Edit tour

Windows Analysis Report
https://dev-maine-gov-doe.pantheonsite.io/?email=ktirrell%40scarboroughschools.org

Overview

General Information

Sample URL:	https://dev-maine-gov-doe.pantheonsite.io/?email=ktirrell%40scarboroughschools.org
Analysis ID:	1326504

Detection

Score:	2
Range:	0 - 100
Whitelisted:	false
Confidence:	80%

Signatures

Stores files to the Windows start menu directory

HTML body contains low number of good links

HTML title does not match URL

Creates files inside the system directory

Classification

×

Process Tree

System is w10x64_ra

chrome.exe (PID: 5204 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --single-argument https://dev-maine-gov-doe.pantheonsite.io/?email=ktirrell%40scarboroughschools.org MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)

chrome.exe (PID: 6160 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2068 --field-trial-handle=1992,i,1540163838334321127,4010885206739733834,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)

cleanup

Yara Signatures

⊘No yara matches

Sigma Signatures

⊘No Sigma rule has matched

Snort Signatures

⊘No Snort rule has matched

Joe Sandbox Signatures

• Phishing
• Compliance
• Networking
• System Summary
• Boot Survival

Click to jump to signature section

Show All Signature Results

There are no malicious signatures, click here to show all signatures.

Source: https://dev-maine-gov-doe.pantheonsite.io/?email=ktirrell%40scarboroughschools.org

HTTP Parser: Number of links: 0

Source: https://dev-maine-gov-doe.pantheonsite.io/?email=ktirrell%40scarboroughschools.org

HTTP Parser: Title: | Department of Education does not match URL

Source: https://dev-maine-gov-doe.pantheonsite.io/?email=ktirrell%40scarboroughschools.org

HTTP Parser: <input type="password" .../> found

Source: https://dev-maine-gov-doe.pantheonsite.io/?email=ktirrell%40scarboroughschools.org

HTTP Parser: No <meta name="author".. found

Source: https://dev-maine-gov-doe.pantheonsite.io/?email=ktirrell%40scarboroughschools.org

HTTP Parser: No <meta name="copyright".. found

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

Directory created: C:\Program Files\Google\Chrome\Application\Dictionaries

Source: unknown	HTTPS traffic detected: 20.12.23.50:443 -> 192.168.2.16:49730 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 20.12.23.50:443 -> 192.168.2.16:49786 version: TLS 1.2

Source: unknown

DNS traffic detected: queries for: dev-maine-gov-doe.pantheonsite.io

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49744
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49742
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49741
Source: unknown	Network traffic detected: HTTP traffic on port 49789 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49766 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49743 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49746 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49769 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49738
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49735
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49734
Source: unknown	Network traffic detected: HTTP traffic on port 49772 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49733
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49732
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49731
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49730
Source: unknown	Network traffic detected: HTTP traffic on port 49732 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49728 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49749 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49763 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49729
Source: unknown	Network traffic detected: HTTP traffic on port 49752 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49728
Source: unknown	Network traffic detected: HTTP traffic on port 49777 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49727
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49726
Source: unknown	Network traffic detected: HTTP traffic on port 49735 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49790 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49723
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49722
Source: unknown	Network traffic detected: HTTP traffic on port 49731 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49706 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49729 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49748 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49760 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49745 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49751 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49774 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49757 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49782 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49734 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49709 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49726 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49790
Source: unknown	Network traffic detected: HTTP traffic on port 49765 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49768 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49723 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49706
Source: unknown	Network traffic detected: HTTP traffic on port 49754 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49771 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49789
Source: unknown	Network traffic detected: HTTP traffic on port 49733 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49786
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49782
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49780
Source: unknown	Network traffic detected: HTTP traffic on port 49727 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49776 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49759 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49753 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49778
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49777
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49776
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49775
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49774
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49773
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49772
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49771
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49770
Source: unknown	Network traffic detected: HTTP traffic on port 49742 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49767 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49780 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49773 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49769
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49768
Source: unknown	Network traffic detected: HTTP traffic on port 49756 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49767
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49766
Source: unknown	Network traffic detected: HTTP traffic on port 49758 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49765
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49764
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49763
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49761
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49760
Source: unknown	Network traffic detected: HTTP traffic on port 49741 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49764 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49770 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49722 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49759
Source: unknown	Network traffic detected: HTTP traffic on port 49778 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49758
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49757
Source: unknown	Network traffic detected: HTTP traffic on port 49738 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49755 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49756
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49755
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49754
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49753
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49752
Source: unknown	Network traffic detected: HTTP traffic on port 49730 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49751
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49750
Source: unknown	Network traffic detected: HTTP traffic on port 49786 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49761 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49747 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49744 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49775 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49750 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49749
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49748
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49747
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49746
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49745

Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.25
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.25
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.25
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.67
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 23.3.84.131
Source: unknown	TCP traffic detected without corresponding DNS query: 23.3.84.131
Source: unknown	TCP traffic detected without corresponding DNS query: 23.3.84.131

Source: unknown	HTTPS traffic detected: 20.12.23.50:443 -> 192.168.2.16:49730 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 20.12.23.50:443 -> 192.168.2.16:49786 version: TLS 1.2

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Windows\SystemTemp\chrome_BITS_5204_917945595

Source: classification engine

Classification label: clean2.win@14/140@12/138

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --single-argument https://dev-maine-gov-doe.pantheonsite.io/?email=ktirrell%40scarboroughschools.org
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2068 --field-trial-handle=1992,i,1540163838334321127,4010885206739733834,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2068 --field-trial-handle=1992,i,1540163838334321127,4010885206739733834,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Program Files\Google\Chrome\Application\Dictionaries

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps

Source: Window Recorder

Window detected: More than 3 window changes detected

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

Directory created: C:\Program Files\Google\Chrome\Application\Dictionaries

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk

Mitre Att&ck Matrix

Initial Access	Execution	Persistence	Privilege Escalation	Defense Evasion	Credential Access	Discovery	Lateral Movement	Collection	Exfiltration	Command and Control	Network Effects	Remote Service Effects	Impact
Valid Accounts	Windows Management Instrumentation	1 Registry Run Keys / Startup Folder	1 Process Injection	13 Masquerading	OS Credential Dumping	System Service Discovery	Remote Services	Data from Local System	Exfiltration Over Other Network Medium	2 Encrypted Channel	Eavesdrop on Insecure Network Communication	Remotely Track Device Without Authorization	Modify System Partition
Default Accounts	Scheduled Task/Job	Boot or Logon Initialization Scripts	1 Registry Run Keys / Startup Folder	1 Process Injection	LSASS Memory	Application Window Discovery	Remote Desktop Protocol	Data from Removable Media	Exfiltration Over Bluetooth	1 Non-Application Layer Protocol	Exploit SS7 to Redirect Phone Calls/SMS	Remotely Wipe Data Without Authorization	Device Lockout
Domain Accounts	At (Linux)	Logon Script (Windows)	Logon Script (Windows)	Obfuscated Files or Information	Security Account Manager	Query Registry	SMB/Windows Admin Shares	Data from Network Shared Drive	Automated Exfiltration	2 Application Layer Protocol	Exploit SS7 to Track Device Location	Obtain Device Cloud Backups	Delete Device Data

Screenshots

Thumbnails

This section contains all screenshots as thumbnails, including those not shown in the slideshow.

Antivirus, Machine Learning and Genetic Malware Detection

Initial Sample

Source	Detection	Scanner	Label	Link
https://dev-maine-gov-doe.pantheonsite.io/?email=ktirrell%40scarboroughschools.org	0%	Avira URL Cloud	safe

Dropped Files

⊘No Antivirus matches

Unpacked PE Files

⊘No Antivirus matches

Domains

⊘No Antivirus matches

URLs

⊘No Antivirus matches

Domains and IPs

Contacted Domains

Name	IP	Active	Malicious	Antivirus Detection	Reputation
accounts.google.com	142.250.217.141	true	false		high
fe1.edge.pantheon.io	23.185.0.1	true	false		high
www.google.com	172.217.14.68	true	false		high
clients.l.google.com	142.250.68.46	true	false		high
clients1.google.com	unknown	unknown	false		high
dev-maine-gov-doe.pantheonsite.io	unknown	unknown	false		unknown
clients2.google.com	unknown	unknown	false		high

Contacted URLs

Name	Malicious	Antivirus Detection	Reputation
https://dev-maine-gov-doe.pantheonsite.io/?email=ktirrell%40scarboroughschools.org	false		unknown

World Map of Contacted IPs

No. of IPs < 25%
25% < No. of IPs < 50%
50% < No. of IPs < 75%
75% < No. of IPs

Public IPs

IP	Domain	Country	Flag	ASN	ASN Name	Malicious
1.1.1.1	unknown	Australia		13335	CLOUDFLARENETUS	false
172.217.14.68	www.google.com	United States		15169	GOOGLEUS	false
142.250.68.74	unknown	United States		15169	GOOGLEUS	false
142.250.176.3	unknown	United States		15169	GOOGLEUS	false
142.250.68.46	clients.l.google.com	United States		15169	GOOGLEUS	false
142.250.176.10	unknown	United States		15169	GOOGLEUS	false
142.250.68.14	unknown	United States		15169	GOOGLEUS	false
172.217.12.131	unknown	United States		15169	GOOGLEUS	false
142.250.217.131	unknown	United States		15169	GOOGLEUS	false
142.250.217.141	accounts.google.com	United States		15169	GOOGLEUS	false
239.255.255.250	unknown	Reserved		unknown	unknown	false
23.185.0.1	fe1.edge.pantheon.io	United States		54113	FASTLYUS	false

Private

IP
192.168.2.16

General Information

Joe Sandbox Version:	38.0.0 Ammolite
Analysis ID:	1326504
Start date and time:	2023-10-16 15:30:53 +02:00
Joe Sandbox Product:	CloudBasic
Overall analysis duration:
Hypervisor based Inspection enabled:	false
Report type:	full
Cookbook file name:	defaultwindowsinteractivecookbook.jbs
Sample URL:	https://dev-maine-gov-doe.pantheonsite.io/?email=ktirrell%40scarboroughschools.org
Analysis system description:	Windows 10 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
Number of analysed new started processes analysed:	7
Number of new started drivers analysed:	0
Number of existing processes analysed:	0
Number of existing drivers analysed:	0
Number of injected processes analysed:	0
Technologies:	EGA enabled
Analysis Mode:	stream
Analysis stop reason:	Timeout
Detection:	CLEAN
Classification:	clean2.win@14/140@12/138

Warnings

Exclude process from analysis (whitelisted): SIHClient.exe
Excluded IPs from analysis (whitelisted): 172.217.12.131, 34.104.35.123, 142.250.217.131, 142.250.68.74, 72.21.81.240, 142.250.176.10, 142.250.217.138, 142.250.68.106, 172.217.12.138, 142.250.72.170, 142.250.189.10, 142.250.68.42, 142.250.188.234, 142.250.68.10, 142.250.72.234, 172.217.14.74, 142.250.72.138
Excluded domains from analysis (whitelisted): fonts.googleapis.com, edgedl.me.gvt1.com, content-autofill.googleapis.com, slscr.update.microsoft.com, fonts.gstatic.com, ctldl.windowsupdate.com, clientservices.googleapis.com, fe3cr.delivery.mp.microsoft.com
Not all processes where analyzed, report is missing behavior information
VT rate limit hit for: https://dev-maine-gov-doe.pantheonsite.io/?email=ktirrell%40scarboroughschools.org

Created / dropped Files

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Mon Oct 16 12:31:37 2023, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
Category:	dropped
Size (bytes):	2673
Entropy (8bit):	3.975508912453607
Encrypted:	false
SSDEEP:
MD5:	ACE774FB239FF166B49E24373F1DD585
SHA1:	DB884A7C250906887FF0B39AD6A5DD3D1951A65C
SHA-256:	0AE9E9915ECAC43456BD23421AC82B7DA93F2E5B268BD20C5B5ED49CF546F5BC
SHA-512:	FF334BC451A8EFC65395611E8B97DC9F636496FCF048CFA6BCB01992C42AA1B7A603EC92EC32210A311CF888A11C9430CE5610647B85F2489CFFD97A52D7BCEA
Malicious:	false
Reputation:	low
Preview:	L..................F.@.. ...$+.,.......5...N.Yr.... w......................1....P.O. .:i.....+00.../C:\.....................1.....FW.J..PROGRA~1..t......O.IPW.k....B...............J.........P.r.o.g.r.a.m. .F.i.l.e.s...@.s.h.e.l.l.3.2...d.l.l.,.-.2.1.7.8.1.....T.1.....CW.V..Google..>......CW.VPW.k....L.....................p+j.G.o.o.g.l.e.....T.1.....CW.V..Chrome..>......CW.VPW.k....M......................8..C.h.r.o.m.e.....`.1.....CW.V..APPLIC~1..H......CW.VPW.k..........................."&.A.p.p.l.i.c.a.t.i.o.n.....n.2. w..;W.+ .CHROME~1.EXE..R......CW.VPW.k...........................H..c.h.r.o.m.e._.p.r.o.x.y...e.x.e.......j...............-.......i....................C:\Program Files\Google\Chrome\Application\chrome_proxy.exe..S.....\.....\.....\.....\.....\.....\.....\.....\.....\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.\.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.*.C.:.\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.F

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Mon Oct 16 12:31:37 2023, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
Category:	dropped
Size (bytes):	2675
Entropy (8bit):	3.9911807427720847
Encrypted:	false
SSDEEP:
MD5:	32F5E96A9FD906A4725D97324FAED04D
SHA1:	2DFAFC3B4BD5B9266FA1DFB6269909A6BCD595BB
SHA-256:	DF924B0A2B39F8098F4CB8E61FAC847E5CCB03F265DD3BCBEBA6248147A20807
SHA-512:	A5C5E88074DAC73863BC25E1B917A9E8398F2C1EBD02C89D0858534BD6829D5A9120CE25F5B48C2EFACE7770E59E11352DD5034ABF693B3F45C8BEA2E2025E66
Malicious:	false
Reputation:	low
Preview:	L..................F.@.. ...$+.,....z..5...N.Yr.... w......................1....P.O. .:i.....+00.../C:\.....................1.....FW.J..PROGRA~1..t......O.IPW.k....B...............J.........P.r.o.g.r.a.m. .F.i.l.e.s...@.s.h.e.l.l.3.2...d.l.l.,.-.2.1.7.8.1.....T.1.....CW.V..Google..>......CW.VPW.k....L.....................p+j.G.o.o.g.l.e.....T.1.....CW.V..Chrome..>......CW.VPW.k....M......................8..C.h.r.o.m.e.....`.1.....CW.V..APPLIC~1..H......CW.VPW.k..........................."&.A.p.p.l.i.c.a.t.i.o.n.....n.2. w..;W.+ .CHROME~1.EXE..R......CW.VPW.k...........................H..c.h.r.o.m.e._.p.r.o.x.y...e.x.e.......j...............-.......i....................C:\Program Files\Google\Chrome\Application\chrome_proxy.exe..S.....\.....\.....\.....\.....\.....\.....\.....\.....\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.\.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.*.C.:.\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.F

