| pdb_path | mi_exe_stub.pdb |
| resource name | B |
| resource name | GOOGLEUPDATE |
| name | RT_STRING | language | LANG_SERBIAN | offset | 0x00099ca4 | filetype | data | sublanguage | SUBLANG_SERBIAN_CYRILLIC | size | 0x000001aa | ||||||||||||||||||
| name | RT_STRING | language | LANG_SERBIAN | offset | 0x00099ca4 | filetype | data | sublanguage | SUBLANG_SERBIAN_CYRILLIC | size | 0x000001aa | ||||||||||||||||||
| name | RT_STRING | language | LANG_SERBIAN | offset | 0x00099ca4 | filetype | data | sublanguage | SUBLANG_SERBIAN_CYRILLIC | size | 0x000001aa | ||||||||||||||||||
| name | RT_STRING | language | LANG_SERBIAN | offset | 0x00099ca4 | filetype | data | sublanguage | SUBLANG_SERBIAN_CYRILLIC | size | 0x000001aa | ||||||||||||||||||
| name | RT_STRING | language | LANG_SERBIAN | offset | 0x00099ca4 | filetype | data | sublanguage | SUBLANG_SERBIAN_CYRILLIC | size | 0x000001aa | ||||||||||||||||||
| name | RT_STRING | language | LANG_SERBIAN | offset | 0x00099ca4 | filetype | data | sublanguage | SUBLANG_SERBIAN_CYRILLIC | size | 0x000001aa | ||||||||||||||||||
| name | RT_STRING | language | LANG_SERBIAN | offset | 0x00099ca4 | filetype | data | sublanguage | SUBLANG_SERBIAN_CYRILLIC | size | 0x000001aa | ||||||||||||||||||
| name | RT_STRING | language | LANG_SERBIAN | offset | 0x00099ca4 | filetype | data | sublanguage | SUBLANG_SERBIAN_CYRILLIC | size | 0x000001aa | ||||||||||||||||||
| name | RT_STRING | language | LANG_SERBIAN | offset | 0x00099ca4 | filetype | data | sublanguage | SUBLANG_SERBIAN_CYRILLIC | size | 0x000001aa | ||||||||||||||||||
| name | RT_STRING | language | LANG_SERBIAN | offset | 0x00099ca4 | filetype | data | sublanguage | SUBLANG_SERBIAN_CYRILLIC | size | 0x000001aa | ||||||||||||||||||
| name | RT_STRING | language | LANG_SERBIAN | offset | 0x00099ca4 | filetype | data | sublanguage | SUBLANG_SERBIAN_CYRILLIC | size | 0x000001aa | ||||||||||||||||||
| name | RT_STRING | language | LANG_SERBIAN | offset | 0x00099ca4 | filetype | data | sublanguage | SUBLANG_SERBIAN_CYRILLIC | size | 0x000001aa | ||||||||||||||||||
| name | RT_STRING | language | LANG_SERBIAN | offset | 0x00099ca4 | filetype | data | sublanguage | SUBLANG_SERBIAN_CYRILLIC | size | 0x000001aa | ||||||||||||||||||
| name | RT_STRING | language | LANG_SERBIAN | offset | 0x00099ca4 | filetype | data | sublanguage | SUBLANG_SERBIAN_CYRILLIC | size | 0x000001aa | ||||||||||||||||||
| name | RT_STRING | language | LANG_SERBIAN | offset | 0x00099ca4 | filetype | data | sublanguage | SUBLANG_SERBIAN_CYRILLIC | size | 0x000001aa | ||||||||||||||||||
| name | RT_STRING | language | LANG_SERBIAN | offset | 0x00099ca4 | filetype | data | sublanguage | SUBLANG_SERBIAN_CYRILLIC | size | 0x000001aa | ||||||||||||||||||
| name | RT_STRING | language | LANG_SERBIAN | offset | 0x00099ca4 | filetype | data | sublanguage | SUBLANG_SERBIAN_CYRILLIC | size | 0x000001aa | ||||||||||||||||||
| name | RT_STRING | language | LANG_SERBIAN | offset | 0x00099ca4 | filetype | data | sublanguage | SUBLANG_SERBIAN_CYRILLIC | size | 0x000001aa | ||||||||||||||||||
| name | RT_STRING | language | LANG_SERBIAN | offset | 0x00099ca4 | filetype | data | sublanguage | SUBLANG_SERBIAN_CYRILLIC | size | 0x000001aa | ||||||||||||||||||
| name | RT_STRING | language | LANG_SERBIAN | offset | 0x00099ca4 | filetype | data | sublanguage | SUBLANG_SERBIAN_CYRILLIC | size | 0x000001aa | ||||||||||||||||||
| name | RT_STRING | language | LANG_SERBIAN | offset | 0x00099ca4 | filetype | data | sublanguage | SUBLANG_SERBIAN_CYRILLIC | size | 0x000001aa | ||||||||||||||||||
| name | RT_STRING | language | LANG_SERBIAN | offset | 0x00099ca4 | filetype | data | sublanguage | SUBLANG_SERBIAN_CYRILLIC | size | 0x000001aa | ||||||||||||||||||
| name | RT_STRING | language | LANG_SERBIAN | offset | 0x00099ca4 | filetype | data | sublanguage | SUBLANG_SERBIAN_CYRILLIC | size | 0x000001aa | ||||||||||||||||||
| name | RT_STRING | language | LANG_SERBIAN | offset | 0x00099ca4 | filetype | data | sublanguage | SUBLANG_SERBIAN_CYRILLIC | size | 0x000001aa | ||||||||||||||||||
