Joe Sandbox Cloud Basic Analysis Report

Loading Joe Sandbox Report ...

Edit tour

Windows Analysis Report
Your ebucks R23.999 ready to be redeemed.html

Overview

General Information

Sample name:Your ebucks R23.999 ready to be redeemed.html
Analysis ID:1468061
MD5:86abd7013180bc41bd60f7882ee9ddb9
SHA1:89922cf492b64bf7898f0f2967f27ff4ecc42aeb
SHA256:242d952a1cbc3373439c8a7595ae8e1a09cdb8338bdcbc4b2742e4e27fddce9d

Detection

Score:56
Range:0 - 100
Whitelisted:false
Confidence:100%

Signatures

AI detected phishing page
HTML Script injector detected
HTML file submission containing password form
HTML body contains password input but no form action
HTML title does not match URL
Invalid T&C link found
None HTTPS page querying sensitive user data (password, username or email)
Stores files to the Windows start menu directory

Classification

Process Tree

  • System is w10x64_ra
  • chrome.exe (PID: 2100 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --single-argument C:\Users\user\Desktop\Your ebucks R23.999 ready to be redeemed.html MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
    • chrome.exe (PID: 2192 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2156 --field-trial-handle=1964,i,14332423150873750023,13879994269796675301,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
  • cleanup

Yara Signatures

No yara matches

Sigma Signatures

No Sigma rule has matched

Snort Signatures

No Snort rule has matched

Joe Sandbox Signatures

Click to jump to signature section

Show All Signature Results

Phishing

barindex
AI detected phishing page
Source: file:///C:/Users/user/Desktop/Your%20ebucks%20R23.999%20ready%20to%20%20be%20redeemed.htmlLLM: Score: 9 brands: FNB Reasons: The URL 'file:///C:/Users/user/Desktop/Your%20ebucks%20R23.999%20ready%20to%20%20be%20redeemed.html' is a local file path, which is highly suspicious for a banking site. The page asks for sensitive information such as card number, ATM PIN, CVV, and expiry date, which is a common tactic in phishing attacks. The legitimate domain for FNB (First National Bank) is 'fnb.co.za', and this URL does not match. The presence of a prominent form requesting sensitive information without a CAPTCHA and the use of social engineering techniques to lure users into entering their banking details further indicate that this is a phishing site. DOM: 0.1.pages.csv
HTML Script injector detected
Source: file:///C:/Users/user/Desktop/Your%20ebucks%20R23.999%20ready%20to%20%20be%20redeemed.htmlHTTP Parser: New script, src: https://ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js
Source: file:///C:/Users/user/Desktop/Your%20ebucks%20R23.999%20ready%20to%20%20be%20redeemed.htmlHTTP Parser: New script, src: https://static.revechat.com/widget/d-single-inbox/scripts/jquery/jquery.js?ver=02072024
Source: Your ebucks R23.999 ready to be redeemed.htmlHTTP Parser: <input type="password" .../> found but no <form action="...
Source: file:///C:/Users/user/Desktop/Your%20ebucks%20R23.999%20ready%20to%20%20be%20redeemed.htmlHTTP Parser: <input type="password" .../> found but no <form action="...
Source: Your ebucks R23.999 ready to be redeemed.htmlHTTP Parser: Title: does not match URL
Source: file:///C:/Users/user/Desktop/Your%20ebucks%20R23.999%20ready%20to%20%20be%20redeemed.htmlHTTP Parser: Title: does not match URL
Source: file:///C:/Users/user/Desktop/Your%20ebucks%20R23.999%20ready%20to%20%20be%20redeemed.htmlHTTP Parser: Invalid link: Help
Source: file:///C:/Users/user/Desktop/Your%20ebucks%20R23.999%20ready%20to%20%20be%20redeemed.htmlHTTP Parser: Has password / email / username input fields
Source: Your ebucks R23.999 ready to be redeemed.htmlHTTP Parser: <input type="password" .../> found
Source: file:///C:/Users/user/Desktop/Your%20ebucks%20R23.999%20ready%20to%20%20be%20redeemed.htmlHTTP Parser: <input type="password" .../> found
Source: file:///C:/Users/user/Desktop/Your%20ebucks%20R23.999%20ready%20to%20%20be%20redeemed.htmlHTTP Parser: No favicon
Source: file:///C:/Users/user/Desktop/Your%20ebucks%20R23.999%20ready%20to%20%20be%20redeemed.htmlHTTP Parser: No favicon
Source: Your ebucks R23.999 ready to be redeemed.htmlHTTP Parser: No <meta name="author".. found
Source: file:///C:/Users/user/Desktop/Your%20ebucks%20R23.999%20ready%20to%20%20be%20redeemed.htmlHTTP Parser: No <meta name="author".. found
Source: file:///C:/Users/user/Desktop/Your%20ebucks%20R23.999%20ready%20to%20%20be%20redeemed.htmlHTTP Parser: No <meta name="author".. found
Source: Your ebucks R23.999 ready to be redeemed.htmlHTTP Parser: No <meta name="copyright".. found
Source: file:///C:/Users/user/Desktop/Your%20ebucks%20R23.999%20ready%20to%20%20be%20redeemed.htmlHTTP Parser: No <meta name="copyright".. found
Source: file:///C:/Users/user/Desktop/Your%20ebucks%20R23.999%20ready%20to%20%20be%20redeemed.htmlHTTP Parser: No <meta name="copyright".. found
Source: C:\Program Files\Google\Chrome\Application\chrome.exeDirectory created: C:\Program Files\Google\Chrome\Application\Dictionaries
Source: unknownHTTPS traffic detected: 20.114.59.183:443 -> 192.168.2.16:56651 version: TLS 1.2
Source: unknownHTTPS traffic detected: 20.114.59.183:443 -> 192.168.2.16:56691 version: TLS 1.2
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownTCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknownTCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknownTCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknownTCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknownTCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknownTCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknownTCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknownTCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknownTCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknownTCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknownTCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknownTCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknownTCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownTCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknownTCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknownTCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknownTCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknownTCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknownTCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknownTCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknownTCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknownTCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknownTCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknownTCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknownTCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknownTCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: global trafficHTTP traffic detected: GET /FNB-FICA-Registration-FNB-Online-Banking-Paid/php/continue0.php?callback=jQuery1124021198781352601892_1720165305817&Username=uursaraew&Password=realpassword%40fuckyou69&_=1720165305818 HTTP/1.1Host: www.tracybentertainment.co.zaConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /FNB-FICA-Registration-FNB-Online-Banking-Paid/php/continue0.php?callback=jQuery112403257204555385165_1720165348407&Username=aarpos&Password=dwiduh23q9oufhd9q3&_=1720165348408 HTTP/1.1Host: www.tracybentertainment.co.zaConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /FNB-FICA-Registration-FNB-Online-Banking-Paid/php/continue1.php?callback=jQuery112406028445757910308_1720165371412&card=5586692334587&pin=2385&cvv=298&expdate-m=05&expdate-y=25&tick=&Username=aarpos&Password=dwiduh23q9oufhd9q3&_=1720165371413 HTTP/1.1Host: www.tracybentertainment.co.zaConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /widget/scripts/new-livechat.js?1720165410914 HTTP/1.1Host: static.revechat.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global trafficDNS traffic detected: DNS query: www.tracybentertainment.co.za
Source: global trafficDNS traffic detected: DNS query: www.google.com
Source: global trafficDNS traffic detected: DNS query: www.fnb.co.za
Source: global trafficDNS traffic detected: DNS query: www.online.fnb.co.za
Source: global trafficDNS traffic detected: DNS query: static.revechat.com
Source: global trafficDNS traffic detected: DNS query: unpkg.com
Source: global trafficDNS traffic detected: DNS query: a.nel.cloudflare.com
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56716
Source: unknownNetwork traffic detected: HTTP traffic on port 56681 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56717
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56719
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56713
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56714
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56715
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56710
Source: unknownNetwork traffic detected: HTTP traffic on port 56623 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56600 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56732 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56669 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56646 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56617 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56726 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56703 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56743 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56606
Source: unknownNetwork traffic detected: HTTP traffic on port 56663 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56727
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56607
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56728
Source: unknownNetwork traffic detected: HTTP traffic on port 56634 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56608
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56729
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56609
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56602
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56723
Source: unknownNetwork traffic detected: HTTP traffic on port 56737 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56603
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56724
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56604
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56725
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56605
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56726
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56720
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56600
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56721
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56601
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56722
Source: unknownNetwork traffic detected: HTTP traffic on port 56628 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56652 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56595 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56687 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56635 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56612 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56719 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56617
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56738
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56618
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56739
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56619
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56613
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56614
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56735
Source: unknownNetwork traffic detected: HTTP traffic on port 56606 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56615
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56736
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56616
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56737
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56730
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56610
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56731
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56611
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56732
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56612
Source: unknownNetwork traffic detected: HTTP traffic on port 56674 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56740
Source: unknownNetwork traffic detected: HTTP traffic on port 56651 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56629 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56594 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56720 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56628
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56629
Source: unknownNetwork traffic detected: HTTP traffic on port 56640 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56657 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56682 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56745
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56625
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56746
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56747
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56627
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56620
Source: unknownNetwork traffic detected: HTTP traffic on port 56699 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56741
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56621
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56742
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56622
Source: unknownNetwork traffic detected: HTTP traffic on port 56714 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56743
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56623
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56744
Source: unknownNetwork traffic detected: HTTP traffic on port 56731 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56601 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56708 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56630
Source: unknownNetwork traffic detected: HTTP traffic on port 56725 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56668 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56599 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56742 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56685 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56691 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56713 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56736 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56598
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56599
Source: unknownNetwork traffic detected: HTTP traffic on port 56707 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56653 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56630 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56665 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56659 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56613 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56607 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56747 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56680 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56642 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56676 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56730 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56618 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56702 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56658 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56664 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56641 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56602 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56625 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56619 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56670 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56701 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56724 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56598 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56741 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56709
Source: unknownNetwork traffic detected: HTTP traffic on port 56686 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56705
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56706
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56707
Source: unknownNetwork traffic detected: HTTP traffic on port 56636 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56708
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56701
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56702
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56703
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56704
Source: unknownNetwork traffic detected: HTTP traffic on port 56735 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56700
Source: unknownNetwork traffic detected: HTTP traffic on port 56647 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56729 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56675 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56717 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56614 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56746 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56608 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56637 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56679
Source: unknownNetwork traffic detected: HTTP traffic on port 56620 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56675
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56676
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56677
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56678
Source: unknownNetwork traffic detected: HTTP traffic on port 56672 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56682
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56683
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56684
Source: unknownNetwork traffic detected: HTTP traffic on port 56695 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56685
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56680
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56681
Source: unknownNetwork traffic detected: HTTP traffic on port 56684 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56655 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56690 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56603 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56686
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56687
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56689
Source: unknownNetwork traffic detected: HTTP traffic on port 56706 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56694
Source: unknownNetwork traffic detected: HTTP traffic on port 56649 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56695
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56690
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56691
Source: unknownNetwork traffic detected: HTTP traffic on port 56666 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56631 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56723 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56740 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56660 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56677 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56699
Source: unknownNetwork traffic detected: HTTP traffic on port 56648 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56621 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56728 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56705 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56745 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56632 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56615 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56739 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56609 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56594
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56595
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56596
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56597
Source: unknownNetwork traffic detected: HTTP traffic on port 56643 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56671 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56700 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56597 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56610 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56639
Source: unknownNetwork traffic detected: HTTP traffic on port 56633 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56656 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56662 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56635
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56636
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56637
Source: unknownNetwork traffic detected: HTTP traffic on port 56679 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56604 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56638
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56631
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56632
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56633
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56634
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56640
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56641
Source: unknownNetwork traffic detected: HTTP traffic on port 56627 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56722 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56596 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56638 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56646
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56647
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56648
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56649
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56642
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56643
Source: unknownNetwork traffic detected: HTTP traffic on port 56716 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56644
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56645
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56650
Source: unknownNetwork traffic detected: HTTP traffic on port 56673 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56651
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56652
Source: unknownNetwork traffic detected: HTTP traffic on port 56694 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56645 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56727 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56683 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56744 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56639 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56657
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56658
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56659
Source: unknownNetwork traffic detected: HTTP traffic on port 56738 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56653
Source: unknownNetwork traffic detected: HTTP traffic on port 56715 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56655
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56656
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56660
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56661
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56662
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56663
Source: unknownNetwork traffic detected: HTTP traffic on port 56644 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56667 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56709 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56611 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56661 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56605 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56668
Source: unknownNetwork traffic detected: HTTP traffic on port 56678 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56669
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56664
Source: unknownNetwork traffic detected: HTTP traffic on port 56710 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56665
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56666
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56667
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56671
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56672
Source: unknownNetwork traffic detected: HTTP traffic on port 56622 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56673
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56674
Source: unknownNetwork traffic detected: HTTP traffic on port 56650 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56670
Source: unknownNetwork traffic detected: HTTP traffic on port 56616 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56689 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56721 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56704 -> 443
Source: unknownHTTPS traffic detected: 20.114.59.183:443 -> 192.168.2.16:56651 version: TLS 1.2
Source: unknownHTTPS traffic detected: 20.114.59.183:443 -> 192.168.2.16:56691 version: TLS 1.2
Source: classification engineClassification label: mal56.phis.winHTML@14/83@37/156
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Program Files\Google\Chrome\Application\Dictionaries
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps
Source: unknownProcess created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --single-argument C:\Users\user\Desktop\Your ebucks R23.999 ready to be redeemed.html
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2156 --field-trial-handle=1964,i,14332423150873750023,13879994269796675301,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2156 --field-trial-handle=1964,i,14332423150873750023,13879994269796675301,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeDirectory created: C:\Program Files\Google\Chrome\Application\Dictionaries
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk

Stealing of Sensitive Information

barindex
HTML file submission containing password form
Source: file:///C:/Users/user/Desktop/Your%20ebucks%20R23.999%20ready%20to%20%20be%20redeemed.htmlHTTP Parser: file:///C:/Users/user/Desktop/Your%20ebucks%20R23.999%20ready%20to%20%20be%20redeemed.html

Mitre Att&ck Matrix

ReconnaissanceResource DevelopmentInitial AccessExecutionPersistencePrivilege EscalationDefense EvasionCredential AccessDiscoveryLateral MovementCollectionCommand and ControlExfiltrationImpact
Gather Victim Identity InformationAcquire InfrastructureValid AccountsWindows Management Instrumentation1
Registry Run Keys / Startup Folder		1
Process Injection		3
Masquerading		OS Credential DumpingSystem Service DiscoveryRemote ServicesData from Local System2
Encrypted Channel		Exfiltration Over Other Network MediumAbuse Accessibility Features
CredentialsDomainsDefault AccountsScheduled Task/JobBoot or Logon Initialization Scripts1
Registry Run Keys / Startup Folder		1
Process Injection		LSASS MemoryApplication Window DiscoveryRemote Desktop ProtocolData from Removable Media2
Non-Application Layer Protocol		Exfiltration Over BluetoothNetwork Denial of Service
Email AddressesDNS ServerDomain AccountsAtLogon Script (Windows)Logon Script (Windows)Obfuscated Files or InformationSecurity Account ManagerQuery RegistrySMB/Windows Admin SharesData from Network Shared Drive3
Application Layer Protocol		Automated ExfiltrationData Encrypted for Impact
Employee NamesVirtual Private ServerLocal AccountsCronLogin HookLogin HookBinary PaddingNTDSSystem Network Configuration DiscoveryDistributed Component Object ModelInput Capture1
Ingress Tool Transfer		Traffic DuplicationData Destruction

Screenshots

Thumbnails

This section contains all screenshots as thumbnails, including those not shown in the slideshow.


windows-stand

Antivirus, Machine Learning and Genetic Malware Detection

Initial Sample

SourceDetectionScannerLabelLink
Your ebucks R23.999 ready to be redeemed.html3%ReversingLabsWin32.Trojan.Generic
Your ebucks R23.999 ready to be redeemed.html3%VirustotalBrowse

Dropped Files

No Antivirus matches

Unpacked PE Files

No Antivirus matches

Domains

SourceDetectionScannerLabelLink
www.fnb.co.za0%VirustotalBrowse
www.google.com0%VirustotalBrowse
tracybentertainment.co.za2%VirustotalBrowse
www.tracybentertainment.co.za1%VirustotalBrowse
www.online.fnb.co.za0%VirustotalBrowse
a.nel.cloudflare.com0%VirustotalBrowse
unpkg.com1%VirustotalBrowse
static.revechat.com0%VirustotalBrowse

URLs

SourceDetectionScannerLabelLink
file:///C:/Users/user/Desktop/Your%20ebucks%20R23.999%20ready%20to%20%20be%20redeemed.html0%Avira URL Cloudsafe
http://www.tracybentertainment.co.za/FNB-FICA-Registration-FNB-Online-Banking-Paid/php/continue0.php?callback=jQuery1124021198781352601892_1720165305817&Username=uursaraew&Password=realpassword%40fuckyou69&_=17201653058180%Avira URL Cloudsafe
http://www.tracybentertainment.co.za/FNB-FICA-Registration-FNB-Online-Banking-Paid/php/continue0.php?callback=jQuery112403257204555385165_1720165348407&Username=aarpos&Password=dwiduh23q9oufhd9q3&_=17201653484080%Avira URL Cloudsafe
about:blank0%Avira URL Cloudsafe
http://static.revechat.com/widget/scripts/new-livechat.js?17201654109140%Avira URL Cloudsafe

Domains and IPs

Contacted Domains

NameIPActiveMaliciousAntivirus DetectionReputation
a.nel.cloudflare.com
35.190.80.1
truefalseunknown
www.fnb.co.za
66.22.96.160
truefalseunknown
tracybentertainment.co.za
196.41.123.141
truefalseunknown
www.google.com
142.250.184.228
truefalseunknown
www.online.fnb.co.za
196.11.125.154
truefalseunknown
static.revechat.com
104.26.8.127
truetrueunknown
unpkg.com
104.17.245.203
truefalseunknown
www.tracybentertainment.co.za
unknown
unknownfalseunknown

Contacted URLs

NameMaliciousAntivirus DetectionReputation
about:blankfalse
  • Avira URL Cloud: safe
unknown
file:///C:/Users/user/Desktop/Your%20ebucks%20R23.999%20ready%20to%20%20be%20redeemed.htmltrue
  • Avira URL Cloud: safe
unknown
http://www.tracybentertainment.co.za/FNB-FICA-Registration-FNB-Online-Banking-Paid/php/continue0.php?callback=jQuery1124021198781352601892_1720165305817&Username=uursaraew&Password=realpassword%40fuckyou69&_=1720165305818false
  • Avira URL Cloud: safe
unknown
http://www.tracybentertainment.co.za/FNB-FICA-Registration-FNB-Online-Banking-Paid/php/continue0.php?callback=jQuery112403257204555385165_1720165348407&Username=aarpos&Password=dwiduh23q9oufhd9q3&_=1720165348408false
  • Avira URL Cloud: safe
unknown
http://static.revechat.com/widget/scripts/new-livechat.js?1720165410914false
  • Avira URL Cloud: safe
unknown

World Map of Contacted IPs

  • No. of IPs < 25%
  • 25% < No. of IPs < 50%
  • 50% < No. of IPs < 75%
  • 75% < No. of IPs

Public IPs

IPDomainCountryFlagASNASN NameMalicious
142.250.185.99
unknownUnited States
15169GOOGLEUSfalse
104.26.8.127
static.revechat.comUnited States
13335CLOUDFLARENETUStrue
1.1.1.1
unknownAustralia
13335CLOUDFLARENETUSfalse
172.217.16.206
unknownUnited States
15169GOOGLEUSfalse
142.250.186.174
unknownUnited States
15169GOOGLEUSfalse
66.22.96.160
www.fnb.co.zaUnited States
48851RADWAREILfalse
104.26.9.127
unknownUnited States
13335CLOUDFLARENETUSfalse
216.58.206.35
unknownUnited States
15169GOOGLEUSfalse
196.41.123.141
tracybentertainment.co.zaSouth Africa
36874CybersmartZAfalse
239.255.255.250
unknownReserved
unknownunknownfalse
142.250.185.163
unknownUnited States
15169GOOGLEUSfalse
104.17.245.203
unpkg.comUnited States
13335CLOUDFLARENETUSfalse
172.217.18.106
unknownUnited States
15169GOOGLEUSfalse
64.233.184.84
unknownUnited States
15169GOOGLEUSfalse
196.11.125.155
unknownSouth Africa
17148FIRST-NATIONALZAfalse
35.190.80.1
a.nel.cloudflare.comUnited States
15169GOOGLEUSfalse
142.250.184.228
www.google.comUnited States
15169GOOGLEUSfalse
196.11.125.154
www.online.fnb.co.zaSouth Africa
17148FIRST-NATIONALZAfalse
142.250.184.234
unknownUnited States
15169GOOGLEUSfalse

Private

IP
192.168.2.16

General Information

Joe Sandbox version:40.0.0 Tourmaline
Analysis ID:1468061
Start date and time:2024-07-05 09:39:50 +02:00
Joe Sandbox product:CloudBasic
Overall analysis duration:
Hypervisor based Inspection enabled:false
Report type:full
Cookbook file name:defaultwindowsinteractivecookbook.jbs
Analysis system description:Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
Number of analysed new started processes analysed:7
Number of new started drivers analysed:0
Number of existing processes analysed:0
Number of existing drivers analysed:0
Number of injected processes analysed:0
Technologies:
  • EGA enabled
Analysis Mode:stream
Analysis stop reason:Timeout
Sample name:Your ebucks R23.999 ready to be redeemed.html
Detection:MAL
Classification:mal56.phis.winHTML@14/83@37/156
Cookbook Comments:
  • Found application associated with file extension: .html

Warnings

  • Exclude process from analysis (whitelisted): dllhost.exe
  • Excluded IPs from analysis (whitelisted): 93.184.221.240, 216.58.206.35, 64.233.184.84, 172.217.16.206, 172.217.18.106, 34.104.35.123
  • Excluded domains from analysis (whitelisted): clients2.google.com, accounts.google.com, edgedl.me.gvt1.com, slscr.update.microsoft.com, ajax.googleapis.com, ctldl.windowsupdate.com, clientservices.googleapis.com, clients.l.google.com
  • Not all processes where analyzed, report is missing behavior information

