professionalnax.blogg.se

PE file contains unusual section ( Show ( Show from MentorKG.exe (PID: 4836) ( Show from MentorKG.exe (PID: 4836) ( Show from MentorKG.exe (PID: 4836) ( Show from MentorKG.exe (PID: 4836) ( Show from MentorKG.exe (PID: 4836) ( Show from MentorKG.exe (PID: 4836) ( Show from MentorKG.exe (PID: 4836) ( Show from MentorKG.exe (PID: 4836) ( Show from MentorKG.exe (PID: 4836) ( Show from MentorKG.exe (PID: 4836) ( Show from MentorKG.exe (PID: 4836) ( Show from MentorKG.exe (PID: 4836) ( Show Stream) Source Hybrid Analysis Technology relevance 10/10įound string "FlsSetValue" (Source:, API is part of module: KERNELBASE.DLL)įound string "FlsGetValue" (Source:, API is part of module: KERNELBASE.DLL)įound string "SystemFunction036" (Source:, API is part of module: CRYPTBASE.DLL)įound string "GetProcessWindowStation" (Source:, API is part of module: USER32.DLL)įound string "GetUserObjectInformationW" (Source:, API is part of module: USER32.DLL)įound string "GetLastActivePopup" (Source:, API is part of module: USER32.DLL)įound string "MessageBoxW" (Source:, API is part of module: USER32.DLL)įound string "UTRegister" (Source:, API is part of module: KERNE元2.DLL)įound string "UTUnRegister" (Source:, API is part of module: KERNE元2.DLL)įound string "GetProcessAffinityMask" (Source:, API is part of module: KERNE元2.DLL)įound string "SetProcessAffinityMask" (Source:, API is part of module: KERNE元2.DLL)įound string "IcmpCreateFile" (Source:, API is part of module: IPHLPAPI.DLL)įound string "IcmpSendEcho" (Source:, API is part of module: IPHLPAPI.DLL)įound string "IcmpCloseHandle" (Source:, API is part of module: IPHLPAPI.DLL)įound string "getservbyname" (Source:, API is part of module: WS2_32.DLL)įound string "getsockname" (Source:, API is part of module: WS2_32.DLL)įound string "WSASetLastError" (Source:, API is part of module: WS2_32.DLL)įound string "gethostbyaddr" (Source:, API is part of module: WS2_32.DLL)įound string "EnumProtocolsA" (Source:, API is part of module: MSWSOCK.DLL)įound string "GetAddressByNameA" (Source:, API is part of module: MSWSOCK.DLL) Cpuid from MentorKG.exe (PID: 4836) ( Show Stream)