| description | ioc | process |
|---|
| File opened for modification | \??\c:\Program Files\7-Zip\Lang\mng.txt | 74f84611381c2936843603cd7c458dc9.exe |
| File opened for modification | \??\c:\Program Files\Common Files\microsoft shared\ink\it-IT\TipTsf.dll.mui | 74f84611381c2936843603cd7c458dc9.exe |
| File opened for modification | \??\c:\Program Files\dotnet\swidtag\Microsoft Windows Desktop Runtime - 8.0.0 (x64).swidtag | 74f84611381c2936843603cd7c458dc9.exe |
| File opened for modification | \??\c:\Program Files\Microsoft Office\root\Licenses16\ProjectPro2019R_OEM_Perp-ul-phn.xrm-ms | 74f84611381c2936843603cd7c458dc9.exe |
| File opened for modification | \??\c:\Program Files\Microsoft Office\root\Licenses16\Word2019R_Retail-ul-oob.xrm-ms | 74f84611381c2936843603cd7c458dc9.exe |
| File opened for modification | \??\c:\Program Files\Microsoft Office\root\Licenses16\VisioPro2019DemoR_BypassTrial180-ul-oob.xrm-ms | 74f84611381c2936843603cd7c458dc9.exe |
| File opened for modification | \??\c:\Program Files\dotnet\shared\Microsoft.NETCore.App\6.0.25\System.Resources.ResourceManager.dll | 74f84611381c2936843603cd7c458dc9.exe |
| File opened for modification | \??\c:\Program Files\dotnet\shared\Microsoft.NETCore.App\8.0.0\System.Runtime.Serialization.Primitives.dll | 74f84611381c2936843603cd7c458dc9.exe |
| File opened for modification | \??\c:\Program Files\dotnet\shared\Microsoft.WindowsDesktop.App\6.0.25\cs\ReachFramework.resources.dll | 74f84611381c2936843603cd7c458dc9.exe |
| File opened for modification | \??\c:\Program Files\Internet Explorer\SIGNUP\install.ins | 74f84611381c2936843603cd7c458dc9.exe |
| File opened for modification | \??\c:\Program Files\Java\jre-1.8\lib\fonts\LucidaBrightItalic.ttf | 74f84611381c2936843603cd7c458dc9.exe |
| File opened for modification | \??\c:\Program Files\Microsoft Office\root\Licenses16\PublisherVL_KMS_Client-ul.xrm-ms | 74f84611381c2936843603cd7c458dc9.exe |
| File opened for modification | \??\c:\Program Files\dotnet\shared\Microsoft.WindowsDesktop.App\8.0.0\System.Xaml.dll | 74f84611381c2936843603cd7c458dc9.exe |
| File opened for modification | \??\c:\Program Files\Common Files\microsoft shared\ink\fsdefinitions\main\zh-dayi.xml | 74f84611381c2936843603cd7c458dc9.exe |
| File opened for modification | \??\c:\Program Files\Java\jdk-1.8\bin\pack200.exe | 74f84611381c2936843603cd7c458dc9.exe |
| File opened for modification | \??\c:\Program Files\dotnet\shared\Microsoft.WindowsDesktop.App\6.0.25\fr\System.Windows.Forms.resources.dll | 74f84611381c2936843603cd7c458dc9.exe |
| File opened for modification | \??\c:\Program Files\dotnet\shared\Microsoft.WindowsDesktop.App\8.0.0\ko\UIAutomationProvider.resources.dll | 74f84611381c2936843603cd7c458dc9.exe |
| File opened for modification | \??\c:\Program Files\dotnet\shared\Microsoft.WindowsDesktop.App\8.0.0\System.Windows.Presentation.dll | 74f84611381c2936843603cd7c458dc9.exe |
| File opened for modification | \??\c:\Program Files\Microsoft Office\root\Client\concrt140.dll | 74f84611381c2936843603cd7c458dc9.exe |
| File opened for modification | \??\c:\Program Files\Microsoft Office\root\Licenses16\VisioProMSDNR_Retail-ul-phn.xrm-ms | 74f84611381c2936843603cd7c458dc9.exe |
| File opened for modification | \??\c:\Program Files\Common Files\microsoft shared\ink\ro-RO\tipresx.dll.mui | 74f84611381c2936843603cd7c458dc9.exe |
