IOC Report
https://drive.google.com/file/d/1Aau7Aza1Kdf_IYLUiT_3CLuLEAY5qdph/view?usp=drive_web

loading gif

Files

File Path
Type
Category
Malicious
Chrome Cache Entry: 146
ASCII text, with very long lines (1530)
downloaded
Chrome Cache Entry: 147
ASCII text
downloaded
Chrome Cache Entry: 148
GIF image data, version 89a, 1 x 1
downloaded
Chrome Cache Entry: 149
GIF image data, version 89a, 1 x 1
dropped
Chrome Cache Entry: 150
ASCII text, with very long lines (585)
downloaded
Chrome Cache Entry: 151
GIF image data, version 89a, 1 x 1
downloaded
Chrome Cache Entry: 152
GIF image data, version 89a, 1 x 1
dropped
Chrome Cache Entry: 153
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 154
ASCII text, with very long lines (3588)
downloaded
Chrome Cache Entry: 155
ASCII text, with very long lines (2054)
downloaded
Chrome Cache Entry: 156
ASCII text, with very long lines (557)
downloaded
Chrome Cache Entry: 157
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=4, software=Google], baseline, precision 8, 64x64, components 3
dropped
Chrome Cache Entry: 158
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 159
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 160
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 161
GIF image data, version 89a, 1 x 1
dropped
Chrome Cache Entry: 162
GIF image data, version 89a, 1 x 1
dropped
Chrome Cache Entry: 163
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 164
GIF image data, version 89a, 1 x 1
downloaded
Chrome Cache Entry: 165
GIF image data, version 89a, 1 x 1
downloaded
Chrome Cache Entry: 166
ASCII text, with very long lines (2323)
downloaded
Chrome Cache Entry: 167
ASCII text, with no line terminators
downloaded
Chrome Cache Entry: 168
GIF image data, version 89a, 1 x 1
dropped
Chrome Cache Entry: 169
GIF image data, version 89a, 1 x 1
downloaded
Chrome Cache Entry: 170
GIF image data, version 89a, 1 x 1
dropped
Chrome Cache Entry: 171
HTML document, ASCII text
downloaded
Chrome Cache Entry: 172
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 173
GIF image data, version 89a, 1 x 1
dropped
Chrome Cache Entry: 174
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=4, software=Google], baseline, precision 8, 64x64, components 3
downloaded
Chrome Cache Entry: 175
ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 176
ASCII text, with very long lines (2120)
downloaded
Chrome Cache Entry: 177
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 178
ASCII text, with very long lines (922)
downloaded
Chrome Cache Entry: 179
GIF image data, version 89a, 1 x 1
downloaded
Chrome Cache Entry: 180
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 181
Web Open Font Format (Version 2), TrueType, length 15344, version 1.0
downloaded
Chrome Cache Entry: 182
ASCII text, with very long lines (1674)
downloaded
Chrome Cache Entry: 183
GIF image data, version 89a, 1 x 1
downloaded
Chrome Cache Entry: 184
Web Open Font Format (Version 2), TrueType, length 29728, version 1.0
downloaded
Chrome Cache Entry: 185
JSON data
downloaded
There are 31 hidden files, click here to show them.

Processes

Path
Cmdline
Malicious
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1944 --field-trial-handle=1720,i,4096288064433636703,17727572675558076264,131072 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationTargetPrediction /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe" "https://drive.google.com/file/d/1Aau7Aza1Kdf_IYLUiT_3CLuLEAY5qdph/view?usp=drive_web

URLs

Name
IP
Malicious
https://drive.google.com/file/d/1Aau7Aza1Kdf_IYLUiT_3CLuLEAY5qdph/view?usp=drive_web
https://apis.google.com/js/googleapis.proxy.js?onload=startup
172.217.168.78
https://signaler-staging.sandbox.google.com
unknown
http://www.broofa.com
unknown
https://apis.google.com/js/client.js
unknown
https://feedback2-test.corp.googleusercontent.com/tools/feedback/%
unknown
https://apis.google.com/js/googleapis.proxy.js
unknown
https://dataconnector.corp.google.com/:session_prefix:ui/widgetview?usegapi=1
unknown
https://support.google.com/drive/answer/2423485?hl=%s
unknown
https://drive.google.com/open?id=1Aau7Aza1Kdf_IYLUiT_3CLuLEAY5qdph
172.217.168.14
https://drive.google.com/file/d/1Aau7Aza1Kdf_IYLUiT_3CLuLEAY5qdph/view
https://onepick-autopush.sandbox.google.com/picker/minpick/main
unknown
https://workspace.google.com/:session_prefix:marketplace/appfinder?usegapi=1
unknown
https://www.youtube.com
unknown
https://support.google.com/drive/answer/2407404?hl=en
unknown
https://apis.google.com/_/scs/abc-static/_/js/k=gapi.gapi.en.UjJbvPIecP0.O/m=client/exm=gapi_iframes,googleapis_client/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_flbzE3yQmWQ7n7N3yCQZtJt8-oA/cb=gapi.loaded_1
172.217.168.78
https://pay.google.com/gp/v/widget/save
unknown
https://workspace.google.com
unknown
https://onepick-staging.sandbox.google.com/picker/minpick/main
unknown
https://support.google.com/docs/answer/49114
unknown
https://support.google.com/drive/answer/2423694
unknown
https://support.google.com/google-workspace-individual/?p=esignature_signer_terms
unknown
https://drive-thirdparty.googleusercontent.com/
unknown
https://content-googleapis-test.sandbox.google.com
unknown
https://www.google.com/shopping/customerreviews/optin?usegapi=1
unknown
https://onepick-preprod.sandbox.google.com/picker/minpick/main
unknown
https://drive.google.com/file/d/1Aau7Aza1Kdf_IYLUiT_3CLuLEAY5qdph/docos/p/sync?resourcekey&id=1Aau7Aza1Kdf_IYLUiT_3CLuLEAY5qdph&reqid=0
172.217.168.14
https://developers.google.com/
unknown
https://onepick-staging-drivequal.sandbox.google.com/picker/minpick/main
unknown
https://developers.google.com/identity/gsi/web/guides/gis-migration)
unknown
https://www.google.com/tools/feedback
unknown
https://sandbox.google.com/inapp/%
unknown
https://www.google.com/recaptcha/api.js?trustedtypes=true
unknown
https://apis.google.com/_/scs/abc-static/_/js/k=gapi.gapi.en.UjJbvPIecP0.O/m=googleapis_proxy/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_flbzE3yQmWQ7n7N3yCQZtJt8-oA/cb=gapi.loaded_0?le=scs
172.217.168.78
https://apis.google.com/js/api.js
unknown
https://docs.google.com/picker
unknown