Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\069be934-712e-44cf-8ced-a6c17b2dec9e.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\1ffc1065-fee4-4d41-b14a-d5ca02915ac3.tmp
|
SysEx File -
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\2cca4a96-ebc5-49fd-ae2c-40461fcb669f.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\37c7bdaf-74f9-4662-b279-6727742cfb72.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\45c713ed-ef41-486d-95ff-76e96d661224.tmp
|
ASCII text, with very long lines, with no line terminators
|
modified
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\7265c617-06b5-4016-b2ba-1798974f906e.tmp
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\87e6bd9f-6c1c-4d2b-91b5-63bf6ba15136.tmp
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\9d7915cf-bc6c-4295-aa28-ec0f4c504ca2.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\1294a89c-8528-4d26-94a5-08d1c5a4f1a5.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\174e825f-462d-4734-938e-4b41026fd945.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\1a42f81e-3257-4ab8-afbd-a0cf8e300491.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\2526132c-5ecf-4b64-8ebb-120a676e41ca.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\4db52df8-7db4-4261-ba95-ad167716883e.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\58d3c721-0179-4fa6-b9c0-f0a61c91f6a0.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\66c6ea69-0810-472b-8c17-e0fb0041c4a4.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.6_0\_metadata\computed_hashes.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\000003.log
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG.old (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Persistent State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferences (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences (copy)
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\GPUCache\data_1
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Network Persistent
State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\b097998c-f8eb-451a-8022-09ef45611805.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\GPUCache\data_1
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Network Persistent
State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\fdbc3643-bbd6-4842-86b0-af1c548700ee.tmp
|
ASCII text, with very long lines, with no line terminators
|
modified
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\b85ffec5-4ad0-4645-9099-2a33d504f0a0.tmp
|
very short file (no magic)
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\c4541e0b-aa3f-4139-aea1-34d6614b7808.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\daee1f78-bfab-4611-844c-74f8f409e3b6.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\000004.dbtmp
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\CURRENT (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\e57419b7-f5de-4c08-867a-402d56a34d63.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\f48982ce-5c09-4ecb-8dd8-ae6ad6f33eb3.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Browser
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Version
|
ASCII text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Module Info Cache (copy)
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\a32237fe-27d9-4a18-8f2d-a105f7654104.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\b18e3e02-a593-4bbf-93d5-870dfe6e62a7.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\e8634f42-ec4b-45b1-b27f-7fc53ddb33b2.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\4688_1738629425\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\4688_1738629425\_platform_specific\x86_64\pnacl_public_pnacl_json
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\4688_1738629425\_platform_specific\x86_64\pnacl_public_x86_64_crtbegin_for_eh_o
|
ELF 64-bit LSB relocatable, x86-64, version 1 (SYSV), not stripped
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\4688_1738629425\_platform_specific\x86_64\pnacl_public_x86_64_crtbegin_o
|
ELF 64-bit LSB relocatable, x86-64, version 1 (SYSV), not stripped
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\4688_1738629425\_platform_specific\x86_64\pnacl_public_x86_64_crtend_o
|
ELF 64-bit LSB relocatable, x86-64, version 1 (SYSV), not stripped
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\4688_1738629425\_platform_specific\x86_64\pnacl_public_x86_64_ld_nexe
|
ELF 64-bit LSB executable, x86-64, version 1 (SYSV), statically linked, BuildID[sha1]=7511538a3a6a0b862c772eace49075ed1bbe2377,
stripped
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\4688_1738629425\_platform_specific\x86_64\pnacl_public_x86_64_libcrt_platform_a
|
current ar archive
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\4688_1738629425\_platform_specific\x86_64\pnacl_public_x86_64_libgcc_a
|
current ar archive
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\4688_1738629425\_platform_specific\x86_64\pnacl_public_x86_64_libpnacl_irt_shim_a
|
current ar archive
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\4688_1738629425\_platform_specific\x86_64\pnacl_public_x86_64_libpnacl_irt_shim_dummy_a
|
current ar archive
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\4688_1738629425\_platform_specific\x86_64\pnacl_public_x86_64_pnacl_llc_nexe
|
ELF 64-bit LSB executable, x86-64, version 1 (SYSV), statically linked, BuildID[sha1]=309d6d3d463e6b1b0690f39eb226b1e4c469b2ce,
stripped
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\4688_1738629425\_platform_specific\x86_64\pnacl_public_x86_64_pnacl_sz_nexe
|
ELF 64-bit LSB executable, x86-64, version 1 (SYSV), statically linked, BuildID[sha1]=4b15de4ab227d5e46213978b8518d53c53ce1db9,
stripped
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\4688_1738629425\manifest.fingerprint
|
ASCII text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\4688_1738629425\manifest.json
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\4b3268b8-e62b-419c-a5ab-7ad14835c418.tmp
|
very short file (no magic)
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\7d960a85-5164-4df5-8068-874711c04c91.tmp
|
Google Chrome extension, version 3
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4688_1425286711\7d960a85-5164-4df5-8068-874711c04c91.tmp
|
Google Chrome extension, version 3
