File name:

GPU-Z.2.69.0.exe

Full analysis: https://app.any.run/tasks/b05fb6ce-8ab0-4a62-a781-be047bb650bf
Verdict: Malicious activity
Analysis date: March 04, 2026, 13:37:27
OS: Windows 10 Professional (build: 19044, 64 bit)
Tags:
upx
inno
installer
delphi
Indicators:
MIME: application/vnd.microsoft.portable-executable
File info: PE32 executable (GUI) Intel 80386, for MS Windows, UPX compressed, 3 sections
MD5:

19A5F2BBB19710D2D36153B6CB12C3A7

SHA1:

31914785CCF9C11B823D1734F36FB64230A9B28C

SHA256:

AA6495E40A1DC3B03B03B5B0C831C5FD8F2722C9CB71254D9A059CCF4C9BA578

SSDEEP:

98304:4VnKXdbOwOCtfJ9Pu4zQPzxiuvIT0uxtg857o18awjhsX/Dt+RpdCBmtOdSqPiiG:1zGreERmZ/orSDpti6fkBmNmXpM

ANY.RUN is an interactive service which provides full access to the guest system. Information in this report could be distorted by user actions and is provided for user acknowledgement as it is. ANY.RUN does not guarantee maliciousness or safety of the content.

  • MALICIOUS

    • Executing a file with an untrusted certificate

      • GPU-Z.2.69.0.exe (PID: 7992)
      • GPU-Z.2.69.0.exe (PID: 3976)
      • gpuz_installer.exe (PID: 7488)
      • GPU-Z.exe (PID: 3180)

  • SUSPICIOUS

    • Executable content was dropped or overwritten

      • GPU-Z.2.69.0.exe (PID: 3976)
      • gpuz_installer.exe (PID: 7488)
      • gpuz_installer.tmp (PID: 8368)
      • GPU-Z.exe (PID: 3180)

    • Reads the Windows owner or organization settings

      • gpuz_installer.tmp (PID: 8368)

    • Drops a system driver (possible attempt to evade defenses)

      • GPU-Z.exe (PID: 3180)

  • INFO

    • The sample compiled with english language support

      • GPU-Z.2.69.0.exe (PID: 3976)
      • gpuz_installer.tmp (PID: 8368)
      • GPU-Z.exe (PID: 3180)

    • Reads the computer name

      • GPU-Z.2.69.0.exe (PID: 3976)
      • gpuz_installer.tmp (PID: 8368)
      • GPU-Z.exe (PID: 3180)

    • Checks supported languages

      • GPU-Z.2.69.0.exe (PID: 3976)
      • gpuz_installer.exe (PID: 7488)
      • gpuz_installer.tmp (PID: 8368)
      • GPU-Z.exe (PID: 3180)

    • Create files in a temporary directory

      • gpuz_installer.exe (PID: 7488)
      • gpuz_installer.tmp (PID: 8368)
      • GPU-Z.2.69.0.exe (PID: 3976)
      • GPU-Z.exe (PID: 3180)

    • Detects InnoSetup installer (YARA)

      • gpuz_installer.exe (PID: 7488)
      • gpuz_installer.tmp (PID: 8368)

    • Compiled with Borland Delphi (YARA)

      • gpuz_installer.exe (PID: 7488)
      • gpuz_installer.tmp (PID: 8368)

    • Creates files in the program directory

      • gpuz_installer.tmp (PID: 8368)

    • Reads security settings of Internet Explorer

      • gpuz_installer.tmp (PID: 8368)
      • GPU-Z.exe (PID: 3180)

    • Creates a software uninstall entry

      • gpuz_installer.tmp (PID: 8368)

    • Checks proxy server information

      • slui.exe (PID: 3384)
      • GPU-Z.exe (PID: 3180)

    • Process checks computer location settings

      • gpuz_installer.tmp (PID: 8368)

    • UPX packer has been detected

      • GPU-Z.exe (PID: 3180)

    • There is functionality for taking screenshot (YARA)

      • GPU-Z.exe (PID: 3180)

    • Creates files or folders in the user directory

      • GPU-Z.exe (PID: 3180)

    • Reads the machine GUID from the registry

      • GPU-Z.exe (PID: 3180)
Find more information about signature artifacts and mapping to MITRE ATT&CK™ MATRIX at the full report
No Malware configuration.

