IOC Report
EFLHGAMMLCOFELHAGIOEGONGHDMHABMK_1_5_7_0.crx

loading gif

Files

File Path
Type
Category
Malicious
EFLHGAMMLCOFELHAGIOEGONGHDMHABMK_1_5_7_0.crx
Google Chrome extension, version 3
initial sample
C:\chrome\154\154.js
ASCII text, with very long lines (4577)
dropped
C:\chrome\273\273.js
ASCII text, with very long lines (1987)
dropped
C:\chrome\532\532.js
ASCII text
dropped
C:\chrome\786\786.js
ASCII text, with very long lines (311)
dropped
C:\chrome\986\986.js
HTML document, ASCII text, with very long lines (10802)
dropped
C:\chrome\_locales\en\messages.json
JSON data
dropped
C:\chrome\_metadata\verified_contents.json
JSON data
dropped
C:\chrome\assets\css\style.css
ASCII text, with no line terminators
dropped
C:\chrome\assets\icons\icon128.png
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
dropped
C:\chrome\assets\icons\icon16.png
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
dropped
C:\chrome\assets\icons\icon32.png
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
dropped
C:\chrome\assets\icons\icon48.png
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced
dropped
C:\chrome\assets\img\close.svg
SVG Scalable Vector Graphics image
dropped
C:\chrome\assets\img\graph.svg
SVG Scalable Vector Graphics image
dropped
C:\chrome\assets\img\help.svg
SVG Scalable Vector Graphics image
dropped
C:\chrome\assets\img\home.svg
SVG Scalable Vector Graphics image
dropped
C:\chrome\assets\img\logo.svg
SVG Scalable Vector Graphics image
dropped
C:\chrome\assets\img\regie_loader.gif
GIF image data, version 89a, 250 x 250
dropped
C:\chrome\assets\img\settings.svg
SVG Scalable Vector Graphics image
dropped
C:\chrome\background\background.js
ASCII text, with very long lines (65468)
dropped
C:\chrome\background\background.js.LICENSE.txt
ASCII text
dropped
C:\chrome\background\background_wrapper.js
ASCII text, with no line terminators
dropped
C:\chrome\content\content.js
ASCII text, with very long lines (65471)
dropped
C:\chrome\content\content.js.LICENSE.txt
ASCII text
dropped
C:\chrome\manifest.json
JSON data
dropped
C:\chrome\options\index.html
HTML document, ASCII text
dropped
C:\chrome\options\options.js
Unicode text, UTF-8 text, with very long lines (65469)
dropped
C:\chrome\options\options.js.LICENSE.txt
ASCII text
dropped
C:\chrome\popup\index.html
HTML document, ASCII text
dropped
C:\chrome\popup\popup.js
ASCII text, with very long lines (65473)
dropped
C:\chrome\popup\popup.js.LICENSE.txt
ASCII text
dropped
Chrome Cache Entry: 157
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 158
ASCII text, with no line terminators
downloaded
Chrome Cache Entry: 159
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 160
ASCII text, with CRLF, LF line terminators
downloaded
Chrome Cache Entry: 161
JSON data
downloaded
Chrome Cache Entry: 162
ASCII text
downloaded
Chrome Cache Entry: 163
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 164
ASCII text, with very long lines (354), with CRLF line terminators
downloaded
Chrome Cache Entry: 165
ASCII text, with very long lines (2306), with no line terminators
downloaded
Chrome Cache Entry: 166
Web Open Font Format (Version 2), TrueType, length 38656, version 1.0
downloaded
Chrome Cache Entry: 167
