Automated Malware Analysis IOC Report for

Details

Filetype:	URL
Filename:	https://www.ctc.ca.gov/educator-prep/program-accred-sch-act

Signature Hits	Behavior Group	Mitre Attack
Classification label	System Summary
Creates files inside the user directory	System Summary	Masquerading
Creates temporary files	System Summary
Found strings which match to known social media urls	Networking
Performs DNS lookups	Networking	Non-Application Layer Protocol
Reads ini files	System Summary	File and Directory Discovery
Spawns processes	System Summary	Process Injection
Urls found in memory or binary data	Networking
Uses HTTPS	Networking	Encrypted Channel Application Layer Protocol
Uses HTTPS for network communication, use the 'Proxy HTTPS (port 443) to read its encrypted data' cookbook for further analysis
Uses new MSVCR Dlls	Compliance, System Summary
Uses secure TLS version for HTTPS connections	Compliance, Networking
Found graphical window changes (likely an installer)	System Summary
Tries to open an application configuration file (.cfg)	System Summary

Details

File:	C:\Users\user\AppData\Local\Microsoft\Internet Explorer\DOMStore\BACZYXTY\www.youtube[1].xml
Category:	dropped
Dump:	www.youtube[1].xml.2.dr
ID:	dr_105
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	ASCII text, with very long lines, with no line terminators
Entropy:	5.102375905833574
Encrypted:	false
Ssdeep:	24:W0UJwQ70UJNiQ70Ub+dqJ6/wQ7Ub+dqJ6/wQ4tr+3QkQ5:0mQxDiQxisIIQAisIIQ/ZQ5
Size:	864
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Internet Explorer\DOMStore\E5F0NRSV\www.ctc.ca[1].xml
Category:	dropped
Dump:	www.ctc.ca[1].xml.2.dr
ID:	dr_30
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	ASCII text, with no line terminators
Entropy:	2.469670487371862
Encrypted:	false
Ssdeep:	3:D90aKb:JFKb
Size:	13
Whitelisted:	true
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Internet Explorer\DOMStore\URW0GA4Q\www.ca[1].xml
Category:	dropped
Dump:	www.ca[1].xml.2.dr
ID:	dr_65
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	ASCII text, with no line terminators
Entropy:	2.469670487371862
Encrypted:	false
Ssdeep:	3:D90aKb:JFKb
Size:	13
Whitelisted:	true
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{38854918-75F4-11EB-90EB-ECF4BBEA1588}.dat
Category:	dropped
Dump:	RecoveryStore.{38854918-75F4-11EB-90EB-ECF4BBEA1588}.dat.1.dr
ID:	dr_0
Target ID:	1
Process:	C:\Program Files\internet explorer\iexplore.exe
Type:	Microsoft Word Document
Entropy:	1.844624669440254
Encrypted:	false
Ssdeep:	192:rSZxZo2CWhTthBifh7V7zMPPDBGNJDGHsfGxVCjX:rOX/hhRhehWPlGbGyGG
Size:	30296
Whitelisted:	false
Reputation:	low

Signature Hits	Behavior Group	Mitre Attack
Creates files inside the user directory	System Summary	Masquerading