TRiD

.exe | UPX compressed Win32 Executable (43.5)
.exe | Win32 EXE Yoda's Crypter (42.7)
.exe | Win32 Executable (generic) (7.2)
.exe | Generic Win/DOS Executable (3.2)
.exe | DOS Executable Generic (3.2)

EXIF

EXE

MachineType: Intel 386 or later, and compatibles
TimeStamp: 2026:02:13 11:12:41+00:00
ImageFileCharacteristics: Executable, 32-bit
PEType: PE32
LinkerVersion: 14.16
CodeSize: 11476992
InitializedDataSize: 86016
UninitializedDataSize: 42508288
EntryPoint: 0x337b6b0
OSVersion: 5.1
ImageVersion: -
SubsystemVersion: 5.1
Subsystem: Windows GUI
FileVersionNumber: 2.69.0.0
ProductVersionNumber: 2.69.0.0
FileFlagsMask: 0x003f
FileFlags: (none)
FileOS: Win32
ObjectFileType: Executable application
FileSubtype: -
LanguageCode: English (U.S.)
CharacterSet: Windows, Latin1
CompanyName: TechPowerUp (www.techpowerup.com)
FileDescription: GPU-Z - Video card Information Utility
FileVersion: 2.69.0.0
InternalName: GPU-Z.exe
LegalCopyright: (c) 2007-2026 TechPowerUp (www.techpowerup.com)
OriginalFileName: GPU-Z.exe
ProductName: GPU-Z - Video card Information Utility
ProductVersion: 2.69.0.0
No data.
screenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshot
All screenshots are available in the full report
All screenshots are available in the full report
Total processes
150
Monitored processes
6
Malicious processes
3
Suspicious processes
2

Behavior graph

Click at the process to see the details
start gpu-z.2.69.0.exe slui.exe gpuz_installer.exe gpuz_installer.tmp gpu-z.exe gpu-z.2.69.0.exe no specs

