Files
File Path
|
Type
|
Category
|
Malicious
|
|
---|---|---|---|---|
Chrome Cache Entry: 100
|
SVG Scalable Vector Graphics image
|
downloaded
|
||
Chrome Cache Entry: 101
|
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1080, components
3
|
downloaded
|
||
Chrome Cache Entry: 102
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 500x386, components
3
|
dropped
|
||
Chrome Cache Entry: 103
|
GIF image data, version 89a, 1 x 1
|
dropped
|
||
Chrome Cache Entry: 104
|
Unicode text, UTF-8 text, with very long lines (65402)
|
downloaded
|
||
Chrome Cache Entry: 105
|
Unicode text, UTF-8 text, with very long lines (65417)
|
downloaded
|
||
Chrome Cache Entry: 106
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 500x386, components
3
|
dropped
|
||
Chrome Cache Entry: 107
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 500x386, components
3
|
downloaded
|
||
Chrome Cache Entry: 108
|
ASCII text, with very long lines (41992)
|
downloaded
|
||
Chrome Cache Entry: 109
|
MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel
|
downloaded
|
||
Chrome Cache Entry: 110
|
JSON data
|
downloaded
|
||
Chrome Cache Entry: 111
|
JSON data
|
dropped
|
||
Chrome Cache Entry: 112
|
JSON data
|
downloaded
|
||
Chrome Cache Entry: 113
|
GIF image data, version 89a, 1 x 1
|
dropped
|
||
Chrome Cache Entry: 114
|
GIF image data, version 89a, 1 x 1
|
dropped
|
||
Chrome Cache Entry: 115
|
PNG image data, 2950 x 432, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
Chrome Cache Entry: 116
|
SVG Scalable Vector Graphics image
|
downloaded
|
||
Chrome Cache Entry: 117
|
JSON data
|
downloaded
|
||
Chrome Cache Entry: 118
|
JSON data
|
downloaded
|
||
Chrome Cache Entry: 119
|
JSON data
|
dropped
|
||
Chrome Cache Entry: 120
|
GIF image data, version 89a, 1 x 1
|
dropped
|
||
Chrome Cache Entry: 121
|
JSON data
|
dropped
|
||
Chrome Cache Entry: 122
|
ASCII text, with very long lines (5638)
|
downloaded
|
||
Chrome Cache Entry: 123
|
JSON data
|
downloaded
|
||
Chrome Cache Entry: 124
|
JSON data
|
downloaded
|
||
Chrome Cache Entry: 125
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 386x500, components
3
|
dropped
|
||
Chrome Cache Entry: 126
|
JSON data
|
dropped
|
||
Chrome Cache Entry: 127
|
JSON data
|
dropped
|
||
Chrome Cache Entry: 128
|
SVG Scalable Vector Graphics image
|
dropped
|
||
Chrome Cache Entry: 129
|
JSON data
|
downloaded
|
||
Chrome Cache Entry: 130
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, baseline, precision 8, 1020x1320,
components 3
|
dropped
|
||
Chrome Cache Entry: 131
|
ASCII text, with very long lines (65465)
|
downloaded
|
||
Chrome Cache Entry: 132
|
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1080, components
3
|
dropped
|
||
Chrome Cache Entry: 71
|
ASCII text, with very long lines (65442)
|
downloaded
|
||
Chrome Cache Entry: 72
|
JSON data
|
dropped
|
||
Chrome Cache Entry: 73
|
GIF image data, version 89a, 1 x 1
|
dropped
|
||
Chrome Cache Entry: 74
|
ASCII text, with very long lines (65459)
|
downloaded
|
||
Chrome Cache Entry: 75
|
JSON data
|
dropped
|
||
Chrome Cache Entry: 76
|
