Report #9639 cancel

  • Creation Date: March 13, 2020, 12:45 p.m.
  • Last Update: March 13, 2020, 6:02 p.m.
  • File: Crypter.exe
  • Results:
AVclass
llac
1
VirusTotal
md5
34569ba49651e92bb825ddbab55c80ad
sha1
6a8d3a35e177b197207935b7de1fa8556824eb3e
SCANS (DETECTION RATE = 66.67%)
AVG
result: AutoIt:Agent-ALE [Trj]
update: 20180323
version: 18.2.3827.0
detected: True check_circle

CMC
result: Trojan.Win32.Generic!O
update: 20180323
version: 1.1.0.977
detected: True check_circle

MAX
result: malware (ai score=100)
update: 20180323
version: 2017.11.15.1
detected: True check_circle

Bkav
update: 20180322
version: 1.3.0.9466
detected: False cancel

K7GW
result: Trojan ( 700000111 )
update: 20180323
version: 10.42.26597
detected: True check_circle

ALYac
update: 20180323
version: 1.1.1.5
detected: False cancel

Avast
result: AutoIt:Agent-ALE [Trj]
update: 20180323
version: 18.2.3827.0
detected: True check_circle

Avira
result: TR/Spy.922005
update: 20180323
version: 8.3.3.6
detected: True check_circle

Baidu
result: Win32.Trojan.WisdomEyes.16070401.9500.9949
update: 20180323
version: 1.0.0.2
detected: True check_circle

Cyren
result: W32/GenBl.34569BA4!Olympus
update: 20180323
version: 5.4.30.7
detected: True check_circle

DrWeb
update: 20180323
version: 7.0.28.2020
detected: False cancel

GData
result: Gen:Trojan.Heur.AutoIT.2
update: 20180323
version: A:25.16481B:25.11861
detected: True check_circle

Panda
result: Generic Suspicious
update: 20180323
version: 4.6.4.2
detected: True check_circle

VBA32
result: Trojan.Llac
update: 20180323
version: 3.12.28.0
detected: True check_circle

VIPRE
result: Trojan.Win32.Generic!BT
update: 20180323
version: 65478
detected: True check_circle

Zoner
update: 20180323
version: 1.0
detected: False cancel

AVware
result: Trojan.Win32.Generic!BT
update: 20180323
version: 1.5.0.42
detected: True check_circle

ClamAV
update: 20180323
version: 0.99.2.0
detected: False cancel

Comodo
result: UnclassifiedMalware
update: 20180323
version: 28733
detected: True check_circle

F-Prot
update: 20180323
version: 4.7.1.166
detected: False cancel

Ikarus
result: Trojan.Win32.Obfuscated
update: 20180323
version: 0.1.5.2
detected: True check_circle

McAfee
result: Artemis!34569BA49651
update: 20180323
version: 6.0.6.653
detected: True check_circle

Rising
update: 20180323
version: 25.0.0.1
detected: False cancel

Sophos
result: Mal/Autoit-J
update: 20180323
version: 4.98.0
detected: True check_circle

Yandex
update: 20180323
version: 5.5.1.3
detected: False cancel

Arcabit
result: Trojan.Heur.AutoIT.2
update: 20180323
version: 1.0.0.831
detected: True check_circle

Cylance
result: Unsafe
update: 20180323
version: 2.3.1.101
detected: True check_circle

Endgame
result: malicious (high confidence)
update: 20180316
version: 2.0.5
detected: True check_circle

Tencent
result: Win32.Trojan.Llac.Ligs
update: 20180323
version: 1.0.0.1
detected: True check_circle

ViRobot
update: 20180323
version: 2014.3.20.0
detected: False cancel

eGambit
update: 20180323
version: v4.3.5
detected: False cancel

Ad-Aware
result: Gen:Trojan.Heur.AutoIT.2
update: 20180323
version: 3.0.3.1010
detected: True check_circle

AegisLab
result: Troj.W32.Llac!c
update: 20180323
version: 4.2
detected: True check_circle

Emsisoft
result: Gen:Trojan.Heur.AutoIT.2 (B)
update: 20180323
version: 4.0.2.899
detected: True check_circle

F-Secure
result: Gen:Trojan.Heur.AutoIT.2
update: 20180323
version: 11.0.19100.45
detected: True check_circle

Fortinet
result: W32/Fynloski.AM!tr
update: 20180323
version: 5.4.247.0
detected: True check_circle

Invincea
result: heuristic
update: 20180121
version: 6.3.4.26036
detected: True check_circle

Jiangmin
update: 20180323
version: 16.0.100
detected: False cancel

Kingsoft
update: 20180323
version: 2013.8.14.323
detected: False cancel

Paloalto
result: generic.ml
update: 20180323
version: 1.0
detected: True check_circle

Symantec
result: Trojan.Gen.2
update: 20180323
version: 1.5.0.0
detected: True check_circle

nProtect
update: 20180323
version: 2018-03-23.02
detected: False cancel

AhnLab-V3
result: Trojan/Win32.HDC.C557384
update: 20180323
version: 3.12.0.20130
detected: True check_circle

Antiy-AVL
update: 20180323
version: 3.0.0.1
detected: False cancel

Kaspersky
result: Trojan.Win32.Llac.icoc
update: 20180323
version: 15.0.1.13
detected: True check_circle

Microsoft
result: VirTool:Win32/Obfuscator
update: 20180323
version: 1.1.14600.4
detected: True check_circle

Qihoo-360
result: Win32/Trojan.Spy.d64
update: 20180323
version: 1.0.0.1120
detected: True check_circle

TheHacker
update: 20180319
version: 6.8.0.5.2551
detected: False cancel

ZoneAlarm
result: Trojan.Win32.Llac.icoc
update: 20180323
version: 1.0
detected: True check_circle

Cybereason
update: 20180225
version: 1.2.27
detected: False cancel

ESET-NOD32
result: a variant of Win32/Spatet.AP
update: 20180323
version: 17107
detected: True check_circle

TrendMicro
result: TROJ_UTOTI.GTT
update: 20180323
version: 9.862.0.1074
detected: True check_circle

WhiteArmor
update: 20180223
detected: False cancel

BitDefender
result: Gen:Trojan.Heur.AutoIT.2
update: 20180323
version: 7.2
detected: True check_circle

CrowdStrike
result: malicious_confidence_100% (W)
update: 20170201
version: 1.0
detected: True check_circle

K7AntiVirus
result: Trojan ( 700000111 )
update: 20180323
version: 10.42.26598
detected: True check_circle

SentinelOne
result: static engine - malicious
update: 20180225
version: 1.0.15.206
detected: True check_circle

Avast-Mobile
update: 20180323
version: 180323-04
detected: False cancel

Malwarebytes
update: 20180323
version: 2.1.1.1115
detected: False cancel

TotalDefense
update: 20180323
version: 37.1.62.1
detected: False cancel

CAT-QuickHeal
update: 20180323
version: 14.00
detected: False cancel

NANO-Antivirus
result: Trojan.Script.Agent.debxaj
update: 20180323
version: 1.0.100.22043
detected: True check_circle

MicroWorld-eScan
result: Gen:Trojan.Heur.AutoIT.2
update: 20180323
version: 14.0.297.0
detected: True check_circle

SUPERAntiSpyware
update: 20180323
version: 5.6.0.1032
detected: False cancel

McAfee-GW-Edition
result: BehavesLike.Win32.Agent.dc
update: 20180323
version: v2015
detected: True check_circle

TrendMicro-HouseCall
result: TROJ_UTOTI.GTT
update: 20180323
version: 9.950.0.1006
detected: True check_circle