Process information

PID
CMD
Path
Indicators
Parent process
3180"C:\Program Files (x86)\GPU-Z\GPU-Z.exe" C:\Program Files (x86)\GPU-Z\GPU-Z.exe
gpuz_installer.tmp
User:
admin
Company:
TechPowerUp (www.techpowerup.com)
Integrity Level:
HIGH
Description:
GPU-Z - Video card Information Utility
Version:
2.69.0.0
Modules
Images
c:\program files (x86)\gpu-z\gpu-z.exe
c:\windows\system32\ntdll.dll
c:\windows\syswow64\ntdll.dll
c:\windows\system32\wow64.dll
c:\windows\system32\wow64win.dll
c:\windows\system32\wow64cpu.dll
c:\windows\syswow64\kernel32.dll
c:\windows\syswow64\kernelbase.dll
c:\windows\syswow64\apphelp.dll
c:\windows\syswow64\advapi32.dll
3384C:\WINDOWS\System32\slui.exe -EmbeddingC:\Windows\System32\slui.exe
svchost.exe
User:
admin
Company:
Microsoft Corporation
Integrity Level:
MEDIUM
Description:
Windows Activation Client
Exit code:
0
Version:
10.0.19041.1 (WinBuild.160101.0800)
Modules
Images
c:\windows\system32\slui.exe
c:\windows\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\bcrypt.dll
c:\windows\system32\user32.dll
3976"C:\Users\admin\Desktop\GPU-Z.2.69.0.exe" C:\Users\admin\Desktop\GPU-Z.2.69.0.exe
explorer.exe
User:
admin
Company:
TechPowerUp (www.techpowerup.com)
Integrity Level:
HIGH
Description:
GPU-Z - Video card Information Utility
Exit code:
0
Version:
2.69.0.0
Modules
Images
c:\users\admin\desktop\gpu-z.2.69.0.exe
c:\windows\system32\ntdll.dll
c:\windows\syswow64\ntdll.dll
c:\windows\system32\wow64.dll
c:\windows\system32\wow64win.dll
c:\windows\system32\wow64cpu.dll
c:\windows\syswow64\kernel32.dll
c:\windows\syswow64\kernelbase.dll
c:\windows\syswow64\apphelp.dll
c:\windows\syswow64\advapi32.dll
7488"C:\Users\admin\AppData\Local\Temp\\gpuz_installer.exe" C:\Users\admin\AppData\Local\Temp\gpuz_installer.exe
GPU-Z.2.69.0.exe
User:
admin
Company:
TechPowerUp
Integrity Level:
HIGH
Description:
TechPowerUp GPU-Z Setup
Exit code:
0
Version:
1.0.0.0
Modules
Images
c:\users\admin\appdata\local\temp\gpuz_installer.exe
c:\windows\system32\ntdll.dll
c:\windows\syswow64\ntdll.dll
c:\windows\system32\wow64.dll
c:\windows\system32\wow64win.dll
c:\windows\system32\wow64cpu.dll
c:\windows\syswow64\kernel32.dll
c:\windows\syswow64\kernelbase.dll
c:\windows\syswow64\apphelp.dll
c:\windows\syswow64\comctl32.dll
7992"C:\Users\admin\Desktop\GPU-Z.2.69.0.exe" C:\Users\admin\Desktop\GPU-Z.2.69.0.exeexplorer.exe
User:
admin
Company:
TechPowerUp (www.techpowerup.com)
Integrity Level:
MEDIUM
Description:
GPU-Z - Video card Information Utility
Exit code:
3221226540
Version:
2.69.0.0
Modules
Images
c:\users\admin\desktop\gpu-z.2.69.0.exe
c:\windows\system32\ntdll.dll
c:\windows\syswow64\ntdll.dll
8368"C:\Users\admin\AppData\Local\Temp\is-6GGND.tmp\gpuz_installer.tmp" /SL5="$130218,832512,832512,C:\Users\admin\AppData\Local\Temp\gpuz_installer.exe" C:\Users\admin\AppData\Local\Temp\is-6GGND.tmp\gpuz_installer.tmp
gpuz_installer.exe
User:
admin
Company:
TechPowerUp
Integrity Level:
HIGH
Description:
Setup/Uninstall
Exit code:
0
Version:
51.1052.0.0
Modules
Images
c:\users\admin\appdata\local\temp\is-6ggnd.tmp\gpuz_installer.tmp
c:\windows\system32\ntdll.dll
c:\windows\syswow64\ntdll.dll
c:\windows\system32\wow64.dll
c:\windows\system32\wow64win.dll
c:\windows\system32\wow64cpu.dll
c:\windows\syswow64\kernel32.dll
c:\windows\syswow64\kernelbase.dll
c:\windows\syswow64\apphelp.dll
c:\windows\syswow64\comdlg32.dll
Total events
7 316
Read events
7 287
Write events
29
Delete events
0

Modification events

(PID) Process:(8368) gpuz_installer.tmpKey:HKEY_CURRENT_USER\SOFTWARE\techPowerUp\GPU-Z
Operation:writeName:Install_Dir
Value:
C:\Program Files (x86)\GPU-Z
(PID) Process:(8368) gpuz_installer.tmpKey:HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{8B0F211E-5846-4FB2-B0B9-4EB31546FDF9}}_is1
Operation:writeName:Inno Setup: Setup Version
Value:
6.2.2
(PID) Process:(8368) gpuz_installer.tmpKey:HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{8B0F211E-5846-4FB2-B0B9-4EB31546FDF9}}_is1
Operation:writeName:Inno Setup: App Path
Value:
C:\Program Files (x86)\GPU-Z
(PID) Process:(8368) gpuz_installer.tmpKey:HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{8B0F211E-5846-4FB2-B0B9-4EB31546FDF9}}_is1
Operation:writeName:InstallLocation
Value:
C:\Program Files (x86)\GPU-Z\
(PID) Process:(8368) gpuz_installer.tmpKey:HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{8B0F211E-5846-4FB2-B0B9-4EB31546FDF9}}_is1
Operation:writeName:Inno Setup: Icon Group
Value:
(Default)
(PID) Process:(8368) gpuz_installer.tmpKey:HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{8B0F211E-5846-4FB2-B0B9-4EB31546FDF9}}_is1
Operation:writeName:Inno Setup: User
Value:
admin
(PID) Process:(8368) gpuz_installer.tmpKey:HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{8B0F211E-5846-4FB2-B0B9-4EB31546FDF9}}_is1
Operation:writeName:Inno Setup: Selected Tasks
Value:
desktopicon
(PID) Process:(8368) gpuz_installer.tmpKey:HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{8B0F211E-5846-4FB2-B0B9-4EB31546FDF9}}_is1
Operation:writeName:Inno Setup: Deselected Tasks
Value:
(PID) Process:(8368) gpuz_installer.tmpKey:HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{8B0F211E-5846-4FB2-B0B9-4EB31546FDF9}}_is1
Operation:writeName:Inno Setup: Language
Value:
en
(PID) Process:(8368) gpuz_installer.tmpKey:HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{8B0F211E-5846-4FB2-B0B9-4EB31546FDF9}}_is1
Operation:writeName:DisplayName
Value:
TechPowerUp GPU-Z
Executable files
9
Suspicious files
4
Text files
0
Unknown types
0

