IOC Report
https://youtu.be/BKUwZGqpxXY

loading gif

Processes

Path
Cmdline
Malicious
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1960 --field-trial-handle=1764,i,1761891885139680210,6239086101532742970,131072 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationTargetPrediction /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe" "https://youtu.be/BKUwZGqpxXY
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=5480 --field-trial-handle=1764,i,1761891885139680210,6239086101532742970,131072 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationTargetPrediction /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3820 --field-trial-handle=1764,i,1761891885139680210,6239086101532742970,131072 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationTargetPrediction /prefetch:8

URLs

Name
IP
Malicious
https://youtu.be/BKUwZGqpxXY
https://accounts.google.com/v3/signin/identifier?dsh=S-1022972884%3A1664804396065157&continue=https%3A%2F%2Fwww.youtube.com%2Fsignin%3Faction_handle_signin%3Dtrue%26app%3Ddesktop%26hl%3Den%26next%3D%252Fsignin_passive%26feature%3Dpassive&hl=en&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&ifkv=AQDHYWra2-WDKfFJKSlBM-GWwkRYHfidvNjzEdO1dbNHFk8l-eLNXtaTgzJbseMLBelkXdkd-3ha
142.250.203.109
https://accounts.google.com/ServiceLogin?service=youtube&uilel=3&passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Fsignin%3Faction_handle_signin%3Dtrue%26app%3Ddesktop%26hl%3Den%26next%3D%252Fsignin_passive%26feature%3Dpassive&hl=en
142.250.203.109
https://www.youtube.com/s/desktop/a3a2ae5f/jsbin/desktop_polymer.vflset/desktop_polymer.js
172.217.168.14
https://www.youtube.com/sw.js
172.217.168.14
https://www.google.com/js/th/VM1LbcxuQZ7urdjSm15-Kft2IdlldgxYJTjOL3p1Mjw.js
142.250.203.100
https://www.youtube.com/s/player/a336babc/player_ias.vflset/en_US/miniplayer.js
172.217.168.14
https://www.youtube.com/s/search/audio/open.mp3
172.217.168.14
https://i.ytimg.com/vi/lpinwHPBmuY/hqdefault.jpg?sqp=-oaymwEbCKgBEF5IVfKriqkDDggBFQAAiEIYAXABwAEG&rs=AOn4CLCQaypNHXiK5Fhvz5v12J1lnO7OZQ
172.217.168.54
https://www.youtube.com/s/search/audio/failure.mp3
172.217.168.14
https://i.ytimg.com/vi/41i5AaxcwUA/hqdefault.jpg?sqp=-oaymwEbCKgBEF5IVfKriqkDDggBFQAAiEIYAXABwAEG&rs=AOn4CLBwMZvo67pstXVQJYZdlCXQdMQUcA
172.217.168.54
https://www.youtube.com/s/player/a336babc/player_ias.vflset/en_US/base.js
172.217.168.14
https://r3---sn-4g5ednkl.googlevideo.com/generate_204
173.194.10.104
https://www.youtube.com/s/player/a336babc/www-player.css
172.217.168.14
https://i.ytimg.com/generate_204
172.217.168.54
https://www.youtube.com/s/desktop/a3a2ae5f/jsbin/scheduler.vflset/scheduler.js
172.217.168.14
https://www.youtube.com/s/search/audio/no_input.mp3
172.217.168.14
https://www.youtube.com/watch?v=BKUwZGqpxXY&feature=youtu.be
172.217.168.14
https://www.youtube.com/s/desktop/a3a2ae5f/jsbin/network.vflset/network.js
172.217.168.14
https://i.ytimg.com/vi/4cRp2EffKgY/hqdefault.jpg?sqp=-oaymwEbCKgBEF5IVfKriqkDDggBFQAAiEIYAXABwAEG&rs=AOn4CLDK8QQXzirTRust6CkVm9JBOQQpIg
172.217.168.54
https://youtu.be/BKUwZGqpxXY
172.217.168.14
https://www.youtube.com/s/desktop/a3a2ae5f/jsbin/custom-elements-es5-adapter.vflset/custom-elements-es5-adapter.js
172.217.168.14
https://www.youtube.com/generate_204?YFasmg
172.217.168.14
https://i.ytimg.com/vi/q0i_0PiguEI/hqdefault.jpg?sqp=-oaymwEbCKgBEF5IVfKriqkDDggBFQAAiEIYAXABwAEG&rs=AOn4CLBfezge_INPTo5BBL3djNUhXUabUA
172.217.168.54
https://www.youtube.com/s/player/a336babc/player_ias.vflset/en_US/endscreen.js
172.217.168.14
https://consent.youtube.com/_/ConsentUi/browserinfo?f.sid=5434109171826470979&bl=boq_identityfrontenduiserver_20220925.17_p2&hl=en&gl=GB&_reqid=56430&rt=j
172.217.168.46
https://www.youtube.com/s/player/a336babc/player_ias.vflset/en_US/remote.js
172.217.168.14