| File opened for modification | \??\c:\Program Files\dotnet\shared\Microsoft.NETCore.App\6.0.25\System.Diagnostics.Debug.dll | 74f84611381c2936843603cd7c458dc9.exe |
| File opened for modification | \??\c:\Program Files\Microsoft Office\root\Office16\1033\ClientSub_eula.txt | 74f84611381c2936843603cd7c458dc9.exe |
| File created | \??\c:\Program Files\Common Files\System\ado\it-IT\msader15.dll.mui | 74f84611381c2936843603cd7c458dc9.exe |
| File opened for modification | \??\c:\Program Files\dotnet\shared\Microsoft.WindowsDesktop.App\6.0.25\pt-BR\System.Xaml.resources.dll | 74f84611381c2936843603cd7c458dc9.exe |
| File opened for modification | \??\c:\Program Files\dotnet\shared\Microsoft.WindowsDesktop.App\8.0.0\ja\PresentationCore.resources.dll | 74f84611381c2936843603cd7c458dc9.exe |
| File opened for modification | \??\c:\Program Files\dotnet\shared\Microsoft.WindowsDesktop.App\8.0.0\ko\PresentationCore.resources.dll | 74f84611381c2936843603cd7c458dc9.exe |
| File created | \??\c:\Program Files\Common Files\microsoft shared\MSInfo\de-DE\msinfo32.exe.mui | 74f84611381c2936843603cd7c458dc9.exe |
| File opened for modification | \??\c:\Program Files\Common Files\System\msadc\fr-FR\msdaprsr.dll.mui | 74f84611381c2936843603cd7c458dc9.exe |
| File opened for modification | \??\c:\Program Files\dotnet\shared\Microsoft.NETCore.App\6.0.25\System.Net.Primitives.dll | 74f84611381c2936843603cd7c458dc9.exe |
| File opened for modification | \??\c:\Program Files\dotnet\shared\Microsoft.NETCore.App\6.0.25\System.Security.SecureString.dll | 74f84611381c2936843603cd7c458dc9.exe |
| File opened for modification | \??\c:\Program Files\Microsoft Office\root\Licenses16\ProPlus2019R_OEM_Perp4-pl.xrm-ms | 74f84611381c2936843603cd7c458dc9.exe |
| File opened for modification | \??\c:\Program Files\Java\jdk-1.8\lib\ir.idl | 74f84611381c2936843603cd7c458dc9.exe |
| File opened for modification | \??\c:\Program Files\Microsoft Office\root\Licenses16\Access2019R_OEM_Perp-ul-phn.xrm-ms | 74f84611381c2936843603cd7c458dc9.exe |
| File opened for modification | \??\c:\Program Files\Common Files\microsoft shared\ClickToRun\api-ms-win-crt-filesystem-l1-1-0.dll | 74f84611381c2936843603cd7c458dc9.exe |
| File created | \??\c:\Program Files\Common Files\System\Ole DB\sqlxmlx.dll | 74f84611381c2936843603cd7c458dc9.exe |
| File opened for modification | \??\c:\Program Files\dotnet\shared\Microsoft.WindowsDesktop.App\8.0.0\pl\PresentationFramework.resources.dll | 74f84611381c2936843603cd7c458dc9.exe |
| File opened for modification | \??\c:\Program Files\Java\jdk-1.8\bin\klist.exe | 74f84611381c2936843603cd7c458dc9.exe |
| File opened for modification | \??\c:\Program Files\Java\jdk-1.8\jre\bin\java.dll | 74f84611381c2936843603cd7c458dc9.exe |
| File opened for modification | \??\c:\Program Files\Java\jdk-1.8\jre\bin\WindowsAccessBridge-64.dll | 74f84611381c2936843603cd7c458dc9.exe |
| File created | \??\c:\Program Files\Common Files\microsoft shared\ClickToRun\AppVPolicy.dll | 74f84611381c2936843603cd7c458dc9.exe |
| File opened for modification | \??\c:\Program Files\dotnet\shared\Microsoft.NETCore.App\8.0.0\System.IO.Compression.Native.dll | 74f84611381c2936843603cd7c458dc9.exe |
| File opened for modification | \??\c:\Program Files\Microsoft Office\root\Licenses16\ProjectStd2019VL_MAK_AE-ul-oob.xrm-ms | 74f84611381c2936843603cd7c458dc9.exe |