LLM Input / Output

InputOutput
URL: file:///C:/Users/user/Desktop/Your%20ebucks%20R23.999%20ready%20to%20%20be%20redeemed.html Model: Perplexity: mixtral-8x7b-instruct
{"loginform": true,"urgency": true,
Title: Your ebucks R23.999 ready to  be redeemed.html OCR: FNB Username Password Ccmtt Us + Busit For Cala_LIahrs Ratz + Pricing Car-s FNB Tcols Switch 10 Do it now! Securitv Centre News + Insights Smart devices FNB Banking App Dont a victim yours today througl FNB Bank anytime, any,vhere all promotions
URL: file:///C:/Users/user/Desktop/Your%20ebucks%20R23.999%20ready%20to%20%20be%20redeemed.html Model: Perplexity: mixtral-8x7b-instruct
{"loginform": false,"urgency": true,"captcha": false,"reasons": ["The title of the webpage suggests a sense of urgency by indicating that 'your ebucks R23.999 is ready to be redeemed', which may encourage users to take immediate action.","The text also contains phrases that may create a sense of urgency, such as 'meet the qualifying requirements' and 'continue' or 'cancel' options.","No login form was found on the webpage.","No CAPTCHA or anti-robot detection mechanism was found on the webpage."]}
Title: Your ebucks R23.999 ready to  be redeemed.html OCR: Online Bankmg Settings OLO HeW Contact Us Inbox My Bank Shares + Send Money eBucks Rewards Transfer Buy Forex Business Solutions Accounts Gold Validate and Verify your banking profile Earn eBucks - eBucks Rewards - FN8 Card Number FN8  My Bski,g sethgs FN8 - Busin ATM PIN cvv Expiry Date MM You have meet the qualifying requirements that are specific to your FN8 Gold Account(s).. Continue Cancel Continue Redeem
URL: file:///C:/Users/user/Desktop/Your%20ebucks%20R23.999%20ready%20to%20%20be%20redeemed.html Model: gpt-4o
```json{  "phishing_score": 9,  "brands": "FNB",  "phishing": true,  "suspicious_domain": true,  "has_prominent_loginform": true,  "has_captcha": false,  "setechniques": true,  "has_suspicious_link": true,  "legitmate_domain": "fnb.co.za",  "reasons": "The URL 'file:///C:/Users/user/Desktop/Your%20ebucks%20R23.999%20ready%20to%20%20be%20redeemed.html' is a local file path, which is highly suspicious for a banking site. The page asks for sensitive information such as card number, ATM PIN, CVV, and expiry date, which is a common tactic in phishing attacks. The legitimate domain for FNB (First National Bank) is 'fnb.co.za', and this URL does not match. The presence of a prominent form requesting sensitive information without a CAPTCHA and the use of social engineering techniques to lure users into entering their banking details further indicate that this is a phishing site."}
URL: file:///C:/Users/user/Desktop/Your%20ebucks%20R23.999%20ready%20to%20%20be%20redeemed.html Model: Perplexity: mixtral-8x7b-instruct
{"loginform": true,"urgency": true,
Title: Your ebucks R23.999 ready to  be redeemed.html# OCR: Q Help Contact Us Inbox Online Banking Settings Log Out My Bank Shares + Send Money eBucks Rewards Business Solutions FNB - Authenticating your Cell Phone Verification session Unique ID 310412803 To Verify Rewards Funds Reversals a One Time Pin (OTP) or inContact Notification will be sent to your registered FNS APP cellphone device Please wait, Generating OTP or Smart inContact App 26 your Smart inContact FNB App to REFUNDS Transaction REVERSALS Transaction Note Please be patient Your refunding transaction(s) will be CANCEL.

Created / dropped Files

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Jul 5 06:41:42 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
Category:dropped
Size (bytes):2673
Entropy (8bit):3.9823616162974136
Encrypted:false
SSDEEP:
MD5:D21426EB2F63F2F5BF903B463512CDE2
SHA1:DEEE3BDF5F61A0235E07888FEBCA0AC493CA33F0
SHA-256:865009E24429A5490DAAEE867ADE291DA832523E0BEF432A4FC6F1D65DA736AC
SHA-512:DFA300F8356F82D851F5D12AF119C44071E4AF04150C6025E6A91B6FFF4EE2D83B27ECAC7ABB6D11597178B77879BC6ECB921ACAA2BB180AA52EAD53C4FF4746
Malicious:false
Reputation:unknown
Preview:L..................F.@.. ...$+.,....H.x....N.Yr.... w......................1....P.O. .:i.....+00.../C:\.....................1.....FW.J..PROGRA~1..t......O.I.X,=....B...............J.........P.r.o.g.r.a.m. .F.i.l.e.s...@.s.h.e.l.l.3.2...d.l.l.,.-.2.1.7.8.1.....T.1.....CW.V..Google..>......CW.V.X4=....L.....................p+j.G.o.o.g.l.e.....T.1.....CW.V..Chrome..>......CW.V.X4=....M......................8..C.h.r.o.m.e.....`.1.....CW.V..APPLIC~1..H......CW.V.X4=..........................."&.A.p.p.l.i.c.a.t.i.o.n.....n.2. w..;W.+ .CHROME~1.EXE..R......CW.V.X6=...........................H..c.h.r.o.m.e._.p.r.o.x.y...e.x.e.......j...............-.......i...........ABO......C:\Program Files\Google\Chrome\Application\chrome_proxy.exe..S.....\.....\.....\.....\.....\.....\.....\.....\.....\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.\.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.*.C.:.\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.F

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Jul 5 06:41:42 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
Category:dropped
Size (bytes):2675
Entropy (8bit):3.9980671713652685
Encrypted:false
SSDEEP:
MD5:1D0B935F3C2400156281CB85648C1B59
SHA1:6CD31D4891060D8B53AF54389A70262956E8E3CA
SHA-256:5C58B586405AD9BFD69ECC3224D7F818B48A356EC16748C211F284782CEF8102
SHA-512:8680A3737EBCD4CA387BE306DBE77CDAC64450B55D2C6B45DFB892B460ECB84CD023906FFC9E61AD5AF952EF9297DEC7826E55A56FCEBE6BAD4C10DBCF8C82EB
Malicious:false
Reputation:unknown
Preview:L..................F.@.. ...$+.,....~Tl....N.Yr.... w......................1....P.O. .:i.....+00.../C:\.....................1.....FW.J..PROGRA~1..t......O.I.X,=....B...............J.........P.r.o.g.r.a.m. .F.i.l.e.s...@.s.h.e.l.l.3.2...d.l.l.,.-.2.1.7.8.1.....T.1.....CW.V..Google..>......CW.V.X4=....L.....................p+j.G.o.o.g.l.e.....T.1.....CW.V..Chrome..>......CW.V.X4=....M......................8..C.h.r.o.m.e.....`.1.....CW.V..APPLIC~1..H......CW.V.X4=..........................."&.A.p.p.l.i.c.a.t.i.o.n.....n.2. w..;W.+ .CHROME~1.EXE..R......CW.V.X6=...........................H..c.h.r.o.m.e._.p.r.o.x.y...e.x.e.......j...............-.......i...........ABO......C:\Program Files\Google\Chrome\Application\chrome_proxy.exe..S.....\.....\.....\.....\.....\.....\.....\.....\.....\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.\.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.*.C.:.\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.F

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Oct 6 08:05:01 2023, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
Category:dropped
Size (bytes):2689
Entropy (8bit):4.006228742315016
Encrypted:false
SSDEEP:
MD5:B49395BAE76C6361CB9CA94BC6308E55
SHA1:F9198DEC588F7178E29773C36892C6AB21412049
SHA-256:D7CBD5417526113D159612FEF8DDA42EE71614D249F0A51BB482E23FD1866A9E
SHA-512:21977DCF4ABA031968A323BB037AE8DECBF3AD4F48DCDD98A1358494A5D68D8FAC97ED50365E23D7845C32597EA0AF52F4C20DF865373C3BFB91CEABA477B92A
Malicious:false
Reputation:unknown
Preview:L..................F.@.. ...$+.,.....Y.04...N.Yr.... w......................1....P.O. .:i.....+00.../C:\.....................1.....FW.J..PROGRA~1..t......O.I.X,=....B...............J.........P.r.o.g.r.a.m. .F.i.l.e.s...@.s.h.e.l.l.3.2...d.l.l.,.-.2.1.7.8.1.....T.1.....CW.V..Google..>......CW.V.X4=....L.....................p+j.G.o.o.g.l.e.....T.1.....CW.V..Chrome..>......CW.V.X4=....M......................8..C.h.r.o.m.e.....`.1.....CW.V..APPLIC~1..H......CW.V.X4=..........................."&.A.p.p.l.i.c.a.t.i.o.n.....n.2. w..;W.+ .CHROME~1.EXE..R......CW.VFW.E...........................H..c.h.r.o.m.e._.p.r.o.x.y...e.x.e.......j...............-.......i...........ABO......C:\Program Files\Google\Chrome\Application\chrome_proxy.exe..S.....\.....\.....\.....\.....\.....\.....\.....\.....\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.\.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.*.C.:.\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.F

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Jul 5 06:41:42 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
Category:dropped
Size (bytes):2677
Entropy (8bit):3.997615454703156
Encrypted:false
SSDEEP:
MD5:C835E4BC09CF2EA49EA67ED5415303B0
SHA1:C4DC6E171E9C8DFA1B62ACAF8768A0E297D78089
SHA-256:62F605610DEB2DDFD2075DB43011DD9E9EAEFB1A82C9898219B00A6E6815F3DF
SHA-512:7C49C9E5AF9A3C1211264B7ECB077E88A045CE98F738D20F798EA66E02D0784BFE67B5AAA81EABAF9046A545DB5745FEFF2A1EA0AB9775A2D60FF46F4766F586
Malicious:false
Reputation:unknown
Preview:L..................F.@.. ...$+.,....,.f....N.Yr.... w......................1....P.O. .:i.....+00.../C:\.....................1.....FW.J..PROGRA~1..t......O.I.X,=....B...............J.........P.r.o.g.r.a.m. .F.i.l.e.s...@.s.h.e.l.l.3.2...d.l.l.,.-.2.1.7.8.1.....T.1.....CW.V..Google..>......CW.V.X4=....L.....................p+j.G.o.o.g.l.e.....T.1.....CW.V..Chrome..>......CW.V.X4=....M......................8..C.h.r.o.m.e.....`.1.....CW.V..APPLIC~1..H......CW.V.X4=..........................."&.A.p.p.l.i.c.a.t.i.o.n.....n.2. w..;W.+ .CHROME~1.EXE..R......CW.V.X6=...........................H..c.h.r.o.m.e._.p.r.o.x.y...e.x.e.......j...............-.......i...........ABO......C:\Program Files\Google\Chrome\Application\chrome_proxy.exe..S.....\.....\.....\.....\.....\.....\.....\.....\.....\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.\.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.*.C.:.\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.F

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Jul 5 06:41:42 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
Category:dropped
Size (bytes):2677
Entropy (8bit):3.9827539545268613
Encrypted:false
SSDEEP:
MD5:1D76D14A013E036A45A0D11A0ADC6D94
SHA1:6E65455655737D42C7AEBC952FA0E164FD1E0A57
SHA-256:5155F05C248D48FA9300C41275DF2CB363CBEB1D0CBF6DD6CA555F7090744421
SHA-512:6A63B62D91CC45817E0813C71CCD37AAD5EDA9DCA924962D6D9155055FE464B6C51403DAFCB7C461AD504D40247D8C588F73193BBF01B7D419FBE32EC01C8370
Malicious:false
Reputation:unknown
Preview:L..................F.@.. ...$+.,.....!r....N.Yr.... w......................1....P.O. .:i.....+00.../C:\.....................1.....FW.J..PROGRA~1..t......O.I.X,=....B...............J.........P.r.o.g.r.a.m. .F.i.l.e.s...@.s.h.e.l.l.3.2...d.l.l.,.-.2.1.7.8.1.....T.1.....CW.V..Google..>......CW.V.X4=....L.....................p+j.G.o.o.g.l.e.....T.1.....CW.V..Chrome..>......CW.V.X4=....M......................8..C.h.r.o.m.e.....`.1.....CW.V..APPLIC~1..H......CW.V.X4=..........................."&.A.p.p.l.i.c.a.t.i.o.n.....n.2. w..;W.+ .CHROME~1.EXE..R......CW.V.X6=...........................H..c.h.r.o.m.e._.p.r.o.x.y...e.x.e.......j...............-.......i...........ABO......C:\Program Files\Google\Chrome\Application\chrome_proxy.exe..S.....\.....\.....\.....\.....\.....\.....\.....\.....\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.\.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.*.C.:.\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.F

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Jul 5 06:41:42 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
Category:dropped
Size (bytes):2679
Entropy (8bit):3.9955785884843724
Encrypted:false
SSDEEP:
MD5:4958003FA1162AF78D911C451F2C9590
SHA1:63DE0F20BF6A9DA2FB461C150F1F9D5CE7229275
SHA-256:541FAA4F1F88C6EBF4068F2A46E79BE947A1F81E05BF85E1C0B1523AAAF632D8
SHA-512:5C4CA0DA9FE6FCA1334A205A13A1D60001228E1943927B968F471606B908F3B86187F5CF789F8938D93716871A56A9288EFCE2420EEE7504ACC63FA8B1682DC3
Malicious:false
Reputation:unknown
Preview:L..................F.@.. ...$+.,.....N\....N.Yr.... w......................1....P.O. .:i.....+00.../C:\.....................1.....FW.J..PROGRA~1..t......O.I.X,=....B...............J.........P.r.o.g.r.a.m. .F.i.l.e.s...@.s.h.e.l.l.3.2...d.l.l.,.-.2.1.7.8.1.....T.1.....CW.V..Google..>......CW.V.X4=....L.....................p+j.G.o.o.g.l.e.....T.1.....CW.V..Chrome..>......CW.V.X4=....M......................8..C.h.r.o.m.e.....`.1.....CW.V..APPLIC~1..H......CW.V.X4=..........................."&.A.p.p.l.i.c.a.t.i.o.n.....n.2. w..;W.+ .CHROME~1.EXE..R......CW.V.X6=...........................H..c.h.r.o.m.e._.p.r.o.x.y...e.x.e.......j...............-.......i...........ABO......C:\Program Files\Google\Chrome\Application\chrome_proxy.exe..S.....\.....\.....\.....\.....\.....\.....\.....\.....\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.\.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.*.C.:.\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.F

Chrome Cache Entry: 100

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:ASCII text
Category:downloaded
Size (bytes):508
Entropy (8bit):4.92193651988687
Encrypted:false
SSDEEP:
MD5:A8F000EE9D157A83B9F92474639B02BA
SHA1:EF8D33D96339230C571E956B15EDA04D0E9D73D9
SHA-256:19DBB085D719A24A541C85D34D9800F3136B07B65BF6038E7F11F0157FF048CA
SHA-512:A6AC1AD4C4E2630D620CB97F192338656141B391837450F75352467649927B268C19AECB4FAF29CD005C164C6F5E7430CA59A167836EAA863285E3F125718B3F
Malicious:false
Reputation:unknown
URL:https://www.tracybentertainment.co.za/FNB-FICA-Registration-FNB-Online-Banking-Paid/css2/jquery.css
Preview:/*!. * jQuery ClassyCountdown. * www.class.pm. *. * Written by Marius Stanciu - Sergiu <marius@class.pm>. * Licensed under the MIT license www.class.pm/LICENSE-MIT. * Version 1.0.0. *. */...ClassyCountdown-wrapper > div {. display: inline-block;. position: relative;. width: calc(25% - 20px);. margin: 10px;.}...ClassyCountdown-wrapper .ClassyCountdown-value {. width: 100%;. line-height: 1em;. position: absolute;. top: 50%;. text-align: center;. left: 0;. display: block;.}

Chrome Cache Entry: 101

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:PNG image data, 56 x 56, 8-bit/color RGBA, non-interlaced
Category:downloaded
Size (bytes):1449
Entropy (8bit):7.806860415430183
Encrypted:false
SSDEEP:
MD5:205E9DADE803F3FBBE3DA629F4E76D71
SHA1:5781B95F78C978A3960557FD2F75026F71BE3441
SHA-256:E23CB34585887DBC94A6F79C27154C300ED548CD9B057B1DDF34420649E5CCE2
SHA-512:A26B42E0EB62C14ADF68F427A75D1178B04C141804E0649381E7D3F8175688BE6BB96D7BEAD4BE3960723124B16B79AB4EAD478F986839FBEBC70F7C536A134D
Malicious:false
Reputation:unknown
URL:https://www.tracybentertainment.co.za/FNB-FICA-Registration-FNB-Online-Banking-Paid/images/icon_borrow_colour_turq.png
Preview:.PNG........IHDR...8...8.......;.....tEXtSoftware.Adobe ImageReadyq.e<...KIDATx..[]L[U...|...b...l6s.X.s.e..{.F...d.h|Zb.._.M}.a+.e.L......x..Z4Bb....R.v.....!%.j=.{o.../.s.R.......;...9..j....Z...fv..]....`W.`T.Q..!{...E...V?.F gc'.:"...N....d/.j.X.p0%...%....;\IM..9.[h!..)hG.A.R..r..Z)..*.R..U....w....P3?.......h.?!.....|.).|.9.....2<....*{...q....3...X89.]_3.]!G`..xo....R..4...:.........(..;.$........CQ!..8.Su.............&...;...x......~hv..z.k......~p.+...8O.Z&....z/]Byi)..=.gkk...?.../.NY.7.|....l...'bg..189...c.3...+.F./..//..+....p.G..J..AB..6mB..Hn...G....2......&].p.}|...;.....c~..`d>...T3Q.^...Z....o...F.9...oN...h.....;.\..Lu.17.91..33.....?+*.....;9...w..m..!F.....B........o....-;..v..qCM.g....x...c.L..@...*..s=Oo....<.h.<.X.6:b.l/....Wb.8.E.I&J..j,...hz.A..f.`..*Y@Y..cc..B....>qg..Q.dJ...%.....NV...R..q{f.lf..Z.A....8m...X.....i...j..UX}G...p.6}sQS..f.H'...F.Q}.6..=...7.;@..(..0I?Lm..fQ.......J...~Y...+L.3=..[Y..z.f...<Y

Chrome Cache Entry: 102

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:ASCII text
Category:downloaded
Size (bytes):1411
Entropy (8bit):5.0354199671770825
Encrypted:false
SSDEEP:
MD5:8879725004B73A14FDDC5A0180643549
SHA1:1F0E986B42CAFD5AF2432B82827CD05FDD9103AD
SHA-256:F3A6BC5DEE8D498D358E2394C8B506C6527D9E83ED848E6EA5CF4D165D8C90DC
SHA-512:FEF84B1B980FA83B1A0D25E6A51801403C34273D5741CE412C269F2C04435B1D6331A9422C49B339C4D132EA09DE54C16C9EF3BED66B919CA0C54C730E0FB753
Malicious:false
Reputation:unknown
URL:https://www.tracybentertainment.co.za/FNB-FICA-Registration-FNB-Online-Banking-Paid/css/print.css
Preview:@MEDIA print.{.html, body {padding:0;margin:0;min-height:0}..slide {height:auto;min-height:0}..bodyNoScroll .slide {display:none}./* Hidden */..pagination, .header, .headerSpacer1, .headerSpacer2, .headerTabs {..display: none;.}..overlayPanelBack,..overlayBack {..background: transparent;.}..overlayPanel,..overlay {..position: absolute;..height: auto;..min-height: 100%;.}..overlayPanel, .overlayPanel2, .overlayPanel3,..overlay, .overlay2, .overlay3 {..background: transparent;..overflow: visible;..height: auto;..min-height: 0;.}..overlayPanel3,..overlay3 {..position: absolute;..padding-top: 0px;..margin-bottom: 0px;..width: 100%;..margin: 0;..-webkit-border-radius: 0px;..-moz-border-radius: 0px;..border-radius: 0px;..-webkit-box-shadow: none;..-moz-box-shadow: none;..box-shadow: none;..overflow: visible;.}..overlayPanel3 > div,..overlay3 > div {..background: #FFF;.}..overlayPanel .closeButton,..overlay .closeButton {..display: none;.}...sideNote.legal {..-webkit-transform: translateY(0%

Chrome Cache Entry: 104

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:troff or preprocessor input, ASCII text
Category:downloaded
Size (bytes):78131
Entropy (8bit):4.7676419187497485
Encrypted:false
SSDEEP:
MD5:7FE7108986E8596A197C607B2D989D89
SHA1:9FEAB57E5C948507134250AF34E342E753FC029D
SHA-256:873761B8711147DC516B6102936E9AD005F3A3015349EFCDE1A496F0326F1051
SHA-512:73B14FE9422707DF4BDFD7FE031A94F3826D8E48E250188F934CFCD61A050C994790F21DA68CA1914D87703E4886B71B54817E030C5A6843B480D55144A8DEC8
Malicious:false
Reputation:unknown
URL:https://unpkg.com/@phosphor-icons/web@2.1.1/src/regular/style.css
Preview:@font-face {. font-family: "Phosphor";. src:. url("./Phosphor.woff2") format("woff2"),. url("./Phosphor.woff") format("woff"),. url("./Phosphor.ttf") format("truetype"),. url("./Phosphor.svg#Phosphor") format("svg");. font-weight: normal;. font-style: normal;. font-display: block;.}...ph {. /* use !important to prevent issues with browser extensions that change fonts */. font-family: "Phosphor" !important;. speak: never;. font-style: normal;. font-weight: normal;. font-variant: normal;. text-transform: none;. line-height: 1;.. /* Enable Ligatures ================ */. letter-spacing: 0;. -webkit-font-feature-settings: "liga";. -moz-font-feature-settings: "liga=1";. -moz-font-feature-settings: "liga";. -ms-font-feature-settings: "liga" 1;. font-feature-settings: "liga";. -webkit-font-variant-ligatures: discretionary-ligatures;. font-variant-ligatures: discretionary-ligatures;.. /* Better Font Rendering =========== */. -webkit-font-smoothing: antialiase

Chrome Cache Entry: 105

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced
Category:dropped
Size (bytes):1054
Entropy (8bit):7.719873984854022
Encrypted:false
SSDEEP:
MD5:DAF6FD51559607F518665333C938703F
SHA1:6EBFE32B819A6E56FEE41E8313D3E5D0009F7845
