Edit tour

Windows Analysis Report
https://adclick.g.doubleclick.net/pcs/click?adurl=//higreens.co.in

Overview

General Information

Sample URL:	https://adclick.g.doubleclick.net/pcs/click?adurl=//higreens.co.in
Analysis ID:	1383280

Detection

Score:	56
Range:	0 - 100
Whitelisted:	false
Confidence:	100%

Signatures

Antivirus / Scanner detection for submitted sample

Multi AV Scanner detection for domain / URL

Creates files inside the system directory

Found iframes

Stores files to the Windows start menu directory

Uses insecure TLS / SSL version for HTTPS connection

Classification

Process Tree

System is w10x64_ra

chrome.exe (PID: 5132 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --single-argument https://adclick.g.doubleclick.net/pcs/click?adurl=//higreens.co.in MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)

chrome.exe (PID: 6744 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2008 --field-trial-handle=1968,i,11151311700152476676,7946810217138057707,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)

cleanup

Yara Signatures

⊘No yara matches

Sigma Signatures

⊘No Sigma rule has matched

Snort Signatures

⊘No Snort rule has matched

Joe Sandbox Signatures

• AV Detection
• Phishing
• Compliance
• Software Vulnerabilities
• Networking
• System Summary
• Boot Survival

Click to jump to signature section

Show All Signature Results

AV Detection

Antivirus / Scanner detection for submitted sample

Source: https://adclick.g.doubleclick.net/pcs/click?adurl=//higreens.co.in

Avira URL Cloud: detection malicious, Label: malware

Multi AV Scanner detection for domain / URL

Source: higreens.co.in

Virustotal: Detection: 6%

Perma Link

Source: https://higreens.co.in/	HTTP Parser: Iframe src: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LeWB9gZAAAAAIC48uYSgHgXiiptjeQTYH24ppjf&co=aHR0cHM6Ly9oaWdyZWVucy5jby5pbjo0NDM.&hl=en&v=QUpyTKFkX5CIV6EF8TFSWEif&size=normal&cb=7x0bilsm4elq
Source: https://higreens.co.in/	HTTP Parser: Iframe src: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LeWB9gZAAAAAIC48uYSgHgXiiptjeQTYH24ppjf&co=aHR0cHM6Ly9oaWdyZWVucy5jby5pbjo0NDM.&hl=en&v=QUpyTKFkX5CIV6EF8TFSWEif&size=normal&cb=f5tivhqoq5pf
Source: https://higreens.co.in/	HTTP Parser: Iframe src: https://td.doubleclick.net/td/rul/11259937738?random=1706617982880&cv=11&fst=1706617982880&fmt=3&bg=ffffff&guid=ON&async=1&gtm=45be41o0v9134757481&gcd=11l1l1l1l1&dma=0&u_w=1280&u_h=1024&url=https%3A%2F%2Fhigreens.co.in%2F&hn=www.googleadservices.com&frm=0&tiba=Hi-Greens%20%7C%203%20BHK%2C%204%20BHK%2C%20Luxury%20Apartments%20%26%20Villas%2C%20Zirakpur%20Punjab&npa=0&pscdl=noapi&auid=245343967.1706617983&fledge=1&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uap=Windows&uapv=10.0.0&uaw=0&data=event%3Dgtag.config
Source: https://higreens.co.in/	HTTP Parser: Iframe src: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LeWB9gZAAAAAIC48uYSgHgXiiptjeQTYH24ppjf&co=aHR0cHM6Ly9oaWdyZWVucy5jby5pbjo0NDM.&hl=en&v=QUpyTKFkX5CIV6EF8TFSWEif&size=normal&cb=7x0bilsm4elq
Source: https://higreens.co.in/	HTTP Parser: Iframe src: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LeWB9gZAAAAAIC48uYSgHgXiiptjeQTYH24ppjf&co=aHR0cHM6Ly9oaWdyZWVucy5jby5pbjo0NDM.&hl=en&v=QUpyTKFkX5CIV6EF8TFSWEif&size=normal&cb=f5tivhqoq5pf
Source: https://higreens.co.in/	HTTP Parser: Iframe src: https://td.doubleclick.net/td/rul/11259937738?random=1706617982880&cv=11&fst=1706617982880&fmt=3&bg=ffffff&guid=ON&async=1&gtm=45be41o0v9134757481&gcd=11l1l1l1l1&dma=0&u_w=1280&u_h=1024&url=https%3A%2F%2Fhigreens.co.in%2F&hn=www.googleadservices.com&frm=0&tiba=Hi-Greens%20%7C%203%20BHK%2C%204%20BHK%2C%20Luxury%20Apartments%20%26%20Villas%2C%20Zirakpur%20Punjab&npa=0&pscdl=noapi&auid=245343967.1706617983&fledge=1&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uap=Windows&uapv=10.0.0&uaw=0&data=event%3Dgtag.config
Source: https://higreens.co.in/	HTTP Parser: Iframe src: https://www.google.com/recaptcha/api2/bframe?hl=en&v=QUpyTKFkX5CIV6EF8TFSWEif&k=6LeWB9gZAAAAAIC48uYSgHgXiiptjeQTYH24ppjf
Source: https://higreens.co.in/	HTTP Parser: Iframe src: https://www.google.com/recaptcha/api2/bframe?hl=en&v=QUpyTKFkX5CIV6EF8TFSWEif&k=6LeWB9gZAAAAAIC48uYSgHgXiiptjeQTYH24ppjf
Source: https://higreens.co.in/	HTTP Parser: Iframe src: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LeWB9gZAAAAAIC48uYSgHgXiiptjeQTYH24ppjf&co=aHR0cHM6Ly9oaWdyZWVucy5jby5pbjo0NDM.&hl=en&v=QUpyTKFkX5CIV6EF8TFSWEif&size=normal&cb=7x0bilsm4elq
Source: https://higreens.co.in/	HTTP Parser: Iframe src: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LeWB9gZAAAAAIC48uYSgHgXiiptjeQTYH24ppjf&co=aHR0cHM6Ly9oaWdyZWVucy5jby5pbjo0NDM.&hl=en&v=QUpyTKFkX5CIV6EF8TFSWEif&size=normal&cb=f5tivhqoq5pf
Source: https://higreens.co.in/	HTTP Parser: Iframe src: https://td.doubleclick.net/td/rul/11259937738?random=1706617982880&cv=11&fst=1706617982880&fmt=3&bg=ffffff&guid=ON&async=1&gtm=45be41o0v9134757481&gcd=11l1l1l1l1&dma=0&u_w=1280&u_h=1024&url=https%3A%2F%2Fhigreens.co.in%2F&hn=www.googleadservices.com&frm=0&tiba=Hi-Greens%20%7C%203%20BHK%2C%204%20BHK%2C%20Luxury%20Apartments%20%26%20Villas%2C%20Zirakpur%20Punjab&npa=0&pscdl=noapi&auid=245343967.1706617983&fledge=1&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uap=Windows&uapv=10.0.0&uaw=0&data=event%3Dgtag.config
Source: https://higreens.co.in/	HTTP Parser: Iframe src: https://www.google.com/recaptcha/api2/bframe?hl=en&v=QUpyTKFkX5CIV6EF8TFSWEif&k=6LeWB9gZAAAAAIC48uYSgHgXiiptjeQTYH24ppjf
Source: https://higreens.co.in/	HTTP Parser: Iframe src: https://www.google.com/recaptcha/api2/bframe?hl=en&v=QUpyTKFkX5CIV6EF8TFSWEif&k=6LeWB9gZAAAAAIC48uYSgHgXiiptjeQTYH24ppjf

Source: https://www.google.com/recaptcha/api2/bframe?hl=en&v=QUpyTKFkX5CIV6EF8TFSWEif&k=6LeWB9gZAAAAAIC48uYSgHgXiiptjeQTYH24ppjf	HTTP Parser: No favicon
Source: https://www.google.com/recaptcha/api2/bframe?hl=en&v=QUpyTKFkX5CIV6EF8TFSWEif&k=6LeWB9gZAAAAAIC48uYSgHgXiiptjeQTYH24ppjf	HTTP Parser: No favicon
Source: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LeWB9gZAAAAAIC48uYSgHgXiiptjeQTYH24ppjf&co=aHR0cHM6Ly9oaWdyZWVucy5jby5pbjo0NDM.&hl=en&v=QUpyTKFkX5CIV6EF8TFSWEif&size=normal&cb=f5tivhqoq5pf	HTTP Parser: No favicon
Source: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LeWB9gZAAAAAIC48uYSgHgXiiptjeQTYH24ppjf&co=aHR0cHM6Ly9oaWdyZWVucy5jby5pbjo0NDM.&hl=en&v=QUpyTKFkX5CIV6EF8TFSWEif&size=normal&cb=7x0bilsm4elq	HTTP Parser: No favicon

Source: https://higreens.co.in/	HTTP Parser: No <meta name="author".. found
Source: https://higreens.co.in/	HTTP Parser: No <meta name="author".. found
Source: https://higreens.co.in/	HTTP Parser: No <meta name="author".. found

Source: https://higreens.co.in/	HTTP Parser: No <meta name="copyright".. found
Source: https://higreens.co.in/	HTTP Parser: No <meta name="copyright".. found
Source: https://higreens.co.in/	HTTP Parser: No <meta name="copyright".. found

Source: unknown

HTTPS traffic detected: 23.1.237.25:443 -> 192.168.2.16:49771 version: TLS 1.0

Source: unknown	HTTPS traffic detected: 40.127.169.103:443 -> 192.168.2.16:49769 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 40.127.169.103:443 -> 192.168.2.16:49778 version: TLS 1.2

Source: chrome.exe

Memory has grown: Private usage: 16MB later: 29MB

Source: unknown

HTTPS traffic detected: 23.1.237.25:443 -> 192.168.2.16:49771 version: TLS 1.0

Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.25
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.25
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.25
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.25
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.25
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 40.127.169.103
Source: unknown	TCP traffic detected without corresponding DNS query: 40.127.169.103
Source: unknown	TCP traffic detected without corresponding DNS query: 40.127.169.103
Source: unknown	TCP traffic detected without corresponding DNS query: 40.127.169.103
Source: unknown	TCP traffic detected without corresponding DNS query: 40.127.169.103
Source: unknown	TCP traffic detected without corresponding DNS query: 40.127.169.103
Source: unknown	TCP traffic detected without corresponding DNS query: 40.127.169.103
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.25
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.25
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.25
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.25
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.25
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.25
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.25
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.25
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.25
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.25
Source: unknown	TCP traffic detected without corresponding DNS query: 40.127.169.103
Source: unknown	TCP traffic detected without corresponding DNS query: 40.127.169.103
Source: unknown	TCP traffic detected without corresponding DNS query: 40.127.169.103
Source: unknown	TCP traffic detected without corresponding DNS query: 40.127.169.103
Source: unknown	TCP traffic detected without corresponding DNS query: 40.127.169.103
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.25

Source: unknown

DNS traffic detected: queries for: adclick.g.doubleclick.net

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49742
Source: unknown	Network traffic detected: HTTP traffic on port 49672 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49740
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49783
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49782
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49780
Source: unknown	Network traffic detected: HTTP traffic on port 49704 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49743 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49769 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49720 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49739
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49738
Source: unknown	Network traffic detected: HTTP traffic on port 49717 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49736 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49736
Source: unknown	Network traffic detected: HTTP traffic on port 49759 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49735
Source: unknown	Network traffic detected: HTTP traffic on port 49753 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49772 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49778
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49731
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49775
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49730
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49774
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49773
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49772
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49771
Source: unknown	Network traffic detected: HTTP traffic on port 49724 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49742 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49749 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49763 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49780 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49721 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49752 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49714 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49773 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49735 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49725
Source: unknown	Network traffic detected: HTTP traffic on port 49718 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49769
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49724
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49768
Source: unknown	Network traffic detected: HTTP traffic on port 49739 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49723
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49722
Source: unknown	Network traffic detected: HTTP traffic on port 49674 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49721
Source: unknown	Network traffic detected: HTTP traffic on port 49783 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49720
Source: unknown	Network traffic detected: HTTP traffic on port 49731 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49763
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49761
Source: unknown	Network traffic detected: HTTP traffic on port 49725 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49748 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49745 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49722 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49718
Source: unknown	Network traffic detected: HTTP traffic on port 49751 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49717
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49716
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49759
Source: unknown	Network traffic detected: HTTP traffic on port 49778 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49714
Source: unknown	Network traffic detected: HTTP traffic on port 49774 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49738 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49782 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49754
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49753
Source: unknown	Network traffic detected: HTTP traffic on port 49673 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49752
Source: unknown	Network traffic detected: HTTP traffic on port 49730 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49751
Source: unknown	Network traffic detected: HTTP traffic on port 49740 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49761 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49747 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49768 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49723 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49775 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49716 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49749
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49704
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49748
Source: unknown	Network traffic detected: HTTP traffic on port 49754 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49747
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49745
Source: unknown	Network traffic detected: HTTP traffic on port 49771 -> 443

Source: unknown	HTTPS traffic detected: 40.127.169.103:443 -> 192.168.2.16:49769 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 40.127.169.103:443 -> 192.168.2.16:49778 version: TLS 1.2

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Windows\SystemTemp\chrome_BITS_5132_69067146

Source: classification engine

Classification label: mal56.win@17/241@26/230

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --single-argument https://adclick.g.doubleclick.net/pcs/click?adurl=//higreens.co.in
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2008 --field-trial-handle=1968,i,11151311700152476676,7946810217138057707,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2008 --field-trial-handle=1968,i,11151311700152476676,7946810217138057707,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown

Source: Window Recorder

Window detected: More than 3 window changes detected

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk

Mitre Att&ck Matrix

Reconnaissance	Resource Development	Initial Access	Execution	Persistence	Privilege Escalation	Defense Evasion	Credential Access	Discovery	Lateral Movement	Collection	Command and Control	Exfiltration	Impact
Gather Victim Identity Information	Acquire Infrastructure	1 Drive-by Compromise	Windows Management Instrumentation	1 Registry Run Keys / Startup Folder	1 Process Injection	11 Masquerading	OS Credential Dumping	System Service Discovery	Remote Services	Data from Local System	2 Encrypted Channel	Exfiltration Over Other Network Medium	Abuse Accessibility Features
Credentials	Domains	Default Accounts	Scheduled Task/Job	Boot or Logon Initialization Scripts	1 Registry Run Keys / Startup Folder	1 Process Injection	LSASS Memory	Application Window Discovery	Remote Desktop Protocol	Data from Removable Media	1 Non-Application Layer Protocol	Exfiltration Over Bluetooth	Network Denial of Service
Email Addresses	DNS Server	Domain Accounts	At	Logon Script (Windows)	1 Extra Window Memory Injection	1 Extra Window Memory Injection	Security Account Manager	Query Registry	SMB/Windows Admin Shares	Data from Network Shared Drive	2 Application Layer Protocol	Automated Exfiltration	Data Encrypted for Impact

Screenshots

Download Video

Thumbnails

This section contains all screenshots as thumbnails, including those not shown in the slideshow.

Antivirus, Machine Learning and Genetic Malware Detection

Initial Sample

Source	Detection	Scanner	Label	Link
https://adclick.g.doubleclick.net/pcs/click?adurl=//higreens.co.in	100%	Avira URL Cloud	malware
https://adclick.g.doubleclick.net/pcs/click?adurl=//higreens.co.in	3%	Virustotal		Browse

Dropped Files

⊘No Antivirus matches

Unpacked PE Files

⊘No Antivirus matches

Domains

Source	Detection	Scanner	Label	Link
higreens.co.in	7%	Virustotal		Browse

URLs

Source	Detection	Scanner	Label	Link
about:blank	0%	Avira URL Cloud	safe

Domains and IPs

Contacted Domains

Name	IP	Active	Malicious	Antivirus Detection	Reputation
adclick.g.doubleclick.net	142.251.15.156	true	false		high
accounts.google.com	172.253.124.84	true	false		high
googleads.g.doubleclick.net	64.233.185.157	true	false		high
www.google.com	74.125.136.99	true	false		high
td.doubleclick.net	172.217.215.156	true	false		high
clients.l.google.com	142.250.105.102	true	false		high
higreens.co.in	192.185.129.222	true	true	7%, Virustotal, Browse	unknown
clients1.google.com	unknown	unknown	false		high
clients2.google.com	unknown	unknown	false		high

Contacted URLs

Name	Malicious	Antivirus Detection	Reputation
https://www.google.com/recaptcha/api2/bframe?hl=en&v=QUpyTKFkX5CIV6EF8TFSWEif&k=6LeWB9gZAAAAAIC48uYSgHgXiiptjeQTYH24ppjf	false		high
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LeWB9gZAAAAAIC48uYSgHgXiiptjeQTYH24ppjf&co=aHR0cHM6Ly9oaWdyZWVucy5jby5pbjo0NDM.&hl=en&v=QUpyTKFkX5CIV6EF8TFSWEif&size=normal&cb=7x0bilsm4elq	false		high
about:blank	false	Avira URL Cloud: safe	low
https://higreens.co.in/	false		unknown
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LeWB9gZAAAAAIC48uYSgHgXiiptjeQTYH24ppjf&co=aHR0cHM6Ly9oaWdyZWVucy5jby5pbjo0NDM.&hl=en&v=QUpyTKFkX5CIV6EF8TFSWEif&size=normal&cb=f5tivhqoq5pf	false		high

World Map of Contacted IPs

No. of IPs < 25%
25% < No. of IPs < 50%
50% < No. of IPs < 75%
75% < No. of IPs

Public IPs

IP	Domain	Country	ASN	ASN Name	Malicious
192.185.129.222	higreens.co.in	United States	46606	UNIFIEDLAYER-AS-1US	true
172.217.215.99	unknown	United States	15169	GOOGLEUS	false
172.217.215.156	td.doubleclick.net	United States	15169	GOOGLEUS	false
142.250.105.94	unknown	United States	15169	GOOGLEUS	false
74.125.136.99	www.google.com	United States	15169	GOOGLEUS	false
172.217.215.105	unknown	United States	15169	GOOGLEUS	false
142.250.105.102	clients.l.google.com	United States	15169	GOOGLEUS	false
173.194.219.94	unknown	United States	15169	GOOGLEUS	false
172.253.124.113	unknown	United States	15169	GOOGLEUS	false
172.253.124.84	accounts.google.com	United States	15169	GOOGLEUS	false
64.233.185.157	googleads.g.doubleclick.net	United States	15169	GOOGLEUS	false
142.251.15.156	adclick.g.doubleclick.net	United States	15169	GOOGLEUS	false
239.255.255.250	unknown	Reserved	unknown	unknown	false
142.251.15.94	unknown	United States	15169	GOOGLEUS	false
142.251.15.106	unknown	United States	15169	GOOGLEUS	false
172.217.215.94	unknown	United States	15169	GOOGLEUS	false
74.125.138.95	unknown	United States	15169	GOOGLEUS	false
108.177.122.97	unknown	United States	15169	GOOGLEUS	false
108.177.122.147	unknown	United States	15169	GOOGLEUS	false
172.217.215.95	unknown	United States	15169	GOOGLEUS	false
108.177.122.113	unknown	United States	15169	GOOGLEUS	false

Private

IP
192.168.2.16

General Information

Joe Sandbox version:	39.0.0 Ruby
Analysis ID:	1383280
Start date and time:	2024-01-30 13:32:30 +01:00
Joe Sandbox product:	CloudBasic
Overall analysis duration:
Hypervisor based Inspection enabled:	false
Report type:	full
Cookbook file name:	defaultwindowsinteractivecookbook.jbs
Sample URL:	https://adclick.g.doubleclick.net/pcs/click?adurl=//higreens.co.in
Analysis system description:	Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
Number of analysed new started processes analysed:	7
Number of new started drivers analysed:	0
Number of existing processes analysed:	0
Number of existing drivers analysed:	0
Number of injected processes analysed:	0
Technologies:	EGA enabled
Analysis Mode:	stream
Analysis stop reason:	Timeout
Detection:	MAL
Classification:	mal56.win@17/241@26/230

Warnings

Exclude process from analysis (whitelisted): SIHClient.exe
Excluded IPs from analysis (whitelisted): 142.251.15.94, 34.104.35.123, 172.217.215.95
Excluded domains from analysis (whitelisted): fonts.googleapis.com, edgedl.me.gvt1.com, clientservices.googleapis.com
Not all processes where analyzed, report is missing behavior information

Created / dropped Files

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Tue Jan 30 11:33:01 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
Category:	dropped
Size (bytes):	2673
Entropy (8bit):	3.9826792016150034
Encrypted:	false
SSDEEP:
MD5:	E37F7659BEDCEF9087790754BAEEEE9B
SHA1:	220B5D7BF50DB6ED61943122D13281AB7144F51B
SHA-256:	28C7DB9C8917EDDBCB4ABBB057915A9BB8F9D10F6F0037DD7ECC7AB314B1543D
SHA-512:	EF6C525669AD6E8E908538F3E11AD57494961DDDCD0018AD3C0BCC30C8C907B7DD82F7067308E7A9EE30139200C74022B7F20D9E1CAB8C0D6C01103E085BA755
Malicious:	false
Reputation:	low
Preview:	L..................F.@.. ...$+.,.......vxS..N.Yr.... w......................1....P.O. .:i.....+00.../C:\.....................1.....FW.J..PROGRA~1..t......O.I>X.d....B...............J.........P.r.o.g.r.a.m. .F.i.l.e.s...@.s.h.e.l.l.3.2...d.l.l.,.-.2.1.7.8.1.....T.1.....CW.V..Google..>......CW.V>X.d....L.....................p+j.G.o.o.g.l.e.....T.1.....CW.V..Chrome..>......CW.V>X.d....M......................8..C.h.r.o.m.e.....`.1.....CW.V..APPLIC~1..H......CW.V>X.d..........................."&.A.p.p.l.i.c.a.t.i.o.n.....n.2. w..;W.+ .CHROME~1.EXE..R......CW.V>X!d...........................H..c.h.r.o.m.e._.p.r.o.x.y...e.x.e.......j...............-.......i...........&L.s.....C:\Program Files\Google\Chrome\Application\chrome_proxy.exe..S.....\.....\.....\.....\.....\.....\.....\.....\.....\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.\.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.*.C.:.\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.F

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Tue Jan 30 11:33:00 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
Category:	dropped
Size (bytes):	2675
Entropy (8bit):	3.9965150225802786
Encrypted:	false
SSDEEP:
MD5:	5C5F733D03876D4DDAB606D3D883C914
SHA1:	AEF5C5C7BB256DB2E296339B3F3DFF709F5C0712
SHA-256:	5C406FB16471A37CE447A0648978DF61243FE639A4EC5EB314734AC7860E7EB9
SHA-512:	8105D73A72B42679670FF7C5680FC4D5B038A2EE977D149A0881830A3E5128A306F5AF4A09A55B7D71E160408A8C141CF30187DFD1397E9EE61145898A844618
Malicious:	false
Reputation:	low
Preview:	L..................F.@.. ...$+.,......tvxS..N.Yr.... w......................1....P.O. .:i.....+00.../C:\.....................1.....FW.J..PROGRA~1..t......O.I>X.d....B...............J.........P.r.o.g.r.a.m. .F.i.l.e.s...@.s.h.e.l.l.3.2...d.l.l.,.-.2.1.7.8.1.....T.1.....CW.V..Google..>......CW.V>X.d....L.....................p+j.G.o.o.g.l.e.....T.1.....CW.V..Chrome..>......CW.V>X.d....M......................8..C.h.r.o.m.e.....`.1.....CW.V..APPLIC~1..H......CW.V>X.d..........................."&.A.p.p.l.i.c.a.t.i.o.n.....n.2. w..;W.+ .CHROME~1.EXE..R......CW.V>X!d...........................H..c.h.r.o.m.e._.p.r.o.x.y...e.x.e.......j...............-.......i...........&L.s.....C:\Program Files\Google\Chrome\Application\chrome_proxy.exe..S.....\.....\.....\.....\.....\.....\.....\.....\.....\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.\.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.*.C.:.\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.F

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Oct 6 08:05:01 2023, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
Category:	dropped
Size (bytes):	2689
Entropy (8bit):	4.005590045409235
Encrypted:	false
SSDEEP:
MD5:	0FAFDEEFBBD7E2E3AA2791B30B2CFFE6
SHA1:	701C3A5F3BCB8D1C115369E3E972B3D7C6B10DFB
SHA-256:	18169C24A008916A956953D75789CE1CE435DAE38FBC6AA80931CDC804E6A9AE
SHA-512:	95437FE7409AFA5781BB42A34E32938E04549DA070675E8451A468F32C92E6806B68BAC66D76BA320C2723AE23CE1D3113B281C8A66E53299D5AD155848E7A4C
Malicious:	false
Reputation:	low
Preview:	L..................F.@.. ...$+.,.....Y.04...N.Yr.... w......................1....P.O. .:i.....+00.../C:\.....................1.....FW.J..PROGRA~1..t......O.I>X.d....B...............J.........P.r.o.g.r.a.m. .F.i.l.e.s...@.s.h.e.l.l.3.2...d.l.l.,.-.2.1.7.8.1.....T.1.....CW.V..Google..>......CW.V>X.d....L.....................p+j.G.o.o.g.l.e.....T.1.....CW.V..Chrome..>......CW.V>X.d....M......................8..C.h.r.o.m.e.....`.1.....CW.V..APPLIC~1..H......CW.V>X.d..........................."&.A.p.p.l.i.c.a.t.i.o.n.....n.2. w..;W.+ .CHROME~1.EXE..R......CW.VFW.E...........................H..c.h.r.o.m.e._.p.r.o.x.y...e.x.e.......j...............-.......i...........&L.s.....C:\Program Files\Google\Chrome\Application\chrome_proxy.exe..S.....\.....\.....\.....\.....\.....\.....\.....\.....\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.\.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.*.C.:.\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.F

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Tue Jan 30 11:33:00 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
Category:	dropped
Size (bytes):	2677
Entropy (8bit):	3.995091657653036
Encrypted:	false
SSDEEP:
MD5:	01D12E582CFF7BD1000465DF50266804
SHA1:	9C8B0950F514CDC004A6E54ECF53BBF581EEE884
SHA-256:	43C602CCCE84EC49EDE2F8C2BB72DC9D64792AC62F3C710AE4BBD67755B38F52
SHA-512:	4603997E49ADC46AF846A6A3E5ACE0FDE264004D7C5150887485A64D1CC98F81D654C82C5576313C0673B6DA9CFC663854B5C8699DB9C41317B4B138ED3F6E3E
Malicious:	false
Reputation:	low
Preview:	L..................F.@.. ...$+.,......nvxS..N.Yr.... w......................1....P.O. .:i.....+00.../C:\.....................1.....FW.J..PROGRA~1..t......O.I>X.d....B...............J.........P.r.o.g.r.a.m. .F.i.l.e.s...@.s.h.e.l.l.3.2...d.l.l.,.-.2.1.7.8.1.....T.1.....CW.V..Google..>......CW.V>X.d....L.....................p+j.G.o.o.g.l.e.....T.1.....CW.V..Chrome..>......CW.V>X.d....M......................8..C.h.r.o.m.e.....`.1.....CW.V..APPLIC~1..H......CW.V>X.d..........................."&.A.p.p.l.i.c.a.t.i.o.n.....n.2. w..;W.+ .CHROME~1.EXE..R......CW.V>X!d...........................H..c.h.r.o.m.e._.p.r.o.x.y...e.x.e.......j...............-.......i...........&L.s.....C:\Program Files\Google\Chrome\Application\chrome_proxy.exe..S.....\.....\.....\.....\.....\.....\.....\.....\.....\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.\.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.*.C.:.\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.F

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Tue Jan 30 11:33:00 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
Category:	dropped
Size (bytes):	2677
Entropy (8bit):	3.984132045030269
Encrypted:	false
SSDEEP:
MD5:	C3400C471B4BA30FFA17D1CEE4FF64AF
SHA1:	5B5023E2C255749B2F8B70C9A00C9CBA89BB09B4
SHA-256:	C21E6D36E9E2B5609C45CFA179FDA1E29BA85211AA1C1B3F8F0A27D2251AF2A6
SHA-512:	A60C633CBAA983CED2322D1D41BE9FDCB376A973D4D22A59EDFF313D80F2BBD1839B212FDB8F19155C9DE18074F6A5CE7C5C7EBF10D961FB07290C7DBAA487E8
Malicious:	false
Reputation:	low
Preview:	L..................F.@.. ...$+.,.....bzvxS..N.Yr.... w......................1....P.O. .:i.....+00.../C:\.....................1.....FW.J..PROGRA~1..t......O.I>X.d....B...............J.........P.r.o.g.r.a.m. .F.i.l.e.s...@.s.h.e.l.l.3.2...d.l.l.,.-.2.1.7.8.1.....T.1.....CW.V..Google..>......CW.V>X.d....L.....................p+j.G.o.o.g.l.e.....T.1.....CW.V..Chrome..>......CW.V>X.d....M......................8..C.h.r.o.m.e.....`.1.....CW.V..APPLIC~1..H......CW.V>X.d..........................."&.A.p.p.l.i.c.a.t.i.o.n.....n.2. w..;W.+ .CHROME~1.EXE..R......CW.V>X!d...........................H..c.h.r.o.m.e._.p.r.o.x.y...e.x.e.......j...............-.......i...........&L.s.....C:\Program Files\Google\Chrome\Application\chrome_proxy.exe..S.....\.....\.....\.....\.....\.....\.....\.....\.....\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.\.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.*.C.:.\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.F

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Tue Jan 30 11:33:00 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
Category:	dropped
Size (bytes):	2679
Entropy (8bit):	3.992926106942437
Encrypted:	false
SSDEEP:
MD5:	020E3C32F464751718F517C06C7ABD39
SHA1:	E959878A71EB47D8FE995235F516B2C60866FC06
SHA-256:	63C69571DE3787BAEE3C91795EB1C1E6E9065F9A8299394E100F1C27017C233A
SHA-512:	AC545497FA4DD5174C31C8150901701C590660DD5869A73D15DFA47FDB8A15F702D3D6EA2CACB7882A10A7AB8150629108D4C0CA90841113A675E68DC3FE1D79
Malicious:	false
Reputation:	low
Preview:	L..................F.@.. ...$+.,....A.bvxS..N.Yr.... w......................1....P.O. .:i.....+00.../C:\.....................1.....FW.J..PROGRA~1..t......O.I>X.d....B...............J.........P.r.o.g.r.a.m. .F.i.l.e.s...@.s.h.e.l.l.3.2...d.l.l.,.-.2.1.7.8.1.....T.1.....CW.V..Google..>......CW.V>X.d....L.....................p+j.G.o.o.g.l.e.....T.1.....CW.V..Chrome..>......CW.V>X.d....M......................8..C.h.r.o.m.e.....`.1.....CW.V..APPLIC~1..H......CW.V>X.d..........................."&.A.p.p.l.i.c.a.t.i.o.n.....n.2. w..;W.+ .CHROME~1.EXE..R......CW.V>X!d...........................H..c.h.r.o.m.e._.p.r.o.x.y...e.x.e.......j...............-.......i...........&L.s.....C:\Program Files\Google\Chrome\Application\chrome_proxy.exe..S.....\.....\.....\.....\.....\.....\.....\.....\.....\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.\.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.*.C.:.\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.F

Chrome Cache Entry: 140

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	PNG image data, 1279 x 529, 8-bit/color RGBA, non-interlaced
Category:	dropped
Size (bytes):	590973
Entropy (8bit):	7.968513230899367
Encrypted:	false
SSDEEP:
MD5:	E316F1BBDB1B90171CD9A9DE84058E0B
SHA1:	B3E7DD33CB559058850F5B44344962FDF097BD3D
SHA-256:	91E0F3A6A42FC7E193966646DD9350249BD948A51B52157DE6C7DB6AF5D8651A
SHA-512:	D81C843323BC3CFBB60E8330E191B883B46A5E741270BB3B73215A4144575C26C699C78FF2D6971CE433BB56EFDC7A7F2B61964E1F1AA1101FE65A13123655B1
Malicious:	false
Reputation:	low
Preview:	.PNG........IHDR.............5.......sRGB.........gAMA......a.....pHYs..........o.d....IDATx^..e..................?s1.J....,...............9.a.......R.R.Q......n...[..]*a..X>........jbU....@.xP.....i...[`..X9..V........\|Tc,.i.5.c..X5...7....w=....6..Q..fdK..V.PZ..8..`....<..6Nh..#.c..6.0.-.O..4~...:...n..N.....>..v.l..S[`...9..6Mm...Zb...>...Oj.].:a....9.#v..=....8......&..N... ...}4l..........t[.8Z.6X6.!6.:....=.O.=..]ptq..]...3zb....M.cZ'._:..6..m.p.....7[p..\<<<........qm.l.;....-.3k...f$^....vs/......p.0^..g.v ..~._..k[..u..l&6.[..c/...D..c.zr.y.. ...$=9.....w.9.W...<R./"5...b.#9."2.n........p..)O....b..A...yx....!..q.>=......r....t..........XXR^....KV...d.....K...\|w&.$.f.....=..W:....:s....x...?.AA..._.Q@....B.._~>\~?../.g .._@....xM=...P....v.. @].....B.i9..../%N.s7....L.....4. .K..i..(.jpz~..F{...i..<..M.z.x.~...}x.........,......O.h;.<.E..<.4/..=._84.k.-.N..E?i...Zw.m....S....B.F.S?O......L?.ry.qZ.8.../.m.7....%.Qp..J../....x}...

