IOC Report
https://sigtn.com////////utils/emt.cfm?client_id=9195153&campaign_id=73466&link=neoparts%E3%80%82com.br./dayo/fks6/TWFncm8uWXVkZWdvLkphdmllckBkZW1lLWdyb3VwLmNvbQ==$

loading gif

Files

File Path
Type
Category
Malicious
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Thu Apr 25 16:49:38 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
dropped
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Thu Apr 25 16:49:38 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
dropped
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Oct 6 08:05:01 2023, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
dropped
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Thu Apr 25 16:49:38 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
dropped
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Thu Apr 25 16:49:38 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
dropped
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Thu Apr 25 16:49:38 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
dropped
Chrome Cache Entry: 187
ASCII text, with very long lines (8968)
downloaded
Chrome Cache Entry: 189
GIF image data, version 89a, 352 x 3
dropped
Chrome Cache Entry: 190
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel
dropped
Chrome Cache Entry: 193
gzip compressed data, original size modulo 2^32 513
downloaded
Chrome Cache Entry: 194
gzip compressed data, from Unix, original size modulo 2^32 141333
downloaded
Chrome Cache Entry: 196
ASCII text, with very long lines (3218)
downloaded
Chrome Cache Entry: 197
ASCII text, with very long lines (1151)
downloaded
Chrome Cache Entry: 198
Web Open Font Format, TrueType, length 29440, version 1.0
downloaded
Chrome Cache Entry: 199
ASCII text, with very long lines (36899)
downloaded
Chrome Cache Entry: 201
JSON data
downloaded
Chrome Cache Entry: 203
ASCII text, with very long lines (6817)
downloaded
Chrome Cache Entry: 204
PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 205
ASCII text, with very long lines (6334)
downloaded
Chrome Cache Entry: 207
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 208
Web Open Font Format, TrueType, length 29916, version 1.0
downloaded
Chrome Cache Entry: 209
TrueType Font data, 15 tables, 1st "FFTM", 26 names, Macintosh
downloaded
Chrome Cache Entry: 210
ASCII text, with CRLF line terminators
downloaded
Chrome Cache Entry: 211
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 680x500, components 3
downloaded
Chrome Cache Entry: 212
ASCII text, with very long lines (6664)
downloaded
Chrome Cache Entry: 213
ASCII text, with very long lines (7885)
downloaded
Chrome Cache Entry: 214
ASCII text
downloaded
Chrome Cache Entry: 216
ASCII text, with CRLF line terminators
downloaded
Chrome Cache Entry: 217
ASCII text, with very long lines (47828)
downloaded
Chrome Cache Entry: 218
Web Open Font Format, TrueType, length 30028, version 1.0
downloaded
Chrome Cache Entry: 219
ASCII text, with very long lines (22172)
downloaded
Chrome Cache Entry: 221
ASCII text, with very long lines (2987)
downloaded
Chrome Cache Entry: 223
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 680x500, components 3
downloaded
Chrome Cache Entry: 225
ASCII text, with very long lines (40825)
downloaded
Chrome Cache Entry: 226
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 680x500, components 3
dropped
Chrome Cache Entry: 227
ASCII text, with very long lines (5261)
downloaded
Chrome Cache Entry: 229
ASCII text, with very long lines (11690)
downloaded
Chrome Cache Entry: 230
gzip compressed data, from Unix, original size modulo 2^32 26679
downloaded
Chrome Cache Entry: 231
ASCII text, with very long lines (32341), with CRLF line terminators
downloaded
Chrome Cache Entry: 232
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=12, description=Croatia. Panoramic coast and yacht as a background from top view. Turquoise water background from top view. Beach and waves. Tr, manufacturer=Hasselblad, model=L1D-20c, orientation=upper-left, xresolution=318, yresolution=326, resolutionunit=2, software=Adobe Photoshop CC 2017 (Windows), datetime=2019:08:15 15:28:46, GPS-Data], baseline, precision 8, 2901x1695, components 3
