File name:

FishTycoonSetup.exe

Full analysis: https://app.any.run/tasks/1de4887d-6bfd-48c3-b751-c2cb07bce9a3
Verdict: Malicious activity
Analysis date: February 16, 2024, 21:35:58
OS: Windows 7 Professional Service Pack 1 (build: 7601, 32 bit)
Indicators:
MIME: application/x-dosexec
File info: PE32 executable (GUI) Intel 80386, for MS Windows
MD5:

667A2513DB4A5DD63A8CA3722613A608

SHA1:

30C18408DF5D6D1B593D0166DBE5C522BBC50072

SHA256:

16273D010DF007D1816919AE88FFBD0A90B638CBE996501DAD5A9CED7A2916A4

SSDEEP:

98304:7jFQMPY9i34wJY3mwdeaPrrplc8W0MwSiQYYqGQum8R0G7pZGQlLm/XJ4bEm4Zy+:rqiHFZHgmnuGil

ANY.RUN is an interactive service which provides full access to the guest system. Information in this report could be distorted by user actions and is provided for user acknowledgement as it is. ANY.RUN does not guarantee maliciousness or safety of the content.

  • MALICIOUS

    • Drops the executable file immediately after the start

      • FishTycoonSetup.exe (PID: 2840)
      • FishTycoonSetup3442.exe (PID: 3932)
      • is-1AGRG.tmp (PID: 3304)

    • Creates a writable file in the system directory

      • is-1AGRG.tmp (PID: 3304)

  • SUSPICIOUS

    • Executable content was dropped or overwritten

      • FishTycoonSetup3442.exe (PID: 3932)
      • is-1AGRG.tmp (PID: 3304)
      • FishTycoonSetup.exe (PID: 2840)

    • Reads the Windows owner or organization settings

      • is-1AGRG.tmp (PID: 3304)

    • Process drops legitimate windows executable

      • is-1AGRG.tmp (PID: 3304)

    • Reads the BIOS version

      • FishTycoon.exe (PID: 1696)

    • Starts application with an unusual extension

      • FishTycoon.exe (PID: 1696)

    • Reads the Internet Settings

      • FishTycoon.exe (PID: 1696)

  • INFO

    • Create files in a temporary directory

      • FishTycoonSetup.exe (PID: 2840)
      • is-1AGRG.tmp (PID: 3304)
      • FishTycoonSetup3442.exe (PID: 3932)

    • Checks supported languages

      • FishTycoonSetup3442.exe (PID: 3932)
      • FishTycoonSetup.exe (PID: 2840)
      • is-1AGRG.tmp (PID: 3304)
      • FishTycoon.exe (PID: 1696)
      • RAW_003.wdt (PID: 2692)
      • FishTycoon.RWG (PID: 3964)

    • Creates files in the program directory

      • FishTycoonSetup.exe (PID: 2840)
      • is-1AGRG.tmp (PID: 3304)
      • FishTycoon.RWG (PID: 3964)
      • FishTycoon.exe (PID: 1696)

    • Creates a software uninstall entry

      • is-1AGRG.tmp (PID: 3304)

    • Reads the computer name

      • FishTycoon.exe (PID: 1696)
      • FishTycoon.RWG (PID: 3964)
      • is-1AGRG.tmp (PID: 3304)

    • Application launched itself

      • msedge.exe (PID: 1888)
      • msedge.exe (PID: 2888)

    • Reads the machine GUID from the registry

      • FishTycoon.exe (PID: 1696)

    • Manual execution by a user

      • msedge.exe (PID: 2888)
Find more information about signature artifacts and mapping to MITRE ATT&CK™ MATRIX at the full report
No Malware configuration.

