Multi-License Discount Quote

Change Region

English
Threat Database Adware Adware.AdAgent.JC

Adware.AdAgent.JC

By CagedTech in Adware

Threat Scorecard

Popularity Rank: 10,367
Threat Level: 20 % (Normal)
Infected Computers: 26
First Seen: February 26, 2024
Last Seen: February 28, 2026
OS(es) Affected: Windows

Analysis Report

General information

Family Name: Adware.AdAgent.JC
Signature status: No Signature

Known Samples

MD5: 81f34ced60b7043fdbfb058a8c91e6de
SHA1: 22f2893222e0a6df8e1b31dc19f41345eae393be
SHA256: 03B4437B1B292EC152851F0EB35E5FAB34D0FEA7DF008A6AEDEF280F921E48B7
File Size: 3.00 MB, 3002368 bytes
MD5: 7141ad8e2c24843ba155b347f3b996ec
SHA1: f0afeaaecdbf2dc4699e0248fc29f1fa721cc978
SHA256: 9724BDDBEC3C86832650687EDE3D9FFECD9A9FA4BEE64897E2B07B7228426A9A
File Size: 2.39 MB, 2392064 bytes
MD5: 1fed374a6aa1f8a3e12d760e7416375b
SHA1: 985532efa88ea14238948bb9d2e9fc6a210e8aef
SHA256: FB975B1CB361C5D92EC46F515D4D3B43E0BB3685DE7E2731BD120E8864B9D490
File Size: 2.33 MB, 2326528 bytes

Windows Portable Executable Attributes

  • File doesn't have "Rich" header
  • File doesn't have exports table
  • File doesn't have relocations information
  • File doesn't have security information
  • File is 32-bit executable
  • File is either console or GUI application
  • File is GUI application (IMAGE_SUBSYSTEM_WINDOWS_GUI)
  • File is Native application (NOT .NET application)
  • File is not packed
  • IMAGE_FILE_DLL is not set inside PE header (Executable)
Show More
  • IMAGE_FILE_EXECUTABLE_IMAGE is set inside PE header (Executable Image)

File Icons

Windows PE Version Information

Name Value
Company Name
  • Intel(R) Corporation
  • Intel Corporation
  • Intel® Corporation
File Description
  • Installer
  • Intel® Chipset Device Software installer
File Version
  • 1, 2, 0, 7
  • 1, 1, 47, 0
  • 1, 1, 5, 0
Internal Name
  • Chipset
  • MPGUtilities
Legal Copyright
  • Copyright (C) 2007-2010, Intel Corporation
  • Copyright © 2006
  • Copyright © 2011
Legal Trademarks Intel Corporation
Original Filename Setup.exe
Product Name
  • Intel(R) MPG Validation Utilities Installer
  • Intel® Chipset Device Software
Product Version
  • 1, 2, 0, 7
  • 1, 1, 47, 0
  • 1, 1, 5, 0

File Traits

  • HighEntropy
  • Installer Manifest
  • Installer Version
  • x86

Block Information

Total Blocks: 509
Potentially Malicious Blocks: 20
Whitelisted Blocks: 489
Unknown Blocks: 0

Visual Map

0 0 0 0 0 0 0 0 0 x x x x 0 x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 x 0 x 0 0 0 0 0 0 0 0 0 x x x x x x x 0 0 x x x 0 0 0 0 0 x x 0 x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 2 0 0 0 0 0 0 0 1 1 0 0 0 0 0 0 1 0 0 1 0 0 0 0 0 0 1 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 1 1 0 0 0 1 0 0 0 0 0 0 0 0 1 1 1 0 0 0 0 0 0 1 0 0 0 0 0 0 0 0 0 0 0 0 2 3 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 1 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 1 1 0 0 0 1 1 0 1 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 1 0 0 0 0 0 0 0 0 0 0 1 0 0 0 0 0 0 0 0 0 0 0 0 0 0 1 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 1 0 0 0 0 0 1 0 0 0 0 0 0 0 0 1 0 0 0 0 1 0 0 0 0 2 0 1 0 0
0 - Probable Safe Block
? - Unknown Block
x - Potentially Malicious Block

