Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
Chrome Cache Entry: 58
|
gzip compressed data, max speed, from FAT filesystem (MS-DOS, OS/2, NT), original size modulo 2^32 900
|
downloaded
|
||
|
Chrome Cache Entry: 59
|
ASCII text, with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 60
|
SVG Scalable Vector Graphics image
|
dropped
|
||
|
Chrome Cache Entry: 61
|
gzip compressed data, max speed, from FAT filesystem (MS-DOS, OS/2, NT), original size modulo 2^32 208265
|
downloaded
|
||
|
Chrome Cache Entry: 62
|
MS Windows icon resource - 6 icons, -128x-128, 16 colors, 72x72, 16 colors
|
downloaded
|
||
|
Chrome Cache Entry: 63
|
MS Windows icon resource - 6 icons, -128x-128, 16 colors, 72x72, 16 colors
|
downloaded
|
||
|
Chrome Cache Entry: 64
|
HTML document, ASCII text, with very long lines (611)
|
downloaded
|
||
|
Chrome Cache Entry: 65
|
gzip compressed data, max speed, from FAT filesystem (MS-DOS, OS/2, NT), original size modulo 2^32 3651
|
downloaded
|
||
|
Chrome Cache Entry: 66
|
gzip compressed data, max speed, from FAT filesystem (MS-DOS, OS/2, NT), original size modulo 2^32 1864
|
dropped
|
||
|
Chrome Cache Entry: 67
|
ASCII text, with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 68
|
HTML document, ASCII text, with very long lines (2345), with CRLF line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 69
|
gzip compressed data, max speed, from FAT filesystem (MS-DOS, OS/2, NT), original size modulo 2^32 108310
|
downloaded
|
||
|
Chrome Cache Entry: 70
|
gzip compressed data, max speed, from FAT filesystem (MS-DOS, OS/2, NT), original size modulo 2^32 80144
|
downloaded
|
||
|
Chrome Cache Entry: 71
|
gzip compressed data, max speed, from FAT filesystem (MS-DOS, OS/2, NT), original size modulo 2^32 1864
|
dropped
|
||
|
Chrome Cache Entry: 72
|
SVG Scalable Vector Graphics image
|
downloaded
|
||
|
Chrome Cache Entry: 73
|
gzip compressed data, max speed, from FAT filesystem (MS-DOS, OS/2, NT), original size modulo 2^32 37866
|
downloaded
|
||
|
Chrome Cache Entry: 74
|
gzip compressed data, max speed, from FAT filesystem (MS-DOS, OS/2, NT), original size modulo 2^32 915
|
dropped
|
||
|
Chrome Cache Entry: 75
|
MS Windows icon resource - 6 icons, -128x-128, 16 colors, 72x72, 16 colors
|
dropped
|
||
|
Chrome Cache Entry: 76
|
SVG Scalable Vector Graphics image
|
downloaded
|
||
|
Chrome Cache Entry: 77
|
gzip compressed data, max speed, from FAT filesystem (MS-DOS, OS/2, NT), original size modulo 2^32 3651
|
downloaded
|
||
|
Chrome Cache Entry: 78
|
HTML document, Unicode text, UTF-8 text, with very long lines (23295), with CRLF line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 79
|
gzip compressed data, max speed, from FAT filesystem (MS-DOS, OS/2, NT), original size modulo 2^32 1864
|
downloaded
|
||
|
Chrome Cache Entry: 80
|
gzip compressed data, max speed, from FAT filesystem (MS-DOS, OS/2, NT), original size modulo 2^32 28981
|
downloaded
|
||
|