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Oct 6 08:05:01 2023, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
Category:	dropped
Size (bytes):	2689
Entropy (8bit):	4.002481006487922
Encrypted:	false
SSDEEP:
MD5:	09013059896EC18D36D5EED39961B4F5
SHA1:	8A303FE4D2C10BC62D6A8C7030AB12D498FEFECE
SHA-256:	C6CF8B81BC3602DD624C32E06FE633ACB06B7EA9AADCD3D4489C3AB22F34AD6E
SHA-512:	E7DB42464282E77C4CB277434E49B0103BD6A809FE18972BDF6232E732BC3F27A2A32ACF6359E61D809FA41FA5ED54CD2DED323F5405E5D2E4E7A077A40F2BF3
Malicious:	false
Reputation:	low
Preview:	L..................F.@.. ...$+.,.....Y.04...N.Yr.... w......................1....P.O. .:i.....+00.../C:\.....................1.....FW.J..PROGRA~1..t......O.IPW.k....B...............J.........P.r.o.g.r.a.m. .F.i.l.e.s...@.s.h.e.l.l.3.2...d.l.l.,.-.2.1.7.8.1.....T.1.....CW.V..Google..>......CW.VPW.k....L.....................p+j.G.o.o.g.l.e.....T.1.....CW.V..Chrome..>......CW.VPW.k....M......................8..C.h.r.o.m.e.....`.1.....CW.V..APPLIC~1..H......CW.VPW.k..........................."&.A.p.p.l.i.c.a.t.i.o.n.....n.2. w..;W.+ .CHROME~1.EXE..R......CW.VFW.E...........................H..c.h.r.o.m.e._.p.r.o.x.y...e.x.e.......j...............-.......i....................C:\Program Files\Google\Chrome\Application\chrome_proxy.exe..S.....\.....\.....\.....\.....\.....\.....\.....\.....\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.\.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.*.C.:.\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.F

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Mon Oct 16 12:31:37 2023, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
Category:	dropped
Size (bytes):	2677
Entropy (8bit):	3.9841841293138924
Encrypted:	false
SSDEEP:
MD5:	FD43317262D2994C0E015C50939585DA
SHA1:	9453FEA6C089BDF18B4C5F349C982BD5FF90E30B
SHA-256:	3480D69941FBC8CD5D46BEC6DCA82C6ADAA22573CE30C50C9D53AB3F552BB1BF
SHA-512:	0216B86F4835372809611C01A5B88C9D7B2A78FCD33F66F8EB1AC3803C0E094F269C7D5DE1BE33BF7662DBAFB528BFAE39C8CCF9875DD31B823BD7470C2DBB0A
Malicious:	false
Reputation:	low
Preview:	L..................F.@.. ...$+.,....-6..5...N.Yr.... w......................1....P.O. .:i.....+00.../C:\.....................1.....FW.J..PROGRA~1..t......O.IPW.k....B...............J.........P.r.o.g.r.a.m. .F.i.l.e.s...@.s.h.e.l.l.3.2...d.l.l.,.-.2.1.7.8.1.....T.1.....CW.V..Google..>......CW.VPW.k....L.....................p+j.G.o.o.g.l.e.....T.1.....CW.V..Chrome..>......CW.VPW.k....M......................8..C.h.r.o.m.e.....`.1.....CW.V..APPLIC~1..H......CW.VPW.k..........................."&.A.p.p.l.i.c.a.t.i.o.n.....n.2. w..;W.+ .CHROME~1.EXE..R......CW.VPW.k...........................H..c.h.r.o.m.e._.p.r.o.x.y...e.x.e.......j...............-.......i....................C:\Program Files\Google\Chrome\Application\chrome_proxy.exe..S.....\.....\.....\.....\.....\.....\.....\.....\.....\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.\.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.*.C.:.\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.F

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Mon Oct 16 12:31:37 2023, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
Category:	dropped
Size (bytes):	2677
Entropy (8bit):	3.9764673171979386
Encrypted:	false
SSDEEP:
MD5:	3EF4AC3F58B115867AA812D3203AA1A2
SHA1:	9B1D9B05C10EBF90A8FCBAFBE7DCA6D868FEDAFE
SHA-256:	418BFA385E86DF124B3C8CCA8C05B4B3DAEA1E6BE06F9E9E3ADC48ECC6FB8BF4
SHA-512:	8DA0975BAB65142A1D6448975FBD1594C3BBFADBD361727194D2F3F191034AFA48A76F01EB47E0174B5F37867367980DB0E60A87104414B15375E2EFF1A93A00
Malicious:	false
Reputation:	low
Preview:	L..................F.@.. ...$+.,....!...5...N.Yr.... w......................1....P.O. .:i.....+00.../C:\.....................1.....FW.J..PROGRA~1..t......O.IPW.k....B...............J.........P.r.o.g.r.a.m. .F.i.l.e.s...@.s.h.e.l.l.3.2...d.l.l.,.-.2.1.7.8.1.....T.1.....CW.V..Google..>......CW.VPW.k....L.....................p+j.G.o.o.g.l.e.....T.1.....CW.V..Chrome..>......CW.VPW.k....M......................8..C.h.r.o.m.e.....`.1.....CW.V..APPLIC~1..H......CW.VPW.k..........................."&.A.p.p.l.i.c.a.t.i.o.n.....n.2. w..;W.+ .CHROME~1.EXE..R......CW.VPW.k...........................H..c.h.r.o.m.e._.p.r.o.x.y...e.x.e.......j...............-.......i....................C:\Program Files\Google\Chrome\Application\chrome_proxy.exe..S.....\.....\.....\.....\.....\.....\.....\.....\.....\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.\.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.*.C.:.\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.F

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Mon Oct 16 12:31:37 2023, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
Category:	dropped
Size (bytes):	2679
Entropy (8bit):	3.9848780022011034
Encrypted:	false
SSDEEP:
MD5:	A93373558FF543A4ACA9311756DFA7B3
SHA1:	56D7F8AC3C72D3E87D1119571DF233BDE4D0CE62
SHA-256:	A85AB4FF9C0DBC0880E000B0368DEFD0B7AD4A40BCC481C84D1BE785BC7E8ED0
SHA-512:	C5A466ED5C6B260792821079A763042C4B5FAFB9579652D8ED2EA02DE5B60C998FBB4B6C633F986EC6A15E3E891F76DB8BDAFE233D231D28BECD5625CAC45C5D
Malicious:	false
Reputation:	low
Preview:	L..................F.@.. ...$+.,....\,..5...N.Yr.... w......................1....P.O. .:i.....+00.../C:\.....................1.....FW.J..PROGRA~1..t......O.IPW.k....B...............J.........P.r.o.g.r.a.m. .F.i.l.e.s...@.s.h.e.l.l.3.2...d.l.l.,.-.2.1.7.8.1.....T.1.....CW.V..Google..>......CW.VPW.k....L.....................p+j.G.o.o.g.l.e.....T.1.....CW.V..Chrome..>......CW.VPW.k....M......................8..C.h.r.o.m.e.....`.1.....CW.V..APPLIC~1..H......CW.VPW.k..........................."&.A.p.p.l.i.c.a.t.i.o.n.....n.2. w..;W.+ .CHROME~1.EXE..R......CW.VPW.k...........................H..c.h.r.o.m.e._.p.r.o.x.y...e.x.e.......j...............-.......i....................C:\Program Files\Google\Chrome\Application\chrome_proxy.exe..S.....\.....\.....\.....\.....\.....\.....\.....\.....\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.\.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.*.C.:.\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.F

Chrome Cache Entry: 108

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (19487)
Category:	downloaded
Size (bytes):	19533
Entropy (8bit):	4.558219940351496
Encrypted:	false
SSDEEP:
MD5:	3683D21C678EF9E264A1CB0FA2007285
SHA1:	180B55F2045971D357AF3183C4126432F0C383F9
SHA-256:	941B1493157DFB7316BCB3C7357A94E9BA173607D80559408620F4AB4C39C88D
SHA-512:	E899EF06B58D67ACDAE326E335E04D6EEDB72D3C65E2ABAF101FAFF7E85DBAE6AAEEE5E8F6F626F19F702F76D5AB3970F612BA0E7498A8D4AED8AB09BFA27CC7
Malicious:	false
Reputation:	low
URL:	https://dev-maine-gov-doe.pantheonsite.io/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.23.0
Preview:	/! elementor-icons - v5.23.0 - 26-07-2023 /.@font-face{font-family:eicons;src:url(../fonts/eicons.eot?5.23.0);src:url(../fonts/eicons.eot?5.23.0#iefix) format("embedded-opentype"),url(../fonts/eicons.woff2?5.23.0) format("woff2"),url(../fonts/eicons.woff?5.23.0) format("woff"),url(../fonts/eicons.ttf?5.23.0) format("truetype"),url(../fonts/eicons.svg?5.23.0#eicon) format("svg");font-weight:400;font-style:normal}[class*=" eicon-"],[class^=eicon]{display:inline-block;font-family:eicons;font-size:inherit;font-weight:400;font-style:normal;font-variant:normal;line-height:1;text-rendering:auto;-webkit-font-smoothing:antialiased;-moz-osx-font-smoothing:grayscale}@keyframes a{0%{transform:rotate(0deg)}to{transform:rotate(359deg)}}.eicon-animation-spin{animation:a 2s infinite linear}.eicon-editor-link:before{content:"\e800"}.eicon-editor-unlink:before{content:"\e801"}.eicon-editor-external-link:before{content:"\e802"}.eicon-editor-close:before{content:"\e803"}.eicon-editor-list-ol:before{cont

Chrome Cache Entry: 109

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (9223), with no line terminators
Category:	downloaded
Size (bytes):	9223
Entropy (8bit):	5.184033305014839
Encrypted:	false
SSDEEP:
MD5:	B8935FB76A794D27524F8696FCBA58EA
SHA1:	FC8BA7554BABF97BD540E5019A51663E1FD4DE99
SHA-256:	948240DA929DEFBE2F377B6A2173CF7C0988EDC05972424CB3872ABC739AA024
SHA-512:	DEDB414250E2FBEB70AB74206CFA432ECA9B8C036CB155EC3D5EC6B2B886A56A2D0F09929DC7E281F0DF9A3BFD0B10FB57E8723506C0E9065CF356B22D6CD9E4
Malicious:	false
Reputation:	low
URL:	https://dev-maine-gov-doe.pantheonsite.io/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/js/view/general.min.js?ver=5.8.11
Preview:	!function(e){var t={};function n(r){if(t[r])return t[r].exports;var o=t[r]={i:r,l:!1,exports:{}};return e[r].call(o.exports,o,o.exports,n),o.l=!0,o.exports}n.m=e,n.c=t,n.d=function(e,t,r){n.o(e,t)\|\|Object.defineProperty(e,t,{enumerable:!0,get:r})},n.r=function(e){"undefined"!=typeof Symbol&&Symbol.toStringTag&&Object.defineProperty(e,Symbol.toStringTag,{value:"Module"}),Object.defineProperty(e,"__esModule",{value:!0})},n.t=function(e,t){if(1&t&&(e=n(e)),8&t)return e;if(4&t&&"object"==typeof e&&e&&e.__esModule)return e;var r=Object.create(null);if(n.r(r),Object.defineProperty(r,"default",{enumerable:!0,value:e}),2&t&&"string"!=typeof e)for(var o in e)n.d(r,o,function(t){return e[t]}.bind(null,o));return r},n.n=function(e){var t=e&&e.__esModule?function(){return e.default}:function(){return e};return n.d(t,"a",t),t},n.o=function(e,t){return Object.prototype.hasOwnProperty.call(e,t)},n.p="",n(n.s=98)}({98:function(e,t,n){"use strict";n.r(t);var r=function(e){return"string"!=typeof e\|\|""==

Chrome Cache Entry: 110

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (32920), with no line terminators
Category:	downloaded
Size (bytes):	32920
Entropy (8bit):	5.151112238850988
Encrypted:	false
SSDEEP:
MD5:	69E984127E36F115F4223D8D2D2BC852
SHA1:	9094981A5FB8F01B8136174DFC19468316D08DC8
SHA-256:	7F2E338AB4AC2A9B18B483A9C20C698B086A6F12313C74CC4F9E4B3E36FB4CEC
SHA-512:	FEF59C700F9F04777F0FE98EF825522FDED9F947A0DAEFCC77E00D365E81E1E3EEA2D2D3A70043944A5B703B97709A1A7D84660C2E9A110979A4DA1891DCFDE0
Malicious:	false
Reputation:	low
URL:	https://dev-maine-gov-doe.pantheonsite.io/wp-content/plugins/gravityforms/css/theme.min.css?ver=2.5.12.2
Preview:	:root{--c-white:#FFFFFF;--c-text-default:#585E6A;--c-label:#686E77;--c-very-light-grey:#F2F3F5;--c-medium-grey:#D0D1D3;--c-sorta-grey:#607382;--c-dark-blue:#2F4054;--c-disabled-border:rgba(32, 32, 46, 0.079)}:root{--bs-datepicker:0 1px 4px rgba(0, 0, 0, 0.11),0 0 4px rgba(18, 25, 97, 0.0405344);--bs-datepicker-active-day:0 2px 2px rgba(58, 58, 87, 0.0596411);--bs-datepicker-disabled-day:0 2px 2px rgba(58, 58, 87, 0.0596411)}:root{--gform-icon--left-arrow:"\e910";--gform-icon--right-arrow:"\e91b";--gform-icon--circle-error:"\e91a";--gform-icon--close-small:"\e905";--gform-icon--info:"\e900";--gform-icon--verified:"\e901";--gform-icon--circle-check:"\e902";--gform-icon--close:"\e903";--gform-icon--close-big:"\e904";--gform-icon--down-arrow:"\e906";--gform-icon--format-bold:"\e907";--gform-icon--format-italic:"\e908";--gform-icon--format-list-bulleted:"\e909";--gform-icon--format-list-numbered:"\e90a";--gform-icon--insert-link:"\e90b";--gform-icon--line:"\e90c";--gform-icon--password-eye:

Chrome Cache Entry: 111

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (4622), with no line terminators
Category:	downloaded
Size (bytes):	4622
Entropy (8bit):	4.845446097497297
Encrypted:	false
SSDEEP:
MD5:	E950BFB4B4CBB82959A362C260F5F63C
SHA1:	D15AA3D7D53DE718BD863234A900632E34893E62
SHA-256:	1295F849DB38B347AF7C59C80E3CA670C73CC5C226C1113606242A0213155BF0
SHA-512:	CA97C268AB17F4932673920C560742AD585BD569DDBB7C01FF4FA10DF62D6F4D2CDD5BD97562415056E7B362894EFCE65C38660EFC4B3D641329F4D65A9EF855
Malicious:	false
Reputation:	low
URL:	https://dev-maine-gov-doe.pantheonsite.io/wp-content/uploads/elementor/css/post-6.css?ver=1697448432
Preview:	.elementor-6 .elementor-element.elementor-element-65bdfc9a{transition:background 0.3s, border 0.3s, border-radius 0.3s, box-shadow 0.3s;margin-top:100px;margin-bottom:100px;}.elementor-6 .elementor-element.elementor-element-65bdfc9a > .elementor-background-overlay{transition:background 0.3s, border-radius 0.3s, opacity 0.3s;}.elementor-6 .elementor-element.elementor-element-42fa1709 > .elementor-element-populated > .elementor-background-overlay{background-color:#657C9E;opacity:0.88;}.elementor-6 .elementor-element.elementor-element-42fa1709 > .elementor-element-populated{border-style:none;transition:background 0.3s, border 0.3s, border-radius 0.3s, box-shadow 0.3s;padding:31px 31px 31px 31px;}.elementor-6 .elementor-element.elementor-element-42fa1709 > .elementor-element-populated, .elementor-6 .elementor-element.elementor-element-42fa1709 > .elementor-element-populated > .elementor-background-overlay, .elementor-6 .elementor-element.elementor-element-42fa1709 > .elementor-background-

Chrome Cache Entry: 112

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (6607), with no line terminators
Category:	downloaded
Size (bytes):	6607
Entropy (8bit):	5.020780697171515
Encrypted:	false
SSDEEP:
MD5:	9A4F28A615173DF36CB84BE2B345816E
SHA1:	F709263841708D9E40268F24A0072FF4FE811B35
SHA-256:	6974BFD8FA06B7831F05CB4B25860C851A5AD3F02A6699EBE688987DD7A6EBE6
SHA-512:	2685373F6522C039F17123683DBC4A2D6EAF572BCA72B6019B7FCC9B15B2AA295CACAB19B99A1161CC3E317D6BDFC3BDC2BFFBFC87D9EA9086DA58A013849910
Malicious:	false
Reputation:	low
URL:	https://dev-maine-gov-doe.pantheonsite.io/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.11
Preview:	var runtime=function(t){"use strict";var r,e=Object.prototype,n=e.hasOwnProperty,o=Object.defineProperty\|\|function(t,r,e){t[r]=e.value},i=(w="function"==typeof Symbol?Symbol:{}).iterator\|\|"@@iterator",a=w.asyncIterator\|\|"@@asyncIterator",c=w.toStringTag\|\|"@@toStringTag";function u(t,r,e){return Object.defineProperty(t,r,{value:e,enumerable:!0,configurable:!0,writable:!0}),t[r]}try{u({},"")}catch(e){u=function(t,r,e){return t[r]=e}}function h(t,e,n,i){var a,c,u,h;e=e&&e.prototype instanceof v?e:v,e=Object.create(e.prototype),i=new O(i\|\|[]);return o(e,"_invoke",{value:(a=t,c=n,u=i,h=f,function(t,e){if(h===p)throw new Error("Generator is already running");if(h===y){if("throw"===t)throw e;return G()}for(u.method=t,u.arg=e;;){var n=u.delegate;if(n&&(n=function t(e,n){var o=n.method,i=e.iterator[o];return i===r?(n.delegate=null,"throw"===o&&e.iterator.return&&(n.method="return",n.arg=r,t(e,n),"throw"===n.method)\|\|"return"!==o&&(n.method="throw",n.arg=new TypeError("The iterator does not prov

Chrome Cache Entry: 113

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (4610)
Category:	downloaded
Size (bytes):	4639
Entropy (8bit):	5.201091262542577
Encrypted:	false
SSDEEP:
MD5:	A39E45502BAB7E9E26723E6AB243E8F8
SHA1:	AC62AACD5EE3E7B64CE6A92B5D8E3FB523E34D16
SHA-256:	D62A7B7EC5313469EBFF5C006B9068DC44D6D1C122CF787FFA29A10113B34060
SHA-512:	79CDE67B82BCDD7EF5FD09298A967E7F6EC1A5A82F7211B822C2926513290F2FE564D9F70D814AD3918998B2A637CCF0A03670114D3EA8E3B4A0108CF9ECAE7F
Malicious:	false
Reputation:	low
URL:	https://dev-maine-gov-doe.pantheonsite.io/wp-content/plugins/gravityforms/js/placeholders.jquery.min.js?ver=2.5.12.2
Preview:	/* Placeholders.js v3.0.2 */.(function(t){"use strict";function e(t,e,r){return t.addEventListener?t.addEventListener(e,r,!1):t.attachEvent?t.attachEvent("on"+e,r):void 0}function r(t,e){var r,n;for(r=0,n=t.length;n>r;r++)if(t[r]===e)return!0;return!1}function n(t,e){var r;t.createTextRange?(r=t.createTextRange(),r.move("character",e),r.select()):t.selectionStart&&(t.focus(),t.setSelectionRange(e,e))}function a(t,e){try{return t.type=e,!0}catch(r){return!1}}t.Placeholders={Utils:{addEventListener:e,inArray:r,moveCaret:n,changeType:a}}})(this),function(t){"use strict";function e(){}function r(){try{return document.activeElement}catch(t){}}function n(t,e){var r,n,a=!!e&&t.value!==e,u=t.value===t.getAttribute(V);return(a\|\|u)&&"true"===t.getAttribute(P)?(t.removeAttribute(P),t.value=t.value.replace(t.getAttribute(V),""),t.className=t.className.replace(R,""),n=t.getAttribute(z),parseInt(n,10)>=0&&(t.setAttribute("maxLength",n),t.removeAttribute(z)),r=t.getAttribute(D),r&&(t.type=r),!0):!1}f

Chrome Cache Entry: 114

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (40396)
Category:	downloaded
Size (bytes):	40436
Entropy (8bit):	5.273520226335397
Encrypted:	false
SSDEEP:
MD5:	AC7624F04566920DAE03F91EB66DD97B
SHA1:	D9B51553E1AAA1440A16437050F496277FC10BC5
SHA-256:	07571BC50F1998B305037B073DAEBEC638F70AD32390A63D151CDBAC2180D386
SHA-512:	D313E00F87767D4E9FACB253D3702F0A48560A1FBD133EFA54710F71BB3D3A65614CAE2BE4588872005A58B52A97283C713288403B0EABE80A893512E5DF8A2F
Malicious:	false
Reputation:	low
URL:	https://dev-maine-gov-doe.pantheonsite.io/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.16.5
Preview:	/! elementor - v3.16.0 - 09-10-2023 /."use strict";(self.webpackChunkelementor=self.webpackChunkelementor\|\|[]).push([[819],{9220:(e,t,n)=>{var o=n(3203);Object.defineProperty(t,"__esModule",{value:!0}),t.default=void 0;var i=o(n(8135));class _default extends elementorModules.ViewModule{constructor(){super(...arguments),this.documents={},this.initDocumentClasses(),this.attachDocumentsClasses()}getDefaultSettings(){return{selectors:{document:".elementor"}}}getDefaultElements(){const e=this.getSettings("selectors");return{$documents:jQuery(e.document)}}initDocumentClasses(){this.documentClasses={base:i.default},elementorFrontend.hooks.doAction("elementor/frontend/documents-manager/init-classes",this)}addDocumentClass(e,t){this.documentClasses[e]=t}attachDocumentsClasses(){this.elements.$documents.each(((e,t)=>this.attachDocumentClass(jQuery(t))))}attachDocumentClass(e){const t=e.data(),n=t.elementorId,o=t.elementorType,i=this.documentClasses[o]\|\|this.documentClasses.base;this.documents[

Chrome Cache Entry: 115

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (1108), with no line terminators
Category:	downloaded
Size (bytes):	1108
Entropy (8bit):	4.835480026813098
Encrypted:	false
SSDEEP:
MD5:	DCFA7B51732BE2FDFA6550BCD99B12A7
SHA1:	8A639F6749C858BFB73BB76D776938BEDFEF0E2F
SHA-256:	28991DB6ED84CD637E7FDAE567C4D20CE8E1FF3BCD908337BE967037CF475C7E
SHA-512:	61FD214484DA5C18C7B8160C04F98122D72D5695337356FDDBFFE3882463BA1B079868CB094AEA029AB8792E6F695FBD4397388A1BDB3420F8F55ACB0508B41D
Malicious:	false
Reputation:	low
URL:	https://dev-maine-gov-doe.pantheonsite.io/wp-content/uploads/elementor/css/post-10.css?ver=1697447631
Preview:	.elementor-kit-10{--e-global-color-primary:#6EC1E4;--e-global-color-secondary:#54595F;--e-global-color-text:#7A7A7A;--e-global-color-accent:#61CE70;--e-global-typography-primary-font-family:"Roboto";--e-global-typography-primary-font-weight:600;--e-global-typography-secondary-font-family:"Roboto Slab";--e-global-typography-secondary-font-weight:400;--e-global-typography-text-font-family:"Roboto";--e-global-typography-text-font-weight:400;--e-global-typography-accent-font-family:"Roboto";--e-global-typography-accent-font-weight:500;}.elementor-section.elementor-section-boxed > .elementor-container{max-width:1140px;}.e-con{--container-max-width:1140px;}.elementor-widget:not(:last-child){margin-block-end:20px;}.elementor-element{--widgets-spacing:20px 20px;}{}h1.entry-title{display:var(--page-title-display);}@media(max-width:1024px){.elementor-section.elementor-section-boxed > .elementor-container{max-width:1024px;}.e-con{--container-max-width:1024px;}}@media(max-width:767px){.elementor-s

Chrome Cache Entry: 116

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	HTML document, ASCII text, with very long lines (49213)
Category:	downloaded
Size (bytes):	105557
Entropy (8bit):	5.112624472283906
Encrypted:	false
SSDEEP:
MD5:	2DC6066512F9BDDFF996B352E03AFE88
SHA1:	05F004C82EF968F131799CFFF0B853E91AA94F28
SHA-256:	A0C73333653106215F5889432C7F3E382865159331C79F19B250F6B69238E108
SHA-512:	EE67F925D4FC2F6913B2D2D57AB18882319C9C1810D26C6CEF9FFD1149E96CFD70EAF2B51FDC729B8B665B05DDBB3C762AD7B769B8676BFFDD7579A6725A0388
Malicious:	false
Reputation:	low
URL:	https://dev-maine-gov-doe.pantheonsite.io/?email=ktirrell%40scarboroughschools.org
Preview:	<!DOCTYPE html>.<html lang="en-US">.<head>..<meta charset="UTF-8">.<script>.var gform;gform\|\|(document.addEventListener("gform_main_scripts_loaded",function(){gform.scriptsLoaded=!0}),window.addEventListener("DOMContentLoaded",function(){gform.domLoaded=!0}),gform={domLoaded:!1,scriptsLoaded:!1,initializeOnLoaded:function(o){gform.domLoaded&&gform.scriptsLoaded?o():!gform.domLoaded&&gform.scriptsLoaded?window.addEventListener("DOMContentLoaded",o):document.addEventListener("gform_main_scripts_loaded",o)},hooks:{action:{},filter:{}},addAction:function(o,r,n,t){gform.addHook("action",o,r,n,t)},addFilter:function(o,r,n,t){gform.addHook("filter",o,r,n,t)},doAction:function(o){gform.doHook("action",o,arguments)},applyFilters:function(o){return gform.doHook("filter",o,arguments)},removeAction:function(o,r){gform.removeHook("action",o,r)},removeFilter:function(o,r,n){gform.removeHook("filter",o,r,n)},addHook:function(o,r,n,t,i){null==gform.hooks[o][r]&&(gform.hooks[o][r]=[]);var e=gform.hooks

Chrome Cache Entry: 117

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (53449)
Category:	downloaded
Size (bytes):	104484
Entropy (8bit):	4.91975104219658
Encrypted:	false
SSDEEP:
MD5:	03C0F2128C8DD615B1691C168F1D4456
SHA1:	DEFA44BED1F35EC899CFD358CA911390BCA53E67
SHA-256:	67447C3656CAAD630373253691F3E8F64467EAFD6E7305C9B0E98111B0B41694
SHA-512:	01485475AEC2D490E75DC76AEA6E011541EDCFF527E85A773644ACCF101175B619E10B4D3A5CDB5926669559782BC33DF483FE9CC3DE9D3431E08123CE5D0853
Malicious:	false
Reputation:	low
URL:	https://dev-maine-gov-doe.pantheonsite.io/wp-includes/css/dist/block-library/style.min.css?ver=6.3.2
Preview:	@charset "UTF-8";.wp-block-archives{box-sizing:border-box}.wp-block-archives-dropdown label{display:block}.wp-block-avatar{line-height:0}.wp-block-avatar,.wp-block-avatar img{box-sizing:border-box}.wp-block-avatar.aligncenter{text-align:center}.wp-block-audio{box-sizing:border-box}.wp-block-audio figcaption{margin-bottom:1em;margin-top:.5em}.wp-block-audio audio{min-width:300px;width:100%}.wp-block-button__link{box-sizing:border-box;cursor:pointer;display:inline-block;text-align:center;word-break:break-word}.wp-block-button__link.aligncenter{text-align:center}.wp-block-button__link.alignright{text-align:right}:where(.wp-block-button__link){border-radius:9999px;box-shadow:none;padding:calc(.667em + 2px) calc(1.333em + 2px);text-decoration:none}.wp-block-button[style*=text-decoration] .wp-block-button__link{text-decoration:inherit}.wp-block-buttons>.wp-block-button.has-custom-width{max-width:none}.wp-block-buttons>.wp-block-button.has-custom-width .wp-block-button__link{width:100%}.wp-bl

Chrome Cache Entry: 118

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (39343)
Category:	downloaded
Size (bytes):	41525
Entropy (8bit):	4.974433031115421
Encrypted:	false
SSDEEP:
MD5:	A0B3A11FD4EBCAD236CFF2BC51E9B434
SHA1:	32450D8097E971F4B59044E979289903BEFFC85D
SHA-256:	4C0561C2C4810CBB09911BC45252C68724F181AA5BD16455493E31D2BFEBA8B3
SHA-512:	723A972BB0BC0FD388FCC78E899750F9D4ECCC8FEA18C8BB488B79C378C8F037B6B0F7E181990F9BCA20D39B65B871D56EA3AD705FB75938305129BFB0CF169C
Malicious:	false
Reputation:	low
URL:	https://dev-maine-gov-doe.pantheonsite.io/wp-content/themes/astra/assets/css/minified/main.min.css?ver=4.3.1
Preview:	@charset "UTF-8";address,blockquote,body,dd,dl,dt,fieldset,figure,h1,h2,h3,h4,h5,h6,hr,html,iframe,legend,li,ol,p,pre,textarea,ul{border:0;font-size:100%;font-style:inherit;font-weight:inherit;margin:0;outline:0;padding:0;vertical-align:baseline}html{-webkit-text-size-adjust:100%;-ms-text-size-adjust:100%}body{margin:0}main,nav{display:block}progress{display:inline-block;vertical-align:baseline}a{background-color:transparent}a:active{outline:0}a,a:focus,a:hover,a:visited{text-decoration:none}abbr[title]{border-bottom:1px dotted}b,strong{font-weight:700}dfn{font-style:italic}mark{background:#ff0;color:#000}small{font-size:80%}sub,sup{font-size:75%;line-height:0;position:relative;vertical-align:baseline}sup{top:-.5em}sub{bottom:-.25em}img{border:0}svg:not(:root){overflow:hidden}figure{margin:0}hr{box-sizing:content-box;height:0}pre{overflow:auto}code,kbd,pre,samp{font-size:1em}button,input,optgroup,select,textarea{color:inherit;font:inherit;margin:0}button{overflow:visible}button,select{

Chrome Cache Entry: 119

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (630), with no line terminators
Category:	downloaded
Size (bytes):	630
Entropy (8bit):	4.912501976956232
Encrypted:	false
SSDEEP:
MD5:	D613E18F9251B5EC8F9AE3F9E498A730
SHA1:	BF21B934322A44B4598496D13F08E3551B1D5DAE
SHA-256:	AB6260DB0D6BCE29DDBD993B98F6BE03F0457010E31D17DBFF4E6BAD11B3D51F
SHA-512:	7A897B52029C3C5E8483A29C08AAE3D3DFCCF16ADC19CB3EA571DA1C40757CAA97B811D965A6E28DCA452D9A33E3E8E2AA8C1A12B786C8A8B9E290D841E3D4A7
Malicious:	false
Reputation:	low
URL:	https://dev-maine-gov-doe.pantheonsite.io/wp-content/themes/astra/assets/css/minified/compatibility/gravity-forms.min.css?ver=4.3.1
Preview:	.gform_wrapper form{position:relative}.gform_wrapper select{height:2.2em;border-width:1px;border-style:solid;border-color:var(--ast-border-color);border-radius:2px;background:#fafafa;padding:0}.gform_wrapper .ui-datepicker-header select{padding:inherit}.gform_wrapper .gform_body .gfield_checkbox li>label{margin-top:4px}.gform_wrapper input:not([type=submit]):focus,.gform_wrapper select:focus,.gform_wrapper textarea:focus{background:#fff;border-color:var(--ast-border-color);outline:0;box-shadow:none}.ui-datepicker-header select{padding:0}@media (max-width:768px){.gform_wrapper.gf_browser_chrome form>.gform_body{width:100%}}

Chrome Cache Entry: 120

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
Category:	downloaded
Size (bytes):	1063
Entropy (8bit):	7.733487802319737
Encrypted:	false
SSDEEP:
MD5:	C94042E27CDAF422CC785A460C9EAE5C
SHA1:	7E26E36CF7B14D5BCD47823FA331F70DF3EA85C7
SHA-256:	DF6DDA312F988CF2ECC9DF89C7C2EE821B7677B0EB67E0E3D8294DE20E74AF32
SHA-512:	55F553701EE05E6C6AE063838DF698278A0D482AC5D0026A2ECACCFC63755AF48235FE53B4F71FBCE8402DF29569CFA610FE71B3921670DB8B5D51FBC4941C49
Malicious:	false
Reputation:	low
URL:	https://dev-maine-gov-doe.pantheonsite.io/wp-content/uploads/2023/10/cropped-imageedit_5_9234934059-32x32.png
Preview:	.PNG........IHDR... ... .....szz.....IDATX..[h[u..?...\.6i.....6l..z..9d.yC.\|...{.y.=.. . >..0..X..S...Q7/lV...]Yl..49.....P...&'..-9....~....A..~B..w.....Dy...\|..^..Ua.v])...S.3..zO.\s$h..X...e..9(...yzZ.%Y.4.. ....z..7..M.nR...B....;...`Q.Y......A..V..]Z....-.&.6...%.[...i.>..H4..eO.2...V.pt..x...../.....E.M.S.9b!.K.Si.4..j...(...:...F.iC..{p.x#Aj..y....p.....6.{.K..@...?...V..Iu..i.p..W........H/....1.$.eJj........vF.N.>......Jv....P..f..j.E....I...QWv...>....79`J.Xgi.57.+.._$s.f8...7.........n..g.mU...g\.;.!....Z...Q....C..H..........\.........\.~\..os.0..2A....m..._.c.@..l.l.h.z.N.\.....F.......h.Ms2.cn...j1m..z...!.RA....W..K1....N.{Rd..\.2....~~..tAJ.C.[]..1@.=..p2K~O'_t..P......E.=GN...........?....{.P.....\{..{.Dc.z.6.y.no..$.ze.7..\|v.m..h.'..Gf0.h.Mn~..J..E....!8..P..]!...'.dX..I.hG.P8.%g......5.Q...Hg..@.Z..ea.\6.=.1.bo...6....f....m..0....d2y.kN...:.t.1..2..p1.e..Z..{n+......T..\.;..>;.9.Z...VK...G.F...clo..)I...3..V..E...

Chrome Cache Entry: 122

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (65496)
Category:	downloaded
Size (bytes):	117324
Entropy (8bit):	4.714470540951491
Encrypted:	false
SSDEEP:
MD5:	F953A5CE07CFC033712EA9792A3E477D
SHA1:	6E949F57CBC5B5F5AD5421F9118CE2BABBA49B81
SHA-256:	1C483C83318C93D883F638129FE28DBD41F8B7D6881D94B0D99C93F5D87BB934
SHA-512:	B3C356E5A1A1257CF219E52E6A10E3AACB8A2073700A44A370612E00C9173345C0E3102558118D8B4B0545D2C007B3F434EF14499933AD872E3F404108D76B04
Malicious:	false
Reputation:	low
URL:	https://dev-maine-gov-doe.pantheonsite.io/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.16.5
Preview:	/! elementor - v3.16.0 - 09-10-2023 /..dialog-widget-content{background-color:var(--e-a-bg-default);position:absolute;border-radius:3px;box-shadow:2px 8px 23px 3px rgba(0,0,0,.2);overflow:hidden}.dialog-message{line-height:1.5;box-sizing:border-box}.dialog-close-button{cursor:pointer;position:absolute;margin-top:15px;right:15px;color:var(--e-a-color-txt);font-size:15px;line-height:1;transition:var(--e-a-transition-hover)}.dialog-close-button:hover{color:var(--e-a-color-txt-hover)}.dialog-prevent-scroll{overflow:hidden;max-height:100vh}.dialog-type-lightbox{position:fixed;height:100%;width:100%;bottom:0;left:0;background-color:rgba(0,0,0,.8);z-index:9999;-webkit-user-select:none;-moz-user-select:none;user-select:none}.elementor-editor-active .elementor-popup-modal{background-color:initial}.dialog-type-alert .dialog-widget-content,.dialog-type-confirm .dialog-widget-content{margin:auto;width:400px;padding:20px}.dialog-type-alert .dialog-header,.dialog-type-confirm .dialog-header{font-s

Chrome Cache Entry: 123

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (47510), with no line terminators
Category:	downloaded
Size (bytes):	47510
Entropy (8bit):	5.004864311671526
Encrypted:	false
SSDEEP:
MD5:	5A54A5C4637CA7D017D857DFEF6ACC40
SHA1:	39DF5C38C5336AE4D87414F7751C2C44FB5FFF1C
SHA-256:	80D9EEF3C4E4F0991CD824C6F7F40CD67C55417FF8B9902CDFE220C7B16DCC6A
SHA-512:	FAC62AD510DFBFE73FF2ECF30C45B14361705152B23CB0B71B79363DE385CE99AD32E44E108F079BC4E95DD4100BA38712C5806A102D8CD16BB91AD1D2FF4686
Malicious:	false
Reputation:	low
URL:	https://dev-maine-gov-doe.pantheonsite.io/wp-content/plugins/gravityforms/css/basic.min.css?ver=2.5.12.2
Preview:	:root{--c-white:#FFFFFF;--c-text-default:#585E6A;--c-label:#686E77;--c-very-light-grey:#F2F3F5;--c-medium-grey:#D0D1D3;--c-sorta-grey:#607382;--c-dark-blue:#2F4054;--c-disabled-border:rgba(32, 32, 46, 0.079)}:root{--bs-datepicker:0 1px 4px rgba(0, 0, 0, 0.11),0 0 4px rgba(18, 25, 97, 0.0405344);--bs-datepicker-active-day:0 2px 2px rgba(58, 58, 87, 0.0596411);--bs-datepicker-disabled-day:0 2px 2px rgba(58, 58, 87, 0.0596411)}:root{--gform-icon--left-arrow:"\e910";--gform-icon--right-arrow:"\e91b";--gform-icon--circle-error:"\e91a";--gform-icon--close-small:"\e905";--gform-icon--info:"\e900";--gform-icon--verified:"\e901";--gform-icon--circle-check:"\e902";--gform-icon--close:"\e903";--gform-icon--close-big:"\e904";--gform-icon--down-arrow:"\e906";--gform-icon--format-bold:"\e907";--gform-icon--format-italic:"\e908";--gform-icon--format-list-bulleted:"\e909";--gform-icon--format-list-numbered:"\e90a";--gform-icon--insert-link:"\e90b";--gform-icon--line:"\e90c";--gform-icon--password-eye:

Chrome Cache Entry: 124

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (483)
Category:	downloaded
Size (bytes):	669
Entropy (8bit):	5.102774065720726
Encrypted:	false
SSDEEP:
MD5:	9EB2D3C87FEB6BB2FFA63B70532B1477
SHA1:	38F226335A05AB0E30497BC7419EB5E243A9E26C
SHA-256:	37BAB6CD583982E8EFF58501A99D7C5C4D63664C1CA34F9E3B7CF526C5B73AE2
SHA-512:	8D0AB38F6BC757103FC82A234FCA5566328639EF549A862F9CEB8CFF6B10D75D2FC626A3054FB85A4C91B3538332677801F9EDC14115E09F957CCE8391F8CB46
Malicious:	false
Reputation:	low
URL:	https://dev-maine-gov-doe.pantheonsite.io/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
Preview:	/!. Font Awesome Free 5.15.3 by @fontawesome - https://fontawesome.com. * License - https://fontawesome.com/license/free (Icons: CC BY 4.0, Fonts: SIL OFL 1.1, Code: MIT License). */.@font-face{font-family:"Font Awesome 5 Free";font-style:normal;font-weight:900;font-display:block;src:url(../webfonts/fa-solid-900.eot);src:url(../webfonts/fa-solid-900.eot?#iefix) format("embedded-opentype"),url(../webfonts/fa-solid-900.woff2) format("woff2"),url(../webfonts/fa-solid-900.woff) format("woff"),url(../webfonts/fa-solid-900.ttf) format("truetype"),url(../webfonts/fa-solid-900.svg#fontawesome) format("svg")}.fa,.fas{font-family:"Font Awesome 5 Free";font-weight:900}

Chrome Cache Entry: 125

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (463)
Category:	downloaded
Size (bytes):	498
Entropy (8bit):	4.991489843435553
Encrypted:	false
SSDEEP:
MD5:	B0B80B0256874E70ACDC820B52BBF1AA
SHA1:	9AACE9A7989736BF535D65F229D0C10E9ACEA41B
SHA-256:	166C7C3BB5F76F977A9F2A5490589B3466374EB2B3F064802E56F08BAD71FBF0
SHA-512:	BC0F09E99B8DD01249E4D43216C9AAA46EDF2B748D54B8F21091CCE04E5FC5A4B0D0F011F580C9FF4349B4D39A09847BF9908042869DCA4D6B587731EB19118E
Malicious:	false
Reputation:	low
URL:	https://dev-maine-gov-doe.pantheonsite.io/wp-includes/js/dist/dom-ready.min.js?ver=392bdd43726760d1f3ca
Preview:	/! This file is auto-generated /.!function(){"use strict";var e={d:function(t,n){for(var o in n)e.o(n,o)&&!e.o(t,o)&&Object.defineProperty(t,o,{enumerable:!0,get:n[o]})},o:function(e,t){return Object.prototype.hasOwnProperty.call(e,t)}},t={};function n(e){"undefined"!=typeof document&&("complete"!==document.readyState&&"interactive"!==document.readyState?document.addEventListener("DOMContentLoaded",e):e())}e.d(t,{default:function(){return n}}),(window.wp=window.wp\|\|{}).domReady=t.default}();

Chrome Cache Entry: 126

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	Unicode text, UTF-8 text, with very long lines (58819)
Category:	downloaded
Size (bytes):	58860
Entropy (8bit):	5.2174653618559095
Encrypted:	false
SSDEEP:
MD5:	476A794E6DD191BC328F929B76DD6B62
SHA1:	A92898F64EED7B852D988ACA9E6727BE7544A54A
SHA-256:	32E2E41504973C112A8A2C46ECDAA75ACF39B9074B2FCDC216DDABF265D346FB
SHA-512:	32BE20E45B270EC209CB05247100B623E7677B7424D4A1B34D3062024873BFCF42FE1DFCF294E27BEA6F89303394BEF30A0D8F46B20EC7B41AA7F85AB6785419
Malicious:	false
Reputation:	low
URL:	https://dev-maine-gov-doe.pantheonsite.io/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.16.5
Preview:	/! elementor - v3.16.0 - 09-10-2023 /.(self.webpackChunkelementor=self.webpackChunkelementor\|\|[]).push([[354],{381:(e,t)=>{"use strict";Object.defineProperty(t,"__esModule",{value:!0}),t.default=void 0;t.default=(e,t)=>{t=Array.isArray(t)?t:[t];for(const n of t)if(e.constructor.name===n.prototype[Symbol.toStringTag])return!0;return!1}},8135:(e,t)=>{"use strict";Object.defineProperty(t,"__esModule",{value:!0}),t.default=void 0;class _default extends elementorModules.ViewModule{getDefaultSettings(){return{selectors:{elements:".elementor-element",nestedDocumentElements:".elementor .elementor-element"},classes:{editMode:"elementor-edit-mode"}}}getDefaultElements(){const e=this.getSettings("selectors");return{$elements:this.$element.find(e.elements).not(this.$element.find(e.nestedDocumentElements))}}getDocumentSettings(e){let t;if(this.isEdit){t={};const e=elementor.settings.page.model;jQuery.each(e.getActiveControls(),(n=>{t[n]=e.attributes[n]}))}else t=this.$element.data("elementor-sett

