Files
File Path
|
Type
|
Category
|
Malicious
|
|
---|---|---|---|---|
Chrome Cache Entry: 61
|
ASCII text, with very long lines (2124)
|
downloaded
|
||
Chrome Cache Entry: 62
|
Web Open Font Format (Version 2), TrueType, length 48236, version 1.0
|
downloaded
|
||
Chrome Cache Entry: 63
|
ASCII text, with very long lines (546)
|
downloaded
|
||
Chrome Cache Entry: 64
|
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel
|
dropped
|
||
Chrome Cache Entry: 65
|
GIF image data, version 89a, 900 x 250
|
dropped
|
||
Chrome Cache Entry: 66
|
ASCII text, with very long lines (1815)
|
downloaded
|
||
Chrome Cache Entry: 67
|
JPEG image data, baseline, precision 8, 640x480, components 3
|
downloaded
|
||
Chrome Cache Entry: 68
|
ASCII text, with very long lines (1907)
|
downloaded
|
||
Chrome Cache Entry: 69
|
ASCII text, with very long lines (1572)
|
downloaded
|
||
Chrome Cache Entry: 70
|
ASCII text, with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 71
|
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel
|
downloaded
|
||
Chrome Cache Entry: 72
|
ASCII text, with very long lines (1162)
|
downloaded
|
||
Chrome Cache Entry: 73
|
Web Open Font Format (Version 2), TrueType, length 34184, version 1.0
|
downloaded
|
||
Chrome Cache Entry: 74
|
ASCII text, with very long lines (1572)
|
downloaded
|
||
Chrome Cache Entry: 75
|
ASCII text, with very long lines (383)
|
downloaded
|
||
Chrome Cache Entry: 76
|
ASCII text, with very long lines (1572)
|
downloaded
|
||
Chrome Cache Entry: 77
|
ASCII text, with very long lines (1124)
|
downloaded
|
||
Chrome Cache Entry: 78
|
JPEG image data, baseline, precision 8, 640x480, components 3
|
dropped
|
||
Chrome Cache Entry: 79
|
HTML document, Unicode text, UTF-8 text, with very long lines (1136)
|
dropped
|
||
Chrome Cache Entry: 80
|
ASCII text, with very long lines (2054)
|
downloaded
|
||
Chrome Cache Entry: 81
|
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0
|
downloaded
|
||
Chrome Cache Entry: 82
|
ASCII text, with very long lines (65536), with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 83
|
GIF image data, version 89a, 900 x 250
|
downloaded
|
There are 14 hidden files, click here to show them.
Processes
Path
|
Cmdline
|
Malicious
|
|
---|---|---|---|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
|
||
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US
--service-sandbox-type=none --mojo-platform-channel-handle=2116 --field-trial-handle=2076,i,18174622302486856701,2373706481918358607,262144
--disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction
/prefetch:8
|
||
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" "https://sites.google.com/view/bakcsa3/?yj0&d=DwMFaQ"
|
URLs
Name
|
IP
|
Malicious
|
|
---|---|---|---|
https://sites.google.com/view/bakcsa3/?yj0&d=DwMFaQ
|
|||
https://dataconnector.corp.google.com/:session_prefix:ui/widgetview?usegapi=1
|
unknown
|
||
https://developers.google.com/identity/gsi/web/guides/gis-migration)
|
unknown
|
||
https://sites.google.com/_/view/logImpressions?authuser=0
|
142.250.186.142
|
||
https://scriptz.corp.google.com/
|
unknown
|
||
https://lh5.googleusercontent.com/QmMtUfcZb8HCPTk7mycilQNRSxsgN1pfissSxL8rc_Lw5Ka89R6W3KNq9kcVUYqo9yEwlvZ4j7pFViSwROUBDFs=w16383
|
216.58.206.33
|
||
https://apis.google.com/js/client.js
|
unknown
|
||
https://classroom.google.com/sharewidget?usegapi=1
|
unknown
|
||
https://developers.googleblog.com/2018/03/discontinuing-support-for-json-rpc-and.html
|
unknown
|
||
