URL |
---|
https://spartanhost.org/minecraft |
This url shows some signs of potential malicious behavior.
The score of this url is 1.4 out of 10.
Please notice: The scoring system is currently still in development and should be considered an alpha feature.
Expecting different results? Send us this analysis and we will inspect it. Click here
Category | Started | Completed | Duration | Routing | Logs |
---|---|---|---|---|---|
URL | July 24, 2025, 7:49 a.m. | July 24, 2025, 7:51 a.m. | 99 seconds | internet |
Show Analyzer Log Show Cuckoo Log |
2025-07-24 07:44:09,015 [analyzer] DEBUG: Starting analyzer from: C:\tmptisd8w 2025-07-24 07:44:09,015 [analyzer] DEBUG: Pipe server name: \??\PIPE\gxetOyTbdGaZywnslopuAm 2025-07-24 07:44:09,015 [analyzer] DEBUG: Log pipe server name: \??\PIPE\JGcGAceGtOXGazdRMYVOzgwCWtugFjZG 2025-07-24 07:44:09,265 [analyzer] DEBUG: Started auxiliary module Curtain 2025-07-24 07:44:09,265 [analyzer] DEBUG: Started auxiliary module DbgView 2025-07-24 07:44:09,671 [analyzer] DEBUG: Started auxiliary module Disguise 2025-07-24 07:44:09,858 [analyzer] DEBUG: Loaded monitor into process with pid 508 2025-07-24 07:44:09,858 [analyzer] DEBUG: Started auxiliary module DumpTLSMasterSecrets 2025-07-24 07:44:09,858 [analyzer] DEBUG: Started auxiliary module Human 2025-07-24 07:44:09,858 [analyzer] DEBUG: Started auxiliary module InstallCertificate 2025-07-24 07:44:09,875 [analyzer] DEBUG: Started auxiliary module Reboot 2025-07-24 07:44:09,937 [analyzer] DEBUG: Started auxiliary module RecentFiles 2025-07-24 07:44:09,937 [analyzer] DEBUG: Started auxiliary module Screenshots 2025-07-24 07:44:09,937 [analyzer] DEBUG: Started auxiliary module Sysmon 2025-07-24 07:44:09,937 [analyzer] DEBUG: Started auxiliary module LoadZer0m0n 2025-07-24 07:44:10,030 [lib.api.process] INFO: Successfully executed process from path 'C:\\Program Files\\Internet Explorer\\iexplore.exe' with arguments ['https://spartanhost.org/minecraft'] and pid 2308 2025-07-24 07:44:10,203 [analyzer] DEBUG: Loaded monitor into process with pid 2308 2025-07-24 07:44:11,562 [analyzer] DEBUG: Following legitimate IE11 process: "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2308 CREDAT:275457 /prefetch:2! 2025-07-24 07:44:11,655 [analyzer] INFO: Injected into process with pid 1520 and name u'iexplore.exe' 2025-07-24 07:44:11,750 [lib.api.process] ERROR: Failed to dump memory of 32-bit process with pid 1520. 2025-07-24 07:44:11,890 [analyzer] INFO: Added new file to list with pid 2308 and path C:\Users\Administrator\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{38350989-6851-11F0-B305-78589F4D5B44}.dat 2025-07-24 07:44:11,937 [analyzer] DEBUG: Loaded monitor into process with pid 1520 2025-07-24 07:44:11,953 [analyzer] INFO: Added new file to list with pid 2308 and path C:\Users\Administrator\AppData\Local\Temp\~DF3C64EB4360BB4838.TMP 2025-07-24 07:44:12,125 [analyzer] DEBUG: Error resolving function mshtml!CDocument_write through our custom callback. 2025-07-24 07:44:12,125 [analyzer] DEBUG: Error resolving function mshtml!CElement_put_innerHTML through our custom callback. 2025-07-24 07:44:12,140 [analyzer] DEBUG: Error resolving function mshtml!CHyperlink_SetUrlComponent through our custom callback. 2025-07-24 07:44:12,140 [analyzer] DEBUG: Error resolving function mshtml!CIFrameElement_CreateElement through our custom callback. 2025-07-24 07:44:12,140 [analyzer] DEBUG: Error resolving function mshtml!CImgElement_put_src through our custom callback. 2025-07-24 07:44:12,140 [analyzer] DEBUG: Error resolving function mshtml!CScriptElement_put_src through our custom callback. 2025-07-24 07:44:12,140 [analyzer] DEBUG: Error resolving function mshtml!CWindow_AddTimeoutCode through our custom callback. 2025-07-24 07:44:12,140 [analyzer] DEBUG: Error resolving function mshtml!CDocument_write through our custom callback. 2025-07-24 07:44:12,140 [analyzer] DEBUG: Error resolving function mshtml!CElement_put_innerHTML through our custom callback. 2025-07-24 07:44:12,155 [analyzer] DEBUG: Error resolving function mshtml!CHyperlink_SetUrlComponent through our custom callback. 2025-07-24 07:44:12,155 [analyzer] DEBUG: Error resolving function mshtml!CIFrameElement_CreateElement through our custom callback. 2025-07-24 07:44:12,155 [analyzer] DEBUG: Error resolving function mshtml!CImgElement_put_src through our custom callback. 2025-07-24 07:44:12,155 [analyzer] DEBUG: Error resolving function mshtml!CScriptElement_put_src through our custom callback. 2025-07-24 07:44:12,155 [analyzer] DEBUG: Error resolving function mshtml!CWindow_AddTimeoutCode through our custom callback. 2025-07-24 07:44:12,483 [analyzer] INFO: Added new file to list with pid 2308 and path C:\Users\Administrator\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{3835098B-6851-11F0-B305-78589F4D5B44}.dat 2025-07-24 07:44:12,500 [analyzer] INFO: Added new file to list with pid 2308 and path C:\Users\Administrator\AppData\Local\Temp\~DFD74E6B77ADF2FEF2.TMP 2025-07-24 07:44:17,937 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\14232B434CF29D4C4FB335A86D7FFFE3 2025-07-24 07:44:17,937 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\14232B434CF29D4C4FB335A86D7FFFE3 2025-07-24 07:44:17,953 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\CabE7B2.tmp 2025-07-24 07:44:17,967 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\TarE7B3.tmp 2025-07-24 07:44:17,983 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\CabE7C4.tmp 2025-07-24 07:44:18,000 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\TarE7D4.tmp 2025-07-24 07:44:18,092 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015 2025-07-24 07:44:18,108 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015 2025-07-24 07:44:18,125 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\CabE852.tmp 2025-07-24 07:44:18,125 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\TarE853.tmp 2025-07-24 07:44:18,140 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\CabE874.tmp 2025-07-24 07:44:18,155 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\TarE875.tmp 2025-07-24 07:44:18,280 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\8B2B9A00839EED1DFDCCC3BFC2F5DF12 2025-07-24 07:44:18,280 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\8B2B9A00839EED1DFDCCC3BFC2F5DF12 2025-07-24 07:44:18,358 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\B46811C17859FFB409CF0E904A4AA8F8 2025-07-24 07:44:18,358 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\B46811C17859FFB409CF0E904A4AA8F8 2025-07-24 07:44:18,405 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\CabE970.tmp 2025-07-24 07:44:18,405 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\TarE971.tmp 2025-07-24 07:44:18,703 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\P7OC751U\minecraft[1].htm 2025-07-24 07:44:18,717 [analyzer] DEBUG: Error resolving function mshtml!CDocument_write through our custom callback. 2025-07-24 07:44:18,717 [analyzer] DEBUG: Error resolving function mshtml!CElement_put_innerHTML through our custom callback. 2025-07-24 07:44:18,717 [analyzer] DEBUG: Error resolving function mshtml!CHyperlink_SetUrlComponent through our custom callback. 2025-07-24 07:44:18,717 [analyzer] DEBUG: Error resolving function mshtml!CIFrameElement_CreateElement through our custom callback. 