Windows
Analysis Report
https://publuu.com/flip-book/518284/1161698
Overview
Detection
Score: | 2 |
Range: | 0 - 100 |
Whitelisted: | false |
Confidence: | 80% |
Signatures
Classification
- System is w10x64_ra
chrome.exe (PID: 7124 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --st art-maximi zed --sing le-argumen t https:// publuu.com /flip-book /518284/11 61698 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4) chrome.exe (PID: 6312 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --ty pe=utility --utility -sub-type= network.mo jom.Networ kService - -lang=en-U S --servic e-sandbox- type=none --mojo-pla tform-chan nel-handle =2164 --fi eld-trial- handle=196 8,i,171999 4904520051 820,162815 8312431249 1066,26214 4 --disabl e-features =Optimizat ionGuideMo delDownloa ding,Optim izationHin ts,Optimiz ationHints Fetching,O ptimizatio nTargetPre diction /p refetch:8 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4) chrome.exe (PID: 6744 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --ty pe=utility --utility -sub-type= audio.mojo m.AudioSer vice --lan g=en-US -- service-sa ndbox-type =audio --m ojo-platfo rm-channel -handle=52 20 --field -trial-han dle=1968,i ,171999490 4520051820 ,162815831 2431249106 6,262144 - -disable-f eatures=Op timization GuideModel Downloadin g,Optimiza tionHints, Optimizati onHintsFet ching,Opti mizationTa rgetPredic tion /pref etch:8 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
- cleanup
Click to jump to signature section
There are no malicious signatures, click here to show all signatures.
Source: | HTTP Parser: |
Source: | HTTP Parser: |
Source: | HTTP Parser: |
Source: | HTTP Parser: | ||
Source: | HTTP Parser: | ||
Source: | HTTP Parser: | ||
Source: | HTTP Parser: |
Source: | HTTP Parser: | ||
Source: | HTTP Parser: | ||
Source: | HTTP Parser: | ||
Source: | HTTP Parser: |
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: |
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: |
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: |
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: |
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: |
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: |
Source: | Classification label: |
Source: | File created: |
Source: | Process created: | ||
Source: | Process created: | ||
Source: | Process created: | ||
Source: | Process created: | ||
Source: | Process created: | ||
Source: | Process created: | ||
Source: | Process created: | ||
Source: | Process created: | ||
Source: | Process created: | ||
Source: | Process created: | ||
Source: | Process created: | ||
Source: | Process created: | ||
Source: | Process created: | ||
Source: | Process created: | ||
Source: | Process created: | ||
Source: | Process created: | ||
Source: | Process created: | ||
Source: | Process created: | ||
Source: | Process created: | ||
Source: | Process created: | ||
Source: | Process created: |
Source: | File created: | ||
Source: | File created: | ||
Source: | File created: | ||
Source: | File created: | ||
Source: | File created: | ||
Source: | File created: | ||
Source: | File created: |
Reconnaissance | Resource Development | Initial Access | Execution | Persistence | Privilege Escalation | Defense Evasion | Credential Access | Discovery | Lateral Movement | Collection | Command and Control | Exfiltration | Impact |
---|---|---|---|---|---|---|---|---|---|---|---|---|---|
Gather Victim Identity Information | Acquire Infrastructure | Valid Accounts | Windows Management Instrumentation | 1 Registry Run Keys / Startup Folder | 1 Process Injection | 1 Masquerading | OS Credential Dumping | System Service Discovery | Remote Services | Data from Local System | 2 Encrypted Channel | Exfiltration Over Other Network Medium | Abuse Accessibility Features |
Credentials | Domains | Default Accounts | Scheduled Task/Job | Boot or Logon Initialization Scripts | 1 Registry Run Keys / Startup Folder | 1 Process Injection | LSASS Memory | Application Window Discovery | Remote Desktop Protocol | Data from Removable Media | 1 Non-Application Layer Protocol | Exfiltration Over Bluetooth | Network Denial of Service |
Email Addresses | DNS Server | Domain Accounts | At | Logon Script (Windows) | Logon Script (Windows) | Obfuscated Files or Information | Security Account Manager | Query Registry | SMB/Windows Admin Shares | Data from Network Shared Drive | 2 Application Layer Protocol | Automated Exfiltration | Data Encrypted for Impact |
This section contains all screenshots as thumbnails, including those not shown in the slideshow.
Source | Detection | Scanner | Label | Link |
---|---|---|---|---|
0% | Avira URL Cloud | safe |
Name | IP | Active | Malicious | Antivirus Detection | Reputation |
---|---|---|---|---|---|
d1uiew9hysv4w7.cloudfront.net | 18.66.137.144 | true | false | unknown | |
