Report #10955 check_circle

  • Creation Date: Sept. 3, 2020, 2:07 a.m.
  • Last Update: Sept. 3, 2020, 2:15 a.m.
  • File: Battle.net-Setup.exe
  • Results:
Binary
DLL
False cancel
Size
4.68MB
trid
72.3% Win64 Executable
11.8% Win32 Executable
5.3% OS/2 Executable
5.2% Generic Win/DOS Executable
5.2% DOS Executable Generic
type
PE
wordsize
32
Subsystem
Windows GUI
Hashes
md5
7c7388f0dca143b4baba693e23723668
sha1
75abc1c8ec3c3d35335138e0a3f0d3e2caecb5ae
crc32
0x4737f58a
sha224
704233483b08502c3cb18fb1666d1c35b7efb4b7ae8a229f15b373ad
sha256
21d24407a7bfc13d9bcefa1ac4935263591ebc37b67d1a2edde5f69d84423bc5
sha384
9d8189ed3e4bd4a5e614c8a688f2116eb3851fa4fac3b589b88a1da69a127b16910ea15c56902d2633b22ba4c012c485
sha512
2539ba04160dbb6213092e7e0e3fc8161e14035a4df74914dcee589f524382047afe29b7ddca3eaed40d9f6dc58c2cd23a1a3a5bcdce4acb4d13aca851381b5a
ssdeep
98304:zhd3ga/+fpF5bAeDlMcXVFmpJE5qZ03wRtX:zhdv+f5bRmP4q2wtX
Community
Google
False cancel
HashLib
False cancel
YARA
Matches
IP, HasDebugData, CRC32_poly_Constant, BASE64_table, escalate_priv, HasRichSignature, VC8_Microsoft_Corporation, RIPEMD160_Constants, DebuggerException__SetConsoleCtrl, Check_OutputDebugStringA_iat, network_dns, CRC32_table, RijnDael_AES, network_http, BLOWFISH_Constants, win_files_operation, IsPE32, WHIRLPOOL_Constants, network_tcp_socket, Misc_Suspicious_Strings, screenshot, win_token, win_mutex, maldoc_find_kernel32_base_method_1, anti_dbg, IsWindowsGUI, antisb_threatExpert, SHA512_Constants, HasDigitalSignature, network_tcp_listen, url, DES_Long, SHA1_Constants, android_meterpreter, contentis_base64, Microsoft_Visual_Cpp_8, win_registry, HasOverlay, network_dga, network_smtp_raw, Advapi_Hash_API, MD5_Constants, Big_Numbers1

Suspicious
True check_circle

Strings
List
http://nydus.battle.net/App/%s/setup/error/%s
https://nydus.battle.net/App/%s/setup/app
7http://cacerts.digicert.com/DigiCertAssuredIDRootCA.crt0
# https://curl.haxx.se/docs/http-cookies.html
4http://crl4.digicert.com/DigiCertAssuredIDRootCA.crl0:
4http://crl3.digicert.com/DigiCertAssuredIDRootCA.crl0O
You need to read the OpenSSL FAQ, https://www.openssl.org/docs/faq.html
Bhttp://cacerts.digicert.com/DigiCertSHA2AssuredIDCodeSigningCA.crt0
/http://crl4.digicert.com/sha2-assured-cs-g1.crl0L
runonce-cat.wtf
/http://crl3.digicert.com/sha2-assured-cs-g1.crl05
runonce-wlk.wtf
runonce.wtf
ftp@example.com
http://iir.blizzard.com:3724/submit/BNET_APP
runonce-launcher.wtf
runonce-installer.wtf
http://www.google-analytics.com/collect
https://telemetry-in.battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net
battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net
Battle.net