total
66
sha256
11dea02cf121a9976574d0aed291f2121507d075c0b073f61e67b26bc421130a
scan_id
11dea02cf121a9976574d0aed291f2121507d075c0b073f61e67b26bc421130a-1521844108
resource
34569ba49651e92bb825ddbab55c80ad
positives
44
scan_date
2018-03-23 22:28:28
verbose_msg
Scan finished, information embedded
response_code
1
File
Trace
13/3/2020 - 17:46:29.106Open1480C:\malware.exeC:\malware.exe
13/3/2020 - 17:46:29.106Open1480C:\malware.exeC:\Windows\SysWOW64\apphelp.dll
13/3/2020 - 17:46:29.106Open1480C:\malware.exeC:\Windows\SysWOW64\apphelp.dll
13/3/2020 - 17:46:29.106Unknown1480C:\malware.exeC:\malware.exe
13/3/2020 - 17:47:26.215Open2196C:\malware.exeC:\Windows\Prefetch\MALWARE.EXE-20920919.pf
13/3/2020 - 17:47:26.215Read2196C:\malware.exeC:\Windows\Prefetch\MALWARE.EXE-20920919.pfMALWARE.EXE-20920919.pf
13/3/2020 - 17:47:26.215Open2196C:\malware.exe\Device\HarddiskVolume2
13/3/2020 - 17:47:26.215Open2196C:\malware.exeC:\Monitor
13/3/2020 - 17:47:26.215Unknown2196C:\malware.exeC:\Monitor
13/3/2020 - 17:47:26.215Unknown2196C:\malware.exeC:\Monitor
13/3/2020 - 17:47:26.215Open2196C:\malware.exeC:\Monitor\Malware
13/3/2020 - 17:47:26.215Unknown2196C:\malware.exeC:\Monitor\Malware
13/3/2020 - 17:47:26.215Unknown2196C:\malware.exeC:\Monitor\Malware
13/3/2020 - 17:47:26.215Open2196C:\malware.exeC:\Windows
13/3/2020 - 17:47:26.215Unknown2196C:\malware.exeC:\Windows
13/3/2020 - 17:47:26.215Unknown2196C:\malware.exeC:\Windows
13/3/2020 - 17:47:26.215Open2196C:\malware.exeC:\Windows\Globalization
13/3/2020 - 17:47:26.215Unknown2196C:\malware.exeC:\Windows\Globalization
13/3/2020 - 17:47:26.215Unknown2196C:\malware.exeC:\Windows\Globalization
13/3/2020 - 17:47:26.215Open2196C:\malware.exeC:\Windows\Globalization\Sorting
13/3/2020 - 17:47:26.215Unknown2196C:\malware.exeC:\Windows\Globalization\Sorting
13/3/2020 - 17:47:26.215Unknown2196C:\malware.exeC:\Windows\Globalization\Sorting
13/3/2020 - 17:47:26.215Open2196C:\malware.exeC:\Windows\System32
13/3/2020 - 17:47:26.215Unknown2196C:\malware.exeC:\Windows\System32
13/3/2020 - 17:47:26.215Unknown2196C:\malware.exeC:\Windows\System32
13/3/2020 - 17:47:26.215Open2196C:\malware.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:26.215Unknown2196C:\malware.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:26.215Unknown2196C:\malware.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:26.215Open2196C:\malware.exeC:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d
13/3/2020 - 17:47:26.215Unknown2196C:\malware.exeC:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d
13/3/2020 - 17:47:26.215Unknown2196C:\malware.exeC:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d
13/3/2020 - 17:47:26.215Open2196C:\malware.exeC:\Windows\System32\ntdll.dll
13/3/2020 - 17:47:26.215Unknown2196C:\malware.exeC:\Windows\System32\ntdll.dll
13/3/2020 - 17:47:26.215Open2196C:\malware.exeC:\Windows\System32\wow64.dll
13/3/2020 - 17:47:26.215Unknown2196C:\malware.exeC:\Windows\System32\wow64.dll
13/3/2020 - 17:47:26.215Open2196C:\malware.exeC:\Windows\System32\wow64win.dll
13/3/2020 - 17:47:26.215Unknown2196C:\malware.exeC:\Windows\System32\wow64win.dll
13/3/2020 - 17:47:26.215Open2196C:\malware.exeC:\Windows\System32\wow64cpu.dll
13/3/2020 - 17:47:26.215Unknown2196C:\malware.exeC:\Windows\System32\wow64cpu.dll
13/3/2020 - 17:47:26.215Open2196C:\malware.exeC:\Windows\System32\kernel32.dll
13/3/2020 - 17:47:26.215Unknown2196C:\malware.exeC:\Windows\System32\kernel32.dll
13/3/2020 - 17:47:26.215Open2196C:\malware.exeC:\Windows\SysWOW64\kernel32.dll
13/3/2020 - 17:47:26.215Unknown2196C:\malware.exeC:\Windows\SysWOW64\kernel32.dll
13/3/2020 - 17:47:26.215Open2196C:\malware.exeC:\Windows\System32\user32.dll
13/3/2020 - 17:47:26.215Unknown2196C:\malware.exeC:\Windows\System32\user32.dll
13/3/2020 - 17:47:26.215Open2196C:\malware.exeC:\Windows\SysWOW64\ntdll.dll
13/3/2020 - 17:47:26.215Unknown2196C:\malware.exeC:\Windows\SysWOW64\ntdll.dll
13/3/2020 - 17:47:26.215Open2196C:\malware.exeC:\Windows\System32\apisetschema.dll
13/3/2020 - 17:47:26.215Unknown2196C:\malware.exeC:\Windows\System32\apisetschema.dllapisetschema.dll
13/3/2020 - 17:47:26.215Open2196C:\malware.exeC:\Windows\SysWOW64\KernelBase.dll
13/3/2020 - 17:47:26.215Unknown2196C:\malware.exeC:\Windows\SysWOW64\KernelBase.dllKernelBase.dll
13/3/2020 - 17:47:26.215Open2196C:\malware.exeC:\Windows\System32\locale.nls
13/3/2020 - 17:47:26.215Unknown2196C:\malware.exeC:\Windows\System32\locale.nls
13/3/2020 - 17:47:26.215Open2196C:\malware.exeC:\malware.exe
13/3/2020 - 17:47:26.215Unknown2196C:\malware.exeC:\malware.exe
13/3/2020 - 17:47:26.215Open2196C:\malware.exeC:\Windows\System32\mctres.dll
13/3/2020 - 17:47:26.215Unknown2196C:\malware.exeC:\Windows\System32\mctres.dll
13/3/2020 - 17:47:26.215Open2196C:\malware.exeC:\Windows\SysWOW64\ws2_32.dll
13/3/2020 - 17:47:26.215Unknown2196C:\malware.exeC:\Windows\SysWOW64\ws2_32.dll
13/3/2020 - 17:47:26.215Open2196C:\malware.exeC:\Windows\SysWOW64\msvcrt.dll
13/3/2020 - 17:47:26.215Unknown2196C:\malware.exeC:\Windows\SysWOW64\msvcrt.dll
13/3/2020 - 17:47:26.215Open2196C:\malware.exeC:\Windows\SysWOW64\rpcrt4.dll
13/3/2020 - 17:47:26.215Unknown2196C:\malware.exeC:\Windows\SysWOW64\rpcrt4.dll
13/3/2020 - 17:47:26.215Open2196C:\malware.exeC:\Windows\SysWOW64\sspicli.dll
13/3/2020 - 17:47:26.215Unknown2196C:\malware.exeC:\Windows\SysWOW64\sspicli.dll
13/3/2020 - 17:47:26.215Open2196C:\malware.exeC:\Windows\SysWOW64\cryptbase.dll
13/3/2020 - 17:47:26.215Unknown2196C:\malware.exeC:\Windows\SysWOW64\cryptbase.dllcryptbase.dll
13/3/2020 - 17:47:26.215Open2196C:\malware.exeC:\Windows\SysWOW64\sechost.dll
13/3/2020 - 17:47:26.215Unknown2196C:\malware.exeC:\Windows\SysWOW64\sechost.dll
13/3/2020 - 17:47:26.215Open2196C:\malware.exeC:\Windows\SysWOW64\nsi.dll
13/3/2020 - 17:47:26.215Unknown2196C:\malware.exeC:\Windows\SysWOW64\nsi.dll
13/3/2020 - 17:47:26.215Open2196C:\malware.exeC:\Windows\SysWOW64\version.dll
13/3/2020 - 17:47:26.215Unknown2196C:\malware.exeC:\Windows\SysWOW64\version.dll
13/3/2020 - 17:47:26.215Open2196C:\malware.exeC:\Windows\SysWOW64\winmm.dll
13/3/2020 - 17:47:26.215Unknown2196C:\malware.exeC:\Windows\SysWOW64\winmm.dll
13/3/2020 - 17:47:26.215Open2196C:\malware.exeC:\Windows\SysWOW64\user32.dll
13/3/2020 - 17:47:26.215Unknown2196C:\malware.exeC:\Windows\SysWOW64\user32.dll
13/3/2020 - 17:47:26.215Open2196C:\malware.exeC:\Windows\SysWOW64\gdi32.dll
13/3/2020 - 17:47:26.215Unknown2196C:\malware.exeC:\Windows\SysWOW64\gdi32.dll
13/3/2020 - 17:47:26.215Open2196C:\malware.exeC:\Windows\SysWOW64\lpk.dll
13/3/2020 - 17:47:26.215Unknown2196C:\malware.exeC:\Windows\SysWOW64\lpk.dll
13/3/2020 - 17:47:26.215Open2196C:\malware.exeC:\Windows\SysWOW64\usp10.dll
13/3/2020 - 17:47:26.215Unknown2196C:\malware.exeC:\Windows\SysWOW64\usp10.dll
13/3/2020 - 17:47:26.215Open2196C:\malware.exeC:\Windows\SysWOW64\advapi32.dll
13/3/2020 - 17:47:26.215Unknown2196C:\malware.exeC:\Windows\SysWOW64\advapi32.dll
13/3/2020 - 17:47:26.215Open2196C:\malware.exeC:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d\comctl32.dll
13/3/2020 - 17:47:26.215Unknown2196C:\malware.exeC:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d\comctl32.dll
13/3/2020 - 17:47:26.215Open2196C:\malware.exeC:\Windows\SysWOW64\shlwapi.dll
13/3/2020 - 17:47:26.215Unknown2196C:\malware.exeC:\Windows\SysWOW64\shlwapi.dll
13/3/2020 - 17:47:26.215Open2196C:\malware.exeC:\Windows\SysWOW64\mpr.dll
13/3/2020 - 17:47:26.215Unknown2196C:\malware.exeC:\Windows\SysWOW64\mpr.dll
13/3/2020 - 17:47:26.215Open2196C:\malware.exeC:\Windows\SysWOW64\wininet.dll
13/3/2020 - 17:47:26.215Unknown2196C:\malware.exeC:\Windows\SysWOW64\wininet.dll
13/3/2020 - 17:47:26.215Open2196C:\malware.exeC:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
13/3/2020 - 17:47:26.215Unknown2196C:\malware.exeC:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dllapi-ms-win-downlevel-user32-l1-1-0.dll
13/3/2020 - 17:47:26.215Open2196C:\malware.exeC:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
13/3/2020 - 17:47:26.215Unknown2196C:\malware.exeC:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dllapi-ms-win-downlevel-shlwapi-l1-1-0.dll
13/3/2020 - 17:47:26.215Open2196C:\malware.exeC:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
13/3/2020 - 17:47:26.215Unknown2196C:\malware.exeC:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dllapi-ms-win-downlevel-version-l1-1-0.dll
13/3/2020 - 17:47:26.215Open2196C:\malware.exeC:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
13/3/2020 - 17:47:26.215Unknown2196C:\malware.exeC:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dllapi-ms-win-downlevel-normaliz-l1-1-0.dll
13/3/2020 - 17:47:26.215Open2196C:\malware.exeC:\Windows\SysWOW64\normaliz.dll
13/3/2020 - 17:47:26.215Unknown2196C:\malware.exeC:\Windows\SysWOW64\normaliz.dll
13/3/2020 - 17:47:26.215Open2196C:\malware.exeC:\Windows\SysWOW64\iertutil.dll
13/3/2020 - 17:47:26.215Unknown2196C:\malware.exeC:\Windows\SysWOW64\iertutil.dll
13/3/2020 - 17:47:26.215Open2196C:\malware.exeC:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
13/3/2020 - 17:47:26.215Unknown2196C:\malware.exeC:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dllapi-ms-win-downlevel-advapi32-l1-1-0.dll
13/3/2020 - 17:47:26.215Open2196C:\malware.exeC:\Windows\SysWOW64\userenv.dll
13/3/2020 - 17:47:26.215Unknown2196C:\malware.exeC:\Windows\SysWOW64\userenv.dll
13/3/2020 - 17:47:26.215Open2196C:\malware.exeC:\Windows\SysWOW64\profapi.dll
13/3/2020 - 17:47:26.215Unknown2196C:\malware.exeC:\Windows\SysWOW64\profapi.dll
13/3/2020 - 17:47:26.215Open2196C:\malware.exeC:\Windows\SysWOW64\psapi.dll
13/3/2020 - 17:47:26.215Unknown2196C:\malware.exeC:\Windows\SysWOW64\psapi.dll
13/3/2020 - 17:47:26.215Open2196C:\malware.exeC:\Windows\SysWOW64\comdlg32.dll
13/3/2020 - 17:47:26.215Unknown2196C:\malware.exeC:\Windows\SysWOW64\comdlg32.dll
13/3/2020 - 17:47:26.215Open2196C:\malware.exeC:\Windows\SysWOW64\shell32.dll
13/3/2020 - 17:47:26.215Unknown2196C:\malware.exeC:\Windows\SysWOW64\shell32.dll
13/3/2020 - 17:47:26.215Open2196C:\malware.exeC:\Windows\SysWOW64\ole32.dll
13/3/2020 - 17:47:26.215Unknown2196C:\malware.exeC:\Windows\SysWOW64\ole32.dll
13/3/2020 - 17:47:26.215Open2196C:\malware.exeC:\Windows\SysWOW64\oleaut32.dll
13/3/2020 - 17:47:26.215Unknown2196C:\malware.exeC:\Windows\SysWOW64\oleaut32.dll
13/3/2020 - 17:47:26.215Open2196C:\malware.exeC:\Windows\SysWOW64\wsock32.dll
13/3/2020 - 17:47:26.215Unknown2196C:\malware.exeC:\Windows\SysWOW64\wsock32.dll
13/3/2020 - 17:47:26.215Open2196C:\malware.exeC:\Windows\SysWOW64\imm32.dll
13/3/2020 - 17:47:26.215Unknown2196C:\malware.exeC:\Windows\SysWOW64\imm32.dll
13/3/2020 - 17:47:26.215Open2196C:\malware.exeC:\Windows\SysWOW64\msctf.dll
13/3/2020 - 17:47:26.215Unknown2196C:\malware.exeC:\Windows\SysWOW64\msctf.dll
13/3/2020 - 17:47:26.215Open2196C:\malware.exeC:\Windows\WindowsShell.Manifest
13/3/2020 - 17:47:26.215Unknown2196C:\malware.exeC:\Windows\WindowsShell.ManifestWindowsShell.Manifest
13/3/2020 - 17:47:26.215Open2196C:\malware.exeC:\Windows\SysWOW64\uxtheme.dll
13/3/2020 - 17:47:26.215Unknown2196C:\malware.exeC:\Windows\SysWOW64\uxtheme.dll
13/3/2020 - 17:47:26.231Open2196C:\malware.exeC:\Windows\Globalization\Sorting\SortDefault.nls
13/3/2020 - 17:47:26.231Unknown2196C:\malware.exeC:\Windows\Globalization\Sorting\SortDefault.nlsSortDefault.nls
13/3/2020 - 17:47:26.231Open2196C:\malware.exeC:\Windows\SysWOW64\setupapi.dll
13/3/2020 - 17:47:26.231Unknown2196C:\malware.exeC:\Windows\SysWOW64\setupapi.dll
13/3/2020 - 17:47:26.231Open2196C:\malware.exeC:\Windows\SysWOW64\cfgmgr32.dll
13/3/2020 - 17:47:26.231Unknown2196C:\malware.exeC:\Windows\SysWOW64\cfgmgr32.dll
13/3/2020 - 17:47:26.231Open2196C:\malware.exeC:\Windows\SysWOW64\devobj.dll
13/3/2020 - 17:47:26.231Unknown2196C:\malware.exeC:\Windows\SysWOW64\devobj.dll
13/3/2020 - 17:47:26.231Open2196C:\malware.exeC:\Windows\SysWOW64\dwmapi.dll
13/3/2020 - 17:47:26.231Unknown2196C:\malware.exeC:\Windows\SysWOW64\dwmapi.dll
13/3/2020 - 17:47:26.231Read2196C:\malware.exeC:\Windows\System32\mctres.dll
13/3/2020 - 17:47:26.231Read2196C:\malware.exeC:\Windows\SysWOW64\mpr.dll
13/3/2020 - 17:47:26.231Read2196C:\malware.exeC:\Windows\SysWOW64\wsock32.dll
13/3/2020 - 17:47:26.231Unknown2196C:\malware.exeC:\Windows\System32\locale.nls
13/3/2020 - 17:47:26.231Unknown2196C:\malware.exeC:\Windows\WindowsShell.ManifestWindowsShell.Manifest
13/3/2020 - 17:47:26.231Unknown2196C:\malware.exeC:\Windows\Globalization\Sorting\SortDefault.nlsSortDefault.nls
13/3/2020 - 17:47:26.231Read2196C:\malware.exeC:\Windows\System32\mctres.dll
13/3/2020 - 17:47:26.231Unknown2196C:\malware.exeC:\Windows\System32\ntdll.dll
13/3/2020 - 17:47:26.231Unknown2196C:\malware.exeC:\Windows\System32\wow64.dll
13/3/2020 - 17:47:26.231Unknown2196C:\malware.exeC:\Windows\System32\wow64win.dll
13/3/2020 - 17:47:26.231Unknown2196C:\malware.exeC:\Windows\System32\wow64cpu.dll
13/3/2020 - 17:47:26.231Unknown2196C:\malware.exeC:\Windows\System32\kernel32.dll
13/3/2020 - 17:47:26.231Unknown2196C:\malware.exeC:\Windows\SysWOW64\kernel32.dll
13/3/2020 - 17:47:26.231Unknown2196C:\malware.exeC:\Windows\System32\user32.dll
13/3/2020 - 17:47:26.231Unknown2196C:\malware.exeC:\Windows\SysWOW64\ntdll.dll
13/3/2020 - 17:47:26.231Unknown2196C:\malware.exeC:\Windows\System32\apisetschema.dllapisetschema.dll
13/3/2020 - 17:47:26.231Unknown2196C:\malware.exeC:\Windows\SysWOW64\KernelBase.dllKernelBase.dll
13/3/2020 - 17:47:26.231Unknown2196C:\malware.exeC:\malware.exe
13/3/2020 - 17:47:26.231Unknown2196C:\malware.exeC:\Windows\SysWOW64\ws2_32.dll
13/3/2020 - 17:47:26.231Unknown2196C:\malware.exeC:\Windows\SysWOW64\msvcrt.dll
13/3/2020 - 17:47:26.231Unknown2196C:\malware.exeC:\Windows\SysWOW64\rpcrt4.dll
13/3/2020 - 17:47:26.231Unknown2196C:\malware.exeC:\Windows\SysWOW64\sspicli.dll
13/3/2020 - 17:47:26.231Unknown2196C:\malware.exeC:\Windows\SysWOW64\cryptbase.dllcryptbase.dll
13/3/2020 - 17:47:26.231Unknown2196C:\malware.exeC:\Windows\SysWOW64\sechost.dll
13/3/2020 - 17:47:26.231Unknown2196C:\malware.exeC:\Windows\SysWOW64\nsi.dll
13/3/2020 - 17:47:26.231Unknown2196C:\malware.exeC:\Windows\SysWOW64\version.dll
13/3/2020 - 17:47:26.231Unknown2196C:\malware.exeC:\Windows\SysWOW64\winmm.dll
13/3/2020 - 17:47:26.231Unknown2196C:\malware.exeC:\Windows\SysWOW64\user32.dll
13/3/2020 - 17:47:26.231Unknown2196C:\malware.exeC:\Windows\SysWOW64\gdi32.dll
13/3/2020 - 17:47:26.231Unknown2196C:\malware.exeC:\Windows\SysWOW64\lpk.dll
13/3/2020 - 17:47:26.231Unknown2196C:\malware.exeC:\Windows\SysWOW64\usp10.dll
13/3/2020 - 17:47:26.231Unknown2196C:\malware.exeC:\Windows\SysWOW64\advapi32.dll
13/3/2020 - 17:47:26.231Unknown2196C:\malware.exeC:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d\comctl32.dll
13/3/2020 - 17:47:26.231Unknown2196C:\malware.exeC:\Windows\SysWOW64\shlwapi.dll
13/3/2020 - 17:47:26.231Unknown2196C:\malware.exeC:\Windows\SysWOW64\wininet.dll
13/3/2020 - 17:47:26.231Unknown2196C:\malware.exeC:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dllapi-ms-win-downlevel-user32-l1-1-0.dll
13/3/2020 - 17:47:26.231Unknown2196C:\malware.exeC:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dllapi-ms-win-downlevel-shlwapi-l1-1-0.dll
13/3/2020 - 17:47:26.231Unknown2196C:\malware.exeC:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dllapi-ms-win-downlevel-version-l1-1-0.dll
13/3/2020 - 17:47:26.231Unknown2196C:\malware.exeC:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dllapi-ms-win-downlevel-normaliz-l1-1-0.dll
13/3/2020 - 17:47:26.231Unknown2196C:\malware.exeC:\Windows\SysWOW64\normaliz.dll
13/3/2020 - 17:47:26.231Unknown2196C:\malware.exeC:\Windows\SysWOW64\iertutil.dll
13/3/2020 - 17:47:26.231Unknown2196C:\malware.exeC:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dllapi-ms-win-downlevel-advapi32-l1-1-0.dll
13/3/2020 - 17:47:26.231Unknown2196C:\malware.exeC:\Windows\SysWOW64\userenv.dll
13/3/2020 - 17:47:26.231Unknown2196C:\malware.exeC:\Windows\SysWOW64\profapi.dll
13/3/2020 - 17:47:26.231Unknown2196C:\malware.exeC:\Windows\SysWOW64\psapi.dll
13/3/2020 - 17:47:26.231Unknown2196C:\malware.exeC:\Windows\SysWOW64\comdlg32.dll
13/3/2020 - 17:47:26.231Unknown2196C:\malware.exeC:\Windows\SysWOW64\shell32.dll
13/3/2020 - 17:47:26.231Unknown2196C:\malware.exeC:\Windows\SysWOW64\ole32.dll
13/3/2020 - 17:47:26.231Unknown2196C:\malware.exeC:\Windows\SysWOW64\oleaut32.dll
13/3/2020 - 17:47:26.231Unknown2196C:\malware.exeC:\Windows\SysWOW64\imm32.dll
13/3/2020 - 17:47:26.231Unknown2196C:\malware.exeC:\Windows\SysWOW64\msctf.dll
13/3/2020 - 17:47:26.231Unknown2196C:\malware.exeC:\Windows\SysWOW64\uxtheme.dll
13/3/2020 - 17:47:26.231Unknown2196C:\malware.exeC:\Windows\SysWOW64\setupapi.dll
13/3/2020 - 17:47:26.231Unknown2196C:\malware.exeC:\Windows\SysWOW64\cfgmgr32.dll
13/3/2020 - 17:47:26.231Unknown2196C:\malware.exeC:\Windows\SysWOW64\devobj.dll
13/3/2020 - 17:47:26.231Unknown2196C:\malware.exeC:\Windows\SysWOW64\dwmapi.dll
13/3/2020 - 17:47:26.231Unknown2196C:\malware.exe\Device\HarddiskVolume2
13/3/2020 - 17:47:26.231Open2196C:\malware.exeC:\Windows
13/3/2020 - 17:47:26.231Open2196C:\malware.exeC:\Windows\System32\wow64.dll
13/3/2020 - 17:47:26.231Open2196C:\malware.exeC:\Windows\System32\wow64.dll
13/3/2020 - 17:47:26.231Open2196C:\malware.exeC:\Windows\System32\wow64win.dll
13/3/2020 - 17:47:26.231Open2196C:\malware.exeC:\Windows\System32\wow64win.dll
13/3/2020 - 17:47:26.231Open2196C:\malware.exeC:\Windows\System32\wow64cpu.dll
13/3/2020 - 17:47:26.231Open2196C:\malware.exeC:\Windows\System32\wow64cpu.dll
13/3/2020 - 17:47:26.231Open2196C:\malware.exeC:\Windows\System32\wow64log.dll
13/3/2020 - 17:47:26.231Open2196C:\malware.exeC:\Windows
13/3/2020 - 17:47:26.231Unknown2196C:\malware.exeC:\Windows
13/3/2020 - 17:47:26.231Open2196C:\malware.exeC:\Monitor
13/3/2020 - 17:47:26.231Open2196C:\malware.exeC:\Windows\SysWOW64\sechost.dll
13/3/2020 - 17:47:26.231Open2196C:\malware.exeC:\Windows\SysWOW64\sechost.dll
13/3/2020 - 17:47:26.231Open2196C:\malware.exeC:\pstorec.dll
13/3/2020 - 17:47:26.231Open2196C:\malware.exeC:\Windows\SysWOW64\pstorec.dll
13/3/2020 - 17:47:26.231Open2196C:\malware.exeC:\Windows\SysWOW64\pstorec.dll
13/3/2020 - 17:47:26.231Open2196C:\malware.exeC:\ATL.DLL
13/3/2020 - 17:47:26.231Open2196C:\malware.exeC:\Windows\SysWOW64\atl.dll
13/3/2020 - 17:47:26.231Open2196C:\malware.exeC:\Windows\SysWOW64\atl.dll
13/3/2020 - 17:47:26.231Open2196C:\malware.exeC:\rasapi32.dll
13/3/2020 - 17:47:26.231Open2196C:\malware.exeC:\Windows\SysWOW64\rasapi32.dll
13/3/2020 - 17:47:26.247Open2196C:\malware.exeC:\Windows\SysWOW64\rasapi32.dll
13/3/2020 - 17:47:26.247Open2196C:\malware.exeC:\rasman.dll
13/3/2020 - 17:47:26.247Open2196C:\malware.exeC:\Windows\SysWOW64\rasman.dll
13/3/2020 - 17:47:26.247Open2196C:\malware.exeC:\Windows\SysWOW64\rasman.dll
13/3/2020 - 17:47:26.684Unknown1480C:\malware.exeC:\malware.exe
13/3/2020 - 17:47:26.684Unknown1480C:\malware.exeC:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d
13/3/2020 - 17:47:26.684Open2196C:\malware.exeC:\Windows\SysWOW64\imm32.dll
13/3/2020 - 17:47:26.684Open2196C:\malware.exeC:\Windows\SysWOW64\imm32.dll
13/3/2020 - 17:47:26.684Open2196C:\malware.exeC:\Windows\SysWOW64\imm32.dll
13/3/2020 - 17:47:26.684Open2196C:\malware.exeC:\Windows\SysWOW64\imm32.dll
13/3/2020 - 17:47:26.684Open2196C:\malware.exeC:\Windows\SysWOW64\imm32.dll
13/3/2020 - 17:47:26.684Open2196C:\malware.exeC:\Windows\SysWOW64\imm32.dll
13/3/2020 - 17:47:26.731Unknown1480C:\malware.exeC:\Windows
13/3/2020 - 17:47:26.731Unknown1480C:\malware.exeC:\Monitor
13/3/2020 - 17:47:26.731Unknown1480C:\malware.exeC:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d
13/3/2020 - 17:47:27.715Open2196C:\malware.exeC:\Windows\SysWOW64\install
13/3/2020 - 17:47:27.715Open2196C:\malware.exeC:\
13/3/2020 - 17:47:27.715Unknown2196C:\malware.exeC:\
13/3/2020 - 17:47:27.715Open2196C:\malware.exeC:\Windows
13/3/2020 - 17:47:27.715Unknown2196C:\malware.exeC:\Windows
13/3/2020 - 17:47:27.715Open2196C:\malware.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:27.715Unknown2196C:\malware.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:27.715Open2196C:\malware.exeC:\Windows\SysWOW64\install
13/3/2020 - 17:47:27.715Open2196C:\malware.exeC:\Windows\SysWOW64\install
13/3/2020 - 17:47:27.715Unknown2196C:\malware.exeC:\Windows\SysWOW64\install
13/3/2020 - 17:47:27.715Open2196C:\malware.exeC:\Windows\SysWOW64\install
13/3/2020 - 17:47:27.715Unknown2196C:\malware.exeC:\Windows\SysWOW64\install
13/3/2020 - 17:47:27.715Open2196C:\malware.exeC:\Windows\SysWOW64\install
13/3/2020 - 17:47:27.715Unknown2196C:\malware.exeC:\Windows\SysWOW64\install
13/3/2020 - 17:47:27.715Open2196C:\malware.exeC:\malware.exe
13/3/2020 - 17:47:27.715Unknown2196C:\malware.exeC:\malware.exe
13/3/2020 - 17:47:27.715Open2196C:\malware.exeC:\malware.exe
13/3/2020 - 17:47:27.715Open2196C:\malware.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:27.715Open2196C:\malware.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:27.715Unknown2196C:\malware.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:27.715Read2196C:\malware.exeC:\malware.exe
13/3/2020 - 17:47:27.715Write2196C:\malware.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:27.715Write2196C:\malware.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:27.715Write2196C:\malware.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:27.715Write2196C:\malware.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:27.715Read2196C:\malware.exeC:\malware.exe
13/3/2020 - 17:47:27.715Read2196C:\malware.exeC:\malware.exe
13/3/2020 - 17:47:27.715Write2196C:\malware.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:27.715Write2196C:\malware.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:27.715Write2196C:\malware.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:27.715Write2196C:\malware.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:27.715Read2196C:\malware.exeC:\malware.exe
13/3/2020 - 17:47:27.715Read2196C:\malware.exeC:\malware.exe
13/3/2020 - 17:47:27.715Write2196C:\malware.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:27.715Write2196C:\malware.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:27.715Write2196C:\malware.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:27.715Write2196C:\malware.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:27.715Read2196C:\malware.exeC:\malware.exe
13/3/2020 - 17:47:27.715Read2196C:\malware.exeC:\malware.exe
13/3/2020 - 17:47:27.715Write2196C:\malware.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:27.715Write2196C:\malware.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:27.715Write2196C:\malware.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:27.715Unknown2196C:\malware.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:27.715Open2196C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XX--XX--XX.txt
13/3/2020 - 17:47:27.715Write2196C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XX--XX--XX.txtXX--XX--XX.txt
13/3/2020 - 17:47:27.715Unknown2196C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XX--XX--XX.txtXX--XX--XX.txt
13/3/2020 - 17:47:27.731Open2196C:\malware.exeC:\explorer.exe
13/3/2020 - 17:47:27.731Open2196C:\malware.exeC:\Monitor\explorer.exe
13/3/2020 - 17:47:27.731Open2196C:\malware.exeC:\Windows\SysWOW64\explorer.exe
13/3/2020 - 17:47:27.778Open2196C:\malware.exeC:\Windows\SysWOW64\explorer.exe
13/3/2020 - 17:47:27.778Open2196C:\malware.exeC:\Windows\SysWOW64\explorer.exe
13/3/2020 - 17:47:28.59Open2196C:\malware.exeC:\Windows\SysWOW64\apphelp.dll
13/3/2020 - 17:47:28.59Open2196C:\malware.exeC:\Windows\SysWOW64\apphelp.dll
13/3/2020 - 17:47:28.59Open2196C:\malware.exeC:\Windows\AppPatch\sysmain.sdb
13/3/2020 - 17:47:28.59Open2196C:\malware.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:28.59Unknown2196C:\malware.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:28.59Open2196C:\malware.exeC:\Windows\SysWOW64\explorer.exe
13/3/2020 - 17:47:28.59Open2196C:\malware.exeC:\
13/3/2020 - 17:47:28.59Unknown2196C:\malware.exeC:\
13/3/2020 - 17:47:28.59Open2196C:\malware.exeC:\Windows
13/3/2020 - 17:47:28.59Unknown2196C:\malware.exeC:\Windows
13/3/2020 - 17:47:28.59Open2196C:\malware.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:28.59Unknown2196C:\malware.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:28.59Open2196C:\malware.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:28.59Unknown2196C:\malware.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:28.59Open2196C:\malware.exeC:\Windows\SysWOW64\explorer.exe
13/3/2020 - 17:47:28.59Read2196C:\malware.exeC:\Windows\SysWOW64\explorer.exe
13/3/2020 - 17:47:28.59Read2196C:\malware.exeC:\Windows\SysWOW64\explorer.exe
13/3/2020 - 17:47:28.59Read2196C:\malware.exeC:\Windows\SysWOW64\explorer.exe
13/3/2020 - 17:47:28.59Read2196C:\malware.exeC:\Windows\SysWOW64\explorer.exe
13/3/2020 - 17:47:28.59Open2196C:\malware.exeC:\Windows\SysWOW64\ui\SwDRM.dll
13/3/2020 - 17:47:28.137Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\Prefetch\EXPLORER.EXE-254441E9.pf
13/3/2020 - 17:47:28.137Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows
13/3/2020 - 17:47:28.137Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\System32\wow64.dll
13/3/2020 - 17:47:28.137Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\System32\wow64.dll
13/3/2020 - 17:47:28.137Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\System32\wow64win.dll
13/3/2020 - 17:47:28.137Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\System32\wow64win.dll
13/3/2020 - 17:47:28.137Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\System32\wow64cpu.dll
13/3/2020 - 17:47:28.137Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\System32\wow64cpu.dll
13/3/2020 - 17:47:28.137Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\System32\wow64log.dll
13/3/2020 - 17:47:28.137Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows
13/3/2020 - 17:47:28.137Unknown2624C:\Windows\SysWOW64\explorer.exeC:\Windows
13/3/2020 - 17:47:28.137Open2624C:\Windows\SysWOW64\explorer.exeC:\Monitor
13/3/2020 - 17:47:28.137Read2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\explorer.exe
13/3/2020 - 17:47:28.137Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\sechost.dll
13/3/2020 - 17:47:28.137Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\sechost.dll
13/3/2020 - 17:47:28.137Read2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\explorer.exe
13/3/2020 - 17:47:28.137Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\ExplorerFrame.dll
13/3/2020 - 17:47:28.137Unknown2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\ExplorerFrame.dllExplorerFrame.dll
13/3/2020 - 17:47:28.137Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\ExplorerFrame.dll
13/3/2020 - 17:47:28.137Unknown2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\ExplorerFrame.dllExplorerFrame.dll
13/3/2020 - 17:47:28.137Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\duser.dll
13/3/2020 - 17:47:28.137Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\duser.dll
13/3/2020 - 17:47:28.137Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\dui70.dll
13/3/2020 - 17:47:28.137Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\dui70.dll
13/3/2020 - 17:47:28.137Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\dui70.dll
13/3/2020 - 17:47:28.137Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\uxtheme.dll
13/3/2020 - 17:47:28.137Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\uxtheme.dll
13/3/2020 - 17:47:28.153Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\powrprof.dll
13/3/2020 - 17:47:28.153Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\powrprof.dll
13/3/2020 - 17:47:28.153Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\dwmapi.dll
13/3/2020 - 17:47:28.153Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\dwmapi.dll
13/3/2020 - 17:47:28.153Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\slc.dll
13/3/2020 - 17:47:28.153Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\slc.dll
13/3/2020 - 17:47:28.153Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\explorer.exe.Local
13/3/2020 - 17:47:28.153Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.23407_none_5c02a2f5a011f9be
13/3/2020 - 17:47:28.153Unknown2624C:\Windows\SysWOW64\explorer.exeC:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.23407_none_5c02a2f5a011f9be
13/3/2020 - 17:47:28.153Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.23407_none_5c02a2f5a011f9be
13/3/2020 - 17:47:28.153Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.23407_none_5c02a2f5a011f9be\GdiPlus.dll
13/3/2020 - 17:47:28.153Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.23407_none_5c02a2f5a011f9be\GdiPlus.dll
13/3/2020 - 17:47:28.153Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\secur32.dll
13/3/2020 - 17:47:28.153Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\secur32.dll
13/3/2020 - 17:47:28.153Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\propsys.dll
13/3/2020 - 17:47:28.153Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\propsys.dll
13/3/2020 - 17:47:28.153Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\imm32.dll
13/3/2020 - 17:47:28.153Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\imm32.dll
13/3/2020 - 17:47:28.153Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\imm32.dll
13/3/2020 - 17:47:28.153Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\imm32.dll
13/3/2020 - 17:47:28.778Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\avicap32.dll
13/3/2020 - 17:47:28.778Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\avicap32.dll
13/3/2020 - 17:47:29.12Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\winmm.dll
13/3/2020 - 17:47:29.12Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\winmm.dll
13/3/2020 - 17:47:29.12Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\version.dll
13/3/2020 - 17:47:29.12Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\version.dll
13/3/2020 - 17:47:29.12Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\msvfw32.dll
13/3/2020 - 17:47:29.59Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\msvfw32.dll
13/3/2020 - 17:47:29.293Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\explorer.exe.Local
13/3/2020 - 17:47:29.293Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d
13/3/2020 - 17:47:29.293Unknown2624C:\Windows\SysWOW64\explorer.exeC:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d
13/3/2020 - 17:47:29.293Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d
13/3/2020 - 17:47:29.293Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d\comctl32.dll
13/3/2020 - 17:47:29.293Unknown2624C:\Windows\SysWOW64\explorer.exeC:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d\comctl32.dll
13/3/2020 - 17:47:29.293Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d\comctl32.dll
13/3/2020 - 17:47:29.293Unknown2624C:\Windows\SysWOW64\explorer.exeC:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d\comctl32.dll
13/3/2020 - 17:47:29.387Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\WindowsShell.Manifest
13/3/2020 - 17:47:29.387Unknown2624C:\Windows\SysWOW64\explorer.exeC:\Windows\WindowsShell.ManifestWindowsShell.Manifest
13/3/2020 - 17:47:29.668Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\mpr.dll
13/3/2020 - 17:47:29.668Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\mpr.dll
13/3/2020 - 17:47:29.762Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\msacm32.dll
13/3/2020 - 17:47:29.762Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\msacm32.dll
13/3/2020 - 17:47:30.606Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\wsock32.dll
13/3/2020 - 17:47:30.606Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\wsock32.dll
13/3/2020 - 17:47:30.700Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\Globalization\Sorting\SortDefault.nls
13/3/2020 - 17:47:30.700Unknown2624C:\Windows\SysWOW64\explorer.exeC:\Windows\Globalization\Sorting\SortDefault.nlsSortDefault.nls
13/3/2020 - 17:47:30.700Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\IPHLPAPI.DLL
13/3/2020 - 17:47:30.700Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\IPHLPAPI.DLL
13/3/2020 - 17:47:30.700Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\winnsi.dll
13/3/2020 - 17:47:30.700Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\winnsi.dll
13/3/2020 - 17:47:30.747Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\shell32.dll
13/3/2020 - 17:47:30.747Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\explorer.exe.Local
13/3/2020 - 17:47:30.747Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d
13/3/2020 - 17:47:30.747Unknown2624C:\Windows\SysWOW64\explorer.exeC:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d
13/3/2020 - 17:47:30.747Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d
13/3/2020 - 17:47:30.747Open2624C:\Windows\SysWOW64\explorer.exeC:\
13/3/2020 - 17:47:30.747Unknown2624C:\Windows\SysWOW64\explorer.exeC:\
13/3/2020 - 17:47:30.747Open2624C:\Windows\SysWOW64\explorer.exeC:\Users\desktop.ini
13/3/2020 - 17:47:30.747Read2624C:\Windows\SysWOW64\explorer.exeC:\Users\desktop.ini
13/3/2020 - 17:47:30.747Open2624C:\Windows\SysWOW64\explorer.exeC:\Users
13/3/2020 - 17:47:30.747Unknown2624C:\Windows\SysWOW64\explorer.exeC:\Users
13/3/2020 - 17:47:30.747Open2624C:\Windows\SysWOW64\explorer.exeC:\Users\Behemot
13/3/2020 - 17:47:30.747Unknown2624C:\Windows\SysWOW64\explorer.exeC:\Users\Behemot
13/3/2020 - 17:47:30.747Open2624C:\Windows\SysWOW64\explorer.exeC:\Users\Behemot\AppData
13/3/2020 - 17:47:30.747Unknown2624C:\Windows\SysWOW64\explorer.exeC:\Users\Behemot\AppData
13/3/2020 - 17:47:30.747Open2624C:\Windows\SysWOW64\explorer.exeC:\Users\Behemot\AppData\Local
13/3/2020 - 17:47:30.747Unknown2624C:\Windows\SysWOW64\explorer.exeC:\Users\Behemot\AppData\Local
13/3/2020 - 17:47:30.747Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\rpcss.dll
13/3/2020 - 17:47:30.747Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\rpcss.dll
13/3/2020 - 17:47:30.747Open2624C:\Windows\SysWOW64\explorer.exeC:\Users\Behemot\Desktop\desktop.ini
13/3/2020 - 17:47:30.747Read2624C:\Windows\SysWOW64\explorer.exeC:\Users\Behemot\Desktop\desktop.ini
13/3/2020 - 17:47:30.762Open2624C:\Windows\SysWOW64\explorer.exeC:\
13/3/2020 - 17:47:30.762Unknown2624C:\Windows\SysWOW64\explorer.exeC:\
13/3/2020 - 17:47:30.762Open2624C:\Windows\SysWOW64\explorer.exeC:\Users
13/3/2020 - 17:47:30.762Unknown2624C:\Windows\SysWOW64\explorer.exeC:\Users
13/3/2020 - 17:47:30.762Open2624C:\Windows\SysWOW64\explorer.exeC:\Users\Behemot
13/3/2020 - 17:47:30.762Unknown2624C:\Windows\SysWOW64\explorer.exeC:\Users\Behemot
13/3/2020 - 17:47:30.762Open2624C:\Windows\SysWOW64\explorer.exeC:\Users\Behemot\Searches\desktop.ini
13/3/2020 - 17:47:30.762Read2624C:\Windows\SysWOW64\explorer.exeC:\Users\Behemot\Searches\desktop.ini
13/3/2020 - 17:47:30.762Open2624C:\Windows\SysWOW64\explorer.exeC:\
13/3/2020 - 17:47:30.762Unknown2624C:\Windows\SysWOW64\explorer.exeC:\
13/3/2020 - 17:47:30.762Open2624C:\Windows\SysWOW64\explorer.exeC:\Users
13/3/2020 - 17:47:30.762Unknown2624C:\Windows\SysWOW64\explorer.exeC:\Users
13/3/2020 - 17:47:30.762Open2624C:\Windows\SysWOW64\explorer.exeC:\Users\Behemot
13/3/2020 - 17:47:30.762Unknown2624C:\Windows\SysWOW64\explorer.exeC:\Users\Behemot
13/3/2020 - 17:47:30.762Open2624C:\Windows\SysWOW64\explorer.exeC:\Users\Behemot\Videos\desktop.ini
13/3/2020 - 17:47:30.762Read2624C:\Windows\SysWOW64\explorer.exeC:\Users\Behemot\Videos\desktop.ini
13/3/2020 - 17:47:30.762Open2624C:\Windows\SysWOW64\explorer.exeC:\
13/3/2020 - 17:47:30.762Unknown2624C:\Windows\SysWOW64\explorer.exeC:\
13/3/2020 - 17:47:30.762Open2624C:\Windows\SysWOW64\explorer.exeC:\Users
13/3/2020 - 17:47:30.762Unknown2624C:\Windows\SysWOW64\explorer.exeC:\Users
13/3/2020 - 17:47:30.762Open2624C:\Windows\SysWOW64\explorer.exeC:\Users\Behemot
13/3/2020 - 17:47:30.762Unknown2624C:\Windows\SysWOW64\explorer.exeC:\Users\Behemot
13/3/2020 - 17:47:30.762Open2624C:\Windows\SysWOW64\explorer.exeC:\Users\Behemot\Pictures\desktop.ini
13/3/2020 - 17:47:30.762Read2624C:\Windows\SysWOW64\explorer.exeC:\Users\Behemot\Pictures\desktop.ini
13/3/2020 - 17:47:30.762Open2624C:\Windows\SysWOW64\explorer.exeC:\
13/3/2020 - 17:47:30.762Unknown2624C:\Windows\SysWOW64\explorer.exeC:\
13/3/2020 - 17:47:30.762Open2624C:\Windows\SysWOW64\explorer.exeC:\Users
13/3/2020 - 17:47:30.762Unknown2624C:\Windows\SysWOW64\explorer.exeC:\Users
13/3/2020 - 17:47:30.762Open2624C:\Windows\SysWOW64\explorer.exeC:\Users\Behemot
13/3/2020 - 17:47:30.762Unknown2624C:\Windows\SysWOW64\explorer.exeC:\Users\Behemot
13/3/2020 - 17:47:30.762Open2624C:\Windows\SysWOW64\explorer.exeC:\
13/3/2020 - 17:47:30.762Unknown2624C:\Windows\SysWOW64\explorer.exeC:\
13/3/2020 - 17:47:30.762Open2624C:\Windows\SysWOW64\explorer.exeC:\Users
13/3/2020 - 17:47:30.762Unknown2624C:\Windows\SysWOW64\explorer.exeC:\Users
13/3/2020 - 17:47:30.762Open2624C:\Windows\SysWOW64\explorer.exeC:\Users\Behemot
13/3/2020 - 17:47:30.762Unknown2624C:\Windows\SysWOW64\explorer.exeC:\Users\Behemot
13/3/2020 - 17:47:30.762Open2624C:\Windows\SysWOW64\explorer.exeC:\Users\Behemot\Contacts\desktop.ini
13/3/2020 - 17:47:30.762Read2624C:\Windows\SysWOW64\explorer.exeC:\Users\Behemot\Contacts\desktop.ini
13/3/2020 - 17:47:30.762Open2624C:\Windows\SysWOW64\explorer.exeC:\
13/3/2020 - 17:47:30.762Unknown2624C:\Windows\SysWOW64\explorer.exeC:\
13/3/2020 - 17:47:30.762Open2624C:\Windows\SysWOW64\explorer.exeC:\Users
13/3/2020 - 17:47:30.762Unknown2624C:\Windows\SysWOW64\explorer.exeC:\Users
13/3/2020 - 17:47:30.762Open2624C:\Windows\SysWOW64\explorer.exeC:\Users\Behemot
13/3/2020 - 17:47:30.762Unknown2624C:\Windows\SysWOW64\explorer.exeC:\Users\Behemot
13/3/2020 - 17:47:30.762Open2624C:\Windows\SysWOW64\explorer.exeC:\Users\Behemot\Favorites\desktop.ini
13/3/2020 - 17:47:30.762Read2624C:\Windows\SysWOW64\explorer.exeC:\Users\Behemot\Favorites\desktop.ini
13/3/2020 - 17:47:30.762Open2624C:\Windows\SysWOW64\explorer.exeC:\
13/3/2020 - 17:47:30.762Unknown2624C:\Windows\SysWOW64\explorer.exeC:\
13/3/2020 - 17:47:30.762Open2624C:\Windows\SysWOW64\explorer.exeC:\Users
13/3/2020 - 17:47:30.762Unknown2624C:\Windows\SysWOW64\explorer.exeC:\Users
13/3/2020 - 17:47:30.762Open2624C:\Windows\SysWOW64\explorer.exeC:\Users\Behemot
13/3/2020 - 17:47:30.762Unknown2624C:\Windows\SysWOW64\explorer.exeC:\Users\Behemot
13/3/2020 - 17:47:30.762Open2624C:\Windows\SysWOW64\explorer.exeC:\Users\Behemot\Music\desktop.ini
13/3/2020 - 17:47:30.762Read2624C:\Windows\SysWOW64\explorer.exeC:\Users\Behemot\Music\desktop.ini
13/3/2020 - 17:47:30.762Open2624C:\Windows\SysWOW64\explorer.exeC:\
13/3/2020 - 17:47:30.762Unknown2624C:\Windows\SysWOW64\explorer.exeC:\
13/3/2020 - 17:47:30.762Open2624C:\Windows\SysWOW64\explorer.exeC:\Users
13/3/2020 - 17:47:30.762Unknown2624C:\Windows\SysWOW64\explorer.exeC:\Users
13/3/2020 - 17:47:30.762Open2624C:\Windows\SysWOW64\explorer.exeC:\Users\Behemot
13/3/2020 - 17:47:30.762Unknown2624C:\Windows\SysWOW64\explorer.exeC:\Users\Behemot
13/3/2020 - 17:47:30.762Open2624C:\Windows\SysWOW64\explorer.exeC:\Users\Behemot\Downloads\desktop.ini
13/3/2020 - 17:47:30.762Read2624C:\Windows\SysWOW64\explorer.exeC:\Users\Behemot\Downloads\desktop.ini
13/3/2020 - 17:47:30.762Open2624C:\Windows\SysWOW64\explorer.exeC:\
13/3/2020 - 17:47:30.762Unknown2624C:\Windows\SysWOW64\explorer.exeC:\
13/3/2020 - 17:47:30.762Open2624C:\Windows\SysWOW64\explorer.exeC:\Users
13/3/2020 - 17:47:30.762Unknown2624C:\Windows\SysWOW64\explorer.exeC:\Users
13/3/2020 - 17:47:30.762Open2624C:\Windows\SysWOW64\explorer.exeC:\Users\Behemot
13/3/2020 - 17:47:30.762Unknown2624C:\Windows\SysWOW64\explorer.exeC:\Users\Behemot
13/3/2020 - 17:47:30.762Open2624C:\Windows\SysWOW64\explorer.exeC:\Users\Behemot\Documents\desktop.ini
13/3/2020 - 17:47:30.762Read2624C:\Windows\SysWOW64\explorer.exeC:\Users\Behemot\Documents\desktop.ini
13/3/2020 - 17:47:30.762Open2624C:\Windows\SysWOW64\explorer.exeC:\
13/3/2020 - 17:47:30.762Unknown2624C:\Windows\SysWOW64\explorer.exeC:\
13/3/2020 - 17:47:30.762Open2624C:\Windows\SysWOW64\explorer.exeC:\Users
13/3/2020 - 17:47:30.762Unknown2624C:\Windows\SysWOW64\explorer.exeC:\Users
13/3/2020 - 17:47:30.762Open2624C:\Windows\SysWOW64\explorer.exeC:\Users\Behemot
13/3/2020 - 17:47:30.762Unknown2624C:\Windows\SysWOW64\explorer.exeC:\Users\Behemot
13/3/2020 - 17:47:30.762Open2624C:\Windows\SysWOW64\explorer.exeC:\Users\Behemot\Links\desktop.ini
13/3/2020 - 17:47:30.762Read2624C:\Windows\SysWOW64\explorer.exeC:\Users\Behemot\Links\desktop.ini
13/3/2020 - 17:47:30.778Open2624C:\Windows\SysWOW64\explorer.exeC:\
13/3/2020 - 17:47:30.778Unknown2624C:\Windows\SysWOW64\explorer.exeC:\
13/3/2020 - 17:47:30.778Open2624C:\Windows\SysWOW64\explorer.exeC:\Users
13/3/2020 - 17:47:30.778Unknown2624C:\Windows\SysWOW64\explorer.exeC:\Users
13/3/2020 - 17:47:30.778Open2624C:\Windows\SysWOW64\explorer.exeC:\Users\Behemot
13/3/2020 - 17:47:30.778Unknown2624C:\Windows\SysWOW64\explorer.exeC:\Users\Behemot
13/3/2020 - 17:47:30.778Open2624C:\Windows\SysWOW64\explorer.exeC:\Users\Behemot\Saved Games\desktop.ini
13/3/2020 - 17:47:30.778Read2624C:\Windows\SysWOW64\explorer.exeC:\Users\Behemot\Saved Games\desktop.ini
13/3/2020 - 17:47:30.778Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\apphelp.dll
13/3/2020 - 17:47:30.778Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\apphelp.dll
13/3/2020 - 17:47:30.778Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\shdocvw.dll
13/3/2020 - 17:47:30.778Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\AppPatch\sysmain.sdb
13/3/2020 - 17:47:30.778Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:30.778Unknown2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:30.778Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\shdocvw.dll
13/3/2020 - 17:47:30.778Open2624C:\Windows\SysWOW64\explorer.exeC:\
13/3/2020 - 17:47:30.778Unknown2624C:\Windows\SysWOW64\explorer.exeC:\
13/3/2020 - 17:47:30.778Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows
13/3/2020 - 17:47:30.778Unknown2624C:\Windows\SysWOW64\explorer.exeC:\Windows
13/3/2020 - 17:47:30.778Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:30.778Unknown2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:30.778Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:30.778Unknown2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:30.778Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\shdocvw.dll
13/3/2020 - 17:47:30.778Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\shdocvw.dll
13/3/2020 - 17:47:30.981Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\shdocvw.dll
13/3/2020 - 17:47:30.981Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\shdocvw.dll
13/3/2020 - 17:47:30.981Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\shdocvw.dll
13/3/2020 - 17:47:30.981Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\shdocvw.dll
13/3/2020 - 17:47:30.981Read2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\shdocvw.dll
13/3/2020 - 17:47:30.981Read2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\shdocvw.dll
13/3/2020 - 17:47:30.981Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\shdocvw.dll
13/3/2020 - 17:47:30.981Open2624C:\Windows\SysWOW64\explorer.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:30.981Unknown2624C:\Windows\SysWOW64\explorer.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:30.981Open2624C:\Windows\SysWOW64\explorer.exeC:\Users\Behemot\AppData\Local\Temp\XX--XX--XX.txt
13/3/2020 - 17:47:30.981Read2624C:\Windows\SysWOW64\explorer.exeC:\Users\Behemot\AppData\Local\Temp\XX--XX--XX.txtXX--XX--XX.txt
13/3/2020 - 17:47:30.981Unknown2624C:\Windows\SysWOW64\explorer.exeC:\Users\Behemot\AppData\Local\Temp\XX--XX--XX.txtXX--XX--XX.txt
13/3/2020 - 17:47:30.997Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\install
13/3/2020 - 17:47:30.997Unknown2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\install
13/3/2020 - 17:47:30.997Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:30.997Read2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:31.653Open2196C:\malware.exeC:\Program Files\Internet Explorer\iexplore.exe
13/3/2020 - 17:47:31.653Unknown2196C:\malware.exeC:\Program Files\Internet Explorer\iexplore.exe
13/3/2020 - 17:47:31.653Open2196C:\malware.exeC:\malware.exe
13/3/2020 - 17:47:31.653Unknown2196C:\malware.exeC:\malware.exe
13/3/2020 - 17:47:31.700Open2200C:\malware.exeC:\Windows\Prefetch\MALWARE.EXE-20920919.pf
13/3/2020 - 17:47:31.700Read2200C:\malware.exeC:\Windows\Prefetch\MALWARE.EXE-20920919.pfMALWARE.EXE-20920919.pf
13/3/2020 - 17:47:31.700Open2200C:\malware.exe\Device\HarddiskVolume2
13/3/2020 - 17:47:31.700Open2200C:\malware.exeC:\Monitor
13/3/2020 - 17:47:31.700Unknown2200C:\malware.exeC:\Monitor
13/3/2020 - 17:47:31.700Unknown2200C:\malware.exeC:\Monitor
13/3/2020 - 17:47:31.700Open2200C:\malware.exeC:\Monitor\Malware
13/3/2020 - 17:47:31.700Unknown2200C:\malware.exeC:\Monitor\Malware
13/3/2020 - 17:47:31.700Unknown2200C:\malware.exeC:\Monitor\Malware
13/3/2020 - 17:47:31.700Open2200C:\malware.exeC:\Windows
13/3/2020 - 17:47:31.700Unknown2200C:\malware.exeC:\Windows
13/3/2020 - 17:47:31.700Unknown2200C:\malware.exeC:\Windows
13/3/2020 - 17:47:31.700Open2200C:\malware.exeC:\Windows\Globalization
13/3/2020 - 17:47:31.700Unknown2200C:\malware.exeC:\Windows\Globalization
13/3/2020 - 17:47:31.700Unknown2200C:\malware.exeC:\Windows\Globalization
13/3/2020 - 17:47:31.700Open2200C:\malware.exeC:\Windows\Globalization\Sorting
13/3/2020 - 17:47:31.700Unknown2200C:\malware.exeC:\Windows\Globalization\Sorting
13/3/2020 - 17:47:31.700Unknown2200C:\malware.exeC:\Windows\Globalization\Sorting
13/3/2020 - 17:47:31.700Open2200C:\malware.exeC:\Windows\System32
13/3/2020 - 17:47:31.700Unknown2200C:\malware.exeC:\Windows\System32
13/3/2020 - 17:47:31.700Unknown2200C:\malware.exeC:\Windows\System32
13/3/2020 - 17:47:31.700Open2200C:\malware.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:31.700Unknown2200C:\malware.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:31.700Unknown2200C:\malware.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:31.700Open2200C:\malware.exeC:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d
13/3/2020 - 17:47:31.700Unknown2200C:\malware.exeC:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d
13/3/2020 - 17:47:31.700Unknown2200C:\malware.exeC:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d
13/3/2020 - 17:47:31.700Open2200C:\malware.exeC:\Windows\System32\ntdll.dll
13/3/2020 - 17:47:31.700Unknown2200C:\malware.exeC:\Windows\System32\ntdll.dll
13/3/2020 - 17:47:31.700Open2200C:\malware.exeC:\Windows\System32\wow64.dll
13/3/2020 - 17:47:31.700Unknown2200C:\malware.exeC:\Windows\System32\wow64.dll
13/3/2020 - 17:47:31.700Open2200C:\malware.exeC:\Windows\System32\wow64win.dll
13/3/2020 - 17:47:31.700Unknown2200C:\malware.exeC:\Windows\System32\wow64win.dll
13/3/2020 - 17:47:31.700Open2200C:\malware.exeC:\Windows\System32\wow64cpu.dll
13/3/2020 - 17:47:31.700Unknown2200C:\malware.exeC:\Windows\System32\wow64cpu.dll
13/3/2020 - 17:47:31.700Open2200C:\malware.exeC:\Windows\System32\kernel32.dll
13/3/2020 - 17:47:31.700Unknown2200C:\malware.exeC:\Windows\System32\kernel32.dll
13/3/2020 - 17:47:31.700Open2200C:\malware.exeC:\Windows\SysWOW64\kernel32.dll
13/3/2020 - 17:47:31.700Unknown2200C:\malware.exeC:\Windows\SysWOW64\kernel32.dll
13/3/2020 - 17:47:31.700Open2200C:\malware.exeC:\Windows\System32\user32.dll
13/3/2020 - 17:47:31.700Unknown2200C:\malware.exeC:\Windows\System32\user32.dll
13/3/2020 - 17:47:31.700Open2200C:\malware.exeC:\Windows\SysWOW64\ntdll.dll
13/3/2020 - 17:47:31.700Unknown2200C:\malware.exeC:\Windows\SysWOW64\ntdll.dll
13/3/2020 - 17:47:31.700Open2200C:\malware.exeC:\Windows\System32\apisetschema.dll
13/3/2020 - 17:47:31.700Unknown2200C:\malware.exeC:\Windows\System32\apisetschema.dllapisetschema.dll
13/3/2020 - 17:47:31.700Open2200C:\malware.exeC:\Windows\SysWOW64\KernelBase.dll
13/3/2020 - 17:47:31.700Unknown2200C:\malware.exeC:\Windows\SysWOW64\KernelBase.dllKernelBase.dll
13/3/2020 - 17:47:31.700Open2200C:\malware.exeC:\Windows\System32\locale.nls
13/3/2020 - 17:47:31.700Unknown2200C:\malware.exeC:\Windows\System32\locale.nls
13/3/2020 - 17:47:31.700Open2200C:\malware.exeC:\malware.exe
13/3/2020 - 17:47:31.700Unknown2200C:\malware.exeC:\malware.exe
13/3/2020 - 17:47:31.700Open2200C:\malware.exeC:\Windows\System32\mctres.dll
13/3/2020 - 17:47:31.700Unknown2200C:\malware.exeC:\Windows\System32\mctres.dll
13/3/2020 - 17:47:31.700Open2200C:\malware.exeC:\Windows\SysWOW64\ws2_32.dll
13/3/2020 - 17:47:31.700Unknown2200C:\malware.exeC:\Windows\SysWOW64\ws2_32.dll
13/3/2020 - 17:47:31.700Open2200C:\malware.exeC:\Windows\SysWOW64\msvcrt.dll
13/3/2020 - 17:47:31.700Unknown2200C:\malware.exeC:\Windows\SysWOW64\msvcrt.dll
13/3/2020 - 17:47:31.700Open2200C:\malware.exeC:\Windows\SysWOW64\rpcrt4.dll
13/3/2020 - 17:47:31.700Unknown2200C:\malware.exeC:\Windows\SysWOW64\rpcrt4.dll
13/3/2020 - 17:47:31.700Open2200C:\malware.exeC:\Windows\SysWOW64\sspicli.dll
13/3/2020 - 17:47:31.700Unknown2200C:\malware.exeC:\Windows\SysWOW64\sspicli.dll
13/3/2020 - 17:47:31.700Open2200C:\malware.exeC:\Windows\SysWOW64\cryptbase.dll
13/3/2020 - 17:47:31.700Unknown2200C:\malware.exeC:\Windows\SysWOW64\cryptbase.dllcryptbase.dll
13/3/2020 - 17:47:31.700Open2200C:\malware.exeC:\Windows\SysWOW64\sechost.dll
13/3/2020 - 17:47:31.700Unknown2200C:\malware.exeC:\Windows\SysWOW64\sechost.dll
13/3/2020 - 17:47:31.700Open2200C:\malware.exeC:\Windows\SysWOW64\nsi.dll
13/3/2020 - 17:47:31.700Unknown2200C:\malware.exeC:\Windows\SysWOW64\nsi.dll
13/3/2020 - 17:47:31.700Open2200C:\malware.exeC:\Windows\SysWOW64\version.dll
13/3/2020 - 17:47:31.700Unknown2200C:\malware.exeC:\Windows\SysWOW64\version.dll
13/3/2020 - 17:47:31.700Open2200C:\malware.exeC:\Windows\SysWOW64\winmm.dll
13/3/2020 - 17:47:31.700Unknown2200C:\malware.exeC:\Windows\SysWOW64\winmm.dll
13/3/2020 - 17:47:31.700Open2200C:\malware.exeC:\Windows\SysWOW64\user32.dll
13/3/2020 - 17:47:31.700Unknown2200C:\malware.exeC:\Windows\SysWOW64\user32.dll
13/3/2020 - 17:47:31.700Open2200C:\malware.exeC:\Windows\SysWOW64\gdi32.dll
13/3/2020 - 17:47:31.700Unknown2200C:\malware.exeC:\Windows\SysWOW64\gdi32.dll
13/3/2020 - 17:47:31.700Open2200C:\malware.exeC:\Windows\SysWOW64\lpk.dll
13/3/2020 - 17:47:31.700Unknown2200C:\malware.exeC:\Windows\SysWOW64\lpk.dll
13/3/2020 - 17:47:31.700Open2200C:\malware.exeC:\Windows\SysWOW64\usp10.dll
13/3/2020 - 17:47:31.700Unknown2200C:\malware.exeC:\Windows\SysWOW64\usp10.dll
13/3/2020 - 17:47:31.700Open2200C:\malware.exeC:\Windows\SysWOW64\advapi32.dll
13/3/2020 - 17:47:31.700Unknown2200C:\malware.exeC:\Windows\SysWOW64\advapi32.dll
13/3/2020 - 17:47:31.700Open2200C:\malware.exeC:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d\comctl32.dll
13/3/2020 - 17:47:31.700Unknown2200C:\malware.exeC:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d\comctl32.dll
13/3/2020 - 17:47:31.700Open2200C:\malware.exeC:\Windows\SysWOW64\shlwapi.dll
13/3/2020 - 17:47:31.700Unknown2200C:\malware.exeC:\Windows\SysWOW64\shlwapi.dll
13/3/2020 - 17:47:31.700Open2200C:\malware.exeC:\Windows\SysWOW64\mpr.dll
13/3/2020 - 17:47:31.700Unknown2200C:\malware.exeC:\Windows\SysWOW64\mpr.dll
13/3/2020 - 17:47:31.700Open2200C:\malware.exeC:\Windows\SysWOW64\wininet.dll
13/3/2020 - 17:47:31.700Unknown2200C:\malware.exeC:\Windows\SysWOW64\wininet.dll
13/3/2020 - 17:47:31.700Open2200C:\malware.exeC:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
13/3/2020 - 17:47:31.700Unknown2200C:\malware.exeC:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dllapi-ms-win-downlevel-user32-l1-1-0.dll
13/3/2020 - 17:47:31.700Open2200C:\malware.exeC:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
13/3/2020 - 17:47:31.700Unknown2200C:\malware.exeC:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dllapi-ms-win-downlevel-shlwapi-l1-1-0.dll
13/3/2020 - 17:47:31.700Open2200C:\malware.exeC:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
13/3/2020 - 17:47:31.700Unknown2200C:\malware.exeC:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dllapi-ms-win-downlevel-version-l1-1-0.dll
13/3/2020 - 17:47:31.700Open2200C:\malware.exeC:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
13/3/2020 - 17:47:31.700Unknown2200C:\malware.exeC:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dllapi-ms-win-downlevel-normaliz-l1-1-0.dll
13/3/2020 - 17:47:31.700Open2200C:\malware.exeC:\Windows\SysWOW64\normaliz.dll
13/3/2020 - 17:47:31.700Unknown2200C:\malware.exeC:\Windows\SysWOW64\normaliz.dll
13/3/2020 - 17:47:31.700Open2200C:\malware.exeC:\Windows\SysWOW64\iertutil.dll
13/3/2020 - 17:47:31.700Unknown2200C:\malware.exeC:\Windows\SysWOW64\iertutil.dll
13/3/2020 - 17:47:31.700Open2200C:\malware.exeC:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
13/3/2020 - 17:47:31.700Unknown2200C:\malware.exeC:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dllapi-ms-win-downlevel-advapi32-l1-1-0.dll
13/3/2020 - 17:47:31.700Open2200C:\malware.exeC:\Windows\SysWOW64\userenv.dll
13/3/2020 - 17:47:31.700Unknown2200C:\malware.exeC:\Windows\SysWOW64\userenv.dll
13/3/2020 - 17:47:31.700Open2200C:\malware.exeC:\Windows\SysWOW64\profapi.dll
13/3/2020 - 17:47:31.700Unknown2200C:\malware.exeC:\Windows\SysWOW64\profapi.dll
13/3/2020 - 17:47:31.700Open2200C:\malware.exeC:\Windows\SysWOW64\psapi.dll
13/3/2020 - 17:47:31.700Unknown2200C:\malware.exeC:\Windows\SysWOW64\psapi.dll
13/3/2020 - 17:47:31.700Open2200C:\malware.exeC:\Windows\SysWOW64\comdlg32.dll
13/3/2020 - 17:47:31.700Unknown2200C:\malware.exeC:\Windows\SysWOW64\comdlg32.dll
13/3/2020 - 17:47:31.700Open2200C:\malware.exeC:\Windows\SysWOW64\shell32.dll
13/3/2020 - 17:47:31.700Unknown2200C:\malware.exeC:\Windows\SysWOW64\shell32.dll
13/3/2020 - 17:47:31.700Open2200C:\malware.exeC:\Windows\SysWOW64\ole32.dll
13/3/2020 - 17:47:31.700Unknown2200C:\malware.exeC:\Windows\SysWOW64\ole32.dll
13/3/2020 - 17:47:31.700Open2200C:\malware.exeC:\Windows\SysWOW64\oleaut32.dll
13/3/2020 - 17:47:31.700Unknown2200C:\malware.exeC:\Windows\SysWOW64\oleaut32.dll
13/3/2020 - 17:47:31.700Open2200C:\malware.exeC:\Windows\SysWOW64\wsock32.dll
13/3/2020 - 17:47:31.700Unknown2200C:\malware.exeC:\Windows\SysWOW64\wsock32.dll
13/3/2020 - 17:47:31.700Open2200C:\malware.exeC:\Windows\SysWOW64\imm32.dll
13/3/2020 - 17:47:31.700Unknown2200C:\malware.exeC:\Windows\SysWOW64\imm32.dll
13/3/2020 - 17:47:31.700Open2200C:\malware.exeC:\Windows\SysWOW64\msctf.dll
13/3/2020 - 17:47:31.700Unknown2200C:\malware.exeC:\Windows\SysWOW64\msctf.dll
13/3/2020 - 17:47:31.700Open2200C:\malware.exeC:\Windows\WindowsShell.Manifest
13/3/2020 - 17:47:31.700Unknown2200C:\malware.exeC:\Windows\WindowsShell.ManifestWindowsShell.Manifest
13/3/2020 - 17:47:31.700Open2200C:\malware.exeC:\Windows\SysWOW64\uxtheme.dll
13/3/2020 - 17:47:31.700Unknown2200C:\malware.exeC:\Windows\SysWOW64\uxtheme.dll
13/3/2020 - 17:47:31.700Open2200C:\malware.exeC:\Windows\Globalization\Sorting\SortDefault.nls
13/3/2020 - 17:47:31.700Unknown2200C:\malware.exeC:\Windows\Globalization\Sorting\SortDefault.nlsSortDefault.nls
13/3/2020 - 17:47:31.700Open2200C:\malware.exeC:\Windows\SysWOW64\setupapi.dll
13/3/2020 - 17:47:31.700Unknown2200C:\malware.exeC:\Windows\SysWOW64\setupapi.dll
13/3/2020 - 17:47:31.700Open2200C:\malware.exeC:\Windows\SysWOW64\cfgmgr32.dll
13/3/2020 - 17:47:31.700Unknown2200C:\malware.exeC:\Windows\SysWOW64\cfgmgr32.dll
13/3/2020 - 17:47:31.715Open2200C:\malware.exeC:\Windows\SysWOW64\devobj.dll
13/3/2020 - 17:47:31.715Unknown2200C:\malware.exeC:\Windows\SysWOW64\devobj.dll
13/3/2020 - 17:47:31.715Open2200C:\malware.exeC:\Windows\SysWOW64\dwmapi.dll
13/3/2020 - 17:47:31.715Unknown2200C:\malware.exeC:\Windows\SysWOW64\dwmapi.dll
13/3/2020 - 17:47:31.715Unknown2200C:\malware.exeC:\Windows\System32\locale.nls
13/3/2020 - 17:47:31.715Unknown2200C:\malware.exeC:\Windows\WindowsShell.ManifestWindowsShell.Manifest
13/3/2020 - 17:47:31.715Unknown2200C:\malware.exeC:\Windows\Globalization\Sorting\SortDefault.nlsSortDefault.nls
13/3/2020 - 17:47:31.715Unknown2200C:\malware.exeC:\Windows\System32\ntdll.dll
13/3/2020 - 17:47:31.715Unknown2200C:\malware.exeC:\Windows\System32\wow64.dll
13/3/2020 - 17:47:31.715Unknown2200C:\malware.exeC:\Windows\System32\wow64win.dll
13/3/2020 - 17:47:31.715Unknown2200C:\malware.exeC:\Windows\System32\wow64cpu.dll
13/3/2020 - 17:47:31.715Unknown2200C:\malware.exeC:\Windows\System32\kernel32.dll
13/3/2020 - 17:47:31.715Unknown2200C:\malware.exeC:\Windows\SysWOW64\kernel32.dll
13/3/2020 - 17:47:31.715Unknown2200C:\malware.exeC:\Windows\System32\user32.dll
13/3/2020 - 17:47:31.715Unknown2200C:\malware.exeC:\Windows\SysWOW64\ntdll.dll
13/3/2020 - 17:47:31.715Unknown2200C:\malware.exeC:\Windows\System32\apisetschema.dllapisetschema.dll
13/3/2020 - 17:47:31.715Unknown2200C:\malware.exeC:\Windows\SysWOW64\KernelBase.dllKernelBase.dll
13/3/2020 - 17:47:31.715Unknown2200C:\malware.exeC:\malware.exe
13/3/2020 - 17:47:31.715Unknown2200C:\malware.exeC:\Windows\System32\mctres.dll
13/3/2020 - 17:47:31.715Unknown2200C:\malware.exeC:\Windows\SysWOW64\ws2_32.dll
13/3/2020 - 17:47:31.715Unknown2200C:\malware.exeC:\Windows\SysWOW64\msvcrt.dll
13/3/2020 - 17:47:31.715Unknown2200C:\malware.exeC:\Windows\SysWOW64\rpcrt4.dll
13/3/2020 - 17:47:31.715Unknown2200C:\malware.exeC:\Windows\SysWOW64\sspicli.dll
13/3/2020 - 17:47:31.715Unknown2200C:\malware.exeC:\Windows\SysWOW64\cryptbase.dllcryptbase.dll
13/3/2020 - 17:47:31.715Unknown2200C:\malware.exeC:\Windows\SysWOW64\sechost.dll
13/3/2020 - 17:47:31.715Unknown2200C:\malware.exeC:\Windows\SysWOW64\nsi.dll
13/3/2020 - 17:47:31.715Unknown2200C:\malware.exeC:\Windows\SysWOW64\version.dll
13/3/2020 - 17:47:31.715Unknown2200C:\malware.exeC:\Windows\SysWOW64\winmm.dll
13/3/2020 - 17:47:31.715Unknown2200C:\malware.exeC:\Windows\SysWOW64\user32.dll
13/3/2020 - 17:47:31.715Unknown2200C:\malware.exeC:\Windows\SysWOW64\gdi32.dll
13/3/2020 - 17:47:31.715Unknown2200C:\malware.exeC:\Windows\SysWOW64\lpk.dll
13/3/2020 - 17:47:31.715Unknown2200C:\malware.exeC:\Windows\SysWOW64\usp10.dll
13/3/2020 - 17:47:31.715Unknown2200C:\malware.exeC:\Windows\SysWOW64\advapi32.dll
13/3/2020 - 17:47:31.715Unknown2200C:\malware.exeC:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d\comctl32.dll
13/3/2020 - 17:47:31.715Unknown2200C:\malware.exeC:\Windows\SysWOW64\shlwapi.dll
13/3/2020 - 17:47:31.715Unknown2200C:\malware.exeC:\Windows\SysWOW64\mpr.dll
13/3/2020 - 17:47:31.715Unknown2200C:\malware.exeC:\Windows\SysWOW64\wininet.dll
13/3/2020 - 17:47:31.715Unknown2200C:\malware.exeC:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dllapi-ms-win-downlevel-user32-l1-1-0.dll
13/3/2020 - 17:47:31.715Unknown2200C:\malware.exeC:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dllapi-ms-win-downlevel-shlwapi-l1-1-0.dll
13/3/2020 - 17:47:31.715Unknown2200C:\malware.exeC:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dllapi-ms-win-downlevel-version-l1-1-0.dll
13/3/2020 - 17:47:31.715Unknown2200C:\malware.exeC:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dllapi-ms-win-downlevel-normaliz-l1-1-0.dll
13/3/2020 - 17:47:31.715Unknown2200C:\malware.exeC:\Windows\SysWOW64\normaliz.dll
13/3/2020 - 17:47:31.715Unknown2200C:\malware.exeC:\Windows\SysWOW64\iertutil.dll
13/3/2020 - 17:47:31.715Unknown2200C:\malware.exeC:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dllapi-ms-win-downlevel-advapi32-l1-1-0.dll
13/3/2020 - 17:47:31.715Unknown2200C:\malware.exeC:\Windows\SysWOW64\userenv.dll
13/3/2020 - 17:47:31.715Unknown2200C:\malware.exeC:\Windows\SysWOW64\profapi.dll
13/3/2020 - 17:47:31.715Unknown2200C:\malware.exeC:\Windows\SysWOW64\psapi.dll
13/3/2020 - 17:47:31.715Unknown2200C:\malware.exeC:\Windows\SysWOW64\comdlg32.dll
13/3/2020 - 17:47:31.715Unknown2200C:\malware.exeC:\Windows\SysWOW64\shell32.dll
13/3/2020 - 17:47:31.715Unknown2200C:\malware.exeC:\Windows\SysWOW64\ole32.dll
13/3/2020 - 17:47:31.715Unknown2200C:\malware.exeC:\Windows\SysWOW64\oleaut32.dll
13/3/2020 - 17:47:31.715Unknown2200C:\malware.exeC:\Windows\SysWOW64\wsock32.dll
13/3/2020 - 17:47:31.715Unknown2200C:\malware.exeC:\Windows\SysWOW64\imm32.dll
13/3/2020 - 17:47:31.715Unknown2200C:\malware.exeC:\Windows\SysWOW64\msctf.dll
13/3/2020 - 17:47:31.715Unknown2200C:\malware.exeC:\Windows\SysWOW64\uxtheme.dll
13/3/2020 - 17:47:31.715Unknown2200C:\malware.exeC:\Windows\SysWOW64\setupapi.dll
13/3/2020 - 17:47:31.715Unknown2200C:\malware.exeC:\Windows\SysWOW64\cfgmgr32.dll
13/3/2020 - 17:47:31.715Unknown2200C:\malware.exeC:\Windows\SysWOW64\devobj.dll
13/3/2020 - 17:47:31.715Unknown2200C:\malware.exeC:\Windows\SysWOW64\dwmapi.dll
13/3/2020 - 17:47:31.715Unknown2200C:\malware.exe\Device\HarddiskVolume2
13/3/2020 - 17:47:31.715Open2200C:\malware.exeC:\Windows
13/3/2020 - 17:47:31.715Open2200C:\malware.exeC:\Windows\System32\wow64.dll
13/3/2020 - 17:47:31.715Open2200C:\malware.exeC:\Windows\System32\wow64.dll
13/3/2020 - 17:47:31.715Open2200C:\malware.exeC:\Windows\System32\wow64win.dll
13/3/2020 - 17:47:31.715Open2200C:\malware.exeC:\Windows\System32\wow64win.dll
13/3/2020 - 17:47:31.715Open2200C:\malware.exeC:\Windows\System32\wow64cpu.dll
