Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
Chrome Cache Entry: 53
|
ASCII text, with very long lines (65536), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 54
|
PNG image data, 278 x 28, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 55
|
Web Open Font Format (Version 2), TrueType, length 37608, version 1.0
|
downloaded
|
||
|
Chrome Cache Entry: 56
|
ASCII text, with very long lines (65536), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 57
|
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel
|
downloaded
|
||
|
Chrome Cache Entry: 58
|
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel
|
dropped
|
||
|
Chrome Cache Entry: 59
|
PNG image data, 300 x 120, 8-bit/color RGB, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 60
|
JSON data
|
downloaded
|
||
|
Chrome Cache Entry: 61
|
JSON data
|
dropped
|
||
|
Chrome Cache Entry: 62
|
PNG image data, 300 x 120, 8-bit/color RGB, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 63
|
HTML document, ASCII text, with very long lines (4193)
|
downloaded
|
||
|
Chrome Cache Entry: 64
|
ASCII text, with very long lines (1492), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 65
|
ASCII text, with very long lines (65536), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 66
|
ASCII text, with very long lines (4422)
|
downloaded
|
||
|
Chrome Cache Entry: 67
|
Web Open Font Format (Version 2), TrueType, length 137104, version 331.-31196
|
downloaded
|
||
|
Chrome Cache Entry: 68
|
HTML document, ASCII text
|
dropped
|
||
|
Chrome Cache Entry: 69
|
PNG image data, 278 x 28, 8-bit/color RGBA, non-interlaced
|
dropped
|
There are 8 hidden files, click here to show them.
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
|
||
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US
--service-sandbox-type=none --mojo-platform-channel-handle=2396 --field-trial-handle=2444,i,15971310653574119148,10434369989334271885,262144
--disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction
/prefetch:8
|
||
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" "https://url.us.m.mimecastprotect.com/s/I2_RCR6B8lUnq8wnc9kfMg?domain=u44114957.ct.sendgrid.net"
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
https://url.us.m.mimecastprotect.com/s/I2_RCR6B8lUnq8wnc9kfMg?domain=u44114957.ct.sendgrid.net
|
|||
|
https://url.us.m.mimecastprotect.com/r/Akjcmy83Tyqu4jiKkY0loKkW4h48tqcbO9gZhn_-k_uVAd2q7v_ttiOxkUuTQPEWo2JwpHrnbwT_9JpXWJTWzC-7nRCHVVxhXCSULg33_FfJnsc7KP7F9CuwM6Wb9_HW87mhsljLPOD-Yn3-MqNENmGdxV7uMSczlkzfVkuS9Yla9mFj_h15Y6l48kEIZBZSMFvvCwZcqFNCS0OZDXopH-D3MYbocvC-rm9EVi1OTSGimfE8XyEbR4tZNyX887bVXFo1wPQmK0en15VHlvSFpHCwGRCqy2qtK9wBVpW_XyjObYaNhEH6KhkoiL-RMTn3CJZLEbh3v9QdVkqzHtEQk1VGlLuqEY8SRs3xraRwEKNryn4dafudjuCS43-VNIPG7dbPG0RTLmU1L0ksJ-Acz4R-Ltf_Q3-F5r6y7htC-eUK_vvkV3ZFmtW0yQp_-4aWL_ikZDSpU1_tAoA7O3rQI_hkGK0jnUwG_lxleZB20zRhQuy1IprCLKt5KiIOgg1v-pXN5CMWl8RDuiMY144Yi_YJwUhFna8gECliLI9T_7dDEJ0-NIVARRIbfw59agRoYmyQ4J4e4rv5ub976KTaT3