Edit tour

Windows Analysis Report
https://click.mail1.wf.com/?qs=677f1d231d3260533f03bc83358f07f095891fd96e89368d729e9cda52c17371cc20ba4857d6c96724eeb18ca1d43b28fd83f0723df121de

Overview

General Information

Sample URL:https://click.mail1.wf.com/?qs=677f1d231d3260533f03bc83358f07f095891fd96e89368d729e9cda52c17371cc20ba4857d6c96724eeb18ca1d43b28fd83f0723df121de
Analysis ID:1295474

Detection

Score:0
Range:0 - 100
Whitelisted:false
Confidence:80%

Signatures

No high impact signatures.

Classification

RansomwareSpreadingPhishingBankerTrojan / BotAdwareSpywareExploiterEvaderMinercleansuspiciousmalicious
  • System is w10x64_ra
  • chrome.exe (PID: 6884 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --single-argument https://click.mail1.wf.com/?qs=677f1d231d3260533f03bc83358f07f095891fd96e89368d729e9cda52c17371cc20ba4857d6c96724eeb18ca1d43b28fd83f0723df121de MD5: C817D9E0D995276EC89E4C89AFC19694)
    • chrome.exe (PID: 6560 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2164 --field-trial-handle=1984,i,13442961105378806101,9976109402001947370,131072 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 MD5: C817D9E0D995276EC89E4C89AFC19694)
    • chrome.exe (PID: 7612 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=5548 --field-trial-handle=1984,i,13442961105378806101,9976109402001947370,131072 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 MD5: C817D9E0D995276EC89E4C89AFC19694)
  • cleanup
No yara matches
No Sigma rule has matched
No Snort rule has matched

Click to jump to signature section

Show All Signature Results

There are no malicious signatures, click here to show all signatures.

Source: https://ceomedia.wf.com/ceo-demo/Tutorials/Welcome/story.html?utm_source=SFMC&utm_medium=email&utm_campaign=&utm_content=&utm_term=7571921&sid=2156571HTTP Parser: No favicon
Source: https://ceomedia.wf.com/ceo-demo/Tutorials/Welcome/story.html?utm_source=SFMC&utm_medium=email&utm_campaign=&utm_content=&utm_term=7571921&sid=2156571HTTP Parser: No favicon
Source: https://ceomedia.wf.com/ceo-demo/Tutorials/Welcome/story.html?utm_source=SFMC&utm_medium=email&utm_campaign=&utm_content=&utm_term=7571921&sid=2156571HTTP Parser: No favicon
Source: https://ceomedia.wf.com/ceo-demo/Tutorials/Welcome/story.html?utm_source=SFMC&utm_medium=email&utm_campaign=&utm_content=&utm_term=7571921&sid=2156571HTTP Parser: No favicon
Source: C:\Program Files\Google\Chrome\Application\chrome.exeDirectory created: C:\Program Files\Google\GoogleUpdater
Source: unknownDNS traffic detected: queries for: accounts.google.com
Source: unknownNetwork traffic detected: HTTP traffic on port 49877 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49936 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49845 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49846 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49847 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49936
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49847
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49846
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49845
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49877
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: classification engineClassification label: clean0.win@27/142@6/102
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Program Files\Google\GoogleUpdater
Source: unknownProcess created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --single-argument https://click.mail1.wf.com/?qs=677f1d231d3260533f03bc83358f07f095891fd96e89368d729e9cda52c17371cc20ba4857d6c96724eeb18ca1d43b28fd83f0723df121de
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2164 --field-trial-handle=1984,i,13442961105378806101,9976109402001947370,131072 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=5548 --field-trial-handle=1984,i,13442961105378806101,9976109402001947370,131072 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2164 --field-trial-handle=1984,i,13442961105378806101,9976109402001947370,131072 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=5548 --field-trial-handle=1984,i,13442961105378806101,9976109402001947370,131072 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: Window RecorderWindow detected: More than 3 window changes detected
Source: C:\Program Files\Google\Chrome\Application\chrome.exeDirectory created: C:\Program Files\Google\GoogleUpdater
Initial AccessExecutionPersistencePrivilege EscalationDefense EvasionCredential AccessDiscoveryLateral MovementCollectionExfiltrationCommand and ControlNetwork EffectsRemote Service EffectsImpact
Valid AccountsWindows Management InstrumentationPath Interception1
Process Injection
2
Masquerading
OS Credential DumpingSystem Service DiscoveryRemote ServicesData from Local SystemExfiltration Over Other Network Medium2
Encrypted Channel
Eavesdrop on Insecure Network CommunicationRemotely Track Device Without AuthorizationModify System Partition
Default AccountsScheduled Task/JobBoot or Logon Initialization ScriptsBoot or Logon Initialization Scripts1
Process Injection
LSASS MemoryApplication Window DiscoveryRemote Desktop ProtocolData from Removable MediaExfiltration Over Bluetooth1
Non-Application Layer Protocol
Exploit SS7 to Redirect Phone Calls/SMSRemotely Wipe Data Without AuthorizationDevice Lockout
Domain AccountsAt (Linux)Logon Script (Windows)Logon Script (Windows)Obfuscated Files or InformationSecurity Account ManagerQuery RegistrySMB/Windows Admin SharesData from Network Shared DriveAutomated Exfiltration2
Application Layer Protocol
Exploit SS7 to Track Device LocationObtain Device Cloud BackupsDelete Device Data

This section contains all screenshots as thumbnails, including those not shown in the slideshow.