HTML document, ASCII text, with no line terminators
downloaded
Chrome Cache Entry: 168
ASCII text, with very long lines (606)
downloaded
Chrome Cache Entry: 169
ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 170
ASCII text, with very long lines (2294)
downloaded
Chrome Cache Entry: 171
ISO Media, AVIF Image
downloaded
Chrome Cache Entry: 172
Unicode text, UTF-8 text, with very long lines (62300), with CRLF line terminators
downloaded
Chrome Cache Entry: 173
ASCII text, with very long lines (521)
downloaded
Chrome Cache Entry: 174
PNG image data, 128 x 132, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 175
ASCII text, with very long lines (781)
downloaded
Chrome Cache Entry: 176
ASCII text, with very long lines (9929), with no line terminators
downloaded
Chrome Cache Entry: 177
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 178
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 179
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 180
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 181
ASCII text, with no line terminators
downloaded
Chrome Cache Entry: 182
HTML document, ASCII text, with very long lines (311), with CRLF line terminators
downloaded
Chrome Cache Entry: 183
ASCII text, with very long lines (65464)
downloaded
Chrome Cache Entry: 184
ASCII text, with very long lines (1143)
downloaded
Chrome Cache Entry: 185
ASCII text, with no line terminators
downloaded
Chrome Cache Entry: 186
ASCII text, with very long lines (2717)
downloaded
Chrome Cache Entry: 187
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 188
ASCII text
downloaded
Chrome Cache Entry: 189
ASCII text, with very long lines (24751), with no line terminators
downloaded
Chrome Cache Entry: 190
Web Open Font Format (Version 2), TrueType, length 39312, version 1.0
downloaded
Chrome Cache Entry: 191
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 192
ASCII text, with very long lines (535), with no line terminators
downloaded
Chrome Cache Entry: 193
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 194
JSON data
downloaded
Chrome Cache Entry: 195
ASCII text, with very long lines (65495)
downloaded
Chrome Cache Entry: 196
ASCII text, with very long lines (699), with no line terminators
downloaded
Chrome Cache Entry: 197
Unicode text, UTF-8 text, with very long lines (47653)
downloaded
Chrome Cache Entry: 198
ASCII text, with very long lines (1839)
downloaded
Chrome Cache Entry: 199
Unicode text, UTF-8 text, with very long lines (49982), with NEL line terminators
downloaded
Chrome Cache Entry: 200
ASCII text, with very long lines (11457)
downloaded
Chrome Cache Entry: 201
ASCII text, with very long lines (65531)
downloaded
Chrome Cache Entry: 202
JSON data
downloaded
Chrome Cache Entry: 203
JSON data
downloaded
Chrome Cache Entry: 204
ASCII text, with very long lines (3572), with no line terminators
downloaded
Chrome Cache Entry: 205
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 206
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 207
ASCII text, with very long lines (65472)
downloaded
Chrome Cache Entry: 208
ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 209
ISO Media, AVIF Image
downloaded
Chrome Cache Entry: 210
ASCII text, with very long lines (6228), with no line terminators
downloaded
Chrome Cache Entry: 211
ASCII text, with very long lines (1414), with no line terminators
downloaded
Chrome Cache Entry: 212
JSON data
downloaded
Chrome Cache Entry: 213
ASCII text, with very long lines (3537)
downloaded
Chrome Cache Entry: 214
ASCII text, with very long lines (18229), with no line terminators
downloaded
Chrome Cache Entry: 215
JSON data
downloaded
Chrome Cache Entry: 216
gzip compressed data, from Unix, original size modulo 2^32 164815
downloaded
Chrome Cache Entry: 217
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 218
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 219
ASCII text, with very long lines (906), with no line terminators
downloaded
Chrome Cache Entry: 220
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 221
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 222
ASCII text, with very long lines (18963), with no line terminators
downloaded
Chrome Cache Entry: 223
Web Open Font Format (Version 2), TrueType, length 36928, version 1.0
downloaded
Chrome Cache Entry: 224
JSON data
downloaded
Chrome Cache Entry: 225
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 226
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 227
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 228
JSON data
downloaded
Chrome Cache Entry: 229
Unicode text, UTF-8 text, with very long lines (65458)
downloaded
Chrome Cache Entry: 230
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 231
ASCII text, with very long lines (65451)
downloaded
Chrome Cache Entry: 232
JSON data
downloaded
Chrome Cache Entry: 233
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 234
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 235
ASCII text, with very long lines (9398)
downloaded
Chrome Cache Entry: 236
HTML document, Unicode text, UTF-8 text, with very long lines (14847)
downloaded
Chrome Cache Entry: 237
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 238
ASCII text, with very long lines (2124)
downloaded
Chrome Cache Entry: 239
ASCII text, with very long lines (65457)
downloaded
Chrome Cache Entry: 240
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 241
Unicode text, UTF-8 text, with very long lines (65535), with no line terminators
downloaded
Chrome Cache Entry: 242
ASCII text, with very long lines (40772), with no line terminators
downloaded
Chrome Cache Entry: 243
ASCII text, with very long lines (32014)
downloaded
Chrome Cache Entry: 244
gzip compressed data, from Unix, original size modulo 2^32 763508
downloaded
Chrome Cache Entry: 245
Unicode text, UTF-8 text, with very long lines (65464)
downloaded
Chrome Cache Entry: 246
HTML document, Unicode text, UTF-8 text, with very long lines (56508)
downloaded
Chrome Cache Entry: 247
ASCII text, with very long lines (7647)
downloaded
Chrome Cache Entry: 248
Unicode text, UTF-8 text, with very long lines (65447)
downloaded
Chrome Cache Entry: 249
ASCII text, with very long lines (855)
downloaded
There are 115 hidden files, click here to show them.

Processes

Path
Cmdline
Malicious
C:\Windows\System32\7za.exe
7za.exe x -oC:\chrome "C:\Users\user\Desktop\EFLHGAMMLCOFELHAGIOEGONGHDMHABMK_1_5_7_0.crx"
C:\Windows\System32\conhost.exe
