description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	chrome.exe

description	ioc	Process
Set value (int)	\REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133576779030284674"	chrome.exe
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	chrome.exe

pid	Process
2784	chrome.exe
2784	chrome.exe
2784	chrome.exe
4936	chrome.exe
4936	chrome.exe

description	pid	Process
Token: SeShutdownPrivilege	2784	chrome.exe
Token: SeCreatePagefilePrivilege	2784	chrome.exe
Token: SeShutdownPrivilege	2784	chrome.exe
Token: SeCreatePagefilePrivilege	2784	chrome.exe
Token: SeShutdownPrivilege	2784	chrome.exe
Token: SeCreatePagefilePrivilege	2784	chrome.exe
Token: SeShutdownPrivilege	2784	chrome.exe
Token: SeCreatePagefilePrivilege	2784	chrome.exe
Token: SeShutdownPrivilege	2784	chrome.exe
Token: SeCreatePagefilePrivilege	2784	chrome.exe
Token: SeShutdownPrivilege	2784	chrome.exe
Token: SeCreatePagefilePrivilege	2784	chrome.exe
Token: SeShutdownPrivilege	2784	chrome.exe
Token: SeCreatePagefilePrivilege	2784	chrome.exe
Token: SeShutdownPrivilege	2784	chrome.exe
Token: SeCreatePagefilePrivilege	2784	chrome.exe
Token: SeShutdownPrivilege	2784	chrome.exe
Token: SeCreatePagefilePrivilege	2784	chrome.exe
Token: SeShutdownPrivilege	2784	chrome.exe
Token: SeCreatePagefilePrivilege	2784	chrome.exe
Token: SeShutdownPrivilege	2784	chrome.exe
Token: SeCreatePagefilePrivilege	2784	chrome.exe
Token: SeShutdownPrivilege	2784	chrome.exe
Token: SeCreatePagefilePrivilege	2784	chrome.exe
Token: SeShutdownPrivilege	2784	chrome.exe
Token: SeCreatePagefilePrivilege	2784	chrome.exe
Token: SeShutdownPrivilege	2784	chrome.exe
Token: SeCreatePagefilePrivilege	2784	chrome.exe
Token: SeShutdownPrivilege	2784	chrome.exe
Token: SeCreatePagefilePrivilege	2784	chrome.exe
Token: SeShutdownPrivilege	2784	chrome.exe
Token: SeCreatePagefilePrivilege	2784	chrome.exe
Token: SeShutdownPrivilege	2784	chrome.exe
Token: SeCreatePagefilePrivilege	2784	chrome.exe
Token: SeShutdownPrivilege	2784	chrome.exe
Token: SeCreatePagefilePrivilege	2784	chrome.exe
Token: SeShutdownPrivilege	2784	chrome.exe
Token: SeCreatePagefilePrivilege	2784	chrome.exe
Token: SeShutdownPrivilege	2784	chrome.exe
Token: SeCreatePagefilePrivilege	2784	chrome.exe
Token: SeShutdownPrivilege	2784	chrome.exe
Token: SeCreatePagefilePrivilege	2784	chrome.exe
Token: SeShutdownPrivilege	2784	chrome.exe
Token: SeCreatePagefilePrivilege	2784	chrome.exe
Token: SeShutdownPrivilege	2784	chrome.exe
Token: SeCreatePagefilePrivilege	2784	chrome.exe
Token: SeShutdownPrivilege	2784	chrome.exe
Token: SeCreatePagefilePrivilege	2784	chrome.exe
Token: SeShutdownPrivilege	2784	chrome.exe
Token: SeCreatePagefilePrivilege	2784	chrome.exe
Token: SeShutdownPrivilege	2784	chrome.exe
Token: SeCreatePagefilePrivilege	2784	chrome.exe
Token: SeShutdownPrivilege	2784	chrome.exe
Token: SeCreatePagefilePrivilege	2784	chrome.exe
Token: SeShutdownPrivilege	2784	chrome.exe
Token: SeCreatePagefilePrivilege	2784	chrome.exe
Token: SeShutdownPrivilege	2784	chrome.exe
Token: SeCreatePagefilePrivilege	2784	chrome.exe
Token: SeShutdownPrivilege	2784	chrome.exe
Token: SeCreatePagefilePrivilege	2784	chrome.exe
Token: SeShutdownPrivilege	2784	chrome.exe
Token: SeCreatePagefilePrivilege	2784	chrome.exe
Token: SeShutdownPrivilege	2784	chrome.exe
Token: SeCreatePagefilePrivilege	2784	chrome.exe