13/3/2020 - 17:47:31.715Open2200C:\malware.exeC:\Windows\System32\wow64cpu.dll
13/3/2020 - 17:47:31.715Open2200C:\malware.exeC:\Windows\System32\wow64log.dll
13/3/2020 - 17:47:31.715Open2200C:\malware.exeC:\Windows
13/3/2020 - 17:47:31.715Unknown2200C:\malware.exeC:\Windows
13/3/2020 - 17:47:31.715Open2200C:\malware.exeC:\Monitor
13/3/2020 - 17:47:31.715Open2200C:\malware.exeC:\WSOCK32.dll
13/3/2020 - 17:47:31.715Open2200C:\malware.exeC:\Windows\SysWOW64\wsock32.dll
13/3/2020 - 17:47:31.715Open2200C:\malware.exeC:\Windows\SysWOW64\wsock32.dll
13/3/2020 - 17:47:31.715Open2200C:\malware.exeC:\Windows\SysWOW64\sechost.dll
13/3/2020 - 17:47:31.715Open2200C:\malware.exeC:\Windows\SysWOW64\sechost.dll
13/3/2020 - 17:47:31.715Open2200C:\malware.exeC:\VERSION.dll
13/3/2020 - 17:47:31.715Open2200C:\malware.exeC:\Windows\SysWOW64\version.dll
13/3/2020 - 17:47:31.715Open2200C:\malware.exeC:\Windows\SysWOW64\version.dll
13/3/2020 - 17:47:31.715Open2200C:\malware.exeC:\WINMM.dll
13/3/2020 - 17:47:31.715Open2200C:\malware.exeC:\Windows\SysWOW64\winmm.dll
13/3/2020 - 17:47:31.715Open2200C:\malware.exeC:\Windows\SysWOW64\winmm.dll
13/3/2020 - 17:47:31.715Open2200C:\malware.exeC:\malware.exe.Local
13/3/2020 - 17:47:31.715Open2200C:\malware.exeC:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d
13/3/2020 - 17:47:31.715Unknown2200C:\malware.exeC:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d
13/3/2020 - 17:47:31.715Open2200C:\malware.exeC:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d
13/3/2020 - 17:47:31.715Open2200C:\malware.exeC:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d\comctl32.dll
13/3/2020 - 17:47:31.715Unknown2200C:\malware.exeC:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d\comctl32.dll
13/3/2020 - 17:47:31.715Open2200C:\malware.exeC:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d\comctl32.dll
13/3/2020 - 17:47:31.715Unknown2200C:\malware.exeC:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d\comctl32.dll
13/3/2020 - 17:47:31.715Open2200C:\malware.exeC:\MPR.dll
13/3/2020 - 17:47:31.715Open2200C:\malware.exeC:\Windows\SysWOW64\mpr.dll
13/3/2020 - 17:47:31.715Open2200C:\malware.exeC:\Windows\SysWOW64\mpr.dll
13/3/2020 - 17:47:31.731Open2200C:\malware.exeC:\Windows\SysWOW64\imm32.dll
13/3/2020 - 17:47:31.731Open2200C:\malware.exeC:\Windows\SysWOW64\imm32.dll
13/3/2020 - 17:47:31.731Open2200C:\malware.exeC:\Windows\SysWOW64\imm32.dll
13/3/2020 - 17:47:31.731Open2200C:\malware.exeC:\Windows\SysWOW64\imm32.dll
13/3/2020 - 17:47:31.731Open2200C:\malware.exeC:\Windows\SysWOW64\imm32.dll
13/3/2020 - 17:47:31.731Open2200C:\malware.exeC:\Windows\SysWOW64\imm32.dll
13/3/2020 - 17:47:31.793Open2200C:\malware.exeC:\Windows\WindowsShell.Manifest
13/3/2020 - 17:47:31.793Unknown2200C:\malware.exeC:\Windows\WindowsShell.ManifestWindowsShell.Manifest
13/3/2020 - 17:47:32.497Open2200C:\malware.exeC:\AVICAP32.DLL
13/3/2020 - 17:47:32.497Open2200C:\malware.exeC:\Windows\SysWOW64\avicap32.dll
13/3/2020 - 17:47:32.497Open2200C:\malware.exeC:\Windows\SysWOW64\avicap32.dll
13/3/2020 - 17:47:32.497Open2200C:\malware.exeC:\MSVFW32.dll
13/3/2020 - 17:47:32.497Open2200C:\malware.exeC:\Windows\SysWOW64\msvfw32.dll
13/3/2020 - 17:47:32.497Open2200C:\malware.exeC:\Windows\SysWOW64\msvfw32.dll
13/3/2020 - 17:47:32.684Open2200C:\malware.exeC:\malware.exe.Local
13/3/2020 - 17:47:32.684Open2200C:\malware.exeC:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.23407_none_5c02a2f5a011f9be
13/3/2020 - 17:47:32.684Unknown2200C:\malware.exeC:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.23407_none_5c02a2f5a011f9be
13/3/2020 - 17:47:32.684Open2200C:\malware.exeC:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.23407_none_5c02a2f5a011f9be
13/3/2020 - 17:47:32.684Open2200C:\malware.exeC:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.23407_none_5c02a2f5a011f9be\GdiPlus.dll
13/3/2020 - 17:47:32.684Open2200C:\malware.exeC:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.23407_none_5c02a2f5a011f9be\GdiPlus.dll
13/3/2020 - 17:47:32.918Open2200C:\malware.exeC:\msacm32.dll
13/3/2020 - 17:47:32.918Open2200C:\malware.exeC:\Windows\SysWOW64\msacm32.dll
13/3/2020 - 17:47:32.918Open2200C:\malware.exeC:\Windows\SysWOW64\msacm32.dll
13/3/2020 - 17:47:33.293Open2200C:\malware.exeC:\powrprof.dll
13/3/2020 - 17:47:33.293Open2200C:\malware.exeC:\Windows\SysWOW64\powrprof.dll
13/3/2020 - 17:47:33.293Open2200C:\malware.exeC:\Windows\SysWOW64\powrprof.dll
13/3/2020 - 17:47:33.856Open2200C:\malware.exeC:\Windows\Globalization\Sorting\SortDefault.nls
13/3/2020 - 17:47:33.856Unknown2200C:\malware.exeC:\Windows\Globalization\Sorting\SortDefault.nlsSortDefault.nls
13/3/2020 - 17:47:33.856Open2200C:\malware.exeC:\iphlpapi.dll
13/3/2020 - 17:47:33.856Open2200C:\malware.exeC:\Windows\SysWOW64\IPHLPAPI.DLL
13/3/2020 - 17:47:33.856Open2200C:\malware.exeC:\Windows\SysWOW64\IPHLPAPI.DLL
13/3/2020 - 17:47:33.856Open2200C:\malware.exeC:\WINNSI.DLL
13/3/2020 - 17:47:33.856Open2200C:\malware.exeC:\Windows\SysWOW64\winnsi.dll
13/3/2020 - 17:47:33.856Open2200C:\malware.exeC:\Windows\SysWOW64\winnsi.dll
13/3/2020 - 17:47:33.856Open2200C:\malware.exeC:\Windows\SysWOW64\uxtheme.dll
13/3/2020 - 17:47:33.856Open2200C:\malware.exeC:\Windows\SysWOW64\uxtheme.dll
13/3/2020 - 17:47:33.903Unknown2196C:\malware.exeC:\Windows
13/3/2020 - 17:47:33.903Unknown2196C:\malware.exeC:\Monitor
13/3/2020 - 17:47:33.903Open2200C:\malware.exeC:\Windows\SysWOW64\shell32.dll
13/3/2020 - 17:47:33.903Open2200C:\malware.exeC:\malware.exe.Local
13/3/2020 - 17:47:33.903Open2200C:\malware.exeC:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d
13/3/2020 - 17:47:33.903Unknown2200C:\malware.exeC:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d
13/3/2020 - 17:47:33.903Open2200C:\malware.exeC:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d
13/3/2020 - 17:47:33.903Open2200C:\malware.exeC:\
13/3/2020 - 17:47:33.903Unknown2200C:\malware.exeC:\
13/3/2020 - 17:47:33.903Open2200C:\malware.exeC:\Users\desktop.ini
13/3/2020 - 17:47:33.903Read2200C:\malware.exeC:\Users\desktop.ini
13/3/2020 - 17:47:33.903Open2200C:\malware.exeC:\Users
13/3/2020 - 17:47:33.903Unknown2200C:\malware.exeC:\Users
13/3/2020 - 17:47:33.903Open2200C:\malware.exeC:\Users\Behemot
13/3/2020 - 17:47:33.903Unknown2200C:\malware.exeC:\Users\Behemot
13/3/2020 - 17:47:33.903Open2200C:\malware.exeC:\Users\Behemot\AppData
13/3/2020 - 17:47:33.903Unknown2200C:\malware.exeC:\Users\Behemot\AppData
13/3/2020 - 17:47:33.903Open2200C:\malware.exeC:\Users\Behemot\AppData\Local
13/3/2020 - 17:47:33.903Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local
13/3/2020 - 17:47:33.903Open2200C:\malware.exeC:\Windows\SysWOW64\rpcss.dll
13/3/2020 - 17:47:33.903Open2200C:\malware.exeC:\Windows\SysWOW64\rpcss.dll
13/3/2020 - 17:47:33.903Open2200C:\malware.exeC:\Users\Behemot\Desktop\desktop.ini
13/3/2020 - 17:47:33.903Read2200C:\malware.exeC:\Users\Behemot\Desktop\desktop.ini
13/3/2020 - 17:47:33.903Open2200C:\malware.exeC:\PROPSYS.dll
13/3/2020 - 17:47:33.903Open2200C:\malware.exeC:\Windows\SysWOW64\propsys.dll
13/3/2020 - 17:47:33.903Open2200C:\malware.exeC:\Windows\SysWOW64\propsys.dll
13/3/2020 - 17:47:33.918Open2200C:\malware.exeC:\
13/3/2020 - 17:47:33.918Unknown2200C:\malware.exeC:\
13/3/2020 - 17:47:33.918Open2200C:\malware.exeC:\Users
13/3/2020 - 17:47:33.918Unknown2200C:\malware.exeC:\Users
13/3/2020 - 17:47:33.918Open2200C:\malware.exeC:\Users\Behemot
13/3/2020 - 17:47:33.918Unknown2200C:\malware.exeC:\Users\Behemot
13/3/2020 - 17:47:33.918Open2200C:\malware.exeC:\Users\Behemot\Searches\desktop.ini
13/3/2020 - 17:47:33.918Read2200C:\malware.exeC:\Users\Behemot\Searches\desktop.ini
13/3/2020 - 17:47:33.918Open2200C:\malware.exeC:\
13/3/2020 - 17:47:33.918Unknown2200C:\malware.exeC:\
13/3/2020 - 17:47:33.918Open2200C:\malware.exeC:\Users
13/3/2020 - 17:47:33.918Unknown2200C:\malware.exeC:\Users
13/3/2020 - 17:47:33.918Open2200C:\malware.exeC:\Users\Behemot
13/3/2020 - 17:47:33.918Unknown2200C:\malware.exeC:\Users\Behemot
13/3/2020 - 17:47:33.918Open2200C:\malware.exeC:\Users\Behemot\Videos\desktop.ini
13/3/2020 - 17:47:33.918Read2200C:\malware.exeC:\Users\Behemot\Videos\desktop.ini
13/3/2020 - 17:47:33.918Open2200C:\malware.exeC:\
13/3/2020 - 17:47:33.918Unknown2200C:\malware.exeC:\
13/3/2020 - 17:47:33.918Open2200C:\malware.exeC:\Users
13/3/2020 - 17:47:33.918Unknown2200C:\malware.exeC:\Users
13/3/2020 - 17:47:33.918Open2200C:\malware.exeC:\Users\Behemot
13/3/2020 - 17:47:33.918Unknown2200C:\malware.exeC:\Users\Behemot
13/3/2020 - 17:47:33.918Open2200C:\malware.exeC:\Users\Behemot\Pictures\desktop.ini
13/3/2020 - 17:47:33.918Read2200C:\malware.exeC:\Users\Behemot\Pictures\desktop.ini
13/3/2020 - 17:47:33.918Open2200C:\malware.exeC:\
13/3/2020 - 17:47:33.918Unknown2200C:\malware.exeC:\
13/3/2020 - 17:47:33.918Open2200C:\malware.exeC:\Users
13/3/2020 - 17:47:33.918Unknown2200C:\malware.exeC:\Users
13/3/2020 - 17:47:33.918Open2200C:\malware.exeC:\Users\Behemot
13/3/2020 - 17:47:33.918Unknown2200C:\malware.exeC:\Users\Behemot
13/3/2020 - 17:47:33.918Open2200C:\malware.exeC:\
13/3/2020 - 17:47:33.918Unknown2200C:\malware.exeC:\
13/3/2020 - 17:47:33.918Open2200C:\malware.exeC:\Users
13/3/2020 - 17:47:33.918Unknown2200C:\malware.exeC:\Users
13/3/2020 - 17:47:33.918Open2200C:\malware.exeC:\Users\Behemot
13/3/2020 - 17:47:33.918Unknown2200C:\malware.exeC:\Users\Behemot
13/3/2020 - 17:47:33.918Open2200C:\malware.exeC:\Users\Behemot\Contacts\desktop.ini
13/3/2020 - 17:47:33.918Read2200C:\malware.exeC:\Users\Behemot\Contacts\desktop.ini
13/3/2020 - 17:47:33.918Open2200C:\malware.exeC:\
13/3/2020 - 17:47:33.918Unknown2200C:\malware.exeC:\
13/3/2020 - 17:47:33.918Open2200C:\malware.exeC:\Users
13/3/2020 - 17:47:33.918Unknown2200C:\malware.exeC:\Users
13/3/2020 - 17:47:33.918Open2200C:\malware.exeC:\Users\Behemot
13/3/2020 - 17:47:33.918Unknown2200C:\malware.exeC:\Users\Behemot
13/3/2020 - 17:47:33.918Open2200C:\malware.exeC:\Users\Behemot\Favorites\desktop.ini
13/3/2020 - 17:47:33.918Read2200C:\malware.exeC:\Users\Behemot\Favorites\desktop.ini
13/3/2020 - 17:47:33.918Open2200C:\malware.exeC:\
13/3/2020 - 17:47:33.918Unknown2200C:\malware.exeC:\
13/3/2020 - 17:47:33.918Open2200C:\malware.exeC:\Users
13/3/2020 - 17:47:33.918Unknown2200C:\malware.exeC:\Users
13/3/2020 - 17:47:33.918Open2200C:\malware.exeC:\Users\Behemot
13/3/2020 - 17:47:33.918Unknown2200C:\malware.exeC:\Users\Behemot
13/3/2020 - 17:47:33.918Open2200C:\malware.exeC:\Users\Behemot\Music\desktop.ini
13/3/2020 - 17:47:33.918Read2200C:\malware.exeC:\Users\Behemot\Music\desktop.ini
13/3/2020 - 17:47:33.918Open2200C:\malware.exeC:\
13/3/2020 - 17:47:33.918Unknown2200C:\malware.exeC:\
13/3/2020 - 17:47:33.918Open2200C:\malware.exeC:\Users
13/3/2020 - 17:47:33.918Unknown2200C:\malware.exeC:\Users
13/3/2020 - 17:47:33.918Open2200C:\malware.exeC:\Users\Behemot
13/3/2020 - 17:47:33.918Unknown2200C:\malware.exeC:\Users\Behemot
13/3/2020 - 17:47:33.918Open2200C:\malware.exeC:\Users\Behemot\Downloads\desktop.ini
13/3/2020 - 17:47:33.918Read2200C:\malware.exeC:\Users\Behemot\Downloads\desktop.ini
13/3/2020 - 17:47:33.981Open2200C:\malware.exeC:\
13/3/2020 - 17:47:33.981Unknown2200C:\malware.exeC:\
13/3/2020 - 17:47:33.981Open2200C:\malware.exeC:\Users
13/3/2020 - 17:47:33.981Unknown2200C:\malware.exeC:\Users
13/3/2020 - 17:47:33.981Open2200C:\malware.exeC:\Users\Behemot
13/3/2020 - 17:47:33.981Unknown2200C:\malware.exeC:\Users\Behemot
13/3/2020 - 17:47:33.981Open2200C:\malware.exeC:\Users\Behemot\Documents\desktop.ini
13/3/2020 - 17:47:33.981Read2200C:\malware.exeC:\Users\Behemot\Documents\desktop.ini
13/3/2020 - 17:47:33.981Open2200C:\malware.exeC:\
13/3/2020 - 17:47:33.981Unknown2200C:\malware.exeC:\
13/3/2020 - 17:47:33.981Open2200C:\malware.exeC:\Users
13/3/2020 - 17:47:33.981Unknown2200C:\malware.exeC:\Users
13/3/2020 - 17:47:33.981Open2200C:\malware.exeC:\Users\Behemot
13/3/2020 - 17:47:33.981Unknown2200C:\malware.exeC:\Users\Behemot
13/3/2020 - 17:47:33.981Open2200C:\malware.exeC:\Users\Behemot\Links\desktop.ini
13/3/2020 - 17:47:33.981Read2200C:\malware.exeC:\Users\Behemot\Links\desktop.ini
13/3/2020 - 17:47:33.981Open2200C:\malware.exeC:\
13/3/2020 - 17:47:33.981Unknown2200C:\malware.exeC:\
13/3/2020 - 17:47:33.981Open2200C:\malware.exeC:\Users
13/3/2020 - 17:47:33.981Unknown2200C:\malware.exeC:\Users
13/3/2020 - 17:47:33.981Open2200C:\malware.exeC:\Users\Behemot
13/3/2020 - 17:47:33.981Unknown2200C:\malware.exeC:\Users\Behemot
13/3/2020 - 17:47:33.981Open2200C:\malware.exeC:\Users\Behemot\Saved Games\desktop.ini
13/3/2020 - 17:47:33.981Read2200C:\malware.exeC:\Users\Behemot\Saved Games\desktop.ini
13/3/2020 - 17:47:33.981Open2200C:\malware.exeC:\apphelp.dll
13/3/2020 - 17:47:33.981Open2200C:\malware.exeC:\Windows\SysWOW64\apphelp.dll
13/3/2020 - 17:47:33.981Open2200C:\malware.exeC:\Windows\SysWOW64\apphelp.dll
13/3/2020 - 17:47:33.981Open2200C:\malware.exeC:\Windows\SysWOW64\shdocvw.dll
13/3/2020 - 17:47:33.981Open2200C:\malware.exeC:\Windows\AppPatch\sysmain.sdb
13/3/2020 - 17:47:33.981Open2200C:\malware.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:33.981Unknown2200C:\malware.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:33.981Open2200C:\malware.exeC:\Windows\SysWOW64\shdocvw.dll
13/3/2020 - 17:47:33.981Open2200C:\malware.exeC:\
13/3/2020 - 17:47:33.981Unknown2200C:\malware.exeC:\
13/3/2020 - 17:47:33.981Open2200C:\malware.exeC:\Windows
13/3/2020 - 17:47:33.981Unknown2200C:\malware.exeC:\Windows
13/3/2020 - 17:47:33.981Open2200C:\malware.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:33.981Unknown2200C:\malware.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:33.981Open2200C:\malware.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:33.981Unknown2200C:\malware.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:33.981Open2200C:\malware.exeC:\Windows\SysWOW64\shdocvw.dll
13/3/2020 - 17:47:33.981Open2200C:\malware.exeC:\Windows\SysWOW64\shdocvw.dll
13/3/2020 - 17:47:33.981Open2200C:\malware.exeC:\Windows\SysWOW64\shdocvw.dll
13/3/2020 - 17:47:33.981Open2200C:\malware.exeC:\Windows\SysWOW64\shdocvw.dll
13/3/2020 - 17:47:33.981Open2200C:\malware.exeC:\Windows\SysWOW64\shdocvw.dll
13/3/2020 - 17:47:33.981Open2200C:\malware.exeC:\Windows\SysWOW64\shdocvw.dll
13/3/2020 - 17:47:33.981Read2200C:\malware.exeC:\Windows\SysWOW64\shdocvw.dll
13/3/2020 - 17:47:33.997Open2200C:\malware.exeC:\Windows\SysWOW64\shdocvw.dll
13/3/2020 - 17:47:33.997Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:33.997Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:33.997Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XX--XX--XX.txt
13/3/2020 - 17:47:33.997Read2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XX--XX--XX.txtXX--XX--XX.txt
13/3/2020 - 17:47:33.997Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XX--XX--XX.txt
13/3/2020 - 17:47:33.997Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles\XX--XX--XX.txt
13/3/2020 - 17:47:33.997Write2200C:\malware.exeC:\Monitor\Files\DeletedFiles\XX--XX--XX.txtXX--XX--XX.txt
13/3/2020 - 17:47:33.997Write2200C:\malware.exeC:\Monitor\Files\DeletedFiles\XX--XX--XX.txtXX--XX--XX.txt
13/3/2020 - 17:47:33.997Write2200C:\malware.exeC:\Monitor\Files\DeletedFiles\XX--XX--XX.txtXX--XX--XX.txt
13/3/2020 - 17:47:33.997Write2200C:\malware.exeC:\Monitor\Files\DeletedFiles\XX--XX--XX.txtXX--XX--XX.txt
13/3/2020 - 17:47:33.997Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XX--XX--XX.txtXX--XX--XX.txt
13/3/2020 - 17:47:33.997Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XX--XX--XX.txtXX--XX--XX.txt
13/3/2020 - 17:47:33.997Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XX--XX--XX.txtXX--XX--XX.txt
13/3/2020 - 17:47:33.997Open2200C:\malware.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:33.997Unknown2200C:\malware.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:33.997Unknown2200C:\malware.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:33.997Open2200C:\malware.exeC:\Windows\SysWOW64\install
13/3/2020 - 17:47:33.997Unknown2200C:\malware.exeC:\Windows\SysWOW64\install
13/3/2020 - 17:47:33.997Unknown2200C:\malware.exeC:\Windows\SysWOW64\install
13/3/2020 - 17:47:33.997Unknown2200C:\malware.exeC:\Windows\SysWOW64\install
13/3/2020 - 17:47:33.997Unknown2200C:\malware.exeC:\Windows\SysWOW64\install
13/3/2020 - 17:47:33.997Open2200C:\malware.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:33.997Unknown2200C:\malware.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:33.997Open2200C:\malware.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:33.997Unknown2200C:\malware.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:33.997Unknown2200C:\malware.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:33.997Open2200C:\malware.exeC:\Windows\SysWOW64\install
13/3/2020 - 17:47:33.997Unknown2200C:\malware.exeC:\Windows\SysWOW64\install
13/3/2020 - 17:47:33.997Open2200C:\malware.exeC:\Windows\SysWOW64\install
13/3/2020 - 17:47:33.997Unknown2200C:\malware.exeC:\Windows\SysWOW64\install
13/3/2020 - 17:47:33.997Unknown2200C:\malware.exeC:\Windows\SysWOW64\install
13/3/2020 - 17:47:34.200Open2200C:\malware.exeC:\Users\Behemot\AppData\Roaming
13/3/2020 - 17:47:34.200Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Roaming
13/3/2020 - 17:47:34.200Open2200C:\malware.exeC:\Users\Behemot\AppData\Roaming\logs.dat
13/3/2020 - 17:47:34.200Write2200C:\malware.exeC:\Users\Behemot\AppData\Roaming\logs.dat
13/3/2020 - 17:47:34.200Open2200C:\malware.exeC:\Users\Behemot\AppData\Roaming
13/3/2020 - 17:47:34.200Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Roaming
13/3/2020 - 17:47:34.200Open2200C:\malware.exeC:\Users\Behemot\AppData\Roaming\logs.dat
13/3/2020 - 17:47:34.200Read2200C:\malware.exeC:\Users\Behemot\AppData\Roaming\logs.dat
13/3/2020 - 17:47:34.200Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Roaming\logs.dat
13/3/2020 - 17:47:34.200Open2200C:\malware.exeC:\Users\Behemot\AppData\Roaming\logs.dat
13/3/2020 - 17:47:34.200Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Roaming\logs.dat
13/3/2020 - 17:47:34.200Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Roaming\logs.dat
13/3/2020 - 17:47:34.200Open2200C:\malware.exeC:\Users\Behemot\AppData\Roaming\logs.dat
13/3/2020 - 17:47:34.200Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Roaming\logs.dat
13/3/2020 - 17:47:34.200Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Roaming\logs.dat
13/3/2020 - 17:47:34.200Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Roaming\logs.dat
13/3/2020 - 17:47:34.200Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Roaming\logs.dat
13/3/2020 - 17:47:34.200Open2200C:\malware.exeC:\Users\Behemot\AppData\Roaming\logs.dat
13/3/2020 - 17:47:34.200Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Roaming\logs.dat
13/3/2020 - 17:47:34.200Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Roaming\logs.dat
13/3/2020 - 17:47:34.340Open2200C:\malware.exeC:\Windows\SysWOW64\install
13/3/2020 - 17:47:34.340Unknown2200C:\malware.exeC:\Windows\SysWOW64\install
13/3/2020 - 17:47:34.387Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:34.387Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:34.387Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:34.387Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:34.434Open2200C:\malware.exeC:\Monitor
13/3/2020 - 17:47:34.434Unknown2200C:\malware.exeC:\Monitor
13/3/2020 - 17:47:34.434Open2200C:\malware.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:34.434Unknown2200C:\malware.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:34.481Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:34.481Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:34.481Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\UuU.uUu
13/3/2020 - 17:47:34.481Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\UuU.uUu
13/3/2020 - 17:47:34.481Open2200C:\malware.exeC:\Users\Behemot\AppData\Roaming
13/3/2020 - 17:47:34.481Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Roaming
13/3/2020 - 17:47:34.481Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:34.481Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:34.481Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\UuU.uUu
13/3/2020 - 17:47:34.481Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\UuU.uUu
13/3/2020 - 17:47:34.481Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\UuU.uUu
13/3/2020 - 17:47:34.481Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\UuU.uUu
13/3/2020 - 17:47:34.481Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\UuU.uUu
13/3/2020 - 17:47:34.481Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\UuU.uUu
13/3/2020 - 17:47:34.481Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:34.481Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\UuU.uUu
13/3/2020 - 17:47:34.481Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\UuU.uUu
13/3/2020 - 17:47:34.481Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:34.481Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:34.481Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\UuU.uUu
13/3/2020 - 17:47:34.481Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\UuU.uUu
13/3/2020 - 17:47:34.809Open2200C:\malware.exeC:\Windows\SysWOW64\twext.dll
13/3/2020 - 17:47:34.809Open2200C:\malware.exeC:\Windows\AppPatch\sysmain.sdb
13/3/2020 - 17:47:34.809Open2200C:\malware.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:34.809Unknown2200C:\malware.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:34.809Open2200C:\malware.exeC:\Windows\SysWOW64\twext.dll
13/3/2020 - 17:47:34.809Open2200C:\malware.exeC:\
13/3/2020 - 17:47:34.809Unknown2200C:\malware.exeC:\
13/3/2020 - 17:47:34.809Open2200C:\malware.exeC:\Windows
13/3/2020 - 17:47:34.809Unknown2200C:\malware.exeC:\Windows
13/3/2020 - 17:47:34.809Open2200C:\malware.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:34.809Unknown2200C:\malware.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:34.809Open2200C:\malware.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:34.809Unknown2200C:\malware.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:34.809Open2200C:\malware.exeC:\Windows\SysWOW64\twext.dll
13/3/2020 - 17:47:34.809Open2200C:\malware.exeC:\Windows\SysWOW64\twext.dll
13/3/2020 - 17:47:34.997Open2200C:\malware.exeC:\Windows\SysWOW64\twext.dll
13/3/2020 - 17:47:34.997Open2200C:\malware.exeC:\Windows\SysWOW64\twext.dll
13/3/2020 - 17:47:34.997Open2200C:\malware.exeC:\Windows\SysWOW64\twext.dll
13/3/2020 - 17:47:34.997Open2200C:\malware.exeC:\Windows\SysWOW64\twext.dll
13/3/2020 - 17:47:34.997Read2200C:\malware.exeC:\Windows\SysWOW64\twext.dll
13/3/2020 - 17:47:34.997Read2200C:\malware.exeC:\Windows\SysWOW64\twext.dll
13/3/2020 - 17:47:35.90Open2200C:\malware.exeC:\Windows\SysWOW64\twext.dll
13/3/2020 - 17:47:35.90Open2200C:\malware.exeC:\Windows\SysWOW64\twext.dll
13/3/2020 - 17:47:35.90Open2200C:\malware.exeC:\Windows\SysWOW64\twext.dll
13/3/2020 - 17:47:35.231Open2200C:\malware.exeC:\Windows\SysWOW64\twext.dll
13/3/2020 - 17:47:35.309Open2200C:\malware.exeC:\malware.exe.Local
13/3/2020 - 17:47:35.309Open2200C:\malware.exeC:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d
13/3/2020 - 17:47:35.309Unknown2200C:\malware.exeC:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d
13/3/2020 - 17:47:35.309Open2200C:\malware.exeC:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d
13/3/2020 - 17:47:35.356Open2200C:\malware.exeC:\Windows\SysWOW64\propsys.dll
13/3/2020 - 17:47:35.356Open2200C:\malware.exeC:\Windows\SysWOW64\propsys.dll
13/3/2020 - 17:47:35.356Open2200C:\malware.exeC:\Windows\System32\propsys.dll
13/3/2020 - 17:47:35.356Open2200C:\malware.exeC:\Windows\SysWOW64\propsys.dll
13/3/2020 - 17:47:35.356Open2200C:\malware.exeC:\Windows\SysWOW64\propsys.dll
13/3/2020 - 17:47:35.356Open2200C:\malware.exeC:\Windows\System32\propsys.dll
13/3/2020 - 17:47:35.965Open2200C:\malware.exeC:\CRYPTSP.dll
13/3/2020 - 17:47:35.965Open2200C:\malware.exeC:\Windows\SysWOW64\cryptsp.dll
13/3/2020 - 17:47:35.965Open2200C:\malware.exeC:\Windows\SysWOW64\cryptsp.dll
13/3/2020 - 17:47:35.965Open2200C:\malware.exeC:\Windows\SysWOW64\rsaenh.dll
13/3/2020 - 17:47:35.965Open2200C:\malware.exeC:\Windows\SysWOW64\rsaenh.dll
13/3/2020 - 17:47:35.965Open2200C:\malware.exeC:\Windows\SysWOW64\rsaenh.dll
13/3/2020 - 17:47:35.965Open2200C:\malware.exeC:\Windows\SysWOW64\rsaenh.dll
13/3/2020 - 17:47:35.965Open2200C:\malware.exeC:\Windows\SysWOW64\rsaenh.dll
13/3/2020 - 17:47:35.965Open2200C:\malware.exeC:\Windows\SysWOW64\rsaenh.dll
13/3/2020 - 17:47:35.965Open2200C:\malware.exeC:\Windows\SysWOW64\rsaenh.dll
13/3/2020 - 17:47:35.965Open2200C:\malware.exeC:\Windows\SysWOW64\rsaenh.dll
13/3/2020 - 17:47:35.965Open2200C:\malware.exeC:\Windows\SysWOW64\rsaenh.dll
13/3/2020 - 17:47:35.965Open2200C:\malware.exeC:\Windows\SysWOW64\rsaenh.dll
13/3/2020 - 17:47:35.965Open2200C:\malware.exeC:\Windows\SysWOW64\rsaenh.dll
13/3/2020 - 17:47:35.965Open2200C:\malware.exeC:\Windows\SysWOW64\rsaenh.dll
13/3/2020 - 17:47:35.965Open2200C:\malware.exeC:\RpcRtRemote.dll
13/3/2020 - 17:47:35.965Open2200C:\malware.exeC:\Windows\SysWOW64\RpcRtRemote.dll
13/3/2020 - 17:47:35.965Unknown2200C:\malware.exeC:\Windows\SysWOW64\RpcRtRemote.dllRpcRtRemote.dll
13/3/2020 - 17:47:35.965Open2200C:\malware.exeC:\Windows\SysWOW64\RpcRtRemote.dll
13/3/2020 - 17:47:35.965Unknown2200C:\malware.exeC:\Windows\SysWOW64\RpcRtRemote.dllRpcRtRemote.dll
13/3/2020 - 17:47:36.12Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\install
13/3/2020 - 17:47:36.12Unknown2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\install
13/3/2020 - 17:47:36.12Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\install
13/3/2020 - 17:47:36.12Unknown2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\install
13/3/2020 - 17:47:36.12Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\install
13/3/2020 - 17:47:36.12Unknown2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\install
13/3/2020 - 17:47:36.856Open2200C:\malware.exeC:\Windows\SysWOW64\shell32.dll
13/3/2020 - 17:47:36.856Open2200C:\malware.exeC:\Windows\SysWOW64\shell32.dll
13/3/2020 - 17:47:36.856Open2200C:\malware.exeC:\Users\Behemot\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
13/3/2020 - 17:47:36.856Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
13/3/2020 - 17:47:36.856Open2200C:\malware.exeC:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
13/3/2020 - 17:47:36.856Unknown2200C:\malware.exeC:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
13/3/2020 - 17:47:36.903Open2200C:\malware.exeC:\Users\Behemot\AppData\Roaming\Microsoft\Windows\Start Menu
13/3/2020 - 17:47:36.903Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Roaming\Microsoft\Windows\Start Menu
13/3/2020 - 17:47:36.903Open2200C:\malware.exeC:\
13/3/2020 - 17:47:36.903Unknown2200C:\malware.exeC:\
13/3/2020 - 17:47:36.903Open2200C:\malware.exeC:\Users
13/3/2020 - 17:47:36.903Unknown2200C:\malware.exeC:\Users
13/3/2020 - 17:47:36.903Open2200C:\malware.exeC:\Users\Behemot
13/3/2020 - 17:47:36.903Unknown2200C:\malware.exeC:\Users\Behemot
13/3/2020 - 17:47:36.903Open2200C:\malware.exeC:\Users\Behemot\AppData
13/3/2020 - 17:47:36.903Unknown2200C:\malware.exeC:\Users\Behemot\AppData
13/3/2020 - 17:47:36.903Open2200C:\malware.exeC:\Users\Behemot\AppData\Roaming
13/3/2020 - 17:47:36.903Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Roaming
13/3/2020 - 17:47:36.903Open2200C:\malware.exeC:\Users\Behemot\AppData\Roaming\Microsoft\desktop.ini
13/3/2020 - 17:47:36.903Open2200C:\malware.exeC:\Users\Behemot\AppData\Roaming\Microsoft
13/3/2020 - 17:47:36.903Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Roaming\Microsoft
13/3/2020 - 17:47:36.903Open2200C:\malware.exeC:\Users\Behemot\AppData\Roaming\Microsoft\Windows
13/3/2020 - 17:47:36.903Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Roaming\Microsoft\Windows
13/3/2020 - 17:47:36.903Open2200C:\malware.exeC:\Users\Behemot\AppData\Roaming\Microsoft\Windows\Start Menu\desktop.ini
13/3/2020 - 17:47:36.903Read2200C:\malware.exeC:\Users\Behemot\AppData\Roaming\Microsoft\Windows\Start Menu\desktop.ini
13/3/2020 - 17:47:36.903Open2200C:\malware.exeC:\Users\Behemot\AppData\Roaming\Microsoft\Windows\Start Menu\Programs
13/3/2020 - 17:47:36.903Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Roaming\Microsoft\Windows\Start Menu\Programs
13/3/2020 - 17:47:36.903Open2200C:\malware.exeC:\
13/3/2020 - 17:47:36.903Unknown2200C:\malware.exeC:\
13/3/2020 - 17:47:36.903Open2200C:\malware.exeC:\Users
13/3/2020 - 17:47:36.903Unknown2200C:\malware.exeC:\Users
13/3/2020 - 17:47:36.903Open2200C:\malware.exeC:\Users\Behemot
13/3/2020 - 17:47:36.903Unknown2200C:\malware.exeC:\Users\Behemot
13/3/2020 - 17:47:36.903Open2200C:\malware.exeC:\Users\Behemot\AppData
13/3/2020 - 17:47:36.903Unknown2200C:\malware.exeC:\Users\Behemot\AppData
13/3/2020 - 17:47:36.903Open2200C:\malware.exeC:\Users\Behemot\AppData\Roaming
13/3/2020 - 17:47:36.903Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Roaming
13/3/2020 - 17:47:36.903Open2200C:\malware.exeC:\Users\Behemot\AppData\Roaming\Microsoft
13/3/2020 - 17:47:36.903Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Roaming\Microsoft
13/3/2020 - 17:47:36.903Open2200C:\malware.exeC:\Users\Behemot\AppData\Roaming\Microsoft\Windows
13/3/2020 - 17:47:36.903Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Roaming\Microsoft\Windows
13/3/2020 - 17:47:36.903Open2200C:\malware.exeC:\Users\Behemot\AppData\Roaming\Microsoft\Windows\Start Menu
13/3/2020 - 17:47:36.903Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Roaming\Microsoft\Windows\Start Menu
13/3/2020 - 17:47:36.903Open2200C:\malware.exeC:\Users\Behemot\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\desktop.ini
13/3/2020 - 17:47:36.903Read2200C:\malware.exeC:\Users\Behemot\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\desktop.ini
13/3/2020 - 17:47:36.903Open2200C:\malware.exeC:\ProgramData\Microsoft\Windows\Start Menu
13/3/2020 - 17:47:36.903Unknown2200C:\malware.exeC:\ProgramData\Microsoft\Windows\Start Menu
13/3/2020 - 17:47:36.934Open2200C:\malware.exeC:\
13/3/2020 - 17:47:36.934Unknown2200C:\malware.exeC:\
13/3/2020 - 17:47:36.934Open2200C:\malware.exeC:\ProgramData
13/3/2020 - 17:47:36.934Unknown2200C:\malware.exeC:\ProgramData
13/3/2020 - 17:47:36.934Open2200C:\malware.exeC:\ProgramData\Microsoft\desktop.ini
13/3/2020 - 17:47:36.934Open2200C:\malware.exeC:\ProgramData\Microsoft
13/3/2020 - 17:47:36.934Unknown2200C:\malware.exeC:\ProgramData\Microsoft
13/3/2020 - 17:47:36.934Open2200C:\malware.exeC:\ProgramData\Microsoft\Windows
13/3/2020 - 17:47:36.934Unknown2200C:\malware.exeC:\ProgramData\Microsoft\Windows
13/3/2020 - 17:47:36.934Open2200C:\malware.exeC:\ProgramData\Microsoft\Windows\Start Menu\desktop.ini
13/3/2020 - 17:47:36.934Read2200C:\malware.exeC:\ProgramData\Microsoft\Windows\Start Menu\desktop.ini
13/3/2020 - 17:47:37.12Open2200C:\malware.exeC:\ProgramData\Microsoft\Windows\Start Menu\Programs
13/3/2020 - 17:47:37.12Unknown2200C:\malware.exeC:\ProgramData\Microsoft\Windows\Start Menu\Programs
13/3/2020 - 17:47:37.12Open2200C:\malware.exeC:\
13/3/2020 - 17:47:37.12Unknown2200C:\malware.exeC:\
13/3/2020 - 17:47:37.12Open2200C:\malware.exeC:\ProgramData
13/3/2020 - 17:47:37.12Unknown2200C:\malware.exeC:\ProgramData
13/3/2020 - 17:47:37.12Open2200C:\malware.exeC:\ProgramData\Microsoft
13/3/2020 - 17:47:37.12Unknown2200C:\malware.exeC:\ProgramData\Microsoft
13/3/2020 - 17:47:37.12Open2200C:\malware.exeC:\ProgramData\Microsoft\Windows
13/3/2020 - 17:47:37.12Unknown2200C:\malware.exeC:\ProgramData\Microsoft\Windows
13/3/2020 - 17:47:37.12Open2200C:\malware.exeC:\ProgramData\Microsoft\Windows\Start Menu
13/3/2020 - 17:47:37.12Unknown2200C:\malware.exeC:\ProgramData\Microsoft\Windows\Start Menu
13/3/2020 - 17:47:37.12Open2200C:\malware.exeC:\ProgramData\Microsoft\Windows\Start Menu\Programs\desktop.ini
13/3/2020 - 17:47:37.12Read2200C:\malware.exeC:\ProgramData\Microsoft\Windows\Start Menu\Programs\desktop.ini
13/3/2020 - 17:47:37.12Open2200C:\malware.exeC:\Users\Behemot\Desktop
13/3/2020 - 17:47:37.12Unknown2200C:\malware.exeC:\Users\Behemot\Desktop
13/3/2020 - 17:47:37.12Open2200C:\malware.exeC:\Users\Public\Desktop
13/3/2020 - 17:47:37.12Unknown2200C:\malware.exeC:\Users\Public\Desktop
13/3/2020 - 17:47:37.12Open2200C:\malware.exeC:\
13/3/2020 - 17:47:37.12Unknown2200C:\malware.exeC:\
13/3/2020 - 17:47:37.12Open2200C:\malware.exeC:\Users
13/3/2020 - 17:47:37.12Unknown2200C:\malware.exeC:\Users
13/3/2020 - 17:47:37.28Open2200C:\malware.exeC:\Users\Public\desktop.ini
13/3/2020 - 17:47:37.28Read2200C:\malware.exeC:\Users\Public\desktop.ini
13/3/2020 - 17:47:37.28Open2200C:\malware.exeC:\Users\Public
13/3/2020 - 17:47:37.28Unknown2200C:\malware.exeC:\Users\Public
13/3/2020 - 17:47:37.28Open2200C:\malware.exeC:\Users\Public\Desktop\desktop.ini
13/3/2020 - 17:47:37.28Read2200C:\malware.exeC:\Users\Public\Desktop\desktop.ini
13/3/2020 - 17:47:37.28Open2200C:\malware.exeC:\Windows\SysWOW64\gameux.dll
13/3/2020 - 17:47:37.28Open2200C:\malware.exeC:\Windows\AppPatch\sysmain.sdb
13/3/2020 - 17:47:37.28Open2200C:\malware.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:37.28Unknown2200C:\malware.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:37.28Open2200C:\malware.exeC:\Windows\SysWOW64\gameux.dll
13/3/2020 - 17:47:37.28Open2200C:\malware.exeC:\
13/3/2020 - 17:47:37.28Unknown2200C:\malware.exeC:\
13/3/2020 - 17:47:37.28Open2200C:\malware.exeC:\Windows
13/3/2020 - 17:47:37.28Unknown2200C:\malware.exeC:\Windows
13/3/2020 - 17:47:37.28Open2200C:\malware.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:37.28Unknown2200C:\malware.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:37.28Open2200C:\malware.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:37.28Unknown2200C:\malware.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:37.28Open2200C:\malware.exeC:\Windows\SysWOW64\gameux.dll
13/3/2020 - 17:47:37.28Open2200C:\malware.exeC:\Windows\SysWOW64\gameux.dll
13/3/2020 - 17:47:37.278Open2200C:\malware.exeC:\Windows\SysWOW64\gameux.dll
13/3/2020 - 17:47:37.278Open2200C:\malware.exeC:\Windows\SysWOW64\gameux.dll
13/3/2020 - 17:47:37.278Open2200C:\malware.exeC:\Windows\SysWOW64\gameux.dll
13/3/2020 - 17:47:37.278Open2200C:\malware.exeC:\Windows\SysWOW64\gameux.dll
13/3/2020 - 17:47:37.278Read2200C:\malware.exeC:\Windows\SysWOW64\gameux.dll
13/3/2020 - 17:47:37.278Read2200C:\malware.exeC:\Windows\SysWOW64\gameux.dll
13/3/2020 - 17:47:37.372Open2200C:\malware.exeC:\Windows\SysWOW64\gameux.dll
13/3/2020 - 17:47:37.434Open2200C:\malware.exeC:\Windows\SysWOW64\gameux.dll
13/3/2020 - 17:47:37.434Open2200C:\malware.exeC:\Windows\SysWOW64\gameux.dll
13/3/2020 - 17:47:37.434Unknown2200C:\malware.exeC:\Windows\SysWOW64\gameux.dll
13/3/2020 - 17:47:37.481Open2200C:\malware.exeC:\Windows\SysWOW64\gameux.dll
13/3/2020 - 17:47:37.590Open2200C:\malware.exeC:\malware.exe.Local
13/3/2020 - 17:47:37.590Open2200C:\malware.exeC:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d
13/3/2020 - 17:47:37.590Unknown2200C:\malware.exeC:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d
13/3/2020 - 17:47:37.590Open2200C:\malware.exeC:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d
13/3/2020 - 17:47:37.590Open2200C:\malware.exeC:\Windows\SysWOW64\xmllite.dll
13/3/2020 - 17:47:37.590Open2200C:\malware.exeC:\Windows\SysWOW64\xmllite.dll
13/3/2020 - 17:47:37.590Open2200C:\malware.exeC:\Windows\SysWOW64\wer.dll
13/3/2020 - 17:47:37.590Open2200C:\malware.exeC:\Windows\SysWOW64\wer.dll
13/3/2020 - 17:47:38.106Open2200C:\malware.exeC:\Monitor\gameux.dll
13/3/2020 - 17:47:38.106Open2200C:\malware.exeC:\Monitor\gameux.dll
13/3/2020 - 17:47:38.106Open2200C:\malware.exeC:\Monitor\gameux.dll
13/3/2020 - 17:47:38.106Open2200C:\malware.exeC:\Monitor\gameux.dll
13/3/2020 - 17:47:38.106Open2200C:\malware.exeC:\Monitor\gameux.dll
13/3/2020 - 17:47:38.106Open2200C:\malware.exeC:\Monitor\gameux.dll
13/3/2020 - 17:47:38.106Open2200C:\malware.exeC:\Monitor\gameux.dll
13/3/2020 - 17:47:38.106Open2200C:\malware.exeC:\Monitor\gameux.dll
13/3/2020 - 17:47:38.106Open2200C:\malware.exeC:\Monitor\gameux.dll
13/3/2020 - 17:47:38.106Open2200C:\malware.exeC:\Monitor\gameux.dll
13/3/2020 - 17:47:38.106Open2200C:\malware.exeC:\Monitor\gameux.dll
13/3/2020 - 17:47:38.106Open2200C:\malware.exeC:\Monitor\gameux.dll
13/3/2020 - 17:47:38.106Open2200C:\malware.exeC:\Users\Behemot\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned
13/3/2020 - 17:47:38.106Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned
13/3/2020 - 17:47:38.106Open2200C:\malware.exeC:\
13/3/2020 - 17:47:38.106Unknown2200C:\malware.exeC:\
13/3/2020 - 17:47:38.106Open2200C:\malware.exeC:\Users
13/3/2020 - 17:47:38.106Unknown2200C:\malware.exeC:\Users
13/3/2020 - 17:47:38.106Open2200C:\malware.exeC:\Users\Behemot
13/3/2020 - 17:47:38.106Unknown2200C:\malware.exeC:\Users\Behemot
13/3/2020 - 17:47:38.106Open2200C:\malware.exeC:\Users\Behemot\AppData
13/3/2020 - 17:47:38.106Unknown2200C:\malware.exeC:\Users\Behemot\AppData
13/3/2020 - 17:47:38.106Open2200C:\malware.exeC:\Users\Behemot\AppData\Roaming
13/3/2020 - 17:47:38.106Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Roaming
13/3/2020 - 17:47:38.106Open2200C:\malware.exeC:\Users\Behemot\AppData\Roaming\Microsoft
13/3/2020 - 17:47:38.106Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Roaming\Microsoft
13/3/2020 - 17:47:38.106Open2200C:\malware.exeC:\Users\Behemot\AppData\Roaming\Microsoft\Internet Explorer
13/3/2020 - 17:47:38.106Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Roaming\Microsoft\Internet Explorer
13/3/2020 - 17:47:38.106Open2200C:\malware.exeC:\Users\Behemot\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\desktop.ini
13/3/2020 - 17:47:38.106Read2200C:\malware.exeC:\Users\Behemot\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\desktop.ini
13/3/2020 - 17:47:38.106Open2200C:\malware.exeC:\Users\Behemot\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch
13/3/2020 - 17:47:38.106Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch
13/3/2020 - 17:47:38.106Open2200C:\malware.exeC:\Windows\SysWOW64\shdocvw.dll
13/3/2020 - 17:47:38.106Open2200C:\malware.exeC:\Windows\AppPatch\sysmain.sdb
13/3/2020 - 17:47:38.106Open2200C:\malware.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:38.106Unknown2200C:\malware.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:38.106Open2200C:\malware.exeC:\Windows\SysWOW64\shdocvw.dll
13/3/2020 - 17:47:38.106Open2200C:\malware.exeC:\
13/3/2020 - 17:47:38.106Unknown2200C:\malware.exeC:\
13/3/2020 - 17:47:38.106Open2200C:\malware.exeC:\Windows
13/3/2020 - 17:47:38.106Unknown2200C:\malware.exeC:\Windows
13/3/2020 - 17:47:38.106Open2200C:\malware.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:38.106Unknown2200C:\malware.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:38.106Open2200C:\malware.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:38.106Unknown2200C:\malware.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:38.106Open2200C:\malware.exeC:\Windows\SysWOW64\shdocvw.dll
13/3/2020 - 17:47:38.122Open2200C:\malware.exeC:\Windows\SysWOW64\shdocvw.dll
13/3/2020 - 17:47:38.122Open2200C:\malware.exeC:\Windows\SysWOW64\shdocvw.dll
13/3/2020 - 17:47:38.122Open2200C:\malware.exeC:\Windows\SysWOW64\shdocvw.dll
13/3/2020 - 17:47:38.122Open2200C:\malware.exeC:\Windows\SysWOW64\shdocvw.dll
13/3/2020 - 17:47:38.122Open2200C:\malware.exeC:\Windows\SysWOW64\shdocvw.dll
13/3/2020 - 17:47:38.122Read2200C:\malware.exeC:\Windows\SysWOW64\shdocvw.dll
13/3/2020 - 17:47:38.122Open2200C:\malware.exeC:\Windows\SysWOW64\shdocvw.dll
13/3/2020 - 17:47:38.137Open2200C:\malware.exeC:\Windows\SysWOW64\shdocvw.dll
13/3/2020 - 17:47:38.137Open2200C:\malware.exeC:\Windows\SysWOW64\shdocvw.dll
13/3/2020 - 17:47:38.137Unknown2200C:\malware.exeC:\Windows\SysWOW64\shdocvw.dll
13/3/2020 - 17:47:38.278Open2200C:\malware.exeC:\
13/3/2020 - 17:47:38.278Unknown2200C:\malware.exeC:\
13/3/2020 - 17:47:38.278Open2200C:\malware.exeC:\Users
13/3/2020 - 17:47:38.278Unknown2200C:\malware.exeC:\Users
13/3/2020 - 17:47:38.278Open2200C:\malware.exeC:\Users\Behemot
13/3/2020 - 17:47:38.278Unknown2200C:\malware.exeC:\Users\Behemot
13/3/2020 - 17:47:38.278Open2200C:\malware.exeC:\Users\Behemot\AppData
13/3/2020 - 17:47:38.278Unknown2200C:\malware.exeC:\Users\Behemot\AppData
13/3/2020 - 17:47:38.278Open2200C:\malware.exeC:\Users\Behemot\AppData\Roaming
13/3/2020 - 17:47:38.278Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Roaming
13/3/2020 - 17:47:38.278Open2200C:\malware.exeC:\Users\Behemot\AppData\Roaming\Microsoft
13/3/2020 - 17:47:38.278Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Roaming\Microsoft
13/3/2020 - 17:47:38.278Open2200C:\malware.exeC:\Users\Behemot\AppData\Roaming\Microsoft\Internet Explorer
13/3/2020 - 17:47:38.278Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Roaming\Microsoft\Internet Explorer
13/3/2020 - 17:47:38.278Open2200C:\malware.exeC:\Users\Behemot\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch
13/3/2020 - 17:47:38.278Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch
13/3/2020 - 17:47:38.325Open2200C:\malware.exeC:\Windows\SysWOW64\shell32.dll
13/3/2020 - 17:47:38.325Open2200C:\malware.exeC:\Windows\SysWOW64\shell32.dll
13/3/2020 - 17:47:38.325Open2200C:\malware.exeC:\
13/3/2020 - 17:47:38.325Unknown2200C:\malware.exeC:\
13/3/2020 - 17:47:38.325Open2200C:\malware.exeC:\Windows
13/3/2020 - 17:47:38.325Unknown2200C:\malware.exeC:\Windows
13/3/2020 - 17:47:38.325Open2200C:\malware.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:38.325Unknown2200C:\malware.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:38.325Open2200C:\malware.exeC:\Windows\SysWOW64\install\desktop.ini
13/3/2020 - 17:47:38.325Open2200C:\malware.exeC:\Windows\SysWOW64\install
13/3/2020 - 17:47:38.325Unknown2200C:\malware.exeC:\Windows\SysWOW64\install
13/3/2020 - 17:47:38.465Open2200C:\malware.exeC:\Windows\SysWOW64\ntshrui.dll
13/3/2020 - 17:47:38.465Open2200C:\malware.exeC:\Windows\AppPatch\sysmain.sdb
13/3/2020 - 17:47:38.465Open2200C:\malware.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:38.465Unknown2200C:\malware.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:38.465Open2200C:\malware.exeC:\Windows\SysWOW64\ntshrui.dll
13/3/2020 - 17:47:38.465Open2200C:\malware.exeC:\
13/3/2020 - 17:47:38.465Unknown2200C:\malware.exeC:\
13/3/2020 - 17:47:38.465Open2200C:\malware.exeC:\Windows
13/3/2020 - 17:47:38.465Unknown2200C:\malware.exeC:\Windows
13/3/2020 - 17:47:38.465Open2200C:\malware.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:38.465Unknown2200C:\malware.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:38.465Open2200C:\malware.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:38.465Unknown2200C:\malware.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:38.465Open2200C:\malware.exeC:\Windows\SysWOW64\ntshrui.dll
13/3/2020 - 17:47:38.465Open2200C:\malware.exeC:\Windows\SysWOW64\ntshrui.dll
13/3/2020 - 17:47:38.653Open2200C:\malware.exeC:\Windows\SysWOW64\ntshrui.dll
13/3/2020 - 17:47:38.653Open2200C:\malware.exeC:\Windows\SysWOW64\ntshrui.dll
13/3/2020 - 17:47:38.653Open2200C:\malware.exeC:\Windows\SysWOW64\ntshrui.dll
13/3/2020 - 17:47:38.653Open2200C:\malware.exeC:\Windows\SysWOW64\ntshrui.dll
13/3/2020 - 17:47:38.653Read2200C:\malware.exeC:\Windows\SysWOW64\ntshrui.dll
13/3/2020 - 17:47:38.653Read2200C:\malware.exeC:\Windows\SysWOW64\ntshrui.dll
13/3/2020 - 17:47:38.747Open2200C:\malware.exeC:\Windows\SysWOW64\ntshrui.dll
13/3/2020 - 17:47:38.747Open2200C:\malware.exeC:\Windows\SysWOW64\ntshrui.dll
13/3/2020 - 17:47:38.747Open2200C:\malware.exeC:\Windows\SysWOW64\ntshrui.dll
13/3/2020 - 17:47:38.747Unknown2200C:\malware.exeC:\Windows\SysWOW64\ntshrui.dll
13/3/2020 - 17:47:38.903Open2200C:\malware.exeC:\srvcli.dll
13/3/2020 - 17:47:38.903Open2200C:\malware.exeC:\Windows\SysWOW64\srvcli.dll
13/3/2020 - 17:47:38.903Open2200C:\malware.exeC:\Windows\SysWOW64\srvcli.dll
13/3/2020 - 17:47:38.903Open2200C:\malware.exeC:\cscapi.dll
13/3/2020 - 17:47:38.903Open2200C:\malware.exeC:\Windows\SysWOW64\cscapi.dll
13/3/2020 - 17:47:38.903Open2200C:\malware.exeC:\Windows\SysWOW64\cscapi.dll
13/3/2020 - 17:47:39.231Open2200C:\malware.exeC:\slc.dll
13/3/2020 - 17:47:39.231Open2200C:\malware.exeC:\Windows\SysWOW64\slc.dll
13/3/2020 - 17:47:39.231Open2200C:\malware.exeC:\Windows\SysWOW64\slc.dll
13/3/2020 - 17:47:39.325Open2200C:\malware.exeC:\Users
13/3/2020 - 17:47:39.325Unknown2200C:\malware.exeC:\Users
13/3/2020 - 17:47:39.325Open2200C:\malware.exeC:\Users\Behemot
13/3/2020 - 17:47:39.325Unknown2200C:\malware.exeC:\Users\Behemot
13/3/2020 - 17:47:39.325Open2200C:\malware.exeC:\Users\Public
13/3/2020 - 17:47:39.325Unknown2200C:\malware.exeC:\Users\Public
13/3/2020 - 17:47:39.325Open2200C:\malware.exeC:\Windows\SysWOW64\ntshrui.dll
13/3/2020 - 17:47:39.387Open2200C:\malware.exeC:\malware.exe.Local
13/3/2020 - 17:47:39.387Open2200C:\malware.exeC:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d
13/3/2020 - 17:47:39.387Unknown2200C:\malware.exeC:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d
13/3/2020 - 17:47:39.387Open2200C:\malware.exeC:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d
13/3/2020 - 17:47:39.387Open2200C:\malware.exeC:\
13/3/2020 - 17:47:39.387Unknown2200C:\malware.exeC:\
13/3/2020 - 17:47:39.387Open2200C:\malware.exeC:\Windows\SysWOW64\syncui.dll
13/3/2020 - 17:47:39.387Open2200C:\malware.exeC:\Windows\AppPatch\sysmain.sdb
13/3/2020 - 17:47:39.387Open2200C:\malware.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:39.387Unknown2200C:\malware.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:39.387Open2200C:\malware.exeC:\Windows\SysWOW64\syncui.dll
13/3/2020 - 17:47:39.387Open2200C:\malware.exeC:\
13/3/2020 - 17:47:39.387Unknown2200C:\malware.exeC:\
13/3/2020 - 17:47:39.387Open2200C:\malware.exeC:\Windows
13/3/2020 - 17:47:39.387Unknown2200C:\malware.exeC:\Windows
13/3/2020 - 17:47:39.387Open2200C:\malware.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:39.387Unknown2200C:\malware.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:39.387Open2200C:\malware.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:39.387Unknown2200C:\malware.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:39.387Open2200C:\malware.exeC:\Windows\SysWOW64\syncui.dll
13/3/2020 - 17:47:39.387Open2200C:\malware.exeC:\Windows\SysWOW64\syncui.dll
13/3/2020 - 17:47:39.575Open2200C:\malware.exeC:\Windows\SysWOW64\syncui.dll
13/3/2020 - 17:47:39.575Open2200C:\malware.exeC:\Windows\SysWOW64\syncui.dll
13/3/2020 - 17:47:39.575Open2200C:\malware.exeC:\Windows\SysWOW64\syncui.dll
13/3/2020 - 17:47:39.575Open2200C:\malware.exeC:\Windows\SysWOW64\syncui.dll
13/3/2020 - 17:47:39.575Read2200C:\malware.exeC:\Windows\SysWOW64\syncui.dll
13/3/2020 - 17:47:39.575Read2200C:\malware.exeC:\Windows\SysWOW64\syncui.dll
13/3/2020 - 17:47:39.668Open2200C:\malware.exeC:\Windows\SysWOW64\syncui.dll
13/3/2020 - 17:47:39.668Open2200C:\malware.exeC:\Windows\SysWOW64\syncui.dll
13/3/2020 - 17:47:39.684Open2200C:\malware.exeC:\Windows\SysWOW64\syncui.dll
13/3/2020 - 17:47:39.684Unknown2200C:\malware.exeC:\Windows\SysWOW64\syncui.dll
13/3/2020 - 17:47:39.731Open2200C:\malware.exeC:\Windows\SysWOW64\synceng.dll
13/3/2020 - 17:47:39.778Open2200C:\malware.exeC:\Windows\SysWOW64\synceng.dll
13/3/2020 - 17:47:40.12Open2200C:\malware.exeC:\Windows\SysWOW64\linkinfo.dll
13/3/2020 - 17:47:40.12Open2200C:\malware.exeC:\Windows\SysWOW64\linkinfo.dll
13/3/2020 - 17:47:40.340Open2200C:\malware.exeC:\Windows\SysWOW64\syncui.dll
13/3/2020 - 17:47:40.403Open2200C:\malware.exeC:\malware.exe.Local
13/3/2020 - 17:47:40.403Open2200C:\malware.exeC:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d
13/3/2020 - 17:47:40.403Unknown2200C:\malware.exeC:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d
13/3/2020 - 17:47:40.403Open2200C:\malware.exeC:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d
13/3/2020 - 17:47:40.403Open2200C:\malware.exeC:\Windows\SysWOW64\acppage.dll
13/3/2020 - 17:47:40.403Open2200C:\malware.exeC:\Windows\AppPatch\sysmain.sdb
13/3/2020 - 17:47:40.403Open2200C:\malware.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:40.403Unknown2200C:\malware.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:40.403Open2200C:\malware.exeC:\Windows\SysWOW64\acppage.dll
13/3/2020 - 17:47:40.403Open2200C:\malware.exeC:\
13/3/2020 - 17:47:40.403Unknown2200C:\malware.exeC:\
13/3/2020 - 17:47:40.403Open2200C:\malware.exeC:\Windows
13/3/2020 - 17:47:40.403Unknown2200C:\malware.exeC:\Windows
13/3/2020 - 17:47:40.403Open2200C:\malware.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:40.403Unknown2200C:\malware.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:40.403Open2200C:\malware.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:40.403Unknown2200C:\malware.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:40.403Open2200C:\malware.exeC:\Windows\SysWOW64\acppage.dll
13/3/2020 - 17:47:40.403Open2200C:\malware.exeC:\Windows\SysWOW64\acppage.dll
13/3/2020 - 17:47:40.543Open2200C:\malware.exeC:\Windows\SysWOW64\acppage.dll
13/3/2020 - 17:47:40.543Open2200C:\malware.exeC:\Windows\SysWOW64\acppage.dll
13/3/2020 - 17:47:40.543Open2200C:\malware.exeC:\Windows\SysWOW64\acppage.dll
13/3/2020 - 17:47:40.543Open2200C:\malware.exeC:\Windows\SysWOW64\acppage.dll
13/3/2020 - 17:47:40.543Read2200C:\malware.exeC:\Windows\SysWOW64\acppage.dll
13/3/2020 - 17:47:40.543Read2200C:\malware.exeC:\Windows\SysWOW64\acppage.dll
13/3/2020 - 17:47:40.637Open2200C:\malware.exeC:\Windows\SysWOW64\acppage.dll
13/3/2020 - 17:47:40.700Open2200C:\malware.exeC:\Windows\SysWOW64\acppage.dll
13/3/2020 - 17:47:40.700Open2200C:\malware.exeC:\Windows\SysWOW64\acppage.dll
13/3/2020 - 17:47:40.700Unknown2200C:\malware.exeC:\Windows\SysWOW64\acppage.dll
13/3/2020 - 17:47:40.747Open2200C:\malware.exeC:\Windows\SysWOW64\sfc.dll
13/3/2020 - 17:47:40.747Open2200C:\malware.exeC:\Windows\SysWOW64\sfc.dll
13/3/2020 - 17:47:40.747Open2200C:\malware.exeC:\sfc_os.DLL
13/3/2020 - 17:47:40.747Open2200C:\malware.exeC:\Windows\SysWOW64\sfc_os.dll
13/3/2020 - 17:47:40.747Open2200C:\malware.exeC:\Windows\SysWOW64\sfc_os.dll
13/3/2020 - 17:47:40.747Open2200C:\malware.exeC:\Windows\SysWOW64\msi.dll
13/3/2020 - 17:47:40.747Open2200C:\malware.exeC:\Windows\SysWOW64\msi.dll
13/3/2020 - 17:47:40.793Open2200C:\malware.exeC:\Windows\SysWOW64\acppage.dll
13/3/2020 - 17:47:40.856Open2200C:\malware.exeC:\malware.exe.Local
13/3/2020 - 17:47:40.856Open2200C:\malware.exeC:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d
13/3/2020 - 17:47:40.856Unknown2200C:\malware.exeC:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d
13/3/2020 - 17:47:40.856Open2200C:\malware.exeC:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d
13/3/2020 - 17:47:40.997Open2200C:\malware.exeC:\Windows\winsxs\FileMaps\$$_system32_install_e63fefb417d710f1.cdf-ms
13/3/2020 - 17:47:40.997Open2200C:\malware.exeC:\DEVRTL.dll
13/3/2020 - 17:47:40.997Open2200C:\malware.exeC:\Windows\SysWOW64\devrtl.dll
13/3/2020 - 17:47:40.997Open2200C:\malware.exeC:\Windows\SysWOW64\devrtl.dll
13/3/2020 - 17:47:41.43Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\install
13/3/2020 - 17:47:41.43Unknown2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\install
13/3/2020 - 17:47:41.43Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\install
13/3/2020 - 17:47:41.43Unknown2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\install
13/3/2020 - 17:47:41.43Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\install
13/3/2020 - 17:47:41.43Unknown2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\install
13/3/2020 - 17:47:41.278Open2200C:\malware.exeC:\imageres.dll
13/3/2020 - 17:47:41.278Open2200C:\malware.exeC:\Windows\SysWOW64\imageres.dll
13/3/2020 - 17:47:41.278Open2200C:\malware.exeC:\Windows\SysWOW64\imageres.dll
13/3/2020 - 17:47:41.418Open2200C:\malware.exeC:\Windows\SysWOW64\mswsock.dll
13/3/2020 - 17:47:41.418Open2200C:\malware.exeC:\Windows\SysWOW64\mswsock.dll
13/3/2020 - 17:47:41.418Open2200C:\malware.exeC:\Windows\SysWOW64\WSHTCPIP.DLL
13/3/2020 - 17:47:41.418Open2200C:\malware.exeC:\Windows\SysWOW64\WSHTCPIP.DLL
13/3/2020 - 17:47:41.418Open2200C:\malware.exeC:\Windows\SysWOW64\nlaapi.dll
13/3/2020 - 17:47:41.418Open2200C:\malware.exeC:\Windows\SysWOW64\nlaapi.dll
13/3/2020 - 17:47:41.418Open2200C:\malware.exeC:\Windows\SysWOW64\NapiNSP.dll
13/3/2020 - 17:47:41.418Open2200C:\malware.exeC:\Windows\SysWOW64\NapiNSP.dll
13/3/2020 - 17:47:41.512Open2200C:\malware.exeC:\Windows\SysWOW64\pt-BR\imageres.dll.mui
13/3/2020 - 17:47:41.512Open2200C:\malware.exeC:\Windows\System32\pt-BR\imageres.dll.mui
13/3/2020 - 17:47:41.512Open2200C:\malware.exeC:\Windows\SysWOW64\pt\imageres.dll.mui
13/3/2020 - 17:47:41.512Unknown2200C:\malware.exeC:\Windows\SysWOW64\en-US
13/3/2020 - 17:47:41.512Open2200C:\malware.exeC:\Windows\SysWOW64\en-US\imageres.dll.mui
13/3/2020 - 17:47:41.512Read2200C:\malware.exeC:\Windows\SysWOW64\en-US\imageres.dll.muiimageres.dll.mui
13/3/2020 - 17:47:41.747Open2200C:\malware.exeC:\Windows\SysWOW64\pnrpnsp.dll
13/3/2020 - 17:47:41.747Open2200C:\malware.exeC:\Windows\SysWOW64\pnrpnsp.dll
13/3/2020 - 17:47:42.200Open2200C:\malware.exeC:\DNSAPI.dll
13/3/2020 - 17:47:42.200Open2200C:\malware.exeC:\Windows\SysWOW64\dnsapi.dll
13/3/2020 - 17:47:42.200Open2200C:\malware.exeC:\Windows\SysWOW64\dnsapi.dll
13/3/2020 - 17:47:42.200Open2200C:\malware.exeC:\Windows\SysWOW64\winrnr.dll
13/3/2020 - 17:47:42.200Open2200C:\malware.exeC:\Windows\SysWOW64\winrnr.dll
13/3/2020 - 17:47:42.668Open2200C:\malware.exeC:\Windows\SysWOW64\urlmon.dll
13/3/2020 - 17:47:42.668Open2200C:\malware.exeC:\Windows\SysWOW64\urlmon.dll
13/3/2020 - 17:47:42.668Open2200C:\malware.exeC:\Secur32.dll
13/3/2020 - 17:47:42.668Open2200C:\malware.exeC:\Windows\SysWOW64\secur32.dll
13/3/2020 - 17:47:42.668Open2200C:\malware.exeC:\Windows\SysWOW64\secur32.dll
13/3/2020 - 17:47:42.668Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Microsoft\Windows\Temporary Internet Files
13/3/2020 - 17:47:42.668Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Microsoft\Windows\Temporary Internet Files
13/3/2020 - 17:47:42.668Open2200C:\malware.exeC:\Users\Behemot\AppData\Roaming\Microsoft\Windows\Cookies
13/3/2020 - 17:47:42.668Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Roaming\Microsoft\Windows\Cookies
13/3/2020 - 17:47:42.668Open2200C:\malware.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:42.668Unknown2200C:\malware.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:42.668Open2200C:\malware.exeC:\
13/3/2020 - 17:47:42.668Unknown2200C:\malware.exeC:\
13/3/2020 - 17:47:42.668Open2200C:\malware.exeC:\Windows
13/3/2020 - 17:47:42.668Unknown2200C:\malware.exeC:\Windows
13/3/2020 - 17:47:42.668Open2200C:\malware.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:42.668Unknown2200C:\malware.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:42.668Open2200C:\malware.exeC:\Windows\SysWOW64\install
13/3/2020 - 17:47:42.668Unknown2200C:\malware.exeC:\Windows\SysWOW64\install
13/3/2020 - 17:47:42.668Open2200C:\malware.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:42.668Unknown2200C:\malware.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:42.668Open2200C:\malware.exeC:\Windows\SysWOW64\install
13/3/2020 - 17:47:42.668Unknown2200C:\malware.exeC:\Windows\SysWOW64\install
13/3/2020 - 17:47:42.668Open2200C:\malware.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:42.668Unknown2200C:\malware.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:42.668Open2200C:\malware.exeC:\Windows
13/3/2020 - 17:47:42.668Unknown2200C:\malware.exeC:\Windows
13/3/2020 - 17:47:42.668Open2200C:\malware.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:42.668Open2200C:\malware.exeC:\api-ms-win-downlevel-advapi32-l2-1-0.dll
13/3/2020 - 17:47:42.668Open2200C:\malware.exeC:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
13/3/2020 - 17:47:42.668Unknown2200C:\malware.exeC:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dllapi-ms-win-downlevel-advapi32-l2-1-0.dll
13/3/2020 - 17:47:42.668Open2200C:\malware.exeC:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
13/3/2020 - 17:47:42.668Unknown2200C:\malware.exeC:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dllapi-ms-win-downlevel-advapi32-l2-1-0.dll
13/3/2020 - 17:47:42.668Unknown2200C:\malware.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:42.668Open2200C:\malware.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:42.668Unknown2200C:\malware.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:42.668Open2200C:\malware.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:42.668Unknown2200C:\malware.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:42.668Open2200C:\malware.exeC:\Windows\SysWOW64\install\explorer.exe:Zone.Identifier
13/3/2020 - 17:47:42.668Open2200C:\malware.exeC:\Monitor
13/3/2020 - 17:47:42.668Unknown2200C:\malware.exeC:\Monitor
13/3/2020 - 17:47:42.668Open2200C:\malware.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:42.668Open2200C:\malware.exeC:\Windows\AppPatch\sysmain.sdb
13/3/2020 - 17:47:42.668Open2200C:\malware.exeC:\Windows\SysWOW64\install
13/3/2020 - 17:47:42.668Unknown2200C:\malware.exeC:\Windows\SysWOW64\install
13/3/2020 - 17:47:42.668Open2200C:\malware.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:42.668Unknown2200C:\malware.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:42.668Open2200C:\malware.exeC:\
13/3/2020 - 17:47:42.668Unknown2200C:\malware.exeC:\
13/3/2020 - 17:47:42.668Open2200C:\malware.exeC:\Windows
13/3/2020 - 17:47:42.668Unknown2200C:\malware.exeC:\Windows
13/3/2020 - 17:47:42.668Open2200C:\malware.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:42.668Unknown2200C:\malware.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:42.668Open2200C:\malware.exeC:\Windows\SysWOW64\install
13/3/2020 - 17:47:42.668Unknown2200C:\malware.exeC:\Windows\SysWOW64\install
13/3/2020 - 17:47:42.668Open2200C:\malware.exeC:\Windows\SysWOW64\install
13/3/2020 - 17:47:42.668Unknown2200C:\malware.exeC:\Windows\SysWOW64\install
13/3/2020 - 17:47:42.668Open2200C:\malware.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:42.668Read2200C:\malware.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:42.684Open2200C:\malware.exeC:\Windows\SysWOW64\install\ui\SwDRM.dll
13/3/2020 - 17:47:42.762Open2200C:\malware.exeC:\rasadhlp.dll
13/3/2020 - 17:47:42.762Open2200C:\malware.exeC:\Windows\SysWOW64\rasadhlp.dll
13/3/2020 - 17:47:42.762Open2200C:\malware.exeC:\Windows\SysWOW64\rasadhlp.dll
13/3/2020 - 17:47:42.762Open2200C:\malware.exeC:\Users\Behemot\AppData\Roaming
13/3/2020 - 17:47:42.762Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Roaming
13/3/2020 - 17:47:42.762Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:42.762Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:42.762Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\UuU.uUu
13/3/2020 - 17:47:42.762Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\UuU.uUu
13/3/2020 - 17:47:42.762Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\UuU.uUu
13/3/2020 - 17:47:42.762Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\UuU.uUu
13/3/2020 - 17:47:42.762Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\UuU.uUu
13/3/2020 - 17:47:42.762Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\UuU.uUu
13/3/2020 - 17:47:42.762Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:42.762Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\UuU.uUu
13/3/2020 - 17:47:42.762Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\UuU.uUu
13/3/2020 - 17:47:42.762Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\UuU.uUu
13/3/2020 - 17:47:42.762Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:42.762Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:42.762Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\UuU.uUu
13/3/2020 - 17:47:42.762Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\UuU.uUu
13/3/2020 - 17:47:42.809Open3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\Prefetch\EXPLORER.EXE-59C57160.pf
13/3/2020 - 17:47:42.809Open3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows
13/3/2020 - 17:47:42.809Open3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\System32\wow64.dll
13/3/2020 - 17:47:42.809Open3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\System32\wow64.dll
13/3/2020 - 17:47:42.809Open3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\System32\wow64win.dll
13/3/2020 - 17:47:42.809Open3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\System32\wow64win.dll
13/3/2020 - 17:47:42.809Open3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\System32\wow64cpu.dll
13/3/2020 - 17:47:42.809Open3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\System32\wow64cpu.dll
13/3/2020 - 17:47:42.809Open3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\System32\wow64log.dll
13/3/2020 - 17:47:42.809Open3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows
13/3/2020 - 17:47:42.809Unknown3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows
13/3/2020 - 17:47:42.809Open3004C:\Windows\SysWOW64\install\explorer.exeC:\Monitor
