Files
File Path
|
Type
|
Category
|
Malicious
|
|
---|---|---|---|---|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Thu May 23 21:24:56 2024, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Thu May 23 21:24:56 2024, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Oct 6 08:05:01 2023, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Thu May 23 21:24:56 2024, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Thu May 23 21:24:56 2024, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Thu May 23 21:24:55 2024, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
URLs
Name
|
IP
|
Malicious
|
|
---|---|---|---|
https://mariobadescu.tyb.xyz/
|
|||
https://mariobadescu.tyb.xyz/join
|
|||
https://mariobadescu.tyb.xyz/
|
|||
https://auth.magic.link/send?params=eyJBUElfS0VZIjoicGtfbGl2ZV8zQUZBOEE5N0I3ODE2Njk0IiwiRE9NQUlOX09SSUdJTiI6Imh0dHBzOi8vbWFyaW9iYWRlc2N1LnR5Yi54eXoiLCJFVEhfTkVUV09SSyI6eyJycGNVcmwiOiJodHRwczovL2FwaS5hdmF4Lm5ldHdvcmsvZXh0L2JjL0MvcnBjIiwiY2hhaW5JZCI6NDMxMTR9LCJob3N0IjoiYXV0aC5tYWdpYy5saW5rIiwic2RrIjoibWFnaWMtc2RrIiwidmVyc2lvbiI6IjE5LjQuMCIsImxvY2FsZSI6ImVuX1VTIn0%3D
|
|||
https://auth.magic.link/send-legacy?params=eyJBUElfS0VZIjoicGtfbGl2ZV8zQUZBOEE5N0I3ODE2Njk0IiwiRE9NQUlOX09SSUdJTiI6Imh0dHBzOi8vbWFyaW9iYWRlc2N1LnR5Yi54eXoiLCJFVEhfTkVUV09SSyI6eyJycGNVcmwiOiJodHRwczovL2FwaS5hdmF4Lm5ldHdvcmsvZXh0L2JjL0MvcnBjIiwiY2hhaW5JZCI6NDMxMTR9LCJob3N0IjoiYXV0aC5tYWdpYy5saW5rIiwic2RrIjoibWFnaWMtc2RrIiwidmVyc2lvbiI6IjE5LjQuMCIsImxvY2FsZSI6ImVuX1VTIn0=
|
|||
about:blank
|
|||
https://auth.magic.link/placeholder-legacy-relayer-path
|
|||
https://auth.magic.link/send/rpc/auth/magic_auth_login_with_email_otp/verify_otp_code?lang=en-US
|
Domains
Name
|
IP
|
Malicious
|
|
---|---|---|---|
mariobadescu.tyb.xyz
|
54.187.2.108
|
||
app.tyb.xyz
|
35.161.66.192
|
||
mparticle.map.fastly.net
|
151.101.130.133
|
||
fastly-tls12-bam.nr-data.net
|
162.247.243.29
|
||
d36n5zyyxsimg4.cloudfront.net
|
18.65.40.191
|
||
o1176044.ingest.sentry.io
|
34.120.195.249
|
||
s3-r-w.us-west-2.amazonaws.com
|
3.5.76.120
|
||
d1nio8jhji2fqt.cloudfront.net
|
3.161.82.118
|
||
events.launchdarkly.com
|
3.216.87.253
|
||
kms.us-west-2.amazonaws.com
|
52.94.182.204
|
||
scontent.xx.fbcdn.net
|
157.240.0.6
|
||
jssdks.mparticle.com
|
151.101.194.133
|
||
d296je7bbdd650.cloudfront.net
|
99.86.8.175
|
||
www.google.com
|
142.250.185.68
|
||
api.magic.link
|
104.18.22.227
|
||
api.segment.io
|
54.69.251.6
|
||
jssdkcdns.mparticle.com
|
151.101.2.133
|
||
browser-intake-datadoghq.com
|
3.233.152.234
|
||
js.intercomcdn.com
|
18.239.94.98
|
||
widget.intercom.io
|
13.224.189.18
|
||
auth.magic.link
|
104.18.23.227
|
||
clientstream-ga.launchdarkly.com
|
13.248.151.210
|
||
js-agent.newrelic.com
|
162.247.243.39
|
||
edge.fullstory.com
|
35.201.112.186
|
||
cdn.ethers.io
|
13.33.187.103
|
||
s-part-0039.t-0009.t-msedge.net
|
13.107.246.67
|
||
rs.fullstory.com
|
35.186.194.58
|
||
avalanche-mainnet.core.chainstack.com
|
104.18.4.35
|
||
assets.auth.magic.link
|
unknown
|
||
s.clarity.ms
|
unknown
|
||
cdn.segment.com
|
unknown
|
||
identity.mparticle.com
|
unknown
|
||
tyb-prod-collectibles-assets-bucket.s3.us-west-2.amazonaws.com
|
unknown
|
||
c.clarity.ms
|
unknown
|
||
clientstream.launchdarkly.com
|
unknown
|
||
websdk.appsflyer.com
|
unknown
|
||
app.launchdarkly.com
|
unknown
|
||
www.clarity.ms
|
unknown
|
||
connect.facebook.net
|
unknown
|
||
bam.nr-data.net
|
unknown
|
There are 30 hidden domains, click here to show them.
