Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

6

Static

static

3

48094140be...92.exe

windows7-x64

6

48094140be...92.exe

windows10-2004-x64

6

Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    26/12/2023, 01:08 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    48094140be0c6f32765c7d795ae43d92.exe

  • Size

    37KB

  • MD5

    48094140be0c6f32765c7d795ae43d92

  • SHA1

    26c4a2a8a24f579c8405e751872c97969de460fb

  • SHA256

    5db26b8d873ad142e55e69eb37222ece5f44d6f0e1f330a6a5f90786c2b95467

  • SHA512

    b7b68f43084aeb2d589d42238440f9b725e7a865ca788fbd23c6022e0ee223a621c5ac3853c11cefd45d29c430f2f3a1955b7f5a0e6930006b5294a31f1a3a8a

  • SSDEEP

    768:qyqEjdD97PGaBvWSGoXwCCidV+AZF2sC9/O9772CF:DjlRnBuoACC2V+AasC9/2

Score
6/10
persistence

Malware Config

Signatures

  • Adds Run key to start application 2 TTPs 1 IoCs
    persistence
  • Suspicious behavior: RenamesItself 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\48094140be0c6f32765c7d795ae43d92.exe
    "C:\Users\Admin\AppData\Local\Temp\48094140be0c6f32765c7d795ae43d92.exe"
    1⤵
    • Adds Run key to start application
    • Suspicious behavior: RenamesItself
    PID:2420