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4688_1425286711\CRX_INSTALL\_locales\bg\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4688_1425286711\CRX_INSTALL\_locales\ca\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4688_1425286711\CRX_INSTALL\_locales\cs\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4688_1425286711\CRX_INSTALL\_locales\da\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4688_1425286711\CRX_INSTALL\_locales\de\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4688_1425286711\CRX_INSTALL\_locales\el\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4688_1425286711\CRX_INSTALL\_locales\en\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4688_1425286711\CRX_INSTALL\_locales\en_GB\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4688_1425286711\CRX_INSTALL\_locales\es\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4688_1425286711\CRX_INSTALL\_locales\es_419\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4688_1425286711\CRX_INSTALL\_locales\et\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4688_1425286711\CRX_INSTALL\_locales\fi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4688_1425286711\CRX_INSTALL\_locales\fil\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4688_1425286711\CRX_INSTALL\_locales\fr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4688_1425286711\CRX_INSTALL\_locales\hi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4688_1425286711\CRX_INSTALL\_locales\hr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4688_1425286711\CRX_INSTALL\_locales\hu\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4688_1425286711\CRX_INSTALL\_locales\id\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4688_1425286711\CRX_INSTALL\_locales\it\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4688_1425286711\CRX_INSTALL\_locales\ja\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4688_1425286711\CRX_INSTALL\_locales\ko\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4688_1425286711\CRX_INSTALL\_locales\lt\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4688_1425286711\CRX_INSTALL\_locales\lv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4688_1425286711\CRX_INSTALL\_locales\nb\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4688_1425286711\CRX_INSTALL\_locales\nl\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4688_1425286711\CRX_INSTALL\_locales\pl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4688_1425286711\CRX_INSTALL\_locales\pt_BR\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4688_1425286711\CRX_INSTALL\_locales\pt_PT\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4688_1425286711\CRX_INSTALL\_locales\ro\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4688_1425286711\CRX_INSTALL\_locales\ru\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4688_1425286711\CRX_INSTALL\_locales\sk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4688_1425286711\CRX_INSTALL\_locales\sl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4688_1425286711\CRX_INSTALL\_locales\sr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4688_1425286711\CRX_INSTALL\_locales\sv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4688_1425286711\CRX_INSTALL\_locales\th\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4688_1425286711\CRX_INSTALL\_locales\tr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4688_1425286711\CRX_INSTALL\_locales\uk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4688_1425286711\CRX_INSTALL\_locales\vi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4688_1425286711\CRX_INSTALL\_locales\zh_CN\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4688_1425286711\CRX_INSTALL\_locales\zh_TW\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4688_1425286711\CRX_INSTALL\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4688_1425286711\CRX_INSTALL\craw_background.js
|
ASCII text, with very long lines
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4688_1425286711\CRX_INSTALL\craw_window.js
|
ASCII text, with very long lines
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4688_1425286711\CRX_INSTALL\css\craw_window.css
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4688_1425286711\CRX_INSTALL\html\craw_window.html
|
HTML document, ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4688_1425286711\CRX_INSTALL\images\flapper.gif
|
GIF image data, version 89a, 30 x 30
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4688_1425286711\CRX_INSTALL\images\icon_128.png
|
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4688_1425286711\CRX_INSTALL\images\icon_16.png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4688_1425286711\CRX_INSTALL\images\topbar_floating_button.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4688_1425286711\CRX_INSTALL\images\topbar_floating_button_close.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4688_1425286711\CRX_INSTALL\images\topbar_floating_button_hover.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4688_1425286711\CRX_INSTALL\images\topbar_floating_button_maximize.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4688_1425286711\CRX_INSTALL\images\topbar_floating_button_pressed.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4688_1425286711\CRX_INSTALL\manifest.json
|
ASCII text, with CRLF line terminators
|
dropped
|
There are 106 hidden files, click here to show them.
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --enable-automation "https://express.adobe.com/page/vCTYm3h0r9BmZ/
|
||
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1536,9034208647699705229,2968724141011212704,131072
--lang=en-GB --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1932 /prefetch:8
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
https://express.adobe.com/page/vCTYm3h0r9BmZ/
|
 |
||
|
https://storageapi.fleek.co/84e74610-b8bb-4d6b-b394-8b4c2ffd51df-bucket/loginlg.html
|
|
||
|
https://storageapi.fleek.co/84e74610-b8bb-4d6b-b394-8b4c2ffd51df-bucket/loginlg.html
|
104.18.7.145
|
|
|
|
https://dns.google
|
unknown
|
||
|
https://github.com/google/closure-library/wiki/goog.module:-an-ES6-module-like-alternative-to-goog.p
|
unknown
|
||
|
https://www.google.com/intl/en-US/chrome/blank.html
|
unknown
|
||
|
https://ogs.google.com
|
unknown
|
||
|
https://www.google.com/images/cleardot.gif
|
unknown
|
||
|
https://page.adobespark-assets.com/runtime/1.22/themes/crisp-fonts.gz.js
|
65.9.95.101
|
||
|
https://i.gyazo.com/214d89a26f0ac918a09f216a1b0f97b4.png
|
104.18.36.4
|
||
|
https://play.google.com
|
unknown
|
||
|
https://accounts.google.com/ListAccounts?gpsia=1&source=ChromiumBrowser&json=standard
|
142.250.203.109
|
||
|
https://payments.google.com/payments/v4/js/integrator.js
|
unknown
|
||
|
https://chromium.googlesource.com/a/native_client/pnacl-llvm.git
|
unknown
|
||
|
https://page.adobespark-assets.com/runtime/1.22/images/lightbox_close@2x.png
|
65.9.95.101
|
||
|
https://page.adobespark-assets.com/runtime/1.22/images/left-arrow.png
|
65.9.95.101
|
||
|
https://page.adobespark-assets.com/runtime/1.22/typekit-load.gz.js
|
65.9.95.101
|
||
|
https://sandbox.google.com/payments/v4/js/integrator.js