Foremost
Matches
8392.png, 31 KB, 8456.png, 24 KB, 8505.png, 196 KB, 8899.png, 1 KB, 8901.png, 1 KB, 8903.png, 1 KB, 8906.png, 1 KB, 8909.png, 1 KB, 8911.png, 1 KB, 8914.png, 249 B, 8914.png, 317 B, 8915.png, 1 KB, 8917.png, 1 KB, 8919.png, 1 KB, 8922.png, 1 KB, 8924.png, 1 KB, 8926.png, 1021 B, 8928.png, 1 KB, 8930.png, 665 B, 8931.png, 938 B, 8933.png, 1 KB, 8935.png, 2 KB, 8941.png, 2 KB, 8946.png, 1 KB, 8949.png, 2 KB, 8955.png, 2 KB, 8960.png, 1 KB, 8962.png, 1 KB, 9138.png, 20 KB
Suspicious
True check_circle
Heuristics
IPs
hasIPs: True check_circle
Allowed: 127.0.0.1, 1, localhost., 2.5.4.8, 1, alille-656-1-159-8.w2-5.abo.wanadoo.fr., 2.5.4.9, 1, alille-656-1-159-9.w2-5.abo.wanadoo.fr., 2.5.4.6, 1, alille-656-1-159-6.w2-5.abo.wanadoo.fr., 2.5.4.7, 1, alille-656-1-159-7.w2-5.abo.wanadoo.fr., 2.5.4.4, 1, alille-656-1-159-4.w2-5.abo.wanadoo.fr., 2.5.4.5, 1, alille-656-1-159-5.w2-5.abo.wanadoo.fr., 2.5.4.3, 1, alille-656-1-159-3.w2-5.abo.wanadoo.fr., 2.5.4.72, 1, alille-656-1-159-72.w2-5.abo.wanadoo.fr., 2.5.4.10, 1, alille-656-1-159-10.w2-5.abo.wanadoo.fr., 2.5.4.11, 1, alille-656-1-159-11.w2-5.abo.wanadoo.fr., 2.5.4.12, 1, alille-656-1-159-12.w2-5.abo.wanadoo.fr., 2.5.4.13, 1, alille-656-1-159-13.w2-5.abo.wanadoo.fr., 2.5.4.17, 1, alille-656-1-159-17.w2-5.abo.wanadoo.fr., 2.5.4.45, 1, alille-656-1-159-45.w2-5.abo.wanadoo.fr., 2.5.29.19, 1, aamiens-555-1-9-19.w2-5.abo.wanadoo.fr., 2.5.4.65, 1, alille-656-1-159-65.w2-5.abo.wanadoo.fr., 2.5.29.17, 1, aamiens-555-1-9-17.w2-5.abo.wanadoo.fr., 2.5.4.46, 1, alille-656-1-159-46.w2-5.abo.wanadoo.fr., 2.5.29.18, 1, aamiens-555-1-9-18.w2-5.abo.wanadoo.fr., 2.5.4.44, 1, alille-656-1-159-44.w2-5.abo.wanadoo.fr., 2.5.4.43, 1, alille-656-1-159-43.w2-5.abo.wanadoo.fr., 2.5.4.42, 1, alille-656-1-159-42.w2-5.abo.wanadoo.fr., 2.5.4.41, 1, alille-656-1-159-41.w2-5.abo.wanadoo.fr.
Suspicious: 1.3.14.3, 0, Unknown, 101.3.4.2, 0, Unknown
hasAllowed: True check_circle
hasSuspicious: True check_circle

URLs
Allowed: http://www.w3.org/1999/02/22-rdf-syntax-ns#
hasURLs: True check_circle
Suspicious: http://crl4.digicert.com/sha2-assured-cs-g1.crl0l, https://nydus.battle.net/app/%s/setup/app, http://crl3.digicert.com/sha2-assured-cs-g1.crl05, http://cacerts.digicert.com/digicertassuredidrootca.crt0, http://nydus.battle.net/app/%s/setup/error/%s, https://curl.haxx.se/docs/http-cookies.html, ftp://%s:%s@%s, http://, http://iir.blizzard.com:3724/submit/bnet_app, http://%s:%d%s, http://ns.adobe.com/xap/1.0/mm/, http://ocsp.digicert.com0n, http://ns.adobe.com/xap/1.0/stype/resourceref#, http://ocsp.digicert.com0c, http://crl.thawte.com/thawtetimestampingca.crl0, http://nydus.battle.net/geoip, file://, https://www.openssl.org/docs/faq.html, https://telemetry-in.battle.net, http://ocsp.thawte.com0, http://crl3.digicert.com/digicertassuredidrootca.crl0o, ftp://, http://cacerts.digicert.com/digicertsha2assuredidcodesigningca.crt0, http://ns.adobe.com/xap/1.0/, http://ts-crl.ws.symantec.com/tss-ca-g2.crl0(, http://www.google-analytics.com/collect, file://hostname/,, http://crl4.digicert.com/digicertassuredidrootca.crl0:, http://ts-ocsp.ws.symantec.com07, https://www.digicert.com/cps0, http://ts-aia.ws.symantec.com/tss-ca-g2.cer0<
hasAllowed: True check_circle
hasSuspicious: True check_circle

Files
Allowed: tAdvapi32.dll, Sapi-ms-win-core-synch-l1-2-0.dll, 7psapi.dll, mscoree.dll, ntdll.dll, combase.dll, advapi32.dll, Ckernel32.dll, COMCTL32.DLL, shell32.dll, RPCRT4.dll, KERNEL32.dll, MSIMG32.dll, USER32.dll, WINTRUST.dll, secur32.dll, VERSION.dll, WS2_32.DLL, security.dll, WINHTTP.dll, WININET.dll, dbghelp.dll, OLEAUT32.dll, ole32.dll, CRYPT32.dll, psapi.dll, GDI32.dll
hasFiles: True check_circle
Suspicious: STRINGS.BIN, ProductLocale.txt, exception-failed.txt, Logs/repair-on-demand.log, battle.net-setup.log, battle.net-launcher.log, Logs/Streaming.log, Setup.db, .agent.db, Launcher.db
hasAllowed: True check_circle
hasSuspicious: True check_circle

Binary
Sizes
RVA
RVA: 16
Suspicious: False cancel
Code
Size: 1975296
Suspicious: False cancel
Image
Address: 4194304
Suspicious: False cancel
Stack
Stack: 4096
Suspicious: False cancel
Headers
Headers: 1024
Suspicious: False cancel
Suspicious: False cancel

Symbols
Number
Number: 0
Suspicious: True check_circle
Pointer
Pointer: 0
Suspicious: True check_circle
Directories
Number: 16
Suspicious: False cancel

Checksum
Value: 4939465
Suspicous: False cancel

Sections
Allowed: .text, .rdata, .data, .rsrc, .reloc
Suspicious
hasAllowed: True check_circle
hasSections: True check_circle
hasSuspicious: False cancel