No bigger version
No bigger version

windows-stand
SourceDetectionScannerLabelLink
https://click.mail1.wf.com/?qs=677f1d231d3260533f03bc83358f07f095891fd96e89368d729e9cda52c17371cc20ba4857d6c96724eeb18ca1d43b28fd83f0723df121de0%VirustotalBrowse
https://click.mail1.wf.com/?qs=677f1d231d3260533f03bc83358f07f095891fd96e89368d729e9cda52c17371cc20ba4857d6c96724eeb18ca1d43b28fd83f0723df121de0%Avira URL Cloudsafe
No Antivirus matches
No Antivirus matches
No Antivirus matches
No Antivirus matches
NameIPActiveMaliciousAntivirus DetectionReputation
accounts.google.com
172.217.18.109
truefalse
    high
    www.google.com
    142.250.185.132
    truefalse
      high
      click.mail1.wf.com
      13.111.45.42
      truefalse
        high
        clients.l.google.com
        142.250.185.78
        truefalse
          high
          clients2.google.com
          unknown
          unknownfalse
            high
            ceomedia.wf.com
            unknown
            unknownfalse
              high
              NameMaliciousAntivirus DetectionReputation
              https://ceomedia.wf.com/ceo-demo/Tutorials/Welcome/story.html?utm_source=SFMC&utm_medium=email&utm_campaign=&utm_content=&utm_term=7571921&sid=2156571false
                high
                • No. of IPs < 25%
                • 25% < No. of IPs < 50%
                • 50% < No. of IPs < 75%
                • 75% < No. of IPs
                IPDomainCountryFlagASNASN NameMalicious
                142.250.184.195
                unknownUnited States
                15169GOOGLEUSfalse
                142.250.185.78
                clients.l.google.comUnited States
                15169GOOGLEUSfalse
                142.250.186.67
                unknownUnited States
                15169GOOGLEUSfalse
                1.1.1.1
                unknownAustralia
                13335CLOUDFLARENETUSfalse
                34.104.35.123
                unknownUnited States
                15169GOOGLEUSfalse
                23.45.104.221
                unknownUnited States
                20940AKAMAI-ASN1EUfalse
                239.255.255.250
                unknownReserved
                unknownunknownfalse
                172.217.18.109
                accounts.google.comUnited States
                15169GOOGLEUSfalse
                13.111.45.42
                click.mail1.wf.comUnited States
                22606EXACT-7USfalse
                142.250.185.132
                www.google.comUnited States
                15169GOOGLEUSfalse
                IP
                192.168.2.1
                Joe Sandbox Version:38.0.0 Beryl
                Analysis ID:1295474
                Start date and time:2023-08-22 21:52:58 +02:00
                Joe Sandbox Product:CloudBasic
                Overall analysis duration:
                Hypervisor based Inspection enabled:false
                Report type:full
                Cookbook file name:defaultwindowsinteractivecookbook.jbs
                Sample URL:https://click.mail1.wf.com/?qs=677f1d231d3260533f03bc83358f07f095891fd96e89368d729e9cda52c17371cc20ba4857d6c96724eeb18ca1d43b28fd83f0723df121de
                Analysis system description:Windows 10 64 bit version 1909 (MS Office 2019, IE 11, Chrome 104, Firefox 88, Adobe Reader DC 21, Java 8 u291, 7-Zip)
                Number of analysed new started processes analysed:4
                Number of new started drivers analysed:0
                Number of existing processes analysed:0
                Number of existing drivers analysed:0
                Number of injected processes analysed:0
                Technologies:
                • EGA enabled
                Analysis Mode:stream
                Analysis stop reason:Timeout
                Detection:CLEAN
                Classification:clean0.win@27/142@6/102
                • Exclude process from analysis (whitelisted): SIHClient.exe
                • Excluded IPs from analysis (whitelisted): 142.250.184.195, 34.104.35.123, 23.45.104.221
                • Excluded domains from analysis (whitelisted): edgedl.me.gvt1.com, login.live.com, slscr.update.microsoft.com, ceomedia.wf.com.edgekey.net, e8104.dsca.akamaiedge.net, settings-win.data.microsoft.com, ctldl.windowsupdate.com, clientservices.googleapis.com
                • Not all processes where analyzed, report is missing behavior information
                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                File Type:MPEG ADTS, layer III, v1, 56 kbps, 44.1 kHz, Monaural
                Category:dropped
                Size (bytes):86070
                Entropy (8bit):7.917722894819437
                Encrypted:false
                SSDEEP:
                MD5:1D58C2F368C31350CC2BBFCC0BF5F166
                SHA1:CD0C0EB0FCBCF9C9842AA24D57FD5430975B6FC4
                SHA-256:092FEF36BD781DE77AFC6F89F9A4F86978B593DEFD871809A20EC469C8379E97
                SHA-512:032DBFADEEC0B91A14FB932AC74E05C909B7749E55874E6B5E2506B51C4D07A6573566B303D114E7E6C34C7E0CEA1E915FE736419E54EF82FDCCBCBF06C972C0
                Malicious:false
                Reputation:low
                Preview:..@..................Info..........O..............!$')+.1368:>@BEHJMOQUWY\^adfhlnpsux{}.....................................................9LAME3.100......,#...8$..B..8..O.[i........@....x=.a.eA..$......-......c{.'=..`....$..8...E?'..*9...8 v.......c.1:.%.Db.M..Y......"..(.!..'L.........d..@..H.6Z...2.L.{.....3.......*....+.g..?.OK....*P.V..!.l>...k.+.S2k..B.......0..B..@....6....Z.z....z.u..........Q.u../........Q.L.PNe.p(BQ.J..(h...lx........(..CB..h.N=. ..(...>T<.jm.BO.K f1F.m...9.d.. .......q...jC..uv.cT.X!aa@.......I....P...B......!@..A...hc..N.F-.....)..l.oF.I6U..^h....+..............D.`.XiB.`.qB.J.t.8...E.*.9"q..M>.b..i.X.....Jt..8.......@.....Dd1H.a..P....vQ......(.R.K1#.Iu.},.a).h....P...X...B....\. .z....h....ch.(0d.Bo.........,!b?<!:..Q...b...T%fK...H......\...... Q.e{....P#..t.....0).........Z....N...%....F>..CP,.D&u..*#...0.G.[.&..F..E...........r&`.$yQ.qq.....B.$....#D.m.7............z..@N.E........d..B............t...N..6.q.....t. J.J1..
                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                File Type:Unicode text, UTF-8 (with BOM) text, with very long lines (24085), with no line terminators
                Category:dropped
                Size (bytes):24088
                Entropy (8bit):4.914223690354137
                Encrypted:false
                SSDEEP:
                MD5:40745DAFD0EEA5E9EB11B22541E5AFEC
                SHA1:C14877DE3E7723ADF32F449468C05BDCA5DF31C6
                SHA-256:8C8BF7132FDC107B4915C06C6CAAD1EAD529B85D39A061A0E60FDA3B268F3046
                SHA-512:777B06A344CF212B96D67793FD7B059165B60B7A30D4C003F21F0969E54BC4C2294C890DFD40FA4D973C0EC946720987FCE98CE8B4508907DEA84445B570566F
                Malicious:false
                Reputation:low
                Preview:.window.globalProvideData('slide', '{"title":"Vital information","trackViews":true,"showMenuResultIcon":false,"viewGroupId":"","historyGroupId":"","videoZoom":"","scrolling":false,"transition":"appear","transDuration":0,"transDir":1,"wipeTrans":false,"slideLock":false,"navIndex":-1,"globalAudioId":"","thumbnailid":"","slideNumberInScene":3,"includeInSlideCounts":true,"presenterRef":{"id":"none"},"showAnimationId":"","lmsId":"Slide3","width":960,"height":540,"resume":false,"background":{"type":"fill","fill":{"type":"linear","rotation":90,"colors":[{"kind":"color","rgb":"0xFFFFFF","alpha":100,"stop":0}]}},"id":"5qk8YKdTEAb","actionGroups":{"ActGrpOnNextButtonClick":{"kind":"actiongroup","actions":[{"kind":"gotoplay","window":"_current","wndtype":"normal","objRef":{"type":"string","value":"_player.61PprjRJDhL.5htsnKIAiQ0"}}]},"ActGrpOnPrevButtonClick":{"kind":"actiongroup","actions":[{"kind":"history_prev"}]},"NavigationRestrictionNextSlide_5qk8YKdTEAb":{"kind":"actiongroup","actions":[
                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                File Type:MPEG ADTS, layer III, v1, 56 kbps, 44.1 kHz, Monaural
                Category:downloaded
                Size (bytes):30298
                Entropy (8bit):7.89959789059646
                Encrypted:false
                SSDEEP:
                MD5:BDA90FAC18CDFB95E146CE340479675A
                SHA1:9D4D36FF83D01160734B6236CDC8F76BB022E85B
                SHA-256:B84C3593F0C6C5598F2CBB0F8A59E4C66B7423A5682CC64859873A4BD93901DC
                SHA-512:D6DD5F8FD3EEFD082CB24445F5F92529E3642D6B72A1CCA7DF86EF5C67296660A4BD56C048D5A31F1B3CBE7BF744EC7D5A9AC9A2920EE7F17F3BAB9731146B17
                Malicious:false
                Reputation:low
                URL:https://ceomedia.wf.com/ceo-demo/Tutorials/Welcome/story_content/6SqHbn7b3cx_44100_56_0.mp3
                Preview:..@..................Info..........u.............."#'*+.1369;>ACFGJNORUWZ]_bcgjknqsvy{~.....................................................9LAME3.100......,J...8$.."..8..u.?..........@.......c$vA-..&Q......D..YD#..4D.N...... B?.s\..z4m.]1..!h....>D.p`........|....T......."..7...(.W..$?3.o bA. ....2..D@v.*f..MS.&.u..,.d....#A...Y.G.?.*..g9H.Qq....2."8N.....B....t....6.M..`..'u...O...0.J......ea.D..9..c.I.q.H.......f.$+`.R..v*...$....p.....Q..QxP....%.3^v[..L>..kx.A.6.1.k_(..}L`Q(.......d..N...3b.`..^...3:.&..v[......1,Uz....:..B.....%..X.F.......t.3.p..*'-;<...x...Uw..UH.[.@...Qd.Jo....L.M..Z.'....IY.T@.2.`. ........x.y.0.....D..8."...........#..R.......(G.k..P..\,..Z...S?}..?yzZZ..8.C.......@...c...B.....%..+.3.dT........I..`.(@...%I.-r.T......BI...V..O.6.R...3!I.RR.HU.N&Z..^......a.*|LY.H.B ,8f...T.b.....Z.e..:..l.2...5.#/\.JJ;.;..'.J....%.rX.?.NH.:6.U.F...U..f.&&JX....B......!..0.-.$.....4..P..%W..;...n^.e...o.."...P.#V(..b.@.$..2..$..38.9..k....V
                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                File Type:ASCII text, with very long lines (885), with no line terminators
                Category:downloaded
                Size (bytes):885
                Entropy (8bit):4.604470459554573
                Encrypted:false
                SSDEEP:
                MD5:C2C976E51FD9D4E23C59CC2CA45C6E82
                SHA1:A0A5B4D5380FD89C00A0468C5BEE141367942C6D
                SHA-256:0EBEE58A0C29E686C3B4FC83A45EE432B7E20E990FCC3094DD4C36FF6EB06B4A
                SHA-512:0E87CE96A4F586BDC2ED7A9DEC727352DE55FAE501B8BDB9A394C445C8D882FC0159688B997AF93311B81FE971D1C2B97020ADF19A31DB8E3037A4045D3CE8C9
                Malicious:false
                Reputation:low
                URL:https://ceomedia.wf.com/ceo-demo/Tutorials/Welcome/story_content/5zqVvfYYJjZ_captions.js
                Preview:window.globalProvideData('caption', '{"data":"WEBVTT%0D%0AKind:%20captions%0D%0ASource:%20Articulate%20Closed%20Captions%20Editor%0D%0ASource%20Version:%206.63.27628.0%0D%0A%0D%0A00:00:00.484%20--%3E%2000:00:04.864%0D%0ATask%20tiles%20put%20all%20your%20time-sensitive%20tasks%20in%20one%20place,%0D%0A%0D%0A00:00:04.865%20--%3E%2000:00:09.152%0D%0Agiving%20you%20quick%20access%20to%20items%20that%20require%20your%20review%20or%20approval.%20%0D%0A%0D%0A00:00:09.792%20--%3E%2000:00:15.008%0D%0ASelect%20a%20task%20tile%20to%20review%20pending%20payment%20approvals%20or%20payment%20exceptions%20and%20repairs.%20%0D%0A%0D%0A00:00:15.552%20--%3E%2000:00:20.596%0D%0AYou%20can%20also%20review%20and%20approve%20management%20tasks%20or%20pending%20documents%20and%20requests.%20%0D%0A%0D%0A00:00:20.664%20--%3E%2000:00:22.200%0D%0A%0AIt%E2%80%99s%20that%20simple!%0D%0A%0D%0A%0D%0A"}')
                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                File Type:Unicode text, UTF-8 (with BOM) text, with very long lines (25131), with no line terminators
                Category:dropped
                Size (bytes):25136
                Entropy (8bit):4.957461310818778
                Encrypted:false
                SSDEEP:
                MD5:2F438756B772FF2FFD72543B107EE5EC
                SHA1:830CAD47D68AEE59E8389F811C9AC1738A7447E7
                SHA-256:E64A679BB6290DF8B9C2051140D8AF3D15993228A5F33FB93682DC58FA7FC382
                SHA-512:EE21FE1A0276B122A0B0906D834856CA179B109C4EE55AAC052DC7258401D4AF1D87C88DFE57B3CBCFA26B4016E623DB1FF67ABD63FF08573794065EADC97DEC
                Malicious:false
                Reputation:low
                Preview:.window.globalProvideData('slide', '{"title":"Thank you!","trackViews":true,"showMenuResultIcon":false,"viewGroupId":"","historyGroupId":"","videoZoom":"","scrolling":false,"transition":"appear","transDuration":0,"transDir":1,"wipeTrans":false,"slideLock":false,"navIndex":-1,"globalAudioId":"","thumbnailid":"","slideNumberInScene":11,"includeInSlideCounts":true,"presenterRef":{"id":"none"},"showAnimationId":"","lmsId":"Slide11","width":960,"height":540,"resume":false,"background":{"type":"fill","fill":{"type":"linear","rotation":90,"colors":[{"kind":"color","rgb":"0xFFFFFF","alpha":100,"stop":0}]}},"id":"6HQNkdCY2Lo","actionGroups":{"ActGrpOnNextButtonClick":{"kind":"actiongroup","actions":[]},"ActGrpOnPrevButtonClick":{"kind":"actiongroup","actions":[{"kind":"history_prev"}]},"NavigationRestrictionNextSlide_6HQNkdCY2Lo":{"kind":"actiongroup","actions":[{"kind":"exe_actiongroup","id":"ActGrpOnNextButtonClick"}]},"NavigationRestrictionPreviousSlide_6HQNkdCY2Lo":{"kind":"actiongroup","
                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                File Type:ASCII text, with very long lines (946), with no line terminators
                Category:downloaded
                Size (bytes):946
                Entropy (8bit):4.646088267801319
                Encrypted:false
                SSDEEP:
                MD5:EA49C71C9F69A59A65B705325DA52967
                SHA1:8355D35E58055E83B12FBB751FE180F4CC7904B7
                SHA-256:3B804CD03FC3AC5F81295E4DDCD9E9906CA0303790D22355DCD7B3A203302FE9
                SHA-512:E59606E4F19EACE643D8E82F22BF860989C993AD263A89B4D975A6E0AF5EF8C42B1628B92AF43CD880068FED10A471B9412A53F4D2029EABC910EC219AF6B4AC
                Malicious:false
                Reputation:low
                URL:https://ceomedia.wf.com/ceo-demo/Tutorials/Welcome/story_content/5womlYNk9X0_captions.js
                Preview:window.globalProvideData('caption', '{"data":"WEBVTT%0D%0AKind:%20captions%0D%0ASource:%20Articulate%20Closed%20Captions%20Editor%0D%0ASource%20Version:%206.63.27628.0%0D%0A%0D%0A00:00:00.292%20--%3E%2000:00:01.968%0D%0AHello,%20and%20welcome!%0D%0A%0D%0A00:00:01.969%20--%3E%2000:00:03.957%0D%0AYour%20success%20is%20our%20success,%20%0D%0A%0D%0A00:00:03.958%20--%3E%2000:00:07.514%0D%0Aso%20at%20Wells%20Fargo%20we%E2%80%99ve%20challenged%20ourselves%20to%20reimagine%20%0D%0A%0D%0A00:00:07.515%20--%3E%2000:00:13.731%0D%0Athe%20digital%20banking%20experience%20in%20ways%20that%20will%20make%20it%20easier%20for%20you%20to%20manage%20your%20business%20finances.%20%0D%0A%0D%0A00:00:14.080%20--%3E%2000:00:17.583%0D%0AWe%E2%80%99re%20excited%20to%20introduce%20you%20to%20the%20Wells%20Fargo%20Vantage%20platform,%0D%0A%0D%0A00:00:17.584%20--%3E%2000:00:20.288%0D%0A%20the%20future%20of%20digital%20banking%20at%20Wells%20Fargo.%0D%0A%0D%0A"}')
                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                File Type:ASCII text, with very long lines (1101), with no line terminators
                Category:downloaded
                Size (bytes):1101
                Entropy (8bit):4.633955718330315
                Encrypted:false
                SSDEEP:
                MD5:1572909E4B552A5515C24A89F2BA53EC
                SHA1:E7CCC35DA5146D36275587E00E5DDCC9843B06D1
                SHA-256:4A6DD57034133EEF09A28DE194FD733CB8305D3A3AF0A24EC482185E125460E2
                SHA-512:8A9E6CD08F9AD7B41997C6A72F1D309DD032505EAF7DD40E0431694302B9C6B4964C678FC25E357323EA1BB572B4CF255ED25A7E3E9885F5D5721ECC2736613B
                Malicious:false
                Reputation:low
                URL:https://ceomedia.wf.com/ceo-demo/Tutorials/Welcome/story_content/6WdipO4CoJB_captions.js
                Preview:window.globalProvideData('caption', '{"data":"WEBVTT%0D%0AKind:%20captions%0D%0ASource:%20Articulate%20Closed%20Captions%20Editor%0D%0ASource%20Version:%206.63.27628.0%0D%0A%0D%0A00:00:00.256%20--%3E%2000:00:04.903%0D%0ANotice%20that%20we%E2%80%99ve%20grouped%20your%20services%20in%20the%20navigation%20bar%20at%20the%20top%20of%20the%20page,%20%0D%0A%0D%0A00:00:04.904%20--%3E%2000:00:07.392%0D%0Amaking%20it%20easy%20to%20find%20just%20what%20you%20need.%20%0D%0A%0D%0A00:00:07.968%20--%3E%2000:00:12.456%0D%0AWant%20to%20review%20and%20approve%20payment%20exceptions?%20Select%20Payments%20\u0026amp;%20Transfers.%20%0D%0A%0D%0A00:00:12.576%20--%3E%2000:00:15.808%0D%0ANeed%20to%20view%20your%20latest%20credit%20information?%20Select%20Lending.%20%0D%0A%0D%0A00:00:16.384%20--%3E%2000:00:23.303%0D%0AThe%20navigation%20bar%20appears%20on%20every%20Vantage%20page,%20helping%20you%20confidently%20move%20through%20the%20experience%20from%20most%20anywhere.%20%0D%0A%0D%0A00:00:23.304%20--%3E%2000
                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                File Type:MPEG ADTS, layer III, v1, 56 kbps, 44.1 kHz, Monaural
                Category:dropped
                Size (bytes):100698
                Entropy (8bit):7.912407635879788
                Encrypted:false
                SSDEEP:
                MD5:F153C500853AD253DA33674B0FEAD48E
                SHA1:4D2E30C5746DE78F9A702EB1F9241D7E6D60A4E3
                SHA-256:B2AD24A253B0E017A70D39761CA6CC30E2FFFB27825DF137E569D0D17D85F3D1
                SHA-512:366E10A80FCC7616205B9668A0E9B8A41AE55510F6702CA1006F727F1B1121497635ABEEBACEF0C7420D3FD7E67463482E46B0361C5B7DEEE36E22D8D94E0E91
                Malicious:false
                Reputation:low
                Preview:..@..................Info.......%.................!$')+.1368;=@CEGJMORTWY\_acfilnpsvx{}.....................................................9LAME3.100......,8...8$..B..8....)v........@...H... .`A..a....@. ..........(?T. .Jq.8~.P.."|.!....*..|.G/P!..........[......IA....-.>P..X-R4...-....X\r....Z<8............T.g./..RJ%ll@....@..bP.&.......~E....`.$k.M..m..B.........`...a.....'..Uu......-....|.8.ily./.e..@K.k..b}.!.......f;...Y./.:...../..-.sl......:......!..eJ.8j....^A.... ....z....P.....[..-.ss....h%5T)?3yE.s...I...M....`..B....|....m..."....$R..p..e"...k...$..c.&;...d.bQ-Y.0.;.8..*..B....>..@...!....`..5.. ......... ........mz.}..:.e.......\.i.m...-%b.p>.eUe@./.".`.G08.4....j..q..8.f.(.......B...L...Fa..E.#@......*+.}...N.:..G..jqV..X.7...`..{c.G.h...c[\.X_9H.+.X.+.t...S.Z'..t.r.'+.pv\V.s.,.$i.z. 5...Y... ..j5;.j.....Q%..........:....V..]......6j........68.&Dl)....rK..B.......a6.=.......2.....p.`...4A'2....K.w.l.I$$,.\."l.x.{4..)n..g.S.$p.UU.....p
                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                File Type:Unicode text, UTF-8 (with BOM) text, with very long lines (39378), with no line terminators
                Category:downloaded
                Size (bytes):39381
                Entropy (8bit):5.035146357586628
                Encrypted:false
                SSDEEP:
                MD5:3C5CE734F3A07628F21BC83FB3844490
                SHA1:0447E80F82B9C63A77BFC76F305F688C1981C12E
                SHA-256:56D4BE610013E5B044F17F365F8B083DB26E377308CD0B89E0DEF72E1BF62532
                SHA-512:2388A92413C98DC99C51C8A2462D2D18E8045BEDA6846DD3F84A0DCE86DD3A6CFC42DB6E90C5826DB3CA2EC25FB0EEE4009AC59FAA3A27592C02FAEC599827EF
                Malicious:false
                Reputation:low
                URL:https://ceomedia.wf.com/ceo-demo/Tutorials/Welcome/html5/data/js/data.js
                Preview:.window.globalProvideData('data', '{"version":"3.63.27628.0","bwVersion":"4.0","tincanVersion":"1.0","tincanLanguage":"und","projectId":"6TpjrpRR5Pg","courseId":"6dHcanwkGBN_course_id","entryPoint":"_player.61PprjRJDhL","iosFonts":"mobile/fonts.json","debugMode":false,"lessonDuration":0,"textDirection":"ltr","playervars":[{"kind":"playervar","name":"displayCaptions","value":false},{"kind":"playervar","name":"zoomToFit","value":false},{"kind":"playervar","name":"accessibleText","value":false},{"kind":"playervar","name":"menuSlideNumber","value":0},{"kind":"playervar","name":"menuSlideTitle","value":""},{"kind":"playervar","name":"menuSlideReference","value":0},{"kind":"playervar","name":"menuSlidesViewed","value":0},{"kind":"playervar","name":"menuTotalSlides","value":0},{"kind":"playervar","name":"menuProgress","value":0},{"kind":"playervar","name":"menuSectionSlideNumber","value":0},{"kind":"playervar","name":"menuSectionSlidesViewed","value":0},{"kind":"playervar","name":"menuSecti
                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                File Type:Web Open Font Format, TrueType, length 21028, version 1.1
                Category:downloaded
                Size (bytes):21028
                Entropy (8bit):7.966828301497873
                Encrypted:false
                SSDEEP:
                MD5:72862E7CF19603AD24F26BAF86DD0E08
                SHA1:4BD3F3F26F7A8EB357A09DA8636390A28A21F826
                SHA-256:16C11E59500457A4D210E5584E57CDCE82015483C1199119B562120E6510A67A
                SHA-512:F05C3A1A044AA0DF728BB56496F8E7388C3F5C4755018C0F9B380AFD9FBFF581D280AB0D1C1688D98BA125F213C4876EEF631B876EE529EF3B5076E511676D00
                Malicious:false
                Reputation:low
                URL:https://ceomedia.wf.com/ceo-demo/Tutorials/Welcome/html5/lib/stylesheets/mobile-fonts/open-sans-bold.woff
                Preview:wOFF......R$.......T........................GDEF................GPOS................GSUB.......Y...t...OS/2.......`...`.u..cmap...t...........cvt .......].....-..fpgm...l........s.ugasp................glyf......8...X.....head..@....6...6....hhea..@........$.)..hmtx..A........l.M.kern..C............loca..M ............maxp..N.... ... .h..name..N........\..3Xpost..O........(..j.prep..Q<...........k....................................x...5.A...../0.E....-..E.m....2..mz.....)@.]-R...X...@..DN^Q].Md`....]h.,4s...../....................3.......3.....f..................@. [...(....1ASC. . ...........X ........^..... ..x.c```d`.b.......@Z.A.....`.d.c8.p..?.!c0.1.[Lw.D...........\.J..(......T......... .ja.....jK.......?........=.s..........}.......Ly.. ...@w...@G7.x.c.a.g``..$KY...e@.,q@.j...o@<..O.H.t.................c .p@..........3lbd.....-.}.M...!...!....x..TGw.F........)..)7.W..`*.*|o.4@.Q9...K.../..B..c.oH.EG...,H..U...M.y..>.........[7o\...t.j.......^8......=r.^.o.
                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                File Type:Web Open Font Format, TrueType, length 20848, version 1.1
                Category:downloaded
                Size (bytes):20848
                Entropy (8bit):7.969305611927268
                Encrypted:false
                SSDEEP:
                MD5:0D0D7107450F05B72A4507D0D7687DD1
                SHA1:845BBCD4BD3D110360A1994E213F709EF73AC6E8
                SHA-256:A5D937D8CCD079F0088D8095AC27F8387AC099382A8201AB903962A37A41CA1D
                SHA-512:5168AA05368CB22DBEDA191F0330569FE1B96FB9ED98E90154974C8C7593E15600C0E054F3B7BDABD4C6A4A0D6B0DD6FC1DD26AA1AE1BDFA022FCDCDB23DCE81
                Malicious:false
                Reputation:low
                URL:https://ceomedia.wf.com/ceo-demo/Tutorials/Welcome/html5/lib/stylesheets/mobile-fonts/open-sans-light.woff
                Preview:wOFF......Qp................................GDEF................GPOS................GSUB.......Y...t...OS/2.......]...`..Qcmap...t...........cvt .......]........fpgm...l........~a..gasp...............#glyf......7...U.0X..head..?....6...6.;.hhea..?........$...Zhmtx..@........l..].kern..B............loca..L4........s4..maxp..M.... ... ....name..N........V..2.post..N........(..j.prep..PT.......:..]....................................x...5.A...../0.E....-..E.m....2..mz.....)@.]-R...X...@..DN^Q].Md`....]h.,4s...../.......x.c`fig.a`e.`..j...(.../2.1..`b.ffcfeabby....A!...A............l..D.Z8z.".....X.Y.........U...x.c```d`.b.......@Z.A.....`.d.c8.p..?.!c0.1.[Lw.D...........\.J..(......T......... .ja.....jK.......?........=.s..........}.......Ly.. ...@w...@G7.x.c.a.g.c..$K..$..`.g.e........ .......R.g......?......x.)d...........$...."....0.#.A@X..0......x.uTGw...........)..)7.W..`*.....G..Kz.)e.|..}.|.1.3...suf...3.....w...H.-.....LOMN.1...~...w....W._.x...S'O..V...+.
                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                File Type:PNG image data, 895 x 1101, 8-bit/color RGBA, non-interlaced
                Category:downloaded
                Size (bytes):5589
                Entropy (8bit):3.3586467115858842
                Encrypted:false
                SSDEEP:
                MD5:B68DDA7C94B79F7CD91E021F79DC6671
                SHA1:8302068F34F0B8EFFE210B1B6532C26207F1A185
                SHA-256:674FB156E83D511A82A80560D2B5045DD34E2CE25A73B6FFF1191B9D1E5560E7
                SHA-512:E7F5012A877FAACB712CE4D122B8002AD47EA310E2CD4E896EE8544842E19F72FD61399EE76276C1D62295276BF51F1D6653162DFFE0AB3F3D27F9DCDC65A2C8
                Malicious:false
                Reputation:low
                URL:https://ceomedia.wf.com/ceo-demo/Tutorials/Welcome/mobile/txt__default_5bXAPoZVS3x.png
                Preview:.PNG........IHDR.......M............IDATx...!R.P.E.sI.Tw.`~+p..............L"...s..n..eYN.}..........{..T...ry..e9U.TUSwOI.M......0|%.L....U5%.v....&........1I....K.W....._w?UU....y...&y3....!Tw.O..[...............?......................@.... .......................@.... ..........?............@.... ..........?............@.....@.... ..........?............................?......................@.... .......................@.... ..........?............@.... ..........?................. ..........?......................@.....?......................@.... .......................@.... ..........?............@.... ..........?............................?......................@.... .......................@.... ..........?............@.... ..........?................. ..........?......................@.....?......................@.... ..........?............@.... ..........?............@.... ..........?............................?......................@.... .......................@
                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                File Type:Unicode text, UTF-8 (with BOM) text, with very long lines (19170), with no line terminators
                Category:dropped
                Size (bytes):19173
                Entropy (8bit):4.928613481962266
                Encrypted:false
                SSDEEP:
                MD5:78B17EBFD7FB66EAAB7B06262CAB71E8
                SHA1:4B52444E23D55FCE91E0732BC965947B0CC75064
                SHA-256:02F3E5370B8FF960FB70C099646D80B169E8C96A0DE18CE679F79E904D19F17D
                SHA-512:CF5BED07BECCEB502C61AC6F55AC85F1B06EC3004C12EBED34B37048C506B79968F7ACEDAE68DEF73FFAC90C19FF3E283D52DA3D25EF5BB5DD7856770F68D660
                Malicious:false
                Reputation:low
                Preview:.window.globalProvideData('slide', '{"title":"Tasks","trackViews":true,"showMenuResultIcon":false,"viewGroupId":"","historyGroupId":"","videoZoom":"","scrolling":false,"transition":"appear","transDuration":0,"transDir":1,"wipeTrans":false,"slideLock":false,"navIndex":-1,"globalAudioId":"","thumbnailid":"","slideNumberInScene":4,"includeInSlideCounts":true,"presenterRef":{"id":"none"},"showAnimationId":"","lmsId":"Slide4","width":960,"height":540,"resume":false,"background":{"type":"fill","fill":{"type":"linear","rotation":90,"colors":[{"kind":"color","rgb":"0xFFFFFF","alpha":100,"stop":0}]}},"id":"5htsnKIAiQ0","actionGroups":{"ActGrpOnNextButtonClick":{"kind":"actiongroup","actions":[{"kind":"gotoplay","window":"_current","wndtype":"normal","objRef":{"type":"string","value":"_player.61PprjRJDhL.5apJP2ZA8J0"}}]},"ActGrpOnPrevButtonClick":{"kind":"actiongroup","actions":[{"kind":"history_prev"}]},"NavigationRestrictionNextSlide_5htsnKIAiQ0":{"kind":"actiongroup","actions":[{"kind":"exe
                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                File Type:MPEG ADTS, layer III, v1, 56 kbps, 44.1 kHz, Monaural
                Category:dropped
                Size (bytes):93256
                Entropy (8bit):7.916603708662569
                Encrypted:false
                SSDEEP:
                MD5:581DA952E145A8FCA1CD9A106B0A9C92
                SHA1:65C5F773249D411A46E0B0281E418740A3146781
                SHA-256:F1B58B5205B2E3F19DD4158705FEC6348B34DD712D33244D961F9E4931EC1D1D
                SHA-512:800CF508DCA12D44296FD439D87FC455AC16CFF46B762E75012F9C613123F1220C08E88A23CAF06CF886DC07E91C4C51FC2DF4DD57659D093E8B8F4F43C8C6EA
                Malicious:false
                Reputation:low
                Preview:..@..................Info..........lH............."$'),.1368;=@CEHJMORTWY\^adfiknpsuxz}.....................................................9LAME3.100......,+...8$..B..8..lH..!........@...H... .`A..a....@. ..........(?T. .Jq.8~.P.."|.!....*..|.G/P!..........[......IA....-.>P..X-R4...-....X\r....Z<8............T.g./..RJ%ll@....@..bP.&.......~E....`.$k.M..m..B.........`...a.....'..Uu......-....|.8.ily./.e..@K.k..b}.!.......f;...Y./.:...../..-.sl......:......!..eJ.8j....^A.....w..o.=J..Z...w......tW.[D..9.=....*.3.*..........B........1...."....m.p..t.6r.Spl_].0....].Bf5..8. .Nz'J...$A..../..YI Z?....0.XEP?@.....0.....)o........h.....?..t........._....~.4C.:.1.i.........U..n../..... $...!tH....J..B......-....6.d...._<HS8...X......Q1Y.M....h..........O6...v..=..[x1...s.;~.w.....y...X.S^..\t...G.....8q.IU.UQ.S.....e.=p.A91...x..F.\.K6.x......lv.u..........*.,.7 .8.c...d...B........IR...2.....H.I........Z.U.A.9@Y2.x.%.G.3L........u.mC7[.'...}...'... tb
