937gcuc7l7deffksulhg5h7mbp1/1h4vdo34 | |
| Name | File Type | Hashes | Detection |
|---|---|---|---|
C:\Users\user\AppData\Local\Temp\~DF96836616C4B0B991.TMP |
Composite Document File V2 Document, Cannot read section info | # | |
C:\Users\user\AppData\Roaming\u2trkkyb.crc\Chrome\Default\Cookies |
SQLite 3.x database, last written using SQLite version 3035005 | # | |
C:\Users\user\AppData\Roaming\u2trkkyb.crc\Firefox\Profiles\ol7uiqa8.default-release\cookies.sqlite |
SQLite 3.x database, user version 12, last written using SQLite version 3036000 | # | |
| Click to see the 1 hidden entries | |||
\Device\ConDrv |
ASCII text, with CRLF line terminators | # | |