TRiD

.exe | InstallShield setup (27.1)
.exe | Win32 EXE PECompact compressed (generic) (26.2)
.exe | Win32 Executable MS Visual C++ (generic) (19.6)
.exe | Win64 Executable (generic) (17.4)
.dll | Win32 Dynamic Link Library (generic) (4.1)

EXIF

EXE

MachineType: Intel 386 or later, and compatibles
TimeStamp: 2005:02:04 00:24:30+00:00
ImageFileCharacteristics: No relocs, Executable, No line numbers, No symbols, 32-bit
PEType: PE32
LinkerVersion: 6
CodeSize: 146432
InitializedDataSize: 49152
UninitializedDataSize: -
EntryPoint: 0x1b5f5
OSVersion: 4
ImageVersion: -
SubsystemVersion: 4
Subsystem: Windows GUI
No data.
screenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshot
All screenshots are available in the full report
All screenshots are available in the full report
Total processes
74
Monitored processes
35
Malicious processes
4
Suspicious processes
0

Behavior graph

Click at the process to see the details
start fishtycoonsetup.exe fishtycoonsetup3442.exe is-1agrg.tmp fishtycoon.exe no specs fishtycoon.rwg no specs raw_003.wdt no specs msedge.exe no specs msedge.exe no specs msedge.exe no specs msedge.exe no specs msedge.exe msedge.exe no specs msedge.exe no specs msedge.exe msedge.exe no specs msedge.exe no specs msedge.exe no specs msedge.exe no specs msedge.exe no specs msedge.exe no specs msedge.exe no specs msedge.exe no specs msedge.exe no specs msedge.exe no specs msedge.exe no specs msedge.exe no specs msedge.exe no specs msedge.exe no specs msedge.exe no specs msedge.exe no specs msedge.exe no specs msedge.exe no specs msedge.exe no specs msedge.exe no specs fishtycoonsetup.exe no specs