2025-07-24 07:44:18,717 [analyzer] DEBUG: Error resolving function mshtml!CImgElement_put_src through our custom callback. 2025-07-24 07:44:18,717 [analyzer] DEBUG: Error resolving function mshtml!CScriptElement_put_src through our custom callback. 2025-07-24 07:44:18,717 [analyzer] DEBUG: Error resolving function mshtml!CWindow_AddTimeoutCode through our custom callback. 2025-07-24 07:44:18,828 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IWUWK4DN\style[1].css 2025-07-24 07:44:18,842 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IWUWK4DN\skeleton[1].css 2025-07-24 07:44:18,875 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TPLTKY5I\slicknav[1].css 2025-07-24 07:44:18,890 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TPLTKY5I\email-decode.min[1].js 2025-07-24 07:44:18,890 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TPLTKY5I\responsive[1].css 2025-07-24 07:44:18,890 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TPLTKY5I\slider[1].css 2025-07-24 07:44:18,890 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TPLTKY5I\tabs[1].css 2025-07-24 07:44:18,921 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TPLTKY5I\jquery.slicknav[1].js 2025-07-24 07:44:18,921 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\P7OC751U\logo[1].png 2025-07-24 07:44:18,921 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\P7OC751U\head-email[1].png 2025-07-24 07:44:18,921 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\P7OC751U\top-divider[1].png 2025-07-24 07:44:18,937 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\P7OC751U\head-phone[1].png 2025-07-24 07:44:18,937 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MO0T7L88\btn-padlock[1].png 2025-07-24 07:44:18,937 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MO0T7L88\btn-user[1].png 2025-07-24 07:44:18,953 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MO0T7L88\service-vps[1].png 2025-07-24 07:44:18,953 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MO0T7L88\service-hosting[1].png 2025-07-24 07:44:18,953 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MO0T7L88\service-colocation[1].png 2025-07-24 07:44:18,953 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MO0T7L88\service-dedicated[1].png 2025-07-24 07:44:18,953 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MO0T7L88\dropdown-arrow[1].png 2025-07-24 07:44:18,953 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MO0T7L88\jquery.min[1].js 2025-07-24 07:44:18,967 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MO0T7L88\dropdown-arrow-open[1].png 2025-07-24 07:44:18,967 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MO0T7L88\service-minecraft[1].png 2025-07-24 07:44:18,967 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IWUWK4DN\service-cog[1].png 2025-07-24 07:44:18,983 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IWUWK4DN\bootstrap.min[1].js 2025-07-24 07:44:19,187 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IWUWK4DN\slider[1].js 2025-07-24 07:44:19,203 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\P7OC751U\Metropolis-Regular[1].otf 2025-07-24 07:44:19,217 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IWUWK4DN\proximanovasoft-semibold-webfont[1].eot 2025-07-24 07:44:19,250 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\P7OC751U\proximanovasoft-regular-webfont[1].eot 2025-07-24 07:44:19,265 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IWUWK4DN\Metropolis-SemiBold[1].eot 2025-07-24 07:44:19,265 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IWUWK4DN\mc-plugins[1].png 2025-07-24 07:44:19,265 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IWUWK4DN\mc-cog[1].png 2025-07-24 07:44:19,265 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IWUWK4DN\mc-icon[1].png 2025-07-24 07:44:19,265 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TPLTKY5I\icon-controlpanel[1].png 2025-07-24 07:44:19,280 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TPLTKY5I\Metropolis-SemiBold[1].otf 2025-07-24 07:44:19,280 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\P7OC751U\Metropolis-Regular[1].ttf 2025-07-24 07:44:19,296 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\P7OC751U\support-phone[1].png 2025-07-24 07:44:19,312 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TPLTKY5I\Metropolis-SemiBold[1].ttf 2025-07-24 07:44:19,342 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\P7OC751U\support-mail[1].png 2025-07-24 07:44:19,358 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TPLTKY5I\proximanovasoft-medium-webfont[1].eot 2025-07-24 07:44:19,358 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\P7OC751U\mc-macbook[1].png 2025-07-24 07:44:19,405 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\6B2043001D270792DFFD725518EAFE2C 2025-07-24 07:44:19,405 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\6B2043001D270792DFFD725518EAFE2C 2025-07-24 07:44:19,421 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\05DDC6AA91765AACACDB0A5F96DF8199 2025-07-24 07:44:19,421 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\05DDC6AA91765AACACDB0A5F96DF8199 2025-07-24 07:44:19,437 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\CabED8A.tmp 2025-07-24 07:44:19,437 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\CabED89.tmp 2025-07-24 07:44:19,453 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\TarED8C.tmp 2025-07-24 07:44:19,453 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\TarED8B.tmp 2025-07-24 07:44:19,467 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\P7OC751U\bg-mc[1].png 2025-07-24 07:44:19,562 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\4FA45AE1010E09657982D8D28B3BD38E_2D1703F06A8A1099C820393CBB27B952 2025-07-24 07:44:19,562 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\CabEE0A.tmp 2025-07-24 07:44:19,592 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IWUWK4DN\slider-bg[1].png 2025-07-24 07:44:19,608 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\P7OC751U\Metropolis-Bold[1].eot 2025-07-24 07:44:19,608 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IWUWK4DN\icon-router[1].png 2025-07-24 07:44:19,608 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\TarEE0B.tmp 2025-07-24 07:44:19,608 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IWUWK4DN\icon-heart[1].png 2025-07-24 07:44:19,655 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\4FA45AE1010E09657982D8D28B3BD38E_2D1703F06A8A1099C820393CBB27B952 2025-07-24 07:44:19,671 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\CabEE1B.tmp 2025-07-24 07:44:19,687 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TPLTKY5I\greentick-small[1].png 2025-07-24 07:44:19,687 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\TarEE2C.tmp 2025-07-24 07:44:19,703 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MO0T7L88\analytics[1].js 2025-07-24 07:44:19,733 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\CabEEB9.tmp 2025-07-24 07:44:19,750 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\TarEEBA.tmp 2025-07-24 07:44:19,765 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Cookies\KPPB0JQ3.txt 2025-07-24 07:44:19,765 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\CabEECB.tmp 2025-07-24 07:44:19,780 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\TarEECC.tmp 2025-07-24 07:44:19,796 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TPLTKY5I\redtick-small[1].png 2025-07-24 07:44:19,796 