|
unknown
|
||
|
https://www.google.com/images/x2.gif
|
unknown
|
||
|
https://page.adobespark-assets.com/runtime/1.22/base-fonts.gz.js
|
65.9.95.101
|
||
|
https://clients2.google.com/service/update2/crx?os=win&arch=x64&os_arch=x86_64&nacl_arch=x86-64&prod=chromecrx&prodchannel=&prodversion=85.0.4183.121&lang=en-GB&acceptformat=crx3&x=id%3Dnmmhkkegccagdldgiimedpiccmgmieda%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1&x=id%3Dpkedcjkdefgpdelpbcmbmeomcjbeemfm%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1
|
216.58.215.238
|
||
|
https://accounts.google.com/MergeSession
|
unknown
|
||
|
http://llvm.org/):
|
unknown
|
||
|
https://www.google.com
|
unknown
|
||
|
https://page.adobespark-assets.com/runtime/1.22/images/favicon.ico
|
65.9.95.101
|
||
|
https://www.google.com/images/dot2.gif
|
unknown
|
||
|
https://page.adobespark-assets.com/runtime/1.22/images/right-arrow.png
|
65.9.95.101
|
||
|
https://code.google.com/p/nativeclient/issues/entry%s:
|
unknown
|
||
|
https://cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js
|
104.17.25.14
|
||
|
https://code.google.com/p/nativeclient/issues/entry
|
unknown
|
||
|
https://accounts.google.com
|
unknown
|
||
|
https://unpkg.com/axios/dist/axios.min.js
|
104.16.122.175
|
||
|
https://page.adobespark-assets.com/runtime/1.22/runtime-prod.gz.js
|
65.9.95.101
|
||
|
https://clients2.googleusercontent.com
|
unknown
|
||
|
https://apis.google.com
|
unknown
|
||
|
https://page.adobespark-assets.com/runtime/1.22/runtime.gz.css
|
65.9.95.101
|
||
|
https://unpkg.com/axios@0.27.2/dist/axios.min.js
|
104.16.122.175
|
||
|
https://www.google.com/accounts/OAuthLogin?issueuberauth=1
|
unknown
|
||
|
https://www.google.com/
|
unknown
|
||
|
https://www-googleapis-staging.sandbox.google.com
|
unknown
|
||
|
https://page.adobespark-assets.com/runtime/1.22/noscript.gz.css
|
65.9.95.101
|
||
|
https://chromium.googlesource.com/a/native_client/pnacl-clang.git
|
unknown
|
||
|
https://clients2.google.com
|
unknown
|
||
|
https://clients2.google.com/service/update2/crx
|
unknown
|
There are 33 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
accounts.google.com
|
142.250.203.109
|
||
|
cdnjs.cloudflare.com
|
104.17.25.14
|
||
|
i.gyazo.com
|
104.18.36.4
|
||
|
express-prod.adobeprojectm.com
|
65.9.95.52
|
||
|
storageapi.fleek.co
|
104.18.7.145
|
||
|
cs1227.wpc.alphacdn.net
|
192.229.221.185
|
||
|
clients.l.google.com
|
216.58.215.238
|
||
|
unpkg.com
|
104.16.122.175
|
||
|
page.adobespark-assets.com
|
65.9.95.101
|
||
|
use.typekit.net
|
unknown
|
||
|
clients2.google.com
|
unknown
|
||
|
p.typekit.net
|
unknown
|
There are 2 hidden domains, click here to show them.
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
65.9.95.101
|
page.adobespark-assets.com
|
United States
|
||
|
104.16.122.175
|
unpkg.com
|
United States
|
||
|
192.168.2.1
|
unknown
|
unknown
|
||
|
216.58.215.238
|
clients.l.google.com
|
United States
|
||
|
104.18.7.145
|
storageapi.fleek.co
|
United States
|
||
|
239.255.255.250
|
unknown
|
Reserved
|
||
|
192.229.221.185
|
cs1227.wpc.alphacdn.net
|
United States
|
||
|
65.9.95.52
|
express-prod.adobeprojectm.com
|
United States
|
||
|
127.0.0.1
|
unknown
|
unknown
|
||
|
104.17.25.14
|
cdnjs.cloudflare.com
|
United States
|
||
|
142.250.203.109
|
accounts.google.com
|
United States
|
||
|
104.18.36.4
|
i.gyazo.com
|
United States
|
There are 2 hidden IPs, click here to show them.
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Google\Update\ClientStateMedium\{8A69D345-D564-463C-AFF1-A69D9E530F96}\LastWasDefault
|
S-1-5-21-3853321935-2125563209-4053062332-1002
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
ahfgeienlihckogmohjhadlkjgocpleb
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gdaefkejpgkiemlaofpalmlakkmbjdnl
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gfdkimpbcpahaombhbimeihdjnejgicl
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
kmendfapggjehodndflmmgagdbamhnfd
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
mfehgcgbbipciphmccgaenjidiccnmng
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
mhjfbmdgcfjbbpaeojofohoefgiehjai
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
neajdppkdcdipfabeoofebfddakdcjhd
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nkeimhogjdpnpccoofpliimaahmaaome
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
pkedcjkdefgpdelpbcmbmeomcjbeemfm
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
prefs.preference_reset_time
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gfdkimpbcpahaombhbimeihdjnejgicl
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
|
state
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
|
StatusCodes
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
|
StatusCodes
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
|
state
|
||
|
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
|
dr
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.reporting
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
module_blacklist_cache_md5_digest
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
media.storage_id_salt
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.last_account_id
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.account_id
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.prompt_seed
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_homepage
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
default_search_provider_data.template_url_data
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
safebrowsing.incidents_sent
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
pinned_tabs
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
search_provider_overrides
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_default_search
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
prefs.preference_reset_time
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.last_username
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
session.startup_urls
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
session.restore_on_startup
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.prompt_version
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_startup_urls
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.prompt_wave
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
homepage
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
homepage_is_newtabpage
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
browser.show_home_button
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\StabilityMetrics
|
user_experience_metrics.stability.exited_cleanly
|
||
|
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
|
lastrun
|
There are 34 hidden registries, click here to show them.