| File opened for modification | \??\c:\Program Files\Microsoft Office\root\Licenses16\ProPlusR_Retail-ul-phn.xrm-ms | 74f84611381c2936843603cd7c458dc9.exe |
| File opened for modification | \??\c:\Program Files\Microsoft Office\root\Office16\1033\msotdintl.dll | 74f84611381c2936843603cd7c458dc9.exe |
| File opened for modification | \??\c:\Program Files\7-Zip\Lang\ku.txt | 74f84611381c2936843603cd7c458dc9.exe |
| File opened for modification | \??\c:\Program Files\dotnet\shared\Microsoft.WindowsDesktop.App\6.0.25\es\UIAutomationClient.resources.dll | 74f84611381c2936843603cd7c458dc9.exe |
| File opened for modification | \??\c:\Program Files\Java\jdk-1.8\bin\javafxpackager.exe | 74f84611381c2936843603cd7c458dc9.exe |
| File opened for modification | \??\c:\Program Files\Microsoft Office\root\Licenses16\Standard2019R_Retail-ppd.xrm-ms | 74f84611381c2936843603cd7c458dc9.exe |
| File opened for modification | \??\c:\Program Files\Common Files\microsoft shared\ink\ipssrb.xml | 74f84611381c2936843603cd7c458dc9.exe |
| File opened for modification | \??\c:\Program Files\Microsoft Office\root\Licenses16\HomeBusinessR_Retail-pl.xrm-ms | 74f84611381c2936843603cd7c458dc9.exe |
| File opened for modification | \??\c:\Program Files\dotnet\shared\Microsoft.NETCore.App\6.0.25\System.Net.Http.Json.dll | 74f84611381c2936843603cd7c458dc9.exe |
| File opened for modification | \??\c:\Program Files\dotnet\shared\Microsoft.WindowsDesktop.App\6.0.25\UIAutomationClientSideProviders.dll | 74f84611381c2936843603cd7c458dc9.exe |
| File opened for modification | \??\c:\Program Files\dotnet\shared\Microsoft.WindowsDesktop.App\8.0.0\de\UIAutomationTypes.resources.dll | 74f84611381c2936843603cd7c458dc9.exe |
| File opened for modification | \??\c:\Program Files\Microsoft Office\root\Licenses16\VisioPro2019R_Grace-ppd.xrm-ms | 74f84611381c2936843603cd7c458dc9.exe |
| File opened for modification | \??\c:\Program Files\Microsoft Office\root\Licenses16\ProPlus2019R_Trial-ppd.xrm-ms | 74f84611381c2936843603cd7c458dc9.exe |
| File opened for modification | \??\c:\Program Files\dotnet\shared\Microsoft.WindowsDesktop.App\6.0.25\ja\System.Xaml.resources.dll | 74f84611381c2936843603cd7c458dc9.exe |
| File opened for modification | \??\c:\Program Files\dotnet\shared\Microsoft.WindowsDesktop.App\8.0.0\pt-BR\System.Windows.Input.Manipulations.resources.dll | 74f84611381c2936843603cd7c458dc9.exe |
| File opened for modification | \??\c:\Program Files\Google\Chrome\Application\master_preferences | 74f84611381c2936843603cd7c458dc9.exe |
| File opened for modification | \??\c:\Program Files\Java\jdk-1.8\jre\bin\api-ms-win-core-interlocked-l1-1-0.dll | 74f84611381c2936843603cd7c458dc9.exe |
| File opened for modification | \??\c:\Program Files\Java\jre-1.8\legal\jdk\jpeg.md | 74f84611381c2936843603cd7c458dc9.exe |
| File opened for modification | \??\c:\Program Files\Microsoft Office\root\Licenses16\MondoR_Retail-pl.xrm-ms | 74f84611381c2936843603cd7c458dc9.exe |
| File opened for modification | \??\c:\Program Files\Microsoft Office\root\Licenses16\VisioStdXC2RVL_MAKC2R-ppd.xrm-ms | 74f84611381c2936843603cd7c458dc9.exe |
| File created | \??\c:\Program Files\Common Files\microsoft shared\ink\fr-FR\InputPersonalization.exe.mui | 74f84611381c2936843603cd7c458dc9.exe |
