Multi-License Discount Quote

Change Region

English
Threat Database Potentially Unwanted Programs PUP.Speedbit

PUP.Speedbit

By CagedTech in Potentially Unwanted Programs

Analysis Report

General information

Family Name: PUP.Speedbit
Signature status: Root Not Trusted

Known Samples

MD5: 5fa63b7d2e61d48a2f5a218d7a7671d9
SHA1: ab009e2048d73be0efbcd5643fbcd2baf4e956d5
SHA256: A0C0ED90FDE38C3458F94C494DF934800C30F855767E561F9D55B4274820915A
File Size: 115.91 KB, 115912 bytes
MD5: e8de77980cecf35f020701a4a40cf053
SHA1: c7da514fd66391b06383ca14316b4e5f8d7dbc42
SHA256: 959149779320AE2B5D8C37A3679263A1B95CDD003F8F90F7111C2B328BBE9BB8
File Size: 3.37 MB, 3371160 bytes
MD5: 721b0fd6bd3ea4a57fc38e948feeb58f
SHA1: 95d6a4ce8ae2c75e2587ff59fde90ba143a6b47e
SHA256: 26B4AC78D14595DD95C5CDB074479CB61AFA13C20D70EEB08E0BAA5787BCAFF8
File Size: 8.58 MB, 8577048 bytes
MD5: 5c6e7556f213c447b5769417df00dbc4
SHA1: 8ba5fd50d99774d6155390ea60830a0386076d9b
SHA256: E4D74143214CA97539710E9098AD1D4C7F8D04CCD018C717C16F2F799A38DE54
File Size: 4.74 MB, 4742928 bytes
MD5: d7fe83c1d52dda360f7dc18a759a2fa7
SHA1: 3e27f52735fa41935f176a7c9839bcbfabc3f688
SHA256: B7C1E0310177135F5FF3F972F36B7258F8CD6EB0DD517F84EF50387014202558
File Size: 5.78 MB, 5776584 bytes
Show More
MD5: 8ed9b669ebedf259d7361ac2a821547e
SHA1: 5d6ed5b90bd0d35e09a4bd9ee453341f21fcc171
SHA256: BDB8ACB25332A9F5091AE26C6929E2B06E1FE16403A1EC57A10BA6FBE1B00C84
File Size: 5.04 MB, 5041800 bytes
MD5: 25bef1b52b5ecb1ade376232fea0f2fb
SHA1: 51a7b6397f2a0059d90f044bf2c92fb471d29a69
SHA256: 2C78606E15F47464B029A759377B3E5B608871408D9284BF8C56BB4EB9028FCF
File Size: 7.20 MB, 7204128 bytes
MD5: b511762a5a092f5fb09f93d2e7ed37cd
SHA1: 7def0cbea6dfed7fb5f45301e89cabef120a796d
SHA256: 96046C06C582EFE76A2400872DB939FA0B60D331832366D9A71188F53A466DC3
File Size: 4.70 MB, 4704920 bytes

Windows Portable Executable Attributes

  • File doesn't have "Rich" header
  • File doesn't have debug information
  • File doesn't have exports table
  • File doesn't have relocations information
  • File has exports table
  • File is 32-bit executable
  • File is 64-bit executable
  • File is either console or GUI application
  • File is GUI application (IMAGE_SUBSYSTEM_WINDOWS_GUI)
  • File is Native application (NOT .NET application)
Show More
  • File is not packed
  • IMAGE_FILE_DLL is not set inside PE header (Executable)
  • IMAGE_FILE_EXECUTABLE_IMAGE is set inside PE header (Executable Image)