Process information

PID
CMD
Path
Indicators
Parent process
1072"C:\Program Files\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=3692 --field-trial-handle=1308,i,15628616317034090419,3757088917485674933,131072 /prefetch:8C:\Program Files\Microsoft\Edge\Application\msedge.exemsedge.exe
User:
admin
Company:
Microsoft Corporation
Integrity Level:
LOW
Description:
Microsoft Edge
Exit code:
0
Version:
109.0.1518.115
Modules
Images
c:\program files\microsoft\edge\application\msedge.exe
c:\windows\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files\microsoft\edge\application\109.0.1518.115\msedge_elf.dll
c:\windows\system32\api-ms-win-core-synch-l1-2-0.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
1232"C:\Program Files\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1192 --field-trial-handle=1308,i,15628616317034090419,3757088917485674933,131072 /prefetch:2C:\Program Files\Microsoft\Edge\Application\msedge.exemsedge.exe
User:
admin
Company:
Microsoft Corporation
Integrity Level:
LOW
Description:
Microsoft Edge
Exit code:
0
Version:
109.0.1518.115
Modules
Images
c:\program files\microsoft\edge\application\msedge.exe
c:\windows\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files\microsoft\edge\application\109.0.1518.115\msedge_elf.dll
c:\windows\system32\api-ms-win-core-synch-l1-2-0.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
1380"C:\Program Files\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --mojo-platform-channel-handle=1516 --field-trial-handle=1308,i,15628616317034090419,3757088917485674933,131072 /prefetch:8C:\Program Files\Microsoft\Edge\Application\msedge.exemsedge.exe
User:
admin
Company:
Microsoft Corporation
Integrity Level:
LOW
Description:
Microsoft Edge
Exit code:
0
Version:
109.0.1518.115
Modules
Images
c:\program files\microsoft\edge\application\msedge.exe
c:\windows\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files\microsoft\edge\application\109.0.1518.115\msedge_elf.dll
c:\windows\system32\api-ms-win-core-synch-l1-2-0.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
1596"C:\Program Files\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1488 --field-trial-handle=1308,i,15628616317034090419,3757088917485674933,131072 /prefetch:3C:\Program Files\Microsoft\Edge\Application\msedge.exe
msedge.exe
User:
admin
Company:
Microsoft Corporation
Integrity Level:
MEDIUM
Description:
Microsoft Edge
Exit code:
0
Version:
109.0.1518.115
Modules
Images
c:\program files\microsoft\edge\application\msedge.exe
c:\windows\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files\microsoft\edge\application\109.0.1518.115\msedge_elf.dll
c:\windows\system32\api-ms-win-core-synch-l1-2-0.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
1652"C:\Program Files\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=3580 --field-trial-handle=1308,i,15628616317034090419,3757088917485674933,131072 /prefetch:8C:\Program Files\Microsoft\Edge\Application\msedge.exemsedge.exe
User:
admin
Company:
Microsoft Corporation
Integrity Level:
LOW
Description:
Microsoft Edge
Exit code:
0
Version:
109.0.1518.115
Modules
Images
c:\program files\microsoft\edge\application\msedge.exe
c:\windows\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files\microsoft\edge\application\109.0.1518.115\msedge_elf.dll
c:\windows\system32\api-ms-win-core-synch-l1-2-0.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
1696"C:\Program Files\Fish Tycoon\FishTycoon.exe"C:\Program Files\Fish Tycoon\FishTycoon.exeis-1AGRG.tmp
User:
admin
Integrity Level:
HIGH
Exit code:
0
Modules
Images
c:\program files\fish tycoon\fishtycoon.exe
c:\windows\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\windows\system32\user32.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\advapi32.dll
1888"C:\Program Files\Microsoft\Edge\Application\msedge.exe" --single-argument http://arcade.reflexive.com/redirect.aspx?rra&pid=A71433960877207350592369943C:\Program Files\Microsoft\Edge\Application\msedge.exeFishTycoon.exe
User:
admin
Company:
Microsoft Corporation
Integrity Level:
HIGH
Description:
Microsoft Edge
Exit code:
0
Version:
109.0.1518.115
Modules
Images
c:\program files\microsoft\edge\application\msedge.exe
c:\windows\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files\microsoft\edge\application\109.0.1518.115\msedge_elf.dll
c:\windows\system32\apphelp.dll
c:\windows\apppatch\acgenral.dll
c:\windows\system32\sechost.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\rpcrt4.dll
1936"C:\Program Files\Microsoft\Edge\Application\msedge.exe" --type=renderer --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=2324 --field-trial-handle=1308,i,15628616317034090419,3757088917485674933,131072 /prefetch:1C:\Program Files\Microsoft\Edge\Application\msedge.exemsedge.exe
User:
admin
Company:
Microsoft Corporation
Integrity Level:
LOW
Description:
Microsoft Edge
Exit code:
0
Version:
109.0.1518.115
Modules
Images
c:\program files\microsoft\edge\application\msedge.exe
c:\windows\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files\microsoft\edge\application\109.0.1518.115\msedge_elf.dll
c:\windows\system32\api-ms-win-core-synch-l1-2-0.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
2120"C:\Program Files\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=3844 --field-trial-handle=1308,i,15628616317034090419,3757088917485674933,131072 /prefetch:8C:\Program Files\Microsoft\Edge\Application\msedge.exemsedge.exe
User:
admin
Company:
Microsoft Corporation
Integrity Level:
LOW
Description:
Microsoft Edge
Exit code:
0
Version:
109.0.1518.115
Modules
Images
c:\program files\microsoft\edge\application\msedge.exe
c:\windows\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files\microsoft\edge\application\109.0.1518.115\msedge_elf.dll
c:\windows\system32\api-ms-win-core-synch-l1-2-0.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
2160"C:\Users\admin\Desktop\FishTycoonSetup.exe" C:\Users\admin\Desktop\FishTycoonSetup.exeexplorer.exe
User:
admin
Integrity Level:
MEDIUM
Exit code:
3221226540
Modules
Images
c:\users\admin\desktop\fishtycoonsetup.exe
c:\windows\system32\ntdll.dll
Total events
10 950
Read events
10 868
Write events
75
Delete events
7

