Files
File Path
|
Type
|
Category
|
Malicious
|
|
---|---|---|---|---|
Chrome Cache Entry: 54
|
SVG Scalable Vector Graphics image
|
dropped
|
||
Chrome Cache Entry: 55
|
ASCII text, with no line terminators
|
dropped
|
||
Chrome Cache Entry: 56
|
JSON data
|
dropped
|
||
Chrome Cache Entry: 57
|
Web Open Font Format (Version 2), TrueType, length 84992, version 2.983
|
downloaded
|
||
Chrome Cache Entry: 58
|
JSON data
|
downloaded
|
||
Chrome Cache Entry: 59
|
JSON data
|
downloaded
|
||
Chrome Cache Entry: 60
|
JSON data
|
downloaded
|
||
Chrome Cache Entry: 61
|
ASCII text, with no line terminators
|
dropped
|
||
Chrome Cache Entry: 62
|
JSON data
|
downloaded
|
||
Chrome Cache Entry: 63
|
JSON data
|
downloaded
|
||
Chrome Cache Entry: 64
|
ASCII text, with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 65
|
JSON data
|
dropped
|
||
Chrome Cache Entry: 66
|
JSON data
|
dropped
|
||
Chrome Cache Entry: 67
|
JSON data
|
dropped
|
||
Chrome Cache Entry: 68
|
JSON data
|
dropped
|
||
Chrome Cache Entry: 69
|
PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
Chrome Cache Entry: 70
|
JSON data
|
dropped
|
||
Chrome Cache Entry: 71
|
GIF image data, version 89a, 32 x 16
|
downloaded
|
||
Chrome Cache Entry: 72
|
JSON data
|
dropped
|
||
Chrome Cache Entry: 73
|
Web Open Font Format (Version 2), TrueType, length 84396, version 2.983
|
downloaded
|
||
Chrome Cache Entry: 74
|
GIF image data, version 89a, 32 x 16
|
dropped
|
||
Chrome Cache Entry: 75
|
ASCII text, with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 76
|
ASCII text, with very long lines (1577)
|
downloaded
|
||
Chrome Cache Entry: 77
|
Unicode text, UTF-8 text, with very long lines (65474), with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 78
|
ASCII text, with very long lines (65451)
|
downloaded
|
||
Chrome Cache Entry: 79
|
JSON data
|
dropped
|
||
Chrome Cache Entry: 80
|
JSON data
|
downloaded
|
||
Chrome Cache Entry: 81
|
SVG Scalable Vector Graphics image
|
downloaded
|
||
Chrome Cache Entry: 82
|
Unicode text, UTF-8 text, with very long lines (52751), with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 83
|
JSON data
|
dropped
|
||
Chrome Cache Entry: 84
|
PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 85
|
JSON data
|
dropped
|
||
Chrome Cache Entry: 86
|
Unicode text, UTF-8 text, with very long lines (65535), with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 87
|
JSON data
|
dropped
|
||
Chrome Cache Entry: 88
|
JSON data
|
downloaded
|
||
Chrome Cache Entry: 89
|
ASCII text, with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 90
|
JSON data
|
downloaded
|
||
Chrome Cache Entry: 91
|
JSON data
|
downloaded
|
||
Chrome Cache Entry: 92
|
ASCII text, with no line terminators
|
dropped
|
||
Chrome Cache Entry: 93
|
JSON data
|
dropped
|
||
Chrome Cache Entry: 94
|
JSON data
|
downloaded
|
There are 32 hidden files, click here to show them.