| name | RT_STRING | language | LANG_SERBIAN | offset | 0x00099ca4 | filetype | data | sublanguage | SUBLANG_SERBIAN_CYRILLIC | size | 0x000001aa | ||||||||||||||||||
| name | RT_STRING | language | LANG_SERBIAN | offset | 0x00099ca4 | filetype | data | sublanguage | SUBLANG_SERBIAN_CYRILLIC | size | 0x000001aa | ||||||||||||||||||
| name | RT_STRING | language | LANG_SERBIAN | offset | 0x00099ca4 | filetype | data | sublanguage | SUBLANG_SERBIAN_CYRILLIC | size | 0x000001aa | ||||||||||||||||||
| name | RT_STRING | language | LANG_SERBIAN | offset | 0x00099ca4 | filetype | data | sublanguage | SUBLANG_SERBIAN_CYRILLIC | size | 0x000001aa | ||||||||||||||||||
| name | RT_STRING | language | LANG_SERBIAN | offset | 0x00099ca4 | filetype | data | sublanguage | SUBLANG_SERBIAN_CYRILLIC | size | 0x000001aa | ||||||||||||||||||
| name | RT_STRING | language | LANG_SERBIAN | offset | 0x00099ca4 | filetype | data | sublanguage | SUBLANG_SERBIAN_CYRILLIC | size | 0x000001aa | ||||||||||||||||||
| name | RT_STRING | language | LANG_SERBIAN | offset | 0x00099ca4 | filetype | data | sublanguage | SUBLANG_SERBIAN_CYRILLIC | size | 0x000001aa | ||||||||||||||||||
| name | RT_STRING | language | LANG_SERBIAN | offset | 0x00099ca4 | filetype | data | sublanguage | SUBLANG_SERBIAN_CYRILLIC | size | 0x000001aa | ||||||||||||||||||
| name | RT_STRING | language | LANG_SERBIAN | offset | 0x00099ca4 | filetype | data | sublanguage | SUBLANG_SERBIAN_CYRILLIC | size | 0x000001aa | ||||||||||||||||||
| name | RT_STRING | language | LANG_SERBIAN | offset | 0x00099ca4 | filetype | data | sublanguage | SUBLANG_SERBIAN_CYRILLIC | size | 0x000001aa | ||||||||||||||||||
| name | RT_STRING | language | LANG_SERBIAN | offset | 0x00099ca4 | filetype | data | sublanguage | SUBLANG_SERBIAN_CYRILLIC | size | 0x000001aa | ||||||||||||||||||
| name | RT_STRING | language | LANG_SERBIAN | offset | 0x00099ca4 | filetype | data | sublanguage | SUBLANG_SERBIAN_CYRILLIC | size | 0x000001aa | ||||||||||||||||||
| name | RT_STRING | language | LANG_SERBIAN | offset | 0x00099ca4 | filetype | data | sublanguage | SUBLANG_SERBIAN_CYRILLIC | size | 0x000001aa | ||||||||||||||||||
| name | RT_STRING | language | LANG_SERBIAN | offset | 0x00099ca4 | filetype | data | sublanguage | SUBLANG_SERBIAN_CYRILLIC | size | 0x000001aa | ||||||||||||||||||
| name | RT_STRING | language | LANG_SERBIAN | offset | 0x00099ca4 | filetype | data | sublanguage | SUBLANG_SERBIAN_CYRILLIC | size | 0x000001aa | ||||||||||||||||||
| name | RT_STRING | language | LANG_SERBIAN | offset | 0x00099ca4 | filetype | data | sublanguage | SUBLANG_SERBIAN_CYRILLIC | size | 0x000001aa | ||||||||||||||||||
| name | RT_STRING | language | LANG_SERBIAN | offset | 0x00099ca4 | filetype | data | sublanguage | SUBLANG_SERBIAN_CYRILLIC | size | 0x000001aa | ||||||||||||||||||
| name | RT_STRING | language | LANG_SERBIAN | offset | 0x00099ca4 | filetype | data | sublanguage | SUBLANG_SERBIAN_CYRILLIC | size | 0x000001aa | ||||||||||||||||||
| name | RT_STRING | language | LANG_SERBIAN | offset | 0x00099ca4 | filetype | data | sublanguage | SUBLANG_SERBIAN_CYRILLIC | size | 0x000001aa | ||||||||||||||||||
| name | RT_STRING | language | LANG_SERBIAN | offset | 0x00099ca4 | filetype | data | sublanguage | SUBLANG_SERBIAN_CYRILLIC | size | 0x000001aa | ||||||||||||||||||
| name | RT_STRING | language | LANG_SERBIAN | offset | 0x00099ca4 | filetype | data | sublanguage | SUBLANG_SERBIAN_CYRILLIC | size | 0x000001aa | ||||||||||||||||||
| name | RT_STRING | language | LANG_SERBIAN | offset | 0x00099ca4 | filetype | data | sublanguage | SUBLANG_SERBIAN_CYRILLIC | size | 0x000001aa | ||||||||||||||||||
| name | RT_STRING | language | LANG_SERBIAN | offset | 0x00099ca4 | filetype | data | sublanguage | SUBLANG_SERBIAN_CYRILLIC | size | 0x000001aa | ||||||||||||||||||
| name | RT_STRING | language | LANG_SERBIAN | offset | 0x00099ca4 | filetype | data | sublanguage | SUBLANG_SERBIAN_CYRILLIC | size | 0x000001aa | ||||||||||||||||||
| name | RT_STRING | language | LANG_SERBIAN | offset | 0x00099ca4 | filetype | data | sublanguage | SUBLANG_SERBIAN_CYRILLIC | size | 0x000001aa | ||||||||||||||||||
