Edit tour

Windows Analysis Report
http://527newagain.top

Overview

General Information

Sample URL:	http://527newagain.top
Analysis ID:	1556651

Detection

Score:	64
Range:	0 - 100
Whitelisted:	false
Confidence:	100%

Signatures

Antivirus / Scanner detection for submitted sample

Antivirus detection for URL or domain

Suricata IDS alerts for network traffic

Stores files to the Windows start menu directory

Classification

Process Tree

System is w10x64_ra

chrome.exe (PID: 6520 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank" MD5: 83395EAB5B03DEA9720F8D7AC0D15CAA)

chrome.exe (PID: 6748 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2232 --field-trial-handle=1984,i,16941084558583905534,16310949141595000274,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 MD5: 83395EAB5B03DEA9720F8D7AC0D15CAA)

chrome.exe (PID: 5708 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" "http://527newagain.top" MD5: 83395EAB5B03DEA9720F8D7AC0D15CAA)

cleanup

Yara Signatures

⊘No yara matches

Sigma Signatures

⊘No Sigma rule has matched

Suricata Signatures

ETPRO MALWARE TA582 Domain in DNS Lookup

Timestamp	SID	Severity	Classtype	Source IP	Source Port	Destination IP	Destination Port	Protocol
2024-11-15T18:55:18.114408+0100	2859025	1	Domain Observed Used for C2 Detected	192.168.2.17	57143	1.1.1.1	53	UDP
2024-11-15T18:55:18.114408+0100	2859025	1	Domain Observed Used for C2 Detected	192.168.2.17	57143	1.1.1.1	53	UDP
2024-11-15T18:55:18.114530+0100	2859025	1	Domain Observed Used for C2 Detected	192.168.2.17	54682	1.1.1.1	53	UDP
2024-11-15T18:55:18.114530+0100	2859025	1	Domain Observed Used for C2 Detected	192.168.2.17	54682	1.1.1.1	53	UDP
2024-11-15T18:55:18.122449+0100	2859025	1	Domain Observed Used for C2 Detected	192.168.2.17	64163	1.1.1.1	53	UDP
2024-11-15T18:55:18.122449+0100	2859025	1	Domain Observed Used for C2 Detected	192.168.2.17	64163	1.1.1.1	53	UDP
2024-11-15T18:55:18.122757+0100	2859025	1	Domain Observed Used for C2 Detected	192.168.2.17	52723	1.1.1.1	53	UDP
2024-11-15T18:55:18.122757+0100	2859025	1	Domain Observed Used for C2 Detected	192.168.2.17	52723	1.1.1.1	53	UDP

Joe Sandbox Signatures

Click to jump to signature section

Show All Signature Results

AV Detection

Antivirus / Scanner detection for submitted sample

Source: http://527newagain.top

Avira URL Cloud: detection malicious, Label: malware

Antivirus detection for URL or domain

Source: http://527newagain.top/

Avira URL Cloud: Label: malware

Source: https://www.google.com/	HTTP Parser: No favicon
Source: https://www.google.com/	HTTP Parser: No favicon
Source: https://www.google.com/	HTTP Parser: No favicon
Source: https://www.google.com/	HTTP Parser: No favicon
Source: https://www.google.com/	HTTP Parser: No favicon
Source: https://www.google.com/	HTTP Parser: No favicon
Source: https://www.google.com/	HTTP Parser: No favicon

Source: unknown	HTTPS traffic detected: 20.109.210.53:443 -> 192.168.2.17:49708 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.17:49725 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.17:49739 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 20.109.210.53:443 -> 192.168.2.17:49850 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 40.126.32.138:443 -> 192.168.2.17:49851 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.5.88:443 -> 192.168.2.17:49852 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 2.23.209.177:443 -> 192.168.2.17:49853 version: TLS 1.2

Networking

Suricata IDS alerts for network traffic

Source: Network traffic	Suricata IDS: 2859025 - Severity 1 - ETPRO MALWARE TA582 Domain in DNS Lookup : 192.168.2.17:52723 -> 1.1.1.1:53
Source: Network traffic	Suricata IDS: 2859025 - Severity 1 - ETPRO MALWARE TA582 Domain in DNS Lookup : 192.168.2.17:57143 -> 1.1.1.1:53
Source: Network traffic	Suricata IDS: 2859025 - Severity 1 - ETPRO MALWARE TA582 Domain in DNS Lookup : 192.168.2.17:64163 -> 1.1.1.1:53
Source: Network traffic	Suricata IDS: 2859025 - Severity 1 - ETPRO MALWARE TA582 Domain in DNS Lookup : 192.168.2.17:54682 -> 1.1.1.1:53

Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.13
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.13
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.13
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.13
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.13
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 192.229.211.108
Source: unknown	TCP traffic detected without corresponding DNS query: 192.229.211.108
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.13
Source: unknown	TCP traffic detected without corresponding DNS query: 192.229.211.108
Source: unknown	TCP traffic detected without corresponding DNS query: 192.229.211.108

Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: 527newagain.topConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: 527newagain.topConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: 527newagain.topConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: 527newagain.topConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9

Source: global traffic	DNS traffic detected: DNS query: 527newagain.top
Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: apis.google.com
Source: global traffic	DNS traffic detected: DNS query: play.google.com
Source: global traffic	DNS traffic detected: DNS query: about.google
Source: global traffic	DNS traffic detected: DNS query: lh3.googleusercontent.com
Source: global traffic	DNS traffic detected: DNS query: www.blog.google
Source: global traffic	DNS traffic detected: DNS query: csp.withgoogle.com
Source: global traffic	DNS traffic detected: DNS query: blog.google
Source: global traffic	DNS traffic detected: DNS query: scone-pa.clients6.google.com

Source: unknown	Network traffic detected: HTTP traffic on port 49708 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49865
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49864
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49742
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49863
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49741
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49862
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49740
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49861
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49860
Source: unknown	Network traffic detected: HTTP traffic on port 49926 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49789 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49800 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49932 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49766 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49898 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49743 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49875 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49720 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49852 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49795 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49739
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49738
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49859
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49737
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49858
Source: unknown	Network traffic detected: HTTP traffic on port 49881 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49736
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49857
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49735
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49856
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49734
Source: unknown	Network traffic detected: HTTP traffic on port 49772 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49855
Source: unknown	Network traffic detected: HTTP traffic on port 49675 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49853
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49731
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49852
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49851
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49850
Source: unknown	Network traffic detected: HTTP traffic on port 49812 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49858 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49893 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49784 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49915 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49909 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49823 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49729
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49728
Source: unknown	Network traffic detected: HTTP traffic on port 49777 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49849
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49727
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49848
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49726
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49847
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49725
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49846
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49724
Source: unknown	Network traffic detected: HTTP traffic on port 49790 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49721
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49720
Source: unknown	Network traffic detected: HTTP traffic on port 49731 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49748 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49760 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49892 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49828 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49933 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49719
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49718
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49717
Source: unknown	Network traffic detected: HTTP traffic on port 49904 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49715 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49680 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49837
Source: unknown	Network traffic detected: HTTP traffic on port 49847 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49715
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49836
Source: unknown	Network traffic detected: HTTP traffic on port 49921 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49835
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49712
Source: unknown	Network traffic detected: HTTP traffic on port 49887 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49831
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49830
Source: unknown	Network traffic detected: HTTP traffic on port 49864 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49927 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49822 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49726 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49870 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49910 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49765 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49853 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49796 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49708
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49829
Source: unknown	Network traffic detected: HTTP traffic on port 49811 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49828
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49706
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49826
Source: unknown	Network traffic detected: HTTP traffic on port 49754 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49824
Source: unknown	Network traffic detected: HTTP traffic on port 49737 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49823
Source: unknown	Network traffic detected: HTTP traffic on port 49771 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49822
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49788
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49787
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49786
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49785
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49784
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49780
Source: unknown	Network traffic detected: HTTP traffic on port 49836 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49916 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49785 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49776 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49736 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49868 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49759 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49779
Source: unknown	Network traffic detected: HTTP traffic on port 49753 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49778
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49899
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49777
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49898
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49776
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49897
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49775
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49896
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49774
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49895
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49773
Source: unknown	Network traffic detected: HTTP traffic on port 49862 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49894
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49772
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49893
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49771
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49892
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49770
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49891
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49890
Source: unknown	Network traffic detected: HTTP traffic on port 49724 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49742 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49897 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49780 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49879 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49911 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49851 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49830 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49905 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49718 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49769
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49768
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49767
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49888
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49766
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49887
Source: unknown	Network traffic detected: HTTP traffic on port 49758 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49765
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49764
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49763
Source: unknown	Network traffic detected: HTTP traffic on port 49863 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49884
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49762
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49883
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49761
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49882
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49760
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49881
Source: unknown	Network traffic detected: HTTP traffic on port 49928 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49880
Source: unknown	Network traffic detected: HTTP traffic on port 49725 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49741 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49857 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49764 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49896 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49770 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49719 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49801 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49824 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49759
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49758
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49879
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49757
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49878
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49877
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49876
Source: unknown	Network traffic detected: HTTP traffic on port 49698 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49754
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49875
Source: unknown	Network traffic detected: HTTP traffic on port 49891 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49753
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49874
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49752
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49873
Source: unknown	Network traffic detected: HTTP traffic on port 49923 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49751
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49872
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49750
Source: unknown	Network traffic detected: HTTP traffic on port 49818 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49871
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49870
Source: unknown	Network traffic detected: HTTP traffic on port 49835 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49917 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49786 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49874 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49747 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49829 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49880 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49934 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49775 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49846 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49748
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49747
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49868
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49746
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49745
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49866
Source: unknown	Network traffic detected: HTTP traffic on port 49890 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49746 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49878 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49769 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49912 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49935 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49826 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49906 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49717 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49849 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49900 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49866 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49698
Source: unknown	Network traffic detected: HTTP traffic on port 49820 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49837 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49929 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49690
Source: unknown	Network traffic detected: HTTP traffic on port 49872 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49728 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49763 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49855 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49700 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49752 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49861 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49735 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49901 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49924 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49706 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49712 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49918 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49873 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49787 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49930 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49729 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49745 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49850 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49831 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49751 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49774 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49757 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49799
Source: unknown	Network traffic detected: HTTP traffic on port 49734 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49796
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49795
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49794
Source: unknown	Network traffic detected: HTTP traffic on port 49814 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49790
Source: unknown	Network traffic detected: HTTP traffic on port 49740 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49856 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49895 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49768 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49808 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49884 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49907 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49789
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49700
Source: unknown	Network traffic detected: HTTP traffic on port 49865 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49820
Source: unknown	Network traffic detected: HTTP traffic on port 49779 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49727 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49859 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49871 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49762 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49894 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49818
Source: unknown	Network traffic detected: HTTP traffic on port 49799 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49810 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49816
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49936
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49814
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49935
Source: unknown	Network traffic detected: HTTP traffic on port 49902 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49934
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49812
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49933
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49811
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49932
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49810
Source: unknown	Network traffic detected: HTTP traffic on port 49816 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49931
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49930
Source: unknown	Network traffic detected: HTTP traffic on port 49925 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49919 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49788 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49767 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49721 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49794 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49936 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49876 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49808
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49929
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49928
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49927
Source: unknown	Network traffic detected: HTTP traffic on port 49848 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49882 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49926
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49925
Source: unknown	Network traffic detected: HTTP traffic on port 49773 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49924
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49923
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49801
Source: unknown	Network traffic detected: HTTP traffic on port 49739 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49800
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49921
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49920
Source: unknown	Network traffic detected: HTTP traffic on port 49877 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49914 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49690 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49908 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49919
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49918
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49917
Source: unknown	Network traffic detected: HTTP traffic on port 49860 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49883 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49916
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49915
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49914
Source: unknown	Network traffic detected: HTTP traffic on port 49778 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49912
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49911
Source: unknown	Network traffic detected: HTTP traffic on port 49738 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49910
Source: unknown	Network traffic detected: HTTP traffic on port 49931 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49761 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49899 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49909
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49908
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49907
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49906
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49905
Source: unknown	Network traffic detected: HTTP traffic on port 49750 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49904
Source: unknown	Network traffic detected: HTTP traffic on port 49920 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49902
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49901
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49900
Source: unknown	Network traffic detected: HTTP traffic on port 49888 -> 443

Source: unknown	HTTPS traffic detected: 20.109.210.53:443 -> 192.168.2.17:49708 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.17:49725 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.17:49739 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 20.109.210.53:443 -> 192.168.2.17:49850 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 40.126.32.138:443 -> 192.168.2.17:49851 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.5.88:443 -> 192.168.2.17:49852 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 2.23.209.177:443 -> 192.168.2.17:49853 version: TLS 1.2

Source: classification engine

Classification label: mal64.win@20/80@42/348

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2232 --field-trial-handle=1984,i,16941084558583905534,16310949141595000274,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "http://527newagain.top"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2232 --field-trial-handle=1984,i,16941084558583905534,16310949141595000274,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown

Source: Window Recorder

Window detected: More than 3 window changes detected

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk

Mitre Att&ck Matrix

Reconnaissance	Resource Development	Initial Access	Execution	Persistence	Privilege Escalation	Defense Evasion	Credential Access	Discovery	Lateral Movement	Collection	Command and Control	Exfiltration	Impact
Gather Victim Identity Information	Acquire Infrastructure	Valid Accounts	Windows Management Instrumentation	1 Registry Run Keys / Startup Folder	1 Process Injection	1 Masquerading	OS Credential Dumping	System Service Discovery	Remote Services	Data from Local System	2 Encrypted Channel	Exfiltration Over Other Network Medium	Abuse Accessibility Features
Credentials	Domains	Default Accounts	Scheduled Task/Job	Boot or Logon Initialization Scripts	1 Registry Run Keys / Startup Folder	1 Process Injection	LSASS Memory	Application Window Discovery	Remote Desktop Protocol	Data from Removable Media	2 Non-Application Layer Protocol	Exfiltration Over Bluetooth	Network Denial of Service
Email Addresses	DNS Server	Domain Accounts	At	Logon Script (Windows)	Logon Script (Windows)	Obfuscated Files or Information	Security Account Manager	Query Registry	SMB/Windows Admin Shares	Data from Network Shared Drive	3 Application Layer Protocol	Automated Exfiltration	Data Encrypted for Impact
Employee Names	Virtual Private Server	Local Accounts	Cron	Login Hook	Login Hook	Binary Padding	NTDS	System Network Configuration Discovery	Distributed Component Object Model	Input Capture	1 Ingress Tool Transfer	Traffic Duplication	Data Destruction

Screenshots

Thumbnails

This section contains all screenshots as thumbnails, including those not shown in the slideshow.

Antivirus, Machine Learning and Genetic Malware Detection

Initial Sample

Source	Detection	Scanner	Label	Link
http://527newagain.top	100%	Avira URL Cloud	malware

Dropped Files

⊘No Antivirus matches

Unpacked PE Files

⊘No Antivirus matches

Domains

⊘No Antivirus matches

URLs

Source	Detection	Scanner	Label	Link
http://527newagain.top/	100%	Avira URL Cloud	malware

Domains and IPs

Contacted Domains

Name	IP	Active	Malicious	Reputation
scone-pa.clients6.google.com	142.250.185.74	true	false	unknown
csp.withgoogle.com	216.58.206.81	true	false	high
plus.l.google.com	142.250.186.46	true	false	high
play.google.com	142.250.185.174	true	false	high
ghs-svc-https-sni.ghs-ssl.googlehosted.com	142.250.185.179	true	false	unknown
www.google.com	216.58.206.68	true	false	high
blog.google	216.239.38.21	true	false	unknown
527newagain.top	64.52.80.52	true	false	unknown
googlehosted.l.googleusercontent.com	142.250.185.65	true	false	high
about.google	216.239.32.29	true	false	unknown
www.blog.google	unknown	unknown	false	unknown
lh3.googleusercontent.com	unknown	unknown	false	high
apis.google.com	unknown	unknown	false	high

Contacted URLs

Name	Malicious	Antivirus Detection	Reputation
http://527newagain.top/	true	Avira URL Cloud: malware	unknown
https://about.google/?fg=1&utm_source=google-US&utm_medium=referral&utm_campaign=hp-header	false		unknown
https://www.google.com/	false		high

World Map of Contacted IPs

No. of IPs < 25%
25% < No. of IPs < 50%
50% < No. of IPs < 75%
75% < No. of IPs

Public IPs

IP	Domain	Country	ASN	ASN Name	Malicious
142.250.186.46	plus.l.google.com	United States	15169	GOOGLEUS	false
142.250.185.99	unknown	United States	15169	GOOGLEUS	false
172.217.16.138	unknown	United States	15169	GOOGLEUS	false
64.52.80.52	527newagain.top	United States	7029	WINDSTREAMUS	false
172.217.18.14	unknown	United States	15169	GOOGLEUS	false
172.217.23.106	unknown	United States	15169	GOOGLEUS	false
142.250.185.106	unknown	United States	15169	GOOGLEUS	false
216.58.206.35	unknown	United States	15169	GOOGLEUS	false
74.125.206.84	unknown	United States	15169	GOOGLEUS	false
142.250.185.164	unknown	United States	15169	GOOGLEUS	false
216.239.38.21	blog.google	United States	15169	GOOGLEUS	false
172.217.18.10	unknown	United States	15169	GOOGLEUS	false
172.217.18.110	unknown	United States	15169	GOOGLEUS	false
172.217.16.142	unknown	United States	15169	GOOGLEUS	false
142.250.185.65	googlehosted.l.googleusercontent.com	United States	15169	GOOGLEUS	false
216.239.32.178	unknown	United States	15169	GOOGLEUS	false
142.250.184.195	unknown	United States	15169	GOOGLEUS	false
216.239.32.29	about.google	United States	15169	GOOGLEUS	false
216.58.206.81	csp.withgoogle.com	United States	15169	GOOGLEUS	false
142.250.186.59	unknown	United States	15169	GOOGLEUS	false
1.1.1.1	unknown	Australia	13335	CLOUDFLARENETUS	true
216.58.212.155	unknown	United States	15169	GOOGLEUS	false
172.217.16.206	unknown	United States	15169	GOOGLEUS	false
142.250.186.163	unknown	United States	15169	GOOGLEUS	false
172.217.18.3	unknown	United States	15169	GOOGLEUS	false
142.250.185.179	ghs-svc-https-sni.ghs-ssl.googlehosted.com	United States	15169	GOOGLEUS	false
142.250.185.110	unknown	United States	15169	GOOGLEUS	false
142.250.185.138	unknown	United States	15169	GOOGLEUS	false
216.58.206.68	www.google.com	United States	15169	GOOGLEUS	false
142.250.181.227	unknown	United States	15169	GOOGLEUS	false
239.255.255.250	unknown	Reserved	unknown	unknown	false
142.250.185.174	play.google.com	United States	15169	GOOGLEUS	false
142.250.186.142	unknown	United States	15169	GOOGLEUS	false
142.250.185.72	unknown	United States	15169	GOOGLEUS	false
142.250.186.42	unknown	United States	15169	GOOGLEUS	false
142.250.185.74	scone-pa.clients6.google.com	United States	15169	GOOGLEUS	false
142.250.185.97	unknown	United States	15169	GOOGLEUS	false
142.250.186.104	unknown	United States	15169	GOOGLEUS	false
142.250.184.234	unknown	United States	15169	GOOGLEUS	false

Private

IP
192.168.2.17

General Information

Joe Sandbox version:	41.0.0 Charoite
Analysis ID:	1556651
Start date and time:	2024-11-15 18:54:39 +01:00
Joe Sandbox product:	CloudBasic
Overall analysis duration:
Hypervisor based Inspection enabled:	false
Report type:	full
Cookbook file name:	defaultwindowsinteractivecookbook.jbs
Sample URL:	http://527newagain.top
Analysis system description:	Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
Number of analysed new started processes analysed:	20
Number of new started drivers analysed:	0
Number of existing processes analysed:	0
Number of existing drivers analysed:	0
Number of injected processes analysed:	0
Technologies:	EGA enabled
Analysis Mode:	stream
Analysis stop reason:	Timeout
Detection:	MAL
Classification:	mal64.win@20/80@42/348

Warnings

Exclude process from analysis (whitelisted): TextInputHost.exe
Excluded IPs from analysis (whitelisted): 142.250.184.195, 74.125.206.84, 172.217.16.142, 34.104.35.123, 192.229.221.95, 172.217.18.3, 142.250.186.42, 172.217.16.138, 142.250.186.138, 216.58.206.42, 142.250.185.170, 172.217.18.10, 142.250.186.170, 142.250.185.74, 142.250.184.234, 142.250.186.106, 142.250.184.202, 142.250.181.234, 142.250.185.202, 172.217.16.202, 142.250.185.234, 142.250.185.138, 142.250.181.227, 142.250.185.106, 142.250.74.202, 216.58.206.74, 142.250.186.74, 216.58.212.138
Excluded domains from analysis (whitelisted): fs.microsoft.com, clients2.google.com, ocsp.digicert.com, accounts.google.com, edgedl.me.gvt1.com, content-autofill.googleapis.com, slscr.update.microsoft.com, clientservices.googleapis.com, ogads-pa.googleapis.com, clients.l.google.com, www.gstatic.com, fe3cr.delivery.mp.microsoft.com
Not all processes where analyzed, report is missing behavior information
VT rate limit hit for: http://527newagain.top

LLM Input / Output

Input	Output
URL: http://527newagain.top Model: Joe Sandbox AI	{ "typosquatting": false, "unusual_query_string": false, "suspicious_tld": true, "ip_in_url": false, "long_subdomain": false, "malicious_keywords": false, "encoded_characters": false, "redirection": false, "contains_email_address": false, "known_domain": false, "brand_spoofing_attempt": false, "third_party_hosting": true }
URL: http://527newagain.top
URL: https://www.google.com/ Model: Joe Sandbox AI	```json { "contains_trigger_text": false, "trigger_text": "unknown", "prominent_button_name": "unknown", "text_input_field_labels": "unknown", "pdf_icon_visible": false, "has_visible_captcha": false, "has_urgent_text": false, "has_visible_qrcode": false }

URL: https://www.google.com Model: Joe Sandbox AI	{ "typosquatting": false, "unusual_query_string": false, "suspicious_tld": false, "ip_in_url": false, "long_subdomain": false, "malicious_keywords": false, "encoded_characters": false, "redirection": false, "contains_email_address": false, "known_domain": true, "brand_spoofing_attempt": false, "third_party_hosting": false }
URL: https://www.google.com
URL: https://www.google.com/ Model: Joe Sandbox AI	```json { "brands": [ "Google" ] }
	```json { "brands": [ "Google" ] }
URL: https://about.google/?fg=1&utm_source=google-US&utm_medium=referral&utm_campaign=hp-header Model: Joe Sandbox AI	```json { "contains_trigger_text": false, "trigger_text": "unknown", "prominent_button_name": "unknown", "text_input_field_labels": "unknown", "pdf_icon_visible": false, "has_visible_captcha": false, "has_urgent_text": false, "has_visible_qrcode": false }

URL: https://about.google Model: Joe Sandbox AI	{ "typosquatting": false, "unusual_query_string": false, "suspicious_tld": false, "ip_in_url": false, "long_subdomain": false, "malicious_keywords": false, "encoded_characters": false, "redirection": false, "contains_email_address": false, "known_domain": true, "brand_spoofing_attempt": false, "third_party_hosting": false }
URL: https://about.google
URL: https://about.google/?fg=1&utm_source=google-US&utm_medium=referral&utm_campaign=hp-header Model: Joe Sandbox AI	```json { "brands": [ "Google" ] }
	```json { "brands": [ "Google" ] }

Created / dropped Files

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Nov 15 16:55:18 2024, atime=Mon Oct 2 20:46:57 2023, length=1210144, window=hide
Category:	dropped
Size (bytes):	2677
Entropy (8bit):	3.9859709707739084
Encrypted:	false
SSDEEP:
MD5:	C926DF88EB2B591770AA037F8F3320AB
SHA1:	43E2C7D7D33A09525B0B494C891302CB838F65E5
SHA-256:	040A1BDFDA67A4146F56200DB23EDAAA022B3668E533F66DA001E10A6B3110DA
SHA-512:	37389E3483AD4D3CC3E62F3389658ADFCB68499B05E960860745B4EAC374AD12989617AD3E0EB18EA06AB5A739EE1E5A41BE06DC319A4275B8DC1B77A529979B
Malicious:	false
Reputation:	unknown
Preview:	L..................F.@.. ...$+.,.....pT..7......y... w......................1....P.O. .:i.....+00.../C:\.....................1.....FWoN..PROGRA~1..t......O.IoY.....B...............J.........P.r.o.g.r.a.m. .F.i.l.e.s...@.s.h.e.l.l.3.2...d.l.l.,.-.2.1.7.8.1.....T.1.....CW.V..Google..>......CW.VoY.....L.....................p+j.G.o.o.g.l.e.....T.1.....FW.N..Chrome..>......CW.VoY.....M......................W..C.h.r.o.m.e.....`.1.....FW.N..APPLIC~1..H......CW.VoY............................W..A.p.p.l.i.c.a.t.i.o.n.....n.2. w..BW. .CHROME~1.EXE..R......CW.VoY............................3.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.......j...............-.......i...........&a.......C:\Program Files\Google\Chrome\Application\chrome_proxy.exe..S.....\.....\.....\.....\.....\.....\.....\.....\.....\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.\.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.*.C.:.\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.F

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Nov 15 16:55:18 2024, atime=Mon Oct 2 20:46:57 2023, length=1210144, window=hide
Category:	dropped
Size (bytes):	2679
Entropy (8bit):	4.00351721235587
Encrypted:	false
SSDEEP:
MD5:	257DF96C9F5DCD863E8C8B2ACCA964E0
SHA1:	C0F3D0920A1AA02C3A7C72C5ED4CED02C0CED9F1
SHA-256:	5EE4C2AE3E2A426C33CA7F515D7731042428052501F4515C575043CBA59EA494
SHA-512:	B3407E0F43F86FE265DEFB00B589A7D6F7A1863880B960247AE518DC948B78FDD4CCE3070BE045BCFAA8397345A0028CB4FE9958077FC9F4A9CA0E723B457036
Malicious:	false
Reputation:	unknown
Preview:	L..................F.@.. ...$+.,....q.C..7......y... w......................1....P.O. .:i.....+00.../C:\.....................1.....FWoN..PROGRA~1..t......O.IoY.....B...............J.........P.r.o.g.r.a.m. .F.i.l.e.s...@.s.h.e.l.l.3.2...d.l.l.,.-.2.1.7.8.1.....T.1.....CW.V..Google..>......CW.VoY.....L.....................p+j.G.o.o.g.l.e.....T.1.....FW.N..Chrome..>......CW.VoY.....M......................W..C.h.r.o.m.e.....`.1.....FW.N..APPLIC~1..H......CW.VoY............................W..A.p.p.l.i.c.a.t.i.o.n.....n.2. w..BW. .CHROME~1.EXE..R......CW.VoY............................3.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.......j...............-.......i...........&a.......C:\Program Files\Google\Chrome\Application\chrome_proxy.exe..S.....\.....\.....\.....\.....\.....\.....\.....\.....\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.\.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.*.C.:.\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.F

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Oct 6 08:54:41 2023, atime=Mon Oct 2 20:46:57 2023, length=1210144, window=hide
Category:	dropped
Size (bytes):	2693
Entropy (8bit):	4.013931737888925
Encrypted:	false
SSDEEP:
MD5:	B8867B3E71630318705C21D70AE5C6A0
SHA1:	68026E0D35BCD94B68E0F04E48660B8F158929F2
SHA-256:	8C7E615E63DB90209BFB76BD7DE3DC5EFE84C4F3D7407FC38BA2A29F99D7FF4D
SHA-512:	CC1B121D57DD51DB76E8317901CB75234C2C062C78807DFE489E74A19288EEB1574C7D8B8A8AB3ED3C66682E12FEC8CD54E1B8F2F7F5F802D3C94E9AD9111EF1
Malicious:	false
Reputation:	unknown
Preview:	L..................F.@.. ...$+.,.....v. ;.......y... w......................1....P.O. .:i.....+00.../C:\.....................1.....FWoN..PROGRA~1..t......O.IoY.....B...............J.........P.r.o.g.r.a.m. .F.i.l.e.s...@.s.h.e.l.l.3.2...d.l.l.,.-.2.1.7.8.1.....T.1.....CW.V..Google..>......CW.VoY.....L.....................p+j.G.o.o.g.l.e.....T.1.....FW.N..Chrome..>......CW.VoY.....M......................W..C.h.r.o.m.e.....`.1.....FW.N..APPLIC~1..H......CW.VoY............................W..A.p.p.l.i.c.a.t.i.o.n.....n.2. w..BW. .CHROME~1.EXE..R......CW.VFW.N...........................3.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.......j...............-.......i...........&a.......C:\Program Files\Google\Chrome\Application\chrome_proxy.exe..S.....\.....\.....\.....\.....\.....\.....\.....\.....\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.\.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.*.C.:.\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.F

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Nov 15 16:55:18 2024, atime=Mon Oct 2 20:46:57 2023, length=1210144, window=hide
Category:	dropped
Size (bytes):	2681
Entropy (8bit):	4.002840160032576
Encrypted:	false
SSDEEP:
MD5:	2763D68FD38F36D6DF77F60B64B25AA2
SHA1:	9DCBE2C403431B6B9EB4F0737F313010C083D093
SHA-256:	66EA0CB863CFEE5535D12C95188935CA49BC2778E9EAC4E856F9B23989152206
SHA-512:	B2576EB2AA9845A65D470AD680E5A02C3BC2E6B5E1071238B669622A389889B67AB7D1308DF33CE390357EC86F9F2AD1460068646B88603B92B1ADED1056898A
Malicious:	false
Reputation:	unknown
Preview:	L..................F.@.. ...$+.,.....=..7......y... w......................1....P.O. .:i.....+00.../C:\.....................1.....FWoN..PROGRA~1..t......O.IoY.....B...............J.........P.r.o.g.r.a.m. .F.i.l.e.s...@.s.h.e.l.l.3.2...d.l.l.,.-.2.1.7.8.1.....T.1.....CW.V..Google..>......CW.VoY.....L.....................p+j.G.o.o.g.l.e.....T.1.....FW.N..Chrome..>......CW.VoY.....M......................W..C.h.r.o.m.e.....`.1.....FW.N..APPLIC~1..H......CW.VoY............................W..A.p.p.l.i.c.a.t.i.o.n.....n.2. w..BW. .CHROME~1.EXE..R......CW.VoY............................3.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.......j...............-.......i...........&a.......C:\Program Files\Google\Chrome\Application\chrome_proxy.exe..S.....\.....\.....\.....\.....\.....\.....\.....\.....\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.\.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.*.C.:.\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.F

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Nov 15 16:55:18 2024, atime=Mon Oct 2 20:46:57 2023, length=1210144, window=hide
Category:	dropped
Size (bytes):	2681
Entropy (8bit):	3.9921298135002035
Encrypted:	false
SSDEEP:
MD5:	CD9C5A10E1BE5CCD0F2008A2A31BBE9B
SHA1:	26F2A9ABDA2AE4FE0104CC2EA426D6B5F58073FC
SHA-256:	B10DB48AE5DF4C690C5AAF7F82297C1EF606C9DD2DEB31691B610A49F856D02A
SHA-512:	76FC0170FCA808431D8AA4BE6A7F0DDD8A79AC36234D00072A11CCD94A606249BC8BF5D5F25AD288A4DE80A746E27A90416C267F90E390DA11410F2B54E904AB
Malicious:	false
Reputation:	unknown
Preview:	L..................F.@.. ...$+.,....{.M..7......y... w......................1....P.O. .:i.....+00.../C:\.....................1.....FWoN..PROGRA~1..t......O.IoY.....B...............J.........P.r.o.g.r.a.m. .F.i.l.e.s...@.s.h.e.l.l.3.2...d.l.l.,.-.2.1.7.8.1.....T.1.....CW.V..Google..>......CW.VoY.....L.....................p+j.G.o.o.g.l.e.....T.1.....FW.N..Chrome..>......CW.VoY.....M......................W..C.h.r.o.m.e.....`.1.....FW.N..APPLIC~1..H......CW.VoY............................W..A.p.p.l.i.c.a.t.i.o.n.....n.2. w..BW. .CHROME~1.EXE..R......CW.VoY............................3.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.......j...............-.......i...........&a.......C:\Program Files\Google\Chrome\Application\chrome_proxy.exe..S.....\.....\.....\.....\.....\.....\.....\.....\.....\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.\.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.*.C.:.\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.F

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Nov 15 16:55:18 2024, atime=Mon Oct 2 20:46:57 2023, length=1210144, window=hide
Category:	dropped
Size (bytes):	2683
Entropy (8bit):	4.000689816255517
Encrypted:	false
SSDEEP:
MD5:	F0165D3041858B1F816C176F6D49BC85
SHA1:	32AD4F2FC9E40FAC355D41FC65A7110770A91E3D
SHA-256:	E7CCC4DF755747EEE765A4E6BBD92B20A151B46C5C9A6DD6DF52F8DA39599BA3
SHA-512:	6C12004F5AD6FE4208D3E61DC7E76E843E05FE8679E24A3B260878F54D45A4E84459104D33A73336EF0087CFE9CFF09F10ACAB74B27EC4765F6FCCEAE90530DC
Malicious:	false
Reputation:	unknown
Preview:	L..................F.@.. ...$+.,......1..7......y... w......................1....P.O. .:i.....+00.../C:\.....................1.....FWoN..PROGRA~1..t......O.IoY.....B...............J.........P.r.o.g.r.a.m. .F.i.l.e.s...@.s.h.e.l.l.3.2...d.l.l.,.-.2.1.7.8.1.....T.1.....CW.V..Google..>......CW.VoY.....L.....................p+j.G.o.o.g.l.e.....T.1.....FW.N..Chrome..>......CW.VoY.....M......................W..C.h.r.o.m.e.....`.1.....FW.N..APPLIC~1..H......CW.VoY............................W..A.p.p.l.i.c.a.t.i.o.n.....n.2. w..BW. .CHROME~1.EXE..R......CW.VoY............................3.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.......j...............-.......i...........&a.......C:\Program Files\Google\Chrome\Application\chrome_proxy.exe..S.....\.....\.....\.....\.....\.....\.....\.....\.....\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.\.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.*.C.:.\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.F

Chrome Cache Entry: 130

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (738)
Category:	dropped
Size (bytes):	29616
Entropy (8bit):	5.404823511388948
Encrypted:	false
SSDEEP:
MD5:	97017770A5CF7324E53C80E7740DD848
SHA1:	0032A82D95938087AE5B13026495B25A51E21261
SHA-256:	CFCEEAE7F9DC23C4AC913FFF27F3DFBBC5CCAD312221A69AF725C2FCDE8491F3
SHA-512:	E85CE9CD84FC195D9278EB192BF597F3CF2348B0DC36C65B8D44992FD5B15194A2C385D52C06283A83C20B6177D070B8FE2872A62DB17805D9304ED04CF75012
Malicious:	false
Reputation:	unknown
Preview:	this._hd=this._hd\|\|{};(function(_){var window=this;.try{._.oDb=_.he("VsqSCc",[]);.}catch(e){_._DumpException(e)}.try{.var jDb;_.lDb=function(a){return jDb("https://www.facebook.com/dialog/share",{app_id:"738026486351791",href:_.kDb(a),hashtag:"#GoogleDoodle"})};_.mDb=function(a){return jDb("https://twitter.com/intent/tweet",{text:a})};_.nDb=function(a,b){return jDb("mailto:",{subject:a,body:b})};_.kDb=function(a){var b=a;b&&b.indexOf("//")===0&&(b="https:"+a);return b};jDb=function(a,b){var c=new _.en,d;for(d in b)c.add(d,b[d]);a=new _.cn(a);a.fC(c);return a.toString()};.}catch(e){_._DumpException(e)}.try{._.y("VsqSCc");.var pDb=function(a){1!=a.khb&&_.wcb(a,!0)},qDb=function(a){a.ywb=!1;_.xcb(a,!1)},rDb=function(){_.pe.call(this);var a=this;this.dialog=new _.Nr("ddlshare-dialog");this.dialog.zKa(!1);_.Acb(this.dialog,!0);this.dialog.H4a=!0;_.Bcb(this.dialog);pDb(this.dialog);qDb(this.dialog);_.vcb(this.dialog,.95);this.ld=new _.tm(this);this.ka=new _.qp;_.Te("ddle","0",!0);_.Qe("ddle"

Chrome Cache Entry: 131

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text
Category:	dropped
Size (bytes):	102
Entropy (8bit):	5.2193567203189035
Encrypted:	false
SSDEEP:
MD5:	428A8A8D5F90B9A26DE566941FF3FD24
SHA1:	99E68E89309FA1636BD57B96809FDD6EFE3D62A9
SHA-256:	027EDA696A1BFC76B913875A9D2AC8365D68B09F80F24422CE87FE085AB66CE3
SHA-512:	26C7FE51B11197869AD92ACF4248E4F059DC6E9E0B0910037968F38178A57DCFC9B7FC59FC2D19743937CC64C8D246586A3AB75546070CA283F404905A672AAA
Malicious:	false
Reputation:	unknown
Preview:	)]}'.22;["Y4s3Z435G-aqi-gPrI_ssAM","2116"]c;[2,null,"0"]1b;<div jsname="Nll0ne"></div>c;[9,null,"0"]0;

Chrome Cache Entry: 132

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (49040)
Category:	dropped
Size (bytes):	376981
Entropy (8bit):	5.529762875172258
Encrypted:	false
SSDEEP:
MD5:	C67C0CE6194ADCF817246C20169F4367
SHA1:	1A1250698C7A4BB6E0A94BDA57B1B281156B941A
SHA-256:	4D533E51269CB61166F8B0D9A1C58B07B9D34ADFF7F6EA65EABDC06E5AB1C77D
SHA-512:	D91D5CDCC6C6104BD2D82DA86E42B5954A924B2B42DD784A26D6C5246ADE96A66C40D063EFC9928F792979E8743AD089E8846D13C0270D8F428D40EBAFA00062
Malicious:	false
Reputation:	unknown
Preview:	.// Copyright 2012 Google Inc. All rights reserved.. .(function(){..var data = {."resource": {. "version":"309",. . "macros":[{"function":"__u","vtp_component":"URL","vtp_enableMultiQueryKeys":false,"vtp_enableIgnoreEmptyQueryParam":false},{"function":"__e"},{"function":"__u","vtp_component":"PATH","vtp_enableMultiQueryKeys":false,"vtp_enableIgnoreEmptyQueryParam":false},{"function":"__remm","vtp_setDefaultValue":true,"vtp_input":["macro",2],"vtp_fullMatch":false,"vtp_replaceAfterMatch":true,"vtp_ignoreCase":true,"vtp_defaultValue":"\/","vtp_map":["list",["map","key","\\\/(intl)\\\/(.?)\\\/(.)","value","\/intl\/$2\/"]]},{"function":"__v","vtp_dataLayerVersion":2,"vtp_setDefaultValue":true,"vtp_defaultValue":["macro",0],"vtp_name":"originalLocation"},{"function":"__u","vtp_component":"PROTOCOL","vtp_customUrlSource":["macro",4],"vtp_enableMultiQueryKeys":false,"vtp_enableIgnoreEmptyQueryParam":false},{"function":"__u","vtp_stripWww":false,"vtp_component":"HOST","vtp_customUrlSource

Chrome Cache Entry: 133

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (529)
Category:	downloaded
Size (bytes):	534
Entropy (8bit):	4.826744772891305
Encrypted:	false
SSDEEP:
MD5:	1A32741173119392EDC47FE1DB39DE69
SHA1:	1E7732840ED8146E61D474BFBE1A2C63BD9A226B
SHA-256:	CDCD6CC9156ACF6C6B2126B99EE5870C65633FB0072B15042451FAC8FBCEACAE
SHA-512:	751C70D938192C7200047EE2D84B6B5A5F6BA7678EF95342B52CBC9D0D86D5777B7F38D91536E60ED1DD320241A00FA746FBC23494755D1118F77B333C857AA5
Malicious:	false
Reputation:	unknown
URL:	https://www.google.com/complete/search?client=chrome-omni&gs_ri=chrome-ext-ansg&xssi=t&q=527&oit=4&cp=3&pgcl=4&gs_rn=42&psi=rq1Lt3AqmC9Qhj17&sugkey=AIzaSyBOti4mM-6x9WDnZIjIeyEU21OpBXqWBgw
Preview:	)]}'.["527",["527","527 groups","527 organization","5270","527 grand ave brooklyn","52722","527 cmr 1.00","527 madison avenue","527 area code","5270 hold"],["","","","","","","","","",""],[],{"google:clientdata":{"bpc":false,"tlw":false},"google:suggestrelevance":[1300,600,557,556,555,554,553,552,551,550],"google:suggestsubtypes":[[512,433],[512],[512],[512],[512],[512],[512],[512],[512],[512]],"google:suggesttype":["QUERY","QUERY","QUERY","QUERY","QUERY","QUERY","QUERY","QUERY","QUERY","QUERY"],"google:verbatimrelevance":1300}]

Chrome Cache Entry: 135

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	Web Open Font Format (Version 2), TrueType, length 36216, version 1.0
Category:	downloaded
Size (bytes):	36216
Entropy (8bit):	7.994185155139824
Encrypted:	true
SSDEEP:
MD5:	7C702451150C376FF54A34249BCEB819
SHA1:	3AB4DC2F57C0FD141456C1CBE24F112ADF3710E2
SHA-256:	77D21084014DCB10980C296E583371786B3886F5814D8357127F36F8C6045583
SHA-512:	9F1A79E93775DC5BD4AA9749387D5FA8EF55037CCDA425039FE68A5634BB682656A9ED4B6940E15226F370E0111878ECD6EC357D55C4720F97A97E58ECE78D59
Malicious:	false
Reputation:	unknown
URL:	https://fonts.gstatic.com/s/googlesans/v62/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2
Preview:	wOF2.......x......................................\...t...?HVAR...`?STAT..'...B/<.....H..!....0..T.6.$..V. .....:..[.aq.9.zk...R...fpY..5..n5.)$&%x...v..R.....?5A.....0W:55.{..p+\...adD.H.dh......t5..S....T..5.TT.F...lI...h3..T9M0...c...I...Yu.#.%...o......u....&\.O.zIE..#...)o...5...7.A.@7.Q...Q..i......_5...3............cV.!.\|..]6..HLa.a.........s.J...........5..VDC,g..TcY.....n.....$/.....B..!B.......T...2...."..5..k...........H._)R.Q?.....C.[2.,p. ...[.m..@ri.....[V.U....u.....X.....-......d...YN..a..t...b\|3.4.............P.Q......t.....JR.tM.y.......Xf6..5......FV..U#..O....E.A...e@.d............(...q.....Y....Og.w.6..JU...%c.Lw..D....,..\|..2...?=.?....I...W.a.'\|c.........9.7...@...F.r...". h[.F....Tu...5.V.Z.U..~'......,.~6.#..Pm.%W`.B..1u5..bt...I...t...6.[/....z.D.@.@H..L.E..3......Z.@./j.D..D..%.....P.....-;kwL6'-.%.!0....VYW.~.......9...93..(..&z%.Q...5.\|..`^OJ.i.+.....=...h6.....6X8Hm...oi.T5....P....8ehl.l.]U..V...m..IN.K.j..

Chrome Cache Entry: 140

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (1302)
Category:	dropped
Size (bytes):	322896
Entropy (8bit):	5.516228648035843
Encrypted:	false
SSDEEP:
MD5:	FBA35019FDB813EB4B39683458574B2F
SHA1:	E2D9746073A982C77BE7752099E08739E6ADFE82
SHA-256:	68090F028250E64AD2B4AE2CB5D4949656C224418DFF50542DA6374D78D60D83
SHA-512:	DEE8D9EA66F32DAF2A45972FAAAFCFC48B23C843253DCB0F6048DBE5CD26D5D343B4666BFA3EE9B38E94C59C77EF22AAB46B28861CEA8A5086FC2ED618DD58A4
Malicious:	false
Reputation:	unknown
Preview:	gapi.loaded_0(function(_){var window=this;._._F_toggles_initialize=function(a){(typeof globalThis!=="undefined"?globalThis:typeof self!=="undefined"?self:this)._F_toggles=a\|\|[]};(0,_._F_toggles_initialize)([0x800000, ]);.var da,ea,ha,na,oa,sa,ta,wa;da=function(a){var b=0;return function(){return b<a.length?{done:!1,value:a[b++]}:{done:!0}}};ea=typeof Object.defineProperties=="function"?Object.defineProperty:function(a,b,c){if(a==Array.prototype\|\|a==Object.prototype)return a;a[b]=c.value;return a};.ha=function(a){a=["object"==typeof globalThis&&globalThis,a,"object"==typeof window&&window,"object"==typeof self&&self,"object"==typeof global&&global];for(var b=0;b<a.length;++b){var c=a[b];if(c&&c.Math==Math)return c}throw Error("a");};_.la=ha(this);na=function(a,b){if(b)a:{var c=_.la;a=a.split(".");for(var d=0;d<a.length-1;d++){var e=a[d];if(!(e in c))break a;c=c[e]}a=a[a.length-1];d=c[a];b=b(d);b!=d&&b!=null&&ea(c,a,{configurable:!0,writable:!0,value:b})}};.na("Symbol",function(a){if(a)r

Chrome Cache Entry: 141

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text
Category:	downloaded
Size (bytes):	102
Entropy (8bit):	5.223183774491091
Encrypted:	false
SSDEEP:
MD5:	3C924AEBCCD1BB81069CB5DA819DFF0F
SHA1:	178845B0C39B3E328EEA82796039A27E1662C1E9
SHA-256:	402CAD775A10C67398D94A4485141374B929C6BF7E394D38E9D35CECB96D5424
SHA-512:	863160BC84C524D8D2D90EBB4FB03017B164A00CB6A51E32084E158EE7B1CBEBB78276115DEA224A5AD403D6119C705C9D5DF2E697D629140A8476FEC9F5364C
Malicious:	false
Reputation:	unknown
URL:	"https://www.google.com/async/hpba?yv=3&cs=0&ei=Uos3Z7G7MNju7_UPvoOj0Qs&async=_basejs:/xjs/_/js/k%3Dxjs.hd.en_US.23L3tn_hsI8.es5.O/am%3DAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQAAAAAAAAAAAAwAAABAAAAAACAAAAAAAAAABQgAgCAAABAAAALAAAEAQAIAAAAgIAAAIAOBRpgAgQAQAAACAAAABAAAAIAAAABAAAAAAAABQAAAAAAAgAAAAAAAAAIAAAQAAAAAAAAAAAAIAANADAAAAAAAAAAEBAGAIGIAAAgAAAAAAfQAQPABDCgsAAAAAAAAAAAAAAAABEgRzIQEBAQgAAAAAAAAAAAAAAAAAINLEhQ0/dg%3D0/br%3D1/rs%3DACT90oEojYHL0Io77YRDcdUnB6nFjRpXyg,_basecss:/xjs/_/ss/k%3Dxjs.hd.Te3B62pO_2c.L.B1.O/am%3DCKkCAAAAAAAIAAAAAAAAAAAAAAAAAAAAAAAAQAAAAAAAAAAC7AQAAAMA7AIECAAAAACAARAAAIAACAAAAABAAKACAAAAAAAEAIAIAAEABQAAgMAoAAAQkAGUABIAAAAKAgAQABAACCADDUFUAKIAAAAAAAAAQAAAAIAgAAQCAHQABIABIBIAANEDAQAAAACCAAA2AGAIGIAAAAAAAAAAZAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQAAQAF/br%3D1/rs%3DACT90oE0wYfFBYHWoWApgJKnmXTT7ch8Jw,_basecomb:/xjs/_/js/k%3Dxjs.hd.en_US.23L3tn_hsI8.es5.O/ck%3Dxjs.hd.Te3B62pO_2c.L.B1.O/am%3DCKkCAAAAAAAIAAAAAAAAAAAAAAAAAAAAAAAAQAAAAAAAAAAC7wQAABMA7AIECAAAAACAARABQoAgCAAABABAALACAEAQAIAEAIgIAAEIBeBRpsAoQAQQkAGUABIBAAAKIgAQABAACCADDUFUAKIAAAAgAAAAQAAAAIAgAQQCAHQABIABIBIAANEDAQAAAACCAAE3AGAIGIAAAgAAAAAAfQAQPABDCgsAAAAAAAAAAAAAAAABEgRzIQEFAQgAAAAAAAAAAAAAAAAAINLEhQ0/d%3D1/ed%3D1/dg%3D0/br%3D1/ujg%3D1/rs%3DACT90oGiu_M-zQ9XcMk_icedlUGdCtltzg,_fmt:prog,_id:_Uos3Z7G7MNju7_UPvoOj0Qs_8&sp_imghp=false&sp_hpep=2&sp_hpte=0&vet=10ahUKEwixrKDN9N6JAxVY97sIHb7BKLoQj-0KCBY..i"
Preview:	)]}'.22;["VIs3Z8GPCO6A9u8PpJ2ayQ4","2116"]c;[2,null,"0"]1b;<div jsname="Nll0ne"></div>c;[9,null,"0"]0;

Chrome Cache Entry: 142

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	Web Open Font Format (Version 2), TrueType, length 16396, version 1.0
Category:	downloaded
Size (bytes):	16396
Entropy (8bit):	7.985827035156134
Encrypted:	false
SSDEEP:
MD5:	A2EDB5C7EB3C7EF98D0EB329C6FB268F
SHA1:	5F3037DC517AFD44B644C712C5966BFE3289354C
SHA-256:	BA191BF3B5C39A50676E4ECAE47ADFF7F404F9481890530CDBF64252FBB1A57E
SHA-512:	CC5644CAF32302521CA5D6FD3C8CC81A6BBF0C44A56C00F0A19996610D65CF40D5BAE6446610F05A601F63DEA343A9000E76F93A0680CFBF1E4CF15A3563A62C
Malicious:	false
Reputation:	unknown
URL:	https://fonts.gstatic.com/s/googlesanstext/v22/5aUp9-KzpRiLCAt4Unrc-xIKmCU5oLlVnmhjtg.woff2
Preview:	wOF2......@...........?...........................<..l..:.`..:........d.....6.$..(. .....N.....5x.-.v.?..,...<Sn..O/.<.... ......{r2D!v@..?...."..F..\3...-5B....x.).x.$ze._c.l.)~Y..YE.J.e.uW.%).?..T.].q_7y.4...$....t.F #t8.j...GO..k..&.Ecb.X..m#.........k.s.Fr...<q~.@].PHN?..w.h.f...!h..A,H......H.R.T.R.......)...m..}u...".)(J.......>!. .V-....E^.bQ.....U.....u.s?$3.L$...y.........LpB.H.=...."R]\|=..._.o..W....N.j2.L.D.....{.<..s.W1I. zHx:..I.......G..~.6..E.&I4.J..h.Y...uM..D.z.u..)......<...T.......U...k...O......C.!vCy....&..y......t....e...(#.......%v..;.XTS...,....A.w.....K...vv.AI..~y..t..f.....D!...h.."e...h.pQ..{...\..G.......K.[.R....{.%]].0...!i.. ....w......4...`G.2...GD.wZV"...I.......tGQ.<..d..P...o.{......].hI#.....(..0_d..%....E.....?.\|...)...U."b....1bT.....~.U.[.NJ%....hW....s.;.Vm.}]..2............<...\|q.yW.x....sar!.J. .D...z..GcH.~k.r. >..kY...$2D..B@0.5.6.:...T.xr.~. `M...;.?..b6.Puc,.P.....F.pU.a.f_.xS.....IV.r~......6"..AX.

Chrome Cache Entry: 143

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	JSON data
Category:	dropped
Size (bytes):	22
Entropy (8bit):	3.845350936622435
Encrypted:	false
SSDEEP:
MD5:	169FD8A4A66188491593969BAD0F4EAB
SHA1:	5DCF616EAED4D8DD3537549BFAF997E6726F6450
SHA-256:	A0A1F98FCA203B8561519A06BACFDC50E4B3C4A5A71E740DA5B0875BD4FC00D6
SHA-512:	9D4A767C5DF1CCBD92F4D19DF6A32079BC498727A4D9DB255A5C424925A589BCD3B858137B48DC07D4097A1AA329194CC2C60AA7CF3F322B7B81D9F24DCA05F2
Malicious:	false
Reputation:	unknown
Preview:	{ "required": false }.

Chrome Cache Entry: 145

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	Web Open Font Format (Version 2), TrueType, length 20784, version 1.0
Category:	downloaded
Size (bytes):	20784
Entropy (8bit):	7.989041194123322
Encrypted:	false
SSDEEP:
MD5:	E11C810C086DF83C0876DD59ED32EBCB
SHA1:	B89FE2ED6D016F81AF13B35797AD2B0E2E5C6822
SHA-256:	ACC5497E76F832D950D14FCFA047DC3C864F7A0AAE4C7A20521C0C655A53033B
SHA-512:	DB93E7E4818B40C7B16C241441A5BBFCD335121A89A737611ACA4E5BD1F22A7D8FD9A1E79E0D0A7701A497CF6BBC238A7417D5DAC3480D20D4742B9B9717A15C
Malicious:	false
Reputation:	unknown
URL:	https://fonts.gstatic.com/s/googlesansdisplay/v21/ea8FacM9Wef3EJPWRrHjgE4B6CnlZxHVDv79oQ.woff2
Preview:	wOF2......Q0.......l..P..............................b..@.`..~..L..u.....D..'.....6.$.... .....X..#.....6..w;.v....n....yeUtv0v;.+...e..g$'24P.i.6n.!f;C.s&q...S...d..".............T;:....$...9I.....F.....?...px...q.:..qN.+G.X.i.....7N... p.cN...t...wb..."...E>....'Q..._=g... ..1......;..A........i.Z...X.".....1T'..1.N.....s...-[.-.c.c;.I..@w.>...==...L...C.8.....m..)n,.........8....%.Z..~.W..o....^._-_.D...{.~.i.......U.J."..P..%E.nB=.f...5...J...:.$dQ.T).l_..t1...1.o.aI....C.........a[...d......a.:w...-x.;.2.. ...CjA..u...&iS..[.%.G...../n...#.....:../.+.1..........O../.....9g..Cf.J.....&....pS.h.......M%.......=.>&.E..Rj+..#.e]....G..bE,...`.........s.V.].\9.....S....e$.....).".PU.......\..n.Kl[u..+..U.....M&...,......R.U.....;ck......Y..j.....i5.f#.x............t..[ ..Q.0A.W.......xV....:M.\..r#M`2.R.l..p..p......O...P...k6...F4O..%...x...5}g...OY?.8.0..f..+....`Tb3S@a..Q.A...%. ......(..;..P;.Q...k.AJH.s...l.^...^.!.......cc,=.......o

Chrome Cache Entry: 146

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (623)
Category:	downloaded
Size (bytes):	628
Entropy (8bit):	5.089599306187435
Encrypted:	false
SSDEEP:
MD5:	78893FDB754B039814D8B00120707A9C
SHA1:	413937C02A5DC2881DD2CDFAF4838B9D3ADEE797
SHA-256:	0346B09ED674B3E79F2396D307F22B582C3DFD4A7D1607A605DA45AD426A65F5
SHA-512:	5CBEB30BE2940490DA026CD588CA99E88FE6456940ADB2418E80A9F98954436094C28651A45C642DCB05D6E2853807530F348F6DB2C5DDFF3DF6975A9869C0F2
Malicious:	false
Reputation:	unknown
URL:	https://www.google.com/complete/search?client=chrome-omni&gs_ri=chrome-ext-ansg&xssi=t&q=http&oit=1&cp=4&pgcl=4&gs_rn=42&psi=rq1Lt3AqmC9Qhj17&sugkey=AIzaSyBOti4mM-6x9WDnZIjIeyEU21OpBXqWBgw
Preview:	)]}'.["http",["http","https //quizlet.com live","https //kahoot.com join","http error 500","http status codes","https //www.peardeck.com join","https //www.gimkit.com join","https //kahoot.it login","https //kahoot.it join","https://www.google.com"],["","","","","","","","","",""],[],{"google:clientdata":{"bpc":false,"tlw":false},"google:suggestrelevance":[1008,600,556,555,554,553,552,551,550,400],"google:suggestsubtypes":[[512],[512],[512],[512],[512],[512],[512],[512],[512],[44]],"google:suggesttype":["QUERY","QUERY","QUERY","QUERY","QUERY","QUERY","QUERY","QUERY","QUERY","NAVIGATION"],"google:verbatimrelevance":1008}]

Chrome Cache Entry: 147

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	SVG Scalable Vector Graphics image
Category:	downloaded
Size (bytes):	1719
Entropy (8bit):	4.4003431597789415
Encrypted:	false
SSDEEP:
MD5:	7E4968170175907C71DC14EC4841ACAB
SHA1:	C9010640A0CC81506E9721E69E0A508ECFBEAA0A
SHA-256:	D7CE0FF7DA59E9040AC54917098C68952C6B4B849ABFF732908008E20E8DF18B
SHA-512:	A709A66A26B7BAB6511131B89396AE88AF1BD0B8E16B72447B8FEEF3A8D4663670752D3207650456580130111B5D797B3B59E0C739F9CE6BD4D1D5F34C926E9D
Malicious:	false
Reputation:	unknown
URL:	https://about.google/assets-main/img/glue-google-color-logo.svg
Preview:	<svg id="google-color-logo" width="74" height="24" viewBox="0 0 74 24" xmlns="http://www.w3.org/2000/svg"><path fill="#4285F4" d="M9.24 8.19v2.46h5.88c-.18 1.38-.64 2.39-1.34 3.1-.86.86-2.2 1.8-4.54 1.8-3.62 0-6.45-2.92-6.45-6.54s2.83-6.54 6.45-6.54c1.95 0 3.38.77 4.43 1.76L15.4 2.5C13.94 1.08 11.98 0 9.24 0 4.28 0 .11 4.04.11 9s4.17 9 9.13 9c2.68 0 4.7-.88 6.28-2.52 1.62-1.62 2.13-3.91 2.13-5.75 0-.57-.04-1.1-.13-1.54H9.24z"></path><path fill="#EA4335" d="M25 6.19c-3.21 0-5.83 2.44-5.83 5.81 0 3.34 2.62 5.81 5.83 5.81s5.83-2.46 5.83-5.81c0-3.37-2.62-5.81-5.83-5.81zm0 9.33c-1.76 0-3.28-1.45-3.28-3.52 0-2.09 1.52-3.52 3.28-3.52s3.28 1.43 3.28 3.52c0 2.07-1.52 3.52-3.28 3.52z"></path><path fill="#4285F4" d="M53.58 7.49h-.09c-.57-.68-1.67-1.3-3.06-1.3C47.53 6.19 45 8.72 45 12c0 3.26 2.53 5.81 5.43 5.81 1.39 0 2.49-.62 3.06-1.32h.09v.81c0 2.22-1.19 3.41-3.1 3.41-1.56 0-2.53-1.12-2.93-2.07l-2.22.92c.64 1.54 2.33 3.43 5.15 3.43 2.99 0 5.52-1.76 5.52-6.05V6.49h-2.42v1zm-2.93 8.03c-1.76 0-3.1-

Chrome Cache Entry: 149

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 800x532, components 3
Category:	downloaded
Size (bytes):	117649
Entropy (8bit):	7.975840965906413
Encrypted:	false
SSDEEP:
MD5:	441AF70F4BC3430D19E49020023B2F5B
SHA1:	B4E9185BE3EE2738E58C1E16C3AC29935B193165
SHA-256:	5979CADC6D6239933A2DB85B32F8CDE8CBDD6C72C74248217D82E40F8D853804
SHA-512:	3EDD11FA8A07ECBA2ADC6CBC274451216E3D4EC5408D373BA248E8CDD4CD8AEBCBA03DEF0379D9A6839B3CA311138802CEA95965C73C479A7AA69AF7E42E5583
Malicious:	false
Reputation:	unknown
URL:	https://lh3.googleusercontent.com/zk_R49gFSp4jZTN2c7BL1BQo4cfVRFXxdu2EkHQFbIv7eLwRP2Q2GEFRCahfFIQ-XgJKkY_FvnwxZ3NK0ZVJ67dv5pB0JyMyXqdw0ldwg06Vp90fsV-j=w1440-l90-sg-rj-c0xffffff
Preview:	......JFIF........................................................................................................................................................ .."..........................................X.....................!...1.."AQa...#2q.B...$3Rbr......%CScst........4d.5D..Tu....EUe.................................C......................!1AQa...q..B...."23Rb....r..#......$4s.CS..............?.;!.Ee`6..A...TF..6...71.TV.:J.......X=.....u....>L;N.6..:.Vf.^x.f..)...@....>..^6;c_q.>.k.....h. ..b?.....\si...I.....)....Q.F..M..:nI...v.4Eu\|.....&......`I.."..;.._.?.T.P=RzL~.{..Td^J..eU..jS....G.....pOMSLS..1...q}...... ......E..i..Y.C.e"fJ.:\|.....,UX......E9...,D.4J-5..r."...&lA......V..j&..%.t.?....e..~.......L.........J....$..z.e...SU....X... .*..B.j.V. ..........!......0........7....k...odp....h.`...b+.sd.Y...,F.#.U.X,Q..Fxna.=...~...Jf.F........P .V...."....../T!. kY"`ZR..p.s...YT....r8..g./1..k....]%7..qh..........~X.K.4H.w]....i.5.y."U.F.:.U&I3

Chrome Cache Entry: 151

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (1707)
Category:	downloaded
Size (bytes):	31324
Entropy (8bit):	5.452092555880785
Encrypted:	false
SSDEEP:
MD5:	49FD336D386CE4365FE0314ABAD2DA82
SHA1:	04FFF467A9867D3FFC2CF1C51143E4E6FCDE61E1
SHA-256:	6EE4AA51E0B80EB7043F9CA604E392CCE23FB26D1921CC0B46E56212C5B451F6
SHA-512:	20FBF8FB421CB505C69EF67DD75F0AB9E94E5641DA2C9D36964DA6ADB43CCA3F36AC4148DD195FCCFBA73E47B9CEA0FF12D846B86045D08294E4FF211BB7149B
Malicious:	false
Reputation:	unknown
URL:	"https://www.google.com/xjs/_/js/k=xjs.hd.en_US.23L3tn_hsI8.es5.O/ck=xjs.hd.Te3B62pO_2c.L.B1.O/am=CKkCAAAAAAAIAAAAAAAAAAAAAAAAAAAAAAAAQAAAAAAAAAAC7wQAABMA7AIECAAAAACAARABQoAgCAAABABAALACAEAQAIAEAIgIAAEIBeBRpsAoQAQQkAGUABIBAAAKIgAQABAACCADDUFUAKIAAAAgAAAAQAAAAIAgAQQCAHQABIABIBIAANEDAQAAAACCAAE3AGAIGIAAAgAAAAAAfQAQPABDCgsAAAAAAAAAAAAAAAABEgRzIQEFAQgAAAAAAAAAAAAAAAAAINLEhQ0/d=0/dg=0/br=1/ujg=1/rs=ACT90oGiu_M-zQ9XcMk_icedlUGdCtltzg/m=syru,syrt,VsqSCc,sy1bq,P10Owf,sy1aj,sy1ah,sypw,gSZvdb,syyh,syyg,WlNQGd,syq1,sypy,sypx,sypv,DPreE,syyu,syys,nabPbb,syyb,syy9,syis,syn0,CnSW2d,kQvlef,syyt,fXO0xe?xjs=s3"
Preview:	_F_installCss(".MTIaKb,.LwDUdc,.FAoEle,.RlTCPd,.wPNfjb,.caNvfd,.Vnob4b,.bbxTBb,.DpgmK,.YKUhfb,.uNnvb,.aVsZpf,.RoOVmf,.dIfvQd,.V3Ezn,.Enb9pe,.mYuoaf,.kJSB8,.tUr4Kc,.iQMtqe{--Yi4Nb:var(--mXZkqc);--pEa0Bc:var(--bbQxAb);--kloG3:var(--mXZkqc);--YaIeMb:var(--XKMDxc);--Pa8Wlb:var(--Nsm0ce);--izGsqb:var(--Nsm0ce);--todMNcl:var(--EpFNW);--p9J9c:var(--Nsm0ce)}:root{--KIZPne:#a3c9ff;--xPpiM:#001d35;--Ehh4mf:var(--Nsm0ce)}:root{--Yi4Nb:#d2d2d2;--pEa0Bc:#474747;--kloG3:#d2d2d2;--YaIeMb:#f7f8f9;--Pa8Wlb:#0b57d0;--izGsqb:#0b57d0;--todMNcl:#fff;--p9J9c:#0b57d0}.EpPYLd{display:block;position:relative}.YpcDnf{padding:0 16px;vertical-align:middle}.YpcDnf.HG1dvd{padding:0}.HG1dvd>*{padding:0 16px}.WtV5nd .YpcDnf{padding-left:28px}.Zt0a5e .YpcDnf{line-height:48px}.GZnQqe .YpcDnf{line-height:23px}.EpPYLd:hover{cursor:pointer}.EpPYLd,.CB8nDe:hover{cursor:default}.LGiluc,.EpPYLd[disabled]{pointer-events:none;cursor:default}@media (forced-colors:active){.EpPYLd[disabled]{color:GrayText}}.LGiluc{border-top:1px

Chrome Cache Entry: 155

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text
Category:	dropped
Size (bytes):	101
Entropy (8bit):	5.210558023261054
Encrypted:	false
SSDEEP:
MD5:	A749F7AA6AB72E941E52283CE2CDB04C
SHA1:	EDA5573816F6C5F625DD02378B32C2915F8730B7
SHA-256:	B0B143AA510F687A1EE022DED38844E0DBEBC2A2D243E6F3229B9BDF278DA2E3
SHA-512:	1068650CF6D4D29181418C82F843752289E8AB425E0C3697D523140996F694E1DFEAFD6045556A8EAB3DAC08B5D00F8090E6821AA63138897DCA8E1700D70C47
Malicious:	false
Reputation:	unknown
Preview:	)]}'.21;["Dos3Z8qYLuGzi-gP3YuNEA","2116"]c;[2,null,"0"]1b;<div jsname="Nll0ne"></div>c;[9,null,"0"]0;

Chrome Cache Entry: 157

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	JSON data
Category:	downloaded
Size (bytes):	9477
Entropy (8bit):	1.3381615203771127
Encrypted:	false
SSDEEP:
MD5:	855D69E40F6DE8ED5A9BE2DF46CDC600
SHA1:	FF54ADB2486F957C96CD0D01EC3907F9ECE6F215
SHA-256:	28E4682F2DE06F7FF63CD5A9E06F7553B8C6419637287F06A54F0DEB413DF3B4
SHA-512:	D50FFDA45692098F68DCD151DB224A7CF24F1EEEC65DEB59185FCF4F55EC4D09E779767128ED9DA793BFBE4A4F929D972B76DC10830374D5CCF57D3269C9E25A
Malicious:	false
Reputation:	unknown
URL:	https://www.google.com/xjs/_/js/md=2/k=xjs.hd.en_US.23L3tn_hsI8.es5.O/am=AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQAAAAAAAAAAAAwAAABAAAAAACAAAAAAAAAABQoAgCAAABAAAALAAAEAQAIAAAAgIAAAIAOBRpgAgQAQAAACAAAABAAAAIAAAABAAAAAAAABQAAAAAAAgAAAAAAAAAIAAAQAAAAAAAAAAAAIAANADAAAAAAAAAAEBAGAIGIAAAgAAAAAAfQAQPABDCgsAAAAAAAAAAAAAAAABEgRzIQEFAQgAAAAAAAAAAAAAAAAAINLEhQ0/rs=ACT90oEiM3cq81JdtwgW0MNIOtfqWCd25g
Preview:	{"chunkTypes":"1000011111110011110001000010110100000011111111101101111111111111111111111111111111111010111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111011101111111113101101111111111110111111111111110111111111111111100011011111111111111111110101002222212221221212121212121212121212121212121212121212121212121212121212121212121212121212121212121212121212121212121212121212121212121212121212121212121212121212121212121212221212121212121212221222222221221212121212121222122212121212121221212121212121212121212121212121222121212121212121212121212121212121212121212122221221221222122122122122122122122122122122122122122122122122122122122122122122122122212212212212212212121212122212222222222121221211212212121212121212121322121212212112121212121212122222222121112112222112121212122121212121212123322222221212212212212212112121221212121212121212121212

Chrome Cache Entry: 158

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (836)
Category:	dropped
Size (bytes):	18883
Entropy (8bit):	5.307229902700264
Encrypted:	false
SSDEEP:
MD5:	882A1B182DE407E58B1F4C95A0C88459
SHA1:	A56A5C35683E89493B43B02FC5CB473B52F5B0F0
SHA-256:	5F4D0B5CD0C7C7BC630B26CFA289A0354C02530D549D4A99D7D7B0B578FF2838
SHA-512:	804E6BE413065FB8E0E69E01304F9C85B150E63875105A0EC4597E8F584964C10F574E1EA3142DF7C36CDA04C20AE259B6601E50902E50ABA019AF9A934EA181
Malicious:	false
Reputation:	unknown
Preview:	(function(){'use strict';function p(a){var c=0;return function(){return c<a.length?{done:!1,value:a[c++]}:{done:!0}}}var q=typeof Object.defineProperties=="function"?Object.defineProperty:function(a,c,b){if(a==Array.prototype\|\|a==Object.prototype)return a;a[c]=b.value;return a};.function aa(a){a=["object"==typeof globalThis&&globalThis,a,"object"==typeof window&&window,"object"==typeof self&&self,"object"==typeof global&&global];for(var c=0;c<a.length;++c){var b=a[c];if(b&&b.Math==Math)return b}throw Error("Cannot find global object");}var r=aa(this);function t(a,c){if(c)a:{var b=r;a=a.split(".");for(var d=0;d<a.length-1;d++){var f=a[d];if(!(f in b))break a;b=b[f]}a=a[a.length-1];d=b[a];c=c(d);c!=d&&c!=null&&q(b,a,{configurable:!0,writable:!0,value:c})}}.t("Symbol",function(a){function c(h){if(this instanceof c)throw new TypeError("Symbol is not a constructor");return new b(d+(h\|\|"")+"_"+f++,h)}function b(h,e){this.g=h;q(this,"description",{configurable:!0,writable:!0,value:e})}if(a)re

Chrome Cache Entry: 159

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (9027), with no line terminators
Category:	downloaded
Size (bytes):	9027
Entropy (8bit):	4.947824943141241
Encrypted:	false
SSDEEP:
MD5:	8F51790BFFFCC31ED97977E0F694A3A6
SHA1:	734B38A9909BB10C3F8C6ACDABAF90BE5B01223C
SHA-256:	372DCB604072BE98F12E6B48ECF53AA4238767FB34CC47723EEB3FC5552A65D0
SHA-512:	EFCCC6A6A96FE86D3F955CC8D10E51EAA8E8230ADA7E57B6DD1110FAFC39F511D71480A20FCE51A7633F947634BB637B023828672C11E268C20DE32D00D5E3F4
Malicious:	false
Reputation:	unknown
URL:	https://www.gstatic.com/glue/cookienotificationbar/cookienotificationbar.min.css
Preview:	.glue-cookie-notification-bar__accept,.glue-cookie-notification-bar__reject{font-size:1rem;line-height:1.5;-moz-osx-font-smoothing:grayscale;-webkit-font-smoothing:antialiased;text-rendering:optimizeLegibility;-webkit-align-content:center;-ms-flex-line-pack:center;align-content:center;-webkit-box-align:center;-webkit-align-items:center;-moz-box-align:center;-ms-flex-align:center;align-items:center;-webkit-align-self:flex-start;-ms-flex-item-align:start;align-self:flex-start;border:1px solid transparent;border-radius:48px;display:-webkit-inline-box;display:-webkit-inline-flex;display:-moz-inline-box;display:-ms-inline-flexbox;display:inline-flex;-webkit-box-orient:horizontal;-webkit-box-direction:normal;-webkit-flex-flow:row nowrap;-moz-box-orient:horizontal;-moz-box-direction:normal;-ms-flex-flow:row nowrap;flex-flow:row nowrap;font-family:Google Sans,Arial,Helvetica,sans-serif;font-weight:500;-webkit-justify-content:space-around;-ms-flex-pack:distribute;justify-content:space-around;le

Chrome Cache Entry: 160

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text
Category:	dropped
Size (bytes):	102
Entropy (8bit):	5.223183774491092
Encrypted:	false
SSDEEP:
MD5:	30DD9D91F9FE22928D95D4338319A119
SHA1:	CF274E04B30D6E15D3E08F172469F15EAABC2640
SHA-256:	01DAC84675AC8654B4D6A42BFA0D628D5106784AF3EA1D00D70879E83BD9B258
SHA-512:	768082CA2EC124E17168A339EEFBF28AB4514EEDD60BE34B37DD286E7AD32C76E313A4FA586E62FD51978B18CCD826BF7D35C01F12CF025265FDF32A9A8DEDB0
Malicious:	false
Reputation:	unknown
Preview:	)]}'.22;["Vos3Z5yUAaf1i-gPzpGnqAs","2116"]c;[2,null,"0"]1b;<div jsname="Nll0ne"></div>c;[9,null,"0"]0;

Chrome Cache Entry: 162

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (1592)
Category:	dropped
Size (bytes):	639833
Entropy (8bit):	5.744037723938097
Encrypted:	false
SSDEEP:
MD5:	F7975F039828CFAC69EE95246C19D720
SHA1:	9BA6CBA234F6F288E677F629ADABC4E931447A84
SHA-256:	18A1165D6DCE13EB9E4966679FBD38D443200153B00323EA4497E5CE8ABC6F21
SHA-512:	A52A148E83F77086EC929ADE939393D012D2E5D2A750418223AE48D44D4C473E5F2EE546BF7637904FB705756A11D7DD0E7C194DBA304C532AD161CCD7F5BCFA
Malicious:	false
Reputation:	unknown
Preview:	(function(){/.. Copyright The Closure Library Authors.. SPDX-License-Identifier: Apache-2.0./.var b=b\|\|{};b.scope={};b.createTemplateTagFirstArg=function(a){return a.raw=a};b.createTemplateTagFirstArgWithRaw=function(a,c){a.raw=c;return a};b.arrayIteratorImpl=function(a){var c=0;return function(){return c<a.length?{done:!1,value:a[c++]}:{done:!0}}};b.arrayIterator=function(a){return{next:b.arrayIteratorImpl(a)}};b.makeIterator=function(a){var c="undefined"!=typeof Symbol&&Symbol.iterator&&a[Symbol.iterator];return c?c.call(a):b.arrayIterator(a)};.b.arrayFromIterator=function(a){for(var c,d=[];!(c=a.next()).done;)d.push(c.value);return d};b.arrayFromIterable=function(a){return a instanceof Array?a:b.arrayFromIterator(b.makeIterator(a))};b.ASSUME_ES5=!1;b.ASSUME_NO_NATIVE_MAP=!1;b.ASSUME_NO_NATIVE_SET=!1;b.SIMPLE_FROUND_POLYFILL=!1;b.ISOLATE_POLYFILLS=!1;b.FORCE_POLYFILL_PROMISE=!1;b.FORCE_POLYFILL_PROMISE_WHEN_NO_UNHANDLED_REJECTION=!1;.b.objectCreate=b.ASSUME_ES5\|\|"function"==typeof

Chrome Cache Entry: 164

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (789)
Category:	dropped
Size (bytes):	11909
Entropy (8bit):	5.42561032485909
Encrypted:	false
SSDEEP:
MD5:	0A91B4613FB12249161702D9D600F676
SHA1:	8B7CF262200BBA08F7E784BEBEF2ADCB6DC0CB38
SHA-256:	2EB5128C4C7BBB2C624276F62BAA501653A0D2BFEF00F28012DB49736545FEA4
SHA-512:	3650A944EAE4C8363B1B68377985542D012A14F0584B9E2BE41246554F449022AAA9CBA48C6A0EA4EBF5779A59726BC446787C14A84C41DDE59FC98E42660858
Malicious:	false
Reputation:	unknown
Preview:	(function(){/.. Copyright The Closure Library Authors.. SPDX-License-Identifier: Apache-2.0./.var a=a\|\|{};a.global=this\|\|self;a.exportPath_=function(b,c,d,e){b=b.split(".");e=e\|\|a.global;b[0]in e\|\|"undefined"==typeof e.execScript\|\|e.execScript("var "+b[0]);for(var f;b.length&&(f=b.shift());)if(b.length\|\|void 0===c)e=e[f]&&e[f]!==Object.prototype[f]?e[f]:e[f]={};else if(!d&&a.isObject(c)&&a.isObject(e[f]))for(var g in c)c.hasOwnProperty(g)&&(e[f][g]=c[g]);else e[f]=c};a.define=function(b,c){return c};a.FEATURESET_YEAR=2012;a.DEBUG=!0;a.LOCALE="en";a.TRUSTED_SITE=!0;.a.DISALLOW_TEST_ONLY_CODE=!a.DEBUG;a.ENABLE_CHROME_APP_SAFE_SCRIPT_LOADING=!1;a.provide=function(b){if(a.isInModuleLoader_())throw Error("goog.provide cannot be used within a module.");a.constructNamespace_(b)};a.constructNamespace_=function(b,c,d){a.exportPath_(b,c,d)};a.getScriptNonce=function(b){if(b&&b!=a.global)return a.getScriptNonce_(b.document);null===a.cspNonce_&&(a.cspNonce_=a.getScriptNonce_(a.global.document));

Chrome Cache Entry: 165

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Category:	downloaded
Size (bytes):	781487
Entropy (8bit):	5.13998283028697
Encrypted:	false
SSDEEP:
MD5:	24426A5EE8AD8D92090953013A653D23
SHA1:	9EA27CA3011E3273A9EEF0543F79346DCFC21B9F
SHA-256:	BD086BBCB59EEF2EE2D910C78EB065605DB5A47521C1A119F86B746893797881
SHA-512:	7E1CA5B42582ED8B9E04E91A26A159AE82B845F34559D0E4C12B5AF1A115A3375ABE4FBF754BF46151BD8539EB9E6ABE4B05DDD5DDF990495984A12F4ECADEA0
Malicious:	false
Reputation:	unknown
URL:	https://about.google/assets-main/css/index.min.css?cache=9ea27ca
Preview:	@charset "UTF-8";/! normalize.css v3.0.1 \| MIT License \| git.io/normalize /html{font-family:sans-serif;-ms-text-size-adjust:100%;-webkit-text-size-adjust:100%}body{margin:0}article,aside,details,figcaption,figure,footer,header,hgroup,main,nav,section,summary{display:block}audio,canvas,progress,video{display:inline-block;vertical-align:baseline}audio:not([controls]){display:none;height:0}[hidden],template{display:none}a{background:0 0}a:active,a:hover{outline:0}abbr[title]{border-bottom:1px dotted}b,strong{font-weight:700}dfn{font-style:italic}h1{font-size:2em;margin:.67em 0}mark{background:#ff0;color:#000}small{font-size:80%}sub,sup{font-size:75%;line-height:0;position:relative;vertical-align:baseline}sup{top:-.5em}sub{bottom:-.25em}img{border:0}svg:not(:root){overflow:hidden}figure{margin:1em 40px}hr{-webkit-box-sizing:content-box;box-sizing:content-box;height:0}pre{overflow:auto}code,kbd,pre,samp{font-family:monospace,monospace;font-size:1em}button,input,optgroup,select,textarea{co

Chrome Cache Entry: 166

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	Web Open Font Format (Version 2), TrueType, length 15996, version 1.0
Category:	downloaded
Size (bytes):	15996
Entropy (8bit):	7.989012096227512
Encrypted:	false
SSDEEP:
MD5:	CC536892EABDE0EAEB81493BDA8E189A
SHA1:	15C0180AD7BDF9D0F963747447BC9446FC42D2DC
SHA-256:	97399A2914C593DA2895D9729AA0170A1956E91EE54CF7550696691949558A37
SHA-512:	94F605C4C4FE76EBDB2D5428C6BA69F83B75C65B6932251C0C3E90F92CC1F421FD9F15E81D5985693DC564B8644D90A26DA3E9C63976CF5862ED54D5ED0C4320
Malicious:	false
Reputation:	unknown
URL:	https://fonts.gstatic.com/s/googlesanstext/v22/5aUu9-KzpRiLCAt4Unrc-xIKmCU5qEp2iw.woff2
Preview:	wOF2......>\|..........>...........................<..:..:.`..:.....p..~.....6.$..(. ..>..N.....5xn.u..b.....c..<..Rw.H..q.(.....9A...^.=h.%J...4.\.\.[....[....h.j..AP.....a..]N.o....6.a..uO..R.\|o...wO..t....s....^F...Oy....IN^..X...9sg...(;..L.....5.s~...?....%.0.f....b.. ..;.. "k+.v`.....1kq.\mqLp.]\|..Z\..O......=.......h..,u.................y.h.o.Z..%.....g#..B......V...3.r....J..>g.-rU?+.3A.....C...... .21..f...Z.......P..o..g\.b... v...6..0...b.....?..-WL...Z2...1..Q./....... ..C..G.^r....O......io;.o..4.<....7.Pm..!.Nu.=..Oc............e.w.g.....,...c...0V.P...R.){..u...>.fi..S.w.G...-..... $.8......w..hp...T@..Go....).......;.....B.)..p.\.?.-KC.S.5..pX9...'.!.-....R.Sg.>x.o.yP......S....a...m<.+".t%..3x.?3M;....k.....I&I.3g.26...p...}~....X.x..G.<)..k..U....AZ..A@....Cu..Tv{...\|v.04H.$Xc..E.)<...!........^..~.7P.u...xH..rX..8O....y.k(...0.p 0.%.U...Z...%...\|LlUJ.]L_...9..AX.$E.$.sa.(v8L!...rc.-....I..W..........^U...@.....3P............M..

Chrome Cache Entry: 168

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (621)
Category:	dropped
Size (bytes):	1023547
Entropy (8bit):	5.68591991520667
Encrypted:	false
SSDEEP:
MD5:	2CB32819B0BC365EA8FF43F269987700
SHA1:	5979F453CBEA59729E54BE6812C665993F11C5AF
SHA-256:	7278FD45ADB92451D23C2F9DAFDD9F2D2FC307DFB316BCEF9D2C5F4FBE4A4185
SHA-512:	F2F4FF04A7EF091BDCB8BBD59E75282CC6F24FAED8CE91093B6334B51A40C2B6EF04C4D579F6DE9FDB2102E1D315D22C577A1B1D3CC1BF803785FE0B12D70E09
Malicious:	false
Reputation:	unknown
Preview:	this._hd=this._hd\|\|{};(function(_){var window=this;.try{./.. Copyright The Closure Library Authors.. SPDX-License-Identifier: Apache-2.0././.. Copyright Google LLC. SPDX-License-Identifier: Apache-2.0././.. Copyright 2024 Google, Inc. SPDX-License-Identifier: MIT././. SPDX-License-Identifier: Apache-2.0././. Copyright The Closure Library Authors.. SPDX-License-Identifier: Apache-2.0./.var baa,caa,iaa,uaa,waa,Baa,Iaa,Naa,Waa,Yaa,$aa,cba,dba,iba,mba,nba,qba,tba,uba,sba,vba,xba,oba,gb,yba,zba,Cba,Dba,Eba,Gba,Iba,Lba,Mba,Oba,Pba,Qba,Sba,Tba,Vba,Zba,sb,jca,kca,lca,mca,nca,gca,oca,dca,pca,cca,eca,fca,qca,rca,sca,Cca,Dca,Fca,Hca,Ica,Mca,Pca,Jca,Oca,Nca,Lca,Kca,Qca,Rca,Sca,Vca,Uca,Zca,$ca,hda,ida,jda,kda,lda,mda,ada,nda,qda,sda,rda,uda,wda,vda,yda,xda,Bda,Ada,Cda,Gda,Hda,Tda,Vda,Yda,aea,bea,eea,Lb,jea,lea,uea,vea,xea,dea,gea,zea,Dea,Jea,Ub,Nea,Qea,Pea,Xea,Zea,$ea,cfa,ffa,gfa,ifa,lfa,ofa,.pfa,qfa,yfa,Ffa,Kfa,Mfa,Ofa,Pfa,Qfa,Rfa,Vfa,bga,cga,ega,iga,jga,lga,yga,Aga,Ega,Dga,Lc,Vga,Xga,$g

Chrome Cache Entry: 169

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (582)
Category:	dropped
Size (bytes):	1660
Entropy (8bit):	5.269569013732533
Encrypted:	false
SSDEEP:
MD5:	EFB266B361B610306D12EFB595F214DB
SHA1:	7579BA7629137A159D7A53BCC48CAEA079AD36A8
SHA-256:	ED1D4A44C65E37FE26EE6F3377B2E7AD662E3DA0A4B6639624DBE7C90037B100
SHA-512:	1D6F88D38072652EF8163E3BDE03F3911E684DA83EF3C36110AD33E0260DDE397666049302C156923DA19285D9CED22BB8526247831E2C36AB3D9564968DC104
Malicious:	false
Reputation:	unknown
Preview:	this._hd=this._hd\|\|{};(function(_){var window=this;.try{._.y("lOO0Vd");._.iab=new _.re(_.lKa);._.z();.}catch(e){_._DumpException(e)}.try{.var tab;_.uab=function(a,b,c,d,e){this.Iua=a;this.TOc=b;this.y6a=c;this.bTc=d;this.O1c=e;this.MZa=0;this.x6a=tab(this)};tab=function(a){return Math.random()Math.min(a.TOcMath.pow(a.y6a,a.MZa),a.bTc)};_.uab.prototype.aIb=function(){return this.MZa};_.uab.prototype.oca=function(a){return this.MZa>=this.Iua?!1:a!=null?!!this.O1c[a]:!0};_.vab=function(a){if(!a.oca())throw Error("Ae`"+a.Iua);++a.MZa;a.x6a=tab(a)};.}catch(e){_._DumpException(e)}.try{._.y("P6sQOc");.var wab=function(a){var b={};_.Ra(a.ybb(),function(e){b[e]=!0});var c=a.Gab(),d=a.Qab();return new _.uab(a.Pab(),c.ka()1E3,a.U$a(),d.ka()1E3,b)},xab=!!(_.hh[27]&128);var yab=function(a){_.Wn.call(this);this.Yb=null;this.ka=a.service.Lkb;this.wa=a.service.metadata;a=a.service.YGc;this.fetch=a.fetch.bind(a)};_.D(yab,_.Xn);yab.Ia=function(){return{service:{Lkb:_.oab,metadata:_.iab,YGc:_.p$a}}};

Chrome Cache Entry: 170

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	RIFF (little-endian) data, Web/P image
Category:	downloaded
Size (bytes):	52670
Entropy (8bit):	7.991911804810446
Encrypted:	true
SSDEEP:
MD5:	C6EE25763BEDC8B0DBAEA2CEBE24D4F7
SHA1:	52DBE87851B218F88BC92073A7079DEB5F19BEC6
SHA-256:	1B6E5E81E16F7239A216915FCE2946218C88E56F52E177854A90ABFBA5F541CA
SHA-512:	A7B4E6D0E664F2E51C78C27CB941517D28B641FC8D339C039A5F269E6D4D7A7656B6B70D94079416C7B83914F90B5939D3D4F78E913E567227F8D40AA11F1C24
Malicious:	false
Reputation:	unknown
URL:	https://www.google.com/logos/doodles/2024/celebrating-the-kayak-6753651837110586.2-l.webp
Preview:	RIFF....WEBPVP8L..../..1.....mc.......BRB.H...\|.m.v~....\k..I_U.=k.Vh^.....9.nf......d....b.Ni.)..l.....5+.Vg;9..m[U..?.5..H@%.P.obh.w.......~..]K..L>,K..,\.c>.G......H.Y.L... .........<[..Jh...-....,$........_........<.....Ku..""H.6...?H...Q..}~.#....1."...(Q....&&JEREJE&&JEBH..?..0J.....LRE..?...a....8.\..\|..5M.m.\|....\...sE86...kH,&.....LJA....T..+.-%.?..\..q-.R..._.a..>..l.DH2.j?o.R2..]..)Hu.u'53.T.....\|.....Y.@'@......t......J....A..^.g'p.SKg#.....b@<X.N..~...g[.....I(RmQ....M.-..FD'..}.<.#.e...sqEx.yP..ghyJEC...u.}...$#0)..=..Rh:. .d.8C.F.$.......... b.%..\|..D.W.GF....@(.&.&)..B8...R...$Q..}..k...Ek.@.o7.M........j6.3....qJ.."9%....r...I....'LA...x..E.;I.1...X.`...@,...@.$...@.......;...@../-...u..0!{.I..<.7. A&0..7.\|.U..m[!.AF....`.Fn..........3I../..u2g\|.tdyi..^.']....1.......P}..1^Y.._....+.m?d.6.{..g,{k....`..%..........JR..C..........-.D..C....z.c....c.9Su....$.$A.V...G...wkU.....F..~..\.5...%....=t.<Kbs.....J..Z.A..J.N..u].l__.J.{J....

Chrome Cache Entry: 171

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text
Category:	dropped
Size (bytes):	102
Entropy (8bit):	5.188774215625141
Encrypted:	false
SSDEEP:
MD5:	9DEB08FA4E462E073F161AB6AF2FE23B
SHA1:	7DCD6E7F1C33AFDF3EE50B99C6741CF832D6DD25
SHA-256:	0312EA921DCF1EAFB07098F3ACBC91983CC7EFE990A3DC901721D4BF66834C8B
SHA-512:	DB9E9712656C8740EE8322F0BBC7602818E09C09B327A992591012AEC7F4D7594A11D4B385E86AC11AE4B7958ADD2C876041DF406252280CDCEEFB5197CEDA95
Malicious:	false
Reputation:	unknown
Preview:	)]}'.22;["ZIs3Z8GfM7Xui-gP57f2mAs","2116"]c;[2,null,"0"]1b;<div jsname="Nll0ne"></div>c;[9,null,"0"]0;

Chrome Cache Entry: 173

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text
Category:	downloaded
Size (bytes):	101
Entropy (8bit):	5.086733890323664
Encrypted:	false
SSDEEP:
MD5:	889E888666F9F0B2FC288960F97EFD5A
SHA1:	5E2FF43135E492241781F267357A6E8498B5B4C7
SHA-256:	10C056299AB1B89D6D312B36F5B010D533FDB4C92D3CAEE2B67A3C8D44993F30
SHA-512:	66B3590F3A88F83764F738A1FC80FE6FA293535A3EF800458E1F3B682920C9C367BFB86A13608AC9816E278720C5397A9DD826F0FC62DCCBB2F10867DED61602
Malicious:	false
Reputation:	unknown
URL:	"https://www.google.com/async/hpba?yv=3&cs=0&ei=YYs3Z-i8HZ787_UPuovhqQI&async=_basejs:/xjs/_/js/k%3Dxjs.hd.en_US.23L3tn_hsI8.es5.O/am%3DAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQAAAAAAAAAAAAwAAABAAAAAACAAAAAAAAAABQgAgCAAABAAAALAAAEAQAIAAAAgIAAAIAOBRpgAgQAQAAACAAAABAAAAIAAAABAAAAAAAABQAAAAAAAgAAAAAAAAAIAAAQAAAAAAAAAAAAIAANADAAAAAAAAAAEBAGAIGIAAAgAAAAAAfQAQPABDCgsAAAAAAAAAAAAAAAABEgRzIQEBAQgAAAAAAAAAAAAAAAAAINLEhQ0/dg%3D0/br%3D1/rs%3DACT90oEojYHL0Io77YRDcdUnB6nFjRpXyg,_basecss:/xjs/_/ss/k%3Dxjs.hd.Te3B62pO_2c.L.B1.O/am%3DCKkCAAAAAAAIAAAAAAAAAAAAAAAAAAAAAAAAQAAAAAAAAAAC7AQAAAMA7AIECAAAAACAARAAAIAACAAAAABAAKACAAAAAAAEAIAIAAEABQAAgMAoAAAQkAGUABIAAAAKAgAQABAACCADDUFUAKIAAAAAAAAAQAAAAIAgAAQCAHQABIABIBIAANEDAQAAAACCAAA2AGAIGIAAAAAAAAAAZAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQAAQAF/br%3D1/rs%3DACT90oE0wYfFBYHWoWApgJKnmXTT7ch8Jw,_basecomb:/xjs/_/js/k%3Dxjs.hd.en_US.23L3tn_hsI8.es5.O/ck%3Dxjs.hd.Te3B62pO_2c.L.B1.O/am%3DCKkCAAAAAAAIAAAAAAAAAAAAAAAAAAAAAAAAQAAAAAAAAAAC7wQAABMA7AIECAAAAACAARABQoAgCAAABABAALACAEAQAIAEAIgIAAEIBeBRpsAoQAQQkAGUABIBAAAKIgAQABAACCADDUFUAKIAAAAgAAAAQAAAAIAgAQQCAHQABIABIBIAANEDAQAAAACCAAE3AGAIGIAAAgAAAAAAfQAQPABDCgsAAAAAAAAAAAAAAAABEgRzIQEFAQgAAAAAAAAAAAAAAAAAINLEhQ0/d%3D1/ed%3D1/dg%3D0/br%3D1/ujg%3D1/rs%3DACT90oGiu_M-zQ9XcMk_icedlUGdCtltzg,_fmt:prog,_id:_YYs3Z-i8HZ787_UPuovhqQI_8&sp_imghp=false&sp_hpep=2&sp_hpte=0&vet=10ahUKEwio8aDU9N6JAxUe_rsIHbpFOCUQj-0KCBY..i"
Preview:	)]}'.21;["Yos3Z96KEIaG9u8Pl9e9IQ","2116"]c;[2,null,"0"]1b;<div jsname="Nll0ne"></div>c;[9,null,"0"]0;

Chrome Cache Entry: 175

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	HTML document, ASCII text, with very long lines (13290)
Category:	downloaded
Size (bytes):	213596
Entropy (8bit):	5.881418548425256
Encrypted:	false
SSDEEP:
MD5:	069C5DE33B6A11B3C427476F4FB0086E
SHA1:	2666B15EFB6CFC5535739CDDA08A213BDA8E5EC2
SHA-256:	C6A104EF1250FD4F68983009B98A61600CEC19B05CE3FA37D1413E8CF00DC276
SHA-512:	042A0EFF3BCE2CC4694CA6A11D6E789D96EFD5A3D4B3973F61BD832B559142CE0554840AADDFDCD03C5ED062383DF038BA76572F0BE2D065442F3FB73FCD19D7
Malicious:	false
Reputation:	unknown
URL:	https://www.google.com/
Preview:	<!doctype html><html itemscope="" itemtype="http://schema.org/WebPage" lang="en"><head><meta charset="UTF-8"><meta content="origin" name="referrer"><meta content="/images/branding/googleg/1x/googleg_standard_color_128dp.png" itemprop="image"><title>Google</title><script nonce="WpZmWL4reURuubEElVJ4dQ">window._hst=Date.now();performance&&performance.mark&&performance.mark("SearchHeadStart");</script><script nonce="WpZmWL4reURuubEElVJ4dQ">(function(){var _g={kEI:'YYs3Z-i8HZ787_UPuovhqQI',kEXPI:'31',kBL:'KxgJ',kOPI:89978449};(function(){var a;((a=window.google)==null?0:a.stvsc)?google.kEI=_g.kEI:window.google=_g;}).call(this);})();(function(){google.sn='webhp';google.kHL='en';})();(function(){.var h=this\|\|self;function l(){return window.google!==void 0&&window.google.kOPI!==void 0&&window.google.kOPI!==0?window.google.kOPI:null};var m,n=[];function p(a){for(var b;a&&(!a.getAttribute\|\|!(b=a.getAttribute("eid")));)a=a.parentNode;return b\|\|m}function q(a){for(var b=null;a&&(!a.getAttribute\|\|!

Chrome Cache Entry: 177

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (49040)
Category:	downloaded
Size (bytes):	376988
Entropy (8bit):	5.529771927810221
Encrypted:	false
SSDEEP:
MD5:	947659487EEF4C18D53D6A4D96AD9D6C
SHA1:	BC039FE5F9AA14EADAD2D932F8B9E644B83EDDEB
SHA-256:	59EE5237D2A65498009EDB160772A801AC5B7E87D7A3391E284658E7E42E4E2E
SHA-512:	3760435116C49A6D8E63585512C46C440DF7093A150F188766626DE1A45C225DC66A2F764A909C10EAFCF18251D52191E4E5FD51E79252F763A8172E07E19133
Malicious:	false
Reputation:	unknown
URL:	https://www.googletagmanager.com/gtm.js?id=GTM-WQZB4J
Preview:	.// Copyright 2012 Google Inc. All rights reserved.. .(function(){..var data = {."resource": {. "version":"309",. . "macros":[{"function":"__u","vtp_component":"URL","vtp_enableMultiQueryKeys":false,"vtp_enableIgnoreEmptyQueryParam":false},{"function":"__e"},{"function":"__u","vtp_component":"PATH","vtp_enableMultiQueryKeys":false,"vtp_enableIgnoreEmptyQueryParam":false},{"function":"__remm","vtp_setDefaultValue":true,"vtp_input":["macro",2],"vtp_fullMatch":false,"vtp_replaceAfterMatch":true,"vtp_ignoreCase":true,"vtp_defaultValue":"\/","vtp_map":["list",["map","key","\\\/(intl)\\\/(.?)\\\/(.)","value","\/intl\/$2\/"]]},{"function":"__v","vtp_dataLayerVersion":2,"vtp_setDefaultValue":true,"vtp_defaultValue":["macro",0],"vtp_name":"originalLocation"},{"function":"__u","vtp_component":"PROTOCOL","vtp_customUrlSource":["macro",4],"vtp_enableMultiQueryKeys":false,"vtp_enableIgnoreEmptyQueryParam":false},{"function":"__u","vtp_stripWww":false,"vtp_component":"HOST","vtp_customUrlSource

Chrome Cache Entry: 178

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel
Category:	dropped
Size (bytes):	5430
Entropy (8bit):	3.6534652184263736
Encrypted:	false
SSDEEP:
MD5:	F3418A443E7D841097C714D69EC4BCB8
SHA1:	49263695F6B0CDD72F45CF1B775E660FDC36C606
SHA-256:	6DA5620880159634213E197FAFCA1DDE0272153BE3E4590818533FAB8D040770
SHA-512:	82D017C4B7EC8E0C46E8B75DA0CA6A52FD8BCE7FCF4E556CBDF16B49FC81BE9953FE7E25A05F63ECD41C7272E8BB0A9FD9AEDF0AC06CB6032330B096B3702563
Malicious:	false
Reputation:	unknown
Preview:	............ .h...&... .... .........(....... ..... ............................................0...................................................................................................................................v.].X.:.X.:.r.Y........................................q.X.S.4.S.4.S.4.S.4.S.4.S.4...X....................0........q.W.S.4.X.:.................J...A...g.........................K.H.V.8..........................F..B.....................,.......................................B..............................................B..B..B..B..B...u..........................................B..B..B..B..B...{.................5.......k...........................................................7R..8F.................................................2........Vb..5C..;I..................R^.....................0................Xc..5C..5C..5C..5C..5C..5C..lv..........................................]i..<J..:G..Zf....................................................