C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --load-extension=C:\chrome
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2144 --field-trial-handle=2020,i,15598263287833827349,18053311792611108520,262144 /prefetch:8

URLs

Name
IP
Malicious
https://cdn-cookieyes.com/client_data/ad7f10b5f55ce13492462bf7/banner.js
104.22.59.91
https://tracking.crazyegg.com/clock?t=1716771396902&tk=9a0026c5e1bbfc5dd98a1e8834d029ad&s=439622&p=%2Fguide&u=1225022&v=4ec8479886ddfb1ebcf52ccefa93bb8c0291e519&f=regie.ai%2Fguide&ul=https%3A%2F%2Fwww.regie.ai%2Fguide
54.171.224.241
https://stats.g.doubleclick.net/g/collect
unknown
https://embed.tawk.to/_s/v4/app/6625f366c87/js/twk-arr-find-polyfill.js
unknown
https://www.regie.ai/teams
unknown
http://www.broofa.com
unknown
https://developers.google.com/recaptcha/docs/faq#localhost_support
unknown
https://cdnjs.cloudflare.com/ajax/libs/typed.js/2.0.10/typed.min.js
104.17.25.14
https://assets-global.website-files.com/659c1e1d52015e0951d980e6/65a2b8a1cf52ccbdc4e72313_Demandbase.svg
18.239.69.90
https://analytics.google.com/g/collect?v=2&tid=G-VMFY9K9RPE&gtm=45je45m0v875973908z8847818946za200zb847818946&_p=1716771380484&_gaz=1&gcs=G111&gcd=13n3n3n3n5&npa=0&dma=0&cid=1151382789.1716771394&ul=en-us&sr=1280x1024&ir=1&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&are=1&pae=1&frm=0&pscdl=noapi&_eu=EA&_s=1&sid=1716771394&sct=1&seg=0&dl=https%3A%2F%2Fwww.regie.ai%2Fguide&dt=Extension%20Guide&en=page_view&_fv=1&_nsi=1&_ss=1&ep.debug_mode=true&tfd=18595
216.239.32.181
https://github.com/zloirock/core-js
unknown
https://support.google.com/recaptcha#6262736
unknown
https://www.clarity.ms/tag/8l7e5v9c7i
13.107.246.45
https://embed.tawk.to/_s/v4/app/6625f366c87/js/twk-chunk-9294da6c.js
104.22.25.131
https://assets-global.website-files.com/6595d530bcf001adceb21212/660705a030fadcc8f8950075_AISalesAss
unknown
https://embed.tawk.to/_s/v4/app/6625f366c87/js/twk-iterator-polyfill.js
unknown
https://pagestates-tracking.crazyegg.com/healthcheck
13.35.58.40
https://app.regie.ai/signup
unknown
https://stats.g.doubleclick.net/g/collect?v=2&tid=G-VMFY9K9RPE&cid=1151382789.1716771394&gtm=45je45m0v875973908z8847818946za200zb847818946&aip=1&dma=0&gcs=G111&gcd=13n3n3n3n5&npa=0&frm=0
64.233.167.157
https://workspace.google.com/:session_prefix:marketplace/appfinder?usegapi=1
unknown
https://github.com/zloirock/core-js/blob/v3.36.1/LICENSE
unknown
https://support.google.com/recaptcha/?hl=en#6223828
unknown
https://www.google.com
unknown
https://www.youtube.com/iframe_api
unknown
https://vsa35.tawk.to/s/?k=6653da45ef55153d25d2e7ed&cver=0&pop=false&asver=71003&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI2NDY3YTc2OGFkODA0NDU4OTBlZGYyOWUiLCJ2aWQiOiI2NDY3YTc2OGFkODA0NDU4OTBlZGYyOWUtOGJQRTY2U1hmeVN6RU1tS3dwOV95Iiwic2lkIjoiNjY1M2RhNDVlZjU1MTUzZDI1ZDJlN2VkIiwiaWF0IjoxNzE2NzcxMzk3LCJleHAiOjE3MTY3NzMxOTcsImp0aSI6ImM5RkIxdl9Mdkd5czd5OEdkVHd4RyJ9.mLkPoJy5X-5C1B7LveUsnsACBhY-P4XUXR6CYvaMQiksChc7IotpP2xD6z9TV6hej6psh1zKY-y1MKn5bxwYcA&EIO=3&transport=websocket&__t=O-tZA7v
172.67.38.66
https://assets-global.website-files.com/6595d530bcf001adceb21212/660705a00232456f70c9310b_AISalesAss
unknown
https://assets-global.website-files.com/659c1e1d52015e0951d980e6/65a2b8244621b6acf897770e_Bombora.svg