Network

  • flag-us
    DNS
    app2.winsoft1.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft1.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft1.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft1.com
    IN A
  • flag-us
    DNS
    app2.winsoft2.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft2.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft3.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft3.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft4.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft4.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft5.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft5.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft6.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft6.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft7.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft7.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft8.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft8.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft9.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft9.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft10.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft10.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft10.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft10.com
    IN A
  • flag-us
    DNS
    app2.winsoft11.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft11.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft11.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft11.com
    IN A
  • flag-us
    DNS
    app2.winsoft12.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft12.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft13.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft13.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft14.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft14.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft14.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft14.com
    IN A
  • flag-us
    DNS
    app2.winsoft14.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft14.com
    IN A
  • flag-us
    DNS
    app2.winsoft15.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft15.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft16.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft16.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft17.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft17.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft18.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft18.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft19.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft19.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft20.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft20.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft21.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft21.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft22.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft22.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft22.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft22.com
    IN A
  • flag-us
    DNS
    app2.winsoft23.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft23.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft24.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft24.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft25.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft25.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft26.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft26.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft27.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft27.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft27.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft27.com
    IN A
  • flag-us
    DNS
    app2.winsoft28.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft28.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft29.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft29.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft30.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft30.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft31.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft31.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft32.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft32.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft33.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft33.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft34.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft34.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft35.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft35.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft36.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft36.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft37.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft37.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft38.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft38.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft38.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft38.com
    IN A
  • flag-us
    DNS
    app2.winsoft39.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft39.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft40.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft40.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft41.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft41.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft41.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft41.com
    IN A
  • flag-us
    DNS
    app2.winsoft42.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft42.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft43.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft43.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft44.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft44.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft45.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft45.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft46.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft46.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft46.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft46.com
    IN A
  • flag-us
    DNS
    app2.winsoft47.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft47.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft48.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft48.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft48.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft48.com
    IN A
  • flag-us
    DNS
    app2.winsoft49.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft49.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft50.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft50.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft51.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft51.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft52.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft52.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft52.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft52.com
    IN A
  • flag-us
    DNS
    app2.winsoft52.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft52.com
    IN A
  • flag-us
    DNS
    app2.winsoft53.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft53.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft53.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft53.com
    IN A
  • flag-us
    DNS
    app2.winsoft54.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft54.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft55.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft55.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft56.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft56.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft56.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft56.com
    IN A
  • flag-us
    DNS
    app2.winsoft57.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft57.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft58.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft58.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft58.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft58.com
    IN A
  • flag-us
    DNS
    app2.winsoft58.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft58.com
    IN A
  • flag-us
    DNS
    app2.winsoft59.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft59.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft59.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft59.com
    IN A
  • flag-us
    DNS
    app2.winsoft60.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft60.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft60.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft60.com
    IN A
  • flag-us
    DNS
    app2.winsoft61.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft61.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft62.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft62.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft63.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft63.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft64.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft64.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft65.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft65.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft66.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft66.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft67.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft67.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft68.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft68.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft68.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft68.com
    IN A
  • flag-us
    DNS
    app2.winsoft69.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft69.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft70.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft70.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft71.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft71.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft72.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft72.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft73.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft73.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft74.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft74.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft75.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft75.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft76.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft76.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft76.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft76.com
    IN A
  • flag-us
    DNS
    app2.winsoft77.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft77.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft78.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft78.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft79.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft79.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft80.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft80.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft81.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft81.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft82.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft82.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft83.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft83.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft84.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft84.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft85.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft85.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft86.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft86.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft87.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft87.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft88.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft88.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft89.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft89.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft90.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft90.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft90.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft90.com
    IN A
  • flag-us
    DNS
    app2.winsoft91.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft91.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft92.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft92.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft93.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft93.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft94.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft94.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft95.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft95.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft96.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft96.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft97.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft97.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft98.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft98.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft98.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft98.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft98.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft98.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft98.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft98.com
    IN A
  • flag-us
    DNS
    app2.winsoft99.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft99.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft100.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft100.com
    IN A
    Response
  • flag-us
    DNS
    app2.winsoft100.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft100.com
    IN A
  • flag-us
    DNS
    app2.winsoft0.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    app2.winsoft0.com
    IN A
    Response
  • flag-us
    DNS
    p2.winsoft3.com
    48094140be0c6f32765c7d795ae43d92.exe
    Remote address:
    8.8.8.8:53
    Request
    p2.winsoft3.com
    IN A
    Response
No results found
  • 8.8.8.8:53
    app2.winsoft1.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    126 B
     136 B
     2
    1

    DNS Request

    app2.winsoft1.com

    DNS Request

    app2.winsoft1.com

  • 8.8.8.8:53
    app2.winsoft2.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    63 B
     136 B
     1
    1

    DNS Request

    app2.winsoft2.com

  • 8.8.8.8:53
    app2.winsoft3.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    63 B
     136 B
     1
    1

    DNS Request

    app2.winsoft3.com

  • 8.8.8.8:53
    app2.winsoft4.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    63 B
     136 B
     1
    1

    DNS Request

    app2.winsoft4.com

  • 8.8.8.8:53
    app2.winsoft5.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    63 B
     136 B
     1
    1

    DNS Request

    app2.winsoft5.com

  • 8.8.8.8:53
    app2.winsoft6.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    63 B
     136 B
     1
    1

    DNS Request

    app2.winsoft6.com

  • 8.8.8.8:53
    app2.winsoft7.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    63 B
     136 B
     1
    1

    DNS Request

    app2.winsoft7.com

  • 8.8.8.8:53
    app2.winsoft8.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    63 B
     136 B
     1
    1

    DNS Request

    app2.winsoft8.com

  • 8.8.8.8:53
    app2.winsoft9.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    63 B
     136 B
     1
    1

    DNS Request

    app2.winsoft9.com

  • 8.8.8.8:53
    app2.winsoft10.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    128 B
     137 B
     2
    1

