IOC Report
https://www.shortstaysummit.org/wp-content/plugins/pdfjs-viewer-shortcode/pdfjs/web/viewer.php?file=https://www.shortstaysummit.org/wp-content/uploads/2024/04/sssummit24-event-guide.pdf&attachment_id=0&dbutton=true&pbutton=true&obutton=false&sbutton=true#zoom=auto&pagemode=none&_wpnonce=657d21dea8

loading gif

Files

File Path
Type
Category
Malicious
Chrome Cache Entry: 51
exported SGML document, ASCII text
downloaded
Chrome Cache Entry: 52
exported SGML document, ASCII text, with very long lines (310)
downloaded
Chrome Cache Entry: 53
exported SGML document, ASCII text
dropped
Chrome Cache Entry: 54
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 55
assembler source, ASCII text
downloaded
Chrome Cache Entry: 56
HTML document, Unicode text, UTF-8 text
downloaded
Chrome Cache Entry: 57
exported SGML document, ASCII text
dropped
Chrome Cache Entry: 58
ASCII text, with no line terminators
downloaded
Chrome Cache Entry: 59
exported SGML document, ASCII text
downloaded
Chrome Cache Entry: 60
exported SGML document, ASCII text
dropped
Chrome Cache Entry: 61
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 62
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel
dropped
Chrome Cache Entry: 63
ASCII text
downloaded
Chrome Cache Entry: 64
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 65
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 66
exported SGML document, ASCII text
dropped
Chrome Cache Entry: 67
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 68
exported SGML document, ASCII text, with very long lines (435)
dropped
Chrome Cache Entry: 69
exported SGML document, ASCII text, with very long lines (310)
dropped
Chrome Cache Entry: 70
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 71
exported SGML document, ASCII text, with very long lines (423)
dropped
Chrome Cache Entry: 72
Unicode text, UTF-8 text
dropped
Chrome Cache Entry: 73
exported SGML document, ASCII text
downloaded
Chrome Cache Entry: 74
exported SGML document, ASCII text, with very long lines (423)
downloaded
Chrome Cache Entry: 75
exported SGML document, ASCII text, with very long lines (435)
downloaded
Chrome Cache Entry: 76
ASCII text
dropped
Chrome Cache Entry: 77
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 78
exported SGML document, ASCII text
downloaded
Chrome Cache Entry: 79
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 80
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 81
ASCII text, with very long lines (999)
downloaded
Chrome Cache Entry: 82
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 83
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel
downloaded
Chrome Cache Entry: 84
HTML document, Unicode text, UTF-8 text, with very long lines (22764)
downloaded
Chrome Cache Entry: 85
ASCII text, with very long lines (999)
downloaded
Chrome Cache Entry: 86
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 87
exported SGML document, ASCII text
downloaded
Chrome Cache Entry: 88
Unicode text, UTF-8 text
downloaded
Chrome Cache Entry: 89
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 90
exported SGML document, ASCII text
dropped
Chrome Cache Entry: 91
ASCII text, with very long lines (997)
downloaded
There are 32 hidden files, click here to show them.

Processes

Path
Cmdline
Malicious
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2196 --field-trial-handle=1900,i,16196842822268131536,13884338827383688829,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" "https://www.shortstaysummit.org/wp-content/plugins/pdfjs-viewer-shortcode/pdfjs/web/viewer.php?file=https://www.shortstaysummit.org/wp-content/uploads/2024/04/sssummit24-event-guide.pdf&attachment_id=0&dbutton=true&pbutton=true&obutton=false&sbutton=true#zoom=auto&pagemode=none&_wpnonce=657d21dea8"

