Joe Sandbox Cloud Basic Analysis Report

Loading Joe Sandbox Report ...

Edit tour

Windows Analysis Report
https://mb.relation-client-digitale.fr/t.htm?u=/e/3/40610/11571/592765/r16pjaafsbhppbgmpamfvgfpsifusspivzg/r.aspx

Overview

General Information

Sample URL:https://mb.relation-client-digitale.fr/t.htm?u=/e/3/40610/11571/592765/r16pjaafsbhppbgmpamfvgfpsifusspivzg/r.aspx
Analysis ID:1426713

Detection

Score:1
Range:0 - 100
Whitelisted:false
Confidence:80%

Signatures

HTML page contains hidden URLs or javascript code
HTML title does not match URL
Stores files to the Windows start menu directory

Classification

Process Tree

  • System is w10x64_ra
  • chrome.exe (PID: 7056 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --single-argument https://mb.relation-client-digitale.fr/t.htm?u=/e/3/40610/11571/592765/r16pjaafsbhppbgmpamfvgfpsifusspivzg/r.aspx MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
    • chrome.exe (PID: 6216 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2184 --field-trial-handle=1864,i,7364529417686874660,17713707032481075075,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
  • cleanup

Yara Signatures

No yara matches

Sigma Signatures

No Sigma rule has matched

Snort Signatures

No Snort rule has matched

Joe Sandbox Signatures

Click to jump to signature section

Show All Signature Results

There are no malicious signatures, click here to show all signatures.

Source: https://relation-client-digitale.fr/externalisation-telephonique/?id=ESC-BTP-TAG12&sendid=&nom_prenom=%20&fonction=&email=convenzioni.cclm%40grupposandonato.it&tel=%2b3333258395580&raison_sociale=MDB+FASTHTTP Parser: Base64 decoded: https://relation-client-digitale.fr:443
Source: https://relation-client-digitale.fr/externalisation-telephonique/?id=ESC-BTP-TAG12&sendid=&nom_prenom=%20&fonction=&email=convenzioni.cclm%40grupposandonato.it&tel=%2b3333258395580&raison_sociale=MDB+FASTHTTP Parser: Title: Tlsecrtariat : librez-vous du tlphone et des tches rptes does not match URL
Source: https://relation-client-digitale.fr/externalisation-telephonique/?id=ESC-BTP-TAG12&sendid=&nom_prenom=%20&fonction=&email=convenzioni.cclm%40grupposandonato.it&tel=%2b3333258395580&raison_sociale=MDB+FASTHTTP Parser: No favicon
Source: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LeEOXgkAAAAAEUhu31Ff83Yw4XlHRdDrq7lrEGl&co=aHR0cHM6Ly9yZWxhdGlvbi1jbGllbnQtZGlnaXRhbGUuZnI6NDQz&hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&size=invisible&cb=nki5dqekfh2oHTTP Parser: No favicon
Source: https://relation-client-digitale.fr/externalisation-telephonique/?id=ESC-BTP-TAG12&sendid=&nom_prenom=%20&fonction=&email=convenzioni.cclm%40grupposandonato.it&tel=%2b3333258395580&raison_sociale=MDB+FASTHTTP Parser: No <meta name="author".. found
Source: https://relation-client-digitale.fr/externalisation-telephonique/?id=ESC-BTP-TAG12&sendid=&nom_prenom=%20&fonction=&email=convenzioni.cclm%40grupposandonato.it&tel=%2b3333258395580&raison_sociale=MDB+FASTHTTP Parser: No <meta name="copyright".. found
Source: C:\Program Files\Google\Chrome\Application\chrome.exeDirectory created: C:\Program Files\Google\Chrome\Application\Dictionaries
Source: unknownHTTPS traffic detected: 23.220.189.216:443 -> 192.168.2.16:49772 version: TLS 1.2
Source: unknownHTTPS traffic detected: 23.220.189.216:443 -> 192.168.2.16:49774 version: TLS 1.2
Source: unknownHTTPS traffic detected: 20.114.59.183:443 -> 192.168.2.16:49776 version: TLS 1.2
Source: unknownHTTPS traffic detected: 20.114.59.183:443 -> 192.168.2.16:49777 version: TLS 1.2
Source: unknownTCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknownTCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknownTCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknownTCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknownTCP traffic detected without corresponding DNS query: 192.229.211.108
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownTCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknownTCP traffic detected without corresponding DNS query: 23.220.189.216
Source: unknownTCP traffic detected without corresponding DNS query: 23.220.189.216
Source: unknownTCP traffic detected without corresponding DNS query: 23.220.189.216
Source: unknownTCP traffic detected without corresponding DNS query: 23.220.189.216
Source: unknownTCP traffic detected without corresponding DNS query: 23.220.189.216
Source: unknownTCP traffic detected without corresponding DNS query: 23.220.189.216
Source: unknownTCP traffic detected without corresponding DNS query: 23.220.189.216
Source: unknownTCP traffic detected without corresponding DNS query: 23.220.189.216
Source: unknownTCP traffic detected without corresponding DNS query: 23.220.189.216
Source: unknownTCP traffic detected without corresponding DNS query: 23.220.189.216
Source: unknownTCP traffic detected without corresponding DNS query: 23.220.189.216
Source: unknownTCP traffic detected without corresponding DNS query: 23.220.189.216
Source: unknownTCP traffic detected without corresponding DNS query: 23.220.189.216
Source: unknownTCP traffic detected without corresponding DNS query: 23.220.189.216
Source: unknownTCP traffic detected without corresponding DNS query: 23.220.189.216
Source: unknownTCP traffic detected without corresponding DNS query: 23.220.189.216
Source: unknownTCP traffic detected without corresponding DNS query: 23.220.189.216
Source: unknownTCP traffic detected without corresponding DNS query: 23.220.189.216
Source: unknownTCP traffic detected without corresponding DNS query: 23.220.189.216
Source: unknownTCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknownTCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknownTCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknownTCP traffic detected without corresponding DNS query: 20.189.173.10
Source: unknownTCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknownTCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknownTCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknownTCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknownTCP traffic detected without corresponding DNS query: 20.189.173.10
Source: unknownDNS traffic detected: queries for: mb.relation-client-digitale.fr
Source: unknownNetwork traffic detected: HTTP traffic on port 49708 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49742
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49741
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49740
Source: unknownNetwork traffic detected: HTTP traffic on port 49789 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49800 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49746 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49781 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49720 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49803 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49795 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49739
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49738
Source: unknownNetwork traffic detected: HTTP traffic on port 49717 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49737
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49736
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49735
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49734
Source: unknownNetwork traffic detected: HTTP traffic on port 49772 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49732
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49731
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49730
Source: unknownNetwork traffic detected: HTTP traffic on port 49732 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49711 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49703 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49784 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49728 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49763 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49729
Source: unknownNetwork traffic detected: HTTP traffic on port 49752 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49728
Source: unknownNetwork traffic detected: HTTP traffic on port 49777 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49798 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49714 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49727
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49726
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49725
Source: unknownNetwork traffic detected: HTTP traffic on port 49735 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49724
Source: unknownNetwork traffic detected: HTTP traffic on port 49790 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49723
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49722
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49721
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49720
Source: unknownNetwork traffic detected: HTTP traffic on port 49731 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49712 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49787 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49729 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49748 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49745 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49793 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49688 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49719
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49718
Source: unknownNetwork traffic detected: HTTP traffic on port 49751 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49717
Source: unknownNetwork traffic detected: HTTP traffic on port 49715 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49716
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49715
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49714
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49713
Source: unknownNetwork traffic detected: HTTP traffic on port 49774 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49712
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49711
Source: unknownNetwork traffic detected: HTTP traffic on port 49782 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49799
Source: unknownNetwork traffic detected: HTTP traffic on port 49734 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49710
Source: unknownNetwork traffic detected: HTTP traffic on port 49709 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49798
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49797
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49796
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49795
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49794
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49793
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49792
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49791
Source: unknownNetwork traffic detected: HTTP traffic on port 49726 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49790
Source: unknownNetwork traffic detected: HTTP traffic on port 49740 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49768 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49723 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49796 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49709
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49708
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49707
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49705
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49704
Source: unknownNetwork traffic detected: HTTP traffic on port 49754 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49703
Source: unknownNetwork traffic detected: HTTP traffic on port 49737 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49702
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49789
Source: unknownNetwork traffic detected: HTTP traffic on port 49710 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49787
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49786
Source: unknownNetwork traffic detected: HTTP traffic on port 49779 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49785
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49784
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49783
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49782
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49781
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49780
Source: unknownNetwork traffic detected: HTTP traffic on port 49727 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49704 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49785 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49776 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49799 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49713 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49736 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49791 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49759 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49753 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49779
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49777
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49776
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49775
Source: unknownNetwork traffic detected: HTTP traffic on port 49707 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49774
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49773
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49772
Source: unknownNetwork traffic detected: HTTP traffic on port 49724 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49742 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49780 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49721 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49794 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49802 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49773 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49803
Source: unknownNetwork traffic detected: HTTP traffic on port 49718 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49802
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49768
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49801
Source: unknownNetwork traffic detected: HTTP traffic on port 49739 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49756 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49800
Source: unknownNetwork traffic detected: HTTP traffic on port 49783 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49763
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49761
Source: unknownNetwork traffic detected: HTTP traffic on port 49678 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49702 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49725 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49741 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49719 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49722 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49797 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49801 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49759
Source: unknownNetwork traffic detected: HTTP traffic on port 49738 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49755 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49756
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49755
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49754
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49753
Source: unknownNetwork traffic detected: HTTP traffic on port 49673 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49752
Source: unknownNetwork traffic detected: HTTP traffic on port 49705 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49730 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49751
Source: unknownNetwork traffic detected: HTTP traffic on port 49786 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49761 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49775 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49716 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49748
Source: unknownNetwork traffic detected: HTTP traffic on port 49792 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49746
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49745
Source: unknownHTTPS traffic detected: 23.220.189.216:443 -> 192.168.2.16:49772 version: TLS 1.2
Source: unknownHTTPS traffic detected: 23.220.189.216:443 -> 192.168.2.16:49774 version: TLS 1.2
Source: unknownHTTPS traffic detected: 20.114.59.183:443 -> 192.168.2.16:49776 version: TLS 1.2
Source: unknownHTTPS traffic detected: 20.114.59.183:443 -> 192.168.2.16:49777 version: TLS 1.2
Source: classification engineClassification label: clean1.win@16/48@22/192
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Program Files\Google\Chrome\Application\Dictionaries
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps
Source: unknownProcess created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --single-argument https://mb.relation-client-digitale.fr/t.htm?u=/e/3/40610/11571/592765/r16pjaafsbhppbgmpamfvgfpsifusspivzg/r.aspx
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2184 --field-trial-handle=1864,i,7364529417686874660,17713707032481075075,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2184 --field-trial-handle=1864,i,7364529417686874660,17713707032481075075,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: Window RecorderWindow detected: More than 3 window changes detected
Source: C:\Program Files\Google\Chrome\Application\chrome.exeDirectory created: C:\Program Files\Google\Chrome\Application\Dictionaries
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk

Mitre Att&ck Matrix

ReconnaissanceResource DevelopmentInitial AccessExecutionPersistencePrivilege EscalationDefense EvasionCredential AccessDiscoveryLateral MovementCollectionCommand and ControlExfiltrationImpact
Gather Victim Identity InformationAcquire InfrastructureValid AccountsWindows Management Instrumentation1
Registry Run Keys / Startup Folder		1
Process Injection		3
Masquerading		OS Credential DumpingSystem Service DiscoveryRemote ServicesData from Local System2
Encrypted Channel		Exfiltration Over Other Network MediumAbuse Accessibility Features
CredentialsDomainsDefault AccountsScheduled Task/JobBoot or Logon Initialization Scripts1
Registry Run Keys / Startup Folder		1
Process Injection		LSASS MemoryApplication Window DiscoveryRemote Desktop ProtocolData from Removable Media1
Non-Application Layer Protocol		Exfiltration Over BluetoothNetwork Denial of Service
Email AddressesDNS ServerDomain AccountsAtLogon Script (Windows)Logon Script (Windows)Obfuscated Files or InformationSecurity Account ManagerQuery RegistrySMB/Windows Admin SharesData from Network Shared Drive2
Application Layer Protocol		Automated ExfiltrationData Encrypted for Impact

Screenshots

Thumbnails

This section contains all screenshots as thumbnails, including those not shown in the slideshow.


windows-stand

Antivirus, Machine Learning and Genetic Malware Detection

Initial Sample

No Antivirus matches

Dropped Files

No Antivirus matches

Unpacked PE Files

No Antivirus matches

Domains

SourceDetectionScannerLabelLink
tracking.message-business.com0%VirustotalBrowse
in.message-business.com0%VirustotalBrowse
relation-client-digitale.fr0%VirustotalBrowse
mb.relation-client-digitale.fr0%VirustotalBrowse

URLs

No Antivirus matches

Domains and IPs

Contacted Domains

NameIPActiveMaliciousAntivirus DetectionReputation
analytics.phone-partners.info
54.36.91.62
truefalse
    		unknown
    www.google.com
    		74.125.136.104
    		truefalse
      		high
      tracking.message-business.com
      		217.174.192.20
      		truefalseunknown
      in.message-business.com
      		54.38.64.29
      		truefalseunknown
      relation-client-digitale.fr
      		54.36.91.62
      		truefalseunknown
      mb.relation-client-digitale.fr
      		unknown
      		unknownfalseunknown

      Contacted URLs

      NameMaliciousAntivirus DetectionReputation
      https://relation-client-digitale.fr/externalisation-telephonique/?id=ESC-BTP-TAG12&sendid=&nom_prenom=%20&fonction=&email=convenzioni.cclm%40grupposandonato.it&tel=%2b3333258395580&raison_sociale=MDB+FASTfalse
        		unknown
        about:blankfalse
          		low
          https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LeEOXgkAAAAAEUhu31Ff83Yw4XlHRdDrq7lrEGl&co=aHR0cHM6Ly9yZWxhdGlvbi1jbGllbnQtZGlnaXRhbGUuZnI6NDQz&hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&size=invisible&cb=nki5dqekfh2ofalse
            		high

            World Map of Contacted IPs

            • No. of IPs < 25%
            • 25% < No. of IPs < 50%
            • 50% < No. of IPs < 75%
            • 75% < No. of IPs