Chrome Cache Entry: 141

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 400x284, components 3
Category:	downloaded
Size (bytes):	27128
Entropy (8bit):	7.971989459197389
Encrypted:	false
SSDEEP:
MD5:	C38E7D794186C7A830893DB5EEBDB2D3
SHA1:	6FC3278A470DFF66F6B6F7FFEA66EA78AAFF22AC
SHA-256:	2DDD2C5BB911D2AA076F2FE038352D447DA2FC954F0A117168DCB3F305AEFCE7
SHA-512:	4C6519B410C97058A58B40AC3ABF268FCF0D99A4D35FB4E1D2145A7B1E677A474C9420124C2EAEF83B5B8EF08387261F6A65F30A9CFA5029411CE9CA4F4CDFE9
Malicious:	false
Reputation:	low
URL:	https://higreens.co.in/wp-content/uploads/2020/09/pic12-400x284.jpg
Preview:	......JFIF.....`.`.....;CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82....C.....................................!........'.."#%%%..),($+!$%$...C...........$...$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$..........."............................................................}........!1A..Qa."q.2....#B...R..$3br........%&'()456789:CDEFGHIJSTUVWXYZcdefghijstuvwxyz..............................................................................................................................w.......!1..AQ.aq."2...B.....#3R..br...$4.%.....&'()56789:CDEFGHIJSTUVWXYZcdefghijstuvwxyz....................................................................................?..B.q?......(./m?.n#.#.@......\|0oe.4.,c.AC"...=+....Z....]...ibc.....h.W...z.... ]N.........e.....e~.....j..."@8..Um.m. ;2..k..t(....\F..0p.(A..}..^...\...h....u5VR:....A$..B..~.a...SCN.-L+.Oja.1.R`S...L..(..ZU..q..HEJ.5.;.b....FER%. .M>.j..E...CM.8..j.P)..@+D!...c.6?.......Z...X...s.....B.6)B.N.9E

Chrome Cache Entry: 142

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (1284), with no line terminators
Category:	downloaded
Size (bytes):	1284
Entropy (8bit):	5.799570066513829
Encrypted:	false
SSDEEP:
MD5:	A8D18B79E04EBA0A9A8A1D372FE36BCA
SHA1:	264CC6EC27FEA50D05CD1FEE3BDC52D3800DE365
SHA-256:	1AAC0B8AD93FEFB0C22F13967252AB58FFEA1C20DCF77A29BDEFD59BEAF38C88
SHA-512:	32D348E44BB3CFC059EB544D8FDBD623E77746CE2EFAC100EEFCC0B9F0C84A93E6E7238581EC0796C108DC18B70FB60DAB5D09AD0B79B712B354765126F0EAD7
Malicious:	false
Reputation:	low
URL:	https://www.google.com/recaptcha/api.js?onload=cf7srLoadCallback&render=explicit
Preview:	/* PLEASE DO NOT COPY AND PASTE THIS CODE. */(function(){var w=window,C='___grecaptcha_cfg',cfg=w[C]=w[C]\|\|{},N='grecaptcha';var gr=w[N]=w[N]\|\|{};gr.ready=gr.ready\|\|function(f){(cfg['fns']=cfg['fns']\|\|[]).push(f);};w['__recaptcha_api']='https://www.google.com/recaptcha/api2/';(cfg['render']=cfg['render']\|\|[]).push('explicit');(cfg['onload']=cfg['onload']\|\|[]).push('cf7srLoadCallback');w['__google_recaptcha_client']=true;var d=document,po=d.createElement('script');po.type='text/javascript';po.async=true;var m=d.createElement('meta');m.httpEquiv='origin-trial';m.content='Az520Inasey3TAyqLyojQa8MnmCALSEU29yQFW8dePZ7xQTvSt73pHazLFTK5f7SyLUJSo2uKLesEtEa9aUYcgMAAACPeyJvcmlnaW4iOiJodHRwczovL2dvb2dsZS5jb206NDQzIiwiZmVhdHVyZSI6IkRpc2FibGVUaGlyZFBhcnR5U3RvcmFnZVBhcnRpdGlvbmluZyIsImV4cGlyeSI6MTcyNTQwNzk5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=';d.head.prepend(m);po.src='https://www.gstatic.com/recaptcha/releases/QUpyTKFkX5CIV6EF8TFSWEif/recaptcha__en.js';po.crossOrigin='anonymous'

Chrome Cache Entry: 145

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	PNG image data, 330 x 231, 8-bit/color RGBA, non-interlaced
Category:	dropped
Size (bytes):	208172
Entropy (8bit):	7.986916896366103
Encrypted:	false
SSDEEP:
MD5:	EEC0D2D1973D1BBB0082761BF69057CD
SHA1:	8B89D94DCAEF44CE9EA3C9866018F0DAA9BD1493
SHA-256:	5FF63D31DF4A4B43A3638EBA43FD06F2E924438AD8EBE5EB663980F8B8319394
SHA-512:	1EFDEAE95995A9AC61A182B6383E3DE251D2EF432DA9D2BBA9E314FEB45B569633AC999F31FB2AD2FF305E7A6C553D537C6F51F7F4099448E0C92507CC5B6ACD
Malicious:	false
Reputation:	low
Preview:	.PNG........IHDR...J.........x.......sRGB.........gAMA......a.....pHYs..........o.d....IDATx^......Y...q.]Ui...{...\.}e....-/...-...'. ...@...6 ..B.Vw..no...0.....3./.5F...f..x.9#.x.....................e1oG..@......\|........(7.(T\|.L.8<Ja. .\3.L3.L#.T-...........YK..K.8.....N..........DM....le....d..l#.N;.f...?.'.)...[.....c..............a...........3..e.OX.M...8`qY.I{......H.........8..es..p....<X..h_..m..N..=.,8,.`Y..~...b.......c.......(.. ..........q`...vb.n.y..//.s..v..8......6>.....s\......2.n..O.i..[../...Z.....X...wp...N....x.v..=.....T....@,...y`..5.\|..e,....9<6^/>..<.......{V.....%.C..Bs.E..@.cG.hA{..h.C:.A..F.....![...ZD.........c/...}......"hu...BH..6...VP(.y[6...X....m.P.ZPhY.\v4G\|.=..\|..............A.ww..7.'..+..+..#..5..5..5..5..=S.#[.-S.#W.....%.\.;.p9.P9._>..O.Y......G.h..z..Q... .C'..U.3.....H...6x.V.S.Yv.......8.V...WVVM?..=H...,..,....k....3.mU.u.......0.C......{.`!.D9.Z/.X1.D%.r7..8..$..Z..*....8la.m..n........e

Chrome Cache Entry: 146

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	PNG image data, 45 x 45, 8-bit/color RGBA, non-interlaced
Category:	downloaded
Size (bytes):	1508
Entropy (8bit):	7.8107741940069015
Encrypted:	false
SSDEEP:
MD5:	6523D000809E7A8059BFFFE38BE3B529
SHA1:	711938C84225C2F44575919EF5531C6EE7257DF6
SHA-256:	BB3AECD644DCBF8CF8557911C27689F489EEAC9C00C3001E35BC41E0B8702B63
SHA-512:	88F546BCC155FBF8E62A65F4E827E398511BE2C62C8E46F5E8EF9CC9FB5314D901B23E05047C7F9A4B5A82172DB31A19D23C4AEAE72F3D9615485CAB5561FF5A
Malicious:	false
Reputation:	low
URL:	https://higreens.co.in/wp-content/uploads/2020/09/foods.png
Preview:	.PNG........IHDR...-...-.....:......sRGB.........gAMA......a.....pHYs..........o.d...yIDAThC..S.I......n....}_.#{d..D].F...D.D.B.AA..m...D.ef...Uu.....;.7.5DWH..G...Yb....A.J{...>N'd..:v..V.;.&}V)..O...}. ...d..t..j.Dj.gvF...4D......IBC..........H...l..-Y..Z.VG.x.kgw..IW...$.e.....7^.fH.If{I...flHv'$..$.....o..;.<.......O.O.)...W.k._Izs^........^D6f.......I.....4...j...Iu:....uv{..Y......f..O>...>..U...F..c.<..,.i.pc.J..J.\|`e.cY1.E4.h91..~4>...Ofr...'f...U+.....e%.<.....m..G....gAQ..dm.K.....H.j.u...R.)....V.48P..#...%.........A..j..^....Z.B9.Au..?3.D.8...k.Q.n.#.Y@.P9........Y.......0o...N.c...c+.&.l=)ys.o+.-0;b6Y.8..M..^.F&..Jz.......r..tF.4....12[.R.d.t\|...7HN\|.z.+.H..u.l.....y`>..G......M...h2......]:B......q...^.D.uA.t*6)[..J...n->...#..Y0..X...{d...s..Tn..,Z.......j..... .US.R....B...2....fP[#k.i....YJ[dnn..lM.=.......+d_.3...&....H"..6.....Ms. ..&^...\...b....-.H.E........g.k.=.?W.....&T.......i.@.d...o.O.X1Z_..V?..^N..

Chrome Cache Entry: 147

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	PNG image data, 45 x 45, 8-bit/color RGBA, non-interlaced
Category:	dropped
Size (bytes):	764
Entropy (8bit):	7.589462934013014
Encrypted:	false
SSDEEP:
MD5:	C83CF2AB8AFC9EE11D9EA92E12A67589
SHA1:	71EF23F7D3B1B530494DACBE133A0B9194316A50
SHA-256:	B1B627FE5E5756EE1829D30D5948E3EE5E9D5E23083D372007B597FA694AD193
SHA-512:	70742E3F5E82C06B857C9551E943CA77FA6093AE7E68BA22D9743A34395CAD312BFA538636F723E955CB55668A5B7C257F670CDD855D2AF4DA8F544CBAE277BC
Malicious:	false
Reputation:	low
Preview:	.PNG........IHDR...-...-.....:......sRGB.........gAMA......a.....pHYs..........o.d....IDAThC.o.A.....h.g<..5j.jii-T...w..,..@.f.9.u....BG..K...............%.Z.\hYr.m....bP..C%.n....W.Q.5....GhT.<.\...~...^Ch...q..4..o.Gu5..OW.."<..oa_..K.U.yx...<...M:.y.C........+t..~..[O.......}...=.yc..v../P.^NQ....X..}..U....f.O..lC.z-6....U+.(...B..k\:......-.......}9.n.....b..5...Gf......I.7..Z.,A%.g...?.-..:.r.}R..t&..v._Z..$.n....<:..<...Q;\|.Yj*.J6@..Y..Q.._@.w.%.m~.ltjk..;.G...0...s...1.'.H.Z./.-...\|Z!B;..\|j...>~..}U.X%.-..-V;\$._?.4j.GU+.i..{.....K..?....>.E,..X..Z........J..H..`'u..U.d.../...X.X...V]..mV..zo...],Kh........6m[...R3..)D=4.fI:K+...B,K...Ca.2.B..-...,......`.u(.{...B,Kh,#1E..;...Y..,...B........?...].....IEND.B`.

Chrome Cache Entry: 149

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	Web Open Font Format (Version 2), TrueType, length 15344, version 1.0
Category:	downloaded
Size (bytes):	15344
Entropy (8bit):	7.984625225844861
Encrypted:	false
SSDEEP:
MD5:	5D4AEB4E5F5EF754E307D7FFAEF688BD
SHA1:	06DB651CDF354C64A7383EA9C77024EF4FB4CEF8
SHA-256:	3E253B66056519AA065B00A453BAC37AC5ED8F3E6FE7B542E93A9DCDCC11D0BC
SHA-512:	7EB7C301DF79D35A6A521FAE9D3DCCC0A695D3480B4D34C7D262DD0C67ABEC8437ED40E2920625E98AAEAFBA1D908DEC69C3B07494EC7C29307DE49E91C2EF48
Malicious:	false
Reputation:	low
URL:	https://fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
Preview:	wOF2......;........H..;..........................d..@..J.`..L.T..<.....x.....^...x.6.$..6. ..t. ..I.h\|.l....A....b6........(......@e.]...:..-.0..r.)..hS..h...N.).D.........b.].......^..t?.m{...."84...9......c...?..r3o....}...S]....zbO.../z..{.....~cc....I...#.G.D....#e.A..b...b`a5P.4........M....v4..fI#X.z,.,...=avy..F.a.\9.P\|.[....r.Q@M.I.._.9..V..Q..]......[ {u..L@...]..K......]C....l$.Z.Z...Zs.4........ x.........F.?.7N..].\|.wb\....Z{1L#..t....0.dM...$JV...{..oX...i....6.v.~......)\|.TtAP&).KQ.]y........'...:.d..+..d..."C.h..p.2.M..e,.UP..@.q..7..D.@...,......B.n. r&.......F!.....\...;R.?-.i...,7..cb../I...Eg...!X.)5.Aj7...Ok..l7.j.A@B`".}.w.m..R.9..T.X.X.d....S..`XI..1... .$C.H.,.\. ..A(.AZ.................`Wr.0]y..-..K.1.............1.tBs..n.0...9.F[b.3x...$....T..PM.Z-.N.rS?I.<8eR'.3..27..?;..OLf.Rj.@.o.W...........j~ATA....vX.N:.3dM.r.)Q.B...4i.f..K.l..s....e.U.2...k..a.GO.}..../.'..%$..ed..'..qP....M..j....../.z&.=...q<....-..?.A.%..K..

Chrome Cache Entry: 151

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 634x500, components 3
Category:	dropped
Size (bytes):	443151
Entropy (8bit):	7.9791237674266045
Encrypted:	false
SSDEEP:
MD5:	74E8EBEAED2B76827F42D4881D4F127A
SHA1:	931944C729DC5AFE6BD3A69D634A33E333FED798
SHA-256:	2A3DFAC07AB753CD211C7751BB96EC7D5533C4A61CC07FAF0140C1DD7A26369E
SHA-512:	4BAAF7DDB9E0B79515370D5CCF18FC249DB4F9F093A67E0E05A071D7A2E81BF1C725C4AEBEEC48A8470F1C5531033238244453BAD9E8D785F1F39AA1F82294E5
Malicious:	false
Reputation:	low
Preview:	......Exif..II*.................Ducky.......d.....+http://ns.adobe.com/xap/1.0/.<?xpacket begin="." id="W5M0MpCehiHzreSzNTczkc9d"?> <x:xmpmeta xmlns:x="adobe:ns:meta/" x:xmptk="Adobe XMP Core 5.3-c011 66.145661, 2012/02/06-14:56:27 "> <rdf:RDF xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#"> <rdf:Description rdf:about="" xmlns:xmp="http://ns.adobe.com/xap/1.0/" xmlns:xmpMM="http://ns.adobe.com/xap/1.0/mm/" xmlns:stRef="http://ns.adobe.com/xap/1.0/sType/ResourceRef#" xmp:CreatorTool="Adobe Photoshop CS6 (Windows)" xmpMM:InstanceID="xmp.iid:BD5ED52902F511EBAB4AE2D744112781" xmpMM:DocumentID="xmp.did:BD5ED52A02F511EBAB4AE2D744112781"> <xmpMM:DerivedFrom stRef:instanceID="xmp.iid:BD5ED52702F511EBAB4AE2D744112781" stRef:documentID="xmp.did:BD5ED52802F511EBAB4AE2D744112781"/> </rdf:Description> </rdf:RDF> </x:xmpmeta> <?xpacket end="r"?>....Adobe.d.................................................................................................................................

Chrome Cache Entry: 152

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with no line terminators
Category:	downloaded
Size (bytes):	102
Entropy (8bit):	4.968214067862394
Encrypted:	false
SSDEEP:
MD5:	2D457F9AE6C3F872F7B68F869E7670EA
SHA1:	681E579199B4D94BD144CE0A8E6E1AFA757B7089
SHA-256:	7D61C6329C5EEA651D09E2F4D8F5533751B47D90AF6E75C0DB658FF1C84712CE
SHA-512:	01B95615365082CD06E515E645FCBDFF1E44AC23FB08BC4D2CE69261332ADE937AD23D5C2B48354E00ABF9F440475CFC13DF23682CBE1C6CA424206B64082CAE
Malicious:	false
Reputation:	low
URL:	https://www.google.com/recaptcha/api2/webworker.js?hl=en&v=QUpyTKFkX5CIV6EF8TFSWEif
Preview:	importScripts('https://www.gstatic.com/recaptcha/releases/QUpyTKFkX5CIV6EF8TFSWEif/recaptcha__en.js');

Chrome Cache Entry: 154

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	gzip compressed data, from Unix, original size modulo 2^32 4247
Category:	downloaded
Size (bytes):	1429
Entropy (8bit):	7.8560179162339425
Encrypted:	false
SSDEEP:
MD5:	5F23B45767B0E56767265CC4A350FC04
SHA1:	486A1DE2C7CDBF7583DD6E319510B5BE96B950C0
SHA-256:	A04B128885866B96347E1883862122473E4831C97B2CFF234B6348C91C72AD5C
SHA-512:	FDDDA71682E7D2E9FDBD5132BC26DD08FD7EE195C4BCB6B2722D94BDDE3B6095BE6BF17BCD81956A263B433F7408E3291DB5874A6EC44D385BC007C7E463C784
Malicious:	false
Reputation:	low
URL:	https://higreens.co.in/wp-content/themes/Divi%20-%20Child/style.css?ver=1.0.0
Preview:	...........R]o.6.}.~.. @.D../7..tX..=..^.J...P$GR....}.....6....y/.=..3..._54@...d.....'..\...........6.N..e..*..-6)T3...`.S...\|.[...W2...q#.k.je.6~...}.....G..hA...~`D..c....%i.F.H..M/./..Ek.j......q..` ...#8.yIG.g.R...D+..?...a.".uFJ....j..32K...3R..:.` ]F....9.%..{...R.eFj..pK..d..46#.....m...4.A..6........26...g.W..!G.....yW.V0J...\..J..+....[.t....IA.+j...l..1..X@.L....y.>.{.$^.....:C..vT(...~.N..+....~.j.."^r..rpw...JZ.U.t....n..p..N..O..B.e2r..)y........se..L.;.C..D.=..+......].vV...........strh...\|.&....2..,.......'.V.F.Jf.....a....Vp...X..O.\|e......$....".....}!../.%....;_%t.\M......]@.w`u..?0x,G..n.....<H..Y....H..C..S..X..@.*.9o...gW)ft.X....B..3..md....!.....0n5..H) ..O..46#C.\|.sk./.C..7...4...`...x.v..bx._5..#.:x.QsN..i..n........B-3Rs.@>.E./....)..kv.^........@....5...2.6..ceT+YFL...\_...Kr..i2.t.=${.}.k}.......v....y...<.UN{........K...xv...O.x..VZp!....a,f...Y..l.d..rN.eb1:....X.pv.Z.[.x..00.6.LFNY...&.x..qT.._37tv.55~..[S..0

Chrome Cache Entry: 155

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	PNG image data, 81 x 14, 8-bit/color RGBA, non-interlaced
Category:	dropped
Size (bytes):	512
Entropy (8bit):	7.405579984662029
Encrypted:	false
SSDEEP:
MD5:	14E1F2BF3F3880BB587EEBD026E6D2E3
SHA1:	751DF4513A624151D407439E7E11D5B12671C31E
SHA-256:	B0FD5EA8FA478F0A9153355B992DCEF4EC2A95C937CE74ABC8E0F81E823B73F4
SHA-512:	87E07A60428BF9227904AAAE1CF069311CE5A1829B1B5EF87C42274DCE110E53EFCFFC7F6126AD3102599295AED7EE8AC4CDB1CA26F1B74B590E87A035F434A9
Malicious:	false
Reputation:	low
Preview:	.PNG........IHDR...Q.........WW......sRGB.........gAMA......a.....pHYs..........o.d....IDATXG.;O.0.F..#.l.........R$.Z@.QP+.....t...q..6B"g.\..........h.g.S9.]....\|...n<M.r..(..\|...Po.....-.H..'2L....\n.l..:.f.r.[...../.......jQ.z.d.>...m..F8..Q...A.b.dk.6...o.r......}...C6.([34A$j.h.F..A!....C{.GH1..^.)G,.B.m}_.%.....A....`..s.]..:.m.&..."4..VOW..z]..........<].q......T....m.........F..5b{.uM.u.z.W..u.......<6...K....8c.[.....X..$.D.q...QY.]....Yu..&...D'...O/.VsU..-....IEND.B`.

Chrome Cache Entry: 157

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 698x699, components 3
Category:	downloaded
Size (bytes):	232715
Entropy (8bit):	7.979959445156422
Encrypted:	false
SSDEEP:
MD5:	F070B94AA7684B5D3B499D4358371C9A
SHA1:	582352B24D4F544F6EA954F94F04A07BEEF61401
SHA-256:	C4828A60AE9435B60551C250CD10EF6D9FE5CEEBE2D6E86034818A4DFD326769
SHA-512:	433A274F1D7C30AC1280031C03DC995B2417724341C1C62A5BFEE7A29F153C16C1BA4242A10A46B3C5492F3F3C957AA0406FF677AF1FD69120D22DE12B8A2408
Malicious:	false
Reputation:	low
URL:	https://higreens.co.in/wp-content/uploads/2020/09/map.jpg
Preview:	......Exif..II*.................Ducky.......d.....+http://ns.adobe.com/xap/1.0/.<?xpacket begin="." id="W5M0MpCehiHzreSzNTczkc9d"?> <x:xmpmeta xmlns:x="adobe:ns:meta/" x:xmptk="Adobe XMP Core 5.3-c011 66.145661, 2012/02/06-14:56:27 "> <rdf:RDF xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#"> <rdf:Description rdf:about="" xmlns:xmp="http://ns.adobe.com/xap/1.0/" xmlns:xmpMM="http://ns.adobe.com/xap/1.0/mm/" xmlns:stRef="http://ns.adobe.com/xap/1.0/sType/ResourceRef#" xmp:CreatorTool="Adobe Photoshop CS6 (Windows)" xmpMM:InstanceID="xmp.iid:BD721E17024D11EB83119B5A88DD5D5D" xmpMM:DocumentID="xmp.did:BD721E18024D11EB83119B5A88DD5D5D"> <xmpMM:DerivedFrom stRef:instanceID="xmp.iid:BD721E15024D11EB83119B5A88DD5D5D" stRef:documentID="xmp.did:BD721E16024D11EB83119B5A88DD5D5D"/> </rdf:Description> </rdf:RDF> </x:xmpmeta> <?xpacket end="r"?>....Adobe.d.................................................................................................................................

Chrome Cache Entry: 158

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	PNG image data, 46 x 41, 8-bit/color RGBA, non-interlaced
Category:	dropped
Size (bytes):	832
Entropy (8bit):	7.648813925238097
Encrypted:	false
SSDEEP:
MD5:	5C5C9AC8FAD2110A9F504CF99622F352
SHA1:	96AE3EF4443AECC88A97CE112C5A1287A974DDD0
SHA-256:	6D1615FC7721FEB085D45DBB0C87CC21A950D41B09A10C9DBDA2A1527C37D812
SHA-512:	DD9A9AD892BF2A3A0ED0BBDFC4D82D8EA5A54D85F9621143BFDA9307057259F5350409FF15EBBBE2B20F760A68B5507154493EF094BE59521BF6366F7A204651
Malicious:	false
Reputation:	low
Preview:	.PNG........IHDR.......).....J.......sRGB.........gAMA......a.....pHYs..........o.d....IDATXG.ORQ......c.Xi..s..j.9.+MI.X.....@%. .A.DO.{.o.....o5>.....w.{.S.2..o.....#.V)Rd.-..........o..Txtz...\l.....^....e.MwQ....g<........$.....lOm.7OG.M.Y.....+..-5.KK....r...m.?.u&>..G.....V...p. ::..AY.A.B.a../P...^.Krm...Q...s..C=TH...y...+......x6...t..pd..@.{.}.....~Ix.h.G.....M..].u...<.t...^....u..d.itJQK8.......8.2..lM.D...<+h[N..Fm..Mm.?.s\8....?..tB[8.Cl.+.[...v.RM...Z.@.wW.+.D;.tI2....Z%.-.YF...i...eN.m....Q2.L....fY?l.E......!t..0.n..;,C.../F...S......cO......(..we....Yt0.....[:B...Y.n..w.Hx).#.7...t.\...5...R.U....:$g..GE...._...@..Wx...\|c#{.......F... ...~.!^..........Y..n$<......Z.'......x.n..);...3.......]ez......O.w..xK\|KN7gOb$.....>...Q.\|\..=..1..6...f .....kqW..am-....IEND.B`.