Chrome Cache Entry: 179

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (6015)
Category:	downloaded
Size (bytes):	6020
Entropy (8bit):	5.819692758557331
Encrypted:	false
SSDEEP:
MD5:	1AF4F087BFFE81F6B167B5E42EAB1F41
SHA1:	9B494AC96BD8495CF28CD6BDA29EF7DAC5704187
SHA-256:	29F1A6BEBBE468AE292798374A4755FAB50E7BBC6CC54268AD99A29E47A4BCF7
SHA-512:	C8CF5E1BC7044B01A592E0158F7EEB6FC4F6D284E517FF1A12755B99CFD15B79EA76491A144CB10B80DFE299798EF0570E7C893B9A217B785D1400CB5BC8144F
Malicious:	false
Reputation:	unknown
URL:	https://www.google.com/complete/search?client=chrome-omni&gs_ri=chrome-ext-ansg&xssi=t&q=&oit=0&gs_rn=42&sugkey=AIzaSyBOti4mM-6x9WDnZIjIeyEU21OpBXqWBgw
Preview:	)]}'.["",["cash app settlement lawsuit","general hospital spoilers","dragon quest 3 hd 2d remake","minnesota vikings","aurora borealis northern lights forecast","fbi investigation in portland ct","what is bluesky social media","jeopardy final jeopardy answer yesterday"],["","","","","","","",""],[],{"google:clientdata":{"bpc":false,"tlw":false},"google:groupsinfo":"ChgIkk4SEwoRVHJlbmRpbmcgc2VhcmNoZXM\u003d","google:suggestdetail":[{"zl":10002},{"zl":10002},{"zl":10002},{"google:entityinfo":"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

Chrome Cache Entry: 181

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	PNG image data, 300 x 125, 8-bit/color RGB, non-interlaced
Category:	dropped
Size (bytes):	19243
Entropy (8bit):	7.9627212925474256
Encrypted:	false
SSDEEP:
MD5:	F90083144772B0F4D3369E1D085B02A0
SHA1:	2E266B872DBE79D0365735F698E72FCD51DAEE0D
SHA-256:	9420DC3D9C751C0C33935618CB709A7C7F573891DBB8AE21F27873D44E88112C
SHA-512:	F0D0A2B5DFC35D61530A315A0F83B76D5F267191BE2E9D3111D0692C1DBCED410031707A3186F2603C549A75A407634DFA988A33E5E881931375A839FA4A2965
Malicious:	false
Reputation:	unknown
Preview:	.PNG........IHDR...,...}...........J.IDATx..y.e.Y..}{8...PsI..4.g.l.m....:&....tB.d-.. YI...w.M.c..$!..6..1x..-d.,....J%.\...L{...}.}....+UIo[KV.:.......!.....""D.u....=q.[......q..w....m,.c.mp.......o.n...#.%...s.;....0...[./.w.[.@ @h.....{.s..W.}....y...~...l.2d{...\{...e.....}.\..;..E2..! C.]..x.......}..^..6...f..#.d......g._x...f.....x.\|..7....w.{...g..W(..J.l.&...'.b.H@..UI3...;.>....Wr....b.&..._.....7G..Zk-......N...J...-..2.....4_ .e5.<v..Z......u.-.....[.dst^.......".<OJ..5R...B....e..../<.l..d...oyL.&..v.....%..`..9.G....B.D..........$i.3).....O\|....z..n(.....\{..\|O.+wT\|s....." \|5EG..z..6_?c.).B.....(.c........y.$....1...'.c..._......?..~l=m.:...........Y....zR.D..iN..\|...3J...\|.q.#o.$... ...N.%)..o.....,.o<...?...Wa.c........W.\|Uq`...~.../=.W.-."ltIr..w.-~...].2..D..1..... c.9.3......y...}....!. C...zE.>....e..o....c.,.i..Q.o'J.9........Sz..k.z...c#...4.%\|.i.....G.@=..D.e.R.Z;......m.&\ +................

Chrome Cache Entry: 182

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (2586)
Category:	downloaded
Size (bytes):	219406
Entropy (8bit):	5.52540628731088
Encrypted:	false
SSDEEP:
MD5:	9B5E7F323AB37A483FBFE5B5BABE4E08
SHA1:	C76B511AAB6E3849D949AC10DF76D8A61DE7A31B
SHA-256:	958A59F8BA3B511BF866A242825BAB575A52A3D90F7A0F94342874D9BCB62F2C
SHA-512:	064A42E532AD4C4469C796AADF14CA1BC25FF6B76638364EFB642B275A0CE33897DB70F0A1A11F8D4965F74933CC4C9A11D6B52FE440F4D7716D734CB064A980
Malicious:	false
Reputation:	unknown
URL:	"https://www.gstatic.com/og/_/js/k=og.qtm.en_US.Ed7fPZdAP88.2019.O/rt=j/m=qabr,q_dnp,qcwid,qapid,qald,qads,q_dg/exm=qaaw,qadd,qaid,qein,qhaw,qhba,qhbr,qhch,qhga,qhid,qhin/d=1/ed=1/rs=AA2YrTsAQtU7Exa5LSjaPuQb-KRl1yfMjA"
Preview:	this.gbar_=this.gbar_\|\|{};(function(_){var window=this;.try{._.Fd=typeof AsyncContext!=="undefined"&&typeof AsyncContext.Snapshot==="function"?a=>a&&AsyncContext.Snapshot.wrap(a):a=>a;.}catch(e){_._DumpException(e)}.try{._.ye=function(a){return _.Kb(a)&&a.nodeType==1};_.ze=function(a,b){if("textContent"in a)a.textContent=b;else if(a.nodeType==3)a.data=String(b);else if(a.firstChild&&a.firstChild.nodeType==3){for(;a.lastChild!=a.firstChild;)a.removeChild(a.lastChild);a.firstChild.data=String(b)}else _.ve(a),a.appendChild(_.le(a).createTextNode(String(b)))};var Ae;_.Be=function(a,b,c){Array.isArray(c)&&(c=c.join(" "));const d="aria-"+b;c===""\|\|c==void 0?(Ae\|\|(Ae={atomic:!1,autocomplete:"none",dropeffect:"none",haspopup:!1,live:"off",multiline:!1,multiselectable:!1,orientation:"vertical",readonly:!1,relevant:"additions text",required:!1,sort:"none",busy:!1,disabled:!1,hidden:!1,invalid:"false"}),c=Ae,b in c?a.setAttribute(d,c[b]):a.removeAttribute(d)):a.setAttribute(d,c)};var Fe;_.Ee=func

Chrome Cache Entry: 183

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	HTML document, Unicode text, UTF-8 text, with very long lines (1711)
Category:	downloaded
Size (bytes):	76592
Entropy (8bit):	4.939673723391367
Encrypted:	false
SSDEEP:
MD5:	31BA9AA6FADA0F9F6BD27647BF0C2EF1
SHA1:	ABA54B79B4855A22F8CFD4F8EC99BABF21CC32A4
SHA-256:	E99FCF79DF52489416E3C2E4DB0C0336148F378FAA90CBFD1946BD4F108AE2C4
SHA-512:	58322BE4DB1B457377E77F34767E8271DEABC1113374F5E6ADCD86E4D378DC412CB32C25CCE14170A03C91C5F9A72441291A7981D491A4B4FD2A5102000A86F1
Malicious:	false
Reputation:	unknown
URL:	https://about.google/?fg=1&utm_source=google-US&utm_medium=referral&utm_campaign=hp-header
Preview:	..<!DOCTYPE html>....<html lang="en" dir="ltr" class="google glue-flexbox " locale="ALL_us" user-region="north-america" path="/">. <head>. <meta charset="utf-8">. <meta content="initial-scale=1, minimum-scale=1, width=device-width" name="viewport">. <title>Google - About Google, Our Culture & Company News</title>. <meta name="description" content="Stay up to date with Google company news and products. Discover stories about our culture, philosophy, and how Google technology is impacting others.">..<script type="text/javascript" nonce="-EZnMC1gBspGtbVUh4-nFA">.window.dataLayer = window.dataLayer \|\| [];.window.dataLayer.push({. 'gtm.blacklist':['customScripts','nonGoogleScripts','nonGooglePixels','customPixels'].},{. 'locale_fallback': (document.childNodes[1].attributes.locale \|\| {}).value.});.</script>. Google Tag Manager -->.<script nonce="-EZnMC1gBspGtbVUh4-nFA">.function glueCookieNotificationBarLoaded() {. (function(w,d,s,l,i){w[l]=w[l]\|\|[];w[l].push({'gt

Chrome Cache Entry: 184

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text
Category:	dropped
Size (bytes):	102
Entropy (8bit):	5.183968088216582
Encrypted:	false
SSDEEP:
MD5:	68458548D25D4B61D4945759F06BCA08
SHA1:	E40CA240B20148525A0D1D79F2D3C88390947B25
SHA-256:	6B2ABBF4776B8E8A9AC1A93FB9595CAA7958E3C72C3D17327D0906C8D79CC678
SHA-512:	3C9CEFED6DB80432BA46DBABC069192617D48ECF80EAD3435924971F5FC30A361D4E6FB30BDCE4C81B4C108E18863D1172FE3F300EF2C392B36D9D33474A44D0
Malicious:	false
Reputation:	unknown
Preview:	)]}'.22;["Eos3Z-6-N-yhi-gP_ZzSwA0","2116"]c;[2,null,"0"]1b;<div jsname="Nll0ne"></div>c;[9,null,"0"]0;

Chrome Cache Entry: 185

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (29623)
Category:	downloaded
Size (bytes):	302678
Entropy (8bit):	5.284756588771475
Encrypted:	false
SSDEEP:
MD5:	30241D3E2308599118C9FFFC7FE031E5
SHA1:	6D3347AC4A8A1D3CE43C8DFB15167B6A7CCF5A27
SHA-256:	31A3B82F9286BB09BE820009E0313CA29FFA33D82005728021221B75F9071D84
SHA-512:	2399B6C3CEDD8620FEE0CC3CE9B7942E26F45422E729D3C6E177DEEEF63E113FF558367223F8B0B6B34405E81BA3A293FE384E0FB758FAAFF054ED611EDB4C2E
Malicious:	false
Reputation:	unknown
URL:	https://www.gstatic.com/external_hosted/lottie_player/lottie_player_binary-bundle.js
Preview:	//third_party/javascript/lottie_player/lottie_player.js./*. @license. * MIT License. . Copyright (c) 2019 LottieFiles.com. . Permission is hereby granted, free of charge, to any person obtaining a copy. * of this software and associated documentation files (the "Software"), to deal. * in the Software without restriction, including without limitation the rights. * to use, copy, modify, merge, publish, distribute, sublicense, and/or sell. * copies of the Software, and to permit persons to whom the Software is. * furnished to do so, subject to the following conditions:. . The above copyright notice and this permission notice shall be included in. * all copies or substantial portions of the Software.. . THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR. * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,. * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE. * AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR

Chrome Cache Entry: 186

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (1302)
Category:	downloaded
Size (bytes):	117949
Entropy (8bit):	5.4843553913091005
Encrypted:	false
SSDEEP:
MD5:	A5D33473ED0997C008D1C053E0773EBE
SHA1:	FEB4CB89145601A0141CC5869BEDF9AE7CD5CB80
SHA-256:	14C27BB0224FCF89A43B444B427DABE3D0AF184CAA7B6B4990CE228C51AE01C1
SHA-512:	3C0A48F9FA05469F950D9A268F1B3E9285A783A555EE597A2E203B688EB0FBCAEA3F4DE9BC8F5381C661007D0C6C4AFA70C19B7826D69A0E2A914A55973D14BD
Malicious:	false
Reputation:	unknown
URL:	"https://apis.google.com/_/scs/abc-static/_/js/k=gapi.gapi.en.SGzW6IeCawI.O/m=gapi_iframes,googleapis_client/rt=j/sv=1/d=1/ed=1/am=AACA/rs=AHpOoo-5biO9jua-6zCEovdoDJ8SLzd6sw/cb=gapi.loaded_0"
Preview:	gapi.loaded_0(function(_){var window=this;._._F_toggles_initialize=function(a){(typeof globalThis!=="undefined"?globalThis:typeof self!=="undefined"?self:this)._F_toggles=a\|\|[]};(0,_._F_toggles_initialize)([0x800000, ]);.var da,ea,ha,na,oa,sa,ta,wa;da=function(a){var b=0;return function(){return b<a.length?{done:!1,value:a[b++]}:{done:!0}}};ea=typeof Object.defineProperties=="function"?Object.defineProperty:function(a,b,c){if(a==Array.prototype\|\|a==Object.prototype)return a;a[b]=c.value;return a};.ha=function(a){a=["object"==typeof globalThis&&globalThis,a,"object"==typeof window&&window,"object"==typeof self&&self,"object"==typeof global&&global];for(var b=0;b<a.length;++b){var c=a[b];if(c&&c.Math==Math)return c}throw Error("a");};_.la=ha(this);na=function(a,b){if(b)a:{var c=_.la;a=a.split(".");for(var d=0;d<a.length-1;d++){var e=a[d];if(!(e in c))break a;c=c[e]}a=a[a.length-1];d=c[a];b=b(d);b!=d&&b!=null&&ea(c,a,{configurable:!0,writable:!0,value:b})}};.na("Symbol",function(a){if(a)r

Chrome Cache Entry: 190

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (1572)
Category:	downloaded
Size (bytes):	46275
Entropy (8bit):	5.545362356138812
Encrypted:	false
SSDEEP:
MD5:	6105B0091670595F3EBF76EF2480B6D1
SHA1:	7364655C780BC54E2C373B913BEBC9978886CACA
SHA-256:	D81D30EE04456E6BB2F17B410CE7D5F9EF773B99EE0EF4715DFA8E1670B167D5
SHA-512:	8691E8646C1B357723E27B81F9483FAB2D5B8920650FC58C5E8DCA09897E60A15C4D9CE4BC3FE92AD3878CCACF2CF89ED88E313600F41DE7EFDFE83A7B96022A
Malicious:	false
Reputation:	unknown
URL:	"https://fonts.googleapis.com/css?family=Roboto:100,300,400,500,700\|Google+Sans+Text:400,500,700,400i,500i,700i\|Google+Sans:400,500\|Google+Sans+Display:400\|Product+Sans:400&lang=en"
Preview:	/. See: https://fonts.google.com/license/googlerestricted. /./ armenian /.@font-face {. font-family: 'Google Sans';. font-style: normal;. font-weight: 400;. src: url(https://fonts.gstatic.com/s/googlesans/v62/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPiIUvaYr.woff2) format('woff2');. unicode-range: U+0308, U+0530-058F, U+2010, U+2024, U+25CC, U+FB13-FB17;.}./ bengali /.@font-face {. font-family: 'Google Sans';. font-style: normal;. font-weight: 400;. src: url(https://fonts.gstatic.com/s/googlesans/v62/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPiAUvaYr.woff2) format('woff2');. unicode-range: U+0951-0952, U+0964-0965, U+0980-09FE, U+1CD0, U+1CD2, U+1CD5-1CD6, U+1CD8, U+1CE1, U+1CEA, U+1CED, U+1CF2, U+1CF5-1CF7, U+200C-200D, U+20B9, U+25CC, U+A8F1;.}./ canadian-aboriginal */.@font-face {. font-family: 'Google Sans';. font-style: normal;. font-weight: 400;. src: url(https://fonts.gstatic.com/s/googlesans/v62/4UasrENHsxJlGDuGo1OIlJfC6l_24rl

Chrome Cache Entry: 192

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (11620)
Category:	downloaded
Size (bytes):	12983
Entropy (8bit):	5.589153322316143
Encrypted:	false
SSDEEP:
MD5:	D45307D10CFF4297DAAD697FE31106A6
SHA1:	E25D78E4773C5ED2E99487DB0964EDAD2206901B
SHA-256:	5562A799C0B0457BD06E40F2921756ADC75F568D567CA2429984303126147C21
SHA-512:	DA927BE862631FF2F294F78734B942C2A73A96957D3C9CC6DD2F5128DF3FCD7930A675FE92DAA09A053B8E9C96B8B482C6194AD9E5241FA61B5E94DD3A276D85
Malicious:	false
Reputation:	unknown
URL:	https://www.gstatic.com/external_hosted/picturefill/picturefill.min.js
Preview:	/*. @license. * Copyright 2016 Picturefill.. * picturefill - v3.0.2 - 2016-02-12. * https://scottjehl.github.io/picturefill/. * Copyright (c) 2016 https://github.com/scottjehl/picturefill/blob/3.0.2/Authors.txt. . The MIT License (MIT). . Copyright (c) 2014 Filament Group. . Permission is hereby granted, free of charge, to any person obtaining a copy. * of this software and associated documentation files (the "Software"), to deal. * in the Software without restriction, including without limitation the rights. * to use, copy, modify, merge, publish, distribute, sublicense, and/or sell. * copies of the Software, and to permit persons to whom the Software is. * furnished to do so, subject to the following conditions:. . The above copyright notice and this permission notice shall be included in all. * copies or substantial portions of the Software.. . THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR. * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WA

Chrome Cache Entry: 197

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (2586)
Category:	dropped
Size (bytes):	223751
Entropy (8bit):	5.52363880163645
Encrypted:	false
SSDEEP:
MD5:	B6DC8BD722EB511EDF40B66770AE8685
SHA1:	C83DCEE78F6F632AFE1133ADD8FDE9D3F9DDFEC6
SHA-256:	ADA80DC7F37F6DC82112A18FE0E501A6F0A47C11AD9E5FED25C62B552B319DA7
SHA-512:	482F43C40813B564A1FE69061D20F015C50B1B897DFE45A3F09D0BF106977B667884CF7433B6A35CBEBBAC170263D45CB67F028528D93101F8EC1E9A18B09E64
Malicious:	false
Reputation:	unknown
Preview:	this.gbar_=this.gbar_\|\|{};(function(_){var window=this;.try{._.Fd=typeof AsyncContext!=="undefined"&&typeof AsyncContext.Snapshot==="function"?a=>a&&AsyncContext.Snapshot.wrap(a):a=>a;.}catch(e){_._DumpException(e)}.try{._.ye=function(a){return _.Kb(a)&&a.nodeType==1};_.ze=function(a,b){if("textContent"in a)a.textContent=b;else if(a.nodeType==3)a.data=String(b);else if(a.firstChild&&a.firstChild.nodeType==3){for(;a.lastChild!=a.firstChild;)a.removeChild(a.lastChild);a.firstChild.data=String(b)}else _.ve(a),a.appendChild(_.le(a).createTextNode(String(b)))};var Ae;_.Be=function(a,b,c){Array.isArray(c)&&(c=c.join(" "));const d="aria-"+b;c===""\|\|c==void 0?(Ae\|\|(Ae={atomic:!1,autocomplete:"none",dropeffect:"none",haspopup:!1,live:"off",multiline:!1,multiselectable:!1,orientation:"vertical",readonly:!1,relevant:"additions text",required:!1,sort:"none",busy:!1,disabled:!1,hidden:!1,invalid:"false"}),c=Ae,b in c?a.setAttribute(d,c[b]):a.removeAttribute(d)):a.setAttribute(d,c)};var Fe;_.Ee=func