File Icons

Windows PE Version Information

Name Value
Comments 2201
Company Name
  • Speedbit Ltd
  • Speedbit Ltd.
  • SpeedBit Ltd.
File Description
  • Download Accelerator Plus (DAP)
  • SBUpdate Module
  • SpeedBit Video Accelerator
  • SpeedBit Video Downloader
File Version
  • 8652 (Build 452)
  • 8138 (Build 214)
  • 3233(build_2116)
  • 2.4.2
  • 2.3.1
  • 2.1.0.65
  • 2.1.0.26
  • 1, 0, 3, 1
Internal Name SBUpdate
Legal Copyright
  • (c) 2008-2010
  • Copyright 2011
  • Speedbit LTD
Original Filename
  • SBUpdate.exe
  • sbw.exe
Private Build 2201
Product Name
  • SBUpdate Module
  • Speedbit Search
Product Version
  • 2.1.0.65
  • 2.1.0.26
  • 1, 0, 3, 1

Digital Signatures

Signer Root Status
Speed-Bit LTD Thawte Premium Server CA Root Not Trusted
Speed-Bit LTD thawte Primary Root CA Root Not Trusted
Speed-Bit LTD thawte Primary Root CA Hash Mismatch

Block Information

Total Blocks: 26
Potentially Malicious Blocks: 0
Whitelisted Blocks: 26
Unknown Blocks: 0

Visual Map

0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0
0 - Probable Safe Block
? - Unknown Block
x - Potentially Malicious Block

Similar Families

  • AdGazelle.A
  • Downloader.Agent.TJ
  • Mobogenie
  • NetBus.A
  • SearchSuite.C
Show More
  • Sqwire.AA
  • Zusy.CA