TrueType Font data, digitally signed, 19 tables, 1st "BASE", 28 names, Macintosh, Copyright 2010, 2012, 2014 Adobe Systems
Incorporated (http://www.adobe.com/), with Reserved Fon
|
downloaded
|
||
Chrome Cache Entry: 77
|
JSON data
|
dropped
|
||
Chrome Cache Entry: 78
|
TrueType Font data, digitally signed, 19 tables, 1st "BASE", 26 names, Macintosh, Copyright 2010, 2012, 2014 Adobe Systems
Incorporated (http://www.adobe.com/), with Reserved Fon
|
downloaded
|
||
Chrome Cache Entry: 79
|
JSON data
|
downloaded
|
||
Chrome Cache Entry: 80
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 386x500, components
3
|
downloaded
|
||
Chrome Cache Entry: 81
|
JSON data
|
downloaded
|
||
Chrome Cache Entry: 82
|
SVG Scalable Vector Graphics image
|
dropped
|
||
Chrome Cache Entry: 83
|
ASCII text, with very long lines (17317), with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 84
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, baseline, precision 8, 1020x1320,
components 3
|
downloaded
|
||
Chrome Cache Entry: 85
|
ASCII text, with very long lines (65536), with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 86
|
TrueType Font data, digitally signed, 19 tables, 1st "BASE", 26 names, Macintosh, Copyright 2010, 2012, 2014 Adobe Systems
Incorporated (http://www.adobe.com/), with Reserved Fon
|
downloaded
|
||
Chrome Cache Entry: 87
|
ASCII text, with very long lines (65536), with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 88
|
JSON data
|
dropped
|
||
Chrome Cache Entry: 89
|
MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel
|
dropped
|
||
Chrome Cache Entry: 90
|
ASCII text, with no line terminators
|
dropped
|
||
Chrome Cache Entry: 91
|
PNG image data, 2950 x 432, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 92
|
PNG image data, 624 x 319, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
Chrome Cache Entry: 93
|
JSON data
|
dropped
|
||
Chrome Cache Entry: 94
|
ASCII text, with very long lines (51585)
|
downloaded
|
||
Chrome Cache Entry: 95
|
JSON data
|
dropped
|
||
Chrome Cache Entry: 96
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 500x386, components
3
|
downloaded
|
||
Chrome Cache Entry: 97
|
JSON data
|
downloaded
|
||
Chrome Cache Entry: 98
|
PNG image data, 624 x 319, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 99
|
HTML document, ASCII text, with very long lines (6636)
|
downloaded
|
There are 53 hidden files, click here to show them.
Processes
Path
|
Cmdline
|
Malicious
|
|
---|---|---|---|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
|
||
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US
--service-sandbox-type=none --mojo-platform-channel-handle=2416 --field-trial-handle=2384,i,13309312840750829887,16417824520483540368,262144
--disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction
/prefetch:8
|
||
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" "https://eng2e.seismic.com/ls/b817d80c-e942-40b0-8698-2e058b375eb8/KeKSp5v9_rr55V60"
|
URLs
Name
|
IP
|
Malicious
|
|
---|---|---|---|
https://eng2e.seismic.com/ls/b817d80c-e942-40b0-8698-2e058b375eb8/KeKSp5v9_rr55V60
|
|||