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Cookies\QJGLQ34O.txt 2025-07-24 07:44:19,796 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\P7OC751U\support-fb[1].png 2025-07-24 07:44:19,812 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Cookies\V9R8PVW3.txt 2025-07-24 07:44:19,812 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MO0T7L88\support-twitter[1].png 2025-07-24 07:44:19,828 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TPLTKY5I\footer-logo[1].png 2025-07-24 07:44:19,858 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\P7OC751U\slider-handle[1].png 2025-07-24 07:44:19,875 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MO0T7L88\slider-slide[1].png 2025-07-24 07:44:19,875 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\CabEF4A.tmp 2025-07-24 07:44:19,890 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\TarEF4B.tmp 2025-07-24 07:44:19,890 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\CabEF5C.tmp 2025-07-24 07:44:19,905 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\TarEF5D.tmp 2025-07-24 07:44:19,905 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IWUWK4DN\slider-tick[1].png 2025-07-24 07:44:19,937 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\CabEF7D.tmp 2025-07-24 07:44:19,937 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\TarEF8E.tmp 2025-07-24 07:44:19,937 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TPLTKY5I\js[1].js 2025-07-24 07:44:19,953 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TPLTKY5I\Metropolis-Bold[1].otf 2025-07-24 07:44:19,953 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\CabEF9E.tmp 2025-07-24 07:44:19,967 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\TarEF9F.tmp 2025-07-24 07:44:20,015 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\CabEFDF.tmp 2025-07-24 07:44:20,030 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\TarEFE0.tmp 2025-07-24 07:44:20,062 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\CabF000.tmp 2025-07-24 07:44:20,062 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\TarF001.tmp 2025-07-24 07:44:20,092 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\CabF031.tmp 2025-07-24 07:44:20,092 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\TarF032.tmp 2025-07-24 07:44:20,125 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\CabF042.tmp 2025-07-24 07:44:20,125 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\TarF043.tmp 2025-07-24 07:44:20,171 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\CabF073.tmp 2025-07-24 07:44:20,171 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\TarF084.tmp 2025-07-24 07:44:20,187 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\CabF095.tmp 2025-07-24 07:44:20,203 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\TarF096.tmp 2025-07-24 07:44:20,217 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\CabF0B6.tmp 2025-07-24 07:44:20,217 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\TarF0B7.tmp 2025-07-24 07:44:20,250 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\CabF0C7.tmp 2025-07-24 07:44:20,250 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\TarF0D8.tmp 2025-07-24 07:44:20,280 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\CabF0F8.tmp 2025-07-24 07:44:20,296 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\TarF0F9.tmp 2025-07-24 07:44:20,328 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\CabF129.tmp 2025-07-24 07:44:20,328 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\TarF12A.tmp 2025-07-24 07:44:20,342 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\CabF13B.tmp 2025-07-24 07:44:20,358 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\TarF13C.tmp 2025-07-24 07:44:20,358 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MO0T7L88\Metropolis-Bold[1].ttf 2025-07-24 07:44:20,390 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\CabF15C.tmp 2025-07-24 07:44:20,390 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\TarF15D.tmp 2025-07-24 07:44:20,437 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\CabF18D.tmp 2025-07-24 07:44:20,437 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\TarF18E.tmp 2025-07-24 07:44:20,467 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\CabF1BE.tmp 2025-07-24 07:44:20,483 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\TarF1BF.tmp 2025-07-24 07:44:20,500 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\CabF1DF.tmp 2025-07-24 07:44:20,515 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\TarF1E0.tmp 2025-07-24 07:44:20,530 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\CabF200.tmp 2025-07-24 07:44:20,546 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\TarF201.tmp 2025-07-24 07:44:20,578 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\CabF231.tmp 2025-07-24 07:44:20,592 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\TarF232.tmp 2025-07-24 07:44:20,608 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\CabF252.tmp 2025-07-24 07:44:20,625 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\TarF253.tmp 2025-07-24 07:44:20,655 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\CabF274.tmp 2025-07-24 07:44:20,655 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\TarF275.tmp 2025-07-24 07:44:20,671 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\CabF285.tmp 2025-07-24 07:44:20,671 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\TarF296.tmp 2025-07-24 07:44:20,733 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\CabF2C6.tmp 2025-07-24 07:44:20,733 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\TarF2C7.tmp 2025-07-24 07:44:20,750 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\CabF2D7.tmp 2025-07-24 07:44:20,750 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\TarF2D8.tmp 2025-07-24 07:44:20,780 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\CabF308.tmp 2025-07-24 07:44:20,796 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\TarF309.tmp 2025-07-24 07:44:20,796 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\CabF31A.tmp 2025-07-24 07:44:20,812 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\TarF31B.tmp 2025-07-24 07:44:20,905 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\CabF37A.tmp 2025-07-24 07:44:20,905 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\TarF37B.tmp 2025-07-24 07:44:20,967 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\CabF3CA.tmp 2025-07-24 07:44:20,983 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\TarF3CB.tmp 2025-07-24 07:44:21,092 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\CabF449.tmp 2025-07-24 07:44:21,108 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\TarF44A.tmp 2025-07-24 07:44:21,187 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\CabF4A9.tmp 2025-07-24 07:44:21,203 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\TarF4AA.tmp 2025-07-24 07:44:21,280 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\CabF508.tmp 2025-07-24 07:44:21,296 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\TarF509.tmp 2025-07-24 07:44:21,390 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\CabF568.tmp 2025-07-24 07:44:21,405 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\TarF569.tmp 2025-07-24 07:44:21,467 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\CabF5B8.tmp 2025-07-24 07:44:21,467 