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
9FA34FE000
|
stack
|
page read and write
|
||
|
26977713000
|
heap
|
page read and write
|
||
|
2C3F05E0000
|
remote allocation
|
page read and write
|
||
|
1C74B658000
|
heap
|
page read and write
|
||
|
9FA357E000
|
stack
|
page read and write
|
||
|
1C74B695000
|
heap
|
page read and write
|
||
|
1CFD95E0000
|
trusted library allocation
|
page read and write
|
||
|
2C3F0663000
|
heap
|
page read and write
|
||
|
1C751070000
|
trusted library allocation
|
page read and write
|
||
|
1C74BF59000
|
heap
|
page read and write
|
||
|
488197C000
|
stack
|
page read and write
|
||
|
26977700000
|
heap
|
page read and write
|
||
|
18BF3FD0000
|
remote allocation
|
page read and write
|
||
|
1C74B6FE000
|
heap
|
page read and write
|
||
|
1C74B560000
|
trusted library allocation
|
page read and write
|
||
|
E0FF07E000
|
stack
|
page read and write
|
||
|
2C3F0658000
|
heap
|
page read and write
|
||
|
2C3F062A000
|
heap
|
page read and write
|
||
|
18BF3E30000
|
heap
|
page read and write
|
||
|
1C750ED0000
|
trusted library allocation
|
page read and write
|
||
|
1C750AE0000
|
trusted library allocation
|
page read and write
|
||
|
1C74B600000
|
heap
|
page read and write
|
||
|
12753C10000
|
heap
|
page read and write
|
||
|
1C74B690000
|
heap
|
page read and write
|
||
|
B65597F000
|
stack
|
page read and write
|
||
|
24A61C40000
|
heap
|
page read and write
|
||
|
1C74B6BC000
|
heap
|
page read and write
|
||
|
CE0CAFE000
|
stack
|
page read and write
|
||
|
1957B229000
|
heap
|
page read and write
|
||
|
1C750D02000
|
heap
|
page read and write
|
||
|
1C750D09000
|
heap
|
page read and write
|
||
|
1C74BE02000
|
heap
|
page read and write
|
||
|
2C3F0648000
|
heap
|
page read and write
|
||
|
1957AFB0000
|
heap
|
page read and write
|
||
|
24A61C60000
|
heap
|
page read and write
|
||
|
12753F02000
|
heap
|
page read and write
|
||
|
E0FEB7F000
|
stack
|
page read and write
|
||
|
1CFD96CC000
|
heap
|
page read and write
|
||
|
1C750A80000
|
trusted library allocation
|
page read and write
|
||
|
1C750D02000
|
heap
|
page read and write
|
||
|
1C74BF59000
|
heap
|
page read and write
|
||
|
4FA27E000
|
stack
|
page read and write
|
||
|
8C93FF000
|
stack
|
page read and write
|
||
|
44D46FE000
|
stack
|
page read and write
|
||
|
24A61C31000
|
heap
|
page read and write
|
||
|
8C967E000
|
stack
|
page read and write
|
||
|
1C750F60000
|
remote allocation
|
page read and write
|
||
|
1957B25D000
|
heap
|
page read and write
|
||
|
1C750E40000
|
trusted library allocation
|
page read and write
|
||
|
2C3F05A0000
|
trusted library allocation
|
page read and write
|
||
|
24A61C62000
|
heap
|
page read and write
|
||
|
1C74B702000
|
heap
|
page read and write
|
||
|
26977628000
|
heap
|
page read and write
|
||
|
44D42FE000
|
stack
|
page read and write
|
||
|
24FC7FD0000
|
trusted library allocation
|
page read and write
|
||
|
24A61C6F000
|
heap
|
page read and write
|
||
|
24A61B10000
|
heap
|
page read and write
|
||
|
24A61B70000
|
heap
|
page read and write
|
||
|
18BF3FD0000
|
remote allocation
|
page read and write
|
||
|
1C74BE00000
|
heap
|
page read and write
|
||
|
24A61C6D000
|
heap
|
page read and write
|
||
|
1C750D1A000
|
heap
|
page read and write
|
||
|
1C750C9A000
|
heap
|
page read and write
|
||
|
1C750E44000
|
trusted library allocation
|
page read and write
|
||
|
24A61C46000
|
heap
|
page read and write
|
||
|
24A61C26000
|
heap
|
page read and write
|
||
|
488156B000
|
stack
|
page read and write
|
||
|
1C750E30000
|
trusted library allocation
|
page read and write
|
||
|
1957B266000
|
heap
|
page read and write
|
||
|
1C74BF18000
|
heap
|
page read and write
|
||
|
12754602000
|
trusted library allocation
|
page read and write
|
||
|
1C74C5E0000
|
trusted library allocation
|
page read and write
|
||
|
1C750D25000
|
heap
|
page read and write
|
||
|
79DDD0B000
|
stack
|
page read and write
|
||
|
1C750CE5000
|
heap
|
page read and write
|
||
|
1C74BF18000
|
heap
|
page read and write
|
||
|
8C8B7E000
|
stack
|
page read and write
|
||
|
44D41FE000
|
stack
|
page read and write
|
||
|
1C74C700000
|
trusted library section