URLs

Name
IP
Malicious
https://www.shortstaysummit.org/wp-content/plugins/pdfjs-viewer-shortcode/pdfjs/web/viewer.php?file=https://www.shortstaysummit.org/wp-content/uploads/2024/04/sssummit24-event-guide.pdf&attachment_id=0&dbutton=true&pbutton=true&obutton=false&sbutton=true#zoom=auto&pagemode=none&_wpnonce=657d21dea8
https://www.shortstaysummit.org/wp-content/plugins/pdfjs-viewer-shortcode/pdfjs/web/viewer.css
82.196.243.42
https://use.typekit.net/nnj5vrv.css
unknown
https://www.shortstaysummit.org/wp-content/plugins/gravityforms/assets/js/dist/utils.min.js?ver=59d9
unknown
https://www.shortstaysummit.org/wp-content/plugins/gravityforms/js/gravityforms.min.js?ver=2.7.13
unknown
https://www.shortstaysummit.org/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.11
unknown
https://www.shortstaysummit.org/wp-content/plugins/pdfjs-viewer-shortcode/pdfjs/web/images/toolbarButton-sidebarToggle.svg
82.196.243.42
https://www.shortstaysummit.org/wp-content/plugins/pdfjs-viewer-shortcode/pdfjs/web/images/toolbarButton-secondaryToolbarToggle.svg
82.196.243.42
http://mozilla.github.io
unknown
https://www.shortstaysummit.org/wp-content/plugins/gravityforms/js/jquery.json.min.js?ver=2.7.13
unknown
https://www.shortstaysummit.org/wp-content/uploads/2024/04/sssummit24-event-guide.pdf
82.196.243.42
http://mozilla.org/MPL/2.0/.
unknown
https://mozilla.github.io
unknown
https://www.shortstaysummit.org/wp-content/plugins/pdfjs-viewer-shortcode/pdfjs/web/images/toolbarButton-viewThumbnail.svg
82.196.243.42
https://www.shortstaysummit.org/wp-includes/js/dist/a11y.min.js?ver=7032343a947cfccf5608
unknown
https://www.shortstaysummit.org/wp-content/plugins/pdfjs-viewer-shortcode/pdfjs/web/images/toolbarButton-presentationMode.svg
82.196.243.42
https://www.shortstaysummit.org/wp-content/plugins/pdfjs-viewer-shortcode/pdfjs/web/images/toolbarButton-search.svg
82.196.243.42
https://www.shortstaysummit.org/xmlrpc.php?rsd
unknown
https://www.shortstaysummit.org/wp-content/plugins/pdfjs-viewer-shortcode/pdfjs/build/pdf.worker.js
82.196.243.42
https://www.shortstaysummit.org/wp-content/plugins/pdfjs-viewer-shortcode/pdfjs/web/images/toolbarButton-viewLayers.svg
82.196.243.42
https://www.shortstaysummit.org/wp-includes/js/dist/dom-ready.min.js?ver=392bdd43726760d1f3ca
unknown
https://ukstaa.org/wp-content/uploads/2021/07/STAA-Ts-and-Cs.pdf
unknown
https://www.shortstaysummit.org/wp-content/themes/ukstaa-events/js/main.bundle.js?ver=1705406014
unknown
https://www.shortstaysummit.org/wp-includes/js/dist/i18n.min.js?ver=7701b0c3857f914212ef
unknown
https://www.shortstaysummit.org/wp-includes/js/dist/hooks.min.js?ver=c6aec9a8d4e5a5d543a1
unknown
https://www.shortstaysummit.org/wp-json/
unknown
https://www.shortstaysummit.org/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
unknown
https://www.shortstaysummit.org/wp-content/plugins/gravityforms/assets/css/dist/gravity-forms-orbita
unknown
https://ukstaa.org/wp-content/uploads/2021/07/STAA-Ts-and-Cs.pdf"
unknown
https://www.shortstaysummit.org/wp-content/plugins/pdfjs-viewer-shortcode/pdfjs/web/images/toolbarButton-pageUp.svg
82.196.243.42
http://www.apache.org/licenses/LICENSE-2.0
unknown
https://www.shortstaysummit.org/wp-content/plugins/gravityforms/assets/css/dist/basic.min.css?ver=2.
unknown
https://www.shortstaysummit.org/wp-content/plugins/pdfjs-viewer-shortcode/pdfjs/web/images/toolbarButton-viewOutline.svg
82.196.243.42
https://www.shortstaysummit.org/wp-content/plugins/pdfjs-viewer-shortcode/pdfjs/web/viewer.php?file=https://www.shortstaysummit.org/wp-content/uploads/2024/04/sssummit24-event-guide.pdf&attachment_id=0&dbutton=true&pbutton=true&obutton=false&sbutton=true
82.196.243.42
https://www.shortstaysummit.org/wp-content/plugins/pdfjs-viewer-shortcode/pdfjs/web/images/toolbarButton-zoomOut.svg
82.196.243.42
https://www.shortstaysummit.org/wp-content/plugins/gravityforms/assets/js/dist/scripts-theme.min.js?
unknown
https://www.shortstaysummit.org/wp-content/plugins/gravityforms/images/spinner.svg
unknown
https://api.w.org/
unknown
https://www.shortstaysummit.org/wp-content/plugins/pdfjs-viewer-shortcode/pdfjs/web/locale/en-US/viewer.properties
82.196.243.42
https://www.shortstaysummit.org/wp-content/plugins/gravityforms/assets/js/dist/vendor-theme.min.js?v
unknown
https://github.com/adobe-type-tools/cmap-resources
unknown
https://www.shortstaysummit.org/wp-content/plugins/pdfjs-viewer-shortcode/pdfjs/build/pdf.js
82.196.243.42
https://www.shortstaysummit.org/wp-content/themes/ukstaa-events/css/style.css?ver=1705484648
unknown
https://www.shortstaysummit.org/favicon.ico
82.196.243.42
https://www.shortstaysummit.org/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2
unknown
https://www.shortstaysummit.org/wp-content/plugins/pdfjs-viewer-shortcode/pdfjs/web/images/toolbarButton-menuArrow.svg
82.196.243.42
https://www.shortstaysummit.org/wp-content/plugins/gravityforms/js/placeholders.jquery.min.js?ver=2.
unknown
https://www.shortstaysummit.org/wp-content/plugins/gravityforms/assets/css/dist/gravity-forms-theme-
unknown
https://www.shortstaysummit.org/wp-content/plugins/pdfjs-viewer-shortcode/pdfjs/web/viewer.php?file=https://www.shortstaysummit.org/wp-content/uploads/2024/04/sssummit24-event-guide.pdf&attachment_id=0&dbutton=true&pbutton=true&obutton=false&sbutton=true#zoom=auto&pagemode=none&_wpnonce=657d21dea8
https://www.shortstaysummit.org/wp-content/plugins/pdfjs-viewer-shortcode/pdfjs/web/images/toolbarButton-pageDown.svg
82.196.243.42
https://bugzilla.mozilla.org/show_bug.cgi?id=706209
unknown
https://www.shortstaysummit.org/wp-content/themes/ukstaa-events/js/jquery-3.6.0.min.js?ver=3.6.0
unknown
https://www.shortstaysummit.org/wp-content/plugins/pdfjs-viewer-shortcode/pdfjs/web/viewer.js
82.196.243.42
https://www.shortstaysummit.org/wp-content/plugins/pdfjs-viewer-shortcode/pdfjs/web/images/toolbarButton-bookmark.svg
82.196.243.42
https://www.shortstaysummit.org/wp-content/plugins/pdfjs-viewer-shortcode/pdfjs/web/images/toolbarButton-viewAttachments.svg
82.196.243.42
https://www.shortstaysummit.org/wp-content/plugins/pdfjs-viewer-shortcode/inc/../blocks/dist/style.c
unknown
https://www.shortstaysummit.org/wp-content/plugins/pdfjs-viewer-shortcode/pdfjs/web/locale/locale.properties
82.196.243.42
https://www.shortstaysummit.org/wp-content/plugins/pdfjs-viewer-shortcode/pdfjs/web/images/toolbarButton-zoomIn.svg
82.196.243.42
There are 47 hidden URLs, click here to show them.