Versions
OS
Version: 6
Suspicious: False cancel
Image
Version: True check_circle
Suspicious: 6
Linker
Version: 14.15
Suspicious: False cancel
Subsystem
Version: 6.0
Suspicious: False cancel
Suspicious: False cancel

EntryPoint
Address: 1279475
Suspicious: False cancel

Anomalies
Anomalies: The header checksum and the calculated checksum do not match.
hasAnomalies: True check_circle

Libraries
Allowed: mscoree.dll, ntdll.dll, combase.dll, advapi32.dll, comctl32.dll, shell32.dll, rpcrt4.dll, kernel32.dll, msimg32.dll, user32.dll, wintrust.dll, secur32.dll, version.dll, ws2_32.dll, security.dll, winhttp.dll, wininet.dll, dbghelp.dll, oleaut32.dll, ole32.dll, crypt32.dll, psapi.dll, gdi32.dll
hasLibs: True check_circle
Suspicious: tadvapi32.dll, sapi-ms-win-core-synch-l1-2-0.dll, 7psapi.dll, ckernel32.dll
hasAllowed: True check_circle
hasSuspicious: True check_circle

Timestamp
Past: False cancel
Valid: True check_circle
Value: 2019-02-14 21:05:18
Future: False cancel

Compilation
Packed: False cancel
Missing: False cancel
Packers
Compiled: True check_circle
Compilers: Microsoft Visual C++ 8, VC8 -> Microsoft Corporation

Obfuscation
XOR: False cancel
Fuzzing: True check_circle

PEDetector
Matches
None
Suspicious
False cancel
Disassembly
hasTricks
True check_circle
Tricks
ldr
.text: 2

pushret
.data: 1
.rsrc: 151
.text: 2
.rdata: 80

pushpopmath
.data: 73
.rsrc: 219
.text: 96
.rdata: 1354
.reloc: 118

sizeofimage
.text: 2

ss register
.rsrc: 5

garbagebytes
.rsrc: 54
.text: 1
.rdata: 24

hookdetection
.data: 1
.rsrc: 7
.rdata: 2
.reloc: 8

stealthimport
.rsrc: 1
.text: 9

peb ntglobalflag
.text: 2

isdebbugerpresent
.text: 2

software breakpoint
.rsrc: 3
.text: 28
.rdata: 3
.reloc: 46

fakeconditionaljumps
.rsrc: 7

programcontrolflowchange
.rsrc: 48
.text: 1
.rdata: 24

cpuinstructionsresultscomparison
.data: 10
.rsrc: 10
.rdata: 61
.reloc: 3

AVclass
None
1
VirusTotal
md5
7c7388f0dca143b4baba693e23723668
sha1
75abc1c8ec3c3d35335138e0a3f0d3e2caecb5ae
SCANS (DETECTION RATE = 0.00%)
AVG
update: 20200903
version: 18.4.3895.0
detected: False cancel