            Public IPs

            IPDomainCountryFlagASNASN NameMalicious
            74.125.136.94
            		unknownUnited States
            		15169GOOGLEUSfalse
            1.1.1.1
            		unknownAustralia
            		13335CLOUDFLARENETUSfalse
            54.36.91.62
            		analytics.phone-partners.infoFrance
            		16276OVHFRfalse
            142.250.105.94
            		unknownUnited States
            		15169GOOGLEUSfalse
            54.38.64.29
            		in.message-business.comFrance
            		16276OVHFRfalse
            142.250.9.105
            		unknownUnited States
            		15169GOOGLEUSfalse
            74.125.136.104
            		www.google.comUnited States
            		15169GOOGLEUSfalse
            172.217.215.103
            		unknownUnited States
            		15169GOOGLEUSfalse
            217.174.192.20
            		tracking.message-business.comFrance
            		16128AGARIK-NETWORKAGARIKprovideWEBServersHostinganddedicfalse
            64.233.176.94
            		unknownUnited States
            		15169GOOGLEUSfalse
            142.250.105.139
            		unknownUnited States
            		15169GOOGLEUSfalse
            173.194.219.84
            		unknownUnited States
            		15169GOOGLEUSfalse
            64.233.177.106
            		unknownUnited States
            		15169GOOGLEUSfalse
            64.233.185.113
            		unknownUnited States
            		15169GOOGLEUSfalse
            239.255.255.250
            		unknownReserved
            		unknownunknownfalse
            172.217.215.94
            		unknownUnited States
            		15169GOOGLEUSfalse
            108.177.122.94
            		unknownUnited States
            		15169GOOGLEUSfalse
            172.217.215.95
            		unknownUnited States
            		15169GOOGLEUSfalse

            Private

            IP
            192.168.2.16

            General Information

            Joe Sandbox version:40.0.0 Tourmaline
            Analysis ID:1426713
            Start date and time:2024-04-16 14:12:03 +02:00
            Joe Sandbox product:CloudBasic
            Overall analysis duration:
            Hypervisor based Inspection enabled:false
            Report type:full
            Cookbook file name:defaultwindowsinteractivecookbook.jbs
            Sample URL:https://mb.relation-client-digitale.fr/t.htm?u=/e/3/40610/11571/592765/r16pjaafsbhppbgmpamfvgfpsifusspivzg/r.aspx
            Analysis system description:Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
            Number of analysed new started processes analysed:14
            Number of new started drivers analysed:0
            Number of existing processes analysed:0
            Number of existing drivers analysed:0
            Number of injected processes analysed:0
            Technologies:
            • EGA enabled
            Analysis Mode:stream
            Analysis stop reason:Timeout
            Detection:CLEAN
            Classification:clean1.win@16/48@22/192

            Warnings

            • Exclude process from analysis (whitelisted): svchost.exe
            • Excluded IPs from analysis (whitelisted): 142.250.105.94, 64.233.185.113, 64.233.185.102, 64.233.185.139, 64.233.185.138, 64.233.185.100, 64.233.185.101, 173.194.219.84, 34.104.35.123, 64.233.176.94, 172.217.215.95, 142.250.9.95, 172.253.124.95, 142.250.105.95, 74.125.136.95, 64.233.185.95, 74.125.138.95, 142.251.15.95, 173.194.219.95, 64.233.176.95, 108.177.122.95, 64.233.177.95, 74.125.136.94
            • Excluded domains from analysis (whitelisted): clients2.google.com, accounts.google.com, edgedl.me.gvt1.com, content-autofill.googleapis.com, clientservices.googleapis.com, clients.l.google.com, www.gstatic.com
            • Not all processes where analyzed, report is missing behavior information

            Created / dropped Files

            C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk

            Download File
            Process:C:\Program Files\Google\Chrome\Application\chrome.exe
            File Type:MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Tue Apr 16 11:12:29 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
            Category:dropped
            Size (bytes):2673
            Entropy (8bit):3.981965588480813
            Encrypted:false
            SSDEEP:
            MD5:682131DD4210393F4AD0F1349ABA6AB4
            SHA1:7C1A59E6040311807AD190CD32A937AE41A9B3B0
            SHA-256:4A1AEF026AAFB20329F43BF9CF2394C1D519CC5A87E09EC0C2C2BC4F83311CBF
            SHA-512:E49EC88BFB3DB81A8E6DD2B15613DC5316D01BAC2D2EF9A32DBE8247C7DC8B9F09325E78F34A1E39DB67FE68C2C9BCA96AA47D3D9CBC9C9670BB01BCF2041BE7
            Malicious:false
            Reputation:unknown
            Preview:L..................F.@.. ...$+.,.....\gZ....N.Yr.... w......................1....P.O. .:i.....+00.../C:\.....................1.....FW.J..PROGRA~1..t......O.I.X.a....B...............J.........P.r.o.g.r.a.m. .F.i.l.e.s...@.s.h.e.l.l.3.2...d.l.l.,.-.2.1.7.8.1.....T.1.....CW.V..Google..>......CW.V.X.a....L.....................p+j.G.o.o.g.l.e.....T.1.....CW.V..Chrome..>......CW.V.X.a....M......................8..C.h.r.o.m.e.....`.1.....CW.V..APPLIC~1..H......CW.V.X.a..........................."&.A.p.p.l.i.c.a.t.i.o.n.....n.2. w..;W.+ .CHROME~1.EXE..R......CW.V.X.a...........................H..c.h.r.o.m.e._.p.r.o.x.y...e.x.e.......j...............-.......i..............:.....C:\Program Files\Google\Chrome\Application\chrome_proxy.exe..S.....\.....\.....\.....\.....\.....\.....\.....\.....\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.\.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.*.C.:.\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.F

            C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk

            Download File
            Process:C:\Program Files\Google\Chrome\Application\chrome.exe
            File Type:MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Tue Apr 16 11:12:29 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
            Category:dropped
            Size (bytes):2675
            Entropy (8bit):4.002694563526864
            Encrypted:false
            SSDEEP:
            MD5:6ABB8F11EF4901A5853ADE35109E0896
            SHA1:6810A1C10B3C1EB45BA501D63A7125A500466DBC
            SHA-256:B67351CE10DE7672587C07392F85CA9AD4E8EEC36313E7164039472ACFDD26F6
            SHA-512:2A69B0BBE0656A36236A9F91525FA6B4B10BC583CF46286551F2DE4F264178BFF1C71C04489DAD7BB1E7C2995AF856FE89957E30DA38A404BFE065478C78D7DA
            Malicious:false
            Reputation:unknown
            Preview:L..................F.@.. ...$+.,....%v[Z....N.Yr.... w......................1....P.O. .:i.....+00.../C:\.....................1.....FW.J..PROGRA~1..t......O.I.X.a....B...............J.........P.r.o.g.r.a.m. .F.i.l.e.s...@.s.h.e.l.l.3.2...d.l.l.,.-.2.1.7.8.1.....T.1.....CW.V..Google..>......CW.V.X.a....L.....................p+j.G.o.o.g.l.e.....T.1.....CW.V..Chrome..>......CW.V.X.a....M......................8..C.h.r.o.m.e.....`.1.....CW.V..APPLIC~1..H......CW.V.X.a..........................."&.A.p.p.l.i.c.a.t.i.o.n.....n.2. w..;W.+ .CHROME~1.EXE..R......CW.V.X.a...........................H..c.h.r.o.m.e._.p.r.o.x.y...e.x.e.......j...............-.......i..............:.....C:\Program Files\Google\Chrome\Application\chrome_proxy.exe..S.....\.....\.....\.....\.....\.....\.....\.....\.....\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.\.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.*.C.:.\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.F

            C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk

            Download File
            Process:C:\Program Files\Google\Chrome\Application\chrome.exe
            File Type:MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Oct 6 08:05:01 2023, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
            Category:dropped
            Size (bytes):2689
            Entropy (8bit):4.007299869953192
            Encrypted:false
            SSDEEP:
            MD5:425B642364A57443A56267CE917C4E8E
            SHA1:6E0B661911668B77D1F8C4812616F63FB61C8355
            SHA-256:34A5F8F04C832C9B5258354C3389F23575C89411FC1E73CE6897D5B71B53C74C
            SHA-512:FD46680D77A816C92FBC237432A80D6F69D004FA4503CFCF806EDA972E9647C27B09D1BCE10E97826E29CCDEF591B051F952EB6E9EB7DD94AFE23BCD06CF54F6
            Malicious:false
            Reputation:unknown
            Preview:L..................F.@.. ...$+.,.....Y.04...N.Yr.... w......................1....P.O. .:i.....+00.../C:\.....................1.....FW.J..PROGRA~1..t......O.I.X.a....B...............J.........P.r.o.g.r.a.m. .F.i.l.e.s...@.s.h.e.l.l.3.2...d.l.l.,.-.2.1.7.8.1.....T.1.....CW.V..Google..>......CW.V.X.a....L.....................p+j.G.o.o.g.l.e.....T.1.....CW.V..Chrome..>......CW.V.X.a....M......................8..C.h.r.o.m.e.....`.1.....CW.V..APPLIC~1..H......CW.V.X.a..........................."&.A.p.p.l.i.c.a.t.i.o.n.....n.2. w..;W.+ .CHROME~1.EXE..R......CW.VFW.E...........................H..c.h.r.o.m.e._.p.r.o.x.y...e.x.e.......j...............-.......i..............:.....C:\Program Files\Google\Chrome\Application\chrome_proxy.exe..S.....\.....\.....\.....\.....\.....\.....\.....\.....\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.\.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.*.C.:.\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.F

            C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk

            Download File
            Process:C:\Program Files\Google\Chrome\Application\chrome.exe
            File Type:MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Tue Apr 16 11:12:29 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
            Category:dropped
            Size (bytes):2677
            Entropy (8bit):3.9984180397981963
            Encrypted:false
            SSDEEP:
            MD5:F32338E12510CC7DE8DB8E0EC11DEEB4
            SHA1:7E65F09E739DC40A6A7EBDB49F9B5CCD9BD69CC5
            SHA-256:9A1232848FAE371459DF649BA7B02DE7AEC781F6062CC376A9D2C404735D6FFF
            SHA-512:055F20D587D9A6F20972659BBE22F61D3142D815E144577B2F3E8928A18D2D68946803033E6201133BF2179242BBAF7B559BF9572982E79D655A78203B97E523
            Malicious:false
            Reputation:unknown
            Preview:L..................F.@.. ...$+.,......UZ....N.Yr.... w......................1....P.O. .:i.....+00.../C:\.....................1.....FW.J..PROGRA~1..t......O.I.X.a....B...............J.........P.r.o.g.r.a.m. .F.i.l.e.s...@.s.h.e.l.l.3.2...d.l.l.,.-.2.1.7.8.1.....T.1.....CW.V..Google..>......CW.V.X.a....L.....................p+j.G.o.o.g.l.e.....T.1.....CW.V..Chrome..>......CW.V.X.a....M......................8..C.h.r.o.m.e.....`.1.....CW.V..APPLIC~1..H......CW.V.X.a..........................."&.A.p.p.l.i.c.a.t.i.o.n.....n.2. w..;W.+ .CHROME~1.EXE..R......CW.V.X.a...........................H..c.h.r.o.m.e._.p.r.o.x.y...e.x.e.......j...............-.......i..............:.....C:\Program Files\Google\Chrome\Application\chrome_proxy.exe..S.....\.....\.....\.....\.....\.....\.....\.....\.....\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.\.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.*.C.:.\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.F

            C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk

            Download File
            Process:C:\Program Files\Google\Chrome\Application\chrome.exe
            File Type:MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Tue Apr 16 11:12:29 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
            Category:dropped
            Size (bytes):2677
            Entropy (8bit):3.9855148425326323
            Encrypted:false
            SSDEEP:
            MD5:823FCF8C77D80F3BE6A0BAAF78155F6C
            SHA1:D1BE78E0847096BC37E31A5C6076F1D276DC07C6
            SHA-256:F7C234C75A8666FF7B6FBAACAC63EA702394AF8182B2D4D810FE612EF68E1125
            SHA-512:C8FD4261152B364C8825FCC11BD649EA4B8611CD464229ED010D2C1B9E3CCFE7F61A483D6196D7A9FDF809F2B399243CB8F7418088A7379808DBA4CAF4111353
            Malicious:false
            Reputation:unknown
            Preview:L..................F.@.. ...$+.,......aZ....N.Yr.... w......................1....P.O. .:i.....+00.../C:\.....................1.....FW.J..PROGRA~1..t......O.I.X.a....B...............J.........P.r.o.g.r.a.m. .F.i.l.e.s...@.s.h.e.l.l.3.2...d.l.l.,.-.2.1.7.8.1.....T.1.....CW.V..Google..>......CW.V.X.a....L.....................p+j.G.o.o.g.l.e.....T.1.....CW.V..Chrome..>......CW.V.X.a....M......................8..C.h.r.o.m.e.....`.1.....CW.V..APPLIC~1..H......CW.V.X.a..........................."&.A.p.p.l.i.c.a.t.i.o.n.....n.2. w..;W.+ .CHROME~1.EXE..R......CW.V.X.a...........................H..c.h.r.o.m.e._.p.r.o.x.y...e.x.e.......j...............-.......i..............:.....C:\Program Files\Google\Chrome\Application\chrome_proxy.exe..S.....\.....\.....\.....\.....\.....\.....\.....\.....\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.\.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.*.C.:.\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.F

            C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk

            Download File
            Process:C:\Program Files\Google\Chrome\Application\chrome.exe
            File Type:MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Tue Apr 16 11:12:29 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
            Category:dropped
            Size (bytes):2679
            Entropy (8bit):3.996739857084529
            Encrypted:false
            SSDEEP:
            MD5:29E9236B3A832560BE54662F9A31475A
            SHA1:AA1AECDD3FF1A3C9D53AD21FF90A0433950A3460
            SHA-256:9088BD84A8479B6BC39719F8172D67993873E7436434B76317150424A6200213
            SHA-512:D700183EDB9CC31B8A0176FEC4368BAE455FD9EA855573C1F4C45F948717FD45B00B2D4872E5A46EF05D59CB86B4403D896E76CFCC1E8715AE3B62227CDCAAE7
            Malicious:false
            Reputation:unknown
            Preview:L..................F.@.. ...$+.,.....3LZ....N.Yr.... w......................1....P.O. .:i.....+00.../C:\.....................1.....FW.J..PROGRA~1..t......O.I.X.a....B...............J.........P.r.o.g.r.a.m. .F.i.l.e.s...@.s.h.e.l.l.3.2...d.l.l.,.-.2.1.7.8.1.....T.1.....CW.V..Google..>......CW.V.X.a....L.....................p+j.G.o.o.g.l.e.....T.1.....CW.V..Chrome..>......CW.V.X.a....M......................8..C.h.r.o.m.e.....`.1.....CW.V..APPLIC~1..H......CW.V.X.a..........................."&.A.p.p.l.i.c.a.t.i.o.n.....n.2. w..;W.+ .CHROME~1.EXE..R......CW.V.X.a...........................H..c.h.r.o.m.e._.p.r.o.x.y...e.x.e.......j...............-.......i..............:.....C:\Program Files\Google\Chrome\Application\chrome_proxy.exe..S.....\.....\.....\.....\.....\.....\.....\.....\.....\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.\.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.*.C.:.\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.F

            Chrome Cache Entry: 100

            Download File
            Process:C:\Program Files\Google\Chrome\Application\chrome.exe
            File Type:JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 87x87, components 3
            Category:downloaded
            Size (bytes):4874
            Entropy (8bit):7.796276237413856
            Encrypted:false
            SSDEEP:
            MD5:25BA527FD264B6F1B1584D80D8711517
            SHA1:00805A34BC07BFEDF29863EB7CB8FE14FEFE2B0F
            SHA-256:9909737C8E8D8BDD4A8A8485FCB4EBB04A40427BE62FD12175F1A60A950BC387
            SHA-512:8DDE1CAE23123E5526F949217C7AAF1D8F59D4D18CB62F5C2FF3A29A4674E51B27B2840F1875921C0A3DD5C2CFE97CBAD9CB8E7CB3819FF3A0923E29058F1538
            Malicious:false
            Reputation:unknown
            URL:https://relation-client-digitale.fr/content/uploads/2023/04/picto-souplesse-operationnelle-87.jpg
            Preview:......Exif..II*.................Ducky.......P.....-http://ns.adobe.com/xap/1.0/.<?xpacket begin="." id="W5M0MpCehiHzreSzNTczkc9d"?> <x:xmpmeta xmlns:x="adobe:ns:meta/" x:xmptk="Adobe XMP Core 5.0-c061 64.140949, 2010/12/07-10:57:01 "> <rdf:RDF xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#"> <rdf:Description rdf:about="" xmlns:xmp="http://ns.adobe.com/xap/1.0/" xmlns:xmpMM="http://ns.adobe.com/xap/1.0/mm/" xmlns:stRef="http://ns.adobe.com/xap/1.0/sType/ResourceRef#" xmp:CreatorTool="Adobe Photoshop CS5.1 Macintosh" xmpMM:InstanceID="xmp.iid:2EBA9080CA5611ED9CD8FA014A497798" xmpMM:DocumentID="xmp.did:6B6774ACCA5711ED9CD8FA014A497798"> <xmpMM:DerivedFrom stRef:instanceID="xmp.iid:2EBA907ECA5611ED9CD8FA014A497798" stRef:documentID="xmp.did:2EBA907FCA5611ED9CD8FA014A497798"/> </rdf:Description> </rdf:RDF> </x:xmpmeta> <?xpacket end="r"?>....Adobe.d...............................................................................................................................

            Chrome Cache Entry: 101

            Download File
            Process:C:\Program Files\Google\Chrome\Application\chrome.exe
            File Type:ASCII text, with no line terminators
            Category:downloaded
            Size (bytes):16
            Entropy (8bit):3.75
            Encrypted:false
            SSDEEP:
            MD5:AFB69DF47958EB78B4E941270772BD6A
            SHA1:D9FE9A625E906FF25C1F165E7872B1D9C731E78E
            SHA-256:874809FB1235F80831B706B9E9B903D80BD5662D036B7712CC76F8C684118878
            SHA-512:FD92B98859FFCCFD12AD57830887259F03C7396DA6569C0629B64604CD964E0DF15D695F1A770D2E7F8DF238140F0E6DA7E7D176B54E31C3BB75DDE9B9127C45
            Malicious:false
            Reputation:unknown
            URL:https://content-autofill.googleapis.com/v1/pages/ChVDaHJvbWUvMTE3LjAuNTkzOC4xMzISEAks7dN_4pqyABIFDVNaR8U=?alt=proto
            Preview:CgkKBw1TWkfFGgA=

            Chrome Cache Entry: 103

            Download File
            Process:C:\Program Files\Google\Chrome\Application\chrome.exe
            File Type:ASCII text, with very long lines (1601)
            Category:downloaded
            Size (bytes):65842
            Entropy (8bit):5.4886020760485446
            Encrypted:false
            SSDEEP:
            MD5:A3A7245D6DAF7D31D2069C0BA05879DD
            SHA1:EC1BF464889E71AEC1CED6D8361A26C76E4A1460
            SHA-256:D7FC375178C93A2FC15FD888E30170EEDF4EF3D04497E7F951AB7BFE0C921693
            SHA-512:5E308518FA6DCA39224605025EF3FC55116602436FF44958BADDAEA9DC41FBE319F7EC8B56FF94664D1D136412EC0ECDB377D121778BC9D2F5DAC6B4F930C91A
            Malicious:false
            Reputation:unknown
            URL:https://analytics.phone-partners.info/matomo.js
            Preview:/*!!. * Matomo - free/libre analytics platform. *. * JavaScript tracking client. *. * @link https://piwik.org. * @source https://github.com/matomo-org/matomo/blob/master/js/piwik.js. * @license https://piwik.org/free-software/bsd/ BSD-3 Clause (also in js/LICENSE.txt). * @license magnet:?xt=urn:btih:c80d50af7d3db9be66a4d0a86db0286e4fd33292&dn=bsd-3-clause.txt BSD-3-Clause. */.;if(typeof _paq!=="object"){_paq=[]}if(typeof window.Matomo!=="object"){window.Matomo=window.Piwik=(function(){var r,b={},z={},J=document,g=navigator,ab=screen,W=window,h=W.performance||W.mozPerformance||W.msPerformance||W.webkitPerformance,t=W.encodeURIComponent,V=W.decodeURIComponent,k=unescape,L=[],H,u,al=[],y=0,af=0,X=0,m=false;function p(at){try{return V(at)}catch(au){return unescape(at)}}function M(au){var at=typeof au;return at!=="undefined"}function C(at){return typeof at==="function"}function Z(at){return typeof at==="object"}function x(at){return typeof at==="string"||at instanceof String}function ak(at)

            Chrome Cache Entry: 104

            Download File
            Process:C:\Program Files\Google\Chrome\Application\chrome.exe
            File Type:TrueType Font data, 16 tables, 1st "GPOS", 15 names, Microsoft, language 0x409
            Category:downloaded
            Size (bytes):73332
            Entropy (8bit):6.061867823999902
            Encrypted:false
            SSDEEP:
            MD5:24B516C266D7341C954CB2918F1C8F38
            SHA1:542498221D97BEE5BDBCCF86EE8890BF8E8005C9
            SHA-256:D7F0B7F2570F2F28B504DA1181B4D71B1420B10BE2C4FD690927F1C8EE3B19C3
            SHA-512:E8D26A275D257DCE57CD05DE36F6477A974757068FE2B130EA2B11B9F28AFACA14261C20EF16030554560A42EE3C4BBD42F40FC9B41D5F716495A896A4719326
            Malicious:false
            Reputation:unknown
            URL:https://relation-client-digitale.fr/content/themes/pp-landing/dist/fonts/Lato-Bold.ttf
            Preview:............GPOS.G1... .....GSUBU.T[...p....OS/2..}........`cmap.v.....l...tcvt .......\....fpgmrZr@........gasp............glyf...%..7h....head...G.......6hhea.......8...$hmtxR.NQ...h...8loca..........(maxp........... nameQq:r.......Rpost.%g;.......^prep...........K......................._.....".-.9.................V...+.O.I................................................................................_.<..........^p.........O.....R.................c ..#D ..#p..E .(`f .UX..%a..Ec#b..#D.....+.....+.....+Y..(.ERD.....+....$.......x.......x..........................@.`J........tyPL. .....J.z...... .............. .........8.p..DFLT..latn....................................case.2case.2liga.,liga.,sups.&sups.&.....................N.&.................{.t.u.....................................O.....L.....I.........................................C.j.q.v.....................................`...T.@.........~.......1.D.S.[.a.~.......... . . . " & 0 : D .!"!&"."."."."."."+"H"`"e%.&i..........

            Chrome Cache Entry: 105

            Download File
            Process:C:\Program Files\Google\Chrome\Application\chrome.exe
            File Type:ASCII text, with very long lines (445), with no line terminators
            Category:downloaded
            Size (bytes):445
            Entropy (8bit):4.850616425076801
            Encrypted:false
            SSDEEP:
            MD5:9746557C9B68C0C1492458AD661CDD46
            SHA1:21922C2E5969F9BFF2CCC5DFA68D51B17B2D75BC
            SHA-256:E062C329656F60FB9ECD4FC2BF3CE9C70D73F9101BED7928B3B5C079E691E56B
            SHA-512:2C4D9CAD7EFD8A0D6971CF92E11209905D29DC81CA082AC29FE41F91922E0F339BF131D5B918005E3E4CE6EF23D6F9BB9728AA6F2F2C27BCAFDC4F1ADCB263C7
            Malicious:false
            Reputation:unknown
            URL:https://relation-client-digitale.fr/content/plugins/gutemberg-blocks/dist/main.js?ver=6.4.3
            Preview:!function(){function e(){var e=document.querySelectorAll(".accordeon");e&&e.forEach(e=>{var o=e.querySelector(".accordeon__header");let n=e.querySelector(".accordeon__content");o.addEventListener("click",function(e){e.stopPropagation(),e.preventDefault(),console.log("click"),setTimeout(()=>{n.classList.toggle("show")},.01),console.log(n)})})}window.addEventListener("resize",e),document.addEventListener("DOMContentLoaded",function(){e()})}();

            Chrome Cache Entry: 107

            Download File
            Process:C:\Program Files\Google\Chrome\Application\chrome.exe
            File Type:JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 87x87, components 3
            Category:dropped
            Size (bytes):7847
            Entropy (8bit):7.893708377876514
            Encrypted:false
            SSDEEP:
            MD5:1528F6D02F3C8D136086F913DD4698CA
            SHA1:0E5DB634770FBE44D4FDAC5AFA5509E1CDBDDFA4
            SHA-256:98A62C48FF766898A50E58EA02B99CFDFC97A7B7EA8ABC3593885DE2FD823C6B
            SHA-512:AA185D10A48773AB805F289025326ABB229B2026E20316EDFADF8591CFDCA9A8F264B74FB1BC9070991CD02A33EA154B8C648D576C1972810C202E651AC9A597
            Malicious:false
            Reputation:unknown
            Preview:......Exif..II*.................Ducky.......d.....qhttp://ns.adobe.com/xap/1.0/.<?xpacket begin="." id="W5M0MpCehiHzreSzNTczkc9d"?> <x:xmpmeta xmlns:x="adobe:ns:meta/" x:xmptk="Adobe XMP Core 5.0-c061 64.140949, 2010/12/07-10:57:01 "> <rdf:RDF xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#"> <rdf:Description rdf:about="" xmlns:xmpMM="http://ns.adobe.com/xap/1.0/mm/" xmlns:stRef="http://ns.adobe.com/xap/1.0/sType/ResourceRef#" xmlns:xmp="http://ns.adobe.com/xap/1.0/" xmpMM:OriginalDocumentID="xmp.did:14B4E3403E2068118F62B6BA0FD798D0" xmpMM:DocumentID="xmp.did:89BA3EF4C13A11ED9AE79728122F5151" xmpMM:InstanceID="xmp.iid:89BA3EF3C13A11ED9AE79728122F5151" xmp:CreatorTool="Adobe Photoshop CS5.1 Macintosh"> <xmpMM:DerivedFrom stRef:instanceID="xmp.iid:14B4E3403E2068118F62B6BA0FD798D0" stRef:documentID="xmp.did:14B4E3403E2068118F62B6BA0FD798D0"/> </rdf:Description> </rdf:RDF> </x:xmpmeta> <?xpacket end="r"?>....Adobe.d...........................................................

            Chrome Cache Entry: 108

            Download File
            Process:C:\Program Files\Google\Chrome\Application\chrome.exe
            File Type:ASCII text, with very long lines (14304)
            Category:downloaded
            Size (bytes):36896
            Entropy (8bit):4.641665894780328
            Encrypted:false
            SSDEEP:
            MD5:C46FE2DADFB3EE537ECF835828837495
            SHA1:141FD87F4A093FD766A249CEA43175FE17E0C7A2
            SHA-256:A5A00318861B07A92BF500695139EB8815E1139E299A87C086AF68E995B5DDF0
            SHA-512:909DD04EB733AD08A4F6B72FFD62B607374122B37D832D67BD74049926920FE889EA4467732E4FA7B8810DCE8F6CCC31335F1CDFBC4E58DC452735C61D492582
            Malicious:false
            Reputation:unknown
            URL:https://relation-client-digitale.fr/content/plugins/gutemberg-blocks/build/blocks/accordion/style-index.css?ver=0.1.0
            Preview:/*!********************************************************************************************************************************************************************************************************************************************************!*\. !*** css ./node_modules/css-loader/dist/cjs.js??ruleSet[1].rules[3].use[1]!./node_modules/postcss-loader/dist/cjs.js??ruleSet[1].rules[3].use[2]!./node_modules/sass-loader/dist/cjs.js??ruleSet[1].rules[3].use[3]!./src/blocks/accordion/style.scss ***!. \********************************************************************************************************************************************************************************************************************************************************/..wp-block-pp-accordion {. display: flex;. flex-flow: column;.}.@media screen and (max-width: 640px) {. .wp-block-pp-accordion {. width: 100%;. }.}..wp-block-pp-accordion:nth-of-type(1) .accordeon {. background-color: #A5C2DA;.}..wp

            Chrome Cache Entry: 109

            Download File
            Process:C:\Program Files\Google\Chrome\Application\chrome.exe
            File Type:ASCII text, with very long lines (554)
            Category:downloaded
            Size (bytes):510578
            Entropy (8bit):5.695280300193632
            Encrypted:false
            SSDEEP:
            MD5:E9CCB3DBDE79BA5FFDF9CAD4B32D59FD
            SHA1:3A8CD67ADC7C885BDF683F1E7F491E6A4A50679F
            SHA-256:8F2C6777C7CCC01AB67290FA8ACD5A4C4866BE64129F39DFAEB9197DFA15E137
            SHA-512:5CA7C8439030C9B4B966760C660640A094B0D6E30E10DF85D7B900C6F9108B0E309298ED93C006634BB3F437BAB3CFF1B83A5D1B18C666C04346F0856294C461
            Malicious:false
            Reputation:unknown
            URL:https://www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js
            Preview:(function(){/*.. Copyright The Closure Library Authors.. SPDX-License-Identifier: Apache-2.0.*/./*.. Copyright 2005, 2007 Bob Ippolito. All Rights Reserved.. Copyright The Closure Library Authors.. SPDX-License-Identifier: MIT.*/./*. Copyright The Closure Library Authors.. SPDX-License-Identifier: Apache-2.0.*/./*.. SPDX-License-Identifier: Apache-2.0.*/.var y=function(){return[function(E,X,B,M,c,v,Y,I,h,J,F,a,C,R,P){return E+4>>3==(E-8<<2>=(R=[1,"F",22],E)&&(E+2&12)<E&&(M=u[32](4,B[R[1]]),P=A[16](32,0,X,B[R[1]],M)),R[0])&&(M=void 0===M?null:M,Y=[3,341,278],c=d[46](16,21,X,u[31](32,B)),J=e[48](7,Y[0],X,u[31](35,X),u[31](28,Y[R[0]])),I=g[27](77,15,u[31](29,X),X,u[31](33,438)),v=u[31](38,Y[2]),a=A[32](R[2],l[13](2,d[9](48,36),X),[u[7](24,v),u[31](34,X)]),C=[c,J,I,a],null!=M&&(h=A[8](73),F=A[8](72),C=[W[30](8,h,u[31](28,B),u[31](37,0))].concat(C,[W[30](8,.F,R[0],R[0]),h,e[39](12,M,X),F])),P=C),P}]}(),g=function(){return[function(E,X,B,M,c,v){return 3<=((((E^(v=[7,"W",2],19))&v[0]||(this[v

            Chrome Cache Entry: 110

            Download File
            Process:C:\Program Files\Google\Chrome\Application\chrome.exe
            File Type:PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced
            Category:dropped
            Size (bytes):2228
            Entropy (8bit):7.82817506159911
            Encrypted:false
            SSDEEP:
            MD5:EF9941290C50CD3866E2BA6B793F010D
            SHA1:4736508C795667DCEA21F8D864233031223B7832
            SHA-256:1B9EFB22C938500971AAC2B2130A475FA23684DD69E43103894968DF83145B8A
            SHA-512:A0C69C70117C5713CAF8B12F3B6E8BBB9CDAF72768E5DB9DB5831A3C37541B87613C6B020DD2F9B8760064A8C7337F175E7234BFE776EEE5E3588DC5662419D9
            Malicious:false
            Reputation:unknown
            Preview:.PNG........IHDR...0...0.....W.......gAMA......a.... cHRM..z&..............u0...`..:....p..Q<....bKGD.......C......pHYs.................IDATh...P....=..8.....Nx. ..PlP8..;.C.1iL#6...*.Z..!......3.po .o.L.i.I..1fl..4..ujL&6$...............w...........,Z..z. ~.....\.._.C.eK...g..%..P..L7...96..q....L.....k6...*..,xz.._......B."#...L(n..f..Yb...*.8.;....K)N...H).%.F"Ic.LB.........jG.uD..B....Tm....T..).A.}D.f..3.V.....O.....t_..].x.{o......*....x?!W...j..@..G=Ed.XF.........J..E?../]..?p..W..H..d5% WA+.....)2r..+..'qk8.../HS.[...u..z.P.*....-.A.}.......I .P.....S....|...)..KS4....I.....W...@....S.s..s..$`.X9.....E.x.=.u.*iJ...........k......'...!.a....*+.....(...S..\h....@............I.$..%.2....l......a.|.....U....y.....t..8....TF.o.p.+.@<.g........-.M.....:.@..(.......@......>..=.ofm.WM{...e..,..D.r.......w....T.L.os..T@Rv..;.....9....56<.x...........2.k.1....dd.V.....m..y5../4|...G.p.V.......6...}.....B........5...&..v..yTd.6...../m.K...(.

            Chrome Cache Entry: 111

            Download File
            Process:C:\Program Files\Google\Chrome\Application\chrome.exe
            File Type:JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 517x80, components 3
            Category:dropped
            Size (bytes):7795
            Entropy (8bit):7.838476318958704
            Encrypted:false
            SSDEEP:
            MD5:67CC6C27ECCB74DBC769E6D0212719D3
            SHA1:A56B7AE96254FCDCE5D4E67E576D39B1FBE8A99C
            SHA-256:5E26D9F26A59B7970A58EAF7C185E1C393D36DD880A602FBA57EE54DB21F4317
            SHA-512:9B01D61455E5CF683C14ECBEAF45C30B0AA8BF38344F92C08D50CF2F92CE23CEE29F40BED7EC3EDD02D2687E3A75BF015048F4DF9DD5C434C06EA1AA7EA8D20D
            Malicious:false
            Reputation:unknown
            Preview:......Exif..II*.................Ducky.......P.....-http://ns.adobe.com/xap/1.0/.<?xpacket begin="." id="W5M0MpCehiHzreSzNTczkc9d"?> <x:xmpmeta xmlns:x="adobe:ns:meta/" x:xmptk="Adobe XMP Core 5.0-c061 64.140949, 2010/12/07-10:57:01 "> <rdf:RDF xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#"> <rdf:Description rdf:about="" xmlns:xmp="http://ns.adobe.com/xap/1.0/" xmlns:xmpMM="http://ns.adobe.com/xap/1.0/mm/" xmlns:stRef="http://ns.adobe.com/xap/1.0/sType/ResourceRef#" xmp:CreatorTool="Adobe Photoshop CS5.1 Macintosh" xmpMM:InstanceID="xmp.iid:5D013D71CA2B11ED9CD8FA014A497798" xmpMM:DocumentID="xmp.did:5D013D72CA2B11ED9CD8FA014A497798"> <xmpMM:DerivedFrom stRef:instanceID="xmp.iid:30C4FB4ECA2511ED9CD8FA014A497798" stRef:documentID="xmp.did:5D013D70CA2B11ED9CD8FA014A497798"/> </rdf:Description> </rdf:RDF> </x:xmpmeta> <?xpacket end="r"?>....Adobe.d...............................................................................................................................

            Chrome Cache Entry: 112

            Download File
            Process:C:\Program Files\Google\Chrome\Application\chrome.exe
            File Type:JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 315x66, components 3
            Category:dropped
            Size (bytes):5879
            Entropy (8bit):7.8308796082600045
            Encrypted:false
            SSDEEP:
            MD5:B0D3B71CF8AEE2EE7C52B55ADD1DC2A4
            SHA1:C78EEB75AC4236AD51DC720A58E5CB173FBC5617
            SHA-256:18184A0565AF2F5BB3479648496A8F2050ED34587E409FB2466152552471F544
            SHA-512:21E440F3EE961B0980ED69A07C298C3EAC23794F980C1BE3FA863E232912E6F8E68271280186179CF938A16C14333185D61F21EDB00DFF9E693307887665D77C
            Malicious:false
            Reputation:unknown
            Preview:......Exif..II*.................Ducky.......P.....-http://ns.adobe.com/xap/1.0/.<?xpacket begin="." id="W5M0MpCehiHzreSzNTczkc9d"?> <x:xmpmeta xmlns:x="adobe:ns:meta/" x:xmptk="Adobe XMP Core 5.0-c061 64.140949, 2010/12/07-10:57:01 "> <rdf:RDF xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#"> <rdf:Description rdf:about="" xmlns:xmp="http://ns.adobe.com/xap/1.0/" xmlns:xmpMM="http://ns.adobe.com/xap/1.0/mm/" xmlns:stRef="http://ns.adobe.com/xap/1.0/sType/ResourceRef#" xmp:CreatorTool="Adobe Photoshop CS5.1 Macintosh" xmpMM:InstanceID="xmp.iid:89C2E722CA5711ED9CD8FA014A497798" xmpMM:DocumentID="xmp.did:89C2E723CA5711ED9CD8FA014A497798"> <xmpMM:DerivedFrom stRef:instanceID="xmp.iid:89C2E720CA5711ED9CD8FA014A497798" stRef:documentID="xmp.did:89C2E721CA5711ED9CD8FA014A497798"/> </rdf:Description> </rdf:RDF> </x:xmpmeta> <?xpacket end="r"?>....Adobe.d...............................................................................................................................

            Chrome Cache Entry: 113

            Download File
            Process:C:\Program Files\Google\Chrome\Application\chrome.exe
            File Type:ASCII text, with no line terminators
            Category:downloaded
            Size (bytes):88
            Entropy (8bit):5.071488829007553
            Encrypted:false
            SSDEEP:
            MD5:9DC22D39ACEF22AFB9C8044811890F12
            SHA1:36F9F4F64FC260962670CAD567983B0BF2E63357
            SHA-256:CB144037622525F15B2E86C290C29BCD42BCF75481F9BD8DEB2CFE35F4D700F5
            SHA-512:06414576D7943FAE8DF294B9826F467830F5F26B1E445578787BCBED84D4A9B86F52EE9AD7069249D91D4267B33297752DDD6E0DB7D659999FCCD93414E2197F
            Malicious:false
            Reputation:unknown
            URL:https://content-autofill.googleapis.com/v1/pages/ChVDaHJvbWUvMTE3LjAuNTkzOC4xMzISMwlOr7yrbRvoHxIFDYP3GHgSBQ1zy7uoEgUNOmE8bxIFDYOoWz0SBQ2FNuApEgUNh7J5lQ==?alt=proto
            Preview:Cj4KBw2D9xh4GgAKCw1zy7uoGgQIDRgBCgcNOmE8bxoACgsNg6hbPRoECAkYAQoHDYU24CkaAAoHDYeyeZUaAA==

            Chrome Cache Entry: 114

            Download File
            Process:C:\Program Files\Google\Chrome\Application\chrome.exe
            File Type:HTML document, ASCII text
            Category:downloaded
            Size (bytes):1330
            Entropy (8bit):5.150995012937238
            Encrypted:false
            SSDEEP:
            MD5:4F5ACE318B9B60CE69B28D48403C8DAE
            SHA1:E56197ED016ABB1289310E99E6DDBCB7857BCF24
            SHA-256:980311220E7DC2F854EAD7719736ECB066C27F20BCBC52EF6400CD35F935E5AB
            SHA-512:7036724A1716B48CC59C96023D73D83EC2B691497EBAB6AEC4C1029004C651616CA790CCAFFF42A125785AC7DD67960D038AB71D58CF2809F70CECEA2436CF9D
            Malicious:false
            Reputation:unknown
            URL:https://mb.relation-client-digitale.fr/t.htm?u=/e/3/40610/11571/592765/r16pjaafsbhppbgmpamfvgfpsifusspivzg/r.aspx
            Preview:<html>.<head>.<title>...</title>.<script type="text/javascript"> .// For any abuse request, please send a mail to abuse@message-business.com..// Like you, like any professional ESP, we do our best efforts to block any spamvertised usage of our service..// Rather than inserting this domain or the one written above in any domain blacklist (URIBL, SURBL, SPAMHAUS, BRBL, ...),.// which will force us to create a new domain to continue serving the 99.9% remaining "respectfull" customers.// Please send a mail to alert us on this abuse. Thanks in advance..var loc = window.location.href;..// 2019-06-26 window.location = "http://tracking.message-business.com" + loc.substring(loc.indexOf('?') + 3) + '?h=' + window.location.hostname; ..// 2022-10-13 window.location = "https://services.message-business.com/v3/tracking" + loc.substring(loc.indexOf('?') + 3);..// 2022-10-14 window.location = "https://tracking.message-business.com" + loc.substring(loc.indexOf('?') + 3) + '?h=' + window.location.hos

            Chrome Cache Entry: 117

            Download File
            Process:C:\Program Files\Google\Chrome\Application\chrome.exe
            File Type:ASCII text
            Category:downloaded
            Size (bytes):10677
            Entropy (8bit):4.926317469194134
            Encrypted:false
            SSDEEP:
            MD5:EDC42852683A037481E7C6C45DC04573
            SHA1:859A6305B0DA37BB3EE6B3229A9646CDB1BED7A1
            SHA-256:1DF700BB5732833A8D9B74DDF2E4F7CBC77460FDA01328F671022B73D1B1E153
            SHA-512:9BE635F1DE53C85664283A612D31989E60E18E95FF5F9D4DCCD43AAB8041F24E670B6828B383EBB3D04B84DB0DC3FAD0F2FE1782725B38E56C33A95D4951F527
            Malicious:false
            Reputation:unknown
            URL:https://relation-client-digitale.fr/content/themes/pp-landing/dist/css/woocommerce.css?ver=1.0.0
            Preview:/*.Theme Name: _s..WooCommerce styles override.*/../**. * WooCommerce color variables. */../**. * Imports. */../**. * Shop tables. */../**. * Shop tables. */..table.shop_table_responsive thead {. display: none;.}..table.shop_table_responsive tbody th {. display: none;.}..table.shop_table_responsive tr td {. display: block;. text-align: right;. clear: both;.}..table.shop_table_responsive tr td:before {. content: attr(data-title) ": ";. float: left;.}..table.shop_table_responsive tr td.product-remove a {. text-align: left;.}..table.shop_table_responsive tr td.product-remove:before {. display: none;.}..table.shop_table_responsive tr td.actions:before,.table.shop_table_responsive tr td.download-actions:before {. display: none;.}..table.shop_table_responsive tr td.download-actions .button {. display: block;. text-align: center;.}..@media screen and (min-width: 48em) {. table.shop_table_responsive thead {. display: table-header-group;. }.. table.shop_table_responsive tbody

            Chrome Cache Entry: 119

            Download File
            Process:C:\Program Files\Google\Chrome\Application\chrome.exe
            File Type:JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 87x87, components 3
            Category:dropped
            Size (bytes):3739
            Entropy (8bit):7.683847224704604
            Encrypted:false
            SSDEEP:
            MD5:F7CC53ED4E4C850C2665F7E7FF7E735D
            SHA1:1ABF30B7671E80EFC784DB2EE69235E4C65E49BB
            SHA-256:7939F69BD9FBDB96615FBF2528B647CA3502390A9042EDB2F7B61282ACF04285
            SHA-512:B0A247983BF199E0A8370CFBB4CFF1AE50702C81D44E5C9CCC5A62BE5DC7FBDBE75CA3075D4E36658D8C0318B823F18DA1340EC9F314458931DD70CCFBC9FFBF
            Malicious:false
            Reputation:unknown
            Preview:......Exif..II*.................Ducky.......P.....-http://ns.adobe.com/xap/1.0/.<?xpacket begin="." id="W5M0MpCehiHzreSzNTczkc9d"?> <x:xmpmeta xmlns:x="adobe:ns:meta/" x:xmptk="Adobe XMP Core 5.0-c061 64.140949, 2010/12/07-10:57:01 "> <rdf:RDF xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#"> <rdf:Description rdf:about="" xmlns:xmp="http://ns.adobe.com/xap/1.0/" xmlns:xmpMM="http://ns.adobe.com/xap/1.0/mm/" xmlns:stRef="http://ns.adobe.com/xap/1.0/sType/ResourceRef#" xmp:CreatorTool="Adobe Photoshop CS5.1 Macintosh" xmpMM:InstanceID="xmp.iid:6B6774B3CA5711ED9CD8FA014A497798" xmpMM:DocumentID="xmp.did:6B6774B4CA5711ED9CD8FA014A497798"> <xmpMM:DerivedFrom stRef:instanceID="xmp.iid:6B6774B1CA5711ED9CD8FA014A497798" stRef:documentID="xmp.did:6B6774B2CA5711ED9CD8FA014A497798"/> </rdf:Description> </rdf:RDF> </x:xmpmeta> <?xpacket end="r"?>....Adobe.d...............................................................................................................................

            Chrome Cache Entry: 120

            Download File
            Process:C:\Program Files\Google\Chrome\Application\chrome.exe
            File Type:ASCII text, with very long lines (56398), with no line terminators
            Category:downloaded
            Size (bytes):56398
            Entropy (8bit):5.907604034780877
            Encrypted:false
            SSDEEP:
            MD5:EB4BC511F79F7A1573B45F5775B3A99B
            SHA1:D910FB51AD7316AA54F055079374574698E74B35
            SHA-256:7859A62E04B0ACB06516EB12454DE6673883ECFAEAED6C254659BCA7CD59C050
            SHA-512:EC9BDF1C91B6262B183FD23F640EAC22016D1F42DB631380676ED34B962E01BADDA91F9CBDFA189B42FE3182A992F1B95A7353AF41E41B2D6E1DAB17E87637A0
            Malicious:false
            Reputation:unknown
            URL:https://www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/styles__ltr.css
            Preview:.goog-inline-block{position:relative;display:-moz-inline-box;display:inline-block}* html .goog-inline-block{display:inline}*:first-child+html .goog-inline-block{display:inline}.recaptcha-checkbox{border:none;font-size:1px;height:28px;margin:4px;width:28px;overflow:visible;outline:0;vertical-align:text-bottom}.recaptcha-checkbox-border{-webkit-border-radius:2px;-moz-border-radius:2px;border-radius:2px;background-color:#fff;border:2px solid #c1c1c1;font-size:1px;height:24px;position:absolute;width:24px;z-index:1}.recaptcha-checkbox-borderAnimation{background-image:url(data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAFQAAANICAYAAABZl8i8AAAABmJLR0QA/wD/AP+gvaeTAAAACXBIWXMAAABIAAAASABGyWs+AAAACXZwQWcAAABUAAADSAC4K4y8AAA4oElEQVR42u2dCZRV1ZX3q5iE4IQIiKQQCKBt0JLEIUZwCCk7pBNFiRMajZrIl9aOLZ8sY4CWdkDbT2McooaAEmNixFhpaYE2dCiLScWiQHCgoGQoGQuhGArKKl7V+c5/n33fO/V4w733nVuheXuv9V/rrnvP2Xud3zvTPee+ewsKxMTExMTExMTExMTExMTExMTExMTExMTExMTExMTExMTExMTExMTExMTExMTExMTExMTExP4OdtlT6ztAbRWvvLy8A3QkwxzH6tBGMMexI

            Chrome Cache Entry: 122

            Download File
            Process:C:\Program Files\Google\Chrome\Application\chrome.exe
            File Type:ASCII text, with very long lines (15993), with no line terminators
            Category:downloaded
            Size (bytes):15993
            Entropy (8bit):4.9623755362709545
            Encrypted:false
            SSDEEP:
            MD5:2C638582567DB7E1B674E69F310B582E
            SHA1:11BD4E8014B02C7E3810325FEFF48E9FA3B32EC6
            SHA-256:20639ABB54A5A6093713A23F4BDBA43762B2877C04E8858C42DBDD661EA172DC
            SHA-512:1E0898518B8B427AA5BC8C4CBC754FA7860A54914D6380FAD4F92BD8F4398F6C0C927463C50ECE4A920AC91E5948715D04A6ADC6D42B06AA62E9179495189B01
            Malicious:false
            Reputation:unknown
            URL:https://relation-client-digitale.fr/content/uploads/complianz/css/banner-1-optin.css?v=12
            Preview:input[type="checkbox"].cmplz-category { width: initial; -webkit-appearance: checkbox;}input[type="checkbox"].cmplz-category:checked::before { content: '';}.cmplz-cookiebanner { box-sizing: border-box;}:root { --cmplz_banner_width: 560px; --cmplz_banner_background_color: #ffffff; --cmplz_banner_border_color: #f2f2f2; --cmplz_banner_border_width: 0px 0px 0px 0px ; --cmplz_banner_border_radius: 12px 12px 12px 12px; --cmplz_banner_margin: 10px; --cmplz_categories-height: 163px; --cmplz_title_font_size: 15px; --cmplz_text_line_height: calc(var(--cmplz_text_font_size) * 1.5); --cmplz_text_color: #222222; --cmplz_hyperlink_color: #1E73BE; --cmplz_text_font_size: 12px; --cmplz_link_font_size: 12px; --cmplz_category_body_font_size: 12px; --cmplz_button_accept_background_color: #f6b210; --cmplz_button_accept_border_color: #f6b210; --cmplz_button_accept_text_color: #ffffff; --cmplz_button_deny_background_color: #f9f9f9; --cmplz_button_deny_border_color: #f2f2f2; --cmplz_button_deny_text_color: #2

            Chrome Cache Entry: 123

            Download File
            Process:C:\Program Files\Google\Chrome\Application\chrome.exe
            File Type:ASCII text, with very long lines (57196)
            Category:downloaded
            Size (bytes):110147
            Entropy (8bit):4.920389651812489
            Encrypted:false
            SSDEEP:
            MD5:0234D0A7685AEFA6FD06041FBD602928
            SHA1:CBCBA60AA82286DD1F877CB8BD5B5CC047F82CE0
            SHA-256:0085ADFD2D08A45F62A06D8F3F969DDC4A94EBE8D226511DB90AA038F11ED180
            SHA-512:298B4324851F0D9662A48EF2FA74E65CD78FB4BC69191B05E70C254B6CC196719E7F35FE3E882857026FCFA260F0A5B1208E964EE9F42A9DD2E2FED0ACB070D1
            Malicious:false
            Reputation:unknown
            URL:https://relation-client-digitale.fr/cms/wp-includes/css/dist/block-library/style.min.css?ver=6.4.3
            Preview:@charset "UTF-8";.wp-block-archives{box-sizing:border-box}.wp-block-archives-dropdown label{display:block}.wp-block-avatar{line-height:0}.wp-block-avatar,.wp-block-avatar img{box-sizing:border-box}.wp-block-avatar.aligncenter{text-align:center}.wp-block-audio{box-sizing:border-box}.wp-block-audio figcaption{margin-bottom:1em;margin-top:.5em}.wp-block-audio audio{min-width:300px;width:100%}.wp-block-button__link{box-sizing:border-box;cursor:pointer;display:inline-block;text-align:center;word-break:break-word}.wp-block-button__link.aligncenter{text-align:center}.wp-block-button__link.alignright{text-align:right}:where(.wp-block-button__link){border-radius:9999px;box-shadow:none;padding:calc(.667em + 2px) calc(1.333em + 2px);text-decoration:none}.wp-block-button[style*=text-decoration] .wp-block-button__link{text-decoration:inherit}.wp-block-buttons>.wp-block-button.has-custom-width{max-width:none}.wp-block-buttons>.wp-block-button.has-custom-width .wp-block-button__link{width:100%}.wp-bl

            Chrome Cache Entry: 124

            Download File
            Process:C:\Program Files\Google\Chrome\Application\chrome.exe
            File Type:TrueType Font data, 16 tables, 1st "GPOS", 17 names, Microsoft, language 0x409
            Category:downloaded
            Size (bytes):69500
            Entropy (8bit):6.071520171153702
            Encrypted:false
            SSDEEP:
            MD5:D83AB24F5CF2BE8B7A9873DD64F6060A
            SHA1:A001EB827743636E04F8EFA7D4AEEDF0541C46AC
            SHA-256:ABF64CFA14645043A7C33F76435125F8B3DE79C510ADB938A1C16085518D4341
            SHA-512:DD8AE58594748F15DDCA9CCA134EAB12BD571F219C810789127CA6E7A75EE2C70A92F14642391D2C1E8D80721600CDA4BFD548CDB44B0BB6EDA7E0E22859CDB4
            Malicious:false
            Reputation:unknown
            URL:https://relation-client-digitale.fr/content/themes/pp-landing/dist/fonts/Lato-Black.ttf
            Preview:............GPOS.@....!....|GSUBU.T[...l....OS/2..........`cmap.v.....h...tcvt .y.....X....fpgmrZr@........gasp............glyf..B...5.....head...g.......6hhea.1.....4...$hmtxa.>....d...8loca.(hq.......(maxp........... nameV.CM........post.6g].......^prep...........K...................^.....".-.9.................V...P.Z.*...............................@...@.@........................................Y._.<..........^p.......~.Z.....p.................c ..#D ..#p..E .(`f .UX..%a..Ec#b..#D.....+.....+.....+Y..(.ERD.....+....4.......x.......x..........................@.`J........tyPL.@.....J.z...... .............. .........8.p..DFLT..latn....................................case.2case.2liga.,liga.,sups.&sups.&.....................N.&.................{.t.u.....................................O.....L.....I.........................................C.j.q.v.....................................`...T.@.........~.......1.D.S.[.a.~.......... . . . " & 0 : D .!"!&"."."."."."."+"H"`"e%.&i........... ..

            Chrome Cache Entry: 125

            Download File
            Process:C:\Program Files\Google\Chrome\Application\chrome.exe
            File Type:ASCII text, with very long lines (1256), with no line terminators
            Category:downloaded
            Size (bytes):1256
            Entropy (8bit):5.848037595686632
            Encrypted:false
            SSDEEP:
            MD5:8457A877C25AAF4B767241F6861FE65A
            SHA1:FC04B7F0642B07B6C2520BA2FAE28F49B2A3638A
            SHA-256:B9F198C7E28C54654633F2037C4241C3E36001B24E76457E940A40C42D0B46AF
            SHA-512:67955D83A44F3A725F5F5508E307BCFEEECEFBA00F94C96616072501A300A4A281C658699540213B2BF56D6480A0D265F050CCE148B2D6973465B99319995BAD
            Malicious:false
            Reputation:unknown
            URL:https://www.google.com/recaptcha/api.js?render=6LeEOXgkAAAAAEUhu31Ff83Yw4XlHRdDrq7lrEGl
            Preview:/* PLEASE DO NOT COPY AND PASTE THIS CODE. */(function(){var w=window,C='___grecaptcha_cfg',cfg=w[C]=w[C]||{},N='grecaptcha';var gr=w[N]=w[N]||{};gr.ready=gr.ready||function(f){(cfg['fns']=cfg['fns']||[]).push(f);};w['__recaptcha_api']='https://www.google.com/recaptcha/api2/';(cfg['render']=cfg['render']||[]).push('6LeEOXgkAAAAAEUhu31Ff83Yw4XlHRdDrq7lrEGl');w['__google_recaptcha_client']=true;var d=document,po=d.createElement('script');po.type='text/javascript';po.async=true;var m=d.createElement('meta');m.httpEquiv='origin-trial';m.content='Az520Inasey3TAyqLyojQa8MnmCALSEU29yQFW8dePZ7xQTvSt73pHazLFTK5f7SyLUJSo2uKLesEtEa9aUYcgMAAACPeyJvcmlnaW4iOiJodHRwczovL2dvb2dsZS5jb206NDQzIiwiZmVhdHVyZSI6IkRpc2FibGVUaGlyZFBhcnR5U3RvcmFnZVBhcnRpdGlvbmluZyIsImV4cGlyeSI6MTcyNTQwNzk5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=';d.head.prepend(m);po.src='https://www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js';po.crossOrigin='anonymous';po.integrity='sha384-eZG8e4

            Chrome Cache Entry: 126

            Download File
            Process:C:\Program Files\Google\Chrome\Application\chrome.exe
            File Type:ASCII text, with very long lines (2561)
            Category:downloaded
            Size (bytes):2606
            Entropy (8bit):4.978089398388507
            Encrypted:false
            SSDEEP:
            MD5:344750A07D6A8C55A7B41B9424560521
            SHA1:EB03388F57E714E1984647DC9BE694ADEFC18F90
            SHA-256:36D3E65A75FEFB891B0AE577CD9118539D4566E668601D8BBA61E08A7357378A
            SHA-512:177D1D6B306526BE59E829D47527E130C3A4419C6AAF84460CC3A5EF9A62ACDB5AB1AD3E49F887CE5543E27A289DBD9E554DCFF12D527F909B6D84002E571EF7
            Malicious:false
            Reputation:unknown
            URL:https://relation-client-digitale.fr/content/plugins/gutemberg-blocks/dist/frontend.min.css?ver=6.4.3
            Preview:.bb-container .wp-block-columns.alignwide{max-width:1200px;margin:0 auto}@media screen and (max-width: 820px){.bb-container .wp-block-columns.alignwide{padding-left:0;padding-right:0}}.bb-container .wp-block-columns.alignfull{max-width:100%;margin:0 auto}@media screen and (max-width: 820px){.bb-container .wp-block-columns.alignfull{padding-left:0;padding-right:0}}.bb-container .alignwide>.wp-block-columns{max-width:1200px}.bb-container .wp-block-columns{max-width:792px;margin:0 auto}.bb-container p,.bb-container ul{font-size:16px;line-height:24px;margin-bottom:16px;color:#38404f}.bb-container ul{padding-left:19px;font-size:16px;line-height:24px;list-style-type:disc}.bb-container ul li{margin-bottom:16px;list-style:disc}.bb-container ul li::marker{color:#ad2c3d;unicode-bidi:isolate;font-variant-numeric:tabular-nums;text-transform:none;text-indent:0px !important;text-align:start !important;text-align-last:start !important}.bb-container h2{font-family:"Cunia";font-weight:bold;font-size:38

            Chrome Cache Entry: 127

            Download File
            Process:C:\Program Files\Google\Chrome\Application\chrome.exe
            File Type:JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1536x480, components 3
            Category:dropped
            Size (bytes):101103
            Entropy (8bit):7.967521405928393
            Encrypted:false
            SSDEEP:
            MD5:868BB2FE343A110C933DAA70DEEE3388
            SHA1:3623F018A14E73BB07DC9FFAD8346C7492BA3FF5
            SHA-256:3FC571AC3D5AA5F0217645AFB9E9B13718634061E5E82BD2ACCE9E134B71BEED
            SHA-512:558093D5DABCD2FF9F4920AF9057582C2906142E5BC55E7F1333B13B430BC43890D61E6180AE6B7258891887C22F9FFF50FF144D3284129AFDA7B06BB9EDCCC0
            Malicious:false
            Reputation:unknown
            Preview:......JFIF..............Exif..II*................qhttp://ns.adobe.com/xap/1.0/.<?xpacket begin="." id="W5M0MpCehiHzreSzNTczkc9d"?> <x:xmpmeta xmlns:x="adobe:ns:meta/" x:xmptk="Adobe XMP Core 5.0-c061 64.140949, 2010/12/07-10:57:01 "> <rdf:RDF xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#"> <rdf:Description rdf:about="" xmlns:xmpMM="http://ns.adobe.com/xap/1.0/mm/" xmlns:stRef="http://ns.adobe.com/xap/1.0/sType/ResourceRef#" xmlns:xmp="http://ns.adobe.com/xap/1.0/" xmpMM:OriginalDocumentID="xmp.did:0A8011740720681188C6C48310D3EA52" xmpMM:DocumentID="xmp.did:F7C2F2B9DD4A11EDAC7D81E32694B3F1" xmpMM:InstanceID="xmp.iid:F7C2F2B8DD4A11EDAC7D81E32694B3F1" xmp:CreatorTool="Adobe Photoshop CS5.1 Macintosh"> <xmpMM:DerivedFrom stRef:instanceID="xmp.iid:94C2AD824BDE11EDB3378F5809AEFA20" stRef:documentID="xmp.did:B23F9A5A4BDE11EDB3378F5809AEFA20"/> </rdf:Description> </rdf:RDF> </x:xmpmeta> <?xpacket end="r"?>...C.....................................!........'.."#%%%..),($+!$%$..

            Chrome Cache Entry: 128

            Download File
            Process:C:\Program Files\Google\Chrome\Application\chrome.exe
            File Type:PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced
            Category:downloaded
            Size (bytes):4119
            Entropy (8bit):7.949120703870044
            Encrypted:false
            SSDEEP:
            MD5:000BF649CC8F6BF27CFB04D1BCDCD3C7
            SHA1:D73D2F6D74EC6CDCBAE07955592962E77D8AE814
            SHA-256:6BDB369337AC2496761C6F063BFFEA0AA6A91D4662279C399071A468251F51F0
            SHA-512:73D2EA5FFC572C1AE73F37F8F0FF25E945AFEE8E077B6EE42CE969E575CDC2D8444F90848EA1CB4D1C9EE4BD725AEE2B4576AFC25F17D7295A90E1CBFE6EDFD5
            Malicious:false
            Reputation:unknown
            URL:https://relation-client-digitale.fr/cms/wp-includes/images/w-logo-blue-white-bg.png
            Preview:.PNG........IHDR...P...P............IDATx..].xU...[..V..*).Kk...V.k..J]jKEl?...t...!.{.,...E........@....F.%.....B...N.y..w.....I{.o...;.s..3...WH......./.zBp.o,XW.......#Z.f...|mvD..9..F........y..o....1^.743l.......v..#.c.E&.e..hU1.{..........._cZ..We.v.....f.w....(..6|.Y.. I:x..-.&.......D........<.6.6.l....T..)...|....#..$g...VN.......!'/6.w..B.h.}....EV.......k.7" f.}.G.~#..M..+....G....iB......]..?+......'.j.GB..P%......\........../..%...&.8E...".........44.J...1.........S...........d.j..]ni%._..9.{.O?.H..6T.|A.GC..g...U.oDEt,?.0....~....q=.y.~.9.Z......c...v.._....$.0.2...F.9a.L..)..l...2...w...I..&....Vg......H.I..r......./....z.`..+...Z.^U.=..5aBpb..0< ../>.9.c....".I..0.3N,}}....|]Fb...Q.......W.....OQ..y;.....|.37..}.....(c.....X..`xX).;......<5S....>.9..G.:..=..0^.......l_<G......H....C.O.*.....Hk{..{....]Nc..B.8..}%>..w....Z...).....\..>....c..2...&..0'.DZJ.'~{Y....I....?........fR.a......;.<..lRG..n.....Q......Nf.6.

            Chrome Cache Entry: 130

            Download File
            Process:C:\Program Files\Google\Chrome\Application\chrome.exe
            File Type:C source, ASCII text, with very long lines (40430), with no line terminators
            Category:downloaded
            Size (bytes):40430
            Entropy (8bit):5.114654314467137
            Encrypted:false
            SSDEEP:
            MD5:684BA0B36CB26363CF696E27EAC0CF08
            SHA1:574EE20736EF0F3093D9565658FF453CEA82113A
            SHA-256:E48AFA0CA2FDAED77EF3D14202F805AB16829B42E321B71635D538F9E9EFA4E2
            SHA-512:E474E454A6EED1AE1B1120324B7214DF6429E2CC985BF2D16018E5175413D6148717BA47C1DA0D2886F36608F50F6CFD0F6A7C30B08200EC89C7B3BCB580BDF6
            Malicious:false
            Reputation:unknown
            URL:https://relation-client-digitale.fr/content/plugins/complianz-gdpr/cookiebanner/js/complianz.min.js?ver=1711026046
            Preview:"use strict";function cmplz_create_element(e,t){e=document.createElement(e);return e.innerHtml=t,e}function cmplz_add_event(e,t,c){document.addEventListener(e,e=>{e.target.closest(t)&&c(e)})}function cmplz_is_hidden(e){return null===e.offsetParent}function cmplz_html_decode(e){return(new DOMParser).parseFromString(e,"text/html").documentElement.textContent}function cmplzLoadConsentAreaContent(e,i){document.querySelectorAll(".cmplz-consent-area.cmplz-placeholder").forEach(t=>{let c=t.getAttribute("data-category"),n=t.getAttribute("data-service");var o=t.getAttribute("data-post_id"),a=t.getAttribute("data-block_id");if(e===c||i===n){let e=new XMLHttpRequest;e.open("GET",complianz.url+"consent-area/"+o+"/"+a,!0),e.setRequestHeader("Content-type","application/json"),e.send(),t.classList.remove("cmplz-placeholder"),e.onload=function(){t.innerHTML=JSON.parse(e.response),t.querySelectorAll("script").forEach(e=>{cmplz_run_script(e.innerHTML,c,n,"inline",e)})}}})}document.querySelectorAll(".cmp

            Chrome Cache Entry: 131

            Download File
            Process:C:\Program Files\Google\Chrome\Application\chrome.exe
            File Type:HTML document, Unicode text, UTF-8 text, with very long lines (9646), with CR, LF line terminators
            Category:downloaded
            Size (bytes):67559
            Entropy (8bit):5.392157882991289
            Encrypted:false
            SSDEEP:
            MD5:32FF71E532464E3086510E7EFC55EB2D
            SHA1:3A4F709C4F04F82489BF1415185CF38203ED0D09
            SHA-256:2E96271963F8357C57E5FED2559352D33F88F8CB95648A13542C7449B5F86595
            SHA-512:30FC601BAAB8C37F44CB1C8FF7696AC24778A726A2A419A15B7F35CC99605430F4733614906AAE44A1BBCBA4771ED838E459CCBFD87A3A5E6930981C2AABA317
            Malicious:false
            Reputation:unknown
            URL:https://relation-client-digitale.fr/externalisation-telephonique/?id=ESC-BTP-TAG12&sendid=&nom_prenom=%20&fonction=&email=convenzioni.cclm%40grupposandonato.it&tel=%2b3333258395580&raison_sociale=MDB+FAST
            Preview:<!doctype html>.<html lang="fr-FR">.<head>. <meta charset="UTF-8">. <meta name="viewport" content="width=device-width, initial-scale=1">. <link rel="profile" href="https://gmpg.org/xfn/11">. <link. href="\content\themes\pp-landing\dist\fonts\Lato-Black.ttf". rel="preload" as="font". />. <link. href="\content\themes\pp-landing\dist\fonts\Lato-Regular.ttf". rel="preload" as="font". />. <link. href="\content\themes\pp-landing\dist\fonts\Lato-Bold.ttf". rel="preload" as="font". />.. <script src="https://www.google.com/recaptcha/api.js?render=6LeEOXgkAAAAAEUhu31Ff83Yw4XlHRdDrq7lrEGl"></script>.. <meta name='robots' content='noindex, nofollow' />... This site is optimized with the Yoast SEO plugin v22.3 - https://yoast.com/wordpress/plugins/seo/ -->..<title>T.l.secr.tariat : lib.rez-vous du t.l.phone et des t.ches r.p.t.es</title>..<meta name="description" content="B.n.ficiez d&#039;un t.l.secr.tariat efficace et flexibl

            Chrome Cache Entry: 132

            Download File
            Process:C:\Program Files\Google\Chrome\Application\chrome.exe
            File Type:ASCII text, with very long lines (65447)
            Category:downloaded
            Size (bytes):87553
            Entropy (8bit):5.262620498676155
            Encrypted:false
            SSDEEP:
            MD5:826EB77E86B02AB7724FE3D0141FF87C
            SHA1:79CD3587D565AFE290076A8D36C31C305A573D18
            SHA-256:CB6F2D32C49D1C2B25E9FFC9AAAFA3F83075346C01BCD4AE6EB187392A4292CF
            SHA-512:FC79FDB76763025DC39FAC045A215FF155EF2F492A0E9640079D6F089FA6218AF2B3AB7C6EAF636827DEE9294E6939A95AB24554E870C976679C25567AD6374C
            Malicious:false
            Reputation:unknown
            URL:https://relation-client-digitale.fr/cms/wp-includes/js/jquery/jquery.min.js?ver=3.7.1
            Preview:/*! jQuery v3.7.1 | (c) OpenJS Foundation and other contributors | jquery.org/license */.!function(e,t){"use strict";"object"==typeof module&&"object"==typeof module.exports?module.exports=e.document?t(e,!0):function(e){if(!e.document)throw new Error("jQuery requires a window with a document");return t(e)}:t(e)}("undefined"!=typeof window?window:this,function(ie,e){"use strict";var oe=[],r=Object.getPrototypeOf,ae=oe.slice,g=oe.flat?function(e){return oe.flat.call(e)}:function(e){return oe.concat.apply([],e)},s=oe.push,se=oe.indexOf,n={},i=n.toString,ue=n.hasOwnProperty,o=ue.toString,a=o.call(Object),le={},v=function(e){return"function"==typeof e&&"number"!=typeof e.nodeType&&"function"!=typeof e.item},y=function(e){return null!=e&&e===e.window},C=ie.document,u={type:!0,src:!0,nonce:!0,noModule:!0};function m(e,t,n){var r,i,o=(n=n||C).createElement("script");if(o.text=e,t)for(r in u)(i=t[r]||t.getAttribute&&t.getAttribute(r))&&o.setAttribute(r,i);n.head.appendChild(o).parentNode.remove

            Chrome Cache Entry: 134

            Download File
            Process:C:\Program Files\Google\Chrome\Application\chrome.exe
            File Type:Web Open Font Format (Version 2), TrueType, length 15552, version 1.0
            Category:downloaded
            Size (bytes):15552
            Entropy (8bit):7.983966851275127
            Encrypted:false
            SSDEEP:
            MD5:285467176F7FE6BB6A9C6873B3DAD2CC
            SHA1:EA04E4FF5142DDD69307C183DEF721A160E0A64E
            SHA-256:5A8C1E7681318CAA29E9F44E8A6E271F6A4067A2703E9916DFD4FE9099241DB7
            SHA-512:5F9BB763406EA8CE978EC675BD51A0263E9547021EA71188DBD62F0212EB00C1421B750D3B94550B50425BEBFF5F881C41299F6A33BBFA12FB1FF18C12BC7FF1
            Malicious:false
            Reputation:unknown
            URL:https://fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
            Preview:wOF2......<...........<Z.........................d..z..J.`..L.\..<.....<.....^...x.6.$..6. .... ..S..}%.......|....x..[j.E...d..-A...]=sjf$X.o.5......V....i?}.\...;...V......5..mO=,[.B..d'..=..M...q...8..U'..N..G...[..8....Jp..xP...'.?....}.-.1F.C.....%z..#...Q...~.~..3.............r.Xk..v.*.7t.+bw...f..b...q.W..'E.....O..a..HI.....Y.B..i.K.0.:.d.E.Lw....Q..~.6.}B...bT.F.,<./....Qu....|...H....Fk.*-..H..p4.$......{.2.....".T'..........Va.6+.9uv....RW..U$8...p...........H5...B..N..V...{.1....5}p.q6..T...U.P.N...U...!.w..?..mI..8q.}.... >.Z.K.....tq..}.><Ok..w.. ..v....W...{....o...."+#+,..vdt...p.WKK:.p1...3`. 3.......Q.].V.$}.......:.S..bb!I...c.of.2uq.n.MaJ..Cf.......w.$.9C...sj.=...=.Z7...h.w M.D..A.t.....]..GVpL...U(.+.)m..e)..H.}i.o.L...S.r..m..Ko....i..M..J..84.=............S..@......Z.V.E..b...0.....@h>...."$.?....../..?.....?.J.a,..|..d...|`.m5..b..LWc...L...?.G.].i...Q..1.:..LJV.J...bU.2.:\.kt.......t.....k....B..i.z+...........A.....

            Chrome Cache Entry: 135

            Download File
            Process:C:\Program Files\Google\Chrome\Application\chrome.exe
            File Type:JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 315x66, components 3
            Category:dropped
            Size (bytes):5223
            Entropy (8bit):7.78392320587414
            Encrypted:false
            SSDEEP:
            MD5:C0B970D379A64D2DB392796B3953D3F1
            SHA1:55EC454B7542EA484A3402ED9FD26DED59C7C041
            SHA-256:5C7180BD54114227C8A1A27DBABB8646AAFF29AB453189AF6AFD545224ABF4A2
            SHA-512:601AE226A19C7B6A2A92C20C91A66EB89539889546E889443497FE40A695AAB1425DDF3715EB902418ECB2935412319F3C3327717C34BD0E8CE6498FFD9D1032
            Malicious:false
            Reputation:unknown
            Preview:......Exif..II*.................Ducky.......P.....-http://ns.adobe.com/xap/1.0/.<?xpacket begin="." id="W5M0MpCehiHzreSzNTczkc9d"?> <x:xmpmeta xmlns:x="adobe:ns:meta/" x:xmptk="Adobe XMP Core 5.0-c061 64.140949, 2010/12/07-10:57:01 "> <rdf:RDF xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#"> <rdf:Description rdf:about="" xmlns:xmp="http://ns.adobe.com/xap/1.0/" xmlns:xmpMM="http://ns.adobe.com/xap/1.0/mm/" xmlns:stRef="http://ns.adobe.com/xap/1.0/sType/ResourceRef#" xmp:CreatorTool="Adobe Photoshop CS5.1 Macintosh" xmpMM:InstanceID="xmp.iid:89C2E71ECA5711ED9CD8FA014A497798" xmpMM:DocumentID="xmp.did:89C2E71FCA5711ED9CD8FA014A497798"> <xmpMM:DerivedFrom stRef:instanceID="xmp.iid:89C2E71CCA5711ED9CD8FA014A497798" stRef:documentID="xmp.did:89C2E71DCA5711ED9CD8FA014A497798"/> </rdf:Description> </rdf:RDF> </x:xmpmeta> <?xpacket end="r"?>....Adobe.d...............................................................................................................................

            Chrome Cache Entry: 138

            Download File
            Process:C:\Program Files\Google\Chrome\Application\chrome.exe
            File Type:ASCII text
            Category:downloaded
            Size (bytes):27187
            Entropy (8bit):4.99088480738441
            Encrypted:false
            SSDEEP:
            MD5:FCB080651D8C6898CB168B2939CF6781
            SHA1:176895B464E0B971FBB2E0A97710818C96CACC38
            SHA-256:683B688B96E0946A38717C8E02B930805D86D6DA79B42A6666A5D303C2BBE0AC
            SHA-512:95DA96327069EDD1D7508530952F705C3C820D49CD336FE5DE84181EA34D43FCD755734A4E728C1D5DFC65A08821ECD1D87755440059B968547E650F56902E0C
            Malicious:false
            Reputation:unknown
            URL:https://relation-client-digitale.fr/content/themes/pp-landing/dist/css/theme.css?ver=1.0.0
            Preview:/*!.Themosis boilerplate is based on Underscores https://underscores.me/..Underscores is distributed under the terms of the GNU GPL v2 or later...Normalizing styles have been helped along thanks to the fine work of.Nicolas Gallagher and Jonathan Neal https://necolas.github.io/normalize.css/.*/../*--------------------------------------------------------------.>>> TABLE OF CONTENTS:.----------------------------------------------------------------.# Normalize.# Typography.# Elements.# Forms.# Navigation..## Links..## Menus.# Accessibility.# Alignments.# Clearings.# Widgets.# Content..## Posts and pages..## Comments.# Infinite scroll.# Media..## Captions..## Galleries.--------------------------------------------------------------*/...has-primary-color {. color: var(--primary-color);.}...has-secondary-color {. color: var(--secondary-color);.}...has-primary-background-color {. background-color: var(--primary-color);.}...has-secondary-background-color {. background-color: var(--secondary-

            Chrome Cache Entry: 139

            Download File
            Process:C:\Program Files\Google\Chrome\Application\chrome.exe
            File Type:ASCII text, with very long lines (17679)
            Category:downloaded
            Size (bytes):18274
            Entropy (8bit):5.641324572550196
            Encrypted:false
            SSDEEP:
            MD5:92312DFE3B3C5E1A20BC7E8D8158BD9C
            SHA1:7574B3E0548EEBD164BBEBBF3C44A1842469DEF4
            SHA-256:293035AA813B643CF4E54BB31819ACEC2566B82DF8B19E279D7C0D8E0D3AE4FA
            SHA-512:BB6056A556A98CCC0BDA9DFE52E7A72543970B731A9857D071AFA9A95E53DA7A4AA7C7F29664769502BCD7B3E9967F4B1EF7A68EC472E16BDF9F0284FB9E1A1A
            Malicious:false
            Reputation:unknown
            URL:https://www.google.com/js/bg/KTA1qoE7ZDz05UuzGBms7CVmuC34sZ4nnXwNjg065Po.js
            Preview:/* Anti-spam. Want to say hello? Contact (base64) Ym90Z3VhcmQtY29udGFjdEBnb29nbGUuY29t */ (function(){var M=function(J){return J},d=this||self,K=function(J,T){if((J=(T=d.trustedTypes,null),!T)||!T.createPolicy)return J;try{J=T.createPolicy("bg",{createHTML:M,createScript:M,createScriptURL:M})}catch(t){d.console&&d.console.error(t.message)}return J};(0,eval)(function(J,T){return(T=K())&&1===J.eval(T.createScript("1"))?function(t){return T.createScript(t)}:function(t){return""+t}}(d)(Array(7824*Math.random()|0).join("\n")+['(function(){/*',.'',.' SPDX-License-Identifier: Apache-2.0',.'*/',.'var JV=function(J,T){return[function(){return J},(T(function(t){t(J)}),function(){})]},P=function(J,T,t){T[X(t,J,T),TA]=2796},tV=function(J,T){return T[J]<<24|T[(J|0)+1]<<16|T[(J|0)+2]<<8|T[(J|0)+3]},Mm=function(J,T){return k[J](k.prototype,{call:T,document:T,prototype:T,console:T,pop:T,length:T,replace:T,floor:T,parent:T,splice:T,stack:T,propertyIsEnumerable:T})},x=function(J,T){if(J.P)return dK(J,J.

            Chrome Cache Entry: 140

            Download File
            Process:C:\Program Files\Google\Chrome\Application\chrome.exe
            File Type:HTML document, ASCII text
            Category:dropped
            Size (bytes):238
            Entropy (8bit):5.184482755717443
            Encrypted:false
            SSDEEP:
            MD5:B54D0452E2FDB8C0D91C455D1C5495F9
            SHA1:DDD85730B9CB4CB9905B1D7E7643F595D2F33CB8
            SHA-256:F4138D99EC6E17514BB87CEEAD1C1D2A204219C970864FC85BFF00949EE18082
            SHA-512:6883DE3ABB2A7B71CBDE6EDA0854D5B9EC696A0656735843BBB6329007D758B502D2557CB36D5A1CEFC7B4D0AB5DCBC227C88DE9163662741C60F9D561F5A367
            Malicious:false
            Reputation:unknown
            Preview:<HTML>.<HEAD>.<TITLE>HTTP method GET is not supported by this URL</TITLE>.</HEAD>.<BODY BGCOLOR="#FFFFFF" TEXT="#000000">. GSE Default Error -->.<H1>HTTP method GET is not supported by this URL</H1>.<H2>Error 405</H2>.</BODY>.</HTML>.

            Chrome Cache Entry: 141

            Download File
            Process:C:\Program Files\Google\Chrome\Application\chrome.exe
            File Type:JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 315x66, components 3
            Category:downloaded
            Size (bytes):4129
            Entropy (8bit):7.6959459438912425
            Encrypted:false
            SSDEEP:
            MD5:9E2D723DFFD2AB8D20B67F9B5A88DBED
            SHA1:F25FDF5462CAE8C20B1E6710909114B37162439A
            SHA-256:677D24A2C2403BB18E47E304094FD533589453BAFDE75959CD180C03B216C116
            SHA-512:1AE411CE34865B001797334A4450C8C25148DE5DA7CDBF6AC8ADCB8BE5D3C7701DC6CB55BEF7BF59E07616E1BFEA8825261762199F706C750070301A9A6CA520
            Malicious:false
            Reputation:unknown
            URL:https://relation-client-digitale.fr/content/uploads/2023/04/Logo3-thales.jpg
            Preview:......Exif..II*.................Ducky.......<.....-http://ns.adobe.com/xap/1.0/.<?xpacket begin="." id="W5M0MpCehiHzreSzNTczkc9d"?> <x:xmpmeta xmlns:x="adobe:ns:meta/" x:xmptk="Adobe XMP Core 5.0-c061 64.140949, 2010/12/07-10:57:01 "> <rdf:RDF xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#"> <rdf:Description rdf:about="" xmlns:xmp="http://ns.adobe.com/xap/1.0/" xmlns:xmpMM="http://ns.adobe.com/xap/1.0/mm/" xmlns:stRef="http://ns.adobe.com/xap/1.0/sType/ResourceRef#" xmp:CreatorTool="Adobe Photoshop CS5.1 Macintosh" xmpMM:InstanceID="xmp.iid:0629B8DBDACA11ED8BF28104A877BFA2" xmpMM:DocumentID="xmp.did:0629B8DCDACA11ED8BF28104A877BFA2"> <xmpMM:DerivedFrom stRef:instanceID="xmp.iid:0629B8D9DACA11ED8BF28104A877BFA2" stRef:documentID="xmp.did:0629B8DADACA11ED8BF28104A877BFA2"/> </rdf:Description> </rdf:RDF> </x:xmpmeta> <?xpacket end="r"?>....Adobe.d...............................................................................................................................

            Chrome Cache Entry: 142

            Download File
            Process:C:\Program Files\Google\Chrome\Application\chrome.exe
            File Type:very short file (no magic)
            Category:dropped
            Size (bytes):1
            Entropy (8bit):0.0
            Encrypted:false
            SSDEEP:
            MD5:CFCD208495D565EF66E7DFF9F98764DA
            SHA1:B6589FC6AB0DC82CF12099D1C2D40AB994E8410C
            SHA-256:5FECEB66FFC86F38D952786C6D696C79C2DBC239DD4E91B46729D73A27FB57E9
            SHA-512:31BCA02094EB78126A517B206A88C73CFA9EC6F704C7030D18212CACE820F025F00BF0EA68DBF3F3A5436CA63B53BF7BF80AD8D5DE7D8359D0B7FED9DBC3AB99
            Malicious:false
            Reputation:unknown
            Preview:0

            Chrome Cache Entry: 87

            Download File
            Process:C:\Program Files\Google\Chrome\Application\chrome.exe
            File Type:TrueType Font data, 16 tables, 1st "GPOS", 15 names, Microsoft, language 0x409
            Category:downloaded
            Size (bytes):75152
            Entropy (8bit):6.011236726078808
            Encrypted:false
            SSDEEP:
            MD5:122DD68D69FE9587E062D20D9FF5DE2A
            SHA1:E923C72EDA5E50A87E18FF5C71E9EF4B3B6455A3
            SHA-256:E82542AED8293F49FC83C4AAEA566B1F6B4FC7A9AB5DA11E6FB9BC0973B5324B
            SHA-512:30C39F8E242EFD6671B9CA59436DB45EBFFE5CC7F7DBC5A53FB21B399F2A52A9F2E68611B4241163A7DE5CE934AD9DC9C6C9845E80BEA7982AD6B6CDA05DBC61
            Malicious:false
            Reputation:unknown
            URL:https://relation-client-digitale.fr/content/themes/pp-landing/dist/fonts/Lato-Regular.ttf?9d883d540ee2b4de80247a522dd59656
            Preview:............GPOS.A.... ....|GSUBU.T[...p....OS/2.zi.......`cmap.v.....l...tcvt .......\....fpgmrZr@........gasp............glyf. 0...5p....head...#.......6hhea.......8...$hmtx@^]....h...8loca.0.........(maxp........... nameT2=g.......jpost..g........^prep...........K.......................b.....".-.9.................V.....D.C............................................................................z..._.<..........^p.........D.....-.................c ..#D ..#p..E .(`f .UX..%a..Ec#b..#D.....+.....+.....+Y..(.ERD.....+............x.......x.......x..................@.`J........tyPL.@.....J.z...... .............. .........8.p..DFLT..latn....................................case.2case.2liga.,liga.,sups.&sups.&.....................N.&.................{.t.u.....................................O.....L.....I.........................................C.j.q.v.....................................`...T.@.........~.......1.D.S.[.a.~.......... . . . " & 0 : D .!"!&"."."."."."."+"H"`"e%.&i..........

            Chrome Cache Entry: 88

            Download File
            Process:C:\Program Files\Google\Chrome\Application\chrome.exe
            File Type:JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 155x80, components 3
            Category:downloaded
            Size (bytes):10550
            Entropy (8bit):7.924771485399559
            Encrypted:false
            SSDEEP:
            MD5:027128D01EF3674181EF07A5117A135C
            SHA1:FCD5C37E9D7FD8C504690CE2802DBDA07E003C44
            SHA-256:9579401ED1D16ABFC5E2D8FAACB0C4F4EEFC37E80D735305109F0834F19DD3A7
            SHA-512:673A56CF98E9C52F624DA968392DDF446F04410BA94875167B9DD0E13DA25C02FB7911F6F00B7876AA3ED921437D42E3AA2552C40B7CB9015E4D7A60D8C1BACE
            Malicious:false
            Reputation:unknown
            URL:https://relation-client-digitale.fr/content/uploads/2023/04/Logo-IPC-Permanence-2.jpg
            Preview:......Exif..II*.................Ducky.......d.....-http://ns.adobe.com/xap/1.0/.<?xpacket begin="." id="W5M0MpCehiHzreSzNTczkc9d"?> <x:xmpmeta xmlns:x="adobe:ns:meta/" x:xmptk="Adobe XMP Core 5.0-c061 64.140949, 2010/12/07-10:57:01 "> <rdf:RDF xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#"> <rdf:Description rdf:about="" xmlns:xmp="http://ns.adobe.com/xap/1.0/" xmlns:xmpMM="http://ns.adobe.com/xap/1.0/mm/" xmlns:stRef="http://ns.adobe.com/xap/1.0/sType/ResourceRef#" xmp:CreatorTool="Adobe Photoshop CS5.1 Macintosh" xmpMM:InstanceID="xmp.iid:5426FCE9D23E11ED8AB0C957AE305C11" xmpMM:DocumentID="xmp.did:5426FCEAD23E11ED8AB0C957AE305C11"> <xmpMM:DerivedFrom stRef:instanceID="xmp.iid:5426FCE7D23E11ED8AB0C957AE305C11" stRef:documentID="xmp.did:5426FCE8D23E11ED8AB0C957AE305C11"/> </rdf:Description> </rdf:RDF> </x:xmpmeta> <?xpacket end="r"?>....Adobe.d...............................................................................................................................