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\TarF5C9.tmp 2025-07-24 07:44:21,546 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\CabF618.tmp 2025-07-24 07:44:21,562 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\TarF619.tmp 2025-07-24 07:44:21,608 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\CabF658.tmp 2025-07-24 07:44:21,625 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\TarF659.tmp 2025-07-24 07:44:21,717 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\CabF6C8.tmp 2025-07-24 07:44:21,733 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\TarF6C9.tmp 2025-07-24 07:44:21,765 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\CabF6F9.tmp 2025-07-24 07:44:21,780 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\TarF6FA.tmp 2025-07-24 07:44:21,842 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\CabF749.tmp 2025-07-24 07:44:21,858 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\TarF74A.tmp 2025-07-24 07:44:21,905 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\CabF77A.tmp 2025-07-24 07:44:21,905 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\TarF78A.tmp 2025-07-24 07:44:21,983 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\CabF7CA.tmp 2025-07-24 07:44:21,983 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Temp\TarF7DA.tmp 2025-07-24 07:44:22,233 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IWUWK4DN\favicon[2].png 2025-07-24 07:44:22,250 [analyzer] INFO: Added new file to list with pid 1520 and path C:\Users\Administrator\AppData\Local\Microsoft\Internet Explorer\imagestore\j9jcw5m\imagestore.dat 2025-07-24 06:50:45,651 [analyzer] INFO: Analysis timeout hit, terminating analysis. 2025-07-24 06:50:45,806 [lib.api.process] ERROR: Failed to dump memory of 64-bit process with pid 2308. 2025-07-24 06:50:45,915 [lib.api.process] ERROR: Failed to dump memory of 32-bit process with pid 1520. 2025-07-24 06:50:46,290 [analyzer] INFO: Terminating remaining processes before shutdown. 2025-07-24 06:50:46,306 [lib.api.process] INFO: Successfully terminated process with pid 2308. 2025-07-24 06:50:46,306 [lib.api.process] INFO: Successfully terminated process with pid 1520. 2025-07-24 06:50:46,338 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\cabf1be.tmp' does not exist, skip. 2025-07-24 06:50:46,354 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\tare7b3.tmp' does not exist, skip. 2025-07-24 06:50:46,354 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\tarf7da.tmp' does not exist, skip. 2025-07-24 06:50:46,354 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\tarf6fa.tmp' does not exist, skip. 2025-07-24 06:50:46,354 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\taree0b.tmp' does not exist, skip. 2025-07-24 06:50:46,354 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\~dfd74e6b77adf2fef2.tmp' does not exist, skip. 2025-07-24 06:50:46,354 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\cabf749.tmp' does not exist, skip. 2025-07-24 06:50:46,368 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\cabed89.tmp' does not exist, skip. 2025-07-24 06:50:46,368 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\cabf5b8.tmp' does not exist, skip. 2025-07-24 06:50:46,368 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\tarf31b.tmp' does not exist, skip. 2025-07-24 06:50:46,368 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\tarf5c9.tmp' does not exist, skip. 2025-07-24 06:50:46,368 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\cabf285.tmp' does not exist, skip. 2025-07-24 06:50:46,368 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\tareeba.tmp' does not exist, skip. 2025-07-24 06:50:46,384 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\cabf13b.tmp' does not exist, skip. 2025-07-24 06:50:46,384 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\tarf0f9.tmp' does not exist, skip. 2025-07-24 06:50:46,384 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\cabf073.tmp' does not exist, skip. 2025-07-24 06:50:46,384 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\cabf77a.tmp' does not exist, skip. 2025-07-24 06:50:46,384 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\cabeeb9.tmp' does not exist, skip. 2025-07-24 06:50:46,384 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\cabe970.tmp' does not exist, skip. 2025-07-24 06:50:46,384 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\tarf084.tmp' does not exist, skip. 2025-07-24 06:50:46,415 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\cabf031.tmp' does not exist, skip. 2025-07-24 06:50:46,415 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\cabef9e.tmp' does not exist, skip. 2025-07-24 06:50:46,415 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\tare875.tmp' does not exist, skip. 2025-07-24 06:50:46,415 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\tarf253.tmp' does not exist, skip. 2025-07-24 06:50:46,463 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\taref8e.tmp' does not exist, skip. 2025-07-24 06:50:46,463 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\tarf2c7.tmp' does not exist, skip. 2025-07-24 06:50:46,463 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\roaming\\microsoft\\windows\\cookies\\qjglq34o.txt' does not exist, skip. 2025-07-24 06:50:46,463 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\tarf15d.tmp' does not exist, skip. 2025-07-24 06:50:46,463 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\cabe852.tmp' does not exist, skip. 2025-07-24 06:50:46,479 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\tarf569.tmp' does not exist, skip. 2025-07-24 06:50:46,479 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\cabf129.tmp' does not exist, skip. 2025-07-24 06:50:46,479 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\cabf274.tmp' does not exist, skip. 2025-07-24 06:50:46,479 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\tarf3cb.tmp' does not exist, skip. 2025-07-24 06:50:46,479 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\tarf309.tmp' does not exist, skip. 2025-07-24 06:50:46,479 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\tareecc.tmp' does not exist, skip. 2025-07-24 06:50:46,479 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\cabe7b2.tmp' does not exist, skip. 2025-07-24 06:50:46,479 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\tarf043.tmp' does not exist, skip. 2025-07-24 06:50:46,479 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\tare971.tmp' does not exist, skip. 2025-07-24 06:50:46,479 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\cabed8a.tmp' does not exist, skip. 2025-07-24 06:50:46,493 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\cabee1b.tmp' does not exist, skip. 2025-07-24 06:50:46,509 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\tarf275.tmp' does not exist, skip. 2025-07-24 06:50:46,509 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\cabf449.tmp' does not exist, skip. 2025-07-24 06:50:46,526 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\tarefe0.tmp' does not exist, skip. 2025-07-24 06:50:46,526 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\tarf13c.tmp' does not exist, skip. 2025-07-24 06:50:46,526 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\cabf508.tmp' does not exist, skip. 2025-07-24 06:50:46,526 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\cabf37a.tmp' does