CMC
update: 20200902
version: 2.7.2019.1
detected: False cancel

MAX
update: 20200903
version: 2019.9.16.1
detected: False cancel

APEX
update: 20200901
version: 6.66
detected: False cancel

Bkav
update: 20200903
version: 1.3.0.9899
detected: False cancel

K7GW
update: 20200903
version: 11.133.35147
detected: False cancel

ALYac
update: 20200903
version: 1.1.1.5
detected: False cancel

Avira
update: 20200903
version: 8.3.3.8
detected: False cancel

Baidu
update: 20190318
version: 1.0.0.2
detected: False cancel

Cynet
update: 20200903
version: 4.0.0.24
detected: False cancel

Cyren
update: 20200903
version: 6.3.0.2
detected: False cancel

DrWeb
update: 20200903
version: 7.0.48.8080
detected: False cancel

GData
update: 20200903
version: A:25.26864B:27.20033
detected: False cancel

Panda
update: 20200902
version: 4.6.4.2
detected: False cancel

VBA32
update: 20200902
version: 4.4.1
detected: False cancel

VIPRE
update: 20200903
version: 86404
detected: False cancel

Zoner
update: 20200902
version: 0.0.0.0
detected: False cancel

ClamAV
update: 20200902
version: 0.102.4.0
detected: False cancel

Comodo
update: 20200728
version: 32668
detected: False cancel

Ikarus
update: 20200902
version: 0.1.5.2
detected: False cancel

McAfee
update: 20200903
version: 6.0.6.653
detected: False cancel

Rising
update: 20200902
version: 25.0.0.26
detected: False cancel

Sophos
update: 20200903
version: 4.98.0
detected: False cancel

Yandex
update: 20200901
version: 5.5.2.24
detected: False cancel

Zillya
update: 20200902
version: 2.0.0.4167
detected: False cancel

Acronis
update: 20200806
version: 1.1.1.77
detected: False cancel

Alibaba
update: 20190527
version: 0.3.0.5
detected: False cancel

Arcabit
update: 20200903
version: 1.0.0.881
detected: False cancel

Cylance
update: 20200903
version: 2.3.1.101
detected: False cancel

Elastic
update: 20200831
version: 4.0.8
detected: False cancel

FireEye
update: 20200903
version: 32.36.1.0
detected: False cancel

Sangfor
update: 20200814
version: 1.0
detected: False cancel

TACHYON
update: 20200903
version: 2020-09-03.01
detected: False cancel

Tencent
update: 20200903
version: 1.0.0.1
detected: False cancel

ViRobot
update: 20200902
version: 2014.3.20.0
detected: False cancel

Webroot
update: 20200903
version: 1.0.0.403
detected: False cancel

eGambit
update: 20200903
detected: False cancel

Ad-Aware
update: 20200903
version: 3.0.16.117
detected: False cancel

AegisLab
update: 20200903
version: 4.2
detected: False cancel

F-Secure
update: 20200902
version: 12.0.86.52
detected: False cancel

Fortinet
update: 20200903
version: 6.2.142.0
detected: False cancel

Invincea
update: 20200903
version: 1.0.1.0
detected: False cancel

Jiangmin
update: 20200903
version: 16.0.100
detected: False cancel

Kingsoft
update: 20200903
version: 2013.8.14.323
detected: False cancel

Paloalto
update: 20200903
version: 1.0
detected: False cancel

Symantec
update: 20200902
version: 1.12.0.0
detected: False cancel

AhnLab-V3
update: 20200902
version: 3.18.1.10026
detected: False cancel

Antiy-AVL
update: 20200903
version: 3.0.0.1
detected: False cancel

Kaspersky
update: 20200903
version: 15.0.1.13
detected: False cancel

MaxSecure
update: 20200902
version: 1.0.0.1
detected: False cancel

Microsoft
update: 20200903
version: 1.1.17400.5
detected: False cancel

Qihoo-360
update: 20200903
version: 1.0.0.1120
detected: False cancel

ZoneAlarm
update: 20200903
version: 1.0
detected: False cancel

Cybereason
update: 20190616
version: 1.2.449
detected: False cancel

ESET-NOD32
update: 20200903
version: 21927
detected: False cancel

TrendMicro
update: 20200903
version: 11.0.0.1006
detected: False cancel

BitDefender
update: 20200903
version: 7.2
detected: False cancel

CrowdStrike
update: 20190702
version: 1.0
detected: False cancel

K7AntiVirus
update: 20200902
version: 11.133.35146
detected: False cancel

SentinelOne
update: 20200724
version: 4.4.0.0
detected: False cancel

Malwarebytes
update: 20200903
version: 3.6.4.335
detected: False cancel

TotalDefense
update: 20200902
version: 37.1.62.1
detected: False cancel

CAT-QuickHeal
update: 20200902
version: 14.00
detected: False cancel

NANO-Antivirus
update: 20200903
version: 1.0.134.25140
detected: False cancel

BitDefenderTheta
update: 20200902
version: 7.2.37796.0
detected: False cancel

MicroWorld-eScan
update: 20200903
version: 14.0.409.0
detected: False cancel

SUPERAntiSpyware
update: 20200828
version: 5.6.0.1032
detected: False cancel

TrendMicro-HouseCall
update: 20200903
version: 10.0.0.1040
detected: False cancel