    DNS Request

    app2.winsoft10.com

    DNS Request

    app2.winsoft10.com

  • 8.8.8.8:53
    app2.winsoft11.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    128 B
     137 B
     2
    1

    DNS Request

    app2.winsoft11.com

    DNS Request

    app2.winsoft11.com

  • 8.8.8.8:53
    app2.winsoft12.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    64 B
     137 B
     1
    1

    DNS Request

    app2.winsoft12.com

  • 8.8.8.8:53
    app2.winsoft13.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    64 B
     137 B
     1
    1

    DNS Request

    app2.winsoft13.com

  • 8.8.8.8:53
    app2.winsoft14.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    192 B
     137 B
     3
    1

    DNS Request

    app2.winsoft14.com

    DNS Request

    app2.winsoft14.com

    DNS Request

    app2.winsoft14.com

  • 8.8.8.8:53
    app2.winsoft15.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    64 B
     137 B
     1
    1

    DNS Request

    app2.winsoft15.com

  • 8.8.8.8:53
    app2.winsoft16.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    64 B
     137 B
     1
    1

    DNS Request

    app2.winsoft16.com

  • 8.8.8.8:53
    app2.winsoft17.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    64 B
     137 B
     1
    1

    DNS Request

    app2.winsoft17.com

  • 8.8.8.8:53
    app2.winsoft18.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    64 B
     137 B
     1
    1

    DNS Request

    app2.winsoft18.com

  • 8.8.8.8:53
    app2.winsoft19.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    64 B
     137 B
     1
    1

    DNS Request

    app2.winsoft19.com

  • 8.8.8.8:53
    app2.winsoft20.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    64 B
     137 B
     1
    1

    DNS Request

    app2.winsoft20.com

  • 8.8.8.8:53
    app2.winsoft21.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    64 B
     137 B
     1
    1

    DNS Request

    app2.winsoft21.com

  • 8.8.8.8:53
    app2.winsoft22.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    128 B
     137 B
     2
    1

    DNS Request

    app2.winsoft22.com

    DNS Request

    app2.winsoft22.com

  • 8.8.8.8:53
    app2.winsoft23.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    64 B
     137 B
     1
    1

    DNS Request

    app2.winsoft23.com

  • 8.8.8.8:53
    app2.winsoft24.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    64 B
     137 B
     1
    1

    DNS Request

    app2.winsoft24.com

  • 8.8.8.8:53
    app2.winsoft25.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    64 B
     137 B
     1
    1

    DNS Request

    app2.winsoft25.com

  • 8.8.8.8:53
    app2.winsoft26.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    64 B
     137 B
     1
    1

    DNS Request

    app2.winsoft26.com

  • 8.8.8.8:53
    app2.winsoft27.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    128 B
     137 B
     2
    1

    DNS Request

    app2.winsoft27.com

    DNS Request

    app2.winsoft27.com

  • 8.8.8.8:53
    app2.winsoft28.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    64 B
     137 B
     1
    1

    DNS Request

    app2.winsoft28.com

  • 8.8.8.8:53
    app2.winsoft29.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    64 B
     137 B
     1
    1

    DNS Request

    app2.winsoft29.com

  • 8.8.8.8:53
    app2.winsoft30.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    64 B
     137 B
     1
    1

    DNS Request

    app2.winsoft30.com

  • 8.8.8.8:53
    app2.winsoft31.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    64 B
     137 B
     1
    1

    DNS Request

    app2.winsoft31.com

  • 8.8.8.8:53
    app2.winsoft32.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    64 B
     134 B
     1
    1

    DNS Request

    app2.winsoft32.com

  • 8.8.8.8:53
    app2.winsoft33.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    64 B
     137 B
     1
    1

    DNS Request

    app2.winsoft33.com

  • 8.8.8.8:53
    app2.winsoft34.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    64 B
     137 B
     1
    1

    DNS Request

    app2.winsoft34.com

  • 8.8.8.8:53
    app2.winsoft35.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    64 B
     137 B
     1
    1