not exist, skip. 2025-07-24 06:50:46,526 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\tarf296.tmp' does not exist, skip. 2025-07-24 06:50:46,526 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\cabf18d.tmp' does not exist, skip. 2025-07-24 06:50:46,526 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\tarf18e.tmp' does not exist, skip. 2025-07-24 06:50:46,526 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\tarf232.tmp' does not exist, skip. 2025-07-24 06:50:46,526 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\cabf6c8.tmp' does not exist, skip. 2025-07-24 06:50:46,526 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\cabef5c.tmp' does not exist, skip. 2025-07-24 06:50:46,526 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\cabf3ca.tmp' does not exist, skip. 2025-07-24 06:50:46,526 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\cabf568.tmp' does not exist, skip. 2025-07-24 06:50:46,540 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\tare853.tmp' does not exist, skip. 2025-07-24 06:50:46,540 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\cabe874.tmp' does not exist, skip. 2025-07-24 06:50:46,540 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\cabf4a9.tmp' does not exist, skip. 2025-07-24 06:50:46,540 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\tared8b.tmp' does not exist, skip. 2025-07-24 06:50:46,540 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\cabf6f9.tmp' does not exist, skip. 2025-07-24 06:50:46,556 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\tarf4aa.tmp' does not exist, skip. 2025-07-24 06:50:46,556 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\cabef7d.tmp' does not exist, skip. 2025-07-24 06:50:46,572 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\tarf6c9.tmp' does not exist, skip. 2025-07-24 06:50:46,572 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\tarf37b.tmp' does not exist, skip. 2025-07-24 06:50:46,572 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\cabef4a.tmp' does not exist, skip. 2025-07-24 06:50:46,588 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\tare7d4.tmp' does not exist, skip. 2025-07-24 06:50:46,588 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\tarf032.tmp' does not exist, skip. 2025-07-24 06:50:46,588 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\cabf15c.tmp' does not exist, skip. 2025-07-24 06:50:46,588 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\cabf042.tmp' does not exist, skip. 2025-07-24 06:50:46,604 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\cabf231.tmp' does not exist, skip. 2025-07-24 06:50:46,604 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\cabf2d7.tmp' does not exist, skip. 2025-07-24 06:50:46,604 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\cabf095.tmp' does not exist, skip. 2025-07-24 06:50:46,604 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\tarf1e0.tmp' does not exist, skip. 2025-07-24 06:50:46,604 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\cabf0b6.tmp' does not exist, skip. 2025-07-24 06:50:46,604 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\tarf001.tmp' does not exist, skip. 2025-07-24 06:50:46,618 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\cabf0f8.tmp' does not exist, skip. 2025-07-24 06:50:46,618 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\tared8c.tmp' does not exist, skip. 2025-07-24 06:50:46,634 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\tarf74a.tmp' does not exist, skip. 2025-07-24 06:50:46,634 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\cabe7c4.tmp' does not exist, skip. 2025-07-24 06:50:46,634 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\cabf1df.tmp' does not exist, skip. 2025-07-24 06:50:46,634 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\cabf7ca.tmp' does not exist, skip. 2025-07-24 06:50:46,634 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\cabf252.tmp' does not exist, skip. 2025-07-24 06:50:46,651 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\cabefdf.tmp' does not exist, skip. 2025-07-24 06:50:46,651 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\roaming\\microsoft\\windows\\cookies\\kppb0jq3.txt' does not exist, skip. 2025-07-24 06:50:46,651 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\tarf0b7.tmp' does not exist, skip. 2025-07-24 06:50:46,651 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\tarf2d8.tmp' does not exist, skip. 2025-07-24 06:50:46,651 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\cabeecb.tmp' does not exist, skip. 2025-07-24 06:50:46,651 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\cabf000.tmp' does not exist, skip. 2025-07-24 06:50:46,651 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\~df3c64eb4360bb4838.tmp' does not exist, skip. 2025-07-24 06:50:46,651 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\tarf0d8.tmp' does not exist, skip. 2025-07-24 06:50:46,651 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\cabee0a.tmp' does not exist, skip. 2025-07-24 06:50:46,651 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\cabf0c7.tmp' does not exist, skip. 2025-07-24 06:50:46,651 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\cabf2c6.tmp' does not exist, skip. 2025-07-24 06:50:46,665 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\tarf659.tmp' does not exist, skip. 2025-07-24 06:50:46,665 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\tarf12a.tmp' does not exist, skip. 2025-07-24 06:50:46,665 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\tarf1bf.tmp' does not exist, skip. 2025-07-24 06:50:46,681 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\cabf308.tmp' does not exist, skip. 2025-07-24 06:50:46,681 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\tarf096.tmp' does not exist, skip. 2025-07-24 06:50:46,681 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\cabf658.tmp' does not exist, skip. 2025-07-24 06:50:46,681 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\taref5d.tmp' does not exist, skip. 2025-07-24 06:50:46,681 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\taref4b.tmp' does not exist, skip. 2025-07-24 06:50:46,681 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\cabf618.tmp' does not exist, skip. 2025-07-24 06:50:46,697 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\tarf509.tmp' does not exist, skip. 2025-07-24 06:50:46,697 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\tarf78a.tmp' does not exist, skip. 2025-07-24 06:50:46,697 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\cabf31a.tmp' does not exist, skip. 2025-07-24 06:50:46,697 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\taree2c.tmp' does not exist, skip. 2025-07-24 06:50:46,697 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\tarf619.tmp' does not exist, skip. 2025-07-24 06:50:46,713 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\cabf200.tmp' does not exist, skip. 2025-07-24 06:50:46,713 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\tarf201.tmp' does not exist, skip. 2025-07-24 06:50:46,713 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\taref9f.tmp' does not exist, skip. 2025-07-24 06:50:46,713 [analyzer] WARNING: File at path u'c:\\users\\administrator\\appdata\\local\\temp\\tarf44a.tmp' does not exist, skip. 2025-07-24 06:50:46,713 [analyzer] INFO: Analysis completed.