publuu.com | 3.136.115.193 | true | false | unknown | |
www.google.com | 142.250.185.164 | true | false | unknown | |
d1u9ua4yk0lyeu.cloudfront.net | 18.238.248.110 | true | false | unknown | |
utty56o2qi.execute-api.us-east-2.amazonaws.com | 3.19.254.28 | true | false | unknown | |
dkl18tmi4r0t8.cloudfront.net | 18.239.47.59 | true | false | unknown |
Name | Malicious | Antivirus Detection | Reputation |
---|---|---|---|
false | unknown |
- No. of IPs < 25%
- 25% < No. of IPs < 50%
- 50% < No. of IPs < 75%
- 75% < No. of IPs
IP | Domain | Country | Flag | ASN | ASN Name | Malicious |
---|---|---|---|---|---|---|
1.1.1.1 | unknown | Australia | 13335 | CLOUDFLARENETUS | false | |
34.104.35.123 | unknown | United States | 15169 | GOOGLEUS | false | |
74.125.133.84 | unknown | United States | 15169 | GOOGLEUS | false | |
142.250.185.106 | unknown | United States | 15169 | GOOGLEUS | false | |
18.66.137.144 | d1uiew9hysv4w7.cloudfront.net | United States | 3 | MIT-GATEWAYSUS | false | |
172.217.23.110 | unknown | United States | 15169 | GOOGLEUS | false | |
18.189.90.121 | unknown | United States | 16509 | AMAZON-02US | false | |
239.255.255.250 | unknown | Reserved | unknown | unknown | false | |
172.217.23.99 | unknown | United States | 15169 | GOOGLEUS | false | |
3.22.179.31 | unknown | United States | 16509 | AMAZON-02US | false | |
142.250.185.164 | www.google.com | United States | 15169 | GOOGLEUS | false | |
18.238.248.76 | unknown | United States | 16509 | AMAZON-02US | false | |
142.250.184.238 | unknown | United States | 15169 | GOOGLEUS | false | |
18.238.248.110 | d1u9ua4yk0lyeu.cloudfront.net | United States | 16509 | AMAZON-02US | false | |
3.19.254.28 | utty56o2qi.execute-api.us-east-2.amazonaws.com | United States | 16509 | AMAZON-02US | false | |
18.239.47.185 | unknown | United States | 16509 | AMAZON-02US | false | |
172.217.16.195 | unknown | United States | 15169 | GOOGLEUS | false | |
18.239.47.59 | dkl18tmi4r0t8.cloudfront.net | United States | 16509 | AMAZON-02US | false | |
3.136.115.193 | publuu.com | United States | 16509 | AMAZON-02US | false | |
99.86.153.199 | unknown | United States | 16509 | AMAZON-02US | false |
IP |
---|
192.168.2.16 |
Joe Sandbox version: | 40.0.0 Tourmaline |
Analysis ID: | 1447361 |
Start date and time: | 2024-05-24 21:50:57 +02:00 |
Joe Sandbox product: | CloudBasic |
Overall analysis duration: | |
Hypervisor based Inspection enabled: | false |
Report type: | full |
Cookbook file name: | defaultwindowsinteractivecookbook.jbs |
Sample URL: | https://publuu.com/flip-book/518284/1161698 |
Analysis system description: | Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01 |
Number of analysed new started processes analysed: | 16 |
Number of new started drivers analysed: | 0 |
Number of existing processes analysed: | 0 |
Number of existing drivers analysed: | 0 |
Number of injected processes analysed: | 0 |
Technologies: |
|
Analysis Mode: | stream |
Analysis stop reason: | Timeout |
Detection: | CLEAN |
Classification: | clean2.win@21/43@24/212 |
- Exclude process from analysis (whitelisted): audiodg.exe, svchost.exe
- Excluded IPs from analysis (whitelisted): 142.250.184.238, 172.217.23.99, 74.125.133.84, 34.104.35.123, 142.250.185.106, 142.250.185.234, 142.250.185.170, 142.250.186.42, 172.217.16.138, 142.250.181.234, 216.58.206.42, 142.250.185.202, 142.250.185.138, 142.250.184.234, 142.250.184.202, 216.58.206.74, 172.217.18.10, 172.217.16.202, 142.250.186.74, 142.250.74.202
- Excluded domains from analysis (whitelisted): clients2.google.com, accounts.google.com, edgedl.me.gvt1.com, content-autofill.googleapis.com, clientservices.googleapis.com, clients.l.google.com
- Not all processes where analyzed, report is missing behavior information
- VT rate limit hit for: https://publuu.com/flip-book/518284/1161698
Input | Output |
---|---|
URL: https://publuu.com/flip-book/518284/1161698 Model: gpt-4o | ```json { "riskscore": 0, "reasons": "The provided JavaScript code checks for device types and initializes some global variables. There is no indication of malicious behavior." } |
var isLandscape = false; var isAndroid = (/android/gi).test(navigator.appVersion); var isIDevice = (/iphone|ipad/gi).test(navigator.appVersion); var isIPhone = (/iphone/gi).test(navigator.appVersion); var iOsHeight = 0; window.timingcount = 0; window.timingsum = 0; window.dlid = 0 | |
URL: https://publuu.com/flip-book/518284/1161698 Model: gpt-4o | ```json { "riskscore": 0, "reasons": "The provided JavaScript code contains only louserzation strings for various UI elements of a flipbook application. There are no indications of malicious behavior such as data exfiltration, unauthorized access, or harmful operations." } |