    DNS Request

    app2.winsoft35.com

  • 8.8.8.8:53
    app2.winsoft36.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    64 B
     137 B
     1
    1

    DNS Request

    app2.winsoft36.com

  • 8.8.8.8:53
    app2.winsoft37.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    64 B
     137 B
     1
    1

    DNS Request

    app2.winsoft37.com

  • 8.8.8.8:53
    app2.winsoft38.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    128 B
     137 B
     2
    1

    DNS Request

    app2.winsoft38.com

    DNS Request

    app2.winsoft38.com

  • 8.8.8.8:53
    app2.winsoft39.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    64 B
     137 B
     1
    1

    DNS Request

    app2.winsoft39.com

  • 8.8.8.8:53
    app2.winsoft40.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    64 B
     137 B
     1
    1

    DNS Request

    app2.winsoft40.com

  • 8.8.8.8:53
    app2.winsoft41.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    128 B
     137 B
     2
    1

    DNS Request

    app2.winsoft41.com

    DNS Request

    app2.winsoft41.com

  • 8.8.8.8:53
    app2.winsoft42.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    64 B
     137 B
     1
    1

    DNS Request

    app2.winsoft42.com

  • 8.8.8.8:53
    app2.winsoft43.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    64 B
     137 B
     1
    1

    DNS Request

    app2.winsoft43.com

  • 8.8.8.8:53
    app2.winsoft44.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    64 B
     137 B
     1
    1

    DNS Request

    app2.winsoft44.com

  • 8.8.8.8:53
    app2.winsoft45.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    64 B
     137 B
     1
    1

    DNS Request

    app2.winsoft45.com

  • 8.8.8.8:53
    app2.winsoft46.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    128 B
     137 B
     2
    1

    DNS Request

    app2.winsoft46.com

    DNS Request

    app2.winsoft46.com

  • 8.8.8.8:53
    app2.winsoft47.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    64 B
     137 B
     1
    1

    DNS Request

    app2.winsoft47.com

  • 8.8.8.8:53
    app2.winsoft48.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    128 B
     137 B
     2
    1

    DNS Request

    app2.winsoft48.com

    DNS Request

    app2.winsoft48.com

  • 8.8.8.8:53
    app2.winsoft49.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    64 B
     137 B
     1
    1

    DNS Request

    app2.winsoft49.com

  • 8.8.8.8:53
    app2.winsoft50.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    64 B
     137 B
     1
    1

    DNS Request

    app2.winsoft50.com

  • 8.8.8.8:53
    app2.winsoft51.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    64 B
     137 B
     1
    1

    DNS Request

    app2.winsoft51.com

  • 8.8.8.8:53
    app2.winsoft52.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    192 B
     137 B
     3
    1

    DNS Request

    app2.winsoft52.com

    DNS Request

    app2.winsoft52.com

    DNS Request

    app2.winsoft52.com

  • 8.8.8.8:53
    app2.winsoft53.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    128 B
     137 B
     2
    1

    DNS Request

    app2.winsoft53.com

    DNS Request

    app2.winsoft53.com

  • 8.8.8.8:53
    app2.winsoft54.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    64 B
     137 B
     1
    1

    DNS Request

    app2.winsoft54.com

  • 8.8.8.8:53
    app2.winsoft55.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    64 B
     137 B
     1
    1

    DNS Request

    app2.winsoft55.com

  • 8.8.8.8:53
    app2.winsoft56.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    128 B
     137 B
     2
    1

    DNS Request

    app2.winsoft56.com

    DNS Request

    app2.winsoft56.com

  • 8.8.8.8:53
    app2.winsoft57.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    64 B
     137 B
     1
    1

    DNS Request

    app2.winsoft57.com

  • 8.8.8.8:53
    app2.winsoft58.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    192 B
     137 B
     3
    1