Files Modified

File Attributes
\device\namedpipe Generic Read,Write Attributes
\device\namedpipe Generic Write,Read Attributes
\device\namedpipe\gmdasllogger Generic Write,Read Attributes
c:\program files\common files\speedbit\sbupdate\newtablaunch.crx Generic Write,Read Attributes
c:\program files\common files\speedbit\sbupdate\sba.exe Generic Write,Read Attributes
c:\program files\common files\speedbit\sbupdate\sbci32.dll Generic Write,Read Attributes
c:\program files\common files\speedbit\sbupdate\sbci32.dll Synchronize,Write Attributes
c:\program files\common files\speedbit\sbupdate\sbci64.dll Generic Write,Read Attributes
c:\program files\common files\speedbit\sbupdate\sbei32.dll Generic Write,Read Attributes
c:\program files\common files\speedbit\sbupdate\sbei32.dll Synchronize,Write Attributes
Show More
c:\program files\common files\speedbit\sbupdate\sbei64.dll Generic Write,Read Attributes
c:\program files\common files\speedbit\sbupdate\sbfi32.dll Generic Write,Read Attributes
c:\program files\common files\speedbit\sbupdate\sbfi32.dll Synchronize,Write Attributes
c:\program files\common files\speedbit\sbupdate\sbfi64.dll Generic Write,Read Attributes
c:\program files\common files\speedbit\sbupdate\sbi32.exe Generic Write,Read Attributes
c:\program files\common files\speedbit\sbupdate\sbi32.exe Synchronize,Write Attributes
c:\program files\common files\speedbit\sbupdate\sbi64.exe Generic Write,Read Attributes
c:\program files\common files\speedbit\sbupdate\sboi32.dll Generic Write,Read Attributes
c:\program files\common files\speedbit\sbupdate\sboi32.dll Synchronize,Write Attributes
c:\program files\common files\speedbit\sbupdate\sboi64.dll Generic Write,Read Attributes
c:\program files\common files\speedbit\sbupdate\sbu.exe Generic Write,Read Attributes
c:\program files\common files\speedbit\sbupdate\sbw.sys Generic Write,Read Attributes
c:\users\user\appdata\local\temp\about speedbit video accelerator.url Synchronize,Write Attributes
c:\users\user\appdata\local\temp\about speedbit video accelerator.url Synchronize,Write Data
c:\users\user\appdata\local\temp\about speedbit video downloader.html Synchronize,Write Attributes
c:\users\user\appdata\local\temp\about speedbit video downloader.html Synchronize,Write Data
c:\users\user\appdata\local\temp\about speedbit video downloader.url Synchronize,Write Attributes
c:\users\user\appdata\local\temp\about speedbit video downloader.url Synchronize,Write Data
c:\users\user\appdata\local\temp\browserset.dll Synchronize,Write Attributes
c:\users\user\appdata\local\temp\browserset.dll Synchronize,Write Data
c:\users\user\appdata\local\temp\cabex.dll Synchronize,Write Attributes
c:\users\user\appdata\local\temp\cabex.dll Synchronize,Write Data
c:\users\user\appdata\local\temp\encode.ini Synchronize,Write Attributes
c:\users\user\appdata\local\temp\encode.ini Synchronize,Write Data
c:\users\user\appdata\local\temp\glb5218.tmp Generic Write,Read Attributes
c:\users\user\appdata\local\temp\glb6519.tmp Generic Write,Read Attributes
c:\users\user\appdata\local\temp\glb9a.tmp Generic Write,Read Attributes
c:\users\user\appdata\local\temp\glbb8a6.tmp Generic Write,Read Attributes
c:\users\user\appdata\local\temp\glbbbc3.tmp Generic Write,Read Attributes
c:\users\user\appdata\local\temp\glc220.tmp Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\glc5489.tmp Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\glc6661.tmp Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\glcba4c.tmp Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\glcbcdd.tmp Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\glf60f1.tmp Synchronize,Write Attributes
c:\users\user\appdata\local\temp\glf60f1.tmp Synchronize,Write Data
c:\users\user\appdata\local\temp\glf722e.tmp Synchronize,Write Attributes
c:\users\user\appdata\local\temp\glf722e.tmp Synchronize,Write Data
c:\users\user\appdata\local\temp\glf726d.tmp Synchronize,Write Attributes
c:\users\user\appdata\local\temp\glf726d.tmp Synchronize,Write Data
c:\users\user\appdata\local\temp\glfc8d8.tmp Synchronize,Write Attributes
c:\users\user\appdata\local\temp\glfc8d8.tmp Synchronize,Write Data
c:\users\user\appdata\local\temp\glfc908.tmp Synchronize,Write Attributes
c:\users\user\appdata\local\temp\glfc908.tmp Synchronize,Write Data
c:\users\user\appdata\local\temp\glfc954.tmp Synchronize,Write Attributes
c:\users\user\appdata\local\temp\glfc954.tmp Synchronize,Write Data
c:\users\user\appdata\local\temp\glfe1d.tmp Synchronize,Write Attributes
c:\users\user\appdata\local\temp\glfe1d.tmp Synchronize,Write Data
c:\users\user\appdata\local\temp\glfe3d.tmp Synchronize,Write Attributes
c:\users\user\appdata\local\temp\glfe3d.tmp Synchronize,Write Data
c:\users\user\appdata\local\temp\glg721d.tmp Generic Write,Read Attributes
c:\users\user\appdata\local\temp\glgc8b8.tmp Generic Write,Read Attributes
c:\users\user\appdata\local\temp\glgded.tmp Generic Write,Read Attributes
c:\users\user\appdata\local\temp\glj250.tmp Generic Write,Read Attributes