Details

File:	C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{3885491A-75F4-11EB-90EB-ECF4BBEA1588}.dat
Category:	dropped
Dump:	{3885491A-75F4-11EB-90EB-ECF4BBEA1588}.dat.1.dr
ID:	dr_2
Target ID:	1
Process:	C:\Program Files\internet explorer\iexplore.exe
Type:	Microsoft Word Document
Entropy:	2.5556605165550925
Encrypted:	false
Ssdeep:	384:r3XdlHQ/kKhQf/9c6HsPtrlBdY05dM9yPX9lacqUSBMa0df8lfU4NwZ/lNn5hHoo:jICg
Size:	193470
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{3F1AE735-75F4-11EB-90EB-ECF4BBEA1588}.dat
Category:	dropped
Dump:	{3F1AE735-75F4-11EB-90EB-ECF4BBEA1588}.dat.1.dr
ID:	dr_4
Target ID:	1
Process:	C:\Program Files\internet explorer\iexplore.exe
Type:	Microsoft Word Document
Entropy:	1.5623414589249676
Encrypted:	false
Ssdeep:	48:IwGGcprrGwpaMG4pQQGrapbSkbGQpKyG7HpRTTGIpG:raZlQM6uBSkVAdTZA
Size:	16984
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-17529550060\msapplication.xml
Category:	dropped
Dump:	msapplication.xml5.1.dr
ID:	dr_12
Target ID:	1
Process:	C:\Program Files\internet explorer\iexplore.exe
Type:	XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
Entropy:	5.034147827930483
Encrypted:	false
Ssdeep:	12:TMHdNMNxOEAFiF1nWimI002EtM3MHdNMNxOEAFiF1nWimI00OYGVbkEtMb:2d6NxOwSZHKd6NxOwSZ7YLb
Size:	656
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-18270793970\msapplication.xml
Category:	dropped
Dump:	msapplication.xml.1.dr
ID:	dr_6
Target ID:	1
Process:	C:\Program Files\internet explorer\iexplore.exe
Type:	XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
Entropy:	5.058409145653463
Encrypted:	false
Ssdeep:	12:TMHdNMNxe2krN1nWimI002EtM3MHdNMNxe2krN1nWimI00OYGkak6EtMb:2d6NxrGSZHKd6NxrGSZ7Yza7b
Size:	653
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-21706820\msapplication.xml
Category:	dropped
Dump:	msapplication.xml6.1.dr
ID:	dr_13
Target ID:	1
Process:	C:\Program Files\internet explorer\iexplore.exe
Type:	XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
Entropy:	5.052774013363098
Encrypted:	false
Ssdeep:	12:TMHdNMNxvLAFiF1nWimI002EtM3MHdNMNxvLAFiF1nWimI00OYGmZEtMb:2d6NxvpSZHKd6NxvpSZ7Yjb
Size:	662
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-4759708130\msapplication.xml
Category:	dropped
Dump:	msapplication.xml2.1.dr
ID:	dr_9
Target ID:	1
Process:	C:\Program Files\internet explorer\iexplore.exe
Type:	XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
Entropy:	5.0311974202451175
Encrypted:	false
Ssdeep:	12:TMHdNMNxiNn1nWimI002EtM3MHdNMNxiNn1nWimI00OYGd5EtMb:2d6NxASZHKd6NxASZ7YEjb
Size:	647
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-6757900\msapplication.xml
Category:	dropped
Dump:	msapplication.xml7.1.dr
ID:	dr_14
Target ID:	1
Process:	C:\Program Files\internet explorer\iexplore.exe
Type:	XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
Entropy:	5.064787294279794
Encrypted:	false
Ssdeep:	12:TMHdNMNxhGwAFiF1nWimI002EtM3MHdNMNxhGwAFiF1nWimI00OYG8K075EtMb:2d6NxQESZHKd6NxQESZ7YrKajb
Size:	656
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-8760897390\msapplication.xml
Category:	dropped
Dump:	msapplication.xml4.1.dr
ID:	dr_11
Target ID:	1
Process:	C:\Program Files\internet explorer\iexplore.exe
Type:	XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
Entropy:	5.020216100857313
Encrypted:	false
Ssdeep:	12:TMHdNMNx0nNn1nWimI002EtM3MHdNMNx0nNn1nWimI00OYGxEtMb:2d6Nx07SZHKd6Nx07SZ7Ygb
Size:	653
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin20259167780\msapplication.xml
Category:	dropped
Dump:	msapplication.xml3.1.dr
ID:	dr_10
Target ID:	1
Process:	C:\Program Files\internet explorer\iexplore.exe
Type:	XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
Entropy:	5.056443461114694
Encrypted:	false
Ssdeep:	12:TMHdNMNxxNn1nWimI002EtM3MHdNMNxxNn1nWimI00OYG6Kq5EtMb:2d6NxtSZHKd6NxtSZ7Yhb
Size:	656
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin20332743330\msapplication.xml
Category:	dropped
Dump:	msapplication.xml0.1.dr
ID:	dr_7
Target ID:	1
Process:	C:\Program Files\internet explorer\iexplore.exe
Type:	XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
Entropy:	5.0449145254259875
Encrypted:	false
Ssdeep:	12:TMHdNMNxctP1nWimI002EtM3MHdNMNxctP1nWimI00OYGVEtMb:2d6Nx6SZHKd6Nx6SZ7Ykb
Size:	659
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin8215062560\msapplication.xml
Category:	dropped
Dump:	msapplication.xml1.1.dr
ID:	dr_8
Target ID:	1
Process:	C:\Program Files\internet explorer\iexplore.exe
Type:	XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
Entropy:	5.030072210451255
Encrypted:	false
Ssdeep:	12:TMHdNMNxfntP1nWimI002EtM3MHdNMNxfntP1nWimI00OYGe5EtMb:2d6NxzSZHKd6NxzSZ7YLjb
Size:	653
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Internet Explorer\imagestore\gee00pr\imagestore.dat
Category:	dropped
Dump:	imagestore.dat.2.dr
ID:	dr_39
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	data
Entropy:	7.887520524794524
Encrypted:	false
Ssdeep:	384:MJZ6S3SFzlQD5mL+o6oZXZNeLQQ+Qa2m3aCk1zFOGBmf8XthE8W9AXlxqf0CI:MJZ6S3SpK5mL+PoY42FOGBm+VWglK0H
Size:	19941
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7j[1].woff
IE cache URL:	https://fonts.gstatic.com/s/sourcesanspro/v14/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7j.woff
Category:	downloaded
Dump:	6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7j[1].woff.2.dr
ID:	dr_58
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	Web Open Font Format, TrueType, length 20180, version 1.1
Entropy:	7.97320012816743
Encrypted:	false
Ssdeep:	384:S3ECNC9EU5uXBx/d17jzOBmhUXQOTF3IHrYZEFeWXU5ebGLtCjUdtjVOTg:S3EC2rMXBdjzOBRx3IHrYOFeWLotCYL7
Size:	20180
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdo[1].woff
IE cache URL:	https://fonts.gstatic.com/s/sourcesanspro/v14/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdo.woff
Category:	downloaded
Dump:	6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdo[1].woff.2.dr
ID:	dr_59
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	Web Open Font Format, TrueType, length 19896, version 1.1
Entropy:	7.973207257576149
Encrypted:	false
Ssdeep:	384:vi9GdFUguXBNV01KI0EhV+xnP+gu9ZLpanYwJz1aRRxaFsq+6LVnQVOTa:vi94iVXBYQnmUYwJz87kLhxnQVOTa
Size:	19896
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\CaGov[1].eot
IE cache URL:	https://california.azureedge.net/cdt/statetemplate/6.0.1/fonts/CaGov.eot?ocljyw
Category:	downloaded
Dump:	CaGov[1].eot.2.dr
ID:	dr_74
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	Embedded OpenType (EOT), icomoon family
Entropy:	6.385095588674892
Encrypted:	false
Ssdeep:	3072:dDyvTaLSAqR5UkfZHQyUCrt8mkzdGw/VddMqq54EahxYGsaLMNkeLtzj7U6OgIEY:tyvTaLSXR5UkfZHQpCrtMzdGw/VdWqqm
Size:	115904
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\KFOlCnqEu92Fr1MmWUlfBBc-[1].woff
IE cache URL:	https://fonts.gstatic.com/s/roboto/v20/KFOlCnqEu92Fr1MmWUlfBBc-.woff
Category:	downloaded
Dump:	KFOlCnqEu92Fr1MmWUlfBBc-[1].woff.2.dr
ID:	dr_37
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	Web Open Font Format, TrueType, length 20356, version 1.1
Entropy:	7.972919215442608
Encrypted:	false
Ssdeep:	384:of+dt1ebKR28EPpAXxR5wthZZv4B8Te/h4+ctr5NH9NwZaUp4VsEgm:of+P1eeRcU8Hqdy+UHHbEw/
Size:	20356
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\NGH2BVFL.htm
Category:	dropped
Dump:	NGH2BVFL.htm.2.dr
ID:	dr_81
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	HTML document, ASCII text, with very long lines, with CRLF, LF line terminators
Entropy:	4.865214069996938
Encrypted:	false
Ssdeep:	1536:8dJTTPMnZttsHKkOUzN2ApHCbXrHb5CDdUrSitCt:2lPYmHKkOUzN2ApHCbXrHb5CDdUrSitO
Size:	62307
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\analytics[1].js
IE cache URL:	https://www.google-analytics.com/analytics.js
Category:	downloaded
Dump:	analytics[1].js.2.dr
ID:	dr_31
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	ASCII text, with very long lines
Entropy:	5.518633523108405
Encrypted:	false
Ssdeep:	768:UyC36rcBLbfsl5XqYoyPndHTkoWY3SoavVVy2WiCgYUD0FEw0stZb:UyDAZfY5hVdHTwY3SoIjw0sD
Size:	47332
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\app---oath-2-payment[1].png
IE cache URL:	https://www.ctc.ca.gov/images/default-source/cert-images/ctc-online-help/apps-payments/app---oath-2-payment.png?sfvrsn=c2b551b1_6
Category:	downloaded
Dump:	app---oath-2-payment[1].png.2.dr
ID:	dr_125
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	PNG image data, 900 x 327, 8-bit/color RGBA, non-interlaced
Entropy:	7.939598164080135
Encrypted:	false
Ssdeep:	768:aen1xz63G32V9gtPfM+FQ2QIbbA5OXgjtKxjIqsKK7nb64EqozLXRaUS8Z4aIqc:aen1562u+tPftFe5OUtKxjIB7nb6dPzI
Size:	47647
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\app---payment-continue[1].png
IE cache URL:	https://www.ctc.ca.gov/images/default-source/cert-images/ctc-online-help/apps-payments/app---payment-continue.png?sfvrsn=d1b451b1_10
Category:	downloaded
Dump:	app---payment-continue[1].png.2.dr
ID:	dr_127
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	PNG image data, 755 x 243, 8-bit/color RGBA, non-interlaced
Entropy:	7.976170297408307
Encrypted:	false
Ssdeep:	1536:lrEyIOYI2LpyaP9h17nj+wYHNUOAyD4az/HnHmouPma0NW5l:lkLvNfv1O9HNmyD4arHmogmrOl
Size:	58294
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\app---process-payment[1].png
IE cache URL:	https://www.ctc.ca.gov/images/default-source/cert-images/ctc-online-help/apps-payments/app---process-payment.png?sfvrsn=9fb651b1_8
Category:	downloaded
Dump:	app---process-payment[1].png.2.dr
ID:	dr_126
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	PNG image data, 461 x 115, 8-bit/color RGBA, non-interlaced
Entropy:	7.946501784719948
Encrypted:	false
Ssdeep:	384:ys2p4zGQC/8qvxUTfRY44jgBjJdVjtFvy2Q:Kyw8qZUjhJbtJy/
Size:	13959
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\app---renew-pick-base-zoom[1].png
IE cache URL:	https://www.ctc.ca.gov/images/default-source/cert-images/ctc-online-help/apps-payments/app---renew-pick-base-zoom.png?sfvrsn=ddaa51b1_12
Category:	downloaded
Dump:	app---renew-pick-base-zoom[1].png.2.dr
ID:	dr_118
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	PNG image data, 231 x 72, 8-bit/color RGBA, non-interlaced
Entropy:	7.8484361079026845
Encrypted:	false
Ssdeep:	48:fsLsL/+PYIA/Cnn/doFEJWO7KUcMG+Lzq3PqWfm1GKlkvLTzVUvS3WoTs:fsLsL2CCnn/uGwOOZUgKlwLTSIDI
Size:	2639
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\apply[1].htm
Category:	dropped
Dump:	apply[1].htm0.2.dr
ID:	dr_95
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	HTML document, ASCII text, with very long lines, with CRLF, LF line terminators