Processes
Path
|
Cmdline
|
Malicious
|
|
---|---|---|---|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
|
||
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US
--service-sandbox-type=none --mojo-platform-channel-handle=2420 --field-trial-handle=2352,i,14210594405034482032,7056984617740037461,262144
--disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction
/prefetch:8
|
||
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" "https://app.box.com/s/ktl5qtvf2us1megbgmjabwqaxcdy69b5"
|
URLs
Name
|
IP
|
Malicious
|
|
---|---|---|---|
https://app.box.com/s/ktl5qtvf2us1megbgmjabwqaxcdy69b5
|
|||
https://notes.services.box.com/1001/03/1/1/socket.io/?clientVersion=8.2557.3&EIO=4&transport=polling&t=Oxs3tN5&sid=kL9tPrtmLDsW6ahGAOLb
|
74.112.186.144
|
||
https://notes.services.box.com/client_log
|
74.112.186.144
|
||
https://notes.services.box.com/1001/03/1/1/socket.io/?clientVersion=8.2557.3&EIO=4&transport=websocket&sid=N_2OZOLR87QXlSdMAOLQ
|
74.112.186.144
|
||
https://notes.services.box.com/app_init
|
74.112.186.144
|
||
https://notes.services.box.com/1001/03/1/1/socket.io/?clientVersion=8.2557.3&EIO=4&transport=polling&t=Oxs3zEn&sid=FoOQJGiBEpNtnrgDAOLz
|
74.112.186.144
|
||
https://notes.services.box.com/1001/03/1/1/socket.io/?clientVersion=8.2557.3&EIO=4&transport=websocket&sid=FoOQJGiBEpNtnrgDAOLz
|
74.112.186.144
|
||
https://notes.services.box.com/1001/03/1/1/socket.io/?clientVersion=8.2557.3&EIO=4&transport=polling&t=Oxs3tYL&sid=kL9tPrtmLDsW6ahGAOLb
|
74.112.186.144
|
||
https://notes.services.box.com/1001/03/1/1/socket.io/?clientVersion=8.2557.3&EIO=4&transport=polling&t=Oxs409C&sid=fzxFP2h5MktguRj0AOMI
|
74.112.186.144
|
||
https://notes.services.box.com/1001/03/1/1/socket.io/?clientVersion=8.2557.3&EIO=4&transport=websocket&sid=fzxFP2h5MktguRj0AOMI
|
74.112.186.144
|
||
https://app.box.com/notes/1506503934565?s=ktl5qtvf2us1megbgmjabwqaxcdy69b5
|
|||
https://notes.services.box.com/1001/03/1/1/socket.io/?clientVersion=8.2557.3&EIO=4&transport=websocket&sid=PpSsGChryM9q1WAqAOLo
|
74.112.186.144
|
||
https://cdn01.boxcdn.net/fonts/1.0.2/lato/Lato-Bold.woff2
|
unknown
|
||
https://notes.services.box.com/1001/03/1/1/socket.io/?clientVersion=8.2557.3&EIO=4&transport=polling&t=Oxs3wnU&sid=PpSsGChryM9q1WAqAOLo
|
74.112.186.144
|
||
https://notes.services.box.com/1001/03/1/1/socket.io/?clientVersion=8.2557.3&EIO=4&transport=polling&t=Oxs3ywk
|
74.112.186.144
|
||
https://notes.services.box.com/split-proxy/mySegments/2
|
74.112.186.144
|
||
https://notes.services.box.com/1001/03/1/1/socket.io/?clientVersion=8.2557.3&EIO=4&transport=websocket&sid=kL9tPrtmLDsW6ahGAOLb
|
74.112.186.144
|
||
https://notes.services.box.com/1001/03/1/1/socket.io/?clientVersion=8.2557.3&EIO=4&transport=polling&t=Oxs3wxZ&sid=PpSsGChryM9q1WAqAOLo
|
74.112.186.144
|
||
https://notes.services.box.com/1001/03/1/1/socket.io/?clientVersion=8.2557.3&EIO=4&transport=polling&t=Oxs3r5B&sid=N_2OZOLR87QXlSdMAOLQ
