TrojanDownloader:AutoIt/Agent.J Files
c:\Users\<username>\appdata\roaming\x86_microsoft-windows-p..reensaver.resources_31bf3856ad364e35_6.1.7600.16385_ru-ru_59ce811b829ecc54\wwapi.exe
File name: wwapi.exeSize: 1 MB (1001472 bytes)
MD5: 99b6f9f15d370d55c7d2a97a88dd3410
Detection count: 141
File type: Executable File
Mime Type: unknown/exe
Path: c:\Users\<username>\appdata\roaming\x86_microsoft-windows-p..reensaver.resources_31bf3856ad364e35_6.1.7600.16385_ru-ru_59ce811b829ecc54
Group: Malware file
Last Updated: September 15, 2021
c:\Users\<username>\appdata\roaming\amd64_sisraid4.inf.resources\c_is2022.exe
File name: c_is2022.exeSize: 1.87 MB (1873920 bytes)
MD5: abf2601111015de562fa40cc7288a4be
Detection count: 141
File type: Executable File
Mime Type: unknown/exe
Path: c:\Users\<username>\appdata\roaming\amd64_sisraid4.inf.resources
Group: Malware file
Last Updated: September 15, 2021
%SYSTEMDRIVE%\Users\<username>\appdata\roaming\wow64_microsoft-windows-sort.resources_31bf3856ad364e35_10.0.17134.1_ru-ru_1ea0205ab6063a31\bcastdvrbroker.exe
File name: bcastdvrbroker.exeSize: 1.25 MB (1253872 bytes)
MD5: 4f03e6f7dc16c1c2f7c84cbc0a72b069
Detection count: 138
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\appdata\roaming\wow64_microsoft-windows-sort.resources_31bf3856ad364e35_10.0.17134.1_ru-ru_1ea0205ab6063a31\bcastdvrbroker.exe
Group: Malware file
Last Updated: August 4, 2020
c:\Users\<username>\appdata\roaming\amd64_microsoft-windows-s..s-datausagehandlers_31bf3856ad364e35_10.0.16299.15_none_20dfa9c9e01cf234\wlidres.exe
File name: wlidres.exeSize: 1.23 MB (1239552 bytes)
MD5: 5b9da604655154eede95b2eb4c421a21
Detection count: 138
File type: Executable File
Mime Type: unknown/exe
Path: c:\Users\<username>\appdata\roaming\amd64_microsoft-windows-s..s-datausagehandlers_31bf3856ad364e35_10.0.16299.15_none_20dfa9c9e01cf234
Group: Malware file
Last Updated: September 15, 2021
%APPDATA%\ZLU\svshost.exe
File name: svshost.exeSize: 32.54 MB (32541559 bytes)
MD5: 20ba440486f0f3210c37ca464afdc3de
Detection count: 138
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\ZLU
Group: Malware file
Last Updated: April 6, 2017
%SYSTEMDRIVE%\Users\<username>\appdata\roaming\usuario\app.exe
File name: app.exeSize: 1 MB (1008640 bytes)
MD5: 91a2d9910953898c09847d3176bfba1d
Detection count: 136
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\appdata\roaming\usuario
Group: Malware file
Last Updated: December 29, 2022
%SYSTEMDRIVE%\Users\<username>\appdata\roaming\amd64_microsoft-windows-r..ment-client-v2-core_31bf3856ad364e35_10.0.16299.15_none_79053bdddf2876b0\srumapi.exe
File name: srumapi.exeSize: 1.24 MB (1240064 bytes)
MD5: 72ad5db5b45074742c87190f6cc67568
Detection count: 133
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\appdata\roaming\amd64_microsoft-windows-r..ment-client-v2-core_31bf3856ad364e35_10.0.16299.15_none_79053bdddf2876b0\srumapi.exe
Group: Malware file
Last Updated: August 4, 2020
%SYSTEMDRIVE%\Users\<username>\appdata\roaming\amd64_microsoft-windows-smb20-minirdr_31bf3856ad364e35_6.2.9200.21676_none_e43af74f2c9de163\sxs.exe
File name: sxs.exeSize: 1.98 MB (1980928 bytes)
MD5: bce5b07a2fc50cf9d788bd3f3d71792f
Detection count: 133
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\appdata\roaming\amd64_microsoft-windows-smb20-minirdr_31bf3856ad364e35_6.2.9200.21676_none_e43af74f2c9de163
Group: Malware file
Last Updated: September 15, 2021
%SYSTEMDRIVE%\Users\<username>\appdata\roaming\x86_microsoft-windows-i..rvice\drmv2clt.exe
File name: drmv2clt.exeSize: 1.88 MB (1886208 bytes)
MD5: 68cc99c5c357aa65a89bebc0d6fb4154
Detection count: 131
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\appdata\roaming\x86_microsoft-windows-i..rvice\drmv2clt.exe
Group: Malware file
Last Updated: August 5, 2020
%SYSTEMDRIVE%\Users\<username>\appdata\roaming\amd64_volmgr.inf_31bf3856ad364e35_6.3.9600.16384_none_544af58e8314c3e4\windows.devices.smartcards.exe
File name: windows.devices.smartcards.exeSize: 946.68 KB (946688 bytes)
MD5: e0f6a47f6e4336085185d60dc5daf56d
Detection count: 131
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\appdata\roaming\amd64_volmgr.inf_31bf3856ad364e35_6.3.9600.16384_none_544af58e8314c3e4
Group: Malware file
Last Updated: September 15, 2021
%SYSTEMDRIVE%\Users\<username>\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\VMw.exe
File name: VMw.exeSize: 346.03 KB (346033 bytes)
MD5: af47b8cd12274b6458eaf4c1c2e00f91
Detection count: 131
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\VMw.exe
Group: Malware file
Last Updated: January 30, 2023
%SYSTEMDRIVE%\Users\<username>\appdata\roaming\wow64_microsoft-windows-n..ionbroker.resources_31bf3856ad364e35_10.0.17134.1_ru-ru_babf8d318003359e\wpcap.exe
File name: wpcap.exeSize: 1.22 MB (1228784 bytes)
MD5: 23b0e3a1e060892552d0ce8246a306cd
Detection count: 131
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\appdata\roaming\wow64_microsoft-windows-n..ionbroker.resources_31bf3856ad364e35_10.0.17134.1_ru-ru_babf8d318003359e\wpcap.exe
Group: Malware file
Last Updated: August 4, 2020
%SYSTEMDRIVE%\Users\<username>\appdata\roaming\x86_netfx-cvtres_for_vc_and_vb_b03f5f7f11d50a3a_6.1.7601.22733_none_a350e9690a5779a6\mfc120ita.exe
File name: mfc120ita.exeSize: 1.24 MB (1248768 bytes)
MD5: 01b8517181c8f7a813537184073a271b
Detection count: 129
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\appdata\roaming\x86_netfx-cvtres_for_vc_and_vb_b03f5f7f11d50a3a_6.1.7601.22733_none_a350e9690a5779a6
Group: Malware file
Last Updated: September 15, 2021
%SYSTEMDRIVE%\Users\<username>\appdata\roaming\amd64_ehstorpwddrv.inf.resources_31bf3856ad364e35_10.0.16299.15_ru-ru_230010e23bfb4d3e\wmpmde.exe
File name: wmpmde.exeSize: 1.23 MB (1238016 bytes)
MD5: c46843f166f6df25c382638b664ecaab
Detection count: 122
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\appdata\roaming\amd64_ehstorpwddrv.inf.resources_31bf3856ad364e35_10.0.16299.15_ru-ru_230010e23bfb4d3e\wmpmde.exe
Group: Malware file
Last Updated: September 15, 2021
%SYSTEMDRIVE%\Users\<username>\appdata\roaming\amd64_microsoft-windows-c..ov2fahelper-library_31bf3856ad364e35_10.0.17763.1_none_a18d0b89ad98fcfe\cryptext.exe
File name: cryptext.exeSize: 1 MB (1001984 bytes)
MD5: 8c0e91fec2459ce16c077aebd7081036
Detection count: 122
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\appdata\roaming\amd64_microsoft-windows-c..ov2fahelper-library_31bf3856ad364e35_10.0.17763.1_none_a18d0b89ad98fcfe\cryptext.exe
Group: Malware file
Last Updated: September 15, 2021
C:\Users\<username>\AppData\Roaming\msil_aspnet\NlsLexicons001b.exe
File name: NlsLexicons001b.exeSize: 1.88 MB (1884672 bytes)
MD5: 90a35642dd59bf932eb3f0db4b41de1c
Detection count: 119
File type: Executable File
Mime Type: unknown/exe
Path: C:\Users\<username>\AppData\Roaming\msil_aspnet
Group: Malware file
Last Updated: August 4, 2020
%USERPROFILE%\Documents\ffcccccc\isystem.exe
File name: isystem.exeSize: 965.63 KB (965632 bytes)
MD5: 03ee6259345e2abdefd2efe48347a749
Detection count: 117
File type: Executable File
Mime Type: unknown/exe
Path: %USERPROFILE%\Documents\ffcccccc
Group: Malware file
Last Updated: June 3, 2017
%SYSTEMDRIVE%\Users\<username>\appdata\roaming\amd64_microsoft-windows-simauth.resources_31bf3856ad364e35_10.0.16299.15_ru-ru_82e62a6e3cde6e47\d3dx11_43.exe
File name: d3dx11_43.exeSize: 1.23 MB (1238528 bytes)
MD5: e984662ab61a89027628bfee65e09710
Detection count: 117
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\appdata\roaming\amd64_microsoft-windows-simauth.resources_31bf3856ad364e35_10.0.16299.15_ru-ru_82e62a6e3cde6e47\d3dx11_43.exe
Group: Malware file
Last Updated: September 15, 2021
c:\Users\<username>\appdata\roaming\x86_microsoft-windows-difxapi_31bf3856ad364e35_6.1.7600.16385_none_0819f3b1f785b1ce\d3dramp.exe
File name: d3dramp.exeSize: 4.21 MB (4213248 bytes)
MD5: a0ad6bccc4f1a5e172c233fa1d6f636d
Detection count: 115
File type: Executable File
Mime Type: unknown/exe
Path: c:\Users\<username>\appdata\roaming\x86_microsoft-windows-difxapi_31bf3856ad364e35_6.1.7600.16385_none_0819f3b1f785b1ce
Group: Malware file
Last Updated: September 15, 2021
c:\Users\<username>\appdata\roaming\amd64_prnin002.inf\fdpnp.exe
File name: fdpnp.exeSize: 2.38 MB (2380288 bytes)
MD5: d2530e30cbc650241c49602bb07edd7b
Detection count: 115
File type: Executable File
Mime Type: unknown/exe
Path: c:\Users\<username>\appdata\roaming\amd64_prnin002.inf
Group: Malware file
Last Updated: September 15, 2021
%SYSTEMDRIVE%\Users\<username>\appdata\roaming\amd64_microsoft-windows-lxss-wsl_31bf3856ad364e35_10.0.16299.15_none_a5dab0504004920f\cdosys.exe
File name: cdosys.exeSize: 1.24 MB (1240064 bytes)
MD5: 6793762d44c385a30bc37037a56a2de9
Detection count: 115
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\appdata\roaming\amd64_microsoft-windows-lxss-wsl_31bf3856ad364e35_10.0.16299.15_none_a5dab0504004920f\cdosys.exe
Group: Malware file
Last Updated: September 15, 2021
%SYSTEMDRIVE%\Users\<username>\appdata\roaming\x86_microsoft-windows-nap-oobsha.resources_31bf3856ad364e35_6.1.7600.16385_en-us_5c3829424d904f50\oddbse32.exe
File name: oddbse32.exeSize: 1.24 MB (1240064 bytes)
MD5: 3862dd3fef284070adb00a68583aa5e3
Detection count: 112
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\appdata\roaming\x86_microsoft-windows-nap-oobsha.resources_31bf3856ad364e35_6.1.7600.16385_en-us_5c3829424d904f50\oddbse32.exe
Group: Malware file
Last Updated: August 5, 2020
%SYSTEMDRIVE%\Users\<username>\appdata\roaming\wow64_microsoft-windows-directui.resources_31bf3856ad364e35_10.0.17134.1_de-de_b510cf60948fefe8\windows.media.speech.exe
File name: windows.media.speech.exeSize: 1.33 MB (1336784 bytes)
MD5: 2a7ec488824b1593abaa9ace8c00fdd8
Detection count: 110
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\appdata\roaming\wow64_microsoft-windows-directui.resources_31bf3856ad364e35_10.0.17134.1_de-de_b510cf60948fefe8\windows.media.speech.exe
Group: Malware file
Last Updated: August 4, 2020
c:\Users\<username>\appdata\roaming\x86_netfx-aspnet\avrt.exe
File name: avrt.exeSize: 2.17 MB (2170368 bytes)
MD5: 7d547c6f385b410c48eb4a23db3afc3c
Detection count: 108
File type: Executable File
Mime Type: unknown/exe
Path: c:\Users\<username>\appdata\roaming\x86_netfx-aspnet
Group: Malware file
Last Updated: September 15, 2021
c:\Users\<username>\appdata\roaming\amd64_microsoft-windows-rndis-usb-microport_31bf3856ad364e35_6.1.7601.22248_none_237fda36827d43e8\dbnetlib.exe
File name: dbnetlib.exeSize: 1 MB (1001472 bytes)
MD5: a0312cefed25b321b71e1ebf440a31dd
Detection count: 108
File type: Executable File
Mime Type: unknown/exe
Path: c:\Users\<username>\appdata\roaming\amd64_microsoft-windows-rndis-usb-microport_31bf3856ad364e35_6.1.7601.22248_none_237fda36827d43e8
Group: Malware file
Last Updated: September 15, 2021
c:\Users\<username>\appdata\roaming\amd64_microsoft-windows-i..rvice_mof.resources_31bf3856ad364e35_6.1.7600.16385_en-us_812693c00b3677f4\jscript9.exe
File name: jscript9.exeSize: 1.24 MB (1240576 bytes)
MD5: bb4dcbf0829eca6d666106634c317ddb
Detection count: 105
File type: Executable File
Mime Type: unknown/exe
Path: c:\Users\<username>\appdata\roaming\amd64_microsoft-windows-i..rvice_mof.resources_31bf3856ad364e35_6.1.7600.16385_en-us_812693c00b3677f4
Group: Malware file
Last Updated: September 15, 2021
%SYSTEMDRIVE%\Users\<username>\appdata\roaming\amd64_microsoft-windows-i..timezones.resources_31bf3856ad364e35_10.0.17134.81_hu-hu_ae5bdf0fb93c8d79\iashlpr.exe
File name: iashlpr.exeSize: 485.88 KB (485888 bytes)
MD5: 2236fbae75dddb9a2096c1aba85042cf
Detection count: 103
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\appdata\roaming\amd64_microsoft-windows-i..timezones.resources_31bf3856ad364e35_10.0.17134.81_hu-hu_ae5bdf0fb93c8d79\iashlpr.exe
Group: Malware file
Last Updated: September 15, 2021
C:\Users\<username>\AppData\Roaming\install\win32.exe
File name: win32.exeSize: 573.75 KB (573757 bytes)
MD5: d7eca4e0eee6530b14234af42d8e7622
Detection count: 103
File type: Executable File
Mime Type: unknown/exe
Path: C:\Users\<username>\AppData\Roaming\install\win32.exe
Group: Malware file
Last Updated: August 29, 2021
%SYSTEMDRIVE%\Users\<username>\appdata\roaming\x86_wcf-m\nlsdata004c.exe
File name: nlsdata004c.exeSize: 1.87 MB (1874432 bytes)
MD5: b5d7aae877f76f1e5043fab22af63aca
Detection count: 103
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\appdata\roaming\x86_wcf-m\nlsdata004c.exe
Group: Malware file
Last Updated: October 4, 2020
%SYSTEMDRIVE%\Users\<username>\appdata\roaming\amd64_microsoft-windows-s..aleducation-license_31bf3856ad364e35_10.0.16299.192_none_451b02a45b5eaeda\ipsecsnp.exe
File name: ipsecsnp.exeSize: 1.23 MB (1239552 bytes)
MD5: 0354823dc70934915c93d15c560a0866
Detection count: 103
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\appdata\roaming\amd64_microsoft-windows-s..aleducation-license_31bf3856ad364e35_10.0.16299.192_none_451b02a45b5eaeda\ipsecsnp.exe
Group: Malware file
Last Updated: September 15, 2021
%SYSTEMDRIVE%\Users\<username>\appdata\roaming\server\app.exe
File name: app.exeSize: 1 MB (1009152 bytes)
MD5: 45da7fb1aba415e279d6e7b62fe9fd57
Detection count: 103
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\appdata\roaming\server
Group: Malware file
Last Updated: September 15, 2021
%SYSTEMDRIVE%\Users\<username>\appdata\roaming\amd64_netfx-aspnet_webadmin_prov_res_b03f5f7f11d50a3a_10.0.16299.15_none_b53854ab6391d2dc\offfilt.exe
File name: offfilt.exeSize: 3.17 MB (3172864 bytes)
MD5: 86fdcd17b793fcd8c5f9f89451000cfe
Detection count: 101
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\appdata\roaming\amd64_netfx-aspnet_webadmin_prov_res_b03f5f7f11d50a3a_10.0.16299.15_none_b53854ab6391d2dc\offfilt.exe
Group: Malware file
Last Updated: September 15, 2021
%SYSTEMDRIVE%\Users\<username>\appdata\roaming\microsoft\windows\helper.exe
File name: helper.exeSize: 7.58 MB (7586816 bytes)
MD5: 66a55f9baf27d573e0b4116b4d552380
Detection count: 98
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\appdata\roaming\microsoft\windows
Group: Malware file
Last Updated: April 2, 2020
%SYSTEMDRIVE%\Users\<username>\appdata\roaming\amd64_avc.inf.resources_31bf3856ad364e35_6.1.7600.16385_ru-ru_b92eadf23455baa1\nvifr.exe
File name: nvifr.exeSize: 1.24 MB (1249280 bytes)
MD5: cc60c409b3e5304aaf84006fefc4cdb1
Detection count: 98
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\appdata\roaming\amd64_avc.inf.resources_31bf3856ad364e35_6.1.7600.16385_ru-ru_b92eadf23455baa1\nvifr.exe
Group: Malware file
Last Updated: September 15, 2021
%SYSTEMDRIVE%\Users\<username>\appdata\roaming\mamunur\app.exe
File name: app.exeSize: 1.01 MB (1013248 bytes)
MD5: 1e0cc5924cf7e240d7007a14d803a6dc
Detection count: 96
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\appdata\roaming\mamunur
Group: Malware file
Last Updated: September 15, 2021
%SYSTEMDRIVE%\Users\<username>\appdata\roaming\amd64_microsoft-windows-irftp_31bf3856ad364e35_6.1.7600.16385_none_b2af329397f29f60\glmf32.exe
File name: glmf32.exeSize: 1.24 MB (1241088 bytes)
MD5: 9aea89f0f3be8abe6e7269ad8acbaccb
Detection count: 96
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\appdata\roaming\amd64_microsoft-windows-irftp_31bf3856ad364e35_6.1.7600.16385_none_b2af329397f29f60
Group: Malware file
Last Updated: September 15, 2021
%SYSTEMDRIVE%\Users\<username>\appdata\roaming\x86_netfx-clr_sys_entservcs_thunk_dll_b03f5f7f11d50a3a_6.1.7601.18523_none_26bd7d4d747cb0cd\firewallapi.exe
File name: firewallapi.exeSize: 3.34 MB (3348992 bytes)
MD5: 84537111d675eb2381e2c12c78997ce5
Detection count: 94
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\appdata\roaming\x86_netfx-clr_sys_entservcs_thunk_dll_b03f5f7f11d50a3a_6.1.7601.18523_none_26bd7d4d747cb0cd\firewallapi.exe
Group: Malware file
Last Updated: August 5, 2020
%APPDATA%\Microsoft\HeciServer.exe
File name: HeciServer.exeSize: 21.04 MB (21042176 bytes)
MD5: 0f0612c9db1bd44865f65d6621305d4e
Detection count: 94
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\Microsoft
Group: Malware file
Last Updated: August 6, 2016
c:\Users\<username>\appdata\roaming\x86_microsoft-windows-net-command-line-tool\kbdca.exe
File name: kbdca.exeSize: 1.59 MB (1598976 bytes)
MD5: 65e9672da4f5c3be61d0c2bb8a64ae2a
Detection count: 89
File type: Executable File
Mime Type: unknown/exe
Path: c:\Users\<username>\appdata\roaming\x86_microsoft-windows-net-command-line-tool
Group: Malware file
Last Updated: September 15, 2021
%APPDATA%\install\win32.exe
File name: win32.exeSize: 635.19 KB (635197 bytes)
MD5: 4888d9375fc185b0f08152f9614564fc
Detection count: 84
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\install
Group: Malware file
Last Updated: March 11, 2017
%APPDATA%\install\win32.exe
File name: win32.exeSize: 778.55 KB (778557 bytes)
MD5: eb4f274653a5362661c8764f40bc823e
Detection count: 84
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\install
Group: Malware file
Last Updated: March 11, 2017
%SYSTEMDRIVE%\Users\<username>\appdata\roaming\x86_netfx-vb_compiler_b03f5f7f11d50a3a_6.2.9200.17044_none_4aeba5c5561d0b6d\kbdsf.exe
File name: kbdsf.exeSize: 2.18 MB (2182656 bytes)
MD5: 0afd3c523727da0991e06e8c118fdf8c
Detection count: 84
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\appdata\roaming\x86_netfx-vb_compiler_b03f5f7f11d50a3a_6.2.9200.17044_none_4aeba5c5561d0b6d\kbdsf.exe
Group: Malware file
Last Updated: August 5, 2020
%SYSTEMDRIVE%\Users\<username>\appdata\roaming\wow64_microsoft-windows-mccs-syncres.resources_31bf3856ad364e35_10.0.17134.1_cy-gb_c5904a4e78358722\windows.internal.graphics.display.displayenhancementmanagement.exe
File name: windows.internal.graphics.display.displayenhancementmanagement.exeSize: 1.23 MB (1239552 bytes)
MD5: f9d7ca95c631eb9b63f6f432c250b6b3
Detection count: 82
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\appdata\roaming\wow64_microsoft-windows-mccs-syncres.resources_31bf3856ad364e35_10.0.17134.1_cy-gb_c5904a4e78358722\windows.internal.graphics.display.displayenhancementmanagement.exe
Group: Malware file
Last Updated: August 4, 2020
c:\Users\<username>\appdata\roaming\x86_microsoft-windows-netapi32_31bf3856ad364e35_6.1.7601.17887_none_8ef2dc1a6007fe4e\gcdef.exe
File name: gcdef.exeSize: 3.6 MB (3608064 bytes)
MD5: c775b02ebd81f1a3e7a1352a3b16f4b5
Detection count: 82
File type: Executable File
Mime Type: unknown/exe
Path: c:\Users\<username>\appdata\roaming\x86_microsoft-windows-netapi32_31bf3856ad364e35_6.1.7601.17887_none_8ef2dc1a6007fe4e
Group: Malware file
Last Updated: September 15, 2021
%SystemDrive%\GoogleChrome\GoogleChrome.exe
File name: GoogleChrome.exeSize: 1.06 MB (1060348 bytes)
MD5: 76b260dc069612749ba1af4ccf4d42f8
Detection count: 82
File type: Executable File
Mime Type: unknown/exe
Path: %SystemDrive%\GoogleChrome
Group: Malware file
Last Updated: February 14, 2017
%SYSTEMDRIVE%\Users\<username>\AppData\Roaming\app.exe
File name: app.exeSize: 379.9 KB (379904 bytes)
MD5: 6fd1f77d26738cf938efa0e5eddc30ba
Detection count: 82
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\AppData\Roaming\app.exe
Group: Malware file
Last Updated: September 15, 2021
%SYSTEMDRIVE%\Users\<username>\appdata\roaming\wow64_microsoft-windows-d..nt-winrnr.resources_31bf3856ad364e35_10.0.17134.1_en-us_83580c3198e19cd0\languageoverlayutil.exe
File name: languageoverlayutil.exeSize: 1.24 MB (1240064 bytes)
MD5: 96deb64424cd9e900ab971413d2eab34
Detection count: 80
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\appdata\roaming\wow64_microsoft-windows-d..nt-winrnr.resources_31bf3856ad364e35_10.0.17134.1_en-us_83580c3198e19cd0\languageoverlayutil.exe
Group: Malware file
Last Updated: August 4, 2020
C:\Users\<username>\AppData\Roaming\msil_microsoft.build.tasks.v4.0\vpnikeapi.exe
File name: vpnikeapi.exeSize: 1.59 MB (1598976 bytes)
MD5: bf8cff29b9223163c058c0f0aff88c01
Detection count: 80
File type: Executable File
Mime Type: unknown/exe
Path: C:\Users\<username>\AppData\Roaming\msil_microsoft.build.tasks.v4.0
Group: Malware file
Last Updated: August 4, 2020
%APPDATA%\Windows\winmgr125.exe
File name: winmgr125.exeSize: 5.46 MB (5466514 bytes)
MD5: 87b0ab9ea7c848a123b6d549e40132f1
Detection count: 80
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\Windows
Group: Malware file
Last Updated: February 23, 2017
%SYSTEMDRIVE%\Users\<username>\appdata\roaming\x86_microsoft-windows-g..linetools.resources\portabledevicewmdrm.exe
File name: portabledevicewmdrm.exeSize: 1.94 MB (1942528 bytes)
MD5: 19958afbe6fbc38ae47f2160244e3f19
Detection count: 80
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\appdata\roaming\x86_microsoft-windows-g..linetools.resources\portabledevicewmdrm.exe
Group: Malware file
Last Updated: August 5, 2020
c:\Users\<username>\appdata\roaming\laptop 10\app.exe
File name: app.exeSize: 947.2 KB (947200 bytes)
MD5: d2e7f5907277cca1dd31ede4abfe8aea
Detection count: 77
File type: Executable File
Mime Type: unknown/exe
Path: c:\Users\<username>\appdata\roaming\laptop 10
Group: Malware file
Last Updated: September 15, 2021
%USERPROFILE%\WindowsUp\vbc.exe
File name: vbc.exeSize: 1.34 MB (1347959 bytes)
MD5: bed60b08a075bef640e46f7f39a9231c
Detection count: 75
File type: Executable File
Mime Type: unknown/exe
Path: %USERPROFILE%\WindowsUp
Group: Malware file
Last Updated: November 16, 2016
%SYSTEMDRIVE%\Users\<username>\appdata\roaming\x86_microsoft-windows-xwizards.resources_31bf3856ad364e35_6.1.7600.16385_en-us_e60e0416838f048a\fmifs.exe
File name: fmifs.exeSize: 1.24 MB (1241088 bytes)
MD5: b323bc508203e41c044513d624243e82
Detection count: 75
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\appdata\roaming\x86_microsoft-windows-xwizards.resources_31bf3856ad364e35_6.1.7600.16385_en-us_e60e0416838f048a
Group: Malware file
Last Updated: September 15, 2021
%APPDATA%\Microsoft\Windows\Start Menu\javaw.exe
File name: javaw.exeSize: 5.76 MB (5763599 bytes)
MD5: ac4e2046f0017b406a8bef5408ddc47f
Detection count: 75
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\Microsoft\Windows\Start Menu
Group: Malware file
Last Updated: December 17, 2016
%APPDATA%\Microsoft\HeciServer.exe
File name: HeciServer.exeSize: 1.09 MB (1098498 bytes)
MD5: 94a20be0aca341f670175ad7b30cdb70
Detection count: 73
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\Microsoft
Group: Malware file
Last Updated: August 6, 2016
C:\Users\<username>\AppData\Roaming\x86_microsoft-windows-fdpnp_31bf3856ad364e35_6.1.7600.16385_none_59a6c6b4912e97c1\trz6413.tmp
File name: trz6413.tmpSize: 1.24 MB (1241088 bytes)
MD5: d59e7fd8896a8b4e36da95f10266d975
Detection count: 73
File type: Temporary File
Mime Type: unknown/tmp
Path: C:\Users\<username>\AppData\Roaming\x86_microsoft-windows-fdpnp_31bf3856ad364e35_6.1.7600.16385_none_59a6c6b4912e97c1\trz6413.tmp
Group: Malware file
Last Updated: October 28, 2021
%USERPROFILE%\Documents\Window\iSystem.exe
File name: iSystem.exeSize: 1.68 MB (1686576 bytes)
MD5: 86586d395b05f8de50e1aa803af82122
Detection count: 70
File type: Executable File
Mime Type: unknown/exe
Path: %USERPROFILE%\Documents\Window
Group: Malware file
Last Updated: June 3, 2017
%APPDATA%\Windows\winmgr178.exe
File name: winmgr178.exeSize: 3.11 MB (3114386 bytes)
MD5: 1efae3907e2f0a10e4cd4936d2ead6c5
Detection count: 70
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\Windows
Group: Malware file
Last Updated: February 23, 2017
%SYSTEMDRIVE%\Users\<username>\appdata\roaming\x86_microsoft-windows-drvstore_31bf3856ad364e35_6.1.7601.17514_none_f2fbbf16a1c74694\radardt.exe
File name: radardt.exeSize: 999.93 KB (999936 bytes)
MD5: 5dfc990baa0ab5b0a3b7b3d37cb99e2b
Detection count: 70
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\appdata\roaming\x86_microsoft-windows-drvstore_31bf3856ad364e35_6.1.7601.17514_none_f2fbbf16a1c74694
Group: Malware file
Last Updated: September 15, 2021
%SYSTEMDRIVE%\Users\<username>\appdata\roaming\wow64_microsoft-windows-whhelper_31bf3856ad364e35_10.0.17763.1_none_6c6b7041c9dc66f0\kbdintel.exe
File name: kbdintel.exeSize: 1.33 MB (1337488 bytes)
MD5: fd654a59523fad68dae97c9b330d78a7
Detection count: 70
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\appdata\roaming\wow64_microsoft-windows-whhelper_31bf3856ad364e35_10.0.17763.1_none_6c6b7041c9dc66f0\kbdintel.exe
Group: Malware file
Last Updated: August 4, 2020
c:\Users\<username>\appdata\roaming\rej\app.exe
File name: app.exeSize: 948.73 KB (948736 bytes)
MD5: 614cc035fe2706039f7a3916da26906c
Detection count: 70
File type: Executable File
Mime Type: unknown/exe
Path: c:\Users\<username>\appdata\roaming\rej
Group: Malware file
Last Updated: September 15, 2021
%APPDATA%\sys64\win64.exe
File name: win64.exeSize: 588.67 KB (588679 bytes)
MD5: ddf2d6d08793a857667fb2994ecbbf6e
Detection count: 68
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\sys64
Group: Malware file
Last Updated: September 1, 2016
%SYSTEMDRIVE%\Users\<username>\appdata\roaming\app.exe
File name: app.exeSize: 589.82 KB (589824 bytes)
MD5: 414f875cd5b78e2eede12317368014ab
Detection count: 68
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\appdata\roaming
Group: Malware file
Last Updated: September 15, 2021
c:\Users\<username>\appdata\roaming\x86_microsoft-windows-userinitext.resources_31bf3856ad364e35_6.2.9200.16384_ru-ru_24cfd083276ba9c1\api-ms-win-security-trustee-l1-1-0.exe
File name: api-ms-win-security-trustee-l1-1-0.exeSize: 1.23 MB (1238528 bytes)
MD5: e6c426427de0fd9249da2957e9538e62
Detection count: 68
File type: Executable File
Mime Type: unknown/exe
Path: c:\Users\<username>\appdata\roaming\x86_microsoft-windows-userinitext.resources_31bf3856ad364e35_6.2.9200.16384_ru-ru_24cfd083276ba9c1
Group: Malware file
Last Updated: September 15, 2021
%SYSTEMDRIVE%\Users\<username>\appdata\roaming\epsonprinter\app.exe
File name: app.exeSize: 1 MB (1009664 bytes)
MD5: cda5922e32eb26717698229708a47cbd
Detection count: 68
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\appdata\roaming\epsonprinter
Group: Malware file
Last Updated: September 15, 2021
%SYSTEMDRIVE%\Users\<username>\AppData\Roaming\x86_microsoft-windows-ie-imagesupport\dpnlobby.exe
File name: dpnlobby.exeSize: 2.62 MB (2622976 bytes)
MD5: 8d0a7ac3647224c6c882e164a578c17d
Detection count: 68
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\AppData\Roaming\x86_microsoft-windows-ie-imagesupport\dpnlobby.exe
Group: Malware file
Last Updated: August 5, 2020
%SYSTEMDRIVE%\Users\<username>\appdata\roaming\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17514_none_72d18a4386696c80\msdart.exe
File name: msdart.exeSize: 3.41 MB (3415552 bytes)
MD5: 3f0202030ce13dea72acbb0a9b596f2d
Detection count: 66
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\appdata\roaming\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17514_none_72d18a4386696c80\msdart.exe
Group: Malware file
Last Updated: August 5, 2020
c:\Users\<username>\appdata\roaming\x86_microsoft-windows-l..-startere.resources_31bf3856ad364e35_6.1.7601.17514_en-us_1973d5cff4368a50\msyuv.exe
File name: msyuv.exeSize: 1.24 MB (1242112 bytes)
MD5: b5697eb57c03bc5496549f224a309f7e
Detection count: 66
File type: Executable File
Mime Type: unknown/exe
Path: c:\Users\<username>\appdata\roaming\x86_microsoft-windows-l..-startere.resources_31bf3856ad364e35_6.1.7601.17514_en-us_1973d5cff4368a50
Group: Malware file
Last Updated: September 15, 2021