IOC Report
https://greettive-tke-783743.pages.dev/help/contact/95094729232531

loading gif

Files

File Path
Type
Category
Malicious
Chrome Cache Entry: 100
ASCII text, with very long lines (10138)
downloaded
Chrome Cache Entry: 101
HTML document, ASCII text
downloaded
Chrome Cache Entry: 102
JSON data
downloaded
Chrome Cache Entry: 103
ASCII text, with very long lines (548)
downloaded
Chrome Cache Entry: 104
ASCII text, with very long lines (65459)
downloaded
Chrome Cache Entry: 105
Unicode text, UTF-8 text, with very long lines (65342)
downloaded
Chrome Cache Entry: 106
JSON data
dropped
Chrome Cache Entry: 107
RIFF (little-endian) data, Web/P image, VP8 encoding, 1920x175, Scaling: [none]x[none], YUV color, decoders should clamp
dropped
Chrome Cache Entry: 93
MS Windows icon resource - 1 icon, -128x-128, 32 bits/pixel
dropped
Chrome Cache Entry: 94
MS Windows icon resource - 1 icon, -128x-128, 32 bits/pixel
downloaded
Chrome Cache Entry: 95
ASCII text, with very long lines (37546)
downloaded
Chrome Cache Entry: 96
JSON data
downloaded
Chrome Cache Entry: 97
ASCII text, with very long lines (945)
downloaded
Chrome Cache Entry: 98
JSON data
dropped
Chrome Cache Entry: 99
RIFF (little-endian) data, Web/P image, VP8 encoding, 1920x175, Scaling: [none]x[none], YUV color, decoders should clamp
downloaded
There are 6 hidden files, click here to show them.

Processes

Path
Cmdline
Malicious
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2300 --field-trial-handle=2020,i,15421412117725282426,509490215148233789,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" "https://greettive-tke-783743.pages.dev/help/contact/95094729232531"

URLs

Name
IP
Malicious
https://greettive-tke-783743.pages.dev/help/contact/95094729232531
malicious
https://greettive-tke-783743.pages.dev/help/contact/95094729232531
malicious
https://greettive-tke-783743.pages.dev/assets/facebook_logo_icon_147291-f2dfc6fd.ico
172.66.47.121
https://cdn.jsdelivr.net/npm/bootstrap
unknown
https://greettive-tke-783743.pages.dev/assets/index-ad6abe2c.js
172.66.47.121
https://github.com/twbs/bootstrap/blob/main/LICENSE)
unknown
https://reactjs.org/docs/error-decoder.html?invariant=
unknown
https://api.ipify.org/?format=json
104.26.12.205
https://greettive-tke-783743.pages.dev/assets/index-d076d531.css
172.66.47.121
https://cdn.jsdelivr.net/npm/react-dom/umd/react-dom.production.min.js
unknown
https://freeipapi.com/api/json/8.46.123.175
188.114.97.3
https://getbootstrap.com/)
unknown
https://greettive-tke-783743.pages.dev/assets/banner-b1482d4c.webp
172.66.47.121
https://cdn.jsdelivr.net/npm/react/umd/react.production.min.js
unknown
http://jedwatson.github.io/classnames
unknown
https://cdn.jsdelivr.net/npm/react-bootstrap
unknown
There are 5 hidden URLs, click here to show them.

Domains

Name
IP
Malicious
greettive-tke-783743.pages.dev
172.66.47.121
freeipapi.com
188.114.97.3
api.ipify.org
104.26.12.205
www.google.com
216.58.206.36
fp2e7a.wpc.phicdn.net
192.229.221.95
cdn.jsdelivr.net
unknown

IPs

IP
Domain
Country
Malicious
104.26.12.205
api.ipify.org
United States
192.168.2.4
unknown
unknown
216.58.206.36
www.google.com
United States
192.168.2.6
unknown
unknown
172.66.47.121
greettive-tke-783743.pages.dev
United States
239.255.255.250
unknown
Reserved
188.114.97.3
freeipapi.com
European Union

DOM / HTML

URL
Malicious
https://greettive-tke-783743.pages.dev/help/contact/95094729232531