Name RT_ICON RVA 0x1196c8 Size 0x25a8 Type dBase IV DBT of `.DBF, block length 9216, next free block index 40, next free block 0, next used block 0 Language NeutralĭBase IV DBT of `.DBF, block length 9216, next free block index 40, next free block 0, next used block 0 Name RT_ICON RVA 0x118610 Size 0x10a8 Type dBase IV DBT of block length 4096, next free block index 40, next free block 0, next used block 0 Language NeutralĭBase IV DBT of block length 4096, next free block index 40, next free block 0, next used block 0 Name RT_ICON RVA 0xd65d8 Size 0x42028 Type data Language Neutral Name RT_ICON RVA 0xd6160 Size 0x468 Type GLS_BINARY_LSB_FIRST Language Neutral Opens the Kernel Security Device Driver (KsecDD) of Windows Pattern match: "Pattern match: "/trigger/" Pattern match: "/?utm_source=NHM&p=calc&name=" Pattern match: " Pattern match: "/api?method=" "" touched file "C:\Windows\System32\rsaenh.dll" "" touched file "C:\Windows\assembly\NativeImages_v9_64\System.Core\f5db2f7c181e6f1344c9bc8dbcffce3b\.dll.aux" "" touched file "C:\Windows\NiceHashMinerLegacy.pdb" "" touched file "C:\Windows\exe\NiceHashMinerLegacy.pdb" "" touched file "C:\Windows\symbols\exe\NiceHashMinerLegacy.pdb" "" touched file "C:\Windows\System32\en-US\" "" touched file "C:\Windows\assembly\NativeImages_v9_64\System.Drawing\617299d2bd5dcfe094cedface0c39d1c\.dll.aux" ![]() "" touched file "C:\Windows\Globalization\Sorting\s" "" touched file "C:\Windows\Microsoft.NET\Framework64\v9\Config\nfig" "" touched file "C:\Windows\Microsoft.NET\Framework64\v9\clr.dll" "" touched file "C:\Windows\Microsoft.NET\Framework64\v7\mscorwks.dll" "" touched file "%WINDIR%\Microsoft.NET\Framework64\v7\clr.dll" Source Hybrid Analysis Technology relevance 5/10 ![]() NiceHashMiner.Miner::GetUsername at 421497afac9eb8805f356418c7833aa4-60002de-ClaymoreCryptoNightMiner~Start "\tWin32_VideoController detected:" (Indicator: "win32_videocontroller" File: "") "Select * from Win32_Processor" (Indicator: "win32_process" File: "") "Select * from Win32_ComputerSystem" (Indicator: "win32_computersystem" File: "") "Win32_VideoController detected:" (Indicator: "win32_videocontroller" File: "") "SELECT * FROM Win32_VideoController WHERE PNPDeviceID LIKE 'PCI%'" (Indicator: "win32_videocontroller" File: "") ![]() "Select * From Win32_processor" (Indicator: "win32_process" File: "") "SELECT * FROM Win32_BaseBoard" (Indicator: "win32_baseboard" File: "")
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |