IOC Report
https://www.axessgroup.com/

loading gif

Files

File Path
Type
Category
Malicious
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed Oct 30 06:27:21 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
dropped
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed Oct 30 06:27:21 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
dropped
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed Oct 4 12:54:07 2023, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
dropped
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed Oct 30 06:27:21 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
dropped
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed Oct 30 06:27:21 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
dropped
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed Oct 30 06:27:21 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
dropped
Chrome Cache Entry: 104
ASCII text, with very long lines (333)
dropped
Chrome Cache Entry: 105
HTML document, ASCII text, with very long lines (65499)
downloaded
Chrome Cache Entry: 106
GIF image data, version 89a, 1 x 1
downloaded
Chrome Cache Entry: 107
ASCII text
downloaded
Chrome Cache Entry: 108
ASCII text, with very long lines (715), with no line terminators
downloaded
Chrome Cache Entry: 109
ASCII text
dropped
Chrome Cache Entry: 110
ASCII text, with very long lines (8075), with no line terminators
dropped
Chrome Cache Entry: 111
data
downloaded
Chrome Cache Entry: 112
ASCII text, with very long lines (26053), with no line terminators
downloaded
Chrome Cache Entry: 113
data
downloaded
Chrome Cache Entry: 114
HTML document, Unicode text, UTF-8 text, with very long lines (974)
dropped
Chrome Cache Entry: 115
Algol 68 source, ASCII text, with very long lines (23247)
downloaded
Chrome Cache Entry: 116
ASCII text, with very long lines (19948), with no line terminators
dropped
Chrome Cache Entry: 117
HTML document, ASCII text, with very long lines (65499)
dropped
Chrome Cache Entry: 118
ASCII text, with very long lines (65447)
dropped
Chrome Cache Entry: 119
ASCII text, with very long lines (15811), with no line terminators
downloaded
Chrome Cache Entry: 120
ASCII text, with very long lines (65499)
downloaded
Chrome Cache Entry: 121
ASCII text
downloaded
Chrome Cache Entry: 122
ASCII text
downloaded
Chrome Cache Entry: 123
ASCII text
downloaded
Chrome Cache Entry: 124
ASCII text, with very long lines (65465)
downloaded
Chrome Cache Entry: 125
C++ source, ASCII text
dropped
Chrome Cache Entry: 126
Unicode text, UTF-8 text, with very long lines (7511)
downloaded
Chrome Cache Entry: 127
HTML document, ASCII text, with very long lines (627), with no line terminators
downloaded
Chrome Cache Entry: 128
ASCII text, with very long lines (1741), with no line terminators
downloaded
Chrome Cache Entry: 129
ASCII text, with very long lines (65465)
dropped
Chrome Cache Entry: 130
ASCII text, with very long lines (9355), with no line terminators
downloaded
Chrome Cache Entry: 131
GIF image data, version 89a, 1 x 1
dropped
Chrome Cache Entry: 132
ASCII text
dropped
Chrome Cache Entry: 133
ASCII text
downloaded
Chrome Cache Entry: 134
PNG image data, 863 x 431, 8-bit colormap, non-interlaced
dropped
Chrome Cache Entry: 135
ASCII text, with very long lines (14243), with no line terminators
dropped
Chrome Cache Entry: 136
ASCII text
dropped
Chrome Cache Entry: 137
ASCII text, with very long lines (19948), with no line terminators
downloaded
Chrome Cache Entry: 138
ASCII text, with very long lines (333)
downloaded
Chrome Cache Entry: 139
HTML document, ASCII text, with very long lines (10758)
downloaded
Chrome Cache Entry: 140
ASCII text, with very long lines (810), with CRLF, CR, LF line terminators
downloaded
Chrome Cache Entry: 141
data
downloaded
Chrome Cache Entry: 142
data
downloaded
Chrome Cache Entry: 143
ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]
downloaded
Chrome Cache Entry: 144
MS Windows icon resource - 1 icon, -106x-106, 32 bits/pixel
dropped
Chrome Cache Entry: 145
C++ source, ASCII text
downloaded
Chrome Cache Entry: 146
MS Windows icon resource - 1 icon, -106x-106, 32 bits/pixel
downloaded
Chrome Cache Entry: 147
ASCII text, with very long lines (715), with no line terminators
dropped
Chrome Cache Entry: 148
ASCII text, with very long lines (14243), with no line terminators
downloaded
Chrome Cache Entry: 149
ASCII text, with very long lines (5360), with no line terminators
dropped
Chrome Cache Entry: 150
ASCII text, with very long lines (65499)
dropped
Chrome Cache Entry: 151
ASCII text, with very long lines (5901)
downloaded
Chrome Cache Entry: 152
ASCII text
downloaded
Chrome Cache Entry: 153
assembler source, ASCII text
downloaded
Chrome Cache Entry: 154
data
downloaded
Chrome Cache Entry: 155
JSON data
dropped
Chrome Cache Entry: 156
ASCII text, with very long lines (9355), with no line terminators
dropped
Chrome Cache Entry: 157
ASCII text, with very long lines (2279), with no line terminators
downloaded
Chrome Cache Entry: 158
ASCII text
dropped
Chrome Cache Entry: 159
RIFF (little-endian) data, Web/P image
downloaded
Chrome Cache Entry: 160
ASCII text, with no line terminators
downloaded
Chrome Cache Entry: 161
ASCII text
downloaded
Chrome Cache Entry: 162
JSON data
downloaded
Chrome Cache Entry: 163
ASCII text, with very long lines (8071), with no line terminators
downloaded
Chrome Cache Entry: 164
ASCII text, with very long lines (56338), with no line terminators
downloaded
Chrome Cache Entry: 165
ASCII text, with very long lines (5360), with no line terminators
downloaded
Chrome Cache Entry: 166
ASCII text
dropped
Chrome Cache Entry: 167
data
downloaded
Chrome Cache Entry: 168
ASCII text, with very long lines (65447)
downloaded
Chrome Cache Entry: 169
HTML document, Unicode text, UTF-8 text, with very long lines (974)
downloaded
Chrome Cache Entry: 170
data
downloaded
There are 64 hidden files, click here to show them.

Processes

Path
Cmdline
Malicious
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2168 --field-trial-handle=2108,i,9966897789486517722,10767561858992095875,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" "https://www.axessgroup.com/"

URLs

Name
IP
Malicious
https://www.axessgroup.com/
https://www.axessgroup.com/cdn-cgi/challenge-platform/h/g/jsd/r/8da9aeb42cac6bf6
172.66.40.199
https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015
104.16.80.73
https://ogp.me/ns#
unknown
https://www.axessgroup.com/digital/
unknown
https://www.axessgroup.com/wp-content/plugins/oxygen/component-framework/vendor/aos/aos.css?ver=6.6.
unknown
https://www.axessgroup.com/cdn-cgi/challenge-platform/scripts/jsd/main.js
172.66.40.199
https://www.axessgroup.com/wp-content/plugins/oxygen/component-framework/vendor/aos/aos.css?ver=6.6.2
172.66.40.199
https://www.axessgroup.com/market-sectors/renewables/
unknown
https://www.axessgroup.com/sustainability/responsible-business-conduct/
unknown
https://www.axessgroup.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1
172.66.40.199
https://www.axessgroup.com/wp-content/plugins/perfmatters/js/lazyload.min.js?ver=2.3.3
172.66.40.199
https://www.axessgroup.com/sustainability/low-carbon-solutions/
unknown
https://www.axessgroup.com/wp-content/uploads/oxygen/css/18.css?cache=1727148810&ver=6.6.2
172.66.40.199
https://www.axessgroup.com/annual-reports/
unknown
https://www.axessgroup.com/market-sectors/renewables/onshore-wind/
unknown
https://www.axessgroup.com/wp-content/plugins/oxyextras/components/assets/accessible-megamenu.js?ver=1.0.0
172.66.40.199
https://www.axessgroup.com/sustainability/climate-roadmap/
unknown
https://www.axessgroup.com/wp-content/uploads/2022/03/mmenu-light.polyfills.js?ver=1730186103
172.66.40.199
https://secure.gravatar.com/avatar/f99bd113964a5c5af8411e93547a6ed3?s=96&d=mm&r=g
unknown
https://www.axessgroup.com/market-sectors/oil-and-gas/
unknown
https://wp-rocket.me
unknown
https://www.axessgroup.com/advisory-services/
unknown
https://www.axessgroup.com/cdn-cgi/rum?
172.66.40.199
https://www.youtube.com/c/AxessNo/
unknown
https://www.axessgroup.com/wp-content/uploads/oxygen/css/2700.css?cache=1729754749&ver=6.6.2
172.66.40.199
https://www.axessgroup.com/sustainability/
unknown
https://www.axessgroup.com/wp-content/uploads/automatic-css/automatic-oxygen.css?ver=1692359952
172.66.40.199
https://www.cookiebot.com
unknown
https://www.axessgroup.com/wp-content/plugins/genesis-blocks/dist/assets/js/dismiss.js?ver=172083142
unknown
https://www.axessgroup.com/wp-content/reactpress/apps/offices-map/build/static/js/main.96b3ae8f.js?ver=1
172.66.40.199
https://outlook.office.com/owa/
unknown
https://www.axessgroup.com/inspection-services/drilling-equipment-inspection/
unknown
https://www.axessgroup.com/qc-services/welding-solutions/
unknown
http://www.videolan.org/x264.html
unknown
https://www.axessgroup.com/wp-content/uploads/oxygen/css/7.css?cache=1714389580&ver=6.6.2
172.66.40.199
https://www.axessgroup.com/qc-services/fabrication-follow-up/
unknown
https://www.axessgroup.com/axess-technologies/service-modifications/
unknown
https://www.axessgroup.com/market-sectors/oil-and-gas/fpso/
unknown
https://www.axessgroup.com/qc-services/
unknown
https://www.axessgroup.com/media/
unknown
https://www.axessgroup.com/marine-solutions/
unknown
https://www.axessgroup.com/wp-content/uploads/oxygen/css/universal.css?cache=1730183602&ver=6.6.2
172.66.40.199
https://axessgroup.sharepoint.com/SitePages/Home.aspx
unknown
https://www.axessgroup.com/axess-technologies/
unknown
https://www.axessgroup.com/wp-content/reactpress/apps/offices-map/build/static/css/main.0d224685.css?ver=6.6.2
172.66.40.199
https://www.axessgroup.com/wp-content/plugins/oxyextras/includes/js/gridbuildersupport.js?ver=1.0.2
172.66.40.199
https://www.axessgroup.com/market-sectors/oil-and-gas/surf/
unknown
https://www.axessgroup.com/inspection-services/storage-tank-inspection/