https://i.ytimg.com/vi/fYofl_9azM8/hqdefault.jpg?sqp=-oaymwEbCKgBEF5IVfKriqkDDggBFQAAiEIYAXABwAEG&rs=AOn4CLBzUM5xSWmflJD2kMVBKafj77UbiQ
172.217.168.54
https://www.youtube.com/s/player/a336babc/player_ias.vflset/en_US/offline.js
172.217.168.14
https://i.ytimg.com/vi/DLhZh0P8LCc/hqdefault.jpg?sqp=-oaymwEbCKgBEF5IVfKriqkDDggBFQAAiEIYAXABwAEG&rs=AOn4CLCIrfhrD0TUqbqZdA1NUEJdPvU8Kg
172.217.168.54
https://www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8
172.217.168.14
https://www.youtube.com/s/player/a336babc/player_ias.vflset/en_US/captions.js
172.217.168.14
https://i.ytimg.com/vi/JRqMJHbQBhQ/hqdefault.jpg?sqp=-oaymwEbCKgBEF5IVfKriqkDDggBFQAAiEIYAXABwAEG&rs=AOn4CLBG-x-fRVm8H87OabFSHQNPchwS3g
172.217.168.54
https://www.youtube.com/s/desktop/a3a2ae5f/cssbin/www-main-desktop-watch-page-skeleton.css
172.217.168.14
https://i.ytimg.com/vi/BKUwZGqpxXY/maxresdefault.jpg
172.217.168.54
https://i.ytimg.com/vi/ywiqFEYYWyg/hqdefault.jpg?sqp=-oaymwEbCKgBEF5IVfKriqkDDggBFQAAiEIYAXABwAEG&rs=AOn4CLDfnpXgFE38Yy_x4VIC7ToB6_Ba5w
172.217.168.54
https://www.youtube.com/s/desktop/a3a2ae5f/cssbin/www-onepick.css
172.217.168.14
https://r3---sn-4g5ednkl.googlevideo.com/generate_204?conn2
173.194.10.104
https://youtube.com/
142.250.203.110
https://www.youtube.com/s/desktop/a3a2ae5f/img/favicon_32x32.png
172.217.168.14
https://accounts.google.com/ListAccounts?gpsia=1&source=ChromiumBrowser&json=standard
142.250.203.109
https://www.youtube.com/s/desktop/a3a2ae5f/jsbin/spf.vflset/spf.js
172.217.168.14
https://www.youtube.com/s/desktop/a3a2ae5f/cssbin/www-main-desktop-player-skeleton.css
172.217.168.14
https://www.youtube.com/s/_/ytmainappweb/_/ss/k=ytmainappweb.kevlar_base.AwIVWlJRnaA.L.B1.O/d=0/rs=AGKMywHoCmxVFz7S6CsgSo9NN0yigqc6wg
172.217.168.14
https://www.youtube.com/s/desktop/a3a2ae5f/jsbin/intersection-observer.min.vflset/intersection-observer.min.js
172.217.168.14
https://www.youtube.com/s/desktop/a3a2ae5f/img/favicon.ico
172.217.168.14
https://www.google.com/favicon.ico
142.250.203.100
https://i.ytimg.com/vi/sMaoGmeiwmg/hqdefault.jpg?sqp=-oaymwEbCKgBEF5IVfKriqkDDggBFQAAiEIYAXABwAEG&rs=AOn4CLAjsfdG9gHJnDdYKGVHRCby5h0K5w
172.217.168.54
https://www.youtube.com/manifest.webmanifest
172.217.168.14
https://www.youtube.com/s/desktop/a3a2ae5f/jsbin/web-animations-next-lite.min.vflset/web-animations-next-lite.min.js
172.217.168.14
https://play.google.com/log?format=json&hasfast=true
142.250.203.110
https://www.youtube.com/s/desktop/a3a2ae5f/jsbin/webcomponents-sd.vflset/webcomponents-sd.js
172.217.168.14
https://consent.youtube.com/m?continue=https://www.youtube.com/watch%3Fv%3DBKUwZGqpxXY%26feature%3Dyoutu.be%26cbrd%3D1&gl=GB&m=0&pc=yt&hl=en&src=1
https://consent.youtube.com/m?continue=https://www.youtube.com/watch%3Fv%3DBKUwZGqpxXY%26feature%3Dyoutu.be%26cbrd%3D1&gl=GB&m=0&pc=yt&hl=en&src=1
172.217.168.46
https://clients2.google.com/service/update2/crx?os=win&arch=x64&os_arch=x86_64&nacl_arch=x86-64&prod=chromecrx&prodchannel=&prodversion=104.0.5112.81&lang=en-US&acceptformat=crx3&x=id%3Dnmmhkkegccagdldgiimedpiccmgmieda%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1
142.250.203.110
https://i.ytimg.com/vi/FvQdL0_17bw/hqdefault.jpg?sqp=-oaymwEbCKgBEF5IVfKriqkDDggBFQAAiEIYAXABwAEG&rs=AOn4CLAVbEusmk0YWx_sdTTpVp--mSvDLA
172.217.168.54
https://www.youtube.com/s/search/audio/success.mp3
172.217.168.14
https://www.youtube.com/s/desktop/a3a2ae5f/jsbin/www-i18n-constants-en_US.vflset/www-i18n-constants.js
172.217.168.14
https://yt3.ggpht.com/ytc/AMLnZu_y_xWSIUn9il5pU5PE_M4TBJMuCcFUSU1CdV281g=s48-c-k-c0x00ffffff-no-rj
142.250.203.97
https://www.youtube.com/youtubei/v1/att/get?key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8&prettyPrint=false
172.217.168.14
https://i.ytimg.com/vi/Qe9JcVsRQvY/hqdefault.jpg?sqp=-oaymwEbCKgBEF5IVfKriqkDDggBFQAAiEIYAXABwAEG&rs=AOn4CLDIeHUhUWOVA-1cf_NsEMXERxTm1A
172.217.168.54
There are 50 hidden URLs, click here to show them.

