IOC Report

loading gif

Files

File Path
Type
Category
Malicious
T8778900.htm
HTML document, ASCII text, with very long lines, with CRLF line terminators
initial sample
malicious
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\1601437e-04f5-4aae-98ce-580c05fec6d3.tmp
data
dropped
clean
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\1dcd4650-353b-417d-8d80-5acf242f8949.tmp
ASCII text, with very long lines, with no line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\35ba2819-6073-410d-9611-a8f8b83aa086.tmp
ASCII text, with very long lines, with no line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\41420be4-dba6-4c32-822d-ae9e182c98f5.tmp
data
modified
clean
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
data
dropped
clean
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\17d11526-1665-47c7-8587-2929b53c560c.tmp
ASCII text, with very long lines, with no line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\36c00ef8-d286-4eaa-bbdd-094adad0833f.tmp
very short file (no magic)
dropped
clean
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\3ef17b58-fc85-4de4-9d41-5ba690f0d2c7.tmp
ASCII text, with very long lines, with no line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\7396621b-a04c-4078-8a4e-cc9a17941aed.tmp
UTF-8 Unicode text, with very long lines, with no line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\99b96e55-4ef8-44ae-b461-570f21c7f676.tmp
UTF-8 Unicode text, with very long lines, with no line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.6_1\_metadata\computed_hashes.json
ASCII text, with very long lines, with no line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\9221.427.0.1_0\_metadata\computed_hashes.json
ASCII text, with very long lines, with no line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\Google Profile.icoEN (copy)
MS Windows icon resource - 13 icons, 8x8, 32 bits/pixel, 10x10, 32 bits/pixel
dropped
clean
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache
data
dropped
clean
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\Preferences (copy)
ASCII text, with very long lines, with no line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\PreferencesNT (copy)
ASCII text, with very long lines, with no line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\Preferencesil (copy)
ASCII text, with very long lines, with no line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences (copy)
UTF-8 Unicode text, with very long lines, with no line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\Secure PreferencesEN (copy)
UTF-8 Unicode text, with very long lines, with no line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\7bfe3d94-ff2b-486a-a91c-4b258a5a796d.tmp
ASCII text, with no line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\GPUCache\data_1
data
dropped
clean
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\000001.dbtmp
ASCII text
dropped
clean
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\CURRENT (copy)
ASCII text
dropped
clean
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\MANIFEST-000001
PGP\011Secret Key -
dropped
clean
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\aec99e3c-8989-49c4-9d46-c1910f5e40f7.tmp
UTF-8 Unicode text, with very long lines, with no line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\b824dca7-42ba-4a40-91bf-b18182cac7f2.tmp
ASCII text, with very long lines, with no line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\c2cb5698-283b-439d-a1ff-642b95c14339.tmp
MS Windows icon resource - 13 icons, 8x8, 32 bits/pixel, 10x10, 32 bits/pixel
dropped
clean
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\da1ac554-cfc6-42a5-b7e1-365f9cdfdda5.tmp
ASCII text, with very long lines, with no line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\000006.dbtmp
ASCII text
dropped
clean
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\CURRENTMP (copy)
ASCII text
dropped
clean
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\e39d7f51-cb6a-49c8-b1a3-2f2563e709b5.tmp
UTF-8 Unicode text, with very long lines, with no line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\e9b01f26-e07a-4490-b18c-25d17e572e2c.tmp
ASCII text, with very long lines, with no line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\f7794bd7-eb21-46b0-8dfb-cdf918cc355b.tmp
ASCII text, with very long lines, with no line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\f902def4-a1e3-4f74-aab6-864a3b9404cd.tmp
ASCII text, with very long lines, with no line terminators
modified
clean
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Last Browser
data
dropped
clean
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Last Version
ASCII text, with no line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Local State (copy)
ASCII text, with very long lines, with no line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Module Info CacheMP (copy)
data
dropped
clean
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Module Info Cache\i (copy)
data
dropped
clean
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\b2142c16-5d9d-465b-a37b-547be89eda4b.tmp
ASCII text, with very long lines, with no line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\eb434202-5e86-41b3-b12f-5bd92111f908.tmp
ASCII text, with very long lines, with no line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\1821894b-7e2d-43c0-a362-613326735179.tmp
ASCII text, with very long lines, with no line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\2d3fe476-e22e-40fa-af67-f05cb2984352.tmp
gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\5503765b-e9c7-49ac-aaf6-c9e75ad4aedc.tmp
gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\5beab8a3-aa96-4638-b25e-51248509c88b.tmp
gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\cf5961b2-96b8-4dfd-8d4f-1b42673f6664.tmp
Google Chrome extension, version 3
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\d3576bdc-42ce-4d6e-9887-5c82eb28f121.tmp
Google Chrome extension, version 3
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\f3f234b2-9848-4634-9571-5b7e8adca82e.tmp
gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_2122549551\CRX_INSTALL\_locales\bg\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_2122549551\CRX_INSTALL\_locales\ca\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_2122549551\CRX_INSTALL\_locales\cs\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_2122549551\CRX_INSTALL\_locales\da\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_2122549551\CRX_INSTALL\_locales\de\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_2122549551\CRX_INSTALL\_locales\el\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_2122549551\CRX_INSTALL\_locales\en\messages.json
ASCII text, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_2122549551\CRX_INSTALL\_locales\es\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_2122549551\CRX_INSTALL\_locales\es_419\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_2122549551\CRX_INSTALL\_locales\et\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_2122549551\CRX_INSTALL\_locales\fi\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_2122549551\CRX_INSTALL\_locales\fil\messages.json
ASCII text, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_2122549551\CRX_INSTALL\_locales\fr\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_2122549551\CRX_INSTALL\_locales\hi\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_2122549551\CRX_INSTALL\_locales\hr\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_2122549551\CRX_INSTALL\_locales\hu\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_2122549551\CRX_INSTALL\_locales\id\messages.json
