查杀引擎 | 查杀结果 | 查杀时间 | 查杀版本 |
---|---|---|---|
McAfee | 20200213 | 6.0.6.653 | |
Alibaba | 20190527 | 0.3.0.5 | |
CrowdStrike | 20190702 | 1.0 | |
Baidu | 20190318 | 1.0.0.2 | |
Avast | Win32:PUP-gen [PUP] | 20200213 | 18.4.3895.0 |
Tencent | 20200214 | 1.0.0.1 | |
Kingsoft | 20200214 | 2013.8.14.323 |
file | C:\Program Files\Google\Chrome\Application\chrome.exe |
section | .itext |
section | .didata |
suspicious_features | GET method with no useragent header | suspicious_request | GET http://rp.appuniverseapplication.com/ | ||||||
suspicious_features | GET method with no useragent header | suspicious_request | GET http://1223.dragonparking.com/?site=rp.appuniverseapplication.com | ||||||
suspicious_features | POST method with no referer header | suspicious_request | POST http://rp.appuniverseapplication.com/ | ||||||
suspicious_features | POST method with no referer header | suspicious_request | POST http://os.appuniverseapplication.com/ | ||||||
suspicious_features | HTTP version 1.0 used | suspicious_request | GET http://post.securestudies.com/packages/RI1034/ContentI3.exe | ||||||
suspicious_features | POST method with no referer header | suspicious_request | POST http://os2.appuniverseapplication.com/ |
request | GET http://rp.appuniverseapplication.com/ |
request | GET http://1223.dragonparking.com/?site=rp.appuniverseapplication.com |
request | POST http://rp.appuniverseapplication.com/ |
request | GET http://ocsp.digicert.com/MFEwTzBNMEswSTAJBgUrDgMCGgUABBTBL0V27RVZ7LBduom%2FnYB45SPUEwQU5Z1ZMIJHWMys%2BghUNoZ7OrUETfACEAo3h2ReX7SMIk79G%2B0UDDw%3D |
request | GET http://ocsp.digicert.com/MFEwTzBNMEswSTAJBgUrDgMCGgUABBQS14tALDViBvqCf47YkiQRtKz1BAQUpc436uuwdQ6UZ4i0RfrZJBCHlh8CEAPcYwoSMi%2FL8DFvBZHrSfY%3D |
request | POST http://os.appuniverseapplication.com/ |
request | GET http://post.securestudies.com/packages/RI1034/ContentI3.exe |
request | GET http://1223.dragonparking.com/?site=os.appuniverseapplication.com |
request | POST http://os2.appuniverseapplication.com/ |
request | GET http://1223.dragonparking.com/?site=os2.appuniverseapplication.com |
request | GET https://dp.diandongzhi.com/?acct=1223&site=rp.appuniverseapplication.com |
request | GET https://dp.diandongzhi.com/?acct=1223&site=os.appuniverseapplication.com |
request | GET https://dp.diandongzhi.com/?acct=1223&site=os2.appuniverseapplication.com |
request | POST http://rp.appuniverseapplication.com/ |
request | POST http://os.appuniverseapplication.com/ |
request | POST http://os2.appuniverseapplication.com/ |
description | 896da26ef3efd9f70c66954f328fd371.tmp tried to sleep 161 seconds, actually delayed analysis time by 161 seconds |
file | C:\Users\Administrator.Oskar-PC\AppData\Local\Google\Chrome\User Data\ZxcvbnData\Cache |
file | C:\Users\Administrator.Oskar-PC\AppData\Local\Google\Chrome\User Data\MEIPreload\Cache |
file | C:\Users\Administrator.Oskar-PC\AppData\Local\Google\Chrome\User Data\pnacl\Cache |
file | C:\Users\Administrator.Oskar-PC\AppData\Local\Google\Chrome\User Data\Default\Cache |
file | C:\Users\Administrator.Oskar-PC\AppData\Local\Google\Chrome\User Data\ShaderCache\Cache |