                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                File Type:Unicode text, UTF-8 (with BOM) text, with very long lines (65415), with no line terminators
                Category:downloaded
                Size (bytes):108966
                Entropy (8bit):5.076613795946198
                Encrypted:false
                SSDEEP:
                MD5:FB89B377BFBE38C4EEE042F964FD5E75
                SHA1:014457351A393BCF0087EEEEBAA9B68C591F35DB
                SHA-256:0EC1E29FADD9042737A191A40014FB47D1565A6A7F2ED15BA251C3DA541D2FE0
                SHA-512:036E339405A356E6B47153DBF28CD58EDB6F8954E4ACA720EB93CE0FC714013CD79630E8BD76CF3DFA6FBF7AE5DD04D006D2F46FB1DD0CFF5EC312B2424983EB
                Malicious:false
                Reputation:low
                URL:https://ceomedia.wf.com/ceo-demo/Tutorials/Welcome/html5/data/js/paths.js
                Preview:.window.globalProvideData('paths', '{"Lib":{"commandset-0":{"nodeType":"g","children":[{"nodeType":"text","font-family":"Wells Fargo Sans Charse422CF029","font-size":"16px","fill":"#FFFFFF","fill-opacity":1,"children":[{"nodeType":"tspan","x":"4 15.6320009 24.0320015 27.8560016 31.6800017 40.4640021 44.0320022 47.4560025 55.4720032 64.4160034 73.5040037 76.928004 88.6880042 97.0880048 100.9120049 108.3520059 117.456006 131.6640081 140.0640087 143.9040089","y":15.888,"children":["Hello, and welcome!"]}]},{"nodeType":"text","font-family":"Wells Fargo Sans Charse422CF029","font-size":"16px","fill":"#FFFFFF","fill-opacity":1,"children":[{"nodeType":"tspan","x":"4 12.3520002 21.4560003 30.3040008 36.2720012 39.6960015 46.8960013 55.7440018 63.1840028 70.6240038 79.0240044 86.2240042 93.424004 96.8480043 100.6720044 107.8720042 111.2960045 120.4000046 129.2480051 135.2160055 138.6400058","y":56.624,"children":["Your success is our "]}]},{"nodeType":"text","font-family":"Wells Fargo Sans Ch
                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                File Type:ASCII text, with no line terminators
                Category:downloaded
                Size (bytes):18
                Entropy (8bit):3.3502090290998976
                Encrypted:false
                SSDEEP:
                MD5:14BCD11B30C02772E7760D3E5BBF0309
                SHA1:EE4D0937D0C5662D80BB2665291F8ADBAF6D6509
                SHA-256:536CF64CB28348FFB16FD8CC9F16E76D176AFDAD53F92FEF79EA5FF1CCC3541C
                SHA-512:F92F435B5E57E717AE21D4EB7D877FDDF61C9FFD08AB707BEC833DFB165EC90D99803280805D09330298E472F26189AECB36B0F64761411D1CB7966D3168A806
                Malicious:false
                Reputation:low
                URL:https://ceomedia.wf.com/favicon.ico
                Preview:<h1>Error 404</h1>
                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                File Type:ASCII text, with very long lines (520), with no line terminators
                Category:downloaded
                Size (bytes):520
                Entropy (8bit):4.717799997336763
                Encrypted:false
                SSDEEP:
                MD5:503C97CC3405CC98C2C114679CC7265C
                SHA1:E6EE0A9B77CCF38B7D4E5EB79E6A7C19189F52E6
                SHA-256:906F4AB6D950B55848AE6025CDB773D55AE578C1789C4E232449E5E6DB91E845
                SHA-512:EA88AABD438EB154A8981377628C7FD310A0F879614E81D66577AD9A1F2E1A3EDBB5AA2E3199A5FCA0C5760FEF9786B29C4425BCBB595F53D092AD3E8EAB71CE
                Malicious:false
                Reputation:low
                URL:https://ceomedia.wf.com/ceo-demo/Tutorials/Welcome/story_content/6J816HyGoDu_captions.js
                Preview:window.globalProvideData('caption', '{"data":"WEBVTT%0D%0AKind:%20captions%0D%0ASource:%20Articulate%20Closed%20Captions%20Editor%0D%0ASource%20Version:%206.63.27628.0%0D%0A%0D%0A00:00:00.768%20--%3E%2000:00:04.896%0D%0AWe%20look%20forward%20to%20hearing%20your%20feedback%20as%20you%20become%20familiar%20with%20Vantage.%20%0D%0A%0D%0A00:00:05.408%20--%3E%2000:00:09.920%0D%0AThank%20you%20for%20helping%20us%20as%20we%20work%20to%20build%20the%20future%20of%20digital%20banking%20at%20Wells%20Fargo.%20%0D%0A%0D%0A"}')
                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                File Type:Unicode text, UTF-8 (with BOM) text, with very long lines (16367), with no line terminators
                Category:downloaded
                Size (bytes):16374
                Entropy (8bit):4.9610312093563715
                Encrypted:false
                SSDEEP:
                MD5:FB502983C7D5C4181F2404B873C35540
                SHA1:05544E80DD206DB705699320467B0E83CB61C387
                SHA-256:C51E4545AB53F0ADE9F3F166D0E3CE0985BE5499CB78C4D6DDF3226EBE6866EE
                SHA-512:7FA549B7D4519F7B50ABAF03472914BCA9F867628FB5D8562AA5736DE9E6A6CA5DDF8CAE7116DE84311929E5FAB9C77E39821833FD06555482B7648FF145BB61
                Malicious:false
                Reputation:low
                URL:https://ceomedia.wf.com/ceo-demo/Tutorials/Welcome/html5/data/js/6C63pnZAtW7.js
                Preview:.window.globalProvideData('slide', '{"title":"Homepage","trackViews":true,"showMenuResultIcon":false,"viewGroupId":"","historyGroupId":"","videoZoom":"","scrolling":false,"transition":"appear","transDuration":0,"transDir":1,"wipeTrans":false,"slideLock":false,"navIndex":-1,"globalAudioId":"","thumbnailid":"","slideNumberInScene":2,"includeInSlideCounts":true,"presenterRef":{"id":"none"},"showAnimationId":"","lmsId":"Slide2","width":960,"height":540,"resume":false,"background":{"type":"fill","fill":{"type":"linear","rotation":90,"colors":[{"kind":"color","rgb":"0xFFFFFF","alpha":100,"stop":0}]}},"id":"6C63pnZAtW7","actionGroups":{"ActGrpOnNextButtonClick":{"kind":"actiongroup","actions":[{"kind":"gotoplay","window":"_current","wndtype":"normal","objRef":{"type":"string","value":"_player.61PprjRJDhL.5qk8YKdTEAb"}}]},"ActGrpOnPrevButtonClick":{"kind":"actiongroup","actions":[{"kind":"history_prev"}]},"NavigationRestrictionNextSlide_6C63pnZAtW7":{"kind":"actiongroup","actions":[{"kind":"
                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                File Type:JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 1476x1000, components 3
                Category:downloaded
                Size (bytes):440674
                Entropy (8bit):7.970352044676641
                Encrypted:false
                SSDEEP:
                MD5:402D8222EEAFDA6E97C883B6471DF431
                SHA1:AD6E5256012878C434A12BF6D6C8437066D605C7
                SHA-256:47562EE49F83DB585257AEEFA2C74B196A0452A186EEAD09616B5810D90CB2DC
                SHA-512:2DA972FB0E117F2A1D3ED1671573DAB062F877894D7CCA8252C34573732031408D1AA2BCE90608208959E19737BB991C388E84280BB8D5F89A70E6EC96E67F17
                Malicious:false
                Reputation:low
                URL:https://ceomedia.wf.com/ceo-demo/Tutorials/Welcome/mobile/5blbPV7L2yk_P_0_0_1475_999.jpg
                Preview:......JFIF.....`.`.....C....................................................................C............................................................................"...........................................s...........................!."#13AQa.$24Cq......DSTd.....Bct%Rs.....5Eb....Ueru........&...........6..'FV....f....................................P......................!a..1AQ.....q.....#..."3b.$CRr..4BT...2DS....%cd..E&Uet.............?..9&\RY`8.(...E...=-..=./G..,0.E...O..~..[C...q......d...h.8..8q....Q....|..n.UtI,?Y.<bD..l.f..?...3.~XP.ENV1S. ..\...Kp.KIM9.k..1.Rr.....z...).A..i.@`)<.0..&..m.%..bc..b../....F._..m...a4h.K.k.?....p.I.*P.4.T....Q.jo{..w/....$..h.8.J..'..N..67.C.....L\R..o...7....;...,#-0..0..a......mg.MgA......2...zOA....q..8...)>k..[{.Bn..YaB.S<..UO..U........OVXu>YUc...._..q.HM.J..".I.b.....fm..s.K..&.........5eP..}..I>0.Li.3J....nu.....M=...*x......4..-.n..$.N1.....{.FN..T.o....H..8...R..i...,n...Lh...3.......1.{P.
                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                File Type:ASCII text
                Category:downloaded
                Size (bytes):60
                Entropy (8bit):4.249791896188175
                Encrypted:false
                SSDEEP:
                MD5:4942D51813CACBDB89FB17F6AA9118BB
                SHA1:8ECB4856862889A3B6D22187DC9A3F807D02FC06
                SHA-256:D7A0A2A24CD9F4E56ED6CBA8DC21043ADF413678B10D85ADA35FF8F32E4BE386
                SHA-512:C1EE7A6E0620BA464071BE689D4E4F583D7F23416F07ED15928F5B7DE220D08007F67E310C98E80AEA5C3E7F9DADFECD74D0AB50CC4BBE2396E86221A51186EE
                Malicious:false
                Reputation:low
                URL:https://ceomedia.wf.com/ceo-demo/Tutorials/Welcome/story_content/user.js
                Preview:function ExecuteScript(strId).{. switch (strId). {. }.}..
                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                File Type:MPEG ADTS, layer III, v1, 56 kbps, 44.1 kHz, Monaural
                Category:dropped
                Size (bytes):74001
                Entropy (8bit):7.908952016068668
                Encrypted:false
                SSDEEP:
                MD5:6C423722CAFE25ADDF830F45D6AAEA13
                SHA1:3B3E6117ECE60B868CA71D274C52FB5E966F8BC2
                SHA-256:1F97A7DD9136B6EF12A0662D8678796F155C09FB5355802836E8D45FF221FEBD
                SHA-512:AEC7C96A83A0F7B9C0801236E7A421C101A6E59D58AB5B67359829DCED8870216EDDD09384D303B0D1810DC61FB909491EE445B302DDBF64D8FBD45393266D52
                Malicious:false
                Reputation:low
                Preview:..@..................Info.......... .............."$'),/1469;>@CEHJMPRUWZ\_adfiknqsvx{}.....................................................9LAME3.100......,8...8$.vB..8.. ..B`.......@...H... .`A..a....@. ..........(?T. .Jq.8~.P.."|.!....*..|.G/P!..........[......IA....-.>P..X-R4...-....X\r....Z<8............T.g./..RJ%ll@....@..bP.&.......~E....`.$k.M..m..B.........`...a.....'..Uu......-....|.8.ily./.e..@K.k..b}.!.......f;...Y./.:...../..-.sl......:......!..eJ.8j....^A.... ....z....P.....[..-.ss....h%5T)?3yE.s...I...M....`..B....|....m....H..$R..p..e"...k.4..5%.g.$.GJl..a,.....o..0&..0p`.......f.......C".W.0.U.'...E........i..aP...&...2.6.1.b......n..r-oklI.p.9-T9.U.......Pr.Z...N2H...2.>T.#...D/...B.....3D..?..h..8a.}.....-.b.U..p$JPQAQ..KSUE.....~..v.\8.......+..@..q.*3Z>..b...$.......'..3....-.Y.......b.. .......y..E.....n.4)...rp.._....X$.@./.......(.P..... .9...B.....'F..A=.$$.3.kr.^..B7...0...]f..1JT..V.........T.E.r.]d..G.,..8.+.5.$..o.....
                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                File Type:Unicode text, UTF-8 (with BOM) text, with very long lines (28229), with no line terminators
                Category:downloaded
                Size (bytes):28232
                Entropy (8bit):4.9173082555909575
                Encrypted:false
                SSDEEP:
                MD5:55BE53075B67D3B6C6D305A9CF78C520
                SHA1:6E41CB7E879B0BEDF849AEF0E0AA3B1F08E304F0
                SHA-256:C8AE65FD99F9BAD2E6E63DDEE23826194177C831E74068E17D0179E12B55F8E6
                SHA-512:C5091D15712F5C83C7D5E449EA4E4B1ECAD0E138EB102B01DA849B047B3A37F01D32A6202F05ECC409D784E7F3A6A255BC91636F266C4867612EF6EF4EECDC52
                Malicious:false
                Reputation:low
                URL:https://ceomedia.wf.com/ceo-demo/Tutorials/Welcome/html5/data/js/5apJP2ZA8J0.js
                Preview:.window.globalProvideData('slide', '{"title":"Navigation","trackViews":true,"showMenuResultIcon":false,"viewGroupId":"","historyGroupId":"","videoZoom":"","scrolling":false,"transition":"appear","transDuration":0,"transDir":1,"wipeTrans":false,"slideLock":false,"navIndex":-1,"globalAudioId":"","thumbnailid":"","slideNumberInScene":5,"includeInSlideCounts":true,"presenterRef":{"id":"none"},"showAnimationId":"","lmsId":"Slide5","width":960,"height":540,"resume":false,"background":{"type":"fill","fill":{"type":"linear","rotation":90,"colors":[{"kind":"color","rgb":"0xFFFFFF","alpha":100,"stop":0}]}},"id":"5apJP2ZA8J0","actionGroups":{"ActGrpOnNextButtonClick":{"kind":"actiongroup","actions":[{"kind":"gotoplay","window":"_current","wndtype":"normal","objRef":{"type":"string","value":"_player.61PprjRJDhL.5d9y0BtOKNR"}}]},"ActGrpOnPrevButtonClick":{"kind":"actiongroup","actions":[{"kind":"history_prev"}]},"NavigationRestrictionNextSlide_5apJP2ZA8J0":{"kind":"actiongroup","actions":[{"kind"
                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                File Type:MPEG ADTS, layer III, v1, 56 kbps, 44.1 kHz, Monaural
                Category:dropped
                Size (bytes):145919
                Entropy (8bit):7.920794968002362
                Encrypted:false
                SSDEEP:
                MD5:7C48A39BEC812E9CA51218905D9F891A
                SHA1:8E40A4A5BA986D630D58D1A44231FC002D0D75F5
                SHA-256:885C8E5FA915B685A644A6F5887A5D945C34C5E7AD8D39D2C07D457207B11D58
                SHA-512:FCC680D94B2A9268A3721D212FD4C1F78D1DBD42E8C98EC624D40DCFA23820E5F4E02D2968D0524824EABB26357C79CF2C8A009A3D1FAAC6431E91F4789CFEC2
                Malicious:false
                Reputation:low
                Preview:..@..................Info..........9..............!#&)+.0358;=@BEGJMORTWY\_adfiknqsvx{}.....................................................9LAME3.100......,>...8$..B..8..9..|f........@....._...../....4.....;l.RB.7~";...N ..i.....B...g....)....._!.D..z..@C.....b.D.>..pc..**<.......;..P....>V.%.&.U....<..z...,.@..y1.j.............pM..5q......[b.....B..... . ..+.......N5F...iAnB%.0..5...%.6.f[b......n..Q1...!9)`54K......`....L2...AC..(V....2.i.x..-(.<< .h#.......U.F..\....uY.>.....h-.V.w...Z.j@...Y.+..\.C.-.......h..B....B....X.'F$p. .....J...E.#p.....E.".....V.:......(..!.dw.........2...5|>..}c..Y+...%uA.K.D3..R.;jl.........._...gLQO..B...[.... ......). ...ob...(.6...\.....\..U...kw..."...q|X6....B.....)D.tA&...!p.9...i.D.I..Qu...........@..P<...S''."....%.T|b(..8...<....O<....0.......IC.....%......!.ww.=.J.d.......}.O#q...~.8.D..3$.f.(.~...=9<.....C.x.z.r.3X..E..X.N..B......#....6......L5.)..NDb..8..H.H..=..pF@.-.).#...PUPc......E...-..9Z.x....
                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                File Type:PNG image data, 1122 x 506, 8-bit/color RGBA, non-interlaced
                Category:downloaded
                Size (bytes):37221
                Entropy (8bit):7.731096421325429
                Encrypted:false
                SSDEEP:
                MD5:464B58BB8ECEE626F0C150E4C5C5082C
                SHA1:375F0460C5A7E7905469000877063176D044DF3A
                SHA-256:D1C3E96020C0ACCB65C4BA5D251A7BB0007A0D4B20794C3B2545D27390E95998
                SHA-512:EA8B145DC9ADA380C72F48A1111573417A34D5298D050924466CE27E1B234C4FF12F4F3B4FCBF1EDE27CB9D7ED60AFD670BB92FF5628F59D89B2F307FB8BC775
                Malicious:false
                Reputation:low
                URL:https://ceomedia.wf.com/ceo-demo/Tutorials/Welcome/mobile/60vCXJXodXB.png
