IOCReport

loading gif

Files

File Path
Type
Category
Malicious
https://vivacious-omniscient-crocodile.glitch.me/nikifi.html
URL
initial url
malicious
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\77EC63BDA74BD0D0E0426DC8F8008506
Microsoft Cabinet archive data, 61020 bytes, 1 file
dropped
clean
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\77EC63BDA74BD0D0E0426DC8F8008506
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\46652cd4-2224-43c2-89d0-e0eb09079147.tmp
ASCII text, with very long lines, with no line terminators
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\933e9575-566f-471d-a9f2-aaad24fc214c.tmp
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\95390e74-c8f0-402f-8276-ca2285ce4913.tmp
ASCII text, with very long lines, with no line terminators
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\0ad19918-fc43-4903-9c0f-be5477909b31.tmp
very short file (no magic)
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\48dc906a-8f03-42c6-89f9-f7f3ded42ab3.tmp
UTF-8 Unicode text, with very long lines, with no line terminators
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\4dd5182e-9824-4c6a-ac6c-5f05305a52ff.tmp
UTF-8 Unicode text, with very long lines, with no line terminators
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\6b30da6f-5cd3-4dfd-a7a0-a2999d9a9cd2.tmp
UTF-8 Unicode text, with very long lines, with no line terminators
modified
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\6ba2ee26-4fa1-4f27-a743-0d3560267c8a.tmp
ASCII text, with very long lines, with no line terminators
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\8816117f-ebbd-45fe-bd0a-42fca94a5484.tmp
ASCII text, with very long lines, with no line terminators
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\890dfe68-3042-4848-b5bc-56a92a4eb6d4.tmp
ASCII text, with very long lines, with no line terminators
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG
ASCII text
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG
ASCII text
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\0a75a9a55cba1243_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\52fc0a871822482c_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\63957e9a65d2b5ce_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\84f65aecb1b65fd4_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\8b46160d68ace9ef_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\c591876147cc49bb_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\temp-index
zlib compressed data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies
SQLite 3.x database, last written using SQLite version 3032001
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies-journal
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Session
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Tabs
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\000003.log
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG
ASCII text
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\000003.log
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG
ASCII text
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.6_0\_metadata\computed_hashes.json
ASCII text, with very long lines, with no line terminators
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8520.615.0.5_1\_metadata\computed_hashes.json
ASCII text, with very long lines, with no line terminators
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\000003.log
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG
ASCII text
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG
ASCII text
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG
ASCII text
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History
SQLite 3.x database, last written using SQLite version 3032001
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History-journal
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\000003.log
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG
ASCII text
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG
ASCII text
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Reporting and NEL
SQLite 3.x database, last written using SQLite version 3032001
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Reporting and NEL-journal
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\000003.log
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG
ASCII text
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG
ASCII text
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\8ce78a94-de43-4950-bff1-2ff5d6016432.tmp
ASCII text, with very long lines, with no line terminators
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\GPUCache\data_1
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Local Storage\leveldb\LOG
ASCII text
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Platform Notifications\LOG
ASCII text
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\000003.log
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG
ASCII text
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\GPUCache\data_1
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG
ASCII text
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG
ASCII text
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\000003.log
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG
ASCII text
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\a1867aa1-840d-4cec-a3d2-ea69dc6a1e78.tmp
ASCII text, with very long lines, with no line terminators
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000003.log
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG
ASCII text
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG
ASCII text
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Visited Links
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\b1b666ab-bb79-4a6e-b55a-e152b1950b82.tmp
ASCII text, with very long lines, with no line terminators
modified
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\000004.dbtmp
ASCII text
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG
ASCII text
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\MANIFEST-000004
MPEG-4 LOAS
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\e5c5a9d3-8e30-4de6-934e-e201c72de554.tmp
ASCII text, with very long lines, with no line terminators
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\ec8b62d7-bbc6-4ca7-9625-9edb4daeabd5.tmp
ASCII text, with very long lines, with no line terminators
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Browser
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Version
ASCII text, with no line terminators
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\dae13946-cbe1-4e54-bc64-06aa5f815488.tmp
ASCII text, with very long lines, with no line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\229fe51b-f1d2-40c3-b8b0-1035172b36dd.tmp
very short file (no magic)
dropped
clean
C:\Users\user\AppData\Local\Temp\33208a7b-289c-4b64-a6a7-29e1f4763fdc.tmp
Google Chrome extension, version 3
dropped
clean
C:\Users\user\AppData\Local\Temp\bae6bfdc-6cd3-46ef-bd38-7610a5fb99d5.tmp
very short file (no magic)
dropped
clean
C:\Users\user\AppData\Local\Temp\browser-sslkeys.log
ASCII text
dropped
clean
C:\Users\user\AppData\Local\Temp\cc861f09-9ff1-4dcb-809b-e38bd74d072e.tmp
Google Chrome extension, version 3
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1544878504\CRX_INSTALL\_locales\am\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1544878504\CRX_INSTALL\_locales\ar\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1544878504\CRX_INSTALL\_locales\bg\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1544878504\CRX_INSTALL\_locales\bn\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1544878504\CRX_INSTALL\_locales\ca\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1544878504\CRX_INSTALL\_locales\cs\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1544878504\CRX_INSTALL\_locales\da\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1544878504\CRX_INSTALL\_locales\de\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1544878504\CRX_INSTALL\_locales\el\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1544878504\CRX_INSTALL\_locales\en\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1544878504\CRX_INSTALL\_locales\es\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1544878504\CRX_INSTALL\_locales\et\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1544878504\CRX_INSTALL\_locales\fa\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1544878504\CRX_INSTALL\_locales\fi\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1544878504\CRX_INSTALL\_locales\fil\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1544878504\CRX_INSTALL\_locales\fr\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1544878504\CRX_INSTALL\_locales\gu\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1544878504\CRX_INSTALL\_locales\hi\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1544878504\CRX_INSTALL\_locales\hr\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1544878504\CRX_INSTALL\_locales\hu\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1544878504\CRX_INSTALL\_locales\id\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1544878504\CRX_INSTALL\_locales\it\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1544878504\CRX_INSTALL\_locales\ja\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1544878504\CRX_INSTALL\_locales\kn\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1544878504\CRX_INSTALL\_locales\ko\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1544878504\CRX_INSTALL\_locales\lt\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1544878504\CRX_INSTALL\_locales\lv\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1544878504\CRX_INSTALL\_locales\ml\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1544878504\CRX_INSTALL\_locales\mr\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1544878504\CRX_INSTALL\_locales\ms\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1544878504\CRX_INSTALL\_locales\nb\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1544878504\CRX_INSTALL\_locales\nl\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1544878504\CRX_INSTALL\_locales\pl\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1544878504\CRX_INSTALL\_locales\pt\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1544878504\CRX_INSTALL\_locales\ro\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1544878504\CRX_INSTALL\_locales\ru\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1544878504\CRX_INSTALL\_locales\sk\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1544878504\CRX_INSTALL\_locales\sl\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1544878504\CRX_INSTALL\_locales\sr\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1544878504\CRX_INSTALL\_locales\sv\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1544878504\CRX_INSTALL\_locales\sw\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1544878504\CRX_INSTALL\_locales\ta\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1544878504\CRX_INSTALL\_locales\te\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1544878504\CRX_INSTALL\_locales\th\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1544878504\CRX_INSTALL\_locales\tr\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1544878504\CRX_INSTALL\_locales\uk\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1544878504\CRX_INSTALL\_locales\vi\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1544878504\CRX_INSTALL\_locales\zh\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1544878504\CRX_INSTALL\_locales\zh_TW\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1544878504\CRX_INSTALL\manifest.json
ASCII text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1544878504\cc861f09-9ff1-4dcb-809b-e38bd74d072e.tmp
Google Chrome extension, version 3
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1571291912\33208a7b-289c-4b64-a6a7-29e1f4763fdc.tmp
Google Chrome extension, version 3
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1571291912\CRX_INSTALL\_locales\bg\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1571291912\CRX_INSTALL\_locales\ca\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1571291912\CRX_INSTALL\_locales\cs\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1571291912\CRX_INSTALL\_locales\da\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1571291912\CRX_INSTALL\_locales\de\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1571291912\CRX_INSTALL\_locales\el\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1571291912\CRX_INSTALL\_locales\en\messages.json
ASCII text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1571291912\CRX_INSTALL\_locales\en_GB\messages.json
ASCII text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1571291912\CRX_INSTALL\_locales\es\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1571291912\CRX_INSTALL\_locales\es_419\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1571291912\CRX_INSTALL\_locales\et\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1571291912\CRX_INSTALL\_locales\fi\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1571291912\CRX_INSTALL\_locales\fil\messages.json
ASCII text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1571291912\CRX_INSTALL\_locales\fr\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1571291912\CRX_INSTALL\_locales\hi\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1571291912\CRX_INSTALL\_locales\hr\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1571291912\CRX_INSTALL\_locales\hu\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1571291912\CRX_INSTALL\_locales\id\messages.json
ASCII text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1571291912\CRX_INSTALL\_locales\it\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1571291912\CRX_INSTALL\_locales\ja\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1571291912\CRX_INSTALL\_locales\ko\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1571291912\CRX_INSTALL\_locales\lt\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1571291912\CRX_INSTALL\_locales\lv\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1571291912\CRX_INSTALL\_locales\nb\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1571291912\CRX_INSTALL\_locales\nl\messages.json
ASCII text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1571291912\CRX_INSTALL\_locales\pl\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1571291912\CRX_INSTALL\_locales\pt_BR\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1571291912\CRX_INSTALL\_locales\pt_PT\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1571291912\CRX_INSTALL\_locales\ro\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1571291912\CRX_INSTALL\_locales\ru\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1571291912\CRX_INSTALL\_locales\sk\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1571291912\CRX_INSTALL\_locales\sl\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1571291912\CRX_INSTALL\_locales\sr\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1571291912\CRX_INSTALL\_locales\sv\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1571291912\CRX_INSTALL\_locales\th\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1571291912\CRX_INSTALL\_locales\tr\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1571291912\CRX_INSTALL\_locales\uk\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1571291912\CRX_INSTALL\_locales\vi\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1571291912\CRX_INSTALL\_locales\zh_CN\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1571291912\CRX_INSTALL\_locales\zh_TW\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1571291912\CRX_INSTALL\images\icon_128.png
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1571291912\CRX_INSTALL\images\icon_16.png
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir6436_1571291912\CRX_INSTALL\manifest.json
ASCII text, with CRLF line terminators
dropped
clean
There are 163 hidden files, click here to show them.