Chrome Cache Entry: 159

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 400x284, components 3
Category:	dropped
Size (bytes):	38425
Entropy (8bit):	7.97336954927058
Encrypted:	false
SSDEEP:
MD5:	C5F3936EF80C420E4031012D52B32600
SHA1:	D071050891009D0C9BFDFA94797A215C5B2628E8
SHA-256:	7742045CC60A424B47965310DE0D40B86FE293B4C0606BADDE3393A4AD1BF56F
SHA-512:	B941C6B2D84A42B4030EDD53ECE00121066EE1C8921483FE676202A543778DAEBC3E246A739243700C8A222C3FC303713060B4DE8222C0D69A1E77C8CB6D4F16
Malicious:	false
Reputation:	low
Preview:	......JFIF.....`.`.....;CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82....C.....................................!........'.."#%%%..),($+!$%$...C...........$...$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$..........."............................................................}........!1A..Qa."q.2....#B...R..$3br........%&'()456789:CDEFGHIJSTUVWXYZcdefghijstuvwxyz..............................................................................................................................w.......!1..AQ.aq."2...B.....#3R..br...$4.%.....&'()56789:CDEFGHIJSTUVWXYZcdefghijstuvwxyz....................................................................................?....L..-................`.. ....u5f.nD+u}t.....=8....j)..c.M.p.s..q...........6..4.+.0.J.{c...b.Xn.F.$.'-...\.].@..G...\.$..H..@..k..++.dHc..?.v'..UNj.c..zh.g......R.I....c-.......'w..R:`..J._...)....9^.z..O2^....8>\..u......n.},X..o.xg.n.{.W#<.K;..I....2...bO..t56.+G...$.q.7....1Y.V...0.6_0..;@a.

Chrome Cache Entry: 160

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	HTML document, Unicode text, UTF-8 text, with very long lines (10750), with CRLF, LF line terminators
Category:	downloaded
Size (bytes):	130926
Entropy (8bit):	5.372583693329079
Encrypted:	false
SSDEEP:
MD5:	25F17F1148117B1310514028B97B32C5
SHA1:	FCBCEBEB630979E9093B202BC50B0199A8E1AF20
SHA-256:	A1C2507059C9748669DDAC5B4D5E3CF09D3696675D41B18284EFFD47D36482FA
SHA-512:	BB4C4B006AA78AA19FC1398DE1168EA7285354E4A241794DF72C749123AFFAD997A5723623DFB34F9F2EA01E928D7619382F62D28FEDE3B3F30051F9A7FFC7AD
Malicious:	false
Reputation:	low
URL:	https://higreens.co.in/
Preview:	<!DOCTYPE html>.<html lang="en-US">.<head>..<meta charset="UTF-8" />.<meta http-equiv="X-UA-Compatible" content="IE=edge">..<link rel="pingback" href="https://higreens.co.in/xmlrpc.php" />...<script type="text/javascript">...document.documentElement.className = 'js';..</script>....<title>Hi-Greens \| 3 BHK, 4 BHK, Luxury Apartments & Villas, Zirakpur Punjab</title>.<meta name='robots' content='noindex, nofollow' />.<link rel='dns-prefetch' href='//fonts.googleapis.com' />.<link rel="alternate" type="application/rss+xml" title="Hi-Greens » Feed" href="https://higreens.co.in/feed/" />.<link rel="alternate" type="application/rss+xml" title="Hi-Greens » Comments Feed" href="https://higreens.co.in/comments/feed/" />.<script type="text/javascript">./* <![CDATA[ */.window._wpemojiSettings = {"baseUrl":"https:\/\/s.w.org\/images\/core\/emoji\/14.0.0\/72x72\/","ext":".png","svgUrl":"https:\/\/s.w.org\/images\/core\/emoji\/14.0.0\/svg\/","svgExt":".svg","source":{"concatemoji":"ht

Chrome Cache Entry: 161

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 625x604, components 3
Category:	downloaded
Size (bytes):	529018
Entropy (8bit):	7.982851936775952
Encrypted:	false
SSDEEP:
MD5:	35B5FA8050DCB8900F0C3E7520D84586
SHA1:	CD9BD79707319996C92E5CEA53FDCF45F92B1E33
SHA-256:	CDC1CDC8F6842D5F367F3D2F9D3EBDF38F46FB5ABC86F4284B2891095A90F061
SHA-512:	9A924275ECA712FFBB1DC013489DBEB17ACF06B3E20EB88537DDE7ED49E03ACC40E6F4DD8032F38B22A0C6A84F49352AF580053FBFBA10195B1EA0DDAA77AC43
Malicious:	false
Reputation:	low
URL:	https://higreens.co.in/wp-content/uploads/2020/09/cont-1.jpg
Preview:	......Exif..II*.................Ducky.......d.....+http://ns.adobe.com/xap/1.0/.<?xpacket begin="." id="W5M0MpCehiHzreSzNTczkc9d"?> <x:xmpmeta xmlns:x="adobe:ns:meta/" x:xmptk="Adobe XMP Core 5.3-c011 66.145661, 2012/02/06-14:56:27 "> <rdf:RDF xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#"> <rdf:Description rdf:about="" xmlns:xmp="http://ns.adobe.com/xap/1.0/" xmlns:xmpMM="http://ns.adobe.com/xap/1.0/mm/" xmlns:stRef="http://ns.adobe.com/xap/1.0/sType/ResourceRef#" xmp:CreatorTool="Adobe Photoshop CS6 (Windows)" xmpMM:InstanceID="xmp.iid:A0B1D27D024B11EBB149F02ADFCD2158" xmpMM:DocumentID="xmp.did:A0B1D27E024B11EBB149F02ADFCD2158"> <xmpMM:DerivedFrom stRef:instanceID="xmp.iid:A0B1D27B024B11EBB149F02ADFCD2158" stRef:documentID="xmp.did:A0B1D27C024B11EBB149F02ADFCD2158"/> </rdf:Description> </rdf:RDF> </x:xmpmeta> <?xpacket end="r"?>....Adobe.d.................................................................................................................................

Chrome Cache Entry: 162

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	PNG image data, 329 x 231, 8-bit/color RGBA, non-interlaced
Category:	downloaded
Size (bytes):	199994
Entropy (8bit):	7.993387662454486
Encrypted:	true
SSDEEP:
MD5:	ACA518E15613088F7C0CE3A756A20E4B
SHA1:	4624197006CEF22998E0404C57287A350066B0C4
SHA-256:	F5242AE241AEDE6CF4D1E5518E4BBC409B3B525409B9000E5685EA74AC5548C5
SHA-512:	D882E7C5B731CE0D526027F066189CDB93FD473687C31E56214698E9919A1DC26968216A7327BBF1D87432E1145F18848EBFA83561267ACFBF8A1DC95879D04C
Malicious:	false
Reputation:	low
URL:	https://higreens.co.in/wp-content/uploads/2020/09/A1.png
Preview:	.PNG........IHDR...I...............sRGB.........gAMA......a.....pHYs..........o.d....IDATx^...XU...........aw..b ..6....]H.. ..]...... ..(......n.g?...]^.s...k.....c..OG..b..\.z.../J..Y..p.....$.......l.~....>b.d.G..D.g..;.=..b...1e...Z.....d.(4n....]t......q.V.Y.>..........o5j....:......z..n..0......\...[.a.......o?.~._..?.....{.......wG....,....Y.......6..9.\./.....C....).0}..,.?..F....).Gv~!.2s...{.?x..w.p..]\......`.......Va.. 8....Ps...\..,B..5....h.y...b..D..F..9.vY..cw.\|%.+/...L>,O...d..S.2......3..<[.....t...g?.i..L.....hg`.}..0....{.b.).]`.u.A.....W.v.....b.,.]..l..........".V>.cs.>6..n. "6....\|..q...]...bx.(...R.],.gs;s`~"....'..(.....g.5?.2....`s......'....K.)........2..V.+/Kq.M...!.]..^...Jq.).....G.b..l8q=.....F1\o..8...b>l......_.1.<......s$...y.Q.......Dr....O.......'...?[..,.Q.....r.....r>\..P.........k..\6V.:t..........1..V.W$....ox..<O...K..s1.~)..........\|.@V.WdS...((..._..y...(*....i>SR..W\...rd.r}._..W.T.]v.^e...K..S..

Chrome Cache Entry: 165

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 400x284, components 3
Category:	downloaded
Size (bytes):	21171
Entropy (8bit):	7.943049609450708
Encrypted:	false
SSDEEP:
MD5:	3B9DFBCFCAF2B94910F1EFCE1BB20AAB
SHA1:	CF2CB8CACC99C515EDFB554C8BD3BEC4E3E79E10
SHA-256:	50A9053851178E15320BE6F3C228E04AC7B8E7587944AD672DF05E43546769FE
SHA-512:	34A6FB4DC72A4387F6B6C39A3EBC10C119FEDF20C75D116E56DD3F3A877F40DCAD913BC1ED06442258ADC889AD40E9D866011FA012606B86238204AF7051FBD0
Malicious:	false
Reputation:	low
URL:	https://higreens.co.in/wp-content/uploads/2020/09/pic5-400x284.jpg
Preview:	......JFIF.....`.`.....;CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82....C.....................................!........'.."#%%%..),($+!$%$...C...........$...$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$..........."............................................................}........!1A..Qa."q.2....#B...R..$3br........%&'()456789:CDEFGHIJSTUVWXYZcdefghijstuvwxyz..............................................................................................................................w.......!1..AQ.aq."2...B.....#3R..br...$4.%.....&'()56789:CDEFGHIJSTUVWXYZcdefghijstuvwxyz....................................................................................?..p..5.ku.....`...\.j......K......9..(....1ZiZ...0.NV.V.d%i6.i..d%i6.R.H........!..I.....2"..T.R.H...R.M".#".S..P.(.O.&@f)6.....)1Rb....)6."......qRb.G...G.&).......J... #..i.Rb...&.m..p#.I...F..f.LT... G.6....eE...Td.p..&...Ae.....{.S....Q...?....z.~....@#.B......R.nj.#..f.....6..N..m[..v.A

Chrome Cache Entry: 166

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (57084)
Category:	downloaded
Size (bytes):	110035
Entropy (8bit):	4.919722681423811
Encrypted:	false
SSDEEP:
MD5:	99AB466E0866C823AE5DB517D59CEBD1
SHA1:	5595A586CBD42B31377681B9D35293278D75D336
SHA-256:	698B89C0DA3D319754D6A837B5E6D4E6A42DC402D9FFD7559B8C4CB29C644340
SHA-512:	D19932F64ADBDB1286B61D472526FE0BE92E5FCDBECF9DF9C9DC607D46E26F8912C74294256F1A6B56D0FB14A774679407187EED011F4B5B7008981AA52F6DF6
Malicious:	false
Reputation:	low
URL:	https://higreens.co.in/wp-includes/css/dist/block-library/style.min.css?ver=6.4.2
Preview:	@charset "UTF-8";.wp-block-archives{box-sizing:border-box}.wp-block-archives-dropdown label{display:block}.wp-block-avatar{line-height:0}.wp-block-avatar,.wp-block-avatar img{box-sizing:border-box}.wp-block-avatar.aligncenter{text-align:center}.wp-block-audio{box-sizing:border-box}.wp-block-audio figcaption{margin-bottom:1em;margin-top:.5em}.wp-block-audio audio{min-width:300px;width:100%}.wp-block-button__link{box-sizing:border-box;cursor:pointer;display:inline-block;text-align:center;word-break:break-word}.wp-block-button__link.aligncenter{text-align:center}.wp-block-button__link.alignright{text-align:right}:where(.wp-block-button__link){border-radius:9999px;box-shadow:none;padding:calc(.667em + 2px) calc(1.333em + 2px);text-decoration:none}.wp-block-button[style*=text-decoration] .wp-block-button__link{text-decoration:inherit}.wp-block-buttons>.wp-block-button.has-custom-width{max-width:none}.wp-block-buttons>.wp-block-button.has-custom-width .wp-block-button__link{width:100%}.wp-bl

Chrome Cache Entry: 167

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	gzip compressed data, from Unix, original size modulo 2^32 8074
Category:	downloaded
Size (bytes):	1987
Entropy (8bit):	7.901681415936458
Encrypted:	false
SSDEEP:
MD5:	DBDB77C63DD28A8DD9F8F019D9AD54D1
SHA1:	DD3BEA5B04778940916181F924389A5E7AB14C04
SHA-256:	E4D9F90A96396CB47DE0C8945D70A7C50B2BB0BEFED3F6016CD443712A3CF7FB
SHA-512:	236B570BC1F1E52B2B4FFD23089315E84218AA81439D70C50A870CCD61DAAA9E9E1DBC881FC4F11F28E11C126D42E634CD7509D4D6DA48CB58DA5331FA64480D
Malicious:	false
Reputation:	low
URL:	https://higreens.co.in/wp-content/plugins/wpcf7-redirect/build/js/wpcf7r-fe.js?ver=1.1
Preview:	...........R.r#....W`4,.."!.8.8b.-l...'S.....IH...@7.r....,.E..0.I.O...d{.^P.p..sr..NE..P...".z..3.Y...fs..+....^u....rC...]..{.mU.f.R...6.R....\|.........3.e..&..orw......%n.....(.GP.7.Z..d.9..o6-.^v.nK...j..c.......0...P...FIa...F8..b..at~>Y:T..rgv..z.a5._J.5$t../=....EeF1....[..3...f:q....X..'.../.~xHE3,...S.~Y.....F....9B.[~S5F./.$v.....4W.N.s.....Q5...XxJ.~.O.#..jE...yb.Uw._..!......#OAf6.3Q6...B...e...k..a.%...D.F[..:.J.L. .U.i..SB.E.L0Fz...V"E..&.Y.........<n8%@.It..4......g._u9L.n...;b.~.)...q&.F..Zp..Z5?..........2$..K...\.&ixQ......~..q 1M....=.Q....2.M...rcA..p...9M8..U...B...Y..%...\|.i....w[....._'xe.3.R...n..M.Ny.....V........}..0s...&SJj.b.Q.%..Z.......t.....?Le.Z..<BK.?.v..&..w.d..4.VRe.8...F..l2..t..T .%.tFf.h..'u...@.7.9.h&`.B...<..nq.gi!U.........eA...y...W.5...\..N..q.....y.2..q..M..d4..-....h...r3.rX.....^.Z...`.%..r.Y+...".Q.G.5.k`.N.K>..u....Q.j....y.=.xL...pC .0...j...p.U......U.~.........1..i.>C.7.p<.-7dK.K ......

Chrome Cache Entry: 168

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	PNG image data, 327 x 230, 8-bit/color RGBA, non-interlaced
Category:	dropped
Size (bytes):	218234
Entropy (8bit):	7.994587855881603
Encrypted:	true
SSDEEP:
MD5:	74A50549B90842DCDD8293B3C2CD97EB
SHA1:	7B15F6A5B439B20B1C36BDF48DEE712DA361DA31
SHA-256:	214726F4D22940FBD69015345190E6CC0FF12E5F273B1C45B31F4D823B28E38F
SHA-512:	F06B71AEF7984AE8F2D7ACD85247599F8231C346594EC7441599D9F261F7C1A34BC666E413CB1E9246F4705D956281A8A782EC5D026F077FA1905904F56AACB4
Malicious:	false
Reputation:	low
Preview:	.PNG........IHDR...G.........F~G.....sRGB.........gAMA......a.....pHYs..........o.d....IDATx^l.e.&I~.......v..U.vmfffffffff..j.......H...t,.d.>.#.,..^w.\|+g..~.?.....\+"2..~.w..Q..GE...z.P.(..DI...Q.3l.)l.DyO/{{Q..e./n.GQK.J..P.7f.r.qx...#.v4_.m.6.....E.}(h.A..U....s..\.c.X....y...o.b...>T..s....A..Y..c.:.o..,.Q..".C~s...._I..?......s.}(fZ.9.}........}."...8..q.s..:..nn...vq{?...X4.....2.....+..=.o. ......f.Y..,.....i.A..g.dq:.....H.iCz}'r.z..k.....:..r..<.\m...Q....V...!...z.k.>.n..'......N..w ....y.7...\|J}..{..Hc...N$3.j.R.aY..2.:......9.........w..EI.$.z...(..B..".gVQ;....ET.,.jl...k..[G.....0....-4.l.nq.U.,?.ZA.....F.....wP;...F..&..Q<....%../.tl.e.W..hh...........3(..C....P.3..^F...P..{..]c..<..}....A..(.._...6'.,kLO.b\|.US.(..G..Cn....fP6....e..,.xd....(.^...ceTL...<..xL....z.<Fn.l\|..S..Rmgt....<7..\......h..\..7.u.x.....".g.....TL.p_.>.^......3..U......J..N.qz.E.._.....,[9...e....4.Q.jf..s..6..k,.....K.i....u4,..~i..

Chrome Cache Entry: 170

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	PNG image data, 327 x 228, 8-bit/color RGBA, non-interlaced
Category:	dropped
Size (bytes):	180595
Entropy (8bit):	7.987721516960622
Encrypted:	false
SSDEEP:
MD5:	926F8BD92871F4B505E855171D2D35DE
SHA1:	57C96E8DF5F8572EE44883C8C2C99A5B8C7E9134
SHA-256:	6C7C7E16747C6FA248B7F0DC845AC4F8D4C66818175C5AE53E223B3E76137090
SHA-512:	20A82180FFB4E10A28224820AB2F61D3041B53D80A3021F8F8E1E9CEDD84C3FB4C5B40D6FB8E400E4391D9BE6FCCA92237EA74E17C8C421276A5BF9F88ABAED9
Malicious:	false
Reputation:	low
Preview:	.PNG........IHDR...G................sRGB.........gAMA......a.....pHYs..........o.d....IDATx^l..fW....?3.=... .....p.A....~.... /.f.....e..eY."Y4.I&..Lf&.{....>.5as.y.:;"..Y.u.x.{....-...W_].-.../...-7..el.S..f.w.2?.-..2../3..aa.,..2.n..N.........n...<.m.....y.sva..f.e...3.y.....L.iM......+........21;Sz...br..}.)..M....9N..O.e.....T9..S......\|.].94].....s...{95[........`d....+.{...........~2.9.-c3.\|.~.w..Wo...Jok.<..-..y...r..-....L.18.g........}u`.\.)g^w.)..q>..v9.U.<k....l..}.x.4.;.f.\..-....m...B..{x\|55_.......\.7...-W........bb>...w..]..k.3.:...>..).{.9W...g^...[.#.....:...N.k9..y.r_7.w..8.w...x....<...... ....r..} Z....*.......y..x,n7.=.'..\..ce....D.u...l..;yl....d..........s.<i..5..k\|.......\|2Y.s...nq.......q=....Z.......69_^.^M-......db.k7.s......\|..;SN.l....rwl.<..+.'f.......\|r.>?...sn.go.....g9.'.t.....W.r.E.....vs...;...8W..=..=...;....rw.l.3^6..+.../.n.......'.z..n..u7..Z....v}.\|ym.\|A[uu.\|~u.\|ve.\|ze.\|zi.\|rq.\|\|n.\|D...p...@...

Chrome Cache Entry: 171

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (1632)
Category:	downloaded
Size (bytes):	56115
Entropy (8bit):	5.347058442712683
Encrypted:	false
SSDEEP:
MD5:	3526DDFD6B9686840DA6207D71C5D3AE
SHA1:	C5B7575A8CA61B1A5FE04CB3B1D9D2EF3F04D43E
SHA-256:	A4692A7234B95C9908D1A9068F1BC9191815A6B1D9E3B3B84AD12EE10CAAAAEE
SHA-512:	01F8310F3A086CED93710515E4C07B3E9B9D6C14220F954C3C9FD82FF881C7E98CAA7EBBE6EB036D8CAA47B301B1ADB863F14AAF5B96ADC41D7080E7DF693ED2
Malicious:	false
Reputation:	low
URL:	"https://fonts.googleapis.com/css?family=Open+Sans:300italic,400italic,600italic,700italic,800italic,400,300,600,700,800&subset=latin,latin-ext"
Preview:	/* cyrillic-ext /.@font-face {. font-family: 'Open Sans';. font-style: italic;. font-weight: 300;. font-stretch: 100%;. src: url(https://fonts.gstatic.com/s/opensans/v40/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWtE6F15M.woff2) format('woff2');. unicode-range: U+0460-052F, U+1C80-1C88, U+20B4, U+2DE0-2DFF, U+A640-A69F, U+FE2E-FE2F;.}./ cyrillic /.@font-face {. font-family: 'Open Sans';. font-style: italic;. font-weight: 300;. font-stretch: 100%;. src: url(https://fonts.gstatic.com/s/opensans/v40/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWvU6F15M.woff2) format('woff2');. unicode-range: U+0301, U+0400-045F, U+0490-0491, U+04B0-04B1, U+2116;.}./ greek-ext /.@font-face {. font-family: 'Open Sans';. font-style: italic;. font-weight: 300;. font-stretch: 100%;. src: url(https://fonts.gstatic.com/s/opensans/v40/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWtU6F15M.woff2) format('woff2');. unicode-range: U+1F00-1FFF;.}./ greek */.@font-face {. font-family: 'Open Sans';. font-style

Chrome Cache Entry: 172

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced
Category:	dropped
Size (bytes):	1908
Entropy (8bit):	7.337020542576607
Encrypted:	false
SSDEEP:
MD5:	DBE833A93BB8299B2C2FC20BE7C21800
SHA1:	71E7253870135F9BBB87AAF8C2D83CFA489BB6F4
SHA-256:	EEB316504DD920AA28BA5B19733A9E6E5CAC21E39D2EA197DE4A3DCB483F44B0
SHA-512:	1E070786B5DE35673BDE3E16A2B5147C184031385466F6E53FA197E56E2D38704FB136ED5158E1D14D9FB68FC6275E794B30D04C4736A5FBF6D45A84705ED29E
Malicious:	false
Reputation:	low
Preview:	.PNG........IHDR...@...@......iq.....tEXtSoftware.Adobe ImageReadyq.e<..."iTXtXML:com.adobe.xmp.....<?xpacket begin="." id="W5M0MpCehiHzreSzNTczkc9d"?> <x:xmpmeta xmlns:x="adobe:ns:meta/" x:xmptk="Adobe XMP Core 5.3-c011 66.145661, 2012/02/06-14:56:27 "> <rdf:RDF xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#"> <rdf:Description rdf:about="" xmlns:xmp="http://ns.adobe.com/xap/1.0/" xmlns:xmpMM="http://ns.adobe.com/xap/1.0/mm/" xmlns:stRef="http://ns.adobe.com/xap/1.0/sType/ResourceRef#" xmp:CreatorTool="Adobe Photoshop CS6 (Windows)" xmpMM:InstanceID="xmp.iid:C48B3EA9039F11EBA7ED98973EAD3DB8" xmpMM:DocumentID="xmp.did:C48B3EAA039F11EBA7ED98973EAD3DB8"> <xmpMM:DerivedFrom stRef:instanceID="xmp.iid:C48B3EA7039F11EBA7ED98973EAD3DB8" stRef:documentID="xmp.did:C48B3EA8039F11EBA7ED98973EAD3DB8"/> </rdf:Description> </rdf:RDF> </x:xmpmeta> <?xpacket end="r"?>...[....IDATx...N.A...k.5..7...@.Ab0...B.Gp..+6....V.}.../.1...H............tO{..W.tz..K..J~.7........]..T.H.IC$[

Chrome Cache Entry: 174

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 400x284, components 3
Category:	downloaded
Size (bytes):	20410
Entropy (8bit):	7.964045977856643
Encrypted:	false
SSDEEP:
MD5:	BF227986E872ABA424CD8583F1A483CD
SHA1:	1794E2B518EB820888B908673D87008CF3429045
SHA-256:	225CA5E28F61E5A3D3E3A25F58C8460C660549532EAB285AFE5619DB586718BC
SHA-512:	9952BD1031958A1362EEE5C3F195CD76C11BC228A544AAAD9DFA1EE85A31EF174D907B65C05BB01E3E2DC1C8EACCAD5DB37665714A1DEBE376CF4D170278E8F2
Malicious:	false
Reputation:	low
URL:	https://higreens.co.in/wp-content/uploads/2020/09/pic6-400x284.jpg
Preview:	......JFIF.....`.`.....;CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82....C.....................................!........'.."#%%%..),($+!$%$...C...........$...$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$..........."............................................................}........!1A..Qa."q.2....#B...R..$3br........%&'()456789:CDEFGHIJSTUVWXYZcdefghijstuvwxyz..............................................................................................................................w.......!1..AQ.aq."2...B.....#3R..br...$4.%.....&'()56789:CDEFGHIJSTUVWXYZcdefghijstuvwxyz....................................................................................?...h.Y..k..x.Y..6.JW....'.e..C..M[R.I. .c.mU.....gs.1.V..f...&.@..0.Ri...........n)B.J.;.@..i.S.....i.i.i.`ZP. ZpZ.0-8-<-(Z.h.....0-(Z.-8%.".N.R.........S.S..iv.:p......CF....?..V.t4k..`.2I.....V1.x...l..V.nW.?<...?ST.."..;[Y.X....'....*..k8Y...u..c.v{..u.C.d..%..0....3.....o.......z.....}....R8u

Chrome Cache Entry: 175

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	gzip compressed data, from Unix, original size modulo 2^32 312221
Category:	downloaded
Size (bytes):	100578
Entropy (8bit):	7.993910940067815
Encrypted:	true
SSDEEP:
MD5:	6D3413B6C78954D269FBF46569DDFBFB
SHA1:	770963436796B43432EC97F05F8A2B95A5AACA04
SHA-256:	A86C41971DC56C7DE96DC50389D6C0DC88A2C101358B37DE6F06CE8C15471CB3
SHA-512:	79EAECCBAF8C1615B9564161809BB87B27C372B89AD47E813CC9650170952B98A98D752C83352FEFFFC9299585A6CD93DBDC68B881F366FCA86DA916FDE42644
Malicious:	false
Reputation:	low
URL:	https://higreens.co.in/wp-content/themes/Divi/js/custom.min.js?ver=4.2.2
Preview:	............v.H.%..O.e.hd1.Q.OO...d...m.m.....J".@Z ... E.\|.y..d7..I....3sg......c.}..w~.3..6V..].Ua...7..x.. ...JU....u...n..I.g..M.....#z...C..&.....BN..X?.....5..rY..\|....Y.+.......P.6;.a..$..U.N.V3...1.>B.9..R.tPGH.."...Hf....[..k. .?..Y...!...(9.,>.)hG$y.I....+.....[...#...g3i..q.o..)...f....v...]m'j,s... Z..g...e....{.z.14(k.\|.....TF.....9....u......n.$W..dR...5B..Xm..f..%.z..h..l>A..,..A\.......$z.t.N[...-.~{..)..f..I..46bq...v...Ia.}jA...H&>.S$.......Z...i8......D........)&l.D;H;.I..?w..}.J-p"s..'a"........(.&x....d...O.L.:[m..zA...J.ONC....jo.X..O..i{bk.....9*8.U\|...1.....p..q.{..9.v.u.}.H{...H...{.t.$....t1..s..3i..t........u...8"d...6V......'...c>..Q.Q+Xo..P.6[...<.u+.F...q..{?...1....?W...[..K.U_.X.:..O..Jc3i.v.n.:?NO.\|._..y...^..?bq.]..2.........#...Vt%..Le.Tk53....L3{.]h.bu.....Y_(..i:.=....Os..;...x..W..rw..d..2;h.u..g.H...(..{.......9.Pj\|.h..)...g..>..{.....}.o..[..k.9..........v./.[.........%j..V....Z.cUXL..;... .:<)m

Chrome Cache Entry: 177

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 400x284, components 3
Category:	downloaded
Size (bytes):	38873
Entropy (8bit):	7.9712302503229235
Encrypted:	false
SSDEEP:
MD5:	B9AFA5A61FD2BB8E6003E8116F60E859
SHA1:	FA69386027ECF190A6FCD79457A81C6F6D0555AB
SHA-256:	AEB878C604B0AB53DEE2E73430AB9724358166E3E0BC39914B4F73CE2EE34A9F
SHA-512:	FCF2C04688DE6E8E295B349DC9DE4E40987844BE334BAD8D78DA15C1B76752F39197F77BC268A21E710DD4388BC79447BB4BCCAA8736E43C3F4A944965BCFFC6
Malicious:	false
Reputation:	low
URL:	https://higreens.co.in/wp-content/uploads/2020/09/PIC3-400x284.jpg
Preview:	......JFIF.....`.`.....;CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82....C.....................................!........'.."#%%%..),($+!$%$...C...........$...$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$..........."............................................................}........!1A..Qa."q.2....#B...R..$3br........%&'()456789:CDEFGHIJSTUVWXYZcdefghijstuvwxyz..............................................................................................................................w.......!1..AQ.aq."2...B.....#3R..br...$4.%.....&'()56789:CDEFGHIJSTUVWXYZcdefghijstuvwxyz....................................................................................?...U....^..6.K.....J&Y:...62........Xh... .'....S......Z.......Mk{{.X..fCmsx<.)*.V<r...d..U.}.h./{u.$jH#d..0......."..+E;.i&..E.-7Q.7PY..RK.=....!l...y..On.SH.8.G..x$.q.+&..R2...g.85..ww.4.]5...#Ic......Hb1..tS.j....4..a.3...UdS.\|......WN\.....:}7....K...(b.......J Px..O.OZ.=.x.N.f.+.....fh.DK...x.<..

