IOC Report
https://topicbiker.yachts/

loading gif

Files

File Path
Type
Category
Malicious
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Sat May 25 21:51:23 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
dropped
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Sat May 25 21:51:23 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
dropped
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed Oct 4 12:54:07 2023, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
dropped
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Sat May 25 21:51:23 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
dropped
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Sat May 25 21:51:23 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
dropped
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Sat May 25 21:51:23 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
dropped
C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping5548_347715109\LICENSE
ASCII text
dropped
C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping5548_347715109\_metadata\verified_contents.json
JSON data
dropped
C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping5548_347715109\manifest.fingerprint
ASCII text, with no line terminators
dropped
C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping5548_347715109\manifest.json
JSON data
dropped
C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping5548_347715109\sets.json
JSON data
dropped
Chrome Cache Entry: 183
Web Open Font Format (Version 2), TrueType, length 20860, version 1.0
downloaded
Chrome Cache Entry: 184
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 185
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 186
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 187
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 188
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 189
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel
dropped
Chrome Cache Entry: 190
PNG image data, 114 x 56, 4-bit colormap, non-interlaced
dropped
Chrome Cache Entry: 191
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 192
ASCII text, with no line terminators
downloaded
Chrome Cache Entry: 193
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x564, components 3
downloaded
Chrome Cache Entry: 194
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 195
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 196
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x564, components 3
dropped
Chrome Cache Entry: 197
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel
downloaded
Chrome Cache Entry: 198
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 738x808, components 3
downloaded
Chrome Cache Entry: 199
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 200
JSON data
dropped
Chrome Cache Entry: 201
HTML document, Unicode text, UTF-8 text, with very long lines (1402)
downloaded
Chrome Cache Entry: 202
PNG image data, 5652 x 15, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 203
Unicode text, UTF-8 text, with very long lines (19902)
downloaded
Chrome Cache Entry: 204
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 205
PNG image data, 114 x 56, 4-bit colormap, non-interlaced
downloaded
Chrome Cache Entry: 206
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 207
HTML document, Unicode text, UTF-8 text
downloaded
Chrome Cache Entry: 208
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 209
ASCII text
downloaded
Chrome Cache Entry: 210
Algol 68 source, ASCII text
downloaded
Chrome Cache Entry: 211
ASCII text, with no line terminators
downloaded
Chrome Cache Entry: 212
ASCII text, with very long lines (65451)
downloaded
Chrome Cache Entry: 213
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 214
ASCII text, with no line terminators
dropped
Chrome Cache Entry: 215
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 216
gzip compressed data, from Unix, original size modulo 2^32 552
downloaded
Chrome Cache Entry: 217
ASCII text, with very long lines (59812)
downloaded
Chrome Cache Entry: 218
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x564, components 3
dropped
Chrome Cache Entry: 219
JSON data
downloaded
Chrome Cache Entry: 220
PNG image data, 162 x 56, 8-bit colormap, non-interlaced
dropped
Chrome Cache Entry: 221
Web Open Font Format (Version 2), TrueType, length 18200, version 1.0
downloaded
Chrome Cache Entry: 222
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x564, components 3
downloaded
Chrome Cache Entry: 223
ASCII text, with very long lines (65447)
downloaded
Chrome Cache Entry: 224
PNG image data, 5652 x 15, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 225
ASCII text
downloaded
Chrome Cache Entry: 226
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 227
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 228
ASCII text
downloaded
Chrome Cache Entry: 229
ASCII text, with very long lines (1435)
downloaded
Chrome Cache Entry: 230
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x564, components 3
dropped
Chrome Cache Entry: 231
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 232
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 233
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 234
PNG image data, 162 x 56, 8-bit colormap, non-interlaced
downloaded
Chrome Cache Entry: 235
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1343x1900, components 3
dropped
Chrome Cache Entry: 236
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 237
Web Open Font Format (Version 2), TrueType, length 34852, version 1.0
downloaded
Chrome Cache Entry: 238
Unicode text, UTF-8 text
downloaded
Chrome Cache Entry: 239
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 240
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 241
Web Open Font Format (Version 2), TrueType, length 48236, version 1.0
downloaded
Chrome Cache Entry: 242
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 243
Unicode text, UTF-8 text, with very long lines (26995)
downloaded
Chrome Cache Entry: 244
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 245
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 246
Web Open Font Format (Version 2), TrueType, length 29752, version 1.0
downloaded
Chrome Cache Entry: 247
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 248
Web Open Font Format (Version 2), TrueType, length 26736, version 1.0
downloaded
Chrome Cache Entry: 249
ASCII text, with very long lines (1572)
downloaded
Chrome Cache Entry: 250
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x564, components 3
downloaded
Chrome Cache Entry: 251
gzip compressed data, from Unix, original size modulo 2^32 8970
downloaded
Chrome Cache Entry: 252
Unicode text, UTF-8 text, with very long lines (41067)
downloaded
Chrome Cache Entry: 253
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 254
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 255
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 738x808, components 3
dropped
Chrome Cache Entry: 256
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 257
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1343x1900, components 3
downloaded
Chrome Cache Entry: 258
SVG Scalable Vector Graphics image
dropped
There are 78 hidden files, click here to show them.