13/3/2020 - 17:47:42.809Open3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\install\WSOCK32.dll
13/3/2020 - 17:47:42.809Open3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\wsock32.dll
13/3/2020 - 17:47:42.809Open3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\wsock32.dll
13/3/2020 - 17:47:42.809Open3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\sechost.dll
13/3/2020 - 17:47:42.809Open3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\sechost.dll
13/3/2020 - 17:47:42.809Open3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\install\VERSION.dll
13/3/2020 - 17:47:42.809Open3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\version.dll
13/3/2020 - 17:47:42.809Open3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\version.dll
13/3/2020 - 17:47:42.809Open3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\install\WINMM.dll
13/3/2020 - 17:47:42.809Open3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\winmm.dll
13/3/2020 - 17:47:42.809Open3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\winmm.dll
13/3/2020 - 17:47:42.809Open3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\install\explorer.exe.Local
13/3/2020 - 17:47:42.809Open3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d
13/3/2020 - 17:47:42.809Unknown3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d
13/3/2020 - 17:47:42.809Open3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d
13/3/2020 - 17:47:42.809Open3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d\comctl32.dll
13/3/2020 - 17:47:42.825Unknown3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d\comctl32.dll
13/3/2020 - 17:47:42.825Open3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d\comctl32.dll
13/3/2020 - 17:47:42.825Unknown3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d\comctl32.dll
13/3/2020 - 17:47:42.825Open3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\install\MPR.dll
13/3/2020 - 17:47:42.825Open3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\mpr.dll
13/3/2020 - 17:47:42.825Open3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\mpr.dll
13/3/2020 - 17:47:42.825Open3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\imm32.dll
13/3/2020 - 17:47:42.825Open3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\imm32.dll
13/3/2020 - 17:47:42.825Open3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\imm32.dll
13/3/2020 - 17:47:42.825Open3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\imm32.dll
13/3/2020 - 17:47:42.825Open3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\imm32.dll
13/3/2020 - 17:47:42.825Open3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\imm32.dll
13/3/2020 - 17:47:42.825Unknown2200C:\malware.exeC:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d
13/3/2020 - 17:47:42.825Unknown2200C:\malware.exeC:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d
13/3/2020 - 17:47:42.825Unknown2200C:\malware.exeC:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d
13/3/2020 - 17:47:42.825Open2200C:\malware.exeC:\netutils.dll
13/3/2020 - 17:47:42.825Open2200C:\malware.exeC:\Windows\SysWOW64\netutils.dll
13/3/2020 - 17:47:42.825Open2200C:\malware.exeC:\Windows\SysWOW64\netutils.dll
13/3/2020 - 17:47:42.825Unknown2200C:\malware.exeC:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d
13/3/2020 - 17:47:42.825Unknown2200C:\malware.exeC:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d
13/3/2020 - 17:47:42.825Open3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\WindowsShell.Manifest
13/3/2020 - 17:47:42.825Unknown3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\WindowsShell.ManifestWindowsShell.Manifest
13/3/2020 - 17:47:42.825Open3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\install\uxtheme.dll
13/3/2020 - 17:47:42.825Open3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\uxtheme.dll
13/3/2020 - 17:47:42.825Open3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\uxtheme.dll
13/3/2020 - 17:47:44.465Open3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:44.465Read3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:44.465Read3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:44.465Read3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:44.465Read3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:44.465Read3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:44.465Read3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:44.465Read3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:44.465Read3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:44.465Read3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:44.465Read3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:44.465Read3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:44.465Read3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:44.465Read3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:44.465Read3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:44.465Open3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\Globalization\Sorting\SortDefault.nls
13/3/2020 - 17:47:44.465Unknown3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\Globalization\Sorting\SortDefault.nlsSortDefault.nls
13/3/2020 - 17:47:44.465Open3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\shell32.dll
13/3/2020 - 17:47:44.465Open3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\install\explorer.exe.Local
13/3/2020 - 17:47:44.465Open3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d
13/3/2020 - 17:47:44.465Unknown3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d
13/3/2020 - 17:47:44.465Open3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d
13/3/2020 - 17:47:44.465Open3004C:\Windows\SysWOW64\install\explorer.exeC:\
13/3/2020 - 17:47:44.465Unknown3004C:\Windows\SysWOW64\install\explorer.exeC:\
13/3/2020 - 17:47:44.465Open3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows
13/3/2020 - 17:47:44.465Unknown3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows
13/3/2020 - 17:47:44.465Open3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:44.465Unknown3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64
13/3/2020 - 17:47:44.465Open3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\install\desktop.ini
13/3/2020 - 17:47:44.465Open3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\install
13/3/2020 - 17:47:44.465Unknown3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\install
13/3/2020 - 17:47:44.465Open3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\rpcss.dll
13/3/2020 - 17:47:44.465Open3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\rpcss.dll
13/3/2020 - 17:47:44.465Open3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:44.465Read3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:44.465Read3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:44.465Read3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:44.465Read3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:44.465Read3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:44.465Read3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:44.465Read3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:44.465Read3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:44.465Read3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:44.465Read3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:44.465Read3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:44.465Read3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:44.465Read3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:44.465Read3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:44.481Unknown3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:44.481Open3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\install\dwmapi.dll
13/3/2020 - 17:47:44.481Open3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\dwmapi.dll
13/3/2020 - 17:47:44.481Open3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\dwmapi.dll
13/3/2020 - 17:47:44.481Open3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\uxtheme.dll.Config
13/3/2020 - 17:47:44.481Open3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\uxtheme.dll
13/3/2020 - 17:47:44.481Open3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\install\explorer.exe.Local
13/3/2020 - 17:47:44.481Open3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d
13/3/2020 - 17:47:44.481Unknown3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d
13/3/2020 - 17:47:44.481Open3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d
13/3/2020 - 17:47:44.481Unknown3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d
13/3/2020 - 17:47:44.481Open3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:44.481Read3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:44.481Read3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:44.481Read3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:44.481Read3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:44.481Read3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:44.497Read3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:44.497Read3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:44.497Read3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:44.497Read3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:44.497Read3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:44.497Read3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:44.497Read3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:44.497Read3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:44.497Read3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:44.512Read3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:44.512Read3004C:\Windows\SysWOW64\install\explorer.exeC:\Windows\SysWOW64\install\explorer.exe
13/3/2020 - 17:47:44.637Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:44.637Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:44.637Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.637Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.637Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.637Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.637Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.637Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.637Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:44.637Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.637Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.637Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.637Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:44.637Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:44.637Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.637Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.715Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:44.715Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:44.715Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.715Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.715Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.715Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.715Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.715Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.715Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:44.715Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.715Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.715Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:44.715Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:44.715Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.715Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.762Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:44.762Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:44.762Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.762Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.762Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.762Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.762Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.762Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.762Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:44.762Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.762Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.762Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:44.762Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:44.762Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.762Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.809Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:44.809Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:44.809Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.809Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.809Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.809Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.809Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.809Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.809Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:44.809Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.809Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.809Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:44.809Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:44.809Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.809Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.856Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:44.856Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:44.856Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.856Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.856Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.856Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.856Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.856Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.856Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:44.856Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.856Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.856Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:44.856Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:44.856Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.856Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.903Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:44.903Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:44.903Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.903Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.903Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.903Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.903Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.903Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.903Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:44.903Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.903Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.903Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:44.903Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:44.903Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.903Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.950Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:44.950Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:44.950Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.950Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.950Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.950Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.950Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.950Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.950Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:44.950Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.950Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.950Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:44.950Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:44.950Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.950Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.997Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:44.997Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:44.997Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.997Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.997Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.997Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.997Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.997Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.997Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:44.997Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.997Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.997Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:44.997Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:44.997Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:44.997Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.43Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.43Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.43Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.43Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.43Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.43Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.43Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.43Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.43Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:45.43Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.43Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.43Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.43Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.43Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.43Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.90Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.90Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.90Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.90Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.90Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.90Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.90Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.90Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.90Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:45.90Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.90Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.90Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.90Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.90Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.90Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.137Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.137Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.137Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.137Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.137Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.137Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.137Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.137Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.137Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:45.137Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.137Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.137Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.137Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.137Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.137Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.184Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.184Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.184Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.184Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.184Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.184Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.184Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.184Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.184Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:45.184Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.184Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.184Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.184Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.184Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.184Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.231Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.231Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.231Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.231Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.231Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.231Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.231Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.231Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.231Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:45.231Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.231Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.231Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.231Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.231Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.231Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.278Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.278Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.278Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.278Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.278Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.278Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.278Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.278Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.278Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:45.278Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.278Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.278Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.278Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.278Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.278Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.325Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.325Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.325Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.325Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.325Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.325Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.325Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.325Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.325Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:45.325Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.325Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.325Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.325Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.325Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.325Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.372Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.372Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.372Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.372Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.372Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.372Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.372Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.372Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.372Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:45.372Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.372Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.372Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.372Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.372Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.372Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.418Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.418Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.418Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.418Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.418Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.418Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.418Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.418Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.418Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:45.418Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.418Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.418Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.418Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.418Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.418Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.465Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.465Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.465Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.465Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.465Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.465Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.465Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.465Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.465Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:45.465Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.465Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.465Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.465Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.465Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.465Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.512Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.512Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.512Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.512Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.512Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.512Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.512Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.512Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.512Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:45.512Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.512Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.512Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.512Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.512Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.512Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.512Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.559Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.559Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.559Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.559Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.559Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.559Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.559Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.559Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.559Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:45.559Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.559Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.559Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.559Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.559Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.559Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.606Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.606Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.606Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.606Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.606Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.606Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.606Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.606Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.606Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:45.606Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.606Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.606Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.606Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.606Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.606Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.653Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.653Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.653Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.653Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.653Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.653Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.653Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.653Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.653Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:45.653Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.653Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.653Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.653Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.653Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.653Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.700Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.700Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.700Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.700Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.700Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.700Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.700Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.700Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.700Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:45.700Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.700Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.700Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.700Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.700Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.700Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.747Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.747Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.747Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.747Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.747Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.747Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.747Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.747Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.747Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:45.747Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.747Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.747Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.747Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.747Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.747Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.793Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.793Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.793Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.793Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.793Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.793Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.793Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.793Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.793Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:45.793Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.793Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.793Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.793Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.793Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.793Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.840Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.840Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.840Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.840Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.840Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.840Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.840Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.840Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.840Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:45.840Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.840Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.840Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.840Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.840Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.840Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.887Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.887Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.887Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.887Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.887Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.887Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.887Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.887Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.887Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:45.887Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.887Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.887Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.887Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.887Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.887Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.934Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.934Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.934Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.934Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.934Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.934Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.934Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.934Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.934Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:45.934Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.934Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.934Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.934Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.934Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.934Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.981Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.981Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.981Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.981Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.981Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.981Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.981Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.981Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.981Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:45.981Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.981Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.981Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.981Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:45.981Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:45.981Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.28Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.28Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.28Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.28Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.28Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.28Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.28Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.28Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.28Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:46.28Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.28Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.28Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.28Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.28Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.28Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.75Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\install
13/3/2020 - 17:47:46.75Unknown2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\install
13/3/2020 - 17:47:46.75Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\install
13/3/2020 - 17:47:46.75Unknown2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\install
13/3/2020 - 17:47:46.75Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\install
13/3/2020 - 17:47:46.75Unknown2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\install
13/3/2020 - 17:47:46.75Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.75Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.75Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.75Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.75Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.75Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.75Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.75Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.75Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:46.75Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.75Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.75Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.75Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.75Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.75Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.122Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.122Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.122Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.122Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.122Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.122Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.122Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.122Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.122Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:46.122Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.122Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.122Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.122Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.122Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.122Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.184Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.184Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.184Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.184Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.184Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.184Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.184Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.184Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.184Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:46.184Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.184Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.184Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.184Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.184Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.184Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.231Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.231Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.231Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.231Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.231Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.231Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.231Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.231Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.231Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:46.231Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.231Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.231Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.231Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.231Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.231Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.278Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.278Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.278Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.278Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.278Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.278Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.278Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.278Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.278Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:46.278Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.278Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.278Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.278Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.278Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.278Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.325Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.325Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.325Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.325Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.325Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.325Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.325Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.325Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.325Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:46.325Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.325Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.325Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.325Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.325Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.325Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.372Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.372Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.372Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.372Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.372Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.372Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.372Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.372Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.372Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:46.372Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.372Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.372Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.372Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.372Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.372Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.418Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.418Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.418Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.418Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.418Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.418Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.418Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.418Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.418Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:46.418Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.418Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.418Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.418Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.418Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.418Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.465Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.465Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.465Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.465Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.465Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.465Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.465Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.465Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.465Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:46.465Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.465Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.465Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.465Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.465Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.465Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.512Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.512Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.512Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.512Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.512Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.512Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.512Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.512Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.512Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:46.512Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.512Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.512Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.512Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.512Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.512Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.559Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.559Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.559Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.559Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.559Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.559Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.559Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.559Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.559Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:46.559Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.559Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.559Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.559Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.559Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.559Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.606Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.606Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.606Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.606Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.606Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.606Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.606Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.606Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.606Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:46.606Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.606Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.606Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.606Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.606Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.606Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.653Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.653Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.653Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.653Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.653Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.653Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.653Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.653Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.653Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:46.653Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.653Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.653Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.653Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.653Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.653Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.700Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.700Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.700Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.700Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.700Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.700Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.700Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.700Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.700Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:46.700Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.700Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.700Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.700Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.700Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.700Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.747Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.747Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.747Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.747Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.747Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.747Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.747Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.747Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.747Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:46.747Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.747Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.747Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.747Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.747Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.747Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.793Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.793Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.793Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.793Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.793Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.793Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.793Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.793Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.793Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:46.793Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.793Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.793Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.793Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.793Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.793Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.840Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.840Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.840Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.840Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.840Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.840Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.840Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.840Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.840Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:46.840Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.840Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.840Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.840Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.840Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.840Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.887Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.887Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.887Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.887Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.887Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.887Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.887Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.887Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.887Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:46.887Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.887Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.887Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.887Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.887Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.887Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.934Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.934Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.934Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.934Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.934Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.934Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.934Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.934Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.934Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:46.934Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.934Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.934Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.934Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.934Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.934Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.981Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.981Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.981Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.981Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.981Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.981Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.981Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.981Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.981Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:46.981Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.981Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.981Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.981Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:46.981Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:46.981Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.28Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.28Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.28Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.28Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.28Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.28Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.28Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.28Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.28Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:47.28Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.28Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.28Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.28Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.28Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.28Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.75Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.75Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.75Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.75Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.75Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.75Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.75Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.75Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.75Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:47.75Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.75Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.75Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.75Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.75Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.75Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.122Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.122Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.122Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.122Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.122Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.122Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.122Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.122Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.122Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:47.122Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.122Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.122Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.122Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.122Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.122Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.168Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.168Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.168Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.168Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.168Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.168Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.168Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.168Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.168Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:47.168Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.168Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.168Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.168Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.168Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.168Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.215Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.215Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.215Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.215Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.215Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.215Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.215Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.215Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.215Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:47.215Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.215Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.215Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.215Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.215Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.215Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.262Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.262Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.262Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.262Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.262Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.262Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.262Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.262Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.262Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:47.262Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.262Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.262Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.262Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.262Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.262Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.309Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.309Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.309Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.309Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.309Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.309Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.309Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.309Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.309Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:47.309Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.309Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.309Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.309Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.309Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.309Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.356Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.356Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.356Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.356Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.356Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.356Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.356Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.356Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.356Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:47.356Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.356Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.356Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.356Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.356Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.356Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.403Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.403Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.403Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.403Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.403Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.403Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.403Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.403Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.403Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:47.403Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.403Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.403Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.403Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.403Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.403Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.450Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.450Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.450Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.450Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.450Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.450Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.450Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.450Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.450Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:47.450Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.450Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.450Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.450Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.450Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.450Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.497Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.497Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.497Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.497Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.497Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.497Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.497Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.497Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.497Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:47.497Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.497Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.497Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.497Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.497Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.497Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.497Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.543Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.543Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.543Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.543Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.543Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.543Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.543Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.543Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.543Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:47.543Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.543Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.543Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.543Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.543Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.543Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.590Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.590Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.590Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.590Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.590Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.590Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.590Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.590Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.590Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:47.590Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.590Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.590Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.590Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.590Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.590Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.637Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.637Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.637Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.637Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.637Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.637Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.637Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.637Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.637Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:47.637Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.637Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.637Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.637Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.637Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.637Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.684Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.684Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.684Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.684Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.684Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.684Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.684Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.684Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.684Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:47.684Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.684Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.684Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.684Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.684Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.684Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.731Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.731Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.731Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.731Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.731Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.731Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.731Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.731Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.731Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:47.731Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.731Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.731Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.731Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.731Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.731Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.778Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.778Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.778Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.778Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.778Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.778Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.778Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.778Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.778Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:47.778Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.778Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.778Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.778Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.778Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.778Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.825Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.825Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.825Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.825Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.825Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.825Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.825Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.825Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.825Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:47.825Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.825Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.825Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.825Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:47.825Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:47.825Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.106Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.106Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.106Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.106Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.106Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.106Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.106Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.106Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.106Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:48.106Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.106Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.106Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.106Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.106Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.106Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.153Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.153Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.153Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.153Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.153Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.153Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.153Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.153Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.153Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:48.153Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.153Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.153Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.153Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.153Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.153Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.200Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.200Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.200Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.200Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.200Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.200Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.200Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.200Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.200Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:48.200Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.200Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.200Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.200Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.200Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.200Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.247Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.247Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.247Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.247Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.247Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.247Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.247Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.247Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.247Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:48.247Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.247Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.247Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.247Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.247Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.247Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.293Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.293Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.293Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.293Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.293Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.293Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.293Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.293Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.293Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:48.293Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.293Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.293Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.293Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.293Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.293Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.340Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.340Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.340Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.340Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.340Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.340Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.340Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.340Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.340Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:48.340Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.340Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.340Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.340Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.340Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.340Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.387Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.387Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.387Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.387Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.387Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.387Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.387Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.387Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.387Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:48.387Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.387Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.387Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.387Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.387Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.387Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.434Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.434Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.434Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.434Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.434Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.434Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.434Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.434Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.434Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:48.434Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.434Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.434Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.434Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.434Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.434Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.481Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.481Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.481Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.481Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.481Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.481Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.481Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.481Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.481Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:48.481Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.481Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.481Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.481Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.481Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.481Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.528Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.528Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.528Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.528Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.528Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.528Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.528Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.528Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.528Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:48.528Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.528Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.528Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.528Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.528Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.528Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.575Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.575Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.575Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.575Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.575Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.575Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.575Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.575Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.575Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:48.575Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.575Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.575Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.575Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.575Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.575Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.622Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.622Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.622Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.622Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.622Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.622Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.622Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.622Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.622Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:48.622Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.622Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.622Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.622Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.622Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.622Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.668Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.668Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.668Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.668Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.668Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.668Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.668Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.668Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.668Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:48.668Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.668Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.668Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.668Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.668Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.668Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.715Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.715Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.715Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.715Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.715Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.715Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.715Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.715Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.715Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:48.715Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.715Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.715Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.715Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.715Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.715Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.762Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.762Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.762Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.762Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.762Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.762Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.762Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.762Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.762Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:48.762Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.762Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.762Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.762Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.762Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.762Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.809Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.809Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.809Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.809Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.809Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.809Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.809Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.809Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.809Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:48.809Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.809Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.809Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.809Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.809Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.809Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.856Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.856Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.856Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.856Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.856Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.856Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.856Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.856Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.856Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:48.856Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.856Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.856Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.856Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.856Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.856Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.903Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.903Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.903Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.903Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.903Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.903Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.903Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.903Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.903Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:48.903Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.903Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.903Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.903Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.903Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.903Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.950Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.950Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.950Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.950Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.950Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.950Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.950Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.950Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.950Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:48.950Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.950Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.950Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.950Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.950Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.950Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.997Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.997Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.997Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.997Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.997Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.997Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.997Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.997Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.997Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:48.997Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.997Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.997Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.997Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:48.997Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:48.997Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.43Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.43Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.43Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.43Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.43Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.43Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.43Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.43Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.43Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:49.43Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.43Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.43Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.43Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.43Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.43Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.90Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.90Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.90Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.90Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.90Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.90Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.90Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.90Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.90Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:49.90Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.90Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.90Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.90Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.90Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.90Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.137Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.137Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.137Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.137Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.137Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.137Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.137Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.137Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.137Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:49.137Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.137Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.137Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.137Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.137Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.137Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.184Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.184Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.184Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.184Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.184Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.184Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.184Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.184Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.184Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:49.184Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.184Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.184Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.184Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.184Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.184Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.231Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.231Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.231Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.231Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.231Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.231Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.231Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.231Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.231Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:49.231Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.231Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.231Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.231Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.231Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.231Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.278Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.278Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.278Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.278Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.278Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.278Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.278Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.278Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.278Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:49.278Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.278Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.278Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.278Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.278Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.278Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.325Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.325Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.325Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.325Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.325Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.325Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.325Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.325Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.325Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:49.325Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.325Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.325Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.325Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.325Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.325Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.372Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.372Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.372Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.372Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.372Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.372Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.372Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.372Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.372Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:49.372Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.372Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.372Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.372Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.372Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.372Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.418Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.418Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.418Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.418Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.418Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.418Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.418Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.418Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.418Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:49.418Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.418Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.418Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.418Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.418Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.418Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.465Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.465Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.465Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.465Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.465Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.465Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.465Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.465Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.465Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:49.465Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.465Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.465Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.465Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.465Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.465Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.512Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.512Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.512Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.512Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.512Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.512Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.512Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.512Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.512Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:49.512Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.512Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.512Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.512Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.512Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.512Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.512Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.559Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.559Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.559Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.559Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.559Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.559Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.559Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.559Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.559Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:49.559Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.559Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.559Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.559Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.559Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.559Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.606Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.606Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.606Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.606Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.606Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.606Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.606Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.606Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.606Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:49.606Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.606Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.606Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.606Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.606Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.606Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.653Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.653Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.653Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.653Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.653Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.653Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.653Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.653Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.653Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:49.653Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.653Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.653Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.653Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.653Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.653Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.700Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.700Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.700Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.700Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.700Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.700Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.700Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.700Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.700Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:49.700Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.700Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.700Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.700Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.700Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.700Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.747Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.747Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.747Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.747Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.747Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.747Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.747Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.747Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.747Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:49.747Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.747Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.747Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.747Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.747Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.747Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.793Open2200C:\malware.exeC:\Users\Behemot\AppData\Roaming
13/3/2020 - 17:47:49.793Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Roaming
13/3/2020 - 17:47:49.793Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.793Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.793Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\UuU.uUu
13/3/2020 - 17:47:49.793Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\UuU.uUu
13/3/2020 - 17:47:49.793Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\UuU.uUu
13/3/2020 - 17:47:49.793Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\UuU.uUu
13/3/2020 - 17:47:49.793Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\UuU.uUu
13/3/2020 - 17:47:49.793Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\UuU.uUu
13/3/2020 - 17:47:49.793Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:49.793Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\UuU.uUu
13/3/2020 - 17:47:49.793Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\UuU.uUu
13/3/2020 - 17:47:49.793Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\UuU.uUu
13/3/2020 - 17:47:49.793Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.793Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.793Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\UuU.uUu
13/3/2020 - 17:47:49.793Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\UuU.uUu
13/3/2020 - 17:47:49.793Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.793Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.793Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.793Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.793Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.793Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.793Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.793Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.793Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:49.793Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.793Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.793Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.793Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.793Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.793Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.840Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.840Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.840Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.840Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.840Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.840Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.840Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.840Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.840Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:49.840Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.840Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.840Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.840Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.840Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.840Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.887Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.887Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.887Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.887Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.887Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.887Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.887Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.887Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.887Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:49.887Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.887Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.887Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.887Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.887Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.887Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.934Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.934Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.934Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.934Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.934Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.934Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.934Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.934Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.934Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:49.934Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.934Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.934Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.934Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.934Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.934Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.981Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.981Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.981Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.981Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.981Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.981Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.981Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.981Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.981Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:49.981Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.981Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.981Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.981Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:49.981Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:49.981Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.28Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.28Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.28Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.28Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.28Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.28Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.28Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.28Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.28Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:50.28Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.28Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.28Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.28Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.28Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.28Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.75Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.75Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.75Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.75Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.75Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.75Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.75Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.75Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.75Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:50.75Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.75Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.75Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.75Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.75Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.75Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.122Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.122Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.122Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.122Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.122Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.122Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.122Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.122Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.122Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:50.122Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.122Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.122Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.122Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.122Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.122Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.168Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.168Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.168Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.168Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.168Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.168Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.168Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.168Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.168Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:50.168Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.168Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.168Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.168Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.168Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.168Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.215Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.215Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.215Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.215Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.215Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.215Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.215Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.215Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.215Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:50.215Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.215Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.215Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.215Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.215Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.215Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.262Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.262Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.262Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.262Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.262Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.262Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.262Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.262Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.262Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:50.262Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.262Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.262Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.262Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.262Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.262Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.309Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.309Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.309Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.309Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.309Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.309Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.309Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.309Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.309Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:50.309Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.309Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.309Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.309Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.309Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.309Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.356Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.356Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.356Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.356Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.356Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.356Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.356Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.356Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.356Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:50.356Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.356Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.356Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.356Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.356Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.356Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.403Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.403Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.403Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.403Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.403Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.403Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.403Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.403Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.403Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:50.403Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.403Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.403Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.403Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.403Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.403Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.450Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.450Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.450Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.450Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.450Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.450Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.450Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.450Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.450Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:50.450Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.450Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.450Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.450Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.450Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.450Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.497Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.497Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.497Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.497Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.497Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.497Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.497Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.497Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.497Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:50.497Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.497Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.497Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.497Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.497Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.497Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.543Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.543Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.543Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.543Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.543Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.543Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.543Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.543Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.543Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:50.543Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.543Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.543Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.543Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.543Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.543Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.590Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.590Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.590Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.590Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.590Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.590Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.590Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.590Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.590Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:50.590Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.590Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.590Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.590Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.590Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.590Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.637Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.637Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.637Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.637Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.637Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.637Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.637Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.637Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.637Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:50.637Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.637Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.637Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.637Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.637Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.637Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.684Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.684Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.684Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.684Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.684Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.684Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.684Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.684Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.684Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:50.684Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.684Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.684Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.684Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.684Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.684Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.731Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.731Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.731Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.731Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.731Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.731Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.731Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.731Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.731Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:50.731Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.731Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.731Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.731Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.731Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.731Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.778Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.778Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.778Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.778Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.778Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.778Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.778Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.778Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.778Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:50.778Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.778Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.778Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.778Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.778Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.778Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.825Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.825Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.825Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.825Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.825Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.825Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.825Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.825Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.825Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:50.825Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.825Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.825Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.825Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.825Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.825Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.872Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.872Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.872Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.872Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.872Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.872Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.872Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.872Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.872Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:50.872Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.872Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.872Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.872Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.872Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.872Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.918Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.918Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.918Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.918Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.918Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.918Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.918Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.918Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.918Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:50.918Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.918Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.918Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.918Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.918Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.918Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.965Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.965Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.965Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.965Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.965Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.965Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.965Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.965Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.965Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:50.965Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.965Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.965Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.965Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:50.965Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:50.965Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.12Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.12Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.12Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.12Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.12Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.12Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.12Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.12Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.12Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:51.12Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.12Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.12Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.12Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.12Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.12Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.59Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.59Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.59Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.59Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.59Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.59Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.59Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.59Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.59Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:51.59Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.59Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.59Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.59Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.59Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.59Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.106Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\install