https://newdownload.seismic.com/api/download/v1/blob?t=onestreamsoftware&c=onestreamsoftware&id=acb3
|
unknown
|
||
https://js-agent.newrelic.com
|
unknown
|
||
https://newdownload.seismic.com/api/download/v1/blob?t=onestreamsoftware&c=onestreamsoftware-collaboration&id=551b630b-f274-454a-a270-9fbd8cbd7632&et=20240426185012&isfullcontainername=True&sig=HRtJpGlXjXBYT5eLg%2FzXs4J%2Frot%2F%2BMIZVCBYJPgcCgY%3D
|
52.151.208.67
|
||
https://bam.nr-data.net/jserrors/1/33e37aa8ea?a=937843118&sa=1&v=1.257.0&t=Unnamed%20Transaction&rst=68654&ck=0&s=3102a23c86424843&ref=https://eng2e.seismic.com/ls/b817d80c-e942-40b0-8698-2e058b375eb8/KeKSp5v9_rr55V60
|
162.247.243.29
|
||
https://js-agent.newrelic.com/nr-full-1.257.0.min.js
|
162.247.243.39
|
||
http://ocsp.thawte.com0
|
unknown
|
||
https://bam.nr-data.net/1/33e37aa8ea?a=937843118&sa=1&v=1.257.0&t=Unnamed%20Transaction&rst=47820&ck=0&s=3102a23c86424843&ref=https://eng2e.seismic.com/ls/b817d80c-e942-40b0-8698-2e058b375eb8/KeKSp5v9_rr55V60&af=err,xhr,stn,ins&be=1098&fe=71&dc=42&fsh=1&perf=%7B%22timing%22:%7B%22of%22:1714145552462,%22n%22:0,%22f%22:4,%22dn%22:334,%22dne%22:334,%22c%22:334,%22s%22:335,%22ce%22:620,%22rq%22:620,%22rp%22:1098,%22rpe%22:1101,%22di%22:1140,%22ds%22:1140,%22de%22:1140,%22dc%22:1168,%22l%22:1168,%22le%22:1169%7D,%22navigation%22:%7B%7D%7D&fp=1640&fcp=12964
|
162.247.243.29
|
||
https://bam.nr-data.net/events/1/33e37aa8ea?a=937843118&sa=1&v=1.257.0&t=Unnamed%20Transaction&rst=58644&ck=0&s=3102a23c86424843&ref=https://eng2e.seismic.com/ls/b817d80c-e942-40b0-8698-2e058b375eb8/KeKSp5v9_rr55V60
|
162.247.243.29
|
||
http://www.symauth.com/cps0(
|
unknown
|
||
https://bam.nr-data.net/ins/1/33e37aa8ea?a=937843118&sa=1&v=1.257.0&t=Unnamed%20Transaction&rst=48518&ck=0&s=3102a23c86424843&ref=https://eng2e.seismic.com/ls/b817d80c-e942-40b0-8698-2e058b375eb8/KeKSp5v9_rr55V60
|
162.247.243.29
|
||
https://newdownload.seismic.com/api/download/v1/blob?t=onestreamsoftware&c=onestreamsoftware&id=42a9afb0-4e23-4a15-8f0a-491943de840e&et=20240426185005&sig=%2BU%2Fbf4l7Wt4vTYCCuUby8M14m72iv%2FhGKsN1B0m9KrY%3D
|
52.151.208.67
|
||
https://newdownload.seismic.com/api/download/v1/blob?t=onestreamsoftware&c=onestreamsoftware-collaboration&id=2acae5d3-2811-4025-aea0-7972a7f5879b&et=20240426185012&isfullcontainername=True&sig=oGhRNaO96VhOfEJXMV4MXVgxs6ivJwFGnjPvm8fZfgg%3D
|
52.151.208.67
|
||
https://newdownload.seismic.com/api/download/v1/blob?t=onestreamsoftware&c=onestreamsoftware-collaboration&id=55c0f2a0-d164-4d6c-871f-2c0a754f72b0&et=20240426185012&isfullcontainername=True&sig=DMbSAwSFNjPgr6Ia5%2FtvoGFeACUX9lbY%2F25LmFuhi9I%3D
|
52.151.208.67
|
||
https://newdownload.seismic.com/api/download/v1/blob?t=onestreamsoftware&c=onestreamsoftware-collaboration&id=9ae068b6-c5e0-4162-88d9-0fe8901271a8&et=20240426185012&isfullcontainername=True&sig=qhxabv2STg56bKO7iUzglC4NtauzI8aIhWcSpiVKkrc%3D
|
52.151.208.67
|
||
https://bam.nr-data.net/events/1/33e37aa8ea?a=937843118&sa=1&v=1.257.0&t=Unnamed%20Transaction&rst=58648&ck=0&s=3102a23c86424843&ref=https://eng2e.seismic.com/ls/b817d80c-e942-40b0-8698-2e058b375eb8/KeKSp5v9_rr55V60
|