Modification events

(PID) Process:(2840) FishTycoonSetup.exeKey:HKEY_LOCAL_MACHINE\SOFTWARE\ReflexiveArcade\459
Operation:writeName:DownloadID
Value:
1ED4380300000000
(PID) Process:(2840) FishTycoonSetup.exeKey:HKEY_LOCAL_MACHINE\SOFTWARE\ReflexiveArcade\459
Operation:writeName:ChannelID
Value:
21555
(PID) Process:(2840) FishTycoonSetup.exeKey:HKEY_LOCAL_MACHINE\SOFTWARE\ReflexiveArcade\459
Operation:writeName:ChannelName
Value:
PCGamer2006May
(PID) Process:(3304) is-1AGRG.tmpKey:HKEY_LOCAL_MACHINE\SOFTWARE\FishTycoon
Operation:writeName:ExePath
Value:
C:\Program Files\Fish Tycoon\FishTycoon.exe
(PID) Process:(3304) is-1AGRG.tmpKey:HKEY_LOCAL_MACHINE\SOFTWARE\FishTycoon
Operation:writeName:SavePath
Value:
C:\Program Files\Fish Tycoon\
(PID) Process:(3304) is-1AGRG.tmpKey:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Fish Tycoon_is1
Operation:writeName:Inno Setup: Setup Version
Value:
5.0.7
(PID) Process:(3304) is-1AGRG.tmpKey:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Fish Tycoon_is1
Operation:writeName:Inno Setup: App Path
Value:
C:\Program Files\Fish Tycoon
(PID) Process:(3304) is-1AGRG.tmpKey:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Fish Tycoon_is1
Operation:writeName:InstallLocation
Value:
C:\Program Files\Fish Tycoon\
(PID) Process:(3304) is-1AGRG.tmpKey:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Fish Tycoon_is1
Operation:writeName:Inno Setup: Icon Group
Value:
Fish Tycoon
(PID) Process:(3304) is-1AGRG.tmpKey:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Fish Tycoon_is1
Operation:writeName:Inno Setup: User
Value:
admin
Executable files
20
Suspicious files
79
Text files
99
Unknown types
98

Dropped files

PID
Process
Filename
Type
2840FishTycoonSetup.exeC:\Program Files\ReflexiveArcade\Channels\21555\Channel.datcompressed
MD5:53F7A71807AE470C4FA828D1FFC4ACF3
SHA256:7824962D765855EBEFA1833B62B6074BEDBDCD5EA35C636D71B4D420C28AE789
2840FishTycoonSetup.exeC:\Users\admin\AppData\Local\Temp\FishTycoonSetup3442.exeexecutable
MD5:24739028142C55354190CDC1C950E3B4
SHA256:E34E0FF8DF903463295E7E14CB4AFE59B51B046A9CD9B4B0D1A9DAC101B61754
3304is-1AGRG.tmpC:\Program Files\Fish Tycoon\is-NHOTN.tmpexecutable
MD5:D2FE41077D0BAC6D8F0B4D2E704E98C3
SHA256:8A1E9D9C69963871170EEA6C8781C308EEA29369B77F1A0E53F52EC53E7CC7FB
3304is-1AGRG.tmpC:\Program Files\Fish Tycoon\is-IMHV9.tmpexecutable
MD5:049B8E745762B706CF2F352100008FF4
SHA256:E9240378DF9F5FE7979EB3FAE49B6DD7AABA74101F1E843E87A1EFDEE0F8E843
3304is-1AGRG.tmpC:\Program Files\Fish Tycoon\unins000.exeexecutable
MD5:0B362DF2679B1626DE2646A6AAE6518A
SHA256:4A1987ADBEE3040BC386E3AEB6B1B14F286FDDFF0E13E37319E0ECA514DBF78C
3304is-1AGRG.tmpC:\Program Files\Fish Tycoon\fmod.dllexecutable
MD5:F51A7DD4D040A9C079CF64D36F569673
SHA256:7C6F7495D0A981F646BC23FDB39C0E349C598F5D6F4EF0EE58311338AE760194
3304is-1AGRG.tmpC:\Program Files\Fish Tycoon\FishTycoon.exeexecutable
MD5:D2FE41077D0BAC6D8F0B4D2E704E98C3
SHA256:8A1E9D9C69963871170EEA6C8781C308EEA29369B77F1A0E53F52EC53E7CC7FB
3304is-1AGRG.tmpC:\Program Files\Fish Tycoon\FishTycoon.RWGexecutable
MD5:049B8E745762B706CF2F352100008FF4
SHA256:E9240378DF9F5FE7979EB3FAE49B6DD7AABA74101F1E843E87A1EFDEE0F8E843
3304is-1AGRG.tmpC:\Program Files\Fish Tycoon\is-R80QD.tmpexecutable
MD5:F51A7DD4D040A9C079CF64D36F569673
SHA256:7C6F7495D0A981F646BC23FDB39C0E349C598F5D6F4EF0EE58311338AE760194
3304is-1AGRG.tmpC:\Program Files\Fish Tycoon\images\FTpre_reminder.jpgimage
MD5:384106D6BA995ED96C80E6E0CCDB8FF3
SHA256:D766BB94F0989E4A8527E026552C74DBC4C5DCE2E901F4E2B704D5E696227A54
Download PCAP, analyze network streams, HTTP content and a lot more at the full report
HTTP(S) requests
0
TCP/UDP connections
33
DNS requests
34
Threats
0

