IOC Report
https://clickers.smartresourceguide.com/?xtl=pic8u2clpu9f53e5q270ip7kcmoawnp35mgwstyth3b5eis5bcegkdxso2ei7be9cklkqxzsdocmfldbr3ksafvmnixne7sb5f2g6ce0w7dyr8yl43mcru2yhluqlrad8y95shey01t0gclif4cciumgxd&__ott=-ojzkuprwmac3&__stmp=se1yqx&eih=m0t49b2ncx4anwk71c9pajb07la39c9j

loading gif

Files

File Path
Type
Category
Malicious
Chrome Cache Entry: 64
ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 65
ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 66
ASCII text, with very long lines (5945)
downloaded
Chrome Cache Entry: 67
ASCII text
downloaded
Chrome Cache Entry: 68
ASCII text, with very long lines (65411)
downloaded
Chrome Cache Entry: 69
ASCII text, with very long lines (4143)
downloaded
Chrome Cache Entry: 70
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 2048x1151, components 3
dropped
Chrome Cache Entry: 71
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0
downloaded
Chrome Cache Entry: 72
PNG image data, 3150 x 803, 8-bit colormap, non-interlaced
downloaded
Chrome Cache Entry: 73
Web Open Font Format (Version 2), TrueType, length 7816, version 1.0
downloaded
Chrome Cache Entry: 74
ASCII text, with very long lines (52695)
downloaded
Chrome Cache Entry: 75
ASCII text, with very long lines (19942)
downloaded
Chrome Cache Entry: 76
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 2048x1151, components 3
downloaded
Chrome Cache Entry: 77
PNG image data, 55 x 55, 8-bit colormap, non-interlaced
dropped
Chrome Cache Entry: 78
Web Open Font Format (Version 2), TrueType, length 7884, version 1.0
downloaded
Chrome Cache Entry: 79
ASCII text, with very long lines (1822)
downloaded
Chrome Cache Entry: 80
ASCII text, with very long lines (16554)
downloaded
Chrome Cache Entry: 81
PNG image data, 3150 x 803, 8-bit colormap, non-interlaced
dropped
Chrome Cache Entry: 82
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0
downloaded
Chrome Cache Entry: 83
ASCII text, with very long lines (7510), with no line terminators
downloaded
Chrome Cache Entry: 84
PNG image data, 55 x 55, 8-bit colormap, non-interlaced
downloaded
There are 12 hidden files, click here to show them.

Processes

Path
Cmdline
Malicious
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2740 --field-trial-handle=2708,i,3800012782922441957,2484468132831615815,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" "https://clickers.smartresourceguide.com/?xtl=pic8u2clpu9f53e5q270ip7kcmoawnp35mgwstyth3b5eis5bcegkdxso2ei7be9cklkqxzsdocmfldbr3ksafvmnixne7sb5f2g6ce0w7dyr8yl43mcru2yhluqlrad8y95shey01t0gclif4cciumgxd&__ott=-ojzkuprwmac3&__stmp=se1yqx&eih=m0t49b2ncx4anwk71c9pajb07la39c9j"

