IOC Report
http://www.prz.com/cgi-sys/bxd.cgi?a=larry@prz.com&id=Bj149vO6KA50YkpDZJvoC-1738692649

loading gif

Files

File Path
Type
Category
Malicious
Chrome Cache Entry: 46
PNG image data, 131 x 35, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 47
PNG image data, 628 x 24, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 48
PNG image data, 131 x 35, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 49
MS Windows icon resource - 2 icons, 16x16, 32x32
dropped
Chrome Cache Entry: 50
PNG image data, 80 x 81, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 51
PNG image data, 629 x 21, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 52
MS Windows icon resource - 2 icons, 16x16, 32x32
downloaded
Chrome Cache Entry: 53
PNG image data, 629 x 21, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 54
HTML document, ASCII text
downloaded
Chrome Cache Entry: 55
PNG image data, 628 x 24, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 56
PNG image data, 80 x 81, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 57
gzip compressed data, from Unix, original size modulo 2^32 1191
downloaded
There are 3 hidden files, click here to show them.

Processes

Path
Cmdline
Malicious
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2248 --field-trial-handle=2216,i,1035102232519145594,16635749477580281396,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" "http://www.prz.com/cgi-sys/bxd.cgi?a=larry@prz.com&id=Bj149vO6KA50YkpDZJvoC-1738692649"

URLs

Name
IP
Malicious
http://www.prz.com/cgi-sys/bxd.cgi?a=larry@prz.com&id=Bj149vO6KA50YkpDZJvoC-1738692649
https://www.prz.com/favicon.ico
162.241.216.62
https://www.prz.com/sys_cpanel/boxtrapper-message/style.css
162.241.216.62
http://www.prz.com/cgi-sys/bxd.cgi?a=larry@prz.com&id=Bj149vO6KA50YkpDZJvoC-1738692649
162.241.216.62
https://www.prz.com/sys_cpanel/boxtrapper-message/logo.png
162.241.216.62
https://www.prz.com/sys_cpanel/boxtrapper-message/footer-bg.png
162.241.216.62
https://www.prz.com/sys_cpanel/boxtrapper-message/header-bg.png
162.241.216.62
https://www.prz.com/cgi-sys/bxd.cgi?a=larry@prz.com&id=Bj149vO6KA50YkpDZJvoC-1738692649
https://www.prz.com/sys_cpanel/boxtrapper-message/delivery-failure.png
162.241.216.62

Domains

Name
IP
Malicious
www.google.com
216.58.212.164
prz.com
162.241.216.62
www.prz.com
unknown

IPs

IP
Domain
Country
Malicious
239.255.255.250
unknown
Reserved
216.58.212.164
www.google.com
United States
162.241.216.62
prz.com
United States
192.168.2.6
unknown
unknown

DOM / HTML

URL
Malicious
https://www.prz.com/cgi-sys/bxd.cgi?a=larry@prz.com&id=Bj149vO6KA50YkpDZJvoC-1738692649