total
68
sha256
21d24407a7bfc13d9bcefa1ac4935263591ebc37b67d1a2edde5f69d84423bc5
scan_id
21d24407a7bfc13d9bcefa1ac4935263591ebc37b67d1a2edde5f69d84423bc5-1599109642
resource
7c7388f0dca143b4baba693e23723668
positives
0
scan_date
2020-09-03 05:07:22
verbose_msg
Scan finished, information embedded
response_code
1
File
Trace
3/9/2020 - 1:45:42.840Open1480C:\malware.exeC:\ProgramData\Battle.net\Agent\BlizzardError.exe
3/9/2020 - 1:45:42.840Open1480C:\malware.exeC:\ProgramData\Battle.net\BlizzardError.exe
3/9/2020 - 1:45:42.840Open1480C:\malware.exeC:\Launcher.db
3/9/2020 - 1:45:42.840Open1480C:\malware.exeC:\SetupWin.mpq
3/9/2020 - 1:45:42.840Open1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Unknown1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Open1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Open1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Unknown1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Open1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Unknown1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Open1480C:\malware.exeC:\malware.exe.writeCacheBackup
3/9/2020 - 1:45:42.840Open1480C:\malware.exeC:\malware.exe.writeCacheBackup
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.840Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.856Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:42.872Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.12Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.28Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.43Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.43Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.43Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.43Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.43Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.43Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.43Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.43Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.43Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.43Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.43Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.43Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.43Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.43Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.43Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.43Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.43Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.43Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.43Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.43Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.43Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.43Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.43Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.43Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.43Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.43Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.43Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.43Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.43Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.43Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.43Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.43Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.43Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.43Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.43Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.43Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.43Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.43Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.43Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.43Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.43Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.43Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.43Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.43Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.43Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.43Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.43Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.43Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.43Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.43Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.43Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.43Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.43Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.43Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.43Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.43Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.43Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.106Open1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.106Unknown1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.106Open1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.106Unknown1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.106Open1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.106Unknown1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:43.106Open1480C:\malware.exeC:\Monitor\Malware
3/9/2020 - 1:45:43.106Unknown1480C:\malware.exeC:\Monitor\Malware
3/9/2020 - 1:45:43.106Open1480C:\malware.exeC:\WowError.exe
3/9/2020 - 1:45:43.106Open1480C:\malware.exeC:\WowErrord.exe
3/9/2020 - 1:45:43.262Open1480C:\malware.exeC:\ProgramData\Battle.net\Agent\BlizzardError.exe
3/9/2020 - 1:45:43.262Open1480C:\malware.exeC:\ProgramData\Battle.net\BlizzardError.exe
3/9/2020 - 1:45:43.262Open1480C:\malware.exeC:\Windows\SysWOW64\secur32.dll
3/9/2020 - 1:45:43.262Open1480C:\malware.exeC:\Windows\SysWOW64\secur32.dll
