IOC Report
https://www.temu.com/china-s.html

loading gif

Files

File Path
Type
Category
Malicious
Chrome Cache Entry: 100
Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
downloaded
Chrome Cache Entry: 101
ASCII text, with very long lines (6979)
downloaded
Chrome Cache Entry: 102
Unicode text, UTF-8 text, with very long lines (33242)
downloaded
Chrome Cache Entry: 103
ASCII text, with very long lines (26509)
downloaded
Chrome Cache Entry: 104
Unicode text, UTF-8 text, with very long lines (8141)
downloaded
Chrome Cache Entry: 105
JSON data
dropped
Chrome Cache Entry: 106
ASCII text, with very long lines (7692)
downloaded
Chrome Cache Entry: 107
ASCII text, with very long lines (5001)
downloaded
Chrome Cache Entry: 108
JSON data
dropped
Chrome Cache Entry: 109
ASCII text, with very long lines (54707)
downloaded
Chrome Cache Entry: 110
JSON data
downloaded
Chrome Cache Entry: 111
JSON data
dropped
Chrome Cache Entry: 112
JSON data
dropped
Chrome Cache Entry: 113
ASCII text, with very long lines (8235)
downloaded
Chrome Cache Entry: 114
ASCII text, with very long lines (15709)
downloaded
Chrome Cache Entry: 115
JSON data
dropped
Chrome Cache Entry: 116
JSON data
dropped
Chrome Cache Entry: 117
Unicode text, UTF-8 text, with very long lines (65507), with no line terminators
downloaded
Chrome Cache Entry: 118
HTML document, ASCII text, with very long lines (36827)
downloaded
Chrome Cache Entry: 119
ASCII text, with very long lines (719), with no line terminators
downloaded
Chrome Cache Entry: 120
JSON data
dropped
Chrome Cache Entry: 121
ASCII text, with very long lines (1978)
downloaded
Chrome Cache Entry: 122
JSON data
downloaded
Chrome Cache Entry: 123
ASCII text, with very long lines (13344)
downloaded
Chrome Cache Entry: 124
Unicode text, UTF-8 text, with very long lines (17641)
downloaded
Chrome Cache Entry: 125
Unicode text, UTF-8 text, with very long lines (40165)
downloaded
Chrome Cache Entry: 126
Unicode text, UTF-8 text, with very long lines (12779)
downloaded
Chrome Cache Entry: 127
ASCII text, with very long lines (6935)
downloaded
Chrome Cache Entry: 128
JSON data
dropped
Chrome Cache Entry: 129
ASCII text, with very long lines (55937)
downloaded
Chrome Cache Entry: 130
Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
downloaded
Chrome Cache Entry: 131
ASCII text, with very long lines (12234)
downloaded
Chrome Cache Entry: 132
ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 133
ASCII text, with very long lines (17667)
downloaded
Chrome Cache Entry: 134
ASCII text, with very long lines (30419), with no line terminators
downloaded
Chrome Cache Entry: 135
Unicode text, UTF-8 text, with very long lines (32907), with no line terminators
downloaded
Chrome Cache Entry: 136
ASCII text, with very long lines (5063)
downloaded
Chrome Cache Entry: 137
ASCII text, with very long lines (4022)
downloaded
Chrome Cache Entry: 138
JSON data
downloaded
Chrome Cache Entry: 139
ASCII text, with very long lines (39350)
downloaded
Chrome Cache Entry: 140
PNG image data, 512 x 512, 8-bit colormap, non-interlaced
dropped
Chrome Cache Entry: 141
JSON data
dropped
Chrome Cache Entry: 142
Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
downloaded
Chrome Cache Entry: 143
JSON data
dropped
Chrome Cache Entry: 144
ASCII text, with very long lines (13320)
downloaded
Chrome Cache Entry: 145
ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 146
PNG image data, 512 x 512, 8-bit colormap, non-interlaced
downloaded
Chrome Cache Entry: 147
JSON data
downloaded
Chrome Cache Entry: 148
ASCII text, with very long lines (16617)
downloaded
Chrome Cache Entry: 149
ASCII text, with very long lines (4712)
downloaded
Chrome Cache Entry: 150
JSON data
dropped
Chrome Cache Entry: 151
ASCII text, with very long lines (19256)
downloaded
Chrome Cache Entry: 152
ASCII text, with very long lines (4748)
downloaded
Chrome Cache Entry: 153
MS Windows icon resource - 1 icon, 64x64, 32 bits/pixel
dropped
Chrome Cache Entry: 154
JSON data
dropped
Chrome Cache Entry: 155
JSON data
dropped
Chrome Cache Entry: 156
ASCII text, with very long lines (2023)
downloaded
Chrome Cache Entry: 157
Unicode text, UTF-8 text, with very long lines (65507), with no line terminators
downloaded
Chrome Cache Entry: 158
ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 159
JSON data
downloaded
Chrome Cache Entry: 160
ASCII text, with very long lines (11324)
downloaded
Chrome Cache Entry: 161
ASCII text, with very long lines (17041)
downloaded
Chrome Cache Entry: 162
ASCII text, with very long lines (20349), with no line terminators
downloaded
Chrome Cache Entry: 163
ASCII text, with very long lines (64989)
downloaded
Chrome Cache Entry: 164
ASCII text, with very long lines (24813)
downloaded
Chrome Cache Entry: 165
JSON data
dropped
Chrome Cache Entry: 166
JSON data
dropped
Chrome Cache Entry: 167
ASCII text, with very long lines (27259)
downloaded
Chrome Cache Entry: 168
ASCII text, with very long lines (11211)
downloaded
Chrome Cache Entry: 169
JSON data
dropped
Chrome Cache Entry: 170
ASCII text, with very long lines (11060)
downloaded
Chrome Cache Entry: 171
ASCII text, with very long lines (31022)
downloaded
Chrome Cache Entry: 172
Unicode text, UTF-8 text, with very long lines (65535), with no line terminators
downloaded
Chrome Cache Entry: 173
ASCII text, with very long lines (11158), with no line terminators
downloaded
Chrome Cache Entry: 174
JSON data
dropped
Chrome Cache Entry: 175
ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 176
JSON data
dropped
Chrome Cache Entry: 97
MS Windows icon resource - 1 icon, 64x64, 32 bits/pixel
downloaded
Chrome Cache Entry: 98
ASCII text, with very long lines (13084), with no line terminators
downloaded
Chrome Cache Entry: 99
ASCII text, with very long lines (20262)
downloaded
There are 71 hidden files, click here to show them.

Processes

Path
Cmdline
Malicious
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2296 --field-trial-handle=2232,i,108501985023715429,6085612501931783313,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" "https://www.temu.com/china-s.html"

URLs

Name
IP
Malicious
https://www.temu.com/china-s.html
http://temudebug.com/sourcemaps/assets/js/3248_8fafd2331097fa01c15c.js.map
unknown
http://temudebug.com/sourcemaps/assets/js/bgn_verification_f96e8db4bf582ceef102.js.map
unknown
http://temudebug.com/sourcemaps/assets/js/2853_ebfd8a81f0d367941940.js.map
unknown
http://temudebug.com/sourcemaps/assets/js/biz_layout_activity_download_dialog_3ee32523fa4eba34515f.j
unknown
http://temudebug.com/sourcemaps/assets/js/biz_layout_anti_fraud_popup_403a643071d4fa995457.js.map
unknown
http://temudebug.com/sourcemaps/assets/js/puzzle_verify_bdfa457289801058126b.js.map
unknown
https://www.temu.com/api/server/_stm?t=1711636758975
20.121.97.20
https://aimg.kwcdn.com/upload_aimg/pc/427c29ba-bef6-439c-9d4c-edbdde47c7e0.png.slim.png
unknown
http://temudebug.com/sourcemaps/assets/js/1492_dcd90f64606846247b25.js.map
unknown
http://temudebug.com/sourcemaps/assets/js/7523_0da00a621fb853d9efd7.js.map
unknown
https://static.kwcdn.com/m-assets/assets/js/726_5c8051eb7a0414ea6a42.js
unknown
http://temudebug.com/sourcemaps/assets/js/726_e09e50e01aff4d0f5f31.js.map
unknown
https://static.kwcdn.com/dll/assets/js/funWebWidgets/
unknown
https://www.temu.com/api/poppy/v1/shade_words?scene=shade_words
20.121.97.20
http://temudebug.com/sourcemaps/assets/js/picture_verify_976596880b4a57d459b6.js.map
unknown
http://temudebug.com/sourcemaps/assets/js/intelligence_verify_c9a0eda9e65452dc9b24.js.map
unknown
https://www.temu.com/china-s.html
http://temudebug.com/sourcemaps/assets/js/react_webpack_runtime_ac6006e33fcf435f.js.map
unknown
https://www.temu.com/bgn_verification.html?VerifyAuthToken=fwIB-3-eo07wq64xYKna5we8a18f4dd4401da7f&from=https%3A%2F%2Fwww.temu.com%2Fchina-s.html&refer_page_name=search_result&refer_page_id=10009_1711636758923_fanc3x2t2h&refer_page_sn=10009&_x_sessn_id=f2yyw1zoqf
https://www.temu.com/api/passport/token/touch
20.121.97.20
http://temudebug.com/sourcemaps/assets/js/gesture_verify_7f7b4e632934edeae10b.js.map
unknown
http://temudebug.com/sourcemaps/assets/js/726_5c8051eb7a0414ea6a42.js.map
unknown
https://aimg.kwcdn.com/upload_aimg/m-image/b03fb036-dceb-417b-ac7f-6fe963cdb3c3.png.slim.png
unknown
https://us.pftk.temu.com/pmm/api/pmm/front_err
52.149.234.104
https://www.temu.com/api/phantom/xg/pfb/l1
20.121.97.20
https://static.kwcdn.com/m-assets/assets/js/2853_ebfd8a81f0d367941940.js
unknown
http://temudebug.com/sourcemaps/assets/js/seo_search_result_fed_temp_18ab012b80f0fc6a643f.js.map
unknown
https://static.kwcdn.com/m-assets/assets/js/biz_vendors_7dbe51930856edc4.js