Processes

Path
Cmdline
Malicious
C:\Program Files\Google\Chrome\Application\chrome.exe
'C:\Program Files\Google\Chrome\Application\chrome.exe' --start-maximized --enable-automation 'https://vivacious-omniscient-crocodile.glitch.me/nikifi.html'
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
'C:\Program Files\Google\Chrome\Application\chrome.exe' --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1452,4658061009318139164,1746706580748081358,131072 --lang=en-GB --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1840 /prefetch:8
clean

URLs

Name
IP
Malicious
https://dns.google
unknown
clean
https://a.nel.cloudflare.com/report/v3?s=8QMCmwj%2FxeFKo6JqfZKO%2BmgHIFxHF1BjeXTniL0hmBS4s65Y649QvXE
unknown
clean
https://ogs.google.com
unknown
clean
https://support.google.com/chromecast/troubleshooter/2995236
unknown
clean
https://ka-f.fontawesome.com
unknown
clean
https://vivacious-omniscient-crocodile.glitch.me/Io
unknown
clean
https://code.jquery.com/jquery-3.2.1.slim.min.js
unknown
clean
https://play.google.com
unknown
clean
https://payments.google.com/payments/v4/js/integrator.js
unknown
clean
https://www.google.com;
unknown
clean
https://vivacious-omniscient-crocodile.glitch.me/nikifi.html
clean
https://hangouts.google.com/
unknown
clean
https://code.jquery.com
unknown
clean
https://sandbox.google.com/payments/v4/js/integrator.js
unknown
clean
https://vivacious-omniscient-crocodile.glitch.me/nikifi.htmlShare
unknown
clean
https://www.google.com
unknown
clean
https://kit.fontawesome.com
unknown
clean
https://cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js
unknown
clean
https://i.ibb.co
unknown
clean
https://csp.withgoogle.com/csp/report-to/IdentityListAccountsHttp/externalb
unknown
clean
https://accounts.google.com
unknown
clean
https://maxcdn.bootstrapcdn.com
unknown
clean
https://a.nel.cloudflare.com/report/v3?s=b9TKFV%2BcG5JyRvp3mGOz%2BNpP3NbsJwzVct7ZD%2B7y6U5Vauvta%2Fq
unknown
clean
https://support.google.com/chromecast/answer/2998456
unknown
clean
https://vivacious-omniscient-crocodile.glitch.me/nikifi.html
unknown
clean
https://cdnjs.cloudflare.com
unknown
clean
https://clients2.googleusercontent.com
unknown
clean
https://apis.google.com
unknown
clean
https://csp.withgoogle.com/csp/report-to/IdentityListAccountsHttp/external
unknown
clean
https://kit.fontawesome.com/585b051251.js
unknown
clean
https://maxcdn.bootstrapcdn.com/bootstrap/4.0.0/js/bootstrap.min.js
unknown
clean
https://vivacious-omniscient-crocodile.glitch.me/
unknown
clean
https://vivacious-omniscient-crocodile.glitch.me/nikifi.html2
unknown
clean
https://vivacious-omniscient-crocodile.glitch.me/nikifi.htmli6$
unknown
clean
https://vivacious-omniscient-crocodile.glitch.me
unknown
clean
https://www.google.com/
unknown
clean
https://feedback.googleusercontent.com
unknown
clean
https://vivacious-omniscient-crocodile.glitch.me/l
unknown
clean
https://clients2.google.com
unknown
clean
https://clients2.google.com/service/update2/crx
unknown
clean
There are 30 hidden URLs, click here to show them.

Domains

Name
IP
Malicious
gstaticadssl.l.google.com
172.217.23.99
clean
accounts.google.com
172.217.168.45
clean
cdnjs.cloudflare.com
104.16.18.94
clean
maxcdn.bootstrapcdn.com
104.18.11.207
clean
vivacious-omniscient-crocodile.glitch.me
107.23.110.216
clean
clients.l.google.com
142.250.203.110
clean
googlehosted.l.googleusercontent.com
142.250.203.97
clean
i.ibb.co
146.59.152.166
clean
clients2.googleusercontent.com
unknown
clean
clients2.google.com
unknown
clean
ka-f.fontawesome.com
unknown
clean
code.jquery.com
unknown
clean
kit.fontawesome.com
unknown
clean
There are 3 hidden domains, click here to show them.

IPs

IP
Domain
Country
Malicious
107.23.110.216
vivacious-omniscient-crocodile.glitch.me
United States
clean
192.168.2.1
unknown
unknown
clean
146.59.152.166
i.ibb.co
Norway
clean
142.250.203.110
clients.l.google.com
United States
clean
104.18.11.207
maxcdn.bootstrapcdn.com
United States
clean
172.217.168.45
accounts.google.com
United States
clean
142.250.203.97
googlehosted.l.googleusercontent.com
United States
clean
239.255.255.250
unknown
Reserved
clean
172.217.23.99
gstaticadssl.l.google.com
United States
clean
104.16.18.94
cdnjs.cloudflare.com
United States
clean
127.0.0.1
unknown
unknown
clean
There are 1 hidden IPs, click here to show them.

Registry

Path
Value
Malicious
C:\Program Files\Google\Chrome\Application\chrome.exe
ahfgeienlihckogmohjhadlkjgocpleb
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
gdaefkejpgkiemlaofpalmlakkmbjdnl
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
gfdkimpbcpahaombhbimeihdjnejgicl
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
kmendfapggjehodndflmmgagdbamhnfd
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
mfehgcgbbipciphmccgaenjidiccnmng
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
mhjfbmdgcfjbbpaeojofohoefgiehjai
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
neajdppkdcdipfabeoofebfddakdcjhd
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
nkeimhogjdpnpccoofpliimaahmaaome
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
prefs.preference_reset_time
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
S-1-5-21-3853321935-2125563209-4053062332-1002
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
gfdkimpbcpahaombhbimeihdjnejgicl
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
nmmhkkegccagdldgiimedpiccmgmieda
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
pkedcjkdefgpdelpbcmbmeomcjbeemfm
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
nmmhkkegccagdldgiimedpiccmgmieda
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
state
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
StatusCodes
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
StatusCodes
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
state
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
dr
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
software_reporter.reporting
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
module_blacklist_cache_md5_digest
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
media.storage_id_salt
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
google.services.last_account_id
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
google.services.account_id
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
software_reporter.prompt_seed
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
settings_reset_prompt.last_triggered_for_homepage
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
default_search_provider_data.template_url_data
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
safebrowsing.incidents_sent
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
pinned_tabs
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
search_provider_overrides
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
settings_reset_prompt.last_triggered_for_default_search
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
prefs.preference_reset_time
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
google.services.last_username
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
session.startup_urls
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
session.restore_on_startup
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
software_reporter.prompt_version
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
settings_reset_prompt.last_triggered_for_startup_urls
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
settings_reset_prompt.prompt_wave
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
homepage
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
homepage_is_newtabpage
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
browser.show_home_button
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
user_experience_metrics.stability.exited_cleanly
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
lastrun
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
Blob
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
Blob
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
Blob
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
Blob
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
Blob
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
Blob
clean
There are 39 hidden registries, click here to show them.

