| description | ioc | process |
|---|
| File opened for modification | C:\Users\Admin\AppData\Local\Microsoft\Windows\History\History.IE5\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Admin\AppData\Roaming\Microsoft\Windows\SendTo\Desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Public\Pictures\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Public\Recorded TV\Sample Media\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Public\Recorded TV\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Admin\AppData\Local\Microsoft\Feeds Cache\K03K2CA5\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Admin\AppData\Local\Microsoft\Windows\Burn\Burn\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Admin\AppData\Local\Microsoft\Windows Mail\Stationery\Desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Admin\Links\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\$Recycle.Bin\S-1-5-21-2248906074-2862704502-246302768-1000\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows PowerShell\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Admin\Videos\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Public\Desktop\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance\Desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Public\Music\Sample Music\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Public\Pictures\Sample Pictures\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Program Files\Microsoft Games\Mahjong\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Program Files\Microsoft Games\Purble Place\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\ProgramData\Microsoft\Windows\Ringtones\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Admin\AppData\Local\Microsoft\Feeds Cache\F5ZW0CRZ\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Admin\Saved Games\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Program Files\Microsoft Games\FreeCell\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\ProgramData\Microsoft\Windows\Start Menu\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Admin\Desktop\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Admin\Downloads\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Program Files\Common Files\Microsoft Shared\Stationery\Desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Admin\AppData\Local\Microsoft\Windows\History\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Admin\Contacts\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Admin\Favorites\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Admin\Music\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Default\AppData\Roaming\Microsoft\Windows\SendTo\Desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Public\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Public\Videos\Sample Videos\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Public\Libraries\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Program Files (x86)\Common Files\microsoft shared\Stationery\Desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Tablet PC\Desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\ProgramData\Microsoft\Windows\Start Menu\Programs\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\P1KETFJO\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Program Files\Microsoft Games\Chess\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Program Files\Microsoft Games\SpiderSolitaire\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Program Files (x86)\Microsoft Office\Office14\1033\DataServices\DESKTOP.INI | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Admin\Searches\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Admin\AppData\Local\Microsoft\Feeds Cache\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Public\Documents\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FA862KXF\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Libraries\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Admin\Pictures\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance\Desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
| File opened for modification | C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\desktop.ini | 2210baa7b596879b413965c17f9f33dbf698ac183b2b82329d397c73dee5fc3d.exe |