Chrome Cache Entry: 178

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	gzip compressed data, from Unix, original size modulo 2^32 2905
Category:	downloaded
Size (bytes):	1034
Entropy (8bit):	7.78894320986919
Encrypted:	false
SSDEEP:
MD5:	3C5B81EED88B427385E5EF676C35C3AE
SHA1:	6DAD198C8F4545CD7A53E06D19B8CF2708486701
SHA-256:	E8398D8E3A5A5AB45AEE2DBF1B420CCA435B36DE9DC30E5534A48ACAEBD79AD8
SHA-512:	02451C9886ACFBAAC6B965FDB9C9D0C84E35E720B1FD843B035E1C507AA21C250BDAF79CF98E563D74F166C362B5F60CDCBA9904B370C820A348583F08C19D85
Malicious:	false
Reputation:	low
URL:	https://higreens.co.in/wp-content/plugins/modal-window/public/assets/css/style.min.css?ver=5.3.8
Preview:	...........R.n.:...^..J1......y:?P.<....2......5..PU..Z...Y).P!.3.R..S....'.\bK..9......$.....F....'\.MS....:k..^.$.p.h..Q..0.7Ec......F.)..5.$..q..I..W\.~...c._.+...u'k...2...}....P.......k..P.Pf......y....c-u....z..q...&...#.p7...........a...uo.l."..~........;..I.@O....`......K?V;..(EL.i?.N3....HR.}\46.....K_R...._x~..._0....(.......\|..-...2..IjT.M.0...&.V(.L..&ai..1.I\..B..?....ZgH.z_.P.u..9.[..1X.RC.Wm@..3s....DS.QCo........7mM...H]1..V.j.E1.Xf.A2#>m...w..........p...6....._..z.:....zR.....U....5.<..\"3C...>>qm..f..~2....TI5.f...E.....pw..mW(..... J~.6..i.+....z\|.=A+.+"..y5S.\B7.....qf..Q.. ..K...u....OKx^..%\|Y..%\|.S.H-.....5.Mlf%......Q.g....[.>.....F.....o.....y.\|....[._F...U.yB...c.iS...6..F..V8.bS.4..@......t.p.P3#PQ..~V.0}.%..4..9Ge.....S.%Y.k.B....m.....j.ieh...IW.s....!<C.. ... .2.R...5..B. u.2...?A.a...Rp.!.B.)...P.....u{........X%7..j{._H....[.\S..}!....H.......$...xs.]2%.a4C.<W"..h....~.AX.-..j.a....4.~.F.U.#...#)YG..

Chrome Cache Entry: 180

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 400x284, components 3
Category:	downloaded
Size (bytes):	21597
Entropy (8bit):	7.954456981514026
Encrypted:	false
SSDEEP:
MD5:	22D1AEE71CD16166A439BC618FF17702
SHA1:	56CB0C1DF650FCAAF2518A345A48635C2E7D62E6
SHA-256:	59B79932392040320D0D16D1EAC0424ADFEB2F2654EC0228FAAF2C9F96A9977E
SHA-512:	2306B3AADF27CD57AE014B3E0F8C504A5A437CB0AF44C5500B60D0A4058223FDDA9DBDC694D1B0BF9EB9FCA5A7189B314625B3E0DD78A38E5E57E1C467262069
Malicious:	false
Reputation:	low
URL:	https://higreens.co.in/wp-content/uploads/2020/09/pic8-400x284.jpg
Preview:	......JFIF.....`.`.....;CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82....C.....................................!........'.."#%%%..),($+!$%$...C...........$...$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$..........."............................................................}........!1A..Qa."q.2....#B...R..$3br........%&'()456789:CDEFGHIJSTUVWXYZcdefghijstuvwxyz..............................................................................................................................w.......!1..AQ.aq."2...B.....#3R..br...$4.%.....&'()56789:CDEFGHIJSTUVWXYZcdefghijstuvwxyz....................................................................................?..m....M..RE.nf....L1.c<.t6.....8.....}e...K...~G#<.......V.......{.?.8.)<v.....~..J.H....zV...KZ.....H..b.Si'u.`....X.I.Y"p..R.?.x...........krz.b.....TS.9Odl...Yz.?b............T..+...#....+Ro......&6.o.a....?Z.d...M...)IF....y..f.wB...5.cg.X..#.?.!.E..Ga..+g....Dq.N[.8".&..-.k .#..)-....oG.

Chrome Cache Entry: 181

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	HTML document, ASCII text, with no line terminators
Category:	downloaded
Size (bytes):	83
Entropy (8bit):	4.702629793389398
Encrypted:	false
SSDEEP:
MD5:	26267CD8990F15D3BBEA71684A6D5995
SHA1:	AC3B38CF3FE0E112BB6AEB7E05226B7133575D93
SHA-256:	769E8AB745A0FE4BF811036E75A8630E38C50A18CB3E24D539CE4A0722C7C85E
SHA-512:	FE52418AE102F6621B45B8663241AB29428D7DED0BF9317B98331F5F5F1F07F0E400F1353F46A51C5724F1E2078791C1E97C4266C11CB1DAA4C388C21B58D6CC
Malicious:	false
Reputation:	low
URL:	https://higreens.co.in/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.8.6
Preview:	<script>document.cookie = "humans_21909=1"; document.location.reload(true)</script>

Chrome Cache Entry: 182

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 1920x1072, components 3
Category:	dropped
Size (bytes):	558157
Entropy (8bit):	7.980384288786912
Encrypted:	false
SSDEEP:
MD5:	B29EE58918314925A076177B366FD6B4
SHA1:	9AF349D8AEBA028E4A6F0F43777C3E795463F646
SHA-256:	1826420A43A63C45E14423F5EB960ACBBF7CC62A2B522C9871163472DDC83629
SHA-512:	DB0ADC040A5D634857E94715C5137291F321C3DC4246F1E18E908DBDE0B9210D614AA69DB190ECFFD0AED4C34B4A42EFDEA2B07D8D6233513CC2E812A1F4AF29
Malicious:	false
Reputation:	low
Preview:	......JFIF.....d.d......Ducky.......P......Adobe.d.................................................................................................................................................0.....................................................................................#......!..1..AQ"a.q.2..B#...R..3$...br...C...Sc4.%....D...sT..&6.5..FV.....................!.1.A..Q".a..2.q.BR...b#3..C..$............?.....}.o...\.z.n..}..6....M.OE.._...AyK#.H..A.....`<n..b..b....?.m...,m$l....V._J......].n......H..~.&$i<J.x..d..i.#]..V......?(.O;.....fL....t;.k.~f.o..'.N.f..\u.....X.&2......n...e..&f.).o...@k_r.6....e...TF.!.,}W....:n2A.....rD..F$P.X.i{u.Z.:........5...Z...L."YW.:n_.{.....J".Y#.$l#q..A..D.#..9\.l.3.#..]S...C6D..DDO.'.U......G....~K..a..8.Lg.2..e.......,.....Y.nx2.g9.0X.+Gf.:..]t.g.i..(2."%!w.S.z.Z&..eBd.&...URJ..t..VP....}.k.S.bz0...S`..W.&-....3....X...XXB..Q%_.pF..A"..........>..g..r.<...R....Vl....fx.i.F.5D..B....Y..8!erZi........%[.~.

Chrome Cache Entry: 183

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	gzip compressed data, from Unix, original size modulo 2^32 1674
Category:	downloaded
Size (bytes):	722
Entropy (8bit):	7.715852714636626
Encrypted:	false
SSDEEP:
MD5:	F06B1667C5F67F7764C76B1701213027
SHA1:	7EAE40311B0D166A1239D87B0909C8ADAC9E71F5
SHA-256:	7338928AFCC588A16233939A056C2741E89A5035FD8B8A58E4C60E1639A0001C
SHA-512:	9180B75040FE72A406857B1596CC0870B98FB7D3F8A4902399F2CDEB5F84ED8D042AE73B4A60F107E1FF03F2CEDA8F2E45436198A31F45C7D0469503A02C4BCA
Malicious:	false
Reputation:	low
URL:	https://higreens.co.in/wp-content/themes/Divi/core/admin/js/recaptcha.js?ver=6.4.2
Preview:	...........RMo.0...W0@.8E..P.@..+...aK..6..l.Z[2$.........).C`.........p.?...k..BH..L!Qe..;..L.Eia)..b..J....`...2.."0n.2.c."d./R....DY....A.h.[.k.p.e.......q\|..J6..V.LY.5D.p...... ..l!.+..O....F.T-.....otPX.aU..../.Q\|Sx......z.o....._...&s.m.=..v7U`....9N.....f.-w...I...(!XD.....vN.:N.b"..v.Rs......Vi...O.X.....X..'...Z........97.\| .j[y..).7.}..F`...+..?..w...*t.n..%..n.....>W.........1v...%t..M...!L^1YXl..b.......S./..o(=.?.l.Bt.6..j..!.....\|.n.8...p{3.<.1=z.F...z=.u...s...L....$.,.v...N....a9'.P.. ..a..8..2..j-...]..J.y.+c.............}.t...r...........V...[./5\|....Kb...".....j.7.C.oGk.(....=..{.....w....2.F./......`.I?6..6..c;......?2.F.V..g.6.c2..`......)l..sS.z.>.\..(...gT.....

Chrome Cache Entry: 184

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (2295), with no line terminators
Category:	downloaded
Size (bytes):	2295
Entropy (8bit):	5.875308467440814
Encrypted:	false
SSDEEP:
MD5:	99F0840434AE12D959ECF92BBE78059C
SHA1:	048449110D53F55991A02E51E4ED5012CDB14527
SHA-256:	22B316312D7ED3ECCA23AAA682CFB257C1A17715A91A501A244AFAC5DD7201FD
SHA-512:	CA1E6CA13AABCED28BE4E349893E902A2A8EDAB29604DCAB06130A411504BFB27E49CB7CAB1C9110ECB72C6CDDD53865F369442BF8700C2414F1CD7F742306FF
Malicious:	false
Reputation:	low
URL:	https://googleads.g.doubleclick.net/pagead/viewthroughconversion/11259937738/?random=1706617982880&cv=11&fst=1706617982880&bg=ffffff&guid=ON&async=1&gtm=45be41o0v9134757481&gcd=11l1l1l1l1&dma=0&u_w=1280&u_h=1024&url=https%3A%2F%2Fhigreens.co.in%2F&hn=www.googleadservices.com&frm=0&tiba=Hi-Greens%20%7C%203%20BHK%2C%204%20BHK%2C%20Luxury%20Apartments%20%26%20Villas%2C%20Zirakpur%20Punjab&npa=0&pscdl=noapi&auid=245343967.1706617983&fledge=1&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uap=Windows&uapv=10.0.0&uaw=0&data=event%3Dgtag.config&rfmt=3&fmt=4
Preview:	(function(){var s = {};(function(){var e={};/* Copyright The Closure Library Authors. SPDX-License-Identifier: Apache-2.0 */ var f=this\|\|self;var g,k;a:{for(var l=["CLOSURE_FLAGS"],p=f,q=0;q<l.length;q++)if(p=p[l[q]],null==p){k=null;break a}k=p}var r=k&&k[610401301];g=null!=r?r:!1;var t,v=f.navigator;t=v?v.userAgentData\|\|null:null;function w(d){return g?t?t.brands.some(function(a){return(a=a.brand)&&-1!=a.indexOf(d)}):!1:!1}function x(d){var a;a:{if(a=f.navigator)if(a=a.userAgent)break a;a=""}return-1!=a.indexOf(d)};function y(){return g?!!t&&0<t.brands.length:!1}function z(){return y()?w("Chromium"):(x("Chrome")\|\|x("CriOS"))&&!(y()?0:x("Edge"))\|\|x("Silk")};!x("Android")\|\|z();z();!x("Safari")\|\|z()\|\|(y()?0:x("Coast"))\|\|(y()?0:x("Opera"))\|\|(y()?0:x("Edge"))\|\|(y()?w("Microsoft Edge"):x("Edg/"))\|\|y()&&w("Opera");var A=/#\|$/;function B(d){var a=d.search(A),b;a:{for(b=0;0<=(b=d.indexOf("fmt",b))&&b<a;){var c=d.charCodeAt(b-1);if(38==c\|\|63==c)if(c=d.charCodeAt(b+3),!c\|\|61==c\|\|38==c\|\|35==c)br

Chrome Cache Entry: 185

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x1072, components 3
Category:	downloaded
Size (bytes):	761819
Entropy (8bit):	7.976627121210636
Encrypted:	false
SSDEEP:
MD5:	7B39D112439C22907492BCE51BA69257
SHA1:	B7839F89E51BB78B64286F9DDE40E93145475821
SHA-256:	8AB64BC98529238B434CFB80941BBD599D62BA543B8F395E3B886447EC3A2AF3
SHA-512:	8D633BB1781567D9FC66CBBC87DEAB56252CBF88C32EBCF212532E0EC8BC3AD770DBC5E2920E95BF80809C601EE0E3809698F259633021061C63EA6BBDE23E68
Malicious:	false
Reputation:	low
URL:	https://higreens.co.in/wp-content/uploads/2020/09/banner-home.jpg
Preview:	......Exif..II*.................Ducky.......<.....+http://ns.adobe.com/xap/1.0/.<?xpacket begin="." id="W5M0MpCehiHzreSzNTczkc9d"?> <x:xmpmeta xmlns:x="adobe:ns:meta/" x:xmptk="Adobe XMP Core 5.3-c011 66.145661, 2012/02/06-14:56:27 "> <rdf:RDF xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#"> <rdf:Description rdf:about="" xmlns:xmp="http://ns.adobe.com/xap/1.0/" xmlns:xmpMM="http://ns.adobe.com/xap/1.0/mm/" xmlns:stRef="http://ns.adobe.com/xap/1.0/sType/ResourceRef#" xmp:CreatorTool="Adobe Photoshop CS6 (Windows)" xmpMM:InstanceID="xmp.iid:C4E93E87FE3111EA9A0FED7E596F2F1F" xmpMM:DocumentID="xmp.did:C4E93E88FE3111EA9A0FED7E596F2F1F"> <xmpMM:DerivedFrom stRef:instanceID="xmp.iid:C4E93E85FE3111EA9A0FED7E596F2F1F" stRef:documentID="xmp.did:C4E93E86FE3111EA9A0FED7E596F2F1F"/> </rdf:Description> </rdf:RDF> </x:xmpmeta> <?xpacket end="r"?>....Adobe.d.................................................................................................................................

Chrome Cache Entry: 187

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	PNG image data, 1920 x 882, 8-bit/color RGBA, non-interlaced
Category:	downloaded
Size (bytes):	2366845
Entropy (8bit):	7.995143934128088
Encrypted:	true
SSDEEP:
MD5:	44F6738E2C76D19F54C3DB7F60DEA79C
SHA1:	6E6A5517F6F8E74F12C838AE5D004D173C83BF28
SHA-256:	AFE91BA9EFE79FA1F57DBD0BA8BCE7FEC13FCED76193C3A1E44A717E363B1472
SHA-512:	0283871881E41E118C16903557BA1A1845FCCC47C7E3D58EB7683020FE44BBFE4226D1C2AEAD88F5B81A339CF140D21999B5E21C1076013574BD8DAF39E2EDC9
Malicious:	false
Reputation:	low
URL:	https://higreens.co.in/wp-content/uploads/2020/09/FROM-BANNER.png
Preview:	.PNG........IHDR.......r.............tEXtSoftware.Adobe ImageReadyq.e<..."iTXtXML:com.adobe.xmp.....<?xpacket begin="." id="W5M0MpCehiHzreSzNTczkc9d"?> <x:xmpmeta xmlns:x="adobe:ns:meta/" x:xmptk="Adobe XMP Core 5.3-c011 66.145661, 2012/02/06-14:56:27 "> <rdf:RDF xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#"> <rdf:Description rdf:about="" xmlns:xmp="http://ns.adobe.com/xap/1.0/" xmlns:xmpMM="http://ns.adobe.com/xap/1.0/mm/" xmlns:stRef="http://ns.adobe.com/xap/1.0/sType/ResourceRef#" xmp:CreatorTool="Adobe Photoshop CS6 (Windows)" xmpMM:InstanceID="xmp.iid:F4DA0125031611EBB14F97BF42C474CE" xmpMM:DocumentID="xmp.did:F4DA0126031611EBB14F97BF42C474CE"> <xmpMM:DerivedFrom stRef:instanceID="xmp.iid:F4DA0123031611EBB14F97BF42C474CE" stRef:documentID="xmp.did:F4DA0124031611EBB14F97BF42C474CE"/> </rdf:Description> </rdf:RDF> </x:xmpmeta> <?xpacket end="r"?>.PR..$..IDATx...$I..(.j..s@7....DC...0?....p..../.YD..#.j.......,,.6....../"j/..i...........-j..o.'..d....%{.Z^e.+

Chrome Cache Entry: 188

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (4179)
Category:	downloaded
Size (bytes):	213048
Entropy (8bit):	5.54912825570934
Encrypted:	false
SSDEEP:
MD5:	A4BA1559AB837D1580313AA74DB78688
SHA1:	F5003F4E112D9E55608798767201ECD4F902F664
SHA-256:	DA74239E587A4A21D1757FF51FDE2CF802A15058586555F8BD2905DAE4519439
SHA-512:	AFF77E61C8DEBB1740C8570B520CDCD1158B91C8E90C0C78832E4DEA9087EC1D0A9A4D87149AE5390C061842DC7C0F1C1661AAA7AD5E5712EAA5E7E1AB8F2E4F
Malicious:	false
Reputation:	low
URL:	https://www.googletagmanager.com/gtag/js?id=AW-11259937738
Preview:	.// Copyright 2012 Google Inc. All rights reserved.. .(function(){..var data = {."resource": {. "version":"1",. . "macros":[{"function":"__e"}],. "tags":[{"function":"__ogt_1p_data_v2","priority":3,"vtp_isAutoEnabled":true,"vtp_autoCollectExclusionSelectors":["list",["map","exclusionSelector",""]],"vtp_isEnabled":true,"vtp_cityType":"CSS_SELECTOR","vtp_manualEmailEnabled":false,"vtp_firstNameType":"CSS_SELECTOR","vtp_countryType":"CSS_SELECTOR","vtp_cityValue":"","vtp_emailType":"CSS_SELECTOR","vtp_regionType":"CSS_SELECTOR","vtp_autoEmailEnabled":true,"vtp_postalCodeValue":"","vtp_lastNameValue":"","vtp_phoneType":"CSS_SELECTOR","vtp_phoneValue":"","vtp_streetType":"CSS_SELECTOR","vtp_autoPhoneEnabled":false,"vtp_postalCodeType":"CSS_SELECTOR","vtp_emailValue":"","vtp_firstNameValue":"","vtp_streetValue":"","vtp_lastNameType":"CSS_SELECTOR","vtp_autoAddressEnabled":false,"vtp_regionValue":"","vtp_countryValue":"","vtp_isAutoCollectPiiEnabledFlag":false,"tag_id":4},{"function":"__c

Chrome Cache Entry: 193

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	gzip compressed data, from Unix, original size modulo 2^32 8411
Category:	downloaded
Size (bytes):	2803
Entropy (8bit):	7.923915002602866
Encrypted:	false
SSDEEP:
MD5:	70DE8D2EBE75E5A5111DCC0F6F51B0ED
SHA1:	3AAF95DF1E1B8CF29FC1DAB432EE0A60BED08F64
SHA-256:	6F0193E2503DA3C574D4C60891ED6BE9C932B3E43B2687AC03381E7ACB3EC603
SHA-512:	FF065F5CBB7ECD4EEA135230487959151837692BA867C8E92CEC4BB29BCDFDEBAC52BFAF22660CC47CFCAD1A38B1F8721A96A1996091FB132786E48AA33ED80E
Malicious:	false
Reputation:	low
URL:	https://higreens.co.in/wp-content/plugins/modal-window/public/assets/js/jquery.modalWindow.min.js?ver=5.3.8
Preview:	...........R.s.6..+..q..b$'...L&v.6..rM...j."W"b.`.."....(JV..ws.......}.4...Eb.NK.X.$.l.)...yo!d...DI......uf.......)'saI.BL.j.......Ly.[.F9.`...Hc.....Rn...9ua.....34=. &.C..d..+.Xk; Gk....e,..p.?.R..L....Z..2;.1Z.........P..qLJ..THH.[i........\.(9{....E.......%.e..........i...x.t..>.....7..@.9.A.(...... "...TF..u...i..x..s.....H.......P]...rhu......,....0h.F.ed...u..l..~ZasX?.E.jx6....8.o..n4....h....PZq.4I...X..."^Zu....wM...o..!q{o..:>..?i.-..7.....a#..OJk.$!.b.Y..}.Yk..v.].[..M......f....$..z......h...s.9g..-j1..'.~.N\|..{.+..3........T..6.&..d..Im....931...o.Ro....@...\|.;.P..{D"m..s...d.B.6.u.w@<..4.7.KU.r...X4.v.PL5.....0&MI..9.?\#...&_..)].. g6{.g.f#M.........e>\.5.......U....\|.t`.F..t.84e..V...g...w.7[i....8].G.1tE>..}.%...{...O.fZ.2.%W.S.\|D.....0.6..]l..<. )...k...&N...5...]I...6.....F...>..Eo.s.._wh..\|...#a^...\|7........E.q.O\...m.y1>.....7h.F..zF%-H.w..{M]=m..C.Dwv..y6...\|F.`V..m.D....6.$z..>.....c6B.N.8F....R..`K-..!q."n!.7

Chrome Cache Entry: 196

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	gzip compressed data, from Unix, original size modulo 2^32 87553
Category:	downloaded
Size (bytes):	38349
Entropy (8bit):	7.989817099989619
Encrypted:	false
SSDEEP:
MD5:	34FA9D72E847929D6B62C8EEEDA1B4B1
SHA1:	9051D428D9A61F99CBCB2B4764D9817194EA63E9
SHA-256:	2881DB72A190E3CC1778546B773FFF16638976D949026E6680EFFF45BCFD0780
SHA-512:	86AC545D83ED82B971810C160E5F2CF3D7289ACCE3174B0D401D1B0A712B6BEB268134DED87816E75A0030346AD4D3E3867F7C60C51536F24B7D51A35A9FEDED
Malicious:	false
Reputation:	low
URL:	https://higreens.co.in/wp-includes/js/jquery/jquery.min.js?ver=3.7.1
Preview:	............{{.6.5...SH..,.A..N.C..:.4s.S......-...0 ([.9.........9..6"../k.......V...6_...L..$t.......+].TX..@.t.... ...ySZm.L.....,.2..`......J..B...Wb....z3O.\|.<pn.9..`..2....C.w.6...^9..N.5(;.8f8..a.....R.].};Pp;xi.6...6......J.b..+........Q..B..%.2... ..=.~.~B...........a..x.3..5..K.?.m.k.n..p.A.xeKw\d....uOA"....x.J.`...lKp.f.....b.f...;....f....K.......D..V!....2.K8d..[..:.e.l.C8^.:...........(...^.q_r.,-.k.}d.@.Y6.X...YZYjv......;.+.NXa..QH..........k.h....g.D....h....^f.Z..H....:.pg9..........Hn#.WU#.s.4..!.....uP...3..D....^.d..M.\............z...=...9.</.t..,U..Xs...o.@_.....r.....2~....o..I...Z.......4.B.J.<..8.m...!...+.yt....m.6..-..<..p.\|.'..[...5..E....Y....O.Fp...N..\|+.....X.F......F.fE....V..\|..s.f.Z.hUXS&V.0....N.....pO....V.........P....'sw.`.>..q....e...".t.U.7X.YB.+8.N(.+0..&l.5......HV.....=j...!O..{l.!.y[...:.2.Rl\d2.G.....y.m...,.5([...i.....L0'...2.b.l@.>.\qi.7v$v4...Y..N......k...Q../L...Hc.prP.t..+.W.v.5

Chrome Cache Entry: 198

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 400x284, components 3
Category:	dropped
Size (bytes):	29185
Entropy (8bit):	7.969017909523748
Encrypted:	false
SSDEEP:
MD5:	799408A2AF5B7815C450660F74AFDF10
SHA1:	3E39A09EB61606182D78A46FB9097A3776BE7293
SHA-256:	472DE70F89C86CEA7D3227265A2601DF28FB6900DBD6C9DF73DB18F20CA3C5E6
SHA-512:	92C90F47803D2683FB063CF0163BBDA462DCBB237040B15CD9F8EA2F53D26CE3B183A0D05CCEAF3F4CF5AD19E72437847AE94B81278B21647050CDAB21CB2DC6
Malicious:	false
Reputation:	low
Preview:	......JFIF.....`.`.....;CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82....C.....................................!........'.."#%%%..),($+!$%$...C...........$...$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$..........."............................................................}........!1A..Qa."q.2....#B...R..$3br........%&'()456789:CDEFGHIJSTUVWXYZcdefghijstuvwxyz..............................................................................................................................w.......!1..AQ.aq."2...B.....#3R..br...$4.%.....&'()56789:CDEFGHIJSTUVWXYZcdefghijstuvwxyz....................................................................................?..?0..J!^..}.C.)%..T.....'.9.y-..d;Y@.4..T\g..N...}3I..y..^.<..&........7*..qVH..7..f.....=).].p.X.#Q.K...^}...L...$(9...........~P6....!......$x.q..JF%>..zRlL..%.\..X...s....4.....s..OB......6.Z..#..S............3.f.s.M......+.O.....W.I..>e.6{...Ac..#7..j.j.......\.#...Z...'g.7.J..x.x..^.....&

Chrome Cache Entry: 199

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 400x284, components 3
Category:	downloaded
Size (bytes):	27920
Entropy (8bit):	7.959256697758231
Encrypted:	false
SSDEEP:
MD5:	4AB61B8C13E9087FF9559706B1D69ECE
SHA1:	6FE321CC1815314A06E4C963BF4608AB1F4F2D56
SHA-256:	3EA86F3D17892E7C9864459F8C735E824290BE5E85314847FD26EAE37A75A0AA
SHA-512:	9A16584546C3E982ED0AF7AA7F1DD3F5D27CE4FACE09AAA50E84091E0153A42A9707965A86F2EBCD031F4E8B2A8EB3DEF28F38F5BDC79C3544E5A09F82D12244
Malicious:	false
Reputation:	low
URL:	https://higreens.co.in/wp-content/uploads/2020/09/pic11-400x284.jpg
Preview:	......JFIF.....`.`.....;CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82....C.....................................!........'.."#%%%..),($+!$%$...C...........$...$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$..........."............................................................}........!1A..Qa."q.2....#B...R..$3br........%&'()456789:CDEFGHIJSTUVWXYZcdefghijstuvwxyz..............................................................................................................................w.......!1..AQ.aq."2...B.....#3R..br...$4.%.....&'()56789:CDEFGHIJSTUVWXYZcdefghijstuvwxyz....................................................................................?..=cN.O.;I..5........j.5M0 `..1....e.Mabb..;...i.........C.....P..........j..)e.......):.?.....G?A5.#TA....WoF<.h.......U.....x......Wo..(.3..O.....A....E4.jT^(..V.U..S.xZi.............PL'.9..dP..Fk.b...>F....;.e?.W.Vu.....kq....x.....e.7........6..............8*..s.e.......H.t.....).."..._=:.......2

Chrome Cache Entry: 203

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	PNG image data, 46 x 41, 8-bit/color RGBA, non-interlaced
Category:	downloaded
Size (bytes):	706
Entropy (8bit):	7.55828323809296
Encrypted:	false
SSDEEP:
MD5:	206727E90EB04E2CF0F104B25CA20829
SHA1:	CF0ACD0B915E9293373611C48BCE1760256DCE49
SHA-256:	EFFAAB19CB92AC31CAF9ED377CE3C73BAD296C21305AFE49AF54F8B05C925FD4
SHA-512:	D981B0D6F2196FACF89D9502F7C106FADAA33E98F9B48B2A284E5692420AFA21D019C24837EA06B6E6801FD70BC3615F6C55D36DEC2B6E5DE3BA63760D836489
Malicious:	false
Reputation:	low
URL:	https://higreens.co.in/wp-content/uploads/2020/09/house.png
Preview:	.PNG........IHDR.......).....J.......sRGB.........gAMA......a.....pHYs..........o.d...WIDATXG..O.A....Q..FcB@.........%...GKkk...."..ZJ-..o.Lh...ew...&.;s.9........x.p..3..IME\..x.-._.$..T._...M..(...v.!{..d.......U...1..Q.J.....:...m...>.JiY.0A...g,5.^.....q.(..qcf}..\|Y~......A.c........6~.>.f/-[........]..5{...Z..'.h.".x.Q.+.....F.{q).P?......Zh....I.....Z.{=..rt.'.Z.M...k.s..q..v...>..%.F.-4....=^....mq..h.......i..c.4l....^..xK{O.e...?..........Yo..69...A-.p....st.........'j......69...[j.k.8..%.qg.....5..X.\|P....b......$;?*....)..M.>..<.p..s.o. X.......8...l`e\/w..c3;Q.........f..pGf.....yH.WY.8.n4.B3.Y.k.od.2I2.D...[...Q..~..f....u.3.4...'..s.:._........IEND.B`.

