| description | ioc | process |
|---|
| File opened for modification | C:\Users\Public\Videos\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows PowerShell\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Admin\AppData\Local\Microsoft\Windows\History\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Admin\AppData\Local\Microsoft\Windows\History\History.IE5\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Public\Pictures\Sample Pictures\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Admin\Desktop\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Admin\Favorites\Links for United States\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Admin\AppData\Local\Microsoft\Feeds Cache\JP38OXIN\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Libraries\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Admin\Music\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Admin\Saved Games\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Program Files\Microsoft Games\Solitaire\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Program Files\Microsoft Games\Purble Place\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\ProgramData\Microsoft\Windows\Start Menu\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\ProgramData\Microsoft\Windows\Start Menu\Programs\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Admin\AppData\Local\Microsoft\Feeds Cache\266EQP1S\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1OEGTYQG\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Admin\Downloads\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Admin\Pictures\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Program Files\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Program Files (x86)\Common Files\microsoft shared\Stationery\Desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Program Files (x86)\Microsoft Office\Office14\1033\DataServices\DESKTOP.INI | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance\Desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Public\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Public\Libraries\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Public\Desktop\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Public\Videos\Sample Videos\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Program Files\Microsoft Games\Chess\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Admin\AppData\Local\Microsoft\Windows Mail\Stationery\Desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Admin\Links\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance\Desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Admin\Searches\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Public\Documents\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Public\Music\Sample Music\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Public\Recorded TV\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Admin\AppData\Local\Microsoft\Feeds Cache\2Y0HPGOE\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Public\Downloads\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Public\Music\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Admin\Favorites\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Program Files\Microsoft Games\FreeCell\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Program Files\Microsoft Games\SpiderSolitaire\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance\Desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Admin\AppData\Local\Microsoft\Feeds Cache\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Admin\AppData\Roaming\Microsoft\Windows\SendTo\Desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Admin\AppData\Local\Microsoft\Feeds Cache\AS4I30IR\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Public\Pictures\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