unknown
https://www.axessgroup.com/wp-content/uploads/2022/03/shutterstock_1854592921-1024x576.jpg
unknown
https://www.axessgroup.com/wp-content/reactpress/apps/offices-map/build/static/js/main.96b3ae8f.js?v
unknown
https://bridge.axess.no/
unknown
https://developer.mozilla.org/en-US/docs/Web/API/Element/matches
unknown
https://www.axessgroup.com/
https://www.axessgroup.com/wp-content/plugins/genesis-blocks/dist/style-blocks.build.css?ver=1720831429
172.66.40.199
https://www.axessgroup.com/wp-content/plugins/login-with-azure/css/style_login_widget.min.css?ver=2.
unknown
https://www.cookiebot.com/goto/privacy-policy/
unknown
https://www.axessgroup.com/inspection-services/lifting-equipment-inspection-certification/
unknown
https://www.axessgroup.com/#webpage
unknown
https://www.axessgroup.com/wp-content/uploads/2022/05/favicon.ico
unknown
https://schema.org
unknown
https://www.axessgroup.com/contact-us/
unknown
https://www.axessgroup.com/wp-content/plugins/oxyextras/components/assets/accessible-megamenu.js?ver
unknown
https://www.axessgroup.com/inspection-services/static-pressurised-equipment-inspection/
unknown
https://www.axessgroup.com/wp-content/plugins/oxyextras/components/assets/offcanvas-init.js?ver=1.0.
unknown
https://www.axessgroup.com/marine-solutions/marine-warranty-services/
unknown
https://github.com/jserz/js_piece/blob/master/DOM/ParentNode/append()/append().md
unknown
https://www.axessgroup.com/asset-evaluation/
unknown
https://www.linkedin.com/company/axessgroup/
unknown
https://www.axessgroup.com/inspection-services/non-destructive-testing/
unknown
https://www.axessgroup.com/market-sectors/refinery/
unknown
https://www.axessgroup.com/asset-integrity/maintenance-management/
unknown
https://www.trainingportal.no/mintra/saml/SSO
unknown
https://www.axessgroup.com/wp-content/plugins/oxyextras/components/assets/inert.js?ver=1.0.0
172.66.40.199
https://www.axessgroup.com/media/case-studies/
unknown
https://www.axessgroup.com/wp-content/plugins/genesis-blocks/dist/assets/js/dismiss.js?ver=1720831429
172.66.40.199
https://www.axessgroup.com/who-we-are/
unknown
https://www.axessgroup.com/?s=
unknown
https://www.axessgroup.com/management/
unknown
https://www.axessgroup.com/wp-content/plugins/genesis-blocks/dist/style-blocks.build.css?ver=1720831
unknown
https://customer-dwdwih684yg4qmko.cloudflarestream.com/058c788eb97d7c67d0caf0523188118a/downloads/default.mp4
104.16.97.114
https://www.axessgroup.com/wp-content/reactpress/apps/offices-map/build/static/media/WorldMap.11049f02ed26fd9f0e68.png
172.66.40.199
https://www.axessgroup.com/cdn-cgi/challenge-platform/h/g/scripts/jsd/f2bbd6738e15/main.js?
172.66.40.199
https://www.axessgroup.com/asset-integrity/trim-concept/
unknown
https://www.axessgroup.com/market-sectors/oil-and-gas/drilling/
unknown
https://www.axessgroup.com/asset-integrity/process-integrity/
unknown
https://www.axessgroup.com/market-sectors/infrastructure/
unknown
https://www.axessgroup.com/media/blog/
unknown
https://www.axessgroup.com/inspection-services/
unknown
https://www.axessgroup.com/whistleblowing/
unknown
https://www.axessgroup.com/wp-content/plugins/reactpress/public/js/reactpress-public.js?ver=3.3.0
172.66.40.199
http://elements.oxy.host/wp-content/uploads/sites/52/2020/07/atmosphere-blue-cloud-clouds-601798.jpg
unknown
https://github.com/adobe-accessibility/Accessible-Mega-Menu
unknown
https://www.axessgroup.com/hseq/
unknown
https://www.axessgroup.com/wp-content/uploads/2022/05/favicon-150x150.ico
172.66.40.199
https://erp.axessgroup.com/Ubwprodweb
unknown
https://www.axessgroup.com/careers/
unknown
https://www.axessgroup.com/wp-content/themes/oxygen-is-not-a-theme/assets/fonts/source-serif-pro/Sou
unknown
https://www.axessgroup.com/wp-content/plugins/oxygen/component-framework/oxygen.css?ver=4.9
172.66.40.199
https://www.instagram.com/axessgroup/
unknown
https://www.axessgroup.com/privacy-notice/
unknown
There are 90 hidden URLs, click here to show them.