| name | RT_STRING | language | LANG_SERBIAN | offset | 0x00099ca4 | filetype | data | sublanguage | SUBLANG_SERBIAN_CYRILLIC | size | 0x000001aa | ||||||||||||||||||
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_ko.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_sr.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\UranUpdateBroker.exe |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_fil.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_ml.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\UranUpdateOnDemand.exe |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_de.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_pt-PT.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_ja.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\psmachine.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_et.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\npGoogleUpdate3.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_mr.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_en-GB.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_zh-CN.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_te.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_pt-BR.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\UranUpdate.exe |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\psuser.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_bg.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_lv.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_it.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_ca.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_ar.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_cs.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_fa.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_nl.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_am.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_ta.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\UranUpdateHelper.msi |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_ms.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_en.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_is.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_uk.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_ur.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_id.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_es-419.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_hu.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\GoogleCrashHandler.exe |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_hr.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_fi.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_es.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_hi.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_tr.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_sv.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_lt.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdate.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_no.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_ro.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_vi.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_th.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\npGoogleUpdate3.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_sw.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_nl.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_id.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_is.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_ur.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_ms.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_fil.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_iw.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_it.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_hu.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\UranUpdate.exe |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_gu.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_zh-CN.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_no.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_sl.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_zh-TW.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_cs.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_bn.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_fi.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\psmachine.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_ja.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_sr.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_ml.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_es-419.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_ar.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_ta.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_vi.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_bg.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_en-GB.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_fr.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_ru.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_te.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_es.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_am.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_pt-BR.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_fa.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_en.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_lt.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_ca.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_sv.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_ko.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_sk.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_tr.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_et.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_de.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_mr.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\goopdateres_hi.dll |
| file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\GUM7BD2.tmp\psuser.dll |
| entropy | 7.956125221769927 | section | {'size_of_data': '0x00088600', 'virtual_address': '0x00012000', 'entropy': 7.956125221769927, 'name': '.rsrc', 'virtual_size': '0x00088510'} | description | A section with a high entropy has been found | |||||||||
| entropy | 0.8927986906710311 | description | Overall entropy of this PE file is high | |||||||||||
| host | 172.217.24.14 | |||
| dead_host | 172.217.24.14:443 |
| dead_host | 172.217.160.110:443 |
No hosts contacted.
| Name | Response | Post-Analysis Lookup |
|---|---|---|
| time.windows.com |
A 20.189.79.72
CNAME time.microsoft.akadns.net |
|
| clients2.google.com |
A 172.217.160.110
CNAME clients.l.google.com |
172.217.24.14 |
| dns.msftncsi.com | AAAA fd3e:4f5a:5b81::1 | 131.107.255.255 |
| dns.msftncsi.com | A 131.107.255.255 | 131.107.255.255 |
| teredo.ipv6.microsoft.com | 127.0.0.1 |
No TCP connections recorded.
| Source | Source Port | Destination | Destination Port |
|---|---|---|---|
| 192.168.56.101 | 51808 | 114.114.114.114 | 53 |
| 192.168.56.101 | 51963 | 114.114.114.114 | 53 |
| 192.168.56.101 | 55368 | 114.114.114.114 | 53 |
| 192.168.56.101 | 60123 | 114.114.114.114 | 53 |
| 192.168.56.101 | 60384 | 114.114.114.114 | 53 |
| 192.168.56.101 | 137 | 192.168.56.255 | 137 |
| 192.168.56.101 | 138 | 192.168.56.255 | 138 |
| 192.168.56.101 | 123 | 20.189.79.72 time.windows.com | 123 |
| 192.168.56.101 | 49713 | 224.0.0.252 | 5355 |
| 192.168.56.101 | 51378 | 224.0.0.252 | 5355 |
| 192.168.56.101 | 53237 | 224.0.0.252 | 5355 |
| 192.168.56.101 | 56804 | 224.0.0.252 | 5355 |
| 192.168.56.101 | 58367 | 224.0.0.252 | 5355 |
| 192.168.56.101 | 62191 | 224.0.0.252 | 5355 |
| 192.168.56.101 | 62318 | 224.0.0.252 | 5355 |
| 192.168.56.101 | 63429 | 224.0.0.252 | 5355 |
| 192.168.56.101 | 65004 | 224.0.0.252 | 5355 |
| 192.168.56.101 | 1900 | 239.255.255.250 | 1900 |
| 192.168.56.101 | 51379 | 239.255.255.250 | 3702 |
| 192.168.56.101 | 55369 | 239.255.255.250 | 3702 |
No HTTP requests performed.
No ICMP traffic performed.
No IRC requests performed.
No Suricata Alerts
No Suricata TLS
No Snort Alerts