Memdumps

Base Address
Regiontype
Protect
Malicious
7FF50CA0C000
unkown
page readonly
clean
1F500050000
unkown
page read and write
clean
7FF55756C000
unkown
page readonly
clean
2AEFDEE000
unkown
page read and write
clean
1F50004D000
unkown
page read and write
clean
1E1E0A2A000
unkown
page read and write
clean
1E1E08F0000
unkown
page readonly
clean
7FF52363F000
unkown
page readonly
clean
1D6463C7000
unkown
page read and write
clean
1F50003C000
unkown
page read and write
clean
1E1E0A00000
unkown
page read and write
clean
BF7F47B000
unkown
page read and write
clean
1F500090000
unkown
page read and write
clean
7FF5A2307000
unkown
page readonly
clean
7FF50CAD7000
unkown
page readonly
clean
1E1E0C00000
unkown
page readonly
clean
1D646363000
unkown
page read and write
clean
7FF557503000
unkown
page readonly
clean
1D645ABC000
unkown
page read and write
clean
1D64635C000
unkown
page read and write
clean
7FF582EBA000
unkown
page readonly
clean
7FF582EE9000
unkown
page readonly
clean
7FF54A0C2000
unkown
page readonly
clean
7FF52364E000
unkown
page readonly
clean
7FF5A2595000
unkown
page readonly
clean
1D6463A6000
unkown
page read and write
clean
1D645AE6000
unkown
page read and write
clean
7FF523659000
unkown
page readonly
clean
7FF5575EC000
unkown
page readonly
clean
1D645A13000
unkown
page read and write
clean
7FF50C666000
unkown
page readonly
clean
7FF5A24E3000
unkown
page readonly
clean
7FF557172000
unkown
page readonly
clean
7FF5A2471000
unkown
page readonly
clean
1F500108000
unkown
page read and write
clean
2AF047F000
unkown
page read and write
clean
7FF50CAEA000
unkown
page readonly
clean
1E1E1002000
unkown
page read and write
clean
7FF523357000
unkown
page readonly
clean
5F24CF7000
unkown
page read and write
clean
1F500113000
unkown
page read and write
clean
23C1CF08000
unkown
page read and write
clean
7FF5235CA000
unkown
page readonly
clean
7FF5574FB000
unkown
page readonly
clean
1D646359000
unkown
page read and write
clean
1F500200000
unkown
page readonly
clean
7FF5234DB000
unkown
page readonly
clean
7FF5A25D4000
unkown
page readonly
clean
5F246FB000
unkown
page read and write
clean
7FF523360000
unkown
page readonly
clean
1F500052000
unkown
page read and write
clean
1D645B13000
unkown
page read and write
clean
1EAA663B000
unkown
page read and write
clean
1D646802000
unkown
page read and write
clean
1EAA6610000
heap default
page read and write
clean
7FF50CACF000
unkown
page readonly
clean
1E1E0A6F000
unkown
page read and write
clean
7FF5A25F8000
unkown
page readonly
clean
7FF523656000
unkown
page readonly
clean
7FF582E75000
unkown
page readonly
clean
23C1CD70000
unkown
page readonly
clean
7FF55760B000
unkown
page readonly
clean
27215200000
unkown
page read and write
clean
1EAA663B000
unkown
page read and write
clean
1D646802000
unkown
page read and write
clean
7FF50C820000
unkown
page readonly
clean
272152DB000
heap default
page read and write
clean
1E1E07B0000
heap private
page read and write
clean
7FF5C9192000
unkown
page readonly
clean
7FF50CA9A000
unkown
page readonly
clean
7FF523544000
unkown
page readonly
clean
1EAA6636000
unkown
page read and write
clean
7FF55762F000
unkown
page readonly
clean
7FF5575DF000
unkown
page readonly
clean
1EAA6720000
unkown
page read and write
clean
1D646802000
unkown
page read and write
clean
7FF5C9119000
unkown
page readonly
clean
1D646180000
unkown
page readonly
clean
B86577A000
unkown
page read and write
clean
1D646397000
unkown
page read and write
clean
7FF557380000
unkown
page readonly
clean
1D645A53000
unkown
page read and write
clean
7FF5575CB000
unkown
page readonly
clean
7FF5A25EF000
unkown
page readonly
clean
1EAA663E000
unkown
page read and write
clean
1D64633C000
unkown
page read and write
clean
1D6463A7000
unkown
page read and write
clean
1D645ADF000
unkown
page read and write
clean
1D646331000
unkown
page read and write
clean
1E1E0A9E000
unkown
page read and write
clean
E40596C000
unkown
page read and write
clean
1D646902000
unkown
page read and write
clean
1F500070000
unkown
page read and write
clean
7FF50CAA5000
unkown
page readonly
clean
1D646180000
unkown
page read and write
clean
7FF52354C000
unkown
page readonly
clean
A45DCFE000
unkown
page read and write
clean
7FF5A25FE000
unkown
page readonly
clean
7FF5A2674000
unkown
page readonly
clean
7FF5C90AB000
unkown
page readonly
clean
1D64688E000
unkown
page read and write
clean
7FF50C2C0000
unkown
page readonly
clean
1D646338000
unkown
page read and write
clean
1E1E0B02000
unkown
page read and write
clean
7FF54A139000
unkown
page readonly
clean
1D646340000
unkown
page read and write
clean
7FF557434000
unkown
page readonly
clean
1D646396000
unkown
page read and write