downloaded
Chrome Cache Entry: 233
ASCII text, with very long lines (4237)
downloaded
Chrome Cache Entry: 234
ASCII text
downloaded
Chrome Cache Entry: 235
HTML document, ASCII text, with very long lines (28136), with CRLF, LF line terminators
downloaded
Chrome Cache Entry: 236
ASCII text, with very long lines (921)
downloaded
Chrome Cache Entry: 237
ASCII text, with very long lines (4520)
downloaded
Chrome Cache Entry: 238
MS Windows icon resource - 6 icons, 16x16 with PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced, 32 bits/pixel, 24x24 with PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced, 32 bits/pixel
downloaded
Chrome Cache Entry: 239
Mac OS X icon, 802 bytes, "TOC " type
downloaded
Chrome Cache Entry: 240
ASCII text, with very long lines (5753)
downloaded
Chrome Cache Entry: 242
ASCII text, with very long lines (11944)
downloaded
Chrome Cache Entry: 245
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 588x260, components 3
downloaded
Chrome Cache Entry: 246
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 247
GIF image data, version 89a, 352 x 3
dropped
Chrome Cache Entry: 249
ASCII text
downloaded
Chrome Cache Entry: 250
Web Open Font Format (Version 2), TrueType, length 46704, version 1.0
downloaded
Chrome Cache Entry: 252
gzip compressed data, from Unix, original size modulo 2^32 15720
downloaded
Chrome Cache Entry: 254
Web Open Font Format, TrueType, length 1128, version 1.0
downloaded
Chrome Cache Entry: 256
ASCII text, with very long lines (1319)
downloaded
Chrome Cache Entry: 257
ASCII text, with very long lines (6813)
downloaded
Chrome Cache Entry: 258
ASCII text, with very long lines (32108), with CRLF line terminators
downloaded
Chrome Cache Entry: 259
HTML document, ASCII text, with very long lines (14592), with CRLF line terminators
downloaded
Chrome Cache Entry: 260
Web Open Font Format (Version 2), TrueType, length 107144, version 1.0
downloaded
Chrome Cache Entry: 262
gzip compressed data, from Unix, original size modulo 2^32 223841
downloaded
Chrome Cache Entry: 264
ASCII text, with very long lines (13317)
downloaded
Chrome Cache Entry: 266
ASCII text, with no line terminators
downloaded
Chrome Cache Entry: 267
ASCII text, with very long lines (3427)
downloaded
Chrome Cache Entry: 268
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 271
gzip compressed data, from Unix, original size modulo 2^32 55071
downloaded
Chrome Cache Entry: 273
Unicode text, UTF-8 text, with very long lines (44389)
downloaded
Chrome Cache Entry: 274
Web Open Font Format (Version 2), TrueType, length 105556, version 1.0
downloaded
Chrome Cache Entry: 277
HTML document, ASCII text, with very long lines (444), with CRLF, LF line terminators
downloaded
Chrome Cache Entry: 278
ASCII text, with very long lines (3658)
downloaded
Chrome Cache Entry: 279
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 280
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 680x500, components 3
downloaded
Chrome Cache Entry: 281
Unicode text, UTF-8 text, with very long lines (2376)
downloaded
Chrome Cache Entry: 282
gzip compressed data, from Unix, original size modulo 2^32 113084
downloaded
Chrome Cache Entry: 283
Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
downloaded
Chrome Cache Entry: 284
ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 285
ASCII text, with very long lines (686), with CRLF line terminators
downloaded
Chrome Cache Entry: 286
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 384x250, components 3
downloaded
Chrome Cache Entry: 287
ASCII text, with very long lines (2343)
downloaded
Chrome Cache Entry: 288
HTML document, Unicode text, UTF-8 text, with very long lines (9462), with CRLF, LF line terminators
downloaded
Chrome Cache Entry: 289
gzip compressed data, from Unix, original size modulo 2^32 444230
downloaded
Chrome Cache Entry: 291
ASCII text, with very long lines (542)
downloaded
Chrome Cache Entry: 292
ASCII text, with very long lines (51719)
downloaded
Chrome Cache Entry: 294
PNG image data, 280 x 60, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 295
ASCII text, with very long lines (11419)
downloaded