Domains

Name
IP
Malicious
bg.microsoft.map.fastly.net
199.232.214.172
shortstaysummit.org
82.196.243.42
www.google.com
142.250.101.99
fp2e7a.wpc.phicdn.net
192.229.211.108
www.shortstaysummit.org
unknown

IPs

IP
Domain
Country
Malicious
142.250.101.99
www.google.com
United States
239.255.255.250
unknown
Reserved
82.196.243.42
shortstaysummit.org
United Kingdom
192.168.2.4
unknown
unknown
192.168.2.5
unknown
unknown

DOM / HTML

URL
Malicious
https://www.shortstaysummit.org/wp-content/plugins/pdfjs-viewer-shortcode/pdfjs/web/viewer.php?file=https://www.shortstaysummit.org/wp-content/uploads/2024/04/sssummit24-event-guide.pdf&attachment_id=0&dbutton=true&pbutton=true&obutton=false&sbutton=true#zoom=auto&pagemode=none&_wpnonce=657d21dea8
https://www.shortstaysummit.org/wp-content/plugins/pdfjs-viewer-shortcode/pdfjs/web/viewer.php?file=https://www.shortstaysummit.org/wp-content/uploads/2024/04/sssummit24-event-guide.pdf&attachment_id=0&dbutton=true&pbutton=true&obutton=false&sbutton=true#zoom=auto&pagemode=none&_wpnonce=657d21dea8
https://www.shortstaysummit.org/wp-content/plugins/pdfjs-viewer-shortcode/pdfjs/web/viewer.php?file=https://www.shortstaysummit.org/wp-content/uploads/2024/04/sssummit24-event-guide.pdf&attachment_id=0&dbutton=true&pbutton=true&obutton=false&sbutton=true#zoom=auto&pagemode=none&_wpnonce=657d21dea8