window._translations = {"Default Description":"Welcome to interactive presentation, created with Publuu. Enjoy the reading!","Powered By":"Flipbook powered by Publuu.com","Security Title":"Wrong name","Security Description":"Wrong description","State Proteced":"Proteced","State Still Converting":"Flipbook is converting. This will take just a moment.","QR Code Name":"QR Code to my Flipbook","Sidebar Thumbnails Title":"Thumbnails","Sidebar Table Of Content Title":"Table of Contents","Sidebar Search Title":"Search","Sidebar Search Enter Query":"Enter query","Sidebar Search Min Symbols":"min. {n} symbols","Sidebar Search Clear":"clear","Sidebar Search No Results":"No results found!","Sidebar Search Error":"Error","Sidebar Search List Item":"<span>Page {n}<\/span><span>{n} {n}<\/span>","Sidebar Search List Result Text":"result","Sidebar Search List Results 2 Text":"results","Sidebar Search List Results 5 Text":"results","Sidebar Wishlist Title":"My Wishlist","Sidebar Wishlist Text":"E-mail provided below will be used for a follow-up action by flipbook owner.","Sidebar Wishlist Button":"Send Message","Sidebar Wishlist Email Placeholder":"Your e-mail adress","Sidebar Wishlist Mail Status Success":"Successfully sended!","Access Denied Title":"Sorry","Access Denied Subtitle":"You cannot open this publication because of its privacy settings.","Access Denied Text":"You can contact the person who shared it with you and ask to modify its setting.","Lead Form Privacy With Link":"By clicking Submit, you confirm that you agree to the <a target='_blank' href='{n}' id='lead-modal-privacy'>flipbook Owner Privacy Policy<\/a> and <a target='_blank' href='{n}' id='lead-modal-privacy'>Publuu Privacy Policy<\/a>.","Lead Form Privacy":"By clicking Submit, you confirm that you agree to the <a target='_blank' href='{n}' id='lead-modal-privacy'>Publuu Privacy Policy<\/a>.","Lead Form Submit":"SUBMIT","Lead Form Skip":"skip >","Lead Form Tooltip":"This is only a preview version \u2013 to check how the actual lead capture form will work in your flipbook, click SAVE and open it in a separate tab.","Lead Form Validation Required":"Required field","Lead Form Validation Format":"Wrong format","Lead Form Caption Default":"Enter your contact details to access this flipbook","Password Form Title":"This document is password protected","Password Form Placeholder":"Type your password here","Password Form Send":"ENTER","Password Form Error Invalid":"Invalid password.","Print Form Title":"Print flipbook","Print Form Option All":"Print all pages","Print Form Option Current":"Print current page","Print Form Option Range":"Print range","Print Form Submit":"PRINT","Print Form Preview Page":"Page <span id=\"{n}\">{n}<\/span>","Print Form Option Range Error":"Invalid range!","Print Form Modal Message":"Retrieving Document...","Share Form Title":"Share flipbook","Share Form Copy Link":"Copy this link:","Share Form Copy":"COPY","Share Form Copied":"Copied","Alert Form Title":"Audio Autoplay Req | |
URL: https://publuu.com/flip-book/518284/1161698 Model: gpt-4o | ```json { "riskscore": 0, "reasons": "The provided JavaScript code does not exhibit any malicious behavior. It contains configuration settings for various APIs and paths, which are typical for legitimate web applications. There are no indications of phishing or other harmful activities." } |
window._config = { ROOT_PATH: 'https://publuu.com/flip-book/', API_PUBLUU: 'https://api1.publuu.com', CMS_PUBLUU_CF: 'https://d1u9ua4yk0lyeu.cloudfront.net', PATH_CF_FLIP: 'https://dkl18tmi4r0t8.cloudfront.net/flipbook/202405/', VIEWER_API: 'https://cvn5wqeu20.execute-api.us-east-2.amazonaws.com/viewer', LEADS_API: 'https://mbx7b28fh6.execute-api.us-east-2.amazonaws.com/leads', LOGS_API: 'https://utty56o2qi.execute-api.us-east-2.amazonaws.com/logs' }; | |
URL: https://publuu.com/flip-book/518284/1161698 Model: gpt-4o | ```json { "riskscore": 2, "reasons": "The code includes an event listener for visibility change and touchmove, which are generally benign. However, the use of window.parent.postMessage with a wildcard (*) target origin could potentially be exploited for cross-site scripting (XSS) or other attacks if not properly handled. This slightly increases the risk score." } |
window.document.addEventListener("visibilitychange", function(e) { if (!oLogs) { return; } if(window.document.visibilityState == "hidden"){ if(oLogs.logs_state_visible === 3){ oLogs.logs_state_visible = 2; } else { oLogs.logs_state_visible = 1; oLogs.lastActionTime = Date.now(); } } else { oLogs.sleepTime += Date.now() - oLogs.lastActionTime; oLogs.logs_state_visible = 3; } }); document.addEventListener('touchmove', function (event) { if (event.scale !== 1) { event.preventDefault(); } }, false); function showLoginSend() { window.parent.postMessage({ 'func': 'showLoginSend', 'message': 'Message text from iframe.' }, "*"); } |
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk
Download File
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2673 |