URLs

Name
IP
Malicious
https://clickers.smartresourceguide.com/?xtl=pic8u2clpu9f53e5q270ip7kcmoawnp35mgwstyth3b5eis5bcegkdxso2ei7be9cklkqxzsdocmfldbr3ksafvmnixne7sb5f2g6ce0w7dyr8yl43mcru2yhluqlrad8y95shey01t0gclif4cciumgxd&__ott=-ojzkuprwmac3&__stmp=se1yqx&eih=m0t49b2ncx4anwk71c9pajb07la39c9j
https://offer.housebuyernetwork.com/s/bQdteLREhQBov7S6wgFBMOCfpywS4g2QwMLq4DAA?source=1051&sub_id_1=10000&sub_id_2=57a5e1a860dd499298d62e4351284653&sub_id_3=&transaction_id=563730799&p=45.0
https://npms.io/search?q=ponyfill.
unknown
https://stats.g.doubleclick.net/g/collect
unknown
https://browser.sentry-cdn.com/7.113.0/bundle.tracing.replay.min.js
151.101.194.217
https://static.leadshook.io/upload/pl/house-buyer-network-logo-75-op-pad-1709820635520.png
108.156.60.79
https://api.trustedform.com/certs/5235a708b9f558a39975d7026faf9f01b8b396c2/fingerprints
44.205.67.127
https://api.trustedform.com/certs/5235a708b9f558a39975d7026faf9f01b8b396c2/events
44.205.67.127
https://lodash.com/
unknown
https://clickers.smartresourceguide.com/?xtl=pic8u2clpu9f53e5q270ip7kcmoawnp35mgwstyth3b5eis5bcegkdxso2ei7be9cklkqxzsdocmfldbr3ksafvmnixne7sb5f2g6ce0w7dyr8yl43mcru2yhluqlrad8y95shey01t0gclif4cciumgxd&__ott=-ojzkuprwmac3&__stmp=se1yqx&eih=m0t49b2ncx4anwk71c9pajb07la39c9j
44.195.255.76
https://ads.nextdoor.com/public/pixel/ndp.js
52.35.252.245
https://googleads.g.doubleclick.net
unknown
https://api.trustedform.com/certs/5235a708b9f558a39975d7026faf9f01b8b396c2/snapshot
44.205.67.127
https://adservice.google.com/pagead/regclk
unknown
https://smartresourceguide.com/EasyKnock
192.124.249.138
https://offer.housebuyernetwork.com/s/bQdteLREhQBov7S6wgFBMOCfpywS4g2QwMLq4DAA
3.213.181.94
https://flask.nextdoor.com/pixel?pid=f5c0ed47-4065-463c-9ffd-c892cbcbb4b3&vrs=8.3&ev=PAGE_VIEW&pl=https%3A%2F%2Foffer.housebuyernetwork.com%2Fs%2FbQdteLREhQBov7S6wgFBMOCfpywS4g2QwMLq4DAA%3Fsource%3D1051%26sub_id_1%3D10000%26sub_id_2%3D57a5e1a860dd499298d62e4351284653%26sub_id_3%3D%26transaction_id%3D563730799%26p%3D45.0&ndclid=&ndclid_src=0&rf=&sem=&tm=Manual&iid=de98b290-485d-47ef-be34-4b92210c900a&pageid=eccf3837-426c-43ef-a67f-d462a0c59bb6&sessionid=6df83656-8e9e-4007-9c54-4a550320ab69&cd=%7B%7D
54.200.211.8
https://cct.google/taggy/agent.js
unknown
https://api.trustedform.com/trustedform.js?field=xxTrustedFormCertUrl&ping_field=xxTrustedFormPingUrl&l=17166643663970.8543335283028002
44.205.67.127
https://static.ads-twitter.com/uwt.js
unknown
https://ferradurai.com/?E=1ioH%2beP48dRuLT6IFWr68S9GOm3iJU0T&s1=
3.80.229.104
https://quiz-live.s3.amazonaws.com/upload/pl/house-buyers-1707763198483.png
3.5.27.156
http://underscorejs.org/LICENSE
unknown
https://www.google.com
unknown
https://www.youtube.com/iframe_api
unknown
https://www.d0qwtrk.com/28KL61/5NWWWN/?sub1=10000&sub2=563730799&sub3=
35.244.245.136
https://td.doubleclick.net
unknown
https://sonziuq.com/?E=1ioH%2beP48dRuLT6IFWr68S9GOm3iJU0T&s1=&ch-redir=1&ckmxid=cp93gahq0001ui7os1s0&ckmguid=9fc97d00-6f34-4575-8508-5b5f753af5f3
34.209.92.5
https://cdn.trustedform.com/trustedform-1.9.15.js
3.162.38.8
https://www.merchant-center-analytics.goog
unknown
https://lodash.com/license
unknown
https://static.leadshook.io/upload/pl/house-buyer-network-hero-1709820479367.jpg
108.156.60.79
https://api.trustedform.com/certs
44.205.67.127
https://github.com/getsentry/sentry-javascript
unknown
https://google.com
unknown
https://openjsf.org/
unknown
https://cdn.trustedform.com/bootstrap.js?field=xxTrustedFormCertUrl&ping_field=xxTrustedFormPingUrl&l=17166643663970.8543335283028002
3.162.38.8
https://ferradurai.com/?E=1ioH%2beP48dRuLT6IFWr68S9GOm3iJU0T&s1=&ch-redir=1&ckmxid=cp93gahq0001ui7os1s0
3.80.229.104
https://sentry.leadshook.io/api/6/envelope/?sentry_key=a16b093dbf1efc0121e044c4c8c7afeb&sentry_version=7&sentry_client=sentry.javascript.browser%2F7.113.0
3.232.98.97
There are 28 hidden URLs, click here to show them.

