![]() "vcredist_x86_2013.exe" has type "PE32 executable (GUI) Intel 80386 for MS Windows" "vcredist_x86.exe" has type "PE32 executable (GUI) Intel 80386 for MS Windows" "qwindows.dll" has type "PE32 executable (DLL) (GUI) Intel 80386 for MS Windows" "Qt5Core.dll" has type "PE32 executable (DLL) (GUI) Intel 80386 for MS Windows" "uninst.exe" has type "PE32 executable (GUI) Intel 80386 for MS Windows Nullsoft Installer self-extracting archive" "wixstdba.dll" has type "PE32 executable (DLL) (GUI) Intel 80386 for MS Windows" ![]() "Qt5Network.dll" has type "PE32 executable (DLL) (GUI) Intel 80386 for MS Windows" "VC_" has type "PE32 executable (GUI) Intel 80386 for MS Windows" References security related windows services Malicious artifacts seen in the context of a contacted hostįound malicious artifacts related to "2.22.48.32". "vc_" wrote 52 bytes to a remote process "C:\Windows\System32\wusa.exe" (Handle: 912) "vc_" wrote 32 bytes to a remote process "C:\Windows\System32\wusa.exe" (Handle: 912) "vc_" wrote 4 bytes to a remote process "C:\Windows\System32\wusa.exe" (Handle: 912) "vc_" wrote 1500 bytes to a remote process "C:\Windows\System32\wusa.exe" (Handle: 912) "vc_" wrote 52 bytes to a remote process "C:\Program Files\Toontown Offline\vc_" (Handle: 180) "vc_" wrote 32 bytes to a remote process "C:\Program Files\Toontown Offline\vc_" (Handle: 180) "vc_" wrote 4 bytes to a remote process "C:\Program Files\Toontown Offline\vc_" (Handle: 180) "vc_" wrote 1500 bytes to a remote process "C:\Program Files\Toontown Offline\vc_" (Handle: 180) "vcredist_x86_2013.exe" wrote 52 bytes to a remote process "C:\Program Files\Toontown Offline\vcredist_x86_2013.exe" (Handle: 176) "vcredist_x86_2013.exe" wrote 32 bytes to a remote process "C:\Program Files\Toontown Offline\vcredist_x86_2013.exe" (Handle: 176) "vcredist_x86_2013.exe" wrote 4 bytes to a remote process "C:\Program Files\Toontown Offline\vcredist_x86_2013.exe" (Handle: 176) ![]() "vcredist_x86_2013.exe" wrote 1500 bytes to a remote process "C:\Program Files\Toontown Offline\vcredist_x86_2013.exe" (Handle: 176) "" wrote 52 bytes to a remote process "C:\Program Files\Toontown Offline\vc_" (Handle: 460) "" wrote 32 bytes to a remote process "C:\Program Files\Toontown Offline\vc_" (Handle: 460) "" wrote 4 bytes to a remote process "C:\Program Files\Toontown Offline\vc_" (Handle: 460) "" wrote 1500 bytes to a remote process "C:\Program Files\Toontown Offline\vc_" (Handle: 460) "" wrote 52 bytes to a remote process "C:\Program Files\Toontown Offline\vcredist_x86_2013.exe" (Handle: 536) "" wrote 32 bytes to a remote process "C:\Program Files\Toontown Offline\vcredist_x86_2013.exe" (Handle: 536) "" wrote 4 bytes to a remote process "C:\Program Files\Toontown Offline\vcredist_x86_2013.exe" (Handle: 536) "" wrote 1500 bytes to a remote process "%PROGRAMFILES%\Toontown Offline\vcredist_x86_2013.exe" (Handle: 536)
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |