Files
File Path
|
Type
|
Category
|
Malicious
|
|
---|---|---|---|---|
Chrome Cache Entry: 46
|
HTML document, ASCII text, with very long lines (1071), with CRLF line terminators
|
downloaded
|
||
Chrome Cache Entry: 47
|
HTML document, ASCII text, with CRLF line terminators
|
downloaded
|
||
Chrome Cache Entry: 48
|
HTML document, ASCII text, with very long lines (611)
|
downloaded
|
Processes
Path
|
Cmdline
|
Malicious
|
|
---|---|---|---|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
|
||
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US
--service-sandbox-type=none --mojo-platform-channel-handle=2044 --field-trial-handle=1996,i,915152715888252964,5619724167490245158,262144
--disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction
/prefetch:8
|
||
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" "https://www.bing.com/ck/a?!&&p=ec2690ecb5e8783cJmltdHM9MTcxMzA1MjgwMCZpZ3VpZD0zNmI1MjYyNC1hNGNjLTZiMzktMTE1Yi0zNjI3YTBjYzY1YmEmaW5zaWQ9NTIzMA&ptn=3&ver=2&hsh=3&fclid=36b52624-a4cc-6b39-115b-3627a0cc65ba&psq=site%3atragiangoc.com&u=a1aHR0cDovL3RyYWdpYW5nb2MuY29tL3Zhbi1jaHV5ZW4tZ2lhby1uaGFuLw"
|
URLs
Name
|
IP
|
Malicious
|
|
---|---|---|---|
https://www.bing.com/ck/a?!&&p=ec2690ecb5e8783cJmltdHM9MTcxMzA1MjgwMCZpZ3VpZD0zNmI1MjYyNC1hNGNjLTZiMzktMTE1Yi0zNjI3YTBjYzY1YmEmaW5zaWQ9NTIzMA&ptn=3&ver=2&hsh=3&fclid=36b52624-a4cc-6b39-115b-3627a0cc65ba&psq=site%3atragiangoc.com&u=a1aHR0cDovL3RyYWdpYW5nb2MuY29tL3Zhbi1jaHV5ZW4tZ2lhby1uaGFuLw
|
|||
http://89.23.107.240/Wire%20Confirmation/WireConfirmation.pdf.lnk
|
89.23.107.240
|
||
https://www.base64encode.org/
|
unknown
|
||
https://pub-6d8650014e23489d8c6e14ca9312426a.r2.dev/favicon.ico
|
104.18.3.35
|
||
https://tragiangoc.com/van-chuyen-giao-nhan/
|
104.21.39.145
|
||
https://www.cloudflare.com/favicon.ico
|
unknown
|
||
https://developers.cloudflare.com/r2/data-access/public-buckets/
|
unknown
|
||
https://pub-6d8650014e23489d8c6e14ca9312426a.r2.dev/WireConfirmation_2004.10.2024.html
|
Domains
Name
|
IP
|
Malicious
|
|
---|---|---|---|
tragiangoc.com
|
104.21.39.145
|
||
www.google.com
|
64.233.185.147
|
||
pub-6d8650014e23489d8c6e14ca9312426a.r2.dev
|
104.18.3.35
|
IPs
IP
|
Domain
|
Country
|
Malicious
|
|
---|---|---|---|---|
89.23.107.240
|
unknown
|
Russian Federation
|
||
104.18.3.35
|
pub-6d8650014e23489d8c6e14ca9312426a.r2.dev
|
United States
|
||
239.255.255.250
|
unknown
|
Reserved
|
||
192.168.2.4
|
unknown
|
unknown
|
||
104.21.39.145
|
tragiangoc.com
|
United States
|
||
64.233.185.147
|
www.google.com
|
United States
|
DOM / HTML
URL
|
Malicious
|
|
---|---|---|
https://pub-6d8650014e23489d8c6e14ca9312426a.r2.dev/WireConfirmation_2004.10.2024.html
|