Chrome Cache Entry: 81
|
gzip compressed data, max speed, from FAT filesystem (MS-DOS, OS/2, NT), original size modulo 2^32 22961
|
downloaded
|
||
|
Chrome Cache Entry: 82
|
gzip compressed data, max speed, from FAT filesystem (MS-DOS, OS/2, NT), original size modulo 2^32 95910
|
downloaded
|
||
|
Chrome Cache Entry: 83
|
gzip compressed data, max speed, from FAT filesystem (MS-DOS, OS/2, NT), original size modulo 2^32 3651
|
dropped
|
||
|
Chrome Cache Entry: 84
|
gzip compressed data, max speed, from FAT filesystem (MS-DOS, OS/2, NT), original size modulo 2^32 900
|
dropped
|
||
|
Chrome Cache Entry: 85
|
ASCII text, with very long lines (65451)
|
downloaded
|
||
|
Chrome Cache Entry: 86
|
gzip compressed data, max speed, from FAT filesystem (MS-DOS, OS/2, NT), original size modulo 2^32 3651
|
dropped
|
||
|
Chrome Cache Entry: 87
|
gzip compressed data, max speed, from FAT filesystem (MS-DOS, OS/2, NT), original size modulo 2^32 915
|
downloaded
|
||
|
Chrome Cache Entry: 88
|
SVG Scalable Vector Graphics image
|
dropped
|
||
|
Chrome Cache Entry: 89
|
HTML document, ASCII text, with very long lines (56963)
|
downloaded
|
||
|
Chrome Cache Entry: 90
|
HTML document, ASCII text, with very long lines (2625), with CRLF line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 91
|
gzip compressed data, max speed, from FAT filesystem (MS-DOS, OS/2, NT), original size modulo 2^32 8111
|
downloaded
|
||
|
Chrome Cache Entry: 92
|
gzip compressed data, max speed, from FAT filesystem (MS-DOS, OS/2, NT), original size modulo 2^32 1864
|
downloaded
|
||
|
Chrome Cache Entry: 93
|
MS Windows icon resource - 6 icons, -128x-128, 16 colors, 72x72, 16 colors
|
dropped
|
||
|
Chrome Cache Entry: 94
|
gzip compressed data, max speed, from FAT filesystem (MS-DOS, OS/2, NT), original size modulo 2^32 273170
|
downloaded
|
There are 28 hidden files, click here to show them.
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
|
||
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US
--service-sandbox-type=none --mojo-platform-channel-handle=2268 --field-trial-handle=2188,i,3570078562166595606,13269429034142598939,262144
--disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction
/prefetch:8
|
||
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" "https://pub-fb18fd8aaa2c453dab56d6f0ae35acae.r2.dev/index.html"
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
https://pub-fb18fd8aaa2c453dab56d6f0ae35acae.r2.dev/index.html
|
 |
||
|
https://pub-fb18fd8aaa2c453dab56d6f0ae35acae.r2.dev/index.html
|
|
||
|
https://fpt.live.com/?session_id=b58882512b7c40d78c42f4d88f1affac&CustomerId=33e01921-4d64-4f8c-a055-5bdaffd5e33d&PageId=SU&mkt=EN-US
|
|||
|
https://pub-fb18fd8aaa2c453dab56d6f0ae35acae.r2.dev/favicon.ico
|
104.18.3.35
|
||
|
https://login.microsoftonline.com
|
unknown
|
||
|
https://www.cloudflare.com/favicon.ico
|
unknown
|
||
|
https://developers.cloudflare.com/r2/data-access/public-buckets/
|
unknown
|
||
|
