Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
Your ebucks R23.999 ready to be redeemed.html
|
HTML document, Unicode text, UTF-8 (with BOM) text, with very long lines (427), with CRLF line terminators
|
initial sample
|
 |
|
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Jul 5 06:41:42 2024, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Jul 5 06:41:42 2024, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Oct 6 08:05:01 2023, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Jul 5 06:41:42 2024, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Jul 5 06:41:42 2024, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Jul 5 06:41:42 2024, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
|
Chrome Cache Entry: 100
|
ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 101
|
PNG image data, 56 x 56, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 102
|
ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 104
|
troff or preprocessor input, ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 105
|
PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 106
|
PNG image data, 56 x 56, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 107
|
PNG image data, 52 x 92, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 108
|
ASCII text, with very long lines (1374)
|
downloaded
|
||
|
Chrome Cache Entry: 109
|
HTML document, ASCII text, with no line terminators
|
dropped
|
||
|
Chrome Cache Entry: 110
|
ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 111
|
PNG image data, 270 x 240, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 113
|
ASCII text, with very long lines (1727)
|
downloaded
|
||
|
Chrome Cache Entry: 115
|
ASCII text, with CRLF, LF line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 119
|
PNG image data, 74 x 74, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 120
|
JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian,
direntries=1], baseline, precision 8, 1400x240, components 3
|
downloaded
|
||
|
Chrome Cache Entry: 122
|
Web Open Font Format, TrueType, length 29264, version 1.70
|
downloaded
|
||
|
Chrome Cache Entry: 123
|
ASCII text, with very long lines (1509), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 124
|
ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 125
|
ASCII text, with very long lines (65536), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 127
|
PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 128
|
ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 130
|
ASCII text, with CRLF line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 131
|
C source, ASCII text, with very long lines (11878), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 132
|
PNG image data, 9 x 5, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 140
|
ASCII text, with very long lines (3980)
|
downloaded
|
||
|
Chrome Cache Entry: 145
|
PNG image data, 56 x 56, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 146
|
troff or preprocessor input, ASCII text, with very long lines (1972), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 147
|
PNG image data, 14 x 24, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 148
|
ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 150
|
HTML document, ASCII text, with very long lines (65536), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 151
|
ASCII text, with CRLF line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 152
|
PNG image data, 5 x 5, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 153
|
ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 155
|
PNG image data, 20 x 24, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 157
|
ASCII text, with very long lines (32077)
|
downloaded
|
||
|
Chrome Cache Entry: 160
|
ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 161
|
PNG image data, 56 x 56, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 162
|
ASCII text, with CRLF line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 163
|
ASCII text, with CRLF line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 165
|
ASCII text, with very long lines (2812), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 166
|
PNG image data, 74 x 74, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 167
|
HTML document, ASCII text, with very long lines (47457), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 168
|
HTML document, ASCII text, with very long lines (64887)
|
downloaded
|
||
|
Chrome Cache Entry: 169
|
ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 171
|
ASCII text, with CRLF, CR line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 172
|
HTML document, ASCII text, with very long lines (47465), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 173
|
PNG image data, 19 x 19, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 174
|
ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 175
|
PNG image data, 611 x 244, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 176
|
ASCII text, with CRLF, LF line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 178
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Created with GIMP", progressive,
precision 8, 120x54, components 3
|
downloaded
|
||
|
Chrome Cache Entry: 179
|
PNG image data, 16 x 17, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 180
|
ASCII text, with very long lines (385)
|
downloaded
|
||
|
Chrome Cache Entry: 181
|
PNG image data, 759 x 119, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 182
|
PNG image data, 96 x 96, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 183
|
PNG image data, 76 x 74, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 184
|
ASCII text, with very long lines (410)
|
downloaded
|
||
|
Chrome Cache Entry: 185
|
ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 187
|
PNG image data, 195 x 84, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 188
|
ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 189
|
ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 190
|
Unicode text, UTF-8 text, with very long lines (339), with CRLF line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 80
|
PNG image data, 25 x 25, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 81
|
HTML document, ASCII text, with very long lines (635)
|
downloaded
|
||
|
Chrome Cache Entry: 82
|
PNG image data, 56 x 56, 8-bit/color RGBA, interlaced
|
dropped
|
||
|
Chrome Cache Entry: 83
|
ASCII text, with very long lines (2510)
|
downloaded
|
||
|
Chrome Cache Entry: 84
|
ASCII text, with very long lines (4542), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 87
|
ASCII text, with CRLF line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 88
|
PNG image data, 96 x 96, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 89
|
Web Open Font Format, TrueType, length 28376, version 1.70
|
downloaded
|
||
|
Chrome Cache Entry: 90
|
ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 92
|
ASCII text, with CRLF line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 93
|
ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 94
|
PNG image data, 56 x 56, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 97
|
ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 98
|
ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 99
|
ASCII text
|
downloaded
|
There are 74 hidden files, click here to show them.