                Preview:.PNG........IHDR...b.........L>.....,IDATx....e.]...m...O.K.Gm.&..VI`....!.1.^..Bb.T..dH..4.N..+.$&...`3.Q..L".H.&.$$J...K...........=....>...r.|...y..e..^{.....~...{..........................................................................0b........0b.........#.........#.........#.J...................................................*.........#.........#.........0b........0b........0b.........#.........#.........0b........0b...yg..g....o.Z....-M.?.#?..W.......{o~.zw}.S+..;.......kn/...4..........2b.}.z_...c..I..Vb@...4dxL#...&...<.....}.....&.w.1..}....y.3.R...z.H....,".Ku!.|...........#f..1...F.IW#..]..../^.1......N...~._..ft.~.9*.......0b6....:..a.L.K..=7..57.\.Mm.........0bf..Fd.z.1..N5....1..........#F.4_..q.Ci....}...^~.H:..RJG.k{........^........{..FLi.a.Ay.R...W.u...t.H.Ju.m...t.t..W..OM...N..}.y/...._<f..xN...'..;...!....#..)o4.J.t.Z..u.rk.X..+.........1...........M.ZD.&..>B.+../.?.....$...S.6.n.,]..Z.\~..F......c..e......6.[.7
                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                File Type:ASCII text, with very long lines (648), with no line terminators
                Category:downloaded
                Size (bytes):648
                Entropy (8bit):4.671122337614662
                Encrypted:false
                SSDEEP:
                MD5:114DED8CF861F02B5FC2FA9C07D80330
                SHA1:785912220D8E45D12B503C644FF1C986455088E7
                SHA-256:CB641746F1F8772C78F9E1B70908B17D088D115F80C94340DC9C151485EC758F
                SHA-512:92A92F913224316455BE71F6025A8EDE632273919978CDFCFA335DCA764527653B6AAB3642C98680DBD46AB9F5F8D8E8A167960587FE404D57A694A14AAC4A80
                Malicious:false
                Reputation:low
                URL:https://ceomedia.wf.com/ceo-demo/Tutorials/Welcome/story_content/5we05BGHFCF_captions.js
                Preview:window.globalProvideData('caption', '{"data":"WEBVTT%0D%0AKind:%20captions%0D%0ASource:%20Articulate%20Closed%20Captions%20Editor%0D%0ASource%20Version:%206.63.27628.0%0D%0A%0D%0A00:00:01.012%20--%3E%2000:00:05.307%0D%0AWe%20know%20how%20important%20it%20is%20for%20you%20to%20quickly%20access%20vital%20information,%20%0D%0A%0D%0A00:00:05.308%20--%3E%2000:00:11.327%0D%0Aso%20we%E2%80%99ve%20added%20Tasks,%20Notifications,%20and%20User%20Profile%20icons%20at%20the%20top-right%20of%20the%20page.%20%0D%0A%0D%0A00:00:11.328%20--%3E%2000:00:14.220%0D%0A%0AThese%20quickly%20take%20you%20to%20the%20information%20you%20need.%20%0D%0A%0D%0A%0D%0A"}')
                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                File Type:ASCII text, with very long lines (603), with no line terminators
                Category:downloaded
                Size (bytes):603
                Entropy (8bit):5.400770477266687
                Encrypted:false
                SSDEEP:
                MD5:878BFE21AA9869D03F70A4D0D2A682F6
                SHA1:E9509A6D0EF1A10226EF66F9DD0D421540772A48
                SHA-256:ABCF3424FE0204FED82514A4AEF93A2CD1492B9451D6AF8462CD49E78240C946
                SHA-512:89B191497CE614A899B5EAE73661FE5F26FB95D3655B1CBD61D9E373BF365B652325835EFA73CF6C332F457F4C6C563B1D24CD9294C156DC4FC4809EB705AC5F
                Malicious:false
                Reputation:low
                URL:https://ceomedia.wf.com/ceo-demo/Tutorials/Welcome/story_content/5gaV0d9DxI7.js
                Preview:window.globalProvideSvgData('svg-5gaV0d9DxI7', "<svg width=\"48\" height=\"71\" xmlns=\"http://www.w3.org/2000/svg\" xmlns:xlink=\"http://www.w3.org/1999/xlink\" xml:space=\"preserve\" overflow=\"hidden\" id=\"svg-5gaV0d9DxI7\"><g pointer-events=\"visiblePainted\" data-accepts=\"events\"><defs><clipPath id=\"clip0-6IAdfNWBeiy\"><rect x=\"657\" y=\"389\" width=\"48\" height=\"71\" /></clipPath></defs><g clip-path=\"url(#clip0-6IAdfNWBeiy)\" transform=\"translate(-657 -389)\"><path d=\"M657 389 681 389 705 424.5 681 460 657 460 681 424.5Z\" fill=\"#FFC000\" fill-rule=\"evenodd\" /></g></g></svg>");
                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                File Type:Unicode text, UTF-8 (with BOM) text, with very long lines (65477)
                Category:downloaded
                Size (bytes):910594
                Entropy (8bit):5.406906332789719
                Encrypted:false
                SSDEEP:
                MD5:8AE746E39BED598E222B61168F724ACE
                SHA1:CEEF43BC2D81EF392D633A663F844840017AC357
                SHA-256:F02B7F625E1CD48DFF6B483A08E4EC555D8212F3E295F554AF7DB5C32EFC1206
                SHA-512:28A95D523B9605585C514B8F5396BB91C6556AA92884A007220BE268087C38CE0AD0BAB09381D81F9772A42BF22B3971EF81DBE0228C8ABE815EE7248990CB9E
                Malicious:false
                Reputation:low
                URL:https://ceomedia.wf.com/ceo-demo/Tutorials/Welcome/html5/lib/scripts/bootstrapper.min.js
                Preview:./*! ds-bootstrap - v1.0.0.27628 - 2022-04-19 5:31pm UTC.* Copyright (c) 2022 ; Not Licensed */(function(){var __webpack_modules__={3847:function(t,e,n){"use strict";var i,r;i=[n(8087)],void 0===(r=function(){Promise.resolve().then((function(){var t=[n(6486),n(6407),n(5273),n(5812),n(6295)];(function(t,e,i){Promise.resolve().then((function(){var e=[n(7510),n(9739),n(857),n(292),n(9229),n(1421),n(5611),n(4698),n(8766),n(7812),n(7594),n(4839),n(9343),n(8579),n(1251),n(8939),n(8880),n(5626),n(1419),n(2581),n(3034),n(3716),n(8901),n(9835),n(3400),n(9032),n(1070),n(3797),n(9904),n(6882),n(3005),n(4481),n(1291),n(8935),n(2972),n(9447),n(1681),n(7097),n(2075),n(5641),n(2499),n(1294),n(82),n(6194),n(4811),n(118),n(7235),n(7300),n(520),n(3586),n(5173),n(262),n(6978),n(5337),n(6334),n(6159),n(9005),n(4427),n(8945),n(4403),n(5485),n(6936),n(5470),n(3707),n(8467),n(8351)];(function(e,n,r,o,s,a,l,u,c,h,d,p,f,v,g,m,y,b,w,A,E,S,T,x,C,_,k,M,O,L,P,I,R,D,N,H,V,F,B,j,U,z,W,G,q,Y,X,K,J,Z,$,Q,tt,et,nt,it
                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                File Type:ASCII text, with very long lines (65536), with no line terminators
                Category:downloaded
                Size (bytes):129322
                Entropy (8bit):5.153783133760939
                Encrypted:false
                SSDEEP:
                MD5:02380B7C95CBF50ACBF592BF6AE497AF
                SHA1:3BD2B9EC01A0EAF15D8CC86054231395879E63C8
                SHA-256:AA1D2517F96D5DAFCE7F4382D3A3A8AA816689232B1D9C59066FF467FECEB375
                SHA-512:E335508A928D7AAEA4586FB064696A1E602C68D0B52C2291F65019D26EFD653B98C45251155F9E9816AC72E6033A361337DAF31A82CA2C5CD947E02B836A1AB8
                Malicious:false
                Reputation:low
                URL:https://ceomedia.wf.com/ceo-demo/Tutorials/Welcome/html5/lib/stylesheets/desktop.min.css
                Preview:@media(forced-colors: active),(-ms-high-contrast: active){.show-focus .tab-focus-box,.skipnav{forced-color-adjust:none;-ms-high-contrast-adjust:none}#outline-search-content .cs-listitem,#outline-search-content .search-clear{forced-color-adjust:none;-ms-high-contrast-adjust:none;color:WindowText !important;color:CanvasText !important;border:none}#outline-search-content .cs-listitem.cs-selected,#outline-search-content .cs-listitem:hover,#outline-search-content .cs-listitem.hover,#outline-search-content .search-clear.cs-selected,#outline-search-content .search-clear:hover,#outline-search-content .search-clear.hover{color:HighlightText !important;background:Highlight !important}#outline-search-content .cs-listitem.cs-selected .cs-icon polygon,#outline-search-content .cs-listitem:hover .cs-icon polygon,#outline-search-content .cs-listitem.hover .cs-icon polygon,#outline-search-content .search-clear.cs-selected .cs-icon polygon,#outline-search-content .search-clear:hover .cs-icon polygon,#ou
                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                File Type:MPEG ADTS, layer III, v1, 56 kbps, 44.1 kHz, Monaural
                Category:downloaded
                Size (bytes):192675
                Entropy (8bit):7.922377981563854
                Encrypted:false
                SSDEEP:
                MD5:6BD386A6FD7B7D5BE4EBFD31ACD2122D
                SHA1:DBB2FE17A044EBE69CB1A97E3F5D0837D136F3BA
                SHA-256:DC4DD41435256A88AAAA4D5F6B498DAC62C01458D0A3121BC7A50E392F4E71F7
                SHA-512:CDE9C7A7C36D2409C1EB99D7A7F3612652E5A2BBD985A4472D68A1F82E69B51FF661CB7177947E0FD6A19DD333D6561C79A3B8A5EA82AF7952B5455400F4FAB9
                Malicious:false
                Reputation:low
                URL:https://ceomedia.wf.com/ceo-demo/Tutorials/Welcome/story_content/64qIBCaMLcc_44100_56_0.mp3
                Preview:..@..................Info...........#............."$&)+.0368;>@CFHJLORTWZ\_adgilnpsux{}.....................................................9LAME3.100......,7...8$.IB..8...#.$.].......@...H... .`A..a....@. ..........(?T. .Jq.8~.P.."|.!....*..|.G/P!..........[......IA....-.>P..X-R4...-....X\r....Z<8............T.g./..RJ%ll@....@..bP.&.......~E....`.$k.M..m..B.........`...a.....'..Uu......-....|.8.ily./.e..@K.k..b}.!.......f;...Y./.:...../..-.sl......:......!..eJ.8j....^A...."....z.#*B....(....B...70.....SUB..7.Q.1,A..zy$.i..V..B...H.....m..!..&...E!...Y.R!`.........is..9.z.^.Q.?...S..y.u.. ..D.v..x..(..40......e.y3..,..\_..2zqpL..@I.m.@.........9.7.z..I4...j}..v[...m.C.T.)@...>Uq.JRn..W1.1...r......B......G.IJ.ft.3..V.-^......x?.$b.9.W..k.....0.Dnb..>..UkV..&G...)d.L.#..:..Z.Aa..:......L...ZB.hU..z.....f(..(..5i6.-.C..!..LOx.-..?gV>z\...+Rd...s..F....z5...J.q.g.A......_....B...... .=4IB....?....*.N.._.\.r.DUt.4,.M..HW,..2#@...0D.B."..P.pr(.I<.M..+q.<.(.9
                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                File Type:Unicode text, UTF-8 (with BOM) text, with very long lines (20944), with no line terminators
                Category:downloaded
                Size (bytes):20947
                Entropy (8bit):4.916967813018443
                Encrypted:false
                SSDEEP:
                MD5:FAB8E140E478F8AD80EAC135A894C9F1
                SHA1:3D9371FD334DD523E13570DE7266ABD1AFA913A3
                SHA-256:31162EF6A98887A1B99AA6FE28501266FE1F2F4318D127BB9F246A478F8D8C00
                SHA-512:BDF524CEF1D3766BF92F580CC8E8A7E9CB98D54D206D6B97D992D3FFE77DCC7CF37F0D4F110F14D91F0870569D71D9EA28FE51E4E2FC3D1C1A6E5CD1A4166BCE
                Malicious:false
                Reputation:low
                URL:https://ceomedia.wf.com/ceo-demo/Tutorials/Welcome/html5/data/js/6dAISHVFDpM.js
                Preview:.window.globalProvideData('slide', '{"title":"Balances and transactions","trackViews":true,"showMenuResultIcon":false,"viewGroupId":"","historyGroupId":"","videoZoom":"","scrolling":false,"transition":"appear","transDuration":0,"transDir":1,"wipeTrans":false,"slideLock":false,"navIndex":-1,"globalAudioId":"","thumbnailid":"","slideNumberInScene":7,"includeInSlideCounts":true,"presenterRef":{"id":"none"},"showAnimationId":"","lmsId":"Slide7","width":960,"height":540,"resume":false,"background":{"type":"fill","fill":{"type":"linear","rotation":90,"colors":[{"kind":"color","rgb":"0xFFFFFF","alpha":100,"stop":0}]}},"id":"6dAISHVFDpM","actionGroups":{"ActGrpOnNextButtonClick":{"kind":"actiongroup","actions":[{"kind":"gotoplay","window":"_current","wndtype":"normal","objRef":{"type":"string","value":"_player.61PprjRJDhL.5Ui1detYgpj"}}]},"ActGrpOnPrevButtonClick":{"kind":"actiongroup","actions":[{"kind":"history_prev"}]},"NavigationRestrictionNextSlide_6dAISHVFDpM":{"kind":"actiongroup","ac
                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                File Type:MPEG ADTS, layer III, v1, 56 kbps, 44.1 kHz, Monaural
                Category:downloaded
                Size (bytes):102527
                Entropy (8bit):7.9249766487762106
                Encrypted:false
                SSDEEP:
                MD5:CB2434DC16FCCB140F3C8D154BC4A39B
                SHA1:95357796FBA73E16AC51084ED9FCE71BF13AF0B3
                SHA-256:470D9983A4F373EC7D9E443F73011D96EBD264126BDD30BCB19996EBDAC0CE5D
                SHA-512:53E1B8B39E04F40DB207B69B0D995A4183840F49B4F58F15E881A49221B0766F70085E274DD6F315789348D5B120305619D18221A1C68A0BC8EDE820662537A2
                Malicious:false
                Reputation:low
                URL:https://ceomedia.wf.com/ceo-demo/Tutorials/Welcome/story_content/6Orvb4o3XtM_44100_56_0.mp3
                Preview:..@..................Info......./.................!$&)+.1368;=@BEHJLORUWY\_bcfilmpsvxz}.....................................................9LAME3.100......,E...8$.."..8...............@........x.M.cL.X@...&+F.9#.R. ....l.I.....B..&+..3#...{.........#......G.c.px.D...'..k._HN.v.S.c.+...=G..{.J.m......".s...V...[.o...`x.6..(.....aPb.{*V.....:O..H.u.D..(r..B......$..K.$..#.).T>....pT:...m.&.....ah..*.t.Y1j.B^...K.[......*.7....M.................q.EY.aD..@|@&.R.M..x.-V.J. \>.!)...e...z{....!U_6..q..@.6.>..iT...8*.'H.*.Q..|%.....Zl...B....(.#&A..S.c..=0..}0..s7..r........9...Q..6.^."...1...q. .a.).$6.@......@.../........N......q6.....*6_.a...~..)F.Q.|z.....+u!O.s....9X...7G7.3-.x.t,.....%..p.f..eV..e.q.-..B.......&a..E.#T...#n&.........=Jy.....5?T..2...{....;...0L..P.j.&SN|L8\y.Z....Xd?....H%.....Q5E.F(.K...!.N....c...h./..Yi.z.iXNE}..MGn`.......G/$W.H0.\..^Z.....zY..a..Bt..B......".../.d(...j...L.9...&`.k ...!V*./....c.{5.T."..C.P.e......9.....L....zu
                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                File Type:ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]
                Category:downloaded
                Size (bytes):166249
                Entropy (8bit):7.9401818834494
                Encrypted:false
                SSDEEP:
                MD5:7C808DE04D78DAF4B2A78B67BEEB7085
                SHA1:FE28E0B4E2A2C3F5BD63CF7478473A503EEA328E
                SHA-256:C39E91D6EA2014A9EC54CC3145724E1883F2763235B1040F3A493698BE16B11A
                SHA-512:2370B44427F8D50CFA74A339EF6306615FDD26846CDE291A296B2E7AA3952328C683B95600C5B969E31ED2158472F4C9E3B504EFDD6E37CE61BB5B9CFD2D8FA3
                Malicious:false
                Reputation:low
                URL:https://ceomedia.wf.com/ceo-demo/Tutorials/Welcome/story_content/video_66miIWUDv1g_18_56_720x406.mp4
                Preview:... ftypisom....isomiso2avc1mp41...{moov...lmvhd....................................................................@..................................2trak...\tkhd........................................................................@......R.......$edts....elst........................mdia... mdhd..............<.....U......-hdlr........vide............VideoHandler....Uminf....vmhd...............$dinf....dref............url ........stbl....stsd............avc1.............................H...H...............................................3avcC.d......gd....@.5............<..-....h....,....pasp..%E..%D....stts...........z.......,stss..................."...(...<...Z...x....ctts......._..................................................................................................................................................................................................................................................................................................................