Files Modified

File Attributes
\device\namedpipe\gmdasllogger Generic Write,Read Attributes
c:\intel\logs\intelchipset.log Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\ipmx2\all\2008s4el.cat Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\ipmx2\all\2008s4el.cat Generic Write,Read Attributes
c:\users\user\appdata\local\temp\ipmx2\all\2008s4el.cat Synchronize,Write Attributes
c:\users\user\appdata\local\temp\ipmx2\all\2008s4el.inf Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\ipmx2\all\2008s4el.inf Generic Write,Read Attributes
c:\users\user\appdata\local\temp\ipmx2\all\2008s4el.inf Synchronize,Write Attributes
c:\users\user\appdata\local\temp\ipmx2\all\5000xzvp.cat Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\ipmx2\all\5000xzvp.cat Generic Write,Read Attributes
Show More
c:\users\user\appdata\local\temp\ipmx2\all\5000xzvp.cat Synchronize,Write Attributes
c:\users\user\appdata\local\temp\ipmx2\all\5000xzvp.inf Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\ipmx2\all\5000xzvp.inf Generic Write,Read Attributes
c:\users\user\appdata\local\temp\ipmx2\all\5000xzvp.inf Synchronize,Write Attributes
c:\users\user\appdata\local\temp\ipmx2\all\5400.cat Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\ipmx2\all\5400.cat Generic Write,Read Attributes
c:\users\user\appdata\local\temp\ipmx2\all\5400.cat Synchronize,Write Attributes
c:\users\user\appdata\local\temp\ipmx2\all\5400.inf Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\ipmx2\all\5400.inf Generic Write,Read Attributes
c:\users\user\appdata\local\temp\ipmx2\all\5400.inf Synchronize,Write Attributes
c:\users\user\appdata\local\temp\ipmx2\all\852.cat Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\ipmx2\all\852.cat Generic Write,Read Attributes
c:\users\user\appdata\local\temp\ipmx2\all\852.cat Synchronize,Write Attributes
c:\users\user\appdata\local\temp\ipmx2\all\852.inf Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\ipmx2\all\852.inf Generic Write,Read Attributes
c:\users\user\appdata\local\temp\ipmx2\all\852.inf Synchronize,Write Attributes
c:\users\user\appdata\local\temp\ipmx2\all\855.cat Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\ipmx2\all\855.cat Generic Write,Read Attributes
c:\users\user\appdata\local\temp\ipmx2\all\855.cat Synchronize,Write Attributes
c:\users\user\appdata\local\temp\ipmx2\all\855.inf Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\ipmx2\all\855.inf Generic Write,Read Attributes
c:\users\user\appdata\local\temp\ipmx2\all\855.inf Synchronize,Write Attributes
c:\users\user\appdata\local\temp\ipmx2\all\865.cat Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\ipmx2\all\865.cat Generic Write,Read Attributes
c:\users\user\appdata\local\temp\ipmx2\all\865.cat Synchronize,Write Attributes
c:\users\user\appdata\local\temp\ipmx2\all\865.inf Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\ipmx2\all\865.inf Generic Write,Read Attributes
c:\users\user\appdata\local\temp\ipmx2\all\865.inf Synchronize,Write Attributes
c:\users\user\appdata\local\temp\ipmx2\all\915.cat Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\ipmx2\all\915.cat Generic Write,Read Attributes
c:\users\user\appdata\local\temp\ipmx2\all\915.cat Synchronize,Write Attributes
c:\users\user\appdata\local\temp\ipmx2\all\915.inf Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\ipmx2\all\915.inf Generic Write,Read Attributes
c:\users\user\appdata\local\temp\ipmx2\all\915.inf Synchronize,Write Attributes
c:\users\user\appdata\local\temp\ipmx2\all\915m.cat Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\ipmx2\all\915m.cat Generic Write,Read Attributes
c:\users\user\appdata\local\temp\ipmx2\all\915m.cat Synchronize,Write Attributes
c:\users\user\appdata\local\temp\ipmx2\all\915m.inf Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\ipmx2\all\915m.inf Generic Write,Read Attributes
c:\users\user\appdata\local\temp\ipmx2\all\915m.inf Synchronize,Write Attributes
c:\users\user\appdata\local\temp\ipmx2\all\945.cat Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\ipmx2\all\945.cat Generic Write,Read Attributes