3/9/2020 - 1:45:43.262Open1480C:\malware.exeC:\Windows\SysWOW64\mswsock.dll
3/9/2020 - 1:45:43.262Open1480C:\malware.exeC:\Windows\SysWOW64\mswsock.dll
3/9/2020 - 1:45:43.262Open1480C:\malware.exeC:\Windows\SysWOW64\wship6.dll
3/9/2020 - 1:45:43.262Open1480C:\malware.exeC:\Windows\SysWOW64\wship6.dll
3/9/2020 - 1:45:43.262Open1480C:\malware.exeC:\IPHLPAPI.DLL
3/9/2020 - 1:45:43.262Open1480C:\malware.exeC:\Windows\SysWOW64\IPHLPAPI.DLL
3/9/2020 - 1:45:43.262Open1480C:\malware.exeC:\Windows\SysWOW64\IPHLPAPI.DLL
3/9/2020 - 1:45:43.262Open1480C:\malware.exeC:\WINNSI.DLL
3/9/2020 - 1:45:43.262Open1480C:\malware.exeC:\Windows\SysWOW64\winnsi.dll
3/9/2020 - 1:45:43.262Open1480C:\malware.exeC:\Windows\SysWOW64\winnsi.dll
3/9/2020 - 1:45:43.262Open1480C:\malware.exeC:\dhcpcsvc6.DLL
3/9/2020 - 1:45:43.262Open1480C:\malware.exeC:\Windows\SysWOW64\dhcpcsvc6.dll
3/9/2020 - 1:45:43.262Unknown1480C:\malware.exeC:\Windows\SysWOW64\dhcpcsvc6.dlldhcpcsvc6.dll
3/9/2020 - 1:45:43.262Open1480C:\malware.exeC:\Windows\SysWOW64\dhcpcsvc6.dll
3/9/2020 - 1:45:43.262Unknown1480C:\malware.exeC:\Windows\SysWOW64\dhcpcsvc6.dlldhcpcsvc6.dll
3/9/2020 - 1:45:43.309Open1480C:\malware.exeC:\dhcpcsvc.DLL
3/9/2020 - 1:45:43.309Open1480C:\malware.exeC:\Windows\SysWOW64\dhcpcsvc.dll
3/9/2020 - 1:45:43.309Open1480C:\malware.exeC:\Windows\SysWOW64\dhcpcsvc.dll
3/9/2020 - 1:45:43.309Open1480C:\malware.exeC:\Windows\SysWOW64\pt-BR\KernelBase.dll.mui
3/9/2020 - 1:45:43.309Open1480C:\malware.exeC:\credssp.dll
3/9/2020 - 1:45:43.309Open1480C:\malware.exeC:\Windows\SysWOW64\credssp.dll
3/9/2020 - 1:45:43.309Open1480C:\malware.exeC:\Windows\SysWOW64\credssp.dll
3/9/2020 - 1:45:43.356Open1480C:\malware.exeC:\Windows\SysWOW64\rpcss.dll
3/9/2020 - 1:45:43.356Open1480C:\malware.exeC:\Windows\SysWOW64\rpcss.dll
3/9/2020 - 1:45:43.465Open1480C:\malware.exeC:\Windows\SysWOW64\WSHTCPIP.DLL
3/9/2020 - 1:45:43.465Open1480C:\malware.exeC:\Windows\SysWOW64\WSHTCPIP.DLL
3/9/2020 - 1:45:43.465Open1480C:\malware.exeC:\DNSAPI.dll
3/9/2020 - 1:45:43.465Open1480C:\malware.exeC:\Windows\SysWOW64\dnsapi.dll
3/9/2020 - 1:45:43.465Open1480C:\malware.exeC:\Windows\SysWOW64\dnsapi.dll
3/9/2020 - 1:45:43.512Open1480C:\malware.exeC:\rasadhlp.dll
3/9/2020 - 1:45:43.512Open1480C:\malware.exeC:\Windows\SysWOW64\rasadhlp.dll
3/9/2020 - 1:45:43.512Open1480C:\malware.exeC:\Windows\SysWOW64\rasadhlp.dll
3/9/2020 - 1:45:44.559Open1480C:\malware.exeC:\Windows\SysWOW64\FWPUCLNT.DLL
3/9/2020 - 1:45:44.559Open1480C:\malware.exeC:\Windows\SysWOW64\FWPUCLNT.DLL
3/9/2020 - 1:45:44.684Open1480C:\malware.exeC:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-2-1.DLL
3/9/2020 - 1:45:45.137Open1480C:\malware.exeC:\ProgramData\Battle.net\Setup\bna_2\Battle.net-Setup.exe
3/9/2020 - 1:45:45.137Open1480C:\malware.exeC:\ProgramData\Battle.net\Agent\Agent.exe
3/9/2020 - 1:45:45.137Open1480C:\malware.exeC:\Windows\SysWOW64\uxtheme.dll
3/9/2020 - 1:45:45.137Open1480C:\malware.exeC:\Windows\SysWOW64\uxtheme.dll
3/9/2020 - 1:45:45.231Open1480C:\malware.exeC:\ProgramData\Battle.net
3/9/2020 - 1:45:45.231Open1480C:\malware.exeC:\ProgramData
3/9/2020 - 1:45:45.231Unknown1480C:\malware.exeC:\ProgramData
3/9/2020 - 1:45:45.231Open1480C:\malware.exeC:\ProgramData\Battle.net
3/9/2020 - 1:45:45.231Unknown1480C:\malware.exeC:\ProgramData\Battle.net
3/9/2020 - 1:45:45.231Open1480C:\malware.exeC:\ProgramData\Battle.net
3/9/2020 - 1:45:45.231Unknown1480C:\malware.exeC:\ProgramData\Battle.net
3/9/2020 - 1:45:45.231Open1480C:\malware.exeC:\ProgramData\Battle.net\Setup\bna_2\Logs
3/9/2020 - 1:45:45.231Open1480C:\malware.exeC:\ProgramData\Battle.net\Setup\bna_2\Logs
3/9/2020 - 1:45:45.231Open1480C:\malware.exeC:\ProgramData\Battle.net\Setup\bna_2\Logs
3/9/2020 - 1:45:45.231Open1480C:\malware.exeC:\ProgramData\Battle.net\Setup\bna_2
3/9/2020 - 1:45:45.231Open1480C:\malware.exeC:\ProgramData\Battle.net\Setup
3/9/2020 - 1:45:45.231Open1480C:\malware.exeC:\ProgramData\Battle.net
3/9/2020 - 1:45:45.231Unknown1480C:\malware.exeC:\ProgramData\Battle.net
3/9/2020 - 1:45:45.231Open1480C:\malware.exeC:\ProgramData\Battle.net\Setup
3/9/2020 - 1:45:45.231Unknown1480C:\malware.exeC:\ProgramData\Battle.net\Setup
3/9/2020 - 1:45:45.231Open1480C:\malware.exeC:\ProgramData\Battle.net\Setup\bna_2
3/9/2020 - 1:45:45.231Unknown1480C:\malware.exeC:\ProgramData\Battle.net\Setup\bna_2
3/9/2020 - 1:45:45.231Open1480C:\malware.exeC:\ProgramData\Battle.net\Setup\bna_2\Logs
3/9/2020 - 1:45:45.231Unknown1480C:\malware.exeC:\ProgramData\Battle.net\Setup\bna_2\Logs
3/9/2020 - 1:45:45.231Open1480C:\malware.exeC:\ProgramData\Battle.net\Setup\bna_2\Logs
3/9/2020 - 1:45:45.231Unknown1480C:\malware.exeC:\ProgramData\Battle.net\Setup\bna_2\Logs
3/9/2020 - 1:45:45.231Open1480C:\malware.exeC:\ProgramData\Battle.net\Setup\bna_2\Logs\battle.net-setup-20180503T214545.log
3/9/2020 - 1:45:45.231Open1480C:\malware.exeC:\ProgramData\Battle.net\Setup\bna_2\Logs
3/9/2020 - 1:45:45.231Open1480C:\malware.exeC:\ProgramData\Battle.net\Setup\bna_2\Logs\battle.net-setup-20180503T214545.log
3/9/2020 - 1:45:45.231Unknown1480C:\malware.exeC:\ProgramData\Battle.net\Setup\bna_2\Logs\battle.net-setup-20180503T214545.logbattle.net-setup-20180503T214545.log
3/9/2020 - 1:45:45.231Unknown1480C:\malware.exeC:\ProgramData\Battle.net\Setup\bna_2\Logs
3/9/2020 - 1:45:45.231Write1480C:\malware.exeC:\ProgramData\Battle.net\Setup\bna_2\Logs\battle.net-setup-20180503T214545.logbattle.net-setup-20180503T214545.log
3/9/2020 - 1:45:45.231Write1480C:\malware.exeC:\ProgramData\Battle.net\Setup\bna_2\Logs\battle.net-setup-20180503T214545.logbattle.net-setup-20180503T214545.log