c:\users\user\appdata\local\temp\glj54d8.tmp Generic Write,Read Attributes
c:\users\user\appdata\local\temp\glj6672.tmp Generic Write,Read Attributes
c:\users\user\appdata\local\temp\gljba7c.tmp Generic Write,Read Attributes
c:\users\user\appdata\local\temp\gljbd0c.tmp Generic Write,Read Attributes
c:\users\user\appdata\local\temp\glk455.tmp Generic Write,Read Attributes
c:\users\user\appdata\local\temp\glk570c.tmp Generic Write,Read Attributes
c:\users\user\appdata\local\temp\glk6876.tmp Generic Write,Read Attributes
c:\users\user\appdata\local\temp\glkbc71.tmp Generic Write,Read Attributes
c:\users\user\appdata\local\temp\glkbf01.tmp Generic Write,Read Attributes
c:\users\user\appdata\local\temp\glm6b7.tmp Generic Write,Read Attributes
c:\users\user\appdata\local\temp\googletoolbarinstaller_spdx_en_signed.exe Synchronize,Write Attributes
c:\users\user\appdata\local\temp\googletoolbarinstaller_spdx_en_signed.exe Synchronize,Write Data
c:\users\user\appdata\local\temp\googletoolbarinstaller_spdx_signed.exe Synchronize,Write Attributes
c:\users\user\appdata\local\temp\googletoolbarinstaller_spdx_signed.exe Synchronize,Write Data
c:\users\user\appdata\local\temp\logo copy.bmp Synchronize,Write Attributes
c:\users\user\appdata\local\temp\logo copy.bmp Synchronize,Write Data
c:\users\user\appdata\local\temp\nsd293.tmp\nsexec.dll Generic Write,Read Attributes
c:\users\user\appdata\local\temp\nsd293.tmp\nsprocess.dll Generic Write,Read Attributes
c:\users\user\appdata\local\temp\nsd293.tmp\system.dll Generic Write,Read Attributes
c:\users\user\appdata\local\temp\nst2a4.tmp Synchronize,Write Attributes
c:\users\user\appdata\local\temp\speedbitvideodownloaderffox.cab Synchronize,Write Attributes
c:\users\user\appdata\local\temp\speedbitvideodownloaderffox.cab Synchronize,Write Data
c:\users\user\appdata\local\temp\svcinst\about speedbit video downloader.html Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\affid.dat Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\amazon_logo.png Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\ask-logo-16.png Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\basis.xml Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\browserset.dll Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\cog.png Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\content\1.png Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\content\236.png Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\content\368.png Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\content\51.png Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\content\546.png Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\content\550.png Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\content\551.png Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\content\552.png Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\content\about speedbit video downloader.html Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\content\about.css Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\content\about.js Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\content\about.xul Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\content\affid.dat Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\content\amazon_logo.png Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\content\ask-logo-16.png Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\content\basis.xml Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\content\bubble.js Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\content\bubble.xul Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\content\cog.png Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\content\contents.rdf Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\content\ebay-logo-16.png Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\content\empty.png Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\content\gripper.png Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\content\highlight_off.png Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\content\highlight_on.png Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\content\info.txt Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\content\jscontainer.htm Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\content\localcopy.xml Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\content\logo.png Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\content\md5.js Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\content\mercado_livre.png Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\content\mercado_livre0.1.png Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\content\mozilla.xul Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\content\searchwordsheet.png Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\content\separator.png Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\content\speedbit_icon0.2.bmp Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\content\speedbit_icon0.2.png Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