IOC Report
http://y6ss1.shop/

loading gif

Files

File Path
Type
Category
Malicious
Chrome Cache Entry: 100
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 101
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x564, components 3
dropped
Chrome Cache Entry: 102
Unicode text, UTF-8 text, with very long lines (41067)
downloaded
Chrome Cache Entry: 103
data
downloaded
Chrome Cache Entry: 104
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 105
data
downloaded
Chrome Cache Entry: 106
gzip compressed data, from Unix, original size modulo 2^32 4177
downloaded
Chrome Cache Entry: 107
Web Open Font Format (Version 2), TrueType, length 34852, version 1.0
downloaded
Chrome Cache Entry: 108
PNG image data, 114 x 56, 4-bit colormap, non-interlaced
dropped
Chrome Cache Entry: 109
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 110
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel
dropped
Chrome Cache Entry: 111
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 112
JSON data
dropped
Chrome Cache Entry: 113
gzip compressed data, from Unix, original size modulo 2^32 45218
downloaded
Chrome Cache Entry: 114
gzip compressed data, from Unix, original size modulo 2^32 60346
downloaded
Chrome Cache Entry: 115
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 116
gzip compressed data, from Unix, original size modulo 2^32 1150
downloaded
Chrome Cache Entry: 117
PNG image data, 162 x 56, 8-bit colormap, non-interlaced
downloaded
Chrome Cache Entry: 118
gzip compressed data, from Unix, original size modulo 2^32 9932
downloaded
Chrome Cache Entry: 119
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x564, components 3
downloaded
Chrome Cache Entry: 120
gzip compressed data, from Unix, original size modulo 2^32 45668
downloaded
Chrome Cache Entry: 121
gzip compressed data, from Unix, original size modulo 2^32 2364
downloaded
Chrome Cache Entry: 122
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 123
ASCII text, with no line terminators
downloaded
Chrome Cache Entry: 124
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 125
data
downloaded
Chrome Cache Entry: 126
ASCII text, with very long lines (65451)
downloaded
Chrome Cache Entry: 127
PNG image data, 5652 x 15, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 128
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 738x808, components 3
downloaded
Chrome Cache Entry: 129
gzip compressed data, from Unix, truncated
downloaded
Chrome Cache Entry: 130
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 131
gzip compressed data, from Unix, original size modulo 2^32 19555
downloaded
Chrome Cache Entry: 132
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x564, components 3
dropped
Chrome Cache Entry: 133
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1343x1900, components 3
dropped
Chrome Cache Entry: 134
Web Open Font Format (Version 2), TrueType, length 26736, version 1.0
downloaded
Chrome Cache Entry: 135
gzip compressed data, from Unix, original size modulo 2^32 3147
downloaded
Chrome Cache Entry: 136
gzip compressed data, from Unix, original size modulo 2^32 257
downloaded
Chrome Cache Entry: 137
gzip compressed data, from Unix, original size modulo 2^32 29521
downloaded
Chrome Cache Entry: 138
PNG image data, 5652 x 15, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 139
ASCII text, with no line terminators
downloaded
Chrome Cache Entry: 140
data
downloaded
Chrome Cache Entry: 141
gzip compressed data, from Unix, original size modulo 2^32 1900
downloaded
Chrome Cache Entry: 142
ASCII text, with very long lines (1572)
downloaded
Chrome Cache Entry: 143
ASCII text, with very long lines (65447)
downloaded
Chrome Cache Entry: 144
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1343x1900, components 3
downloaded
Chrome Cache Entry: 145
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 146
gzip compressed data, from Unix, original size modulo 2^32 3226
downloaded
Chrome Cache Entry: 147
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x564, components 3
dropped
Chrome Cache Entry: 148
data
downloaded
Chrome Cache Entry: 149
Web Open Font Format (Version 2), TrueType, length 18200, version 1.0
downloaded
Chrome Cache Entry: 150
ISO Media, MP4 v2 [ISO 14496-14]
downloaded
Chrome Cache Entry: 151
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 152
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 153
ASCII text
downloaded
Chrome Cache Entry: 154
gzip compressed data, from Unix, original size modulo 2^32 28217
downloaded
Chrome Cache Entry: 155
ASCII text, with very long lines (1435)
downloaded
Chrome Cache Entry: 156
gzip compressed data, from Unix, original size modulo 2^32 7636
downloaded
Chrome Cache Entry: 157
gzip compressed data, from Unix, original size modulo 2^32 10883
downloaded
Chrome Cache Entry: 158
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 159
gzip compressed data, from Unix, original size modulo 2^32 4460
downloaded
Chrome Cache Entry: 160
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 161
gzip compressed data, from Unix, original size modulo 2^32 992
downloaded
Chrome Cache Entry: 162
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 163
Web Open Font Format (Version 2), TrueType, length 48236, version 1.0
downloaded
Chrome Cache Entry: 164
gzip compressed data, from Unix, original size modulo 2^32 889339
downloaded
Chrome Cache Entry: 165
Web Open Font Format (Version 2), TrueType, length 20860, version 1.0
downloaded
Chrome Cache Entry: 166
Web Open Font Format (Version 2), TrueType, length 29752, version 1.0
downloaded
Chrome Cache Entry: 167
PNG image data, 114 x 56, 4-bit colormap, non-interlaced
downloaded
Chrome Cache Entry: 168
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x564, components 3
downloaded
Chrome Cache Entry: 169
ASCII text, with very long lines (59812)
downloaded
Chrome Cache Entry: 170
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x564, components 3
downloaded
Chrome Cache Entry: 171
ASCII text, with no line terminators
dropped
Chrome Cache Entry: 172
gzip compressed data, from Unix, original size modulo 2^32 10056
downloaded
Chrome Cache Entry: 173
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 738x808, components 3
dropped
Chrome Cache Entry: 174
PNG image data, 162 x 56, 8-bit colormap, non-interlaced
dropped
Chrome Cache Entry: 175
data
downloaded
Chrome Cache Entry: 95
JSON data
downloaded
Chrome Cache Entry: 96
gzip compressed data, from Unix, original size modulo 2^32 8395
downloaded
Chrome Cache Entry: 97
gzip compressed data, from Unix, original size modulo 2^32 16735
downloaded
Chrome Cache Entry: 98
gzip compressed data, from Unix, original size modulo 2^32 7709
downloaded
Chrome Cache Entry: 99
SVG Scalable Vector Graphics image
dropped
There are 72 hidden files, click here to show them.