MQg3-q40ZmzUG4x4lO1ciQ3CW2vKjZr36lRB206Bt0ck7tOf20DFZ9l0JqLC8RCtApUBvv459ytMVb_t_KOD72LHNnzCNyTNb-zDL1Bva9F5xnhLTC4ekv1Cg5PiIpMoIY7vvau9j7E4_gZawxEZs2AzFgdxA-WA_SA27ahdyIuc-PzE3NvFJUTxTsAq9tX7Nq6qcHC4mdZxH5zZO3skP4vMIY7GcxecMEcFihwsuM2K6PIrySLLpS6UMBzY3N_vAkR77glb-n1eWutA-YlGE3x715w-fNspiDHvKNZ9E3F31CLbzxjPi9fvmFsoQsU55-mQxQsww_WJT7aMwnyX7hVU4_3rqxHWnVYq2cNCcN6ycY53JWmu_iRUJw9DOVV8-skIIFR6evVbu5T-zPWncBJAhjf4OqTo5-nll1rZrXaCMUeriQgWX0D5ehT4oynnKPAjc0RIa3zHMX2U5sidnvNanzwcVWzpRoijQuYkGYTM6RfG2JD7WtycYWuF-jGzbXEhTkOkEFP7D_EC6nCVMvtyeFRPrCDHnW9wmkaYlxAFvLZ8iL5qcaKEdU2Xcv1foDSnCEkx6pA3gObsDRpmZyNjh8oRZaFmK9gU1xTA0aBTVzckE3o_sf9Df3NSXLiQUI65XYgfHkfRZNkEYAsWrFzhVpVTsDQ83alfH6I7mtf69Ixc0jS9_u1uGi2SeQAlf-1Ds71KEB2iHf5186OdADPCQHu-aeErU7yZZOQmMYySGKP5YC6cV028nxISJUDFz9XyzK5y8YjMkwN0fnsbvTVGgt2z1mXZU5RNRzf1wDSj8Vc05uzWF3ntNK9utnfuw8mJuFIb8yLAhxrg60DrEcCV3e4PyQwKhtJchx4TsqXj-X1MhhjBj0nF-NeSpRZ4RBPGQDtERxWKknGmUodWqTWc4t1v22hNBJZWYjkuczaQ6DLyIqZEIjn-Cq8oXFJQV2kFQ1tuhjpuh2eqWss3wEU0HZFaaPOkY1aWVCdOKp_nR9UbtYjBf9D3DTcjT0ba7kXTwTVCxGV6UjeMc_yeYzGF5cqGCubdWLJc3Ak4x6U6Ky35QOvyjwxBoMSCCXRIPflCXIfyMYWnshBwFmonvwDG5EJ_Lm0UFjSxAVEj7Y36mv7MBt9Z4L-9QNfQejLP4qnnM1-0cfdN-cjVCZ3SzVqers2wUIhsz7mb3Mwr3PQKzCgz3Bc0PREaTlpDDfm3097IqYLOHnoWWD_IhTJtu8yjIurPFSzKWkNIH2fpCX4x-PNZlUkj2x5bw7jMfkKZ7P9dRdLJOl42KZvZRZr8UA3XcmBhwMlyv8jzdI1r5jkHtVjSdzuFJ83F-N29On6fAx6ckwKJi3KOidm64dcCLVUlqGTJpExY0HeKtmT4DBmTwkHg0VLYW-43wvKAgo-4d9x9_B5Sx7ZOxxEozoT97E70nfUG5yPtxZhaVI2iPbzMI9Xu9b5zepLazNzLsLbXGR5STzIzZVoWWP4anD4-4yRzYaukGwoxw5iOHcLiAwQ9rkLSF1zoRCveRq9IezLDfNRPTAhumyLtJoJNCa2QgjLMZx4e-e3I2IWFvM_gYt4mtbjJa6lj0YIo0fFQ6PUdriyENvb0WkprJpuMFLxGaR49vt9zVmA9mO_bva7wGfK-JdKrAchl75Qc5QJJmsJwsV_W6soHNey4lOt-E3CI_3IjqctGXn0Kd_rDvFFR2FAaklSU60cCxne-sEOa8GSFmdpE5DN9MDb_pzsvMOHF2LScC3zmREkNmjUaXdQdsJe4WJRJNmlXyuzjDWIVPAoWtVltXUvsEQCi4AQSowzIfedVAQXuhTvR6nwc7XCze6qfww8zFyqo1L34jiTyNeS8_aTCl83Y3YlrDcJiKCKYb4dyMSySV3wUxEBLq4MX_olOlhWqdTF3yftFzue1oxk1xEuTYoZn134mf9Mr6nO7RHG2dpbbDXl-Ab8wT1QNBh3XKM8oKX6kckfiOeQhWUrOC7bagUragD6wlsG4CUue4oymP6F9ey5D6qUCyAp3TlUrMNgVNPq4b7ce9fk1EABqtqiPFsUA6JB3pYk4plNMQrvuFK2MlCCaH-Dqw1KjXrUWsThNMfSE_TxYg9ZhC-Fg
|
205.139.111.113
|
||
|
https://security-us.mimecast.com/ttpwp/resources/fa-solid-900.54dfc8f551be346014e4.woff2
|
205.139.110.99
|
||
|
https://security-us.mimecast.com/ttpwp/resources/runtime.5257ca6e429949972959.js
|
205.139.110.99
|
||
|
https://security-us.mimecast.com/ttpwp/resources/images/mimecastlogo@2x.png
|
205.139.110.99
|
||
|
https://security-us.mimecast.com/ttpwp/resources/images/favicon.ico
|
205.139.110.99
|
||
|
https://security-us.mimecast.com/ttpwp/resources/styles.5257ca6e429949972959.js
|
205.139.110.99
|
||
|
https://security-us.mimecast.com/api/ttp/url/get-page-data
|
205.139.110.99
|
||
|
https://security-us.mimecast.com/branding/09c6b1c12e27f5cc697efcdec77f1eee726fbaed/style.css?tkn=3.jycdMPcORdlwC-e8hsni3iQTPbShah4cwssJWykrXASGCtIb1xs6x6fJyy1t5kCD1byipQxxDtTbtKUe0emssGUmt2SyhwtTw_Bln0uTKgsoyp_bkfA3T6tdWSc1ZN_QeKZ-8fYOT0WuYHD0ekm4FgHT9ocPRo9Ju5gnEf9ViOQjcan7N2X0z2ySB0kxx_QL.myuNHANzrJC5JwZP4auzCA&originalContextPath=ttpwp