\content\speedbittoolbar_icons.bmp Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\content\speedbittoolbar_icons.png Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\content\speedbitvideodownloader.crc Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\content\speedbitvideodownloader.dll Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\content\speedbitvideodownloader.inf Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\content\tabs.htm Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\content\tb.css Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\content\tb.js Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\content\tb.xsl Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\content\tb.xul Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\content\translate_webpage.png Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\content\version.txt Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\content\video.png Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\content\vssver.scc Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\easyhook32.dll Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\easyhook64.dll Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\ebay-logo-16.png Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\empty.png Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\grabber.dll Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\grabber_pluginu.dll Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\hlp64.exe Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\info.txt Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\localcopy.xml Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\mercado_livre.png Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\mercado_livre0.1.png Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\sbupd.dll Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\sbupd64.dll Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\sbupdate.exe Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\speedbit_icon0.2.bmp Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\speedbit_icon0.2.png Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\speedbittoolbar_icons.bmp Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\speedbitvideodownloader.cab Synchronize,Write Attributes
c:\users\user\appdata\local\temp\svcinst\speedbitvideodownloader.cab Synchronize,Write Data
c:\users\user\appdata\local\temp\svcinst\speedbitvideodownloader.crc Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\speedbitvideodownloader.dll Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\speedbitvideodownloader.inf Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\suggestion_plugin.dll Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\tbcommonutils.dll Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\tbcore3.dll Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\tbhelper.dll Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\tbhelper2.exe Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\translate_webpage.png Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\uninstall.exe Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\update.exe Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\version.txt Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\video.png Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svcinst\~glh0004.tmp Generic Write,Read Attributes
c:\users\user\appdata\local\temp\svd_va.exe Synchronize,Write Attributes
c:\users\user\appdata\local\temp\svd_va.exe Synchronize,Write Data
c:\users\user\appdata\local\temp\templatehtml.html Synchronize,Write Attributes
c:\users\user\appdata\local\temp\templatehtml.html Synchronize,Write Data
c:\users\user\appdata\local\temp\uitools.dll Synchronize,Write Attributes
c:\users\user\appdata\local\temp\uitools.dll Synchronize,Write Data
c:\users\user\appdata\local\temp\~glh0000.tmp Generic Write,Read Attributes
c:\users\user\appdata\local\temp\~glh0001.tmp Generic Write,Read Attributes
c:\users\user\appdata\local\temp\~glh0002.tmp Generic Write,Read Attributes
c:\users\user\appdata\local\temp\~glh0003.tmp Generic Write,Read Attributes
c:\users\user\appdata\local\temp\~glh0004.tmp Generic Write,Read Attributes
c:\users\user\appdata\local\temp\~glh0005.tmp Generic Write,Read Attributes
c:\users\user\appdata\local\temp\~glh0006.tmp Generic Write,Read Attributes
c:\users\user\appdata\local\temp\~glh0007.tmp Generic Write,Read Attributes
c:\users\user\downloads\ Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\downloads\ Synchronize,Write Attributes
c:\users\user\downloads\ Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\downloads\ Synchronize,Write Attributes
c:\users\user\downloads\ Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\downloads\ Synchronize,Write Attributes
c:\users\user\downloads\ Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\downloads\ Synchronize,Write Attributes
c:\users\user\downloads\ Generic Read,Write Data,Write Attributes,Write extended,Append data