162.247.243.29
|
||
http://crl.thawte.com/ThawteTimestampingCA.crl0
|
unknown
|
||
https://bam.nr-data.net/jserrors/1/33e37aa8ea?a=937843118&sa=1&v=1.257.0&t=Unnamed%20Transaction&rst=58647&ck=0&s=3102a23c86424843&ref=https://eng2e.seismic.com/ls/b817d80c-e942-40b0-8698-2e058b375eb8/KeKSp5v9_rr55V60
|
162.247.243.29
|
||
https://newdownload.seismic.com/api/download/v1/blob?t=onestreamsoftware&c=onestreamsoftware-collaboration&id=93b6e874-5233-482c-8362-ef68a6f3547b&et=20240426185012&isfullcontainername=True&sig=1n%2BweGZwFmtv9zXN%2F0Iu88%2BvLq%2FDHY1glGlTP%2F6BTMQ%3D
|
52.151.208.67
|
||
https://eng2e.seismic.com/ls/b817d80c-e942-40b0-8698-2e058b375eb8/KeKSp5v9_rr55V60#/
|
|||
https://eng2e.seismic.com/ls/b817d80c-e942-40b0-8698-2e058b375eb8/KeKSp5v9_rr55V60
|
|||
https://newdownload.seismic.com/api/download/v1/blob?t=onestreamsoftware&c=onestreamsoftware&id=acb392a2-86c9-4b24-95db-2636493585ad&et=20240426193248&sig=gwhayKnReUcWvOAMK22RmzWqYRsgaF5wky3R3i2mCJ0%3D
|
52.151.208.67
|
||
http://scripts.sil.org/OFLCopyright
|
unknown
|
||
https://service-discovery.seismic.com
|
unknown
|
||
http://scripts.sil.org/OFLSource
|
unknown
|
||
http://www.symauth.com/rpa04
|
unknown
|
||
http://scripts.sil.org/OFL
|
unknown
|
||
https://newdownload.seismic.com/api/download/v1/blob?t=onestreamsoftware&c=onestreamsoftware&id=42a9
|
unknown
|
||
https://bam.nr-data.net/jserrors/1/33e37aa8ea?a=937843118&sa=1&v=1.257.0&t=Unnamed%20Transaction&rst=78669&ck=0&s=3102a23c86424843&ref=https://eng2e.seismic.com/ls/b817d80c-e942-40b0-8698-2e058b375eb8/KeKSp5v9_rr55V60
|
162.247.243.29
|
There are 18 hidden URLs, click here to show them.
Domains
Name
|
IP
|
Malicious
|
|
---|---|---|---|
fastly-tls12-bam.nr-data.net
|
162.247.243.29
|
||
js-agent.newrelic.com
|
162.247.243.39
|
||
kubernetes-prod-az-eastus-raptor.seismic.com
|
52.151.208.67
|
||
www.google.com
|
142.250.64.196
|
||
fp2e7a.wpc.phicdn.net
|
192.229.211.108
|
||
cdn-prod.seismic.com
|
unknown
|
||
eng2e.seismic.com
|
unknown
|
||
newdownload.seismic.com
|
unknown
|
||
service-discovery.seismic.com
|
unknown
|
||
api.seismic.com
|
unknown
|
||
bam.nr-data.net
|
unknown
|
There are 1 hidden domains, click here to show them.
IPs
IP
|
Domain
|
Country
|
Malicious
|
|
---|---|---|---|---|
192.168.2.17
|
unknown
|
unknown
|
||
52.151.208.67
|
kubernetes-prod-az-eastus-raptor.seismic.com
|
United States
|
||
192.168.2.4
|
unknown
|
unknown
|
||
142.250.64.196
|
www.google.com
|
United States
|
||
239.255.255.250
|
unknown
|
Reserved
|
||
162.247.243.29
|
fastly-tls12-bam.nr-data.net
|
United States
|
||
162.247.243.39
|
js-agent.newrelic.com
|
United States
|
DOM / HTML
URL
|
Malicious
|
|
---|---|---|
https://eng2e.seismic.com/ls/b817d80c-e942-40b0-8698-2e058b375eb8/KeKSp5v9_rr55V60
|
||
https://eng2e.seismic.com/ls/b817d80c-e942-40b0-8698-2e058b375eb8/KeKSp5v9_rr55V60
|
||
https://eng2e.seismic.com/ls/b817d80c-e942-40b0-8698-2e058b375eb8/KeKSp5v9_rr55V60
|
||
https://eng2e.seismic.com/ls/b817d80c-e942-40b0-8698-2e058b375eb8/KeKSp5v9_rr55V60
|
||
https://eng2e.seismic.com/ls/b817d80c-e942-40b0-8698-2e058b375eb8/KeKSp5v9_rr55V60#/
|