IOC Report
https://rurfifv.wixstudio.com/my-site

loading gif

Files

File Path
Type
Category
Malicious
Chrome Cache Entry: 127
ASCII text, with very long lines (443)
downloaded
Chrome Cache Entry: 128
JSON data
dropped
Chrome Cache Entry: 129
ASCII text, with very long lines (307)
downloaded
Chrome Cache Entry: 130
ASCII text, with very long lines (4293)
downloaded
Chrome Cache Entry: 131
ASCII text, with very long lines (14754)
downloaded
Chrome Cache Entry: 132
JSON data
downloaded
Chrome Cache Entry: 133
ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 134
ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 135
ASCII text, with very long lines (548)
downloaded
Chrome Cache Entry: 136
ASCII text, with very long lines (33093)
downloaded
Chrome Cache Entry: 137
ASCII text, with no line terminators
downloaded
Chrome Cache Entry: 138
ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 139
ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 140
ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 141
ASCII text, with very long lines (65428)
downloaded
Chrome Cache Entry: 142
ASCII text, with very long lines (65536), with no line terminators
dropped
Chrome Cache Entry: 143
JSON data
downloaded
Chrome Cache Entry: 144
ASCII text, with very long lines (31158)
downloaded
Chrome Cache Entry: 145
ASCII text, with very long lines (347)
downloaded
Chrome Cache Entry: 146
PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 147
ASCII text, with very long lines (1594)
downloaded
Chrome Cache Entry: 148
JSON data
downloaded
Chrome Cache Entry: 149
ASCII text, with very long lines (11256)
downloaded
Chrome Cache Entry: 150
ASCII text, with very long lines (4328)
downloaded
Chrome Cache Entry: 151
ASCII text, with very long lines (307)
downloaded
Chrome Cache Entry: 152
ASCII text, with very long lines (945)
downloaded
Chrome Cache Entry: 153
ASCII text, with very long lines (3781)
downloaded
Chrome Cache Entry: 154
ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 155
JSON data
dropped
Chrome Cache Entry: 156
GIF image data, version 89a, 1 x 1
downloaded
Chrome Cache Entry: 157
ASCII text, with very long lines (35219)
downloaded
Chrome Cache Entry: 158
ASCII text, with very long lines (65536), with no line terminators
dropped
Chrome Cache Entry: 159
Web Open Font Format (Version 2), TrueType, length 40188, version 3.0
downloaded
Chrome Cache Entry: 160
ASCII text, with very long lines (21809)
downloaded
Chrome Cache Entry: 161
JSON data
dropped
Chrome Cache Entry: 162
PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 163
JSON data
downloaded
Chrome Cache Entry: 164
ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 165
ASCII text, with very long lines (65536), with no line terminators
dropped
Chrome Cache Entry: 166
ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 167
ISO Media, AVIF Image
downloaded
Chrome Cache Entry: 168
ASCII text, with very long lines (32795)
downloaded
Chrome Cache Entry: 169
ASCII text, with very long lines (65536), with no line terminators
dropped
Chrome Cache Entry: 170
ASCII text, with very long lines (581)
downloaded
Chrome Cache Entry: 171
HTML document, Unicode text, UTF-8 text, with very long lines (13781)
downloaded
Chrome Cache Entry: 172
ASCII text, with very long lines (887)
downloaded
Chrome Cache Entry: 173
ASCII text, with very long lines (29569)
downloaded
Chrome Cache Entry: 174
ASCII text, with very long lines (31023)
downloaded
Chrome Cache Entry: 175
ASCII text, with very long lines (3273)
downloaded
Chrome Cache Entry: 176
ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 177
ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 178
ASCII text, with very long lines (48352)
downloaded
Chrome Cache Entry: 179
ASCII text, with very long lines (65536), with no line terminators
dropped
Chrome Cache Entry: 180
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2], progressive, precision 8, 434x169, components 3
dropped
Chrome Cache Entry: 181
Unicode text, UTF-8 text, with very long lines (65164)
downloaded
Chrome Cache Entry: 182
ASCII text, with very long lines (31023)
dropped
Chrome Cache Entry: 183
ASCII text, with very long lines (17493), with no line terminators
downloaded
Chrome Cache Entry: 184
ASCII text, with very long lines (9534)
downloaded
Chrome Cache Entry: 185
ASCII text, with very long lines (4552)
downloaded
Chrome Cache Entry: 186
ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 187
ASCII text, with very long lines (1594)
dropped
Chrome Cache Entry: 188
ASCII text, with very long lines (381)
downloaded
Chrome Cache Entry: 189
ASCII text, with very long lines (4521)
downloaded
Chrome Cache Entry: 190
ASCII text, with very long lines (1001)
downloaded
Chrome Cache Entry: 191
Web Open Font Format (Version 2), TrueType, length 38900, version 3.0
downloaded
Chrome Cache Entry: 192
ASCII text, with no line terminators
downloaded
Chrome Cache Entry: 193
ASCII text, with very long lines (5046)
downloaded
Chrome Cache Entry: 194
ASCII text, with very long lines (3181)
downloaded
Chrome Cache Entry: 195
ASCII text, with very long lines (4143)
downloaded
Chrome Cache Entry: 196
ISO Media, AVIF Image
downloaded
Chrome Cache Entry: 197
ASCII text, with very long lines (1188)
downloaded
Chrome Cache Entry: 198
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2], progressive, precision 8, 160x84, components 3
dropped
Chrome Cache Entry: 199
ASCII text, with very long lines (51313)
downloaded
Chrome Cache Entry: 200
ASCII text, with very long lines (3159)
downloaded
Chrome Cache Entry: 201
ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 202
GIF image data, version 89a, 1 x 1
dropped
Chrome Cache Entry: 203
JSON data
downloaded
Chrome Cache Entry: 204
JSON data
downloaded
Chrome Cache Entry: 205
JSON data
dropped
There are 70 hidden files, click here to show them.