Processes

Path
Cmdline
Malicious
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2260 --field-trial-handle=2192,i,2408490518642921424,9998469654472478800,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" "http://y6ss1.shop/"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=5664 --field-trial-handle=2192,i,2408490518642921424,9998469654472478800,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8

URLs

Name
IP
Malicious
http://y6ss1.shop/
malicious
http://y6ss1.shop/
malicious
https://ipinfo.io/missingauth
unknown
http://y6ss1.shop/l/gaz/img/favicon.ico
188.114.96.3
https://y6ss1.shop/l/gaz/img/flags.png
188.114.97.3
https://code.jquery.com/jquery-3.6.0.min.js
151.101.130.137
http://y6ss1.shop/l/gaz/videos/gaz-platform-preview.mp4
188.114.96.3
https://y6ss1.shop/l/gaz/img/rus.png
188.114.97.3
https://y6ss1.shop/l/gaz/img/sprite1.svg
188.114.97.3
http://y6ss1.shop/l/gaz/js/intlTelInput.min.js
188.114.96.3
http://y6ss1.shop/l/gaz/img/sprite11.svg
188.114.96.3
http://y6ss1.shop/l/gaz/img/image%2051.jpg
188.114.96.3
https://y6ss1.shop/l/gaz/img/img3.svg
188.114.97.3
http://y6ss1.shop/l/gaz/img/sprite2.svg
188.114.96.3
http://y6ss1.shop/uniq
188.114.96.3
https://y6ss1.shop/l/gaz/img/sprite9.svg
188.114.97.3
http://y6ss1.shop/l/gaz/img/image%2052.jpg
188.114.96.3
https://cdnjs.cloudflare.com/ajax/libs/jquery/3.5.1/jquery.min.js
104.17.24.14
http://y6ss1.shop/l/gaz/img/photo.jpg
188.114.96.3
http://y6ss1.shop/l/gaz/img/sprite12.svg
188.114.96.3
https://y6ss1.shop/l/gaz/img/img2.svg
188.114.97.3
http://y6ss1.shop/l/gaz/img/sprite1.svg
188.114.96.3
http://y6ss1.shop/favicon.ico
188.114.96.3
https://y6ss1.shop/l/gaz/img/sprite8.svg
188.114.97.3
http://y6ss1.shop/l/gaz/js/landing_url2.js
188.114.96.3
https://github.com/twbs/bootstrap/graphs/contributors)
unknown
http://y6ss1.shop/l/gaz/img/sprite9.svg
188.114.96.3
https://y6ss1.shop/l/gaz/img/license.jpg
188.114.97.3
http://y6ss1.shop/l/gaz/img/img.svg
188.114.96.3
https://y6ss1.shop/l/gaz/img/sprite7.svg
188.114.97.3
http://y6ss1.shop/l/gaz/img/rus.png
188.114.96.3
https://ipinfo.io/json
34.117.186.192
https://y6ss1.shop/uniq
188.114.97.3
http://y6ss1.shop/l/gaz/img/sprite8.svg
188.114.96.3
https://y6ss1.shop/l/gaz/img/sprite6.svg
188.114.97.3
http://y6ss1.shop/l/gaz/img/sprite7.svg
188.114.96.3
http://www.apache.org/licenses/LICENSE-2.0
unknown
https://cdnjs.cloudflare.com/ajax/libs/intl-tel-input/17.0.13/css/intlTelInput.css
104.17.24.14
https://github.com/twbs/bootstrap/blob/main/LICENSE)
unknown
https://y6ss1.shop/l/gaz/img/sprite10.svg
188.114.97.3
https://y6ss1.shop/l/gaz/img/sprite5.svg
188.114.97.3