Domains

Name
IP
Malicious
447b0cd8.ongageroute.net
44.195.255.76
flask.us.nextdoor.com
54.200.211.8
browser.sentry-cdn.com
151.101.194.217
team-tools-1121285548.us-east-1.elb.amazonaws.com
3.232.98.97
smartresourceguide.com
192.124.249.138
www.d0qwtrk.com
35.244.245.136
fp2e7a.wpc.phicdn.net
192.229.221.95
static.leadshook.io
108.156.60.79
s3-w.us-east-1.amazonaws.com
3.5.27.156
network.leadshook.io
3.213.181.94
ads.us.nextdoor.com
52.35.252.245
www.google.com
142.250.185.164
api.trustedform.com
44.205.67.127
ferradurai.com
3.80.229.104
cdn.trustedform.com
3.162.38.8
sonziuq.com
34.209.92.5
flask.nextdoor.com
unknown
ads.nextdoor.com
unknown
cdn.jsdelivr.net
unknown
offer.housebuyernetwork.com
unknown
sentry.leadshook.io
unknown
quiz-live.s3.amazonaws.com
unknown
analytics.tiktok.com
unknown
clickers.smartresourceguide.com
unknown
There are 14 hidden domains, click here to show them.

IPs

IP
Domain
Country
Malicious
44.195.255.76
447b0cd8.ongageroute.net
United States
3.5.27.156
s3-w.us-east-1.amazonaws.com
United States
52.217.203.121
unknown
United States
192.124.249.138
smartresourceguide.com
United States
192.168.2.4
unknown
unknown
54.200.211.8
flask.us.nextdoor.com
United States
142.250.185.164
www.google.com
United States
52.35.252.245
ads.us.nextdoor.com
United States
151.101.194.217
browser.sentry-cdn.com
United States
18.233.135.95
unknown
United States
3.232.98.97
team-tools-1121285548.us-east-1.elb.amazonaws.com
United States
3.162.38.8
cdn.trustedform.com
United States
18.244.18.79
unknown
United States
3.213.181.94
network.leadshook.io
United States
3.218.204.205
unknown
United States
35.244.245.136
www.d0qwtrk.com
United States
34.209.92.5
sonziuq.com
United States
239.255.255.250
unknown
Reserved
108.156.60.79
static.leadshook.io
United States
44.205.67.127
api.trustedform.com
United States
3.80.229.104
ferradurai.com
United States
There are 11 hidden IPs, click here to show them.

DOM / HTML

URL
Malicious
https://offer.housebuyernetwork.com/s/bQdteLREhQBov7S6wgFBMOCfpywS4g2QwMLq4DAA?source=1051&sub_id_1=10000&sub_id_2=57a5e1a860dd499298d62e4351284653&sub_id_3=&transaction_id=563730799&p=45.0
https://offer.housebuyernetwork.com/s/bQdteLREhQBov7S6wgFBMOCfpywS4g2QwMLq4DAA?source=1051&sub_id_1=10000&sub_id_2=57a5e1a860dd499298d62e4351284653&sub_id_3=&transaction_id=563730799&p=45.0
https://offer.housebuyernetwork.com/s/bQdteLREhQBov7S6wgFBMOCfpywS4g2QwMLq4DAA?source=1051&sub_id_1=10000&sub_id_2=57a5e1a860dd499298d62e4351284653&sub_id_3=&transaction_id=563730799&p=45.0