|
74.112.186.144
|
||
https://notes.services.box.com/1001/03/1/1/socket.io/?clientVersion=8.2557.3&EIO=4&transport=polling&t=Oxs40M-&sid=fzxFP2h5MktguRj0AOMI
|
74.112.186.144
|
||
https://notes.services.box.com/1001/03/1/1/socket.io/?clientVersion=8.2557.3&EIO=4&transport=polling&t=Oxs3rFY&sid=N_2OZOLR87QXlSdMAOLQ
|
74.112.186.144
|
||
https://notes.services.box.com/1001/03/1/1/socket.io/?clientVersion=8.2557.3&EIO=4&transport=polling&t=Oxs3tCg
|
74.112.186.144
|
||
https://notes.services.box.com/1001/03/1/1/socket.io/?clientVersion=8.2557.3&EIO=4&transport=polling&t=Oxs3__v&sid=fzxFP2h5MktguRj0AOMI
|
74.112.186.144
|
||
https://notes.services.box.com/1001/03/1/1/socket.io/?clientVersion=8.2557.3&EIO=4&transport=polling&t=Oxs3zEW&sid=FoOQJGiBEpNtnrgDAOLz
|
74.112.186.144
|
||
https://notes.services.box.com/p/note?fileId=1506503934565&sharedLink=https%3A%2F%2Fapp.box.com%2Fs%2Fktl5qtvf2us1megbgmjabwqaxcdy69b5&hostname=app.box.com
|
|||
https://notes.services.box.com/split-proxy/splitChanges?since=-1
|
74.112.186.144
|
||
https://notes.services.box.com/1001/03/1/1/socket.io/?clientVersion=8.2557.3&EIO=4&transport=polling&t=Oxs3rQC&sid=N_2OZOLR87QXlSdMAOLQ
|
74.112.186.144
|
||
https://notes.services.box.com/1001/03/1/1/socket.io/?clientVersion=8.2557.3&EIO=4&transport=polling&t=Oxs3wba
|
74.112.186.144
|
||
https://client-log.box.com/analytics-events/
|
74.112.186.144
|
||
https://notes.services.box.com/1001/03/1/1/socket.io/?clientVersion=8.2557.3&EIO=4&transport=polling&t=Oxs3tN4&sid=kL9tPrtmLDsW6ahGAOLb
|
74.112.186.144
|
||
https://notes.services.box.com/ep/pad/diagnosticInfo
|
74.112.186.144
|
||
https://notes.services.box.com/1001/03/1/1/socket.io/?clientVersion=8.2557.3&EIO=4&transport=polling&t=Oxs3z4i&sid=FoOQJGiBEpNtnrgDAOLz
|
74.112.186.144
|
||
https://notes.services.box.com/clientSocketConnectionInfo?fileId=1506503934565&_=1713525176077
|
74.112.186.144
|
||
https://notes.services.box.com/clientSocketConnectionInfo?fileId=1506503934565&_=1713525176076
|
74.112.186.144
|
||
https://notes.services.box.com/clientSocketConnectionInfo?fileId=1506503934565&_=1713525176075
|
74.112.186.144
|
||
https://notes.services.box.com/clientSocketConnectionInfo?fileId=1506503934565&_=1713525176074
|
74.112.186.144
|
||
https://cdn01.boxcdn.net/fonts/1.0.2/lato/Lato-Regular.woff
|
unknown
|
||
https://notes.services.box.com/1001/03/1/1/socket.io/?clientVersion=8.2557.3&EIO=4&transport=polling&t=Oxs3r5O&sid=N_2OZOLR87QXlSdMAOLQ
|
74.112.186.144
|
||
https://cdn01.boxcdn.net/fonts/1.0.2/lato/Lato-Bold.woff
|
unknown
|
||
https://notes.services.box.com/1001/03/1/1/socket.io/?clientVersion=8.2557.3&EIO=4&transport=polling&t=Oxs3_ph
|
74.112.186.144
|
||
https://notes.services.box.com/1001/03/1/1/socket.io/?clientVersion=8.2557.3&EIO=4&transport=polling&t=Oxs3wnV&sid=PpSsGChryM9q1WAqAOLo
|
74.112.186.144
|
||
https://notes.services.box.com/1001/03/1/1/socket.io/?clientVersion=8.2557.3&EIO=4&transport=polling&t=Oxs3qPn