SHA-256:F61309B5FF0C44DC567D72CE14E72EF151C88A5397A27DC1B131C8CC77272993
SHA-512:FE7A9B6563CFC2AEF619EB3EFE041485667DAE592B1C30167118A817682A19E660816405B3327C6702E061C59942AAE8E029B617B1D1BCC7D713904A4A216D86
Malicious:false
Reputation:unknown
Preview:.PNG........IHDR..............w=.....pHYs.................tEXtSoftware.Adobe ImageReadyq.e<....IDATx.V_L.W..}../....%......|S....K../.<....G(a...0{...I...d.e.%$....&..%d.. ....J..s...|.R|.&....{~..{...c....<."....;;.H....b.!..n......*..[....&...~44()l.$.c......,a..B*.T!*$,j......~[HU.z)...?Y..I....'D<,......X..V.#GX.O....J#..f..../.`....d.....s..(;w...-b...3...>.2..c.D]Y.7....H..(...fp....{.!x...1....%.......Yu.$......o...<.~...yC.............u,...q..w.CS1..".>...S...x...Q.ML........[.....7kj..uw_....}}(.p...n..x.......A..1(9....D.B......n$-......fe..\..l-jh%.?.t...........Ko2.Q.;33.JI.......Pg.....B.AE._.}.;![,..bp;...l\|.ut8..p...2.../.......QW..,g..e..+..=..}{..#.av..(...$..'.A..n.....W.z.3V_ggswMz.r.7.a..?e/........#.].....U:...#......W....C.]...B'....(-*B..$..F ;...y....4.7.[[O..S^...9'...E*.l..O..aY\]..).5.O.,".<. .......%..\(....yy.*.P`I.{.. Nr....j...i.....Au...O..B%.../Z...$....5UVf..=...b...........3.%.F..A|.G.p!A=)A.'3......E..

Chrome Cache Entry: 106

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:PNG image data, 56 x 56, 8-bit/color RGBA, non-interlaced
Category:dropped
Size (bytes):1241
Entropy (8bit):7.776121940967218
Encrypted:false
SSDEEP:
MD5:E8F3D94E656338F9D0723C9D50019912
SHA1:82E6B1E6DE45CCDC97F069E65D16ECB064CED96C
SHA-256:0231189357893615B3CF8430246EEC2EA5ACCEBD59C9C4DE6B240D0E43451FF7
SHA-512:5AC50D171A80D3A7363D4D0F18AB9F4C9852B01054A7C822F3BBEA26FBA2293DB779B03A1A0E1BEF7E6EC9CFA9075A81FBFD4D583565B436B3F48CD44801B6E6
Malicious:false
Reputation:unknown
Preview:.PNG........IHDR...8...8.......;.....tEXtSoftware.Adobe ImageReadyq.e<...{IDATx...K.q..Y.-..+.2..J.,<.....N."..t:.E......]......B.B..s=.A..2.-hS20,aQkS.....:;/..3...afv^..|....s. ....{p........q.......M.L..(T.P.`E..h.8...... 8..uN~vs...Rm.*.&PIQ..L_.pd.j%.U..._.T........L.........8..uTX..>:.s...YN..h..#./...>....=..j..h?............@ZZ,......=...........Q...+0..puG...j.\...".).....@.7..2r6..$.` 9.`...C....H,.....r...E.[!x.x.......k..bd....... .>.W...F..k#._@...bt.`g....?9.y..7..K....o...`....../....j.r@te.....N....R....Fv_B.......^....gIAJ(...w.g...c..o...Lw?.......$......d...P...Z.5..q|.#.O<...l.fu.eK-...9._..R....q.."........a:....L...g..xM.F2T.u....?$....r.m...lI.,O.....\.\.\0...........Y...?Tk.L...........WG._ B.n.mt..2...XT..n.......]S.,.!....STD@.l..*.G..[....b0...uE...J.e.8......t{.......Y..~`..*.6rS..S.&.~N..9.QV..H`.d.t......7<....fU.4...@.S=.SbQ.&).vT....6.....`..9;....w...n.*...u.cU.m...]5...:..;z..!x..Y..Xo...uc..P.m...k.-)I.q..

Chrome Cache Entry: 107

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:PNG image data, 52 x 92, 8-bit/color RGBA, non-interlaced
Category:downloaded
Size (bytes):1988
Entropy (8bit):7.855109827051912
Encrypted:false
SSDEEP:
MD5:3B43D562C00C51B1C95C99DA65345F04
SHA1:FAFBEEC267F5F8DD6E6D302D43755869332C22C1
SHA-256:A4FB655A6BC92E41AF12293A39C46C78BC665E9CA78302610F8C59390B57C735
SHA-512:F379EFF1C3DFDC9B7167BFB6520EAB4D8A2C3F836F9DDBDCC025F25D67D56547D6AE0AFAE920DEDB6E16CF0B6D6EA4AAC1CE3248E0C709A4856DAC3F9DE33CA2
Malicious:false
Reputation:unknown
URL:https://www.tracybentertainment.co.za/FNB-FICA-Registration-FNB-Online-Banking-Paid/images/global/arrow_large_left_white.png
Preview:.PNG........IHDR...4...\.....!......tEXtSoftware.Adobe ImageReadyq.e<...fIDATx..[L.W..w.EX.B.....x...V.C...6...*...6.XQH.Hk...M....0j.!`..) k.%..(,..]@.&.>.....;.N..g6...9s...ad.......g.Y.....8....0.o._..C..377.Eo...*w@J...5....Lg....u..Z...y.........,eY..j.j...[.~.T.......}..e6...j.j...L./.~....P.J..9a...",..m.....0.v..8.(.ePZ.z.....uwnn..+W...:.......@.`.^..-.O.Z...Bz<..k9O0......t.....r<..Sg.>.au>....:t......i .aH...!.D....Q..........\@.....(..@..H.D..T@..H.D.L.@....D%L.@R...LPI....Q.H....Q.HN..@r...".C..... .0......H......k.W1.9.....Hq.)............Z..P....4L.@.......*4..z..6...7n.X.OhX.,Ps...v(.kc..W.$..R......Y....vF.....'..q..H6.....M8.]}......?n{..y..'OnC....X.H.s....c..B..+...xill...g./_.....isaa.Z<n..6.....H......h......G...B..@5.......w.i.Z.OcD..Z........*u.....z...hL.[.`.....<.....;vlxpp..f.M.........'..G..h3.^%4.,.c).+.Nn.UVV.x...-P...S....&...V!.i@.......t...........~.>..n....#hWJ..`.v4..V...p.B....P.oP.p......l..F!7.[.........o.....D...%...1...

Chrome Cache Entry: 108

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:ASCII text, with very long lines (1374)
Category:downloaded
Size (bytes):109971
Entropy (8bit):5.242973269420334
Encrypted:false
SSDEEP:
MD5:5B9E6FF4599B7D4D12565BE82768372F
SHA1:B38AE228091E43173D8224CCEC571B44F73FC10B
SHA-256:55239775164D1219EC150E1531C844A8447480A8CD93E2EA38F426D2B659F99E
SHA-512:297C1A18EFE302A6B7AA0BA5BB4522DF25918133279D3BBC21C9B6099996666F7B1F868598AEB4567F7C9F8C3C2E7B601C50958DC032321E9C4A7DEA77266489
Malicious:false
Reputation:unknown
URL:https://static.revechat.com/widget/d-single-inbox/scripts/jquery/jquery.js?ver=02072024
Preview:/*!.* jQuery JavaScript Library v1.11.3.* http://jquery.com/.*.* Includes Sizzle.js.* http://sizzlejs.com/.*.* Copyright 2005, 2014 jQuery Foundation, Inc. and other contributors.* Released under the MIT license.* http://jquery.org/license.*.* Date: 2015-04-28T16:19Z.*/(function(global,factory){if(typeof module==="object"&&typeof module.exports==="object"){module.exports=global.document?factory(global,true):function(w){if(!w.document){throw new Error("jQuery requires a window with a document");}.return factory(w);};}else{factory(global);}}(typeof window!=="undefined"?window:this,function(window,noGlobal){var deletedIds=[];var slice=deletedIds.slice;var concat=deletedIds.concat;var push=deletedIds.push;var indexOf=deletedIds.indexOf;var class2type={};var toString=class2type.toString;var hasOwn=class2type.hasOwnProperty;var support={};var.version="1.11.3",jQuery=function(selector,context){return new jQuery.fn.init(selector,context);},rtrim=/^[\s\uFEFF\xA0]+|[\s\uFEFF\xA0]+$/g,rmsPrefix=/

Chrome Cache Entry: 109

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:HTML document, ASCII text, with no line terminators
Category:dropped
Size (bytes):15
Entropy (8bit):3.906890595608518
Encrypted:false
SSDEEP:
MD5:FE364450E1391215F596D043488F989F
SHA1:D1848AA7B5CFD853609DB178070771AD67D351E9
SHA-256:C77E5168DFFDA66B8DC13F1425B4D3630A6656A3E5ACF707F4393277BA3C8B5E
SHA-512:2B11CD287B8FAE7A046F160BEE092E22C6DB19D38B17888AED6F98F5C3E936A46766FB1E947ECC0CC5964548474B7866EB60A71587A04F1AF8F816DF8AFA221E
Malicious:false
Reputation:unknown
Preview:<!DOCTYPE html>

Chrome Cache Entry: 110

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:ASCII text
Category:downloaded
Size (bytes):87359
Entropy (8bit):4.790542358108815
Encrypted:false
SSDEEP:
MD5:D0C00E94901712DA925ED893ABCF1908
SHA1:2A36DC2A0A022E6B03855703B2C5380836771E6B
SHA-256:F2E59699FAAEEE27DA9EDB86DD18F5ED3BD5113DB3E4E388FDD23AFCAF308865
SHA-512:6CB3E110EA54D66AB7585F509C3BBDF019438B816CD78FBA031C8BD40E8A013D55D01AB07869A00DDBE614BF348484411BD4CAD166E64B6A90677BF6AFCD92C6
Malicious:false
Reputation:unknown
URL:https://unpkg.com/@phosphor-icons/web@2.1.1/src/light/style.css
Preview:@font-face {. font-family: "Phosphor-Light";. src:. url("./Phosphor-Light.woff2") format("woff2"),. url("./Phosphor-Light.woff") format("woff"),. url("./Phosphor-Light.ttf") format("truetype"),. url("./Phosphor-Light.svg#Phosphor-Light") format("svg");. font-weight: normal;. font-style: normal;. font-display: block;.}...ph-light {. /* use !important to prevent issues with browser extensions that change fonts */. font-family: "Phosphor-Light" !important;. speak: never;. font-style: normal;. font-weight: normal;. font-variant: normal;. text-transform: none;. line-height: 1;.. /* Enable Ligatures ================ */. letter-spacing: 0;. -webkit-font-feature-settings: "liga";. -moz-font-feature-settings: "liga=1";. -moz-font-feature-settings: "liga";. -ms-font-feature-settings: "liga" 1;. font-feature-settings: "liga";. -webkit-font-variant-ligatures: discretionary-ligatures;. font-variant-ligatures: discretionary-ligatures;.. /* Better Font Rendering ===

Chrome Cache Entry: 111

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:PNG image data, 270 x 240, 8-bit/color RGBA, non-interlaced
Category:dropped
Size (bytes):17710
Entropy (8bit):7.964833532119685
Encrypted:false
SSDEEP:
MD5:44439390D7D0C36236D7096A7953A5F0
SHA1:A7C499F8A788C952C5FB0DA32E202B23D800E1FC
SHA-256:3D5D80FDA7F6EF7DD9DFD50E8E05D04BB2B8C67191CFE0914731E3DD0DEFCD7E
SHA-512:004CAFD0A37A8EB99E9A27002F8E230DC880D1611A8DB6956E778CA4DCB6514C923F34A46CD4421BC6196507ECEC0D99EE2781A8E4F5113EEB2A1C0C5DFE4755
Malicious:false
Reputation:unknown
Preview:.PNG........IHDR..............^.x....sRGB.......@.IDATx..].`UE.>.=!.....""EA\.*X~.EW.w..c....kC...6..Q."...H....;......*.I.v.....s......!..."........2.S..Z*..(...`.C.P.....(qxEL...E..8t.(...g..8<C...."..c@.P.<#....2UP...%....."...%...."..(q..P.....(qx.L...E@.C."..xF@..3d...(.J.:...E.3.J..!S.E@.P..1..(...P....*(.......E@......g.TA.P..8t.(...g..8<C...."..c@.P.<#....2UP...%....."...%...."..(q..P.....(qx.L...E@.C."..xF@..3d...(.J.:...E.3.J..!S.E@.P..1..(...P....*(.......E@......g.TA.P..8t.(...g..8<C...."..c@.P.<#....2UP...%....."...%...."..(q..P.....(qx.L...E@.C."..xF@..3d...(.J.:...E.3.J..!S.E@.P..1..(...P....*(.......E@......g.TA.P..8t.(...g..8<C...."..c@.P.<#....2UP...%....."...%...."..(q..P.....(qx.L...E@.C."..xF@..3d...(.J.:...E.3.J..!S.E@.P..1..(...P....*(.......E@......g.TA.P..8t.(...g..8<C...."..c@.P.<#....2UP...%....."...%...."..(q..P.....(qx.L...E@.C."..xF@..3d...(.J.:...E.3.J..!S.E@.P..1..(...P....*(.......E@......g.TA.P..8t.(...g..8<C...."..c@.P.<#.

Chrome Cache Entry: 113

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:ASCII text, with very long lines (1727)
Category:downloaded
Size (bytes):6902
Entropy (8bit):5.4096141230827355
Encrypted:false
SSDEEP:
MD5:4DC771E8F5B7F3A136C2755652C80EE4
SHA1:A2E7847F552E18012984C2893496DAFC3C9EF880
SHA-256:087E0788C03B165BFACF3BA685DA7C59FA271924BD6A34ECD7DFD7DAE937AA52
SHA-512:7D84EE2D31211C9FCC9D0BFE22BD6903B815A645164B2C63E920C6E537ADB75899BD7BBB76AF05B9AEAB98522091F63739BD8BB30E2AD643FB88B99F79D262B0
Malicious:false
Reputation:unknown
URL:https://static.revechat.com/widget/d-single-inbox/scripts/gallery/gallery.js?ver=02072024
Preview:var $REVECHAT_MEDIA_GALLERY=window.$REVECHAT_MEDIA_GALLERY||{};$REVECHAT_MEDIA_GALLERY={rotateDegree:0,init:function(){jQuery(".lightboxed").lightboxed();this.bindEvents();},reset:function(){jQuery(".lightboxed").lightboxed({fixedNavigation:true});},setRotateDegree:function(value){this.rotateDegree+=value;var selector=$("#lightboxed--content .lightboxed--frame.lightboxed--active");if(selector.length==0){$("#lightboxed--content .lightboxed--frame").css('transform',`rotate(${this.rotateDegree}deg`);}else{$("#lightboxed--content .lightboxed--frame.lightboxed--active").css('transform',`rotate(${this.rotateDegree}deg`);}},updateToolTipTexts:function(client_locale){$('#downloadFile').find('.gallery-tooltiptext').text(client_locale.gallery_module.download);$('#replyBtn').find('.gallery-tooltiptext').text(client_locale.gallery_module.quote_reply);$('#rotateBtn').find('.gallery-tooltiptext').text(client_locale.gallery_module.rotate);$('#closeBtn').find('.gallery-tooltiptext').text(client_locale

Chrome Cache Entry: 115

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:ASCII text, with CRLF, LF line terminators
Category:downloaded
Size (bytes):16645
Entropy (8bit):5.2568584394908795
Encrypted:false
SSDEEP:
MD5:ABDA62A4179CA2DA4A4987D04E0390E0
SHA1:FE77D8E4A73CAF9FBCE093EEDFB5727F6AD97BE8
SHA-256:3E0A0D70D2759BC6CFB3AFDBD6D0B1609B19DF4F2436E551042D6F694FAB7C85
SHA-512:00601132711041ECB89A906FF0CFD1B77B0F7CF009FD8FE53AADCC6547297A64313CB17098B6517771E46053FA65250784C2F2B230E21CDA58AB068676A1FBCF
Malicious:false
Reputation:unknown
URL:https://www.tracybentertainment.co.za/FNB-FICA-Registration-FNB-Online-Banking-Paid/css2/frame_combined.css
Preview:#actionMenuBtt ..{..position: fixed;..height: 200px;..width: 50px;..top: 90px;../* overflow-x: hidden; */..z-index: 800;..}......#actionMenuBttLabelWrapper..{..position: absolute; ../*..height: 147px;..width: 30px;..background: url("../../images/actionMenu/menuBg_v2.png?v=1234567") #F90 no-repeat 97% 40%..left: -22px;....-webkit-transition-duration: 0.2s;..-moz-transition-duration: 0.2s;..-o-transition-duration: 0.2s;..transition-duration: 0.2s;....cursor: pointer;..left: 0;..margin-top: 24px;....-webkit-box-shadow: -15px 5px 36px rgba(0, 0, 0, 0.5);..-moz-box-shadow: -15px 5px 36px rgba(0, 0, 0, 0.5);..box-shadow: -15px 5px 36px rgba(0, 0, 0, 0.5);....-webkit-border-bottom-right-radius: 16px;..-moz-border-bottom-right-radius: 16px;..border-bottom-right-radius: 16px;..-webkit-border-top-right-radius: 16px;..-moz-border-top-right-radius: 16px;..border-top-right-radius: 16px;..*/..}.....actionMenuBttLabelWrapperExpanded #actionMenuBttLabelWrapper {...background:....url("../../images/acti

Chrome Cache Entry: 119

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:PNG image data, 74 x 74, 8-bit/color RGBA, non-interlaced
Category:dropped
Size (bytes):8232
Entropy (8bit):7.926890960106794
Encrypted:false
SSDEEP:
MD5:0552F33B4EA1CA9B9D1B24AC7E6A5F68
SHA1:499AC01D80FF6D08954E0B35860EF60CC74DD285
SHA-256:C04DA8EEFF7E28A9FD721FBB6672FDBBFE769C86661D935B816DC5124AF69DF3
SHA-512:1901AECF6BFFC3F2EFFC2301090837082B7F1E4DAD3AB04CE725C09120432F6C7B6B3F5E353A6D513DD8A5720DD07BA30D9F883CAC5956049F48099D047047D8
Malicious:false
Reputation:unknown
Preview:.PNG........IHDR...J...J........q....tEXtSoftware.Adobe ImageReadyq.e<....iTXtXML:com.adobe.xmp.....<?xpacket begin="." id="W5M0MpCehiHzreSzNTczkc9d"?> <x:xmpmeta xmlns:x="adobe:ns:meta/" x:xmptk="Adobe XMP Core 5.6-c111 79.158325, 2015/09/10-01:10:20 "> <rdf:RDF xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#"> <rdf:Description rdf:about="" xmlns:xmpMM="http://ns.adobe.com/xap/1.0/mm/" xmlns:stRef="http://ns.adobe.com/xap/1.0/sType/ResourceRef#" xmlns:xmp="http://ns.adobe.com/xap/1.0/" xmpMM:OriginalDocumentID="xmp.did:eb41cd09-9bd9-4fb3-b5ee-456a7df7b1e3" xmpMM:DocumentID="xmp.did:5482BF7002E511E68A59D7E995E94625" xmpMM:InstanceID="xmp.iid:5482BF6F02E511E68A59D7E995E94625" xmp:CreatorTool="Adobe Photoshop CC 2015 (Macintosh)"> <xmpMM:DerivedFrom stRef:instanceID="xmp.iid:11260c7b-aa6e-4b90-90f0-0c8a8fcd2d42" stRef:documentID="adobe:docid:photoshop:282f75e6-2d77-1179-b814-c6bc580cca85"/> </rdf:Description> </rdf:RDF> </x:xmpmeta> <?xpacket end="r"?>"......8IDATx..\..]U

Chrome Cache Entry: 120

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 1400x240, components 3
Category:downloaded
Size (bytes):428307
Entropy (8bit):7.921927108901728
Encrypted:false
SSDEEP:
MD5:F312E21C336AC6B58C42D7E97F954E79
SHA1:AAC20D935B154224B03B170BB0258516912DEB7A
SHA-256:67CCA35EE7A936BF4AC4F5BC306C13C69B0DA5BBE70E88F8DB9C9D98628276C8
SHA-512:A47E5ABEBCD459FC078A6C2AEDC958D4A580B3484DF8CB4D5E486D0C72AAB24E5BCF2DBF6A06871FAD4A761B192BB87EAAE6987E98B01FAEC5D753845DD1C074
Malicious:false
Reputation:unknown
URL:https://www.fnb.co.za/00Assets/za/zaImages/banners/2018/BF31-IMCCampaign/PC_Banner.jpg
Preview:......JFIF.....H.H.....@Exif..MM.*.......i...........................x...................8Photoshop 3.0.8BIM........8BIM.%..................B~........x...............................................................}........!1A..Qa."q.2....#B...R..$3br........%&'()*456789:CDEFGHIJSTUVWXYZcdefghijstuvwxyz..............................................................................................................................w.......!1..AQ.aq."2...B.....#3R..br...$4.%.....&'()*56789:CDEFGHIJSTUVWXYZcdefghijstuvwxyz...........................................................................C....................................................................C...................................................................................?..ia......Km.d..(o..".....>>H..$.o........N.I&.N.^k...os..r.e+....[..go....U....._....,O..?.C.......=A5V]..{.My....6./.;j.&..>-._;...........#?....c..'M....g.G....l.g.-6...K.....[....=W....i..-.o}?.....T..(D......W./..cO..jO..e..X.(R...

Chrome Cache Entry: 122

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:Web Open Font Format, TrueType, length 29264, version 1.70
Category:downloaded
Size (bytes):29264
Entropy (8bit):7.981593256295421
Encrypted:false
SSDEEP:
MD5:464A3000DF411717B476CEF92F497DCB
SHA1:21A706D2CBB690390CCDD5819E3FD951AC95DF0B
SHA-256:8145D3D87E84A96616CA236A0DBA1F908652D245B1ED506325812EE85CE28792
SHA-512:992582D2E79D98748846B420EF6ADC66C8A155623C7092B4AFB654B1BF036AB1EB8B074613B3C2C4F5B6AB63E06FF3C82354687D9F58F127FEF6E213B8F2E493
Malicious:false
Reputation:unknown
URL:https://www.tracybentertainment.co.za/FNB-FICA-Registration-FNB-Online-Banking-Paid/css/FoundationSans-Bold-webfont.woff
Preview:wOFF......rP...........F....................FFTM............b...OS/2.......T...`..cmap.............B(cvt .......J...J....feat.......2...@....fpgm...........eS./.gasp................glyf......P......b..head..V....4...6....hhea..V.... ...$...#hmtx..V...........J|kern..Y....c..)....loca..il........0.Vmaxp..k4... ... ....morx..kT.......<#f.Fname..l........]}.z.post..o.............prep..q.......... !..........=..............._4x.c`f.g......j.r...a..f:..).Hs..0.....G;...NM.cP`....6..,..vU.....Ar.wY....#.....x.c```f.`..F.....1..,..........d.2.1.g.f.`:.tG.KADAJANAIAMA_.J!^a......L.......[...U. . . .Um.W..T........./......W..?8.`..}.v?..`.......?...).D.F6...F& .....u.V6v.N.n.^>~.A!a.Q1q.I)i.Y9y.E%e.U5u.M-m.]=}.C#c.S3s.K+k.[;{.G'g.W7w.O/o._?..............D......3.-^.d...+W.Z.v....7o.m..=...c(JI.[.. .IY.C.,.b...r..rj.V.jL...sk.%5.N?t..[.....p.......=g..y...............;...B..* ..ut.s.....V.................#.........#.4.....+.........Z...................D....x.c`d```f.....L1

Chrome Cache Entry: 123

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:ASCII text, with very long lines (1509), with no line terminators
Category:downloaded
Size (bytes):1509
Entropy (8bit):5.085184819035832
Encrypted:false
SSDEEP:
MD5:A8C18E5CDB70F5701D53552100AD4763
SHA1:539A2AB84F24525B3B39C65A9BE247609B71F9E7
SHA-256:8EDEFCAA585EFC6915FD740ADB3C222DC5101992DD5CC02C58CF7AAD3F02E193
SHA-512:0C1A15A13B2A6A7CA1E4982AEC1B7B7D4F06BC61490ED25D8A50B3588F582CA7A0737B1FCC90954BEBD52BF347B59BF8A7D88B5A15B4D854CB8C1B2177B9B2EA
Malicious:false
Reputation:unknown
URL:https://static.revechat.com/widget/d-single-inbox/css/jqueryscripttop.css?ver=02072024