Chrome Cache Entry: 127

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (4957)
Category:	downloaded
Size (bytes):	4997
Entropy (8bit):	5.395360627727699
Encrypted:	false
SSDEEP:
MD5:	05D26AF7E844A12180C27977D2CAC604
SHA1:	4AA2696E8D5A82E1DDA2643E8521E60A01F01EF6
SHA-256:	E2FAC582FDF894C636E3C703267D799D0F8807750322C8EC51810BE815A8C669
SHA-512:	1C9D88DF739F693FE58439851FA240CA90A7182FB96F8F211C8C3B51AAC7E5B70BBC752D6017EB997050BF36AE47E2C19B7F08B9C6B3AA6B98E750B49645E317
Malicious:	false
Reputation:	low
URL:	https://dev-maine-gov-doe.pantheonsite.io/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.16.5
Preview:	/! elementor - v3.16.0 - 09-10-2023 /.(()=>{"use strict";var e,r,_,t,a,i={},n={};function __webpack_require__(e){var r=n[e];if(void 0!==r)return r.exports;var _=n[e]={exports:{}};return i[e].call(_.exports,_,_.exports,__webpack_require__),_.exports}__webpack_require__.m=i,e=[],__webpack_require__.O=(r,_,t,a)=>{if(!_){var i=1/0;for(u=0;u<e.length;u++){for(var[_,t,a]=e[u],n=!0,c=0;c<_.length;c++)(!1&a\|\|i>=a)&&Object.keys(__webpack_require__.O).every((e=>__webpack_require__.O[e](_[c])))?_.splice(c--,1):(n=!1,a<i&&(i=a));if(n){e.splice(u--,1);var o=t();void 0!==o&&(r=o)}}return r}a=a\|\|0;for(var u=e.length;u>0&&e[u-1][2]>a;u--)e[u]=e[u-1];e[u]=[_,t,a]},_=Object.getPrototypeOf?e=>Object.getPrototypeOf(e):e=>e.__proto__,__webpack_require__.t=function(e,t){if(1&t&&(e=this(e)),8&t)return e;if("object"==typeof e&&e){if(4&t&&e.__esModule)return e;if(16&t&&"function"==typeof e.then)return e}var a=Object.create(null);__webpack_require__.r(a);var i={};r=r\|\|[null,_({}),_([]),_(_)];for(var n=2&t&&e;

Chrome Cache Entry: 128

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	PNG image data, 600 x 315, 8-bit/color RGBA, non-interlaced
Category:	dropped
Size (bytes):	90733
Entropy (8bit):	7.992979051977633
Encrypted:	true
SSDEEP:
MD5:	88343FEED00B0D6D8475B1B3E46462FB
SHA1:	A2335E16FB2501FA67AD3969FEF64E452F45F50F
SHA-256:	221240BF3D18ABB2D5AAC9E856390F507F203E909F35DE903428A73EA0D1824D
SHA-512:	3F44FD780B38035DCB39E5409AED419D1CE70EACAF8E4192BCFD5B535240A48CC14987E39A596D5B9850F6DDC38D7676C31BC7A3F5D41E365A8E0981A9EC32F2
Malicious:	false
Reputation:	low
Preview:	.PNG........IHDR...X...;........... .IDATx..w.mWU.....~{9..%'=!!.. .."......+.^,`A.O./..(.?..\D...rE. Q..%.$.......Zk.?f.s...i9..$...e.....sL@.P(...B.P(...B.P(...B.P(...B.P(...B.P(...B.P(...B.P(...B.P(...B.P(...B.P(...B.P(...B.P(...B.P(...B.P(...B.P(...B.P(...B.P(...B.P(...B.P(...B.P(...B.P(...B.P(...B.P(...B.P(...B.P(...B.P(...B.P(...B.P(...B.P(...B.P(...B.P(...B.P(...B.P(...B.P(...B.P(...B.P(...B.P(...B.P(...B.P(...B.P(...B.P(...B.P(...B.P(...B.P(...B.P(...B.P(...B.P(...B.P(...B.P(...B.P(...B.P(...B.P(...B.P(...B.P(...B.P(...B.P(...B.P(...B.P(...B.P(...B.P(...B.P(...B.P(....4...].X...q..v.....]>.@... .....4"...CdB.6.k....&.O.!..l.d.M7. ...C.l;...........[...1..2 0@..Y....k}wy@(..!...!...7L.......n...}.u.7.Lp.l.ym[..+.e..="....(..[..qu2.1.=D......./...f......Us\...2..?.:...q..4.9.A.J0.V......%....1...l.......@Y../S.......~"..ShG...p..y*......+....>..F....{4I..+..S....B...I...?Q..).}..e..Al.Wt..k.T{..,2U...y.e...c...c.T..nx..........M..n....'..;...}..~.

Chrome Cache Entry: 129

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	PNG image data, 2526 x 9278, 8-bit/color RGBA, non-interlaced
Category:	dropped
Size (bytes):	8964579
Entropy (8bit):	7.984629209466617
Encrypted:	false
SSDEEP:
MD5:	17D4E0205C15946F0535DC8C78778AFE
SHA1:	3BC1F2A807FFFC314989526286C87A4C090097D5
SHA-256:	FED905AA384E4690034B16650D875C566FBDF5D3ED69CC34F8FFCA5430ECB892
SHA-512:	B4D176F9E25A4F37FDC3D9A0394D6839FEFF2A3F54CC6DDF3CC66B66745200812A624C60095EC1F8F6D5411F3B19F31F4D44BA6882E31FAC3E26885D81E50E4E
Malicious:	false
Reputation:	low
Preview:	.PNG........IHDR......$>........?.. .IDATx^..`\...W...-.M.m.....&.J..l.n...f....I....c...K.-..,..=.ys.W.7M...ZI3..w.w..;....yg.y[KK3.47.o...S......?.z<./Q\|D..'..zhK3_.....[_g..@L,...r(...j...0p...5.=...d....Hk..y..!......]G..X{.#..J@.(.%.....P.J@.(.%.....P.J@.(.%.....P.J@.(.%.....P.J@.\|..x./..=..B"..w.?<-?......v.w.!I..........i.\|..K..;........#7K..t.....3\.k.....v....Hw>....r\|0..}D.8._....(...\|...< ..\|....8;eOj'J@.(.%.....P.J@.(.%.....P.J@.(.%.....P.J@.(.%.....P.J@..1.<]......R.9.N..N4'..).t.dN..z]......MC.^....wQ1^q.....'.....H.cmQ\|.......=.N.DD]....@?.L.M.-..f.w-.......v(....A...P..&.B..H...\|..FGS."Z.=X.(.%.....P.J@.(.%.....P.J@.(.%.....P.J@.(.%.....P.J@.(.3..'m....m^.....4<4Q...d>i+\.../...f&.F...R..(/.K.s....O....%.E3..4'.zPC..:SS..(..%.....Q.y..9.s.i.0.....5E..tA.u.......~:.Z...t..(.%.....P.J@.(.%.....P.J@.(.%.....P.J@.(.%.....P.J@.(.SJ..6.F.\9..Sv.[z..B...&. ..@4..Mm....../..;..%.g..4......q*.7..I..<..[..F..o..@..;. .......2:...

Chrome Cache Entry: 130

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (20072)
Category:	downloaded
Size (bytes):	26770
Entropy (8bit):	4.555762023958349
Encrypted:	false
SSDEEP:
MD5:	00F4C9593BCAA633548F8EBE2B8590C2
SHA1:	8A59395164CC49C383621D1BFEBF865337125D5B
SHA-256:	14CB2341CB048301829EBA9D4742E35753C4B242D232116988A2788357C090DB
SHA-512:	E02BAE6B7A9DC321328EDFC1113543D54C24BAEB179DBDE78F883F829273AA36E97668536048FEAF8A302E8E501923B2ABCF5BDB9052D825C83A983641F41B1B
Malicious:	false
Reputation:	low
URL:	https://dev-maine-gov-doe.pantheonsite.io/wp-content/uploads/elementor/css/global.css?ver=1697448432
Preview:	.elementor-widget-heading .elementor-heading-title{color:var( --e-global-color-primary );font-family:var( --e-global-typography-primary-font-family ), Sans-serif;font-weight:var( --e-global-typography-primary-font-weight );}.elementor-widget-image .widget-image-caption{color:var( --e-global-color-text );font-family:var( --e-global-typography-text-font-family ), Sans-serif;font-weight:var( --e-global-typography-text-font-weight );}.elementor-widget-text-editor{color:var( --e-global-color-text );font-family:var( --e-global-typography-text-font-family ), Sans-serif;font-weight:var( --e-global-typography-text-font-weight );}.elementor-widget-text-editor.elementor-drop-cap-view-stacked .elementor-drop-cap{background-color:var( --e-global-color-primary );}.elementor-widget-text-editor.elementor-drop-cap-view-framed .elementor-drop-cap, .elementor-widget-text-editor.elementor-drop-cap-view-default .elementor-drop-cap{color:var( --e-global-color-primary );border-color:var( --e-global-color-pri

Chrome Cache Entry: 132

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (13479)
Category:	downloaded
Size (bytes):	13577
Entropy (8bit):	5.272065782731947
Encrypted:	false
SSDEEP:
MD5:	9FFEB32E2D9EFBF8F70CAABDED242267
SHA1:	3AD0C10E501AC2A9BFA18F9CD7E700219B378738
SHA-256:	5274F11E6FB32AE0CF2DFB9F8043272865C397A7C4223B4CFA7D50EA52FBDE89
SHA-512:	8D6BE545508A1C38278B8AD780C3758AE48A25E4E12EEE443375AA56031D9B356F8C90F22D4F251140FA3F65603AF40523165E33CAE2E2D62FC78EC106E3D731
Malicious:	false
Reputation:	low
URL:	https://dev-maine-gov-doe.pantheonsite.io/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1
Preview:	/! jQuery Migrate v3.4.1 \| (c) OpenJS Foundation and other contributors \| jquery.org/license /."undefined"==typeof jQuery.migrateMute&&(jQuery.migrateMute=!0),function(t){"use strict";"function"==typeof define&&define.amd?define(["jquery"],function(e){return t(e,window)}):"object"==typeof module&&module.exports?module.exports=t(require("jquery"),window):t(jQuery,window)}(function(s,n){"use strict";function e(e){return 0<=function(e,t){for(var r=/^(\d+)\.(\d+)\.(\d+)/,n=r.exec(e)\|\|[],o=r.exec(t)\|\|[],a=1;a<=3;a++){if(+o[a]<+n[a])return 1;if(+n[a]<+o[a])return-1}return 0}(s.fn.jquery,e)}s.migrateVersion="3.4.1";var t=Object.create(null);s.migrateDisablePatches=function(){for(var e=0;e<arguments.length;e++)t[arguments[e]]=!0},s.migrateEnablePatches=function(){for(var e=0;e<arguments.length;e++)delete t[arguments[e]]},s.migrateIsPatchEnabled=function(e){return!t[e]},n.console&&n.console.log&&(s&&e("3.0.0")&&!e("5.0.0")\|\|n.console.log("JQMIGRATE: jQuery 3.x-4.x REQUIRED"),s.migrateWarnings

Chrome Cache Entry: 133

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (57726)
Category:	downloaded
Size (bytes):	57912
Entropy (8bit):	4.690906492963222
Encrypted:	false
SSDEEP:
MD5:	EEB705D0BDCCFD645D3BBD46DD1FBAB3
SHA1:	066DEF290F42ED8C00860E573CC880BD46E9CED4
SHA-256:	D01A2BA2805C78957E15A2958135DE0F3CB88E95159DD0F6C0A032BD76B1B0E9
SHA-512:	39D11741808E95D8EA504B2E30AB19463F771EDDB741196121BF04FD7D2C6F066199EF1E530EA0F2AEC077118929A91C05BBFBFBF3D7D067366ED7FB46EF1C64
Malicious:	false
Reputation:	low
URL:	https://dev-maine-gov-doe.pantheonsite.io/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
Preview:	/!. Font Awesome Free 5.15.3 by @fontawesome - https://fontawesome.com. * License - https://fontawesome.com/license/free (Icons: CC BY 4.0, Fonts: SIL OFL 1.1, Code: MIT License). */..fa,.fab,.fad,.fal,.far,.fas{-moz-osx-font-smoothing:grayscale;-webkit-font-smoothing:antialiased;display:inline-block;font-style:normal;font-variant:normal;text-rendering:auto;line-height:1}.fa-lg{font-size:1.33333em;line-height:.75em;vertical-align:-.0667em}.fa-xs{font-size:.75em}.fa-sm{font-size:.875em}.fa-1x{font-size:1em}.fa-2x{font-size:2em}.fa-3x{font-size:3em}.fa-4x{font-size:4em}.fa-5x{font-size:5em}.fa-6x{font-size:6em}.fa-7x{font-size:7em}.fa-8x{font-size:8em}.fa-9x{font-size:9em}.fa-10x{font-size:10em}.fa-fw{text-align:center;width:1.25em}.fa-ul{list-style-type:none;margin-left:2.5em;padding-left:0}.fa-ul>li{position:relative}.fa-li{left:-2em;position:absolute;text-align:center;width:2em;line-height:inherit}.fa-border{border:.08em solid #eee;border-radius:.1em;padding:.2em .25em .15em}.fa-pu

Chrome Cache Entry: 134

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with no line terminators
Category:	downloaded
Size (bytes):	28
Entropy (8bit):	4.307354922057605
Encrypted:	false
SSDEEP:
MD5:	E600FB419606CA5783A24446448593E8
SHA1:	76481D1A575313785CEFDFA0FA8AFF6C15F06FAB
SHA-256:	3CC36D186D83CEDACC0BA6AB453BB52E31FA61AC1B3A13B0B7424857B6648D34
SHA-512:	FBC87CD17FB1046603A81E5245E4C4AD6C4A5524C5773B9B06FC6F87E3F78E2623055CDAD0BDB900A35282989C0C9A04719CB4AF7E549B1732B1DB207A5080BB
Malicious:	false
Reputation:	low
URL:	https://content-autofill.googleapis.com/v1/pages/ChVDaHJvbWUvMTE3LjAuNTkzOC4xMzISFwlvZvtNCwAGKhIFDah6JOwSBQ062nFV?alt=proto
Preview:	ChIKBw2oeiTsGgAKBw062nFVGgA=

Chrome Cache Entry: 135

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (1757), with no line terminators
Category:	downloaded
Size (bytes):	1757
Entropy (8bit):	4.783493929878713
Encrypted:	false
SSDEEP:
MD5:	2E113E2E05BBEE885912B2FAAEE7E92C
SHA1:	32082F47052F792B1AFE34B9985DF9E65F0E6EA9
SHA-256:	508536A9C4083EB0B7BB5AFBFE4331EC3ED76875CE9639FC658B17F655925317
SHA-512:	3BBBB1D618303B138A870DDFA1DB3491A9F7B514D7F8A1AA0F078CD8D03693A10BE746C38BF006ECCF4C6015FF65A6D386EAB6BE4B60690D7D85B09680EBC7F7
Malicious:	false
Reputation:	low
URL:	https://dev-maine-gov-doe.pantheonsite.io/wp-content/plugins/gravityforms/css/theme-ie11.min.css?ver=2.5.12.2
Preview:	.gf_browser_ie.gform_wrapper.gravity-theme form{overflow:hidden;padding:1px 1px 8px 1px}.gf_browser_ie.gform_wrapper.gravity-theme .gform-body{margin:0 -32px -32px 0}.gf_browser_ie.gform_wrapper.gravity-theme .gform_fields{display:flex;flex-wrap:wrap;overflow:hidden}.gf_browser_ie.gform_wrapper.gravity-theme .gform_fields .gfield{border:0 solid transparent;border-width:0 32px 32px 0;background-clip:padding-box;width:100%}.gf_browser_ie.gform_wrapper.gravity-theme .gform_fields .gfield.gfield--width-full{width:100%}.gf_browser_ie.gform_wrapper.gravity-theme .gform_fields .gfield.gfield--width-eleven-twelfths{width:91.666%}.gf_browser_ie.gform_wrapper.gravity-theme .gform_fields .gfield.gfield--width-five-sixths{width:83.333%}.gf_browser_ie.gform_wrapper.gravity-theme .gform_fields .gfield.gfield--width-three-quarter{width:75%}.gf_browser_ie.gform_wrapper.gravity-theme .gform_fields .gfield.gfield.gfield--width-two-thirds{width:66.666%}.gf_browser_ie.gform_wrapper.gravity-theme .gform_fi

Chrome Cache Entry: 136

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	Web Open Font Format (Version 2), TrueType, length 16896, version 1.0
Category:	downloaded
Size (bytes):	16896
Entropy (8bit):	7.985694688200357
Encrypted:	false
SSDEEP:
MD5:	4CFC3799B74742AB67CD209D12665ED9
SHA1:	5B95148AF7F7D7F5C3D69BFA189E8F82AF368ADC
SHA-256:	CD897864F13027439EFD9F5ED277D7D26F24C57F15899D33844995E9D13EBF83
SHA-512:	0A16106361A2C7A8FC8FF780B1D67613331A1E85964AAD7D5081B045B82E1A599FB1387768FDA51F52902A93288A45A8E32B3591FC52163AEA46C415898E0837
Malicious:	false
Reputation:	low
URL:	https://fonts.gstatic.com/s/ropasans/v15/EYqxmaNOzLlWtsZSScy6XTNp.woff2
Preview:	wOF2......B...........A..........................\|.....d.`..\.j...........'..F..6.$.... ..&..o......%c........L.H..<.<.....z..Z.....d.av..\|?K.tBRO.TuV!.......;...... .,RCG..n...."..>..=..T.E.%..E.T...;...`a.9.P....f`... ~.P...{...6.'9y..q.?.I..&MK..)R..w.e.NE(.W..f...gN. i..H.. .pT.e.v.[].sk.W......>..s.ADk:w.H...U(t/LVH../....}?..P..(b.$3Qaa.\..e\|mU.....e9M.}.`.\|.......<I:4..O...n..R...[.N.]._............R.47<\|../.e.\|...d..)JN..f..g..W[.J...=.Zx.....z..U..O.[.......q..~"......og,..9......pC>3:s&..RH!..wV..%_L..\..6.;.(.....`N.u..nWsUO.{..{.(..Pv6;....W..{...3;@uH.R...R-.{fv.....q<.w^.e... P..E.r..~.(..i.X.$x..'.9....CShz...i;.......N<e...C..._..3...%.]....q.$/.A'0.X,N.@J"O..ONQ1,...)..pS.S...EY.....?.i..K..+.3.v.PJ<..SW.d.......)Q..L%P..SU...P.....U.jk.*.7'....QHT+.l....S3rt.;.E.eU.3.CR........K.,..W.6...0.TD. ./....7`.Nn.xT).E....#.n).R. ....%.}...A....L..@./b.....$#.r.<.H.j.V-R.+@....`....n.....h.X..`....(......Z...J....&..!...n`..SR.....s<....

Chrome Cache Entry: 137

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (15718)
Category:	downloaded
Size (bytes):	18692
Entropy (8bit):	4.754375391922092
Encrypted:	false
SSDEEP:
MD5:	4CC444663C1E69CB8AC7B909E7192BCA
SHA1:	D00DDC5B9526193FA99BC3995A6D05F995452EA1
SHA-256:	4F79A89D16A5F717110FE080C0BF90B7E05FF95A4C4983F64D33110BF5F9C230
SHA-512:	AE37D08D11AA4337650CBEC0D0F1205A5505CB3E82373873E82CBA093019521CD2B93CFE2DBE4840CE098717287E1F732E9330C90063B122F1C6358664F1B8EE
Malicious:	false
Reputation:	low
URL:	https://dev-maine-gov-doe.pantheonsite.io/wp-includes/js/wp-emoji-release.min.js?ver=6.3.2
Preview:	/! This file is auto-generated /.// Source: wp-includes/js/twemoji.min.js.var twemoji=function(){"use strict";var m={base:"https://twemoji.maxcdn.com/v/14.0.2/",ext:".png",size:"72x72",className:"emoji",convert:{fromCodePoint:function(d){d="string"==typeof d?parseInt(d,16):d;if(d<65536)return e(d);return e(55296+((d-=65536)>>10),56320+(1023&d))},toCodePoint:o},onerror:function(){this.parentNode&&this.parentNode.replaceChild(x(this.alt,!1),this)},parse:function(d,u){u&&"function"!=typeof u\|\|(u={callback:u});return m.doNotParse=u.doNotParse,("string"==typeof d?function(d,a){return n(d,function(d){var u,f,c=d,e=N(d),b=a.callback(e,a);if(e&&b){for(f in c="<img ".concat('class="',a.className,'" ','draggable="false" ','alt="',d,'"',' src="',b,'"'),u=a.attributes(d,e))u.hasOwnProperty(f)&&0!==f.indexOf("on")&&-1===c.indexOf(" "+f+"=")&&(c=c.concat(" ",f,'="',u[f].replace(t,r),'"'));c=c.concat("/>")}return c})}:function(d,u){var f,c,e,b,a,t,r,n,o,i,s,l=function d(u,f){var c,e,b=u.childNodes,

Chrome Cache Entry: 138

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	Unicode text, UTF-8 text, with very long lines (8189)
Category:	downloaded
Size (bytes):	21438
Entropy (8bit):	5.300921910116817
Encrypted:	false
SSDEEP:
MD5:	C4E68A0F3463C0BD3C39EAB38815E881
SHA1:	0CE58644E9F3C5063A11453FF287C5EC096465A7
SHA-256:	CA7DCE2391845E8AEC7DA135F33FABD10F74EED28A532AC66FD01F761FCFB42F
SHA-512:	E871F258F625A5C8E8EC3848242352FD75DCB0F0B580333FCE07625A6A2F53E83F22E4DD7492F2D12A880709D540DE0BCDD9B335D853FE9CCCFC0EFCCF718BCE
Malicious:	false
Reputation:	low
URL:	https://dev-maine-gov-doe.pantheonsite.io/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
Preview:	/! jQuery UI - v1.13.2 - 2022-07-14. http://jqueryui.com.* Includes: widget.js, position.js, data.js, disable-selection.js, effect.js, effects/effect-blind.js, effects/effect-bounce.js, effects/effect-clip.js, effects/effect-drop.js, effects/effect-explode.js, effects/effect-fade.js, effects/effect-fold.js, effects/effect-highlight.js, effects/effect-puff.js, effects/effect-pulsate.js, effects/effect-scale.js, effects/effect-shake.js, effects/effect-size.js, effects/effect-slide.js, effects/effect-transfer.js, focusable.js, form-reset-mixin.js, jquery-patch.js, keycode.js, labels.js, scroll-parent.js, tabbable.js, unique-id.js, widgets/accordion.js, widgets/autocomplete.js, widgets/button.js, widgets/checkboxradio.js, widgets/controlgroup.js, widgets/datepicker.js, widgets/dialog.js, widgets/draggable.js, widgets/droppable.js, widgets/menu.js, widgets/mouse.js, widgets/progressbar.js, widgets/resizable.js, widgets/selectable.js, widgets/selectmenu.js, widgets/slider.js, widgets/sorta

Chrome Cache Entry: 139

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (16214)
Category:	downloaded
Size (bytes):	16471
Entropy (8bit):	5.214012011088674
Encrypted:	false
SSDEEP:
MD5:	A2431BC290CF34E330E11EC4CFCE1247
SHA1:	32A53342901FEF5F4F4DBB26A555E730F84437A4
SHA-256:	C57E64FCB72BDDAFA9C38DE574441C3E69AC6C961DF96B0CAD34DA83658BD196
SHA-512:	87AEF045472DB25020FAEAD697EC02813BA38D4E313CAF437B4CA5CADBB7A7495805AC0B74E5DE60CD84CCECAB290B76D003EB1FADFCDAA70E650A597658ADA9
Malicious:	false
Reputation:	low
URL:	https://dev-maine-gov-doe.pantheonsite.io/wp-content/plugins/elementor/assets/lib/swiper/v8/css/swiper.min.css?ver=8.4.5
Preview:	/*. Swiper 8.4.5. * Most modern mobile touch slider and framework with hardware accelerated transitions. * https://swiperjs.com. . Copyright 2014-2022 Vladimir Kharlampidi. . Released under the MIT License. . Released on: November 21, 2022. */.. @font-face{font-family:swiper-icons;src:url('data:application/font-woff;charset=utf-8;base64, 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

Chrome Cache Entry: 140

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (43864), with no line terminators
Category:	downloaded
Size (bytes):	43864
Entropy (8bit):	5.220955671409971
Encrypted:	false
SSDEEP:
MD5:	AFF8103069A837A0B0CFC8B3F441152F
SHA1:	8C0FA1052402E6B02EC5A8831FFC044FFCECD8F9
SHA-256:	CFC8039EF8B151390DAABBA7D5C9F43C0CB1B793C5788F06F62C898F5410D480
SHA-512:	9C52C73BD8804AD1647D389535C912069BCC98DF564E39408B540F82D4DC208227186B1B4B583416CC062F743B4534AEDB202D78B9016AEA02572C6FE51EF637
Malicious:	false
Reputation:	low
URL:	https://dev-maine-gov-doe.pantheonsite.io/wp-content/plugins/gravityforms/js/gravityforms.min.js?ver=2.5.12.2
Preview:	var gform=window.gform\|\|{};function announceAJAXValidationErrors(){jQuery(".gform_validation_errors").length&&(jQuery("#gf_form_focus").focus(),setTimeout(function(){wp.a11y.speak(jQuery(".gform_validation_errors > h2").text())},1e3))}function gformBindFormatPricingFields(){jQuery(".ginput_amount, .ginput_donation_amount").off("change.gform").on("change.gform",function(){gformFormatPricingField(this)}),jQuery(".ginput_amount, .ginput_donation_amount").each(function(){gformFormatPricingField(this)})}function Currency(e){this.currency=e,this.toNumber=function(e){return this.isNumeric(e)?parseFloat(e):gformCleanNumber(e,this.currency.symbol_right,this.currency.symbol_left,this.currency.decimal_separator)},this.toMoney=function(e,t){if(!1===(e=!(t=t\|\|!1)?gformCleanNumber(e,this.currency.symbol_right,this.currency.symbol_left,this.currency.decimal_separator):e))return"";"-"==(e+=negative="")[0]&&(e=parseFloat(e.substr(1)),negative="-"),money=this.numberFormat(e,this.currency.decimals,this.c

Chrome Cache Entry: 141

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (65447)
Category:	downloaded
Size (bytes):	87482
Entropy (8bit):	5.262231833248159
Encrypted:	false
SSDEEP:
MD5:	FF04DD1EF5C67998D8652330C0441689
SHA1:	5E6FF5BD5240181A8BDEA983837F39AC231DAC4D
SHA-256:	5C93F77799D122FB5255EE24DA285F9F228CC118CBA11E6CEB2B6BDA8CDF4164
SHA-512:	15B29B5A106EBAD320AA419675E1D7415B56276FF8EC04B8DCAC845630FDCAF3EE7CA7B9D614EA415D3FACF065C2608ED62359D3CCAE510F5527B2965C8D7B06
Malicious:	false
Reputation:	low
URL:	https://dev-maine-gov-doe.pantheonsite.io/wp-includes/js/jquery/jquery.min.js?ver=3.7.0
Preview:	/! jQuery v3.7.0 \| (c) OpenJS Foundation and other contributors \| jquery.org/license /.!function(e,t){"use strict";"object"==typeof module&&"object"==typeof module.exports?module.exports=e.document?t(e,!0):function(e){if(!e.document)throw new Error("jQuery requires a window with a document");return t(e)}:t(e)}("undefined"!=typeof window?window:this,function(ie,e){"use strict";var oe=[],r=Object.getPrototypeOf,ae=oe.slice,g=oe.flat?function(e){return oe.flat.call(e)}:function(e){return oe.concat.apply([],e)},s=oe.push,se=oe.indexOf,n={},i=n.toString,ue=n.hasOwnProperty,o=ue.toString,a=o.call(Object),le={},v=function(e){return"function"==typeof e&&"number"!=typeof e.nodeType&&"function"!=typeof e.item},y=function(e){return null!=e&&e===e.window},C=ie.document,u={type:!0,src:!0,nonce:!0,noModule:!0};function m(e,t,n){var r,i,o=(n=n\|\|C).createElement("script");if(o.text=e,t)for(r in u)(i=t[r]\|\|t.getAttribute&&t.getAttribute(r))&&o.setAttribute(r,i);n.head.appendChild(o).parentNode.remove