Dropped files

PID
Process
Filename
Type
8368gpuz_installer.tmpC:\Program Files (x86)\GPU-Z\unins000.datbinary
MD5:20EC9ADA5BE33EF8290A7541A2FE4459
SHA256:87B1713E9B8D5EFDEA04B4E4304F8FB532F00EB5CF6936F4F1E651FEEF763058
3976GPU-Z.2.69.0.exeC:\Users\admin\AppData\Local\Temp\gpuz_installer.exeexecutable
MD5:F2496F2E516F4C2B86A54700DB886426
SHA256:FEC58D516CEC80E35C7B37FD0594C79DE44CA79B468AFB56720DAE427A600DD2
8368gpuz_installer.tmpC:\Users\Public\Desktop\TechPowerUp GPU-Z.lnkbinary
MD5:57EB49A45BFD7C8504CE7D4593BB7A57
SHA256:807A23A2E8F6912B59A94F77DFC39F6244B89C945B1F0BB3D01624B52AF16882
3976GPU-Z.2.69.0.exeC:\Users\admin\AppData\Local\Temp\GPU-Z.exeexecutable
MD5:19A5F2BBB19710D2D36153B6CB12C3A7
SHA256:AA6495E40A1DC3B03B03B5B0C831C5FD8F2722C9CB71254D9A059CCF4C9BA578
8368gpuz_installer.tmpC:\Program Files (x86)\GPU-Z\GPU-Z.exeexecutable
MD5:19A5F2BBB19710D2D36153B6CB12C3A7
SHA256:AA6495E40A1DC3B03B03B5B0C831C5FD8F2722C9CB71254D9A059CCF4C9BA578
8368gpuz_installer.tmpC:\Program Files (x86)\GPU-Z\is-67GGO.tmpexecutable
MD5:BE3DDA48E9454C6AB683272E3FBE2A5D
SHA256:46631D2343FA72953D68F00FCA08DEA6BEF027EA6ED494260D658576A79568C1
7488gpuz_installer.exeC:\Users\admin\AppData\Local\Temp\is-6GGND.tmp\gpuz_installer.tmpexecutable
MD5:4C9111B5058CB0A71DA1C566E6B15DE5
SHA256:FF02CD92B07585423EF7BDD0A873374922767FE21F93FCEBC24181A5EE2111FA
8368gpuz_installer.tmpC:\Program Files (x86)\GPU-Z\unins000.exeexecutable
MD5:BE3DDA48E9454C6AB683272E3FBE2A5D
SHA256:46631D2343FA72953D68F00FCA08DEA6BEF027EA6ED494260D658576A79568C1
8368gpuz_installer.tmpC:\Users\admin\AppData\Local\Temp\is-59FCS.tmp\_isetup\_setup64.tmpexecutable
MD5:E4211D6D009757C078A9FAC7FF4F03D4
SHA256:388A796580234EFC95F3B1C70AD4CB44BFDDC7BA0F9203BF4902B9929B136F95
8368gpuz_installer.tmpC:\Program Files (x86)\GPU-Z\is-MUOEC.tmpexecutable
MD5:19A5F2BBB19710D2D36153B6CB12C3A7
SHA256:AA6495E40A1DC3B03B03B5B0C831C5FD8F2722C9CB71254D9A059CCF4C9BA578
Download PCAP, analyze network streams, HTTP content and a lot more at the full report
HTTP(S) requests
45
TCP/UDP connections
33
DNS requests
13
Threats
2