Preview:#jquery-script-menu{position:absolute;height:90px;width:100%;top:0;left:0;border-top:5px solid #316594;background:#fff;-moz-box-shadow:0 2px 3px 0 rgba(0,0,0,.16);-webkit-box-shadow:0 2px 3px 0 rgba(0,0,0,.16);box-shadow:0 2px 3px 0 rgba(0,0,0,.16);z-index:999999;padding:10px 0;-webkit-box-sizing:content-box;-moz-box-sizing:content-box;box-sizing:content-box}.jquery-script-center{max-width:960px;margin:0 auto}.jquery-script-center ul{width:212px;float:left;line-height:45px;margin:0;padding:0;list-style:none}.jquery-script-center a{text-decoration:none}.jquery-script-ads{max-width:728px;height:90px;float:right}.jquery-script-clear{clear:both;height:0}#carbonads{display:block;overflow:hidden;max-width:728px;position:relative;font-size:22px;box-sizing:content-box}#carbonads>span{display:block}#carbonads a{color:#4078c0;text-decoration:none}#carbonads a:hover{color:#3664a3}.carbon-wrap{display:flex;align-items:center}.carbon-img{display:block;margin:0;line-height:1}.carbon-img img{display:

Chrome Cache Entry: 124

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:ASCII text
Category:downloaded
Size (bytes):2449
Entropy (8bit):5.197930713312008
Encrypted:false
SSDEEP:
MD5:92A7F16154C29A49A9FBE70A56E0B078
SHA1:552DC9A77BE740FE0D206B16DDA679026A336E83
SHA-256:26DF64C6E2358D3D284684E8D64FEBA8133CEDDAA67EF998F517EA02E23EBA53
SHA-512:6D0FF5E9CE0C9F63F157E38C8332E950A13C004D51B6E008C05AD2D924C9546A2D01EFFD6384DE451B478BDC08EEE27CE848F1BC889ED015F48780363C25D898
Malicious:false
Reputation:unknown
URL:https://www.tracybentertainment.co.za/FNB-FICA-Registration-FNB-Online-Banking-Paid/css/main_browserPC.css
Preview:/* ***** HEADER ***** */..headerSpacer1.{.position: fixed;.top: 36px;.height: 4px!important;.}...headerTabs.{.position: fixed;.top: 40px;.height: 28px!important;.border-bottom: 1px solid #01aaad;.}...headerSpacer2.{.position: fixed;.top: 69px;.height: 4px!important;.box-shadow: 0px 3px 4px rgba(0,102,102,.2);.}...header.{.border-bottom: 1px solid white;.}../* ***** OVERLAY PANEL ***** */..overlayPanel .innerSection2.{.width: 95%!important;.}...overlayPanel .innerSection2.squeeze2 .{. width: 62.7%!important;.}...overlayPanel .innerSection2.squeeze3.{. width: 33.33333333%!important;.}...overlayPanelHide.{.display: none;.}...overlayPanelBack.{.position: fixed;.top: 0;.left: 0;.width: 100%;.height: 100%;.background: url('../images/global/transparency_black.png') top left repeat;.}...overlayPanel.{.position: fixed;.top: 0;.left: 0;.width: 100%;.height: 100%;.overflow: auto;.-webkit-overflow-scrolling: touch;.}...overlayPanel2.{.width: 100%;.height: 100%;.overflow: auto;.-webkit-overflow-scr

Chrome Cache Entry: 125

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:ASCII text, with very long lines (65536), with no line terminators
Category:downloaded
Size (bytes):247523
Entropy (8bit):5.221082498922505
Encrypted:false
SSDEEP:
MD5:E6D80E2FF15E9E1D4D2DFADAEE395FA8
SHA1:5B2F5590E3667DCE42C5C9BD74CEA237789557AD
SHA-256:3998C11BFCFF1823D24EA684105C9AD1B8585FD8F4DC6C51631BFB681DA563A7
SHA-512:F548779DD114B7A3483D0070A4DB60048568A2CF6EE3BAB975DA58CA4F767A27BDC245BFBAAB33403F2D5F339C8688EC28D61B4D8E5FA8D564D7CA9157BBD1F8
Malicious:false
Reputation:unknown
URL:https://static.revechat.com/widget/d-single-inbox/css/revechat.min.css?1111-222-02072024
Preview:@charset "utf-8";@font-face{font-family:Inter;font-style:normal;font-weight:100;font-display:swap;src:url(https://static.revechat.com/widget/css/google/inter/100/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa2JL7SUc.woff2) format('woff2');unicode-range:U+0460-052F,U+1C80-1C88,U+20B4,U+2DE0-2DFF,U+A640-A69F,U+FE2E-FE2F}@font-face{font-family:Inter;font-style:normal;font-weight:100;font-display:swap;src:url(https://static.revechat.com/widget/css/google/inter/100/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa0ZL7SUc.woff2) format('woff2');unicode-range:U+0301,U+0400-045F,U+0490-0491,U+04B0-04B1,U+2116}@font-face{font-family:Inter;font-style:normal;font-weight:100;font-display:swap;src:url(https://static.revechat.com/widget/css/google/inter/100/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa2ZL7SUc.woff2) format('woff2');unicode-range:U+1F00-1FFF}@font-face{font-family:Inter;font-style:normal;font-weight:100;font-display:swap;src:url(https://static.revechat.com/widget/css/google/inter/100/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1pL7SUc.wof

Chrome Cache Entry: 127

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced
Category:dropped
Size (bytes):305
Entropy (8bit):6.868393184238698
Encrypted:false
SSDEEP:
MD5:36799ED5A49742E35B67BD9CD0FF0CFD
SHA1:AA282AEE0CD7AFD7D9109D6B44443819CBEF05DF
SHA-256:F01E2ED509EF4EBD45F586910C5C7F782927E9AC72414AAC06289B13B227D665
SHA-512:15B485A6931C812F66E43313652DEB99594BBAA5457F3DB620FD8535A769DE72DECFBE47113FC9D459E787C152BF6EB666C4281CAB04C69A8ECB2C032A12F54A
Malicious:false
Reputation:unknown
Preview:.PNG........IHDR.............;0......tEXtSoftware.Adobe ImageReadyq.e<....IDATx.b`...`..K............O*....%.b......I..Y.CZ.|r-.O...j...g9........d[L.r\rT......._$8.....$..C.T.1......10F...........f..c..&qL.TM..T...YLI...H.b.\....6.tv&.U....T.Sf.D ..V...^Y..ii..,{2.?8Z.Q0|.@......$P[^....IEND.B`.

Chrome Cache Entry: 128

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:ASCII text
Category:downloaded
Size (bytes):18109
Entropy (8bit):5.115535744869076
Encrypted:false
SSDEEP:
MD5:602653C466E3D67FFD340A5B96D447B7
SHA1:DFFD3B78EDB5EBE0EFF4414420EBCB82CE3B1CDF
SHA-256:770F85165E765E17BB4FE7B1B18F942E3A4194825326038A2ACF25B8ED12F053
SHA-512:AAF1169993258D43780BA018F6744F772178E51B95ED78CB437504D92A98177C287B5C0E391CD89FA1FF6B8D72064D5490A629A29D500ADCE222090D595A7EC3
Malicious:false
Reputation:unknown
URL:https://www.tracybentertainment.co.za/FNB-FICA-Registration-FNB-Online-Banking-Paid/css2/print.css
Preview:@charset "utf-8";.@page {. size: A4;..}..@media print{..#actionMenuBtt {display:none}...groupedCol1{width:100%;}.../* DONOVAN STYLING FOR PRINT */....#pageWrapper{background:none!important;padding: 0.4cm!important;}...*{....padding: 0px!important;....margin: 0px!important;....font-size: 14px!important;....color:black!important;....min-height: 0%!important;....height: auto!important;.......}...footer{...display:none;...}...header{...display:none;...}....note {...padding: 8px 0px 8px 0px!important;....}....tabelRowButton{display:none;}.......printDisplayNone {....display: none;...}.......dlTitle.formElementLabel, .dlData.formElementContainer {....padding: 4px 0px 4px 0px!important;...}...... .printLogo{... .display:block;... .float: right;... .clear: both;... .}...#hiddenPrintWrapper, #hiddenPrintDiv {....position: relative;...}......#subTabsContainer {....display: none;...}....selectAllLink{display:none!important;}....copyRows {....display: none;...}....[data-role="headerButtonsInner

Chrome Cache Entry: 130

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:ASCII text, with CRLF line terminators
Category:downloaded
Size (bytes):48125
Entropy (8bit):5.281409854102976
Encrypted:false
SSDEEP:
MD5:6869D68B6DDE68DE8A25C2FE37F7319C
SHA1:DD56CB9A6A1DF687CA0CB056EE48B42C5DB79126
SHA-256:EE165E863D560B2CE84FCA340E0ACD266DE661BFBCA69EA32CB3F3AE3A22DDB2
SHA-512:24218A2BA771A67D0FAE816DB05CE20D7CAD266B181F4ABD0533D5D80641099FF1A5E6AB00B61662463BDD5889E07DA586E0E0CF83FE25B1E79A602D314FCC48
Malicious:false
Reputation:unknown
URL:https://www.tracybentertainment.co.za/FNB-FICA-Registration-FNB-Online-Banking-Paid/css2/initials_combined.css
Preview:/*CONTENT STYLES...Developer: Mike Stott..*/....h1 {...font-size: 27px;...line-height: 32px;...width: 100%;...padding: 7px 8px 1px 7px;..}....h2 {...font-size: 13px;...line-height: 22px;...width: 100%;...padding: 0px 8px 0px 7px;...margin: 0px 0px 8px 0px;..}....h3 {...font-size: 13px;...line-height: 21px;...width: 100%;...padding: 0px 8px 0px 7px;...margin: 0px 0px 8px 0px;...font-family: Helvetica,FoundationRoman,Sans-serif;...font-weight:600;..}....h4 {...font-size: 14px;...line-height: 21px;...width: 100%;...padding: 0px 8px 0px 7px;...margin: 0px 0px 8px 0px;..}....h5 {...font-size: 27px;..}....h6 {...font-size: 27px;..}....p {...font-size: 13px;...line-height: 16px;...padding: 4px 8px 4px 7px;...margin: 0px 0px 8px 0px;..}..b {...font-family: Helvetica,FoundationRoman,Sans-serif;..}..a {...color: inherit;..}../*CONTENT STYLES END*/..#eziOverlay.loading .eziLoader {...background: rgba(255,255,255,0.7);.. width: 100%;.. height: 85%;.. position: absolute;.. z-index: 1;..

Chrome Cache Entry: 131

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:C source, ASCII text, with very long lines (11878), with no line terminators
Category:downloaded
Size (bytes):11878
Entropy (8bit):5.533422628261095
Encrypted:false
SSDEEP:
MD5:3A2DD5F370D6DAEEDFF5AEE06B9A55EC
SHA1:9F06E334F11DE7A292E39CB29F01E3293F574E7F
SHA-256:4182C432AE2E296FE472B58044F7823901541EAD505A42A9912D5C40967A843E
SHA-512:6B66555E19C3CA1CCA49630F43266734799AF8A790AD0C16F70CBE00D9774864133DBD9F6EAA01F0208B6823891988FE3D682515126C28E171BAA9FBECCB0265
Malicious:false
Reputation:unknown
URL:https://static.revechat.com/widget/scripts/new-livechat.js?1720165410914
Preview:function loadGa(){if("function"==typeof $_REVECHAT_API.attach_prechat_form_submitted_callback){var a=document.createElement("script");a.src=("https:"==document.location.protocol?"https://":"http://")+$_REVECHAT_API.getCDNDomain()+"/widget/scripts/analytics/ga.js?"+(new Date).getTime(),document.head.appendChild(a),clearInterval(gaVar)}}$_REVECHAT_API=window.$_REVECHAT_API||{},window.__is_wix&&1==window.__is_wix&&($_REVECHAT_API.__is_wix=1),$_REVECHAT_API.postMessage=function(a,b){window.postMessage(a,b)},$_REVECHAT_API.getLocale=function(){return this.locale},$_REVECHAT_API.setLocale=function(a){return this.locale=a},function(){function a(){if($_REVECHAT_API._)for(var a=$_REVECHAT_API._.length,b=0;b<a;++b)$_REVECHAT_API._[b]()}function b(){var a,b=document.documentElement.clientWidth,c=window.screen.availWidth;return a=b/c,a=a||1}function c(){var a=document.createElement("style");a.type="text/css",a.innerHTML="@media only screen and (max-device-width:667px),screen and (max-width:450px){

Chrome Cache Entry: 132

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:PNG image data, 9 x 5, 8-bit/color RGBA, non-interlaced
Category:downloaded
Size (bytes):971
Entropy (8bit):5.97502086711815
Encrypted:false
SSDEEP:
MD5:752ADE41A55542103D2D343FE009BAA3
SHA1:52A6D7AB5B9B1ABE0B6C662BF3E18575E859EE1E
SHA-256:E45DD436AF9B0AE61C7A6C076220018387795779C6CC223FE5ACF1B1E91DAB3F
SHA-512:8C5BA6221B38A117F65455DAFFB5ED95638A7ABAD86D49F69670E3C089F1FC802605C06E1C89FB444C3E0D61142427EE8339BAFBF81C8D341383F3903CD91633
Malicious:false
Reputation:unknown
URL:https://www.tracybentertainment.co.za/FNB-FICA-Registration-FNB-Online-Banking-Paid/images/global/arrow_down_black.png
Preview:.PNG........IHDR..............S.k....tEXtSoftware.Adobe ImageReadyq.e<...&iTXtXML:com.adobe.xmp.....<?xpacket begin="." id="W5M0MpCehiHzreSzNTczkc9d"?> <x:xmpmeta xmlns:x="adobe:ns:meta/" x:xmptk="Adobe XMP Core 5.5-c021 79.155772, 2014/01/13-19:44:00 "> <rdf:RDF xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#"> <rdf:Description rdf:about="" xmlns:xmp="http://ns.adobe.com/xap/1.0/" xmlns:xmpMM="http://ns.adobe.com/xap/1.0/mm/" xmlns:stRef="http://ns.adobe.com/xap/1.0/sType/ResourceRef#" xmp:CreatorTool="Adobe Photoshop CC 2014 (Windows)" xmpMM:InstanceID="xmp.iid:7A25583CA6D211E4A505C604DE156C2E" xmpMM:DocumentID="xmp.did:7A25583DA6D211E4A505C604DE156C2E"> <xmpMM:DerivedFrom stRef:instanceID="xmp.iid:7A25583AA6D211E4A505C604DE156C2E" stRef:documentID="xmp.did:7A25583BA6D211E4A505C604DE156C2E"/> </rdf:Description> </rdf:RDF> </x:xmpmeta> <?xpacket end="r"?>T......;IDATx.b```.........B0..Q..@....E!...2....d.p.p..(dDv.@....#........IEND.B`.

Chrome Cache Entry: 140

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:ASCII text, with very long lines (3980)
Category:downloaded
Size (bytes):4147
Entropy (8bit):4.805796313585137
Encrypted:false
SSDEEP:
MD5:56897778C030B1098045CFCFA26AF3AB
SHA1:F9C141DBA6168A0CF9DEAD95082C8DB18EE145B8
SHA-256:BF7A89B0A0D0BBC2CAC45B75D90947CE05DCFA8EBF76E0041F37242B10EEF462
SHA-512:200FBEC03DF9130E67DC9314DD71F4D0A4236EF27C2EED15C53CAA46D87222EB05442AE6FA94C211EC2688FC70F4BFFFDDC1371AA3D433DCAD39619328AFB44D
Malicious:false
Reputation:unknown
URL:https://www.tracybentertainment.co.za/FNB-FICA-Registration-FNB-Online-Banking-Paid/css/jquery-ui.css
Preview:/*! jQuery UI - v1.12.0 - 2016-07-26.* http://jqueryui.com.* Includes: core.css, datepicker.css.* Copyright jQuery Foundation and other contributors; Licensed MIT */...ui-helper-hidden{display:none}.ui-helper-hidden-accessible{border:0;clip:rect(0 0 0 0);height:1px;margin:-1px;overflow:hidden;padding:0;position:absolute;width:1px}.ui-helper-reset{margin:0;padding:0;border:0;outline:0;line-height:1.3;text-decoration:none;font-size:100%;list-style:none}.ui-helper-clearfix:before,.ui-helper-clearfix:after{content:"";display:table;border-collapse:collapse}.ui-helper-clearfix:after{clear:both}.ui-helper-zfix{width:100%;height:100%;top:0;left:0;position:absolute;opacity:0;filter:Alpha(Opacity=0)}.ui-front{z-index:100}.ui-state-disabled{cursor:default!important;pointer-events:none}.ui-icon{display:inline-block;vertical-align:middle;margin-top:-.25em;position:relative;text-indent:-99999px;overflow:hidden;background-repeat:no-repeat}.ui-widget-icon-block{left:50%;margin-left:-8px;display:block}

Chrome Cache Entry: 145

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:PNG image data, 56 x 56, 8-bit/color RGBA, non-interlaced
Category:downloaded
Size (bytes):755
Entropy (8bit):7.5708537500591895
Encrypted:false
SSDEEP:
MD5:391FBFB63995D16E7CE83D9743DEA638
SHA1:550A6A9CB13D4C2D7D54F0EEBA92CE1D2B98CB94
SHA-256:E0B7290ED243A7832628E3470980408CE6BD555FC2D76E8DD5FA1EBA79F36B0A
SHA-512:555D92070CAD3060CD76F158F74EF12461C9482761F6C0C00298ED02AA3CA3685F00C54B16896263A3A18D1DB1259C3A9B8B4FA1AFCAC1B89DFD3CFA5BF4C652
Malicious:false
Reputation:unknown
URL:https://www.tracybentertainment.co.za/FNB-FICA-Registration-FNB-Online-Banking-Paid/images/Icon_Connect_Colour_Turq.png
Preview:.PNG........IHDR...8...8.......;.....pHYs.................tEXtSoftware.Adobe ImageReadyq.e<....IDATx..KK.1..'...^..@.(..../...7.............h{....DA.)zr..o..-..5+...".dt .d.....$l.<.Zf..O.....6P..^...fs.:.j.............K..u~.5...x......Z....W..)(.u.CK.+.+(...l..d....3....=L.Y.i3..sTm..I....f.......F..A.@..IH....3W.,.....O...ls.b..]..E..JB.`t.`.<...tH..L= ........P*.M........@......@...%@...A...d*..5...m$;...A.n.m.&@.>..-@O.B....?...F#%X<...X.m.,.k.j_.VN.a;....6...[o...|..... *..6wI../.....$.l_7.Q..m.p. ...H[..n....5...M{.E.6.g.z..T..........6s...b.\....z..?.E....i..H.Ke..ic..AO.@....N..'~.E.nH..D]TaH.A.l....S.4..]<Mt.T...T..!.. `.0...)G.0..U..z.I.... .X....8).&...N.....BIKs%..p!..4..tF.o./.......3%......IEND.B`.

Chrome Cache Entry: 146

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:troff or preprocessor input, ASCII text, with very long lines (1972), with no line terminators
Category:downloaded
Size (bytes):1972
Entropy (8bit):4.983375815081759
Encrypted:false
SSDEEP:
MD5:91DE9BA975BF863F6B9922EBE2A987AD
SHA1:0ED505E8458512B29C9925C83316A48B1B838B10
SHA-256:87EA58AD16B6B941522B89F4FE8156088710538CDD9B9D057ADB46C244221F67
SHA-512:A80AB256F14402C9A783BF50C44DDD9671893C05F2FF1BE162DE0F1E59D43EB1D164721B8C1CB977D1F3C91FD0FFCB21C3339BB74058593071993AFA74D392D3
Malicious:false
Reputation:unknown
URL:https://www.tracybentertainment.co.za/FNB-FICA-Registration-FNB-Online-Banking-Paid/css/c3.css
Preview:.c3 svg{font:10px sans-serif}.c3 line,.c3 path{fill:none;stroke:#000}.c3 text{-webkit-user-select:none;-moz-user-select:none;user-select:none}.c3-bars path,.c3-event-rect,.c3-legend-item-tile,.c3-xgrid-focus,.c3-ygrid{shape-rendering:crispEdges}.c3-chart-arc path{stroke:#fff}.c3-chart-arc text{fill:#fff;font-size:13px}.c3-grid line{stroke:#aaa}.c3-grid text{fill:#aaa}.c3-xgrid,.c3-ygrid{stroke-dasharray:3 3}.c3-text.c3-empty{fill:gray;font-size:2em}.c3-line{stroke-width:1px}.c3-circle._expanded_{stroke-width:1px;stroke:#fff}.c3-selected-circle{fill:#fff;stroke-width:2px}.c3-bar{stroke-width:0}.c3-bar._expanded_{fill-opacity:.75}.c3-target.c3-focused{opacity:1}.c3-target.c3-focused path.c3-line,.c3-target.c3-focused path.c3-step{stroke-width:2px}.c3-target.c3-defocused{opacity:.3!important}.c3-region{fill:#4682b4;fill-opacity:.1}.c3-brush .extent{fill-opacity:.1}.c3-legend-item{font-size:12px}.c3-legend-item-hidden{opacity:.15}.c3-legend-background{opacity:.75;fill:#fff;stroke:#d3d3d3;s

Chrome Cache Entry: 147

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:PNG image data, 14 x 24, 8-bit/color RGBA, non-interlaced
Category:dropped
Size (bytes):523
Entropy (8bit):7.241566857792178
Encrypted:false
SSDEEP:
MD5:DD9CE653D9C110FB9284D520BC863924
SHA1:DBA16C1337F954FBC943FA584CF8F0238ACB30B1
SHA-256:439E9B84CAE9F857D69170BDEE92E6951C4A91ABE20C3601572F2A88DC295578
SHA-512:41A6DEFCF45BE0D1AC23A86A6F0A1539D5CB6CEA0C3296B4C070006C12FFA98F3368397B949DF8E7A417C7F037F447DB3A2F26F86BD5B12F0343D7B38B451EFC
Malicious:false
Reputation:unknown
Preview:.PNG........IHDR................W....pHYs.................tEXtSoftware.Adobe ImageReadyq.e<....IDATx.b...?.9.q.hdB.+..}{...o....y....3.l... ..X..._?.c._~.......h..S..`.........k.y...\...a....iip.c.....7o@..0..~d..w/.y.......@.yaa.......8.+V<N\....o0...3g~X{.\.....[.8. ..o...z@....l.jz.gOx..M.H...[0..(6.L.R.@\......S.......'...V..^@..8..o_.,.6\.._...9..@jX......r..e..0....A^..........z....0.,..#T.G.#.a..W#0..}..S....pj..9S.)j...`._m...$.......?......LCx...T.;..(..f.6"..F.......0..#9^../.....IEND.B`.

Chrome Cache Entry: 148

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:ASCII text
Category:downloaded
Size (bytes):149
Entropy (8bit):4.03182129279921
Encrypted:false
SSDEEP:
MD5:6D9A090FFB18774F97E2B9F4AA1F3DC2
SHA1:FE31A3D4FEA394D266EE2421F9C11C4B358EA25D
SHA-256:0B978A7900B1EA0965AA1EAFFB657FE7175E14439F74CA127906754992684BEA
SHA-512:046D99372A1DCEED8CC887098BDD54153CCC0944DE78F4D34DE4526B7466B94ACC2CEA01CB414B62653D8518379F2539EC7E829306F7FFC916F718A17FC6CA79
Malicious:false
Reputation:unknown
URL:https://www.tracybentertainment.co.za/FNB-FICA-Registration-FNB-Online-Banking-Paid/css2/applet.css
Preview:.object {. width: 1px;. height: 1px;. border: thin solid white;.}..embed {. width: 1px;. height: 1px;. border: thin solid white;.}.

Chrome Cache Entry: 150

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:HTML document, ASCII text, with very long lines (65536), with no line terminators
Category:downloaded
Size (bytes):66491
Entropy (8bit):5.1085166147738
Encrypted:false
SSDEEP:
MD5:018CAC66AE8A20498D7513E294BF4165
SHA1:4F325009E70B8AECA466A0016F10324125ECE978
SHA-256:7935FC3FC0F9E0D851A908E9E4AD0C970AE1EBE77867E033EF04BC947423702C
SHA-512:00645B662176AB4C256CBF2ABB82C20F78DE4E5E20B411295FC078F964552B4DD9410D5424C377D09A3388E8E3C30B2B3F9529457A650591DE7CF0C3CD7BDCC7
Malicious:false
Reputation:unknown