|
205.139.110.99
|
||
|
http://www.mimecast.com/
|
unknown
|
||
|
https://security-us.mimecast.com/ttpwp/resources/main.5257ca6e429949972959.js
|
205.139.110.99
|
||
|
https://security-us.mimecast.com/ttpwp/resources/mimecast-icons.bb1a2cd16db9345fc437.woff2?25417273
|
205.139.110.99
|
||
|
https://security-us.mimecast.com/branding/09c6b1c12e27f5cc697efcdec77f1eee726fbaed/main-page-logo.png?tkn=3.jycdMPcORdlwC-e8hsni3iQTPbShah4cwssJWykrXASGCtIb1xs6x6fJyy1t5kCD1byipQxxDtTbtKUe0emssGUmt2SyhwtTw_Bln0uTKgsoyp_bkfA3T6tdWSc1ZN_QeKZ-8fYOT0WuYHD0ekm4FgHT9ocPRo9Ju5gnEf9ViOQjcan7N2X0z2ySB0kxx_QL.myuNHANzrJC5JwZP4auzCA&originalContextPath=ttpwp
|
205.139.110.99
|
||
|
https://url.us.m.mimecastprotect.com/s/I2_RCR6B8lUnq8wnc9kfMg?domain=u44114957.ct.sendgrid.net
|
205.139.111.113
|
||
|
https://security-us.mimecast.com/ttpwp?tkn=3.jycdMPcORdlwC-e8hsni3iQTPbShah4cwssJWykrXASGCtIb1xs6x6fJyy1t5kCD1byipQxxDtTbtKUe0emssGUmt2SyhwtTw_Bln0uTKgsoyp_bkfA3T6tdWSc1ZN_QeKZ-8fYOT0WuYHD0ekm4FgHT9ocPRo9Ju5gnEf9ViOQjcan7N2X0z2ySB0kxx_QL.myuNHANzrJC5JwZP4auzCA
|
205.139.110.99
|
||
|
https://security-us.mimecast.com/ttpwp/resources/polyfills.5257ca6e429949972959.js
|
205.139.110.99
|
||
|
https://security-us.mimecast.com/ttpwp/resources/languages/en.json
|
205.139.110.99
|
||
|
https://community.mimecast.com/docs/DOC-241
|
unknown
|
There are 7 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
bg.microsoft.map.fastly.net
|
199.232.214.172
|
||
|
url.us.m.mimecastprotect.com
|
205.139.111.113
|
||
|
security-us.mimecast.com
|
205.139.110.99
|
||
|
www.google.com
|
142.250.217.228
|
||
|
fp2e7a.wpc.phicdn.net
|
192.229.211.108
|
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
239.255.255.250
|
unknown
|
Reserved
|
||
|
205.139.111.113
|
url.us.m.mimecastprotect.com
|
United States
|
||
|
205.139.110.99
|
security-us.mimecast.com
|
United States
|
||
|
142.250.217.228
|
www.google.com
|
United States
|
||
|
192.168.2.4
|
unknown
|
unknown
|
||
|
207.211.31.110
|
unknown
|
United States
|
DOM / HTML
|
URL
|
Malicious
|
|
|---|---|---|
|
https://security-us.mimecast.com/ttpwp/?tkn=3.jycdMPcORdlwC-e8hsni3iQTPbShah4cwssJWykrXASGCtIb1xs6x6fJyy1t5kCD1byipQxxDtTbtKUe0emssGUmt2SyhwtTw_Bln0uTKgsoyp_bkfA3T6tdWSc1ZN_QeKZ-8fYOT0WuYHD0ekm4FgHT9ocPRo9Ju5gnEf9ViOQjcan7N2X0z2ySB0kxx_QL.myuNHANzrJC5JwZP4auzCA#/block?key=f7NMJEqqjACRd6ggJvxOkZQF3yXgAr0HNTAo1Y7jaraUhOwJIkki7-IMFLzRQsU_H-os0CivhKgusrmaNkidlWID0bPRkla2x3n0GFU2P9zMXpsiXhxj7se0IzAAx-w6
|
||
|
https://security-us.mimecast.com/ttpwp/?tkn=3.jycdMPcORdlwC-e8hsni3iQTPbShah4cwssJWykrXASGCtIb1xs6x6fJyy1t5kCD1byipQxxDtTbtKUe0emssGUmt2SyhwtTw_Bln0uTKgsoyp_bkfA3T6tdWSc1ZN_QeKZ-8fYOT0WuYHD0ekm4FgHT9ocPRo9Ju5gnEf9ViOQjcan7N2X0z2ySB0kxx_QL.myuNHANzrJC5JwZP4auzCA#/block?key=f7NMJEqqjACRd6ggJvxOkZQF3yXgAr0HNTAo1Y7jaraUhOwJIkki7-IMFLzRQsU_H-os0CivhKgusrmaNkidlWID0bPRkla2x3n0GFU2P9zMXpsiXhxj7se0IzAAx-w6
|