Domains

Name
IP
Malicious
accounts.google.com
142.250.203.109
i.ytimg.com
172.217.168.54
consent.youtube.com
172.217.168.46
rr5.sn-4g5edndr.googlevideo.com
172.217.133.234
youtube.com
142.250.203.110
youtu.be
172.217.168.14
youtube-ui.l.google.com
172.217.168.14
rr4.sn-4g5lznls.googlevideo.com
74.125.11.9
play.google.com
142.250.203.110
r3.sn-4g5ednkl.googlevideo.com
173.194.10.104
photos-ugc.l.googleusercontent.com
142.250.203.97
www.google.com
142.250.203.100
clients.l.google.com
142.250.203.110
yt3.ggpht.com
unknown
r3---sn-4g5ednkl.googlevideo.com
unknown
rr5---sn-4g5edndr.googlevideo.com
unknown
clients2.google.com
unknown
www.youtube.com
unknown
rr4---sn-4g5lznls.googlevideo.com
unknown
There are 9 hidden domains, click here to show them.

IPs

IP
Domain
Country
Malicious
192.168.2.1
unknown
unknown
142.250.203.100
www.google.com
United States
142.250.203.110
youtube.com
United States
74.125.11.9
rr4.sn-4g5lznls.googlevideo.com
United States
172.217.168.46
consent.youtube.com
United States
172.217.168.14
youtu.be
United States
142.250.203.97
photos-ugc.l.googleusercontent.com
United States
239.255.255.250
unknown
Reserved
172.217.133.234
rr5.sn-4g5edndr.googlevideo.com
United States
172.217.168.54
i.ytimg.com
United States
173.194.10.104
r3.sn-4g5ednkl.googlevideo.com
United States
127.0.0.1
unknown
unknown
142.250.203.109
accounts.google.com
United States
There are 3 hidden IPs, click here to show them.