18.239.69.90
https://d3e54v103j8qbb.cloudfront.net/js/jquery-3.5.1.min.dc5e7f18c8.js?site=6595d530bcf001adceb2121
unknown
https://f.vimeocdn.com/p/4.33.8/js/player.module.js
146.75.118.109
https://support.google.com/recaptcha/#6175971
unknown
https://i.vimeocdn.com/video/1610534409-9fe328546a507cc31d2ae788b030cb1e446a62b26b144c89985f09538f7da33b-d?mw=800&mh=450
151.101.128.217
https://embed.tawk.to/_s/v4/app/6625f366c87/js/twk-chunk-24d8db78.js
104.22.25.131
https://www.google.com/async/newtab_ogb?hl=en-US&async=fixed:0
172.217.23.100
https://openjsf.org/
unknown
https://github.com/microsoft/clarity
unknown
https://assets-global.website-files.com/659c1e1d52015e0951d980e6/65a2b69df23e0308ab135b5b_Outreach.svg
18.239.69.90
https://support.google.com/recaptcha
unknown
https://assets-global.website-files.com/6595d530bcf001adceb21212/css/regie-ai-staging.97281fbbf.min.css
18.239.69.90
https://assets-global.website-files.com/6595d530bcf001adceb21212/659eb5e5bd8157098fb7f414_gdpr.png
18.239.69.90
https://vsa26.tawk.to/s/?k=6653da45ef55153d25d2e7ed&cver=0&pop=false&asver=71003&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI2NDY3YTc2OGFkODA0NDU4OTBlZGYyOWUiLCJ2aWQiOiI2NDY3YTc2OGFkODA0NDU4OTBlZGYyOWUtOGJQRTY2U1hmeVN6RU1tS3dwOV95Iiwic2lkIjoiNjY1M2RhNDVlZjU1MTUzZDI1ZDJlN2VkIiwiaWF0IjoxNzE2NzcxMzk3LCJleHAiOjE3MTY3NzMxOTcsImp0aSI6ImM5RkIxdl9Mdkd5czd5OEdkVHd4RyJ9.mLkPoJy5X-5C1B7LveUsnsACBhY-P4XUXR6CYvaMQiksChc7IotpP2xD6z9TV6hej6psh1zKY-y1MKn5bxwYcA&EIO=3&transport=websocket&__t=O-tZ9l1
104.22.24.131
https://www.regie.ai/guide
63.35.51.142
https://www.linkedin.com/company/regie-ai
unknown
https://vsa108.tawk.to/s/?k=6653da45ef55153d25d2e7ed&cver=0&pop=false&asver=71003&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI2NDY3YTc2OGFkODA0NDU4OTBlZGYyOWUiLCJ2aWQiOiI2NDY3YTc2OGFkODA0NDU4OTBlZGYyOWUtOGJQRTY2U1hmeVN6RU1tS3dwOV95Iiwic2lkIjoiNjY1M2RhNDVlZjU1MTUzZDI1ZDJlN2VkIiwiaWF0IjoxNzE2NzcxMzk3LCJleHAiOjE3MTY3NzMxOTcsImp0aSI6ImM5RkIxdl9Mdkd5czd5OEdkVHd4RyJ9.mLkPoJy5X-5C1B7LveUsnsACBhY-P4XUXR6CYvaMQiksChc7IotpP2xD6z9TV6hej6psh1zKY-y1MKn5bxwYcA&EIO=3&transport=websocket&__t=O-tZAzV
104.22.24.131
https://cdn-cookieyes.com/client_data/ad7f10b5f55ce13492462bf7/audit-table/g-zYDNcw.json
104.22.59.91
https://embed.tawk.to/_s/v4/app/6625f366c87/css/min-widget.css
104.22.25.131
https://assets-global.website-files.com/6595d530bcf001adceb21212/js/regie-ai-staging.61876242e.js
18.239.69.90
https://assets-global.website-files.com/6595d530bcf001adceb21212/660705a055907c31e5e35e92_AISalesAss
unknown
https://assets-global.website-files.com/6595d530bcf001adceb21212/660705a055907c31e5e35e92_AISalesAssistant_MostImplementable_Mid-Market_Total.svg
18.239.69.90
https://github.com/MikeMcl/decimal.js-light/LICENCE
unknown
https://assets-global.website-files.com/6595d530bcf001adceb21212/65cce0b13936557bb5f48dbd_g2%20revie
unknown
https://embed.tawk.to/_s/v4/app/6625f366c87/js/twk-entries-polyfill.js
unknown
https://github.com/cssinjs/jss
unknown
https://www.apache.org/licenses/
unknown
https://github.com/mattboldt/typed.js
unknown
https://embed.tawk.to/_s/v4/app/6625f366c87/
unknown
https://assets-global.website-files.com/6595d530bcf001adceb21212/65cce0b13936557bb5f48dbd_g2%20review.svg