|
page readonly
|
||
|
1C750C43000
|
heap
|
page read and write
|
||
|
CE0C97E000
|
stack
|
page read and write
|
||
|
24A62602000
|
trusted library allocation
|
page read and write
|
||
|
18BF3FA0000
|
trusted library allocation
|
page read and write
|
||
|
24FC7FA0000
|
heap
|
page read and write
|
||
|
1C750F20000
|
trusted library allocation
|
page read and write
|
||
|
24FC7F40000
|
heap
|
page read and write
|
||
|
1C74B5D1000
|
trusted library allocation
|
page read and write
|
||
|
24FC803C000
|
heap
|
page read and write
|
||
|
18BF4102000
|
heap
|
page read and write
|
||
|
9FA397F000
|
stack
|
page read and write
|
||
|
1C750CE5000
|
heap
|
page read and write
|
||
|
E0FED7E000
|
stack
|
page read and write
|
||
|
24A61C67000
|
heap
|
page read and write
|
||
|
1C750D13000
|
heap
|
page read and write
|
||
|
1C74B675000
|
heap
|
page read and write
|
||
|
12753BB0000
|
heap
|
page read and write
|
||
|
1957BA02000
|
trusted library allocation
|
page read and write
|
||
|
4FA77F000
|
stack
|
page read and write
|
||
|
24A61C13000
|
heap
|
page read and write
|
||
|
1C74B5F3000
|
trusted library allocation
|
page read and write
|
||
|
1957B263000
|
heap
|
page read and write
|
||
|
1C74BF18000
|
heap
|
page read and write
|
||
|
9FA347B000
|
stack
|
page read and write
|
||
|
24A61C58000
|
heap
|
page read and write
|
||
|
1CFD9480000
|
heap
|
page read and write
|
||
|
1C750E0E000
|
trusted library allocation
|
page read and write
|
||
|
2C3F0570000
|
trusted library allocation
|
page read and write
|
||
|
1C750F60000
|
remote allocation
|
page read and write
|
||
|
2C3F0657000
|
heap
|
page read and write
|
||
|
79DE27B000
|
stack
|
page read and write
|
||
|
2C3F0600000
|
heap
|
page read and write
|
||
|
79DE57B000
|
stack
|
page read and write
|
||
|
24FC8100000
|
heap
|
page read and write
|
||
|
2C3F03F0000
|
heap
|
page read and write
|
||
|
44D417E000
|
stack
|
page read and write
|
||
|
24FC8000000
|
heap
|
page read and write
|
||
|
E0FEF7D000
|
stack
|
page read and write
|
||
|
8C917B000
|
stack
|
page read and write
|
||
|
1C750CA3000
|
heap
|
page read and write
|
||
|
2C3F0613000
|
heap
|
page read and write
|
||
|
1957B282000
|
heap
|
page read and write
|
||
|
1C750E20000
|
trusted library allocation
|
page read and write
|
||
|
24A61C3A000
|
heap
|
page read and write
|
||
|
1957AFC0000
|
heap
|
page read and write
|
||
|
1CFD9686000
|
heap
|
page read and write
|
||
|
12753E56000
|
heap
|
page read and write
|
||
|
2C3F0450000
|
heap
|
page read and write
|
||
|
CE0C8FF000
|
stack
|
page read and write
|
||
|
1C74BF00000
|
heap
|
page read and write
|
||
|
1C750F70000
|
trusted library allocation
|
page read and write
|
||
|
24A61C84000
|
heap
|
page read and write
|
||
|
12753F13000
|
heap
|
page read and write
|
||
|
1CFD96DF000
|
heap
|
page read and write
|
||
|
1C74BE15000
|
heap
|
page read and write
|
||
|
1C74B3F0000
|
heap
|
page read and write
|
||
|
24FC802A000
|
heap
|
page read and write
|
||
|
8C957C000
|
stack
|
page read and write
|
||
|
269774E0000
|
heap
|
page read and write
|
||
|
1C750C00000
|
heap
|
page read and write
|
||
|
1C750C84000
|
heap
|
page read and write
|
||
|
1C750D02000
|
heap
|
page read and write
|
||
|
9FA377E000
|
stack
|
page read and write
|
||
|
24A61C64000
|
heap
|
page read and write
|
||
|
24A61C44000
|
heap
|
page read and write
|
||
|
1957B25F000
|
heap
|
page read and write
|
||
|
12753E13000
|
heap
|
page read and write
|
||
|
8C907A000
|
stack
|
page read and write
|
||
|
8C91FF000
|
stack
|
page read and write
|
||
|
24FC805C000
|
heap
|
page read and write
|
||
|
2C3F2102000
|
heap
|
page read and write
|
||
|
24FC804E000
|
heap
|
page read and write
|
||
|
24A61C41000
|
heap
|
page read and write
|
||
|
1C74B5F0000
|
trusted library allocation
|
page read and write
|
||
|
B655E7E000
|
stack
|
page read and write
|
||
|
2C3F2002000
|
heap
|
page read and write
|
||
|
24A61C42000
|
heap
|
page read and write
|
||
|
CE0CCF7000
|
stack
|
page read and write
|
||
|
26977580000
|
trusted library allocation
|
page read and write
|
||
|
E0FE5CC000
|
stack
|
page read and write
|
||
|
1CFD9702000
|
heap
|