clean
1D6461A0000
unkown
page readonly
clean
7FF557600000
unkown
page readonly
clean
23C1CE3C000
unkown
page read and write
clean
7FF55727A000
unkown
page readonly
clean
7FF5A2681000
unkown
page readonly
clean
7FF582F54000
unkown
page readonly
clean
1AA89C55000
heap private
page read and write
clean
1D64683C000
unkown
page read and write
clean
7FF5A24F4000
unkown
page readonly
clean
1D645970000
unkown
page readonly
clean
1E1E0A3C000
unkown
page read and write
clean
1D645A29000
unkown
page read and write
clean
1D6463A1000
unkown
page read and write
clean
1D646341000
unkown
page read and write
clean
7FF523617000
unkown
page readonly
clean
BF7F9F7000
unkown
page read and write
clean
7FF5C918A000
unkown
page readonly
clean
1D646354000
unkown
page read and write
clean
7FF557441000
unkown
page readonly
clean
7FF582EC4000
unkown
page readonly
clean
272152C5000
heap private
page read and write
clean
1F4FFFB0000
unkown
page readonly
clean
7FF5573C6000
unkown
page readonly
clean
1AA89A0B000
heap default
page read and write
clean
1D646397000
unkown
page read and write
clean
1F500088000
unkown
page read and write
clean
7FF50CACC000
unkown
page readonly
clean
1D64632E000
unkown
page read and write
clean
7FF50C9ED000
unkown
page readonly
clean
1D645A00000
unkown
page read and write
clean
1D646354000
unkown
page read and write
clean
7FF5A2606000
unkown
page readonly
clean
7FF54A0C0000
unkown
page readonly
clean
1D64635A000
unkown
page read and write
clean
1D64689B000
unkown
page read and write
clean
7FF5574AA000
unkown
page readonly
clean
1D6463C7000
unkown
page read and write
clean
7FF54A12E000
unkown
page readonly
clean
23C1D800000
unkown
page readonly
clean
7FF54A114000
unkown
page readonly
clean
1EAA6835000
heap private
page read and write
clean
7FF5A257C000
unkown
page readonly
clean
1F500D40000
unkown
page readonly
clean
1D646336000
unkown
page read and write
clean
1D646386000
unkown
page read and write
clean
2AF0377000
unkown
page read and write
clean
1D646386000
unkown
page read and write
clean
7FF556F57000
unkown
page readonly
clean
5F24BFB000
unkown
page read and write
clean
23C1CD80000
unkown
page readonly
clean
7FF54A1A4000
unkown
page readonly
clean
1E1E09E0000
unkown
page read and write
clean
1D646396000
unkown
page read and write
clean
1D645AF5000
unkown
page read and write
clean
7FF5C911D000
unkown
page readonly
clean
7FF5C90CF000
unkown
page readonly
clean
7FF557676000
unkown
page readonly
clean
7FF50C981000
unkown
page readonly
clean
1E1E0B13000
unkown
page read and write
clean
E405C7F000
unkown
page read and write
clean
7FF50CAF4000
unkown
page readonly
clean
7FF54A0CB000
unkown
page readonly
clean
7FF54A128000
unkown
page readonly
clean
1D646802000
unkown
page read and write
clean
7FF55764A000
unkown
page readonly
clean
1D646902000
unkown
page read and write
clean
1D645AE4000
unkown
page read and write
clean
7FF5A25E4000
unkown
page readonly
clean
7FF5A25C7000
unkown
page readonly
clean
1D646379000
unkown
page read and write
clean
7FF5A248E000
unkown
page readonly
clean
7FF5C90A0000
unkown
page readonly
clean
1D64635D000
unkown
page read and write
clean
7FF5C90CC000
unkown
page readonly
clean
1EAA64E0000
unkown
page readonly
clean
1D646386000
unkown
page read and write
clean
1D646313000
unkown
page read and write
clean
1D646384000
unkown
page read and write
clean
7FF5A25A7000
unkown
page readonly
clean
1D645AAA000
unkown
page read and write
clean
1D646180000
unkown
page read and write
clean
1D6463C7000
unkown
page read and write
clean
BF7F4FE000
unkown
page read and write
clean
7FF50CAE4000
unkown
page readonly
clean
1D64637D000
unkown
page read and write
clean
7FF557451000
unkown
page readonly
clean
E405DFF000
unkown
page read and write
clean
E405CFF000
unkown
page read and write
clean
1D6459E0000
unkown
page readonly
clean
7FF582EED000
unkown
page readonly
clean
7FF50CAFF000
unkown
page readonly
clean
7FF5571C6000
unkown
page readonly
clean
7FF50CA04000
unkown
page readonly
clean
7FF582E72000
unkown
page readonly
clean
1F500102000
unkown
page read and write
clean
2AEFD6B000
unkown
page read and write
clean
23C1CD00000
heap private
page read and write
clean
1D64634C000
unkown
page read and write
clean
1D6463C7000
unkown
page read and write
clean
1D646130000
unkown
page write copy
clean
1EAA6600000
unkown
page readonly
clean
7FF50C660000
unkown
page readonly
clean
7FF5A25BC000
unkown
page readonly
clean
1E1E09D0000
unkown
page readonly
clean
23C1D0D0000
unkown
page readonly
clean
7FF5570DE000
unkown
page readonly
clean
1D646400000
unkown
page readonly
clean
1D64633D000
unkown
page read and write
clean
23C1CD90000
unkown
page read and write
clean
7FF557654000
