Files
File Path
|
Type
|
Category
|
Malicious
|
|
---|---|---|---|---|
Chrome Cache Entry: 43
|
SVG Scalable Vector Graphics image
|
dropped
|
||
Chrome Cache Entry: 44
|
ASCII text
|
downloaded
|
||
Chrome Cache Entry: 45
|
MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel
|
downloaded
|
||
Chrome Cache Entry: 46
|
Web Open Font Format (Version 2), TrueType, length 27736, version 1.0
|
downloaded
|
||
Chrome Cache Entry: 47
|
MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel
|
dropped
|
||
Chrome Cache Entry: 48
|
SVG Scalable Vector Graphics image
|
downloaded
|
||
Chrome Cache Entry: 49
|
Web Open Font Format (Version 2), TrueType, length 27580, version 1.0
|
downloaded
|
Processes
Path
|
Cmdline
|
Malicious
|
|
---|---|---|---|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
|
||
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US
--service-sandbox-type=none --mojo-platform-channel-handle=2052 --field-trial-handle=2012,i,11099750599336616528,5648605070552038243,262144
--disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction
/prefetch:8
|
||
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" "https://volaris.my.salesforce.com/setup/emailverif?oid=00D300000006mlp&k=Cj4KNQoPMDBEMzAwMDAwMDA2bWxwEg8wMkczNDAwMDAwMEg0RnAaDzAwNTB5MDAwMDBFME9leiAFGJLh35XxMRIQ05NYhI4tFVVW2re7mv4wOxoM_uZbIhh4D4hEDQFOIoIBYTmeUFFWglUQQxkPyj-CZUtrHAPhHvPlA2JOeR2K3afOhhTKA1kBfiZ9F_SrEbAQnnAZTtz1jMLFIpXCDl94jMKBqoTMBIwXbfMiD8h_y9RSRMkjT55qeoeh1IvWH0KsR9_1vrh1wvQKEfTgI_sA_CVO9MM3slqp9GcFj-yKX1Y6_Q%3D%3D"
|
URLs
Name
|
IP
|
Malicious
|
|
---|---|---|---|
https://volaris.my.salesforce.com/setup/emailverif?oid=00D300000006mlp&k=Cj4KNQoPMDBEMzAwMDAwMDA2bWxwEg8wMkczNDAwMDAwMEg0RnAaDzAwNTB5MDAwMDBFME9leiAFGJLh35XxMRIQ05NYhI4tFVVW2re7mv4wOxoM_uZbIhh4D4hEDQFOIoIBYTmeUFFWglUQQxkPyj-CZUtrHAPhHvPlA2JOeR2K3afOhhTKA1kBfiZ9F_SrEbAQnnAZTtz1jMLFIpXCDl94jMKBqoTMBIwXbfMiD8h_y9RSRMkjT55qeoeh1IvWH0KsR9_1vrh1wvQKEfTgI_sA_CVO9MM3slqp9GcFj-yKX1Y6_Q%3D%3D
|
|||
https://volaris.my.salesforce.com/login/assets/fonts/SalesforceSans/SalesforceSans-Light.woff2
|
3.96.182.255
|
||
https://volaris.my.salesforce.com/setup/emailverif?oid=00D300000006mlp&k=Cj4KNQoPMDBEMzAwMDAwMDA2bWxwEg8wMkczNDAwMDAwMEg0RnAaDzAwNTB5MDAwMDBFME9leiAFGJLh35XxMRIQ05NYhI4tFVVW2re7mv4wOxoM_uZbIhh4D4hEDQFOIoIBYTmeUFFWglUQQxkPyj-CZUtrHAPhHvPlA2JOeR2K3afOhhTKA1kBfiZ9F_SrEbAQnnAZTtz1jMLFIpXCDl94jMKBqoTMBIwXbfMiD8h_y9RSRMkjT55qeoeh1IvWH0KsR9_1vrh1wvQKEfTgI_sA_CVO9MM3slqp9GcFj-yKX1Y6_Q%3D%3D
|
3.96.182.255
|
||
https://volaris.my.salesforce.com/img/logo214.svg
|
3.96.182.255
|
||
https://volaris.my.salesforce.com/login/assets/fonts/SalesforceSans/SalesforceSans-Regular.woff2
|
3.96.182.255
|
||
https://volaris.my.salesforce.com/setup/user/emailchangesuccess.jsp?oid=00D300000006mlp&uid=00580000003daJk&t=u
|
|||
https://volaris.my.salesforce.com/css/sfdc_210.css?v=2
|
3.96.182.255
|
||
https://volaris.my.salesforce.com/favicon.ico
|
3.96.182.255
|
Domains
Name
|
IP
|
Malicious
|
|
---|---|---|---|
www.google.com
|
172.217.215.103
|
||
can56.sfdc-58ktaz.salesforce.com
|
3.96.182.255
|
||
fp2e7a.wpc.phicdn.net
|
192.229.211.108
|
||
volaris.my.salesforce.com
|
unknown
|
IPs
IP
|
Domain
|
Country
|
Malicious
|
|
---|---|---|---|---|
239.255.255.250
|
unknown
|
Reserved
|
||
172.217.215.103
|
www.google.com
|
United States
|
||
192.168.2.14
|
unknown
|
unknown
|
||
3.96.182.255
|
can56.sfdc-58ktaz.salesforce.com
|
United States
|
||
192.168.2.4
|
unknown
|
unknown
|
||
192.168.2.5
|
unknown
|
unknown
|
DOM / HTML
URL
|
Malicious
|
|
---|---|---|
https://volaris.my.salesforce.com/setup/user/emailchangesuccess.jsp?oid=00D300000006mlp&uid=00580000003daJk&t=u
|