unknown
https://aimg.kwcdn.com/upload_aimg/message/3049cf6e-c4ef-4ddb-8233-761d3075a7da.png.slim.png
unknown
http://temudebug.com/sourcemaps/assets/js/323_a99c1f94b3c1e86a3551.js.map
unknown
http://temudebug.com/sourcemaps/assets/js/question_verify_486e49a12b6a8523e857.js.map
unknown
http://temudebug.com/sourcemaps/assets/js/biz_vendors_7dbe51930856edc4.js.map
unknown
https://us.pftk.temu.com/pmm/api/pmm/api
52.149.234.104
https://play.google.com/store/apps/details?id=com.einnovation.temu
unknown
https://us.thtk.temu.com/c/th.gif
4.157.73.169
https://aimg.kwcdn.com/upload_aimg/message/fa409a8f-6eda-455c-b4a2-e43ef39e8a79.png.slim.png
unknown
http://temudebug.com/sourcemaps/assets/js/biz_vendors_64c21d017fab5d45ad76.js.map
unknown
https://www.temu.com/api/tmod/lizard/sensitive/recognize
20.121.97.20
http://temudebug.com/sourcemaps/assets/js/biz_layout_sc_sidebar_9d7846a448a48be8c3af.js.map
unknown
https://static.kwcdn.com/m-assets/assets/js/vendors_c8a0a1cac0bd8d48.js
unknown
https://www.temu.com/api/poppy/v1/title_bar_list?scene=home_title_bar_list
20.121.97.20
http://temudebug.com/sourcemaps/assets/js/5729_f0e5c15cc41f1aeda8ee.js.map
unknown
http://temudebug.com/sourcemaps/assets/js/text_verify_81a45f08087fa9db36ca.js.map
unknown
https://aimg.kwcdn.com/upload_aimg/message/bc748cb8-99b2-4100-9d11-903c69700a4d.png.slim.png
unknown
https://www.temu.com/api/phantom/vc_pre_ck
20.121.97.20
http://temudebug.com/sourcemaps/assets/js/1473_294058175db56226c545.js.map
unknown
http://temudebug.com/sourcemaps/assets/js/920_b8023339df85ac86debd.js.map
unknown
http://temudebug.com/sourcemaps/assets/js/slider_verify_4256021f64b4977710b4.js.map
unknown
https://www.temu.com/api/adx/cm/ttc?scene=1&type=0
20.121.97.20
http://temudebug.com/sourcemaps/assets/js/input_question_verify_pc_97aa351b8b65b7e91889.js.map
unknown
https://aimg.kwcdn.com/upload_aimg/pc/5c5f0a0f-db6f-4205-a0d3-c745b6c672ea.png.slim.png
unknown
https://www.temu.com/api/phantom/dm/wl/cg
20.121.97.20
https://www.temu.com/favicon.ico
20.121.97.20
https://www.temu.com/api/bg/bg-uranus-api/uranus_cart/user_cart_num
20.121.97.20
http://temudebug.com/sourcemaps/assets/js/503_99d3e61a64b15d4e6353.js.map
unknown
https://aimg.kwcdn.com/upload_aimg/m-image/08d5d935-36bd-44a2-adff-ab97cd0b842c.png.slim.png
unknown
https://www.temu.com/api/phantom/xg/pfb/b
20.121.97.20
http://temudebug.com/sourcemaps/assets/js/seo_search_result_1fb749ebacca6fc9.js.map
unknown
http://temudebug.com/sourcemaps/assets/js/input_question_verify_h5_dd54330df2bfd463a199.js.map
unknown
http://temudebug.com/sourcemaps/assets/js/vendors_7f97b4539345d4680315.js.map
unknown
https://static.kwcdn.com/m-assets/assets/js/seo_search_result_fed_temp_18ab012b80f0fc6a643f.js
unknown