unkown
page readonly
clean
5F247FE000
unkown
page read and write
clean
7FF5A2156000
unkown
page readonly
clean
1EAA663E000
unkown
page read and write
clean
1F4FFFA0000
heap default
page read and write
clean
7FF5A2609000
unkown
page readonly
clean
1D646340000
unkown
page read and write
clean
7FF5235CC000
unkown
page readonly
clean
7FF557553000
unkown
page readonly
clean
7FF557644000
unkown
page readonly
clean
1D646332000
unkown
page read and write
clean
B86567F000
unkown
page read and write
clean
7FF557217000
unkown
page readonly
clean
7FF5A2682000
unkown
page readonly
clean
1AA897C0000
unkown
page readonly
clean
1D646386000
unkown
page read and write
clean
1E1E0B00000
unkown
page read and write
clean
7FF50CB16000
unkown
page readonly
clean
B8658FC000
unkown
page read and write
clean
7FF5575EA000
unkown
page readonly
clean
7FF5C9108000
unkown
page readonly
clean
7FF5C90FE000
unkown
page readonly
clean
7FF55754D000
unkown
page readonly
clean
1F5002D0000
unkown
page readonly
clean
7FF556F53000
unkown
page readonly
clean
23C1CF00000
unkown
page read and write
clean
73399FE000
unkown
page read and write
clean
23C1D000000
unkown
page readonly
clean
7FF5A25BF000
unkown
page readonly
clean
1D645AB0000
unkown
page read and write
clean
7FF55765F000
unkown
page readonly
clean
1D64683C000
unkown
page read and write
clean
7FF50CB84000
unkown
page readonly
clean
1F500013000
unkown
page read and write
clean
1AA898F0000
unkown
page read and write
clean
1D645A7D000
unkown
page read and write
clean
A45DC7C000
unkown
page read and write
clean
7FF54A11E000
unkown
page readonly
clean
23C1CF02000
unkown
page read and write
clean
1D646339000
unkown
page read and write
clean
A45E3FF000
unkown
page read and write
clean
1D645A8A000
unkown
page read and write
clean
7FF5574A3000
unkown
page readonly
clean
7FF5C89F7000
unkown
page readonly
clean
23C1CE2A000
unkown
page read and write
clean
1EAA663B000
unkown
page read and write
clean
1D645CD0000
unkown
page readonly
clean
1AA89C60000
unkown
page readonly
clean
B8657F9000
unkown
page read and write
clean
7FF5C90EA000
unkown
page readonly
clean
23C1CE13000
unkown
page read and write
clean
7FF582E9C000
unkown
page readonly
clean
7FF52360F000
unkown
page readonly
clean
7FF50C99E000
unkown
page readonly
clean
1D645A3C000
unkown
page read and write
clean
7FF557400000
unkown
page readonly
clean
7FF54A13D000
unkown
page readonly
clean
1D6459B0000
unkown
page readonly
clean
7FF5A2150000
unkown
page readonly
clean
7FF5576E4000
unkown
page readonly
clean
7FF557377000
unkown
page readonly
clean
7FF557637000
unkown
page readonly
clean
7FF5231B5000
unkown
page readonly
clean
1D6463C5000
unkown
page read and write
clean
7FF50CB92000
unkown
page readonly
clean
1D645990000
unkown
page read and write
clean
1D64632F000
unkown
page read and write
clean
1D646343000
unkown
page read and write
clean
1D6459F0000
unkown
page readonly
clean
5F2477E000
unkown
page read and write
clean
1EAA6710000
unkown
page readonly
clean
E4059EE000
unkown
page read and write
clean
7FF5234C1000
unkown
page readonly
clean
7FF5573BB000
unkown
page readonly
clean
7FF50C8F1000
unkown
page readonly
clean
BF7F8FE000
unkown
page read and write
clean
23C1CE53000
unkown
page read and write
clean
7FF5235DA000
unkown
page readonly
clean
1D646397000
unkown
page read and write
clean
BF7FAFE000
unkown
page read and write
clean
A45DF77000
unkown
page read and write
clean
1E1E0B08000
unkown
page read and write
clean
1D64683C000
unkown
page read and write
clean
7FF5C9184000
unkown
page readonly
clean
7FF582E7B000
unkown
page readonly
clean
7FF5235DE000
unkown
page readonly
clean
1F4FFFC0000
unkown
page readonly
clean
1F4FFFD0000
unkown
page read and write
clean
7FF54A0C5000
unkown
page readonly
clean
1D6463A9000
unkown
page read and write
clean
7FF50CAB7000
unkown
page readonly
clean
7FF582EDE000
unkown
page readonly
clean
1D646343000
unkown
page read and write
clean
7FF5A258A000
unkown
page readonly
clean
7FF5C910E000
unkown
page readonly
clean
23C1CF13000
unkown
page read and write
clean
1D64688E000
unkown
page read and write
clean
1D64635C000
unkown
page read and write
clean
7FF557617000
unkown
page readonly
clean
1D645AC3000
unkown
page read and write
clean
B86587E000
unkown
page read and write
clean
7FF50CAAB000
unkown
page readonly
clean
7FF5231A0000
unkown
page readonly
clean
1EAA664F000
unkown
page read and write
clean
2AF057E000
unkown
page read and write
clean
1E1E0A9B000
unkown
page read and write
clean
A45DE7C000
unkown
page read and write
clean
1D646300000
unkown
page read and write
clean
733997F000
unkown
page read and write
clean
1D646307000
unkown
page read and write
clean
1AA89C50000