18.239.69.90
https://adservice.google.com/pagead/regclk
unknown
https://embed.tawk.to/_s/v4/app/6625f366c87/js/twk-event-polyfill.js
unknown
https://cct.google/taggy/agent.js
unknown
https://analytics.google.com/g/collect?v=2&tid=G-VMFY9K9RPE&gtm=45je45m0v875973908z8847818946za200zb847818946&_p=1716771380484&gcs=G111&gcd=13n3n3n3n5&npa=0&dma=0&cid=1151382789.1716771394&ul=en-us&sr=1280x1024&ir=1&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&are=1&pae=1&frm=0&pscdl=noapi&_eu=EA&sid=1716771394&sct=1&seg=0&dl=https%3A%2F%2Fwww.regie.ai%2Fguide&dt=Extension%20Guide&_s=2&tfd=23629
216.239.32.181
https://plus.google.com
unknown
https://assets-global.website-files.com/6595d530bcf001adceb21212/660705a030fadcc8f8950075_AISalesAssistant_HighPerformer_Americas_HighPerformer.svg
18.239.69.90
https://developers.google.com/recaptcha/docs/faq#my-computer-or-network-may-be-sending-automated-que
unknown
https://vsa62.tawk.to/s/?k=6653da45ef55153d25d2e7ed&cver=0&pop=false&asver=71003&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI2NDY3YTc2OGFkODA0NDU4OTBlZGYyOWUiLCJ2aWQiOiI2NDY3YTc2OGFkODA0NDU4OTBlZGYyOWUtOGJQRTY2U1hmeVN6RU1tS3dwOV95Iiwic2lkIjoiNjY1M2RhNDVlZjU1MTUzZDI1ZDJlN2VkIiwiaWF0IjoxNzE2NzcxMzk3LCJleHAiOjE3MTY3NzMxOTcsImp0aSI6ImM5RkIxdl9Mdkd5czd5OEdkVHd4RyJ9.mLkPoJy5X-5C1B7LveUsnsACBhY-P4XUXR6CYvaMQiksChc7IotpP2xD6z9TV6hej6psh1zKY-y1MKn5bxwYcA&EIO=3&transport=websocket&__t=O-tZAXt
172.67.38.66
http://underscorejs.org/LICENSE
unknown
https://play.google.com/log?format=json&hasfast=true
142.250.186.110
https://embed.tawk.to/_s/v4/app/6625f366c87/js/twk-chunk-2d0b383d.js
104.22.25.131
https://assets-global.website-files.com/659c1e1d52015e0951d980e6/65a2b839d1e58aba55b31ca4_ZoomInfo.svg
18.239.69.90
https://embed.tawk.to/_s/v4/app/6625f366c87/js/twk-chunk-common.js
104.22.25.131
https://developers.marketo.com/MunchkinLicense.pdf
unknown
https://embed.tawk.to/_s/v4/app/6625f366c87/js/twk-chunk-2c776523.js
104.22.25.131
https://regie.referralrock.com/ReferralSdk/referral.js?referrer=https%3A%2F%2Fwww.regie.ai%2Fguide
20.75.106.146
https://apis.google.com/_/scs/abc-static/_/js/k=gapi.gapi.en.SCWmpDDGjPk.O/m=gapi_iframes,googleapis_client/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo_Pl64J0IIHlj2zBtEJ3ZwdaJC3HA/cb=gapi.loaded_0
142.250.186.142
https://assets-global.website-files.com/6595d530bcf001adceb21212/660705a00232456f70c9310b_AISalesAssistant_BestResults_Mid-Market_Total.svg
18.239.69.90
https://cdn-cookieyes.com/client_data/ad7f10b5f55ce13492462bf7/script.js
104.22.59.91
http://chat.regie.ai
unknown
https://embed.tawk.to/_s/v4/app/6625f366c87/css/message-preview.css
104.22.25.131
https://outlook.live.com/mail/
unknown
https://clients6.google.com
unknown
https://assets-global.website-files.com/6595d530bcf001adceb21212/65ac11d7e7f9caa582bcc887_og%20img.j
unknown
https://f.vimeocdn.com/p/4.33.8/css/player.css
146.75.118.109
https://td.doubleclick.net/td/ga/rul?tid=G-VMFY9K9RPE&gacid=1151382789.1716771394&gtm=45je45m0v875973908z8847818946za200zb847818946&dma=0&gcs=G111&gcd=13n3n3n3n5&npa=0&pscdl=noapi&aip=1&fledge=1&frm=0&z=2065376473
142.250.185.130
https://app.salesloft.com/
unknown
https://embed.tawk.to/_s/v4/app/6625f366c87/js/twk-object-values-polyfill.js