Registry

Path
Value
Malicious
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
ahfgeienlihckogmohjhadlkjgocpleb
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
gdaefkejpgkiemlaofpalmlakkmbjdnl
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
kmendfapggjehodndflmmgagdbamhnfd
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
mhjfbmdgcfjbbpaeojofohoefgiehjai
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
neajdppkdcdipfabeoofebfddakdcjhd
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
nkeimhogjdpnpccoofpliimaahmaaome
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
prefs.preference_reset_time
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Google\Update\ClientStateMedium\{8A69D345-D564-463C-AFF1-A69D9E530F96}\LastWasDefault
S-1-5-21-3853321935-2125563209-4053062332-1002
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
gdaefkejpgkiemlaofpalmlakkmbjdnl
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
kmendfapggjehodndflmmgagdbamhnfd
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
neajdppkdcdipfabeoofebfddakdcjhd
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
nkeimhogjdpnpccoofpliimaahmaaome
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
nmmhkkegccagdldgiimedpiccmgmieda
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
gdaefkejpgkiemlaofpalmlakkmbjdnl
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
nmmhkkegccagdldgiimedpiccmgmieda
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
state
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
StatusCodes
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
StatusCodes
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
state
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
dr
HKEY_CURRENT_USER\Software\Google\Chrome\StabilityMetrics
user_experience_metrics.stability.exited_cleanly
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
media.cdm.origin_data
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
software_reporter.reporting
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
media.storage_id_salt
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
google.services.last_account_id
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
google.services.account_id
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
settings_reset_prompt.last_triggered_for_startup_urls
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
settings_reset_prompt.last_triggered_for_homepage
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
module_blocklist_cache_md5_digest
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
software_reporter.prompt_seed
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
default_search_provider_data.template_url_data
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
safebrowsing.incidents_sent
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
pinned_tabs
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
browser.show_home_button
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
search_provider_overrides
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
settings_reset_prompt.last_triggered_for_default_search
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
prefs.preference_reset_time
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
software_reporter.prompt_version
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
google.services.last_username
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
session.startup_urls
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
session.restore_on_startup
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
settings_reset_prompt.prompt_wave
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
homepage
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
homepage_is_newtabpage
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
lastrun
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
lastrun
HKEY_USERSS-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry
TraceTimeLast
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Google\Update\ClientStateMedium\{8A69D345-D564-463C-AFF1-A69D9E530F96}\LastWasDefault
S-1-5-21-3853321935-2125563209-4053062332-1002
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
state
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
StatusCodes
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
StatusCodes
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
state
HKEY_CURRENT_USER\Software\Microsoft\ActiveMovie\devenum 64-bit
Version
There are 43 hidden registries, click here to show them.