page read and write
|
||
|
CE0CA7B000
|
stack
|
page read and write
|
||
|
1957B200000
|
heap
|
page read and write
|
||
|
1C74C710000
|
trusted library section
|
page readonly
|
||
|
1C750CE5000
|
heap
|
page read and write
|
||
|
1C750E04000
|
trusted library allocation
|
page read and write
|
||
|
24A61C6B000
|
heap
|
page read and write
|
||
|
1C74B713000
|
heap
|
page read and write
|
||
|
1CFD9671000
|
heap
|
page read and write
|
||
|
8C8D7B000
|
stack
|
page read and write
|
||
|
26977550000
|
heap
|
page read and write
|
||
|
1957B259000
|
heap
|
page read and write
|
||
|
2C3F1FA0000
|
trusted library allocation
|
page read and write
|
||
|
2C3F0658000
|
heap
|
page read and write
|
||
|
24FC8013000
|
heap
|
page read and write
|
||
|
12753BA0000
|
heap
|
page read and write
|
||
|
1CFD9E02000
|
heap
|
page read and write
|
||
|
18BF4013000
|
heap
|
page read and write
|
||
|
12753E5B000
|
heap
|
page read and write
|
||
|
2C3F0713000
|
heap
|
page read and write
|
||
|
1957B313000
|
heap
|
page read and write
|
||
|
1C750F50000
|
trusted library allocation
|
page read and write
|
||
|
CE0CDFE000
|
stack
|
page read and write
|
||
|
18BF4057000
|
heap
|
page read and write
|
||
|
8C937F000
|
stack
|
page read and write
|
||
|
2C3F0647000
|
heap
|
page read and write
|
||
|
1C750D17000
|
heap
|
page read and write
|
||
|
12753E50000
|
heap
|
page read and write
|
||
|
8C927E000
|
stack
|
page read and write
|
||
|
1C750D02000
|
heap
|
page read and write
|
||
|
1957B254000
|
heap
|
page read and write
|
||
|
B655C7B000
|
stack
|
page read and write
|
||
|
8C8C78000
|
stack
|
page read and write
|
||
|
18BF4002000
|
heap
|
page read and write
|
||
|
1C74BF9A000
|
heap
|
page read and write
|
||
|
18BF4802000
|
trusted library allocation
|
page read and write
|
||
|
26977668000
|
heap
|
page read and write
|
||
|
44D43FD000
|
stack
|
page read and write
|
||
|
1C74CA60000
|
trusted library allocation
|
page read and write
|
||
|
1957B213000
|
heap
|
page read and write
|
||
|
24A61C3D000
|
heap
|
page read and write
|
||
|
24A61C79000
|
heap
|
page read and write
|
||
|
24A61C4E000
|
heap
|
page read and write
|
||
|
1C750CFC000
|
heap
|
page read and write
|
||
|
44D457D000
|
stack
|
page read and write
|
||
|
24A61C47000
|
heap
|
page read and write
|
||
|
24FC8064000
|
heap
|
page read and write
|
||
|
E0FEE7C000
|
stack
|
page read and write
|
||
|
1CFD9629000
|
heap
|
page read and write
|
||
|
1CFD966A000
|
heap
|
page read and write
|
||
|
1C74BF18000
|
heap
|
page read and write
|
||
|
1C74C101000
|
trusted library allocation
|
page read and write
|
||
|
1C74C6F0000
|
trusted library section
|
page readonly
|
||
|
4FAA7F000
|
stack
|
page read and write
|
||
|
1C74C6C0000
|
trusted library section
|
page readonly
|
||
|
1C750C99000
|
heap
|
page read and write
|
||
|
2C3F05E0000
|
remote allocation
|
page read and write
|
||
|
1C74BF13000
|
heap
|
page read and write
|
||
|
44D3CCB000
|
stack
|
page read and write
|
||
|
1C750CAC000
|
heap
|
page read and write
|
||
|
1C750E08000
|
trusted library allocation
|
page read and write
|
||
|
1C750CD4000
|
heap
|
page read and write
|
||
|
1C750C2C000
|
heap
|
page read and write
|
||
|
26977664000
|
heap
|
page read and write
|
||
|
8C8A7C000
|
stack
|
page read and write
|
||
|
1C750C1F000
|
heap
|
page read and write
|
||
|
24FC8113000
|
heap
|
page read and write
|
||
|
1C750F60000
|
trusted library allocation
|
page read and write
|
||
|
1C750F60000
|
remote allocation
|
page read and write
|
||
|
1957B302000
|
heap
|
page read and write
|
||
|
1C74C400000
|
trusted library allocation
|
page read and write
|
||
|
1C750E01000
|
trusted library allocation
|
page read and write
|
||
|
12753E76000
|
heap
|
page read and write
|
||
|
18BF3E40000
|
heap
|
page read and write
|
||
|
4881CFE000
|
stack
|
page read and write
|
||
|
1957B120000
|
trusted library allocation
|
page read and write
|
||
|
1C750E30000
|
trusted library allocation
|
page read and write
|
||
|
1C74B6B5000
|
heap
|
page read and write
|
||
|
24FC8082000
|
heap
|
page read and write
|
||
|
1957B23C000
|
heap
|
page read and write
|
||
|
24A61B00000
|
heap
|