Chrome Cache Entry: 204

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 1920x1072, components 3
Category:	downloaded
Size (bytes):	294872
Entropy (8bit):	7.978032714754523
Encrypted:	false
SSDEEP:
MD5:	D4ACF7870D4D2EC35EF4704D0ECD13FE
SHA1:	D9EE9D9472AC686974A68560225DACD5905DC58D
SHA-256:	35B9F72E45459A856A967D7E3DF070DDDA5884B3CD3DC9A204C6AB086EFA4FFC
SHA-512:	06EDBCD02AD98256DEE33903A2832E946D6127B09AF5FDFF885835A5223C0BE7A71393ABBEFB3749F44C6B8709C7FEB908A3EA38DFD9EF5AE5D663AFBB03C558
Malicious:	false
Reputation:	low
URL:	https://higreens.co.in/wp-content/uploads/2020/09/b.jpg
Preview:	......JFIF.....d.d......Ducky.......P......Adobe.d.................................................................................................................................................0..........................................................................................!..1.AQ.aq."2......B....R#.b3..r$.C4..S%..sDT..c5...&.....................!.1.A...Q"2.aB.#3.q.............?..z..a.~.0.U.-...#.,.%.X..9.....Y...E....-.<.........5Y....XE..&..7..D....'...=..l.'ruY....f.s..Oi..v.=...H...k.j8\..A...jt2.`e.....-WF....g.H...V<.\|..;[..H......m..jU.5$=..[Z..-.K.c...H..g...8...v`.q.xU..U+.O..[.d...oc...{.>.....ga.n./....x..../^SK&7.n.y.w...lCk.............U......n....bj\....K6..0...s..h..G./"{.[..1..2{.M..ao.-i.U.%....b.....r.K"B}x-..0p.rM;2..URf..Y../..N....u...I:...R......W.Z_...KI.....Ok..2.'.k]..#.M..d.h.......1p..U..8."." .T...@2r..gr.B..r.RhC-.....4}#.S$.oA."O..(.nzR.8...^..]Bc.s..,E.qV..R..n*.9...d.$.DJ.+.-...>......R4&..D...Kk]..}C2..

Chrome Cache Entry: 207

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (56398), with no line terminators
Category:	downloaded
Size (bytes):	56398
Entropy (8bit):	5.907604034780877
Encrypted:	false
SSDEEP:
MD5:	EB4BC511F79F7A1573B45F5775B3A99B
SHA1:	D910FB51AD7316AA54F055079374574698E74B35
SHA-256:	7859A62E04B0ACB06516EB12454DE6673883ECFAEAED6C254659BCA7CD59C050
SHA-512:	EC9BDF1C91B6262B183FD23F640EAC22016D1F42DB631380676ED34B962E01BADDA91F9CBDFA189B42FE3182A992F1B95A7353AF41E41B2D6E1DAB17E87637A0
Malicious:	false
Reputation:	low
URL:	https://www.gstatic.com/recaptcha/releases/QUpyTKFkX5CIV6EF8TFSWEif/styles__ltr.css
Preview:	.goog-inline-block{position:relative;display:-moz-inline-box;display:inline-block}* html .goog-inline-block{display:inline}*:first-child+html .goog-inline-block{display:inline}.recaptcha-checkbox{border:none;font-size:1px;height:28px;margin:4px;width:28px;overflow:visible;outline:0;vertical-align:text-bottom}.recaptcha-checkbox-border{-webkit-border-radius:2px;-moz-border-radius:2px;border-radius:2px;background-color:#fff;border:2px solid #c1c1c1;font-size:1px;height:24px;position:absolute;width:24px;z-index:1}.recaptcha-checkbox-borderAnimation{background-image:url(data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAFQAAANICAYAAABZl8i8AAAABmJLR0QA/wD/AP+gvaeTAAAACXBIWXMAAABIAAAASABGyWs+AAAACXZwQWcAAABUAAADSAC4K4y8AAA4oElEQVR42u2dCZRV1ZX3q5iE4IQIiKQQCKBt0JLEIUZwCCk7pBNFiRMajZrIl9aOLZ8sY4CWdkDbT2McooaAEmNixFhpaYE2dCiLScWiQHCgoGQoGQuhGArKKl7V+c5/n33fO/V4w733nVuheXuv9V/rrnvP2Xud3zvTPee+ewsKxMTExMTExMTExMTExMTExMTExMTExMTExMTExMTExMTExMTExMTExMTExMTExMTExMTExP4OdtlT6ztAbRWvvLy8A3QkwxzH6tBGMMexI

Chrome Cache Entry: 209

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	PNG image data, 148 x 104, 8-bit/color RGBA, non-interlaced
Category:	dropped
Size (bytes):	13296
Entropy (8bit):	7.960850557770999
Encrypted:	false
SSDEEP:
MD5:	1DE6E1270C7ACE00B899FB4D385B099A
SHA1:	E057F09164306DAE81EFAB30C126F5AE718F588E
SHA-256:	F31B93A3FCCB7BDCEE186A8EC0E420AE696AD738CB584743A8A12E398A896677
SHA-512:	60A465A9353B5C2440176BBAC5E6E4FE75F76C53F23EFF412530093EAF8116ACBC39B595BD02B2D07A828F96817702E31007B1D465A61C013491BA05BE5DBD8A
Malicious:	false
Reputation:	low
Preview:	.PNG........IHDR.......h......l.....tEXtSoftware.Adobe ImageReadyq.e<..."iTXtXML:com.adobe.xmp.....<?xpacket begin="." id="W5M0MpCehiHzreSzNTczkc9d"?> <x:xmpmeta xmlns:x="adobe:ns:meta/" x:xmptk="Adobe XMP Core 5.3-c011 66.145661, 2012/02/06-14:56:27 "> <rdf:RDF xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#"> <rdf:Description rdf:about="" xmlns:xmp="http://ns.adobe.com/xap/1.0/" xmlns:xmpMM="http://ns.adobe.com/xap/1.0/mm/" xmlns:stRef="http://ns.adobe.com/xap/1.0/sType/ResourceRef#" xmp:CreatorTool="Adobe Photoshop CS6 (Windows)" xmpMM:InstanceID="xmp.iid:C7D57624FE0D11EAA73BAD7D3AFE7081" xmpMM:DocumentID="xmp.did:C7D57625FE0D11EAA73BAD7D3AFE7081"> <xmpMM:DerivedFrom stRef:instanceID="xmp.iid:C7D57622FE0D11EAA73BAD7D3AFE7081" stRef:documentID="xmp.did:C7D57623FE0D11EAA73BAD7D3AFE7081"/> </rdf:Description> </rdf:RDF> </x:xmpmeta> <?xpacket end="r"?>.)...0dIDATx..].x.U.....M...Pm. M.........(..........bC.EQ....*ED...^C/.......LfKPB.<...lf..w...f.2......e...Z.ke..

Chrome Cache Entry: 213

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	gzip compressed data, from Unix, original size modulo 2^32 1489
Category:	downloaded
Size (bytes):	649
Entropy (8bit):	7.738829427149968
Encrypted:	false
SSDEEP:
MD5:	5096E98EA013FA72DAEBE94EADEEF02C
SHA1:	0E9C9D1BF3293887800F3BBE16D053ECEF3FAA86
SHA-256:	A3AF8C32E87BB14E488E39164DFDBD5F31C0E32914FDA777CD7E57F193FC82C9
SHA-512:	3F1945E6493E441593052D17B92C3BD5D206E6C3CDE28945807875ED549B59850408E034893BD6A8683BBB2E107E314E3D9DAB933592E1E97DD1DB476CA2D072
Malicious:	false
Reputation:	low
URL:	https://higreens.co.in/wp-content/plugins/wpfront-scroll-top/js/wpfront-scroll-top.min.js?ver=2.2.10081
Preview:	...........RM..0..+.J.]......^zY.....L.[cG........v/Q.y..=..u.4..8\~'.Q.vL...}.:x..V.o..}3.tV.A`".9].F.s%Gd..k...!7"w.i9[.Lk^-0.e.h....V..=..C.....T.<...bc.i.I.r=.......e...#[..y.8.,...Q{.j. .`..0.b.GN........H/..n..\|}]..g~..[z..(mp.rx^,.....}.w<j......iu.FX... HF.u...w%7\l}...i[..6...nL.^+..7......]w.RT..M[.....8....X&......`..t......?.QH..;...Zu..X.0..e,a.3M.Mi..hBK...{.5.7<....i.C.\g...v1....VE..X}.~$/5.F..~:..F...E.\|..O.r...JUP.gz...g..LL...*.~Hy\.fiO..t,...a].tq:7./...6.....W{&...?b......:....q..S..W.._~'C.]Q)T..TP.:.-d.@!..(.5.S)...8.9.......)G.....m..4.u4.$c.y18...m.<.D%B...:...d.....@v....N......

Chrome Cache Entry: 214

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x847, components 3
Category:	downloaded
Size (bytes):	1601701
Entropy (8bit):	7.985954754825281
Encrypted:	false
SSDEEP:
MD5:	105A5BC4905457C9220687A8737C969D
SHA1:	35A4278C75DEF96ED97F7B3CFD8B952BB6C6CF6B
SHA-256:	372F52A298F6C3AA038B560C976D7D6CDA36111BAC472824BB2BEAC114353DBF
SHA-512:	B7BBCCE0C88AF15A922CDE5F5C6B5DD50DAD3788753BAF533E18724D08DF63886241EAD213455F6988400EA347EBA6C3052B2D17142BA5B2FD79ACFA1F1BC1A4
Malicious:	false
Reputation:	low
URL:	https://higreens.co.in/wp-content/uploads/2020/09/long-img.jpg
Preview:	......Exif..II*.................Ducky.......d.....+http://ns.adobe.com/xap/1.0/.<?xpacket begin="." id="W5M0MpCehiHzreSzNTczkc9d"?> <x:xmpmeta xmlns:x="adobe:ns:meta/" x:xmptk="Adobe XMP Core 5.3-c011 66.145661, 2012/02/06-14:56:27 "> <rdf:RDF xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#"> <rdf:Description rdf:about="" xmlns:xmp="http://ns.adobe.com/xap/1.0/" xmlns:xmpMM="http://ns.adobe.com/xap/1.0/mm/" xmlns:stRef="http://ns.adobe.com/xap/1.0/sType/ResourceRef#" xmp:CreatorTool="Adobe Photoshop CS6 (Windows)" xmpMM:InstanceID="xmp.iid:A52D6A7B024911EB87CC9EB4E66D7EA1" xmpMM:DocumentID="xmp.did:A52D6A7C024911EB87CC9EB4E66D7EA1"> <xmpMM:DerivedFrom stRef:instanceID="xmp.iid:A52D6A79024911EB87CC9EB4E66D7EA1" stRef:documentID="xmp.did:A52D6A7A024911EB87CC9EB4E66D7EA1"/> </rdf:Description> </rdf:RDF> </x:xmpmeta> <?xpacket end="r"?>....Adobe.d.................................................................................................................................

Chrome Cache Entry: 215

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (7711)
Category:	downloaded
Size (bytes):	294042
Entropy (8bit):	5.56270172310446
Encrypted:	false
SSDEEP:
MD5:	8CE13D6C441BD30880282ACAA1EA1A66
SHA1:	34E16085B5F5A0B1408DFFB73E354F025E8CDC9E
SHA-256:	2507C1397B7CCFC126EC41F2D23E81B87BF2441AB2EA57353DF0E53561C02DFC
SHA-512:	56F080483F0122FAE58E62A9BF73F4CB2F72CCB7D776B49378EDD42D69386ED96FB4DC696E95B1544654193303E7D8EA464D4C11A62CA64A6F47BAB0DEF316E3
Malicious:	false
Reputation:	low
URL:	https://www.googletagmanager.com/gtag/js?id=G-YTQB9JTF9T
Preview:	.// Copyright 2012 Google Inc. All rights reserved.. .(function(){..var data = {."resource": {. "version":"1",. . "macros":[{"function":"__e"},{"vtp_signal":0,"function":"__c","vtp_value":0},{"function":"__c","vtp_value":""},{"function":"__c","vtp_value":0},{"vtp_signal":0,"function":"__c","vtp_value":0},{"function":"__c","vtp_value":""},{"function":"__c","vtp_value":0}],. "tags":[{"function":"__ogt_1p_data_v2","priority":15,"vtp_isAutoEnabled":true,"vtp_autoCollectExclusionSelectors":["list",["map","exclusionSelector",""]],"vtp_isEnabled":true,"vtp_autoEmailEnabled":true,"vtp_autoPhoneEnabled":false,"vtp_autoAddressEnabled":false,"vtp_isAutoCollectPiiEnabledFlag":false,"tag_id":10},{"function":"__ccd_ga_first","priority":14,"vtp_instanceDestinationId":"G-YTQB9JTF9T","tag_id":26},{"function":"__set_product_settings","priority":13,"vtp_instanceDestinationId":"G-YTQB9JTF9T","vtp_foreignTldMacroResult":["macro",5],"vtp_isChinaVipRegionMacroResult":["macro",6],"tag_id":25},{"function":

Chrome Cache Entry: 216

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	Web Open Font Format (Version 2), TrueType, length 48236, version 1.0
Category:	downloaded
Size (bytes):	48236
Entropy (8bit):	7.994912604882335
Encrypted:	true
SSDEEP:
MD5:	015C126A3520C9A8F6A27979D0266E96
SHA1:	2ACF956561D44434A6D84204670CF849D3215D5F
SHA-256:	3C4D6A1421C7DDB7E404521FE8C4CD5BE5AF446D7689CD880BE26612EAAD3CFA
SHA-512:	02A20F2788BB1C3B2C7D3142C664CDEC306B6BA5366E57E33C008EDB3EB78638B98DC03CDF932A9DC440DED7827956F99117E7A3A4D55ACADD29B006032D9C5C
Malicious:	false
Reputation:	low
URL:	https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
Preview:	wOF2.......l......D...............................O..B..h?HVAR.x.`?STAT.$'...0+...\|.../V........+..2.0..6.6.$..`. ..~......[B4q.....t..P.M_.z...1..R.S...u.#..R....fR.1.N.v.N.P...;.2........!Z......Qs...5f.G.K.an2&....2.........C.H.t..N!.....nh.<(.vN.....j.._.L.P.t..Ai.%.............._I.i,..o,C.].H.X9.....a.=N....k.....n.L..k.f.u..{...:.}^\[..~5...Z`...........`!...%4..,...K0..&.a/....P....S....m.Z......u...D.j.F...f.0`I.`.`.h#..)(FQ.F!o$........S.).MV8%Rh...r...x...T]$.=......Y...!.3.&U..."....Q....{.l/0..d..4iJ/..}...3....i[Z..NG.WD...>.[U..Q.h..@m.=..S...1C2...d...<..v.?.q.f..n...OUz.....&Z......Z."..N.....n...9.B..C..W....}...W..6Zs.i.+Z........jB.n..x.8M.....q..@I....-.%..,C,..K..#.2...4)/.v_..x.<....t.....%[.4?.=j.V..jj''..W.u..q....I.L.=......E...\.M.7{.>......W........C.`...,9$......\..o........y...4A..m.P.,X..=?.:................wF`..+.P..........M!.4.......l.>M..t.ff5r..^..Z.g...!fA,hIIQ...e.R>B.AH.VuX..>..\.=.ky...1>C....>C.c.;...6D.

Chrome Cache Entry: 217

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with no line terminators
Category:	downloaded
Size (bytes):	96
Entropy (8bit):	4.930451172213043
Encrypted:	false
SSDEEP:
MD5:	52DD4DA9135A772F7A3AD7A9A60F72C5
SHA1:	980759051050503EC46671B05F38C0FE53EBD0F9
SHA-256:	87F1A8E902DF1A57E0AE59D28C93F6380C5361712D0E9B9B0B964746EEBC20ED
SHA-512:	E6A52E943953E0FC61116E2326873C757381D4069678BDA07584D4BC53F91BF69ABB602D3D817D003FAFBE3E0214882843FDD80C53900245121C94BBFA461061
Malicious:	false
Reputation:	low
URL:	https://content-autofill.googleapis.com/v1/pages/ChVDaHJvbWUvMTE3LjAuNTkzOC4xMzISMwkHOIYdBoo_9xIFDQT1rgQSBQ0ns9QPEgUN4ncEihIFDcpVjxYSBQ3gyw5-EgUNU1pHxQ==?alt=proto
Preview:	CkYKCw0E9a4EGgQIBxgBCgsNJ7PUDxoECAkYAQoLDeJ3BIoaBAgNGAEKBw3KVY8WGgAKCw3gyw5+GgQIIRgBCgcNU1pHxRoA

Chrome Cache Entry: 219

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 400x284, components 3
Category:	downloaded
Size (bytes):	38283
Entropy (8bit):	7.971677308799309
Encrypted:	false
SSDEEP:
MD5:	CD4461711163875D2551A7269BA50B51
SHA1:	684C108113838D3BC401B4397C406EB538CF1581
SHA-256:	B34FFBB955429A1BF7DC01FAFFC598106BEF8BBD1B0DC41E3BEC6C065B9344C4
SHA-512:	23714AC6144405DE6C65DF2B8BFAE389C526F23BCA2F94FC7E0010C4CC0030E771D6A03DC163C5A843005EAC00B33952E98B72523E8FC072F9314224986A2AAE
Malicious:	false
Reputation:	low
URL:	https://higreens.co.in/wp-content/uploads/2020/09/pic13-400x284.jpg
Preview:	......JFIF.....`.`.....;CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82....C.....................................!........'.."#%%%..),($+!$%$...C...........$...$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$..........."............................................................}........!1A..Qa."q.2....#B...R..$3br........%&'()456789:CDEFGHIJSTUVWXYZcdefghijstuvwxyz..............................................................................................................................w.......!1..AQ.aq."2...B.....#3R..br...$4.%.....&'()56789:CDEFGHIJSTUVWXYZcdefghijstuvwxyz....................................................................................?..H\|y.3Yr;...j..6..Xn...;.....3..gS.~..,Ouf....r,..$..'..~.B=..:.`.#l...Gl..n.4......._x~..^yd....T.ei8..F.......... .M,..d.E\.0...i}a....../...xm.3~.t.X.lPv.....:zV..y..jsM........b{...d..\..2%k.O5....N..1........-.O....ZF..'......<.Z.....-.Gld......y.4l..,......S..J.o..H..(.7V2.I;s}.UZ.........3K..?

Chrome Cache Entry: 220

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	gzip compressed data, from Unix, original size modulo 2^32 18692
Category:	downloaded
Size (bytes):	5344
Entropy (8bit):	7.946240336288137
Encrypted:	false
SSDEEP:
MD5:	5B746D0CD5584B8C5F3681F52E1CC25C
SHA1:	A385A8BAB45776CC493297A099DF45DB9852C15E
SHA-256:	A99E7E9B42520FEAC7B6C1C16FCA81BDAA227CC891B4A76303709347AEE823E8
SHA-512:	2128BF409D5DF23E2576006DBE984A67CB33FD1507CA552043CFEB4EA7EA5BF4AF14CB99B8634B1C540BE30F8E6E519762A486748ACC495EADCB34EE809630BC
Malicious:	false
Reputation:	low
URL:	https://higreens.co.in/wp-includes/js/wp-emoji-release.min.js?ver=6.4.2
Preview:	...........Rks.8..>.B.n)....IQ..8.....L.....ho.@.f."u....../......G .}........:.{".'.i..+(......?.....b0....Y..C=.T......2{...............$wF[C.n..5...%w).ab\7....<....f.l.y.l..........a...2-.n#.XN..=...L.7e...fr'.rv^r...f..;....I.$.9......1..d.O3a.Wa..!..i...2.ts../._.&.$:...].XA.{.K.u<...YZM..\Z.T..IG.Fjo..P4.eh....`.S...Y..[..i.X'......w..Zr......8Y....f..1..)e.....P3.....W.....<.X..%w+....Z....nA.^^YiB.uu.d..ZN..;QV..eE.%.lv.3...F...n:1^X2y.t..{a......i..!h^.^J}T4.1.WWL}..X.l.6r..m..-.!.}M._n._.r.......wN.D.Y....a.RGy9p.$a...R.4..d2..jY..._.....h6VE..r...h..JE.$.{.TBJ.-.3PKrX.UZ.U[y...qSj.c1R..).(...MR;..>UB......$..S.#. .)d...br&.y[_..L\..,.Fy#........Lz.P.Z,.l.ac.T...).Q.@uNk0.Y,....._.}..&.].M(.r..)..I...\...........U@.x....vP.&......u..~.y.V.8.erm.-0.!.S...Ro..a+.F...P.s..yk6v.gr{.U...!....Z.tuI$k..\.k.J...3.>+..k.<..6.....O3z.....UY...*....k......8....xXz..q..l.av..'...P....\.)9-l..V.Uc..I.7I...XR[r+..+[A..bq_..:q.

Chrome Cache Entry: 222

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced
Category:	dropped
Size (bytes):	2228
Entropy (8bit):	7.82817506159911
Encrypted:	false
SSDEEP:
MD5:	EF9941290C50CD3866E2BA6B793F010D
SHA1:	4736508C795667DCEA21F8D864233031223B7832
SHA-256:	1B9EFB22C938500971AAC2B2130A475FA23684DD69E43103894968DF83145B8A
SHA-512:	A0C69C70117C5713CAF8B12F3B6E8BBB9CDAF72768E5DB9DB5831A3C37541B87613C6B020DD2F9B8760064A8C7337F175E7234BFE776EEE5E3588DC5662419D9
Malicious:	false
Reputation:	low
Preview:	.PNG........IHDR...0...0.....W.......gAMA......a.... cHRM..z&..............u0...`..:....p..Q<....bKGD.......C......pHYs.................IDATh...P....=..8.....Nx. ..PlP8..;.C.1iL#6....Z..!......3.po .o.L.i.I..1fl..4..ujL&6$...............w...........,Z..z. ~.....\.._.C.eK...g..%..P..L7...96..q....L.....k6.....,xz.._......B."#...L(n..f..Yb....8.;....K)N...H).%.F"Ic.LB.........jG.uD..B....Tm....T..).A.}D.f..3.V.....O.....t_..].x.{o..........x?!W...j..@..G=Ed.XF.........J..E?../]..?p..W..H..d5% WA+.....)2r..+..'qk8.../HS.[...u..z.P.....-.A.}.......I .P.....S....\|...)..KS4....I.....W...@....S.s..s..$`.X9.....E.x.=.u.iJ...........k......'...!.a....*+.....(...S..\h....@............I.$..%.2....l......a.\|.....U....y.....t..8....TF.o.p.+.@<.g........-.M.....:.@..(.......@......>..=.ofm.WM{...e..,..D.r.......w....T.L.os..T@Rv..;.....9....56<.x...........2.k.1....dd.V.....m..y5../4\|...G.p.V.......6...}.....B........5...&..v..yTd.6...../m.K...(.

Chrome Cache Entry: 223

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	gzip compressed data, from Unix, original size modulo 2^32 1360
Category:	downloaded
Size (bytes):	583
Entropy (8bit):	7.6701563908952695
Encrypted:	false
SSDEEP:
MD5:	460128A36FF61689EC89B83EE9479AA5
SHA1:	48DC4A428BE689A4F7931A4D408CF737C72AAE18
SHA-256:	357CD568BFE68BE2E7058BA0ABC14C0F044F406278E9556B82464D14D0F76358
SHA-512:	F5A9000292615D064990B994E5B3C1E42E57604226873CBD7063064F0705AA82B9D384DAE1E68E49CAB139B7A4438D9ABE966A9A0C7B5D8EAF9A3AF7336B8338
Malicious:	false
Reputation:	low
URL:	https://higreens.co.in/wp-content/themes/Divi/core/admin/js/common.js?ver=4.2.2
Preview:	..........uRao.0...~.!...d.[..B.6m.....I..k.......C IAD(..{~...R..Z.Y...d.3.V.T....l.....0PY4KQP..A..,..&.......'.Ro.%f.v.+.kj$.&....y.C{....`cE..lri0....Jl.......9..DF.4..2"_.A...q!-.....d...#i"c.......D..cO..............e..`......?......7.GI......)...,;.A7..EnK."g....U.y......$^Qo.b.....=.,\@.j.. TJ.J...@..AN.....f,82..Buf.P.(."...Z.L..I....t\|..AW\|`..q..X.v.vW.{{...H.t>8....~ti..e...;.].y.a..;&.S.vh..h.5.5.?....-d..v.2.n.....Z.4]t;.[.m,..n.>..^.}......K..~..,0}.......P_...Rd.......z....R.m..r..s..`.O.'Qg.P.g...`..g.......$,\|....H......*4{z..1..EP...

Chrome Cache Entry: 225

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text
Category:	downloaded
Size (bytes):	6508
Entropy (8bit):	5.404210756606308
Encrypted:	false
SSDEEP:
MD5:	61D9AD92456255976AA047C9E97536A7
SHA1:	B5FE503FD1B84D97FE2ABF6BC2E884071C9C6A68
SHA-256:	6810B59CEB179A87DC832C0F7D545B9CFC2FE40DB04FD86779C13F9613D3D77B
SHA-512:	B2FE5F583BEB24DFF01297623714EB9F13CA47CBE5B14BB22529DE2DD3E24A6660E1894BFC56DE888A3824FFFEB7AA32C96B9F4A5CC1A2B649C13B7FD93A4C11
Malicious:	false
Reputation:	low
URL:	https://fonts.googleapis.com/css?family=Lora%3Aregular%2Citalic%2C700%2C700italic&ver=6.4.2
Preview:	/* cyrillic-ext /.@font-face {. font-family: 'Lora';. font-style: italic;. font-weight: 400;. src: url(https://fonts.gstatic.com/s/lora/v32/0QIhMX1D_JOuMw_LLPtLp_A.woff2) format('woff2');. unicode-range: U+0460-052F, U+1C80-1C88, U+20B4, U+2DE0-2DFF, U+A640-A69F, U+FE2E-FE2F;.}./ cyrillic /.@font-face {. font-family: 'Lora';. font-style: italic;. font-weight: 400;. src: url(https://fonts.gstatic.com/s/lora/v32/0QIhMX1D_JOuMw_LJftLp_A.woff2) format('woff2');. unicode-range: U+0301, U+0400-045F, U+0490-0491, U+04B0-04B1, U+2116;.}./ vietnamese /.@font-face {. font-family: 'Lora';. font-style: italic;. font-weight: 400;. src: url(https://fonts.gstatic.com/s/lora/v32/0QIhMX1D_JOuMw_LLvtLp_A.woff2) format('woff2');. unicode-range: U+0102-0103, U+0110-0111, U+0128-0129, U+0168-0169, U+01A0-01A1, U+01AF-01B0, U+0300-0301, U+0303-0304, U+0308-0309, U+0323, U+0329, U+1EA0-1EF9, U+20AB;.}./ latin-ext */.@font-face {. font-family: 'Lora';. font-style: italic;. font-weight:

Chrome Cache Entry: 228

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	HTML document, ASCII text, with no line terminators
Category:	downloaded
Size (bytes):	13
Entropy (8bit):	2.7773627950641693
Encrypted:	false
SSDEEP:
MD5:	C83301425B2AD1D496473A5FF3D9ECCA
SHA1:	941EFB7368E46B27B937D34B07FC4D41DA01B002
SHA-256:	B633A587C652D02386C4F16F8C6F6AAB7352D97F16367C3C40576214372DD628
SHA-512:	83BAFE4C888008AFDD1B72C028C7F50DEE651CA9E7D8E1B332E0BF3AA1315884155A1458A304F6E5C5627E714BF5A855A8B8D7DB3F4EB2BB2789FE2F8F6A1D83
Malicious:	false
Reputation:	low
URL:	https://td.doubleclick.net/td/rul/11259937738?random=1706617982880&cv=11&fst=1706617982880&fmt=3&bg=ffffff&guid=ON&async=1&gtm=45be41o0v9134757481&gcd=11l1l1l1l1&dma=0&u_w=1280&u_h=1024&url=https%3A%2F%2Fhigreens.co.in%2F&hn=www.googleadservices.com&frm=0&tiba=Hi-Greens%20%7C%203%20BHK%2C%204%20BHK%2C%20Luxury%20Apartments%20%26%20Villas%2C%20Zirakpur%20Punjab&npa=0&pscdl=noapi&auid=245343967.1706617983&fledge=1&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uap=Windows&uapv=10.0.0&uaw=0&data=event%3Dgtag.config
Preview:	<html></html>

Chrome Cache Entry: 231

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	Web Open Font Format (Version 2), TrueType, length 35888, version 1.0
Category:	downloaded
Size (bytes):	35888
Entropy (8bit):	7.994243693545152
Encrypted:	true
SSDEEP:
MD5:	78BE9C1DAEADB1AE4F8D1E622D7B2011
SHA1:	60923C3B5DFE1A5A07B9092EC9C5583D004D0C5B
SHA-256:	9F46649EA544819982EA288C6F386DD67D46DA0F453F95DA542196372B79731E
SHA-512:	791C090F44796904DDCD1E13AB67BCDF37930BA319CF042079C2E37DF633D1C95AE6F2F04A88A7814379487CC3ACDEC13AE172B615305B864023EA0A15CB6573
Malicious:	false
Reputation:	low
URL:	https://fonts.gstatic.com/s/lora/v32/0QIvMX1D_JOuMwr7Iw.woff2
Preview:	wOF2.......0......................................9...$..6?HVAR.b.`?STATr..r/L.....\..f..2.0..b.6.$..`. ..b.....[..Q#.;...f.4"...`....s[......`...0~\|{g..9Ie.M.=-".(..)...z&5.!J\I=F...v.....h.......JS.>.e>.t.i\.zv.{..PF.......f..[,....?.m....y...1~[W~.l....."......MZ.+.?...y....D...A!..n..#.2......S.1v1..51.w....#.$...x.4V.W..IE..U.....N.........Sd.....1....\|.\.!lS}.3.Mn:.v3Ky'.J.>...c....&/.DI.j.C..P..Q..!kBE.~...<x...............t..c Y@#..iFd..2..3UG.5.].?..)..._.@z...j..9>(].....A..>+.&.L`.@.X..'..U...`u.....tY...%...Rz=.[fa.......(9.,..:.....e...,...w^F.2+..,.R..u.S.M..$.... .@.6..W.c0].ugX.Xv.>....z<.H:.Y..o.;...rJ?.).ar'h.E.R.....U.......u.Z`..R..I.0.d.ee................l.;....x..?.X..:].T."9@5UE.....'..xa.....P=....W..3PQf2.]..3P........Nx.?.....n]...U.....9f/....=.....%TK..........Q...&.[i.$@.X.b!..Tk............rp..B./...K..^....?Q.`.;.E?...YeM......cI. k.....!..9..z..'C.2K..[?....k..q..Np.-.l5(i....d7)....4$.b.....[I:3...3.\|...\|8.n...