https://workspace.google.com/products/sites/
|
unknown
|
||
https://console.developers.google.com/
|
unknown
|
||
https://www.youtube.com/subscribe_embed?usegapi=1
|
unknown
|
||
https://sites.google.com/view/bakcsa3/?yj0&d=DwMFaQ
|
|||
https://play.google.com/log?format=json&hasfast=true&authuser=0
|
142.250.185.142
|
||
https://workspace.google.com/:session_prefix:marketplace/appfinder?usegapi=1
|
unknown
|
||
https://plus.google.com
|
unknown
|
||
https://uberproxy-pen-redirect.corp.google.com/uberproxy/pen?url=
|
unknown
|
||
https://clients3.google.com/cast/chromecast/home/widget/backdrop?usegapi=1
|
unknown
|
||
https://www.google.com/shopping/customerreviews/badge?usegapi=1
|
unknown
|
||
https://play.google.com/log?format=json&hasfast=true
|
unknown
|
||
https://csp.withgoogle.com/csp/lcreport/
|
unknown
|
||
https://pay.google.com/gp/v/widget/save
|
unknown
|
||
https://drive.google.com/savetodrivebutton?usegapi=1
|
unknown
|
||
https://talkgadget.google.com/:session_prefix:talkgadget/_/widget
|
unknown
|
||
https://play.google.com/work/embedded/search?usegapi=1&usegapi=1
|
unknown
|
||
https://lh6.googleusercontent.com/xoE5-QplVlmDvAEial54xiXGtwGMIh9wYFZbQYevSQoOJDaezhjH99tGSn5nANURE0SsuiSPoydIZ6W7gn2JVG4MnVUV84-Oxd7Z6h_6DbnRnv5uON6wSbrbuKt1EgXnKQ=w1280
|
216.58.206.65
|
||
https://www.google.com/shopping/customerreviews/optin?usegapi=1
|
unknown
|
||
https://developers.google.com/api-client-library/javascript/reference/referencedocs
|
unknown
|
||
https://rapid.corp.google.com/
|
unknown
|
||
https://angular.io/license
|
unknown
|
||
https://apis.google.com
|
unknown
|
||
https://developers.google.com/
|
unknown
|
||
https://families.google.com/webcreation?usegapi=1&usegapi=1
|
unknown
|
||
https://fonts.google.com/license/googlerestricted
|
unknown
|
||
https://apis.google.com/js/client.js?onload=gapiLoaded
|
142.250.184.206
|
||
https://apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=client/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs
|
142.250.184.206
|
||
https://domains.google.com/suggest/flow
|
unknown
|
||
https://support.google.com/cloudsearch/answer/6172299
|
unknown
|
||
https://clients6.google.com
|
unknown
|
There are 28 hidden URLs, click here to show them.
Domains
Name
|
IP
|
Malicious
|
|
---|---|---|---|
bg.microsoft.map.fastly.net
|
199.232.210.172
|
||
plus.l.google.com
|
142.250.184.206
|
||
play.google.com
|
142.250.185.142
|
||
sites.google.com
|
142.250.186.142
|
||
www.google.com
|
172.217.18.4
|
||
googlehosted.l.googleusercontent.com
|
216.58.206.65
|
||
fp2e7a.wpc.phicdn.net
|
192.229.221.95
|
||
lh5.googleusercontent.com
|
unknown
|
||
lh6.googleusercontent.com
|
unknown
|
||
apis.google.com
|
unknown
|
IPs
IP
|
Domain
|
Country
|
Malicious
|
|
---|---|---|---|---|
142.250.186.174
|
unknown
|
United States
|
||
172.217.18.4
|
www.google.com
|
United States
|
||
216.58.206.33
|
unknown
|
United States
|
||
216.58.206.65
|
googlehosted.l.googleusercontent.com
|
United States
|
||
192.168.2.4
|
unknown
|
unknown
|
||
142.250.181.225
|
unknown
|
United States
|
||
239.255.255.250
|
unknown
|
Reserved
|
||
142.250.185.142
|
play.google.com
|
United States
|
||
142.250.186.142
|
sites.google.com
|
United States
|
||
142.250.184.206
|
plus.l.google.com
|
United States
|
||
142.250.186.33
|
unknown
|
United States
|
There are 1 hidden IPs, click here to show them.
DOM / HTML
URL
|
Malicious
|
|
---|---|---|
https://sites.google.com/view/bakcsa3/?yj0&d=DwMFaQ
|
||
https://sites.google.com/view/bakcsa3/?yj0&d=DwMFaQ
|