c:\users\user\appdata\local\temp\ipmx2\all\945.cat Synchronize,Write Attributes
c:\users\user\appdata\local\temp\ipmx2\all\945.inf Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\ipmx2\all\945.inf Generic Write,Read Attributes
c:\users\user\appdata\local\temp\ipmx2\all\945.inf Synchronize,Write Attributes
c:\users\user\appdata\local\temp\ipmx2\all\945gm.cat Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\ipmx2\all\945gm.cat Generic Write,Read Attributes
c:\users\user\appdata\local\temp\ipmx2\all\945gm.cat Synchronize,Write Attributes
c:\users\user\appdata\local\temp\ipmx2\all\945gm.inf Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\ipmx2\all\945gm.inf Generic Write,Read Attributes
c:\users\user\appdata\local\temp\ipmx2\all\945gm.inf Synchronize,Write Attributes
c:\users\user\appdata\local\temp\ipmx2\all\965g.cat Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\ipmx2\all\965g.cat Generic Write,Read Attributes
c:\users\user\appdata\local\temp\ipmx2\all\965g.cat Synchronize,Write Attributes
c:\users\user\appdata\local\temp\ipmx2\all\965g.inf Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\ipmx2\all\965g.inf Generic Write,Read Attributes
c:\users\user\appdata\local\temp\ipmx2\all\965g.inf Synchronize,Write Attributes
c:\users\user\appdata\local\temp\ipmx2\all\965m.cat Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\ipmx2\all\965m.cat Generic Write,Read Attributes
c:\users\user\appdata\local\temp\ipmx2\all\965m.cat Synchronize,Write Attributes
c:\users\user\appdata\local\temp\ipmx2\all\965m.inf Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\ipmx2\all\965m.inf Generic Write,Read Attributes
c:\users\user\appdata\local\temp\ipmx2\all\965m.inf Synchronize,Write Attributes
c:\users\user\appdata\local\temp\ipmx2\all\cdvcore.cat Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\ipmx2\all\cdvcore.cat Generic Write,Read Attributes
c:\users\user\appdata\local\temp\ipmx2\all\cdvcore.cat Synchronize,Write Attributes
c:\users\user\appdata\local\temp\ipmx2\all\cdvcore.inf Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\ipmx2\all\cdvcore.inf Generic Write,Read Attributes
c:\users\user\appdata\local\temp\ipmx2\all\cdvcore.inf Synchronize,Write Attributes
c:\users\user\appdata\local\temp\ipmx2\all\cougahci.cat Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\ipmx2\all\cougahci.cat Generic Write,Read Attributes
c:\users\user\appdata\local\temp\ipmx2\all\cougahci.cat Synchronize,Write Attributes
c:\users\user\appdata\local\temp\ipmx2\all\cougahci.inf Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\ipmx2\all\cougahci.inf Generic Write,Read Attributes
c:\users\user\appdata\local\temp\ipmx2\all\cougahci.inf Synchronize,Write Attributes
c:\users\user\appdata\local\temp\ipmx2\all\cougcore.cat Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\ipmx2\all\cougcore.cat Generic Write,Read Attributes
c:\users\user\appdata\local\temp\ipmx2\all\cougcore.cat Synchronize,Write Attributes
c:\users\user\appdata\local\temp\ipmx2\all\cougcore.inf Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\ipmx2\all\cougcore.inf Generic Write,Read Attributes
c:\users\user\appdata\local\temp\ipmx2\all\cougcore.inf Synchronize,Write Attributes
c:\users\user\appdata\local\temp\ipmx2\all\coughaud.cat Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\ipmx2\all\coughaud.cat Generic Write,Read Attributes
c:\users\user\appdata\local\temp\ipmx2\all\coughaud.cat Synchronize,Write Attributes
c:\users\user\appdata\local\temp\ipmx2\all\coughaud.inf Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\ipmx2\all\coughaud.inf Generic Write,Read Attributes
c:\users\user\appdata\local\temp\ipmx2\all\coughaud.inf Synchronize,Write Attributes
c:\users\user\appdata\local\temp\ipmx2\all\cougheci.cat Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\ipmx2\all\cougheci.cat Generic Write,Read Attributes
c:\users\user\appdata\local\temp\ipmx2\all\cougheci.cat Synchronize,Write Attributes