2025-07-24 07:49:37,801 [cuckoo.core.scheduler] INFO: Task #6757176: acquired machine win7x647 (label=win7x647) 2025-07-24 07:49:37,802 [cuckoo.core.resultserver] DEBUG: Now tracking machine 192.168.168.207 for task #6757176 2025-07-24 07:49:38,348 [cuckoo.auxiliary.sniffer] INFO: Started sniffer with PID 3439828 (interface=vboxnet0, host=192.168.168.207) 2025-07-24 07:49:38,372 [cuckoo.machinery.virtualbox] DEBUG: Starting vm win7x647 2025-07-24 07:49:39,677 [cuckoo.machinery.virtualbox] DEBUG: Restoring virtual machine win7x647 to vmcloak 2025-07-24 07:50:08,273 [cuckoo.core.guest] INFO: Starting analysis #6757176 on guest (id=win7x647, ip=192.168.168.207) 2025-07-24 07:50:09,315 [cuckoo.core.guest] DEBUG: win7x647: not ready yet 2025-07-24 07:50:14,343 [cuckoo.core.guest] INFO: Guest is running Cuckoo Agent 0.10 (id=win7x647, ip=192.168.168.207) 2025-07-24 07:50:14,423 [cuckoo.core.guest] DEBUG: Uploading analyzer to guest (id=win7x647, ip=192.168.168.207, monitor=latest, size=6660546) 2025-07-24 07:50:15,597 [cuckoo.core.resultserver] DEBUG: Task #6757176: live log analysis.log initialized. 2025-07-24 07:50:16,582 [cuckoo.core.resultserver] DEBUG: Task #6757176 is sending a BSON stream 2025-07-24 07:50:16,799 [cuckoo.core.resultserver] DEBUG: Task #6757176 is sending a BSON stream 2025-07-24 07:50:17,805 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'shots/0001.jpg' 2025-07-24 07:50:17,817 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 133472 2025-07-24 07:50:18,479 [cuckoo.core.resultserver] DEBUG: Task #6757176 is sending a BSON stream 2025-07-24 07:50:19,922 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'shots/0002.jpg' 2025-07-24 07:50:19,926 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 24423 2025-07-24 07:50:21,007 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'shots/0003.jpg' 2025-07-24 07:50:21,010 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 29710 2025-07-24 07:50:22,091 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'shots/0004.jpg' 2025-07-24 07:50:22,095 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 30217 2025-07-24 07:50:26,567 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'shots/0005.jpg' 2025-07-24 07:50:26,571 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 60262 2025-07-24 07:50:27,638 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'shots/0006.jpg' 2025-07-24 07:50:27,651 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 87057 2025-07-24 07:50:30,670 [cuckoo.core.guest] DEBUG: win7x647: analysis #6757176 still processing 2025-07-24 07:50:45,935 [cuckoo.core.guest] DEBUG: win7x647: analysis #6757176 still processing 2025-07-24 07:50:46,092 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'curtain/1753332646.09.curtain.log' 2025-07-24 07:50:46,096 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 36 2025-07-24 07:50:46,301 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'sysmon/1753332646.29.sysmon.xml' 2025-07-24 07:50:46,321 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/f1a61277e3f902f5_analytics[1].js' 2025-07-24 07:50:46,324 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 52310 2025-07-24 07:50:46,326 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 968464 2025-07-24 07:50:46,341 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/cf9fe1acc8b45f9c_service-dedicated[1].png' 2025-07-24 07:50:46,343 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 1276 2025-07-24 07:50:46,347 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/37bf35664b859f67_proximanovasoft-medium-webfont[1].eot' 2025-07-24 07:50:46,359 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 27254 2025-07-24 07:50:46,360 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/02c4e1aff2160a1c_tabs[1].css' 2025-07-24 07:50:46,374 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 4403 2025-07-24 07:50:46,376 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/a36dc61e0e99b185_14232b434cf29d4c4fb335a86d7fffe3' 2025-07-24 07:50:46,378 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 170 2025-07-24 07:50:46,380 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/49f4585823801ed7_jquery.slicknav[1].js' 2025-07-24 07:50:46,382 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 17183 2025-07-24 07:50:46,388 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/6b7968e78caccfc3_support-mail[1].png' 2025-07-24 07:50:46,390 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 2353 2025-07-24 07:50:46,394 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/2051d61446d4dbff_jquery.min[1].js' 2025-07-24 07:50:46,396 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 84355 2025-07-24 07:50:46,401 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/31ad6648f8104138_6b2043001d270792dffd725518eafe2c' 2025-07-24 07:50:46,403 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 579 2025-07-24 07:50:46,405 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/8446777880decb39_6b2043001d270792dffd725518eafe2c' 2025-07-24 07:50:46,407 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 252 2025-07-24 07:50:46,410 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/e0fb8bc30eb8f540_btn-padlock[1].png' 2025-07-24 07:50:46,412 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 236 2025-07-24 07:50:46,414 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/a470d16eb70e9799_metropolis-bold[1].otf' 2025-07-24 07:50:46,416 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 23664 2025-07-24 07:50:46,419 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/09460a103bcf79d1_proximanovasoft-regular-webfont[1].eot' 2025-07-24 07:50:46,421 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 26913 2025-07-24 07:50:46,425 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/4c54b9b103cf836d_slider-slide[1].png' 2025-07-24 07:50:46,426 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 3376 2025-07-24 07:50:46,430 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/4c847e0c28733ed3_94308059b57b3142e455b38a6eb92015' 2025-07-24 07:50:46,432 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 73513 2025-07-24 07:50:46,434 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/49f119ef905963b0_service-minecraft[1].png' 2025-07-24 07:50:46,436 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 2215 2025-07-24 07:50:46,439 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/6fb1b8e593cb0388_b46811c17859ffb409cf0e904a4aa8f8' 2025-07-24 07:50:46,440 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 530 2025-07-24 07:50:46,442 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/6f389dfec75eacc9_slider-bg[1].png' 2025-07-24 07:50:46,444 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 438 2025-07-24 07:50:46,446 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/fec10344deb4dc86_greentick-small[1].png' 