page read and write
|
||
|
2C3F0602000
|
heap
|
page read and write
|
||
|
24A61C5C000
|
heap
|
page read and write
|
||
|
1C74B68E000
|
heap
|
page read and write
|
||
|
1C750E24000
|
trusted library allocation
|
page read and write
|
||
|
26977613000
|
heap
|
page read and write
|
||
|
4FA47F000
|
stack
|
page read and write
|
||
|
24A61C7D000
|
heap
|
page read and write
|
||
|
26977702000
|
heap
|
page read and write
|
||
|
1957B25B000
|
heap
|
page read and write
|
||
|
18BF4051000
|
heap
|
page read and write
|
||
|
12753D10000
|
trusted library allocation
|
page read and write
|
||
|
1957B261000
|
heap
|
page read and write
|
||
|
269774F0000
|
heap
|
page read and write
|
||
|
12753E41000
|
heap
|
page read and write
|
||
|
1CFD94E0000
|
heap
|
page read and write
|
||
|
24A61C7B000
|
heap
|
page read and write
|
||
|
1CFD9F00000
|
heap
|
page read and write
|
||
|
24FC8061000
|
heap
|
page read and write
|
||
|
2C3F0550000
|
trusted library allocation
|
page read and write
|
||
|
E0FEC7E000
|
stack
|
page read and write
|
||
|
24A61C3F000
|
heap
|
page read and write
|
||
|
1C74B68B000
|
heap
|
page read and write
|
||
|
1C750CE7000
|
heap
|
page read and write
|
||
|
24FC805E000
|
heap
|
page read and write
|
||
|
26977640000
|
heap
|
page read and write
|
||
|
1C750F50000
|
trusted library allocation
|
page read and write
|
||
|
24FC8A02000
|
trusted library allocation
|
page read and write
|
||
|
1C74B460000
|
heap
|
page read and write
|
||
|
18BF3FD0000
|
remote allocation
|
page read and write
|
||
|
1C750A60000
|
trusted library allocation
|
page read and write
|
||
|
24A61BA0000
|
trusted library allocation
|
page read and write
|
||
|
1C750CF1000
|
heap
|
page read and write
|
||
|
B6553AB000
|
stack
|
page read and write
|
||
|
24A61C57000
|
heap
|
page read and write
|
||
|
24A61C5E000
|
heap
|
page read and write
|
||
|
4881AFB000
|
stack
|
page read and write
|
||
|
E0FF17C000
|
stack
|
page read and write
|
||
|
4FA17B000
|
stack
|
page read and write
|
||
|
12753E00000
|
heap
|
page read and write
|
||
|
1C750E21000
|
trusted library allocation
|
page read and write
|
||
|
24A61C69000
|
heap
|
page read and write
|
||
|
8C8E7A000
|
stack
|
page read and write
|
||
|
4FA37C000
|
stack
|
page read and write
|
||
|
4FA97F000
|
stack
|
page read and write
|
||
|
24A61C00000
|
heap
|
page read and write
|
||
|
1CFD96C3000
|
heap
|
page read and write
|
||
|
2C3F0702000
|
heap
|
page read and write
|
||
|
1957B308000
|
heap
|
page read and write
|
||
|
1C74B679000
|
heap
|
page read and write
|
||
|
1957B300000
|
heap
|
page read and write
|
||
|
2697767C000
|
heap
|
page read and write
|
||
|
24A61C7A000
|
heap
|
page read and write
|
||
|
1C74B63E000
|
heap
|
page read and write
|
||
|
8C947F000
|
stack
|
page read and write
|
||
|
2C3F0648000
|
heap
|
page read and write
|
||
|
24A61C75000
|
heap
|
page read and write
|
||
|
24A61C61000
|
heap
|
page read and write
|
||
|
1C750F10000
|
trusted library allocation
|
page read and write
|
||
|
1C750D08000
|
heap
|
page read and write
|
||
|
1C750C3C000
|
heap
|
page read and write
|
||
|
24FC7F30000
|
heap
|
page read and write
|
||
|
44D467D000
|
stack
|
page read and write
|
||
|
1C750F30000
|
trusted library allocation
|
page read and write
|
||
|
24A61C74000
|
heap
|
page read and write
|
||
|
18BF403D000
|
heap
|
page read and write
|
||
|
1CFD9713000
|
heap
|
page read and write
|
||
|
1C74B69F000
|
heap
|
page read and write
|
||
|
1C750CDB000
|
heap
|
page read and write
|
||
|
26977602000
|
heap
|
page read and write
|
||
|
1C750A70000
|
trusted library allocation
|
page read and write
|
||
|
18BF3EA0000
|
heap
|
page read and write
|
||
|
12753E02000
|
heap
|
page read and write
|
||
|
48819FE000
|
stack
|
page read and write
|
||
|
1957B226000
|
heap
|
page read and write
|
||
|
18BF4029000
|
heap
|
page read and write
|
||
|
24A61C45000
|
heap
|
page read and write
|
||
|
B655F7E000
|
stack
|
page read and write
|
||
|
2C3F0700000
|
heap
|
page read and write
|
||
|
24A61D02000
|
heap
|
page read and write
|
||
|
26978002000
|
trusted library allocation
|
page read and write
|
||
|
1C750D19000
|
heap
|