Chrome Cache Entry: 234

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	gzip compressed data, from Unix, original size modulo 2^32 59016
Category:	downloaded
Size (bytes):	35623
Entropy (8bit):	7.993912872202134
Encrypted:	true
SSDEEP:
MD5:	FF6C9E677E54008818F72708AB0F9382
SHA1:	32746D4AE1F8FBECCB280D16FEE8FC192F403AEB
SHA-256:	88D3E64209EB0F3FB5098328DDFCB0DA5BD11711F144D811536674B2ED36B1F3
SHA-512:	0A5667BFEE456C3E0508D36EFE87AA3E87990737470E2C69EC6560DD3DF158DE2B43671F5B9F00553C7FF2639F92ACB9787AE82B5F2AF2E3F1EC91C7C5CC8E25
Malicious:	false
Reputation:	low
URL:	https://higreens.co.in/wp-includes/css/dashicons.min.css?ver=6.4.2
Preview:	...............L....U...I.9I..9.c.9S7.....7f..h....._....v.......;......rK.......o.w5O..Ti^...W.....E.7m>O............7..;..\|........D..As..1.....K.-*. ........G[V......y...?.{9feQ....K9..R......P.G...e..<=.y.....T.\U.#o.m/...<....G..%.....E.fX.O.n.....\|.06.............Rw..H...O....?.......!F.&.....bz.O......L.4..w........L.z..6C..e...U......S'..\|......_Ral...9.........D`/....s..U..<....8..Y(`.......'3..........X.<....5.W....d.....7s...RO..!..l....,.W...l...?..1..e..>s.&2....l.L.S.....c..A=......5.h.....L..OE...I.1.Zs#A.%.{+)..I.G.ND..~..I...8`...4...3.T....d....,@..@.uC.......>...".........c.[w..W...0...`.....`.1.....2P.3.p...Z..\|.Md..'W..,!..H.08.#+..np....(.Jl...B.....0.......uE.a<.!..8......3.....{.H..!..lB....3....Y.Ha.!.tlJ.\.b.Y..4..d.gQ .A`m.....`X.J...a..A[..'..\.'n(........9.bt.R=U....D....B..".\|.cO...\|.c....!.....E.L1m!.......d.1.>.......G.....X.y....R4a..%..k....a.b)M.y2$U.+F......$.,...%.Ij.'.....7.H.._{A....GO.x..]H...2.

Chrome Cache Entry: 236

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with CRLF line terminators
Category:	downloaded
Size (bytes):	12907
Entropy (8bit):	4.993175995877162
Encrypted:	false
SSDEEP:
MD5:	47BA8C8EEDFC236640EE7E2DFDD5B515
SHA1:	645B424D836938B668B3F2BB140EF04B74F6FE91
SHA-256:	07463065874649F8F8795C60019F59F5F4912C4EBBADDA4902BE5E6D8FCB074F
SHA-512:	F8EDA74D2269C0DBAD55A196EB7C1283F34F6D196F1E6D0DA45862F44DD11EB96FA500045BE1D51AC8C9C2B31D62FAECC1556466A33A018FA6065E69760462E2
Malicious:	false
Reputation:	low
URL:	https://higreens.co.in/wp-content/plugins/wp-slick-slider-and-image-carousel/assets/css/wpsisac-public.css?ver=3.6
Preview:	/**** Box Sizing **/...wpcolumns, .wpcolumns {-webkit-box-sizing: border-box; -moz-box-sizing: border-box;box-sizing: border-box;}...wpsisac-slick-slider , .wpsisac-slick-carousal * {-webkit-box-sizing: border-box; -moz-box-sizing: border-box;box-sizing: border-box;}..../*** Clearfix */...wpsisac-clearfix:before, .wpsisac-clearfix:after{content: "";display: table;}...wpsisac-clearfix::after{clear: both;}...wpsisac-clearfix{clear: both;}..../* Slick slider ***/...wpsisac-slick-slider .slick-arrow, .wpsisac-slick-carousal .slick-arrow{position:absolute; z-index:9; padding:0; margin:0px; display: inline-block; background-color: rgba(0, 0, 0, 0.7); text-align:center; width:30px; height:50px; cursor: pointer;}...wpsisac-slick-slider .slick-arrow svg, .wpsisac-slick-carousal .slick-arrow svg{fill: #fff; height: 100%; width: 100%;}...wpsisac-slick-slider .slick-dots, .wpsisac-slick-carousal .slick-dots{padding:0 !important; margin:0 !important; text-align:center;}...wpsisac-

Chrome Cache Entry: 237

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	PNG image data, 45 x 45, 8-bit/color RGBA, non-interlaced
Category:	dropped
Size (bytes):	1202
Entropy (8bit):	7.721986550822857
Encrypted:	false
SSDEEP:
MD5:	FBA9E9BB385C4FAA5DB4C4AFF8469D8F
SHA1:	A209E2931B82631326DA9DB96CF597B005468951
SHA-256:	8FAB300E64A0DF592FA450416B466C6B5B55B477108D94B9C0720BEFA0B25B42
SHA-512:	8E56104EC8B0320B8254226F0F628AC9AF800D47BAD6CB9878F5B666BD15FFF33E371A8A5772B985B9956A56E61558F20C7272326E5C1DFB4EABA60DF668F272
Malicious:	false
Reputation:	low
Preview:	.PNG........IHDR...-...-.....:......sRGB.........gAMA......a.....pHYs..........o.d...GIDAThC..o.1......U.{Jm..:.4{V.m..!.2.#...^.um.#.;3.....$dl........]A..{E_t...j.B..8.E.h.3F..O.Z\|M..W.^..].O:./S.8F....>....S......m.\.2.....t.M.YZ.-..9...5v...?.b..).........w&.c.=B..g..@.y.$f.e...?z....0...T=/..j.X....Q_0N)w..=.hItv?@._w..BKo..v)..Rxu........m.F.....:.f....A.....-.....c...x...J....hU.(.V.....O..../..XY>.#zY..O.gx...y.(Z.q..(....9....f.....D..Bv.......I..7X.H.V5.....J..(.s....H..h./&.....{"k_LB..#. v...+E#5.g...N.(.hdY.p..]....R4....1.5....OZ......\|...J.G.U>.... .>...\|`.j4..=S_i..m1k...%>.1....=.(...{DK...n...<eT.V(E..eU.!......k.Q..".LE......l...p'...h1.!:-Z..N.h1...^..'-..EK.Kw...Oj....R4j^L.I.EK..~..Q.o{..h1...;.jR$..]$...H........f.."+\|..)..h.~...>.....F.F.@]....IxE...h..S..`.b.tCt....b.{.4+Z.(E.....TJ.!:....1..[.........T':..._..V.]b+...FJu...(.h..e......V...8..o...d..F..."..J....%..%........n.M...A.c.D..-...%..d`...Z.;.t\|^...

Chrome Cache Entry: 239

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	PNG image data, 45 x 45, 8-bit/color RGBA, non-interlaced
Category:	downloaded
Size (bytes):	812
Entropy (8bit):	7.662216435325101
Encrypted:	false
SSDEEP:
MD5:	A68240F02363135379B247A00B2B0AEC
SHA1:	220B71F7DD7CB96CB146E341F5E97634E404133B
SHA-256:	39A5F654F3B426AECAB7779008981A255219A0568003BD959D21E1F1D913A27F
SHA-512:	2C392CDF8728E91723175FD240AA8E89A9731EE2C343DA8B291CBDDAD65C40D5D369DA94882416C080DD68DB7A5EDFB8C33111953CE25C6A8A0CB9F5716574EC
Malicious:	false
Reputation:	low
URL:	https://higreens.co.in/wp-content/uploads/2020/09/burger.png
Preview:	.PNG........IHDR...-...-.....:......sRGB.........gAMA......a.....pHYs..........o.d....IDAThC..o.A.....5Q.}&..M.-Mk.jl..C.-W.. ....$,.v....d...............V%.Z.\hUr.Ui..N.F.b...mJ........S.....:...].m? m.)......3.=k......R.N"."......).r.....<..X....MjT..l.e..m.)s.i.&U.G)...#...Vr!)6.wI..`.7.[....i....l.q..yzB.r...6....4)..8..n......r.xp...C..l..I.\..B.e.....-.1.+.P....n..p..i...Bg~\|d..1..h...u8..P...j!&6.d..]/S%..b.....,.....>c..........aLD.N.P..KR...{..>.b.N...D.$.~.#./7....aQ......&4...k..Ae...M.V.qrq..t..9..]..q....#7Z......N[.'..F.^.m.....v7.c6.[...._...~..1'......k#....d.N...:iN&.FE....+G..{).tQ..dfI.q.$A....7,..q.w....."Y.4ND\....!#7..........w...B.Q.Vbk:....H...g..X.j!j.r....oN+..PA.q..w.r.oP..(....?s.R>.!...,..g...B....J..*- 4...s'..<n.....IEND.B`.

Chrome Cache Entry: 241

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (7711)
Category:	downloaded
Size (bytes):	294063
Entropy (8bit):	5.56273829851447
Encrypted:	false
SSDEEP:
MD5:	9B91675014790410484AC599E7AA884A
SHA1:	BC0B34F107B9D188E3C454BDD3A9ECBE43EFE581
SHA-256:	CA422AAA240892F6D64D10FFB3DE66EC50F1CD9F772B782A5A9EEE88363E270E
SHA-512:	BF2DB90598DC4B23EAAD5624CDAD3ED3BBFF5CB43DF0D8E09AF218BD73D61D4BF66BD9256BEBBDDE95147EDFFCBBB973E298A27AE5B46533768C35B6D7DC71E5
Malicious:	false
Reputation:	low
URL:	https://www.googletagmanager.com/gtag/js?id=G-YTQB9JTF9T&l=dataLayer&cx=c
Preview:	.// Copyright 2012 Google Inc. All rights reserved.. .(function(){..var data = {."resource": {. "version":"1",. . "macros":[{"function":"__e"},{"vtp_signal":0,"function":"__c","vtp_value":0},{"function":"__c","vtp_value":""},{"function":"__c","vtp_value":0},{"vtp_signal":0,"function":"__c","vtp_value":0},{"function":"__c","vtp_value":""},{"function":"__c","vtp_value":0}],. "tags":[{"function":"__ogt_1p_data_v2","priority":15,"vtp_isAutoEnabled":true,"vtp_autoCollectExclusionSelectors":["list",["map","exclusionSelector",""]],"vtp_isEnabled":true,"vtp_autoEmailEnabled":true,"vtp_autoPhoneEnabled":false,"vtp_autoAddressEnabled":false,"vtp_isAutoCollectPiiEnabledFlag":false,"tag_id":10},{"function":"__ccd_ga_first","priority":14,"vtp_instanceDestinationId":"G-YTQB9JTF9T","tag_id":26},{"function":"__set_product_settings","priority":13,"vtp_instanceDestinationId":"G-YTQB9JTF9T","vtp_foreignTldMacroResult":["macro",5],"vtp_isChinaVipRegionMacroResult":["macro",6],"tag_id":25},{"function":

Chrome Cache Entry: 242

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 634x501, components 3
Category:	downloaded
Size (bytes):	271147
Entropy (8bit):	7.969792853504145
Encrypted:	false
SSDEEP:
MD5:	56B7EEE257685D167802B0B111AF3D53
SHA1:	23BD0A377E350D274903EDCB6F078F066273A744
SHA-256:	95B66F42799315B6A15786DC966DE507EDC3229802FA286D55B03078CE023BA1
SHA-512:	B1827A61C3750848BABE94CAA39F2964DD5163A49247A282EDEE860FDD2A8DC11B3AE5C9CD409183FFEBA3C2F89AE44E63E55E604F4CB5175FEA6CE922D9BC59
Malicious:	false
Reputation:	low
URL:	https://higreens.co.in/wp-content/uploads/2020/09/img4-1.jpg
Preview:	......Exif..II*.................Ducky.......d.....+http://ns.adobe.com/xap/1.0/.<?xpacket begin="." id="W5M0MpCehiHzreSzNTczkc9d"?> <x:xmpmeta xmlns:x="adobe:ns:meta/" x:xmptk="Adobe XMP Core 5.3-c011 66.145661, 2012/02/06-14:56:27 "> <rdf:RDF xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#"> <rdf:Description rdf:about="" xmlns:xmp="http://ns.adobe.com/xap/1.0/" xmlns:xmpMM="http://ns.adobe.com/xap/1.0/mm/" xmlns:stRef="http://ns.adobe.com/xap/1.0/sType/ResourceRef#" xmp:CreatorTool="Adobe Photoshop CS6 (Windows)" xmpMM:InstanceID="xmp.iid:B4A024BF02F611EBAE02B625EFFB9B7C" xmpMM:DocumentID="xmp.did:B4A024C002F611EBAE02B625EFFB9B7C"> <xmpMM:DerivedFrom stRef:instanceID="xmp.iid:B4A024BD02F611EBAE02B625EFFB9B7C" stRef:documentID="xmp.did:B4A024BE02F611EBAE02B625EFFB9B7C"/> </rdf:Description> </rdf:RDF> </x:xmpmeta> <?xpacket end="r"?>....Adobe.d.................................................................................................................................

Chrome Cache Entry: 244

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	gzip compressed data, from Unix, original size modulo 2^32 757049
Category:	downloaded
Size (bytes):	120106
Entropy (8bit):	7.9946750761468
Encrypted:	true
SSDEEP:
MD5:	1588AB64BDAC9FBBFC87F70E7A4E2509
SHA1:	CF60C193CA2D8111A1FA2C3E8433B425278452FA
SHA-256:	ADEE4108630C59795838CEDD038BF1DED139BC8FBD272B8AFD3EF7EE7AA85729
SHA-512:	9C7BBCA5024E941D1B0EEC252A748FDF39A1F96AF9EF2CA800CE3B5BE3A961D9594AD0ECC601661BA87A20FC566DC035B6A7166991102A83D3CC4D3A6B93E741
Malicious:	false
Reputation:	low
URL:	https://higreens.co.in/wp-content/themes/Divi/style.css?ver=6.4.2
Preview:	..............%..>.2..dV.....#.....i40..LU......$VP$/I.#...lJ..%[vD.....{..Z..._........-!..;_.......3...t........T:..m...9..............J..s8.....`S.........%`...a........#.n...Je]....>.....@U&H..K=\....\.L..sC).....6..;.m...ZI.W@...M.%......U.m.P...c..>N.2G,g.P3....cZY.J...-7...x...x0..2../i......9s.qPjA.LQ..H.LI...'...+. ..Z.7m.#...%M....%H..........._.o...h.........`.....<..`5?.]...T&..h.._s-.<..../..W:.Ib.45Jn.)e.e.S...7M....P...+.k&.m....LS...b0el.@LY&...).O7.r.q.."N...e.i1...i.4-....x.z"S>...Oy.O9......b:.].\|....M...60...N--......TN.3....%..._O..V.JLW..0.9.q..,.9~%.00..!.\..:.!..h....C<..o....S..<.qB-...YC....b.......t.....;.@...g{..x...n+ .J........!..w.."...........B+._.].>..b.#.......d#.2W?..5./Xh..l.g*...(..m...3H..3....\<.b....=..S.y&.:..SG.f8...2G....D..e..HO]&...j...cO.....r.s..W.......=.t5..>..c.jA.q-Sc.B).O^__O.C..,..d..b.....d.oT._..d8...7.`xv..g..>..L.D.1`MY.T.....q8.a..;Qvs^.....YXt..~..^"..........D..n....Ms >&..1^m...

Chrome Cache Entry: 245

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	PNG image data, 329 x 230, 8-bit/color RGBA, non-interlaced
Category:	downloaded
Size (bytes):	174409
Entropy (8bit):	7.987025816414545
Encrypted:	false
SSDEEP:
MD5:	B8159180C1884099DC8F233B9CD1583F
SHA1:	D2FDFF7DA83188321F674C650C7A2AB1675B039E
SHA-256:	BC4DF188FDFA00026DF0F0F71AFCA592FDCD43097B3E982D3F08503CE4421936
SHA-512:	1F96420FF1C411518855A0CB321B0FFA90B3BB26EED58FD2C24FD596493967125853ABB0B0697E47C9ED5F6EE37F85C93141E5B1D281582DEF6F61596FC64698
Malicious:	false
Reputation:	low
URL:	https://higreens.co.in/wp-content/uploads/2020/09/A7.png
Preview:	.PNG........IHDR...I.........X.w'....sRGB.........gAMA......a.....pHYs..........o.d....IDATx^....]........df.dfF..,.2..3....b.3333...e..$.t.s....q...=..r.>....g..k.Z..;....eV.#.n....(l.EQ..5..IK...)nc.\...G.W?......a..PC."..q...S.2..l...E.C(.gK..:..Q.sH:wP.{..{.Q..s.u}_Q..J..P.1...L.....\.Du.^T..CM.$j{..;.n...xlQ...;...q.. ...c=..q..5.t/.M...p....)...@N.~d72m:...}..CZ.(.kF.U7a.3..!.j..K.X<..1...#.j..5....c. ..K....I.7.Cf.^d.Y..L'.Y;..............c....8~....z/.&.Q...r;...s..N...H..Kj..k......_.o...\..vN~..?..4..+..K^.>S....(i=.......P.y..]GLU=.x...:;Uv.CE...e.R....+..gL.W.}..GL.....<.....\@e.3.{.... ....k..M!Y..\..2.z......y.ri..)..`HS..)dr9..m8.kp...)........g../....)^G....:/.L..1...+..N..i...m.e)..:.J.)...L...H.bJ%..ib.>$T.EBeH\.S>......).J.\..b..UcH..@......W6.X>..%...1j...c.*.E...!D..aw..".G..7...A.......Nj....Y...G)u..w..f......6.u..6.v..\|.c...2Hf....\-c(k.Gy......e.Jq..!85.H...(rk..M..z...R\.$D.Z.u.W.u....(&.&...3....yG.S5...[i..

Chrome Cache Entry: 246

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 400x284, components 3
Category:	dropped
Size (bytes):	35608
Entropy (8bit):	7.972461593950856
Encrypted:	false
SSDEEP:
MD5:	2B23621104F5E1BD48362E8A3F6F104C
SHA1:	C2C2133E91FFC90B3D8A919A7E065E78C279F146
SHA-256:	2A27697E791C8F85AAB342C6E56D2A3082C4314DA7B9BBA181E19FBBB5A114EE
SHA-512:	914D4D0C12C64811660A66E32E3B2DD5F0F62B399549566567CB05283FEF1D611A28745121F8CDCD9ED336CCF9CC7A14915E7C2D18D24EE920ACF09A70C85734
Malicious:	false
Reputation:	low
Preview:	......JFIF.....`.`.....;CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82....C.....................................!........'.."#%%%..),($+!$%$...C...........$...$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$..........."............................................................}........!1A..Qa."q.2....#B...R..$3br........%&'()456789:CDEFGHIJSTUVWXYZcdefghijstuvwxyz..............................................................................................................................w.......!1..AQ.aq."2...B.....#3R..br...$4.%.....&'()56789:CDEFGHIJSTUVWXYZcdefghijstuvwxyz....................................................................................?........[j.I!...P]<.......7../...n.;..0.e....PO=FN9.>........o.Kg-......e y.(......G.....X..[.1.....r.I..r+."5.q........ii..w.....Or...._....y.g.O...ZY.o...w7.N[u...#.NA...........].{..#........A ..?.>...e.!Q.#..;~?.u..b......e..`.8.\>.J.z....V;.e..ZF.....U.z.=.c..-..P...c.G8#.3.U...k{.wHU.fXr.A

Chrome Cache Entry: 247

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	PNG image data, 46 x 41, 8-bit/color RGBA, non-interlaced
Category:	downloaded
Size (bytes):	913
Entropy (8bit):	7.688072098733678
Encrypted:	false
SSDEEP:
MD5:	ECCDFD99784519FE42F998D80B4F9064
SHA1:	564B755304DD47511DF505303268929B275215A7
SHA-256:	3CC1954B6174C97D431B11010211799D0557ACA30946E9798A77C36F4B05AD96
SHA-512:	47779E6C837E1C3125F60E1BD736C4734C6DC480D86AC54E26D81D6D23A88FB8B5841DC86D8B48D4B14C0D465DD0CBE92B0E56492DE794709730932769D98272
Malicious:	false
Reputation:	low
URL:	https://higreens.co.in/wp-content/uploads/2020/09/plean.png
Preview:	.PNG........IHDR.......).....J.......sRGB.........gAMA......a.....pHYs..........o.d...&IDATXG..S.@.....v..}..N..^N[....-SD@T..ET.D.....[.9.I........=.d..7.g...'.6...%^..J1...7n..Z./.2..{A.=.4..,.{/.b.....E...j.._....ef.hc!.'..)q.<....>.g..k........Z.......H.O).s.0.(.#.i..WZk8.c6.... .^...-^..[b..h..E.al5.?.Pn).g.....?2......Z....z..;7...p.g.......n.'..=u..2.N..M~...........Z.&...6].b6..c.wLa#.x... .!..B.G..1......}Wh..[........X.NveL.......Y."...i4h.b3..Q.w. .P......../p.iq..{n..eG6p...:....6,..l7.............i.....Q..;..Rc.mq.Q...).>V`.0......\XUj.X.#....e..63Y..L...+Q.....u.=.M..$......6....G..E+.....=>@N.....2YF.I<5.A.,...08>@._].$.J...$.2.>.....w8.P ..q[X`./.R<N18.'.T.3.>..O.=0...q'.nN..\|4...%5..6..........4.nvG&..q..L.....R...,....+~N.*.M..=.a..8.-O....r...Gq.M..^..(.`....CJ.$..'.6&...k....Tpn.....&q...R..Q......'.6........F.i......IEND.B`.

Chrome Cache Entry: 249

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	gzip compressed data, from Unix, original size modulo 2^32 92400
Category:	downloaded
Size (bytes):	46866
Entropy (8bit):	7.993084870615235
Encrypted:	true
SSDEEP:
MD5:	F99B5A5FBB4F71308EFF04B6A5F6CBA1
SHA1:	00F03469C923C04C8DFA2EEEAEC2C00EEAE55930
SHA-256:	127D87DEA66993334BB0253EC0185F480927E1CF7819BD67035DDFE2469DE40D
SHA-512:	9F9447D1F54464167E1B77B49B0E3A951E754E0A222AAA0BE4F9A9530692881DEA3493E1E8948699C5BACFEFCCBCCBC26AB95E7227BF77ADED60AFCA9AFCBA10
Malicious:	false
Reputation:	low
URL:	https://higreens.co.in/wp-content/themes/Divi/core/admin/fonts/modules.ttf
Preview:	..............Wy.\|.:]U]5.Lu.2.=[uOW.f...{4...v.fl-.=.<....2.%.`l..#0.EHXBB.P ..[ ..bS`.a...<N.M~..o...O....t...S...d...Vw...9.9....K...AlBI..uc..;...?....n>#~.qB....~.g..s...._..m.O....?F...w..o..._....._=......q~...O.u.ko...O..1B.S.....].y.....A...u.k...A!p.....}.].~.X......g..>..b....~........W~........@..b..}.:K....f.iA.Cm~;.4....g...AL$D.D ..=.......R}i....H^ .'\|.K.<......8..w.H.e] ...H..KY..b./.i.!$[.V.D.X...`.rfZ...O.d)...A.......T..".....p.....-=(....8.......rPo...,V..RLcU.h?.>`.a;T....l....Q.6.Q,X.......@lP.-<EF......G.M..2.....(.[.8...8.l......E*.V..6...R.../.M-...V.a+...(.AC..E..u.J.$\l..C..,..du....u.....S..u.J..i...K.m.A......4X68...._.K..3G.d.4..k.X.@.aM.q...3.?+.k..(..-.PE.;\g....Op.`.P..Z..O5jYX...S/x:& .K.......@O4..u18XV.......,n_...........]....>(y.....20./...nl.......X.._....}.L..b...x.l.K.5..a..i....k..6.F.H...q..x..$..u...F`.P.....u`.uj.`z..Zr..Q...)B.>f.K8P..a.+e&I,..04.`/..1 I...y..L..J.q..\....5.&.\|..8.=B.)^......

Chrome Cache Entry: 251

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 634x500, components 3
Category:	dropped
Size (bytes):	197074
Entropy (8bit):	7.96982340035508
Encrypted:	false
SSDEEP:
MD5:	6020B41DCA884D238E8B607FB84CAFAF
SHA1:	86BE591C52C51BDDFD3F32AA6CAE2330777BAD22
SHA-256:	D2D80E3193399A3EB288AAFC46C29956D47020D6770182F6BF9CB40DEF167A48
SHA-512:	B0C985E31A7E9230DFF11E06E0797E2617D3ADFE960383C77860B7E4FE6165815E270A0EA86EF74693124E19C160303B4A4E507D2E0E97058C75A8095C6AA3A2
Malicious:	false
Reputation:	low
Preview:	......Exif..II*.................Ducky.......d.....+http://ns.adobe.com/xap/1.0/.<?xpacket begin="." id="W5M0MpCehiHzreSzNTczkc9d"?> <x:xmpmeta xmlns:x="adobe:ns:meta/" x:xmptk="Adobe XMP Core 5.3-c011 66.145661, 2012/02/06-14:56:27 "> <rdf:RDF xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#"> <rdf:Description rdf:about="" xmlns:xmp="http://ns.adobe.com/xap/1.0/" xmlns:xmpMM="http://ns.adobe.com/xap/1.0/mm/" xmlns:stRef="http://ns.adobe.com/xap/1.0/sType/ResourceRef#" xmp:CreatorTool="Adobe Photoshop CS6 (Windows)" xmpMM:InstanceID="xmp.iid:3D7DA50A02F611EBAE9BD6256183C9EF" xmpMM:DocumentID="xmp.did:3D7DA50B02F611EBAE9BD6256183C9EF"> <xmpMM:DerivedFrom stRef:instanceID="xmp.iid:3D7DA50802F611EBAE9BD6256183C9EF" stRef:documentID="xmp.did:3D7DA50902F611EBAE9BD6256183C9EF"/> </rdf:Description> </rdf:RDF> </x:xmpmeta> <?xpacket end="r"?>....Adobe.d.................................................................................................................................

Chrome Cache Entry: 255

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	PNG image data, 46 x 41, 8-bit/color RGBA, non-interlaced
Category:	downloaded
Size (bytes):	885
Entropy (8bit):	7.6695015345344535
Encrypted:	false
SSDEEP:
MD5:	45782371F7234AA6F4A622507967BEE7
SHA1:	D7C6E87139195B4AC211CF3F4709497736856821
SHA-256:	ADC214DCBEFA65B454DAB3A18CA596332F6B33DA44A571BF2AAD7139C891AD08
SHA-512:	742F2D4977ED804783B7CBE58D50C9FA68F053E790EA4231F293ED8AD9A0111587F2DBEF5A04F0539F7C38EA6060696389B95FE6DB6234CD38354A4F6747E110
Malicious:	false
Reputation:	low
URL:	https://higreens.co.in/wp-content/uploads/2020/09/trean.png
Preview:	.PNG........IHDR.......).....J.......sRGB.........gAMA......a.....pHYs..........o.d....IDATXG.X.OZA...^{.+=..z.m.6m...U.z.j..TTD..P9.B.M.........4}_2.......f.B.(l.V.&n5./..\|...G.?~.<..$.....\|..R....-.j.6......9L....D.m.........2.J.."3.x3..&m.\|..B...l....3....9{>..."5>....."U.L..Q.mSp.!.F.B.x.()....s1.ij...D..c78.O..S..J....%#S.Z..$.........@.8_.....#..E.Uv.N.t."..n.Y.x...^..... ..~B......Z...M..l.....6.G..~D.!m..Hc....~....,.q.^......P(.`..JXH.D.%t..G,....9.....m,>1.,#..4....s.b"....h_.....a.1...OE.y......6.....].`-.ds.....Y.g...C.....!..........'R-.....b6&.w.....F.?.s......Y.]x.d#.k2..eT..J..8..M...e.N.._..+.l..Dh...n..>..}o,....s.D.(..g..!.F<J..V..6..s........C.....ih..o.A....)..l`+.`....". R...i..".Bfk.}.B..Y.........W.n....\M...Ko.8J...J..F%...> ..]...GO.{#-.....QMz'-a......}(.GM.:........[..?.....-Y.....IEND.B`.