Entropy:	4.903641466750486
Encrypted:	false
Ssdeep:	1536:WRRTPMnZttsHKkOUzN2ApHCbXrHb5CDdUrSinZCt:APYmHKkOUzN2ApHCbXrHb5CDdUrSinZO
Size:	60153
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\ca.gov-portal-logo-bear[1].png
IE cache URL:	https://www.ca.gov/images/ca.gov-portal-logo-bear.png
Category:	downloaded
Dump:	ca.gov-portal-logo-bear[1].png.2.dr
ID:	dr_43
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	PNG image data, 406 x 143, 8-bit/color RGBA, non-interlaced
Entropy:	7.984752292616689
Encrypted:	false
Ssdeep:	768:oP+xbSAwsWWIqFL1wi5hipk8sZNuzrncEDpD3kLaRFGHDz:JxAsrIqFL1lip9+knRN8aR0HDz
Size:	35154
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\cagov.core[1].css
IE cache URL:	https://www.ctc.ca.gov/Frontend-Assembly/Telerik.Sitefinity.Frontend/assets/css/cagov.core.css?package=CTC
Category:	downloaded
Dump:	cagov.core[1].css.2.dr
ID:	dr_17
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	ASCII text, with very long lines, with CRLF line terminators
Entropy:	5.09339470130854
Encrypted:	false
Ssdeep:	768:F0YnUV1qsBjB6wNEoxQKagZ69JCdMjCm1gXBdDf6XwUdfB/IRi6oWgycTdCdD:6k+jB6wNpXdMem2XBZmB/lvw
Size:	126898
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\cert-clear[1].gif
IE cache URL:	https://www.ctc.ca.gov/images/default-source/credentialing-information-library/cert-clear.gif?sfvrsn=2e0f4bb1_0
Category:	downloaded
Dump:	cert-clear[1].gif.2.dr
ID:	dr_92
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	GIF image data, version 89a, 140 x 140
Entropy:	7.708044722601812
Encrypted:	false
Ssdeep:	24:GoNXBnNiWWIsQs5irh6k+018i71KRg/EQ/25zOPURFDYurdffP6a1OoNYxk6:GMRnWus5MR+018G1KRgcQG7ZfKa1Oob6
Size:	1722
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\colorscheme-oceanside[1].css
IE cache URL:	https://www.ctc.ca.gov/Frontend-Assembly/Telerik.Sitefinity.Frontend/assets/css/colorscheme-oceanside.css?package=CTC
Category:	downloaded
Dump:	colorscheme-oceanside[1].css.2.dr
ID:	dr_18
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	ASCII text, with very long lines, with no line terminators
Entropy:	4.842620426576959
Encrypted:	false
Ssdeep:	192:b0/kbgicpic4icricnicf43jdKkuSVepFl97u2ixBjM+kG27pnZe6r0:mkbz4er37oBjM+f2tno
Size:	25241
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\colorscheme-oceanside[2].css
IE cache URL:	https://california.azureedge.net/cdt/statetemplate/6.0.1/css/colorscheme-oceanside.css
Category:	downloaded
Dump:	colorscheme-oceanside[2].css.2.dr
ID:	dr_57
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	ASCII text, with very long lines, with CRLF line terminators
Entropy:	4.98880412219718
Encrypted:	false
Ssdeep:	3072:x2RjWZVR9J9hx/jfDvbvTpVBd5dx8QW6cgeqZ:wWZVR9J9hx/jfDvbvTpVBd5dx8QW6cgL
Size:	141599
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\complete-recommend[1].htm
Category:	dropped
Dump:	complete-recommend[1].htm.2.dr
ID:	dr_96
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	HTML document, ASCII text, with very long lines, with CRLF, LF line terminators
Entropy:	4.997295977821599
Encrypted:	false
Ssdeep:	1536:cRxTPMnZttsHKkOUzN2ApHCbXrHb5CDdUrSibfDRGCt:gPYmHKkOUzN2ApHCbXrHb5CDdUrSiHsO
Size:	67266
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\covid-19-commission-action-related-to-covid-19[1].htm
Category:	dropped
Dump:	covid-19-commission-action-related-to-covid-19[1].htm.2.dr
ID:	dr_40
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	HTML document, UTF-8 Unicode text, with very long lines, with CRLF, LF line terminators
Entropy:	5.109135819545959
Encrypted:	false
Ssdeep:	1536:tR8TPMnZttsHKkOUzN2ApHCbXrHb5CDdUrSiJ+pagCCt:oPYmHKkOUzN2ApHCbXrHb5CDdUrSiJ+R
Size:	66208
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\ctclogotwo-(1)[1].png
IE cache URL:	https://www.ctc.ca.gov/images/default-source/default-album/ctclogotwo-(1).png?sfvrsn=cd8b72b1_0
Category:	downloaded
Dump:	ctclogotwo-(1)[1].png.2.dr
ID:	dr_27
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	PNG image data, 278 x 67, 8-bit colormap, non-interlaced
Entropy:	7.791681251669548
Encrypted:	false
Ssdeep:	48:wX3p0Szgf84CC13ncUQXWF3WBSOAcGOK01dRrDJKPTre:w+n8A3ngWpWTRr1q+
Size:	1783
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\fetch-polyfill[1].js
IE cache URL:	https://www.youtube.com/s/player/5a096a9f/fetch-polyfill.vflset/fetch-polyfill.js
Category:	downloaded
Dump:	fetch-polyfill[1].js.2.dr
ID:	dr_103
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	Pascal source, ASCII text, with very long lines
Entropy:	5.238064281324506
Encrypted:	false
Ssdeep:	192:oQHdiEslZc0rsNYNU5mSJHqI03aej6tZoaMLQO/x5/P80+HcW:ocHslLsP5muHqI0Jj6tZcUO/x5+V
Size:	8543
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\login-user-id-password[1].png
IE cache URL:	https://www.ctc.ca.gov/images/default-source/cert-images/ctc-online-help/login-help/login-user-id-password.png?sfvrsn=1e5656b1_20
Category:	downloaded
Dump:	login-user-id-password[1].png.2.dr
ID:	dr_97
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	PNG image data, 400 x 386, 8-bit/color RGBA, non-interlaced
Entropy:	7.96296454385474
Encrypted:	false
Ssdeep:	768:37Q5URcitxz2SKaMYZfJ+QPWRn1anOUrX4UPGRjbVDNie/9ipzUbMrbl:rQ5bitxz2S5MyR+QGnKzGRPVDkUipzyA
Size:	36744
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\main[1].js
IE cache URL:	https://translate.googleapis.com/translate_static/js/element/main.js
Category:	downloaded
Dump:	main[1].js.2.dr
ID:	dr_67
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	ASCII text, with very long lines
Entropy:	5.401733199652954
Encrypted:	false
Ssdeep:	96:RBJabc3cCahrQN0JxlehAJdQceRExLASPjfm6u2M8tmV+:R2bC7apiaxleh0dQJ1SLfm6u2Rm4
Size:	4053
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\program-accred-sch-act[1].htm
Category:	dropped
Dump:	program-accred-sch-act[1].htm.2.dr
ID:	dr_16
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	HTML document, ASCII text, with very long lines, with CRLF, LF line terminators
Entropy:	4.87074524406038
Encrypted:	false
Ssdeep:	3072:wPYmHKkOUzN2ApHCbXrHb5CDdUrSiiTCKPYmHKkOUzN2ApHCbXrHb5CDdUrSiiTO:PmHKkOUzN2ApHCbXrHb5CDdUrSicC5mO
Size:	145650
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\recovery[1].jpg
IE cache URL:	https://www.ca.gov/images/recovery.jpg
Category:	downloaded
Dump:	recovery[1].jpg.2.dr
ID:	dr_44
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	[TIFF image data, little-endian, direntries=0], baseline, precision 8, 800x450, frames 3
Entropy:	7.975258034864337
Encrypted:	false
Ssdeep:	1536:XIpy25Q3Fj1y8KfmAs6qAMmPwmcE6kMuBeV+DkjlG:XWy25Q3Z1y8T/QIkMuQUDkRG
Size:	72836
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\renew[1]
Category:	dropped
Dump:	renew[1].2.dr
ID:	dr_111
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	HTML document, ASCII text, with CRLF line terminators
Entropy:	4.606829501135001
Encrypted:	false
Ssdeep:	3:qVZxgROOHPzi1XbZ6TBFo48fF6mAQBeMEGRoJMLgc3jAPbJV66cG:qzxUcX96TsLr5RRoJMjEjJUG
Size:	161
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\school-text-sm[1].jpg
IE cache URL:	https://www.ctc.ca.gov/images/default-source/site-images/school-text-sm.jpg?sfvrsn=fac046b1_6
Category:	downloaded
Dump:	school-text-sm[1].jpg.2.dr
ID:	dr_83
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	[TIFF image data, little-endian, direntries=0], baseline, precision 8, 350x200, frames 3
Entropy:	7.973842608178955
Encrypted:	false
Ssdeep:	384:Yi6n64Q0uPtCouLfOUnLErLHw3YaDh+F1ARds1byFgSrC3i8cpOuV4N/HJ47OxiB:Yi6n6P0Db7OUAPHw3VseRWbybrCgOuVv
Size:	20845
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\search-laptop-sm[1].jpg
IE cache URL:	https://www.ctc.ca.gov/images/default-source/site-images/search-laptop-sm.jpg?sfvrsn=f4c046b1_6
Category:	downloaded
Dump:	search-laptop-sm[1].jpg.2.dr
ID:	dr_82
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	[TIFF image data, little-endian, direntries=0], baseline, precision 8, 350x200, frames 3
Entropy:	7.968236475744483
Encrypted:	false
Ssdeep:	384:G2fKgFZgs2fbTJ/FSFhJ6Do+yUTg3BFSR/9KiyQteA8kl:fCIgzFSFMVyJBRgejkl
Size:	19941
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\translateelement[1].css
IE cache URL:	https://translate.googleapis.com/translate_static/css/translateelement.css
Category:	downloaded
Dump:	translateelement[1].css.2.dr
ID:	dr_66
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	ASCII text, with very long lines
Entropy:	5.0229050341109795
Encrypted:	false
Ssdeep:	384:Z6/FpzOTH+pUwFQQFzosq6yzGy60wQHZAOcUcmMt0wGq6K:Z4FxskUwFQdcUcmMp
Size:	18724
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\widgets[1].js
IE cache URL:	https://platform.twitter.com/widgets.js?_=1614097762362
Category:	downloaded
Dump:	widgets[1].js0.2.dr
ID:	dr_76
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	UTF-8 Unicode text, with very long lines
Entropy:	5.182916419611687
Encrypted:	false
Ssdeep:	1536:NbUBPzpeTTHd2NqDrSUnGkBDkcDpO+JjoT7tcru8ryM25S9S/:JszST9ucKOvMwUGS/
Size:	97317
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\www-embed-player[1].js
IE cache URL:	https://www.youtube.com/s/player/5a096a9f/www-embed-player.vflset/www-embed-player.js
Category:	downloaded
Dump:	www-embed-player[1].js.2.dr
ID:	dr_102
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	ASCII text, with very long lines
Entropy:	5.579713923527595
Encrypted:	false
Ssdeep:	1536:Oyx1wapSOb2yXa/2KPDewjwF5EluQ7nw9ZmXDURkYcRSgM12q0DjXipnYVSL7SSy:Z0aoDMfxTKUWM1xlQI93lNU235H9rJl4
Size:	160706
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\KFOmCnqEu92Fr1Mu4mxM[1].woff
IE cache URL:	https://fonts.gstatic.com/s/roboto/v20/KFOmCnqEu92Fr1Mu4mxM.woff
Category:	downloaded
Dump:	KFOmCnqEu92Fr1Mu4mxM[1].woff.2.dr
ID:	dr_33
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	Web Open Font Format, TrueType, length 20268, version 1.1
Entropy:	7.970212610239314
Encrypted:	false
Ssdeep:	384:LyfRPUY1e32pJd75q1DzPjsnouCrZsZtetWFNFfIP0cIWvdzNcrm:uJPb1em3dSPjKrZYtWntk0wvdzh
Size:	20268
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\KFOmCnqEu92Fr1Mu4mxM[2].woff
IE cache URL:	https://fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxM.woff
Category:	downloaded
Dump:	KFOmCnqEu92Fr1Mu4mxM[2].woff.2.dr
ID:	dr_106
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	Web Open Font Format, TrueType, length 19824, version 1.1
Entropy:	7.970306766642997
Encrypted:	false
Ssdeep:	384:ozNCb8EbW9Wg166uwroOp/taiap3K6MC4fsPPuzt+7NCXzS65XZELt:K4zbWcDVwt230hfs+x+Bb65X2