HTTP requests

PID
Process
Method
HTTP Code
IP
URL
CN
Type
Size
Reputation
5520
RUXIMICS.exe
GET
304
51.124.78.146:443
https://settings-win.data.microsoft.com/settings/v3.0/WSD/RUXIM?os=Windows&osVer=10.0.19045.4046.amd64fre.vb_release.191206-1406&sku=48&deviceClass=Windows.Desktop&locale=en-US&deviceId=s:BAD99146-31D3-4EC6-A1A4-BE76F32BA5D4&sampleId=s:95271487&appVer=10.0.19041.3623&OSVersionFull=10.0.19045.4046.amd64fre.vb_release.191206-1406&FlightRing=Retail&AttrDataVer=186&App=RUXIM&AppVer=&DeviceFamily=Windows.Desktop
unknown
whitelisted
6768
MoUsoCoreWorker.exe
GET
304
51.124.78.146:443
https://settings-win.data.microsoft.com/settings/v3.0/wsd/muse?ProcessorClockSpeed=3094&FlightIds=&UpdateOfferedDays=4294967295&BranchReadinessLevel=CB&OEMManufacturerName=DELL&IsCloudDomainJoined=0&ProcessorIdentifier=AMD64%20Family%2023%20Model%201%20Stepping%202&sku=48&ActivationChannel=Retail&AttrDataVer=186&IsMDMEnrolled=0&ProcessorCores=6&ProcessorModel=AMD%20Ryzen%205%203500%206-Core%20Processor&TotalPhysicalRAM=6144&PrimaryDiskType=4294967295&FlightingBranchName=&ChassisTypeId=1&OEMModelNumber=DELL&SystemVolumeTotalCapacity=260281&sampleId=95271487&deviceClass=Windows.Desktop&App=muse&DisableDualScan=0&AppVer=10.0&OEMSubModel=J5CR&locale=en-US&IsAlwaysOnAlwaysConnectedCapable=0&ms=0&DefaultUserRegion=244&UpdateServiceUrl=http%3A%2F%2Fneverupdatewindows10.com&osVer=10.0.19045.4046.amd64fre.vb_release.191206-1406&os=windows&deviceId=s%3ABAD99146-31D3-4EC6-A1A4-BE76F32BA5D4&DeferQualityUpdatePeriodInDays=0&ring=Retail&DeferFeatureUpdatePeriodInDays=30
unknown
whitelisted
5520
RUXIMICS.exe
GET
200
2.16.164.120:80
http://crl.microsoft.com/pki/crl/products/MicRooCerAut2011_2011_03_22.crl
unknown
whitelisted
9080
svchost.exe
GET
200
23.59.18.102:80
http://www.microsoft.com/pkiops/crl/MicSecSerCA2011_2011-10-18.crl
unknown
whitelisted
9080
svchost.exe
GET
200
2.16.164.120:80
http://crl.microsoft.com/pki/crl/products/MicRooCerAut2011_2011_03_22.crl
unknown
whitelisted
6768
MoUsoCoreWorker.exe
GET
200
2.16.164.120:80
http://crl.microsoft.com/pki/crl/products/MicRooCerAut2011_2011_03_22.crl
unknown
whitelisted
6768
MoUsoCoreWorker.exe
GET
200
23.59.18.102:80
http://www.microsoft.com/pkiops/crl/MicSecSerCA2011_2011-10-18.crl
unknown
whitelisted
5520
RUXIMICS.exe
GET
200
23.59.18.102:80
http://www.microsoft.com/pkiops/crl/MicSecSerCA2011_2011-10-18.crl
unknown
whitelisted
9080
svchost.exe
GET
200
51.124.78.146:443
https://settings-win.data.microsoft.com/settings/v3.0/WSD/WaasMedic?os=Windows&osVer=10.0.19041.1.amd64fre.vb_release.191206-&appVer=10.0.19041.3758&ring=Retail&sku=48&deviceClass=Windows.Desktop&locale=en-US&deviceId=BAD99146-31D3-4EC6-A1A4-BE76F32BA5D4
unknown
text
3.41 Kb
whitelisted
4404
slui.exe
POST
500
48.192.1.65:443
https://activation-v2.sls.microsoft.com/SLActivateProduct/SLActivateProduct.asmx?configextension=Retail
unknown
text
512 b
whitelisted
Download PCAP, analyze network streams, HTTP content and a lot more at the full report