Chrome Cache Entry: 296
Unicode text, UTF-8 text, with very long lines (44299)
downloaded
Chrome Cache Entry: 297
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 384x250, components 3
downloaded
Chrome Cache Entry: 298
ASCII text, with very long lines (14509)
downloaded
Chrome Cache Entry: 299
ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 300
Web Open Font Format (Version 2), TrueType, length 106484, version 1.0
downloaded
Chrome Cache Entry: 302
PNG image data, 2158 x 2174, 8-bit colormap, non-interlaced
downloaded
Chrome Cache Entry: 303
ASCII text, with very long lines (1637)
downloaded
Chrome Cache Entry: 307
Web Open Font Format, TrueType, length 28520, version 1.0
downloaded
Chrome Cache Entry: 308
ASCII text
downloaded
Chrome Cache Entry: 311
gzip compressed data, original size modulo 2^32 3651
downloaded
Chrome Cache Entry: 313
ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 314
ASCII text, with very long lines (1092)
downloaded
Chrome Cache Entry: 316
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 680x500, components 3
downloaded
Chrome Cache Entry: 317
ASCII text, with very long lines (965)
downloaded
Chrome Cache Entry: 318
ASCII text, with very long lines (782)
downloaded
Chrome Cache Entry: 319
Web Open Font Format (Version 2), TrueType, length 30320, version 2.131
downloaded
Chrome Cache Entry: 320
ASCII text, with very long lines (14417)
downloaded
Chrome Cache Entry: 322
JSON data
downloaded
Chrome Cache Entry: 323
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 324
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 75x75, components 3
dropped
Chrome Cache Entry: 326
ASCII text, with very long lines (65536), with no line terminators
dropped
Chrome Cache Entry: 327
Web Open Font Format (Version 2), TrueType, length 100368, version 1.0
downloaded
Chrome Cache Entry: 328
ASCII text, with very long lines (609)
downloaded
Chrome Cache Entry: 330
ASCII text, with no line terminators
downloaded
Chrome Cache Entry: 331
ASCII text, with very long lines (12898)
downloaded
Chrome Cache Entry: 332
GIF image data, version 89a, 220 x 19
downloaded
Chrome Cache Entry: 333
PNG image data, 627 x 627, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 334
ASCII text, with very long lines (3715)
downloaded
Chrome Cache Entry: 335
ASCII text, with very long lines (10746)
downloaded
Chrome Cache Entry: 336
ASCII text, with very long lines (5659)
downloaded
Chrome Cache Entry: 337
ASCII text, with very long lines (1402)
downloaded
Chrome Cache Entry: 341
PNG image data, 3600 x 1096, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 342
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 384x250, components 3
dropped
Chrome Cache Entry: 343
ASCII text, with very long lines (4911)
downloaded
Chrome Cache Entry: 344
ASCII text, with very long lines (19931)
downloaded
Chrome Cache Entry: 345
Unicode text, UTF-8 text, with very long lines (26914)
downloaded
Chrome Cache Entry: 346
TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, icomoon
downloaded
Chrome Cache Entry: 347
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 588x260, components 3
dropped
Chrome Cache Entry: 348
gzip compressed data, from Unix, original size modulo 2^32 2483
downloaded
Chrome Cache Entry: 349
ASCII text, with very long lines (18504)
downloaded
Chrome Cache Entry: 350
ASCII text, with very long lines (2991)
downloaded
Chrome Cache Entry: 351
Unicode text, UTF-8 text, with very long lines (65532), with no line terminators
downloaded
Chrome Cache Entry: 352
ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 353
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3
downloaded
Chrome Cache Entry: 354
gzip compressed data, original size modulo 2^32 1864
downloaded
Chrome Cache Entry: 355
PNG image data, 300 x 370, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 357
ASCII text, with very long lines (5945)
downloaded
Chrome Cache Entry: 358
Web Open Font Format (Version 2), TrueType, length 107304, version 1.0
downloaded
Chrome Cache Entry: 359
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 680x500, components 3
dropped
There are 126 hidden files, click here to show them.