c:\users\user\appdata\local\temp\ipmx2\all\cougheci.inf Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\ipmx2\all\cougheci.inf Generic Write,Read Attributes
c:\users\user\appdata\local\temp\ipmx2\all\cougheci.inf Synchronize,Write Attributes
c:\users\user\appdata\local\temp\ipmx2\all\cougide.cat Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\ipmx2\all\cougide.cat Generic Write,Read Attributes
c:\users\user\appdata\local\temp\ipmx2\all\cougide.cat Synchronize,Write Attributes
c:\users\user\appdata\local\temp\ipmx2\all\cougide.inf Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\ipmx2\all\cougide.inf Generic Write,Read Attributes
c:\users\user\appdata\local\temp\ipmx2\all\cougide.inf Synchronize,Write Attributes
c:\users\user\appdata\local\temp\ipmx2\all\cougme.cat Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\ipmx2\all\cougme.cat Generic Write,Read Attributes
c:\users\user\appdata\local\temp\ipmx2\all\cougme.cat Synchronize,Write Attributes
c:\users\user\appdata\local\temp\ipmx2\all\cougme.inf Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\ipmx2\all\cougme.inf Generic Write,Read Attributes
c:\users\user\appdata\local\temp\ipmx2\all\cougme.inf Synchronize,Write Attributes
c:\users\user\appdata\local\temp\ipmx2\all\cougsmb.cat Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\ipmx2\all\cougsmb.cat Generic Write,Read Attributes
c:\users\user\appdata\local\temp\ipmx2\all\cougsmb.cat Synchronize,Write Attributes
c:\users\user\appdata\local\temp\ipmx2\all\cougsmb.inf Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\ipmx2\all\cougsmb.inf Generic Write,Read Attributes
c:\users\user\appdata\local\temp\ipmx2\all\cougsmb.inf Synchronize,Write Attributes
c:\users\user\appdata\local\temp\ipmx2\all\cougusb.cat Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\ipmx2\all\cougusb.cat Generic Write,Read Attributes
c:\users\user\appdata\local\temp\ipmx2\all\cougusb.cat Synchronize,Write Attributes
c:\users\user\appdata\local\temp\ipmx2\all\cougusb.inf Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\ipmx2\all\cougusb.inf Generic Write,Read Attributes
c:\users\user\appdata\local\temp\ipmx2\all\cougusb.inf Synchronize,Write Attributes
c:\users\user\appdata\local\temp\ipmx2\all\couide2.cat Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\ipmx2\all\couide2.cat Generic Write,Read Attributes
c:\users\user\appdata\local\temp\ipmx2\all\couide2.cat Synchronize,Write Attributes
c:\users\user\appdata\local\temp\ipmx2\all\couide2.inf Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\ipmx2\all\couide2.inf Generic Write,Read Attributes
c:\users\user\appdata\local\temp\ipmx2\all\couide2.inf Synchronize,Write Attributes
c:\users\user\appdata\local\temp\ipmx2\all\crestln.cat Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\ipmx2\all\crestln.cat Generic Write,Read Attributes
c:\users\user\appdata\local\temp\ipmx2\all\crestln.cat Synchronize,Write Attributes
c:\users\user\appdata\local\temp\ipmx2\all\dh89xxcc-ahci.cat Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\ipmx2\all\dh89xxcc-ahci.cat Generic Write,Read Attributes
c:\users\user\appdata\local\temp\ipmx2\all\dh89xxcc-ahci.cat Synchronize,Write Attributes
c:\users\user\appdata\local\temp\ipmx2\all\dh89xxcc-ahci.inf Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\ipmx2\all\dh89xxcc-ahci.inf Generic Write,Read Attributes
c:\users\user\appdata\local\temp\ipmx2\all\dh89xxcc-ahci.inf Synchronize,Write Attributes
c:\users\user\appdata\local\temp\ipmx2\all\dh89xxcc-cor.cat Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\ipmx2\all\dh89xxcc-cor.cat Generic Write,Read Attributes
c:\users\user\appdata\local\temp\ipmx2\all\dh89xxcc-cor.cat Synchronize,Write Attributes
c:\users\user\appdata\local\temp\ipmx2\all\dh89xxcc-cor.inf Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\ipmx2\all\dh89xxcc-cor.inf Generic Write,Read Attributes
c:\users\user\appdata\local\temp\ipmx2\all\dh89xxcc-cor.inf Synchronize,Write Attributes
c:\users\user\appdata\local\temp\ipmx2\all\dh89xxcc-id2.cat Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\ipmx2\all\dh89xxcc-id2.cat Generic Write,Read Attributes