    DNS Request

    app2.winsoft58.com

    DNS Request

    app2.winsoft58.com

    DNS Request

    app2.winsoft58.com

  • 8.8.8.8:53
    app2.winsoft59.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    128 B
     137 B
     2
    1

    DNS Request

    app2.winsoft59.com

    DNS Request

    app2.winsoft59.com

  • 8.8.8.8:53
    app2.winsoft60.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    128 B
     137 B
     2
    1

    DNS Request

    app2.winsoft60.com

    DNS Request

    app2.winsoft60.com

  • 8.8.8.8:53
    app2.winsoft61.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    64 B
     137 B
     1
    1

    DNS Request

    app2.winsoft61.com

  • 8.8.8.8:53
    app2.winsoft62.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    64 B
     137 B
     1
    1

    DNS Request

    app2.winsoft62.com

  • 8.8.8.8:53
    app2.winsoft63.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    64 B
     137 B
     1
    1

    DNS Request

    app2.winsoft63.com

  • 8.8.8.8:53
    app2.winsoft64.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    64 B
     134 B
     1
    1

    DNS Request

    app2.winsoft64.com

  • 8.8.8.8:53
    app2.winsoft65.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    64 B
     137 B
     1
    1

    DNS Request

    app2.winsoft65.com

  • 8.8.8.8:53
    app2.winsoft66.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    64 B
     137 B
     1
    1

    DNS Request

    app2.winsoft66.com

  • 8.8.8.8:53
    app2.winsoft67.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    64 B
     137 B
     1
    1

    DNS Request

    app2.winsoft67.com

  • 8.8.8.8:53
    app2.winsoft68.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    128 B
     137 B
     2
    1

    DNS Request

    app2.winsoft68.com

    DNS Request

    app2.winsoft68.com

  • 8.8.8.8:53
    app2.winsoft69.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    64 B
     137 B
     1
    1

    DNS Request

    app2.winsoft69.com

  • 8.8.8.8:53
    app2.winsoft70.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    64 B
     137 B
     1
    1

    DNS Request

    app2.winsoft70.com

  • 8.8.8.8:53
    app2.winsoft71.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    64 B
     137 B
     1
    1

    DNS Request

    app2.winsoft71.com

  • 8.8.8.8:53
    app2.winsoft72.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    64 B
     137 B
     1
    1

    DNS Request

    app2.winsoft72.com

  • 8.8.8.8:53
    app2.winsoft73.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    64 B
     137 B
     1
    1

    DNS Request

    app2.winsoft73.com

  • 8.8.8.8:53
    app2.winsoft74.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    64 B
     137 B
     1
    1

    DNS Request

    app2.winsoft74.com

  • 8.8.8.8:53
    app2.winsoft75.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    64 B
     137 B
     1
    1

    DNS Request

    app2.winsoft75.com

  • 8.8.8.8:53
    app2.winsoft76.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    128 B
     137 B
     2
    1

    DNS Request

    app2.winsoft76.com

    DNS Request

    app2.winsoft76.com

  • 8.8.8.8:53
    app2.winsoft77.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    64 B
     137 B
     1
    1

    DNS Request

    app2.winsoft77.com

  • 8.8.8.8:53
    app2.winsoft78.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    64 B
     137 B
     1
    1

    DNS Request

    app2.winsoft78.com

  • 8.8.8.8:53
    app2.winsoft79.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    64 B
     137 B
     1
    1

    DNS Request

    app2.winsoft79.com

  • 8.8.8.8:53
    app2.winsoft80.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    64 B
     137 B
     1
    1

    DNS Request

    app2.winsoft80.com

  • 8.8.8.8:53
    app2.winsoft81.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    64 B
     137 B
     1
    1

    DNS Request

    app2.winsoft81.com

  • 8.8.8.8:53
    app2.winsoft82.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    64 B
     137 B
     1
    1

    DNS Request

    app2.winsoft82.com

  • 8.8.8.8:53
    app2.winsoft83.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    64 B
     137 B
     1
    1

    DNS Request

    app2.winsoft83.com

  • 8.8.8.8:53
    app2.winsoft84.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    64 B
     137 B
     1
    1