IPs
IP
|
Domain
|
Country
|
Malicious
|
|
---|---|---|---|---|
54.187.2.108
|
mariobadescu.tyb.xyz
|
United States
|
||
35.161.66.192
|
app.tyb.xyz
|
United States
|
||
52.92.243.66
|
unknown
|
United States
|
||
142.250.186.67
|
unknown
|
United States
|
||
151.101.130.133
|
mparticle.map.fastly.net
|
United States
|
||
18.65.40.191
|
d36n5zyyxsimg4.cloudfront.net
|
United States
|
||
3.216.87.253
|
events.launchdarkly.com
|
United States
|
||
18.239.94.98
|
js.intercomcdn.com
|
United States
|
||
13.224.189.18
|
widget.intercom.io
|
United States
|
||
35.186.194.58
|
rs.fullstory.com
|
United States
|
||
3.5.76.120
|
s3-r-w.us-west-2.amazonaws.com
|
United States
|
||
192.168.2.4
|
unknown
|
unknown
|
||
151.101.130.217
|
unknown
|
United States
|
||
52.32.72.15
|
unknown
|
United States
|
||
18.65.40.222
|
unknown
|
United States
|
||
68.219.88.97
|
unknown
|
United States
|
||
3.161.82.118
|
d1nio8jhji2fqt.cloudfront.net
|
United States
|
||
151.101.66.217
|
unknown
|
United States
|
||
151.101.66.133
|
unknown
|
United States
|
||
35.155.246.37
|
unknown
|
United States
|
||
142.250.186.35
|
unknown
|
United States
|
||
142.250.185.68
|
www.google.com
|
United States
|
||
1.1.1.1
|
unknown
|
Australia
|
||
13.248.151.210
|
clientstream-ga.launchdarkly.com
|
United States
|
||
13.107.21.237
|
unknown
|
United States
|
||
142.250.185.232
|
unknown
|
United States
|
||
54.69.251.6
|
api.segment.io
|
United States
|
||
13.33.187.103
|
cdn.ethers.io
|
United States
|
||
239.255.255.250
|
unknown
|
Reserved
|
||
99.86.8.175
|
d296je7bbdd650.cloudfront.net
|
United States
|
||
104.18.23.227
|
auth.magic.link
|
United States
|
||
216.58.206.74
|
unknown
|
United States
|
||
13.107.246.67
|
s-part-0039.t-0009.t-msedge.net
|
United States
|
||
216.58.206.78
|
unknown
|
United States
|
||
192.168.2.16
|
unknown
|
unknown
|
||
52.94.182.204
|
kms.us-west-2.amazonaws.com
|
United States
|
||
3.33.235.18
|
unknown
|
United States
|
||
18.239.69.70
|
unknown
|
United States
|
||
157.240.0.6
|
scontent.xx.fbcdn.net
|
United States
|
||
64.233.166.84
|
unknown
|
United States
|
||
142.251.40.110
|
unknown
|
United States
|
||
151.101.194.217
|
unknown
|
United States
|
||
162.247.243.39
|
js-agent.newrelic.com
|
United States
|
||
104.18.22.227
|
api.magic.link
|
United States
|
||
142.250.184.206
|
unknown
|
United States
|
||
151.101.194.133
|
jssdks.mparticle.com
|
United States
|
||
3.233.152.234
|
browser-intake-datadoghq.com
|
United States
|
||
104.18.4.35
|
avalanche-mainnet.core.chainstack.com
|
United States
|
||
23.96.124.68
|
unknown
|
United States
|
||
2.19.122.221
|
unknown
|
European Union
|
||
142.250.185.170
|
unknown
|
United States
|
||
35.201.112.186
|
edge.fullstory.com
|
United States
|
||
151.101.2.217
|
unknown
|
United States
|
||
151.101.2.133
|
jssdkcdns.mparticle.com
|
United States
|
||
50.17.177.188
|
unknown
|
United States
|
||
162.247.243.29
|
fastly-tls12-bam.nr-data.net
|
United States
|
||
64.233.184.84
|
unknown
|
United States
|
||
34.120.195.249
|
o1176044.ingest.sentry.io
|
United States
|
There are 48 hidden IPs, click here to show them.