page read and write
|
||
|
18BF4000000
|
heap
|
page read and write
|
||
|
24A61C7E000
|
heap
|
page read and write
|
||
|
24FC8108000
|
heap
|
page read and write
|
||
|
1C74BF02000
|
heap
|
page read and write
|
||
|
1C74B570000
|
trusted library section
|
page read and write
|
||
|
B655BFC000
|
stack
|
page read and write
|
||
|
1C750CFA000
|
heap
|
page read and write
|
||
|
1C74B400000
|
heap
|
page read and write
|
||
|
1C74C6E0000
|
trusted library section
|
page readonly
|
||
|
1C750F40000
|
trusted library allocation
|
page read and write
|
||
|
B655D7D000
|
stack
|
page read and write
|
||
|
4FA87E000
|
stack
|
page read and write
|
||
|
1C750E00000
|
trusted library allocation
|
page read and write
|
||
|
24A61C5A000
|
heap
|
page read and write
|
||
|
2C3F05E0000
|
remote allocation
|
page read and write
|
||
|
79DE37E000
|
stack
|
page read and write
|
||
|
1C750CF1000
|
heap
|
page read and write
|
||
|
2C3F0718000
|
heap
|
page read and write
|
||
|
1C74B62A000
|
heap
|
page read and write
|
||
|
CE0CFFF000
|
stack
|
page read and write
|
||
|
B655A7F000
|
stack
|
page read and write
|
||
|
1C74BF59000
|
heap
|
page read and write
|
||
|
4881DFE000
|
stack
|
page read and write
|
||
|
2C3F0682000
|
heap
|
page read and write
|
||
|
488187D000
|
stack
|
page read and write
|
||
|
1957B276000
|
heap
|
page read and write
|
||
|
CE0CEFC000
|
stack
|
page read and write
|
||
|
CE0C87B000
|
stack
|
page read and write
|
||
|
4FA57D000
|
stack
|
page read and write
|
||
|
12753E29000
|
heap
|
page read and write
|
||
|
2C3F03E0000
|
heap
|
page read and write
|
||
|
1C750E00000
|
trusted library allocation
|
page read and write
|
||
|
2C3F063D000
|
heap
|
page read and write
|
||
|
1C750D25000
|
heap
|
page read and write
|
||
|
44D447E000
|
stack
|
page read and write
|
||
|
4881BF7000
|
stack
|
page read and write
|
||
|
1C750CE3000
|
heap
|
page read and write
|
||
|
1C750C49000
|
heap
|
page read and write
|
||
|
1C74C6D0000
|
trusted library section
|
page readonly
|
||
|
4F9D3B000
|
stack
|
page read and write
|
||
|
1CFD9613000
|
heap
|
page read and write
|
||
|
24A61C5F000
|
heap
|
page read and write
|
||
|
9FA387E000
|
stack
|
page read and write
|
||
|
24FC8058000
|
heap
|
page read and write
|
||
|
79DE47E000
|
stack
|
page read and write
|
||
|
1CFD9688000
|
heap
|
page read and write
|
||
|
1C750CA3000
|
heap
|
page read and write
|
||
|
B6557FC000
|
stack
|
page read and write
|
||
|
CE0CBFB000
|
stack
|
page read and write
|
||
|
24A61C5B000
|
heap
|
page read and write
|
||
|
4FA67E000
|
stack
|
page read and write
|
||
|
26977656000
|
heap
|
page read and write
|
||
|
24FC805A000
|
heap
|
page read and write
|
||
|
26977600000
|
heap
|
page read and write
|
||
|
24A61C29000
|
heap
|
page read and write
|
||
|
1CFD9645000
|
heap
|
page read and write
|
||
|
48815EE000
|
stack
|
page read and write
|
||
|
24A61C63000
|
heap
|
page read and write
|
||
|
1CFD96BB000
|
heap
|
page read and write
|
||
|
1C74BF59000
|
heap
|
page read and write
|
||
|
1C750D25000
|
heap
|
page read and write
|
||
|
1C750CFA000
|
heap
|
page read and write
|
||
|
12753E65000
|
heap
|
page read and write
|
||
|
1C74B670000
|
heap
|
page read and write
|
||
|
B655AFC000
|
stack
|
page read and write
|
||
|
E0FE9FC000
|
stack
|
page read and write
|
||
|
1C750D1B000
|
heap
|
page read and write
|
||
|
1C74B613000
|
heap
|
page read and write
|
||
|
1CFD9470000
|
heap
|
page read and write
|
||
|
1C750C5F000
|
heap
|
page read and write
|
||
|
1CFD9600000
|
heap
|
page read and write
|
||
|
24FC8102000
|
heap
|
page read and write
|
||
|
8C92FF000
|
stack
|
page read and write
|
||
|
8C8F7E000
|
stack
|
page read and write
|
||
|
1C750AF0000
|
trusted library allocation
|
page read and write
|
||
|
1C750CFC000
|
heap
|
page read and write
|
||
|
1957B020000
|
heap
|
page read and write
|
There are 388 hidden memdumps, click here to show them.
DOM / HTML
|
URL
|
Malicious
|
|
|---|---|---|
|
https://storageapi.fleek.co/84e74610-b8bb-4d6b-b394-8b4c2ffd51df-bucket/loginlg.html
|
|
|
|
https://express.adobe.com/page/vCTYm3h0r9BmZ/
|
||
|
https://express.adobe.com/page/vCTYm3h0r9BmZ/?page-mode=static
|