ASCII text, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_2122549551\CRX_INSTALL\_locales\it\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_2122549551\CRX_INSTALL\_locales\ja\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_2122549551\CRX_INSTALL\_locales\ko\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_2122549551\CRX_INSTALL\_locales\lt\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_2122549551\CRX_INSTALL\_locales\lv\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_2122549551\CRX_INSTALL\_locales\nb\messages.json
ASCII text, with very long lines
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_2122549551\CRX_INSTALL\_locales\nl\messages.json
ASCII text, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_2122549551\CRX_INSTALL\_locales\pl\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_2122549551\CRX_INSTALL\_locales\pt_BR\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_2122549551\CRX_INSTALL\_locales\pt_PT\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_2122549551\CRX_INSTALL\_locales\ro\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_2122549551\CRX_INSTALL\_locales\ru\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_2122549551\CRX_INSTALL\_locales\sk\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_2122549551\CRX_INSTALL\_locales\sl\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_2122549551\CRX_INSTALL\_locales\sr\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_2122549551\CRX_INSTALL\_locales\sv\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_2122549551\CRX_INSTALL\_locales\th\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_2122549551\CRX_INSTALL\_locales\tr\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_2122549551\CRX_INSTALL\_locales\uk\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_2122549551\CRX_INSTALL\_locales\vi\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_2122549551\CRX_INSTALL\_locales\zh_CN\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_2122549551\CRX_INSTALL\_locales\zh_TW\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_2122549551\CRX_INSTALL\images\icon_128.png
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_2122549551\CRX_INSTALL\images\icon_16.png
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_2122549551\CRX_INSTALL\manifest.json
ASCII text, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_32148019\CRX_INSTALL\_locales\am\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_32148019\CRX_INSTALL\_locales\ar\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_32148019\CRX_INSTALL\_locales\bg\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_32148019\CRX_INSTALL\_locales\bn\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_32148019\CRX_INSTALL\_locales\ca\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_32148019\CRX_INSTALL\_locales\cs\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_32148019\CRX_INSTALL\_locales\da\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_32148019\CRX_INSTALL\_locales\de\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_32148019\CRX_INSTALL\_locales\el\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_32148019\CRX_INSTALL\_locales\en\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_32148019\CRX_INSTALL\_locales\es\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_32148019\CRX_INSTALL\_locales\et\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_32148019\CRX_INSTALL\_locales\fa\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_32148019\CRX_INSTALL\_locales\fi\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_32148019\CRX_INSTALL\_locales\fil\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_32148019\CRX_INSTALL\_locales\fr\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_32148019\CRX_INSTALL\_locales\gu\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_32148019\CRX_INSTALL\_locales\hi\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_32148019\CRX_INSTALL\_locales\hr\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_32148019\CRX_INSTALL\_locales\hu\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_32148019\CRX_INSTALL\_locales\id\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_32148019\CRX_INSTALL\_locales\it\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_32148019\CRX_INSTALL\_locales\iw\messages.json
HTML document, ASCII text, with very long lines, with no line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_32148019\CRX_INSTALL\_locales\ja\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_32148019\CRX_INSTALL\_locales\kn\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_32148019\CRX_INSTALL\_locales\ko\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_32148019\CRX_INSTALL\_locales\lt\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_32148019\CRX_INSTALL\_locales\lv\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_32148019\CRX_INSTALL\_locales\ml\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_32148019\CRX_INSTALL\_locales\mr\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_32148019\CRX_INSTALL\_locales\ms\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_32148019\CRX_INSTALL\_locales\nb\messages.json
HTML document, ASCII text, with very long lines, with no line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_32148019\CRX_INSTALL\_locales\nl\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_32148019\CRX_INSTALL\_locales\pl\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_32148019\CRX_INSTALL\_locales\pt\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_32148019\CRX_INSTALL\_locales\ro\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_32148019\CRX_INSTALL\_locales\ru\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_32148019\CRX_INSTALL\_locales\sk\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_32148019\CRX_INSTALL\_locales\sl\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_32148019\CRX_INSTALL\_locales\sr\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_32148019\CRX_INSTALL\_locales\sv\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_32148019\CRX_INSTALL\_locales\sw\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_32148019\CRX_INSTALL\_locales\ta\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_32148019\CRX_INSTALL\_locales\te\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_32148019\CRX_INSTALL\_locales\th\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_32148019\CRX_INSTALL\_locales\tr\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_32148019\CRX_INSTALL\_locales\uk\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_32148019\CRX_INSTALL\_locales\vi\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_32148019\CRX_INSTALL\_locales\zh\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_32148019\CRX_INSTALL\_locales\zh_TW\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_32148019\CRX_INSTALL\_metadata\verified_contents.json
ASCII text, with very long lines, with no line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_32148019\CRX_INSTALL\manifest.json
ASCII text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\alfredo\AppData\Local\Temp\scoped_dir1152_32148019\CRX_INSTALL\mirroring_webrtc.js
ASCII text, with very long lines
dropped
clean
C:\Users\alfredo\AppData\Roaming\Microsoft\Spelling\en-US\default.dic
Little-endian UTF-16 Unicode text, with no line terminators
dropped
clean
There are 135 hidden files, click here to show them.