Processes

Path
Cmdline
Malicious
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-pre-read-main-dll --field-trial-handle=2328,i,5071347871742265791,5080083131304949773,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction --variations-seed-version --mojo-platform-channel-handle=2368 /prefetch:3
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" "https://rurfifv.wixstudio.com/my-site"

URLs

Name
IP
Malicious
https://rurfifv.wixstudio.com/my-site
malicious
https://rurfifv.wixstudio.com/my-site
malicious
https://rurfifv.wixstudio.com/my-site/_partials/wix-thunderbolt/dist/clientWorker.f01a577b.bundle.min.js
34.144.206.118
 malicious
https://rurfifv.wixstudio.com/my-site/_api/v1/access-tokens
34.144.206.118
 malicious
https://static.parastorage.com/services/editor-elements/1.13479.0/rb_wixui.siteAssets.manifest.min.json
34.49.229.81
https://static.parastorage.com/unpkg/react@18.3.1/umd/react.production.min.js
34.49.229.81
https://static.parastorage.com/services/wix-thunderbolt/dist/platform.6ddf3204.chunk.min.js
34.49.229.81
https://static.parastorage.com/services/wix-thunderbolt/dist/custom-element-utils.inline.6c144675.bu
unknown
https://static.parastorage.com/services/wix-thunderbolt/dist/cyclicTabbing.29f6a6d7.chunk.min.js.map
unknown
https://static.parastorage.com/fonts/v2/f73e760d-c6b3-4659-9a8c-9ce1d76c1173/madefor-text.var.original.woff2
34.49.229.81
https://static.parastorage.com/services/wix-thunderbolt/dist/componentsLoader.8acadaf2.chunk.min.js.
unknown
https://static.parastorage.com/services/wix-thunderbolt/dist/main.a5860874.bundle.min.js.map
unknown
https://static.parastorage.com/services/form-app/1.1673.0/client-viewer/form-app-wix-ricos-viewer.ch
unknown
https://static.parastorage.com/services/wix-thunderbolt/dist/browser-deprecation.bundle.es5.js
34.49.229.81
https://static.parastorage.com/services/wix-thunderbolt/dist/cyclicTabbing.29f6a6d7.chunk.min.js
34.49.229.81
http://polymer.github.io/AUTHORS.txt
unknown
https://api.whatsapp.com/send?phone=
unknown
https://static.parastorage.com/services/wix-thunderbolt/dist/group_4.c49ab248.chunk.min.js.map
unknown
https://static.parastorage.com/services/wix-thunderbolt/dist/main.94c435c3.min.css
unknown
https://frog.wix.com/bolt-performance
34.199.63.76
https://static.parastorage.com/unpkg/requirejs-bolt@2.3.6/requirejs.min.js
34.49.229.81
https://static.parastorage.com/services/wix-thunderbolt/dist/group_9.438c3cf0.chunk.min.js.map
unknown
https://static.parastorage.com/services/wix-thunderbolt/dist/passwordProtectedPage.f6ecde33.chunk.mi
unknown
https://static.wixstatic.com/media/f7bc5a_68c8c3d4528d47a08b77778e36499cb6~mv2.jpg/v1/fill/w_160,h_84,al_c,q_80,usm_0.66_1.00_0.01,blur_3,enc_avif,quality_auto/f7bc5a_68c8c3d4528d47a08b77778e36499cb6~mv2.jpg
3.167.227.129
https://static.parastorage.com/services/wix-thunderbolt/dist/group_5.e219e5ef.chunk.min.js
34.49.229.81
https://static.parastorage.com/services/wix-thunderbolt/dist/windowMessageRegister.inline.2f428192.b
unknown
https://static.parastorage.com/services/wix-thunderbolt/dist/group_6.c816a227.chunk.min.js
34.49.229.81
https://static.parastorage.com/services/wix-thunderbolt/dist/group_2.0b454250.chunk.min.js.map
unknown
https://static.parastorage.com/services/wix-thunderbolt/dist/ooi.f864528d.chunk.min.js.map
unknown
https://openjsf.org/
unknown
https://static.parastorage.com/services/wix-thunderbolt/dist/group_7.0ae3b1c2.chunk.min.js.map
unknown
https://static.parastorage.com/services/wix-thunderbolt/dist/panorama.2872cc39.chunk.min.js
34.49.229.81
https://static.parastorage.com/services/wix-thunderbolt/dist/overrideGlobals.inline.45eeaad6.bundle.