https://login.windows-ppe.net
|
unknown
|
||
|
https://fpt.live.com/
|
unknown
|
||
|
https://videomarketing102.com/abdullah/document/office-cc/send.php
|
unknown
|
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
part-0013.t-0009.t-msedge.net
|
13.107.246.41
|
||
|
part-0008.t-0009.t-msedge.net
|
13.107.246.36
|
||
|
sni1gl.wpc.alphacdn.net
|
152.195.19.97
|
||
|
pub-fb18fd8aaa2c453dab56d6f0ae35acae.r2.dev
|
104.18.3.35
|
||
|
www.google.com
|
74.125.136.106
|
||
|
part-0043.t-0009.t-msedge.net
|
13.107.246.71
|
||
|
fp2e7a.wpc.phicdn.net
|
192.229.211.108
|
||
|
signup.live.com
|
unknown
|
||
|
fpt.live.com
|
unknown
|
||
|
acctcdn.msftauth.net
|
unknown
|
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
13.107.246.41
|
part-0013.t-0009.t-msedge.net
|
United States
|
||
|
104.18.3.35
|
pub-fb18fd8aaa2c453dab56d6f0ae35acae.r2.dev
|
United States
|
||
|
13.107.246.36
|
part-0008.t-0009.t-msedge.net
|
United States
|
||
|
74.125.136.106
|
www.google.com
|
United States
|
||
|
192.168.2.4
|
unknown
|
unknown
|
||
|
13.107.246.71
|
part-0043.t-0009.t-msedge.net
|
United States
|
||
|
239.255.255.250
|
unknown
|
Reserved
|
||
|
13.107.213.41
|
unknown
|
United States
|
DOM / HTML
|
URL
|
Malicious
|
|
|---|---|---|
|
https://pub-fb18fd8aaa2c453dab56d6f0ae35acae.r2.dev/index.html
|
|
|
|
https://signup.live.com/signup?sru=https%3a%2f%2flogin.live.com%2foauth20_authorize.srf%3flc%3d1033%26mkt%3den-US%26client_id%3d51483342-085c-4d86-bf88-cf50c7252078%26opid%3dFC1F5C313089A325%26opidt%3d1713310977%26uaid%3db58882512b7c40d78c42f4d88f1affac%26contextid%3d6D680E5CAD24554B%26opignore%3d1&mkt=EN-US&uiflavor=web&lw=1&fl=easi2&client_id=51483342-085c-4d86-bf88-cf50c7252078&uaid=b58882512b7c40d78c42f4d88f1affac&suc=4345a7b9-9a63-4910-a426-35363201d503&lic=1
|
||
|
https://signup.live.com/signup?sru=https%3a%2f%2flogin.live.com%2foauth20_authorize.srf%3flc%3d1033%26mkt%3den-US%26client_id%3d51483342-085c-4d86-bf88-cf50c7252078%26opid%3dFC1F5C313089A325%26opidt%3d1713310977%26uaid%3db58882512b7c40d78c42f4d88f1affac%26contextid%3d6D680E5CAD24554B%26opignore%3d1&mkt=EN-US&uiflavor=web&lw=1&fl=easi2&client_id=51483342-085c-4d86-bf88-cf50c7252078&uaid=b58882512b7c40d78c42f4d88f1affac&suc=4345a7b9-9a63-4910-a426-35363201d503&lic=1
|
||
|
https://fpt.live.com/?session_id=b58882512b7c40d78c42f4d88f1affac&CustomerId=33e01921-4d64-4f8c-a055-5bdaffd5e33d&PageId=SU&mkt=EN-US
|
||
|
https://fpt2.microsoft.com/Clear.HTML?ctx=Ls1.0&wl=False&session_id=b58882512b7c40d78c42f4d88f1affac&id=485a5f8e-4436-6b7e-8b9c-bbd7cfac0061&w=8DC5E6EF4BF80EC&tkt=taBcrIH61PuCVH7eNCyH0J9Fjk1kZEyRnBbpUW3FKs%252bPBIIe5UPfX%252fdCN4xorunpDaUx8d6T2Sy5nsqmpG4qpaE64KjG8k5m55Tu7wCV3pS5XDm0jMpOmbcjUStMLy6OIPAsPYiVynnbiQCj%252fvMiJ35qPZwrSlPwqTdMDLx09iAqtcw88pjKtHeNWda11Uce9xoriaMR%252fjPld0PImPkuN%252bU7tDy4VjZbGB2tGemp1FVLRFb53gu69OS%252f9CtevZzlrL8Fnmjqaeei3EnKEwyM2W8o4rGdwdTwwYaK9bc3gMiFLkKcZKolKyXrD7XJ15Jn&CustomerId=33e01921-4d64-4f8c-a055-5bdaffd5e33d
|