Processes
Path
|
Cmdline
|
Malicious
|
|
---|---|---|---|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --single-argument C:\Users\user\Desktop\login.html
|
||
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US
--service-sandbox-type=none --mojo-platform-channel-handle=2036 --field-trial-handle=1772,i,15227930420298686886,3054010558266752575,131072
--disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationTargetPrediction /prefetch:8
|
URLs
Name
|
IP
|
Malicious
|
|
---|---|---|---|
file:///C:/Users/user/Desktop/login.html
|
|||
http://underscorejs.org/LICENSE
|
unknown
|
||
http://www.apache.org/licenses/LICENSE-2.0
|
unknown
|
||
https://jquery.org/license
|
unknown
|
||
https://g.co/ng/security#xss)
|
unknown
|
||
http://www.broofa.com
|
unknown
|
||
https://github.com/dcodeIO/long.js
|
unknown
|
||
https://github.com/dcodeIO/protobuf.js
|
unknown
|
||
https://jquery.com/
|
unknown
|
||
https://angular.io/api/core/Component#animations).
|
unknown
|
||
https://angular.io/errors/$
|
unknown
|
||
https://angular.io/
|
unknown
|
||
https://lodash.com/
|
unknown
|
||
https://accounts.google.com/ListAccounts?gpsia=1&source=ChromiumBrowser&json=standard
|
142.250.186.45
|
||
https://github.com/dcodeIO/bytebuffer.js
|
unknown
|
||
https://lodash.com/license
|
unknown
|
||
https://angular.io/license
|
unknown
|
||
https://openjsf.org/
|
unknown
|
||
https://sizzlejs.com/
|
unknown
|
||
https://js.foundation/
|
unknown
|
||
https://clients2.google.com/service/update2/crx?os=win&arch=x64&os_arch=x86_64&nacl_arch=x86-64&prod=chromecrx&prodchannel=&prodversion=104.0.5112.102&lang=en-US&acceptformat=crx3&x=id%3Dnmmhkkegccagdldgiimedpiccmgmieda%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1
|
216.58.212.174
|
There are 11 hidden URLs, click here to show them.
Domains
Name
|
IP
|
Malicious
|
|
---|---|---|---|
accounts.google.com
|
142.250.186.45
|
||
www.google.com
|
142.250.184.196
|
||
clients.l.google.com
|
216.58.212.174
|
||
clients2.google.com
|
unknown
|
IPs
IP
|
Domain
|
Country
|
Malicious
|
|
---|---|---|---|---|
142.250.186.45
|
accounts.google.com
|
United States
|
||
192.168.2.2
|
unknown
|
unknown
|
||
192.168.2.1
|
unknown
|
unknown
|
||
239.255.255.250
|
unknown
|
Reserved
|
||
216.58.212.164
|
unknown
|
United States
|
||
192.168.8.1
|
unknown
|
unknown
|
||
216.58.212.174
|
clients.l.google.com
|
United States
|
||
172.217.16.196
|
unknown
|
United States
|
Memdumps
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
---|---|---|---|---|
2DF548E9000
|
heap
|
page read and write
|
||
2DF54780000
|
heap
|
page read and write
|
||
E6C407E000
|
stack
|
page read and write
|
||
E6C43FC000
|
stack
|
page read and write
|
||
2DF548CD000
|
heap
|
page read and write
|
||
E6C44FB000
|
stack
|
page read and write
|
||
E6C38EB000
|
stack
|
page read and write
|
||
E6C45FF000
|
stack
|
page read and write
|
||
E6C3CFB000
|
stack
|
page read and write
|
||
E6C437F000
|
stack
|
page read and write
|
||
2DF54800000
|
heap
|
page read and write
|
||
2DF5514A000
|
heap
|
page read and write
|
||
2DF5483F000
|
heap
|
page read and write
|
||
2DF5486C000
|
heap
|
page read and write
|
||
2DF548EF000
|
heap
|
page read and write
|
||
E6C396D000
|
stack
|
page read and write
|
||
E6C3EFE000
|
stack
|
page read and write
|
||
2DF5482B000
|
heap
|
page read and write
|
||
2DF5488A000
|
heap
|
page read and write
|
||
2DF54790000
|
heap
|
page read and write
|
||
E6C3F7C000
|
stack
|
page read and write
|
||
2DF55143000
|
heap
|
page read and write
|
||
2DF548D4000
|
heap
|
page read and write
|
||
2DF5487D000
|
heap
|
page read and write
|
||
E6C417A000
|
stack
|
page read and write
|
||
2DF54913000
|
heap
|
page read and write
|
||
2DF55100000
|
heap
|
page read and write
|
||
2DF55002000
|
heap
|
page read and write
|
||
2DF54895000
|
heap
|
page read and write
|
||
E6C39ED000
|
stack
|
page read and write
|
||
E6C427D000
|
stack
|
page read and write
|
||
E6C3D7E000
|
stack
|
page read and write
|
||
2DF548DE000
|
heap
|
page read and write
|
||
2DF54813000
|
heap
|
page read and write
|
||
2DF54902000
|
heap
|
page read and write
|
||
2DF548D4000
|
heap
|
page read and write
|
||
2DF5516B000
|
heap
|
page read and write
|
||
2DF54F50000
|
trusted library allocation
|
page read and write
|
||
2DF547F0000
|
heap
|
page read and write
|
There are 29 hidden memdumps, click here to show them.
DOM / HTML
URL
|
Malicious
|
|
---|---|---|
file:///C:/Users/user/Desktop/login.html
|
||
file:///C:/Users/user/Desktop/login.html
|
||
file:///C:/Users/user/Desktop/login.html
|