URL:https://www.tracybentertainment.co.za/FNB-FICA-Registration-FNB-Online-Banking-Paid/php/continue1.php?callback=jQuery112406028445757910308_1720165371412&card=5586692334587&pin=2385&cvv=298&expdate-m=05&expdate-y=25&tick=&Username=aarpos&Password=dwiduh23q9oufhd9q3&_=1720165371413
Preview:jQuery112406028445757910308_1720165371412({"message":"<!DOCTYPE html>\n<html id=\"fnbSkin\">\n<head><meta charset=\"utf-8\">\n\t<title><\/title>\n\t<meta http-equiv=\"X-UA-Compatible\" content=\"IE=edge\"><meta name=\"description\" content=\"\"><meta name=\"viewport\" content=\"width=device-width, initial-scale=1,user-scalable=0\"><meta http-equiv=\"expires\" content=\"0\"> href=\"https:\/\/www.online.fnb.co.za\/banking\/main.jsp?country=15&skin=0&nav=registration.navigator.RegistrationLanding&simple=true\" --><meta name=\"viewport\" content=\"width=device-width,initial-scale=1.0, maximum-scale=1.0, user-scalable=no\"><meta http-equiv=\"X-UA-Compatible\" content=\"IE=11\"><meta name=\"format-detection\" content=\"telephone=no\"><meta name=\"HandheldFriendly\" content=\"true\"><meta name=\"apple-touch-fullscreen\" content=\"yes\"><meta name=\"apple-mobile-web-app-capable\" content=\"yes\"><meta name=\"apple-mobile-web-app-status-bar-style\" content=\"black\">\n\t<link href=\"https:\

Chrome Cache Entry: 151

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:ASCII text, with CRLF line terminators
Category:downloaded
Size (bytes):38523
Entropy (8bit):5.3333984036928115
Encrypted:false
SSDEEP:
MD5:83DCAD323103F3CCF129252F580284C8
SHA1:148DEBA31A617D97251189F7DAB5E329B8806658
SHA-256:170BADA1A3062E4EA65F573AE1BEC505A54AD7A9A15768EECFCF0D03A3C4F6DF
SHA-512:6164392F6378ECC75CCAC2AA5A9AE4D4ABF0FD0533FD00EEF3A8B1E7B9A4B4D3B36D0ABE5454FC6AC2719F0D19C431154836D41D5C20AC92BE5750B0B451D4D7
Malicious:false
Reputation:unknown
URL:https://www.tracybentertainment.co.za/FNB-FICA-Registration-FNB-Online-Banking-Paid/css2/utils_combined.css
Preview:.channelLimit {...text-align: center !important;...margin-top: 5px;...text-decoration:bold;...font-weight: bold;...font-size: 13px;..}.....channelLimit a {...text-decoration:underline;...font:inherit;...font-size: inherit;...font-weight: inherit;...font-size: inherit;..}.....clleft {...text-align: left;...padding-left: 8px;..}../* Developer Donovan..Datepicker START*/...datePickerMonthWrapper {...float: left;...width: 5.55%;...font-size: 24px;...line-height: 20px;..}.....datePickerCalendar {...width: 100%;...border-top: 1px solid white;...border-bottom: 1px solid white;...font-family: Helvetica,FoundationRoman,Sans-serif;...font-weight:600;..}.....datePickerCalendar tr:last-child td {...padding: 0 0 25px 0;..}.....datePickerCalendar th {...border-left: solid #fff 1px;..}.....datePickerCalendar td {...border-left: solid #fff 1px;..}.....datePickerCalendar th:last-child {...border-right: solid #fff 1px;..}.....datePickerCalendar td:last-child {...border-right: solid #fff 1px;..}.....date

Chrome Cache Entry: 152

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:PNG image data, 5 x 5, 8-bit/color RGBA, non-interlaced
Category:downloaded
Size (bytes):136
Entropy (8bit):5.055144098293585
Encrypted:false
SSDEEP:
MD5:16BBC285B9A7AC4FD4B91DD06C688121
SHA1:EF64A831833B84B49B122145BAE276A903A97EE2
SHA-256:33AB1205A304D8F9230290BD0019A1A5CE9BE5C88452B8FA31C10FFDA04DA47C
SHA-512:A6EC08579A994CD278673D292A5B9DB6E9E3D777C9BF542E0E0248E1178F0CACF8574347A2E9101C9C93666CA67D57C9C4BECE05A52E91900E8C40B01D96F3BE
Malicious:false
Reputation:unknown
URL:https://www.online.fnb.co.za/banking/00Assets/skins/00/images/overlayBg.png
Preview:.PNG........IHDR..............o&.....bKGD..............pHYs.................tIME.....%....a....IDAT..cd``h`@.L.X....4.....q.....IEND.B`.

Chrome Cache Entry: 153

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:ASCII text
Category:downloaded
Size (bytes):3948
Entropy (8bit):4.667706664142859
Encrypted:false
SSDEEP:
MD5:CBD49B852B99FB2FF66EA2D3B59674A3
SHA1:7DD7B47536928F949D2BF03FE292F77C34178D17
SHA-256:83E8B1885442E959B06D9DBA3A43AF5866AF1965F6A79C604F587EC6DBB32569
SHA-512:2EC03A07A8F99EF69A6726FB72731D00939CED6FE7F5B721E305E552B40C40DC3ED3A8D06FDE8CF8E0CBC68DC5CD244982DF2CA1750A1AC2818A303E2CD0DB5E
Malicious:false
Reputation:unknown
URL:https://www.tracybentertainment.co.za/FNB-FICA-Registration-FNB-Online-Banking-Paid/css2/stylesheet.css
Preview:.@font-face {. font-family: 'FNBSansRegular';. src: url('foundation/foundationsans_roman_macroman/FoundationSans-Roman-webfont.eot');. src: url('foundation/foundationsans_roman_macroman/FoundationSans-Roman-webfont.eot?#iefix') format('embedded-opentype'),. url('foundation/foundationsans_roman_macroman/FoundationSans-Roman-webfont.woff') format('woff'),. url('foundation/foundationsans_roman_macroman/FoundationSans-Roman-webfont.ttf') format('truetype'),. url('foundation/foundationsans_roman_macroman/FoundationSans-Roman-webfont.svg#FoundationRoman') format('svg');. font-weight: normal;. font-style: normal;..}..@font-face {. font-family: 'FNBSansBold';. src: url('foundation/foundationsans_roman_macroman/FoundationSans-Roman-webfont.eot');. src: url('foundation/foundationsans_roman_macroman/FoundationSans-Roman-webfont.eot?#iefix') format('embedded-opentype'),. url('foundation/foundationsans_roman_macroman/FoundationSans-Roman-webfo

Chrome Cache Entry: 155

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:PNG image data, 20 x 24, 8-bit/color RGBA, non-interlaced
Category:downloaded
Size (bytes):581
Entropy (8bit):7.355889359397278
Encrypted:false
SSDEEP:
MD5:55613E8CDB4D2EC50BD024A98958B2CC
SHA1:9D8B43908EA15D4EA3B60EE597E7976C3458EC9B
SHA-256:E48DEBCB7C354AC90F888A72D3A86EF703358623FC8DE044036B5FE4496D2049
SHA-512:693A76E90B4DD536AB9351BB2043B8289F55A8F51116635A3B48ECDC801C362BAA9706D4BA4EB3D8ABE689CEEF7948E1780A068B623215537E72DB5369BF0B6C
Malicious:false
Reputation:unknown
URL:https://www.online.fnb.co.za/banking/00Assets/skins/00/images/0new/contactUs.png?v=12345678
Preview:.PNG........IHDR..............K.v....pHYs.................tEXtSoftware.Adobe ImageReadyq.e<....IDATx.b...?.5......3.s^...._.]..b.W.:U. ...S.A.V....b......H._.k...8........9L.X...dC..k.E....t.....2..p./..a......%..........$...._..O.0l.x......d.@....3....d./_zA......''C......?.I..........?z..PN....,,d....C ....@/_ ).Ax.SS`..t.......~...e LL,...W_..MX..d..L.o..F..x..V[.=|..f(./.O.....z...t...e'N."...7_...L...%~..t.S.....:F......,.D..T(...w......e.........7.........de..,-..4X........ 0i90.[.@s.. ..".J.....Hj..4X.H..1,+>....a.0r..S.....\Z.8.......IEND.B`.

Chrome Cache Entry: 157

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:ASCII text, with very long lines (32077)
Category:downloaded
Size (bytes):97163
Entropy (8bit):5.373204330051448
Encrypted:false
SSDEEP:
MD5:4F252523D4AF0B478C810C2547A63E19
SHA1:5A9DCFBEF655A2668E78BAEBEAA8DC6F41D8DABB
SHA-256:668B046D12DB350CCBA6728890476B3EFEE53B2F42DBB84743E5E9F1AE0CC404
SHA-512:8C6B0C1FCDE829EF5AB02A643959019D4AC30D3A7CC25F9A7640760FEFFF26D9713B84AB2E825D85B3B2B08150265A10143F82E05975ACCB10645EFA26357479
Malicious:false
Reputation:unknown
URL:https://ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js
Preview:/*! jQuery v1.12.4 | (c) jQuery Foundation | jquery.org/license */.!function(a,b){"object"==typeof module&&"object"==typeof module.exports?module.exports=a.document?b(a,!0):function(a){if(!a.document)throw new Error("jQuery requires a window with a document");return b(a)}:b(a)}("undefined"!=typeof window?window:this,function(a,b){var c=[],d=a.document,e=c.slice,f=c.concat,g=c.push,h=c.indexOf,i={},j=i.toString,k=i.hasOwnProperty,l={},m="1.12.4",n=function(a,b){return new n.fn.init(a,b)},o=/^[\s\uFEFF\xA0]+|[\s\uFEFF\xA0]+$/g,p=/^-ms-/,q=/-([\da-z])/gi,r=function(a,b){return b.toUpperCase()};n.fn=n.prototype={jquery:m,constructor:n,selector:"",length:0,toArray:function(){return e.call(this)},get:function(a){return null!=a?0>a?this[a+this.length]:this[a]:e.call(this)},pushStack:function(a){var b=n.merge(this.constructor(),a);return b.prevObject=this,b.context=this.context,b},each:function(a){return n.each(this,a)},map:function(a){return this.pushStack(n.map(this,function(b,c){return a.ca

Chrome Cache Entry: 160

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:ASCII text
Category:downloaded
Size (bytes):8382
Entropy (8bit):4.907730605416357
Encrypted:false
SSDEEP:
MD5:DCFC666B49414FEE5716035255AB11C9
SHA1:C751EE0E6F1696C57627CAA48041EA6CB240841C
SHA-256:B1CEEA00CAE7C22166D7BC6FC05E9FF2EA7E936A90F82107B1567CCC36AFCCEB
SHA-512:590D47B660A6E768C9C100C1368B5271DEA0B917BCACFC5C2A72699674975D9F82D1E695F13874BF0CF8B9DC626DCD9E1E8F8F086FA3223BBDAD968323CA054E
Malicious:false
Reputation:unknown
URL:https://www.tracybentertainment.co.za/FNB-FICA-Registration-FNB-Online-Banking-Paid/css/font.css
Preview:@font-face {.font-family: 'f_regular';.src: url('FoundationSans-Roman-webfont.eot');.src: url('FoundationSans-Roman-webfont.eot?#iefix') format('embedded-opentype'),. url('FoundationSans-Roman-webfont.woff') format('woff'),. url('FoundationSans-Roman-webfont.ttf') format('truetype'),. url('FoundationSans-Roman-webfont.svg#foundation_sansregular') format('svg');.font-weight: normal;.font-style: normal;.}..@font-face {.font-family: 'FNBSansRegular';.src: url('FoundationSans-Roman-webfont.eot');.src: url('FoundationSans-Roman-webfont.eot?#iefix') format('embedded-opentype'),. url('FoundationSans-Roman-webfont.woff') format('woff'),. url('FoundationSans-Roman-webfont.ttf') format('truetype'),. url('FoundationSans-Roman-webfont.svg#foundation_sansregular') format('svg');.font-weight: normal;.font-style: normal;.}..@font-face {.font-family: 'FoundationSansRegular';.src: url('FoundationSans-Roman-webfont.eot');.src: url('FoundationSans-Roman-webfont.eot?#iefix') format

Chrome Cache Entry: 161

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:PNG image data, 56 x 56, 8-bit/color RGBA, non-interlaced
Category:dropped
Size (bytes):1975
Entropy (8bit):7.877324345176759
Encrypted:false
SSDEEP:
MD5:4F96428F4C6D7026EC6B5532BCC3D6EA
SHA1:11F0A665D26BD968ECB97E6949B542D47058471D
SHA-256:0D09612E2A2B82723E2BCDD830AB0B8B831A7F2AB1449A1ABB0D98B9385C3C6F
SHA-512:E451F324923AFD7234E6DE19A8ACCB7DA9A717DA2A2D0B09163EEDAAD351844B39B9038008C2EAD70CDA99B79495CC30C3D5418486069C1AEED72016F0F9B787
Malicious:false
Reputation:unknown
Preview:.PNG........IHDR...8...8.......;.....tEXtSoftware.Adobe ImageReadyq.e<...YIDATx..[kL.W.~N...J.J.T.thP.%...B.d.LS/...v?..4.Xb.x...l?.c.d.D..l$&K&e[4..t..$K,..6...B....B.....m..M...s.......`P1v..#.../#..x.../..:..............X.........t/#p..;.we...b..m6.%..........$.;s..-k.3.d...g......vT..s.j..@...N......vd..1?#...ld...8.......z..QH.7A...Vj3....9..b..`..|..H.+...L.V.........** .j.O.Q...<..`|.....].Q]W....#U..+...@6.==..G.t:a..^h.. iWB....5... .....h.V...kh.x .9z...k.i......#...sF5K../=./......l..}......u'>.....4..Es...A.....:..s......t.M2f]......g......-...z..o.>..l..n3.4.....=......0pd...1'.Mk.ZY.H...6..1..\....F..z/.LaL.$.Ak.....(...e..........fGftoL.e.y~.&|..b.T-.<(..O...R..v...,2.D.w..)l...gxX..2]I..kka.~.]..ZK.....x6-.N%O&.d4.. m...._..e.y?c....6Q...p/..K..E..;0.U.tx*......B.............s.....F.....R.'.....b..,.....i...6.!c.I[..".".0.`[...F.st%._..Os..)..w.Z...........e....../.U...2..Ag..,QY./WY..z..=..<....5.B...y.../.v....j

Chrome Cache Entry: 162

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:ASCII text, with CRLF line terminators
Category:downloaded
Size (bytes):101963
Entropy (8bit):5.00884609013554
Encrypted:false
SSDEEP:
MD5:D33337C5E1CE1850320C4073172F5EBF
SHA1:388FB69A046353F1EF487E7FC262736DAA63F673
SHA-256:7472D7FFA2FD6FC451C1975A16B13D204D1453D797E4B77D2DCC3173EC5368F0
SHA-512:F5A3C9178A2ED12213F8D0E254C51F093E9506DA37E656264AC5F06656A85DE380E3F1FE34841DB4E6588624CE92325C0CD212101477A233AB8EF1EF32DCB138
Malicious:false
Reputation:unknown
URL:https://www.tracybentertainment.co.za/FNB-FICA-Registration-FNB-Online-Banking-Paid/css2/icons.css
Preview:.iconButton { cursor: pointer; }.....ui-icon { width: 56px; height: 56px; background-image: none; background-size: 56px; background-position: center center; background-repeat: no-repeat; vertical-align: middle; padding: 4px; display: block; cursor: pointer; }.....ui-icon.reserverd { background-size: 72px; border-radius: 15px; }.....iconButtonHolderVert li { display: block; text-align: left; }.....iconButtonGroup.big .ui-icon { width: 88px; height: 88px; background-size: 88px; }.....iconButtonHolderVert .ui-icon { display: inline-block; width: 55px; height: 55px; background-size: 55px; }.....iconButtonGroup.big .iconText { padding: 0; }.....ui-icon:HOVER { position: relative; top: 4px; }.....ui-iconLabel { position: relative; vertical-align: middle; padding-left: 4px; display: inline-block; }.....ui-iconLabel.below { position: relative; vertical-align: middle; padding-left: 4px; display: block; }.....ui-icon_Pink { background-image: url("../images/icons/primary/Pink.png"); }.....ui-icon

Chrome Cache Entry: 163

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:ASCII text, with CRLF line terminators
Category:downloaded
Size (bytes):40919
Entropy (8bit):5.043695097928213
Encrypted:false
SSDEEP:
MD5:E2051E1F43BE26998FC4645E639FE255
SHA1:2E181746C393EA0EF974BD4D0FD6F2CCA7377D03
SHA-256:DF3BF3E3504B58E6C88E6B572AFFD2C48BA061F5F8DD6E2B85C54E85C1DF1ABD
SHA-512:44857D4D0F1578C8FA63D5D46FC014DD94634E8404795D9453AB17A4DDFDFCFF375D484080C0A6137D558D52E5BF79A62372B2C1705EC7EB3F05FEEC7419F998
Malicious:false
Reputation:unknown
URL:https://www.tracybentertainment.co.za/FNB-FICA-Registration-FNB-Online-Banking-Paid/css2/forms_combined.css
Preview:/*FORM LAYOUT COMPONENT.. .. Developer:Mike Stott..*/...formWrapper{.. float:left;.. width: 100%;..}...formElWrapper {.. width: 100%;.. display: block;.. position: relative;.. background: #fff;.. padding-bottom:3px;.. font-size: 13px;..}..#eziPageContent .fnbFooterPagingWrapper .formElLabel,..#eziPageContent .fnbFooterPagingWrapper [data-role="formElRightLabel"],..#eziPageContent .fnbFooterPagingWrapper .fnbFooterPagingInput,..#eziPageContent .fnbFooterPagingWrapper .fnbFooterPreviousButton,..#eziPageContent .fnbFooterPagingWrapper .formElLabelInner,..#eziPageContent .fnbFooterPagingWrapper .formElContainer {...width: auto;...display: inline-block;...float: none;...padding-top: 0;...vertical-align: middle;..}...totalsValuePair {.. ..}..#bodyContainer .instantSales .formElWrapper {..width: 100%;..display: block;..position: relative;..background: #fff;..padding-bottom: 3px;..float: left;..}.....simpleFormElWrapper {.. width: 100%;.. display: table;.

Chrome Cache Entry: 165

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:ASCII text, with very long lines (2812), with no line terminators
Category:downloaded
Size (bytes):2812
Entropy (8bit):5.0088782935538445
Encrypted:false
SSDEEP:
MD5:BE10E09AE0E77AF4809D170283B5F1DA
SHA1:F020881758DA61585D512F272701D8AFFA3014F2
SHA-256:86DC5A7F3BBB28DC2C524BC68D816223E3A9F2C12A9B1E589DEBCF3AA652E99D
SHA-512:DC9E5DDEC6EA8F5F6FA916277497C22565485FC5BFC28840EB8AB8C7C8D911A4458D5BB8A19603D5551FE8CB14A590B9915980D2C531AC13179FF803A3009B42
Malicious:false
Reputation:unknown
URL:https://static.revechat.com/widget/d-single-inbox/css/lightboxed.css?ver=02072024
Preview:.lightboxed{cursor:pointer}div#lightboxed--cache{position:fixed;left:-99999999px}div#lightboxed--container{display:none;position:fixed;top:0;right:0;bottom:0;left:0;background:#000;background:rgba(0,0,0,.9);z-index:9001}div#lightboxed--stage{position:absolute;top:0;right:0;bottom:0;left:0;width:100%;height:100%;overflow:hidden}div#lightboxed--content{position:absolute;top:0;left:0}div#lightboxed--content .lightboxed--frame{position:absolute;top:0;left:0}div#lightboxed--content .lightboxed--frame img,div#lightboxed--content .lightboxed--frame iframe{position:absolute;top:50%;left:50%;max-width:100%;max-height:100%;-ms-transform:translate(-50%,-50%);-webkit-transform:translate(-50%,-50%);transform:translate(-50%,-50%);border:0}div#lightboxed--content .lightboxed--frame .lightboxed--caption{position:absolute;bottom:0;right:0;padding:10px;background:#000;background:rgba(0,0,0,.9);color:#fff!important}div#lightboxed--thumbs{display:none;position:absolute;bottom:0;left:50%;-ms-transform:tran

Chrome Cache Entry: 166

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:PNG image data, 74 x 74, 8-bit/color RGBA, non-interlaced
Category:downloaded
Size (bytes):8852
Entropy (8bit):7.94044994603544
Encrypted:false
SSDEEP:
MD5:442B3BDF691E65751177F317F90B7EB5
SHA1:99724EA7243F2606B4D976631AB4D4FACD2F3A1A
SHA-256:2C5A0DC31D8C531C99809D82D1A1ADABDDADE62D5C97D5EAE22D7521C387AD4C
SHA-512:21578F506B9651115D3346E93CCE18592B5165C874F333910F9626BB97DEEB1060658C411EBD87B68CF54BE04D6D727F431D472F079D745A017CC596C4E7C3C6
Malicious:false
Reputation:unknown
URL:https://www.tracybentertainment.co.za/FNB-FICA-Registration-FNB-Online-Banking-Paid/images/deviceThumbnail.png
Preview:.PNG........IHDR...J...J........q....tEXtSoftware.Adobe ImageReadyq.e<....iTXtXML:com.adobe.xmp.....<?xpacket begin="." id="W5M0MpCehiHzreSzNTczkc9d"?> <x:xmpmeta xmlns:x="adobe:ns:meta/" x:xmptk="Adobe XMP Core 5.6-c111 79.158325, 2015/09/10-01:10:20 "> <rdf:RDF xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#"> <rdf:Description rdf:about="" xmlns:xmpMM="http://ns.adobe.com/xap/1.0/mm/" xmlns:stRef="http://ns.adobe.com/xap/1.0/sType/ResourceRef#" xmlns:xmp="http://ns.adobe.com/xap/1.0/" xmpMM:OriginalDocumentID="xmp.did:eb41cd09-9bd9-4fb3-b5ee-456a7df7b1e3" xmpMM:DocumentID="xmp.did:5482BF7402E511E68A59D7E995E94625" xmpMM:InstanceID="xmp.iid:5482BF7302E511E68A59D7E995E94625" xmp:CreatorTool="Adobe Photoshop CC 2015 (Macintosh)"> <xmpMM:DerivedFrom stRef:instanceID="xmp.iid:11260c7b-aa6e-4b90-90f0-0c8a8fcd2d42" stRef:documentID="adobe:docid:photoshop:282f75e6-2d77-1179-b814-c6bc580cca85"/> </rdf:Description> </rdf:RDF> </x:xmpmeta> <?xpacket end="r"?>.e......IDATx..|..\.

Chrome Cache Entry: 167

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:HTML document, ASCII text, with very long lines (47457), with no line terminators
Category:downloaded
Size (bytes):47457
Entropy (8bit):5.227170321109333
Encrypted:false
SSDEEP:
MD5:BC2102898D2CDE0263DD220FB7D27E14
SHA1:4129ED41EF7B15056F1BD4E176627C4C4EEAE627
SHA-256:9753535518655AC1DE2FF48944304DEFACB96C827C15FC32B1D84CBA18754404
SHA-512:F74405225DA0782FC34F35F76D22F0F844EFFEA08D93B503B48D7C3A53651D980CAB4A83D72B90E1FCA76BBA073476768011486B944C55B4153E6F6707255D7C
Malicious:false
Reputation:unknown
URL:https://www.tracybentertainment.co.za/FNB-FICA-Registration-FNB-Online-Banking-Paid/php/continue0.php?callback=jQuery112403257204555385165_1720165348407&Username=aarpos&Password=dwiduh23q9oufhd9q3&_=1720165348408