description	pid	Process	procid_target
PID 3192 wrote to memory of 1612	3192	injector.exe	87
PID 3192 wrote to memory of 1612	3192	injector.exe	87
PID 3192 wrote to memory of 1612	3192	injector.exe	87
PID 1612 wrote to memory of 1456	1612	injector.exe	94
PID 1612 wrote to memory of 1456	1612	injector.exe	94
PID 1612 wrote to memory of 1456	1612	injector.exe	94
PID 2784 wrote to memory of 3496	2784	chrome.exe	98
PID 2784 wrote to memory of 3496	2784	chrome.exe	98
PID 2784 wrote to memory of 3708	2784	chrome.exe	99
PID 2784 wrote to memory of 3708	2784	chrome.exe	99
PID 2784 wrote to memory of 3708	2784	chrome.exe	99
PID 2784 wrote to memory of 3708	2784	chrome.exe	99
PID 2784 wrote to memory of 3708	2784	chrome.exe	99
PID 2784 wrote to memory of 3708	2784	chrome.exe	99
PID 2784 wrote to memory of 3708	2784	chrome.exe	99
PID 2784 wrote to memory of 3708	2784	chrome.exe	99
PID 2784 wrote to memory of 3708	2784	chrome.exe	99
PID 2784 wrote to memory of 3708	2784	chrome.exe	99
PID 2784 wrote to memory of 3708	2784	chrome.exe	99
PID 2784 wrote to memory of 3708	2784	chrome.exe	99
PID 2784 wrote to memory of 3708	2784	chrome.exe	99
PID 2784 wrote to memory of 3708	2784	chrome.exe	99
PID 2784 wrote to memory of 3708	2784	chrome.exe	99
PID 2784 wrote to memory of 3708	2784	chrome.exe	99
PID 2784 wrote to memory of 3708	2784	chrome.exe	99
PID 2784 wrote to memory of 3708	2784	chrome.exe	99
PID 2784 wrote to memory of 3708	2784	chrome.exe	99
PID 2784 wrote to memory of 3708	2784	chrome.exe	99
PID 2784 wrote to memory of 3708	2784	chrome.exe	99
PID 2784 wrote to memory of 3708	2784	chrome.exe	99
PID 2784 wrote to memory of 3708	2784	chrome.exe	99
PID 2784 wrote to memory of 3708	2784	chrome.exe	99
PID 2784 wrote to memory of 3708	2784	chrome.exe	99
PID 2784 wrote to memory of 3708	2784	chrome.exe	99
PID 2784 wrote to memory of 3708	2784	chrome.exe	99
PID 2784 wrote to memory of 3708	2784	chrome.exe	99
PID 2784 wrote to memory of 3708	2784	chrome.exe	99
PID 2784 wrote to memory of 3708	2784	chrome.exe	99
PID 2784 wrote to memory of 3708	2784	chrome.exe	99
PID 2784 wrote to memory of 2732	2784	chrome.exe	100
PID 2784 wrote to memory of 2732	2784	chrome.exe	100
PID 2784 wrote to memory of 3436	2784	chrome.exe	101
PID 2784 wrote to memory of 3436	2784	chrome.exe	101
PID 2784 wrote to memory of 3436	2784	chrome.exe	101
PID 2784 wrote to memory of 3436	2784	chrome.exe	101
PID 2784 wrote to memory of 3436	2784	chrome.exe	101
PID 2784 wrote to memory of 3436	2784	chrome.exe	101
PID 2784 wrote to memory of 3436	2784	chrome.exe	101
PID 2784 wrote to memory of 3436	2784	chrome.exe	101
PID 2784 wrote to memory of 3436	2784	chrome.exe	101
PID 2784 wrote to memory of 3436	2784	chrome.exe	101
PID 2784 wrote to memory of 3436	2784	chrome.exe	101
PID 2784 wrote to memory of 3436	2784	chrome.exe	101
PID 2784 wrote to memory of 3436	2784	chrome.exe	101
PID 2784 wrote to memory of 3436	2784	chrome.exe	101
PID 2784 wrote to memory of 3436	2784	chrome.exe	101
PID 2784 wrote to memory of 3436	2784	chrome.exe	101
PID 2784 wrote to memory of 3436	2784	chrome.exe	101
PID 2784 wrote to memory of 3436	2784	chrome.exe	101
PID 2784 wrote to memory of 3436	2784	chrome.exe	101
PID 2784 wrote to memory of 3436	2784	chrome.exe	101
PID 2784 wrote to memory of 3436	2784	chrome.exe	101
PID 2784 wrote to memory of 3436	2784	chrome.exe	101
PID 2784 wrote to memory of 3436	2784	chrome.exe	101

Analysis

Sharing

General

Malware Config

Extracted

Signatures

Processes

Network

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

DNS Request

DNS Request

DNS Request

DNS Response

DNS Request

DNS Request

DNS Request

DNS Request

DNS Response

DNS Request

DNS Request

DNS Request

DNS Request

DNS Response

DNS Request

DNS Request

DNS Request

DNS Request

DNS Request

DNS Request

DNS Request

DNS Request

DNS Request

DNS Response

DNS Request

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

We care about your privacy.