Entropy (8bit): | 3.984408576152229 |
Encrypted: | false |
SSDEEP: | |
MD5: | 880D452930E82B9076D767358C6847B6 |
SHA1: | 8834C334B5B88C729DDEE43E789F4B78E0ED3E48 |
SHA-256: | DB3B510DC2002BC1ABF657318E69DF51C3FA7401F413E4EB26AB2B98BA49C7DE |
SHA-512: | 8797DD94F0904F20C167AF54E4C71F419D31840BD7E25C9B41CF6404E8DF6F2A7DE8E7FF558C78B751258B43BAA021DDFCF36F8EAAE8D03164EF8090A7770C00 |
Malicious: | false |
Reputation: | unknown |
Preview: |
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk
Download File
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2675 |
Entropy (8bit): | 4.0035637995263595 |
Encrypted: | false |
SSDEEP: | |
MD5: | 292258C0B45BFFF55DE832CDD6B653CF |
SHA1: | 9664ACC71BE53BB8EF2E07B70A375FE0B234090A |
SHA-256: | 9450BEAD4B78E769AD811697AC0C616B950B6C281D1DB9307062415C7A07BC36 |
SHA-512: | D0E9F3BE550DE8CE527690541DC2AF97FFD3F38FAF49C2855FFF545A5C226DBBD85CA1779FFE41D0BD69B0C7B643FF00FDD3F8DEAD499185354D1160916C2360 |
Malicious: | false |
Reputation: | unknown |
Preview: |
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk
Download File
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2689 |
Entropy (8bit): | 4.011316778303669 |
Encrypted: | false |
SSDEEP: | |
MD5: | C99D014329E9265F87EDE98DE0E40F2F |
SHA1: | 46DB4C7A882EEDC7E055A82FDEC93DBACCDC58F8 |
SHA-256: | B0C9FE0F4BEA3E4D8CA3FA0D935136900AEB03402AFB4744168AE26B1A6AC93A |
SHA-512: | 0F3216CEB5B47EF8FDE99F2435248087278A9BBEF386073AAD7377F6CF4450A9144C5A727E5F66989CCB9A5CB4DD6FE1DA22CC1FF41073017BFCC0452E64F678 |
Malicious: | false |
Reputation: | unknown |
Preview: |
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk
Download File
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2677 |
Entropy (8bit): | 4.00297948502377 |
Encrypted: | false |
SSDEEP: | |
MD5: | 5AEC31A8D746931AD8B93608D05B6CA0 |
SHA1: | 44101F8A5CE838A3327E07C7AEEE64767E3859B6 |
SHA-256: | 2785576C321442DD06BB6AAF61C02CB875FEC22CB27CBC84E56F72FD06B89267 |
SHA-512: | 15117FB10A2D0F810336EF9F062ED24603816DCE027B2D84F27E022E96642E18B41C511A3B05810BDA5FBF99BD5F6ABF5F4D4F9BD8F4E6B8CC2AF5EB59E31046 |
Malicious: | false |
Reputation: | unknown |
Preview: |
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk
Download File
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2677 |
Entropy (8bit): | 3.988532349804363 |
Encrypted: | false |
SSDEEP: | |
MD5: | 82F76432C33C30E3CB322A86C63D01F7 |
SHA1: | 57304451BB69E312CF71445D18D576DBF446F8CD |
SHA-256: | 3A7CAFBBABFEF2F4A4A8A0AC8BB28C9FC08EA0120221BF29C90085B6AA168D73 |
SHA-512: | B7C7E92A6BE47486F46FFF11C8AAB85654C654771B636F14D0D6C4595F65F9EEB97D4092E6344E0B985CD5FC665A8D1495974D0454F150CDFD9C96593D47BBC2 |
Malicious: | false |
Reputation: | unknown |
Preview: |
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk
Download File
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2679 |
Entropy (8bit): | 3.9996470158080117 |
Encrypted: | false |
SSDEEP: | |
MD5: | FE7F7AFE3C6A36BB9C89EFD087072A16 |
SHA1: | 636778BF399CF82C7568F8081CD1EB29BA9BEA6C |
SHA-256: | F8ED4EEE362D9A79182B528B5A0DD6CE6E2C0D0394A527E3EBD5B59B3A3FAD43 |
SHA-512: | 17192AF2AC8217202607EA64AA10FC9FEF9F563956714C7AF7150CE95E6616EB1D26490388A394252A90CEC57C255C5EE36DE276EE92975F79AEFF579A54399C |
Malicious: | false |
Reputation: | unknown |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 9432 |
Entropy (8bit): | 7.333684449842632 |
Encrypted: | false |
SSDEEP: | |
MD5: | D569802DF0E5D89B3959D846A8DE838D |
SHA1: | 25394966DB7A3FCB5B58508F0455358048414337 |
SHA-256: | 89BAC5598AFFBC317630B4441A96B811977EFB56425B9A91F167D3245E2F4C3B |
SHA-512: | A4406755AEAAF049D3F819E660E0F9D0B97B473184FABA362F61464FC668C7B49692D92F2CAA474DFB41F10983C00D8B65CD3CFF43028F411A491326CE273E77 |
Malicious: | false |
Reputation: | unknown |
URL: | https://dkl18tmi4r0t8.cloudfront.net/flipbook/202405/assets/audio/v1_2.ogg:2f77cec70d2e8d:0 |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 735 |
Entropy (8bit): | 5.485891317745332 |
Encrypted: | false |
SSDEEP: | |
MD5: | F890E9134112CCB2624B08864D6AB45B |
SHA1: | DC79DD5F8BA5B837539E6539E241D7C812BD6B30 |
SHA-256: | C40AC0A8F5989D1E976A8664B382C015C6FCE68DEA9E6062DE9C6550620178F4 |
SHA-512: | BCB503EEDA429377EC7B5D1E0A0723BFBC9D5E14F826B697BBCE768E416A1CCB99B409561C9083EE85EA4C124B16B73C3B4BD681CF34D205C54AFA85A424561E |
Malicious: | false |
Reputation: | unknown |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 20983 |
Entropy (8bit): | 5.349895751108741 |
Encrypted: | false |
SSDEEP: | |
MD5: | 521966AB71574A063D92512CC22222DD |
SHA1: | 9FBB7DD1B6BC9E063DABC7AF87C07CB5950299AA |
SHA-256: | 28842DBBC79338BE1A3C1298EE3B984EFA54014CC836BE1A156AA5BAA735FA0C |
SHA-512: | 5E7AAFF411B0205281B23E77CC270E8FD912FB4A4582C1AC007187FFE18E140F6DCFF6D126A57F1DAC04038F1F97FFB98C66BB7AE2985364C56F3F335C15A3FC |
Malicious: | false |
Reputation: | unknown |