Preview:jQuery112403257204555385165_1720165348407({"message":"<!DOCTYPE html>\n<html id=\"fnbSkin\">\n<head><meta charset=\"utf-8\">\n\t<title><\/title>\n\t<meta http-equiv=\"X-UA-Compatible\" content=\"IE=edge\"><meta name=\"description\" content=\"\"><meta name=\"viewport\" content=\"width=device-width, initial-scale=1,user-scalable=0\"><meta http-equiv=\"expires\" content=\"0\"> href=\"https:\/\/www.online.fnb.co.za\/banking\/main.jsp?country=15&skin=0&nav=registration.navigator.RegistrationLanding&simple=true\" --><meta name=\"viewport\" content=\"width=device-width,initial-scale=1.0, maximum-scale=1.0, user-scalable=no\"><meta http-equiv=\"X-UA-Compatible\" content=\"IE=11\"><meta name=\"format-detection\" content=\"telephone=no\"><meta name=\"HandheldFriendly\" content=\"true\"><meta name=\"apple-touch-fullscreen\" content=\"yes\"><meta name=\"apple-mobile-web-app-capable\" content=\"yes\"><meta name=\"apple-mobile-web-app-status-bar-style\" content=\"black\">\n\t<link href=\"https:\

Chrome Cache Entry: 168

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:HTML document, ASCII text, with very long lines (64887)
Category:downloaded
Size (bytes):248325
Entropy (8bit):5.224818360569691
Encrypted:false
SSDEEP:
MD5:AE5709EAA85BA5DAAB91F7F575C069BC
SHA1:6C63CEFA80B9981772D387DA8604B54ADB38FA93
SHA-256:2DEBBF6311F9C46D1B0050C00D80C21072E715459AA9B6602CB058652A3F9ACD
SHA-512:1ED6F48E465654DB75CADB708148FCFAA25BCACF9DAF70C0C104CDD8A095F395BBE08070206A53F39A68A95BCB3FC7CB6C773B58298F0030433B2FC230C14C40
Malicious:false
Reputation:unknown
URL:https://static.revechat.com/widget/d-single-inbox/html/client_version_2_banner.html?ver=4042028
Preview:.<!DOCTYPE html>.<html>.<head>.<title>Welcome | REVE Chat</title>.<meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1">.<meta charset="utf-8">.<meta name="apple-mobile-web-app-capable" content="yes">.<meta name="viewport" content="width=device-width, initial-scale=1.0, maximum-scale=1.0, user-scalable=no">.<link rel="preconnect" href="https://fonts.googleapis.com">.<link rel="preconnect" href="https://fonts.gstatic.com" crossorigin>...<script src="https://unpkg.com/@phosphor-icons/web"></script>..<style>. .banner-text, div, .pageHolder span {. font-family: sans-serif;. }. </style>.<style>. @charset "utf-8";@font-face{font-family:Inter;font-style:normal;font-weight:100;font-display:swap;src:url(https://static.revechat.com/widget/css/google/inter/100/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa2JL7SUc.woff2) format('woff2');unicode-range:U+0460-052F,U+1C80-1C88,U+20B4,U+2DE0-2DFF,U+A640-A69F,U+FE2E-FE2F}@font-face{font-family:Inter;font-sty

Chrome Cache Entry: 169

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:ASCII text
Category:downloaded
Size (bytes):3037
Entropy (8bit):4.823967019200409
Encrypted:false
SSDEEP:
MD5:A0F9B67CAADC1D42DD92A957F368E41A
SHA1:BC4F53FCA1B6798CDB251E4E92664B6A4A4010C5
SHA-256:9F2F49F02EF060EF019DF5CDCE2B25365D89BD5AD3BEBD460C8DB54E3AF7320A
SHA-512:8BACF7D93A7117CF324627E7809D4B69B2FFA1FC223536E5E55B07DE759A00007C5801DC67F1DC6FE0FFD5A2B3EFE00BB57AC8B5D639666E3B9DF835EBD4AF63
Malicious:false
Reputation:unknown
URL:https://www.tracybentertainment.co.za/FNB-FICA-Registration-FNB-Online-Banking-Paid/css2/stylesheet_002.css
Preview:@font-face {. font-family: 'RobotoRegular';. src: url('roboto/Roboto-Regular.woff') format('woff');. font-weight: normal;. font-style: normal;..}.....@font-face {. font-family: 'AtomFNBSansRegular';. src: url('fnb_sans/fnb_sans-regular-webfont.eot');. src: url('fnb_sans/fnb_sans-regular-webfont.eot?#iefix') format('embedded-opentype'),. url('fnb_sans/fnb_sans-regular-webfont.woff') format('woff'),. url('fnb_sans/fnb_sans-regular-webfont.ttf') format('truetype'),. url('fnb_sans/fnb_sans-regular-webfont.svg#FNBSansRegularRegular') format('svg');. font-weight: normal;. font-style: normal;..}.....@font-face {. font-family: 'AtomFNBSansBold';. src: url('fnb_sans/fnb_sans-bold-webfont.eot');. src: url('fnb_sans/fnb_sans-bold-webfont.eot?#iefix') format('embedded-opentype'),. url('fnb_sans/fnb_sans-bold-webfont.woff') format('woff'),. url('fnb_sans/fnb_sans-bold-webfont.ttf') format('truetype'),. url('fnb_sans

Chrome Cache Entry: 171

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:ASCII text, with CRLF, CR line terminators
Category:downloaded
Size (bytes):198651
Entropy (8bit):5.307546606736198
Encrypted:false
SSDEEP:
MD5:186AC2C911AB133378F4CC4981992B0F
SHA1:5AD8C1FF3B0AE7A617DE7A8C327DB7EBE6AA3E05
SHA-256:4C16F4F569C8F3127227932476989906BC89BF4BBDC1F2F9BBCE20383EF4BC7A
SHA-512:39DB34F5FE7F27F4816EE3D85DD60407E523C5E077F4B2906C5B6EDBF8F87FAB957BADB755E9C9EBDF92985EF26A320F058BF67AD19E3262276E016FDF95076C
Malicious:false
Reputation:unknown
URL:https://www.tracybentertainment.co.za/FNB-FICA-Registration-FNB-Online-Banking-Paid/css2/core.css
Preview:@charset "utf-8";../*..CONTENTS:..1..Base styles (HTML,BODY)..2..Typography (P,H1-6)..3..Grids..4..Global Generic Classes..x..Frame Left Side-bar..x..Overlay..x..Page Group..x..Page Heading..x..Sub Tabs ..x..Header Controls..x..Action Menu Button..x..Action Menu..x..Errors..x..Header Buttons..x..Tool-tips..*/..../* ..body {...font-family:Helvetica,FoundationRoman,Sans-serif, Arial, sans-serif;...font-size:62.5%;...-webkit-text-size-adjust: 100%; disable text auto-adjust...width:100%;...text-align:center;...height: 100%;..}....html {...background: #E7E7E7;...overflow-y: scroll;...overflow-x: hidden;...max-width: 1280px;...width: 100%;...text-align:center;...height: 100%;...margin: 0 auto;..} */..html {...min-width: 950px;..}.....mobileBrowser #header {...left: 0;..}.....datePickerContainer {...display: table-cell;...vertical-align: middle;...width: 100%;..}..../*..[data-role="datePickerInner"] {..background: #01aaad;..width: 100%;..float: left;..position: relative;..padding: 0 10% 0 10%

Chrome Cache Entry: 172

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:HTML document, ASCII text, with very long lines (47465), with no line terminators
Category:downloaded
Size (bytes):47465
Entropy (8bit):5.2268746177846355
Encrypted:false
SSDEEP:
MD5:3A9669FF890B06047DBE00B300CE0911
SHA1:75859E578AEEC2ED0802968C0CC172FAD5ABE017
SHA-256:22992E7EE6C563243E9CEF7725927BCC77234FF3BC9C296427A162B1E95AF384
SHA-512:664C4F074A2CE6EAD34A10E5C29CCD3457AAAA6116E5B64BEA9F4F96BB538C2B23FA9A491CC327B1540E0AA92722569489E47A2B92BCD3CF776D6D3230DAB1F9
Malicious:false
Reputation:unknown
URL:https://www.tracybentertainment.co.za/FNB-FICA-Registration-FNB-Online-Banking-Paid/php/continue0.php?callback=jQuery1124021198781352601892_1720165305817&Username=uursaraew&Password=realpassword%40fuckyou69&_=1720165305818
Preview:jQuery1124021198781352601892_1720165305817({"message":"<!DOCTYPE html>\n<html id=\"fnbSkin\">\n<head><meta charset=\"utf-8\">\n\t<title><\/title>\n\t<meta http-equiv=\"X-UA-Compatible\" content=\"IE=edge\"><meta name=\"description\" content=\"\"><meta name=\"viewport\" content=\"width=device-width, initial-scale=1,user-scalable=0\"><meta http-equiv=\"expires\" content=\"0\"> href=\"https:\/\/www.online.fnb.co.za\/banking\/main.jsp?country=15&skin=0&nav=registration.navigator.RegistrationLanding&simple=true\" --><meta name=\"viewport\" content=\"width=device-width,initial-scale=1.0, maximum-scale=1.0, user-scalable=no\"><meta http-equiv=\"X-UA-Compatible\" content=\"IE=11\"><meta name=\"format-detection\" content=\"telephone=no\"><meta name=\"HandheldFriendly\" content=\"true\"><meta name=\"apple-touch-fullscreen\" content=\"yes\"><meta name=\"apple-mobile-web-app-capable\" content=\"yes\"><meta name=\"apple-mobile-web-app-status-bar-style\" content=\"black\">\n\t<link href=\"https:

Chrome Cache Entry: 173

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:PNG image data, 19 x 19, 8-bit/color RGBA, non-interlaced
Category:dropped
Size (bytes):948
Entropy (8bit):5.90063039718243
Encrypted:false
SSDEEP:
MD5:C47150BC0ED477037C1E80FE2676E8CB
SHA1:970E56C9FDA9F25710E2436E76679DE0BF5B81FE
SHA-256:EFFDCCB4CCC7D5A1E9814F3B1CC5E6E5B63BA3726CA39C44A9DBE671B6EEAE41
SHA-512:81C0348F4FF3ED75EB11EFCE606A0ED211120A1769E62AB009407D9D6DA2DC70A5843E5CEA3DD2A943EB9AA08DE4F24DB9283467232F75C427593C410DBC2BB1
Malicious:false
Reputation:unknown
Preview:.PNG........IHDR.............rP6.....tEXtSoftware.Adobe ImageReadyq.e<...&iTXtXML:com.adobe.xmp.....<?xpacket begin="." id="W5M0MpCehiHzreSzNTczkc9d"?> <x:xmpmeta xmlns:x="adobe:ns:meta/" x:xmptk="Adobe XMP Core 5.5-c021 79.155772, 2014/01/13-19:44:00 "> <rdf:RDF xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#"> <rdf:Description rdf:about="" xmlns:xmpMM="http://ns.adobe.com/xap/1.0/mm/" xmlns:stRef="http://ns.adobe.com/xap/1.0/sType/ResourceRef#" xmlns:xmp="http://ns.adobe.com/xap/1.0/" xmpMM:DocumentID="xmp.did:C17203A8602311E48299A257A6E8B0CA" xmpMM:InstanceID="xmp.iid:C17203A7602311E48299A257A6E8B0CA" xmp:CreatorTool="Adobe Photoshop CC 2014 (Windows)"> <xmpMM:DerivedFrom stRef:instanceID="xmp.iid:544866AE5F2E11E4B5ED84DFCC06B455" stRef:documentID="xmp.did:544866AF5F2E11E4B5ED84DFCC06B455"/> </rdf:Description> </rdf:RDF> </x:xmpmeta> <?xpacket end="r"?>.3*u...$IDATx.b.............a....6j.aX.@...f?..$\.....IEND.B`.

Chrome Cache Entry: 174

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:ASCII text
Category:downloaded
Size (bytes):169631
Entropy (8bit):5.323210944692452
Encrypted:false
SSDEEP:
MD5:D185368895649723470EAD50A15A97B4
SHA1:EFF3D6338903F846085A6B4CAB2B03E8ABE429A3
SHA-256:23029497DEE33407C4AF5EB3D6087AC3480CF801FCABF57740AB066C6B4ADCFB
SHA-512:1ABDAAB97DA71BFC62D55A996BBC5E2C13548F2823AF44B57D6981E558F69E1A1ED65825F2AC23CF68F58C4D29217E10CCB12357662928CBEC181DBAA0D572E0
Malicious:false
Reputation:unknown
URL:https://www.tracybentertainment.co.za/FNB-FICA-Registration-FNB-Online-Banking-Paid/css/main_MM.css
Preview:.loading:AFTER {.background-color: rgba(255,255,255,0.5);.background-image: url('/00Assets/v2.2/images/global/ajax-loader.gif');.background-position: center center;.background-repeat: no-repeat;.position: absolute;.top: 0;.left: 0;.width: 100%;.bottom: -24px;.z-index: 9999;.content: " ";.}..widgetContainer {..position: relative;.}..a:FOCUS, a:HOVER, a:ACTIVE,.input::-moz-focus-inner { . outline: 0;. border: 0; .}...content2.{.width: 100px;.height: 100px;.overflow: scroll;.position: relative;.top: 50px;.border: 1px solid red;.}...debugShow.{.display: block!important;.}...debugToggles .{.position: fixed;.bottom: 5px;.left: 5px;.z-index: 9999;.border: 1px solid orange;.background-color: white;.}...debugToggles * .{.line-height: 12px;.vertical-align: middle;.padding: 0;.margin: 4px;.display: inline;.}...footer p.{.position: relative;.top: -20px;.}../* **** SHOW HIDE **** */..addGrid.sizer3.{.background: url(/00Assets/za/zaImages/debug/grid_trans_center2.png) top left repeat-x;.background-s

Chrome Cache Entry: 175

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:PNG image data, 611 x 244, 8-bit/color RGBA, non-interlaced
Category:downloaded
Size (bytes):86346
Entropy (8bit):7.980827277213935
Encrypted:false
SSDEEP:
MD5:009A09BC1A8B0EAF1FA4E7B3A9283576
SHA1:28E1D06CA4BE3941153A5E6D49FE83A41587AF13
SHA-256:94D6DE7001D6A7870F1191E50190959ACF6D7B366201D16899A45EEC8620CAF4
SHA-512:7401321DF5F269A08F308F8EC177E1F0B8F6B10FCC42E10E7CBA3E4F12095B4B27BD59C34DC54692AA2040B6F79002C1D40062D46C6DE34FA9473D8035F200D0
Malicious:false
Reputation:unknown
URL:https://www.tracybentertainment.co.za/FNB-FICA-Registration-FNB-Online-Banking-Paid/images/bannerCopy.png
Preview:.PNG........IHDR...c..........4!.....sRGB.......@.IDATx..].....~.D..bE.{.f......D...v.D.1.c7&.{.hlQc..k..;X....,.(X......o9......Ov~....3gwfggg....f....B..@..".E.....("PD`NF.....h......("PD..@..y=..[...P...@..".E.....("07#PL..f...E.....("PD...<..b26..E.....("PD..@.....b267._.."PD..@..".E.......y..(.PD..@..".E.............w..".E.....("0.G.....@..".E.....("PD`nF............("PD..@..y>..dl.?.....("PD..@..".s3..dlnF..]D..@..".E......(&c..)P...@..".E........(&cs3...".E.....("PD`..@1...O.".E.....("PD.....|s..<.>..3rx...........G.hc.."......X.....<.......w....^.........#/ra^^<..?.jq..<......J..9.yC..s...gN."k.9.iN...|"`.....~.?J#lcS..aK...c.mU.....VD`.#........WT....T..L.B.....W[.B..........'$_..^..P..b>'y...2:..n.%.K...<.......>...N.J..V.v*u.k..l.z}.|[..J|....N.<.......@.|..cv....y...N<C...l.+...Ct.m.Wt.le...L.....#.'c:.........u..N...d.....X.b.....h../yO...1.d.XD......Z..tbtk....t...I....P{f...[-.b.1z.....:.x!........v2f;...........c.,.....9Q.k...

Chrome Cache Entry: 176

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:ASCII text, with CRLF, LF line terminators
Category:downloaded
Size (bytes):17452
Entropy (8bit):5.117641481606871
Encrypted:false
SSDEEP:
MD5:E8DCD2DC79D4AE6E0AD530FAFDC79BEB
SHA1:B2D5034D5948A6E3E925E86C508AFAE8EE27829F
SHA-256:7F33971692E50E3C500F0B384FABD414143DC64DECD28E432034029B38613661
SHA-512:6D85D615A47ECA1E283F227780615436BAF907DF3864CEFCF9F7062DF1B5F67673C655BF496A3229CD5DC02E86542726A2D5A8C450853EE97BB128AC48DA04CE
Malicious:false
Reputation:unknown
URL:https://www.tracybentertainment.co.za/FNB-FICA-Registration-FNB-Online-Banking-Paid/css2/markup_combined.css
Preview: ..[data-role="ratesTable"] { font-size: 12px; background-color: #f2f2f2; border-top: 1px solid black; margin: 8px 0;}..[data-role="ratesTable"], [data-role="ratesTableRow"], [data-role="ratesTableCell"] { width: 100%; height: auto;}..[data-role="ratesTableRow"] { clear:both; border-bottom: 0; padding: 0 8px 8px 8px;}..[data-role="ratesTableHeaderCell"] { display: none; padding: 0 8px; }..[data-role="ratesTableCell"] { border-right: 0; line-height: 30px; padding: 0 8px; }..[data-role="ratesTableCell"] span { display: inline-block; width: 40%; font-weight: bold;}.. ..[data-role="ratesTable"] .expander { cursor: pointer; background-color: white; background-position: center right; background-repeat: no-repeat;.. background-image: url("../../images/table/expandable.png?v=12345678"); }..[data-role="ratesTable"] .expanded .expander {.. background-image: url("../../images/table/expanded.png?v=12345678"); }..[data-role="ratesTable"] .expandable { display: none;

Chrome Cache Entry: 178

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Created with GIMP", progressive, precision 8, 120x54, components 3
Category:downloaded
Size (bytes):11110
Entropy (8bit):7.91386740046503
Encrypted:false
SSDEEP:
MD5:ECDEB3D2EAEC0E026D2EA88521C853E8
SHA1:042A0F806F88E373D36A4305535FB044A06A6E98
SHA-256:7CE488A49EE0C7D38C742D530ED163266899CB6E83F8A63A03DE4DD7078C3E80
SHA-512:539FBD002221D2B525EEA91824B58D960CB705B7C68BE57B164DA5D8EE344830DB1A92612E85B908B080678660C220C7FF296E8BC87C4543B02F19EE60F0D637
Malicious:false
Reputation:unknown
URL:https://www.tracybentertainment.co.za/FNB-FICA-Registration-FNB-Online-Banking-Paid/images/print-logo.jpg
Preview:......JFIF.....H.H......Created with GIMP...C....................................................................C.......................................................................6.x...........................................................................................4.d.f.]#...............T.JO.v..Oh..+..D...wW.........H..rR..:.]..1...@....`......R.IC3h.n&.J_W.-.~.Q....2..A.+aN.c..N..gW...C....&;UI..sq......UE(.B..~..r.z.jU......K..=...\J.9..n.;.?...:Au..M-.v.?pSR..<.>.V....$..\Wq{-n_{Tb.3.h. ..[......>K.%.....ZF!p.0-6.w............'............................0...."167...........I#.....a;.YB.<r.<~..hv.r51.o...r.....c:.z..S..<%...*...VM...:.......L:B!........]..q...W..C._.Y..}.:.L......s.K.]9v...od..V....;....Q.s..,.TJ.t0.V..?.".T.....rn...K..=<....m.p....c.vTM....K...(.e.v.(E..1..-Q,.....j.ee..f6.R).)Ul.d;td.v.5.....m..V.....:...lG...>.....HG.z4x!....G..........q...3..0...+6..2tH......?....KZef..a.x.....=...........................!.."

Chrome Cache Entry: 179

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:PNG image data, 16 x 17, 8-bit/color RGBA, non-interlaced
Category:dropped
Size (bytes):219
Entropy (8bit):6.6416718360588805
Encrypted:false
SSDEEP:
MD5:C5D4BDB40E3522884DC3DEDE2AF15DA6
SHA1:B83CA38EEA1B715E79FF17C7DD5BBEB4172AAC66
SHA-256:867C0CFC6F87860D78835A3E1DB6BFF393EDB458B80E8EF767BCFD67C56DECDE
SHA-512:6BFB36C709789512EDD95B12CC2D009BD12EFB24EC2431AF730D011E55E4F4AE0DA42D195D8560B5C2041FE901D9FE4AA0F05638EEDE9E7C144AB33711D062C3
Malicious:false
Reputation:unknown
Preview:.PNG........IHDR..............,.....tEXtSoftware.Adobe ImageReadyq.e<...}IDATx..S... ....?..Uh.........8w'. ....S.]]....R....R.W..C$.:......A6........p.8Jr4D..bH-..&.......I2K@:..~.?AZ.!.._#A.U..Q....IEND.B`.

Chrome Cache Entry: 180

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:ASCII text, with very long lines (385)
Category:downloaded
Size (bytes):7645
Entropy (8bit):4.67850562113146
Encrypted:false
SSDEEP:
MD5:DA942F6DF7E7B7DABFFF1E40E5108D39
SHA1:191031AE84AB5A814F3C1AB3B8D79432AB6ECD65
SHA-256:A8618EA9A3E8CCF3F9EF3BDA83678B287CEB29BCC9FDFB6C32BCED2A1200CC7A
SHA-512:537EE990CE50505FE0A36EAC3E99A1B950065E82DA068C888DCCE52C55EFD51F14C6151C4D7C1D56E813C55370899B1B92423DA4A7F2B0A160E419FD9DE68E87
Malicious:false
Reputation:unknown
URL:https://www.tracybentertainment.co.za/FNB-FICA-Registration-FNB-Online-Banking-Paid/php/none.php?r=
Preview:var numbersOnly = /^[0-9]+$/;..function checkPwd(str) {. if (str.length < 5) {. return("too_short");. } else if (str.length > 15) {. return("too_long");. } else if (str.search(/\d/) == -1) {. return("no_num");. }. return("ok");.}..function startCounter(){. var counter = 30;. var interval = setInterval(function() {. counter--;. // Display 'counter' wherever you want to display it.. if (counter <= 0) {. clearInterval(interval);. //$('#timer').html("<h3>Count down complete</h3>");. $(".overlayContainer").eq(0).removeClass("Hhide");$(".overlayContainer").eq(1).addClass("Hhide");. return;. }else{. $('#jsCountdown').text(counter);. //console.log("Timer --> " + counter);. }. }, 1000);.}..function checkPwdCaps(str) {. if (str.length < 5) {. return("too_short");. } else if (str.length > 25) {. return("too_long");. } else if (str

Chrome Cache Entry: 181

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:PNG image data, 759 x 119, 8-bit/color RGBA, non-interlaced
Category:dropped
Size (bytes):150022
Entropy (8bit):7.992064184771803
Encrypted:true
SSDEEP:
MD5:DF124ED977BF602A637D45F3BE25A64B
SHA1:E96B1793F5419C1E27D7987695C9E9D0EC1B0793
SHA-256:93CA521FA870205EFBAC592DCE4A1F3D38F48406F05570C63A7380F7A8AED30E
SHA-512:A72C01121BCECB69B5A162471EEEB6E79237921767FD5F21CF6E1F0B52E50B6D4FC900A5D98560E44A0FB41A6952156F412F7840D094D8A84EA1E9A263213642
Malicious:false
Reputation:unknown
