Windows Analysis Report
https://drive.filen.io/d/86d87964-c23f-4257-ab67-1d3a6a53307f#p6azJi5gS13nDkjcLoSnKfqLeQFJ51Va

Overview

General Information

Sample URL: https://drive.filen.io/d/86d87964-c23f-4257-ab67-1d3a6a53307f#p6azJi5gS13nDkjcLoSnKfqLeQFJ51Va
Analysis ID: 1428415
Infos:

Detection

Score: 0
Range: 0 - 100
Whitelisted: false
Confidence: 100%

Signatures

No high impact signatures.

Classification

There are no high impact signatures.

Source: unknown TCP traffic detected without corresponding DNS query: 23.206.229.212
Source: unknown TCP traffic detected without corresponding DNS query: 23.206.229.212
Source: unknown UDP traffic detected without corresponding DNS query: 239.255.255.250
Source: unknown UDP traffic detected without corresponding DNS query: 239.255.255.250
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 239.255.255.250
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 239.255.255.250
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: global traffic HTTP traffic detected: GET /d/86d87964-c23f-4257-ab67-1d3a6a53307f HTTP/1.1Host: drive.filen.ioConnection: keep-alivesec-ch-ua: "Chromium";v="94", "Google Chrome";v="94", ";Not A Brand";v="99"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/94.0.4606.61 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /webstreams.js HTTP/1.1Host: drive.filen.ioConnection: keep-alivesec-ch-ua: "Chromium";v="94", "Google Chrome";v="94", ";Not A Brand";v="99"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/94.0.4606.61 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://drive.filen.io/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /static/css/main.eeb9c19c.css HTTP/1.1Host: drive.filen.ioConnection: keep-alivesec-ch-ua: "Chromium";v="94", "Google Chrome";v="94", ";Not A Brand";v="99"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/94.0.4606.61 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://drive.filen.io/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /ht/HackTimer.js HTTP/1.1Host: cdn.filen.ioConnection: keep-alivesec-ch-ua: "Chromium";v="94", "Google Chrome";v="94", ";Not A Brand";v="99"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/94.0.4606.61 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://drive.filen.io/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /static/js/main.8419430e.js HTTP/1.1Host: drive.filen.ioConnection: keep-alivesec-ch-ua: "Chromium";v="94", "Google Chrome";v="94", ";Not A Brand";v="99"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/94.0.4606.61 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://drive.filen.io/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /static/media/logo_animated.5b2a93fbda359a792c23.gif HTTP/1.1Host: drive.filen.ioConnection: keep-alivesec-ch-ua: "Chromium";v="94", "Google Chrome";v="94", ";Not A Brand";v="99"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/94.0.4606.61 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://drive.filen.io/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /cfg.json?noCache=1713473073206 HTTP/1.1Host: cdn.filen.ioConnection: keep-alivesec-ch-ua: "Chromium";v="94", "Google Chrome";v="94", ";Not A Brand";v="99"Accept: application/json, text/plain, */*sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/94.0.4606.61 Safari/537.36sec-ch-ua-platform: "Windows"Origin: https://drive.filen.ioSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://drive.filen.io/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /swfs.js HTTP/1.1Host: drive.filen.ioConnection: keep-aliveCache-Control: max-age=0Accept: */*Service-Worker: scriptSec-Fetch-Site: same-originSec-Fetch-Mode: same-originSec-Fetch-Dest: serviceworkerReferer: https://drive.filen.io/User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/94.0.4606.61 Safari/537.36Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /static/media/inter-v12-latin-500.c72c72b70c82b1f4bacf.woff2 HTTP/1.1Host: drive.filen.ioConnection: keep-alivesec-ch-ua: "Chromium";v="94", "Google Chrome";v="94", ";Not A Brand";v="99"Origin: https://drive.filen.iosec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/94.0.4606.61 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://drive.filen.io/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /socket.io/?EIO=3&transport=websocket HTTP/1.1Host: socket.filen.ioConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/94.0.4606.61 Safari/537.36Upgrade: websocketOrigin: https://drive.filen.ioSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: xq9RWWMzRpMghI3Gc0CEIA==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic HTTP traffic detected: GET /cfg.json?noCache=1713473073206 HTTP/1.1Host: cdn.filen.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/94.0.4606.61 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /static/js/109.14cb8a71.chunk.js HTTP/1.1Host: drive.filen.ioConnection: keep-alivesec-ch-ua: "Chromium";v="94", "Google Chrome";v="94", ";Not A Brand";v="99"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/94.0.4606.61 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://drive.filen.io/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /static/js/153.93ada2fc.chunk.js HTTP/1.1Host: drive.filen.ioConnection: keep-alivesec-ch-ua: "Chromium";v="94", "Google Chrome";v="94", ";Not A Brand";v="99"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/94.0.4606.61 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://drive.filen.io/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /static/js/32.1f5639c6.chunk.js HTTP/1.1Host: drive.filen.ioConnection: keep-alivesec-ch-ua: "Chromium";v="94", "Google Chrome";v="94", ";Not A Brand";v="99"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/94.0.4606.61 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://drive.filen.io/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /static/js/418.b5bed9d9.chunk.js HTTP/1.1Host: drive.filen.ioConnection: keep-alivesec-ch-ua: "Chromium";v="94", "Google Chrome";v="94", ";Not A Brand";v="99"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/94.0.4606.61 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://drive.filen.io/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /static/js/592.ab1857e1.chunk.js HTTP/1.1Host: drive.filen.ioConnection: keep-alivesec-ch-ua: "Chromium";v="94", "Google Chrome";v="94", ";Not A Brand";v="99"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/94.0.4606.61 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://drive.filen.io/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /static/media/logo_animated.5b2a93fbda359a792c23.gif HTTP/1.1Host: drive.filen.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/94.0.4606.61 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /socket.io/?EIO=3&transport=websocket HTTP/1.1Host: socket.filen.ioConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/94.0.4606.61 Safari/537.36Upgrade: websocketOrigin: https://drive.filen.ioSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: 3U4LwY+sdBPw0QZGWCNc8A==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic HTTP traffic detected: GET /static/js/885.04acd75a.chunk.js HTTP/1.1Host: drive.filen.ioConnection: keep-alivesec-ch-ua: "Chromium";v="94", "Google Chrome";v="94", ";Not A Brand";v="99"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/94.0.4606.61 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://drive.filen.io/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /static/js/273.97b75179.chunk.js HTTP/1.1Host: drive.filen.ioConnection: keep-alivesec-ch-ua: "Chromium";v="94", "Google Chrome";v="94", ";Not A Brand";v="99"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/94.0.4606.61 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://drive.filen.io/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /site.webmanifest HTTP/1.1Host: drive.filen.ioConnection: keep-alivesec-ch-ua: "Chromium";v="94", "Google Chrome";v="94", ";Not A Brand";v="99"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/94.0.4606.61 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: manifestReferer: https://drive.filen.io/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: drive.filen.ioConnection: keep-alivesec-ch-ua: "Chromium";v="94", "Google Chrome";v="94", ";Not A Brand";v="99"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/94.0.4606.61 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://drive.filen.io/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /static/js/208.ecfb968a.chunk.js HTTP/1.1Host: drive.filen.ioConnection: keep-alivesec-ch-ua: "Chromium";v="94", "Google Chrome";v="94", ";Not A Brand";v="99"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/94.0.4606.61 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: same-originSec-Fetch-Dest: workerReferer: https://drive.filen.io/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /static/js/758.8a2278ed.chunk.js HTTP/1.1Host: drive.filen.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/94.0.4606.61 Safari/537.36Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://drive.filen.io/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: drive.filen.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/94.0.4606.61 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /socket.io/?EIO=3&transport=websocket HTTP/1.1Host: socket.filen.ioConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/94.0.4606.61 Safari/537.36Upgrade: websocketOrigin: https://drive.filen.ioSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: /JHOAL2q1JZOP1oLtRt7SA==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic HTTP traffic detected: GET /static/js/520.81de291f.chunk.js HTTP/1.1Host: drive.filen.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/94.0.4606.61 Safari/537.36Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://drive.filen.io/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /js/plausible.js HTTP/1.1Host: analytics.filen.ioConnection: keep-alivesec-ch-ua: "Chromium";v="94", "Google Chrome";v="94", ";Not A Brand";v="99"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/94.0.4606.61 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://drive.filen.io/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cookieConsent=full
Source: global traffic HTTP traffic detected: GET /socket.io/?EIO=3&transport=websocket HTTP/1.1Host: socket.filen.ioConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/94.0.4606.61 Safari/537.36Upgrade: websocketOrigin: https://drive.filen.ioSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cookieConsent=fullSec-WebSocket-Key: qixUgixFcH2JudpUaVmAWw==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic HTTP traffic detected: GET /v3/file/link/password HTTP/1.1Host: gateway.filen.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/94.0.4606.61 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cookieConsent=full
Source: global traffic HTTP traffic detected: GET /static/js/528.6d3a337a.chunk.js HTTP/1.1Host: drive.filen.ioConnection: keep-alivesec-ch-ua: "Chromium";v="94", "Google Chrome";v="94", ";Not A Brand";v="99"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/94.0.4606.61 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://drive.filen.io/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cookieConsent=full