Processes

Path
Cmdline
Malicious
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2408 --field-trial-handle=2348,i,11756018486908174793,9205712941749212315,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" "https://topicbiker.yachts/"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=4956 --field-trial-handle=2348,i,11756018486908174793,9205712941749212315,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8

URLs

Name
IP
Malicious
https://topicbiker.yachts/
malicious
https://topicbiker.yachts/
185.172.128.161
 malicious
http://topicbiker.yachts/
malicious
https://ipinfo.io/missingauth
unknown
https://wieistmeineip.de
unknown
https://mercadoshops.com.co
unknown
https://gliadomain.com
unknown
https://poalim.xyz
unknown
https://5748t.shop/l/gaz/img/sprite2.svg
172.67.162.68
https://mercadolivre.com
unknown
https://cdnjs.cloudflare.com/ajax/libs/intl-tel-input/17.0.13/img/flags.png
unknown
https://5748t.shop/favicon.ico
172.67.162.68
https://reshim.org
unknown
https://nourishingpursuits.com
unknown
https://medonet.pl
unknown
https://unotv.com
unknown
https://mercadoshops.com.br
unknown
https://joyreactor.cc
unknown
https://zdrowietvn.pl
unknown
https://songstats.com
unknown
https://baomoi.com
unknown
https://supereva.it
unknown
https://elfinancierocr.com
unknown
https://github.com/twbs/bootstrap/graphs/contributors)
unknown
https://bolasport.com
unknown
https://rws1nvtvt.com
unknown
https://desimartini.com
unknown
https://hearty.app
unknown
https://ipinfo.io/json
34.117.186.192
https://hearty.gift
unknown
https://mercadoshops.com
unknown
https://heartymail.com
unknown
https://radio2.be
unknown
https://finn.no
unknown
https://hc1.com
unknown
https://kompas.tv
unknown
https://mystudentdashboard.com
unknown
https://songshare.com
unknown
https://mercadopago.com.mx
unknown
https://talkdeskqaid.com
unknown
https://mercadopago.com.pe
unknown
https://cardsayings.net
unknown
https://5748t.shop/l/gaz/img/sprite11.svg
172.67.162.68
https://5748t.shop/?sid=3052
172.67.162.68
https://mightytext.net
unknown
https://5748t.shop/l/gaz/img/sprite9.svg
172.67.162.68
https://pudelek.pl
unknown
https://joyreactor.com
unknown
https://cookreactor.com
unknown
https://wildixin.com
unknown
https://eworkbookcloud.com
unknown
https://nacion.com
unknown
https://5748t.shop/l/gaz/img/sprite6.svg
172.67.162.68
https://chennien.com
unknown
https://5748t.shop/l/gaz/img/license.jpg
https://mercadopago.cl
unknown
https://talkdeskstgid.com
unknown
https://bonvivir.com
unknown
https://carcostadvisor.be
unknown
https://salemovetravel.com
unknown
https://sapo.io
unknown
https://wpext.pl
unknown
https://welt.de
unknown
https://poalim.site
unknown
https://blackrockadvisorelite.it
unknown
https://cafemedia.com
unknown
https://mercadoshops.com.ar
unknown
https://elpais.uy
unknown
https://landyrev.com
unknown
https://commentcamarche.com
unknown
https://tucarro.com.ve
unknown
https://rws3nvtvt.com
unknown
https://eleconomista.net
unknown
https://mercadolivre.com.br
unknown
https://5748t.shop/l/gaz/img/rus.png
172.67.162.68
https://clmbtech.com
unknown
https://standardsandpraiserepurpose.com
unknown
https://salemovefinancial.com
unknown
https://mercadopago.com.br
unknown
https://cdnjs.cloudflare.com/ajax/libs/jquery/3.5.1/jquery.min.js
104.17.24.14
https://5748t.shop/l/gaz/img/favicon.ico
172.67.162.68
https://5748t.shop/l/gaz/img/sprite1.svg
172.67.162.68
https://commentcamarche.net
unknown
https://etfacademy.it
unknown
https://mighty-app.appspot.com
unknown
https://hj.rs
unknown
https://hearty.me
unknown
https://mercadolibre.com.gt
unknown
https://timesinternet.in
unknown
https://idbs-staging.com
unknown
https://blackrock.com
unknown
https://idbs-eworkbook.com
unknown
https://mercadolibre.co.cr
unknown
https://hjck.com
unknown
https://vrt.be
unknown
https://5748t.shop/l/gaz/img/image%2051.jpg
172.67.162.68
https://prisjakt.no
unknown
https://kompas.com
unknown
https://idbs-dev.com
unknown
https://wingify.com
unknown
https://mercadolibre.cl
unknown
There are 90 hidden URLs, click here to show them.

Domains

Name
IP
Malicious
5748t.shop
172.67.162.68
 malicious
a.nel.cloudflare.com
35.190.80.1
code.jquery.com
151.101.2.137
topicbiker.yachts
185.172.128.161
cdnjs.cloudflare.com
104.17.24.14
ipinfo.io
34.117.186.192
www.google.com
142.250.185.228
u3oo8.shop
104.21.47.215
fp2e7a.wpc.phicdn.net
192.229.221.95
26.165.165.52.in-addr.arpa
unknown
206.23.85.13.in-addr.arpa
unknown
There are 1 hidden domains, click here to show them.

IPs

IP
Domain
Country
Malicious
172.67.162.68
5748t.shop
United States
malicious
104.17.24.14
cdnjs.cloudflare.com
United States
34.117.186.192
ipinfo.io
United States
142.250.185.228
www.google.com
United States
185.172.128.161
topicbiker.yachts
Russian Federation
192.168.2.4
unknown
unknown
192.168.2.5
unknown
unknown
151.101.2.137
code.jquery.com
United States
239.255.255.250
unknown
Reserved
104.21.47.215
u3oo8.shop
United States
35.190.80.1
a.nel.cloudflare.com
United States
142.250.186.100
unknown
United States
There are 2 hidden IPs, click here to show them.

DOM / HTML

URL
Malicious
http://topicbiker.yachts/
 malicious
https://5748t.shop/
 malicious
https://5748t.shop/
https://5748t.shop/
https://5748t.shop/#about
https://5748t.shop/#about
https://5748t.shop/l/gaz/img/license.jpg