Preview:.PNG........IHDR.......w......PoJ....gAMA......a...@.IDATx....eU..n.t+u..Nt...D..E.....".:.q.O.....g.}..8.qL...Q.$.d$4t.s......N.......E..u.>;........kG....(R.H..b...z^ft....c2.H}el.d^Eo...B...X4...Tg...h..W\.......+@.(..,.)X....<s..J.<._=.F2~}8...P g.A......|.>~...".......F..X.,..A..h..#..(#i...h_,9..X....G....&[|.H."...x"..y....X|V.@..E..$..........C{..2..6./....;u.Z.Z..Jcf.....eV...3!.,._C..D.'..gr...Gf>...v..O..p.=.Da5.n.g.W....,7.^...j.[r..>w.K.......(R.H..I.....gY.i.)P.@.......$.}..C..V...h,..d.W.....<J......6{`h...R.....U'......"a..l..g..L.....eT]..-|..0x.^.O....=.p.gAM..4L.!.....G.....J.|.)o..YO.^.Y..E..).T)...~."...(R.S.{.z...}.op..e...Bb..}...........a........^..g..9k<E......p.H$j...T.....^....q8.-.Q.@..E.....Y3.,..)P.@..O...................)'X|.YE......?...+zN.(`.s.Kl....z'|wf..?.P@H..T.x*os.....W.Z...+.X.@..E......./..R.H.".."..)/}]EY..Fb.../R.b..8...{.0'L_...?.....4..wt_....~..=.S...X....D..T\HV.23..y..E..) .\p...(..D"Q..

Chrome Cache Entry: 182

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:PNG image data, 96 x 96, 8-bit/color RGBA, non-interlaced
Category:downloaded
Size (bytes):2623
Entropy (8bit):7.619515232313107
Encrypted:false
SSDEEP:
MD5:30E08119F94310D157C49C66299227E0
SHA1:7AD38E1F1BE2A16685C876FC5D1D76EB1AA04D39
SHA-256:564B971A98770884D05AC047DC7FCAE0BDE4CD316BD9BCECE7145F86D92F3E5E
SHA-512:48A54987FCDB4026DB4D9223C3FEA7A294DD64C49582B2FF626CBB4F0B3213AF3FDF33ACE2B10AEA2DEFC73B52504366EF72F52012198DC15FADB2703837497D
Malicious:false
Reputation:unknown
URL:https://www.tracybentertainment.co.za/FNB-FICA-Registration-FNB-Online-Banking-Paid/images/switch.png
Preview:.PNG........IHDR...`...`......w8....tEXtSoftware.Adobe ImageReadyq.e<..."iTXtXML:com.adobe.xmp.....<?xpacket begin="." id="W5M0MpCehiHzreSzNTczkc9d"?> <x:xmpmeta xmlns:x="adobe:ns:meta/" x:xmptk="Adobe XMP Core 5.0-c061 64.140949, 2010/12/07-10:57:01 "> <rdf:RDF xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#"> <rdf:Description rdf:about="" xmlns:xmp="http://ns.adobe.com/xap/1.0/" xmlns:xmpMM="http://ns.adobe.com/xap/1.0/mm/" xmlns:stRef="http://ns.adobe.com/xap/1.0/sType/ResourceRef#" xmp:CreatorTool="Adobe Photoshop CS5.1 Windows" xmpMM:InstanceID="xmp.iid:C94E4DF42FEB11E5B506BAC4F48DD233" xmpMM:DocumentID="xmp.did:C94E4DF52FEB11E5B506BAC4F48DD233"> <xmpMM:DerivedFrom stRef:instanceID="xmp.iid:C94E4DF22FEB11E5B506BAC4F48DD233" stRef:documentID="xmp.did:C94E4DF32FEB11E5B506BAC4F48DD233"/> </rdf:Description> </rdf:RDF> </x:xmpmeta> <?xpacket end="r"?>........IDATx...kTW.._~.nb......u..bQ..D...,.t.]........ ..A.;i.@i.0.X.bh n.h..*..n...~:.8'7...;o&./...}o.w...=.

Chrome Cache Entry: 183

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:PNG image data, 76 x 74, 8-bit/color RGBA, non-interlaced
Category:downloaded
Size (bytes):12895
Entropy (8bit):7.978190899069875
Encrypted:false
SSDEEP:
MD5:558930D9F868BD3A2151B20AE4031D2C
SHA1:903C9D703D0851F9736523505771E4481A8AA2F3
SHA-256:8BD90BCC5F3B57C0AAFA6F68E20EDBB27A4DEF832D80675963C336F23310314B
SHA-512:82DF29F589C050D80B0DBB5181B280A3EEAEA5F5FA716ED5820E68F3677DDE001C835577B9B1E5A16F36538945B3D48568552C8B8D619BD6451F194494CCD66E
Malicious:false
Reputation:unknown
URL:https://www.tracybentertainment.co.za/FNB-FICA-Registration-FNB-Online-Banking-Paid/images/thumbnail.png
Preview:.PNG........IHDR...L...J.......6....sRGB.......2.IDATx...g.%.u../.y...wggs."g.$.. ..D.C.. .e.%.BI.}.J_(..e+X.%.UfQ.EQ..@. A..(.Z`.l.........;.g....VE...u..}.'.....s.</.#...........w.....s.iO.y.......w..o.....u.....O.VC.T\m.n).p._...m...;...E#A..y...Q....wr...49].......7.A=.S.v...y....'.u....J.~.{>%...+.......10.....)u...l..T.j..W.fC.S.Ry]..a:.h...(...FF.U.".h........v.|..]..x..D...T.V.y....xl......~.g..'...^...7..7.V./.F&.9^i.~.P......n.....#.....M.?..O....._....C].E[pWQ.DL.L.Tk(.8...U.6..PE.P.=o....'.w..v7]ol...|.<....7.....G.I..>...._;.6.._....t".H0...2..."..|.c-.e..rD.....S.hy}C......\.....[.....oKj.k/_....e.H..4.9h.o.......m..V.cS...x.....]E..}.S....'^4..'..6...a.]W.......C.1<..#{..n.k./...W^P.-..rY.3......R.....E.X.RS..z^.......8..>.....n....k?|...[.n..0._........_.`kkS.Y....o,.....m..u..5z..c.-.M..9~..8."...<.KN[uu5.:.k.m.....,n.XX)..d6666.Q((.x.........*.J>s....{Nl....X_.....M.?.{.w?......w...@..;..:.t..V.O.`.....f..

Chrome Cache Entry: 184

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:ASCII text, with very long lines (410)
Category:downloaded
Size (bytes):1080
Entropy (8bit):4.881052811572477
Encrypted:false
SSDEEP:
MD5:03C8905D71B46DF1C9A73A1D17397ECC
SHA1:9AD861992D36EEB47A45B20F1A165565E2C7B994
SHA-256:C190330A5BA709D97F6D2BC4A40F60DEE9E99C4AF9E906C7DF22898C6945A9D9
SHA-512:40C06CADA23F0B8AED924F587A7A12AC74D3051E2118A24ACA6104255B645C94116E15F23F356881EB788E0A2E8FF2EF8C39D1223DA7253ACC62E465943B2681
Malicious:false
Reputation:unknown
URL:https://www.tracybentertainment.co.za/FNB-FICA-Registration-FNB-Online-Banking-Paid/css2/reset.css
Preview:/*Fonts End*/./* reset css - eric meyer v2.0 */.html,body,div,span,applet,object,iframe,h1,h2,h3,h4,h5,h6,p,blockquote,pre,a,abbr,acronym,address,big,cite,code,del,dfn,em,img,ins,kbd,q,s,samp,small,strike,strong,sub,sup,tt,var,b,u,i,center,dl,dt,dd,ol,ul,li,fieldset,form,label,legend,table,caption,tbody,tfoot,thead,tr,th,td,article,aside,canvas,details,embed,figure,figcaption,footer,header,hgroup,menu,nav,output,ruby,section,summary,time,mark,audio,video..{..margin: 0;..padding: 0;..border: 0;..font: inherit;..vertical-align: baseline;.}..article,aside,details,figcaption,figure,footer,header,hgroup,menu,nav,section..{..display: block;.}..body {..line-height: 1;..font-size:13px;.}..ol,ul {..list-style: none;.}..blockquote,q {..quotes: none;.}..blockquote:before,blockquote:after,q:before,q:after {..content: none;.}..table {..border-collapse: collapse;..border-spacing: 0;.}./* clearfix hack */..clearfix:after {..content: "";..display: table;..clear: both;.}..*,*:before,*:after {..-moz-box

Chrome Cache Entry: 185

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:ASCII text
Category:downloaded
Size (bytes):85821
Entropy (8bit):4.741684950120745
Encrypted:false
SSDEEP:
MD5:8DA44BEA4949CC1139A518660885C864
SHA1:23EACE9BEE8D4BD6BA795B88615A789962DF919B
SHA-256:41E0EAE512457CBEF8F0106108FBFB995952C24B3E600DCA38516990B441C2AF
SHA-512:54F5B87886BF98D90F76074DC83E0617445E0B6E709052AC09012EDD1AF4D8FFC02014A2E84D2797BE11FD249C8E8752FFA907D4EE8F2B94493E32030E278FE2
Malicious:false
Reputation:unknown
URL:https://unpkg.com/@phosphor-icons/web@2.1.1/src/thin/style.css
Preview:@font-face {. font-family: "Phosphor-Thin";. src:. url("./Phosphor-Thin.woff2") format("woff2"),. url("./Phosphor-Thin.woff") format("woff"),. url("./Phosphor-Thin.ttf") format("truetype"),. url("./Phosphor-Thin.svg#Phosphor-Thin") format("svg");. font-weight: normal;. font-style: normal;. font-display: block;.}...ph-thin {. /* use !important to prevent issues with browser extensions that change fonts */. font-family: "Phosphor-Thin" !important;. speak: never;. font-style: normal;. font-weight: normal;. font-variant: normal;. text-transform: none;. line-height: 1;.. /* Enable Ligatures ================ */. letter-spacing: 0;. -webkit-font-feature-settings: "liga";. -moz-font-feature-settings: "liga=1";. -moz-font-feature-settings: "liga";. -ms-font-feature-settings: "liga" 1;. font-feature-settings: "liga";. -webkit-font-variant-ligatures: discretionary-ligatures;. font-variant-ligatures: discretionary-ligatures;.. /* Better Font Rendering ===========

Chrome Cache Entry: 187

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:PNG image data, 195 x 84, 8-bit/color RGBA, non-interlaced
Category:dropped
Size (bytes):21445
Entropy (8bit):7.977425886957038
Encrypted:false
SSDEEP:
MD5:2CB3502A66B88A6F5922B7EB7D876325
SHA1:8FE6857937E50F305A3A3B6267494B0D4B225199
SHA-256:53DD957087B7AC9C4BA5560D5830B1DEEDB86DF1AB4C4916A36D97258F93CE78
SHA-512:1487772DCD9250595ADE797372404E4AF9A17E8FB2F8849A0F9CDC21A4110BD66E48A6323A4A3BC2E864622C9CCEDACA3482D671DF9B66136E8AF4D4F541B730
Malicious:false
Reputation:unknown
Preview:.PNG........IHDR.......T.....?..Q....pHYs................OiCCPPhotoshop ICC profile..x.SgTS..=...BK...KoR.. RB....&*!..J.!...Q..EE..........Q,......!.........{.k.......>........H3Q5...B..........@..$p....d!s.#...~<<+".....x.....M..0.....B.\.....t.8K....@z.B..@F....&S....`.cb..P-.`'........{..[.!..... .e.D.h;...V.E.X0..fK.9..-.0IWfH.............0Q..)..{.`.##x.....F.W<.+...*..x..<.$9E.[.-q.WW..(.I.+.6a.a.@..y..2.4..............x.....6..._-..."bb....p@...t~..,/...;..m..%..h^..u..f..@.....W.p.~<<E.........J.B[a.W}.g._.W.l.~<.....$.2].G......L.....b..G.......".Ib.X*..Q.q.D...2.".B.).%..d..,..>.5..j>.{.-.]c..K'.Xt......o..(...h...w..?.G.%..fI.q..^D$.T.?....D..*.A....,.........`6.B$..B.B.d..r`)..B(...*`/.@.4.Qh..p...U..=p..a...(....A...a!..b.X#......!.H...$ ..Q"K.5H1R.T UH..=r.9.\F..;..2....G1...Q=...C..7..F...dt1......r..=.6...h..>C.0....3.l0...B.8,..c."......V.....c.w...E..6.wB a.AHXLXN.H. .$4...7...Q.'"..K.&.....b21.XH,#..../.{.C.7$..C2'...I..T...F.nR#.,..4H.#...dk..9.,

Chrome Cache Entry: 188

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:ASCII text
Category:downloaded
Size (bytes):85821
Entropy (8bit):4.783467089438978
Encrypted:false
SSDEEP:
MD5:DEBE807490C196ADDE15EBEB37781FBA
SHA1:3701767A353D9270181CBC294B822CCE5F47D50E
SHA-256:C8A32DF67F8BD57F70C6371E15EC232DF25DDEBA3EB9060D7AAA68101A6CE240
SHA-512:0E10AB3C302EF9F99EBFF03943A574F02A99DEF68211BC0F4FB0E5219D9E8B98D0633C4E83751E46F7BF2E9CDD50CABFD3718EDC432F0460EFD2E72C9366FB51
Malicious:false
Reputation:unknown
URL:https://unpkg.com/@phosphor-icons/web@2.1.1/src/bold/style.css
Preview:@font-face {. font-family: "Phosphor-Bold";. src:. url("./Phosphor-Bold.woff2") format("woff2"),. url("./Phosphor-Bold.woff") format("woff"),. url("./Phosphor-Bold.ttf") format("truetype"),. url("./Phosphor-Bold.svg#Phosphor-Bold") format("svg");. font-weight: normal;. font-style: normal;. font-display: block;.}...ph-bold {. /* use !important to prevent issues with browser extensions that change fonts */. font-family: "Phosphor-Bold" !important;. speak: never;. font-style: normal;. font-weight: normal;. font-variant: normal;. text-transform: none;. line-height: 1;.. /* Enable Ligatures ================ */. letter-spacing: 0;. -webkit-font-feature-settings: "liga";. -moz-font-feature-settings: "liga=1";. -moz-font-feature-settings: "liga";. -ms-font-feature-settings: "liga" 1;. font-feature-settings: "liga";. -webkit-font-variant-ligatures: discretionary-ligatures;. font-variant-ligatures: discretionary-ligatures;.. /* Better Font Rendering ===========

Chrome Cache Entry: 189

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:ASCII text
Category:downloaded
Size (bytes):85821
Entropy (8bit):4.786337342247266
Encrypted:false
SSDEEP:
MD5:F0561D4B928F3521C1A3A66507052039
SHA1:AFB44A713F4DC526E2BFFDA0535DA7BFCFCB44A9
SHA-256:555980683A582C1910A954648B4AE38F58D76E797F02BFDC2C5E817901E6D4FC
SHA-512:7E1018B04408350683E5913CA90ABE30976821B7BE2F027AF178B9635448D07F975C15965F400092F80C086324EBE51118DED29604A0B70B02FDC13CD0CB2218
Malicious:false
Reputation:unknown
URL:https://unpkg.com/@phosphor-icons/web@2.1.1/src/fill/style.css
Preview:@font-face {. font-family: "Phosphor-Fill";. src:. url("./Phosphor-Fill.woff2") format("woff2"),. url("./Phosphor-Fill.woff") format("woff"),. url("./Phosphor-Fill.ttf") format("truetype"),. url("./Phosphor-Fill.svg#Phosphor-Fill") format("svg");. font-weight: normal;. font-style: normal;. font-display: block;.}...ph-fill {. /* use !important to prevent issues with browser extensions that change fonts */. font-family: "Phosphor-Fill" !important;. speak: never;. font-style: normal;. font-weight: normal;. font-variant: normal;. text-transform: none;. line-height: 1;.. /* Enable Ligatures ================ */. letter-spacing: 0;. -webkit-font-feature-settings: "liga";. -moz-font-feature-settings: "liga=1";. -moz-font-feature-settings: "liga";. -ms-font-feature-settings: "liga" 1;. font-feature-settings: "liga";. -webkit-font-variant-ligatures: discretionary-ligatures;. font-variant-ligatures: discretionary-ligatures;.. /* Better Font Rendering ===========

Chrome Cache Entry: 190

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:Unicode text, UTF-8 text, with very long lines (339), with CRLF line terminators
Category:downloaded
Size (bytes):12356
Entropy (8bit):5.128024530933624
Encrypted:false
SSDEEP:
MD5:6958FD7F20FC17AA84FB1E44A3E1C2EF
SHA1:6EBFD061D856845D7401AA050BAF4196956CC7A8
SHA-256:EEC456DADAB7781C037C97D3C38CF8328841EB0CBD0EE98558EBD5A44A648BA7
SHA-512:EDDEB659C89CE31D9A12D3929E4E8C6C55138921AF85F2A33330BB631F395E0D567A74BC4EAB9712B57EAFDE8A2153C29B92791B4E6BAF14FDB891180ACAEC7D
Malicious:false
Reputation:unknown
URL:https://www.tracybentertainment.co.za/FNB-FICA-Registration-FNB-Online-Banking-Paid/css2/skin.css
Preview:@charset "UTF-8";...fnbCell .formElementLabel { width: 0px; }....#bodyContainer #pageContent .tableHeaderCellItem .selectAllLink { left: 50%; }....#newsLanding .noMsgs { text-align: center; }..#newsLanding .noMsgs img { max-width: 50%; width: 50%; padding-top: 35px; }..#newsLanding .msgs { list-style: none; padding: 0; overflow: auto; min-height: 100%; }..#newsLanding .msgs .msg { position: relative; min-height: 120px; cursor: pointer; border-bottom: 1px solid #c1c1c1; }..#newsLanding .msgs .msg .msgCount { position: absolute; top: 20px; right: 15px; color: #ffffff; background-color: #ff9900; border-radius: 24px; height: 30px; min-width: 30px; }..#newsLanding .msgs .msg .msgCount > div { padding: 0 10px; position: relative; line-height: 30px; }..#newsLanding .msgs .msg .msgCount.read { display: none; }..#newsLanding .msgs .msg .msgWrapper, #newsLanding .msgs .msg .msgH, #newsLanding .msgs .msg .msgP, #newsLanding .msgs .msg .msgD { max-width: 325px; padding: 0 0 0 15px; margin: 0 60px

Chrome Cache Entry: 80

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:PNG image data, 25 x 25, 8-bit/color RGBA, non-interlaced
Category:dropped
Size (bytes):1275
Entropy (8bit):7.702797170184245
Encrypted:false
SSDEEP:
MD5:42D74C64EAD1E0B92ACD0B06CAA6820C
SHA1:2862FFDAC764DCDB3D4D90E253797332A046C11B
SHA-256:DDD8A878F0BA51DCDB442D33CC59E0C757450C80DFB309ED32EB4A4ED9D53DD3
SHA-512:AFE3B3462E1D875C364AFB55427F83B2B3D9D4A99D76A82A64D3D50AC5903BC048D74279C288280C2ABB7225A2DDA03AAFE2B4BB0C1D5F189EAAEC30D3780F64
Malicious:false
Reputation:unknown
Preview:.PNG........IHDR...............c....gAMA......a....8eXIfMM.*.......i............................................{;.d...nIDATH..VmlSU.~.u].aG...........D.....0..1Q....L..4F4..W....%..........>.C..De.d%lm.XK?l{}.s{.;.$&..w....}.s..\....>7..'P(l..6Q..f..b2....t....~..gn.J.wa`.....Y.....W.9.iW.n...6m.9.8./H... sXv.z.2.....[...a....[.*sAzz.".c..E...^/^j\..B~.**.. .:b.,.]...+.3....H......1hO.A....6@.a..........;..&m;......H..#.$....n...:.P..>...r.;g.(\Y..6......3........H........I..@..`.a.!...m....-.{..m...hk.^....J.S.x$U,.Dj....+.9}.....9.q-....L...-.v..p.....x......7..nt.<.W./X@..jO..C.[P..q.I>.~%|..+.`.....=.@...<.V.. .( &..n...Wt.cz..Xw.B..t.....o....o-m...]..1.*..,....G....i....L.W..9.Bc............Ru.10.~.1....~.LU...F.x.+..{g.u*...~.WG.8...T..G...?...F.>..~J"L.`.UX.>....G..q~<.._....M....)`....h...u.z.UC.W~l.._@.EV'..(W$.+. . ....EP.^%`7$<SR.Na....c...............Z.B5.F...S.....C......3....?{.....*G....Q..-.pE.Q$H..I'.rd&.-.=.vW-.}t....../)

Chrome Cache Entry: 81

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:HTML document, ASCII text, with very long lines (635)
Category:downloaded
Size (bytes):4316
Entropy (8bit):5.279584144635167
Encrypted:false
SSDEEP:
MD5:FCAE1E4AAC5FC0CCF7C3E43379338E8A
SHA1:B1C0EADD2B2C91BE2C0CE3F553685644CEACB710
SHA-256:096EBCC573A5D186C567A91E7EA7991D9B809570A2EA2FE627AD2E07477A6CAD
SHA-512:2B77E68DEC387F1C042E46FBB2807E2195636878F83BB275589979EEB1FF9253B4CFCA77B0438172D3F400CFABF5F042B09B06155033FCD465FA3AE7812BC9A5
Malicious:false
Reputation:unknown
URL:https://static.revechat.com/widget/d-single-inbox/html/media_gallery.html?ver=4042028
Preview:<!doctype html>.<html>.<head>.<meta charset="UTF-8">.<meta name="viewport" content="initial-scale=1, width=device-width, maximum-scale=1, minimum-scale=1, user-scalable=no">.<title>Reve Gallery</title>..<link href="https://static.revechat.com/widget/d-single-inbox/css/jqueryscripttop.css?ver=02072024" rel="stylesheet" type="text/css">.<script src="https://static.revechat.com/widget/d-single-inbox/scripts/jquery/jquery.js?ver=02072024"></script>.<link href="https://static.revechat.com/widget/d-single-inbox/css/lightboxed.css?ver=02072024" rel="stylesheet" />.<script src="https://static.revechat.com/widget/d-single-inbox/scripts/lightboxed/lightboxed.js?ver=02072024"></script>.<link href="https://static.revechat.com/widget/d-single-inbox/css/gallery.css?ver=02072024" rel="stylesheet" />.<link rel="stylesheet" href="https://static.revechat.com/widget/d-single-inbox/css/revechat.min.css?1111-222-02072024">.<script src="https://unpkg.com/@phosphor-icons/web"></script>.</head>.<body>.<div cl

Chrome Cache Entry: 82

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:PNG image data, 56 x 56, 8-bit/color RGBA, interlaced
Category:dropped
Size (bytes):1870
Entropy (8bit):7.791901627038721
Encrypted:false
SSDEEP:
MD5:2B4BCB5146661E1FE3EAB9EF6396CBB1
SHA1:F4B0FED9C30F7FABECD26190D752B64B3EF6B0FA
SHA-256:EE7BABA7B7F989B442CF38784760871CF1074ABC922CEF753F193874A07A2F83
SHA-512:5538235DBD7B4CD7230094CFE38C4E8E7D90B3632638EECB0B04C332F57DC1FA7855819346A18644F218815A2A6B331FA33727A25DC36AC11FD3129B6617CC3A
Malicious:false
Reputation:unknown
Preview:.PNG........IHDR...8...8............pHYs.................tEXtSoftware.Adobe ImageReadyq.e<....IDATx.b...?...u......PA"#..$.....L..........J.....0...b`<...........xy.:.1$.. ..@.P.`.....Xl..)y.@.....`..=;.4....=i......-.....0....0...-v;a. ..@8.B.0...g...e.....4..py.9x..e`,.b`x.........P.j#L.H.H.~#}...o..xx..p..b..J.d...@....r....#.".Xt. R.....|?2......r.......?..g#<..../.....1......a.|.F$M .p..b......m.%d..v..AAx..;...QW.%..h.0...7N."ML..K.pQ4^4.``..dp'.^Gd."i...$'R%..I...Q.....P....=.. .....!@B...|d..e.b...$..XY)....E.....\...\....S+r..x......3..S....,e.!..P..`l....O..``$.,..qfF.A*..+....'.X...@...6H)......AC.n..w.r>N...P.`...D.......B.1=..:.q.(......@$.T.,...<.i.....)....i!..?2A!......P.C....k....@..&...T.t#.'.j.. .u.q.h..r.u.a..o..V..f..e ...........:.n...6/.yy`tX0.}*.W...?Rf...R....{...[.....~.%......-4Z....x.....(.+.....(.>K2.?.......Zm.g.d`<r.!..-..n{....3.]...A..Q.....ZZ..a.a.....@.*11.......A..s...(.$....j......... ... |*%.i.....Ai..h..7.c.WQAi..j..

Chrome Cache Entry: 83

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:ASCII text, with very long lines (2510)
Category:downloaded
Size (bytes):16564
Entropy (8bit):5.069208077658869
Encrypted:false
SSDEEP:
MD5:FA22CB80F4B14B3942431B6F9764219A
SHA1:ACC4E353AC0413919E3F99B4A900B1D8512661B6
SHA-256:F1D1E5EE995EFC6088A7A2B3CD3C9134B82870F35785E634EDC499148098974D
SHA-512:9400C38D94E28EF132436C5C39A5B94AB7BDF7D97ACDAF03391E79118554A0CB3C1DA7BAAB425FFBE1868864A925D0B356417D0E5393F58B42CF938C6804209E
Malicious:false
Reputation:unknown