|
74.112.186.144
|
||
https://cdn01.boxcdn.net/fonts/1.0.2/lato/Lato-Regular.woff2
|
unknown
|
||
https://notes.services.box.com/1001/03/1/1/socket.io/?clientVersion=8.2557.3&EIO=4&transport=polling&t=Oxs3__r&sid=fzxFP2h5MktguRj0AOMI
|
74.112.186.144
|
||
https://notes.services.box.com/1001/03/1/1/socket.io/?clientVersion=8.2557.3&EIO=4&transport=polling&t=Oxs3wy0&sid=PpSsGChryM9q1WAqAOLo
|
74.112.186.144
|
||
https://notes.services.box.com/split-proxy/mySegments/unknown
|
74.112.186.144
|
||
https://notes.services.box.com/1001/03/1/1/socket.io/?clientVersion=8.2557.3&EIO=4&transport=polling&t=Oxs4099&sid=fzxFP2h5MktguRj0AOMI
|
74.112.186.144
|
||
https://notes.services.box.com/1001/03/1/1/socket.io/?clientVersion=8.2557.3&EIO=4&transport=polling&t=Oxs3rQ9&sid=N_2OZOLR87QXlSdMAOLQ
|
74.112.186.144
|
||
https://notes.services.box.com/split-proxy/mySegments/662251b51c7c34.67511927
|
74.112.186.144
|
||
https://app.box.com/s/ktl5qtvf2us1megbgmjabwqaxcdy69b5
|
74.112.186.144
|
||
https://notes.services.box.com/1001/03/1/1/socket.io/?clientVersion=8.2557.3&EIO=4&transport=polling&t=Oxs3z4j&sid=FoOQJGiBEpNtnrgDAOLz
|
74.112.186.144
|
||
https://notes.services.box.com/1001/03/1/1/socket.io/?clientVersion=8.2557.3&EIO=4&transport=polling&t=Oxs3tYJ&sid=kL9tPrtmLDsW6ahGAOLb
|
74.112.186.144
|
||
https://notes.services.box.com/1001/03/1/1/socket.io/?clientVersion=8.2557.3&EIO=4&transport=polling&t=Oxs3tgz&sid=kL9tPrtmLDsW6ahGAOLb
|
74.112.186.144
|
||
https://notes.services.box.com/1001/03/1/1/socket.io/?clientVersion=8.2557.3&EIO=4&transport=polling&t=Oxs3rFS&sid=N_2OZOLR87QXlSdMAOLQ
|
74.112.186.144
|
There are 43 hidden URLs, click here to show them.
Domains
Name
|
IP
|
Malicious
|
|
---|---|---|---|
notes.services.box.com
|
74.112.186.144
|
||
www.google.com
|
142.250.9.105
|
||
app.box.com
|
74.112.186.144
|
||
client-log.box.com
|
74.112.186.144
|
||
fp2e7a.wpc.phicdn.net
|
192.229.211.108
|
||
cdn01.boxcdn.net
|
unknown
|
IPs
IP
|
Domain
|
Country
|
Malicious
|
|
---|---|---|---|---|
74.112.186.144
|
notes.services.box.com
|
United States
|
||
142.250.9.105
|
www.google.com
|
United States
|
||
192.168.2.4
|
unknown
|
unknown
|
||
239.255.255.250
|
unknown
|
Reserved
|
||
192.168.2.13
|
unknown
|
unknown
|
||
192.168.2.23
|
unknown
|
unknown
|
DOM / HTML
URL
|
Malicious
|
|
---|---|---|
https://app.box.com/notes/1506503934565?s=ktl5qtvf2us1megbgmjabwqaxcdy69b5
|
||
https://notes.services.box.com/p/note?fileId=1506503934565&sharedLink=https%3A%2F%2Fapp.box.com%2Fs%2Fktl5qtvf2us1megbgmjabwqaxcdy69b5&hostname=app.box.com
|
||
https://notes.services.box.com/p/note?fileId=1506503934565&sharedLink=https%3A%2F%2Fapp.box.com%2Fs%2Fktl5qtvf2us1megbgmjabwqaxcdy69b5&hostname=app.box.com
|
||
https://notes.services.box.com/p/note?fileId=1506503934565&sharedLink=https%3A%2F%2Fapp.box.com%2Fs%2Fktl5qtvf2us1megbgmjabwqaxcdy69b5&hostname=app.box.com
|