Memdumps

Base Address
Regiontype
Protect
Malicious
212E80CC000
heap
page read and write
CE8287E000
stack
page read and write
457D6AB000
stack
page read and write
D79CDFF000
stack
page read and write
212E8013000
heap
page read and write
252AFCD0000
heap
page read and write
21B8BE66000
heap
page read and write
21B8BF13000
heap
page read and write
457DBFF000
stack
page read and write
212E8029000
heap
page read and write
291047E0000
trusted library allocation
page read and write
16C2CC70000
heap
page read and write
AA6AD79000
stack
page read and write
426E1FB000
stack
page read and write
74686FC000
stack
page read and write
29104913000
heap
page read and write
426E4FE000
stack
page read and write
29106400000
trusted library allocation
page read and write
16C2CC6C000
heap
page read and write
512E0F9000
stack
page read and write
CE82B7E000
stack
page read and write
2436B602000
heap
page read and write
29104889000
heap
page read and write
212E80CA000
heap
page read and write
29104918000
heap
page read and write
AA6AC7E000
stack
page read and write
2436AF8E000
heap
page read and write
16C2CC78000
heap
page read and write
212E8000000
heap
page read and write
2B3FAFE0000
trusted library allocation
page read and write
2B3FB03E000
heap
page read and write
2436AE13000
heap
page read and write
252AFE13000
heap
page read and write
2B3FAEE0000
heap
page read and write
457DCFC000
stack
page read and write
21B8BE40000
heap
page read and write
21B8BE29000
heap
page read and write
212E8087000
heap
page read and write
2436AE8C000
heap
page read and write
29104670000
heap
page read and write
426E47E000
stack
page read and write
B5B4E7C000
stack
page read and write
252AFE53000
heap
page read and write
512E07B000
stack
page read and write
16C2CC32000
heap
page read and write
16C2CC31000
heap
page read and write
AA6AF7F000
stack
page read and write
2436B7C6000
heap
page read and write
2436B792000
heap
page read and write
512E2FF000
stack
page read and write
2436AE29000
heap
page read and write
16C2CC3C000
heap
page read and write
2436B7B0000
heap
page read and write
212E8113000
heap
page read and write
746877B000
stack
page read and write
2436AF13000
heap
page read and write
B5B537F000
stack
page read and write
16C2CC7F000
heap
page read and write
457DAFB000
stack
page read and write
1F38A102000
heap
page read and write
2436B823000
heap
page read and write
CE82CFE000
stack
page read and write
426E77E000
stack
page read and write
AA6AE7E000
stack
page read and write
212E8870000
trusted library allocation
page read and write
426E87F000
stack
page read and write
16C2CC8A000
heap
page read and write
2436B830000
heap
page read and write
2436B702000
heap
page read and write
2436AE00000
heap
page read and write
CE82C7D000
stack
page read and write
16C2CB20000
trusted library allocation
page read and write
2B3FB802000
trusted library allocation
page read and write
16C2CC4D000
heap
page read and write
16C2CC68000
heap
page read and write
2436ADB0000
trusted library allocation
page read and write
252AFE28000
heap
page read and write
29104902000
heap
page read and write
2436AE93000
heap
page read and write
212E7FD0000
heap
page read and write
CE825BE000
stack
page read and write
2910483F000
heap
page read and write
2B3FAE80000
heap
page read and write
16C2CC5F000
heap
page read and write
16C2CC75000
heap
page read and write
291061D0000
remote allocation
page read and write
1F38A000000
heap
page read and write
29106440000
trusted library allocation
page read and write
21B8BE3C000
heap
page read and write
16C2CC7E000
heap
page read and write
426E97F000
stack
page read and write
252AFDD0000
trusted library allocation
page read and write
74685FC000
stack
page read and write
291061A0000
trusted library allocation
page read and write
212E8042000
heap
page read and write
D79D27C000
stack
page read and write
21B8BF02000
heap
page read and write
16C2CC6E000
heap
page read and write
252AFC70000
heap
page read and write
16C2CC7A000
heap
page read and write
2436B76F000
heap
page read and write
2436B827000
heap
page read and write
2436AE89000
heap
page read and write
212E806E000
heap
page read and write
457E3FE000
stack
page read and write
2436B7BC000
heap
page read and write
16C2CC3A000
heap
page read and write
2B3FB013000
heap
page read and write
2436AE3D000
heap
page read and write
29104900000
heap
page read and write
252AFF02000
heap
page read and write
16C2D402000
trusted library allocation
page read and write
212E80E1000
heap
page read and write
21B8BE5C000
heap
page read and write
7468A7F000
stack
page read and write
2436AE53000
heap
page read and write
2436AE76000
heap
page read and write
512DD7E000
stack
page read and write
2436B743000
heap
page read and write
512E4FB000
stack
page read and write
16C2CD02000
heap
page read and write
1F389F60000
heap
page read and write
16C2CC56000
heap
page read and write
2436AC50000
heap
page read and write
2436AE2F000
heap
page read and write
212E7F60000
heap
page read and write
512E1FA000
stack
page read and write
2B3FB7B0000
remote allocation
page read and write
2436B802000
heap
page read and write
29104813000
heap
page read and write
1F389F00000
heap
page read and write
1F38A045000
heap
page read and write
B5B527F000
stack
page read and write
291061D0000
remote allocation
page read and write
2436B813000
heap
page read and write
21B8C602000
trusted library allocation
page read and write
21B8BE63000
heap