13/3/2020 - 17:47:51.106Unknown2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\install
13/3/2020 - 17:47:51.106Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\install
13/3/2020 - 17:47:51.106Unknown2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\install
13/3/2020 - 17:47:51.106Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\install
13/3/2020 - 17:47:51.106Unknown2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\install
13/3/2020 - 17:47:51.106Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.106Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.106Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.106Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.106Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.106Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.106Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.106Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.106Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:51.106Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.106Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.106Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.106Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.106Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.106Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.153Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.153Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.153Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.153Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.153Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.153Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.153Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.153Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.153Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:51.153Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.153Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.153Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.153Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.153Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.153Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.200Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.200Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.200Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.200Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.200Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.200Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.200Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.200Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.200Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:51.200Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.200Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.200Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.200Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.200Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.200Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.247Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.247Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.247Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.247Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.247Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.247Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.247Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.247Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.247Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:51.247Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.247Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.247Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.247Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.247Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.247Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.293Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.293Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.293Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.293Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.293Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.293Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.293Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.293Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.293Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:51.293Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.293Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.293Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.293Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.293Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.293Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.340Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.340Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.340Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.340Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.340Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.340Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.340Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.340Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.340Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:51.340Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.340Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.340Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.340Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.340Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.340Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.387Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.387Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.387Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.387Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.387Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.387Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.387Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.387Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.387Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:51.387Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.387Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.387Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.387Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.387Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.387Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.434Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.434Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.434Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.434Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.434Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.434Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.434Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.434Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.434Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:51.434Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.434Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.434Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.434Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.434Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.434Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.481Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.481Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.481Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.481Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.481Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.481Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.481Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.481Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.481Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:51.481Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.481Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.481Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.481Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.481Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.481Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.543Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.543Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.543Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.543Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.543Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.543Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.543Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.543Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.543Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:51.543Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.543Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.543Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.543Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.543Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.543Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.543Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.590Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.590Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.590Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.590Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.590Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.590Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.590Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.590Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.590Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:51.590Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.590Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.590Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.590Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.590Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.590Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.637Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.637Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.637Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.637Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.637Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.637Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.637Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.637Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.637Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:51.637Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.637Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.637Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.637Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.637Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.637Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.684Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.684Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.684Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.684Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.684Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.684Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.684Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.684Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.684Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:51.684Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.684Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.684Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.684Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.684Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.684Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.731Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.731Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.731Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.731Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.731Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.731Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.731Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.731Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.731Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:51.731Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.731Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.731Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.731Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.731Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.731Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.778Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.778Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.778Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.778Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.778Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.778Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.778Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.778Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.778Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:51.778Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.778Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.778Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.778Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.778Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.778Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.825Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.825Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.825Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.825Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.825Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.825Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.825Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.825Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.825Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:51.825Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.825Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.825Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.825Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.825Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.825Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.872Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.872Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.872Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.872Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.872Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.872Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.872Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.872Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.872Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:51.872Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.872Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.872Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.872Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.872Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.872Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.918Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.918Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.918Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.918Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.918Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.918Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.918Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.918Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.918Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:51.918Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.918Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.918Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.918Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.918Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.918Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.965Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.965Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.965Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.965Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.965Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.965Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.965Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.965Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.965Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:51.965Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.965Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.965Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.965Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:51.965Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:51.965Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.12Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.12Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.12Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.12Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.12Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.12Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.12Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.12Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.12Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:52.12Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.12Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.12Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.12Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.12Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.12Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.59Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.59Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.59Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.59Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.59Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.59Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.59Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.59Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.59Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:52.59Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.59Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.59Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.59Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.59Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.59Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.106Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.106Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.106Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.106Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.106Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.106Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.106Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.106Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.106Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:52.106Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.106Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.106Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.106Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.106Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.106Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.153Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.153Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.153Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.153Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.153Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.153Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.153Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.153Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.153Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:52.153Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.153Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.153Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.153Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.153Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.153Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.200Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.200Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.200Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.200Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.200Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.200Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.200Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.200Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.200Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:52.200Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.200Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.200Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.200Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.200Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.200Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.247Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.247Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.247Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.247Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.247Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.247Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.247Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.247Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.247Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:52.247Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.247Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.247Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.247Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.247Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.247Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.293Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.293Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.293Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.293Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.293Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.293Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.293Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.293Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.293Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:52.293Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.293Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.293Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.293Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.293Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.293Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.340Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.340Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.340Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.340Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.340Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.340Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.340Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.340Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.340Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:52.340Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.340Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.340Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.340Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.340Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.340Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.387Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.387Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.387Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.387Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.387Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.387Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.387Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.387Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.387Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:52.387Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.387Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.387Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.387Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.387Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.387Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.434Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.434Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.434Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.434Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.434Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.434Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.434Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.434Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.434Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:52.434Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.434Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.434Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.434Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.434Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.434Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.481Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.481Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.481Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.481Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.481Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.481Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.481Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.481Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.481Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:52.481Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.481Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.481Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.481Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.481Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.481Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.528Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.528Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.528Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.528Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.528Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.528Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.528Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.528Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.528Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:52.528Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.528Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.528Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.528Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.528Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.528Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.575Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.575Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.575Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.575Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.575Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.575Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.575Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.575Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.575Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:52.575Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.575Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.575Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.575Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.575Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.575Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.622Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.622Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.622Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.622Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.622Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.622Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.622Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.622Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.622Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:52.622Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.622Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.622Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.622Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.622Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.622Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.668Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.668Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.668Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.668Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.668Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.668Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.668Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.668Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.668Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:52.668Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.668Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.668Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.668Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.668Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.668Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.715Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.715Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.715Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.715Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.715Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.715Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.715Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.715Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.715Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:52.715Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.715Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.715Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.715Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.715Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.715Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.762Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.762Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.762Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.762Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.762Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.762Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.762Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.762Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.762Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:52.762Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.762Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.762Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.762Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.762Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.762Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.809Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.809Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.809Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.809Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.809Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.809Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.809Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.809Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.809Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:52.809Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.809Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.809Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.809Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.809Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.809Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.856Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.856Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.856Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.856Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.856Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.856Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.856Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.856Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.856Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:52.856Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.856Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.856Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.856Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.856Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.856Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.903Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.903Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.903Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.903Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.903Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.903Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.903Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.903Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.903Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:52.903Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.903Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.903Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.903Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.903Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.903Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.950Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.950Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.950Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.950Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.950Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.950Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.950Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.950Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.950Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:52.950Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.950Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.950Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.950Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.950Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.950Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.997Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.997Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.997Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.997Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.997Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.997Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.997Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.997Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.997Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:52.997Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.997Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.997Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.997Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:52.997Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:52.997Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.43Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.43Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.43Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.43Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.43Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.43Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.43Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.43Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.43Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:53.43Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.43Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.43Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.43Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.43Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.43Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.90Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.90Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.90Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.90Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.90Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.90Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.90Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.90Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.90Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:53.90Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.90Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.90Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.90Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.90Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.90Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.137Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.137Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.137Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.137Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.137Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.137Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.137Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.137Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.137Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:53.137Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.137Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.137Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.137Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.137Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.137Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.184Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.184Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.184Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.184Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.184Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.184Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.184Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.184Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.184Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:53.184Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.184Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.184Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.184Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.184Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.184Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.231Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.231Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.231Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.231Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.231Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.231Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.231Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.231Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.231Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:53.231Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.231Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.231Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.231Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.231Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.231Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.278Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.278Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.278Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.278Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.278Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.278Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.278Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.278Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.278Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:53.278Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.278Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.278Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.278Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.278Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.278Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.325Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.325Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.325Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.325Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.325Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.325Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.325Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.325Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.325Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:53.325Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.325Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.325Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.325Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.325Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.325Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.372Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.372Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.372Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.372Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.372Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.372Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.372Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.372Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.372Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:53.372Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.372Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.372Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.372Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.372Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.372Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.418Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.418Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.418Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.418Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.418Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.418Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.418Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.418Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.418Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:53.418Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.418Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.418Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.418Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.418Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.418Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.465Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.465Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.465Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.465Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.465Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.465Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.465Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.465Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.465Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:53.465Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.465Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.465Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.465Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.465Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.465Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.512Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.512Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.512Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.512Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.512Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.512Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.512Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.512Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.512Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:53.512Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.512Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.512Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.512Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.512Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.512Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.512Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.559Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.559Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.559Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.559Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.559Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.559Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.559Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.559Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.559Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:53.559Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.559Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.559Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.559Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.559Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.559Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.606Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.606Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.606Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.606Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.606Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.606Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.606Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.606Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.606Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:53.606Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.606Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.606Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.606Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.606Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.606Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.653Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.653Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.653Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.653Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.653Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.653Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.653Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.653Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.653Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:53.653Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.653Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.653Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.653Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.653Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.653Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.700Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.700Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.700Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.700Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.700Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.700Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.700Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.700Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.700Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:53.700Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.700Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.700Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.700Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.700Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.700Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.747Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.747Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.747Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.747Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.747Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.747Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.747Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.747Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.747Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:53.747Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.747Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.747Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.747Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.747Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.747Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.793Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.793Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.793Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.793Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.793Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.793Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.793Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.793Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.793Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:53.793Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.793Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.793Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.793Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.793Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.793Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.840Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.840Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.840Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.840Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.840Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.840Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.840Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.840Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.840Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:53.840Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.840Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.840Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.840Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.840Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.840Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.934Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.934Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.934Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.934Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.934Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.934Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.934Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.934Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.934Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:53.934Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.934Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.934Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.934Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.934Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.934Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.981Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.981Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.981Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.981Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.981Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.981Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.981Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.981Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.981Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:53.981Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.981Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.981Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.981Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:53.981Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:53.981Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.28Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.28Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.28Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.28Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.28Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.28Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.28Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.28Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.28Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:54.28Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.28Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.28Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.28Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.28Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.28Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.75Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.75Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.75Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.75Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.75Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.75Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.75Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.75Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.75Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:54.75Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.75Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.75Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.75Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.75Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.75Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.122Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.122Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.122Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.122Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.122Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.122Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.122Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.122Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.122Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:54.122Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.122Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.122Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.122Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.122Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.122Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.168Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.168Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.168Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.168Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.168Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.168Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.168Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.168Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.168Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:54.168Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.168Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.168Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.168Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.168Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.168Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.215Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.215Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.215Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.215Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.215Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.215Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.215Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.215Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.215Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:54.215Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.215Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.215Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.215Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.215Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.215Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.262Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.262Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.262Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.262Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.262Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.262Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.262Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.262Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.262Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:54.262Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.262Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.262Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.262Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.262Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.262Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.309Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.309Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.309Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.309Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.309Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.309Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.309Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.309Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.309Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:54.309Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.309Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.309Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.309Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.309Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.309Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.356Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.356Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.356Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.356Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.356Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.356Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.356Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.356Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.356Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:54.356Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.356Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.356Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.356Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.356Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.356Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.403Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.403Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.403Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.403Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.403Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.403Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.403Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.403Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.403Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:54.403Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.403Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.403Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.403Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.403Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.403Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.450Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.450Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.450Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.450Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.450Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.450Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.450Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.450Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.450Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:54.450Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.450Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.450Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.450Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.450Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.450Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.497Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.497Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.497Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.497Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.497Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.497Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.497Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.497Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.497Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:54.497Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.497Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.497Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.497Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.497Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.497Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.543Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.543Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.543Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.543Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.543Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.543Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.543Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.543Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.543Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:54.543Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.543Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.543Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.543Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.543Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.543Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.590Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.590Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.590Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.590Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.590Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.590Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.590Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.590Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.590Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:54.590Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.590Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.590Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.590Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.590Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.590Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.637Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.637Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.637Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.637Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.637Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.637Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.637Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.637Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.637Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:54.637Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.637Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.637Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.637Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.637Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.637Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.684Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.684Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.684Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.684Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.684Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.684Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.684Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.684Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.684Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:54.684Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.684Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.684Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.684Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.684Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.684Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.731Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.731Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.731Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.731Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.731Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.731Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.731Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.731Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.731Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:54.731Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.731Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.731Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.731Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.731Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.731Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.778Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.778Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.778Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.778Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.778Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.778Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.778Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.778Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.778Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:54.778Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.778Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.778Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.778Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.778Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.778Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.825Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.825Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.825Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.825Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.825Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.825Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.825Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.825Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.825Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:54.825Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.825Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.825Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.825Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.825Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.825Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.872Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.872Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.872Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.872Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.872Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.872Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.872Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.872Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.872Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:54.872Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.872Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.872Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.872Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.872Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.872Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.918Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.918Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.918Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.918Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.918Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.918Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.918Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.918Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.918Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:54.918Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.918Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.918Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.918Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.918Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.918Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.965Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.965Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.965Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.965Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.965Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.965Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.965Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.965Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.965Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:54.965Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.965Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.965Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.965Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:54.965Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:54.965Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.12Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.12Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.12Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.12Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.12Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.12Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.12Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.12Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.12Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:55.12Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.12Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.12Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.12Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.12Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.12Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.59Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.59Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.59Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.59Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.59Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.59Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.59Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.59Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.59Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:55.59Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.59Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.59Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.59Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.59Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.59Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.106Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.106Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.106Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.106Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.106Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.106Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.106Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.106Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.106Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:55.106Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.106Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.106Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.106Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.106Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.106Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.153Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.153Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.153Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.153Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.153Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.153Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.153Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.153Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.153Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:55.153Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.153Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.153Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.153Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.153Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.153Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.200Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.200Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.200Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.200Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.200Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.200Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.200Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.200Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.200Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:55.200Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.200Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.200Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.200Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.200Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.200Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.247Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.247Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.247Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.247Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.247Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.247Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.247Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.247Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.247Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:55.247Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.247Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.247Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.247Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.247Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.247Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.293Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.293Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.293Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.293Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.293Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.293Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.293Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.293Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.293Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:55.293Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.293Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.293Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.293Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.293Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.293Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.340Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.340Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.340Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.340Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.340Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.340Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.340Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.340Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.340Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:55.340Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.340Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.340Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.340Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.340Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.340Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.387Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.387Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.387Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.387Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.387Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.387Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.387Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.387Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.387Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:55.387Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.387Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.387Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.387Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.387Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.387Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.434Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.434Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.434Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.434Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.434Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.434Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.434Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.434Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.434Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:55.434Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.434Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.434Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.434Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.434Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.434Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.481Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.481Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.481Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.481Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.481Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.481Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.481Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.481Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.481Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:55.481Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.481Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.481Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.481Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.481Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.481Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.543Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.543Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.543Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.543Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.543Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.543Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.543Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.543Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.543Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:55.543Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.543Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.543Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.543Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.543Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.543Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.543Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.590Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.590Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.590Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.590Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.590Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.590Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.590Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.590Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.590Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:55.590Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.590Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.590Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.590Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.590Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.590Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.637Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.637Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.637Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.637Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.637Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.637Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.637Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.637Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.637Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:55.637Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.637Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.637Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.637Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.637Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.637Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.684Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.684Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.684Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.684Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.684Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.684Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.684Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.684Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.684Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:55.684Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.684Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.684Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.684Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.684Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.684Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.731Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.731Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.731Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.731Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.731Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.731Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.731Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.731Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.731Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:55.731Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.731Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.731Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.731Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.731Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.731Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.778Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.778Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.778Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.778Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.778Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.778Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.778Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.778Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.778Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:55.778Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.778Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.778Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.778Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.778Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.778Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.825Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.825Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.825Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.825Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.825Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.825Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.825Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.825Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.825Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:55.825Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.825Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.825Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.825Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.825Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.825Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.872Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.872Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.872Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.872Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.872Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.872Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.872Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.872Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.872Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:55.872Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.872Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.872Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.872Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.872Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.872Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.918Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.918Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.918Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.918Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.918Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.918Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.918Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.918Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.918Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:55.918Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.918Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.918Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.918Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.918Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.918Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.965Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.965Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.965Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.965Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.965Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.965Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.965Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.965Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.965Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:55.965Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.965Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.965Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.965Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:55.965Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:55.965Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.12Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.12Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.12Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.12Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.12Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.12Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.12Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.12Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.12Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:56.12Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.12Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.12Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.12Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.12Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.12Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.59Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.59Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.59Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.59Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.59Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.59Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.59Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.59Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.59Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:56.59Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.59Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.59Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.59Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.59Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.59Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.106Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.106Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.106Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.106Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.106Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.106Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.106Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.106Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.106Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:56.106Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.106Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.106Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.106Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.106Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.106Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.106Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\install
13/3/2020 - 17:47:56.106Unknown2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\install
13/3/2020 - 17:47:56.106Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\install
13/3/2020 - 17:47:56.106Unknown2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\install
13/3/2020 - 17:47:56.106Open2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\install
13/3/2020 - 17:47:56.106Unknown2624C:\Windows\SysWOW64\explorer.exeC:\Windows\SysWOW64\install
13/3/2020 - 17:47:56.153Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.153Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.153Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.153Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.153Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.153Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.153Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.153Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.153Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:56.153Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.153Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.153Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.153Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.153Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.153Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.200Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.200Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.200Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.200Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.200Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.200Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.200Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.200Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.200Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:56.200Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.200Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.200Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.200Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.200Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.200Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.247Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.247Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.247Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.247Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.247Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.247Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.247Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.247Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.247Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:56.247Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.247Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.247Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.247Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.247Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.247Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.293Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.293Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.293Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.293Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.293Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.293Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.293Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.293Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.293Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:56.293Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.293Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.293Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.293Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.293Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.293Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.340Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.340Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.340Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.340Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.340Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.340Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.340Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.340Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.340Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:56.340Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.340Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.340Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.340Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.340Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.340Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.387Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.387Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.387Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.387Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.387Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.387Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.387Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.387Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.387Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:56.387Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.387Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.387Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.387Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.387Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.387Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.434Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.434Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.434Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.434Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.434Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.434Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.434Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.434Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.434Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:56.434Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.434Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.434Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.434Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.434Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.434Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.481Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.481Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.481Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.481Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.481Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.481Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.481Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.481Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.481Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:56.481Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.481Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.481Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.481Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.481Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.481Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.528Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.528Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.528Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.528Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.528Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.528Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.528Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.528Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.528Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:56.528Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.528Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.528Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.528Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.528Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.528Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.575Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.575Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.575Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.575Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.575Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.575Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.575Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.575Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.575Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:56.575Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.575Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.575Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.575Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.575Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.575Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.622Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.622Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.622Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.622Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.622Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.622Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.622Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.622Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.622Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:56.622Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.622Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.622Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.622Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.622Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.622Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.668Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.668Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.668Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.668Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.668Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.668Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.668Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.668Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.668Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:56.668Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.668Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.668Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.668Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.668Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.668Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.715Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.715Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.715Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.715Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.715Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.715Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.715Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.715Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.715Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:56.715Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.715Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.715Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.715Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.715Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.715Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.762Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.762Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.762Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.762Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.762Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.762Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.762Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.762Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.762Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:56.762Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.762Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.762Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.762Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.762Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.762Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.809Open2200C:\malware.exeC:\Users\Behemot\AppData\Roaming
13/3/2020 - 17:47:56.809Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Roaming
13/3/2020 - 17:47:56.809Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.809Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.809Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\UuU.uUu
13/3/2020 - 17:47:56.809Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\UuU.uUu
13/3/2020 - 17:47:56.809Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\UuU.uUu
13/3/2020 - 17:47:56.809Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\UuU.uUu
13/3/2020 - 17:47:56.809Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\UuU.uUu
13/3/2020 - 17:47:56.809Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\UuU.uUu
13/3/2020 - 17:47:56.809Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:56.809Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\UuU.uUu
13/3/2020 - 17:47:56.809Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\UuU.uUu
13/3/2020 - 17:47:56.809Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\UuU.uUu
13/3/2020 - 17:47:56.809Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.809Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.809Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\UuU.uUu
13/3/2020 - 17:47:56.809Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\UuU.uUu
13/3/2020 - 17:47:56.809Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.809Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.809Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.809Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.809Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.809Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.809Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.809Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.809Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:56.809Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.809Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.809Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.809Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.809Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.809Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.856Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.856Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.856Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.856Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.856Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.856Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.856Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.856Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.856Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:56.856Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.856Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.856Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.856Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.856Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.856Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.903Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.903Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.903Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.903Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.903Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.903Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.903Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.903Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.903Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:56.903Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.903Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.903Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.903Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.903Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.903Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.950Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.950Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.950Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.950Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.950Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.950Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.950Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.950Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.950Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:56.950Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.950Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.950Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.950Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.950Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.950Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.997Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.997Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.997Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.997Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.997Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.997Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.997Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.997Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.997Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:56.997Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.997Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.997Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.997Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:56.997Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:56.997Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.43Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.43Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.43Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.43Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.43Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.43Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.43Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.43Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.43Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:57.43Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.43Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.43Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.43Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.43Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.43Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.90Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.90Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.90Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.90Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.90Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.90Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.90Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.90Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.90Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:57.90Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.90Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.90Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.90Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.90Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.90Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.137Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.137Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.137Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.137Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.137Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.137Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.137Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.137Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.137Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:57.137Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.137Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.137Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.137Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.137Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.137Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.184Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.184Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.184Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.184Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.184Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.184Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.184Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.184Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.184Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:57.184Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.184Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.184Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.184Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.184Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.184Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.231Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.231Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.231Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.231Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.231Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.231Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.231Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.231Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.231Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:57.231Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.231Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.231Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.231Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.231Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.231Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.278Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.278Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.278Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.278Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.278Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.278Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.278Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.278Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.278Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:57.278Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.278Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.278Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.278Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.278Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.278Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.325Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.325Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.325Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.325Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.325Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.325Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.325Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.325Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.325Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:57.325Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.325Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.325Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.325Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.325Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.325Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.372Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.372Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.372Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.372Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.372Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.372Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.372Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.372Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.372Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:57.372Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.372Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.372Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.372Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.372Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.372Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.418Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.418Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.418Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.418Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.418Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.418Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.418Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.418Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.418Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:57.418Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.418Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.418Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.418Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.418Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.418Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.465Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.465Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.465Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.465Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.465Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.465Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.465Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.465Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.465Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:57.465Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.465Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.465Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.465Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.465Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.465Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.528Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.528Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.528Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.528Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.528Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.528Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.528Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.528Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.528Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:57.528Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.528Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.528Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.528Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.528Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.528Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.528Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.575Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