Source: global traffic HTTP traffic detected: GET /static/js/454.d38d97fe.chunk.js HTTP/1.1Host: drive.filen.ioConnection: keep-alivesec-ch-ua: "Chromium";v="94", "Google Chrome";v="94", ";Not A Brand";v="99"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/94.0.4606.61 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://drive.filen.io/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cookieConsent=full
Source: global traffic HTTP traffic detected: GET /v3/file/link/info HTTP/1.1Host: gateway.filen-2.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/94.0.4606.61 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /de-1/filen-1013/c326ef2d-8daa-48dd-a726-0a5725d3d183/0 HTTP/1.1Host: egest.filen-4.netConnection: keep-aliveAccept: application/json, text/plain, */*User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/94.0.4606.61 Safari/537.36Origin: https://drive.filen.ioSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://drive.filen.io/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /static/js/827.d99a6ec2.chunk.js HTTP/1.1Host: drive.filen.ioConnection: keep-alivesec-ch-ua: "Chromium";v="94", "Google Chrome";v="94", ";Not A Brand";v="99"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/94.0.4606.61 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://drive.filen.io/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cookieConsent=full
Source: global traffic HTTP traffic detected: GET /static/js/107.29c4b0a4.chunk.js HTTP/1.1Host: drive.filen.ioConnection: keep-alivesec-ch-ua: "Chromium";v="94", "Google Chrome";v="94", ";Not A Brand";v="99"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/94.0.4606.61 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://drive.filen.io/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cookieConsent=full
Source: global traffic HTTP traffic detected: GET /static/media/dark_logo.41ab3ed5c0117abdb8e47d6bac43d9ae.svg HTTP/1.1Host: drive.filen.ioConnection: keep-alivesec-ch-ua: "Chromium";v="94", "Google Chrome";v="94", ";Not A Brand";v="99"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/94.0.4606.61 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://drive.filen.io/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cookieConsent=full
Source: global traffic HTTP traffic detected: GET /socket.io/?EIO=3&transport=websocket HTTP/1.1Host: socket.filen.ioConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/94.0.4606.61 Safari/537.36Upgrade: websocketOrigin: https://drive.filen.ioSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cookieConsent=fullSec-WebSocket-Key: ZhzSIY3EuJw0QPEBRZlW/w==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic HTTP traffic detected: GET /static/media/dark_logo.41ab3ed5c0117abdb8e47d6bac43d9ae.svg HTTP/1.1Host: drive.filen.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/94.0.4606.61 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cookieConsent=full
Source: global traffic HTTP traffic detected: GET /static/js/731.c9335a78.chunk.js HTTP/1.1Host: drive.filen.ioConnection: keep-alivesec-ch-ua: "Chromium";v="94", "Google Chrome";v="94", ";Not A Brand";v="99"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/94.0.4606.61 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://drive.filen.io/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cookieConsent=full
Source: global traffic HTTP traffic detected: GET /socket.io/?EIO=3&transport=websocket HTTP/1.1Host: socket.filen.ioConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/94.0.4606.61 Safari/537.36Upgrade: websocketOrigin: https://drive.filen.ioSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cookieConsent=fullSec-WebSocket-Key: 69IwTixGcIdAfDbIXLscGQ==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic HTTP traffic detected: GET /socket.io/?EIO=3&transport=websocket HTTP/1.1Host: socket.filen.ioConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/94.0.4606.61 Safari/537.36Upgrade: websocketOrigin: https://drive.filen.ioSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cookieConsent=fullSec-WebSocket-Key: fdbjIcmBLYmy+r8s5nLYsw==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic HTTP traffic detected: GET /socket.io/?EIO=3&transport=websocket HTTP/1.1Host: socket.filen.ioConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/94.0.4606.61 Safari/537.36Upgrade: websocketOrigin: https://drive.filen.ioSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cookieConsent=fullSec-WebSocket-Key: VWvzAZHqMo8QKWg2wpFHyw==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic HTTP traffic detected: GET /socket.io/?EIO=3&transport=websocket HTTP/1.1Host: socket.filen.ioConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/94.0.4606.61 Safari/537.36Upgrade: websocketOrigin: https://drive.filen.ioSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cookieConsent=fullSec-WebSocket-Key: 1qLlBM8pphdK4nK7nQzLqA==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic HTTP traffic detected: GET /socket.io/?EIO=3&transport=websocket HTTP/1.1Host: socket.filen.ioConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/94.0.4606.61 Safari/537.36Upgrade: websocketOrigin: https://drive.filen.ioSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cookieConsent=fullSec-WebSocket-Key: B0hCM+qYvYAORlEgy9FOxQ==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic HTTP traffic