HTTP requests

No HTTP requests
Download PCAP, analyze network streams, HTTP content and a lot more at the full report

Connections

PID
Process
IP
Domain
ASN
CN
Reputation
1080
svchost.exe
224.0.0.252:5355
unknown
4
System
192.168.100.255:137
whitelisted
4
System
192.168.100.255:138
whitelisted
2888
msedge.exe
239.255.255.250:1900
unknown
1596
msedge.exe
13.107.42.16:443
config.edge.skype.com
MICROSOFT-CORP-MSN-AS-BLOCK
US
whitelisted
1596
msedge.exe
184.72.55.36:80
arcade.reflexive.com
AMAZON-02
US
unknown
1596
msedge.exe
204.79.197.239:443
edge.microsoft.com
MICROSOFT-CORP-MSN-AS-BLOCK
US
unknown
1596
msedge.exe
104.126.37.136:443
www.bing.com
Akamai International B.V.
DE
unknown
2888
msedge.exe
224.0.0.251:5353
unknown
1596
msedge.exe
2.19.198.56:443
msedgeextensions.sf.tlu.dl.delivery.mp.microsoft.com
Akamai International B.V.
DE
unknown

DNS requests

Domain
IP
Reputation
config.edge.skype.com
  • 13.107.42.16
whitelisted
arcade.reflexive.com
  • 184.72.55.36
unknown
edge.microsoft.com
  • 204.79.197.239
  • 13.107.21.239
whitelisted
www.bing.com
  • 104.126.37.136
  • 104.126.37.129
  • 104.126.37.137
  • 104.126.37.130
  • 104.126.37.139
  • 104.126.37.155
  • 104.126.37.154
  • 104.126.37.145
  • 104.126.37.131
  • 92.123.104.66
  • 92.123.104.63
  • 92.123.104.65
  • 92.123.104.61
  • 92.123.104.53
  • 92.123.104.60
  • 92.123.104.56
  • 92.123.104.58
  • 92.123.104.64
whitelisted
msedgeextensions.sf.tlu.dl.delivery.mp.microsoft.com
  • 2.19.198.56
  • 23.32.238.163
whitelisted
aefd.nelreports.net
  • 184.24.77.25
  • 184.24.77.19
whitelisted
r.bing.com
  • 92.123.104.14
  • 92.123.104.7
  • 92.123.104.6
  • 92.123.104.10
  • 92.123.104.13
  • 92.123.104.5
  • 92.123.104.9
  • 92.123.104.12
  • 92.123.104.11
  • 104.126.37.130
  • 104.126.37.136
  • 104.126.37.185
  • 104.126.37.176
  • 104.126.37.137
  • 104.126.37.184
  • 104.126.37.179
  • 104.126.37.177
  • 104.126.37.139
whitelisted
th.bing.com
  • 104.126.37.130
  • 104.126.37.136
  • 104.126.37.185
  • 104.126.37.176
  • 104.126.37.137
  • 104.126.37.184
  • 104.126.37.179
  • 104.126.37.177
  • 104.126.37.139
whitelisted
login.microsoftonline.com
  • 40.126.32.74
  • 40.126.32.140
  • 40.126.32.134
  • 40.126.32.138
  • 20.190.160.17
  • 20.190.160.22
  • 20.190.160.20
  • 40.126.32.133
whitelisted
services.bingapis.com
  • 13.107.5.80
unknown

Threats

No threats detected
No debug info
Interactive malware hunting service ANY.RUN
© 2017-2026 ANY.RUN ALL RIGHTS RESERVED
ANY.RUN
Reports
FishTycoonSetup.exe