IOC Report
https://onestack.notion.site/Onestack-Core-Banking-Services-0964c4703aa0476e99af38481d41468f

loading gif

Files

File Path
Type
Category
Malicious
Chrome Cache Entry: 175
Unicode text, UTF-8 text, with very long lines (34252), with no line terminators
downloaded
Chrome Cache Entry: 176
HTML document, Unicode text, UTF-8 text, with very long lines (16294), with no line terminators
downloaded
Chrome Cache Entry: 177
Unicode text, UTF-8 text, with very long lines (65526), with no line terminators
downloaded
Chrome Cache Entry: 178
Unicode text, UTF-8 text, with very long lines (64000), with no line terminators
downloaded
Chrome Cache Entry: 179
MS Windows icon resource - 5 icons, 16x16, 32 bits/pixel, 24x24, 32 bits/pixel
dropped
Chrome Cache Entry: 180
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 181
Web Open Font Format, TrueType, length 142836, version 0.0
downloaded
Chrome Cache Entry: 182
Unicode text, UTF-8 text, with very long lines (35228), with no line terminators
downloaded
Chrome Cache Entry: 183
ASCII text
downloaded
Chrome Cache Entry: 184
HTML document, Unicode text, UTF-8 text, with very long lines (16294), with no line terminators
downloaded
Chrome Cache Entry: 185
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 186
MS Windows icon resource - 5 icons, 16x16, 32 bits/pixel, 24x24, 32 bits/pixel
dropped
Chrome Cache Entry: 187
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 188
Unicode text, UTF-8 text, with very long lines (65441), with no line terminators
downloaded
Chrome Cache Entry: 189
Web Open Font Format, TrueType, length 134652, version 0.0
downloaded
Chrome Cache Entry: 190
HTML document, Unicode text, UTF-8 text, with very long lines (16294), with no line terminators
downloaded
Chrome Cache Entry: 191
ASCII text, with very long lines (11123), with no line terminators
downloaded
Chrome Cache Entry: 192
HTML document, Unicode text, UTF-8 text, with very long lines (16294), with no line terminators
downloaded
Chrome Cache Entry: 193
ASCII text
downloaded
Chrome Cache Entry: 194
PNG image data, 90 x 45, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 195
Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
downloaded
Chrome Cache Entry: 196
Unicode text, UTF-8 text, with very long lines (65526), with no line terminators
downloaded
Chrome Cache Entry: 197
HTML document, Unicode text, UTF-8 text, with very long lines (16294), with no line terminators
downloaded
Chrome Cache Entry: 198
Unicode text, UTF-8 text, with very long lines (65524), with no line terminators
downloaded
Chrome Cache Entry: 199
PNG image data, 3960 x 3960, 8-bit colormap, non-interlaced
downloaded
Chrome Cache Entry: 200
ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 202
Unicode text, UTF-8 text
downloaded
Chrome Cache Entry: 203
MS Windows icon resource - 5 icons, 16x16, 32 bits/pixel, 24x24, 32 bits/pixel
downloaded
Chrome Cache Entry: 204
HTML document, Unicode text, UTF-8 text, with very long lines (16294), with no line terminators
downloaded
Chrome Cache Entry: 205
HTML document, Unicode text, UTF-8 text, with very long lines (16294), with no line terminators
downloaded
Chrome Cache Entry: 206
HTML document, Unicode text, UTF-8 text, with very long lines (16294), with no line terminators
downloaded
Chrome Cache Entry: 207
PNG image data, 90 x 45, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 208
ASCII text, with very long lines (9654), with no line terminators
downloaded
Chrome Cache Entry: 209
ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 210
ASCII text, with very long lines (3467), with no line terminators
downloaded
Chrome Cache Entry: 211
HTML document, Unicode text, UTF-8 text, with very long lines (16294), with no line terminators
downloaded
Chrome Cache Entry: 212
Unicode text, UTF-8 text, with very long lines (49312), with no line terminators
downloaded
Chrome Cache Entry: 213
PNG image data, 3960 x 3960, 8-bit colormap, non-interlaced
dropped
Chrome Cache Entry: 214
Unicode text, UTF-8 text, with very long lines (65524), with no line terminators
downloaded
Chrome Cache Entry: 215
ASCII text, with no line terminators
downloaded
Chrome Cache Entry: 216
HTML document, Unicode text, UTF-8 text, with very long lines (16294), with no line terminators
downloaded
Chrome Cache Entry: 217
ASCII text, with very long lines (3001)
downloaded
Chrome Cache Entry: 218
ASCII text, with very long lines (3467), with no line terminators
downloaded
Chrome Cache Entry: 219
Unicode text, UTF-8 text
downloaded
Chrome Cache Entry: 220
ASCII text, with very long lines (3001)
downloaded
Chrome Cache Entry: 221
Unicode text, UTF-8 text, with very long lines (65526), with no line terminators
downloaded
Chrome Cache Entry: 228
MS Windows icon resource - 5 icons, 16x16, 32 bits/pixel, 24x24, 32 bits/pixel
downloaded
Chrome Cache Entry: 229
Web Open Font Format, TrueType, length 143708, version 0.0
downloaded
Chrome Cache Entry: 230
ASCII text, with no line terminators
downloaded
Chrome Cache Entry: 231
HTML document, Unicode text, UTF-8 text, with very long lines (16294), with no line terminators
downloaded
Chrome Cache Entry: 232
JSON data
downloaded
Chrome Cache Entry: 233
Unicode text, UTF-8 text, with very long lines (65526), with no line terminators
downloaded
Chrome Cache Entry: 234
Unicode text, UTF-8 text, with very long lines (61837), with no line terminators
downloaded
Chrome Cache Entry: 235
Web Open Font Format, TrueType, length 143708, version 0.0
downloaded
Chrome Cache Entry: 236
Web Open Font Format, TrueType, length 142836, version 0.0
downloaded
Chrome Cache Entry: 237
Web Open Font Format, TrueType, length 134652, version 0.0
downloaded
Chrome Cache Entry: 238
JSON data
downloaded
Chrome Cache Entry: 239
SVG Scalable Vector Graphics image
dropped
There are 49 hidden files, click here to show them.