Size:	19824
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\ScriptResource[1].js
IE cache URL:	https://www.ctc.ca.gov/ScriptResource.axd?d=N_lTjHyHq3vfBLjuEvPuKPC8N78ddG3-zhp9TvM41VQ9KmMmDL4L767k0OqIHbKKdNLYGaV5jFIIF2-77BWkep1xCrgrGbO-k5_vIduc4gUH55-eLAipdV5-jhNUODvBQk8VQWvh_Q1sfEw_BrUA4MjqA97WTKop_FOIKR8k6J-6CfodCBpYtUh0qyUauoSccrjbwFP9owG0K2UC6FEzOQ2&t=ffffffffa8d168ac
Category:	downloaded
Dump:	ScriptResource[1].js.2.dr
ID:	dr_21
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	ASCII text, with very long lines
Entropy:	5.37366826054711
Encrypted:	false
Ssdeep:	1536:IYE1JVoiB9JqZdXXe2pD3PgoIK6alrUdTJbFk/zkZ4HWLZoHsrOa99TwkEb7/Hph:z4KZ+u3WLZICOaLTwkE7qD1Pa7a98Hrn
Size:	97403
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\ScriptResource[2].js
IE cache URL:	https://www.ctc.ca.gov/ScriptResource.axd?d=2yZJ3Lt6i5QO_9mk6rJmb-QsLpvH6aX3NjMOdNYiHD4zX_3QuEuU5dGvf6HwXFPvlHlNNeWkOpDbRUEGjIo3DK_vceLQKBhuWBLBBClFR5PSOUZLP5qhlsxFtSsdbyurMrTnrb7xBnSTY30CNK6KmAPIQ_8_Zr1xme8vcqc7_b35eKhZdhnyAwE-U_XsaOgHbc1AgfttUiY8qPyCJ-vSCw2&t=ffffffffa8d168ac
Category:	downloaded
Dump:	ScriptResource[2].js.2.dr
ID:	dr_23
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	ASCII text, with very long lines
Entropy:	5.006208841630281
Encrypted:	false
Ssdeep:	192:zDdwADmtum6rPl2K/kNEZf+NEVZfau6xnhjOLh5xP5tQPqXIz:zDdwAAurrd4EZfJ9au62Lh5xPEqXIz
Size:	8270
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\app---complete-yes[1].png
IE cache URL:	https://www.ctc.ca.gov/images/default-source/cert-images/ctc-online-help/apps-payments/app---complete-yes.png?sfvrsn=5bb451b1_10
Category:	downloaded
Dump:	app---complete-yes[1].png.2.dr
ID:	dr_116
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	PNG image data, 246 x 117, 8-bit/color RGBA, non-interlaced
Entropy:	7.860491609231964
Encrypted:	false
Ssdeep:	96:gkF//BGr28OHWbSY8ifS5yI3H9Sxs1SRgTYaxy4Vc:gkcJFbSli8yrq1Sgxy4Vc
Size:	3744
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\app---payment-authorize-and-complete[1].png
IE cache URL:	https://www.ctc.ca.gov/images/default-source/cert-images/ctc-online-help/apps-payments/app---payment-authorize-and-complete.png?sfvrsn=4aaf51b1_16
Category:	downloaded
Dump:	app---payment-authorize-and-complete[1].png.2.dr
ID:	dr_128
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	PNG image data, 959 x 454, 8-bit/color RGBA, non-interlaced
Entropy:	7.8328810640122954
Encrypted:	false
Ssdeep:	768:5ZNLa4aXNr1qdd1Ssq07idddfddgwX1Oalj5DxUgQrQhxE/DQteb4Z:5ZNLJpjPY1OQ5qP/stH
Size:	33469
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\app---payment-billing-info[1].png
IE cache URL:	https://www.ctc.ca.gov/images/default-source/cert-images/ctc-online-help/apps-payments/app---payment-billing-info.png?sfvrsn=81b451b1_8
Category:	downloaded
Dump:	app---payment-billing-info[1].png.2.dr
ID:	dr_129
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	PNG image data, 754 x 497, 8-bit/color RGBA, non-interlaced
Entropy:	7.984153447420617
Encrypted:	false
Ssdeep:	3072:va0ZYS5dfb9u58C473SWUX9slyH5ugSO8NuacTZS:vFYS5dhu5n47sX9eFF5AZTZS
Size:	112574
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\app---payment-site-cant-be-reached[1].png
IE cache URL:	https://www.ctc.ca.gov/images/default-source/cert-images/ctc-online-help/apps-payments/app---payment-site-cant-be-reached.png?sfvrsn=84ac51b1_8
Category:	downloaded
Dump:	app---payment-site-cant-be-reached[1].png.2.dr
ID:	dr_132
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	PNG image data, 641 x 252, 8-bit/color RGBA, non-interlaced
Entropy:	7.8343604347660625
Encrypted:	false
Ssdeep:	384:iTRR573r8ixhervV0hBxUXYTVYpMIDfdnw0t2OblUOi0ZI/niMSj1oLsXeqiCE:i1Rdgmero6Xa2pMINgc0/nDSfzdE
Size:	23191
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\app---receipt[1].png
IE cache URL:	https://www.ctc.ca.gov/images/default-source/cert-images/ctc-online-help/apps-payments/app---receipt.png?sfvrsn=feb451b1_4
Category:	downloaded
Dump:	app---receipt[1].png.2.dr
ID:	dr_131
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	PNG image data, 948 x 487, 8-bit/color RGBA, non-interlaced
Entropy:	7.939751486998194
Encrypted:	false
Ssdeep:	1536:CnLbR8A+xPylxrG4Cy7c4LucmBTxDMVPLD:Q3RlGyzreW12T1Ml
Size:	50946
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\app---recommend-return-zoom[1].png
IE cache URL:	https://www.ctc.ca.gov/images/default-source/cert-images/ctc-online-help/apps-payments/app---recommend-return-zoom.png?sfvrsn=38b451b1_12
Category:	downloaded
Dump:	app---recommend-return-zoom[1].png.2.dr
ID:	dr_99
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	PNG image data, 1768 x 240, 8-bit/color RGBA, non-interlaced
Entropy:	7.8517731103885895
Encrypted:	false
Ssdeep:	768:y8eZMbF5+ITJ3okqcEftIJ2+Xbw6ccJ0kzSu49F+YfX6Q:y8P7+IlQcKO865Nwt6Q
Size:	41367
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\app---renewal-section[1].png
IE cache URL:	https://www.ctc.ca.gov/images/default-source/cert-images/ctc-online-help/apps-payments/app---renewal-section.png?sfvrsn=7fb551b1_14
Category:	downloaded
Dump:	app---renewal-section[1].png.2.dr
ID:	dr_115
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	PNG image data, 882 x 625, 8-bit/color RGBA, non-interlaced
Entropy:	7.972139779888177
Encrypted:	false
Ssdeep:	3072:1JC9R1LMTgEqjxixaFapKAwVgAVPm8dlGZwTg0Rd:XC9RjRjxi0FalwVgA/zGZwTgYd
Size:	127661
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\apply[1].htm
Category:	dropped
Dump:	apply[1].htm.2.dr
ID:	dr_87
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	HTML document, ASCII text, with very long lines, with CRLF, LF line terminators
Entropy:	4.903641466750486
Encrypted:	false
Ssdeep:	1536:WRRTPMnZttsHKkOUzN2ApHCbXrHb5CDdUrSinZCt:APYmHKkOUzN2ApHCbXrHb5CDdUrSinZO
Size:	60153
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\base-credential-error[1].png
IE cache URL:	https://www.ctc.ca.gov/images/default-source/cert-images/ctc-online-help/apps-payments/base-credential-error.png?sfvrsn=52e750b1_4
Category:	downloaded
Dump:	base-credential-error[1].png.2.dr
ID:	dr_130
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	PNG image data, 408 x 122, 8-bit/color RGBA, non-interlaced
Entropy:	7.825503690362749
Encrypted:	false
Ssdeep:	96:+Pmf78xWvJVQZyr/l2THSR/sarC1udLkSzMPOLdwc6/AnHKJZzfsGX7r:+PW71JgyT8uBPdL3MEd96/MKJdv
Size:	5678
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\bg-open-data[1].jpg
IE cache URL:	https://www.ca.gov/images/bg-open-data.jpg
Category:	downloaded
Dump:	bg-open-data[1].jpg.2.dr
ID:	dr_70
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	[TIFF image data, little-endian, direntries=1, copyright=Jezperklauzen], baseline, precision 8, 2000x862, frames 3
Entropy:	6.105849102310249
Encrypted:	false
Ssdeep:	768:ivezlWFbqoSgIcVfFoKMrOtVkxDGC5JZKAP4Jkwfcrf1tFz:ivezlWtIcVRntVkxDG+nykrrf1vz
Size:	40533
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\cagov.core[1].js
IE cache URL:	https://www.ctc.ca.gov/Frontend-Assembly/Telerik.Sitefinity.Frontend/assets/js/cagov.core.js?package=CTC
Category:	downloaded
Dump:	cagov.core[1].js.2.dr
ID:	dr_22
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	HTML document, ASCII text, with very long lines, with CRLF, LF line terminators
Entropy:	5.211519917967857
Encrypted:	false
Ssdeep:	1536:OsQcEhCgfzAuMFpyXcXTpNyhSZcaEzKxWCp0pXxqF:u0jqKxWCL
Size:	93380
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\cannabis[1].jpg
IE cache URL:	https://www.ca.gov/images/cannabis.jpg
Category:	downloaded
Dump:	cannabis[1].jpg.2.dr
ID:	dr_79
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	[TIFF image data, little-endian, direntries=0], baseline, precision 8, 1250x600, frames 3
Entropy:	7.933834279392651
Encrypted:	false
Ssdeep:	1536:HKLqJCA7pox7gTLCXikEvxIPxuyj0IDZjyUdQs8eJahsZ5sz/Bs:q+sANoVgH2UmLDByUdQZeJmsyzy
Size:	65490
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\cert-apply[1].gif
IE cache URL:	https://www.ctc.ca.gov/images/default-source/credentialing-information-library/cert-apply.gif?sfvrsn=800f4bb1_0
Category:	downloaded
Dump:	cert-apply[1].gif.2.dr
ID:	dr_89
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	GIF image data, version 89a, 140 x 140
Entropy:	7.775518722049005
Encrypted:	false
Ssdeep:	48:rViDZaaveGPen0pRVFHWDArEtzpGmpPeYgI2:e0ueF+RVoDDvPeT1
Size:	1815
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\cert-explore[1].gif
IE cache URL:	https://www.ctc.ca.gov/images/default-source/credentialing-information-library/cert-explore.gif?sfvrsn=3d0f4bb1_0
Category:	downloaded
Dump:	cert-explore[1].gif.2.dr
ID:	dr_94
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	GIF image data, version 89a, 140 x 140
Entropy:	7.641934069604529
Encrypted:	false
Ssdeep:	24:xNXBGND0trl6Bhm0OCgjd6o8nxMOj+9UFC3JYwc1jaMWe:XRGNY5eUfCS8nxO9UbnGw
Size:	1274
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\credentials[1].htm
Category:	dropped
Dump:	credentials[1].htm.2.dr
ID:	dr_88
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	HTML document, ASCII text, with very long lines, with CRLF, LF line terminators
Entropy:	4.925676465820805
Encrypted:	false
Ssdeep:	1536:IRgTPMnZttsHKkOUzN2ApHCbXrHb5CDdUrSi3Ct:nPYmHKkOUzN2ApHCbXrHb5CDdUrSi3Ct
Size:	60900
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\cse_element__en[1].js
IE cache URL:	https://www.google.com/cse/static/element/323d4b81541ddb5b/cse_element__en.js?usqp=CAI%3D
Category:	downloaded
Dump:	cse_element__en[1].js.2.dr
ID:	dr_68
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	ASCII text, with very long lines
Entropy:	5.578320456838752
Encrypted:	false
Ssdeep:	6144:omYfWE24rn2X2H2F24rn2RtZQpdTxihyyU1SDg3u5+IJ5nV15:RYfWE24rn2X2H824rn2REpddi/Z5
Size:	281073
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\css[1].css
Category:	dropped
Dump:	css[1].css0.2.dr
ID:	dr_42
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	ASCII text
Entropy:	5.2869207505352405
Encrypted:	false
Ssdeep:	12:jFJ1JO6ZRoT6pcqFJ1JO6Z0/T6pRVhqFuNO6ZRoT6pvnnqFuNO6ZN76plBY:5JvOYsWJvOYUT6V0cOYs3cOYN7J
Size:	814
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\dialog_cagov-final[1].css
IE cache URL:	https://california.azureedge.net/cdt/CAgovPortal/offline/dialog_cagov-final.css
Category:	downloaded
Dump:	dialog_cagov-final[1].css.2.dr
ID:	dr_51
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	ASCII text
Entropy:	4.990288727547491
Encrypted:	false