https://y6ss1.shop/l/gaz/img/image%2051.jpg
188.114.97.3
https://y6ss1.shop/l/gaz/img/sprite4.svg
188.114.97.3
http://y6ss1.shop/l/gaz/img/img2.svg
188.114.96.3
http://y6ss1.shop/l/gaz/img/license.jpg
http://y6ss1.shop/l/gaz/img/sprite6.svg
188.114.96.3
https://y6ss1.shop/l/gaz/img/sprite12.svg
188.114.97.3
https://y6ss1.shop/favicon.ico
188.114.97.3
https://getbootstrap.com/)
unknown
https://y6ss1.shop/l/gaz/img/sprite11.svg
188.114.97.3
http://y6ss1.shop/l/gaz/img/sprite5.svg
188.114.96.3
https://cdnjs.cloudflare.com/ajax/libs/bootstrap/5.0.1/js/bootstrap.min.js
104.17.24.14
http://y6ss1.shop/l/gaz/img/img3.svg
188.114.96.3
https://y6ss1.shop/l/gaz/img/image%2052.jpg
188.114.97.3
https://y6ss1.shop/l/gaz/img/image%2053.jpg
188.114.97.3
http://y6ss1.shop/l/gaz/css/bundle.e15e13582eb553ce5360.css
188.114.96.3
https://y6ss1.shop/l/gaz/img/img.svg
188.114.97.3
http://y6ss1.shop/l/gaz/css/errors.css
188.114.96.3
https://cdnjs.cloudflare.com/ajax/libs/ion-rangeslider/2.3.1/js/ion.rangeSlider.min.js
104.17.24.14
http://y6ss1.shop/l/gaz/img/sprite4.svg
188.114.96.3
https://y6ss1.shop/l/gaz/img/favicon.ico
188.114.97.3
https://y6ss1.shop/l/gaz/img/logo.png
188.114.97.3
http://y6ss1.shop/l/gaz/img/image%2053.jpg
188.114.96.3
https://y6ss1.shop/l/gaz/img/sprite3.svg
188.114.97.3
https://cdnjs.cloudflare.com/ajax/libs/intl-tel-input/17.0.15/js/utils.js
104.17.24.14
http://y6ss1.shop/l/gaz/js/errors.js?t=2
188.114.96.3
http://y6ss1.shop/#about
http://y6ss1.shop/l/gaz/img/sprite10.svg
188.114.96.3
http://y6ss1.shop/l/gaz/js/index.js
188.114.96.3
https://y6ss1.shop/l/gaz/img/photo.jpg
188.114.97.3
http://y6ss1.shop/l/gaz/img/flags.png
188.114.96.3
http://y6ss1.shop/l/gaz/img/sprite3.svg
188.114.96.3
http://y6ss1.shop/l/gaz/img/logo.png
188.114.96.3
https://y6ss1.shop/l/gaz/img/sprite2.svg
188.114.97.3
There are 63 hidden URLs, click here to show them.

Domains

Name
IP
Malicious
y6ss1.shop
188.114.96.3
 malicious
code.jquery.com
151.101.130.137
cdnjs.cloudflare.com
104.17.24.14
ipinfo.io
34.117.186.192
www.google.com
216.58.206.68
fp2e7a.wpc.phicdn.net
192.229.221.95

IPs

IP
Domain
Country
Malicious
188.114.96.3
y6ss1.shop
European Union
malicious
104.17.24.14
cdnjs.cloudflare.com
United States
34.117.186.192
ipinfo.io
United States
192.168.2.4
unknown
unknown
192.168.2.6
unknown
unknown
216.58.206.68
www.google.com
United States
151.101.130.137
code.jquery.com
United States
239.255.255.250
unknown
Reserved
188.114.97.3
unknown
European Union
127.0.0.1
unknown
unknown

DOM / HTML

URL
Malicious
http://y6ss1.shop/
 malicious
http://y6ss1.shop/
http://y6ss1.shop/#about
http://y6ss1.shop/l/gaz/img/license.jpg