c:\users\user\appdata\local\temp\ipmx2\all\dh89xxcc-id2.cat Synchronize,Write Attributes
c:\users\user\appdata\local\temp\ipmx2\all\dh89xxcc-id2.inf Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\ipmx2\all\dh89xxcc-id2.inf Generic Write,Read Attributes
c:\users\user\appdata\local\temp\ipmx2\all\dh89xxcc-id2.inf Synchronize,Write Attributes
c:\users\user\appdata\local\temp\ipmx2\all\dh89xxcc-ide.cat Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\ipmx2\all\dh89xxcc-ide.cat Generic Write,Read Attributes
c:\users\user\appdata\local\temp\ipmx2\all\dh89xxcc-ide.cat Synchronize,Write Attributes
c:\users\user\appdata\local\temp\ipmx2\all\dh89xxcc-ide.inf Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\ipmx2\all\dh89xxcc-ide.inf Generic Write,Read Attributes
c:\users\user\appdata\local\temp\ipmx2\all\dh89xxcc-ide.inf Synchronize,Write Attributes
c:\users\user\appdata\local\temp\ipmx2\all\dh89xxcc-smb.cat Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\ipmx2\all\dh89xxcc-smb.cat Generic Write,Read Attributes
c:\users\user\appdata\local\temp\ipmx2\all\dh89xxcc-smb.cat Synchronize,Write Attributes
c:\users\user\appdata\local\temp\ipmx2\all\dh89xxcc-smb.inf Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\ipmx2\all\dh89xxcc-smb.inf Generic Write,Read Attributes
c:\users\user\appdata\local\temp\ipmx2\all\dh89xxcc-smb.inf Synchronize,Write Attributes
c:\users\user\appdata\local\temp\ipmx2\all\dh89xxcc-usb.cat Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\ipmx2\all\dh89xxcc-usb.cat Generic Write,Read Attributes
c:\users\user\appdata\local\temp\ipmx2\all\dh89xxcc-usb.cat Synchronize,Write Attributes
c:\users\user\appdata\local\temp\ipmx2\all\dh89xxcc-usb.inf Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\ipmx2\all\dh89xxcc-usb.inf Generic Write,Read Attributes
c:\users\user\appdata\local\temp\ipmx2\all\dh89xxcc-usb.inf Synchronize,Write Attributes
c:\users\user\appdata\local\temp\ipmx2\all\dmi_pci.cat Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\ipmx2\all\dmi_pci.cat Generic Write,Read Attributes
c:\users\user\appdata\local\temp\ipmx2\all\dmi_pci.cat Synchronize,Write Attributes
c:\users\user\appdata\local\temp\ipmx2\all\dmi_pci.inf Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\ipmx2\all\dmi_pci.inf Generic Write,Read Attributes
c:\users\user\appdata\local\temp\ipmx2\all\dmi_pci.inf Synchronize,Write Attributes
c:\users\user\appdata\local\temp\ipmx2\all\e5100.cat Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\ipmx2\all\e5100.cat Generic Write,Read Attributes
c:\users\user\appdata\local\temp\ipmx2\all\e5100.cat Synchronize,Write Attributes
c:\users\user\appdata\local\temp\ipmx2\all\e5100.inf Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\ipmx2\all\e5100.inf Generic Write,Read Attributes
c:\users\user\appdata\local\temp\ipmx2\all\e5100.inf Synchronize,Write Attributes
c:\users\user\appdata\local\temp\ipmx2\all\e7220.cat Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\ipmx2\all\e7220.cat Generic Write,Read Attributes
c:\users\user\appdata\local\temp\ipmx2\all\e7220.cat Synchronize,Write Attributes
c:\users\user\appdata\local\temp\ipmx2\all\e7220.inf Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\ipmx2\all\e7220.inf Generic Write,Read Attributes
c:\users\user\appdata\local\temp\ipmx2\all\e7220.inf Synchronize,Write Attributes
c:\users\user\appdata\local\temp\ipmx2\all\e7230.cat Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\ipmx2\all\e7230.cat Generic Write,Read Attributes
c:\users\user\appdata\local\temp\ipmx2\all\e7230.cat Synchronize,Write Attributes
c:\users\user\appdata\local\temp\ipmx2\all\e7230.inf Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\ipmx2\all\e7230.inf Generic Write,Read Attributes
c:\users\user\appdata\local\temp\ipmx2\all\e7230.inf Synchronize,Write Attributes
c:\users\user\appdata\local\temp\ipmx2\all\e7300.cat Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\ipmx2\all\e7300.cat Generic Write,Read Attributes
c:\users\user\appdata\local\temp\ipmx2\all\e7300.cat Synchronize,Write Attributes