Ssdeep:	48:ohElai7Edon+L0rmy3Whisexb4efGySJk7kEzklnkLbVkkaThlGPXgDtBfRDJyed:KEl/7EdN4rm6Whis5e+7Xv6eBfpceFEw
Size:	2848
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\element_main[1].js
IE cache URL:	https://translate.googleapis.com/element/TE_20201130_00/e/js/element/element_main.js
Category:	downloaded
Dump:	element_main[1].js.2.dr
ID:	dr_69
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	HTML document, ASCII text, with very long lines
Entropy:	5.477400514029805
Encrypted:	false
Ssdeep:	3072:uXpL1f/XaqZ4pmoNGUkaUeH/ktyU2cfRwv+9g5LydY4SeJ/5Hn:u5n/KUef8yU2cfSvCQydBJ/5H
Size:	249009
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\gov-seal[1].png
IE cache URL:	https://california.azureedge.net/cdt/statetemplate/global/images/gov-seal.png
Category:	downloaded
Dump:	gov-seal[1].png.2.dr
ID:	dr_50
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	PNG image data, 90 x 91, 8-bit/color RGBA, non-interlaced
Entropy:	7.963066270640578
Encrypted:	false
Ssdeep:	192:S7F9VOw4qxk9UbbORGqXDS9+5wUXgYRIvOWHWEM5:S7H4qxiM+557+vOvEM5
Size:	10365
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\herobg[1].jpg
IE cache URL:	https://www.ctc.ca.gov/ResourcePackages/CTC/assets/images/herobg.jpg
Category:	downloaded
Dump:	herobg[1].jpg.2.dr
ID:	dr_34
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	[TIFF image data, little-endian, direntries=0], progressive, precision 8, 1966x339, frames 3
Entropy:	7.749696817257776
Encrypted:	false
Ssdeep:	384:5H8rAgvCcgudY/c6unUpig5vJFjY5IFUecqC4OL2rc:5crAgacjdYE6uBgBDM0vC4q2o
Size:	24116
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\immigrants[1].jpg
IE cache URL:	https://www.ca.gov/images/immigrants.jpg
Category:	downloaded
Dump:	immigrants[1].jpg.2.dr
ID:	dr_78
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	[TIFF image data, little-endian, direntries=0], baseline, precision 8, 1250x600, frames 3
Entropy:	7.682291965159939
Encrypted:	false
Ssdeep:	1536:hqpKZUO0aEMG7MsLYjsCnQy4azH/Upo73fjM:hiK+wG7MsLYjJQVazH/UY34
Size:	52437
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\jquery-3.4.1.min[1].js
IE cache URL:	https://code.jquery.com/jquery-3.4.1.min.js
Category:	downloaded
Dump:	jquery-3.4.1.min[1].js.2.dr
ID:	dr_48
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	ASCII text, with very long lines
Entropy:	5.291106244832159
Encrypted:	false
Ssdeep:	1536:yTExXUZinxD7oPEZxkMV4SYKFMbRHZ6H5HOHCWrcElzuu7BRCKKBEqBsojZlOPma:ygZm0H5HO5+gCKWZyPmHQ47GKe
Size:	88145
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\jquery-migrate-3.1.0.min[1].js
IE cache URL:	https://code.jquery.com/jquery-migrate-3.1.0.min.js
Category:	downloaded
Dump:	jquery-migrate-3.1.0.min[1].js.2.dr
ID:	dr_46
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	ASCII text, with very long lines
Entropy:	5.183972790029302
Encrypted:	false
Ssdeep:	96:5r3UrDAWhTAETMu3QXveMIIa8JdFFh7MyAgxr3KFBF/s++EHzDFvsiMAg:5rkrDNhTeeMIIa8J/Eg96DBs+hl8
Size:	8990
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\l9Z4R4oM2tU44QRmk9iDyTxeZNIPreXiQsUQR_P65Us[1].js
IE cache URL:	https://www.google.com/js/bg/l9Z4R4oM2tU44QRmk9iDyTxeZNIPreXiQsUQR_P65Us.js
Category:	downloaded
Dump:	l9Z4R4oM2tU44QRmk9iDyTxeZNIPreXiQsUQR_P65Us[1].js.2.dr
ID:	dr_109
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	ASCII text, with very long lines, with no line terminators
Entropy:	5.589810981531543
Encrypted:	false
Ssdeep:	384:gGHbn4M16HqVjP34JCVoBR/9eOWDkbQ/2NR/yMFjupWHowiSLTXmkm:/P1sy34J9Fiki2OfUA
Size:	20940
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\siteanalyze_77584[1].js
IE cache URL:	https://siteimproveanalytics.com/js/siteanalyze_77584.js
Category:	downloaded
Dump:	siteanalyze_77584[1].js.2.dr
ID:	dr_62
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	ASCII text, with very long lines, with no line terminators
Entropy:	5.311576145731177
Encrypted:	false
Ssdeep:	384:3VEAGjxGSXe1Az+r/8fmFt6SMenHClbHbWswpEYLg6ANMLWYMRpidUiyhaNfFg:3VERIIy/vFh/dLhMYMRpidUiKaDg
Size:	23090
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\6D19FjzPJgc[1].htm
Category:	dropped
Dump:	6D19FjzPJgc[1].htm.2.dr
ID:	dr_100
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	HTML document, ASCII text, with very long lines
Entropy:	5.826099643553244
Encrypted:	false
Ssdeep:	768:aeK2qiTNv0woZp6DEpPPJdqN/0WnQ7nKO+pwG0N9rBwLqmBt:pafHXWQ7Sw3JSqmBt
Size:	51305
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\KFOkCnqEu92Fr1Mu51xIIzQ[1].woff
IE cache URL:	https://fonts.gstatic.com/s/roboto/v20/KFOkCnqEu92Fr1Mu51xIIzQ.woff
Category:	downloaded
Dump:	KFOkCnqEu92Fr1Mu51xIIzQ[1].woff.2.dr
ID:	dr_35
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	Web Open Font Format, TrueType, length 21952, version 1.1
Entropy:	7.970421989516302
Encrypted:	false
Ssdeep:	384:LANJRPUW1egrkV1qAeQjd3pHH7fS3SIHwip3fzp7IYMa8/h3ELZ2owoRE1F:LAN/Pl1egR7QjRp+3SIHwcLpMYC/h+9U
Size:	21952
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\KFOlCnqEu92Fr1MmEU9fBBc-[1].woff
IE cache URL:	https://fonts.gstatic.com/s/roboto/v20/KFOlCnqEu92Fr1MmEU9fBBc-.woff
Category:	downloaded
Dump:	KFOlCnqEu92Fr1MmEU9fBBc-[1].woff.2.dr
ID:	dr_36
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	Web Open Font Format, TrueType, length 20464, version 1.1
Entropy:	7.969622511404751
Encrypted:	false
Ssdeep:	384:edA/1eSg82dg1kGeF2BFDEE+/adkuouo34TjkWqTExYOYg/c1iuHotcO:ey/1eSnLkGeWFQECadcLIc/TEfYr1RO
Size:	20464
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\ad_status[1].js
IE cache URL:	https://static.doubleclick.net/instream/ad_status.js
Category:	downloaded
Dump:	ad_status[1].js.2.dr
ID:	dr_107
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	ASCII text
Entropy:	4.142295219190901
Encrypted:	false
Ssdeep:	3:lZOwFQvn:lQw6n
Size:	29
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\app---dislosure-pfq-zoom[1].png
IE cache URL:	https://www.ctc.ca.gov/images/default-source/cert-images/ctc-online-help/apps-payments/app---dislosure-pfq-zoom.png?sfvrsn=93b351b1_20
Category:	downloaded
Dump:	app---dislosure-pfq-zoom[1].png.2.dr
ID:	dr_124
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	PNG image data, 1891 x 405, 8-bit/color RGBA, non-interlaced
Entropy:	7.651282126924282
Encrypted:	false
Ssdeep:	768:xZAzkXigmeGXILmdY/t5NYjiG4LYoDofDri9ew/:jA8m1Yx/jNLhEfbr6F/
Size:	42106
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\app---renew-pick-base-field-missing-zoom[1].png
IE cache URL:	https://www.ctc.ca.gov/images/default-source/cert-images/ctc-online-help/apps-payments/app---renew-pick-base-field-missing-zoom.png?sfvrsn=d5751b1_6
Category:	downloaded
Dump:	app---renew-pick-base-field-missing-zoom[1].png.2.dr
ID:	dr_117
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	PNG image data, 230 x 70, 8-bit/color RGBA, non-interlaced
Entropy:	7.761070904389042
Encrypted:	false
Ssdeep:	48:rWDB7V8V8V8V8V8V8V8V8V8V8VvW0gMtus2nMOcBUahzOvuPy53V0pv2pkNwHAf/:rWDjWWWWWWWWWWuTKus2+yuzOd53Yo0B
Size:	2023
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\app---web-selected-next[1].png
IE cache URL:	https://www.ctc.ca.gov/images/default-source/cert-images/ctc-online-help/apps-payments/app---web-selected-next.png?sfvrsn=226f51b1_8
Category:	downloaded
Dump:	app---web-selected-next[1].png.2.dr
ID:	dr_123
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	PNG image data, 1080 x 280, 8-bit/color RGBA, non-interlaced
Entropy:	7.933284775948162
Encrypted:	false
Ssdeep:	1536:Qmt4sKAuvUgL8c0kakcYbP42ggPAzt0j4Ep:lSsKRLz0kakVbPlPAdk
Size:	50112
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\cagov.core[1].css
IE cache URL:	https://california.azureedge.net/cdt/statetemplate/6.0.1/css/cagov.core.css
Category:	downloaded
Dump:	cagov.core[1].css0.2.dr
ID:	dr_49
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	ASCII text, with very long lines, with CRLF line terminators
Entropy:	5.050629481771825
Encrypted:	false
Ssdeep:	6144:4t4zYYI0TxIYTSJFgrM/gf375H+sx1tpHvZBF1fbDbHt:oFgrM/gf375H+sx1tpHvZBF1fbDbHt
Size:	472714
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\cagovapplets[1].js
IE cache URL:	https://california.azureedge.net/cdt/CAgovPortal/js/cagovapplets.js
Category:	downloaded
Dump:	cagovapplets[1].js.2.dr
ID:	dr_47
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	ASCII text, with very long lines, with CRLF line terminators
Entropy:	4.507709514963749
Encrypted:	false
Ssdeep:	768:f3wV8IVaueWN7coP91Id5uFx91rl/SHujluqA:fAV8I4ueA7coP91IfuFx3rl/Sql8
Size:	123797
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\cert-complete[1].gif
IE cache URL:	https://www.ctc.ca.gov/images/default-source/credentialing-information-library/cert-complete.gif?sfvrsn=440f4bb1_0
Category:	downloaded
Dump:	cert-complete[1].gif.2.dr
ID:	dr_90
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	GIF image data, version 89a, 140 x 140
Entropy:	7.700298347392052
Encrypted:	false
Ssdeep:	48:9lRFRAnlbzxxpdAw4WqlhaOXHI8ySHGOB66XP:FFcbFK9XnxGbC
Size:	1620
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\cert-renew[1].gif
IE cache URL:	https://www.ctc.ca.gov/images/default-source/credentialing-information-library/cert-renew.gif?sfvrsn=5b0f4bb1_0
Category:	downloaded
Dump:	cert-renew[1].gif.2.dr
ID:	dr_91
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	GIF image data, version 89a, 140 x 140
Entropy:	7.5825552248767965
Encrypted:	false
Ssdeep:	24:YGXqolNXB5EngF4K62J1Q4X1nsulUT9DOUJVxgRpK3/ec:PqcR5N4iHX1nTd+Vxabc
Size:	1152
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\clear-credential[1].htm
Category:	dropped
Dump:	clear-credential[1].htm.2.dr
ID:	dr_133
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	HTML document, ASCII text, with very long lines, with CRLF, LF line terminators
Entropy:	4.917008693890281
Encrypted:	false
Ssdeep:	1536:QR2TPMnZttsHKkOUzN2ApHCbXrHb5CDdUrSipW3iCt:7PYmHKkOUzN2ApHCbXrHb5CDdUrSipW1
Size:	66309
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\clear[1].png
IE cache URL:	https://www.google.com/cse/static/css/v2/clear.png
Category:	downloaded
Dump:	clear[1].png.2.dr
ID:	dr_80
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	PNG image data, 10 x 10, 8-bit/color RGBA, non-interlaced
Entropy:	6.094138866101745
Encrypted:	false
Ssdeep:	24:6y1hpunQWwjx82lY2T3gV10/+yJ3VQN948GiFF7waYaq:6witNn2cCJ3R8tXYx
Size:	1018
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\css[1].css
Category:	dropped
Dump:	css[1].css.2.dr
ID:	dr_29
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	ASCII text