            Chrome Cache Entry: 91

            Download File
            Process:C:\Program Files\Google\Chrome\Application\chrome.exe
            File Type:Web Open Font Format (Version 2), TrueType, length 15344, version 1.0
            Category:downloaded
            Size (bytes):15344
            Entropy (8bit):7.984625225844861
            Encrypted:false
            SSDEEP:
            MD5:5D4AEB4E5F5EF754E307D7FFAEF688BD
            SHA1:06DB651CDF354C64A7383EA9C77024EF4FB4CEF8
            SHA-256:3E253B66056519AA065B00A453BAC37AC5ED8F3E6FE7B542E93A9DCDCC11D0BC
            SHA-512:7EB7C301DF79D35A6A521FAE9D3DCCC0A695D3480B4D34C7D262DD0C67ABEC8437ED40E2920625E98AAEAFBA1D908DEC69C3B07494EC7C29307DE49E91C2EF48
            Malicious:false
            Reputation:unknown
            URL:https://fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
            Preview:wOF2......;........H..;..........................d..@..J.`..L.T..<.....x.....^...x.6.$..6. ..t. ..I.h|.l....A....b6........(......@e.]...*:..-.0..r.)..hS..h...N.).D.........b.].......^..t?.m{...."84...9......c...?..r3o....}...S]....zbO.../z..{.....~cc....I...#.G.D....#*e.A..b...b`a5P.4........M....v4..fI#X.z,.,...=avy..F.a.\9.P|.[....r.Q@M.I.._.9..V..Q..]......[ {u..L@...]..K......]C....l$.Z.Z...Zs.4........ x.........F.?.7N..].|.wb\....Z{1L#..t....0.dM...$JV...{..oX...i....6.v.~......)|.TtAP&).KQ.]y........'...:.d..+..d..."C.h..p.2.M..e,.*UP..@.q..7..D.@...,......B.n. r&.......F!.....\...;R.?-.i...,7..cb../I...Eg...!X.)5.Aj7...Ok..l7.j.A@B`".}.w.m..R.9..T.X.X.d....S..`XI..1... .$C.H.,.\. ..A(.AZ.................`Wr.0]y..-..K.1.............1.tBs..n.0...9.F[b.3x...*$....T..PM.Z-.N.rS?I.<8eR'.3..27..?;..OLf*.Rj.@.o.W...........j~ATA....vX.N:.3dM.r.)Q.B...4i.f..K.l..s....e.U.2...k..a.GO.}..../.'..%$..ed.*.'..qP....M..j....../.z&.=...q<....-..?.A.%..K..

            Chrome Cache Entry: 92

            Download File
            Process:C:\Program Files\Google\Chrome\Application\chrome.exe
            File Type:JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 87x87, components 3
            Category:downloaded
            Size (bytes):6100
            Entropy (8bit):7.84907731830425
            Encrypted:false
            SSDEEP:
            MD5:9A7498B4C35F813DD844EA18A78A4846
            SHA1:6C4C6A69D74EA4014D8A147965F86026FC0F6CF2
            SHA-256:3CFEEE7152A9B4DC6468C820E5F6202B48927077F7063E23B2DCEF46BA2BCBCB
            SHA-512:7EA49FE20B521105AFA7BD6A2E84754F5B7E95A7C3E55CB2418C3B5D1F184F05673342E6CDD76734060A665AAD4EE1EFE080F8B3CCD7827B06B17B116797B95F
            Malicious:false
            Reputation:unknown
            URL:https://relation-client-digitale.fr/content/uploads/2023/03/telephone-dialogue.jpg
            Preview:......Exif..II*.................Ducky.......d.....qhttp://ns.adobe.com/xap/1.0/.<?xpacket begin="." id="W5M0MpCehiHzreSzNTczkc9d"?> <x:xmpmeta xmlns:x="adobe:ns:meta/" x:xmptk="Adobe XMP Core 5.0-c061 64.140949, 2010/12/07-10:57:01 "> <rdf:RDF xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#"> <rdf:Description rdf:about="" xmlns:xmpMM="http://ns.adobe.com/xap/1.0/mm/" xmlns:stRef="http://ns.adobe.com/xap/1.0/sType/ResourceRef#" xmlns:xmp="http://ns.adobe.com/xap/1.0/" xmpMM:OriginalDocumentID="xmp.did:14B4E3403E2068118F62B6BA0FD798D0" xmpMM:DocumentID="xmp.did:563230DBC15B11ED9AE79728122F5151" xmpMM:InstanceID="xmp.iid:563230DAC15B11ED9AE79728122F5151" xmp:CreatorTool="Adobe Photoshop CS5.1 Macintosh"> <xmpMM:DerivedFrom stRef:instanceID="xmp.iid:14B4E3403E2068118F62B6BA0FD798D0" stRef:documentID="xmp.did:14B4E3403E2068118F62B6BA0FD798D0"/> </rdf:Description> </rdf:RDF> </x:xmpmeta> <?xpacket end="r"?>....Adobe.d...........................................................

            Chrome Cache Entry: 93

            Download File
            Process:C:\Program Files\Google\Chrome\Application\chrome.exe
            File Type:ASCII text, with very long lines (2782), with no line terminators
            Category:downloaded
            Size (bytes):2782
            Entropy (8bit):4.811213160723536
            Encrypted:false
            SSDEEP:
            MD5:78B10B5AB3274275E3AD29A5182C5053
            SHA1:67F4E3E6619D2A1AAC209876D35E1EB74EF703B2
            SHA-256:0D5F949FCF84560D013B596B51856D6BC487BEDC510BC712E82458F00B2506E5
            SHA-512:BBBB3D01A12C471B29A2B0666E0B3BB0DE15A34C915715D43EEA716988BFAB8CCF9F41817D277B0E7219280DA230FC7E145625D780F082B8431F476C2AB2D1EF
            Malicious:false
            Reputation:unknown
            URL:https://relation-client-digitale.fr/content/plugins/complianz-gdpr/assets/css/cookieblocker.min.css?ver=1711026045
            Preview:.cmplz-video.cmplz-iframe-styles{background-color:transparent}.cmplz-video.cmplz-hidden{visibility:hidden !important}.cmplz-blocked-content-notice{display:none}.cmplz-placeholder-parent{height:inherit}.cmplz-optin .cmplz-blocked-content-container .cmplz-blocked-content-notice,.cmplz-optout .cmplz-blocked-content-container .cmplz-blocked-content-notice,.cmplz-optin .cmplz-wp-video .cmplz-blocked-content-notice,.cmplz-optout .cmplz-wp-video .cmplz-blocked-content-notice{display:block}.cmplz-blocked-content-container,.cmplz-wp-video{animation-name:cmplz-fadein;animation-duration:600ms;background:#FFF;border:0;border-radius:3px;box-shadow:0 0 1px 0 rgba(0,0,0,0.5),0 1px 10px 0 rgba(0,0,0,0.15);display:flex;justify-content:center;align-items:center;background-repeat:no-repeat !important;background-size:cover !important;height:inherit;position:relative}.cmplz-blocked-content-container.gmw-map-cover,.cmplz-wp-video.gmw-map-cover{max-height:100%;position:absolute}.cmplz-blocked-content-contain

            Chrome Cache Entry: 95

            Download File
            Process:C:\Program Files\Google\Chrome\Application\chrome.exe
            File Type:ASCII text, with no line terminators
            Category:downloaded
            Size (bytes):102
            Entropy (8bit):4.87377555746297
            Encrypted:false
            SSDEEP:
            MD5:701C50FE2F9D8CFCA61542DEE7684552
            SHA1:952A04F81A291E11F5D4ECD7364A3840412BA65E
            SHA-256:9FC5DFC54DE18E9C98733BBEA6EBDCBC1F01C0B23F985556F24684EE96DC0582
            SHA-512:5CA3C342F4BE563EE68235F32BCB8B25B62215A961B903B3568C496FCAD4508B9408FBDE00C6592085A819826630462863630F888FE73348F13FC037A9AB2C99
            Malicious:false
            Reputation:unknown
            URL:https://www.google.com/recaptcha/api2/webworker.js?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-
            Preview:importScripts('https://www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js');

            Chrome Cache Entry: 96

            Download File
            Process:C:\Program Files\Google\Chrome\Application\chrome.exe
            File Type:ASCII text
            Category:downloaded
            Size (bytes):7938
            Entropy (8bit):4.913044938931814
            Encrypted:false
            SSDEEP:
            MD5:AD344AF4706E2A11E1EB440B27E6DBA0
            SHA1:E6DA9AA9CC45F0E155038D21DB7E0990927867A0
            SHA-256:745C0E59028B37864B706B6FD8AD8EDB7FC401ED5AACC187C4D20974C5B3D87E
            SHA-512:FDEDF7F0ECEE1FF024F3A0D3D5E484820E9629E35568A0655BCB34CB10BEBE0A5A1409E55EFD8CC3B6F8447ED5F68E00BD31B4A37D08A1F65282D6848C882AEE
            Malicious:false
            Reputation:unknown
            URL:https://relation-client-digitale.fr/content/themes/pp-landing/dist/js/theme.min.js?ver=1.0.0
            Preview:./******/ (() => { // webpackBootstrap./******/ .var __webpack_modules__ = ({../***/ "./assets/js/theme.js":./*!****************************!*\. !*** ./assets/js/theme.js ***!. \****************************/./***/ (() => {..// captcha pour les formulaires front.jQuery(document).on('submit', '.captcha-form', function (e) {. e.preventDefault();. var form = jQuery(this);. // var iscontact = jQuery(this).attr('id') =='contact_form';.. grecaptcha.ready(function () {. grecaptcha.execute('6LeEOXgkAAAAAEUhu31Ff83Yw4XlHRdDrq7lrEGl', {. action: 'submit'. }).then(function (token) {. form.find('#token').val(token);. jQuery.ajax({. type: 'POST',. url: themosis.ajaxurl,. context: this,. data: {. action: 'ajax_token',. secret: '6LeEOXgkAAAAAJ3NejuzSdvjmuE0jwZrXlANqIPX',. token: token. },. success: function success(response) {. if (response.success == true) {. var formdata = new FormData

            Chrome Cache Entry: 97

            Download File
            Process:C:\Program Files\Google\Chrome\Application\chrome.exe
            File Type:ASCII text, with very long lines (15718)
            Category:downloaded
            Size (bytes):18692
            Entropy (8bit):4.754375391922092
            Encrypted:false
            SSDEEP:
            MD5:4CC444663C1E69CB8AC7B909E7192BCA
            SHA1:D00DDC5B9526193FA99BC3995A6D05F995452EA1
            SHA-256:4F79A89D16A5F717110FE080C0BF90B7E05FF95A4C4983F64D33110BF5F9C230
            SHA-512:AE37D08D11AA4337650CBEC0D0F1205A5505CB3E82373873E82CBA093019521CD2B93CFE2DBE4840CE098717287E1F732E9330C90063B122F1C6358664F1B8EE
            Malicious:false
            Reputation:unknown
            URL:https://relation-client-digitale.fr/cms/wp-includes/js/wp-emoji-release.min.js?ver=6.4.3
            Preview:/*! This file is auto-generated */.// Source: wp-includes/js/twemoji.min.js.var twemoji=function(){"use strict";var m={base:"https://twemoji.maxcdn.com/v/14.0.2/",ext:".png",size:"72x72",className:"emoji",convert:{fromCodePoint:function(d){d="string"==typeof d?parseInt(d,16):d;if(d<65536)return e(d);return e(55296+((d-=65536)>>10),56320+(1023&d))},toCodePoint:o},onerror:function(){this.parentNode&&this.parentNode.replaceChild(x(this.alt,!1),this)},parse:function(d,u){u&&"function"!=typeof u||(u={callback:u});return m.doNotParse=u.doNotParse,("string"==typeof d?function(d,a){return n(d,function(d){var u,f,c=d,e=N(d),b=a.callback(e,a);if(e&&b){for(f in c="<img ".concat('class="',a.className,'" ','draggable="false" ','alt="',d,'"',' src="',b,'"'),u=a.attributes(d,e))u.hasOwnProperty(f)&&0!==f.indexOf("on")&&-1===c.indexOf(" "+f+"=")&&(c=c.concat(" ",f,'="',u[f].replace(t,r),'"'));c=c.concat("/>")}return c})}:function(d,u){var f,c,e,b,a,t,r,n,o,i,s,l=function d(u,f){var c,e,b=u.childNodes,

            Chrome Cache Entry: 99

            Download File
            Process:C:\Program Files\Google\Chrome\Application\chrome.exe
            File Type:ASCII text, with very long lines (13479)
            Category:downloaded
            Size (bytes):13577
            Entropy (8bit):5.272065782731947
            Encrypted:false
            SSDEEP:
            MD5:9FFEB32E2D9EFBF8F70CAABDED242267
            SHA1:3AD0C10E501AC2A9BFA18F9CD7E700219B378738
            SHA-256:5274F11E6FB32AE0CF2DFB9F8043272865C397A7C4223B4CFA7D50EA52FBDE89
            SHA-512:8D6BE545508A1C38278B8AD780C3758AE48A25E4E12EEE443375AA56031D9B356F8C90F22D4F251140FA3F65603AF40523165E33CAE2E2D62FC78EC106E3D731
            Malicious:false
            Reputation:unknown
            URL:https://relation-client-digitale.fr/cms/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1
            Preview:/*! jQuery Migrate v3.4.1 | (c) OpenJS Foundation and other contributors | jquery.org/license */."undefined"==typeof jQuery.migrateMute&&(jQuery.migrateMute=!0),function(t){"use strict";"function"==typeof define&&define.amd?define(["jquery"],function(e){return t(e,window)}):"object"==typeof module&&module.exports?module.exports=t(require("jquery"),window):t(jQuery,window)}(function(s,n){"use strict";function e(e){return 0<=function(e,t){for(var r=/^(\d+)\.(\d+)\.(\d+)/,n=r.exec(e)||[],o=r.exec(t)||[],a=1;a<=3;a++){if(+o[a]<+n[a])return 1;if(+n[a]<+o[a])return-1}return 0}(s.fn.jquery,e)}s.migrateVersion="3.4.1";var t=Object.create(null);s.migrateDisablePatches=function(){for(var e=0;e<arguments.length;e++)t[arguments[e]]=!0},s.migrateEnablePatches=function(){for(var e=0;e<arguments.length;e++)delete t[arguments[e]]},s.migrateIsPatchEnabled=function(e){return!t[e]},n.console&&n.console.log&&(s&&e("3.0.0")&&!e("5.0.0")||n.console.log("JQMIGRATE: jQuery 3.x-4.x REQUIRED"),s.migrateWarnings

            Static File Info

            No static file info