Chrome Cache Entry: 198

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	JSON data
Category:	dropped
Size (bytes):	18003
Entropy (8bit):	5.0563766799067675
Encrypted:	false
SSDEEP:
MD5:	6C74A3DEF6DAD5FB43F6145C8B461051
SHA1:	C471C15939EC4C4EFADADA8350982B9C5AA67222
SHA-256:	52E7527F387E49F7E62D45FE755E8A08C938E3F4E786C186BC8AC12234D03DBE
SHA-512:	2F04717E7B17F1D17F91FD63D261C185A5B48B00EF89F087C11D256E82A11B97669D8FFD66C972A73846CAD82E6C330A5291EE970412B3249D9B87CF02088557
Malicious:	false
Reputation:	unknown
Preview:	{"meta":{"total_count":4463},"next_page":"/api/v2/latest?paginate=12&tags=accessibility%2Cads%2Cai%2Calphabet%2Carea-120%2Carts-and-culture%2Ccivics%2Ccompany-announcements%2Cdata-centers-and-infrastructure%2Cdesign%2Cdevelopers%2Cdigital-wellbeing%2Cdiversity-and-inclusion%2Cdoodles%2Ceducation%2Centrepreneurs%2Cfamilies%2Cgoogle-news-initiative%2Cgoogleorg%2Cgrow-with-google%2Chealth%2Cnext-billion-users%2Cnonprofits%2Cpublic-policy%2Cresearch%2Csafety-and-security%2Csmall-business%2Csustainability&fields=&is_main_hero=False&show_hero=True&cursor=2","results":[{"analytics_properties":{"has_carousel":"no","has_image":"yes","has_audio":"no","has_video":"no","hero_media_type":"image"},"tag_name":"Arts & Culture","author":"Chance Coughenour","go_live_date_time":"2024-11-15\|17:00","published_node":"<time class=\"uni-timesince\" datetime=\"2024-11-15 17:00:00+00:00\">Nov 15</time>","content_type":"article page","tag":"arts-and-culture","full_url":"https://blog.google/outreach-initiatives/a

Chrome Cache Entry: 200

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (717)
Category:	downloaded
Size (bytes):	722
Entropy (8bit):	5.107778411265736
Encrypted:	false
SSDEEP:
MD5:	DD48A8002B02E98B2B91A99C3CA460BF
SHA1:	D9B119FB56EAC8154A10437946F146B178E10761
SHA-256:	139ABEA82AAAF58C0FA23B0FBE02E5846153582FF6087D2DFF7E2ACDBAC85497
SHA-512:	E2FE6E002F1C6A283CE554AEEFD827204DB9F506280148168C0E4143AC5586B1DF5AEEFD5A50FE8A95059C2144B82A1A9C00B5E0CF0B0D156000763C98DD0480
Malicious:	false
Reputation:	unknown
URL:	https://www.google.com/complete/search?client=chrome-omni&gs_ri=chrome-ext-ansg&xssi=t&q=http%3A%2F%2F&oit=4&cp=7&pgcl=4&gs_rn=42&psi=rq1Lt3AqmC9Qhj17&sugkey=AIzaSyBOti4mM-6x9WDnZIjIeyEU21OpBXqWBgw
Preview:	)]}'.["http://",["http //192.168.l.1","http //192.168.l.254","http //localhost/8080","http //10.0.0.0.1","http //mobile. hotspot","http //fortnite.com/2fa ps5","http //192 l.168.0.1","http //localhost/phpmyadmin/","http //sc.gov/onlineservices/pages/court payments.aspx","http://fortnite.com/2fa"],["","","","","","","","","",""],[],{"google:clientdata":{"bpc":false,"tlw":false},"google:suggestrelevance":[601,600,556,555,554,553,552,551,550,400],"google:suggestsubtypes":[[512,433],[512,433],[512,650,433,131],[512],[512],[512,433,131],[512,433,131],[512,650,433,131],[512],[44]],"google:suggesttype":["QUERY","QUERY","QUERY","QUERY","QUERY","QUERY","QUERY","QUERY","QUERY","NAVIGATION"],"google:verbatimrelevance":851}]

Chrome Cache Entry: 204

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	PNG image data, 300 x 125, 8-bit/color RGB, non-interlaced
Category:	dropped
Size (bytes):	17336
Entropy (8bit):	7.972845669043403
Encrypted:	false
SSDEEP:
MD5:	FF2239ACA951F5D32B15290A8D3308B4
SHA1:	00E0ABF640D82EFD565BAE6898331113C6F19584
SHA-256:	094620D1FD205C8B2907B50DFD4FF9C812C2997719842E6533065FC2FDCD31C3
SHA-512:	0F3F249FE89D08FFC307A6F0263FFDAA3AF966169B1E78638A1AAC13295B502FC4210C7611BBDA240D5E4BF39306FC2DFF52D5CDC9C665215671B40D17AE52A4
Malicious:	false
Reputation:	unknown
Preview:	.PNG........IHDR...,...}...........C.IDATx..w.].y..._9...f........H5.Y-..K.,.%..7k'.q....y.'.co......N$..,Q.D......D.e.f......gf8......=..w.s...~.../..-...7n....Q....?$7..C..C..._...+.....p.E.....:Q..]....Z.9.T./..............89.+...........@.....,.`~(..8kV.y.{.u..F.c...p...M...t.G..;..[....o/.ZwP.n.......6u.6.."< ..2X.=.9.d4u....I.pK..uL.r'd.d....Y....s.....M..o.5".L#....%..r.1?.S.../......VNF\|U.V...Y.....T..;W.B.$..~..x.,..".g.v..+....".".....Ak..4.o..........7........0.V+._../...O.........^l..Xf_[.....T......1.+....%.R..Ne5...J...+J%.6Wr.!.L.".!...+~.W.......?..np..lq..N..)..B....x........y....F....0.Y>8.u...FD.s..]..!R..bA...- c....g..!c.'...;.&.ZD.2`\.p...........}.B!....vA...L.u%...~...#..[..zc .d........L'#M...h.......$Qc:2\!A.D.(.QfA.];.. .1$8.8..:u...J......7\G.Q..-..zG.K.GT.N.:.w\|2.h84M.=...D0....*.8..gZ..`.7.....g...x...)"..............2.9.+"..!K@.........G..Im.k.v%..D.1&Q..p"f{....+..K.^.E..Yx\.1J.......O...\|...'..>.6.p.

Chrome Cache Entry: 205

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text
Category:	downloaded
Size (bytes):	135
Entropy (8bit):	4.692302488407671
Encrypted:	false
SSDEEP:
MD5:	2DCA10B9D622ABDDE6D4095C102891D5
SHA1:	5009EFC1A93BD9875C22397D56D7F1C79F5C1F39
SHA-256:	0CC1DFC41FD503A08DD620EA1CB59715201363C62E50D0139587FE9CFF5C5986
SHA-512:	F321E2C199396EFD909FA9A29B4DFAAB4D056C63449114C40DA1CB419B59E155F79E38F037C8FE69075BB231FBF97AC9DAD1D23B40212DACF1DCB16CA64971A0
Malicious:	false
Reputation:	unknown
URL:	https://www.google.com/complete/search?client=chrome-omni&gs_ri=chrome-ext-ansg&xssi=t&q=527newagain.top&oit=3&cp=15&pgcl=4&gs_rn=42&psi=rq1Lt3AqmC9Qhj17&sugkey=AIzaSyBOti4mM-6x9WDnZIjIeyEU21OpBXqWBgw
Preview:	)]}'.["527newagain.top",[],[],[],{"google:clientdata":{"bpc":false,"tlw":true},"google:suggesttype":[],"google:verbatimrelevance":851}]

Chrome Cache Entry: 206

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text
Category:	downloaded
Size (bytes):	133
Entropy (8bit):	4.68676609930129
Encrypted:	false
SSDEEP:
MD5:	DD5CD114425E3CFE9A9BEE4CD07C8B55
SHA1:	AB9C48BFA4ACAFC1D4847E531CE326DB85726C5D
SHA-256:	CC539F7CC4B6F209408BCBFAE372B87FDFCE456961D580C8AB56EF7F29FA9F96
SHA-512:	67DFF6E614D32FC175DB0F4B12FB23BA5F041DA4A98D6D55F8712FEEEC50BB053189620F808737EE2DA8F775D7A40FE54B183012B079D45431E85BD9DA2AC84F
Malicious:	false
Reputation:	unknown
URL:	https://www.google.com/complete/search?client=chrome-omni&gs_ri=chrome-ext-ansg&xssi=t&q=527newagain.t&oit=1&cp=13&pgcl=4&gs_rn=42&psi=rq1Lt3AqmC9Qhj17&sugkey=AIzaSyBOti4mM-6x9WDnZIjIeyEU21OpBXqWBgw
Preview:	)]}'.["527newagain.t",[],[],[],{"google:clientdata":{"bpc":false,"tlw":true},"google:suggesttype":[],"google:verbatimrelevance":851}]

Chrome Cache Entry: 209

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (2049)
Category:	dropped
Size (bytes):	14470
Entropy (8bit):	5.471797942604269
Encrypted:	false
SSDEEP:
MD5:	E49B5D34EDEDDD22822EDF2A0BC53703
SHA1:	B4DADEDBA6F01450A9B36D043D7B200BA9E41E53
SHA-256:	F81835D8C119EAD08E478090F1339F98884F381917B61C1DD4B92E04B86CEC64
SHA-512:	3D66F5345687DC01D9AE22C2E2C4A573ACF27DFBFE8BAB21AD3E99C47736BB037DDA71F6F5CDBFD9C463D03A4AA2CF0E7EED60D97757316669FE9F579E93122D
Malicious:	false
Reputation:	unknown
Preview:	(function(){var aa=typeof Object.defineProperties=="function"?Object.defineProperty:function(a,b,c){if(a==Array.prototype\|\|a==Object.prototype)return a;a[b]=c.value;return a},ba=function(a){a=["object"==typeof globalThis&&globalThis,a,"object"==typeof window&&window,"object"==typeof self&&self,"object"==typeof global&&global];for(var b=0;b<a.length;++b){var c=a[b];if(c&&c.Math==Math)return c}throw Error("Cannot find global object");},ca=ba(this),g=function(a,b){if(b)a:{var c=ca;a=a.split(".");for(var d=0;d<a.length-.1;d++){var e=a[d];if(!(e in c))break a;c=c[e]}a=a[a.length-1];d=c[a];b=b(d);b!=d&&b!=null&&aa(c,a,{configurable:!0,writable:!0,value:b})}},h=function(a,b,c){if(a==null)throw new TypeError("The 'this' value for String.prototype."+c+" must not be null or undefined");if(b instanceof RegExp)throw new TypeError("First argument to String.prototype."+c+" must not be a regular expression");return a+""};.g("String.prototype.endsWith",function(a){return a?a:function(b,c){var d=h(this

Chrome Cache Entry: 211

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	PNG image data, 300 x 125, 8-bit/color RGB, non-interlaced
Category:	downloaded
Size (bytes):	17107
Entropy (8bit):	7.971786615960527
Encrypted:	false
SSDEEP:
MD5:	5A35A1B48F5AAAF316C5D8EB8AF1AB69
SHA1:	701022F3CB82777225E69FDFFC061914B0D8AFDB
SHA-256:	FA30AC87B57B3EC347B5C70F2F2702D986E97C8AFE3A2547630E63325EE35592
SHA-512:	B96EB91B8528C9308E4ED5C5BC9545A6D1F57EDE9CB8FBD932D4C9D4C535E3F95493755DDD5D538DF1B6AECF5CF3F0B27564B658DA1A2AAFF4ACF17F92F35417
Malicious:	false
Reputation:	unknown
URL:	https://storage.googleapis.com/gweb-uniblog-publish-prod/images/Holiday_Maps_v3.max-300x300.png
Preview:	.PNG........IHDR...,...}...........B.IDATx..y.e.U....{.s.Xs..5.$.....3..!......>.<pBx/...0.<.....0$`p.c...G.,.....[=T.\w<...z..{.nU..........{..Z{.....l...5...)..[c......b.5..5.[ck\.&..C..-F..[c.C..........n..q9.0..[ckl..l.v....../.EPk.....^"Q.GT..7.D.@.1....D`0O...^.rmIk2.y....].z....)..l6...R/.5....p.....&cE...".[Lx.s.PK.a)?...u..le....Z_..i.m&.G....+....&$.N.....`h]....+.-...D...9x.p..J...".ET...,.T".+.....W.2l.r..W...@^cd0R......mylZi:..@...r...=o....v.U9.6..Y.`p(O3.H.....m..H..u.dK.n.E\|..I.Y.k...W..7.....\...Q@p.6.t...H...@..e.-FY...WH+[c..tM..../......K}....p..B/. .VG.t:adE...f..(..&...!...%.5..lI..YP0X....@5....<.dT.9..<TbYL..@).Z........fB...%..@%].."B#..]2.#..(.[I.k.K.D..j.....0.a..X.b&.V.,\.%.k..s......u.n.L...F!!.,....!..d......@A.d.{.......0e..(.7/.^..b....4..........^b.."!...#..i.>.kQ..T.\#./.M.XZ.^..hw...[N.i.ud..my.$.."X..].+"..P..Fz.l...}.:Q6`../^6.$d.RW.dN.jz.y.D..,...W.{......!..K..+b..;E.......].Lod.x.]a..T.5.!...

Chrome Cache Entry: 212

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with no line terminators
Category:	dropped
Size (bytes):	181
Entropy (8bit):	5.052245007941961
Encrypted:	false
SSDEEP:
MD5:	10C8AED69BDAED5FA3120401608F0899
SHA1:	6E5A7025855BFB087B556203D18D24843EBBF804
SHA-256:	6F62D85EF6ED53BC368C77B6A47394A41F3B16D9E07D0B8761E726784EEBCEB4
SHA-512:	E2BAD6E1B1AF68AB4511264A4A8506FFFC4B07936BA3D1C5E809926E7E1741AA0DC1E7991848BD21380F12C962E6C6A7BA74FE82FE24EE762AC736A1DE29B045
Malicious:	false
Reputation:	unknown
Preview:	<svg id="expand-more" width="18" height="18" viewBox="0 0 24 24" xmlns="http://www.w3.org/2000/svg"><path fill="#5f6368" d="M5.41 7.59L4 9l8 8 8-8-1.41-1.41L12 14.17"></path></svg>

Chrome Cache Entry: 213

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	SVG Scalable Vector Graphics image
Category:	downloaded
Size (bytes):	1554
Entropy (8bit):	4.133417333200851
Encrypted:	false
SSDEEP:
MD5:	C5B92D70540100ACBE7A089EDD4AD521
SHA1:	289EDD48A26448C16B24D8CEE077891AC256B63C
SHA-256:	C2193804A202EB72C93FC3B18733063DA2FC140C1991AD624980C836AFD61D27
SHA-512:	84244179B2669C0113F00FAADF2C4539F68DADD880A2E36149A31849AB3C654FE98F3FF3FDB1483438CC970FD25E29B35A85E7BE0F1B5CC490C3DCD249FD35A7
Malicious:	false
Reputation:	unknown
URL:	https://about.google/assets-main/img/glue-google-solid-logo.svg
Preview:	<svg id="google-solid-logo" width="74" height="24" viewBox="0 0 74 24" xmlns="http://www.w3.org/2000/svg"><path fill="#5f6368" d="M9.24 8.19v2.46h5.88c-.18 1.38-.64 2.39-1.34 3.1-.86.86-2.2 1.8-4.54 1.8-3.62 0-6.45-2.92-6.45-6.54s2.83-6.54 6.45-6.54c1.95 0 3.38.77 4.43 1.76L15.4 2.5C13.94 1.08 11.98 0 9.24 0 4.28 0 .11 4.04.11 9s4.17 9 9.13 9c2.68 0 4.7-.88 6.28-2.52 1.62-1.62 2.13-3.91 2.13-5.75 0-.57-.04-1.1-.13-1.54H9.24zm15.76-2c-3.21 0-5.83 2.44-5.83 5.81 0 3.34 2.62 5.81 5.83 5.81s5.83-2.46 5.83-5.81c0-3.37-2.62-5.81-5.83-5.81zm0 9.33c-1.76 0-3.28-1.45-3.28-3.52 0-2.09 1.52-3.52 3.28-3.52s3.28 1.43 3.28 3.52c0 2.07-1.52 3.52-3.28 3.52zm28.58-8.03h-.09c-.57-.68-1.67-1.3-3.06-1.3C47.53 6.19 45 8.72 45 12c0 3.26 2.53 5.81 5.43 5.81 1.39 0 2.49-.62 3.06-1.32h.09v.81c0 2.22-1.19 3.41-3.1 3.41-1.56 0-2.53-1.12-2.93-2.07l-2.22.92c.64 1.54 2.33 3.43 5.15 3.43 2.99 0 5.52-1.76 5.52-6.05V6.49h-2.42v1zm-2.93 8.03c-1.76 0-3.1-1.5-3.1-3.52 0-2.05 1.34-3.52 3.1-3.52 1.74 0 3.1 1.5 3.1 3.54.01

Chrome Cache Entry: 214

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (10109), with no line terminators
Category:	downloaded
Size (bytes):	10109
Entropy (8bit):	5.303548249312523
Encrypted:	false
SSDEEP:
MD5:	C81327CE05F2739305F61E83A6C05446
SHA1:	AB2C67BAF219EE7730269E652B894D9D337B1D5D
SHA-256:	7637C8A763E6F90772BB18F15A4EF50B1978313BECE75FB07B900CAD56D49979
SHA-512:	99F034CF708B8E130D5F4819B78CCECFC7D2E646E26B37A3377FC62C7BBA29BEA45C1ABE7D9520E11FB98B36D2E44BB9A32EF53332B00875CA6F143E163A2308
Malicious:	false
Reputation:	unknown
URL:	"https://www.gstatic.com/og/_/ss/k=og.qtm.zyyRgCCaN80.L.W.O/m=qcwid,d_b_gm3,d_wi_gm3,d_lo_gm3/excm=qaaw,qadd,qaid,qein,qhaw,qhba,qhbr,qhch,qhga,qhid,qhin/d=1/ed=1/ct=zgms/rs=AA2YrTs4SLbgh5FvGZPW_Ny7TyTdXfy6xA"
Preview:	.gb_P{-webkit-border-radius:50%;border-radius:50%;bottom:2px;height:18px;position:absolute;right:0;width:18px}.gb_Ja{-webkit-border-radius:50%;border-radius:50%;-webkit-box-shadow:0px 1px 2px 0px rgba(60,64,67,.30),0px 1px 3px 1px rgba(60,64,67,.15);box-shadow:0px 1px 2px 0px rgba(60,64,67,.30),0px 1px 3px 1px rgba(60,64,67,.15);margin:2px}.gb_Ka{fill:#f9ab00}.gb_F .gb_Ka{fill:#fdd663}.gb_La>.gb_Ka{fill:#d93025}.gb_F .gb_La>.gb_Ka{fill:#f28b82}.gb_La>.gb_Ma{fill:white}.gb_Ma,.gb_F .gb_La>.gb_Ma{fill:#202124}.gb_Na{-webkit-clip-path:path("M16 0C24.8366 0 32 7.16344 32 16C32 16.4964 31.9774 16.9875 31.9332 17.4723C30.5166 16.5411 28.8215 16 27 16C22.0294 16 18 20.0294 18 25C18 27.4671 18.9927 29.7024 20.6004 31.3282C19.1443 31.7653 17.5996 32 16 32C7.16344 32 0 24.8366 0 16C0 7.16344 7.16344 0 16 0Z");clip-path:path("M16 0C24.8366 0 32 7.16344 32 16C32 16.4964 31.9774 16.9875 31.9332 17.4723C30.5166 16.5411 28.8215 16 27 16C22.0294 16 18 20.0294 18 25C18 27.4671 18.9927 29.7024 20.6004 3

Chrome Cache Entry: 215

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	RIFF (little-endian) data, Web/P image
Category:	downloaded
Size (bytes):	660
Entropy (8bit):	7.7436458678149815
Encrypted:	false
SSDEEP:
MD5:	C3DFF0D9F30EC0BCF4DEC9524505916B
SHA1:	4B378403ACBEBC3747E08C69B5FD7770A850C9EB
SHA-256:	73D788F86BE22112BB53762545989C0F1BBDB7343161130952C9BA3834FF81E3
SHA-512:	677EA304D00D176ACF61FF68BF23BD5F77AD2928D7DE9F4B842292BC9D3FB7029FE9F578B62F142DCE689230F392E828098EED3484FE2DBEE6E1A7AA5378E2C6
Malicious:	false
Reputation:	unknown
URL:	https://www.google.com/images/searchbox/desktop_searchbox_sprites318_hr.webp
Preview:	RIFF....WEBPVP8L..../'....Hv.=n.......Q...a..(Rv.o..U.....l..m........0l.6l..f.......A?B.C.A...2h..Ag0....G8.n#)R.j.x..P.F..I;.Ox......7-...bX./..]...3..T....5...x...G.C....%.u.....u/._.=....<!q.\...9.....\....p:..P.4.aS.N).>.>.."..9..Vh ....no....l.1..#6p\c..2..>..=8...........FP.^....+/.~......hs..D.Jm..9...r....t*.H..~T^\|.....l..l......he..}f....d.."....K...&1..................pl.Pf.%6...2X..I...eXQ(.K..1%c..w.s._..._K`K.1}..D.E=...<..ytM..>.q'.e.L.~$...b..;k.M.....t\O..m.I._..F....'........z.]..u?~..P.zJM.. k...p~9..D....".Zl$?f..+...\.Pg..%...;.[R>N.#.W.e..@q...(....]&......K.......?.\|.z..(...:&m.V.C.'...D^.R....