3/9/2020 - 1:45:45.231Write1480C:\malware.exeC:\ProgramData\Battle.net\Setup\bna_2\Logs\battle.net-setup-20180503T214545.logbattle.net-setup-20180503T214545.log
3/9/2020 - 1:45:45.231Write1480C:\malware.exeC:\ProgramData\Battle.net\Setup\bna_2\Logs\battle.net-setup-20180503T214545.logbattle.net-setup-20180503T214545.log
3/9/2020 - 1:45:45.231Write1480C:\malware.exeC:\ProgramData\Battle.net\Setup\bna_2\Logs\battle.net-setup-20180503T214545.logbattle.net-setup-20180503T214545.log
3/9/2020 - 1:45:45.231Write1480C:\malware.exeC:\ProgramData\Battle.net\Setup\bna_2\Logs\battle.net-setup-20180503T214545.logbattle.net-setup-20180503T214545.log
3/9/2020 - 1:45:45.231Write1480C:\malware.exeC:\ProgramData\Battle.net\Setup\bna_2\Logs\battle.net-setup-20180503T214545.logbattle.net-setup-20180503T214545.log
3/9/2020 - 1:45:45.231Open1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:45.231Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:45.231Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:45.231Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:45.231Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:45.231Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:45.231Read1480C:\malware.exeC:\malware.exe
3/9/2020 - 1:45:45.231Write1480C:\malware.exeC:\ProgramData\Battle.net\Setup\bna_2\Logs\battle.net-setup-20180503T214545.logbattle.net-setup-20180503T214545.log
3/9/2020 - 1:45:45.231Write1480C:\malware.exeC:\ProgramData\Battle.net\Setup\bna_2\Logs\battle.net-setup-20180503T214545.logbattle.net-setup-20180503T214545.log
3/9/2020 - 1:45:45.231Write1480C:\malware.exeC:\ProgramData\Battle.net\Setup\bna_2\Logs\battle.net-setup-20180503T214545.logbattle.net-setup-20180503T214545.log
3/9/2020 - 1:45:45.247Write1480C:\malware.exeC:\ProgramData\Battle.net\Setup\bna_2\Logs\battle.net-setup-20180503T214545.logbattle.net-setup-20180503T214545.log
3/9/2020 - 1:45:45.247Write1480C:\malware.exeC:\ProgramData\Battle.net\Setup\bna_2\Logs\battle.net-setup-20180503T214545.logbattle.net-setup-20180503T214545.log
3/9/2020 - 1:45:45.247Write1480C:\malware.exeC:\ProgramData\Battle.net\Setup\bna_2\Logs\battle.net-setup-20180503T214545.logbattle.net-setup-20180503T214545.log
3/9/2020 - 1:45:45.247Write1480C:\malware.exeC:\ProgramData\Battle.net\Setup\bna_2\Logs\battle.net-setup-20180503T214545.logbattle.net-setup-20180503T214545.log
3/9/2020 - 1:45:45.278Write1480C:\malware.exeC:\ProgramData\Battle.net\Setup\bna_2\Logs\battle.net-setup-20180503T214545.logbattle.net-setup-20180503T214545.log
3/9/2020 - 1:45:45.278Write1480C:\malware.exeC:\ProgramData\Battle.net\Setup\bna_2\Logs\battle.net-setup-20180503T214545.logbattle.net-setup-20180503T214545.log
3/9/2020 - 1:45:45.278Write1480C:\malware.exeC:\ProgramData\Battle.net\Setup\bna_2\Logs\battle.net-setup-20180503T214545.logbattle.net-setup-20180503T214545.log
3/9/2020 - 1:45:45.293Open1480C:\malware.exeC:\Windows\SysWOW64\ole32.dll
3/9/2020 - 1:45:45.293Open1480C:\malware.exeC:\Windows\SysWOW64\ole32.dll
3/9/2020 - 1:45:45.293Open1480C:\malware.exeC:\Windows\Fonts\StaticCache.dat
3/9/2020 - 1:45:45.293Read1480C:\malware.exeC:\Windows\Fonts\StaticCache.datStaticCache.dat
3/9/2020 - 1:45:45.309Open1480C:\malware.exeC:\Windows\Fonts\meiryo.ttc
3/9/2020 - 1:45:45.356Open1480C:\malware.exeC:\Windows\Fonts\meiryo.ttc
3/9/2020 - 1:45:46.403Read1480C:\malware.exeC:\Windows\Fonts\StaticCache.datStaticCache.dat
3/9/2020 - 1:45:46.497Read1480C:\malware.exeC:\Windows\Fonts\StaticCache.datStaticCache.dat
3/9/2020 - 1:45:46.590Read1480C:\malware.exeC:\Windows\Fonts\StaticCache.datStaticCache.dat
3/9/2020 - 1:45:46.684Read1480C:\malware.exeC:\Windows\Fonts\StaticCache.datStaticCache.dat
3/9/2020 - 1:45:46.778Read1480C:\malware.exeC:\Windows\Fonts\StaticCache.datStaticCache.dat
3/9/2020 - 1:45:47.59Read1480C:\malware.exeC:\Windows\Fonts\StaticCache.datStaticCache.dat
3/9/2020 - 1:45:47.153Read1480C:\malware.exeC:\Windows\Fonts\StaticCache.datStaticCache.dat
3/9/2020 - 1:45:47.278Read1480C:\malware.exeC:\Windows\Fonts\StaticCache.datStaticCache.dat
3/9/2020 - 1:45:47.372Read1480C:\malware.exeC:\Windows\Fonts\StaticCache.datStaticCache.dat
3/9/2020 - 1:45:47.762Open1480C:\malware.exeC:\Windows\Fonts\malgun.ttf
3/9/2020 - 1:45:48.75Open1480C:\malware.exeC:\Windows\Fonts\malgun.ttf
3/9/2020 - 1:45:48.450Read1480C:\malware.exeC:\Windows\Fonts\StaticCache.datStaticCache.dat
3/9/2020 - 1:45:48.543Read1480C:\malware.exeC:\Windows\Fonts\StaticCache.datStaticCache.dat
3/9/2020 - 1:45:48.668Read1480C:\malware.exeC:\Windows\Fonts\StaticCache.datStaticCache.dat
3/9/2020 - 1:45:49.450Open1480C:\malware.exeC:\Windows\Fonts\msyh.ttf
3/9/2020 - 1:45:49.731Open1480C:\malware.exeC:\Windows\Fonts\msyh.ttf
3/9/2020 - 1:45:50.293Read1480C:\malware.exeC:\Windows\Fonts\StaticCache.datStaticCache.dat
3/9/2020 - 1:45:50.387Read1480C:\malware.exeC:\Windows\Fonts\StaticCache.datStaticCache.dat
3/9/2020 - 1:45:50.575Read1480C:\malware.exeC:\Windows\Fonts\StaticCache.datStaticCache.dat
3/9/2020 - 1:45:50.668Read1480C:\malware.exeC:\Windows\Fonts\StaticCache.datStaticCache.dat
3/9/2020 - 1:45:50.762Read1480C:\malware.exeC:\Windows\Fonts\StaticCache.datStaticCache.dat
3/9/2020 - 1:45:51.512Open1480C:\malware.exeC:\Windows\Fonts\msjh.ttf
3/9/2020 - 1:45:51.700Open1480C:\malware.exeC:\Windows\Fonts\msjh.ttf
3/9/2020 - 1:45:52.450Read1480C:\malware.exeC:\Windows\Fonts\StaticCache.datStaticCache.dat
3/9/2020 - 1:45:52.543Read1480C:\malware.exeC:\Windows\Fonts\StaticCache.datStaticCache.dat
3/9/2020 - 1:45:52.637Read1480C:\malware.exeC:\Windows\Fonts\StaticCache.datStaticCache.dat
3/9/2020 - 1:45:52.825Read1480C:\malware.exeC:\Windows\Fonts\StaticCache.datStaticCache.dat
3/9/2020 - 1:45:52.918Read1480C:\malware.exeC:\Windows\Fonts\StaticCache.datStaticCache.dat