detected: GET /socket.io/?EIO=3&transport=websocket HTTP/1.1Host: socket.filen.ioConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/94.0.4606.61 Safari/537.36Upgrade: websocketOrigin: https://drive.filen.ioSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cookieConsent=fullSec-WebSocket-Key: Kqc91k6YLR6Wlb34IOv1Bw==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic HTTP traffic detected: GET /cfg.json?noCache=1713473133215 HTTP/1.1Host: cdn.filen.ioConnection: keep-alivesec-ch-ua: "Chromium";v="94", "Google Chrome";v="94", ";Not A Brand";v="99"Accept: application/json, text/plain, */*sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/94.0.4606.61 Safari/537.36sec-ch-ua-platform: "Windows"Origin: https://drive.filen.ioSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://drive.filen.io/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /socket.io/?EIO=3&transport=websocket HTTP/1.1Host: socket.filen.ioConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/94.0.4606.61 Safari/537.36Upgrade: websocketOrigin: https://drive.filen.ioSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cookieConsent=fullSec-WebSocket-Key: VLkUtw5Zeg2yatNd4HqnSQ==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic HTTP traffic detected: GET /socket.io/?EIO=3&transport=websocket HTTP/1.1Host: socket.filen.ioConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/94.0.4606.61 Safari/537.36Upgrade: websocketOrigin: https://drive.filen.ioSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cookieConsent=fullSec-WebSocket-Key: 6HwIJ7+KHsENiPuiMy/ebg==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: unknown DNS traffic detected: queries for: drive.filen.io
Source: unknown HTTP traffic detected: POST /api/event HTTP/1.1Host: analytics.filen.ioConnection: keep-aliveContent-Length: 147sec-ch-ua: "Chromium";v="94", "Google Chrome";v="94", ";Not A Brand";v="99"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/94.0.4606.61 Safari/537.36sec-ch-ua-platform: "Windows"Content-Type: text/plainAccept: */*Origin: https://drive.filen.ioSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://drive.filen.io/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic TCP traffic: 192.168.11.20:64583 -> 239.255.255.250:1900
Source: global traffic TCP traffic: 192.168.11.20:64583 -> 239.255.255.250:1900
Source: global traffic TCP traffic: 192.168.11.20:64583 -> 239.255.255.250:1900
Source: global traffic TCP traffic: 192.168.11.20:64583 -> 239.255.255.250:1900
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 53848
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 56838
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 54379
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 53965
Source: unknown Network traffic detected: HTTP traffic on port 64032 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55005 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 61044 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 60895
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 61622
Source: unknown Network traffic detected: HTTP traffic on port 61342 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 63923
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55596
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 61626
Source: unknown Network traffic detected: HTTP traffic on port 54379 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 51720 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 61342
Source: unknown Network traffic detected: HTTP traffic on port 64711 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 54711 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 61620
Source: unknown Network traffic detected: HTTP traffic on port 49841 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55917
Source: unknown Network traffic detected: HTTP traffic on port 49302 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50108
Source: unknown Network traffic detected: HTTP traffic on port 56363 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 64110
Source: unknown Network traffic detected: HTTP traffic on port 63495 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 52665 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 61620 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 63495
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 63651
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 63810
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50117
Source: unknown Network traffic detected: HTTP traffic on port 58486 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49841
Source: unknown Network traffic detected: HTTP traffic on port 64939 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49562
Source: unknown Network traffic detected: HTTP traffic on port 63449 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55128
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55005
Source: unknown Network traffic detected: HTTP traffic on port 64110 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 51720
Source: unknown Network traffic detected: HTTP traffic on port 63923 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 63810 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 54711
Source: unknown Network traffic detected: HTTP traffic on port 61935 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50108 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 61644
Source: unknown Network traffic detected: HTTP traffic on port 56301 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 58486