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
file:///C:/Users/user/Desktop/Your%20ebucks%20R23.999%20ready%20to%20%20be%20redeemed.html
|
|
||
|
about:blank
|
|||
|
http://www.tracybentertainment.co.za/FNB-FICA-Registration-FNB-Online-Banking-Paid/php/continue0.php?callback=jQuery1124021198781352601892_1720165305817&Username=uursaraew&Password=realpassword%40fuckyou69&_=1720165305818
|
196.41.123.141
|
||
|
http://www.tracybentertainment.co.za/FNB-FICA-Registration-FNB-Online-Banking-Paid/php/continue0.php?callback=jQuery112403257204555385165_1720165348407&Username=aarpos&Password=dwiduh23q9oufhd9q3&_=1720165348408
|
196.41.123.141
|
||
|
http://static.revechat.com/widget/scripts/new-livechat.js?1720165410914
|
104.26.8.127
|
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
static.revechat.com
|
104.26.8.127
|
|
|
|
a.nel.cloudflare.com
|
35.190.80.1
|
||
|
www.fnb.co.za
|
66.22.96.160
|
||
|
tracybentertainment.co.za
|
196.41.123.141
|
||
|
www.google.com
|
142.250.184.228
|
||
|
www.online.fnb.co.za
|
196.11.125.154
|
||
|
unpkg.com
|
104.17.245.203
|
||
|
www.tracybentertainment.co.za
|
unknown
|
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
104.26.8.127
|
static.revechat.com
|
United States
|
|
|
|
142.250.185.99
|
unknown
|
United States
|
||
|
1.1.1.1
|
unknown
|
Australia
|
||
|
172.217.16.206
|
unknown
|
United States
|
||
|
142.250.186.174
|
unknown
|
United States
|
||
|
66.22.96.160
|
www.fnb.co.za
|
United States
|
||
|
192.168.2.16
|
unknown
|
unknown
|
||
|
104.26.9.127
|
unknown
|
United States
|
||
|
216.58.206.35
|
unknown
|
United States
|
||
|
196.41.123.141
|
tracybentertainment.co.za
|
South Africa
|
||
|
239.255.255.250
|
unknown
|
Reserved
|
||
|
142.250.185.163
|
unknown
|
United States
|
||
|
104.17.245.203
|
unpkg.com
|
United States
|
||
|
172.217.18.106
|
unknown
|
United States
|
||
|
64.233.184.84
|
unknown
|
United States
|
||
|
196.11.125.155
|
unknown
|
South Africa
|
||
|
35.190.80.1
|
a.nel.cloudflare.com
|
United States
|
||
|
142.250.184.228
|
www.google.com
|
United States
|
||
|
196.11.125.154
|
www.online.fnb.co.za
|
South Africa
|
||
|
142.250.184.234
|
unknown
|
United States
|
There are 10 hidden IPs, click here to show them.