1111 additional files are not displayed above.

Registry Modifications

Key::Value Data API Name
HKCU\software\microsoft\windows nt\currentversion\appcompatflags::{0783a2de-b4f4-46f7-b242-61fb12f8d07e}  RegNtPreCreateKey
HKLM\software\microsoft\windows nt\currentversion\notifications\data::418a073aa3bc1c75 RegNtPreCreateKey

Windows API Usage

Category API
Process Manipulation Evasion
  • NtUnmapViewOfSection
Process Shell Execute
  • CreateProcess
Service Control
  • OpenSCManager
Anti Debug
  • IsDebuggerPresent
  • OutputDebugString
User Data Access
  • GetUserObjectInformation
Syscall Use
  • ntdll.dll!NtAddAtomEx
  • ntdll.dll!NtAlpcSendWaitReceivePort
  • ntdll.dll!NtApphelpCacheControl
  • ntdll.dll!NtClearEvent
  • ntdll.dll!NtClose
  • ntdll.dll!NtConnectPort
  • ntdll.dll!NtCreateEvent
  • ntdll.dll!NtCreateMutant
  • ntdll.dll!NtCreateSection
  • ntdll.dll!NtCreateSemaphore
Show More
  • ntdll.dll!NtCreateThreadEx
  • ntdll.dll!NtDeviceIoControlFile
  • ntdll.dll!NtEnumerateKey
  • ntdll.dll!NtFreeVirtualMemory
  • ntdll.dll!NtMapViewOfSection
  • ntdll.dll!NtOpenFile
  • ntdll.dll!NtOpenKey
  • ntdll.dll!NtOpenKeyEx
  • ntdll.dll!NtOpenSection
  • ntdll.dll!NtOpenSemaphore
  • ntdll.dll!NtProtectVirtualMemory
  • ntdll.dll!NtQueryAttributesFile
  • ntdll.dll!NtQueryInformationFile
  • ntdll.dll!NtQueryInformationProcess
  • ntdll.dll!NtQueryInformationThread
  • ntdll.dll!NtQueryInformationToken
  • ntdll.dll!NtQueryKey
  • ntdll.dll!NtQueryLicenseValue
  • ntdll.dll!NtQueryPerformanceCounter
  • ntdll.dll!NtQuerySecurityAttributesToken
  • ntdll.dll!NtQuerySystemInformation
  • ntdll.dll!NtQueryValueKey
  • ntdll.dll!NtQueryVirtualMemory
  • ntdll.dll!NtQueryVolumeInformationFile
  • ntdll.dll!NtQueryWnfStateData
  • ntdll.dll!NtReleaseMutant
  • ntdll.dll!NtReleaseSemaphore
  • ntdll.dll!NtReleaseWorkerFactoryWorker
  • ntdll.dll!NtRequestWaitReplyPort
  • ntdll.dll!NtResumeThread
  • ntdll.dll!NtSetEvent
  • ntdll.dll!NtSetInformationProcess
  • ntdll.dll!NtSetInformationThread
  • ntdll.dll!NtSetInformationVirtualMemory
  • ntdll.dll!NtSetInformationWorkerFactory
  • ntdll.dll!NtSetValueKey
  • ntdll.dll!NtSubscribeWnfStateChange
  • ntdll.dll!NtTerminateProcess
  • ntdll.dll!NtTestAlert
  • ntdll.dll!NtTraceControl
  • ntdll.dll!NtUnmapViewOfSection
  • ntdll.dll!NtUnmapViewOfSectionEx
  • ntdll.dll!NtUpdateWnfStateData
  • ntdll.dll!NtWaitForMultipleObjects
  • ntdll.dll!NtWaitForSingleObject
  • ntdll.dll!NtWaitForWorkViaWorkerFactory
  • ntdll.dll!NtWaitLowEventPair
  • ntdll.dll!NtWriteFile
  • UNKNOWN

Shell Command Execution

C:\Users\Lekitjye\AppData\Local\Temp\IPMx2\setup.exe
C:\Users\Fghvxwyg\AppData\Local\Temp\IPMx2\setup.exe
C:\Users\Iwzlypxr\AppData\Local\Temp\IPMx2\setup.exe

Trending

Most Viewed

Loading...