                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                File Type:Unicode text, UTF-8 (with BOM) text, with very long lines (20503), with no line terminators
                Category:dropped
                Size (bytes):20506
                Entropy (8bit):4.960320241709691
                Encrypted:false
                SSDEEP:
                MD5:8A27D9BFA255E2AA46C63BAA2963F10E
                SHA1:D72A3365B2B9CB39F002E9EA0E562FDF1F14BCA9
                SHA-256:C1E8489CF1EFE6699BC14F72DC1BA0D5FB2F72B7E15FB92C1B8AFBBE23DFADA3
                SHA-512:98DCD50EC3D9606C958ED1F094DA2EA23FAE9E95DF1D6CE3F7D1D178971D162E3E0316831DBE6082E77E164FBAECFA6FB1D81E857A1338CD8114C11AA4CA63C4
                Malicious:false
                Reputation:low
                Preview:.window.globalProvideData('slide', '{"title":"Remember","trackViews":true,"showMenuResultIcon":false,"viewGroupId":"","historyGroupId":"","videoZoom":"","scrolling":false,"transition":"tween","slideLock":false,"navIndex":-1,"globalAudioId":"","thumbnailid":"","slideNumberInScene":10,"includeInSlideCounts":true,"presenterRef":{"id":"none"},"showAnimationId":"6fJ3iI1wGv4","lmsId":"Slide10","width":960,"height":540,"resume":false,"background":{"type":"fill","fill":{"type":"linear","rotation":90,"colors":[{"kind":"color","rgb":"0xFFFFFF","alpha":100,"stop":0}]}},"id":"6Oh30yFpB4r","actionGroups":{"ActGrpOnNextButtonClick":{"kind":"actiongroup","actions":[{"kind":"gotoplay","window":"_current","wndtype":"normal","objRef":{"type":"string","value":"_player.61PprjRJDhL.6HQNkdCY2Lo"}}]},"ActGrpOnAllTimelinesComplete":{"kind":"actiongroup","actions":[{"kind":"exe_actiongroup","id":"ActGrpOnNextButtonClick"}]},"ActGrpOnPrevButtonClick":{"kind":"actiongroup","actions":[{"kind":"history_prev"}]},
                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                File Type:Unicode text, UTF-8 (with BOM) text, with very long lines (65533), with no line terminators
                Category:downloaded
                Size (bytes):123979
                Entropy (8bit):6.114237651568577
                Encrypted:false
                SSDEEP:
                MD5:E094307AD4ADD429424032C617CB0DF6
                SHA1:29F2E395ED917FD44FF1E383B70EAB3EE73E05CD
                SHA-256:58C6F68B313089AB449FF79676C8550880D7D05BC6BD51A5B29129F6475CB13B
                SHA-512:B0F9736DD031BDD16F442D2B6927738626514526858777AC19B3CBBFC605AF81279CF4134C658F8FA928E9AA41576D89BF10528A3520A9F1CA97817DE5C0D138
                Malicious:false
                Reputation:low
                URL:https://ceomedia.wf.com/ceo-demo/Tutorials/Welcome/html5/data/js/frame.js
                Preview:.window.globalProvideData('frame', '{"default_layout":"pxabnsnfns10111001101","textdirection":"ltr","renderingEngineType":1,"device":false,"fontscale":100,"captionFontScale":100,"kbshortcuts":false,"skip_nav_enabled":true,"chromeless":false,"outputtype":"undefined","theme":"unified","themeAccentColor":"0x4FBDF4","layouts":{"npnxnanbsnfns10111001101":{"kind":"layout","font":"Lato22AB4CAF","controllayout":"npnxnanbsnfns10111001101","colorscheme":"pxabnsnfns10111001101","string_table":"pxabnsnfns10111001101"},"pxabnsnfns10111001101":{"kind":"layout","font":"Lato22AB4CAF","controllayout":"pxabnsnfns10111001101","colorscheme":"pxabnsnfns10111001101","string_table":"pxabnsnfns10111001101"},"npxnabnsnfns10111001101":{"kind":"layout","font":"Lato22AB4CAF","controllayout":"npxnabnsnfns10111001101","colorscheme":"pxabnsnfns10111001101","string_table":"pxabnsnfns10111001101"},"npnxnanbnsnfns10111001101":{"kind":"layout","font":"Lato22AB4CAF","controllayout":"npnxnanbnsnfns10111001101","colorsch
                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                File Type:HTML document, ASCII text, with very long lines (1739)
                Category:downloaded
                Size (bytes):6426
                Entropy (8bit):5.322022067070432
                Encrypted:false
                SSDEEP:
                MD5:959F6EEC661D1E8F0033CCE0DBBC8354
                SHA1:36EDB9F8279D913B53A9C73E3AF969FE145ED950
                SHA-256:BF8766363391E3C8214DBA006B1A9A1D82AE964F52A5C7F9E5790DAD37C64BD4
                SHA-512:F93DDA2D25904E07D70A82D757DB9FE6DCCEBC7B5AF3E09E23524DC7C98C2AD3231CA46E76D465BD7155A317157EF109A503023BCB38D2C0E8F6F74F2BDEB8CB
                Malicious:false
                Reputation:low
                URL:https://ceomedia.wf.com/ceo-demo/Tutorials/Welcome/story.html?utm_source=SFMC&utm_medium=email&utm_campaign=&utm_content=&utm_term=7571921&sid=2156571
                Preview:<!doctype html>.<html lang="en-US">.<head>. <meta charset="utf-8">. Created using Storyline 360 - http://www.articulate.com -->. version: 3.63.27628.0 -->. <title>Welcome to Wells Fargo Vantage</title>. <meta http-equiv="x-ua-compatible" content="IE=edge"/>. <meta name="viewport" content="width=device-width,initial-scale=1,user-scalable=no,shrink-to-fit=no,minimal-ui"/>. <meta name="apple-mobile-web-app-capable" content="yes"/>. <style>. html, body { height: 100%; padding: 0; margin: 0 }. #app { height: 100%; width: 100%; }. </style>. . <script>window.THREE = { };</script>.</head>.<body style="background: #282828" class="cs-HTML theme-unified">. 360 -->. <script>!function(e){var i=/iPhone/i,o=/iPod/i,n=/iPad/i,t=/(?=.*\bAndroid\b)(?=.*\bMobile\b)/i,d=/Android/i,s=/(?=.*\bAndroid\b)(?=.*\bSD4930UR\b)/i,b=/(?=.*\bAndroid\b)(?=.*\b(?:KFOT|KFTT|KFJWI|KFJWA|KFSOWI|KFTHWI|KFTHWA|KFAPWI|KFAPWA|KFARWI|KFASWI|KFSAWI|KFSAWA)\b)/i,r=/IEMobile/i,h=/(?=.*\bWindows
                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                File Type:ASCII text, with very long lines (323), with no line terminators
                Category:downloaded
                Size (bytes):323
                Entropy (8bit):4.794185215217175
                Encrypted:false
                SSDEEP:
                MD5:C70A5E3CDBDEED0C4798D164CC4605D2
                SHA1:11E664CC4F7DD67A80E6521C761E650F3F6A9C39
                SHA-256:33F9D017412BF89F6416D5D882F47D4CF72D5427B4ABC61A5008F8E1B7F100F6
                SHA-512:98C4F2CEA8ADB2BCBE80B82FD6DA1A9CFB321E2DF4E820E451DF8279DFBD2986EC435E7D5B10A95AC17615B460C17E0E67C661CA3BE313A2F1383C021482AAC3
                Malicious:false
                Reputation:low
                URL:https://ceomedia.wf.com/ceo-demo/Tutorials/Welcome/story_content/6BUxPPIbW6Y_captions.js
                Preview:window.globalProvideData('caption', '{"data":"WEBVTT%0D%0AKind:%20captions%0D%0ASource:%20Articulate%20Closed%20Captions%20Editor%0D%0ASource%20Version:%206.63.27628.0%0D%0A%0D%0A00:00:00.320%20--%3E%2000:00:03.808%0D%0AThe%20homepage,%20serves%20as%20a%20hub%20for%20many%20of%20your%20key%20activities.%20%0D%0A%0D%0A"}')
                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                File Type:JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 921x922, components 3
                Category:dropped
                Size (bytes):49118
                Entropy (8bit):7.5160992898979515
                Encrypted:false
                SSDEEP:
                MD5:74A3815D79FF1546DF85D874D9BA6732
                SHA1:2185BEE782528E53B7D6A5FE68873BF228775DA9
                SHA-256:C6EEA72851F4F563FC1C43E07C4051125778935491270B1E0F3669467629DD05
                SHA-512:B5C47ADCE63B99FAFB7EDE14B2F065A0AEEA9FEB979EE4001FAB55FB16710E4C3A69DBAAC0A8661115B2500A30E64592999B3386E775D2201B79139E4E8CA17C
                Malicious:false
                Reputation:low
                Preview:......JFIF.....`.`.....C....................................................................C............................................................................".........................................h..............................!1U....AQVaq...."27Ttu.......#68BRrs.....5bv..C.%34Scg.....$EG....&Dde..................................E.........................!1Q...ARaq....2b...."4Tr...356B....s..#S%C............?..|*.s..I.X.U...K..X9.._.&.Ex.N.^.....p.....%.f,.'.q4.+..p.....%.c.W.w../.1`i=..^.S.W.w../..*.s..I.Y..I..M>..2.*.s..I.X.U...K..X.Ox.i.W...U...K....\._._.b..{..O......\._._.8Uz.z........8.}..e8Uz.z......;......4......)..;......^.........&.Ex.N.^.....p.....%.f,.'.q4.+..p.....%.c.W.w../.1`i=..^.S.W.w../..*.s..I.Y..I..M>..2.*.s..I.X.U...K..X.Ox.i.W...U...K....\._._.b..{..O......\._._.8Uz.z........8.}..e8Uz.z......;......4......)..;......^.........&.Ex.N.^.....p.....%.f,.'.q4.+..p.....%.c.W.w../.1`i=..^.S.W.w../..*.s..I.Y..I..M>..2.*.s..I.X.U...
                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                File Type:Unicode text, UTF-8 (with BOM) text, with very long lines (15114), with no line terminators
                Category:dropped
                Size (bytes):15117
                Entropy (8bit):4.911274113685085
                Encrypted:false
                SSDEEP:
                MD5:D18F82EF5692E4D80EF4F027CA98E482
                SHA1:D6F879AF419591BA40B02BBBAB82E98840AEEF10
                SHA-256:97824958CDE953F735AEA246B8CCF14E677BD0C38BA81DBF65FE6D04F2C2C832
                SHA-512:D31133D5CFE560D788BC433A9F6179A89E99A2B55C42CDA022D5CD054C2F73F081CBD491F1E610CA7442EEF58D36548FF04621A1124163DCFEC32A87A83FCC83
                Malicious:false
                Reputation:low
                Preview:.window.globalProvideData('slide', '{"title":"User profile","trackViews":true,"showMenuResultIcon":false,"viewGroupId":"","historyGroupId":"","videoZoom":"","scrolling":false,"transition":"appear","transDuration":0,"transDir":1,"wipeTrans":false,"slideLock":false,"navIndex":-1,"globalAudioId":"","thumbnailid":"","slideNumberInScene":8,"includeInSlideCounts":true,"presenterRef":{"id":"none"},"showAnimationId":"","lmsId":"Slide8","width":960,"height":540,"resume":false,"background":{"type":"fill","fill":{"type":"linear","rotation":90,"colors":[{"kind":"color","rgb":"0xFFFFFF","alpha":100,"stop":0}]}},"id":"5Ui1detYgpj","actionGroups":{"ActGrpOnNextButtonClick":{"kind":"actiongroup","actions":[{"kind":"gotoplay","window":"_current","wndtype":"normal","objRef":{"type":"string","value":"_player.61PprjRJDhL.5aWMWTl8Zoi"}}]},"ActGrpOnPrevButtonClick":{"kind":"actiongroup","actions":[{"kind":"history_prev"}]},"NavigationRestrictionNextSlide_5Ui1detYgpj":{"kind":"actiongroup","actions":[{"kin
                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                File Type:Unicode text, UTF-8 (with BOM) text, with very long lines (15188), with no line terminators
                Category:downloaded
                Size (bytes):15191
                Entropy (8bit):4.915084486245007
                Encrypted:false
                SSDEEP:
                MD5:71B53D10FA8DBAEFBFF55A0CE3B0818C
                SHA1:1806D3CD890D013D0B0DF9FE2C44B4CC96E1BA0F
                SHA-256:15254BD92874E2F3450DCA8D866EB3706F03B95502834D9453DB8997261103AA
                SHA-512:A3641AFD1BD083ECECB9E3D580FDACAAC0752971A377A8D1DF4383A55FF50B43AE73CF49984F04B9C7EA0A15F0E401B7791FA14670D60886D4A9765F501C64B2
                Malicious:false
                Reputation:low
                URL:https://ceomedia.wf.com/ceo-demo/Tutorials/Welcome/html5/data/js/5d9y0BtOKNR.js
                Preview:.window.globalProvideData('slide', '{"title":"Create payments and transfers","trackViews":true,"showMenuResultIcon":false,"viewGroupId":"","historyGroupId":"","videoZoom":"","scrolling":false,"transition":"appear","transDuration":0,"transDir":1,"wipeTrans":false,"slideLock":false,"navIndex":-1,"globalAudioId":"","thumbnailid":"","slideNumberInScene":6,"includeInSlideCounts":true,"presenterRef":{"id":"none"},"showAnimationId":"","lmsId":"Slide6","width":960,"height":540,"resume":false,"background":{"type":"fill","fill":{"type":"linear","rotation":90,"colors":[{"kind":"color","rgb":"0xFFFFFF","alpha":100,"stop":0}]}},"id":"5d9y0BtOKNR","actionGroups":{"ActGrpOnNextButtonClick":{"kind":"actiongroup","actions":[{"kind":"gotoplay","window":"_current","wndtype":"normal","objRef":{"type":"string","value":"_player.61PprjRJDhL.6dAISHVFDpM"}}]},"ActGrpOnPrevButtonClick":{"kind":"actiongroup","actions":[{"kind":"history_prev"}]},"NavigationRestrictionNextSlide_5d9y0BtOKNR":{"kind":"actiongroup"
                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                File Type:Unicode text, UTF-8 (with BOM) text, with very long lines (65473)
                Category:downloaded
                Size (bytes):977303
                Entropy (8bit):5.297722173023708
                Encrypted:false
                SSDEEP:
                MD5:91F1BF20C24F652DDB18F5EBBAF87FD0
                SHA1:B882812DC73CAF94187496284A88E12B8A2217D0
                SHA-256:ED1CB99DE1222D94DCA05A799D692CD83D457CE2E1443F71E17B3081C769C47A
                SHA-512:4FAF36C51E6A0E33FDDCE5526A8B969F5493EE5E5974AB52CF7604CC97CDBF282F39DE011EB687A8D2DA574B8FD87B560F0E8B1BF6074521621B5B8976494B98
                Malicious:false
                Reputation:low
                URL:https://ceomedia.wf.com/ceo-demo/Tutorials/Welcome/html5/lib/scripts/slides.min.js
                Preview:./*! ds-bootstrap - v1.0.0.27628 - 2022-04-19 5:31pm UTC.* Copyright (c) 2022 ; Not Licensed */!function(){var e={64691:function(e,t,i){"use strict";var n;void 0===(n=function(e){var t=i(33305);return{AccessibleScrollBar:function(){return t.createElement("div",{className:["accessible-scrollbar scrollarea-scrollbar",this.props.hScroll?"horizontal-scroll":"",this.state.highlight?"highlight-scrollbar":"",this.state.isHidden?"hidden":""].join(" "),ref:"scrollBar",style:this.getScrollBarStyle()},t.createElement("div",{ref:"scrollBtn",className:"scrollarea-btn micro-scrollbar-btn",onMouseDown:this.onScrollBtnDown,onTouchStart:this.onScrollBtnDown,style:this.getScrollBtnStyle()}))}}}.call(t,i,t,e))||(e.exports=n)},34653:function(e,t,i){"use strict";var n;function r(e){if(Array.isArray(e)){for(var t=0,i=Array(e.length);t<e.length;t++)i[t]=e[t];return i}return Array.from(e)}void 0===(n=function(e){var t=i(33305);return{AccessibleText:function(){var e=this,n=i(87435),s=i(87523).renderSemanticT
                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                File Type:Unicode text, UTF-8 (with BOM) text, with very long lines (22865), with no line terminators
                Category:downloaded
                Size (bytes):22872
                Entropy (8bit):4.942616528072969
                Encrypted:false
                SSDEEP:
                MD5:E61A5101C723D4F703D7030FA87F912C
                SHA1:231AA937CDBB616360A7F57C9A0452519E125AFF
                SHA-256:5DF52729CF48C89F9BD1F9C362AA565C9C3C8EAE8C0580014AD4881D588FB26E