Entropy:	5.12089171292259
Encrypted:	false
Ssdeep:	12:jF/iY3Q6ZRoT6pixuAhFqF/iO6ZRoT6pixuGEqF/iO6ZX6pixuXJqF/iO6ZN76pP:5/iY3QYsNxh+/iOYsNxDv/iOYXNxd/iI
Size:	711
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\default+en[1].css
IE cache URL:	https://www.google.com/cse/static/element/323d4b81541ddb5b/default+en.css
Category:	downloaded
Dump:	default+en[1].css.2.dr
ID:	dr_64
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	ASCII text
Entropy:	4.965737845904213
Encrypted:	false
Ssdeep:	768:oiIcKPgZ/WFOemQFc/3GBLQ06eMYdaO4Mawgm0s+Rb4FhFQ7sfr3lyFcVZJpfXRf:v3WwemQI32LQ06eMYdaO4Madm0s+J4HL
Size:	41474
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\default[1].css
IE cache URL:	https://www.google.com/cse/static/style/look/v4/default.css
Category:	downloaded
Dump:	default[1].css.2.dr
ID:	dr_63
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	ASCII text
Entropy:	4.948267052980108
Encrypted:	false
Ssdeep:	48:jeePUJMC95SxaO5Sx5QGascw6sU99YENvWoGmuwY6kcPhsMPoBAijzln0TqfTlhL:7LyC7C5CsKNuof3PhsMPBijZnHfRUXM
Size:	4495
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\embed[1].js
IE cache URL:	https://www.youtube.com/s/player/5a096a9f/player_ias.vflset/en_US/embed.js
Category:	downloaded
Dump:	embed[1].js.2.dr
ID:	dr_110
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	ASCII text, with very long lines
Entropy:	5.531908965857142
Encrypted:	false
Ssdeep:	384:ibvnf8qYRgyq+e84VeljyV7r4GoxGU7ysTMlC9Ai2HET9zo9vBnePelaD7TRW6WB:16+14VesZr1HCRreQK9mI67Oytps
Size:	30106
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\extend[1].htm
Category:	modified
Dump:	extend[1].htm.2.dr
ID:	dr_135
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	HTML document, ASCII text, with very long lines, with CRLF, LF line terminators
Entropy:	4.930561804612365
Encrypted:	false
Ssdeep:	1536:NRNTPMnZttsHKkOUzN2ApHCbXrHb5CDdUrSiOCt:9PYmHKkOUzN2ApHCbXrHb5CDdUrSiOCt
Size:	63688
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\f[1].txt
IE cache URL:	https://cse.google.com/cse.js?cx=001779225245372747843:mdsmtl_vi1a
Category:	downloaded
Dump:	f[1].txt.2.dr
ID:	dr_52
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	ASCII text, with very long lines
Entropy:	5.441884823022393
Encrypted:	false
Ssdeep:	192:OCAUAOnGU93NpigmiEcUTvuULNiSk+R/L1NBxjbO1E1wvbvwetvjvI2Fv3vkihv3:zAEj3Npini1UTvuGNnkLwepzI2hfki13
Size:	10419
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\functions[1].js
IE cache URL:	https://www.ctc.ca.gov/Frontend-Assembly/Telerik.Sitefinity.Frontend/assets/js/functions.js?package=CTC
Category:	downloaded
Dump:	functions[1].js.2.dr
ID:	dr_25
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	ASCII text, with CRLF line terminators
Entropy:	4.502228358255469
Encrypted:	false
Ssdeep:	96:cy+qCy0HvuDVGijaHvbDmeX0wBwbqbg4oxi4g7FBZj7N2ffAaKazQIpyP:3Q44JAqZj7knA5ZI4P
Size:	9790
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\gavin-newsom[1].png
IE cache URL:	https://www.ctc.ca.gov/images/default-source/default-album/gavin-newsom.png
Category:	downloaded
Dump:	gavin-newsom[1].png.2.dr
ID:	dr_85
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	PNG image data, 188 x 48, 8-bit/color RGBA, non-interlaced
Entropy:	7.886412807100161
Encrypted:	false
Ssdeep:	48:MmOP874v0Wvxu78HBhBbIYJBEa/NSViVmQRD/yQNdRl/BZb8ec/aH9O+8StGEOoI:PLQ0H78H7BUYJBEWN4fQRD//JLc/G9Of
Size:	2783
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\gtm[1].js
IE cache URL:	https://www.googletagmanager.com/gtm.js?id=GTM-PZGPNNV
Category:	downloaded
Dump:	gtm[1].js.2.dr
ID:	dr_53
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	ASCII text, with very long lines
Entropy:	5.530412483987929
Encrypted:	false
Ssdeep:	1536:KJO/XKYJk/07x6f52a//4vR/K8tDgcZsuk1G9yKPiQwGXrL/f2G7p+4BuW:Kc/XFm/0Na/gvg3uMsfAW
Size:	86222
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\logoone-(1)[1].png
IE cache URL:	https://www.ctc.ca.gov/images/default-source/default-album/logoone-(1).png?sfvrsn=c28b72b1_0
Category:	downloaded
Dump:	logoone-(1)[1].png.2.dr
ID:	dr_26
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	PNG image data, 88 x 64, 8-bit colormap, non-interlaced
Entropy:	7.680912965401732
Encrypted:	false
Ssdeep:	24:BIhJYUsqJCZJanJx/sm7jBQ5/d8MC19apE:BIEAcJan3zxyd8MC1Ia
Size:	1214
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\plugins[1].js
IE cache URL:	https://www.ctc.ca.gov/Frontend-Assembly/Telerik.Sitefinity.Frontend/assets/js/plugins.js?package=CTC
Category:	downloaded
Dump:	plugins[1].js.2.dr
ID:	dr_24
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	UTF-8 Unicode text, with CRLF line terminators
Entropy:	5.063270786370052
Encrypted:	false
Ssdeep:	6144:vJyqEPbEq6ha4UqHA5qH50j7mQoR5+n9aNuUhou1eaI7QEI4IawGpIa1URoGtpoE:Rj50CRVou1eaIS9ajeRx8bVUv
Size:	707242
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\req-credentials[1].htm
Category:	dropped
Dump:	req-credentials[1].htm.2.dr
ID:	dr_134
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	HTML document, ASCII text, with very long lines, with CRLF, LF line terminators
Entropy:	4.8722168446604925
Encrypted:	false
Ssdeep:	1536:GRwTPMnZttsHKkOUzN2ApHCbXrHb5CDdUrSi5Ct:pPYmHKkOUzN2ApHCbXrHb5CDdUrSi5Ct
Size:	58171
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\translate_24dp[1].png
IE cache URL:	https://www.gstatic.com/images/branding/product/1x/translate_24dp.png
Category:	downloaded
Dump:	translate_24dp[1].png.2.dr
ID:	dr_72
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced
Entropy:	7.704648162446466
Encrypted:	false
Ssdeep:	24:ssHKYGXsIPtbm+dBUWkhweNeFb6wfO2GNzj/4vs:ssq/rldTDNd6wfoJ/5
Size:	825
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\translate_24dp[2].png
IE cache URL:	https://www.gstatic.com/images/branding/product/2x/translate_24dp.png
Category:	downloaded
Dump:	translate_24dp[2].png.2.dr
ID:	dr_73
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced
Entropy:	7.840750948954508
Encrypted:	false
Ssdeep:	48:0BUfsw9mAtN6tl4XZACwezLhPa0V7dHy+1pqWv33z:0iT8+6QJcmLddquz
Size:	1847
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\www-player[1].css
IE cache URL:	https://www.youtube.com/s/player/5a096a9f/www-player.css
Category:	downloaded
Dump:	www-player[1].css.2.dr
ID:	dr_101
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	ASCII text, with very long lines, with no line terminators
Entropy:	5.241477961344387
Encrypted:	false
Ssdeep:	1536:gcu9IdYR9WDQI0irpHrp3/fn8MZv8M5q4ay95G0VXkMAKOP5kRrDJciM/By2N+CW:gcu99F3zEg2yI1uQ
Size:	347963
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\DRHAAZ24.htm
IE cache URL:	https://www.ca.gov/
Category:	downloaded
Dump:	DRHAAZ24.htm.2.dr
ID:	dr_41
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	HTML document, UTF-8 Unicode (with BOM) text, with very long lines, with CRLF line terminators
Entropy:	4.559773476685715
Encrypted:	false
Ssdeep:	768:EiY2nn83p9t7V9ppp4WzYv/KSugqf4cwr5qvdykKc3j/X2:Eie5J9ppp4C6ugqf4OvYkKc3j/X2
Size:	56432
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\able[1].eot
IE cache URL:	https://www.ctc.ca.gov/ResourcePackages/CTC/assets/fonts/able.eot?dqripi
Category:	downloaded
Dump:	able[1].eot.2.dr
ID:	dr_32
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	Embedded OpenType (EOT), able family
Entropy:	6.09173341971743
Encrypted:	false
Ssdeep:	192:RWeOShEMepC/wm0jbNpypJT09NZbE1mKKHiK:2S+tZfjbNdvKKH
Size:	6488
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\app---recommend-section[1].png
IE cache URL:	https://www.ctc.ca.gov/images/default-source/cert-images/ctc-online-help/apps-payments/app---recommend-section.png?sfvrsn=64b551b1_22
Category:	downloaded
Dump:	app---recommend-section[1].png.2.dr
ID:	dr_113
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	PNG image data, 892 x 568, 8-bit/color RGBA, non-interlaced
Entropy:	7.977058148359131
Encrypted:	false
Ssdeep:	3072:ZQCKO7hj/AJF7ZQ6sXFwAWw0qev93bSDolXrk2s6Wh:ZZKORAL7u1FjtW93bSMr7ls
Size:	160779
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\app---renew-base-select[1].png
IE cache URL:	https://www.ctc.ca.gov/images/default-source/cert-images/ctc-online-help/apps-payments/app---renew-base-select.png?sfvrsn=54aa51b1_4
Category:	downloaded
Dump:	app---renew-base-select[1].png.2.dr
ID:	dr_119
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	PNG image data, 756 x 201, 8-bit/color RGBA, non-interlaced
Entropy:	7.989244590641941
Encrypted:	false
Ssdeep:	3072:Xs2wdkd2yabzHZT9XduN8pFAnOBkkGQVtft2JGlZDqYNVqZf1+MkAU:DX4yabzHd9tDYnt3JGlR/N0nU
Size:	168043
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\app---renew-complete[1].png
IE cache URL:	https://www.ctc.ca.gov/images/default-source/cert-images/ctc-online-help/apps-payments/app---renew-complete.png?sfvrsn=b4aa51b1_2
Category:	downloaded
Dump:	app---renew-complete[1].png.2.dr
ID:	dr_120
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	PNG image data, 968 x 127, 8-bit/color RGBA, non-interlaced
Entropy:	7.983325822777648
Encrypted:	false
Ssdeep:	1536:qYWZyQGgfYCdFitlkpVgDmsKLG5XA4WYgQ4:ayQG7Ci7qgC5Lk1WYn4
Size:	51682
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\app---select-yes[1].png
IE cache URL:	https://www.ctc.ca.gov/images/default-source/cert-images/ctc-online-help/apps-payments/app---select-yes.png?sfvrsn=adb651b1_6
Category:	downloaded
Dump:	app---select-yes[1].png.2.dr
ID:	dr_114
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	PNG image data, 252 x 124, 8-bit/color RGBA, non-interlaced
Entropy:	7.814702155927177
Encrypted:	false
Ssdeep:	48:QumX/l32OXDdlMBGC4mJl+YeIUKvfigL2AzAqLahunNXAm2TElO/d87P:il35q4M+Y3rL/F+uFAmnM87P
Size:	2804
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\app---web-pick-app[1].png
IE cache URL:	https://www.ctc.ca.gov/images/default-source/cert-images/ctc-online-help/apps-payments/app---web-pick-app.png?sfvrsn=c06e51b1_6
Category:	downloaded
Dump:	app---web-pick-app[1].png.2.dr
ID:	dr_122
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	PNG image data, 497 x 273, 8-bit/color RGBA, non-interlaced
Entropy:	7.957885469959531
Encrypted:	false
Ssdeep:	384:t75GUoqYYqLOc7nyEhlYSw2muBudo9CqGSQ345DpDIAnp4+2eiM4zbFLHj7b61R2:+On7EhuSwBXo9Ch4f9np4+2eiM4ZHjXt
Size:	23531
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\app---web-section[1].png
IE cache URL:	https://www.ctc.ca.gov/images/default-source/cert-images/ctc-online-help/apps-payments/app---web-section.png?sfvrsn=56b551b1_20
Category:	downloaded