https://static.kwcdn.com/m-assets/assets/js/7115_fbc542e406dbcb61832e.js
unknown
http://temudebug.com/sourcemaps/assets/js/4863_9323f54430d7dc58a884.js.map
unknown
https://static.kwcdn.com/m-assets/assets/js/5141_03aaa6ee2c5dfc275f44.js
unknown
http://temudebug.com/sourcemaps/assets/js/7115_fbc542e406dbcb61832e.js.map
unknown
http://temudebug.com/sourcemaps/assets/js/303_cb15ff493dab6beb3d09.js.map
unknown
http://temudebug.com/sourcemaps/assets/js/rotate_slider_verify_96292d2bc5d3802df1c4.js.map
unknown
http://temudebug.com/sourcemaps/assets/js/code_verify_ad3fbb1b5c128322c0bb.js.map
unknown
http://temudebug.com/sourcemaps/assets/js/question_dialog_verify_4b485a81b4bc5d04a02b.js.map
unknown
http://temudebug.com/sourcemaps/assets/js/rotate_cube_verify_92fc89fa74e939f8a26b.js.map
unknown
https://static.kwcdn.com/m-assets/assets/js/1492_dcd90f64606846247b25.js
unknown
https://aimg.kwcdn.com/upload_aimg/m-image/1a0892ed-c427-43e5-9bab-e4e25f496aa1.png.slim.png
unknown
https://www.temu.com/api/seo/get_search_page_data
20.121.97.20
https://www.temu.com/api/alexa/pc/homepage/activity
20.121.97.20
http://temudebug.com/sourcemaps/assets/js/code_verify_v2_1fe2e46d6359b7f491af.js.map
unknown
https://www.temu.com/api/phantom/obtain_captcha
20.121.97.20
https://www.temu.com/api/server/_stm
20.121.97.20
https://us.pftk.temu.com/pmm/api/pmm/defined
52.149.234.104
https://www.temu.com/api/seo/get_common_biz_data
20.121.97.20
http://temudebug.com/sourcemaps/assets/js/5141_03aaa6ee2c5dfc275f44.js.map
unknown
http://temudebug.com/sourcemaps/assets/js/vendors_c8a0a1cac0bd8d48.js.map
unknown
https://www.temu.com/api/phantom/xg/pfb/a3
20.121.97.20
http://temudebug.com/sourcemaps/assets/js/funWebWidgets/2.3.12.js.map
unknown
https://www.temu.com/api/bg/huygens/region/list
20.121.97.20
http://temudebug.com/sourcemaps/assets/js/biz_layout_old_category_select_drop_list_5bfc69ade945765ad
unknown
https://static.kwcdn.com/m-assets/assets/js/seo_search_result_1fb749ebacca6fc9.js
unknown
https://www.temu.com/api/poppy/v1/search?scene=search&pageElSn=200049
20.121.97.20
https://www.temu.com/api/phantom/xg/pfb/a4
20.121.97.20
http://temudebug.com/sourcemaps/assets/js/react_webpack_runtime_3bd645162ea26c721387.js.map
unknown
https://static.kwcdn.com/dll/assets/js/funWebWidgets/2.3.12.js
unknown
https://static.kwcdn.com/m-assets/assets/js/react_webpack_runtime_ac6006e33fcf435f.js
unknown
https://static.kwcdn.com/m-assets/assets/js/5729_f0e5c15cc41f1aeda8ee.js
unknown
http://temudebug.com/sourcemaps/assets/js/biz_layout_search_panel_5d55ca4d2ee5409eb4c0.js.map
unknown
http://temudebug.com/sourcemaps/assets/js/5688_b4ed960b07cd30b0d077.js.map
unknown
http://temudebug.com/sourcemaps/assets/js/biz_layout_activity_coupon_popup_5638ed026e653e62f423.js.m
unknown
There are 85 hidden URLs, click here to show them.