URL: | https://dkl18tmi4r0t8.cloudfront.net/flipbook/202405/assets/css/APP-xs.css?v=1571 |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 1827 |
Entropy (8bit): | 4.9374435124377625 |
Encrypted: | false |
SSDEEP: | |
MD5: | 1F0E5931479DCEBFFFB0AA36B30CBD34 |
SHA1: | 56A678C6361186B0AA295E41762871DDC42D8E23 |
SHA-256: | 846598C7AFC8C3298175E6367792CFF07B56E2176FB2C3D36F5F1E33B17C3DF1 |
SHA-512: | B5C550F2C002315E638E3C1CBC136A697633382680A30012F1F366C6E1166764DD05F86F9C3F9A2EB1A7D25CD20609C2DD1BDC1095EA6F8936809E3EF667BB48 |
Malicious: | false |
Reputation: | unknown |
URL: | https://dkl18tmi4r0t8.cloudfront.net/flipbook/202405/assets/scripts/Ranger.js?v=1571 |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 71952 |
Entropy (8bit): | 5.3898588654502815 |
Encrypted: | false |
SSDEEP: | |
MD5: | 4CCECA9A9C9B21011BD2169D648B5645 |
SHA1: | 3D564262FA115B8F3F2072E5D851C7B239275AF9 |
SHA-256: | A2A79AA07AC80A6F9E31BBC2D2497EA27A3584E0E4E8E6E47C7616101597F1E1 |
SHA-512: | 73641DB71713D07F9FEDB72ECB4024B36902616E1D55515B29138A254D887F76BE0C18620702F1F722714E97EF5815409D7DD762FFBEA6A3EF2A360BE1C89BD1 |
Malicious: | false |
Reputation: | unknown |
URL: | https://dkl18tmi4r0t8.cloudfront.net/flipbook/202405/assets/scripts/Helper.js?v=1571 |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 1482 |
Entropy (8bit): | 7.5460198331562625 |
Encrypted: | false |
SSDEEP: | |
MD5: | 4952055C694567B284BB89E08B20E829 |
SHA1: | 10125EE6C8932CCEF5A9E149F406217A87F30B68 |
SHA-256: | AEC339011F72FCCC0771C5E7218518CEF70FE7696221C775714C7B1A43914C33 |
SHA-512: | 7A552A572A422E3634BDEFE3C2AF5DDECC03051282150DD8839EAAE107B42CEAC19128B326D14CFB84495DC06206A8E2A58C81F740DBD73AFA61F5C65E4DCBB9 |
Malicious: | false |
Reputation: | unknown |
URL: | https://d1u9ua4yk0lyeu.cloudfront.net/cms/publishers/518284/1161698/flipbook-assets/705441296664f79f6d61352-52201689.png |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 13032 |
Entropy (8bit): | 4.981743241103854 |
Encrypted: | false |
SSDEEP: | |
MD5: | 50DC446D5155956755D4D992B1A7751C |
SHA1: | 94144C30A4C45518760BD82CF025433D6FC2E091 |
SHA-256: | 23C027D90FC390AE4E06BC487E060FD39612B5DB76D223921DB7727FC1D402DB |
SHA-512: | 79B211B5032A18405FC1C192C7336049135ABCAC303B8CFE7AFAA76280798BFAF311A0C9CE5E69516EDC1975D6C0CC9863FD4E20D2F0F9019B3AC520939A4EFB |
Malicious: | false |
Reputation: | unknown |
URL: | https://dkl18tmi4r0t8.cloudfront.net/flipbook/202405/assets/css/loader.css?v=1571 |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 44 |
Entropy (8bit): | 4.280470187252588 |
Encrypted: | false |
SSDEEP: | |
MD5: | C199F2D8EE6C11B68D31BB201A566BB5 |
SHA1: | FDFC712E1D55328C2337CB59BAE380ED305DCADC |
SHA-256: | 4BA39769AEFE5E3C18B5099A65377EEFE846FF164C0C99B8B3BB3C39B6C5F33B |
SHA-512: | 28A6DD13FF3E6E66D2BC8602F108C7F3C20C7EE6842B92CCB79E0F31BEE5C34CA2862B78FE540D4012BD9C843EC7F6F52EBE1E6404C225093C281C3FBFF8666B |
Malicious: | false |
Reputation: | unknown |
URL: | https://content-autofill.googleapis.com/v1/pages/ChVDaHJvbWUvMTE3LjAuNTkzOC4xMzISHgnpJ34pYt8UcBIFDTWGVBwSBQ0r1PdeEgUNNFh3xw==?alt=proto |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1130 |
Entropy (8bit): | 5.050436083209622 |
Encrypted: | false |
SSDEEP: | |
MD5: | C2949397A31EE86B4CE77770AE5AD969 |
SHA1: | 9AFBC9ABB79A1BF3CB43D320127021439BB24E50 |
SHA-256: | A9655FAADF93279BA86C7E93A4F80338E289A73D6ED70908B5A1F71F027D3DF3 |
SHA-512: | 39A0C9DC6FEF4D19C071021098094503567AD9B201103DF86C8888503134E87B57E82951BB65AACAB21D78DF956D388FE6609CACAF1CEE11B7BE64C3247C6207 |
Malicious: | false |
Reputation: | unknown |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 1202 |
Entropy (8bit): | 5.0192755748896 |
Encrypted: | false |
SSDEEP: | |
MD5: | EFDD815EA8C61B1DA4077D19FC3A17F1 |
SHA1: | 64AA1532A8EE93F07AAF4F466AE0CA987CD32EE2 |
SHA-256: | 6B26FC093B4ED9014B298C5F638BDFEEAD5C054A3064B742C5485A4A62A21037 |
SHA-512: | 8F182F5DD660C53988EC14DC22933199C95E5DC54760EA5B2E5CB82C06317E69EE2AFF02410FE7C890E13560493885816E2D226B88881CCD213B355C7C818B78 |
Malicious: | false |
Reputation: | unknown |
URL: | https://dkl18tmi4r0t8.cloudfront.net/flipbook/202405/assets/images/zoom-in.svg |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 813 |
Entropy (8bit): | 7.582689097914344 |
Encrypted: | false |
SSDEEP: | |
MD5: | CCDFF90E27263B6C465D08BD87E5E03A |
SHA1: | 284FB98F610A32947F96DB83CECC4109FF22F038 |
SHA-256: | 05CF9EF13E7D4F62326848B021FAF24FAD5CC1C81BAB62205CC50CEEFEE241B0 |
SHA-512: | F532E5EA2710EA40594BBC3EE6D7A85F9524C14C48599B2876179BF7A04810059368824227EC06CADBC4A4F929C5F40EA440E3D264DE2B9E1804FC495ED76EAA |
Malicious: | false |
Reputation: | unknown |
URL: | https://dkl18tmi4r0t8.cloudfront.net/flipbook/202405/assets/favicons/favicon-32.png |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 41553 |
Entropy (8bit): | 5.384241528250146 |
Encrypted: | false |
SSDEEP: | |