Source: unknown Network traffic detected: HTTP traffic on port 51642 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55250
Source: unknown Network traffic detected: HTTP traffic on port 58450 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62336
Source: unknown Network traffic detected: HTTP traffic on port 57849 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 61626 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55068 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 60295 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 59019 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 60895 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 52665
Source: unknown Network traffic detected: HTTP traffic on port 56838 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 65112 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 61935
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 52150
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 60848
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 63275
Source: unknown Network traffic detected: HTTP traffic on port 55250 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55128 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 52611 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 63690 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 60848 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 52437
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49302
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 63690
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 57849
Source: unknown Network traffic detected: HTTP traffic on port 55917 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 56115
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 56363
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 63449
Source: unknown Network traffic detected: HTTP traffic on port 61644 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 60295
Source: unknown Network traffic detected: HTTP traffic on port 53848 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 64939
Source: unknown Network traffic detected: HTTP traffic on port 63651 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50117 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 64790
Source: unknown Network traffic detected: HTTP traffic on port 49562 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 64032
Source: unknown Network traffic detected: HTTP traffic on port 63100 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55681
Source: unknown Network traffic detected: HTTP traffic on port 52150 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49830 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 65112
Source: unknown Network traffic detected: HTTP traffic on port 62336 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 52437 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50441 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 62383
Source: unknown Network traffic detected: HTTP traffic on port 56115 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 53965 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 52611
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 51642
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 63100
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 61044
Source: unknown Network traffic detected: HTTP traffic on port 55681 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 64711
Source: unknown Network traffic detected: HTTP traffic on port 62383 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50441
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 56301
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 59019
Source: unknown Network traffic detected: HTTP traffic on port 63275 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 58450
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55068
Source: unknown Network traffic detected: HTTP traffic on port 55596 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 64790 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 61622 -> 443
Source: classification engine Classification label: clean0.win@28/0@11/6
Source: unknown Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1644,34356383147248551,10702149225259720885,131072 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2000 /prefetch:8
Source: unknown Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://drive.filen.io/d/86d87964-c23f-4257-ab67-1d3a6a53307f#p6azJi5gS13nDkjcLoSnKfqLeQFJ51Va"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=ppapi --field-trial-handle=1644,34356383147248551,10702149225259720885,131072 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction --lang=en-US --device-scale-factor=1 --ppapi-antialiased-text-enabled=1 --ppapi-subpixel-rendering-setting=1 --mojo-platform-channel-handle=3928 /prefetch:3
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1644,34356383147248551,10702149225259720885,131072 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2000 /prefetch:8 Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=ppapi --field-trial-handle=1644,34356383147248551,10702149225259720885,131072 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction --lang=en-US --device-scale-factor=1 --ppapi-antialiased-text-enabled=1 --ppapi-subpixel-rendering-setting=1 --mojo-platform-channel-handle=3928 /prefetch:3 Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: Window Recorder Window detected: More than 3 window changes detected
windows-stand
Hide Legend