Chrome Cache Entry: 142

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	Unicode text, UTF-8 text, with very long lines (2412)
Category:	downloaded
Size (bytes):	2448
Entropy (8bit):	5.170154816424353
Encrypted:	false
SSDEEP:
MD5:	8435E0A6BC86815F46DB228163D21B25
SHA1:	06047D8A8D8C45AC02BC116544284B8027479960
SHA-256:	D35FAA1C0B45CC142295AE07A0C6E6E7824E0E64B58B81A83E7850251586E0DF
SHA-512:	9FB550E519CC2A955DF89C0FC6B16C6B27872DE62C1B8AFA49B24CE8A29DF927B75985BCC861201C36A0DE3092347089AF064C127503CB5FE2034DE809BA972C
Malicious:	false
Reputation:	low
URL:	https://dev-maine-gov-doe.pantheonsite.io/wp-includes/js/dist/a11y.min.js?ver=7032343a947cfccf5608
Preview:	/! This file is auto-generated /.!function(){"use strict";var t={n:function(e){var n=e&&e.__esModule?function(){return e.default}:function(){return e};return t.d(n,{a:n}),n},d:function(e,n){for(var i in n)t.o(n,i)&&!t.o(e,i)&&Object.defineProperty(e,i,{enumerable:!0,get:n[i]})},o:function(t,e){return Object.prototype.hasOwnProperty.call(t,e)},r:function(t){"undefined"!=typeof Symbol&&Symbol.toStringTag&&Object.defineProperty(t,Symbol.toStringTag,{value:"Module"}),Object.defineProperty(t,"__esModule",{value:!0})}},e={};t.r(e),t.d(e,{setup:function(){return d},speak:function(){return p}});var n=window.wp.domReady,i=t.n(n),o=window.wp.i18n;function r(t="polite"){const e=document.createElement("div");e.id=`a11y-speak-${t}`,e.className="a11y-speak-region",e.setAttribute("style","position: absolute;margin: -1px;padding: 0;height: 1px;width: 1px;overflow: hidden;clip: rect(1px, 1px, 1px, 1px);-webkit-clip-path: inset(50%);clip-path: inset(50%);border: 0;word-wrap: normal !important;"),e.set

Chrome Cache Entry: 143

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (4592)
Category:	downloaded
Size (bytes):	4627
Entropy (8bit):	5.095794162824313
Encrypted:	false
SSDEEP:
MD5:	7BD48EB3BD568033E96CAF0FB62E6690
SHA1:	B38066999294B99D92D95DB5F38BC15707EB1F22
SHA-256:	7868467C94A5AA0B3F11EF542F45287967F9627B3B5ACDC86E47F8F77A126596
SHA-512:	7FEC30CC4223C39D9EE3CCBBA8CC66C90467A9987279334BE43AAE4C251F6C618F6B3CCF223147C79CE6C463C89F0CEB0D0E4E471AD9AB6574AB32AF728A535F
Malicious:	false
Reputation:	low
URL:	https://dev-maine-gov-doe.pantheonsite.io/wp-includes/js/dist/hooks.min.js?ver=c6aec9a8d4e5a5d543a1
Preview:	/! This file is auto-generated /.!function(){"use strict";var n={d:function(t,r){for(var e in r)n.o(r,e)&&!n.o(t,e)&&Object.defineProperty(t,e,{enumerable:!0,get:r[e]})},o:function(n,t){return Object.prototype.hasOwnProperty.call(n,t)},r:function(n){"undefined"!=typeof Symbol&&Symbol.toStringTag&&Object.defineProperty(n,Symbol.toStringTag,{value:"Module"}),Object.defineProperty(n,"__esModule",{value:!0})}},t={};n.r(t),n.d(t,{actions:function(){return S},addAction:function(){return m},addFilter:function(){return p},applyFilters:function(){return k},createHooks:function(){return f},currentAction:function(){return w},currentFilter:function(){return I},defaultHooks:function(){return h},didAction:function(){return O},didFilter:function(){return j},doAction:function(){return b},doingAction:function(){return x},doingFilter:function(){return T},filters:function(){return z},hasAction:function(){return _},hasFilter:function(){return y},removeAction:function(){return A},removeAllActions:functio

Chrome Cache Entry: 144

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text
Category:	downloaded
Size (bytes):	50360
Entropy (8bit):	5.484993912297921
Encrypted:	false
SSDEEP:
MD5:	373AB5FF837A303639565112E2CA1A84
SHA1:	560CAC135548CF5C4ACD7FC1C3E2CAD9B1D772ED
SHA-256:	AB9D6DB6EF93C44ECFC7C4F57CF41D3D1216E633416BB185DE5C8348B8DDE2CD
SHA-512:	536591E5C75BB2BB17A8820224915541FF813AD479DDF781FCF338B188437D721586533EA4C3E5D6CF840D281423CFA64FCD91468ED62A437D1C8D3F8C50363C
Malicious:	false
Reputation:	low
URL:	https://fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRopa+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=swap&ver=6.3.2
Preview:	/* cyrillic-ext /.@font-face {. font-family: 'Roboto';. font-style: italic;. font-weight: 100;. font-display: swap;. src: url(https://fonts.gstatic.com/s/roboto/v30/KFOiCnqEu92Fr1Mu51QrEz0dL_nz.woff2) format('woff2');. unicode-range: U+0460-052F, U+1C80-1C88, U+20B4, U+2DE0-2DFF, U+A640-A69F, U+FE2E-FE2F;.}./ cyrillic /.@font-face {. font-family: 'Roboto';. font-style: italic;. font-weight: 100;. font-display: swap;. src: url(https://fonts.gstatic.com/s/roboto/v30/KFOiCnqEu92Fr1Mu51QrEzQdL_nz.woff2) format('woff2');. unicode-range: U+0301, U+0400-045F, U+0490-0491, U+04B0-04B1, U+2116;.}./ greek-ext /.@font-face {. font-family: 'Roboto';. font-style: italic;. font-weight: 100;. font-display: swap;. src: url(https://fonts.gstatic.com/s/roboto/v30/KFOiCnqEu92Fr1Mu51QrEzwdL_nz.woff2) format('woff2');. unicode-range: U+1F00-1FFF;.}./ greek */.@font-face {. font-family: 'Roboto';. font-style: italic;. font-weight: 100;. font-display: swap;. src: url(https://font

Chrome Cache Entry: 145

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (3442)
Category:	downloaded
Size (bytes):	5692
Entropy (8bit):	4.845648761280578
Encrypted:	false
SSDEEP:
MD5:	481566280A43877F65769C0506F88FF1
SHA1:	A5F9213F26273940F6B2433FAD1B4AAFE7B5C726
SHA-256:	8242BE4490CDE6EF5D3D865845A1A63949327FA87BC438EA115D85091CF46B64
SHA-512:	1094E02667287DB30BF00455705FB9126CBEE65933480BBDCF1C6C2EC6F4D0C1B0BFB6AFAAB89AD44E2A4EA415E1A0414B1540577AE9025226508B979984EC6D
Malicious:	false
Reputation:	low
URL:	https://dev-maine-gov-doe.pantheonsite.io/wp-content/uploads/essential-addons-elementor/eael-6.css?ver=1697448395
Preview:	.clearfix::before,.clearfix::after{content:" ";display:table;clear:both}.eael-testimonial-slider.nav-top-left,.eael-testimonial-slider.nav-top-right,.eael-team-slider.nav-top-left,.eael-team-slider.nav-top-right,.eael-logo-carousel.nav-top-left,.eael-logo-carousel.nav-top-right,.eael-post-carousel.nav-top-left,.eael-post-carousel.nav-top-right,.eael-product-carousel.nav-top-left,.eael-product-carousel.nav-top-right{padding-top:40px}.eael-contact-form input[type=text],.eael-contact-form input[type=email],.eael-contact-form input[type=url],.eael-contact-form input[type=tel],.eael-contact-form input[type=date],.eael-contact-form input[type=number],.eael-contact-form textarea{background:#fff;box-shadow:none;-webkit-box-shadow:none;float:none;height:auto;margin:0;outline:0;width:100%}.eael-contact-form input[type=submit]{border:0;float:none;height:auto;margin:0;padding:10px 20px;width:auto;-webkit-transition:all .25s linear 0s;transition:all .25s linear 0s}.eael-contact-form.placeholder-hid

Chrome Cache Entry: 146

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (3442)
Category:	downloaded
Size (bytes):	3443
Entropy (8bit):	4.751855532031881
Encrypted:	false
SSDEEP:
MD5:	AC793CFD8DE80E4763D4F9DED0D96508
SHA1:	49CDE1C37571CBA1F76F9D038B4670E7F023A3B9
SHA-256:	3E584003B5C6DF9BC2854B2775E527EF7240F3D1CAE4047E9AA504CDFBC109F9
SHA-512:	198AE98DC93E728A0D4DC680CBBDCB6DA804B7C0949B90B35BDCCF6F43B8ED08C6A7960E7F3BE96264592830FD423260D897241EB80A411A5BFB961A8F986306
Malicious:	false
Reputation:	low
URL:	https://dev-maine-gov-doe.pantheonsite.io/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/css/view/general.min.css?ver=5.8.11
Preview:	.clearfix::before,.clearfix::after{content:" ";display:table;clear:both}.eael-testimonial-slider.nav-top-left,.eael-testimonial-slider.nav-top-right,.eael-team-slider.nav-top-left,.eael-team-slider.nav-top-right,.eael-logo-carousel.nav-top-left,.eael-logo-carousel.nav-top-right,.eael-post-carousel.nav-top-left,.eael-post-carousel.nav-top-right,.eael-product-carousel.nav-top-left,.eael-product-carousel.nav-top-right{padding-top:40px}.eael-contact-form input[type=text],.eael-contact-form input[type=email],.eael-contact-form input[type=url],.eael-contact-form input[type=tel],.eael-contact-form input[type=date],.eael-contact-form input[type=number],.eael-contact-form textarea{background:#fff;box-shadow:none;-webkit-box-shadow:none;float:none;height:auto;margin:0;outline:0;width:100%}.eael-contact-form input[type=submit]{border:0;float:none;height:auto;margin:0;padding:10px 20px;width:auto;-webkit-transition:all .25s linear 0s;transition:all .25s linear 0s}.eael-contact-form.placeholder-hid

Chrome Cache Entry: 147

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (12198), with no line terminators
Category:	downloaded
Size (bytes):	12198
Entropy (8bit):	5.031745242580206
Encrypted:	false
SSDEEP:
MD5:	3819C3569DA71DAEC283A75483735F7E
SHA1:	ECD40A5CC6F0B76200C454CA880210DC301CFAB8
SHA-256:	214674CC77ABA35AB3567B88E2739FD08E8E96C61D279559AD61874069683EA0
SHA-512:	2710655DFF46653DAEB3A6E3F6D36F885E51D5B375738EE353ACA40C6F66AE1A7DECE57039D58747012ED9EA2822191143C06F270123B8CC580F6A41B8E8AEF4
Malicious:	false
Reputation:	low
URL:	https://dev-maine-gov-doe.pantheonsite.io/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
Preview:	!function(){"use strict";function Waypoint(options){if(!options)throw new Error("No options passed to Waypoint constructor");if(!options.element)throw new Error("No element option passed to Waypoint constructor");if(!options.handler)throw new Error("No handler option passed to Waypoint constructor");this.key="waypoint-"+keyCounter,this.options=Waypoint.Adapter.extend({},Waypoint.defaults,options),this.element=this.options.element,this.adapter=new Waypoint.Adapter(this.element),this.callback=options.handler,this.axis=this.options.horizontal?"horizontal":"vertical",this.enabled=this.options.enabled,this.triggerPoint=null,this.group=Waypoint.Group.findOrCreate({name:this.options.group,axis:this.axis}),this.context=Waypoint.Context.findOrCreateByElement(this.options.context),Waypoint.offsetAliases[this.options.offset]&&(this.options.offset=Waypoint.offsetAliases[this.options.offset]),this.group.add(this),this.context.add(this),allWaypoints[this.key]=this,keyCounter+=1}var keyCounter=0,allW

Chrome Cache Entry: 148

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (9881)
Category:	downloaded
Size (bytes):	9921
Entropy (8bit):	4.316080272209279
Encrypted:	false
SSDEEP:
MD5:	95CD6A1FD50AE95FF218476726F70FB9
SHA1:	907ECC3E001B6B3176B2DC4A3C68FCB53552D155
SHA-256:	CAB7BBD892ACFE6576A42C06C77AEAF7F1A160400CEAE3C486C156104ADAA9AD
SHA-512:	F28B2F74AB18D27BC62EE7340B542812A5A844264BC1DC61611C8976582C755A6CC2DD8B7CC9FA58E621E90928CADB01A54185892C285E8AB17666E148F04FBF
Malicious:	false
Reputation:	low
URL:	https://dev-maine-gov-doe.pantheonsite.io/wp-content/plugins/elementor/assets/css/widget-icon-list.min.css
Preview:	/! elementor - v3.16.0 - 09-10-2023 /..elementor-widget.elementor-icon-list--layout-inline .elementor-widget-container{overflow:hidden}.elementor-widget .elementor-icon-list-items.elementor-inline-items{margin-right:-8px;margin-left:-8px}.elementor-widget .elementor-icon-list-items.elementor-inline-items .elementor-icon-list-item{margin-right:8px;margin-left:8px}.elementor-widget .elementor-icon-list-items.elementor-inline-items .elementor-icon-list-item:after{width:auto;left:auto;right:auto;position:relative;height:100%;border-top:0;border-bottom:0;border-right:0;border-left-width:1px;border-style:solid;right:-8px}.elementor-widget .elementor-icon-list-items{list-style-type:none;margin:0;padding:0}.elementor-widget .elementor-icon-list-item{margin:0;padding:0;position:relative}.elementor-widget .elementor-icon-list-item:after{position:absolute;bottom:0;width:100%}.elementor-widget .elementor-icon-list-item,.elementor-widget .elementor-icon-list-item a{display:flex;font-size:inherit;

Chrome Cache Entry: 150

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (20638), with no line terminators
Category:	downloaded
Size (bytes):	20638
Entropy (8bit):	5.1109501857975035
Encrypted:	false
SSDEEP:
MD5:	BF21071DFECE4935BECFDFEC3A3AC1E9
SHA1:	41EB68194ED1F7D8091EFAE3323E9F3DBE803911
SHA-256:	4949400420298D43AB430C5CAF706E848AF8FFF7DB19C0031542B02E71C26B89
SHA-512:	E13F7DE31EED51823DD3CC386F37AE910E757ABFD822747D1A3D4021715E3E159526E45291BA81339C029325BEFD551C3DC1885FE7A33EDFCF18C1A9DDCD6AC6
Malicious:	false
Reputation:	low
URL:	https://dev-maine-gov-doe.pantheonsite.io/wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=4.3.1
Preview:	var astraGetParents=function(e,t){Element.prototype.matches\|\|(Element.prototype.matches=Element.prototype.matchesSelector\|\|Element.prototype.mozMatchesSelector\|\|Element.prototype.msMatchesSelector\|\|Element.prototype.oMatchesSelector\|\|Element.prototype.webkitMatchesSelector\|\|function(e){for(var t=(this.document\|\|this.ownerDocument).querySelectorAll(e),a=t.length;0<=--a&&t.item(a)!==this;);return-1<a});for(var a=[];e&&e!==document;e=e.parentNode)(!t\|\|e.matches(t))&&a.push(e);return a},getParents=function(e,t){console.warn("getParents() function has been deprecated since version 2.5.0 or above of Astra Theme and will be removed in the future. Use astraGetParents() instead."),astraGetParents(e,t)},astraToggleClass=function(e,t){e.classList.contains(t)?e.classList.remove(t):e.classList.add(t)},toggleClass=function(e,t){console.warn("toggleClass() function has been deprecated since version 2.5.0 or above of Astra Theme and will be removed in the future. Use astraToggleClass() instead."),astr