Chrome Cache Entry: 257

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 400x284, components 3
Category:	downloaded
Size (bytes):	21122
Entropy (8bit):	7.943574721509622
Encrypted:	false
SSDEEP:
MD5:	8C4C6B014EEA1FA300D9AE75054650DC
SHA1:	D10649ECEAC2BD09ACB3EEC845EAA1EF3349BFEE
SHA-256:	4D0BE5235A0FB51C4D9D995ED12CA5B033BA449467E91BDC01E5E253FB2D1DD5
SHA-512:	557AF853FE98A6863B598F7C050E3E128F0671A6F7AD1801F8181E7DA99BEE3902A7AB7CA8E47CB6F90873CB0DF6E38E59C0A395BEC7171865DCD141D6814BD1
Malicious:	false
Reputation:	low
URL:	https://higreens.co.in/wp-content/uploads/2020/09/pic7-400x284.jpg
Preview:	......JFIF.....`.`.....;CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82....C.....................................!........'.."#%%%..),($+!$%$...C...........$...$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$..........."............................................................}........!1A..Qa."q.2....#B...R..$3br........%&'()456789:CDEFGHIJSTUVWXYZcdefghijstuvwxyz..............................................................................................................................w.......!1..AQ.aq."2...B.....#3R..br...$4.%.....&'()56789:CDEFGHIJSTUVWXYZcdefghijstuvwxyz....................................................................................?..`E<T..r..J.,.S.}).>i.<..v............T....R.+G".y.@8a...~^*...[.......:........;_1....?.u.W.j.n.YT\|..G.M./..k).U..&)....\]...w..........ojV...\........v.]C..oL........sZ.....@.C....5ZMY=j...........cB....J..y.NM0..K.....b...2....S.IS.5<z:....bk..z.Mj...........h.......d.!..V"......1xq.............

Chrome Cache Entry: 258

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (1425), with no line terminators
Category:	downloaded
Size (bytes):	1425
Entropy (8bit):	4.759659415248
Encrypted:	false
SSDEEP:
MD5:	144B2DCF82CEEFAA126082688C60DD15
SHA1:	8F1A02026C7F18FB42457F051F250090F31D2AB9
SHA-256:	82DFCE8760CA230BB796F728F5444CEC9F3611C94BFE33298CAD70AA524E0EB2
SHA-512:	F21FADC494D03EF0201B4AA0F33221B62A89CB49B65A662AB053763BE1514FE4EDDCFB6F523D377FCA22C75D8E43F0650385E1D64BA47EBF7D818C2B6D6EA53D
Malicious:	false
Reputation:	low
URL:	https://higreens.co.in/wp-content/plugins/wp-slick-slider-and-image-carousel/assets/css/slick.css?ver=3.6
Preview:	.slick-loading .slick-list{background:#fff url(../images/ajax-loader.gif) center center no-repeat}.slick-slider{position:relative;display:block;box-sizing:border-box;-webkit-user-select:none;-moz-user-select:none;-ms-user-select:none;user-select:none;-webkit-touch-callout:none;-khtml-user-select:none;-ms-touch-action:pan-y;touch-action:pan-y;-webkit-tap-highlight-color:transparent}.slick-list{position:relative;display:block;overflow:hidden;margin:0;padding:0}.slick-list:focus{outline:0}.slick-list.dragging{cursor:pointer;cursor:hand}.slick-slider .slick-list,.slick-slider .slick-track{-webkit-transform:translate3d(0,0,0);-moz-transform:translate3d(0,0,0);-ms-transform:translate3d(0,0,0);-o-transform:translate3d(0,0,0);transform:translate3d(0,0,0)}.slick-track{position:relative;top:0;left:0;display:block;margin-left:auto;margin-right:auto}.slick-track:after,.slick-track:before{display:table;content:''}.slick-track:after{clear:both}.slick-loading .slick-track{visibility:hidden}.slick-sli

Chrome Cache Entry: 260

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (17081), with no line terminators
Category:	downloaded
Size (bytes):	17081
Entropy (8bit):	5.59453518652737
Encrypted:	false
SSDEEP:
MD5:	7D0D77691D6BD30CAE4617E53C09BA97
SHA1:	1DF1E4AA583C1AA04E6DA45620CB70B09663C34C
SHA-256:	CDFB561F539E86F53B729E02C12846D6B18970351E48B5305539697E16A9A184
SHA-512:	0D0019F11ED5E537910CD5C2517435F31D8EAD92268CBA56853CA6DB7E717D036F7E15873B5B352A84826561033208623857576384E4B8B142464A960B2103C2
Malicious:	false
Reputation:	low
URL:	https://www.google.com/js/bg/zftWH1OehvU7cp4CwShG1rGJcDUeSLUwVTlpfhapoYQ.js
Preview:	/* Anti-spam. Want to say hello? Contact (base64) Ym90Z3VhcmQtY29udGFjdEBnb29nbGUuY29t / (function(){var J=function(h){return h},W=function(h,H){if((H=(h=null,p.trustedTypes),!H)\|\|!H.createPolicy)return h;try{h=H.createPolicy("bg",{createHTML:J,createScript:J,createScriptURL:J})}catch(E){p.console&&p.console.error(E.message)}return h},p=this\|\|self;(0,eval)(function(h,H){return(H=W())&&1===h.eval(H.createScript("1"))?function(E){return H.createScript(E)}:function(E){return""+E}}(p)(Array(7824Math.random()\|0).join("\n")+'(function(){var S=function(H,h){H.D=((H.D?H.D+"~":"E:")+h.message+":"+h.stack).slice(0,2048)},ht=function(H,h){return(h=Y(H),h)&128&&(h=h&127\|Y(H)<<7),h},oT=function(H,h,J,p,F,q,E,W){return(h=[74,58,-50,(F=HF,-55),-64,70,h,-35,(E=p&7,-41),2],q=w[H.h](H.Cj),q)[H.h]=function(D){E+=6+7p,W=D,E&=7},q.concat=function(D){return(D=(W=(D=+E-(D=J%16+1,188JJ)W-DW+4JJD- -799W+h[E+67&7]JD+(F()\|0)D-2726JW+47WW,void 0),h[D]),h[(E+61&7)+(p&2)]=D,h)[E+(p&2)]=58,D},q},l=

Chrome Cache Entry: 262

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 647x491, components 3
Category:	downloaded
Size (bytes):	440846
Entropy (8bit):	7.978404913659035
Encrypted:	false
SSDEEP:
MD5:	C6BA26B736E77F94ABA3B4C59F89EDE9
SHA1:	49C4F864FAF7AC9231D874D5661B3DD3624BA06E
SHA-256:	F8D280D236C85B1AB8C43B83709D0895262B76FEE819F60B5BCF732219710544
SHA-512:	F3B148FDFA5F32269C411E46340E14FB49A684DC361CAA5660A469E725F3369AF6D5875BA9067E7A889367A551B9861A90937FCB43C10BEECC1A13687116EA2F
Malicious:	false
Reputation:	low
URL:	https://higreens.co.in/wp-content/uploads/2020/09/cont-3.jpg
Preview:	......Exif..II*.................Ducky.......d.....+http://ns.adobe.com/xap/1.0/.<?xpacket begin="." id="W5M0MpCehiHzreSzNTczkc9d"?> <x:xmpmeta xmlns:x="adobe:ns:meta/" x:xmptk="Adobe XMP Core 5.3-c011 66.145661, 2012/02/06-14:56:27 "> <rdf:RDF xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#"> <rdf:Description rdf:about="" xmlns:xmp="http://ns.adobe.com/xap/1.0/" xmlns:xmpMM="http://ns.adobe.com/xap/1.0/mm/" xmlns:stRef="http://ns.adobe.com/xap/1.0/sType/ResourceRef#" xmp:CreatorTool="Adobe Photoshop CS6 (Windows)" xmpMM:InstanceID="xmp.iid:CBB5A6EB024B11EB8D5A9E2D83B05B7D" xmpMM:DocumentID="xmp.did:CBB5A6EC024B11EB8D5A9E2D83B05B7D"> <xmpMM:DerivedFrom stRef:instanceID="xmp.iid:CBB5A6E9024B11EB8D5A9E2D83B05B7D" stRef:documentID="xmp.did:CBB5A6EA024B11EB8D5A9E2D83B05B7D"/> </rdf:Description> </rdf:RDF> </x:xmpmeta> <?xpacket end="r"?>....Adobe.d.................................................................................................................................

Chrome Cache Entry: 263

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 298x138, components 3
Category:	dropped
Size (bytes):	27101
Entropy (8bit):	7.962144842560358
Encrypted:	false
SSDEEP:
MD5:	4B3FED404A63E462667DFF2AD21C3760
SHA1:	7B588AAA3BC829A7A34590952D822FBB9DE72D72
SHA-256:	1C6E1E669BB0E3B5EE8A6CA99A8FFAC92A3CDFA19E1BA62B2AF12B186B2392BC
SHA-512:	42C4079F041DB203FD4102453444A3FB4FC468571AAF463F2DFFDB592F58F6CF2FADF09FEF5916640967FB2ED4FD85357F6E306F0F19B81EAB7E8EE538A50763
Malicious:	false
Reputation:	low
Preview:	......Exif..II*.................Ducky.......d.....+http://ns.adobe.com/xap/1.0/.<?xpacket begin="." id="W5M0MpCehiHzreSzNTczkc9d"?> <x:xmpmeta xmlns:x="adobe:ns:meta/" x:xmptk="Adobe XMP Core 5.3-c011 66.145661, 2012/02/06-14:56:27 "> <rdf:RDF xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#"> <rdf:Description rdf:about="" xmlns:xmp="http://ns.adobe.com/xap/1.0/" xmlns:xmpMM="http://ns.adobe.com/xap/1.0/mm/" xmlns:stRef="http://ns.adobe.com/xap/1.0/sType/ResourceRef#" xmp:CreatorTool="Adobe Photoshop CS6 (Windows)" xmpMM:InstanceID="xmp.iid:125EF4AA025511EBA1C5C609EE0C644C" xmpMM:DocumentID="xmp.did:125EF4AB025511EBA1C5C609EE0C644C"> <xmpMM:DerivedFrom stRef:instanceID="xmp.iid:125EF4A8025511EBA1C5C609EE0C644C" stRef:documentID="xmp.did:125EF4A9025511EBA1C5C609EE0C644C"/> </rdf:Description> </rdf:RDF> </x:xmpmeta> <?xpacket end="r"?>....Adobe.d.................................................................................................................................

Chrome Cache Entry: 264

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 400x284, components 3
Category:	downloaded
Size (bytes):	28268
Entropy (8bit):	7.957593289458376
Encrypted:	false
SSDEEP:
MD5:	EEAC4F2334691A71D7C1A80ECBA755F2
SHA1:	900050E7D51D72C0CF6F129C75AB9C36E74EA5DF
SHA-256:	59FB23980E192B926C2EE199D92BC3A1651D46CB17E3E185CE5B34EBAE24E499
SHA-512:	6DB381A0B6A00B100F1DA9FFA3BCDA567D91A2CC8847F22A2A088120FBFD854A9A04D648D80CC337843B03A039FB4825EB25AF17580E69FA02A39B0569E287E8
Malicious:	false
Reputation:	low
URL:	https://higreens.co.in/wp-content/uploads/2020/09/pic10-400x284.jpg
Preview:	......JFIF.....`.`.....;CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82....C.....................................!........'.."#%%%..),($+!$%$...C...........$...$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$..........."............................................................}........!1A..Qa."q.2....#B...R..$3br........%&'()456789:CDEFGHIJSTUVWXYZcdefghijstuvwxyz..............................................................................................................................w.......!1..AQ.aq."2...B.....#3R..br...$4.%.....&'()56789:CDEFGHIJSTUVWXYZcdefghijstuvwxyz....................................................................................?..FZaZ...m.{)..V.V...:... .M".(}).g.i...)1R...T...m...~.6.M"[#}iJ.y..+mQ.Mr..WI...O+..#8<..W>#.J.....=.E.%...3:..Ld.;....ca..........O...U._j..Oo/.`a!.o..{zq..Y........[.pA...!.8...y.k./OC.8h.S...A.....hF.........T.Aq.u*..B.I.r....d.^ku...v_.gb..I'#.?...O.4I..`)T....{<.s.T.j.i..t'..Y.....g6.;,...

Chrome Cache Entry: 265

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text
Category:	downloaded
Size (bytes):	180
Entropy (8bit):	4.56409165056072
Encrypted:	false
SSDEEP:
MD5:	8565B6122C5C36605098C8FEEA69B26F
SHA1:	C0F89277A60EAC5F57245722B7F2864504ABDAFA
SHA-256:	C2CC19B3DD153A19C3E798CFA5871DB3ADA9C2F6DE37FC92F4DD82A7C81ED106
SHA-512:	2C65E5C1FF7055BBD947A8241915613EB51E4DC663A1B1D72CC0A2EBFBB4EEFF43D572009394FB22118D4253405E3AF4F39C211BFDEA3D3CA3C181DBA26338AB
Malicious:	false
Reputation:	low
URL:	https://higreens.co.in/wp-content/plugins/simple-google-recaptcha/sgr.css?ver=1602311172
Preview:	.sgr-main {. transform: scale(0.895);. transform-origin: 0 0;. clear: both;. padding: 10px 0 5px 0;.}..p.sgr-infotext {. padding-bottom: 15px;. font-size: 85%;.}.

Chrome Cache Entry: 266

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	gzip compressed data, from Unix, original size modulo 2^32 316
Category:	downloaded
Size (bytes):	124
Entropy (8bit):	6.143475947378959
Encrypted:	false
SSDEEP:
MD5:	893DD4D34591CB544851B5A41747CDFD
SHA1:	E8585A3187CFAA2288F0CB48E5696929306B7615
SHA-256:	1DE5E3983DD9D63C6D92BC1543A4AE8978B38FBAA8D79FBBC2035C62A68CD7CF
SHA-512:	432D1FCC867123E0791FFAB73758E41702DA2EC0A2CC080A1AC98DF380EA5ED69899EDF34B3F1ABF1DFAF342B71FEBE15FFE484371AE7C7D5C6C889C1A955343
Malicious:	false
Reputation:	low
URL:	https://higreens.co.in/wp-content/plugins/wpcf7-redirect/build/css/wpcf7-redirect-frontend.min.css?ver=1.1
Preview:	...........+./(-.-I.-.I,IU...OI.Q....RP./HL.,..R0...u.S..3KtK...3K2....sr..L.r..R..S....*./_..@...qz.....y.4..#.`b..<...

Chrome Cache Entry: 267

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (539)
Category:	downloaded
Size (bytes):	492693
Entropy (8bit):	5.685396661784928
Encrypted:	false
SSDEEP:
MD5:	2B4A2C0D107BC671D4B39568A47AAD66
SHA1:	779B0775413E557F972FB43D07C4E1A09D2DBF01
SHA-256:	CCCBD316B2E050D41EBF62C8C613D5BFAE33CD43104AC3B772C9E10950A3DBD2
SHA-512:	26D41601EABD090A6F6FB2E99D270F1631E2A4ECBADE927705CC1ADE3495757B097F0832A8A1F915688FB6072322B10071C93BF81D4304863ED53EC41C71FBD6
Malicious:	false
Reputation:	low
URL:	https://www.gstatic.com/recaptcha/releases/QUpyTKFkX5CIV6EF8TFSWEif/recaptcha__en.js
Preview:	(function(){/.. Copyright The Closure Library Authors.. SPDX-License-Identifier: Apache-2.0././. Copyright The Closure Library Authors.. SPDX-License-Identifier: Apache-2.0././.. SPDX-License-Identifier: Apache-2.0././.. Copyright 2005, 2007 Bob Ippolito. All Rights Reserved.. Copyright The Closure Library Authors.. SPDX-License-Identifier: MIT./.var u=function(){return[function(w,p,O,N,e,g,x,Z){if(!(x=["multicaptcha","doscaptcha","imageselect"],w>>2&7)){a:{if(O=M.navigator)if(p=O.userAgent){N=p;break a}N=""}Z=N}if(!(w-5>>4))a:switch(g=["dynamic","default","prepositional"],e){case g[1]:Z=new Nk;break a;case "nocaptcha":Z=new en;break a;case x[1]:Z=new QX;break a;case x[2]:Z=new Kr;break a;case "tileselect":Z=new Kr("tileselect");break a;case g[0]:Z=new Jc;break a;case O:Z=new be;break a;case x[0]:Z=new ay;break a;case N:Z=new Cr;break a;case "multiselect":Z=.new cq;break a;case g[2]:Z=new dt;break a;case p:Z=new rt}return Z},function(w,p,O,N,e,g,x,Z,P,Q,F,K,J,D,C,c,k,n){if(!(((

Chrome Cache Entry: 268

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 400x284, components 3
Category:	downloaded
Size (bytes):	23056
Entropy (8bit):	7.957790146329783
Encrypted:	false
SSDEEP:
MD5:	34A2B03280D7B3C40C9641F3AD9B8973
SHA1:	F80922A8648F4A1D2271736D9DF364B1BB542EAA
SHA-256:	4A2A4A88A47FE149FB5E9C97097613E4DD8BB26EBD1B872DBC06DA65FE9E9C1F
SHA-512:	CE621DB7E14E3CCEBFA4F5B061A16AD06EF0702ECF53AFB1E998BBBFDFF66025239F9F79FBAB86F4FB062984592F22CEBE3B559915A92E5ECC0464EA96CE4B74
Malicious:	false
Reputation:	low
URL:	https://higreens.co.in/wp-content/uploads/2020/09/pic9-400x284.jpg
Preview:	......JFIF.....`.`.....;CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82....C.....................................!........'.."#%%%..),($+!$%$...C...........$...$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$..........."............................................................}........!1A..Qa."q.2....#B...R..$3br........%&'()456789:CDEFGHIJSTUVWXYZcdefghijstuvwxyz..............................................................................................................................w.......!1..AQ.aq."2...B.....#3R..br...$4.%.....&'()56789:CDEFGHIJSTUVWXYZcdefghijstuvwxyz....................................................................................?..DE.l....P\..c5..@......z_....9%..b7.)..sc....#p..../....."8..p?Q.V)....}j.R.w..y<..$pO.....p...=.!..#..`5..dK.W.q..?u.....WO...jV.je]N.#o..z...s'p.S../m..c...J.......,.*IYzn...l..N......>.l9^. h+T....Z.e...LS...t.sm$I4....D8e>..l-.xn..P..A.T?.wk.E.;s..l..29>.J.gM...X....D5..+..\3....'.h..!.w.3..I.

Chrome Cache Entry: 269

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x749, components 3
Category:	dropped
Size (bytes):	563560
Entropy (8bit):	7.977977867462098
Encrypted:	false
SSDEEP:
MD5:	2EA5037EC6D251C55C32F03B53104514
SHA1:	C8A3A57DFB8A8C43A9E27021F7E4DA345B0AF0EF
SHA-256:	7562C9B6AF538074BACA5EE5AAE46C6759E326B6980FFAB3B72E20B445CCBE4D
SHA-512:	E6E8347565C2B6FF8B2E17F523638B4F414C38461C3790BC1977D8C890BD6BF0FFD5BCDE4688C66B09B65509C9D0E0DD2EB4D353A191C56C22274C54D5D9BC6C
Malicious:	false
Reputation:	low
Preview:	......Exif..II*.................Ducky.......<.....+http://ns.adobe.com/xap/1.0/.<?xpacket begin="." id="W5M0MpCehiHzreSzNTczkc9d"?> <x:xmpmeta xmlns:x="adobe:ns:meta/" x:xmptk="Adobe XMP Core 5.3-c011 66.145661, 2012/02/06-14:56:27 "> <rdf:RDF xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#"> <rdf:Description rdf:about="" xmlns:xmp="http://ns.adobe.com/xap/1.0/" xmlns:xmpMM="http://ns.adobe.com/xap/1.0/mm/" xmlns:stRef="http://ns.adobe.com/xap/1.0/sType/ResourceRef#" xmp:CreatorTool="Adobe Photoshop CS6 (Windows)" xmpMM:InstanceID="xmp.iid:DCB71793FE0911EA97C4962145752739" xmpMM:DocumentID="xmp.did:DCB71794FE0911EA97C4962145752739"> <xmpMM:DerivedFrom stRef:instanceID="xmp.iid:DCB71791FE0911EA97C4962145752739" stRef:documentID="xmp.did:DCB71792FE0911EA97C4962145752739"/> </rdf:Description> </rdf:RDF> </x:xmpmeta> <?xpacket end="r"?>....Adobe.d.................................................................................................................................

Chrome Cache Entry: 270

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	PNG image data, 328 x 233, 8-bit/color RGBA, non-interlaced
Category:	dropped
Size (bytes):	165451
Entropy (8bit):	7.992316579890894
Encrypted:	true
SSDEEP:
MD5:	6C4BD8B89AE492615337669B97612E3E
SHA1:	2F9CA5B1C54F935D8E7D9A4CC9674088942C7850
SHA-256:	AF612F9ADE4106123120E036C5F007CBCDDDB295BCE2761B5F2B7BFB093F6774
SHA-512:	5ADCF3DA5B8C099DAEFACBC509346BD436A4DC521B42C035C062B67903DCF4E56139FDBA201EA862DBBFF27747A021B22AEE73981496CB42109ACBEA9FE52A5A
Malicious:	false
Reputation:	low
Preview:	.PNG........IHDR...H.........F#......sRGB.........gAMA......a.....pHYs..........o.d....IDATx^..u.e.u.........%[.......l.........1.2+.....3........d.o.7g..S.-..{.7.X#..g....=W..+..............O.{.xX)....hp......\...%..)3v"....c._.....XX..G..dT._+7.....6....TM.ApJ=.Z.%.",..a.M.Jk@......OT).F..'..._...58.X.S.....i.......H......?....J...V.]....P.....v.v.U`O.........Z-..VcwH%.GT.hl=..6.PT#.F6c.x..D4p.......6...x".V.Hj7v2...R:i.8...o~..8..a.?....]......n..."..,...!..."...Yt.Q...]r.XL..e..W~....Xu..57.R{............M.....s..+.y.y.V../...../ $..Bs....>D.\@d.ED..-...y[X.9..EPV....R;....TR.N&..N$.x..x<..M...cg....]..M.g.x....et..K.qd....;~gpv..~...wG.]Dl.e.W\5.'..F..Xi.;n...7.EZ..c:..M...\|.9m...o.qm{.....2....kU=o..V{.]4.....>`.....z.c.O.r.'h..1..~..i[.......o..g.....G....t...^x..gy^..@I...h.P......J:....Q....h.=o.....orV....}..s.....h..1.d..{~.z.....P...r.. ..6.n ...bK...j....p^...}...=...n.d.euy.]7...o.].y.Zw.<i.^.....c.-.to..k.=..1.......

Chrome Cache Entry: 272

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	gzip compressed data, from Unix, original size modulo 2^32 25473
Category:	downloaded
Size (bytes):	10861
Entropy (8bit):	7.977075921534724
Encrypted:	false
SSDEEP:
MD5:	4E100D07D49263017441F9423AE45913
SHA1:	7E64EC5DF76EE0930C059484D884D91D7C62082B
SHA-256:	DC5DD7ED9C7894815BAC643B78BFAB3A75F17CBE5ADBD17B76F353CEB8AB8304
SHA-512:	462147B03FFD7ABD9F7927F04A8A9DAB630F774CE3481336C8CD5DFBF5DD937418C9B186B4FFFFAC67D6E272641CC8540FE7B8E4CBFDC0BB538C18BBCA258294
Malicious:	false
Reputation:	low
URL:	https://higreens.co.in/wp-content/plugins/modal-window/public/assets/js/jquery.effects.min.js?ver=5.3.8
Preview:	...........rkw.8.....6.....h...tS.h.N.G..]......HH......a.....H..8..{..D..<..{_^....Q.ls................t{....8..N.....d......./.@..L...Y..1..........U$.x..Q.R<..q.N..^l5..W.EPa4.%...i1......_....\|.!../?DO/.e..:.\|"2\|CInU..........J.$8S:.....E.B.,.}.\|.."8.........c.......&.jr..I..V..:^...#...!d..s=Za`%;.....)"n~v.m...,E..+'..H..eg.'E.....N..HA.?.zI.....)...N.....n...P....6..... d[3:.o..1....~&t.%gI!%.r..v.....&..K%O..T..._.M.,...4....G.G<....U0..m....q.o...7x.....JV.!......5e y...M........G..j%.[/.......)...B..L8b-\|l../Z.;..........nG...L..4..0..A8....{~(F<9...K./....T"pG.d...%]..h.......Z.w.J.$@Eb...a.D.<..C1:P....V..9..=.M.zo........M:.].n...F......zu....ei.........VI...U...Fi.....1..._.ix......7.E..RHQEU.e....[....<..!..NC/.r.!0..I..u.#.../.oA.7g.[p..a..{i...F..m.^.....w:p.....9........7..DC.P.{#..+.....u4*K..I...7...:.....y....OW..s...C.3.v.>.^....L.....vb.[.G...".l.......~yx.e...`....p.........O....Z...+.....s.....XA....Y"Vgu.3I

Chrome Cache Entry: 273

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x749, components 3
Category:	downloaded
Size (bytes):	288844
Entropy (8bit):	7.97835134387976
Encrypted:	false
SSDEEP:
MD5:	C8493DE7B28BCB0299D4D7AA88E64DE2
SHA1:	23BD003C4D0A70D259BBF0E5209E9F63E14727CC
SHA-256:	22AEAE1A84DDEF22091B2560B71EFD8392A7B7B97EEE5C2832689D08FB719CBB
SHA-512:	A3D963BC6CFD738321A6F3030F427ED19A694C0C43BAB3B0A26E6B7B9DFE119CC85CFA7EC908206FFFA0FC4617C480CCF2531189C05AF6AE5376FABA91BDDCAC
Malicious:	false
Reputation:	low
URL:	https://higreens.co.in/wp-content/uploads/2020/09/banner-head.jpg
Preview:	......Exif..II*.................Ducky.......<.....+http://ns.adobe.com/xap/1.0/.<?xpacket begin="." id="W5M0MpCehiHzreSzNTczkc9d"?> <x:xmpmeta xmlns:x="adobe:ns:meta/" x:xmptk="Adobe XMP Core 5.3-c011 66.145661, 2012/02/06-14:56:27 "> <rdf:RDF xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#"> <rdf:Description rdf:about="" xmlns:xmp="http://ns.adobe.com/xap/1.0/" xmlns:xmpMM="http://ns.adobe.com/xap/1.0/mm/" xmlns:stRef="http://ns.adobe.com/xap/1.0/sType/ResourceRef#" xmp:CreatorTool="Adobe Photoshop CS6 (Windows)" xmpMM:InstanceID="xmp.iid:88105D0EFE0A11EA87E28C3242034ACB" xmpMM:DocumentID="xmp.did:88105D0FFE0A11EA87E28C3242034ACB"> <xmpMM:DerivedFrom stRef:instanceID="xmp.iid:88105D0CFE0A11EA87E28C3242034ACB" stRef:documentID="xmp.did:88105D0DFE0A11EA87E28C3242034ACB"/> </rdf:Description> </rdf:RDF> </x:xmpmeta> <?xpacket end="r"?>....Adobe.d.................................................................................................................................

Chrome Cache Entry: 274

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	PNG image data, 238 x 169, 8-bit/color RGBA, non-interlaced
Category:	dropped
Size (bytes):	20106
Entropy (8bit):	7.971768870863793
Encrypted:	false
SSDEEP:
MD5:	8B0E02B03F3F1123A4DE4F395AB60B98
SHA1:	A4C3F8B1E1C709E1B299281152EDE6CD37B54199
SHA-256:	CB3DA08C42892D387D7591106BE3653901FB3468A8C14C792C59227C65EEB109
SHA-512:	12B18075A392C6CC608B1AFFC04B5B75C616ED281FCFF2EB011FA9D4752B99FC228A32A0350857D86F0F443D0BD263F41214FB661C3ABF8E214BF2CE3D21E652
Malicious:	false
Reputation:	low
Preview:	.PNG........IHDR.............,.......tEXtSoftware.Adobe ImageReadyq.e<..."iTXtXML:com.adobe.xmp.....<?xpacket begin="." id="W5M0MpCehiHzreSzNTczkc9d"?> <x:xmpmeta xmlns:x="adobe:ns:meta/" x:xmptk="Adobe XMP Core 5.3-c011 66.145661, 2012/02/06-14:56:27 "> <rdf:RDF xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#"> <rdf:Description rdf:about="" xmlns:xmp="http://ns.adobe.com/xap/1.0/" xmlns:xmpMM="http://ns.adobe.com/xap/1.0/mm/" xmlns:stRef="http://ns.adobe.com/xap/1.0/sType/ResourceRef#" xmp:CreatorTool="Adobe Photoshop CS6 (Windows)" xmpMM:InstanceID="xmp.iid:6144878F030511EB8E55AA5AA25B879B" xmpMM:DocumentID="xmp.did:61448790030511EB8E55AA5AA25B879B"> <xmpMM:DerivedFrom stRef:instanceID="xmp.iid:6144878D030511EB8E55AA5AA25B879B" stRef:documentID="xmp.did:6144878E030511EB8E55AA5AA25B879B"/> </rdf:Description> </rdf:RDF> </x:xmpmeta> <?xpacket end="r"?>....J.IDATx.....U..k`.Q....1.".Y...u.....]...k........AD2.$.........gz:..N.z.~&..O..z.=u.\|.JK..K...2s....