Dump:	app---web-section[1].png.2.dr
ID:	dr_121
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	PNG image data, 879 x 621, 8-bit/color RGBA, non-interlaced
Entropy:	7.972814925202579
Encrypted:	false
Ssdeep:	3072:i4cSSNdN9VYW0oon9P8RctLZCn+2WZQqsXU++Ktu4C:2SSfVY4on3FC+fa+3z
Size:	147141
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\apple-touch-icon-192x192[1].png
IE cache URL:	https://www.ca.gov/images/apple-touch-icon-192x192.png
Category:	downloaded
Dump:	apple-touch-icon-192x192[1].png.2.dr
ID:	dr_75
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced
Entropy:	7.9582745886278365
Encrypted:	false
Ssdeep:	384:oSFzlQD5mL+o6oZXZNeLQQ+Qa2m3aCk1zFOGBmf8XthE8W9AXlxqf0w:oSpK5mL+PoY42FOGBm+VWglK0w
Size:	18283
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\base[1].js
IE cache URL:	https://www.youtube.com/s/player/5a096a9f/player_ias.vflset/en_US/base.js
Category:	downloaded
Dump:	base[1].js.2.dr
ID:	dr_104
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	ASCII text, with very long lines
Entropy:	5.572010630605882
Encrypted:	false
Ssdeep:	12288:dQZjbUXG79OvsJP5s8RmUTz1Ua1e7VvrtfEbgSHgCtbnEG:dQhUGOvsJBs8wUTxUie9pckwfEG
Size:	1583075
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\ca-seal[1].png
IE cache URL:	https://california.azureedge.net/cdt/statetemplate/global/images/ca-seal.png
Category:	downloaded
Dump:	ca-seal[1].png.2.dr
ID:	dr_56
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	PNG image data, 450 x 450, 8-bit/color RGBA, non-interlaced
Entropy:	7.995184215776734
Encrypted:	true
Ssdeep:	6144:X9RT/AglIj1wDn2blEEQG9i18xUxXrTo/FSaXqQfWkdqZfjT9zBXHqiEuXT/upou:Xf/Agms29riqUtEDXqQ+kduvRBXeuXy
Size:	364274
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\cagov.core[1].js
IE cache URL:	https://california.azureedge.net/cdt/statetemplate/6.0.1/js/cagov.core.js
Category:	downloaded
Dump:	cagov.core[1].js0.2.dr
ID:	dr_55
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	UTF-8 Unicode text, with very long lines, with CRLF line terminators
Entropy:	4.719461096060895
Encrypted:	false
Ssdeep:	12288:zNlwAV3d4Re/bXYZphUV0uEfI83xtWCg/iWLNYZ7D94x:zNWB5hxtWCg/iWLNYZ7D94x
Size:	641343
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\cert-extend[1].gif
IE cache URL:	https://www.ctc.ca.gov/images/default-source/credentialing-information-library/cert-extend.gif?sfvrsn=100f4bb1_0
Category:	downloaded
Dump:	cert-extend[1].gif.2.dr
ID:	dr_93
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	GIF image data, version 89a, 140 x 140
Entropy:	7.775011810229172
Encrypted:	false
Ssdeep:	24:y3zYYD0BBNkDsbWZthGvN1X3Jvh0ESlAimATtbzXOUJtE:sc+2BE6OGXJvh0ESljXOUJa
Size:	1049
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\class-students-sm[1].jpg
IE cache URL:	https://www.ctc.ca.gov/images/default-source/site-images/class-students-sm.jpg?sfvrsn=f5c046b1_8
Category:	downloaded
Dump:	class-students-sm[1].jpg.2.dr
ID:	dr_84
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	[TIFF image data, little-endian, direntries=0], baseline, precision 8, 350x200, frames 3
Entropy:	7.975601695188689
Encrypted:	false
Ssdeep:	384:vxErycUfrx4NTiNS0o93GQhmnoloBkEWxjMQBc3Pqp+Y+gAhKQUXinjKy:vKrycAXNS/WWfIklpMgcfqp3+4iney
Size:	25292
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\complete-rec-diagram[1].png
IE cache URL:	https://www.ctc.ca.gov/images/default-source/credentialing-information-library/complete-rec-diagram.png?sfvrsn=ba4b4bb1_0
Category:	downloaded
Dump:	complete-rec-diagram[1].png.2.dr
ID:	dr_98
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	PNG image data, 768 x 616, 8-bit/color RGBA, non-interlaced
Entropy:	7.89551573863614
Encrypted:	false
Ssdeep:	768:+G83hKH88Ychbi5NB0Rvk2dl4h0wUUbwAp+/u16C/Sd5Mc8QIWDgSu3cffriRqm:q3h38YcVi5NBKflfPHNg6C/4Mc8QIWsp
Size:	39635
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\ctc-online-written-instructions[1].htm
Category:	dropped
Dump:	ctc-online-written-instructions[1].htm.2.dr
ID:	dr_112
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	HTML document, UTF-8 Unicode text, with very long lines, with CRLF, LF line terminators
Entropy:	5.136838358829503
Encrypted:	false
Ssdeep:	3072:JPYmHKkOUzN2ApHCbXrHb5CDdUrSifBl8Z8JvRCt:KmHKkOUzN2ApHCbXrHb5CDdUrSifBl8l
Size:	105346
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\custom[1].css
IE cache URL:	https://www.ctc.ca.gov/Frontend-Assembly/Telerik.Sitefinity.Frontend/assets/css/custom.css?package=CTC
Category:	downloaded
Dump:	custom[1].css.2.dr
ID:	dr_19
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	assembler source, ASCII text, with very long lines, with CRLF line terminators
Entropy:	5.085682139927437
Encrypted:	false
Ssdeep:	768:921yuLz60ub+NeT17ifH4Liiw1kQa+f7yslluYoMWlpv2FeQsrlxCwF6E7kgqgC+:9ftb+kdmD7ysllXFZiiyegB5
Size:	133919
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\favicon[1].ico
IE cache URL:	https://www.ctc.ca.gov/favicon.ico
Category:	downloaded
Dump:	favicon[1].ico.2.dr
ID:	dr_38
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	MS Windows icon resource - 1 icon, 16x16, 8 bits/pixel
Entropy:	6.307148807228927
Encrypted:	false
Ssdeep:	24:n3UMlYX5E+LVYj9tzXa/MynO8IHb9Q4l2dhEYUERdNiFGyNeMq:nk7pEIebXJtv9Qgoh5Jw
Size:	1406
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\image[1].gif
IE cache URL:	https://77584.global.siteimproveanalytics.io/image.aspx?url=https%3A%2F%2Fwww.ca.gov%2F&title=www.ca.gov%20%7C%20California%20State%20Portal&res=1280x1024&accountid=77584&rt=2676&prev=c8e365ba-3de9-de46-35b5-b21c25dc69ca&luid=09a081d0-f20e-982b-1865-49b12fb26ed1&rnd=66232
Category:	downloaded
Dump:	image[1].gif.2.dr
ID:	dr_71
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	GIF image data, version 89a, 1 x 1
Entropy:	2.882524990934808
Encrypted:	false
Ssdeep:	3:CUXCXk5q:4k5q
Size:	34
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\js4geo[1].js
IE cache URL:	https://www.ca.gov/js/js4geo.js
Category:	downloaded
Dump:	js4geo[1].js.2.dr
ID:	dr_45
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	UTF-8 Unicode text, with CRLF line terminators
Entropy:	5.3795470951141375
Encrypted:	false
Ssdeep:	384:glhnqZyudAnN3K2J+cV62yAaGldHbxuk/JUI6EfX:IOyT/6NGldHT/
Size:	46259
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\modernizr-2.0.6.min[1].js
IE cache URL:	https://www.ctc.ca.gov/Frontend-Assembly/Telerik.Sitefinity.Frontend/assets/js/modernizr-2.0.6.min.js?package=CTC
Category:	downloaded
Dump:	modernizr-2.0.6.min[1].js.2.dr
ID:	dr_20
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	HTML document, ASCII text, with very long lines
Entropy:	5.389080361719832
Encrypted:	false
Ssdeep:	384:5agQ+5fn8Cjm1mDMG0YSDH9F4Q0VWgD0dXFQMhShyFjEyRxoH:8+18CjmBXDd/0VWgD0FFQgShyFfRx+
Size:	16226
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\pxidypY1o9NHyXh3WvSbGSggdOeMaEo[1].woff
IE cache URL:	https://fonts.gstatic.com/s/asapcondensed/v7/pxidypY1o9NHyXh3WvSbGSggdOeMaEo.woff
Category:	downloaded
Dump:	pxidypY1o9NHyXh3WvSbGSggdOeMaEo[1].woff.2.dr
ID:	dr_60
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	Web Open Font Format, TrueType, length 25172, version 1.1
Entropy:	7.980303649760758
Encrypted:	false
Ssdeep:	768:SvdyjJnd/U0JCMDtWiuo0tic+KROxaotnN:wgsahWwg+KiaolN
Size:	25172
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\pxieypY1o9NHyXh3WvSbGSggdO9TTFlDim0[1].woff
IE cache URL:	https://fonts.gstatic.com/s/asapcondensed/v7/pxieypY1o9NHyXh3WvSbGSggdO9TTFlDim0.woff
Category:	downloaded
Dump:	pxieypY1o9NHyXh3WvSbGSggdO9TTFlDim0[1].woff.2.dr
ID:	dr_61
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	Web Open Font Format, TrueType, length 25972, version 1.1
Entropy:	7.979925717052993
Encrypted:	false
Ssdeep:	768:3F9jJrTejv6bxKqGhOvipCcFSeqWZU9cItnN:3FhRTejv6bIqvvCvFWW29RlN
Size:	25972
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\real-id[1].jpg
IE cache URL:	https://www.ca.gov/images/real-id.jpg
Category:	downloaded
Dump:	real-id[1].jpg.2.dr
ID:	dr_77
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	[TIFF image data, little-endian, direntries=0], baseline, precision 8, 1250x600, frames 3
Entropy:	7.599513373202928
Encrypted:	false
Ssdeep:	768:mQoqhlWLl5uU6Gm0Y2hgWpgE8JL4gztZDKfYpNWTbJ:ocJLqhgWrG4gzjOgpNWTbJ
Size:	32192
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\remote[1].js
IE cache URL:	https://www.youtube.com/s/player/5a096a9f/player_ias.vflset/en_US/remote.js
Category:	downloaded
Dump:	remote[1].js.2.dr
ID:	dr_108
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	ASCII text, with very long lines
Entropy:	5.4510649927615855
Encrypted:	false
Ssdeep:	1536:9Fxmddk4dMX/dKnmz12/hZiVWfZTPFIJpX07bnSGypi1QJhQ0ekZ97jl:AddkzX/dKnmz14MYPFIJpXobnSGypi1A
Size:	97117
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\vote[1].png
IE cache URL:	https://www.ctc.ca.gov/images/default-source/default-album/vote.png
Category:	downloaded
Dump:	vote[1].png.2.dr
ID:	dr_86
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	PNG image data, 160 x 68, 8-bit/color RGBA, non-interlaced
Entropy:	7.858619760345138
Encrypted:	false
Ssdeep:	96:eJTvMscTZFQ3T5BEC8aXrq3J6UPw18n3OauAKb30VbjX6Er:soc3tBEC8yqZ6UU8+aut3rE
Size:	5845
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\watermark[1].png
IE cache URL:	https://www.ctc.ca.gov/images/default-source/default-album/watermark.png?sfvrsn=f76b7bb1_0
Category:	downloaded
Dump:	watermark[1].png.2.dr
ID:	dr_28
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	PNG image data, 126 x 126, 8-bit/color RGBA, non-interlaced
Entropy:	7.958645552099942
Encrypted:	false
Ssdeep:	384:TjA7xt8HHG3NIEknsSAQabkposMAUdFQr7+rK+tJ2dnOZ6:TjU8HES5zCRnAUFO6+KQdnOs
Size:	18173
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\widgets[1].js
IE cache URL:	https://platform.twitter.com/widgets.js
Category:	downloaded
Dump:	widgets[1].js.2.dr
ID:	dr_54
Target ID:	2
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Type:	UTF-8 Unicode text, with very long lines
Entropy:	5.182916419611687
Encrypted:	false
Ssdeep:	1536:NbUBPzpeTTHd2NqDrSUnGkBDkcDpO+JjoT7tcru8ryM25S9S/:JszST9ucKOvMwUGS/
Size:	97317
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Temp\~DF358A34EB9D432497.TMP
Category:	dropped
Dump:	~DF358A34EB9D432497.TMP.1.dr
ID:	dr_1
Target ID:	1
Process:	C:\Program Files\internet explorer\iexplore.exe
Type:	data
Entropy:	0.4723624797735951
Encrypted:	false
Ssdeep:	24:c9lLh9lLh9lIn9lIn9loX9loX9lWQCtGh:kBqoIYGQ3h
Size:	13029
Whitelisted:	false
Reputation:	low