unknown
https://static.parastorage.com/services/wix-thunderbolt/dist/webpack-runtime.ee1c513d.bundle.min.js.
unknown
https://static.parastorage.com/services/wix-thunderbolt/dist/assetsLoader.1e70f802.chunk.min.js
34.49.229.81
https://static.parastorage.com/services/wix-thunderbolt/dist/webpack-runtime.97ae7421.bundle.min.js
34.49.229.81
https://static.parastorage.com/services/wix-thunderbolt/dist/handleAccessTokens.inline.db015ea5.bund
unknown
https://static.parastorage.com/services/form-app/1.1673.0/client-viewer/1277.chunk.min.css
unknown
https://static.parastorage.com/services/wix-thunderbolt/dist/passwordProtectedPage.f6ecde33.chunk.min.js
34.49.229.81
https://static.parastorage.com/services/form-app/1.1673.0/FormViewerWidgetNoCss.bundle.min.js
34.49.229.81
https://static.parastorage.com/services/wix-thunderbolt/dist/group_7.0ae3b1c2.chunk.min.js
34.49.229.81
https://static.parastorage.com/services/wix-thunderbolt/dist/group_3.82a7aa75.chunk.min.js
34.49.229.81
https://static.parastorage.com/services/wix-thunderbolt/dist/router.478f8b95.chunk.min.js
34.49.229.81
http://polymer.github.io/PATENTS.txt
unknown
https://static.parastorage.com/services/wix-thunderbolt/dist/panorama.2872cc39.chunk.min.js.map
unknown
https://static.parastorage.com/services/editor-elements-design-systems/dist/siteAssets/
unknown
https://static.parastorage.com/services/wix-thunderbolt/dist/thunderbolt-features.a0a46959.bundle.min.js
34.49.229.81
http://polymer.github.io/LICENSE.txt
unknown
https://static.parastorage.com/services/wix-thunderbolt/dist/componentsLoader.8acadaf2.chunk.min.js
34.49.229.81
https://static.parastorage.com/fonts/v2/26656ec7-c27d-4bdc-a9f4-6b498bbfad69/madefor-display.var.original.woff2
34.49.229.81
https://static.parastorage.com/services/wix-thunderbolt/dist/createPlatformWorker.inline.a6c05fb0.bu
unknown
http://underscorejs.org/LICENSE
unknown
https://static.parastorage.com/services/wix-thunderbolt/dist/group_7.bae0ce0c.chunk.min.css
unknown
https://static.parastorage.com/services/editor-elements-library/dist/siteAssets/
unknown
https://greensock.com/standard-license
unknown
https://frog.wix.com/bolt-performance?src=72&evid=21&appName=wix-studio&is_rollout=0&is_company_network=false&is_sav_rollout=0&is_dac_rollout=0&dc=virginia-pub&microPop=virginia-pub_g&is_cached=true&msid=221ecf3d-725d-4ae0-b0ac-b0233cec0d3d&session_id=0fbda4c2-a31e-483f-a40f-abdbbcdaa0a1&ish=false&isb=false&vsi=826423a7-18ec-48b8-afcc-4c43412f44a7&caching=hit,hit&pv=visible&pn=1&v=1.15368.0&url=https%3A%2F%2Frurfifv.wixstudio.com%2Fmy-site&st=2&ts=392&tsn=1257&platformOnSite=true
34.199.63.76
https://static.parastorage.com/unpkg/core-js-bundle
unknown
https://static.parastorage.com/services/wix-thunderbolt/dist/nonMainSdks.5295a81d.chunk.min.js
34.49.229.81
https://static.parastorage.com/services/wix-thunderbolt/dist/externals-registry.inline.a7ae621e.bund
unknown
https://github.com/madrobby/zepto/blob/master/src/detect.js#files
unknown
https://static.parastorage.com/unpkg/lodash
unknown
https://static.parastorage.com/unpkg/react
unknown
https://static.parastorage.com/services/wix-thunderbolt/dist/tpaCommons.59f6ed53.chunk.min.js.map
unknown
https://static.parastorage.com/services/wix-thunderbolt/dist/sendBeat12.inline.62e7b16d.bundle.min.j
unknown
https://npms.io/search?q=ponyfill.
unknown
https://static.parastorage.com/services/wix-thunderbolt/dist/bi-common.inline.e8c7ad3a.bundle.min.js
unknown
https://static.parastorage.com/services/wix-thunderbolt/dist/router.478f8b95.chunk.min.js.map
unknown
https://static.parastorage.com/services/wix-thunderbolt/dist/environmentWixCodeSdk.a8e26091.chunk.min.js