MD5: | 90BF50C4C3BF8744D51C758DC97D5FD1 |
SHA1: | 2AEC4EED9CF290BFCCF5E75130BDDDA9667DBD48 |
SHA-256: | 2A546AA6DD7A9B63FA9CCFB037D7A0AFB90BB28B4A746A0782F54C3D174618B6 |
SHA-512: | 1256B6A237D02755ADA0602C0857D3D6FE24F8CC1916DB463DCE0FC6FAE328D06CE58D52E0D61F3C6EF40563A5BF8985779BC6DCFE805AEBAA7F8873EBB16728 |
Malicious: | false |
Reputation: | unknown |
URL: | https://publuu.com/flip-book/518284/1161698 |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 25490 |
Entropy (8bit): | 5.327160227669975 |
Encrypted: | false |
SSDEEP: | |
MD5: | 5C338AE39BA29F44249321EE05A4E3F9 |
SHA1: | 066859FF9C3945229936EFAA94CF1512F402B307 |
SHA-256: | AF7FCB04C84B3FD5B714744911A20C89706934EC22EAC41304014B82154F6982 |
SHA-512: | 4F923A6E0FC6BCE4894BFA80E6C14937830957E357433A6482D23BFC4BE9502253CE32F9873893A0887ADFE9F1E78BB12DB65E144FF37F0EF704E50EE99F7668 |
Malicious: | false |
Reputation: | unknown |
URL: | https://dkl18tmi4r0t8.cloudfront.net/flipbook/202405/assets/scripts/APP.js?v=1571 |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 17716 |
Entropy (8bit): | 5.438975450412831 |
Encrypted: | false |
SSDEEP: | |
MD5: | 13070AD816B35B8612C61F755A7118EC |
SHA1: | 1F368BF84FC07D065D93B298011AC8383BABADF2 |
SHA-256: | 93ACFEC0267DC1DA968038F49165835B26A0C67DEF3FF44E80901378A0FC58C7 |
SHA-512: | A351CFC77A0B15F2367B5F0251E6FAC46D6AF3028CB12FD7E1CC33DD10C8BB69F5551F4D03F8141347A715E6416E743AB95135C5C8ACB0733B0CE4246FBDED09 |
Malicious: | false |
Reputation: | unknown |
URL: | https://dkl18tmi4r0t8.cloudfront.net/flipbook/202405/assets/scripts/Notes.js?v=1571 |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 30329 |
Entropy (8bit): | 5.357528366337085 |
Encrypted: | false |
SSDEEP: | |
MD5: | C92C2F8B4EB407F55A99F83018E8899F |
SHA1: | 331055DD919625C4F58932D77ACCC3F31A92F433 |
SHA-256: | B0F3B6E2EB00694850CCB38E84D6293EC553C944CF3B91A6AF2EB8296C4C548C |
SHA-512: | 8C00249EA25479326D4EEA2DF4E38FDF3A0BB0426904A64B2B9C3657302DF7BAA8367043E71366B669D313E7D5BA92C303EAA7A69DDCC39CEE8ADE43B6F81F9C |
Malicious: | false |
Reputation: | unknown |
URL: | https://dkl18tmi4r0t8.cloudfront.net/flipbook/202405/assets/scripts/Page_curl.js?v=1571 |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 13976 |
Entropy (8bit): | 7.985218606951253 |
Encrypted: | false |
SSDEEP: | |
MD5: | E7E52C955AA33E618BAF437A16539524 |
SHA1: | 13ECB55BB760D6980A1B1331085630EF5ED84E9F |
SHA-256: | 07C94892C3E0AC93D2BCB3A9CB88AA67EA47B3D1AA89BC39DFCC2B025DCD8988 |
SHA-512: | 99465D864CF173B6C7DB67D6A9A44D9241D588564DA443DF0B7E1070E41D7D4E4CE75931FE5E54C5A483D06D68E8DCD181E12DA3BC555DE66B104A346FB1D9EB |
Malicious: | false |
Reputation: | unknown |
URL: | https://dkl18tmi4r0t8.cloudfront.net/flipbook/202405/assets/fonts/lato/v23/S6uyw4BMUTPHjx4wXiWtFCc.woff2 |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 3049 |
Entropy (8bit): | 4.118545563141429 |
Encrypted: | false |
SSDEEP: | |
MD5: | E5C858E0081CA79874511B58EF25C1F9 |
SHA1: | 4F1901932BF215C3E3D2F1AE85C12401C582152B |
SHA-256: | D09056806D969DB2794CF12F8AA48244078C4FBD3C70EFC3A94ED8FB7C8B3A40 |
SHA-512: | 631FF37939BAAA63392F41073F23A855DE78966AC366BCEAB8457EF48810B17997042CFF50874320D732A06CEA09C983EE546C86FA5E8036DF797FB6F16D9ABF |
Malicious: | false |
Reputation: | unknown |
URL: | https://dkl18tmi4r0t8.cloudfront.net/flipbook/202405/assets/images/notification.svg?v=1571 |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 109244 |
Entropy (8bit): | 7.997621329914749 |
Encrypted: | true |
SSDEEP: | |
MD5: | 44E50C627229ADF2A6242FAFAB2F5A73 |
SHA1: | F028DCADCDCF3E8AA46BC58D4D1BFBBBEC4CABF5 |
SHA-256: | 7163C04EA8148C81D21056C13B7985F345FF53E114B148BD3CF69C343FCB9A58 |
SHA-512: | 2A8F2DF9B98B9EB3482FFAF8CF118F9893B51D76CB6F5FE757A9A9C1870291F93AE3050636AFB5754BB469C4449707327BF48D6B7FD548620B6BAB74D8AF5F53 |
Malicious: | false |
Reputation: | unknown |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 729 |
Entropy (8bit): | 5.487399409654829 |
Encrypted: | false |
SSDEEP: | |
MD5: | E19C3D3111DB8EB1A3C38B93739B3361 |
SHA1: | 39B751E740852E620870C9D27A5245F94C7475D3 |
SHA-256: | 5C87DF59B770C6B740DE8E316F8BDC1AE27E375EC911D222961E0757C1C9206D |
SHA-512: | FC32BF4F2BE09C0746D1CF52444FDCAAA06DD0140DA6291313F59EA8B8C14C9A162DD8DDCB9346EDBE050B17CF3B6A650FE28B3CE904938EFC34EEFA58358A5A |
Malicious: | false |
Reputation: | unknown |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 74644 |
Entropy (8bit): | 5.2238171524733765 |
Encrypted: | false |
SSDEEP: | |
MD5: | C82A3F8D1A3E8D35DA622D09BB5B4578 |
SHA1: | FC57AAC275FF001F904C184707212EE723B4810F |
SHA-256: | 5920AB96A5FFDA4001D36D314CAC886D9D7C60FF82D91AF6621FE2C480062411 |
SHA-512: | 3DE939922DA77D227EB4BE1DE4660B791518A97A91F23E5FBD4E29C44FD546A3C77A681C220435822DE7A4E56CBA2D1CC24AFDD61C742DA0C293C1360CC18323 |
Malicious: | false |
Reputation: | unknown |