URLs

Name
IP
Malicious
https://sigtn.com////////utils/emt.cfm?client_id=9195153&campaign_id=73466&link=neoparts%E3%80%82com.br./dayo/fks6/TWFncm8uWXVkZWdvLkphdmllckBkZW1lLWdyb3VwLmNvbQ==$
malicious
https://microsoft-microsoft-microsoft-microsoft-microsoft.glowlaundry.com/?office=TWFncm8uWXVkZWdvLkphdmllckBkZW1lLWdyb3VwLmNvbQ&sso_reload=true
malicious
https://microsoft-microsoft-microsoft-microsoft-microsoft.glowlaundry.com/?office=TWFncm8uWXVkZWdvLkphdmllckBkZW1lLWdyb3VwLmNvbQ
malicious
http://neoparts.com.br./favicon.ico
191.252.141.106
 malicious
https://70856dd2-d349baf3.glowlaundry.com/Prefetch/Prefetch.aspx
https://www.imperva.com/why-am-i-seeing-this-page/?src=23&utm_source=blockingpages
http://neoparts.com.br./dayo/fks6/TWFncm8uWXVkZWdvLkphdmllckBkZW1lLWdyb3VwLmNvbQ?utp=consumer&
about:blank
https://www.sigtn.com////////utils/emt.cfm?client_id=9195153&campaign_id=73466&link=neoparts%E3%80%82com.br./dayo/fks6/TWFncm8uWXVkZWdvLkphdmllckBkZW1lLWdyb3VwLmNvbQ==$
https://www.sigtn.com/
https://www.sigtn.com/_Incapsula_Resource?CWUDNSAI=23&xinfo=18-102097637-0%200NNN%20RT%281714067377049%20227%29%20q%280%20-1%20-1%201%29%20r%280%20-1%29%20B15%284%2c200%2c0%29%20U24&incident_id=1551000020162691729-577283466275520658&edet=15&cinfo=04000000&rpinfo=0&mth=GET

Domains

Name
IP
Malicious
8c50548f-d349baf3.glowlaundry.com
46.101.216.85
jq5o3.x.incapdns.net
45.60.73.225
fd8d43ac-d349baf3.glowlaundry.com
46.101.216.85
ethn.io
52.24.153.248
70856dd2-d349baf3.glowlaundry.com
46.101.216.85
01c124c2-d349baf3.glowlaundry.com
46.101.216.85
sigtn.com
45.60.63.178
join.sigtn.com
63.131.146.5
microsoft-microsoft-microsoft-microsoft-microsoft.glowlaundry.com
46.101.216.85
script.hotjar.com
18.64.236.128
nel.impervademo.com
18.223.146.213
cdnjs.cloudflare.com
104.17.25.14
www.google.com
142.250.9.99
3aba6fba-d349baf3.glowlaundry.com
46.101.216.85
ab13.mktossl.com
104.17.74.206
logx.optimizely.com
34.111.140.246
stage-lb-orleans-1774680323.us-east-1.elb.amazonaws.com
44.194.20.194
h4ot2hj.x.incapdns.net
45.60.63.178
vars.hotjar.com
13.32.208.120
l1ve.glowlaundry.com
46.101.216.85
neoparts.com.br
191.252.141.106
in-live.live.eks.hotjar.com
52.17.68.97
d85e28ad-d349baf3.glowlaundry.com
46.101.216.85
fp2c5c.wac.kappacdn.net
152.199.2.76
googlehosted.l.googleusercontent.com
142.251.15.132
s.w.org
192.0.77.48
in.hotjar.com
unknown
www.sigtn.com
unknown
go.imperva.com
unknown
prod.trendemon.com
unknown
cdn.bizible.com
unknown
munchkin.marketo.net
unknown
cdn.optimizely.com
unknown
www.imperva.com
unknown
themes.googleusercontent.com
unknown
There are 25 hidden domains, click here to show them.

IPs

IP
Domain
Country
Malicious
192.168.2.16
unknown
unknown
45.60.73.225
jq5o3.x.incapdns.net
United States
173.194.219.94
unknown
United States
52.14.7.29
unknown
United States
173.194.219.95
unknown
United States
142.251.15.100
unknown
United States
45.60.63.178
sigtn.com
United States
104.17.74.206
ab13.mktossl.com
United States
191.252.141.106
neoparts.com.br
Brazil
142.250.9.99
www.google.com
United States
74.125.138.94
unknown
United States
108.177.122.113
unknown
United States
63.131.146.5
join.sigtn.com
United States
172.253.124.97
unknown
United States
142.250.105.94
unknown
United States
142.250.105.95
unknown
United States
142.250.105.97
unknown
United States
18.223.146.213
nel.impervademo.com
United States
3.17.89.142
unknown
United States
64.233.177.207
unknown
United States
173.194.219.84
unknown
United States
239.255.255.250
unknown
Reserved
46.101.216.85
8c50548f-d349baf3.glowlaundry.com
Netherlands
173.194.219.139
unknown
United States
64.233.185.94
unknown
United States
104.17.25.14
cdnjs.cloudflare.com
United States
216.239.34.178
unknown
United States
There are 17 hidden IPs, click here to show them.