Chrome Cache Entry: 275

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	gzip compressed data, from Unix, original size modulo 2^32 13577
Category:	downloaded
Size (bytes):	5422
Entropy (8bit):	7.9620323309147665
Encrypted:	false
SSDEEP:
MD5:	4589396F5CBFAD2C36169210170E5476
SHA1:	6AD2D830A68800224DD0970DD9A20BAA7A6A2CF4
SHA-256:	F6ABE8B81D99CC1BBA948F370684069417BF1CCD6977330C80F8F9A73AC8EE28
SHA-512:	4A94ED1E5B99E4DB15255B648E4A32D8080113171E903138A473FC1FC2B71AFFBF9D74B8C72D664221BF7615AE310CAE8EA945E9183A42D44E5255859D60D9D1
Malicious:	false
Reputation:	low
URL:	https://higreens.co.in/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1
Preview:	...........Rks.7..>..BR-..[t..B..Rly.T.....qA.$.&..........dS.;3..6p..{.9.....\|_.]..jf..r.$.9~L....-@.vF^.Rg.+....1~...F{..Jo..._.Ll..(W)h....?(>....$...i./.K.Q........R../......g..';.Q...X...z..fG';@.7.\|i5...R..,........].......p].....6....RY`m/..}3...pB...=".8x....bj,......Ov...y.....X..)....0...{.<..................t}<.u].....iim...:.'..7.u..:d..Nt....m.m.Z.+L.y.G.'...9..>...........J;+....s.3?........&...Fl.O....A...-...+W..=..n..<.....F;...]..E.sQ..y.....Qt....7...]F.{...??.\|<..:T.I\|..9.&.N......s...'i..3w......).r.4.. #.2...qp......P.(..Q..c[..K...)Y?..3.3#.e...{T..:-..n...:&..ZiI.@x~..l.%6:x...b.......U.'....z....sW..(...%c...."6.l.......h}.'....3..L!.....o.s.0..B..o.^\B....J.;k..~U].A..jV.0....nw3..N..P...UXLr..S.$..t.... .L............=d...v(.5...(...s.3.A{.7;.i........%.$......C..g.s....m..LS>j.uG..]...Slo.{...I..qeTF.I............tU5...X.g~..6.../....b7.g&.$....d.,._Ke.8.....(G......T~N.W.Hx....3..BL...N3...

Chrome Cache Entry: 278

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with no line terminators
Category:	downloaded
Size (bytes):	84
Entropy (8bit):	4.8328683934967245
Encrypted:	false
SSDEEP:
MD5:	3F95CBA8F3EE220A76C8E33357C7AC12
SHA1:	C6663736A68A2F5D6389C86B2E6E587F43FCFD58
SHA-256:	DC39D3C46984409A5232B7FAA0D30183F9798280B408ADA8BDC23CF61225C214
SHA-512:	D3CC27DD8D973C016406E7C783FA66E315630F6CF43EBFF5C2A6FAA9EA4E39DEA5411F9D05C6C0582071273027D2742571B6B43C6CB910AE0CF7950C319B7877
Malicious:	false
Reputation:	low
URL:	https://content-autofill.googleapis.com/v1/pages/ChVDaHJvbWUvMTE3LjAuNTkzOC4xMzISLAn4mV1CwL_OOhIFDQT1rgQSBQ0ns9QPEgUN4ncEihIFDcpVjxYSBQ3gyw5-?alt=proto
Preview:	Cj0KCw0E9a4EGgQIBxgBCgsNJ7PUDxoECAkYAQoLDeJ3BIoaBAgNGAEKBw3KVY8WGgAKCw3gyw5+GgQIIRgB

Chrome Cache Entry: 279

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 634x500, components 3
Category:	dropped
Size (bytes):	353799
Entropy (8bit):	7.979985993245475
Encrypted:	false
SSDEEP:
MD5:	42082F43959337195CB8A52C5D9D0C74
SHA1:	67CD66EE67DDA984267F6C7B2B78EE9EC30EABFD
SHA-256:	9F188A3FE88569D7C1DA2BD8E60F2C852615C7A6840E987D2C8B0E9A7BD2BBB2
SHA-512:	FFFADCA51EEC397C4E73794B15045981796DCB143D980E545806A24B316C78CA3706D669EC6FECAC8244799B664666EEB168C52C3CBF591D603F9EE5B561F6AD
Malicious:	false
Reputation:	low
Preview:	......Exif..II*.................Ducky.......d.....+http://ns.adobe.com/xap/1.0/.<?xpacket begin="." id="W5M0MpCehiHzreSzNTczkc9d"?> <x:xmpmeta xmlns:x="adobe:ns:meta/" x:xmptk="Adobe XMP Core 5.3-c011 66.145661, 2012/02/06-14:56:27 "> <rdf:RDF xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#"> <rdf:Description rdf:about="" xmlns:xmp="http://ns.adobe.com/xap/1.0/" xmlns:xmpMM="http://ns.adobe.com/xap/1.0/mm/" xmlns:stRef="http://ns.adobe.com/xap/1.0/sType/ResourceRef#" xmp:CreatorTool="Adobe Photoshop CS6 (Windows)" xmpMM:InstanceID="xmp.iid:6383329502F511EBAB3DB58CC85FD6A5" xmpMM:DocumentID="xmp.did:6383329602F511EBAB3DB58CC85FD6A5"> <xmpMM:DerivedFrom stRef:instanceID="xmp.iid:6383329302F511EBAB3DB58CC85FD6A5" stRef:documentID="xmp.did:6383329402F511EBAB3DB58CC85FD6A5"/> </rdf:Description> </rdf:RDF> </x:xmpmeta> <?xpacket end="r"?>....Adobe.d.................................................................................................................................

Chrome Cache Entry: 280

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 625x528, components 3
Category:	dropped
Size (bytes):	200043
Entropy (8bit):	7.978701814599652
Encrypted:	false
SSDEEP:
MD5:	4F72021540DF27C4745AB645C70274D1
SHA1:	E5964D795AD5A05AD9A4EC17C6951756F5AFCCCD
SHA-256:	8D440CAAA3BC8F6324DFD8ED7326A67C9FE8C01146383C9F0256BDC1F06EC639
SHA-512:	BE310359DF0EF96E5490F117DEEF560823C9BAF5CA7ACF50E51828E2698705A05F3C73B6C147BFD63D822DEFC56EA00A2107FA61A761435F34FE8BBB1CD43FEA
Malicious:	false
Reputation:	low
Preview:	......Exif..II*.................Ducky.......d.....+http://ns.adobe.com/xap/1.0/.<?xpacket begin="." id="W5M0MpCehiHzreSzNTczkc9d"?> <x:xmpmeta xmlns:x="adobe:ns:meta/" x:xmptk="Adobe XMP Core 5.3-c011 66.145661, 2012/02/06-14:56:27 "> <rdf:RDF xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#"> <rdf:Description rdf:about="" xmlns:xmp="http://ns.adobe.com/xap/1.0/" xmlns:xmpMM="http://ns.adobe.com/xap/1.0/mm/" xmlns:stRef="http://ns.adobe.com/xap/1.0/sType/ResourceRef#" xmp:CreatorTool="Adobe Photoshop CS6 (Windows)" xmpMM:InstanceID="xmp.iid:B8C273F2024B11EBA69B89D235F2C1A4" xmpMM:DocumentID="xmp.did:B8C273F3024B11EBA69B89D235F2C1A4"> <xmpMM:DerivedFrom stRef:instanceID="xmp.iid:B8C273F0024B11EBA69B89D235F2C1A4" stRef:documentID="xmp.did:B8C273F1024B11EBA69B89D235F2C1A4"/> </rdf:Description> </rdf:RDF> </x:xmpmeta> <?xpacket end="r"?>....Adobe.d.................................................................................................................................

Chrome Cache Entry: 282

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
Category:	downloaded
Size (bytes):	1081
Entropy (8bit):	7.751915528164684
Encrypted:	false
SSDEEP:
MD5:	AC64203882A7890718C0BEF21FD6F1BE
SHA1:	BC77D9A694DE0F68C22251693E4D233F685121FF
SHA-256:	2348C2407036C182C767C29DF201C2A3FFF042AB97DC8BA987A275FBED5EE8FB
SHA-512:	0D835675242291E6E30F6D07BA43BE7A38BFC11875F1C4B8051F9FE36A344C0260AFDBD701A1352D0DB442DDECC4D8A89B4A7820D5620FE8F9BEBCCC92A44B5B
Malicious:	false
Reputation:	low
URL:	https://higreens.co.in/wp-content/uploads/2023/07/cropped-hi-green-logo-32x32.png
Preview:	.PNG........IHDR... ... .....szz.....IDATX..Oo[U......q.@.:u.&..I..?jhiJD..H,Y..t.w,...........J......".RC^.I.$.&ub'.....JR.,...u...f..3s.....b.y9..(.&.\....6.C9,..@?.c';[..P..a.....r>0..." ...{.......Y`)(..S./.R..@.H...r.+6.@...<`.HML.........^.<......4..E...#pI.........S.....q.........@U...4P..{b..}.NL...S.]... .=.h.........b..`S..b....?f _...%..(Z..)...F.yJ.Q.{...\|..k}...._..`....I,...iC.....G....e=.....S........Z'.....R.Y.O....~.....08^.&.....x...P..E.d.5o8k....5....y.Y...w.p.8k6.5}...&.8k6.5G.5o:k..5..YgM..2..H...G..\.8.d...IUy.\|....P...F.+..b......p...>U....qv}.+..kt.<.s..J,.mH...U5._...&.2..j...n..y..[...U..m.h..~P.m..+.'{2v.Y.c.G.....<...pA.J(}...^..!.....TW{.Zu...._.`..0.I...S.[.G.q.....C..6.8..`"G....E...>...nE.-....y.....0,.....S....d..!....yYl....R$N...FEwE....)...E..4..r.h^.e...5........D{C&.A1.....aP..t:.N.V.u).'E_W.......X..W.x.,X...\|I..T.r...Ry.....0......^N..~.e.......{A.:....o%M..j8........d..$#..q...(

Chrome Cache Entry: 284

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	PNG image data, 45 x 45, 8-bit/color RGBA, non-interlaced
Category:	downloaded
Size (bytes):	1603
Entropy (8bit):	7.814055193288948
Encrypted:	false
SSDEEP:
MD5:	7322D3C47E94DF1AA2A18F2C088CE646
SHA1:	AB68319C8BCEACEE88FEE7E9B0F36D98E02BB004
SHA-256:	4FA97BC14E1F7B49597DA4F784C28E68D1734E3CC32D4834E0C8941C661C4A16
SHA-512:	07383466C458DDDB1A19F1401021F3E4B99998278D00F0DA2A35D4E384EB5D09C7A780CA97E2A148D960A2BF981F26C40FC864F16E5C966EB614BA966D9B389B
Malicious:	false
Reputation:	low
URL:	https://higreens.co.in/wp-content/uploads/2020/09/housing.png
Preview:	.PNG........IHDR...-...-.....:......sRGB.........gAMA......a.....pHYs..........o.d....IDAThC.iS.G....+w.T....$.s.cc...p...qH.@.$..$...yz.wW...\|..T...N...3=.=z...1"=,.H..#.......n..L!u...n..;/........?...f....'.I;;.E..7fw..9.[.Yz.X...I.....6fD.s.`s6h.lL'.B=:.i;j.R....[./.n7....;...VwE......dP..V^...gO.........UR..n..D..W.b{a..=....-.l...VZ^{.'..J.(.Ww..l..O.d.Y....]...d!..Gx}B.yZ.....'vl..Ji...V.... fg>..o.-c..../~+..2.I).kBT.....J...S..:&cJ.)..B...y...J~.,...v...Iz...f...E"........l..V....lH....g....c9W..N.;.n../..%=...}.....i...zy....U.`.~.%....G.bg.z........... B.v2...A.N......_..&.!....!\|..5E..Rc.I....]/o....D.....y..%...v.pk....5..+/.[...NI.bI..qi..}.....<......v.n@.iO.8.9_..7.=.kb4.G........R8}...@V~....w..G.z...S...B..~..w..a.e32~L.^....2.N..]&,...3X..T^.~...6mV...R.1.H....e.M,.<..........Ip..-...F.8J.I.....^...G...........bt;-..5..$..11[...A.........-......2d<!lW.4.v<.s_......G..$..`r.-..t..p.....I.......M,....9.I

Chrome Cache Entry: 285

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	PNG image data, 39 x 35, 8-bit/color RGB, interlaced
Category:	dropped
Size (bytes):	1333
Entropy (8bit):	7.698574833842067
Encrypted:	false
SSDEEP:
MD5:	DC9D33B5DE5B787381F959B9F5B4DE43
SHA1:	098B8BFC89FF53771543A8E2B15757D5ECED607C
SHA-256:	509BF44D946AC1A2231EE5754871970598C9817DE9546DD1096F122CE8D8E156
SHA-512:	615E7E73F30D2A9AE44BA6E06A0437B9F16B4DC6BE3ED17B9F8923FA089AD378819DEF6F3585E554DE5780AA50A3CF66251F4581688B175E11129F73EB1A6053
Malicious:	false
Reputation:	low
Preview:	.PNG........IHDR...'...#......W......tEXtSoftware.Adobe ImageReadyq.e<....IDATx.b...?..`..[[ .F&..........-.L...h......y..5.........b$....v.....It.....Qv...{'........%.!.~}.j...9.ps..$..\|.@...W@R..H.....3..!..yp.[H.b...W..u8xD.......-....@.}x..~ta#. .><..$.\..D...x.?.@....VN~..n.S.#.H.@.....?E..[G.~..\.6..~y..W..<+..!... ,.@c..........0.q....J...9X.....].7..#I%.(...x.h:.H...u......t.?....z%../\B.,...fVNP....^Q`L_.3.E.........E.30J....._...<+.).......U..%..(.l.,.I:@/\......`a...-0]....3..!k....'.322a....?<..h...?..........>&f.d7.N...@.....3.^.:...._?>2..ef......0.`..../.x....S......./.A/.....#....i8.N`rS.N.&..(..^Q.`"....VF....E'0............%....b...@.. e0P.0? r7<q.. ....dB)}......!.Le.....?$.P...c...f...,.1\|....i.R. ..@...QH6....1....~}...^.........~y...~.,0'...D.....NP....l\........9."..B2.".f.v21...'..3......K....be..B.$?....E...._......G..{...o,>.G.0.H1.r..K..p....W`..V[_.>.j..5.W.ba.A.j~~}...?.d..A..e..k/..{..<....X\|.e.,....Y9x.E!F....

Chrome Cache Entry: 286

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	PNG image data, 330 x 235, 8-bit/color RGBA, non-interlaced
Category:	dropped
Size (bytes):	135521
Entropy (8bit):	7.985396012224083
Encrypted:	false
SSDEEP:
MD5:	6F96576CA1B8B6F85E8D3FD02A5CCDE2
SHA1:	7C2564755CC95C0332A20A0C0703A86CED3AB40C
SHA-256:	168E25512B780A625562E8F2810D291D7FE122E77BD455B01F4A51C24E2BE739
SHA-512:	53C868159A03E2438D91F8D7609C4938615ACA64A86BCD0E2FDCDE8F52FB6B356E006848E6E3B887F2AE4116F6D80E5BE373C7EAFC13759CE41B9029E91A9D11
Malicious:	false
Reputation:	low
Preview:	.PNG........IHDR...J.................sRGB.........gAMA......a.....pHYs..........o.d....IDATx^...{.e....?..w....s.nu.r.9..sN.c...hl..60C....q.....p..~....Y....Fs..Q.U..-.:u.O......f.......?............P....W..~P.....:..>...O~0.'7....5y..fq..Wg..?y.?.R....7..q..W.<...f..Wf..;W....G..A..[W.............z..,.....W.x.../k\......]Q.KN.7r\....gq..K.....+3...9w.r../_.x../]Q...e.Qr..Ksr.....z....s.9p.......g5......}.;7{.........w...+...:.?..v>~I.......m.x.....q...g.....d.o.....p..f....d........z?.....4b&.~'..T\.(=..I..9....sJ.......?.1............gs...]..4.....]u....w..w.Pxd..e..B..&.k.._..y.M..L.x...LY^6p...A..Q...\.-.+...38v..t.2..\|U..&9J..f...e..[..4/.....8....kKS./)ta.%M...R......y-....Q..(.=.=..0...f...47>..Z...]Tf...._G..7........L.:..~...}.G....`&I.fD...[..).\w..........(u.=.I._-J.0.e.[.L.....~.....:.3y.f..id.4.^...W.....[Jq.<%).s.s.4?.x..>.x.S.....\u.Kt~.,..R.naz..g.<.>.H...........0.'.q.m...........*..d...!....T...._Rh..U

Chrome Cache Entry: 287

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	PNG image data, 327 x 231, 8-bit/color RGBA, non-interlaced
Category:	downloaded
Size (bytes):	206941
Entropy (8bit):	7.99185691127107
Encrypted:	true
SSDEEP:
MD5:	CB726C54815E49A8052AD2881AB61E5B
SHA1:	1AFDC7EEA4DAB9D13421D56B16936FFF6499310B
SHA-256:	AF02C9B0A02BFC705C439ABDB4027D066840DDF6AA3E50344143FE5CD6054F53
SHA-512:	7612E82F664D8BA96A702163CEBC3C9252E6CDD8CA18518B0E0B514A330EB024B1B993CF113FBA276A9AC92EEB82C34142BEFF7C0FB8CF38FB00FCE9F478D7E2
Malicious:	false
Reputation:	low
URL:	https://higreens.co.in/wp-content/uploads/2020/09/A5.png
Preview:	.PNG........IHDR...G..........".1....sRGB.........gAMA......a.....pHYs..........o.d....IDATx^..gt.[...52].u.:z...a.. @......{......\^^.MUu...Ow....iZ...1....[.O...9.......a.c.Ddf._.....7....N.?..Ng..x...D.8.. b...q..{8~.=.8.:..!n...w..{.-.o..o..{....#pp8.'.spt>.}pL..6..'].....Y...JRg...Y....R.S.."...<.69jI.Q.vg..6..y..Y.0usu......L9.C............&o.g.<.=.h.....3<...D........W.=..K..w.#OOS.J....RWx]...IE^..1....oS..J.)./J.n......y...KL.....!_...z2...=.'b....W..%..T...~.......'..i...RP.E.+J>...`.\|..>Ht...F.P.P.6Rc.....2.k..^....H^..&.\|.}/....eSR6%..^.Z......Z...Z>..$.}...a..E.k...^Tb_...J.S6.z.l.>....{.Q)_...y.M.!p;u......9...i8.r......C8A8.8t@.Q....0!x.=..A.:u...;...I.+.6.....Hp(q_...9I..BR....x..7.....5..:.4..(I..Z..&.n........52.lr.[v.#G....D.....a.%..R..yU&..v.)..C...}.\(.G..%.a...0o.K.pc......n{.fOm'..<..~.dT..1."..9aD<.e...D.5.'.L.]...*.r....h...?.2.:........`._.....vRgBPCm../......Wl.d..H..Tc.~.}i.J.>F...L.c...,.A....k..R...g..

Chrome Cache Entry: 289

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	PNG image data, 329 x 231, 8-bit/color RGBA, non-interlaced
Category:	downloaded
Size (bytes):	164599
Entropy (8bit):	7.984925506564464
Encrypted:	false
SSDEEP:
MD5:	B7849DE8CCB7E87497931DFB29905964
SHA1:	B801521B6D7EC02535BD31E0BC252632A42870C4
SHA-256:	50A0AF8F7AD14FBD4ED9E8AA87D2A6A3BEAD8A6FDD8B394A41E29BCB63D061F4
SHA-512:	F1F8B70AE1E957D9C9D8684300C4AFA99D84A163A2F8CFF40077CD038CAD1B84C3FF3372D745737001C7989717D0D01BB014E5767142EE008D012CBCCBC3A5D0
Malicious:	false
Reputation:	low
URL:	https://higreens.co.in/wp-content/uploads/2020/09/A2.png
Preview:	.PNG........IHDR...I...............sRGB.........gAMA......a.....pHYs..........o.d....IDATx^....G.....{.......bQ@.$.B.Zk...Zk..N..H ..ZgB$.. @P.......l3?.....$.z..0Xk/777...d.b.;f...........?...&.._.../...._<...V..._".-.?.....}........_../..3...'.D,[}...._......7?F.........WZ.G)..._~."=..C#=........O...I=~..QP;.?.k<~.=...-[..G..1z.9...X..^}..r...`......p..W.+.;..g_....U?..U._G.....~.Y..Q..+.F...sO....8e.F...Z.zF.&...UM..B.....r..P...k6....u.x...wO...../Q......}..;.e.L.._..y.rk."....j...Y-.U..G.~.HY.....i.....Q......V.......7.....U<0b]J.....G(Y.Tr...QB.U\|.]...;.._.({..B..9..jq3....5..q.i.:Gl.[.[95..sr.d+..A.(:..72.....2q5.".....R....r\H)..\|r).$W.\b..&.6..b...P......F`GY(...I=.BR.B. @RA.\|..tA..p.N..IW......i...o.c.\|..H..._.#..XJ9...$.?.:.I.e.#BR.B..KB..PT* .6...b...J.b.d.lU.n.0..jy]...>W.d.c.o....(....@..{nD8..!........c.........!2D..f..L.d..t.e.(.+.\P......F.J..L,...%........S..aH8R.s.I.;.V..Q.J@.....W..M.#!...:Z...*... ....

Chrome Cache Entry: 292

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	gzip compressed data, from Unix, original size modulo 2^32 1348
Category:	downloaded
Size (bytes):	493
Entropy (8bit):	7.528041765820614
Encrypted:	false
SSDEEP:
MD5:	B4ECF3AF6F240F6BFBC42ABA2BC4C6CB
SHA1:	0BB44543F5A1176AC4BD448604B94845A8A0D170
SHA-256:	A123D7C71C63D14A4CE2E83DF54F01826CE444F86A6A76C29450FE33C1FA877A
SHA-512:	DCB97D081296E16CE3AD47AB12DEC40C5BA94464B073ED6E794415F88867F4BFD015A45AC71C38BB1E7770E34AF67109DE78721B9D9CC8D1B411957A7EFC1D9F
Malicious:	false
Reputation:	low
URL:	https://higreens.co.in/wp-content/plugins/simple-google-recaptcha/sgr.js?ver=1602311172
Preview:	...........R.n.0...+..i.V...>4..E_@sk......S.!.N.@.^..Z...E.......Fxe.qeS...y.H8..g5.....~)..\.\|E'..C.'.....dI......K.7.....W.;....hh0..2.`e...E...E....s...U.N......h.HhX.P.j.&3.@]..aO/:Y.5.....o.).Y.e....8.s.w.(0..WF..P!8F.......'.......F...n4..N...._o._O....rFh.9$~.O.[.lTq0.\|Ap.....V.$...v..y..........y6.\|.........\C.0.#G....\>(......?^Y.1....H/.07R@........./..d'9...\..K....ke.[.'..."... .....=.]l.y.e..lho....O"c^......._!.3iJ:u.6.#_....EE.....x....p.2\..{l.*D...

Static File Info

⊘No static file info

Description:	Adversaries may gain access to a system through a user visiting a website over the normal course of browsing. With this technique, the user's web browser is typically targeted for exploitation, but adversaries may also use compromised websites for non-exploitation behavior such as acquiring Application Access Token .
Tactics:	Initial Access
Data Sources:	Application Log: Application Log Content, File: File Creation, Network Traffic: Network Connection Creation, Network Traffic: Network Traffic Content, Process: Process Creation
Platforms:	Linux, macOS, SaaS, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may achieve persistence by adding a program to a startup folder or referencing it with a Registry run key. Adding an entry to the "run keys" in the Registry or startup folder will cause the program referenced to be executed when a user logs in.These programs will be executed under the context of the user and will have the account's associated permissions level.
Tactics:	Persistence, Privilege Escalation
Data Sources:	Command: Command Execution, File: File Modification, Process: Process Creation, Windows Registry: Windows Registry Key Creation, Windows Registry: Windows Registry Key Modification
Platforms:	Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may inject code into processes in order to evade process-based defenses as well as possibly elevate privileges. Process injection is a method of executing arbitrary code in the address space of a separate live process. Running code in the context of another process may allow access to the process's memory, system/network resources, and possibly elevated privileges. Execution via process injection may also evade detection from security products since the execution is masked under a legitimate process.
Tactics:	Defense Evasion, Privilege Escalation
Data Sources:	File: File Metadata, File: File Modification, Module: Module Load, Process: OS API Execution, Process: Process Access, Process: Process Metadata, Process: Process Modification
Platforms:	Linux, macOS, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may inject malicious code into process via Extra Window Memory (EWM) in order to evade process-based defenses as well as possibly elevate privileges. EWM injection is a method of executing arbitrary code in the address space of a separate live process.
Tactics:	Defense Evasion, Privilege Escalation
Data Sources:	Process: OS API Execution
Platforms:	Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may attempt to manipulate features of their artifacts to make them appear legitimate or benign to users and/or security tools. Masquerading occurs when the name or location of an object, legitimate or malicious, is manipulated or abused for the sake of evading defenses and observation. This may include manipulating file metadata, tricking users into misidentifying the file type, and giving legitimate task or service names.
Tactics:	Defense Evasion
Data Sources:	Command: Command Execution, File: File Metadata, File: File Modification, Image: Image Metadata, Process: OS API Execution, Process: Process Creation, Process: Process Metadata, Scheduled Job: Scheduled Job Metadata, Scheduled Job: Scheduled Job Modification, Service: Service Creation, Service: Service Metadata
Platforms:	Containers, Linux, macOS, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may employ a known encryption algorithm to conceal command and control traffic rather than relying on any inherent protections provided by a communication protocol. Despite the use of a secure algorithm, these implementations may be vulnerable to reverse engineering if secret keys are encoded and/or generated within malware samples/configuration files.
Tactics:	Command and Control
Data Sources:	Network Traffic: Network Traffic Content
Platforms:	Linux, macOS, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may use an OSI non-application layer protocol for communication between host and C2 server or among infected hosts within a network. The list of possible protocols is extensive.Specific examples include use of network layer protocols, such as the Internet Control Message Protocol (ICMP), transport layer protocols, such as the User Datagram Protocol (UDP), session layer protocols, such as Socket Secure (SOCKS), as well as redirected/tunneled protocols, such as Serial over LAN (SOL).
Tactics:	Command and Control
Data Sources:	Network Traffic: Network Traffic Content, Network Traffic: Network Traffic Flow
Platforms:	Linux, macOS, Network, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may communicate using OSI application layer protocols to avoid detection/network filtering by blending in with existing traffic. Commands to the remote system, and often the results of those commands, will be embedded within the protocol traffic between the client and server.
Tactics:	Command and Control
Data Sources:	Network Traffic: Network Traffic Content, Network Traffic: Network Traffic Flow
Platforms:	Linux, macOS, Windows
Url:	Open detailed description by Mitre

Behavior Section

Behavior Chronological

Disassembly

Uncategorized

Graph

Loading Joe Sandbox Report ...

Warning!

Windows Analysis Report https://adclick.g.doubleclick.net/pcs/click?adurl=//higreens.co.in

Overview

General Information

Detection

Signatures

Classification

Process Tree

Yara Signatures

Sigma Signatures

Snort Signatures

Joe Sandbox Signatures

AV Detection

Phishing

Compliance

Software Vulnerabilities

Networking

System Summary

Boot Survival

Mitre Att&ck Matrix

Screenshots

Thumbnails

Antivirus, Machine Learning and Genetic Malware Detection

Initial Sample

Dropped Files

Unpacked PE Files

Domains

URLs

Domains and IPs

Contacted Domains

Contacted URLs

World Map of Contacted IPs

Public IPs

Private

General Information

Warnings

Created / dropped Files

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk

Chrome Cache Entry: 140

Chrome Cache Entry: 141

Chrome Cache Entry: 142

Chrome Cache Entry: 145

Chrome Cache Entry: 146

Chrome Cache Entry: 147

Chrome Cache Entry: 149

Chrome Cache Entry: 151

Chrome Cache Entry: 152

Chrome Cache Entry: 154

Chrome Cache Entry: 155

Chrome Cache Entry: 157

Chrome Cache Entry: 158

Chrome Cache Entry: 159

Chrome Cache Entry: 160

Chrome Cache Entry: 161

Chrome Cache Entry: 162

Chrome Cache Entry: 165

Chrome Cache Entry: 166

Chrome Cache Entry: 167

Chrome Cache Entry: 168

Chrome Cache Entry: 170

Chrome Cache Entry: 171

Chrome Cache Entry: 172

Chrome Cache Entry: 174

Chrome Cache Entry: 175

Chrome Cache Entry: 177

Chrome Cache Entry: 178

Chrome Cache Entry: 180

Chrome Cache Entry: 181

Chrome Cache Entry: 182

Windows Analysis Report
https://adclick.g.doubleclick.net/pcs/click?adurl=//higreens.co.in