#Original dopewars drivers
planetdop / /downloads /dopewars/ dwupdate.i ni/downloa ds/dopewar sCheckĬontains functionality to communicate with device drivers planetdop / /downloads /dopewars/ dwupdate.i ni String found in binary or memory: ckle.gator. String found in binary or memory: HTTP:///SERVWAREA PPS.
com repla ycode: Nam e error (3 )ĭNS traffic detected: queries fo r: gs.gato r.com replaycode : Name err or (3)ĭNS traffic detected: query: tri ckle.gator. Tries to resolve domain names, but no domain seems valid (expired dropper behavior)ĭNS traffic detected: query: gs. Standard Non-Application Layer Protocol 1 Remotely Track Device Without Authorization Timeout during Intezer genetic analysis for unpackpe/0.2.dopedope.exe.48d0000.4.unpackĮavesdrop on Insecure Network Communication.Timeout during Intezer genetic analysis for /opt/package/joesandbox/database/analysis/213661/sample/dopedope.exe.Report size getting too big, too many NtQueryValueKey calls found.Report size getting too big, too many NtProtectVirtualMemory calls found.Report size getting too big, too many NtOpenKeyEx calls found.Report size exceeded maximum capacity and may have missing behavior information.Execution Graph export aborted for target Trickler_PIC_Beermat_Dopewars.exe, PID 4788 because there are no executed function.Exclude process from analysis (whitelisted): dllhost.exe, conhost.exe, CompatTelRunner.exe.
0 kommentar(er)