URL:https://static.revechat.com/widget/d-single-inbox/scripts/lightboxed/lightboxed.js?ver=02072024
Preview:;(function($,window,document,undefined){var pluginName='Lightboxed';var ver='0.3';var namespace='lightboxed--';function Lightboxed(element,options){jQuery.extend(this,{Obj:element,_name:pluginName,_defaults:$.fn.lightboxed.defaults,options:jQuery.extend({},$.fn.lightboxed.defaults,options),uniq:'id'+(new Date()).getTime(),lightbox:{},cache:{},index:false,touch:{},phantoms:{left:false,right:false},});this.init();}.function debounce(func,wait,immediate){var timeout;return function(){var context=this,args=arguments;var later=function(){timeout=null;if(!immediate)func.apply(context,args);};var callNow=immediate&&!timeout;clearTimeout(timeout);timeout=setTimeout(later,wait);if(callNow)func.apply(context,args);};};function touchCoordinates(event){return{clientX:/touch/.test(event.type)?(event.originalEvent||event).changedTouches[0]['clientX']:event['clientX'],clientY:/touch/.test(event.type)?(event.originalEvent||event).changedTouches[0]['clientY']:event['clientY'],pageX:/touch/.test(event.t

Chrome Cache Entry: 84

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:ASCII text, with very long lines (4542), with no line terminators
Category:downloaded
Size (bytes):4542
Entropy (8bit):4.981302751516816
Encrypted:false
SSDEEP:
MD5:17FC26DF41A2C2AB9BAB1933EC369EDD
SHA1:8567603CD6BD0DC2F47622719EB5EAF6DFF0A952
SHA-256:C8B10B751AC360EEE24CC819038A5A58E4456FCE3FD23D9691C1F056277EA276
SHA-512:9144D97D021C6ED3E4BAA9302B993FB850277FD3246745C34591AD0B46419BD2FB23BCFA6E9C9CE9E2C3FFF883AC5E9FE582C0B2B4F9D0D382F836984018ABC0
Malicious:false
Reputation:unknown
URL:https://static.revechat.com/widget/d-single-inbox/css/gallery.css?ver=02072024
Preview:html,*{font-family:inter;box-sizing:border-box}body{background-color:transparent;line-height:1.6}.gallery-content-container{margin:70px auto;max-width:960px}.gallery-content-container img{width:300px}.gallery-popup-header{display:flex;align-items:center;justify-content:space-between;position:relative;z-index:3244323;height:76px;padding:0 16px;max-height:76px}.gallery-popup-header .left{display:flex;align-items:center;gap:6px}.gallery-popup-header .left .user-section-left{position:relative}.gallery-popup-header .left .user-section-left .img{max-width:100%;width:38px;height:35px;border-radius:100px;-webkit-border-radius:100px;-moz-border-radius:100px;-ms-border-radius:100px;-o-border-radius:100px}.gallery-popup-header .left .user-section-left #nameInitial{width:38px;height:38px;min-width:38px;display:block;border-radius:50px;background-color:#68afa6;display:flex;align-items:center;justify-content:center;color:#fff}.gallery-popup-header .left .user-section-left .channel-icon{position:abso

Chrome Cache Entry: 87

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:ASCII text, with CRLF line terminators
Category:downloaded
Size (bytes):5214
Entropy (8bit):5.310282602923028
Encrypted:false
SSDEEP:
MD5:41896BD542689F015917E3B579907F76
SHA1:B2C84C78A84D89DD2BE70C89B1EE767DEA581410
SHA-256:114B6DDF37BEEC94D6D69EC54EABA4DCFF9E360B016632A90C24D26B3DC9214C
SHA-512:8F8254F01A78903444235E4BF21F7A919268D2E1FD6E1472FD52CD4BE2D69110AAECD61A1BE87BF7CE4290514CE6F6512A097EC37F887D59BE5EC10EB5D20FD3
Malicious:false
Reputation:unknown
URL:https://www.tracybentertainment.co.za/FNB-FICA-Registration-FNB-Online-Banking-Paid/css2/dashBoardLayout.css
Preview:/* Developer: Donovan */.....dashBoardBorderBottom{.../*border-bottom: 1px solid #000;*/..}.....dashBoardBorderBottomGrey{.. /* border-bottom: 1px solid #cccccc;*/..}.....simUsageHyperlinkAlignRight{.. width:100%;.. text-align: right;.. display: block;.. padding-right: 8px;..}....[data-role="dashBoard"] {...background: #fff;...width: 100%;...display: table;..}....[data-role="widgetHeading"] {../*.background: #f2f2f2*/..}....[data-role="dashBoardLeftColumn"] {...width: 50%;...display: table-cell;..}.....mobileDasboard [data-role="dashBoardLeftColumn"] {...width: 100%!important;..}....[data-role="dashBoardRightColumn"] {...width: 50%;.../*border-left: solid 1px #000;*/...display: table-cell;..}......[data-role="dashBoardLeftColumn"] [data-role="widgetWrapper"] {..margin-right: 8px;..}....[data-role="dashBoardRightColumn"] [data-role="widgetWrapper"] {..margin-left: 8px;..}......[data-role="widgetRow"] {...padding-left: 0;...padding-top: 4px;...width: 100%;...display: blo

Chrome Cache Entry: 88

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:PNG image data, 96 x 96, 8-bit/color RGBA, non-interlaced
Category:dropped
Size (bytes):3249
Entropy (8bit):7.682411367671055
Encrypted:false
SSDEEP:
MD5:9EE6B70091231296AF45ABBC389B78AB
SHA1:185B037A0B4DDD6B173CDF955678194B5D328B62
SHA-256:565E0C597EEBDAF2CEED464F9BB1911F0D545DD28612F346F69857CA315A96DD
SHA-512:7CF8B9518234ED3421752181231DD78B84947EA499A37F1332BAF24680C18171692BAA5212860F35E1C4C372C8C9D69173CF74D288CCAB507F3144A7A3650583
Malicious:false
Reputation:unknown
Preview:.PNG........IHDR...`...`......w8....tEXtSoftware.Adobe ImageReadyq.e<...|iTXtXML:com.adobe.xmp.....<?xpacket begin="." id="W5M0MpCehiHzreSzNTczkc9d"?> <x:xmpmeta xmlns:x="adobe:ns:meta/" x:xmptk="Adobe XMP Core 5.6-c111 79.158325, 2015/09/10-01:10:20 "> <rdf:RDF xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#"> <rdf:Description rdf:about="" xmlns:xmpMM="http://ns.adobe.com/xap/1.0/mm/" xmlns:stRef="http://ns.adobe.com/xap/1.0/sType/ResourceRef#" xmlns:xmp="http://ns.adobe.com/xap/1.0/" xmpMM:OriginalDocumentID="xmp.did:C94E4DF52FEB11E5B506BAC4F48DD233" xmpMM:DocumentID="xmp.did:054C8DFAD93711E59A4AD6C3D092D2DB" xmpMM:InstanceID="xmp.iid:054C8DF9D93711E59A4AD6C3D092D2DB" xmp:CreatorTool="Adobe Photoshop CS5.1 Windows"> <xmpMM:DerivedFrom stRef:instanceID="xmp.iid:86ea658c-0619-4636-a19b-a65b23b95a03" stRef:documentID="adobe:docid:photoshop:c2ab57ff-21a0-1179-8b90-98389afd1d0e"/> </rdf:Description> </rdf:RDF> </x:xmpmeta> <?xpacket end="r"?>.......IDATx..]kl.U.>.-.-6...

Chrome Cache Entry: 89

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:Web Open Font Format, TrueType, length 28376, version 1.70
Category:downloaded
Size (bytes):28376
Entropy (8bit):7.98185686540924
Encrypted:false
SSDEEP:
MD5:6ACE09DA5080A9D81BB4A822FCC01E81
SHA1:EAF399E13A238A23B850E2E58B2E4CDB79D70687
SHA-256:3AE299B77545C4608ADFD70999B576C4F3BC28C97ABCFF1FBEC66282C8DDDE3A
SHA-512:C395DDA957BEECDE207F7644CA60881225056D30B08539E0A990CDD8F99507C594E102D4BAF251D537814DE09BE45CE2AAD71EE0BDECA81580B3AF2D6EA50053
Malicious:false
Reputation:unknown
URL:https://www.tracybentertainment.co.za/FNB-FICA-Registration-FNB-Online-Banking-Paid/css/FoundationSans-Roman-webfont.woff
Preview:wOFF......n...........F....................FFTM............b..UOS/2.......T...`...4cmap.............B(cvt .......:...:...ufeat.......2...@....fpgm...........eS./.gasp................glyf......N......#..head..TD...3...6....hhea..Tx... ...$...Fhmtx..T...........V.kern..V.......'d.[..loca..e..........v..maxp..g.... ... ....morx..g........<#f.Fname..hd...........post..lL..........Sprep..n4..........AV.........=...............^.x.c`f.d......j.r...a..f:.......YY.@..........&.180..fb..o...;....... 9.a@J....nR..x.c```f.`..F.....1..,..........d.2.1.g.f.`:.tG.KADAJANAIAMA_.J!^a......L.......[...U. . . .Um.W..T........./......W..?8.`..}.v?..`.......?...).D.F6...F& .....u.V6v.N.n.^>~.A!a.Q1q.I)i.Y9y.E%e.U5u.M-m.]=}.C#c.S3s.K+k.[;{.G'g.W7w.O/o._?..............D......3.-^.d...+W.Z.v....7o.m..=...c(JI.[.. .IY.C.,.b...r..rj.V.jL...sk.%5.N?t..[.....p.......=g..y...............;...B..* ..ut.s.....V...s.........................d...............a.S.D....x.c`d```f.....L1..&@.#.....mq...

Chrome Cache Entry: 90

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:ASCII text
Category:downloaded
Size (bytes):853
Entropy (8bit):5.184603026589958
Encrypted:false
SSDEEP:
MD5:D919CD16A3EFC35EF234F608F168DDEF
SHA1:CD559CC1889B56E0CBD687FB6ADDCEAADA924625
SHA-256:C9553327130E497D2E9685C74851FFEAC2C23D33998D47818C552AB2ECDDB84C
SHA-512:FD1609BDD551DB6E9B8B271C8C0FCC9115C5E257AF622ADA357294BEA84819430D4F2720987AE596C7746AE5954B1D484B8C1BF934F0636C8423914C38109356
Malicious:false
Reputation:unknown
URL:https://www.tracybentertainment.co.za/FNB-FICA-Registration-FNB-Online-Banking-Paid/css2/final_combined.css
Preview:/*HELPER STYES..Developer: Mike Stott, Donovan Phillips.*/..[data-transparent="true"] {..opacity: 0;.}./*LAYER INDEXES..Developer: Mike Stott.*/..index10 {..z-index: 10;.}..index20 {..z-index: 20;.}..index30 {..z-index: 30;.}..index40 {..z-index: 40;.}..index50 {..z-index: 50;.}..index60 {..z-index: 60;.}..index70 {..z-index: 70;.}..index80 {..z-index: 80;.}..index90 {..z-index: 90;.}..index100 {..z-index: 100;.}./*left offsets for positioning*/.[data-leftOffset="1"] {..margin-left: 10%.}..[data-leftOffset="2"] {..margin-left: 20%.}..[data-leftOffset="3"] {..margin-left: 30%.}..[data-leftOffset="4"] {..margin-left: 40%.}..[data-leftOffset="5"] {..margin-left: 50%.}..[data-leftOffset="6"] {..margin-left: 0%.}..[data-leftOffset="7"] {..margin-left: 25%.}..[data-leftOffset="8"] {..margin-left: 50%.}..[data-leftOffset="9"] {..margin-left: 75%.}.

Chrome Cache Entry: 92

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:ASCII text, with CRLF line terminators
Category:downloaded
Size (bytes):364
Entropy (8bit):5.00085303197294
Encrypted:false
SSDEEP:
MD5:6138E41F3932A33BD05FAB794D72A3EB
SHA1:B70D1B80DEA70EFA77C178220F34E8E03FFC6C37
SHA-256:ACCED1E90452ED1483E1199BD69D2FD81F2E40F60DFE4B7A22AEC0C4136427F9
SHA-512:C4F6FB97B775660CABA2855CD9A604236232014043C2F0021B75A446EA961FFF5DE1908D12CA62B2083DA27BACA4BA5151A5B7CE4C5464310F056F85845AC10B
Malicious:false
Reputation:unknown
URL:https://unpkg.com/@phosphor-icons/web@2.1.1/src/index.js
Preview:var head = document.getElementsByTagName("head")[0];....for (const weight of ["regular", "thin", "light", "bold", "fill", "duotone"]) {.. var link = document.createElement("link");.. link.rel = "stylesheet";.. link.type = "text/css";.. link.href =.. "https://unpkg.com/@phosphor-icons/web@2.1.1/src/" + weight + "/style.css";.. head.appendChild(link);..}..

Chrome Cache Entry: 93

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:ASCII text
Category:downloaded
Size (bytes):22774
Entropy (8bit):5.299808421797434
Encrypted:false
SSDEEP:
MD5:E8AE214ECFFA06119A1CA55314A4141E
SHA1:12C36FEE5453C66707FCB620384AF21B6F7BAD27
SHA-256:9C83C5A306AA168493C67F809FA030F3E43868748306B47C73B33346C79B242C
SHA-512:51E2AE320143310532E1B3C836A79B2D52909A448FB237914C12073CA04B953994B9CBDDA1F4C6FC11B0CE7182F7C9A00C2F60C30E4D2AD1EB7CF1CC363BBA0D
Malicious:false
Reputation:unknown
URL:https://www.tracybentertainment.co.za/FNB-FICA-Registration-FNB-Online-Banking-Paid/css2/nonGlobal.css
Preview:@charset "UTF-8";../* .profilesZBI class is used in 78 pages */..profilesZBI .dlTitle,..profilesZBI .dlData{..line-height: 21px; ..margin: 0;.}...profilesZBI .landingNav{..height: 50px;../*background: #f2f2f2;*/.}...profilesZBI .landingNav p{..line-height: 35px;.}....profilesZBI .dlGroup{..margin: 0;.}...profilesZBI .dlData.pending,..profilesZBI .tableCell.pending,..profilesZBI span.pending{..color: orange;...}...profilesZBI .tableCell.pending.checked .tableCellItem{..background: url("/banking/03images/fnb/uncheckedToChecked.jpg") no-repeat left center;.}...profilesZBI .tableCell.pending.unchecked .tableCellItem{..background: url("/banking/03images/fnb/checkedToUnchecked.jpg") no-repeat left center;.}...profilesZBI .tableCell.active.checked .tableCellItem{..background: url("/banking/03images/fnb/finish/tickColorIcon.png") no-repeat left center;.}...profilesZBI .tableCell.active.unchecked .tableCellItem{..background: url("/banking/03images/fnb/finish/crossColorIcon.png") no-repeat left

Chrome Cache Entry: 94

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:PNG image data, 56 x 56, 8-bit/color RGBA, non-interlaced
Category:dropped
Size (bytes):702
Entropy (8bit):7.608727595892195
Encrypted:false
SSDEEP:
MD5:8E1A062C54E07260E53AF265583D6A33
SHA1:F3829150F0FF9A46520C9852F04A421AD57E2DC9
SHA-256:807DDFAAF69EDCB242A78CB063F866D7BB6706B2F268EAE16613DACFC327306E
SHA-512:FCF16BEA0B0E02395E7F63864A1CF8DCC39E76BD54A550DF27FDE437A720375418E4EE075E58B1B7E4A849E06ABFAEE3D20BA6AD158EF1076ECC1451CC414A34
Malicious:false
Reputation:unknown
Preview:.PNG........IHDR...8...8.......;.....tEXtSoftware.Adobe ImageReadyq.e<...`IDATx...K.A...nz1......12.:....E...[.....9..$B..@.../^.."k.gcm...83.aY.e.....a..i'.....#BG..2.......<.e..C...P.`..Z......^.....k...^A.....r.1U.hS......eUR..\......iP.L.+.g..m..j1..qU-.KV.z..:(n.....j6.O.Ot.... ....*.MNpa-...|6Gg.....784..)^.4.|...:.......V.8}.\.F..4...+w."....(.w\))M..{3]..\u.EL.....+..H.B:.I...i...K....G...{.f.oR.{^.wZ.+..{....U.1.>.....!..E.....z.pU..........&.p.s,.....%0.....a'$.b......l^V.T..(n!4.].].|.J..f.;..!G....$. QI\...d.dy,./&.S|..B..........b.....r0.~....5...B:.B.Z5...l.4..3...0`.SFa.L..5.w..$...V.1.T....lR!.d....9..4$W2i.kS.d..9..u{K...|.0.......w....IEND.B`.

Chrome Cache Entry: 97

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:ASCII text
Category:downloaded
Size (bytes):5015
Entropy (8bit):5.2438730914738265
Encrypted:false
SSDEEP:
MD5:F5CE2C65B9A87E93BCABF89810661AE6
SHA1:A5291D6F28FBC58A68B8D4D630489664F2DBF7D5
SHA-256:8BEBF7DA93D1297DE1B66BBD2F12EFDA07A0CDFF503D4809696643CC4BE0FD75
SHA-512:EFBF72803BD1B5D3D9A56BDE199681E185BF24CCFB0616A25BCD89B5FDEFFE071CA43A791AE625B64170C7F1431233904AA03AF35D30959CEFC76BC76068491E
Malicious:false
Reputation:unknown
URL:https://www.tracybentertainment.co.za/FNB-FICA-Registration-FNB-Online-Banking-Paid/css2/topMenu.css
Preview:@charset "utf-8";./*TOP MENU*/..minimalTopMenuAdjust .topMenu{height:24px}..topMenu{..font-family: Helvetica,FoundationRoman,Sans-serif;..position:fixed;..max-width: 1280px;..width:100%;..z-index: 150;..background: #f2f2f2; ..height: 64px;../* padding-left: 24px; */.}.ul.topNav{padding:0px;/* display: table */width: 100%;}..topNav{..height: 40px;..height: 100%;..position: relative;..padding:0px;..overflow:hidden;.}..hideTopNav{height:0;}..topNav li {..height: 100%;..cursor: pointer;..display: table;..float: left;..vertical-align: middle;../* border-collapse: collapse; */.}..topNav li:hover{background:#fbfbfb}..topNavScrollable{..position: relative;..height: 36px;.}...topNavContainer {..position: relative;..overflow: hidden;.}..topNavWrapper{../* margin: 0px 0px 0px 0px; */..padding: 0px 0px 0px 24px;..float: left;..width: 100%;.}..topNavWrapperMobi{..margin: 0;.}..topNav li a{..width: 100%;..font-size: 13px;..font-weight: normal;..text-decoration: none;..color: #888;../* display: inlin

Chrome Cache Entry: 98

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:ASCII text
Category:downloaded
Size (bytes):920
Entropy (8bit):4.786670384418711
Encrypted:false
SSDEEP:
MD5:EDEB5ED0BA919E881BE1FF321EA7A196
SHA1:2B0EF6246FB0B77E5BD05D98BE28C63A3138ED17
SHA-256:A3645B11132DD905D0BF1131BCE0DA3DEBCE080DCF805F917A947D6C73E96350
SHA-512:93A99B1583279332ADC5253C8D65CBFC9B852EB050090F2C8CA360FA48C4D45EC61419E10CE9C72BA437E4D1009D52F7C4E73CF1AC47F1B2D0277AB25FB55005
Malicious:false
Reputation:unknown
URL:https://www.tracybentertainment.co.za/FNB-FICA-Registration-FNB-Online-Banking-Paid/css2/reset_002.css
Preview:@charset "utf-8";./* reset css - eric meyer v2.0 */.body,div,span,applet,object,iframe,h1,h2,h3,h4,h5,h6,p,blockquote,pre,a,abbr,acronym,address,big,cite,code,del,dfn,em,.img,ins,kbd,q,s,samp,small,strike,strong,sub,sup,tt,var,b,u,i,center,dl,dt,dd,ol,ul,li,fieldset,form,label,legend,.table,caption,tbody,tfoot,thead,tr,th,td,article,aside,canvas,details,embed,figure,figcaption,footer,header,hgroup,menu,nav,.output,ruby,section,summary,time,mark,audio,video{..margin:0;..padding:0;..border:0;..font:inherit;..vertical-align:baseline;.}..article,aside,details,figcaption,figure,footer,header,hgroup,menu,nav,section{display:block;}.body {line-height:1;}.ol,ul {list-style:none;}.blockquote,q {quotes:none;}.blockquote:before,blockquote:after,q:before,q:after {content:none;}.table {border-collapse:collapse;border-spacing:0;}../* clearfix hack */..clearfix:after {. content: "";. display: table;. clear: both;.}.

Chrome Cache Entry: 99

Download File
Process:C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:ASCII text
Category:downloaded
Size (bytes):17403
Entropy (8bit):4.990954124977806
Encrypted:false
SSDEEP:
MD5:CB71E7F72D74D8EC06AD5B91D730134F
SHA1:5BEAA9359F558B36B22C124A53F62F745D404457
SHA-256:5DF5E2DF58451FD5FE182895BEE45DBD9C65792BBF93203362F7AB70CA81A5F7
SHA-512:235DEEBB6AC6A5F5619B871D1039FF7BF441DB9EFF0DD1E4C6D6BB2C6CB8AF0D1D502F9B0D5749C1D3D3C6271D75E3B02AF3426935202B88E17AABA7341A9AE5
Malicious:false
Reputation:unknown
URL:https://www.tracybentertainment.co.za/FNB-FICA-Registration-FNB-Online-Banking-Paid/css2/instantSales.css
Preview:#eziCoreContainer.instantSales [data-role="eziInner"] {..background: #fff;.}..#eziCoreContainer.instantSales .gridGroupInner {. display: table!important;.}..#eziCoreContainer.instantSales #eziPannelButtons{. width: 98%!important;.}..#eziCoreContainer.instantSales .instantSalesEzi02{..display: none!important;.}..#eziCoreContainer.instantSales .isTabMenu{. height: 48px;. position: relative;. width: 100%;. top: 10%;. clear: both;. background-color: #FFF;. border-bottom: 1px solid #dadada;.}.....#eziCoreContainer.instantSales .isTabMenu h2 {. cursor: pointer;. color: #a7a9ac;. border-bottom: 3px solid white;. -webkit-box-sizing: border-box;. -moz-box-sizing: border-box;. box-sizing: border-box;. clear: initial;.}..#eziCoreContainer.instantSales .instantSalesTopMenu {. -webkit-box-sizing: border-box;. -moz-box-sizing: border-box;. box-sizing: border-box;. position: relative;. width: auto;. float: left!important;. cursor:

Static File Info

General

File type:HTML document, Unicode text, UTF-8 (with BOM) text, with very long lines (427), with CRLF line terminators
Entropy (8bit):4.394422712754295
TrID:
  • HyperText Markup Language (15004/1) 83.32%
  • Text - UTF-8 encoded (3003/1) 16.68%
File name:Your ebucks R23.999 ready to be redeemed.html
File size:194'368 bytes
MD5:86abd7013180bc41bd60f7882ee9ddb9
SHA1:89922cf492b64bf7898f0f2967f27ff4ecc42aeb
SHA256:242d952a1cbc3373439c8a7595ae8e1a09cdb8338bdcbc4b2742e4e27fddce9d
SHA512:c67ec08e04219ddd16ebfed301c2b1094fcadd201ee02af202a31efb27b5c83eaa6746dfb84ac99f905151d5128299f27ee7bb706f646fe0167894ccbaaf15c8
SSDEEP:768:pP8MqtRVDkvaMwODYncP0BEKARlJPkcKTQlVKF5gB:2zpiaXODAIY4McKslA5gB
TLSH:2E14ED9190C2643352B3C0C6D1631B6BFDA20147D9492A54B3BD63E35FFAD61F8272AB
File Content Preview:...<!DOCTYPE html>..<html id="zaSkin" class="v2_2 minHeight ">.. <head>.. <meta http-equiv="content-type" content="text/html; charset=utf-8">.. <title></title>.. <meta http-equiv="X-UA-Compatible" content="IE=Edge">.. <meta name="vie

File Icon

Icon Hash:173149cccc490307