file | C:\Users\Administrator.Oskar-PC\AppData\Local\Google\Chrome\User Data\OnDeviceHeadSuggestModel\Cache |
file | C:\Users\Administrator.Oskar-PC\AppData\Local\Google\Chrome\User Data\SafetyTips\Cache |
file | C:\Users\Administrator.Oskar-PC\AppData\Local\Google\Chrome\User Data\SwReporter\Cache |
file | C:\Users\Administrator.Oskar-PC\AppData\Local\Google\Chrome\User Data\Floc\Cache |
file | C:\Users\Administrator.Oskar-PC\AppData\Local\Google\Chrome\User Data\OriginTrials\Cache |
file | C:\Users\Administrator.Oskar-PC\AppData\Local\Google\Chrome\User Data\ThirdPartyModuleList64\Cache |
file | C:\Users\Administrator.Oskar-PC\AppData\Local\Google\Chrome\User Data\SSLErrorAssistant\Cache |
file | C:\Users\Administrator.Oskar-PC\AppData\Local\Google\Chrome\User Data\Subresource Filter\Cache |
file | C:\Users\Administrator.Oskar-PC\AppData\Local\Google\Chrome\User Data\TLSDeprecationConfig\Cache |
file | C:\Users\Administrator.Oskar-PC\AppData\Local\Google\Chrome\User Data\ |
file | C:\Users\Administrator.Oskar-PC\AppData\Local\Google\Chrome\User Data\Safe Browsing\Cache |
file | C:\Users\Administrator.Oskar-PC\AppData\Local\Google\Chrome\User Data\BrowserMetrics\Cache |
file | C:\Users\Administrator.Oskar-PC\AppData\Local\Google\Chrome\User Data\hyphen-data\Cache |
file | C:\Users\Administrator.Oskar-PC\AppData\Local\Google\Chrome\User Data\Default\Cache\ |
file | C:\Users\Administrator.Oskar-PC\AppData\Local\Google\Chrome\User Data\Crowd Deny\Cache |
file | C:\Users\Administrator.Oskar-PC\AppData\Local\Google\Chrome\User Data\FontLookupTableCache\Cache |
file | C:\Users\Administrator.Oskar-PC\AppData\Local\Google\Chrome\User Data\FileTypePolicies\Cache |
file | C:\Users\Administrator.Oskar-PC\AppData\Local\Google\Chrome\User Data\Crashpad\Cache |
file | C:\Users\Administrator.Oskar-PC\AppData\Local\Google\Chrome\User Data\CertificateRevocation\Cache |
file | C:\Users\Administrator.Oskar-PC\AppData\Local\Google\Chrome\User Data\AutofillStates\Cache |
file | C:\Users\Administrator.Oskar-PC\AppData\Local\Google\Chrome\User Data\WidevineCdm\Cache |
file | C:\Users\Administrator.Oskar-PC\AppData\Local\Google\Chrome\User Data\RecoveryImproved\Cache |
file | C:\Users\Administrator.Oskar-PC\AppData\Local\Google\Chrome\User Data\GrShaderCache\Cache |
file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\is-42L12.tmp\isxdl.dll |
file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\is-42L12.tmp\ezdatzsazzxt.dll |
file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\is-42L12.tmp\itdownload.dll |
file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\is-1D5SK.tmp\896da26ef3efd9f70c66954f328fd371.tmp |
file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\is-42L12.tmp\ezdatzsazzxt.dll |
file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\is-42L12.tmp\isxdl.dll |
file | C:\Users\Administrator.Oskar-PC\AppData\Local\Temp\is-42L12.tmp\itdownload.dll |
Time & API | Arguments | Status | Return | Repeated |
---|---|---|---|---|
1620950472.179626 GetAdaptersAddresses |
flags:
0
family: 0 |
failed | 111 | 0 |