Processes

Path
Cmdline
Malicious
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1964 --field-trial-handle=1768,i,10079328889654334589,15383258308119680875,131072 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationTargetPrediction /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe" "https://onestack.notion.site/Onestack-Core-Banking-Services-0964c4703aa0476e99af38481d41468f

URLs

Name
IP
Malicious
https://onestack.notion.site/Onestack-Core-Banking-Services-0964c4703aa0476e99af38481d41468f
https://onestack.notion.site/Loan-Account-75e9bc2deefd45fb82acd2ead11fee86https://onestack.notion.site/Agent-Assist-Model-Console-d4904d288af24bdb9202deb60a168cdehttps://onestack.notion.site/Pin-Management-83829b6b4b80472298cd52362a660630https://onestack.notion.site/Branch-ATM-Locator-8285ab8f8a8c4366bb1a7c4b97001de8https://onestack.notion.site/Heartbeat-12694f40d5394483ade2f184be9b90c0http://asp.net/
104.18.33.232
https://o324374.ingest.sentry.io/api/5741876/envelope/?sentry_key=704fe3b1898d4ccda1d05fe1ee79a1f7&sentry_version=7&sentry_client=sentry.javascript.react%2F7.51.2
34.120.195.249
https://onestack.notion.site/inter-ui-medium-95b8a98959d1af9ab432d7ffe295ef94.woff
104.18.33.232
https://docs.statsig.com/segments#:~:text=%E2%80%8B
unknown
https://framer.com/
unknown
https://onestack.notion.site/third-party-scripts-83146e514c74c20dae42.js
104.18.33.232
https://onestack.notion.site/favicon.ico
104.18.33.232
https://extracurricular.myschool.edu/programmingclub
unknown
https://www.notion.so/inter-ui-medium-95b8a98959d1af9ab432d7ffe295ef94.woff
104.18.6.183