.575Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.575Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.575Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.575Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.575Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.575Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.575Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.575Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:57.575Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.575Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.575Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.575Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.575Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.575Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.622Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.622Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.622Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.622Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.622Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.622Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.622Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.622Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.622Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:57.622Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.622Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.622Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.622Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.622Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.622Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.668Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.668Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.668Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.668Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.668Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.668Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.668Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.668Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.668Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:57.668Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.668Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.668Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.668Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.668Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.668Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.715Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.715Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.715Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.715Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.715Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.715Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.715Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.715Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.715Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:57.715Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.715Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.715Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.715Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.715Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.715Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.762Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.762Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.762Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.762Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.762Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.762Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.762Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.762Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.762Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:57.762Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.762Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.762Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.762Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.762Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.762Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.809Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.809Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.809Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.809Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.809Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.809Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.809Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.809Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.809Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:57.809Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.809Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.809Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.809Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.809Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.809Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.856Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.856Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.856Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.856Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.856Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.856Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.856Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.856Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.856Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:57.856Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.856Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.856Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.856Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.856Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.856Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.903Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.903Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.903Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.903Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.903Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.903Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.903Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.903Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.903Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:57.903Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.903Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.903Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.903Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.903Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.903Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.950Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.950Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.950Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.950Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.950Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.950Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.950Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.950Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.950Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:57.950Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.950Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.950Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.950Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.950Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.950Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.997Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.997Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.997Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.997Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.997Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.997Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.997Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.997Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.997Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:57.997Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.997Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.997Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.997Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:57.997Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:57.997Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.43Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.43Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.43Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.43Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.43Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.43Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.43Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.43Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.43Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:58.43Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.43Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.43Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.43Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.43Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.43Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.90Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.90Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.90Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.90Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.90Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.90Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.90Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.90Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.90Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:58.90Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.90Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.90Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.90Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.90Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.90Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.137Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.137Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.137Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.137Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.137Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.137Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.137Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.137Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.137Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:58.137Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.137Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.137Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.137Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.137Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.137Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.184Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.184Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.184Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.184Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.184Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.184Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.184Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.184Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.184Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:58.184Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.184Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.184Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.184Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.184Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.184Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.231Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.231Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.231Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.231Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.231Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.231Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.231Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.231Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.231Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:58.231Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.231Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.231Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.231Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.231Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.231Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.278Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.278Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.278Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.278Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.278Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.278Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.278Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.278Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.278Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:58.278Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.278Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.278Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.278Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.278Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.278Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.325Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.325Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.325Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.325Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.325Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.325Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.325Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.325Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.325Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:58.325Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.325Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.325Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.325Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.325Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.325Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.372Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.372Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.372Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.372Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.372Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.372Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.372Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.372Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.372Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:58.372Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.372Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.372Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.372Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.372Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.372Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.418Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.418Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.418Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.418Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.418Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.418Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.418Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.418Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.418Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:58.418Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.418Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.418Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.418Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.418Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.418Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.512Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.512Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.512Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.512Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.512Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.512Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.512Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.512Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.512Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:58.512Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.512Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.512Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.512Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.512Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.512Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.559Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.559Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.559Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.559Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.559Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.559Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.559Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.559Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.559Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:58.559Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.559Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.559Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.559Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.559Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.559Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.606Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.606Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.606Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.606Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.606Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.606Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.606Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.606Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.606Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:58.606Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.606Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.606Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.606Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.606Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.606Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.653Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.653Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.653Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.653Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.653Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.653Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.653Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.653Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.653Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:58.653Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.653Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.653Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.653Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.653Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.653Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.700Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.700Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.700Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.700Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.700Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.700Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.700Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.700Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.700Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:58.700Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.700Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.700Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.700Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.700Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.700Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.747Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.747Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.747Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.747Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.747Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.747Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.747Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.747Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.747Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:58.747Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.747Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.747Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.747Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.747Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.747Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.793Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.793Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.793Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.793Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.793Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.793Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.793Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.793Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.793Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:58.793Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.793Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.793Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.793Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.793Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.793Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.840Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.840Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.840Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.840Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.840Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.840Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.840Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.840Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.840Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:58.840Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.840Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.840Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.840Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.840Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.840Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.887Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.887Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.887Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.887Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.887Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.887Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.887Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.887Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.887Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:58.887Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.887Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.887Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.887Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.887Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.887Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.934Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.934Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.934Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.934Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.934Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.934Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.934Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.934Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.934Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:58.934Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.934Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.934Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.934Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.934Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.934Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.981Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.981Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.981Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.981Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.981Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.981Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.981Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.981Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.981Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:58.981Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.981Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.981Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.981Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:58.981Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:58.981Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.28Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.28Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.28Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.28Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.28Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.28Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.28Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.28Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.28Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:59.28Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.28Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.28Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.28Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.28Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.28Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.75Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.75Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.75Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.75Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.75Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.75Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.75Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.75Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.75Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:59.75Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.75Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.75Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.75Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.75Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.75Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.122Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.122Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.122Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.122Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.122Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.122Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.122Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.122Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.122Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:59.122Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.122Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.122Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.122Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.122Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.122Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.168Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.168Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.168Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.168Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.168Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.168Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.168Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.168Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.168Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:59.168Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.168Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.168Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.168Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.168Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.168Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.215Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.215Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.215Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.215Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.215Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.215Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.215Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.215Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.215Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:59.215Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.215Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.215Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.215Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.215Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.215Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.262Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.262Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.262Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.262Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.262Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.262Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.262Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.262Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.262Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:59.262Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.262Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.262Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.262Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.262Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.262Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.309Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.309Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.309Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.309Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.309Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.309Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.309Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.309Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.309Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:59.309Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.309Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.309Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.309Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.309Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.309Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.356Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.356Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.356Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.356Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.356Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.356Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.356Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.356Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.356Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:59.356Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.356Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.356Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.356Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.356Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.356Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.403Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.403Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.403Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.403Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.403Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.403Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.403Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.403Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.403Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:59.403Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.403Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.403Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.403Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.403Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.403Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.450Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.450Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.450Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.450Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.450Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.450Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.450Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.450Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.450Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:59.450Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.450Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.450Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.450Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.450Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.450Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.497Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.497Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.497Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.497Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.497Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.497Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.497Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.497Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.497Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:59.497Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.497Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.497Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.497Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.497Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.497Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.497Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.559Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.559Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.559Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.559Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.559Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.559Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.559Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.559Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.559Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:59.559Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.559Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.559Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.559Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.559Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.559Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.606Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.606Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.606Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.606Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.606Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.606Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.606Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.606Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.606Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:59.606Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.606Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.606Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.606Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.606Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.606Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.653Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.653Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.653Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.653Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.653Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.653Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.653Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.653Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.653Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:59.653Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.653Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.653Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.653Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.653Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.653Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.700Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.700Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.700Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.700Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.700Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.700Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.700Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.700Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.700Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:59.700Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.700Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.700Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.700Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.700Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.700Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.747Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.747Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.747Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.747Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.747Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.747Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.747Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.747Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.747Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:59.747Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.747Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.747Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.747Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.747Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.747Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.793Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.793Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.793Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.793Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.793Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.793Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.793Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.793Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.793Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:59.793Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.793Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.793Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.793Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.793Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.793Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.840Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.840Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.840Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.840Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.840Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.840Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.840Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.840Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.840Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:59.840Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.840Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.840Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.840Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.840Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.840Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.887Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.887Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.887Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.887Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.887Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.887Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.887Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.887Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.887Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:59.887Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.887Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.887Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.887Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.887Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.887Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.934Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.934Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.934Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.934Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.934Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.934Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.934Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.934Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.934Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:59.934Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.934Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.934Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.934Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.934Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.934Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.981Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.981Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.981Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.981Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.981Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.981Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.981Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.981Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.981Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:47:59.981Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.981Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.981Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.981Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:47:59.981Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:47:59.981Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.28Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.28Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.28Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.28Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.28Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.28Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.28Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.28Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.28Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:48:0.28Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.28Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.28Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.28Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.28Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.28Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.75Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.75Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.75Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.75Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.75Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.75Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.75Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.75Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.75Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:48:0.75Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.75Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.75Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.75Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.75Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.75Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.122Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.122Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.122Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.122Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.122Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.122Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.122Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.122Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.122Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:48:0.122Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.122Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.122Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.122Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.122Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.122Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.168Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.168Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.168Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.168Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.168Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.168Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.168Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.168Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.168Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:48:0.168Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.168Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.168Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.168Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.168Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.168Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.215Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.215Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.215Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.215Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.215Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.215Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.215Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.215Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.215Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:48:0.215Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.215Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.215Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.215Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.215Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.215Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.262Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.262Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.262Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.262Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.262Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.262Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.262Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.262Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.262Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:48:0.262Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.262Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.262Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.262Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.262Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.262Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.309Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.309Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.309Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.309Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.309Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.309Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.309Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.309Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.309Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:48:0.309Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.309Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.309Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.309Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.309Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.309Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.356Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.356Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.356Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.356Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.356Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.356Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.356Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.356Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.356Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:48:0.356Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.356Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.356Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.356Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.356Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.356Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.403Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.403Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.403Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.403Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.403Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.403Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.403Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.403Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.403Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:48:0.403Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.403Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.403Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.403Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.403Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.403Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.450Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.450Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.450Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.450Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.450Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.450Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.450Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.450Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.450Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:48:0.450Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.450Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.450Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.450Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.450Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.450Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.497Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.497Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.497Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.497Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.497Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.497Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.497Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.497Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.497Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:48:0.497Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.497Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.497Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.497Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.497Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.497Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.543Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.543Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.543Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.543Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.543Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.543Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.543Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.543Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.543Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:48:0.543Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.543Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.543Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.543Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.543Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.543Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.590Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.590Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.590Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.590Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.590Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.590Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.590Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.590Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.590Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:48:0.590Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.590Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.590Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.590Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.590Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.590Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.637Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.637Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.637Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.637Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.637Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.637Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.637Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.637Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.637Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:48:0.637Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.637Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.637Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.637Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.637Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.637Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.684Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.684Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.684Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.684Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.684Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.684Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.684Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.684Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.684Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:48:0.684Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.684Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.684Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.684Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.684Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.684Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.731Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.731Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.731Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.731Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.731Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.731Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.731Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.731Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.731Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:48:0.731Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.731Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.731Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.731Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.731Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.731Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.778Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.778Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.778Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.778Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.778Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.778Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.778Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.778Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.778Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:48:0.778Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.778Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.778Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.778Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.778Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.778Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.825Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.825Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.825Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.825Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.825Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.825Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.825Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.825Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.825Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:48:0.825Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.825Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.825Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.825Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.825Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.825Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.872Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.872Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.872Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.872Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.872Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.872Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.872Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.872Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.872Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:48:0.872Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.872Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.872Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.872Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.872Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.872Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.918Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.918Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.918Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.918Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.918Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.918Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.918Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.918Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.918Open2200C:\malware.exeC:\Monitor\Files\DeletedFiles
13/3/2020 - 17:48:0.918Delete2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.918Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.918Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.918Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.918Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.918Write2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp\XxX.xXx
13/3/2020 - 17:48:0.965Open2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48:0.965Unknown2200C:\malware.exeC:\Users\Behemot\AppData\Local\Temp
13/3/2020 - 17:48: