Technical Information
- Windows Defender
- ClassName: 'SmartSniff', WindowName: ''
- ClassName: 'PROCEXPL', WindowName: ''
- ClassName: 'OLLYDBG', WindowName: ''
- %WINDIR%\temp\cab1d9d.tmp
- %WINDIR%\temp\tar1d9e.tmp
- %WINDIR%\temp\cab1d9d.tmp
- %WINDIR%\temp\tar1d9e.tmp
- 'localhost':49176
- 'wt###.joygame.com':443
- 'ra#.####ubusercontent.com':80
- 'ra#.####ubusercontent.com':443
- http://ra#.####ubusercontent.com/0blake0/board/main/network.check
- 'localhost':49177
- 'wt###.joygame.com':443
- 'ra#.####ubusercontent.com':443
- DNS ASK wt###.joygame.com
- DNS ASK ra#.####ubusercontent.com
- ClassName: 'SHADOW' WindowName: ''
- ClassName: 'dbgviewClass' WindowName: ''
- ClassName: 'SocketSniff' WindowName: ''
- ClassName: 'TStdHttpAnalyzerForm' WindowName: ''
- ClassName: 'Window' WindowName: ''
- ClassName: 'ProcessHacker' WindowName: ''
- ClassName: 'Qt5QWindowIcon' WindowName: 'x64dbg'
- ClassName: 'Qt5QWindowIcon' WindowName: 'x32dbg'
- ClassName: 'XTPMainFrame' WindowName: ''
- '<SYSTEM32>\rundll32.exe' <SYSTEM32>\FirewallControlPanel.dll,ShowNotificationDialog /configure /ETOnly 0 /OnProfiles 6 /OtherAllowed 0 /OtherBlocked 0 /OtherEdgeAllowed 0 /NewBlocked 4 "<Full path to file>"