URL: | https://dkl18tmi4r0t8.cloudfront.net/flipbook/202405/assets/scripts/page-flip.browser.js?v=1571 |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 42 |
Entropy (8bit): | 4.136248672727249 |
Encrypted: | false |
SSDEEP: | |
MD5: | 905B1FBB26E082557FF0B3B3553CDA6C |
SHA1: | 8FE0790D6026998BDB2C9FFA3B915952E613E1B4 |
SHA-256: | F249B63CB2FCB66B47E86F906C98F8FD912E82DD035B4E53D7E72FC1960CFD16 |
SHA-512: | 284567E83A5C15761498249B27B4B700AA081A65B858F29458E5D0F3DEBDEA93DD5CFAD94EEFAEB43837E70CC288B2A34EA168D2771CB57C993E269C287097CE |
Malicious: | false |
Reputation: | unknown |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 8570 |
Entropy (8bit): | 5.329269132168096 |
Encrypted: | false |
SSDEEP: | |
MD5: | 282054BCAB2EF683C38A211DED6D3B01 |
SHA1: | 3F03EC244FBC6A3231BC4873E6D7038858D46733 |
SHA-256: | 5F79297541CE5F693A313873E0FC1055B1D42E08EECD5C6F57FED88A077E6B84 |
SHA-512: | A1F3907B526FB2D285688839ED438CA3215496035C772A5BA3F56AE310C2945439378CAE4CF5C0D97A28FD2A8145D49F5DC919DEF43344CCD487AFE2D160D295 |
Malicious: | false |
Reputation: | unknown |
URL: | https://dkl18tmi4r0t8.cloudfront.net/flipbook/202405/assets/scripts/Logs.js?v=1571 |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 4979 |
Entropy (8bit): | 7.465220608582786 |
Encrypted: | false |
SSDEEP: | |
MD5: | A9125E860E067F6B1AE834D6ABB9AD37 |
SHA1: | C0F3A30C71A6C0DB5630C6A5B84680F014949684 |
SHA-256: | 9150C6F33600F63065D2BF2AC960153A7E579F57F5998AC043AEA47A52354213 |
SHA-512: | 8C9DE5FDDCCE54E1F8A9ED2887217C2E6B3F37EF95720559F16E3C74242B9F373347EC730296665128D7B8F0D15152B63BF883FC836E76BC29AB4F0729B59288 |
Malicious: | false |
Reputation: | unknown |
URL: | https://dkl18tmi4r0t8.cloudfront.net/flipbook/202405/assets/audio/v1_1.mp3:2f77cec70bf248:0 |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 108997 |
Entropy (8bit): | 5.8415430438569675 |
Encrypted: | false |
SSDEEP: | |
MD5: | 3BC2A822D6869406A953136B2A27B4A7 |
SHA1: | 8F60D6C39E0E84D21A7B0AB9D3F4517295962E0A |
SHA-256: | 8E794CF5EE24B115AA781A295FB642CEE124B1BAFC1832E79E5D7749B8525F59 |
SHA-512: | 19DCADC1666DF1F6D8F482263634045DB9E81A85B757067BF93C2D8838CFAB17BA00EEDAED976066B020362D3191DB875FF0AA40248051A602C4EA8C89408F1B |
Malicious: | false |
Reputation: | unknown |
URL: | https://dkl18tmi4r0t8.cloudfront.net/flipbook/202405/assets/css/Book/xs.css?v=1571 |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 14148 |
Entropy (8bit): | 7.986251326799113 |
Encrypted: | false |
SSDEEP: | |
MD5: | 69B28056044BE6438CE7E5214C66BA82 |
SHA1: | 39EE8D4427A6062F942513B5B219A320068C7AE7 |
SHA-256: | B8E094AD64704C2E4836153E641E432B22159B03D5B240B6DD303461BE83F542 |
SHA-512: | 4ACC21A8C3DC8C5DDEC601426E49F00A43B7F3672B90C59F7D177FE49565E87DC18B65CD138763A7C36BDEDC1A55EFA76FFE5228286381FEF7286927282338D0 |
Malicious: | false |
Reputation: | unknown |
URL: | https://dkl18tmi4r0t8.cloudfront.net/flipbook/202405/assets/fonts/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ3q5d0.woff2 |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 13904 |
Entropy (8bit): | 7.986338789711381 |
Encrypted: | false |
SSDEEP: | |
MD5: | 5589842CC46587294240B2CC0C7A0F98 |
SHA1: | F1BB816B059ACAACA4E925375C0C440F48810C6E |
SHA-256: | FDFDF90531F4BCE8EE5FBB9DA2E6736F462011670E5AF0B0DB44D6152C049076 |
SHA-512: | 48583263D4FEBB36E54138E43A902C9BC2F6189C6793739DEBC6412C28D71C2AD2AC114C9C37903A8A06465C4A8C2D8DFA99F065163C2FA2483074069EEED451 |
Malicious: | false |
Reputation: | unknown |
URL: | https://dkl18tmi4r0t8.cloudfront.net/flipbook/202405/assets/fonts/lato/v23/S6u9w4BMUTPHh7USSwiPGQ3q5d0.woff2 |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 11323 |
Entropy (8bit): | 5.4664579632042445 |
Encrypted: | false |
SSDEEP: | |
MD5: | B48C8F95B76EE9FF2FF574D876433D65 |
SHA1: | EF854782F7763D8BC2F83CD6B7CE7C72D7758CC5 |
SHA-256: | B9D98B4575601C20A1EF9D2BACC674CECC8E20BCFB769CF96356F48082A55AA7 |
SHA-512: | AEBD78FD004E3465445940E8924C1A091A6D83A3B8FF08F53EE3154AE31FC77D159AC3D9206152AC527290223F887C1551FCBCE09DCAE8C7F8952552ECA7C0F2 |
Malicious: | false |
Reputation: | unknown |
URL: | https://dkl18tmi4r0t8.cloudfront.net/flipbook/202405/assets/scripts/Layout.js?v=1571 |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 7685 |
Entropy (8bit): | 5.25180703592029 |
Encrypted: | false |
SSDEEP: | |
MD5: | A3264D8D6D1E68035F12BA951C638911 |
SHA1: | 127459C4ABB81B276C7BF6CA183CE8FAD651B746 |
SHA-256: | 9E26BBA9ED4D9A1EE46F0FB6030922F53CF0019F5ADC857621ACED8066ED8848 |
SHA-512: | E4B63F0B1310225617D4007A8887E26AEBDD45B8861168BADB036E8974B4B10288D8BE37367A5324EB1298FAA9CC8F9EBC7429C75A94A309027D83A3144DD058 |
Malicious: | false |
Reputation: | unknown |
URL: | https://dkl18tmi4r0t8.cloudfront.net/flipbook/202405/assets/scripts/VideoEmbed.js?v=1571 |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 129516 |
Entropy (8bit): | 7.922298798541456 |
Encrypted: | false |
SSDEEP: | |
MD5: | EB7EDC1B2C6BE7E19D2FDC21E8EA93C9 |