34.49.229.81
https://frog.wix.com/bolt-performance?src=72&evid=28&appName=wix-studio&is_rollout=0&is_company_network=false&is_sav_rollout=0&is_dac_rollout=0&dc=virginia-pub&microPop=virginia-pub_g&is_cached=true&msid=221ecf3d-725d-4ae0-b0ac-b0233cec0d3d&session_id=0fbda4c2-a31e-483f-a40f-abdbbcdaa0a1&ish=false&isb=false&vsi=826423a7-18ec-48b8-afcc-4c43412f44a7&caching=hit,hit&pv=visible&pn=1&v=1.15368.0&url=https%3A%2F%2Frurfifv.wixstudio.com%2Fmy-site&st=2&ts=392&tsn=1257&name=partially_visible&duration=1742257214714&pageId=c1dmp&isSuccessfulSSR=true
34.199.63.76
https://static.parastorage.com/unpkg/react-dom@18.3.1/umd/react-dom.production.min.js
34.49.229.81
https://static.parastorage.com/services/wix-thunderbolt/dist/tpaCommons.59f6ed53.chunk.min.js
34.49.229.81
https://static.parastorage.com/services/wix-thunderbolt/dist/thunderbolt-commons.b9417ea8.bundle.min
unknown
https://static.parastorage.com/services/wix-thunderbolt/dist/mpaNavigation.a9532f09.chunk.min.js
34.49.229.81
https://static.parastorage.com/services/wix-thunderbolt/dist/appMonitoring.d89b6d9c.chunk.min.js
34.49.229.81
https://static.parastorage.com/services/wix-thunderbolt/dist/assetsLoader.1e70f802.chunk.min.js.map
unknown
https://static.parastorage.com/services/editor-elements/1.13479.0/rb_dsgnsys.siteAssets.manifest.min.json
34.49.229.81
https://static.parastorage.com/services/form-app/1.1673.0/client-viewer/form-app-header.chunk.min.js
34.49.229.81
https://browser.sentry-cdn.com/7.120.3/bundle.tracing.es5.min.js
151.101.130.217
https://static.parastorage.com/services/wix-thunderbolt/dist/group_3.82a7aa75.chunk.min.js.map
unknown
https://static.parastorage.com/unpkg/react-dom
unknown
https://static.parastorage.com/services/wix-thunderbolt/dist/9839.a6a8764d.chunk.min.js.map
unknown
https://static.parastorage.com/services/wix-thunderbolt/dist/platform.6ddf3204.chunk.min.js.map
unknown
https://static.parastorage.com/services/wix-thunderbolt/dist/main.a5860874.bundle.min.js
34.49.229.81
https://static.parastorage.com/services/editor-elements-design-systems/dist/siteAssets/rb_dsgnsys.si
unknown
https://frog.wix.com/
34.199.63.76
https://github.com/madrobby/zepto/blob/master/MIT-LICENSE
unknown
https://static.parastorage.com/services/editor-elements-library/dist/thunderbolt/rb_wixui.thunderbol
unknown
https://static.parastorage.com/services/wix-thunderbolt/dist/fastdom.inline.fbeb22f8.bundle.min.js.m
unknown
https://static.parastorage.com/services/wix-thunderbolt/dist/mpaNavigation.a9532f09.chunk.min.js.map
unknown
https://github.com/getsentry/sentry-javascript
unknown
https://browser.sentry-cdn.com/7.120.3/modulemetadata.es5.min.js
151.101.130.217
http://polymer.github.io/CONTRIBUTORS.txt
unknown
https://www.google.com/complete/search?client=chrome-omni&gs_ri=chrome-ext-ansg&xssi=t&q=&oit=0&gs_rn=42&sugkey=AIzaSyA2KlwBX3mkFo30om9LUFYQhpqLoa_BNhE
142.250.185.164
https://static.parastorage.com/services/editor-elements-library/dist/siteAssets/rb_wixui.siteAssets.
unknown
https://static.parastorage.com/services/wix-thunderbolt/dist/group_5.e219e5ef.chunk.min.js.map
unknown
http://jedwatson.github.io/classnames
unknown
https://panorama.wixapps.net/api/v1/bulklog
34.149.206.255
https://greensock.com
unknown
https://static.parastorage.com/services/wix-thunderbolt/dist/siteMembers.99e7afd8.chunk.min.js
34.49.229.81
https://static.parastorage.com/services/form-app/1.1673.0/viewerScript.bundle.min.js
34.49.229.81
https://static.parastorage.com/services/wix-thunderbolt/dist/usedPlatformApis.7db29f51.chunk.min.js.
unknown
There are 90 hidden URLs, click here to show them.

