Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
C:\Users\user\Downloads\425c4ce8-4540-4ab6-9091-db0ae2478c6f.tmp
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
dropped
|
||
|
C:\Users\user\Downloads\Unconfirmed 397996.crdownload
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
dropped
|
||
|
C:\Users\user\Downloads\Unconfirmed 778273.crdownload
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
dropped
|
||
|
C:\Users\user\Downloads\c17db04b-41e5-4482-9e1e-b32172a069b7.tmp
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
dropped
|
||
|
Chrome Cache Entry: 60
|
ASCII text, with very long lines (65455)
|
downloaded
|
||
|
Chrome Cache Entry: 61
|
JSON data
|
dropped
|
||
|
Chrome Cache Entry: 62
|
JSON data
|
dropped
|
||
|
Chrome Cache Entry: 63
|
JSON data
|
downloaded
|
||
|
Chrome Cache Entry: 64
|
ASCII text, with no line terminators
|
dropped
|
||
|
Chrome Cache Entry: 65
|
ASCII text, with very long lines (11123)
|
dropped
|
||
|
Chrome Cache Entry: 66
|
JSON data
|
downloaded
|
||
|
Chrome Cache Entry: 67
|
JSON data
|
downloaded
|
||
|
Chrome Cache Entry: 68
|
JSON data
|
dropped
|
||
|
Chrome Cache Entry: 69
|
JSON data
|
dropped
|
||
|
Chrome Cache Entry: 70
|
Unicode text, UTF-8 text, with very long lines (35523), with LF, NEL line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 71
|
ASCII text, with very long lines (21099)
|
downloaded
|
||
|
Chrome Cache Entry: 72
|
JSON data
|
downloaded
|
||
|
Chrome Cache Entry: 73
|
ASCII text, with very long lines (894)
|
downloaded
|
||
|
Chrome Cache Entry: 74
|
ASCII text, with very long lines (11123)
|
downloaded
|
||
|
Chrome Cache Entry: 75
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
downloaded
|
||
|
Chrome Cache Entry: 76
|
Unicode text, UTF-8 text, with very long lines (31575)
|
downloaded
|
||
|
Chrome Cache Entry: 77
|
JSON data
|
downloaded
|
||
|
Chrome Cache Entry: 78
|
JSON data
|
dropped
|
There are 14 hidden files, click here to show them.
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
|
||
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US
--service-sandbox-type=none --mojo-platform-channel-handle=2096 --field-trial-handle=1888,i,15907643151583486106,13547267940061697564,262144
--disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction
/prefetch:8
|
||
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" "https://us02web.zoom.us/j/88257733758?pwd=UkFtUjRWaGtlTTNTb3NZMHdmbmRNdz09"
|
||
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US
--service-sandbox-type=icon_reader --mojo-platform-channel-handle=5600 --field-trial-handle=1888,i,15907643151583486106,13547267940061697564,262144
--disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction
/prefetch:8
|
||
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US
--service-sandbox-type=icon_reader --mojo-platform-channel-handle=5892 --field-trial-handle=1888,i,15907643151583486106,13547267940061697564,262144
--disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction
/prefetch:8
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
https://us02web.zoom.us/j/88257733758?pwd=UkFtUjRWaGtlTTNTb3NZMHdmbmRNdz09
|
|||
|
https://cdn.cookielaw.org/scripttemplates/6.21.0/assets/v2/otPcCenter.json
|
104.19.177.52
|
||
|
https://st1.zoom.us/fe-static/launch-meeting/meeting.fd53f2d51cff9b53de20.js
|
52.84.151.43
|
||
|
https://zoom.com.cn/
|
unknown
|
||
|
https://support.zoom.us/hc/zh-cn/articles/201362023-System-Requirements
|
unknown
|
||
|
https://github.com/zloirock/core-js/blob/v3.32.2/LICENSE
|
unknown
|
||
|
https://zoom.us/
|
unknown
|
||
|
https://github.com/zloirock/core-js
|
unknown
|
||
|
https://cdn.cookielaw.org/scripttemplates/6.21.0/otBannerSdk.js
|
104.19.177.52
|
||
|
https://support.zoom.us/hc/es/articles/201362023-System-Requirements
|
unknown
|
||
|
https://support.zoom.us/hc/zh-tw/articles/201362023-System-Requirements
|
unknown
|
||
|
https://geolocation.onetrust.com/cookieconsentpub/v1/geo/location
|
172.64.155.119
|
||
|
https://cdn.cookielaw.org/scripttemplates/6.21.0/assets/otCommonStyles.css
|
104.19.177.52
|
||
|
https://cdn.solvvy.com/deflect/customization/zoom/lazy-solvvy.js
|
34.98.108.207
|
||
|
https://support.zoom.us/hc/en-us/articles/201362003-Zoom-Video-Communications-Technical-Supportopens