URLs

Name
IP
Malicious
file:///C:/Users/alfredo/Desktop/T8778900.htm?bbre=lyEkgpYFoQSmVBxjnthW#/qwQDSlLbHKUpjZJGf-@&!HvpKldf45hPjcQxWSt@&!KOSvI4cgbML9q627jQkliGxAUsw@&-alex.eichenmuller@erickson.com-ShZUbziuvILCoXGdnrm/igmSLyucMVHnWUpRe
malicious

Domains

Name
IP
Malicious
valdia.quatiappcn.pw
104.21.53.100
malicious
stanappninaox.firebaseapp.com
199.36.158.100
clean
iost.kogodemcnd.com
104.21.90.39
clean
accounts.google.com
142.250.184.205
clean
cdnjs.cloudflare.com
104.16.18.94
clean
clients.l.google.com
142.250.185.238
clean
unpkg.com
104.16.125.175
clean
googlehosted.l.googleusercontent.com
142.250.186.33
clean
clients2.googleusercontent.com
unknown
clean
clients2.google.com
unknown
clean
secure.aadcdn.microsoftonline-p.com
unknown
clean
aadcdn.msauth.net
unknown
clean
There are 2 hidden domains, click here to show them.

IPs

IP
Domain
Country
Malicious
104.21.53.100
valdia.quatiappcn.pw
United States
malicious
142.250.184.195
unknown
United States
clean
34.104.35.123
unknown
United States
clean
192.168.2.1
unknown
unknown
clean
142.250.186.170
unknown
United States
clean
104.89.34.102
unknown
United States
clean
142.250.185.138
unknown
United States
clean
142.250.185.238
clients.l.google.com
United States
clean
192.168.2.3
unknown
unknown
clean
104.16.125.175
unpkg.com
United States
clean
199.36.158.100
stanappninaox.firebaseapp.com
United States
clean
13.107.213.45
unknown
United States
clean
239.255.255.250
unknown
Reserved
clean
172.217.18.106
unknown
United States
clean
169.254.68.153
unknown
Reserved
clean
142.250.184.205
accounts.google.com
United States
clean
142.250.184.227
unknown
United States
clean
104.21.90.39
iost.kogodemcnd.com
United States
clean
172.217.18.99
unknown
United States
clean
104.16.18.94
cdnjs.cloudflare.com
United States
clean
142.250.186.33
googlehosted.l.googleusercontent.com
United States
clean
127.0.0.1
unknown
unknown
clean
There are 12 hidden IPs, click here to show them.