SHA1: | 5874B109921A3E7128EA5521F4F8DEFD5A04AD8C |
SHA-256: | 1E6AFC0AF4D6302EA533B22E9B398B7053E50FF29C2D53E4CDEDCE8DD7C51110 |
SHA-512: | 979D016985C09923D72289F7BD900FB1F663E05DA3C5051BD86854B77FB3AF2E0F3A5B69BB29A9DBFB3B11B9192774AE2B90CBC50C6D2D746891DB8BF7345104 |
Malicious: | false |
Reputation: | unknown |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 5300 |
Entropy (8bit): | 4.985995458424912 |
Encrypted: | false |
SSDEEP: | |
MD5: | C5FCA2BBE3B1EC42C5E9C36270544FBF |
SHA1: | 6CB5B6B95C92F43570A31947D8EE03C752B57F2D |
SHA-256: | 8618DFF6E4BDC7A01423C78B0873E481C491A3DC0A584D7328C74E73A5227387 |
SHA-512: | 9126B6FBB580160D10B51AAC6BDC91EDDA5BD4844419CDF33C6C936CB078B3797CE8CA424DB8B0F5B7A6FAB939A250445108742825CAB50608B2ADE9903EAE25 |
Malicious: | false |
Reputation: | unknown |
URL: | https://dkl18tmi4r0t8.cloudfront.net/flipbook/202405/assets/css/Menu.css?v=1571 |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1014 |
Entropy (8bit): | 5.167245133129533 |
Encrypted: | false |
SSDEEP: | |
MD5: | 0B7141E2151947567E90AE3DEC678631 |
SHA1: | A4CF1DAE878F8FC8B85E6AB842F6A356658C3E3F |
SHA-256: | 7205A496FDD72B2940C04679A439914223CC71D51F35F690F51F470F634170B7 |
SHA-512: | B01575F7AFC48480476F919F827483CEC5506AAA30C395DE39BD5D536DD05EAF156EB93E8CF3DD1FC9F6871B0E474EDAD2CECD380D86B69F328C68BA6B739A59 |
Malicious: | false |
Reputation: | unknown |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 52 |
Entropy (8bit): | 4.508132025833399 |
Encrypted: | false |
SSDEEP: | |
MD5: | 454A7B1F35ECC1C867D26CD9B39211E7 |
SHA1: | 576BE8BC643756753508337439706AA87099079A |
SHA-256: | 8BD455EB0E2CA015B6C629101E63A781ADD5294B5A78B4671A1AB515B4B403EC |
SHA-512: | 37BD224EA4678E4228A19476CD3CF021D772B48284B31340B3F7A492A6298845479207AD65F9788CC379CFAF23F67BED84BCCFF7A83A9771A6B9F527617D40A5 |
Malicious: | false |
Reputation: | unknown |
URL: | https://content-autofill.googleapis.com/v1/pages/ChVDaHJvbWUvMTE3LjAuNTkzOC4xMzISJQlYmpwahuqVTRIFDTWGVBwSBQ2RYZVOEgUNK9T3XhIFDTRYd8c=?alt=proto |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 721 |
Entropy (8bit): | 4.801096583776827 |
Encrypted: | false |
SSDEEP: | |
MD5: | C367903210123C014EC5E671676601C7 |
SHA1: | 3059F9B6044E3ECE90432553AF10A5692D4DAC3C |
SHA-256: | D91E82B7DDA3E4B51CE72438B7B940DC7EA4D877D1E2C5BF1C39BA5E01A6CD7C |
SHA-512: | 44ECC49CC36F06E0F6AEFDA56107AE891736E73D41AC1006233F7FD02D439B5065C8F333F60BCB6970D7F4BE246A3C5630CF6A90AC145A6DAE870A625C40E62A |
Malicious: | false |
Reputation: | unknown |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 20832 |
Entropy (8bit): | 7.988947671939297 |
Encrypted: | false |
SSDEEP: | |
MD5: | 25BF1AF33961E063CC0B37ED9A7BA297 |
SHA1: | ACAFA86B960C1EE5AB1561A69D015D421B717622 |
SHA-256: | 484CC61D6737A69F3C93F09CAC9B3D33FF45DDE1368A3A863F188A8C443F3BBC |
SHA-512: | 5010D9CB12C75BC342E6C20F9B9C5F23979751D444C981C32A84BAE13290C0AB84F53470DEF91AA45BF7A7AD91EF8BA553607C721290596404D8326377858522 |
Malicious: | false |
Reputation: | unknown |
URL: | https://d1uiew9hysv4w7.cloudfront.net/518284/1161698/txt/1161698_1_400.webp |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 6305 |
Entropy (8bit): | 7.6903142488595275 |
Encrypted: | false |
SSDEEP: | |
MD5: | 962AD009685D2C4647DA605A33BD555D |
SHA1: | DD5DA9B020608114867CDD1105261B94AF876B15 |
SHA-256: | B5F6536DAF4230BC5D6EFA2FC33B05E23EA5CF34724286E1C03A507A7BE65C5E |
SHA-512: | 97DBCD62002D09FF8219ABDA2DAACAE410798A138C23DF1DD50A70A6C6935C34878B4CD7885EEE5FC980A70BA42F44DB654104C3C8053D7322C9C43648BFF83A |
Malicious: | false |
Reputation: | unknown |
URL: | https://dkl18tmi4r0t8.cloudfront.net/flipbook/202405/assets/audio/v1_4.ogg:2f77cec71d582d:0 |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 119529 |
Entropy (8bit): | 5.37701262676395 |
Encrypted: | false |
SSDEEP: | |
MD5: | 83F1E465C05197B1076046BF4B67A774 |
SHA1: | BA8E5E757A2C908BD7435F7395F91EE6B4C68337 |
SHA-256: | CFE176D0D326963F72A414152A04C97BEB789E5BEE9A56A39DB1853519EBBEFA |
SHA-512: | BAFE8DFEF95AEDEB6B5E0BE48471559A2D4127FD858CCDC5D740F1DB553F219C83C923422EBC6A97CC41FC6715CBCB61A1CDC0262565D365791C543C2A9E660E |
Malicious: | false |
Reputation: | unknown |
URL: | https://dkl18tmi4r0t8.cloudfront.net/flipbook/202405/assets/scripts/Book_curl.js?v=1571 |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 1512 |
Entropy (8bit): | 4.952873070703589 |
Encrypted: | false |
SSDEEP: | |
MD5: | C9CF33EA44218467EEAE16E8F6729CE2 |
SHA1: | 99EF8F64C844A2568A9028318A458D4A31818CD5 |
SHA-256: | 704F85E70915562AD7BED52F9C8636A6DADE7D7E4DEDBBB0D9B6F2C96DDE4E72 |
SHA-512: | 13B7674F07D94337EC9645ADC95D67A28A3A307F2B12CC8F1A35E94D5FEDF160FE78E2DAB973CA7F231DDD0CD1213783170999F4434F077213B71571102E1206 |
Malicious: | false |
Reputation: | unknown |
URL: | https://dkl18tmi4r0t8.cloudfront.net/flipbook/202405/assets/css/Ranger/xs.css?v=1571 |
Preview: |