                SHA-512:50427842A0655B1357502F3EB402D8DDF4AE39AFDB3070ABB0ACEB6A90DCCA6C1762F144EAA848643E0F8A4BBCD49F83216398A12C1D0E7772689800BC15E73F
                Malicious:false
                Reputation:low
                URL:https://ceomedia.wf.com/ceo-demo/Tutorials/Welcome/html5/data/js/5aWMWTl8Zoi.js
                Preview:.window.globalProvideData('slide', '{"title":"Helpful information","trackViews":true,"showMenuResultIcon":false,"viewGroupId":"","historyGroupId":"","videoZoom":"","scrolling":false,"transition":"appear","transDuration":0,"transDir":1,"wipeTrans":false,"slideLock":false,"navIndex":-1,"globalAudioId":"","thumbnailid":"","slideNumberInScene":9,"includeInSlideCounts":true,"presenterRef":{"id":"none"},"showAnimationId":"","lmsId":"Slide9","width":960,"height":540,"resume":false,"background":{"type":"fill","fill":{"type":"linear","rotation":90,"colors":[{"kind":"color","rgb":"0xFFFFFF","alpha":100,"stop":0}]}},"id":"5aWMWTl8Zoi","actionGroups":{"ActGrpOnNextButtonClick":{"kind":"actiongroup","actions":[{"kind":"gotoplay","window":"_current","wndtype":"normal","objRef":{"type":"string","value":"_player.61PprjRJDhL.6Oh30yFpB4r"}}]},"ActGrpOnPrevButtonClick":{"kind":"actiongroup","actions":[{"kind":"history_prev"}]},"NavigationRestrictionNextSlide_5aWMWTl8Zoi":{"kind":"actiongroup","actions"
                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                File Type:Unicode text, UTF-8 (with BOM) text, with very long lines (12677), with no line terminators
                Category:downloaded
                Size (bytes):12680
                Entropy (8bit):4.930095517159376
                Encrypted:false
                SSDEEP:
                MD5:66C24485310299842DA5897069C44856
                SHA1:DE0A4CB2C81C3860B0DE682E084DACCA72F5F1F3
                SHA-256:7DEE8134E0AC7E501707821B0B207301C276351FB6FF3B4509DD88C937FD525C
                SHA-512:80135A80BE9A88CA78322AEB408EE8A19053BB830B777A660A1318F40297CB6E634878ADE8C98E8A29135038E86F1A450ED30BF2174EACE9A090F2F7DFD316D1
                Malicious:false
                Reputation:low
                URL:https://ceomedia.wf.com/ceo-demo/Tutorials/Welcome/html5/data/js/6Mc4uiXwt5E.js
                Preview:.window.globalProvideData('slide', '{"title":"Welcome!","trackViews":true,"showMenuResultIcon":false,"viewGroupId":"","historyGroupId":"","videoZoom":"","scrolling":false,"transition":"appear","transDuration":0,"transDir":1,"wipeTrans":false,"slideLock":false,"navIndex":-1,"globalAudioId":"","thumbnailid":"","slideNumberInScene":1,"includeInSlideCounts":true,"presenterRef":{"id":"none"},"showAnimationId":"","lmsId":"Slide1","width":960,"height":540,"resume":false,"background":{"type":"fill","fill":{"type":"linear","rotation":90,"colors":[{"kind":"color","rgb":"0xFFFFFF","alpha":100,"stop":0}]}},"id":"6Mc4uiXwt5E","actionGroups":{"ActGrpOnPrevButtonClick":{"kind":"actiongroup","actions":[{"kind":"history_prev"}]},"ActGrpOnNextButtonClick":{"kind":"actiongroup","actions":[{"kind":"gotoplay","window":"_current","wndtype":"normal","objRef":{"type":"string","value":"_player.61PprjRJDhL.6C63pnZAtW7"}}]},"NavigationRestrictionNextSlide_6Mc4uiXwt5E":{"kind":"actiongroup","actions":[{"kind":"
                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                File Type:ASCII text, with very long lines (557), with no line terminators
                Category:downloaded
                Size (bytes):557
                Entropy (8bit):4.707667134957432
                Encrypted:false
                SSDEEP:
                MD5:3B034E0B8260D1250EA4B5D28E7B74DC
                SHA1:45F34EE37EA48E2E732A8E607C25BF77CD6A3583
                SHA-256:EDC7078B64CA2D6FFF6A3436E256726C126E61AA451BE3293FD2A52AB964A54F
                SHA-512:4F5E61746A36B3833630A83620837266482371400DEED2BC202F554129CD163F06EFD921E50D6B3BB1F9F0DD7111B4361EF948B4D11A7A1080C94FE5B80819CA
                Malicious:false
                Reputation:low
                URL:https://ceomedia.wf.com/ceo-demo/Tutorials/Welcome/story_content/6JuOO7hjsum_captions.js
                Preview:window.globalProvideData('caption', '{"data":"WEBVTT%0D%0AKind:%20captions%0D%0ASource:%20Articulate%20Closed%20Captions%20Editor%0D%0ASource%20Version:%206.63.27628.0%0D%0A%0D%0A00:00:00.480%20--%3E%2000:00:05.792%0D%0AThe%20new%20Create%20payments%20and%20transfers%20section%20gives%20you%20direct%20access%20to%20Wires,%20Foreign%20Exchange,%20%0D%0A%0D%0A00:00:05.824%20--%3E%2000:00:08.224%0D%0Aand%20more,%20right%20from%20the%20homepage.%20%0D%0A%0D%0A00:00:08.320%20--%3E%2000:00:10.304%0D%0AMaking%20payments%20just%20got%20easier!%0D%0A%0D%0A"}')
                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                File Type:ASCII text, with very long lines (618), with no line terminators
                Category:downloaded
                Size (bytes):618
                Entropy (8bit):4.713333834327895
                Encrypted:false
                SSDEEP:
                MD5:BB1CE2E1EC098F21E5B7BA60BEFC2FB7
                SHA1:AF0848F82456643C714BB92F4B7C8A782B7245F0
                SHA-256:EEC74A17840235A9D71143D2F98B071495C9DE4B9A96B192B13A5D7706341734
                SHA-512:904B52C3E9ECC9776877B7CEB9635988107ED8256313B60A52C6F61E6554149927C859969359E2064F3D94DFC8E15ABE5B20E1AFC23F797023EEB17F0F17A6E8
                Malicious:false
                Reputation:low
                URL:https://ceomedia.wf.com/ceo-demo/Tutorials/Welcome/story_content/5ovwUhND89M_captions.js
                Preview:window.globalProvideData('caption', '{"data":"WEBVTT%0D%0AKind:%20captions%0D%0ASource:%20Articulate%20Closed%20Captions%20Editor%0D%0ASource%20Version:%206.63.27628.0%0D%0A%0D%0A00:00:00.832%20--%3E%2000:00:07.964%0D%0ANear%20the%20bottom%20of%20the%20homepage%20you%E2%80%99ll%20find%20other%20helpful%20information,%20including%20important%20messages%20and%20links%20to%20learning%20resources.%0D%0A%0D%0A00:00:08.224%20--%3E%2000:00:14.004%0D%0AThese%20are%20just%20some%20of%20the%20many%20new%20features%20we%E2%80%99ll%20be%20delivering%20for%20you%20as%20we%20continue%20to%20develop%20Vantage.%0D%0A%0D%0A"}')
                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                File Type:ASCII text, with very long lines (13485)
                Category:downloaded
                Size (bytes):454468
                Entropy (8bit):6.069746572095354
                Encrypted:false
                SSDEEP:
                MD5:1F54923B19620827196AF4E85BC22AA1
                SHA1:3DB466DC245FB5BFD2D18524F5B4FC1B81EA5728
                SHA-256:9734049F77F994B9DC20D370C1AD13D2F84917DD3DEA853AAA51157F6CBED99D
                SHA-512:2B48B1EDCC7813D9E8E9996EFF771A40047C737A2F8A6A56E78C4930FF55E1B9EEB5BB58C26A9ECE3DC817635BF5779F89E0655BDB439D6B1BB815163F7F90FD
                Malicious:false
                Reputation:low
                URL:https://ceomedia.wf.com/ceo-demo/Tutorials/Welcome/html5/data/css/output.min.css
                Preview:@font-face {. font-family: 'LatoBold Charset1_ Bold1967F23D';. src: url('data:application/font-woff;base64,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
                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                File Type:PNG image data, 895 x 1101, 8-bit/color RGBA, non-interlaced
                Category:downloaded
                Size (bytes):5589
                Entropy (8bit):3.359894257116155
                Encrypted:false
                SSDEEP:
                MD5:042FA86B50E33A9DDCCBBD035397659B
                SHA1:E79DD9F237E3DF85EA8B3B61D2862A43CBFA38E3
                SHA-256:595F326C2F9179FFBAD5EE700551C64DEBA37EEF4B7DC2035CA75CCAC998B22E
                SHA-512:B294FB132271DE555A1DFC7471558CA864CAA4D23C0EB03D25CAFDCFA3BC165D4135E485221B936D56878B8F7731E10DC539093628472D01DF028CFD3F3BF825
                Malicious:false
                Reputation:low
                URL:https://ceomedia.wf.com/ceo-demo/Tutorials/Welcome/mobile/txt__default_6eRDuwNxiPr.png
                Preview:.PNG........IHDR.......M............IDATx...1.Z1.E.s....*T.].?.?.ttt."......$W.N.e.^..9.y.u....p8.....WU.9..r.|os.s.............1.x$..:.1.Uu[k..f"........:&...$.w..L.e"...]....$.............v...o..[..............?......................@.... .......................@.... ..........?............@.... ..........?............@.....@.... ..........?............................?......................@.... .......................@.... ..........?............@.... ..........?................. ..........?......................@.....?......................@.... .......................@.... ..........?............@.... ..........?............................?......................@.... .......................@.... ..........?............@.... ..........?................. ..........?......................@.....?......................@.... ..........?............@.... ..........?............@.... ..........?............................?......................@.... .......................
                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                File Type:PNG image data, 600 x 397, 8-bit/color RGBA, non-interlaced
                Category:dropped
                Size (bytes):147889
                Entropy (8bit):7.979662089838351
                Encrypted:false
                SSDEEP:
                MD5:A2172E084D9D9938016ED7FEF43760C0
                SHA1:8038D60D73A2D2DF902FE7F07001E748C1C7B8EB
                SHA-256:91D7C478971A6BE7A40D685B4199A591916D8886860B0BE67ECB11C3358C495C
                SHA-512:0262BA3B9886F5C212891E711A27BA15F2AE5B6DFF6115BCA71AA57891F35DB891B38D36479A789B64FADA3B9C5FFEFBAA77419705DD73099ED0A87940982B8E
                Malicious:false
                Reputation:low
                Preview:.PNG........IHDR...X..........}....AxIDATx....$G...g..Y;3gwv>f.3x$...../<.....{....... . !..W.n.oy..?_>M.W..E|..{#2..^...<'N....._....^...."..HE*R..T..I/>...E...;...<.."a...<.]...d..5..=..y.......r..HE*R..T..I...<.hv../bo8...oz.{.._.N|.+..`..@. ..c.....U"...._...G?.@N.......^.....u.........{,..HE*R..T."="..:.......}.....Y.Vc..w...?...`W^.'v.> ...|.....b/..}..c+./c.rY......V.`_...`=...|.G..V...G../...........z..q#;.'..s.:.P|...nX.G[...r..HE*R..4J.r..?......M..Yv.......8...<K.G....%i......<......gv.....oy...Q..u....~.1...{....];..>.IQ.....F.Hd......:.=fP.]S..NT../...~.~q=]...rH....*..<.&.X.iY.g..c..p^.0./E...r..HE*R..t.%...?.a....uZ.l.oO_8...6..z.....9..{w....M..Q...^."^..#...S..yA.a....S.....i...Ne.....6.h...>........v...-...?.G?.>?.[...:.....e?..........[.]o.'....+...o.....N........w.8]..q...Ib.......x.../.g....]{...o|.k.{,.z.._+..p.?...D....3.i....d@...[.<.}.'.h<.o..'?...e.......m.....W.&..?......B.o./.....85s....._...\..}.....O8 .
                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                File Type:ASCII text, with very long lines (534), with no line terminators
                Category:downloaded
                Size (bytes):534
                Entropy (8bit):4.72554514818421
                Encrypted:false
                SSDEEP:
                MD5:8D708323821743DF7439C62EFBCDDA2F
                SHA1:FF750635B57C660798289F8EF1E6E169286A1E4A
                SHA-256:90965B20E0A61F418FBFD44B38447C6FFC484837339F7A704AFF772D9CED0996
                SHA-512:E46065E5551940A5BACE1CCDB3FED716D0C193E4EFF17060BE809E5524B7B5BD6362083C1BA592FC65EFC6B447E1D2722832677D510C5EAF112A4913461A6864
                Malicious:false
                Reputation:low
                URL:https://ceomedia.wf.com/ceo-demo/Tutorials/Welcome/story_content/6L6a4hpGfHf_captions.js
                Preview:window.globalProvideData('caption', '{"data":"WEBVTT%0D%0AKind:%20captions%0D%0ASource:%20Articulate%20Closed%20Captions%20Editor%0D%0ASource%20Version:%206.63.27628.0%0D%0A%0D%0A00:00:00.256%20--%3E%2000:00:05.652%0D%0ATo%20manage%20your%20profile,%20select%20the%20User%20profile%20icon%20at%20the%20top-right%20of%20the%20page.%0D%0A%0D%0A00:00:05.653%20--%3E%2000:00:11.712%0D%0AChange%20your%20password,%20update%20your%20profile%20details,%20find%20useful%20information%20%E2%80%93%20all%20from%20one%20place.%20%0D%0A%0D%0A"}')
                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                File Type:Unicode text, UTF-8 (with BOM) text, with very long lines (65477)
                Category:downloaded
                Size (bytes):270753
                Entropy (8bit):5.455947780415102
                Encrypted:false
                SSDEEP:
                MD5:8276849CBAE6FA201E6E386451052D95
                SHA1:E90829BCCA17071BD975C7E707D32DAF5574A955
                SHA-256:F8564CE9611EA00D8F039027BF7FE159BBE71B052F89800CD6CA0DF892E5C9A6
                SHA-512:CF5B7C14C0A210C8ABD14A05E92D86EFE1780353CA09D235D3DFBCE59BA2704BF4CA391BBD59137BECD4796F984DD0ABF9623C612904659476790C2AC97402A7
                Malicious:false
                Reputation:low
                URL:https://ceomedia.wf.com/ceo-demo/Tutorials/Welcome/html5/lib/scripts/frame.desktop.min.js
                Preview:./*! ds-bootstrap - v1.0.0.27628 - 2022-04-19 5:31pm UTC.* Copyright (c) 2022 ; Not Licensed */!function(){"use strict";var e={64442:function(e,t){Object.defineProperty(t,"__esModule",{value:!0});var n=function(){function e(e,t){for(var n=0;n<t.length;n++){var i=t[n];i.enumerable=i.enumerable||!1,i.configurable=!0,"value"in i&&(i.writable=!0),Object.defineProperty(e,i.key,i)}}return function(t,n,i){return n&&e(t.prototype,n),i&&e(t,i),t}}();var i=DS,o=i._,r=i.pubSub,s=i.events,a=i.constants,l=[],c=function(){function e(t,n){var i=this;!function(e,t){if(!(e instanceof t))throw new TypeError("Cannot call a class as a function")}(this,e),this.frame=t,this.frame.blocked=!1,this.preso=n,this.setupControlOptions(),this.layouts={},this.setLayout(this.frame.default_layout,a.refs.FRAME),this.resourceDescription=this.frame.resourceData.description;var l=n.getFirstSlide();for(var c in this.slideWidth=l.get("width"),this.slideHeight=l.get("height"),this.temp=[],this.frame.layouts)this.temp.push(
                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                File Type:ASCII text, with very long lines (534), with no line terminators
                Category:downloaded
                Size (bytes):534
                Entropy (8bit):4.70536957351169
                Encrypted:false
                SSDEEP:
                MD5:AD959C5DAF49D70BB671A2FC35694347
                SHA1:C4191049AF836C7C5C1F6C0E759183EA369226D7
                SHA-256:28EC300821E1BB371A2015EE44AEB329E150D0BBC173FEE4317210D8517EF0A6
                SHA-512:98CAC7EE50B6F9570D9607B1AC803A20F1BE199999413CA4479FA428470B3B98EE49E73539CDEE3E8F8B6AFB76BB24F4F059837FE4FA0296A7795024732AF27B
                Malicious:false
                Reputation:low
                URL:https://ceomedia.wf.com/ceo-demo/Tutorials/Welcome/story_content/6AfJjql88XU_captions.js