unknown
https://i.vimeocdn.com/video/1610534409-9fe328546a507cc31d2ae788b030cb1e446a62b26b144c89985f09538f7da33b-d?mw=80&q=85
151.101.128.217
https://assets-global.website-files.com/659c1e1d52015e0951d980e6/65a2b71ad1e58aba55b278ff_Apollo.io.svg
18.239.69.90
https://embed.tawk.to/_s/v4/app/6625f366c87/js/twk-runtime.js
104.22.25.131
https://assets-global.website-files.com/659c1e1d52015e0951d980e6/65a2b87e05690f47e1871903_Cognism.svg
18.239.69.90
https://linkedin.com/
unknown
https://assets-global.website-files.com/6595d530bcf001adceb21212/css/regie-ai-staging.97281fbbf.min.
unknown
https://va.tawk.to/v1/widget-settings?propertyId=6467a768ad80445890edf29e&widgetId=1h96864fg&sv=null
172.67.38.66
https://embed.tawk.to/_s/v4/app/6625f366c87/js/twk-chunk-2d0b9454.js
104.22.25.131
https://uploads-ssl.webflow.com/6595d530bcf001adceb21212/6595d6275aa95166710ff207_PPMori-RegularItalic.woff2
18.66.112.105
https://assets-global.website-files.com/659c1e1d52015e0951d980e6/65a2b6f4604428bacd4be796_Salesloft.svg
18.239.69.90
https://app.regie.ai/signin
unknown
https://cdn-cookieyes.com/client_data/ad7f10b5f55ce13492462bf7/1gpZw5Pt.json
104.22.59.91
https://www.clarity.ms/tag/
unknown
https://embed.tawk.to/_s/v4/app/6625f366c87/css/max-widget.css
104.22.25.131
https://outlook.office.com/
unknown
https://assets-global.website-files.com/6595d530bcf001adceb21212/660705a0954ad7922c498aaf_AISalesAssistant_MomentumLeader_Leader.svg
18.239.69.90
There are 90 hidden URLs, click here to show them.

Domains

Name
IP
Malicious
event-log-producer-alb-1487800978.eu-west-1.elb.amazonaws.com
18.202.136.23
cdn-cookieyes.com
104.22.59.91
vsa26.tawk.to
104.22.24.131
stats.g.doubleclick.net
64.233.167.157
proxy-ssl-geo.webflow.com
63.35.51.142
embed.tawk.to
104.22.25.131
va.tawk.to
172.67.38.66
pagestates-tracking.crazyegg.com
13.35.58.40
fresnel.vimeocdn.com
34.120.202.204
cdnjs.cloudflare.com
104.17.25.14
vsa62.tawk.to
172.67.38.66
www.google.com
172.217.23.100
uploads-ssl.webflow.com
18.66.112.105
a.nel.cloudflare.com
35.190.80.1
plus.l.google.com
142.250.186.142
s-part-0017.t-0009.t-msedge.net
13.107.246.45
vsa3.tawk.to
104.22.24.131
regie.referralrock.com
20.75.106.146
vimeo.com
162.159.138.60
d3e54v103j8qbb.cloudfront.net
52.222.232.39
vimeo.map.fastly.net
151.101.128.217
analytics-alv.google.com
216.239.32.181
vsa35.tawk.to
172.67.38.66
play.google.com
142.250.186.110
d3vmvmej3wjbxn.cloudfront.net
18.239.69.90
assets-tracking.crazyegg.com
18.66.122.57
vsa108.tawk.to
104.22.24.131
td.doubleclick.net
142.250.185.130
445-tii-243.mktoresp.com
192.28.144.124
log.cookieyes.com
54.72.199.181
tracking.crazyegg.com
54.171.224.241
vimeo-video.map.fastly.net
146.75.118.109
cdn.embedly.com
unknown
cdn.jsdelivr.net
unknown
i.vimeocdn.com
unknown
script.crazyegg.com
unknown
s.clarity.ms
unknown
assets-global.website-files.com
unknown
f.vimeocdn.com
unknown
c.clarity.ms
unknown
www.clarity.ms
unknown
www.linkedin.com
unknown
px.ads.linkedin.com
unknown
munchkin.marketo.net
unknown
directory.cookieyes.com
unknown
snap.licdn.com
unknown
player.vimeo.com
unknown
analytics.google.com
unknown
www.regie.ai
unknown
apis.google.com
unknown
There are 40 hidden domains, click here to show them.