2025-07-24 07:50:46,448 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 430 2025-07-24 07:50:46,450 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/94db62c7b42d48d7_btn-user[1].png' 2025-07-24 07:50:46,452 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 173 2025-07-24 07:50:46,454 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/cd743bcb3db853d9_imagestore.dat' 2025-07-24 07:50:46,455 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 19714 2025-07-24 07:50:46,457 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/86535280b06cb640_icon-router[1].png' 2025-07-24 07:50:46,459 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 2158 2025-07-24 07:50:46,462 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/a6a9ada0bc6df770_metropolis-regular[1].ttf' 2025-07-24 07:50:46,464 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 42492 2025-07-24 07:50:46,468 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/87b6ef340364e9aa_metropolis-semibold[1].ttf' 2025-07-24 07:50:46,470 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 41984 2025-07-24 07:50:46,474 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/28300d2e08f1828b_slider[1].css' 2025-07-24 07:50:46,476 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 10116 2025-07-24 07:50:46,479 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/0441a95955e15a35_v9r8pvw3.txt' 2025-07-24 07:50:46,481 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 252 2025-07-24 07:50:46,483 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/f5d73d825ad6c63f_support-phone[1].png' 2025-07-24 07:50:46,485 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 1776 2025-07-24 07:50:46,488 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/cbad9cc0a5026aa9_slicknav[1].css' 2025-07-24 07:50:46,490 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 5711 2025-07-24 07:50:46,493 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/1d58419be905f3a3_metropolis-semibold[1].otf' 2025-07-24 07:50:46,495 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 23480 2025-07-24 07:50:46,498 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/6f8992eb58eeced4_metropolis-regular[1].otf' 2025-07-24 07:50:46,500 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 23124 2025-07-24 07:50:46,502 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/5899d8849b30eb26_head-email[1].png' 2025-07-24 07:50:46,504 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 275 2025-07-24 07:50:46,507 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/b0b4cb611420cb7e_style[1].css' 2025-07-24 07:50:46,510 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 82789 2025-07-24 07:50:46,512 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/46ee7918e2a3c84a_skeleton[1].css' 2025-07-24 07:50:46,514 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 7115 2025-07-24 07:50:46,516 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/1e6f5c22d3907c0b_{3835098b-6851-11f0-b305-78589f4d5b44}.dat' 2025-07-24 07:50:46,518 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 6144 2025-07-24 07:50:46,520 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/d54c54198e72d34d_metropolis-bold[1].ttf' 2025-07-24 07:50:46,523 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 41532 2025-07-24 07:50:46,525 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/e133603eb9079c98_minecraft[1].htm' 2025-07-24 07:50:46,527 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 36021 2025-07-24 07:50:46,529 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/63c7814aa555de4c_4fa45ae1010e09657982d8d28b3bd38e_2d1703f06a8a1099c820393cbb27b952' 2025-07-24 07:50:46,531 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 406 2025-07-24 07:50:46,533 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/f182ce3d914abc07_top-divider[1].png' 2025-07-24 07:50:46,535 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 76 2025-07-24 07:50:46,540 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/be332602622066b0_favicon[2].png' 2025-07-24 07:50:46,542 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 19225 2025-07-24 07:50:46,545 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/ebd41040e4bb3ec7_14232b434cf29d4c4fb335a86d7fffe3' 2025-07-24 07:50:46,547 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 889 2025-07-24 07:50:46,549 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/9c453df371bd4f80_metropolis-bold[1].eot' 2025-07-24 07:50:46,551 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 41716 2025-07-24 07:50:46,555 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/7e48f0249c8fb9b6_support-twitter[1].png' 2025-07-24 07:50:46,557 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 1891 2025-07-24 07:50:46,559 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/2595496fe48df6fc_email-decode.min[1].js' 2025-07-24 07:50:46,560 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 1239 2025-07-24 07:50:46,562 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/c97f9b110996f14b_b46811c17859ffb409cf0e904a4aa8f8' 2025-07-24 07:50:46,564 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 170 2025-07-24 07:50:46,566 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/bc7da2c0f9e1134a_icon-controlpanel[1].png' 2025-07-24 07:50:46,568 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 1705 2025-07-24 07:50:46,571 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/5f8d67c7bb7be0e7_mc-cog[1].png' 2025-07-24 07:50:46,573 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 1324 2025-07-24 07:50:46,575 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/0ce27524d7b74c04_mc-macbook[1].png' 2025-07-24 07:50:46,578 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 108276 2025-07-24 07:50:46,583 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/14238bf83bf0ced6_redtick-small[1].png' 2025-07-24 07:50:46,585 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 407 2025-07-24 07:50:46,588 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/87007d62f8bb8d94_mc-icon[1].png' 2025-07-24 07:50:46,589 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 2085 2025-07-24 07:50:46,591 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/81b7fa53b692b4d2_8b2b9a00839eed1dfdccc3bfc2f5df12' 2025-07-24 07:50:46,593 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 1739 2025-07-24 07:50:46,597 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/4a4de7903ea62d33_bootstrap.min[1].js' 2025-07-24 07:50:46,598 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 36816 2025-07-24 07:50:46,600 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/2239b0edfb0eac1e_8b2b9a00839eed1dfdccc3bfc2f5df12' 2025-07-24 07:50:46,602 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 174 2025-07-24 