Heuristic match: "GET /sha2-ha-cs-g1.crl HTTP/1.1Connection: Keep-AliveAccept: */*User-Agent: Microsoft-CryptoAPI/6.1Host: " Heuristic match: "GET /MFEwTzBNMEswSTAJBgUrDgMCGgUABBSLIycRsoI3J6zPns4K1aQgAqaqHgQUZ50PIAkMzIo65YJGcmL88cyQ5UACEAG2Yem3HYLmNssdMr3TCFk%3D HTTP/1.1Connection: Keep-AliveAccept: */*User-Agent: Microsoft-CryptoAPI/6.1Host: " Heuristic match: "GET /MFEwTzBNMEswSTAJBgUrDgMCGgUABBTfqhLjKLEJQZPin0KCzkdAQpVYowQUsT7DaQP4v0cB1JgmGggC72NkK8MCEAt%2BEJA8OEkP%2Bi9nmoehp7k%3D HTTP/1.1Connection: Keep-AliveAccept: */*User-Agent: Microsoft-CryptoAPI/6.1Host: " Heuristic match: "GET /CRL/Omniroot2025.crl HTTP/1.1Connection: Keep-AliveAccept: */*User-Agent: Microsoft-CryptoAPI/6.1Host: " Heuristic match: "GET /MFEwTzBNMEswSTAJBgUrDgMCGgUABBQe6LNDJdqx%2BJOp7hVgTeaGFJ%2FCQgQUljtT8Hkzl699g%2B8uK8zKt4YecmYCEBuN56dlW1Lzehhu%2FtdSD3U%3D HTTP/1.1Connection: Keep-AliveAccept: */*User-Agent: Microsoft-CryptoAPI/6.1Host: sv." Heuristic match: "GET /MFEwTzBNMEswSTAJBgUrDgMCGgUABBS56bKHAoUD%2BOyl%2B0LhPg9JxyQm4gQUf9Nlp8Ld7LvwMAnzQzn6Aq8zMTMCED141%2Fl2SWCyYX308B7Khio%3D HTTP/1.1Connection: Keep-AliveAccept: */*User-Agent: Microsoft-CryptoAPI/6.1Host: s2." Heuristic match: "GET /msdownload/update/v3/static/trustedr/en/authrootstl.cab?7794dce59ca7b07d HTTP/1.1Connection: Keep-AliveAccept: */*User-Agent: Microsoft-CryptoAPI/6.1Host: " Heuristic match: "GET /msdownload/update/v3/static/trustedr/en/disallowedcertstl.cab?ecc564883ee35479 HTTP/1.1Connection: Keep-AliveAccept: */*If-Modified-Since: Thu, 16:02:20 GMTIf-None-Match: 04e707defb9d21:0User-Agent: Microsoft-CryptoAPI/6.1Hos" Pattern match: "/DigiCertSHA2HighAssuranceServerCA.crt0" Pattern match: " t=MjUzNjQwZDc1MjkwYmZkMjVlNDU1YzVlOTVhNThkZjkwOGQwM2YyZiwySDFiOTRhYg%3D%3D&b=t%3AqN42youbcnr6mgWp82GhJQ&p=http%3A%2F%2Fshiginima" Pattern match: " t=NmFmMmY3MjgwNGU2NzNhNjZmMWIwMWFmNzA5NjU1ZWJiZTFhNDBjNyxZMTFwUGpnOQ%3D%3D&b=t%3AqN42youbcnr6mgWp82GhJQ&p=http%3A%2F%%2Fpost%2F115384345996%2Fshiginima-launch"
Pattern match: "org.yaml/snakeyaml/pom.xmlPK" Pattern match: "org.yaml/snakeyaml/pom.propertiesPK" Pattern match: "org.yaml/snakeyaml/pom.xml" Pattern match: "org.yaml/snakeyaml/pom.properties" "javaw.exe" touched file "C:\Windows\System32\imageres.dll" "javaw.exe" touched file "C:\Windows\AppPatch\AppPatch64\sysmain.sdb" "javaw.exe" touched file "C:\Windows\Fonts\StaticCache.dat" "javaw.exe" touched file "C:\Windows\Fonts\symbol.ttf" "javaw.exe" touched file "C:\Windows\Fonts\wingding.ttf" "javaw.exe" touched file "C:\Windows\Fonts\cour.ttf" "javaw.exe" touched file "C:\Windows\Fonts\segoeuiz.ttf" "javaw.exe" touched file "C:\Windows\Fonts\segoeuii.ttf" "javaw.exe" touched file "C:\Windows\Fonts\segoeuib.ttf" "javaw.exe" touched file "C:\Windows\Fonts\segoeui.ttf" "javaw.exe" touched file "C:\Windows\Fonts\tahomabd.ttf" "javaw.exe" touched file "C:\Windows\Fonts\tahoma.ttf" "javaw.exe" touched file "C:\Windows\System32\rsaenh.dll" "javaw.exe" touched file "C:\Windows\System32\en-US\" "javaw.exe" touched file "C:\Windows\Globalization\Sorting\s" "javaw.exe" touched file "%WINDIR%\System32\tzres.dll" Uses a User Agent typical for browsers, although no browser was ever launched Source Hybrid Analysis Technology relevance 5/10