IPs

IP
Domain
Country
Malicious
192.28.144.124
445-tii-243.mktoresp.com
United States
13.107.246.45
s-part-0017.t-0009.t-msedge.net
United States
192.168.2.4
unknown
unknown
18.239.69.90
d3vmvmej3wjbxn.cloudfront.net
United States
146.75.118.109
vimeo-video.map.fastly.net
Sweden
54.171.224.241
tracking.crazyegg.com
United States
142.250.186.110
play.google.com
United States
35.190.80.1
a.nel.cloudflare.com
United States
18.66.122.57
assets-tracking.crazyegg.com
United States
216.239.32.181
analytics-alv.google.com
United States
18.202.136.23
event-log-producer-alb-1487800978.eu-west-1.elb.amazonaws.com
United States
63.35.51.142
proxy-ssl-geo.webflow.com
United States
239.255.255.250
unknown
Reserved
172.217.23.100
www.google.com
United States
142.250.186.142
plus.l.google.com
United States
104.17.25.14
cdnjs.cloudflare.com
United States
104.22.59.91
cdn-cookieyes.com
United States
64.233.167.157
stats.g.doubleclick.net
United States
104.22.25.131
embed.tawk.to
United States
151.101.128.217
vimeo.map.fastly.net
United States
142.250.186.132
unknown
United States
13.35.58.40
pagestates-tracking.crazyegg.com
United States
104.22.24.131
vsa26.tawk.to
United States
54.72.199.181
log.cookieyes.com
United States
52.222.232.39
d3e54v103j8qbb.cloudfront.net
United States
18.66.112.105
uploads-ssl.webflow.com
United States
34.120.202.204
fresnel.vimeocdn.com
United States
20.75.106.146
regie.referralrock.com
United States
142.250.185.130
td.doubleclick.net
United States
172.67.38.66
va.tawk.to
United States
There are 20 hidden IPs, click here to show them.

Memdumps

Base Address
Regiontype
Protect
Malicious
22C1000
heap
page read and write
247E000
heap
page read and write
818000
heap
page read and write
A0F000
stack
page read and write
6C0000
heap
page read and write
3ED000
stack
page read and write
22B0000
heap
page read and write
810000
heap
page read and write
650000
heap
page read and write
2880000
trusted library allocation
page read and write
69E000
stack
page read and write
7E0000
heap
page read and write
6A0000
heap
page read and write
22C0000
heap
page read and write
2EC000
stack
page read and write
7F0000
trusted library allocation
page read and write
23B0000
trusted library allocation
page read and write
B0E000
stack
page read and write
2460000
heap
page read and write
7DE000
stack
page read and write
22BC000
heap
page read and write
2465000
heap
page read and write
There are 12 hidden memdumps, click here to show them.