page read and write
2436AC40000
heap
page read and write
1F38A002000
heap
page read and write
457E2FE000
stack
page read and write
252AFF00000
heap
page read and write
2436B722000
heap
page read and write
2B3FB000000
heap
page read and write
21B8BC90000
heap
page read and write
252AFE64000
heap
page read and write
2B3FB102000
heap
page read and write
21B8BE13000
heap
page read and write
512DCFE000
stack
page read and write
2B3FB029000
heap
page read and write
212E8A02000
heap
page read and write
2436AFE5000
heap
page read and write
212E80E8000
heap
page read and write
2436B800000
heap
page read and write
D79CF7F000
stack
page read and write
29104847000
heap
page read and write
16C2CC89000
heap
page read and write
1F38A02E000
heap
page read and write
2B3FB7B0000
remote allocation
page read and write
1F389F90000
trusted library allocation
page read and write
291061D0000
remote allocation
page read and write
16C2CC85000
heap
page read and write
16C2CC6B000
heap
page read and write
1F38A052000
heap
page read and write
CE828FE000
stack
page read and write
2B3FB002000
heap
page read and write
29104846000
heap
page read and write
426E67E000
stack
page read and write
252AFE00000
heap
page read and write
512DC7B000
stack
page read and write
29104899000
heap
page read and write
D79D47F000
stack
page read and write
D79C9DB000
stack
page read and write
21B8BE02000
heap
page read and write
2B3FB05C000
heap
page read and write
746807E000
stack
page read and write
29104800000
heap
page read and write
1F38AA02000
trusted library allocation
page read and write
16C2C9C0000
heap
page read and write
512E3FF000
stack
page read and write
252AFE79000
heap
page read and write
457E1FE000
stack
page read and write
512DF7F000
stack
page read and write
1F38A03D000
heap
page read and write
2910482A000
heap
page read and write
746897E000
stack
page read and write
2436B754000
heap
page read and write
2436AE45000
heap
page read and write
1F38A029000
heap
page read and write
746857E000
stack
page read and write
252B0602000
trusted library allocation
page read and write
512DE7E000
stack
page read and write
21B8BE00000
heap
page read and write
16C2CC73000
heap
page read and write
746847F000
stack
page read and write
16C2CC7D000
heap
page read and write
252AFE3C000
heap
page read and write
CE8253B000
stack
page read and write
2B3FAE70000
heap
page read and write
16C2CC7B000
heap
page read and write
252AFF13000
heap
page read and write
29104888000
heap
page read and write
29106202000
trusted library allocation
page read and write
21B8BE6B000
heap
page read and write
16C2CC46000
heap
page read and write
16C2CC6A000
heap
page read and write
21B8BC20000
heap
page read and write
252AFC60000
heap
page read and write
AA6AA7B000
stack
page read and write
746887D000
stack
page read and write
457DDFF000
stack
page read and write
2436AE80000
heap
page read and write
16C2C9B0000
heap
page read and write
74680FD000
stack
page read and write
CE829FE000
stack
page read and write
2B3FB054000
heap
page read and write
CE82DFD000
stack
page read and write
B5B517B000
stack
page read and write
21B8BC30000
heap
page read and write
AA6AB7F000
stack
page read and write
2436B700000
heap
page read and write
291046E0000
heap
page read and write
16C2CC7C000
heap
page read and write
16C2CC62000
heap
page read and write
16C2CC61000
heap
page read and write
2436ADD0000
trusted library allocation
page read and write
512DDFF000
stack
page read and write
21B8BD90000
trusted library allocation
page read and write
AA6AAFF000
stack
page read and write
16C2CC00000
heap
page read and write
2436AE59000
heap
page read and write
457E0FE000
stack
page read and write
29104680000
heap
page read and write
16C2CC76000
heap
page read and write
457DEFD000
stack
page read and write
29104856000
heap
page read and write
252AFE68000
heap
page read and write
1F389F10000
heap
page read and write
212E8B00000
heap
page read and write
16C2CC13000
heap
page read and write
457DFFF000
stack
page read and write
2436AE93000
heap
page read and write
457D72D000
stack
page read and write
1F38A013000
heap
page read and write
29104863000
heap
page read and write
212E80BB000
heap
page read and write
212E8068000
heap
page read and write
D79D37D000
stack
page read and write
212E8066000
heap
page read and write
16C2CC55000
heap
page read and write
D79D17F000
stack
page read and write
1F38A03B000
heap
page read and write
21B8BE79000
heap
page read and write
29104857000
heap
page read and write
212E8102000
heap
page read and write
D79D07E000
stack
page read and write
CE82EFF000
stack
page read and write
2B3FB7B0000
remote allocation
page read and write
74683FC000
stack
page read and write
D79D57C000
stack
page read and write
2436ACB0000
heap
page read and write
2436AFB9000
heap
page read and write
16C2CC29000
heap
page read and write
B5B507F000
stack
page read and write
252AFE02000
heap
page read and write
2436B722000
heap
page read and write
16C2CC5A000
heap
page read and write
21B8BE69000
heap
page read and write
CE82A7F000
stack
page read and write
457D7AD000
stack
page read and write
16C2CA20000
heap
page read and write
212E7F70000
heap
page read and write
7467D9B000
stack
page read and write
There are 262 hidden memdumps, click here to show them.

DOM / HTML

URL
Malicious
https://consent.youtube.com/m?continue=https://www.youtube.com/watch%3Fv%3DBKUwZGqpxXY%26feature%3Dyoutu.be%26cbrd%3D1&gl=GB&m=0&pc=yt&hl=en&src=1