    DNS Request

    app2.winsoft84.com

  • 8.8.8.8:53
    app2.winsoft85.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    64 B
     137 B
     1
    1

    DNS Request

    app2.winsoft85.com

  • 8.8.8.8:53
    app2.winsoft86.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    64 B
     137 B
     1
    1

    DNS Request

    app2.winsoft86.com

  • 8.8.8.8:53
    app2.winsoft87.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    64 B
     137 B
     1
    1

    DNS Request

    app2.winsoft87.com

  • 8.8.8.8:53
    app2.winsoft88.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    64 B
     137 B
     1
    1

    DNS Request

    app2.winsoft88.com

  • 8.8.8.8:53
    app2.winsoft89.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    64 B
     137 B
     1
    1

    DNS Request

    app2.winsoft89.com

  • 8.8.8.8:53
    app2.winsoft90.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    128 B
     137 B
     2
    1

    DNS Request

    app2.winsoft90.com

    DNS Request

    app2.winsoft90.com

  • 8.8.8.8:53
    app2.winsoft91.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    64 B
     137 B
     1
    1

    DNS Request

    app2.winsoft91.com

  • 8.8.8.8:53
    app2.winsoft92.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    64 B
     137 B
     1
    1

    DNS Request

    app2.winsoft92.com

  • 8.8.8.8:53
    app2.winsoft93.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    64 B
     137 B
     1
    1

    DNS Request

    app2.winsoft93.com

  • 8.8.8.8:53
    app2.winsoft94.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    64 B
     137 B
     1
    1

    DNS Request

    app2.winsoft94.com

  • 8.8.8.8:53
    app2.winsoft95.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    64 B
     137 B
     1
    1

    DNS Request

    app2.winsoft95.com

  • 8.8.8.8:53
    app2.winsoft96.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    64 B
     137 B
     1
    1

    DNS Request

    app2.winsoft96.com

  • 8.8.8.8:53
    app2.winsoft97.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    64 B
     137 B
     1
    1

    DNS Request

    app2.winsoft97.com

  • 8.8.8.8:53
    app2.winsoft98.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    256 B
     192 B
     4
    3

    DNS Request

    app2.winsoft98.com

    DNS Request

    app2.winsoft98.com

    DNS Request

    app2.winsoft98.com

    DNS Request

    app2.winsoft98.com

  • 8.8.8.8:53
    app2.winsoft99.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    64 B
     137 B
     1
    1

    DNS Request

    app2.winsoft99.com

  • 8.8.8.8:53
    app2.winsoft100.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    130 B
     138 B
     2
    1

    DNS Request

    app2.winsoft100.com

    DNS Request

    app2.winsoft100.com

  • 8.8.8.8:53
    app2.winsoft0.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    63 B
     136 B
     1
    1

    DNS Request

    app2.winsoft0.com

  • 8.8.8.8:53
    p2.winsoft3.com
    dns
    48094140be0c6f32765c7d795ae43d92.exe
    61 B
     134 B
     1
    1

    DNS Request

    p2.winsoft3.com

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2420-0-0x0000000000400000-0x0000000000424000-memory.dmp

    Filesize

    144KB

    Download

  • memory/2420-3-0x0000000000020000-0x0000000000023000-memory.dmp

    Filesize

    12KB

    Download

  • memory/2420-2-0x0000000000400000-0x0000000000424000-memory.dmp

    Filesize

    144KB

    Download

  • memory/2420-1-0x0000000000400000-0x0000000000424000-memory.dmp

    Filesize

    144KB

    Download

  • memory/2420-4-0x0000000000400000-0x0000000000424000-memory.dmp

    Filesize

    144KB

    Download

  • memory/2420-14-0x0000000000400000-0x0000000000424000-memory.dmp

    Filesize

    144KB

    Download

  • memory/2420-15-0x0000000000400000-0x0000000000424000-memory.dmp

    Filesize

    144KB

    Download

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.