07:50:46,604 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/4736106a2eb75d70_head-phone[1].png' 2025-07-24 07:50:46,606 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 258 2025-07-24 07:50:46,609 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/217dca04dba9ce84_05ddc6aa91765aacacdb0a5f96df8199' 2025-07-24 07:50:46,610 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 170 2025-07-24 07:50:46,612 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/5f5998704922863d_service-vps[1].png' 2025-07-24 07:50:46,614 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 3540 2025-07-24 07:50:46,617 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/8616b0d930012502_slider-handle[1].png' 2025-07-24 07:50:46,619 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 15942 2025-07-24 07:50:46,622 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/354c991f4215bae1_94308059b57b3142e455b38a6eb92015' 2025-07-24 07:50:46,624 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 344 2025-07-24 07:50:46,626 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/d9b8fcd977f1d435_footer-logo[1].png' 2025-07-24 07:50:46,628 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 15386 2025-07-24 07:50:46,630 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/6d5efca3684b2fec_metropolis-semibold[1].eot' 2025-07-24 07:50:46,633 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 42204 2025-07-24 07:50:46,639 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/bc7695daa31a7aae_dropdown-arrow[1].png' 2025-07-24 07:50:46,641 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 148 2025-07-24 07:50:46,642 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/292a7c2e4315fb39_slider-tick[1].png' 2025-07-24 07:50:46,644 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 72 2025-07-24 07:50:46,647 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/5a70abe3bf895236_proximanovasoft-semibold-webfont[1].eot' 2025-07-24 07:50:46,649 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 27491 2025-07-24 07:50:46,654 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/c3eae794ef067ffc_4fa45ae1010e09657982d8d28b3bd38e_2d1703f06a8a1099c820393cbb27b952' 2025-07-24 07:50:46,688 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 471 2025-07-24 07:50:46,690 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/352176758723379c_service-colocation[1].png' 2025-07-24 07:50:46,710 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 4736 2025-07-24 07:50:46,711 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/8218dc4a8749f2c1_slider[1].js' 2025-07-24 07:50:46,713 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 18321 2025-07-24 07:50:46,715 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/eca524d76e68823a_dropdown-arrow-open[1].png' 2025-07-24 07:50:46,716 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 127 2025-07-24 07:50:46,718 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/790a03df917247db_service-hosting[1].png' 2025-07-24 07:50:46,719 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 19248 2025-07-24 07:50:46,721 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/50a9abdee2fa6c26_icon-heart[1].png' 2025-07-24 07:50:46,723 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 2997 2025-07-24 07:50:46,724 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/164654db09ca63a4_responsive[1].css' 2025-07-24 07:50:46,726 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 59819 2025-07-24 07:50:46,727 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/b00df201a0218232_support-fb[1].png' 2025-07-24 07:50:46,729 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 1619 2025-07-24 07:50:46,734 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/eb47b9b22999e08b_service-cog[1].png' 2025-07-24 07:50:46,737 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 3227 2025-07-24 07:50:46,739 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/9d1f16b321ea7cb0_logo[1].png' 2025-07-24 07:50:46,741 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 13932 2025-07-24 07:50:46,742 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/56820ab9ba955c1c_js[1].js' 2025-07-24 07:50:46,745 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/eac173f6aa2de93a_05ddc6aa91765aacacdb0a5f96df8199' 2025-07-24 07:50:46,747 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 993 2025-07-24 07:50:46,749 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/18569fe78c1561cf_bg-mc[1].png' 2025-07-24 07:50:46,751 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/732383e7631a570c_recoverystore.{38350989-6851-11f0-b305-78589f4d5b44}.dat' 2025-07-24 07:50:46,753 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 5632 2025-07-24 07:50:46,755 [cuckoo.core.resultserver] DEBUG: Task #6757176: File upload for 'files/0fc954602b23fa09_mc-plugins[1].png' 2025-07-24 07:50:46,757 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 1034 2025-07-24 07:50:46,758 [cuckoo.core.resultserver] DEBUG: Task #6757176 had connection reset for <Context for LOG> 2025-07-24 07:50:46,761 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 345569 2025-07-24 07:50:46,764 [cuckoo.core.resultserver] DEBUG: Task #6757176 uploaded file length: 549582 2025-07-24 07:50:48,948 [cuckoo.core.guest] INFO: win7x647: analysis completed successfully 2025-07-24 07:50:48,960 [cuckoo.core.plugins] DEBUG: Stopped auxiliary module: Redsocks 2025-07-24 07:50:48,988 [cuckoo.core.plugins] DEBUG: Stopped auxiliary module: Sniffer 2025-07-24 07:50:50,108 [cuckoo.machinery.virtualbox] INFO: Successfully generated memory dump for virtual machine with label win7x647 to path /srv/cuckoo/cwd/storage/analyses/6757176/memory.dmp 2025-07-24 07:50:50,109 [cuckoo.machinery.virtualbox] DEBUG: Stopping vm win7x647 2025-07-24 07:51:17,261 [cuckoo.core.resultserver] DEBUG: Stopped tracking machine 192.168.168.207 for task #6757176 2025-07-24 07:51:17,648 [cuckoo.core.scheduler] DEBUG: Released database task #6757176 2025-07-24 07:51:17,664 [cuckoo.core.scheduler] INFO: Task #6757176: analysis procedure completed
file | C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TPLTKY5I\jquery.slicknav[1].js |
file | C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IWUWK4DN\bootstrap.min[1].js |
file | C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TPLTKY5I\js[1].js |
file | C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IWUWK4DN\slider[1].js |
file | C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MO0T7L88\analytics[1].js |
file | C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MO0T7L88\jquery.min[1].js |
file | C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TPLTKY5I\email-decode.min[1].js |
cmdline | "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2308 CREDAT:275457 /prefetch:2 |