Signature Hits	Behavior Group	Mitre Attack
Creates temporary files	System Summary

Details

File:	C:\Users\user\AppData\Local\Temp\~DF372EA54F186BA564.TMP
Category:	dropped
Dump:	~DF372EA54F186BA564.TMP.1.dr
ID:	dr_5
Target ID:	1
Process:	C:\Program Files\internet explorer\iexplore.exe
Type:	data
Entropy:	0.27918767598683664
Encrypted:	false
Ssdeep:	24:c9lLh9lLh9lIn9lIn9lRx/9lRJ9lTb9lTb9lSSU9lSSU9laAa/9laA:kBqoxxJhHWSVSEab
Size:	25441
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Local\Temp\~DFC50940B530D7E907.TMP
Category:	dropped
Dump:	~DFC50940B530D7E907.TMP.1.dr
ID:	dr_3
Target ID:	1
Process:	C:\Program Files\internet explorer\iexplore.exe
Type:	data
Entropy:	1.3123160694072045
Encrypted:	false
Ssdeep:	384:kBqoxKAuqR+gQR89mBfrG4DcVcJKtDYGFHpF29efNL9WZypKMMdIO+SOPwBd/SOR:0FJFHYIOnOudKOPjcdwOyFjcdwOYE
Size:	161761
Whitelisted:	false
Reputation:	low

Details

File:	C:\Users\user\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\PVMXY66IB050AWZRTEG3.temp
Category:	dropped
Dump:	PVMXY66IB050AWZRTEG3.temp.1.dr
ID:	dr_15
Target ID:	1
Process:	C:\Program Files\internet explorer\iexplore.exe
Type:	data
Entropy:	3.1740889966208377
Encrypted:	false
Ssdeep:	48:1di3iPbILC9GrIop+AsASFQdi3iPbILh683GrIop+Acz/di3iPbILx9GrIop+AVt:qiPbx9SJ+AJ2iPba3SJ+AViPbC9SJ+Af
Size:	5149
Whitelisted:	false
Reputation:	low

Behavior Section

Behavior Chronological

Disassembly

Uncategorized

Graph

IOCReport

Files

Processes

URLs

Domains

IPs

Registry

DOM / HTML