heap private
page read and write
clean
7FF523533000
unkown
page readonly
clean
7FF52352D000
unkown
page readonly
clean
1D645AA6000
unkown
page read and write
clean
7FF50C9F3000
unkown
page readonly
clean
7FF5A2433000
unkown
page readonly
clean
1D646060000
unkown
page readonly
clean
7FF582F62000
unkown
page readonly
clean
1AA89910000
unkown
page read and write
clean
272152E0000
heap default
page read and write
clean
7FF523648000
unkown
page readonly
clean
1D646802000
unkown
page read and write
clean
1D645980000
unkown
page readonly
clean
1AA89A2D000
heap default
page read and write
clean
7FF5575CF000
unkown
page readonly
clean
73394DC000
unkown
page read and write
clean
23C1DB40000
unkown
page readonly
clean
1F500802000
unkown
page read and write
clean
7FF5574E1000
unkown
page readonly
clean
27215220000
unkown
page read and write
clean
1D64632D000
unkown
page read and write
clean
7FF5C8D1A000
unkown
page readonly
clean
7FF5A1DB0000
unkown
page readonly
clean
5F24EFF000
unkown
page read and write
clean
1E1E0A4E000
unkown
page read and write
clean
7FF55766E000
unkown
page readonly
clean
1EAA6830000
heap private
page read and write
clean
7FF5575A2000
unkown
page readonly
clean
1D64632B000
unkown
page read and write
clean
7FF582EA8000
unkown
page readonly
clean
1D646180000
unkown
page read and write
clean
7FF557436000
unkown
page readonly
clean
7FF5235F7000
unkown
page readonly
clean
1D646354000
unkown
page read and write
clean
2AF007D000
unkown
page read and write
clean
1D645A9F000
unkown
page read and write
clean
B8653AA000
unkown
page read and write
clean
7FF5575A0000
unkown
page readonly
clean
7FF5A24DD000
unkown
page readonly
clean
7FF557508000
unkown
page readonly
clean
1E1E0A13000
unkown
page read and write
clean
1D646843000
unkown
page read and write
clean
7FF582F5A000
unkown
page readonly
clean
A45E5FC000
unkown
page read and write
clean
7FF54A0F8000
unkown
page readonly
clean
7FF5575FA000
unkown
page readonly
clean
1EAA65D0000
unkown
page read and write
clean
7FF5234DE000
unkown
page readonly
clean
7FF52360C000
unkown
page readonly
clean
1D64631F000
unkown
page read and write
clean
7FF556E20000
unkown
page readonly
clean
1E1E0820000
unkown
page readonly
clean
7FF50CB8A000
unkown
page readonly
clean
7FF54A1B2000
unkown
page readonly
clean
1D646339000
unkown
page read and write
clean
7FF50CB1D000
unkown
page readonly
clean
7FF5C90F4000
unkown
page readonly
clean
1D646379000
unkown
page read and write
clean
A45E077000
unkown
page read and write
clean
1D646339000
unkown
page read and write
clean
7FF582E70000
unkown
page readonly
clean
23C1CE00000
unkown
page read and write
clean
7FF52362A000
unkown
page readonly
clean
BF7F7FE000
unkown
page read and write
clean
1D646800000
unkown
page read and write
clean
BF7F77A000
unkown
page read and write
clean
1D645C00000
unkown
page readonly
clean
7FF50C675000
unkown
page readonly
clean
7FF5235E0000
unkown
page readonly
clean
7FF557679000
unkown
page readonly
clean
1E1E0810000
heap default
page read and write
clean
1D645900000
heap private
page read and write
clean
1D646353000
unkown
page read and write
clean
1EAA6626000
heap default
page read and write
clean
7FF557605000
unkown
page readonly
clean
7FF54A1AA000
unkown
page readonly
clean
7FF5576F1000
unkown
page readonly
clean
7FF50C817000
unkown
page readonly
clean
2AF0175000
unkown
page read and write
clean
7FF50CAA0000
unkown
page readonly
clean
1D64683C000
unkown
page read and write
clean
7FF557162000
unkown
page readonly
clean
1EAA663E000
unkown
page read and write
clean
7FF50CB19000
unkown
page readonly
clean
23C1CE4D000
unkown
page read and write
clean
A45E17E000
unkown
page read and write
clean
7FF50C99B000
unkown
page readonly
clean
272152D0000
heap default
page read and write
clean
1EAA6635000
unkown
page read and write
clean
1D645B02000
unkown
page read and write
clean
7FF5236C4000
unkown
page readonly
clean
1D646386000
unkown
page read and write
clean
23C1CD60000
heap default
page read and write
clean
E405EFE000
unkown
page read and write
clean
7FF50CA8A000
unkown
page readonly
clean
1F500029000
unkown
page read and write
clean
7FF5A23E1000
unkown
page readonly
clean
7FF5A259B000
unkown
page readonly
clean
27215130000
unkown
page readonly
clean
1D6463A6000
unkown
page read and write
clean
7FF5576EA000
unkown
page readonly
clean
23C1CE85000
unkown
page read and write
clean
1D64635A000
unkown
page read and write
clean
7FF5A2310000
unkown
page readonly
clean
7FF5C90E4000
unkown
page readonly
clean
1F500000000
unkown
page read and write
clean
1D646190000
unkown
page read and write
clean
7FF5576F2000
unkown
page readonly
clean
272152FF000
heap default
page read and write
