Attempts to modify Internet Explorer's start page Show sources
| registry_write | HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Start Page |
Network activity detected but not expressed in API logs
Creates RWX memory Show sources
| injection_rwx_memory | 0x00000040, NtAllocateVirtualMemory or VirtualProtectEx |
Likely virus infection of existing system binary Show sources
| file |