Domains

Name
IP
Malicious
gw-c-us.temu.com
20.121.97.20
pftk-us.temu.com
52.149.234.104
thtk-us.temu.com
4.157.73.169
www.google.com
142.251.16.105
cs396.wpc.thetacdn.net
152.195.50.250
fp2e7a.wpc.phicdn.net
192.229.211.108
windowsupdatebg.s.llnwi.net
69.164.0.128
aimg.kwcdn.com
unknown
www.temu.com
unknown
dl.kwcdn.com
unknown
img.kwcdn.com
unknown
static.kwcdn.com
unknown
us.pftk.temu.com
unknown
us.thtk.temu.com
unknown
There are 4 hidden domains, click here to show them.

IPs

IP
Domain
Country
Malicious
20.83.139.214
unknown
United States
20.121.97.20
gw-c-us.temu.com
United States
192.168.2.7
unknown
unknown
152.195.50.250
cs396.wpc.thetacdn.net
United States
142.251.16.105
www.google.com
United States
4.157.73.169
thtk-us.temu.com
United States
52.149.234.104
pftk-us.temu.com
United States
239.255.255.250
unknown
Reserved

DOM / HTML

URL
Malicious
https://www.temu.com/china-s.html
https://www.temu.com/china-s.html
https://www.temu.com/bgn_verification.html?VerifyAuthToken=fwIB-3-eo07wq64xYKna5we8a18f4dd4401da7f&from=https%3A%2F%2Fwww.temu.com%2Fchina-s.html&refer_page_name=search_result&refer_page_id=10009_1711636758923_fanc3x2t2h&refer_page_sn=10009&_x_sessn_id=f2yyw1zoqf
https://www.temu.com/bgn_verification.html?VerifyAuthToken=fwIB-3-eo07wq64xYKna5we8a18f4dd4401da7f&from=https%3A%2F%2Fwww.temu.com%2Fchina-s.html&refer_page_name=search_result&refer_page_id=10009_1711636758923_fanc3x2t2h&refer_page_sn=10009&_x_sessn_id=f2yyw1zoqf
https://www.temu.com/bgn_verification.html?VerifyAuthToken=fwIB-3-eo07wq64xYKna5we8a18f4dd4401da7f&from=https%3A%2F%2Fwww.temu.com%2Fchina-s.html&refer_page_name=search_result&refer_page_id=10009_1711636758923_fanc3x2t2h&refer_page_sn=10009&_x_sessn_id=f2yyw1zoqf