Legend:

  • Process
  • Signature
  • Created File
  • DNS/IP Info
  • Is Dropped
  • Is Windows Process
  • Number of created Registry Values
  • Number of created Files
  • Visual Basic
  • Delphi
  • Java
  • .Net C# or VB.NET
  • C, C++ or other language
  • Is malicious
  • Internet
behaviorgraph top1 dnsIp2 2 Behavior Graph ID: 1428415 URL: https://drive.filen.io/d/86... Startdate: 18/04/2024 Architecture: WINDOWS Score: 0 16 www.google.com 2->16 18 socket.filen.io 2->18 20 6 other IPs or domains 2->20 6 chrome.exe 2->6         started        9 chrome.exe 2->9         started        process3 dnsIp4 22 192.168.11.20, 1900, 443, 49302 unknown unknown 6->22 24 239.255.255.250, 1900 unknown Reserved 6->24 11 chrome.exe 6->11         started        14 chrome.exe 6->14         started        process5 dnsIp6 26 analytics.filen.io 146.0.41.206, 443, 53965, 55128 MYLOC-ASIPBackboneofmyLocmanagedITAGDE Germany 11->26 28 egest.filen-4.net 146.0.41.207, 443, 50108, 50117 MYLOC-ASIPBackboneofmyLocmanagedITAGDE Germany 11->28 30 2 other IPs or domains 11->30
  • No. of IPs < 25%
  • 25% < No. of IPs < 50%
  • 50% < No. of IPs < 75%
  • 75% < No. of IPs