|
unknown
|
||
|
about:blank
|
|||
|
https://support.zoom.us/hc/ru/articles/201362023-System-Requirements
|
unknown
|
||
|
https://zoom-privacy.my.onetrust.com/request/v1/consentreceipts
|
104.18.32.137
|
||
|
https://us01ccistatic.zoom.us/us01cci/web-sdk/chat-client.js
|
unknown
|
||
|
https://support.zoom.us/hc/en-us/articles/201362023-System-Requirements
|
unknown
|
||
|
https://support.zoom.us/hc/en-us/articles/201362003-Zoom-Video-Communications-Technical-Support
|
unknown
|
||
|
https://cdn.cookielaw.org/scripttemplates/6.21.0/assets/otFloatingFlat.json
|
104.19.177.52
|
||
|
https://github.com/karanlyons/murmurHash3.js)
|
unknown
|
||
|
https://us06st3.zoom.us/static/6.3.20485/js/lib/fingerprintjs-3.3.3.min.js
|
52.84.151.45
|
||
|
https://zoom.us/https://zoom.com/https://zoom.com.cn/https://zoomgov.com/://https:///
|
unknown
|
||
|
http://www.opensource.org/licenses/mit-license.php)
|
unknown
|
||
|
https://support.zoom.us/hc/pt-br/articles/201362023-System-Requirements
|
unknown
|
||
|
https://cdn.cookielaw.org/consent/b0bfa2ae-4058-4aef-8632-a5281ce4464a/03b083f6-168d-47aa-95ab-f1c0fbc62fe1/en.json
|
104.19.177.52
|
||
|
https://fingerprintjs.com)
|
unknown
|
||
|
https://support.zoom.us/hc/fr/articles/201362023-System-Requirements
|
unknown
|
||
|
https://zoom.us/phonesystem
|
unknown
|
||
|
https://log-gateway.zoom.us/nws/join/logger/wjmf
|
134.224.0.54
|
||
|
https://us02web.zoom.us/j/88257733758?pwd=UkFtUjRWaGtlTTNTb3NZMHdmbmRNdz09
|
170.114.52.3
|
||
|
https://zoom.com/
|
unknown
|
||
|
https://support.zoom.us/hc/de/articles/201362023-System-Requirements
|
unknown
|
||
|
https://us02web.zoom.us/launch/download/WTfSO2hLE2Rb7JgFRotOY-Np5LXjrYCNUqYMiEAvOOoum-ihsLxDfYBZW10hGYgnj5IOqHkgzKAQ7R34ymJoCjCCU0DdPU-I14ZTM1lGMJdq9ENCzlXsyrl4juT1OBcL6ERaJMJI86o7N6ODHdFGv6ITCN0NLtr-ZROl2yOuerd7ZdyTNiU5uT0M89n2kWJaSp9199gm1yKkS-MErnWhWm-IOOcxstfHnCMZLIwpr8db2ktQmEgGjCvFnmgy9Ul5U1GVczGsJabAGDipyQ2J1K3DlGanVbaPJvQCEjI8CZIsYsMQLzNb_56wbAFrZZbTV6nCno7ecy6zROwHOjC_qYJmzeyI_KHZVIqFu1hCrpv_rebooYdSL_hB4CV9BzDLphx-TcgAdLE3SPyrMGFGR18LWyqa_bxYvgtGUJf73ebyK-nV-1wdrZtxe3r9x3Rb_1WdJXag.ep4e2FVO2n705Dhu/meeting/71Ex5G83-aCBhG4C7jbxh9sSGyo8ip92-vPG.OCmSDwYjwM3oS5gK/Zoom_launcher.exe
|
170.114.52.3
|
||
|
https://cdn.cookielaw.org/consent/b0bfa2ae-4058-4aef-8632-a5281ce4464a/b0bfa2ae-4058-4aef-8632-a5281ce4464a.json
|
104.19.177.52
|
||
|
https://cdn.cookielaw.org/scripttemplates/otSDKStub.js
|
104.19.177.52
|
||
|
https://zoomgov.com/
|
unknown
|
There are 28 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
us02web.zoom.us
|
170.114.52.3
|
||
|
edge-log-gateway-web-2f8111e8e5387748.elb.us-east-1.amazonaws.com
|
170.114.65.137
|
||
|
us06st3.zoom.us
|
52.84.151.45
|
||
|
st1.zoom.us
|
52.84.151.43
|
||
|
cdn.solvvy.com
|
34.98.108.207
|
||
|
www.google.com
|
172.253.62.103
|
||
|
edge-log-gateway-web-158ad3d115123922.elb.us-east-2.amazonaws.com
|
134.224.0.54
|
||
|
zoom-privacy.my.onetrust.com
|
104.18.32.137
|
||
|
cdn.cookielaw.org
|
104.19.177.52
|
||
|
geolocation.onetrust.com
|
172.64.155.119
|
||
|
fp2e7a.wpc.phicdn.net
|
192.229.211.108
|
||
|
log-gateway.zoom.us
|
unknown
|
There are 2 hidden domains, click here to show them.
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
104.19.177.52
|
cdn.cookielaw.org
|
United States
|
||
|
104.19.178.52
|
unknown
|
United States
|
||
|
134.224.0.54
|
edge-log-gateway-web-158ad3d115123922.elb.us-east-2.amazonaws.com
|
United States
|
||
|
192.168.2.8
|
unknown
|
unknown
|
||
|
192.168.2.4
|
unknown
|
unknown
|
||
|
170.114.65.137
|
edge-log-gateway-web-2f8111e8e5387748.elb.us-east-1.amazonaws.com
|
United States
|
||
|
172.64.155.119
|
geolocation.onetrust.com
|
United States
|
||
|
0.0.0.0
|
unknown
|
unknown
|
||
|
239.255.255.250
|
unknown
|
Reserved
|
||
|
52.84.151.45
|
us06st3.zoom.us
|
United States
|
||
|
104.18.32.137
|
zoom-privacy.my.onetrust.com
|
United States
|
||
|
52.84.151.43
|
st1.zoom.us
|
United States
|
||
|
34.98.108.207
|
cdn.solvvy.com
|
United States
|
||
|
170.114.52.3
|
us02web.zoom.us
|
United States
|
||
|
172.253.62.103
|
www.google.com
|
United States
|
There are 5 hidden IPs, click here to show them.
DOM / HTML
|
URL
|
Malicious
|
|
|---|---|---|
|
about:blank
|