Connections

PID
Process
IP
Domain
ASN
CN
Reputation
9080
svchost.exe
51.124.78.146:443
settings-win.data.microsoft.com
MICROSOFT-CORP-MSN-AS-BLOCK
US
whitelisted
4
System
192.168.100.255:137
Not routed
whitelisted
5520
RUXIMICS.exe
51.124.78.146:443
settings-win.data.microsoft.com
MICROSOFT-CORP-MSN-AS-BLOCK
US
whitelisted
6768
MoUsoCoreWorker.exe
51.124.78.146:443
settings-win.data.microsoft.com
MICROSOFT-CORP-MSN-AS-BLOCK
US
whitelisted
4
System
192.168.100.255:138
Not routed
whitelisted
5520
RUXIMICS.exe
2.16.164.120:80
crl.microsoft.com
AKAMAI-ASN1
NL
whitelisted
9080
svchost.exe
2.16.164.120:80
crl.microsoft.com
AKAMAI-ASN1
NL
whitelisted
6768
MoUsoCoreWorker.exe
2.16.164.120:80
crl.microsoft.com
AKAMAI-ASN1
NL
whitelisted
5520
RUXIMICS.exe
23.59.18.102:80
www.microsoft.com
AKAMAI-AS
US
whitelisted
9080
svchost.exe
23.59.18.102:80
www.microsoft.com
AKAMAI-AS
US
whitelisted

DNS requests

Domain
IP
Reputation
self.events.data.microsoft.com
  • 20.189.173.2
  • 20.189.173.25
whitelisted
google.com
  • 142.251.127.139
  • 142.251.127.100
  • 142.251.127.102
  • 142.251.127.138
  • 142.251.127.113
  • 142.251.127.101
whitelisted
crl.microsoft.com
  • 2.16.164.120
  • 2.16.164.49
whitelisted
www.microsoft.com
  • 23.59.18.102
whitelisted
settings-win.data.microsoft.com
  • 51.124.78.146
whitelisted
activation-v2.sls.microsoft.com
  • 48.192.1.65
whitelisted
www.bing.com
  • 2.16.204.136
  • 2.16.204.148
  • 2.16.204.138
  • 2.16.204.146
  • 2.16.204.145
  • 2.16.204.142
  • 2.16.204.143
  • 2.16.204.141
  • 2.16.204.147
whitelisted
th.bing.com
  • 2.16.204.151
  • 2.16.204.145
  • 2.16.204.148
  • 2.16.204.147
  • 2.16.204.152
  • 2.16.204.149
  • 2.16.204.143
  • 2.16.204.146
  • 2.16.204.153
whitelisted
www.gpu-z.com
  • 216.158.237.92
unknown

Threats

PID
Process
Class
Message
5520
RUXIMICS.exe
Unknown Traffic
ET USER_AGENTS Microsoft Dr Watson User-Agent (MSDW)
Attempted Information Leak
HUNTING [ANY.RUN] Host CPU Enumeration observed in outbound connection
Process
Message
GPU-Z.2.69.0.exe
in CXCrashHandler
GPU-Z.exe
in CXCrashHandler
GPU-Z.2.69.0.exe
in ~CXCrashHandler
Interactive malware hunting service ANY.RUN
© 2017-2026 ANY.RUN ALL RIGHTS RESERVED
ANY.RUN
Reports
GPU-Z.2.69.0.exe