14 additional files are not displayed above.

Registry Modifications

Key::Value Data API Name
HKLM\software\wow6432node\google\navclient::test test RegNtPreCreateKey
HKLM\software\wow6432node\google\chrome\extensions\kbhplonhjleiopohgmppianogioknked::path C:\Program Files\Common Files\SpeedBit\SBUpdate\NewTabLaunch.crx RegNtPreCreateKey
HKLM\software\wow6432node\google\chrome\extensions\kbhplonhjleiopohgmppianogioknked::version 1.0 RegNtPreCreateKey
HKLM\system\controlset001\services\bam\state\usersettings\s-1-5-21-3119368278-1123331430-659265220-1001::\device\harddiskvolume2\windows\system32\conhost.exe レႪ侩ǜ RegNtPreCreateKey

Windows API Usage

Category API
Process Manipulation Evasion
  • NtUnmapViewOfSection
Process Shell Execute
  • CreateProcess
Anti Debug
  • IsDebuggerPresent
  • NtQuerySystemInformation
User Data Access
  • GetUserObjectInformation
Syscall Use
  • ntdll.dll!NtAccessCheck
  • ntdll.dll!NtAlertThreadByThreadId
  • ntdll.dll!NtAlpcSendWaitReceivePort
  • ntdll.dll!NtApphelpCacheControl
  • ntdll.dll!NtClearEvent
  • ntdll.dll!NtClose
  • ntdll.dll!NtConnectPort
  • ntdll.dll!NtCreateEvent
  • ntdll.dll!NtCreateMutant
  • ntdll.dll!NtCreateSection
Show More
  • ntdll.dll!NtCreateSemaphore
  • ntdll.dll!NtDeviceIoControlFile
  • ntdll.dll!NtDuplicateObject
  • ntdll.dll!NtDuplicateToken
  • ntdll.dll!NtEnumerateValueKey
  • ntdll.dll!NtFreeVirtualMemory
  • ntdll.dll!NtMapViewOfSection
  • ntdll.dll!NtOpenFile
  • ntdll.dll!NtOpenKey
  • ntdll.dll!NtOpenKeyEx
  • ntdll.dll!NtOpenProcessToken
  • ntdll.dll!NtOpenProcessTokenEx
  • ntdll.dll!NtOpenSection
  • ntdll.dll!NtOpenSemaphore
  • ntdll.dll!NtOpenThreadTokenEx
  • ntdll.dll!NtProtectVirtualMemory
  • ntdll.dll!NtQueryAttributesFile
  • ntdll.dll!NtQueryInformationProcess
  • ntdll.dll!NtQueryInformationThread
  • ntdll.dll!NtQueryInformationToken
  • ntdll.dll!NtQueryKey
  • ntdll.dll!NtQueryPerformanceCounter
  • ntdll.dll!NtQuerySecurityAttributesToken
  • ntdll.dll!NtQuerySystemInformation
  • ntdll.dll!NtQueryValueKey
  • ntdll.dll!NtQueryVirtualMemory
  • ntdll.dll!NtQueryVolumeInformationFile
  • ntdll.dll!NtQueryWnfStateData
  • ntdll.dll!NtReleaseMutant
  • ntdll.dll!NtReleaseSemaphore
  • ntdll.dll!NtReleaseWorkerFactoryWorker
  • ntdll.dll!NtRequestWaitReplyPort
  • ntdll.dll!NtSetEvent
  • ntdll.dll!NtSetInformationProcess
  • ntdll.dll!NtSetInformationThread
  • ntdll.dll!NtSetInformationVirtualMemory
  • ntdll.dll!NtSetInformationWorkerFactory
  • ntdll.dll!NtSubscribeWnfStateChange
  • ntdll.dll!NtTestAlert
  • ntdll.dll!NtTraceControl
  • ntdll.dll!NtUnmapViewOfSection
  • ntdll.dll!NtUnmapViewOfSectionEx
  • ntdll.dll!NtWaitForAlertByThreadId
  • ntdll.dll!NtWaitForSingleObject
  • ntdll.dll!NtWaitForWorkViaWorkerFactory
  • ntdll.dll!NtWaitLowEventPair
  • ntdll.dll!NtWorkerFactoryWorkerReady
  • ntdll.dll!NtWriteFile
  • UNKNOWN

Shell Command Execution

C:\Users\Cgdqosej\AppData\Local\Temp\GLB5218.tmp C:\Users\Cgdqosej\AppData\Local\Temp\GLB5218.tmp 4736 c:\users\user\DOWNLO~1\C7DA51~1
C:\Users\Pwkpxxzu\AppData\Local\Temp\GLB6519.tmp C:\Users\Pwkpxxzu\AppData\Local\Temp\GLB6519.tmp 4736 c:\users\user\DOWNLO~1\95D6A4~1
"" --silent-launch
cmd /C ""C:\Program Files\Common Files\SpeedBit\SBUpdate\sbu.exe" /updatev"
C:\Program Files\Common Files\SpeedBit\SBUpdate\sbu.exe "C:\Program Files\Common Files\SpeedBit\SBUpdate\sbu.exe" /updatev
Show More
C:\Users\Djswkqxz\AppData\Local\Temp\GLB9A.tmp C:\Users\Djswkqxz\AppData\Local\Temp\GLB9A.tmp 4736 c:\users\user\DOWNLO~1\3E27F5~1
C:\Users\Tyyyjnxr\AppData\Local\Temp\GLBBBC3.tmp C:\Users\Tyyyjnxr\AppData\Local\Temp\GLBBBC3.tmp 4736 c:\users\user\DOWNLO~1\51A7B6~1
C:\Users\Xmxjiopv\AppData\Local\Temp\GLBB8A6.tmp C:\Users\Xmxjiopv\AppData\Local\Temp\GLBB8A6.tmp 4736 c:\users\user\DOWNLO~1\7DEF0C~1

Trending

Most Viewed

Loading...