Domains

Name
IP
Malicious
rurfifv.wixstudio.com
unknown
 malicious
browser.sentry-cdn.com
151.101.130.217
glb-editor.wix.com
34.149.206.255
sentry-ssl-462500017.us-east-1.elb.amazonaws.com
52.207.104.172
username-ccm-206-118.wix.com
34.144.206.118
td-static-34-49-229-81.parastorage.com
34.49.229.81
d1cq301dpr7fww.cloudfront.net
3.167.227.129
www.google.com
142.250.185.164
td-ccm-neg-87-45.wixdns.net
34.149.87.45
bi-flogger-alb-ext-343643057.us-east-1.elb.amazonaws.com
34.199.63.76
static.wixstatic.com
unknown
siteassets.parastorage.com
unknown
sentry-next.wixpress.com
unknown
frog.wix.com
unknown
panorama.wixapps.net
unknown
static.parastorage.com
unknown
www.wix.com
unknown
There are 7 hidden domains, click here to show them.

IPs

IP
Domain
Country
Malicious
34.49.229.81
td-static-34-49-229-81.parastorage.com
United States
3.167.227.32
unknown
United States
34.144.206.118
username-ccm-206-118.wix.com
United States
151.101.130.217
browser.sentry-cdn.com
United States
192.168.2.6
unknown
unknown
3.167.227.129
d1cq301dpr7fww.cloudfront.net
United States
142.250.185.164
www.google.com
United States
52.207.104.172
sentry-ssl-462500017.us-east-1.elb.amazonaws.com
United States
34.149.87.45
td-ccm-neg-87-45.wixdns.net
United States
34.149.206.255
glb-editor.wix.com
United States
34.199.63.76
bi-flogger-alb-ext-343643057.us-east-1.elb.amazonaws.com
United States
There are 1 hidden IPs, click here to show them.

DOM / HTML

URL
Malicious
https://rurfifv.wixstudio.com/my-site
 malicious
https://rurfifv.wixstudio.com/my-site
 malicious
https://rurfifv.wixstudio.com/my-site
 malicious