clean
A45E278000
unkown
page read and write
clean
1D646396000
unkown
page read and write
clean
1F500A00000
unkown
page readonly
clean
272153D0000
unkown
page readonly
clean
7FF50CB91000
unkown
page readonly
clean
1EAA6621000
unkown
page read and write
clean
1F50004B000
unkown
page read and write
clean
1E1E0A53000
unkown
page read and write
clean
7FF5C90A5000
unkown
page readonly
clean
7FF5571C0000
unkown
page readonly
clean
7FF5A267A000
unkown
page readonly
clean
7FF5A2590000
unkown
page readonly
clean
1D646802000
unkown
page read and write
clean
7FF54A104000
unkown
page readonly
clean
7FF54A10A000
unkown
page readonly
clean
7FF582ECE000
unkown
page readonly
clean
7FF5A257A000
unkown
page readonly
clean
7FF5C89F3000
unkown
page readonly
clean
1E1E1200000
unkown
page readonly
clean
7FF5235E5000
unkown
page readonly
clean
1D64634D000
unkown
page read and write
clean
1D6463B2000
unkown
page read and write
clean
1AA89820000
unkown
page readonly
clean
7FF55762C000
unkown
page readonly
clean
1D646339000
unkown
page read and write
clean
7FF55716E000
unkown
page readonly
clean
7FF523483000
unkown
page readonly
clean
1E1E0A49000
unkown
page read and write
clean
1EAA6840000
unkown
page readonly
clean
1D646396000
unkown
page read and write
clean
7FF54A0EC000
unkown
page readonly
clean
73398FE000
unkown
page read and write
clean
1D64689B000
unkown
page read and write
clean
1D646802000
unkown
page read and write
clean
5F24AF5000
unkown
page read and write
clean
A45DD7E000
unkown
page read and write
clean
7FF557668000
unkown
page readonly
clean
B8656FF000
unkown
page read and write
clean
A45E37C000
unkown
page read and write
clean
1D6463A1000
unkown
page read and write
clean
1D646900000
unkown
page read and write
clean
23C1CE6E000
unkown
page read and write
clean
7FF557564000
unkown
page readonly
clean
7FF523624000
unkown
page readonly
clean
23C1CE6A000
unkown
page read and write
clean
7FF5A25DA000
unkown
page readonly
clean
7FF5236D1000
unkown
page readonly
clean
7FF5236D2000
unkown
page readonly
clean
7FF50CB08000
unkown
page readonly
clean
7FF54A1B1000
unkown
page readonly
clean
7FF557215000
unkown
page readonly
clean
1D646202000
unkown
page read and write
clean
1D646339000
unkown
page read and write
clean
7FF5C90D8000
unkown
page readonly
clean
1F4FFF40000
heap private
page read and write
clean
23C1D602000
unkown
page read and write
clean
7FF5231A6000
unkown
page readonly
clean
1D646339000
unkown
page read and write
clean
272152C0000
heap private
page read and write
clean
1D646343000
unkown
page read and write
clean
7FF5575FE000
unkown
page readonly
clean
7FF5A248B000
unkown
page readonly
clean
1D646360000
unkown
page read and write
clean
1AA89B00000
unkown
page readonly
clean
7FF50C943000
unkown
page readonly
clean
1EAA6650000
unkown
page read and write
clean
1D646396000
unkown
page read and write
clean
7FF50CB0E000
unkown
page readonly
clean
5F24DFF000
unkown
page read and write
clean
BF7F57D000
unkown
page read and write
clean
1E1E0A4B000
unkown
page read and write
clean
1E1E1540000
unkown
page readonly
clean
7FF50CA9E000
unkown
page readonly
clean
7FF50CA8C000
unkown
page readonly
clean
7FF5235EB000
unkown
page readonly
clean
A45E4F8000
unkown
page read and write
clean
73395DF000
unkown
page read and write
clean
7FF5A258E000
unkown
page readonly
clean
1EAA65B0000
unkown
page read and write
clean
1AA89A00000
heap default
page read and write
clean
1D646396000
unkown
page read and write
clean
1D646386000
unkown
page read and write
clean
733955F000
unkown
page read and write
clean
7FF582EB4000
unkown
page readonly
clean
7FF5C9191000
unkown
page readonly
clean
7FF523634000
unkown
page readonly
clean
272150D0000
unkown
page readonly
clean
1D645AE7000
unkown
page read and write
clean
7FF523431000
unkown
page readonly
clean
7FF52365D000
unkown
page readonly
clean
E405E7E000
unkown
page read and write
clean
7FF5575D4000
unkown
page readonly
clean
7FF5A2165000
unkown
page readonly
clean
27215240000
unkown
page readonly
clean
1D64633C000
unkown
page read and write
clean
7FF582ED8000
unkown
page readonly
clean
1D646339000
unkown
page read and write
clean
7FF5571D5000
unkown
page readonly
clean
1D645960000
heap default
page read and write
clean
7FF5A24FC000
unkown
page readonly
clean
2AF027B000
unkown
page read and write
clean
7FF582F61000
unkown
page readonly
clean
1D646813000
unkown
page read and write
clean
1D6463A9000
unkown
page read and write
clean
7FF5236CA000
unkown
page readonly
clean
7FF5A260D000
unkown
page readonly
clean
There are 532 hidden memdumps, click here to show them.

DOM / HTML

URL
Malicious
https://vivacious-omniscient-crocodile.glitch.me/nikifi.html
malicious