Technical Information
Modifies file system:
Creates the following files:
- %TEMP%\a.zip
- %TEMP%\Tor\Data\Tor\geoip
- %TEMP%\Tor\Data\Tor\geoip6
- %TEMP%\Tor\Tor\libeay32.dll
- %TEMP%\Tor\Tor\libevent-2-0-5.dll
- %TEMP%\Tor\Tor\libevent_core-2-0-5.dll
- %TEMP%\Tor\Tor\libevent_extra-2-0-5.dll
- %TEMP%\Tor\Tor\libgcc_s_sjlj-1.dll
- %TEMP%\Tor\Tor\libssp-0.dll
- %TEMP%\Tor\Tor\ssleay32.dll
- %TEMP%\Tor\Tor\tor-gencert.exe
- %TEMP%\Tor\Tor\tor.exe
- %TEMP%\Tor\Tor\zlib1.dll
- %TEMP%\Tor\Tor\torrc
- %APPDATA%\tor\state.tmp
Deletes the following files:
- %TEMP%\a.zip
Moves the following files:
- from %APPDATA%\tor\state.tmp to %APPDATA%\tor\state
Network activity:
Connects to:
- 'localhost':1037
- '46.##1.169.151':9001
- '12#.31.0.39':9101
- '17#.#0.107.180':9001
- '21#.#9.179.177':9001
- '46.##.207.141':443
- '86.#9.21.38':443
- '16#.#0.207.2':9001
- 'localhost':9050
- '13#.#88.40.189':443
- '85.##5.250.88':443
Miscellaneous:
Creates and executes the following:
- '%TEMP%\Tor\Tor\tor.exe'