Contacted Public IPs

IP Domain Country Flag ASN ASN Name Malicious
239.255.255.250
 unknown Reserved
unknown unknown false
146.0.41.207
 cdn.filen.io Germany
24961 MYLOC-ASIPBackboneofmyLocmanagedITAGDE false
146.0.41.206
 analytics.filen.io Germany
24961 MYLOC-ASIPBackboneofmyLocmanagedITAGDE false
146.0.41.208
 gateway.filen-2.net Germany
24961 MYLOC-ASIPBackboneofmyLocmanagedITAGDE false
142.250.176.4
 www.google.com United States
15169 GOOGLEUS false

Private

IP
192.168.11.20

Contacted Domains

Name IP Active
gateway.filen-2.net 146.0.41.208 true
analytics.filen.io 146.0.41.206 true
cdn.filen.io 146.0.41.207 true
socket.filen.io 146.0.41.207 true
www.google.com 142.250.176.4 true
drive.filen.io 146.0.41.208 true
gateway.filen.io 146.0.41.207 true
egest.filen-4.net 146.0.41.207 true

Contacted URLs

Name Malicious Antivirus Detection Reputation
https://drive.filen.io/static/js/418.b5bed9d9.chunk.js false
  • Avira URL Cloud: safe
 unknown
https://drive.filen.io/static/js/758.8a2278ed.chunk.js false
  • Avira URL Cloud: safe
 unknown
https://analytics.filen.io/js/plausible.js false
  • Avira URL Cloud: safe
 unknown
https://gateway.filen-2.net/v3/file/link/info false
  • Avira URL Cloud: safe
 unknown
https://drive.filen.io/d/86d87964-c23f-4257-ab67-1d3a6a53307f false
  • Avira URL Cloud: safe
 unknown
https://cdn.filen.io/ht/HackTimer.js false
  • Avira URL Cloud: safe
 unknown
https://drive.filen.io/static/js/main.8419430e.js false
  • Avira URL Cloud: safe
 unknown
https://drive.filen.io/static/js/208.ecfb968a.chunk.js false
  • Avira URL Cloud: safe
 unknown
https://drive.filen.io/static/js/32.1f5639c6.chunk.js false
  • Avira URL Cloud: safe
 unknown
https://gateway.filen.io/v3/file/link/password false
  • Avira URL Cloud: safe
 unknown
https://socket.filen.io/socket.io/?EIO=3&transport=websocket false
  • Avira URL Cloud: safe
 unknown
https://drive.filen.io/static/media/inter-v12-latin-500.c72c72b70c82b1f4bacf.woff2 false
  • Avira URL Cloud: safe
 unknown
https://drive.filen.io/favicon.ico false
  • Avira URL Cloud: safe
 unknown
https://drive.filen.io/webstreams.js false
  • Avira URL Cloud: safe
 unknown
https://cdn.filen.io/cfg.json?noCache=1713473073206 false
  • Avira URL Cloud: safe
 unknown
https://cdn.filen.io/cfg.json?noCache=1713473133215 false
  • Avira URL Cloud: safe
 unknown
https://drive.filen.io/static/css/main.eeb9c19c.css false
  • Avira URL Cloud: safe
 unknown
https://drive.filen.io/static/js/528.6d3a337a.chunk.js false
  • Avira URL Cloud: safe
 unknown
https://drive.filen.io/static/js/454.d38d97fe.chunk.js false
  • Avira URL Cloud: safe
 unknown
https://drive.filen.io/d/86d87964-c23f-4257-ab67-1d3a6a53307f#p6azJi5gS13nDkjcLoSnKfqLeQFJ51Va false
    		unknown
    https://drive.filen.io/static/js/153.93ada2fc.chunk.js false
    • Avira URL Cloud: safe
    		 unknown
    https://drive.filen.io/static/js/885.04acd75a.chunk.js false
    • Avira URL Cloud: safe
    		 unknown
    https://drive.filen.io/static/js/731.c9335a78.chunk.js false
    • Avira URL Cloud: safe
    		 unknown
    https://drive.filen.io/static/media/logo_animated.5b2a93fbda359a792c23.gif false
    • Avira URL Cloud: safe
    		 unknown
    https://drive.filen.io/static/js/273.97b75179.chunk.js false
    • Avira URL Cloud: safe
    		 unknown
    https://drive.filen.io/static/js/107.29c4b0a4.chunk.js false
    • Avira URL Cloud: safe
    		 unknown
    https://drive.filen.io/static/js/109.14cb8a71.chunk.js false
    • Avira URL Cloud: safe
    		 unknown
    https://drive.filen.io/static/js/592.ab1857e1.chunk.js false
    • Avira URL Cloud: safe
    		 unknown
    https://drive.filen.io/static/media/dark_logo.41ab3ed5c0117abdb8e47d6bac43d9ae.svg false
    • Avira URL Cloud: safe
    		 unknown
    https://analytics.filen.io/api/event false
    • Avira URL Cloud: safe
    		 unknown
    https://drive.filen.io/site.webmanifest false
    • Avira URL Cloud: safe
    		 unknown
    https://drive.filen.io/static/js/520.81de291f.chunk.js false
    • Avira URL Cloud: safe
    		 unknown
    https://drive.filen.io/swfs.js false
    • Avira URL Cloud: safe
    		 unknown
    https://drive.filen.io/static/js/827.d99a6ec2.chunk.js false
    • Avira URL Cloud: safe
    		 unknown
    https://egest.filen-4.net/de-1/filen-1013/c326ef2d-8daa-48dd-a726-0a5725d3d183/0 false
    • Avira URL Cloud: safe
    		 unknown