Process
Trace

Analysis
Reason
Timeout

Status
Sucessfully Executed

Results
1

Registry
Trace
3/9/2020 - 1:45:45.231Write1480C:\malware.exeHKCU\Software\Blizzard Entertainment\Blizzard ErrorUserUUID

File Summary
Created
Identified: True check_circle

Deleted
Identified: False cancel

Process Summary
Created
Identified: False cancel

Deleted
Identified: False cancel

Registry Summary
Proxy
Identified: False cancel

AutoRun
Identified: False cancel

Created
Identified: True check_circle

Deleted
Identified: False cancel

Browsers
Identified: False cancel

Internet
Identified: False cancel

Loading...

DNS
Query
computer localhost arrow_forward computer gateway:DNS code iir.blizzard.com.
computer localhost arrow_forward computer gateway:DNS code nydus.battle.net.
computer localhost arrow_forward computer gateway:50273 code nydus.battle.net.
computer localhost arrow_forward computer gateway:59829 code www.google-analytics.com.
computer localhost arrow_forward computer gateway:DNS code www.google-analytics.com.

Response
computer gateway:DNS arrow_forward computer localhost code nydus.battle.net. reply_all 37.244.28.104

computer gateway:DNS arrow_forward computer localhost code www.google-analytics.com. reply_all 216.58.202.174

computer gateway:DNS arrow_forward computer localhost code iir.blizzard.com. reply_all 24.105.29.24


TCP
Info
216.58.202.174:80 arrow_forward computer localhost:65193
24.105.29.24:3724 arrow_forward computer localhost:65192
computer localhost:65191 arrow_forward 37.244.28.104:80
computer localhost:65195 arrow_forward 216.58.202.174:80
216.58.202.174:80 arrow_forward computer localhost:65195
37.244.28.104:80 arrow_forward computer localhost:65191
computer localhost:65192 arrow_forward 24.105.29.24:3724
computer localhost:65194 arrow_forward 24.105.29.24:3724
computer localhost:65193 arrow_forward 216.58.202.174:80
24.105.29.24:3724 arrow_forward computer localhost:65194

UDP
Info
computer localhost:55394 arrow_forward computer localhost:53
computer localhost:53 arrow_forward computer localhost:59829
computer localhost:50273 arrow_forward computer localhost:53
computer localhost:53 arrow_forward computer localhost:50273
computer localhost:53 arrow_forward computer localhost:55394
computer localhost:59829 arrow_forward computer localhost:53

HTTP
Info
computer localhost send POST www.google-analytics.com attach_file /collect
computer localhost send GET nydus.battle.net attach_file /geoip

Summary
DNS
True check_circle

TCP
True check_circle

UDP
True check_circle

HTTP
True check_circle

Results
BINARY
NFS 2.0 (Threshold = 0.8)
confidence: 85.00%
suspicious: False cancel

Decision Tree (NFS-BRMalware)
confidence: 100.00%
suspicious: True check_circle

MalConv (Ember: Raw Bytes, Threshold=0.5)
confidence: 92.34%
suspicious: True check_circle

Random Forest (100 estimators, NFS-BRMalware)
confidence: 84.00%
suspicious: False cancel

Non-Negative MalConv (Ember: Raw Bytes, Threshold=0.35)
confidence: 83.58%
suspicious: False cancel

LightGDM (Ember: File Characteristics, Threshold=0.8336)
confidence: 100.00%
suspicious: False cancel

Add to Collection
Download