Domains

Name
IP
Malicious
a.nel.cloudflare.com
35.190.80.1
static.cloudflareinsights.com
104.16.80.73
s-part-0017.t-0009.t-msedge.net
13.107.246.45
www.google.com
172.217.16.132
customer-dwdwih684yg4qmko.cloudflarestream.com
104.16.97.114
www.axessgroup.com
172.66.40.199
fp2e7a.wpc.phicdn.net
192.229.221.95
consentcdn.cookiebot.com
unknown
imgsct.cookiebot.com
unknown
consent.cookiebot.com
unknown

IPs

IP
Domain
Country
Malicious
192.168.2.4
unknown
unknown
192.168.2.5
unknown
unknown
104.16.80.73
static.cloudflareinsights.com
United States
192.168.2.22
unknown
unknown
239.255.255.250
unknown
Reserved
172.66.40.199
www.axessgroup.com
United States
104.16.97.114
customer-dwdwih684yg4qmko.cloudflarestream.com
United States
35.190.80.1
a.nel.cloudflare.com
United States
172.217.16.132
www.google.com
United States

DOM / HTML

URL
Malicious
https://www.axessgroup.com/
https://www.axessgroup.com/
https://www.axessgroup.com/
https://www.axessgroup.com/
https://www.axessgroup.com/
https://www.axessgroup.com/
https://www.axessgroup.com/