Chrome Cache Entry: 151

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (1840), with no line terminators
Category:	downloaded
Size (bytes):	1840
Entropy (8bit):	5.396666858932679
Encrypted:	false
SSDEEP:
MD5:	BE630991644BC72044312DC743DFD73F
SHA1:	F3E90AA892A5A4C9F2E90B548523C7676C28966A
SHA-256:	693C8B61667AC94847264924178702A190C5113B41B82085DAD0641F89E3F864
SHA-512:	184F2980E54CD1B7E2DDB5227B0F0C0035F7DBB8EAAADFBC54810A03F784B49AAEA87C8C27B17D2E550173360F54BABE9E7CDD99344D7037C743DB25D578CE1B
Malicious:	false
Reputation:	low
URL:	https://dev-maine-gov-doe.pantheonsite.io/wp-content/plugins/gravityforms/js/jquery.json.min.js?ver=2.5.12.2
Preview:	!function($){"use strict";var escape=/["\\\x00-\x1f\x7f-\x9f]/g,meta={"\b":"\\b","\t":"\\t","\n":"\\n","\f":"\\f","\r":"\\r",'"':'\\"',"\\":"\\\\"},hasOwn=Object.prototype.hasOwnProperty;$.toJSON="object"==typeof JSON&&JSON.stringify?JSON.stringify:function(t){if(null===t)return"null";var e,r,n,o,i=$.type(t);if("undefined"!==i){if("number"===i\|\|"boolean"===i)return String(t);if("string"===i)return $.quoteString(t);if("function"==typeof t.toJSON)return $.toJSON(t.toJSON());if("date"===i){var f=t.getUTCMonth()+1,u=t.getUTCDate(),s=t.getUTCFullYear(),a=t.getUTCHours(),l=t.getUTCMinutes(),c=t.getUTCSeconds(),p=t.getUTCMilliseconds();return'"'+s+"-"+(f=f<10?"0"+f:f)+"-"+(u=u<10?"0"+u:u)+"T"+(a=a<10?"0"+a:a)+":"+(l=l<10?"0"+l:l)+":"+(c=c<10?"0"+c:c)+"."+(p=(p=p<100?"0"+p:p)<10?"0"+p:p)+'Z"'}if(e=[],$.isArray(t)){for(r=0;r<t.length;r++)e.push($.toJSON(t[r])\|\|"null");return"["+e.join(",")+"]"}if("object"==typeof t){for(r in t)if(hasOwn.call(t,r)){if("number"===(i=typeof r))n='"'+r+'"';else{if(

Chrome Cache Entry: 152

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	Web Open Font Format (Version 2), TrueType, length 15920, version 1.0
Category:	downloaded
Size (bytes):	15920
Entropy (8bit):	7.987786667472439
Encrypted:	false
SSDEEP:
MD5:	3A44E06EB954B96AA043227F3534189D
SHA1:	23CEF6993DDB2B2979E8E7647FC3763694E2BA7D
SHA-256:	B019538234514166EC7665359D097403358F8A4C991901983922FB4D56989F1E
SHA-512:	FAB970B250DD88064730BD2603C530F3503ABB0AF4E4095786877F9660A159BF4AD98C5ABEA2E95EB39AE8C13417736B5772FCB9F87941FF5E0F383CB172997F
Malicious:	false
Reputation:	low
URL:	https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
Preview:	wOF2......>0.......T..=..........................d.....^.`.. .\..<.................6.$.... .... ..S.!.%c.......\|y...6..;.s#.....x_<..o..........l...J.`p.m..6...h....U.pD...R.J.$...W..`7w...[..qD....<P......J.x.+J-^....va...:.KW..Ph...."....{.W4C....p..1..........CH.....P.............Q%.=.F.....1.%J....d..X..J.<AU..b.N...<l...d...f..^Y..]..&...VQ.<.....F..{.....&{.+J;.... .2P.:.5..?.o.\|....V[t..M..#..d.fv...........4..`.).h..h......@u........4......~.....r.B...p1.P.T..<....r....Y..8...GQ1.t.....%..-Wh..:W.....1l-...@..hL}...lN.._.j...D`..sn.=(...W..?.Z..p.52..H...X...)..CJ...V..7.....<\|..i...{...R.M+[..\|..x-..M3...~!\.l6}.T.o.R'$.)..-.W.T....A...5?.{.2.bR.../....*l..;...{..I>.n..MJ.2........U&. ..(L]].%P.$..p59.LD.f.........V.....z.5~.2\......#.4....9_....%wp.OU.0.....CK..../.x. ..A2e...@...(.i..f./.....`1.......!......@....0 vbt.e v./!...N=>:..A...(...f....?.....iH.F..!k.6.O6S..54.^c..2.G.?6....)b......lv.,h....Y.}.?..uk....L.4d.g..6.\.1u..

Chrome Cache Entry: 153

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	data
Category:	downloaded
Size (bytes):	9445
Entropy (8bit):	5.276617475726948
Encrypted:	false
SSDEEP:
MD5:	C2C4E2A562E06E1CB22293A5B920ACA6
SHA1:	A7B5A369AC4883F1EE7FA701B238D20238B675CA
SHA-256:	698E93FE491CC7BBF07A470579A33DBD0DB53C19142B7BE41EBFD39A23AEF11F
SHA-512:	7117E879A8A4D8C8E1ACD1A34247A7CF420128DA970ED42975D6A04665EC571DC388C62FC3B50DEDA0B9E896F599D56FFBC28B25A45119CD79F5F45E3E58C178
Malicious:	false
Reputation:	low
URL:	https://dev-maine-gov-doe.pantheonsite.io/wp-includes/js/dist/i18n.min.js?ver=7701b0c3857f914212ef
Preview:	/! This file is auto-generated /.!function(){var t={124:function(t,e,n){var r;!function(){"use strict";var i={not_string:/[^s]/,not_bool:/[^t]/,not_type:/[^T]/,not_primitive:/[^v]/,number:/[diefg]/,numeric_arg:/[bcdiefguxX]/,json:/[j]/,not_json:/[^j]/,text:/^[^\x25]+/,modulo:/^\x25{2}/,placeholder:/^\x25(?:([1-9]\d)\$\|\(([^)]+)\))?(\+)?(0\|'[^$])?(-)?(\d+)?(?:\.(\d+))?([b-gijostTuvxX])/,key:/^([a-z_][a-z_\d])/i,key_access:/^\.([a-z_][a-z_\d]*)/i,index_access:/^\[(\d+)\]/,sign:/^[+-]/};function o(t){return function(t,e){var n,r,a,s,u,l,c,p,f,d=1,h=t.length,g="";for(r=0;r<h;r++)if("string"==typeof t[r])g+=t[r];else if("object"==typeof t[r]){if((s=t[r]).keys)for(n=e[d],a=0;a<s.keys.length;a++){if(null==n)throw new Error(o('[sprintf] Cannot access property "%s" of undefined value "%s"',s.keys[a],s.keys[a-1]));n=n[s.keys[a]]}else n=s.param_no?e[s.param_no]:e[d++];if(i.not_type.test(s.type)&&i.not_primitive.test(s.type)&&n instanceof Function&&(n=n()),i.numeric_arg.test(s.type)&&"number"!

Chrome Cache Entry: 154

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (8171), with no line terminators
Category:	downloaded
Size (bytes):	8171
Entropy (8bit):	5.072859919696532
Encrypted:	false
SSDEEP:
MD5:	DDA652DB133FDDB9B80A05C6D1B5C540
SHA1:	60C8514C57A5DB2980C4B046B0DD479BD427357B
SHA-256:	C1A9A3E223BAD631DFF12D33B5499EB145CB08D8621C20D9D73870E78D97AFE4
SHA-512:	05CB3673448A79AA81887C60A82ABA51F9A843DC13AB4FC39B3E6D8AE7D632732D9AFEFAF72FC3D197C2795A3364FDFD4F83C9B628644D98F1C9017BFD435E62
Malicious:	false
Reputation:	low
URL:	https://dev-maine-gov-doe.pantheonsite.io/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2
Preview:	!function(e){"object"==typeof exports&&"undefined"!=typeof module\|\|"function"!=typeof define\|\|!define.amd?e():define("inert",e)}((function(){"use strict";var e,t,n,i,o,r,s=function(e,t,n){return t&&a(e.prototype,t),n&&a(e,n),e};function a(e,t){for(var n=0;n<t.length;n++){var i=t[n];i.enumerable=i.enumerable\|\|!1,i.configurable=!0,"value"in i&&(i.writable=!0),Object.defineProperty(e,i.key,i)}}function d(e,t){if(!(e instanceof t))throw new TypeError("Cannot call a class as a function")}function u(e,t){d(this,u),this._inertManager=t,this._rootElement=e,this._managedNodes=new Set,this._rootElement.hasAttribute("aria-hidden")?this._savedAriaHidden=this._rootElement.getAttribute("aria-hidden"):this._savedAriaHidden=null,this._rootElement.setAttribute("aria-hidden","true"),this._makeSubtreeUnfocusable(this._rootElement),this._observer=new MutationObserver(this._onMutation.bind(this)),this._observer.observe(this._rootElement,{attributes:!0,childList:!0,subtree:!0})}function h(e,t){d(this,h),thi

Chrome Cache Entry: 155

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	Web Open Font Format (Version 2), TrueType, length 78196, version 331.-31261
Category:	downloaded
Size (bytes):	78196
Entropy (8bit):	7.997039463361104
Encrypted:	true
SSDEEP:
MD5:	E8A427E15CC502BEF99CFD722B37EA98
SHA1:	A9922842A120A7F1EACED667480C5E185A106D69
SHA-256:	D0B4256ABED72481585662971262EABEE345C19F837AF00D7CE24239D3B40EEF
SHA-512:	113775748A4166C07E58C26CF6DB7FED473732DC6124B8EE0F0DCC0D6439EB2AB2C5D9E01C67324FDF9DE4105349CF30CC5796A0B0E0CE9A08F337B9D4E10B7B
Malicious:	false
Reputation:	low
URL:	https://dev-maine-gov-doe.pantheonsite.io/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
Preview:	wOF2......1t..........1..K......................?FFTM....`..N.....h..B.6.$..0..4.. ..+...[.u..p.(..U.d..{-.n.Pn...._=V2.e..vp.~........U..1...=..B..b....mvS....w.C.+.$...(..MMI.iH}..O...4.7.s...Y.)......}..^...{^...R.z....f..h4dD7.:1...Cj..l.8M..T...]}.]?Z..v....g.yV...^..\.?.wM\|......Ws..yf%..PL.....~.z.w.S.uQw..........EY.!.........j.O.....c...>T\|....W...Zk...9.......XJ...../I`x.R....c.h..w...?tm..l...LQ......hMg...x...1.F...cU.b\|.3....v.Kr.f.H ..9 @....... ......'..j...Vq.:.Q..+....._..(...J.....~../..Y<."......GB..:..P.B...7q...K.{...F"..3....6?.C,..B..P.V.......C.C..\....+....a...X.z..Tzdn.P.M....li...l2);.!..wX..xh.o.u!.........O.......Ew.$b7X..8d..H...s...z#d..&...J.G...Q.M.....rV?.....&....#...t]........+..............v...$X.P............ h.z.{...../F.-Y..!.a.1...&.;.^^.U.U.E....!O......./+~.........Q.\|.n@.W..P.tc.l.--....]6..........u..[.SN....i....4-......"...fC...`........@.......l=..g...-..C8...B.X.........g.~..p.1%..x.A.X..

Chrome Cache Entry: 156

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	Unicode text, UTF-8 text, with very long lines (16142), with no line terminators
Category:	downloaded
Size (bytes):	16146
Entropy (8bit):	5.1921466250783626
Encrypted:	false
SSDEEP:
MD5:	94DFDBE80F36B3BE63CE74FF1135B996
SHA1:	5E05077D99E736AF42B2DA70E428E7F7DF556DD4
SHA-256:	4C0CED2CB3830D045CDD74F745FD4D6DCB082D8EDD3A9FE46E39295E30CB8032
SHA-512:	628169B65F39A18F13FACAC9E3375EB59DBCAC67CDAA7612562165D94AEC1FDA6CFF93B1F228155C317F82A544390948F7243DF330972851B49F6A45781AA2D2
Malicious:	false
Reputation:	low
URL:	https://dev-maine-gov-doe.pantheonsite.io/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
Preview:	!function(t){"use strict";var r,n,e;n={},(e=function(t){if(n[t])return n[t].exports;var o=n[t]={i:t,l:!1,exports:{}};return r[t].call(o.exports,o,o.exports,e),o.l=!0,o.exports}).m=r=[function(t,r,n){n(1),n(67),n(68),t.exports=n(72)},function(r,n,e){var o=e(2),i=e(36),u=e(57),c=e(56);e=e(62);o({target:"Array",proto:!0},{at:function(r){var n=i(this),e=u(n);return(r=0<=(r=c(r))?r:e+r)<0\|\|e<=r?t:n[r]}}),e("at")},function(r,n,e){var o=e(3),i=e(4).f,u=e(40),c=e(43),f=e(34),a=e(50),p=e(61);r.exports=function(r,n){var e,s,y,l=r.target,v=r.global,b=r.stat,g=v?o:b?o[l]\|\|f(l,{}):(o[l]\|\|{}).prototype;if(g)for(e in n){if(s=n[e],y=r.noTargetGet?(y=i(g,e))&&y.value:g[e],!p(v?e:l+(b?".":"#")+e,r.forced)&&y!==t){if(typeof s==typeof y)continue;a(s,y)}(r.sham\|\|y&&y.sham)&&u(s,"sham",!0),c(g,e,s,r)}}},function(t,r){function n(t){return t&&t.Math==Math&&t}t.exports=n("object"==typeof globalThis&&globalThis)\|\|n("object"==typeof window&&window)\|\|n("object"==typeof self&&self)\|\|n("object"==typeof global&&glob

Static File Info

⊘No static file info