                Preview:window.globalProvideData('caption', '{"data":"WEBVTT%0D%0AKind:%20captions%0D%0ASource:%20Articulate%20Closed%20Captions%20Editor%0D%0ASource%20Version:%206.63.27628.0%0D%0A%0D%0A00:00:00.832%20--%3E%2000:00:07.635%0D%0AYou%20can%20now%20quickly%20review%20key%20account%20balances%20and%20view%20recent%20transactions%20for%20a%20selected%20account%20%0D%0A%0D%0A00:00:07.636%20--%3E%2000:00:12.748%0D%0Abecause%20we%20show%20your%20key%20cash%20accounts%20and%20lines%20of%20credit%20directly%20on%20your%20homepage.%0D%0A%0D%0A"}')
                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                File Type:MPEG ADTS, layer III, v1, 56 kbps, 44.1 kHz, Monaural
                Category:dropped
                Size (bytes):78755
                Entropy (8bit):7.919562585194348
                Encrypted:false
                SSDEEP:
                MD5:3E7C78B667C7D5DCAD3FF865D8BA725C
                SHA1:F67EFB3CEB9DCB3722D42723200DFE43643CE16F
                SHA-256:352B5FAAD5238282A9346EA21F9C5FFAD64466E905AB24E9C669FC96E075BB63
                SHA-512:87327DBA7E2986D58C063DE6DD71189474FF28544A7CF91D24594C7811825118686F2E2F210E91CFBB9C67837534ECC772B717AB5286A33D687F61F61E5F1D99
                Malicious:false
                Reputation:low
                Preview:..@..................Info..........3#.............!#'),.0359;>@BEGKMORTWY]_adfiknqsvxz}.....................................................9LAME3.100......,2...8$.L"..8..3#...........@....4_"...."..............4...DG....'..'{..o..s.8 .......?.G....?@.(-.k...:j7..+%q......C>:...a4..#3E..Bq.A...|rl/...:.;)s...l$.C..;.}.....%#.iY..g...m@...jR....'..H....I..^.<B..B....@..&=4.'.$... .<*.cd.. .*.q.1.3=.L.......DPm.w%...H.iO......:.f.A.V..pm....$lr..7....!...K.-8.DBq...K..s.q#m+y.n\.t.q.....e..2............%.nr.Ey.#l8..G.....t."t.?`R'.....h...B.........6I1.dh..S.KwS....u...k..H...%.." $......GR..)......u..V2yV..j..."cY.n.......1z,....m.Y...d.j^....6.R@.W.i..j.@D<.w.......A.%i..X.2I.@..:L`fb....U.^....8Lf'...Q.G...B........0..+.c.%...m2.Z.......C1\u.|.....z{...P....e..x...@h.Y...#@......$[.R........HXEr.DA.....v.{.....@...+D~.{..A.=......F@..o.3.]q..d..X..=>..&.......N./..E0X<.\+...Y...B......!D.4A0......[...%.Y'.{.[N.T..SKx......5...$.!T...8<..D.$..(Bq.1m.F.h.....
                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                File Type:MPEG ADTS, layer III, v1, 56 kbps, 44.1 kHz, Monaural
                Category:dropped
                Size (bytes):160858
                Entropy (8bit):7.921576513921742
                Encrypted:false
                SSDEEP:
                MD5:D46C126CAFD4443373963D9593BF3874
                SHA1:7900456C10D3CA8BCBF82FBC9C8B237072560307
                SHA-256:A72F1A820B383E49203425E9F609CEC31D26782D6D2C88405CE2929D10F86079
                SHA-512:54F964E24502B0B9CA6D3B0A13FB13101E42E5B7DCEC6E553F23668A9BFDE82C2616C79E7190F1AD72D785D89BA58E377F53682B839BAAF5859A1BEAD94EBB91
                Malicious:false
                Reputation:low
                Preview:..@..................Info.......n..s..............!$&),.0359;=@BEHJLORUWY\_adfhknqsux{}.....................................................9LAME3.100......,3...8$.dB..8..s..q........@...H... .`A..a....@. ..........(?T. .Jq.8~.P.."|.!....*..|.G/P!..........[......IA....-.>P..X-R4...-....X\r....Z<8............T.g./..RJ%ll@.....H....UD.6...m.EU-.y....'R....B....<....`...!@..y5...6.s...S.YF.gC..c.g@.q.........mz.|..........-gx4._'..w..sl....|.?....<f......m...o.-G^..ee$.1....."W/..bl ..b. l....$^W.9....N.}.....C'=S.('.zlg.o...|..t{..B.!..h.. .,...\....h$T.a#..E..y.&@.'..$.....X....QC.3-..!o.S.H......h..\sa.e..A-r.P}`6D..XT....B..R~...h&.4=L..`x.G&..Z{}..g......e"%h\`[..^8.....s%..>Mic.6...............B.......&e..>..\..P&.....2V..ZH(..i......~,.20.Ki..,\...)..!8|-..a[J.b^....+}.\....z.....~f.@~....9.|.h.{ix.r.m..Z..+.?}.._z..O...a....p.9.g..).A..C.a.......I......g.$..}.@...T...B....p. .1.=..h...Q....J...!0.D\...Y..K...U..HX-.h.....I.$U...v.p^....ki..%......
                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                File Type:PNG image data, 600 x 420, 8-bit/color RGBA, non-interlaced
                Category:dropped
                Size (bytes):124246
                Entropy (8bit):7.980453996383504
                Encrypted:false
                SSDEEP:
                MD5:01A9FFB3CE29198FB5EC0494D1848027
                SHA1:28B46619454185CE162678B8A2B754F2FC0855D8
                SHA-256:407EB8C7C974ABE8ACE0B45133FCEF7E6809DAE2CAFF083CB01F6753A4C06D90
                SHA-512:35B8430646AC23A9EA1A8BA585AEB59BA195DD145F8B42251378493960056BA88296036FABFB7E0AFAAC32825A45199C8C4A6E146546A724A902F4086455A1AD
                Malicious:false
                Reputation:low
                Preview:.PNG........IHDR...X...........[#....IDATx.....]......k..v.}..g......q.9......L...$. ..s.Y*U..9.U.J.....x..{.s.*J lla....6.k.1.......\..r%.i1_r.B..e.+...s.X..,.u.,.u}m.f..,.|.}...{.U.......\..R.Kv']Jj![t.._...9..\:.....S..y.IfXK.....-.r.YG.K..&..x.S_s.,+..6.x.%.6]..p.b.UKuW.iA..Oa...|..2..Kv%\*....?ge.~...'.OJM.&...n.e...$.6p}[.5....l/.)..j.../f.<N...l.".&m..jl;..me.).G.5.K.w9.....mdr...j..jr.0Mw.].+f..\Y.#.%....TW...M..e...]......=.d..R..-/.B..99.Dg......J...n..#..].3&....c...Y9..l.,...~......C..+.:.9.Xw...>....n.o..N.....q..'\"!U..X.q.....uc..sqY....rq.;...s%5%...\.|.._..\..n^..z.5.597rOJ.k.kU.r.-.'[r=q...nA..k...m.Q.X.r...,.).?.U.Wx...`j.......E..,....s....p.....k..<./.W..'\..N..m....2...m..9..p...sE..........w.......+~.=Y..4..".i|..Z..m.:z..uSi....Y.;i._.sU.g..k.7j.Q....l..Rk.W....,.......l.$..bC~k..rU..z....|...[.UJe....._,q.u...{..@........|n...Z.U.....).?*.Q/.r.U....e[M...'U....\.~+.O...,...W,.....J....Y..}.
                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                File Type:JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 720x406, components 3
                Category:downloaded
                Size (bytes):22018
                Entropy (8bit):7.559637986983921
                Encrypted:false
                SSDEEP:
                MD5:AF1387AF3B56CDBE884977C5BD50A6F8
                SHA1:C6D27F261689B7227DAB590C41E9173087003348
                SHA-256:6DD914F382274DB3BBA303D7A714131AC7206110809AFB4E685EF4542E69DD8C
                SHA-512:C24CD9843C7D1F657980E0D8D7B567AB117D55F3A4A38C836B3717210B7ABDD99846E01969A724BED94AA587A63F5F425B9EBDFFF0A0800141F2175FE5B07DC6
                Malicious:false
                Reputation:low
                URL:https://ceomedia.wf.com/ceo-demo/Tutorials/Welcome/mobile/poster_6KoIcREUqFV_video_66miIWUDv1g_18_56_720x406.jpg
                Preview:......JFIF.....`.`.....C....................................................................C............................................................................"...........................................K.............................!1.Q..Aaq.."....#2U.......S...$&3RTr..%4b......................................K.........................!.1."A..Qa.2q...#B....$3RTWb.....%4Cr.....DSc...............?.....................................................................................g.1pu........U.m..'..Y..e...,.($../......V4....W..l.|....}..|@x.:......Y....;..iY.......I{[/h.l....7.....GH.=.=F....v}].H.:jx.D....Y..++<.....{+.....(......8...H..g..+J..0..K)3X.<q9.7.7D.c|....DN.F.TEI#.v=..."....B.qpn.MJ/...5.7.N.j.ZmJ.!..K..8.FK..M|@............KQ\.D.UDO.o.F...n.#rW.df.....,...#...O.*..q.......z.....3.&....."X.......t'..k..:....n..K{...V.XU...mci........5..[[4...../.....n.g...$.M.NyxX.\,.8..k...{Gxo......i:..=SG.t.jP...i..UI.Q..o3....I..9..Q.P..9.[5y
                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                File Type:Web Open Font Format, TrueType, length 20248, version 1.1
                Category:downloaded
                Size (bytes):20248
                Entropy (8bit):7.965050620475398
                Encrypted:false
                SSDEEP:
                MD5:CE659615885F33D928EB7FE276574106
                SHA1:84F97FC997632D2FFFB788CD07C92241F178A9A1
                SHA-256:819747B05DF4938922997E60E199603ECB04F4D987331BA5C3F7DB30A835C3BD
                SHA-512:938099E7AC8C58EE66FC954012F4AD3D5DF29F2F886A001017BC07294A5CD01D8B40BEDA31881A16412234AC59D824F82CB0F7DE7DD25FA8FAC49A6054179734
                Malicious:false
                Reputation:low
                URL:https://ceomedia.wf.com/ceo-demo/Tutorials/Welcome/html5/lib/stylesheets/mobile-fonts/open-sans-regular.woff
                Preview:wOFF......O........l........................GDEF................GPOS................GSUB.......Y...t...OS/2......._...`.>..cmap...t...........cvt .......Y.....M..fpgm...h........~a..gasp...............#glyf......5...Qx...>head..=....6...6.v.hhea..=........$....hmtx..=........l..Y.kern..?............loca..J..........{..maxp..K.... ... .v..name..K........2../Jpost..L........(..j.prep..N$........C.......................................x...5.A...../0.E....-..E.m....2..mz.....)@.]-R...X...@..DN^Q].Md`....]h.,4s...../.......x.c`f..8.....u..1...<.f....................{...h..... 0t.vf.....&.O.....)B..q>H..u..R``.....9.x.c```d`.b.......@Z.A.....`.d.c8.p..?.!c0.1.[Lw.D...........\.J..(......T......... .ja.....jK.......?........=.s..........}.......Ly.. ...@w...@G7.x.c.a.g.c..$KY...e@.,.."..........?....%.g....Z.....(".o..Y..Bu342.e......0..........M=.....x.uTGw...........)..)7.W..`*.....G..Kz.)e.|..}.|.1.3...suf...3.....w...H.-.....LOMN.1...~...w....W._.x...S'O..V...+....W
                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                File Type:MPEG ADTS, layer III, v1, 56 kbps, 44.1 kHz, Monaural
                Category:dropped
                Size (bytes):203281
                Entropy (8bit):7.91950673516065
                Encrypted:false
                SSDEEP:
                MD5:F3EDC93E38ACE92E17563786C02316B0
                SHA1:A31F06209496FB9F6A342EFD8DFB63FEC9035919
                SHA-256:ABE2527CC9862335E04C4745779865CCA94249D6E7CA017BB5C33B4B02D5A896
                SHA-512:FE5097882DE0AFF1FDD5B4C5E50C897C3CAFCFE719DD2C3FA7E2B8623085B1878977EC45AB2742369357080E6FA10CB48625B7D207D3F16DDD8CC505A10C6226
                Malicious:false
                Reputation:low
                Preview:..@..................Info.......V................."#&),.0368;=@CEGJMORTWY\_adfiknpsvxz}.....................................................9LAME3.100......,-...8$..B..8....s..%.......@...H... .`A..a....@. ..........(?T. .Jq.8~.P.."|.!....*..|.G/P!..........[......IA....-.>P..X-R4...-....X\r....Z<8............T.g./..RJ%ll@....@..bP.&.......~E....`.$k.M..m..B.........`...a.....'..Uu......-....|.8.ily./.e..@K.k..b}.!.......f;...Y./.:...../..-.sl......:......!..eJ.8j....^A.... ....z....P.....[..-.ss....h%5T)?3yE.s...I...M....`..B....|....m...!....$R..p..e"...k.v....b..V...G$"^. ...A1.....[.I......+. 8............j.|....0L6I..l.&u..#......`.!.R.p..>...j}|.t....K......H.....h #..2=..... -..c..t..".g.~..B......!Fa.);...."Z..je...#ER..b.h.6F.+..R.M...........I..X>=0X.......X}.).T..{.'.........B."h..D..u..5e.\..M,0>...pxD!..........LWWnf...bf...LD..p..]_.....j........eYU$nG...B.........A<..........M..c.4......s..u.je.7..'..m.z..V.kI..nI%T.}v?.............
                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                File Type:PNG image data, 600 x 276, 8-bit/color RGBA, non-interlaced
                Category:downloaded
                Size (bytes):47645
                Entropy (8bit):7.961497926511126
                Encrypted:false
                SSDEEP:
                MD5:914EEDD6BE6439AAFAD0CFE7A686AF87
                SHA1:02762B606609FFCB90BFBAB75B3BA5EE84432EF0
                SHA-256:FE9B59F3F7F79DD7F8910ABC7922F309D17BFAEC282BF2707E2431CCB25BD5FD
                SHA-512:D7F1B935E44DB96DA929E6E24565D42F184E1AF9BFF0AE8D91803B54C3DB4853460662EB05233959A7A7BD5100E02193BAFDA355300C4A5ACB4618DA7F708EF6
                Malicious:false
                Reputation:low
                URL:https://ceomedia.wf.com/ceo-demo/Tutorials/Welcome/mobile/5uDfYdrMXRa.png
                Preview:.PNG........IHDR...X...........HV....IDATx..gp\G.._w_......vc..{..w..qWc4..K.......{G.K... ... ....$.....z.C.(_...Z.... .D7..Q...S.U.......w..).'.:xP..>,.N...'.[......].;'g..v...M..\.D.e.d.........F....L9}....C...W.N.*.'O........9S.UTT.m.........>.rsse...Z...:ikk....Kqq.&.wttHii..q ....=r.L.;F...%+c..:E...M%R..Z...#%.7..Ge}Q.....,/..MM....5y.|...:q..\.,.........d.......&.we...s...=.w...JQA..r.5g....^.yT.6.2a..osU...n..G.=.7...d..zU...W.[.p.l.....\mo....G}&.\....HA~.L.4A././..v.."...k.v.V..6C.{.u./.{7._...Z(..?..'3...-^..7..'.55..f.4..K.{...o.....c......{._~Y....e...2b.....q...z.......fY.h.<..3z.ri...../.Y.d..3...By.W.>.S.oN.6M^z.%.......>...z...X.@e...{..........d...{W...'...M..'....E+.3,YJ....z.`.%..9sFZ[[#....B.h..|.p...{.r.)../.p}.s......o.lSc..d.:..2tU~....2.=...sWg..?S......+...'i.v..qD...... VVVF.APv.....2.W!......E...y.g}..z.`u..,YJ.d..(...X..M.N.....i.>c....Xn,_.7..`9.f...,#####.X..X..O...d....
                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                File Type:ASCII text, with very long lines (1144), with no line terminators
                Category:downloaded
                Size (bytes):1144
                Entropy (8bit):4.596091042110381
                Encrypted:false
                SSDEEP:
                MD5:CB44E1479646815FBE166E417D2674F4
                SHA1:C0E313F9D52F8B194CF1A9E781D2F3E07066A52F
                SHA-256:148A8917FB7FC0956ED2A5BD0A570D3C68DFB6F20D15CD9271806C6573311F66
                SHA-512:57423D8B16C2A67DB2C4048EEFFA947200BF80F4B31BB1C28DE2EC63F83C99ADCF70ED146D747D5CA8FA9D60A428AC3C330A841CAC92AE4887A05875122E2B3C
                Malicious:false
                Reputation:low
                URL:https://ceomedia.wf.com/ceo-demo/Tutorials/Welcome/story_content/61dtkELgdq5_captions.js
                Preview:window.globalProvideData('caption', '{"data":"WEBVTT%0D%0AKind:%20captions%0D%0ASource:%20Articulate%20Closed%20Captions%20Editor%0D%0ASource%20Version:%206.63.27628.0%0D%0A%0D%0A00:00:01.408%20--%3E%2000:00:06.816%0D%0AAs%20you%E2%80%99ve%20seen,%20the%20new%20homepage%20provides%20an%20integrated%20dashboard%20of%20your%20key%20activities%20and%20services%0D%0A%0D%0A00:00:07.104%20--%3E%2000:00:13.056%0D%0A.%20The%20modern%20design,%20streamlined%20navigation,%20and%20easy%20access%20to%20tasks%20and%20account%20information%0D%0A%0D%0A00:00:13.057%20--%3E%2000:00:16.116%0D%0A%20can%20simplify%20your%20day%20and%20give%20you%20more%20control.%0D%0A%0D%0A00:00:16.192%20--%3E%2000:00:20.384%0D%0AFor%20now,%20you%E2%80%99ll%20notice%20that%20Vantage%20links%20to%20some%20of%20the%20screens%20you%E2%80%99re%20already%20familiar%20with.%20%0D%0A%0D%0A00:00:20.416%20--%3E%2000:00:24.651%0D%0AThere%20will%20be%20more%20in%20store%20for%20you%20as%20we%20continue%20to%20design%20and%20evolve%
                No static file info