Chrome Cache Entry: 216

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with no line terminators
Category:	downloaded
Size (bytes):	16
Entropy (8bit):	3.875
Encrypted:	false
SSDEEP:
MD5:	BEEDCB4EB0A559E6CE2D1E20D38CB330
SHA1:	A04EE9801770C0E81B170D7992EC3735E878AA58
SHA-256:	6E9D99B87595B07B10676B68EBE9AA8B63DF7D9A74F59CC91EED60EA1FBDC6EF
SHA-512:	BD101CDF7FDF1210127D83CE76E3F6F6F1378259F0A55C112E39C49A9131B8636FB020E07E985B8427A35B62A544F2F7C5F75B11AD69EF2C4AE67A41BD5898B2
Malicious:	false
Reputation:	unknown
URL:	https://content-autofill.googleapis.com/v1/pages/ChVDaHJvbWUvMTE3LjAuNTkzOC4xNDkSEAn11VQ7sgCk8RIFDWlIR0c=?alt=proto
Preview:	CgkKBw1pSEdHGgA=

Chrome Cache Entry: 217

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	HTML document, Unicode text, UTF-8 text, with very long lines (1136)
Category:	dropped
Size (bytes):	1555
Entropy (8bit):	5.249530958699059
Encrypted:	false
SSDEEP:
MD5:	FBE36EB2EECF1B90451A3A72701E49D2
SHA1:	AE56EA57C52D1153CEC33CEF91CF935D2D3AF14D
SHA-256:	E8F2DED5D74C0EE5F427A20B6715E65BC79ED5C4FC67FB00D89005515C8EFE63
SHA-512:	7B1FD6CF34C26AF2436AF61A1DE16C9DBFB4C43579A9499F4852A7848F873BAC15BEEEA6124CF17F46A9F5DD632162364E0EC120ACA5F65E7C5615FF178A248F
Malicious:	false
Reputation:	unknown
Preview:	<!DOCTYPE html>.<html lang=en>. <meta charset=utf-8>. <meta name=viewport content="initial-scale=1, minimum-scale=1, width=device-width">. <title>Error 400 (Bad Request)!!1</title>. <style>. {margin:0;padding:0}html,code{font:15px/22px arial,sans-serif}html{background:#fff;color:#222;padding:15px}body{margin:7% auto 0;max-width:390px;min-height:180px;padding:30px 0 15px} > body{background:url(//www.google.com/images/errors/robot.png) 100% 5px no-repeat;padding-right:205px}p{margin:11px 0 22px;overflow:hidden}ins{color:#777;text-decoration:none}a img{border:0}@media screen and (max-width:772px){body{background:none;margin-top:0;max-width:none;padding-right:0}}#logo{background:url(//www.google.com/images/branding/googlelogo/1x/googlelogo_color_150x54dp.png) no-repeat;margin-left:-5px}@media only screen and (min-resolution:192dpi){#logo{background:url(//www.google.com/images/branding/googlelogo/2x/googlelogo_color_150x54dp.png) no-repeat 0% 0%/100% 100%;-moz-border-image:url(//ww

Chrome Cache Entry: 218

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (4238), with no line terminators
Category:	downloaded
Size (bytes):	4238
Entropy (8bit):	5.5311629827397715
Encrypted:	false
SSDEEP:
MD5:	F4C8C06B68FFF954F98AD5909CE87015
SHA1:	E23BC22AD74A915E4908DF3719DAE88A0BEA108B
SHA-256:	3D63867F1EEBBD1D1307A0BE85D82ECA53D4DFD5B00AB5B4910CFBADB3B28EBF
SHA-512:	FED0ADD8260163BCD64E210C8324B5E36FBFE26785CBCC42C041853FC644A2124DF497556E11A5029576D41C8C666800912F95B4C353F1BF6A8DB126C24FDC64
Malicious:	false
Reputation:	unknown
URL:	"https://www.google.com/xjs/_/ss/k=xjs.hd.Te3B62pO_2c.L.B1.O/am=CKkCAAAAAAAIAAAAAAAAAAAAAAAAAAAAAAAAQAAAAAAAAAAC7AQAAAMA7AIECAAAAACAARAAAIAACAAAAABAAKACAAAAAAAEAIAIAAEABQAAgMAoAAAQkAGUABIAAAAKAgAQABAACCADDUFUAKIAAAAAAAAAQAAAAIAgAAQCAHQABIABIBIAANEDAQAAAACCAAA2AGAIGIAAAAAAAAAAZAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQAAQAF/d=1/ed=1/br=1/rs=ACT90oE0wYfFBYHWoWApgJKnmXTT7ch8Jw/m=cdos,hsm,jsa,mb4ZUb,cEt90b,SNUn3,qddgKe,sTsDMc,dtl0hd,eHDfl,d,csi"
Preview:	:root{--COEmY:#1f1f1f;--xhUGwc:#fff}:root{--vZe0jb:#a8c7fa;--nwXobb:#638ed4;--VuZXBd:#001d35;--uLz37c:#545d7e;--jINu6c:#001d35;--TyVYld:#0b57d0;--ZEpPmd:#c3d9fb;--QWaaaf:#638ed4;--DEeStf:#f5f8ff;--TSWZIb:#e5edff;--BRLwE:#d3e3fd;--gS5jXb:#dadce0;--Aqn7xd:#d2d2d2;--EpFNW:#fff;--IXoxUe:#5e5e5e;--bbQxAb:#474747;--YLNNHc:#1f1f1f;--TMYS9:#0b57d0;--JKqx2:#1a0dab;--rrJJUc:var(--Nsm0ce);--mXZkqc:#d2d2d2;--Nsm0ce:#0b57d0;--XKMDxc:#f3f5f6;--aYn2S:#f3f5f6;--Lm570b:#dee1e3}.zJUuqf{margin-bottom:4px}.AB4Wff{margin-left:16px}.OhScic{margin:0px}.v0rrvd{padding-bottom:16px}.zsYMMe{padding:0px}.wHYlTd{font-family:Roboto,Arial,sans-serif;font-size:14px;line-height:22px}.yUTMj{font-family:Roboto,Arial,sans-serif;font-weight:400}.VDgVie{text-align:center}.TUOsUe{text-align:left}@keyframes g-snackbar-show{from{pointer-events:none;transform:translateY(0)}to{transform:translateY(-100%)}}@keyframes g-snackbar-hide{from{transform:translateY(-100%)}to{transform:translateY(0)}}@keyframes g-snackbar-show-content{f

Chrome Cache Entry: 219

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	SVG Scalable Vector Graphics image
Category:	downloaded
Size (bytes):	401
Entropy (8bit):	4.740133908247468
Encrypted:	false
SSDEEP:
MD5:	E2DBF6370751567D561BB64649CB3342
SHA1:	42792B6B81D2386B95F295CA7473C929CFE4FB0C
SHA-256:	C1BD37E48A2AFA7523AED613951F5411A03DC1597344A9639DDAA4EFF32F0D7E
SHA-512:	792FABC52F0D9DC8BDAC569C0AED7C6B61C29293B8EE43C62A50533F23EFE440C9EB4B34393D3BA82CBB32A99F43EA16ABBE2B187F9A88E013579194C43B4178
Malicious:	false
Reputation:	unknown
URL:	https://about.google/assets-main/img/glue-help.svg
Preview:	<svg id="help" width="24" height="24" viewBox="0 0 24 24" xmlns="http://www.w3.org/2000/svg"><path fill="#5f6368" d="M12 2C6.48 2 2 6.48 2 12s4.48 10 10 10 10-4.48 10-10S17.52 2 12 2zm1 17h-2v-2h2v2zm2.07-7.75l-.9.92C13.45 12.9 13 13.5 13 15h-2v-.5c0-1.1.45-2.1 1.17-2.83l1.24-1.26c.37-.36.59-.86.59-1.41 0-1.1-.9-2-2-2s-2 .9-2 2H8c0-2.21 1.79-4 4-4s4 1.79 4 4c0 .88-.36 1.68-.93 2.25z"></path></svg>.

Chrome Cache Entry: 220

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (4005)
Category:	dropped
Size (bytes):	121397
Entropy (8bit):	5.472638120984786
Encrypted:	false
SSDEEP:
MD5:	21B4B6C5C9F0AD04F3EA3612108FDE49
SHA1:	60A9BFD282F5C1CDBF8567D552F055BB8CB5CB9D
SHA-256:	832A1311F1ED475C49B2C9E6B9F1A1602CE7173CC69D2FC6DD1324D300511B10
SHA-512:	CAC007A6DF7465BDDF3DE2D4B011736125AA6F5FE6DBEFD3AE435BEBF001E90150F8DE6FA05C7F48D83CF387727AFCD9480E184C2FC677C9303991BB6E9ECCF4
Malicious:	false
Reputation:	unknown
Preview:	(function(){var m,aa=function(a){var b=0;return function(){return b<a.length?{done:!1,value:a[b++]}:{done:!0}}},ba=typeof Object.defineProperties=="function"?Object.defineProperty:function(a,b,c){if(a==Array.prototype\|\|a==Object.prototype)return a;a[b]=c.value;return a},ca=function(a){a=["object"==typeof globalThis&&globalThis,a,"object"==typeof window&&window,"object"==typeof self&&self,"object"==typeof global&&global];for(var b=0;b<a.length;++b){var c=a[b];if(c&&c.Math==Math)return c}throw Error("Cannot find global object");.},t=ca(this),v=function(a,b){if(b)a:{var c=t;a=a.split(".");for(var d=0;d<a.length-1;d++){var e=a[d];if(!(e in c))break a;c=c[e]}a=a[a.length-1];d=c[a];b=b(d);b!=d&&b!=null&&ba(c,a,{configurable:!0,writable:!0,value:b})}};.v("Symbol",function(a){if(a)return a;var b=function(g,f){this.$jscomp$symbol$id_=g;ba(this,"description",{configurable:!0,writable:!0,value:f})};b.prototype.toString=function(){return this.$jscomp$symbol$id_};var c="jscomp_symbol_"+(Math.random

Chrome Cache Entry: 222

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 800x532, components 3
Category:	downloaded
Size (bytes):	52203
Entropy (8bit):	7.9786643121183225
Encrypted:	false
SSDEEP:
MD5:	69BEF752B0D68A0D60C03045476DE8FB
SHA1:	75315B66E2DFF65D06C9A3319B4EAE13FCC2CCAC
SHA-256:	49DBEABE8D8D3AA637780C0865DC7340D7E70B94FCD44670804575F03AB76FAA
SHA-512:	D102B61DDF0546C5E764C14A8CAE0FCDDF1E875C138EB64904D7E04633C7D20590352A3FD1E8475660D0C4433FAFC535ACC476B9B4A6B8546A530C3A58FC72F7
Malicious:	false
Reputation:	unknown
URL:	https://lh3.googleusercontent.com/sbusTGfIzIf2EpK3j1EygXk_Qaq1i5WBMRKge7jsMHnU8IvJK2BR-rr7laSFVUBu3U3PmX11b1RBbZOtL9w4a9S3OMQSAb09XNCBJaL3X0JHBpcfGIM=w1440-l90-sg-rj-c0xffffff
Preview:	......JFIF........................................................................................................................................................ ..".........................................X.........................!1.AQa."q.2....B....#R...brt..$'37CU......4DESTV.cdsu...%&56e................................:.......................!1..AQ.."2aq...#r.....3BRbc....S.............?..T.Vt.....b..1..\...@..(.......n..}u...t..r...jK.O..(...zK&.j.(......U.....k.j4......T.._.]ib.,S^..9.,...g.w4.....QAf..,R.b...54w...@".AFL...#`F..J^.8..5..@.....H.r...].Wf.&f.icu......d..@4==.)@.......\h..4...GKS.}uA4"g.?wz...s.\|.W6..@.n.K..i.E.l.T..5..x..)y ,..'.R..t...u_v.O-B..94..Ku.\|.w3.P..........#.....%9..us...nP..w.t.....y..{..LZ@.....X...Y.5.c3.v..........>k&..cu.FR?p...).L.s.d.E...{sQ3.pq.H\s...;.....X$^......2..#6.....q....m....E......Q.`')...4.k...e.".5....pO.#{v.O...........vJ-......G......`..2\.......o....*..{ZY.......;.>.3..f.~j~.N)..<...l.:.QE

Chrome Cache Entry: 225

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	JSON data
Category:	downloaded
Size (bytes):	16746
Entropy (8bit):	5.082473738277487
Encrypted:	false
SSDEEP:
MD5:	1375FB2706845479F0927ACF738F4BE0
SHA1:	F05B837557FB057136570405FF77B2723BDFC588
SHA-256:	7263FF99CF0C84F151C1ADCFFE3FA2E0880AA680F5847D01209CDF120987671A
SHA-512:	01B00C78898DCA12F797310E275E7F105F5F81497C7999FA109603C1D7D4B41EB52A1941A7F46C0D4AD89E94F5A71D644030DE5CFC1C95C0A05AFD9B866454D1
Malicious:	false
Reputation:	unknown
URL:	"https://blog.google/api/v2/latest/?show_hero=true&tags=android,android-tv,calendar,chrome,chromebooks,chromecast,classroom,docs,drive,forms,gmail,google-ads,google-assistant,google-cloud,google-duo,google-earth,google-fi,google-fit,google-one,google-pay,google-play,google-shopping,google-voice,google-wifi,meet,keep,maps,messages,news,photos,pixel,pixelbook,search,sheets,sites,slides,stadia,translate,wear-os-by-google,youtube"
Preview:	{"meta":{"total_count":3988},"next_page":"/api/v2/latest?paginate=12&tags=android%2Candroid-tv%2Ccalendar%2Cchrome%2Cchromebooks%2Cchromecast%2Cclassroom%2Cdocs%2Cdrive%2Cforms%2Cgmail%2Cgoogle-ads%2Cgoogle-assistant%2Cgoogle-cloud%2Cgoogle-duo%2Cgoogle-earth%2Cgoogle-fi%2Cgoogle-fit%2Cgoogle-one%2Cgoogle-pay%2Cgoogle-play%2Cgoogle-shopping%2Cgoogle-voice%2Cgoogle-wifi%2Cmeet%2Ckeep%2Cmaps%2Cmessages%2Cnews%2Cphotos%2Cpixel%2Cpixelbook%2Csearch%2Csheets%2Csites%2Cslides%2Cstadia%2Ctranslate%2Cwear-os-by-google%2Cyoutube&fields=&is_main_hero=False&show_hero=True&cursor=2","results":[{"go_live_date_time":"2024-11-14\|12:00","slug":"plan-your-holiday-drives-with-google-maps-trends","summary":"To help you breeze through this year.s festivities, here are Google Maps. traffic predictions, as well as best and worst times to run erran.","category":"article","tag":"maps","content_type":"article page","tag_eyebrow":"https://blog.google/products/maps/","page_id":76945,"published_readable_dat

Chrome Cache Entry: 226

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (437)
Category:	downloaded
Size (bytes):	599
Entropy (8bit):	5.009651807290181
Encrypted:	false
SSDEEP:
MD5:	90C2B5A3D3359B746681DAF8427D4A97
SHA1:	F4491E04A2A587308E5081E1241979698C9FE285
SHA-256:	89668BE203725CDD25B03ADB99978CAEF2C20BC8936A47263E612FA9715491C3
SHA-512:	63510E01EF5C3251442742AE5EDCCA8F674D02B29A888DFEE90BD06F1D7B0D25CF8826AA4966FDF7B33A1F9F8255E8F7E34AF09BEC2CF81ECEA4721ED1C2EED8
Malicious:	false
Reputation:	unknown
URL:	https://www.gstatic.com/glue/polyfill.min.js
Preview:	/*. @fileoverview Glue Polyfill for IE11.. /..(function(){./.. Copyright The Closure Library Authors.. SPDX-License-Identifier: Apache-2.0.*/.window.NodeList&&!NodeList.prototype.forEach&&(NodeList.prototype.forEach=Array.prototype.forEach);Element.prototype.matches\|\|(Element.prototype.matches=Element.prototype.msMatchesSelector\|\|Element.prototype.webkitMatchesSelector);Element.prototype.closest\|\|(Element.prototype.closest=function(b){var a=this;do{if(Element.prototype.matches.call(a,b))return a;a=a.parentElement\|\|a.parentNode}while(null!==a&&1===a.nodeType);return null});.}).call(this).

Chrome Cache Entry: 228

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (1689), with no line terminators
Category:	downloaded
Size (bytes):	1689
Entropy (8bit):	5.640520027557763
Encrypted:	false
SSDEEP:
MD5:	45DD7BD58C9F085DA52FA16A2A150066
SHA1:	9B5CF4B288EDE14AE8834F3EF2A58145B8EC8CBC
SHA-256:	0D5C53FCC37C7A2CE26367BBE6197FCD9272DD7EBC81823D088A4DFFF5AE599B
SHA-512:	520B8DF68524C2CEF393B837D7EAD0168028C94697E1DA0AC4BDDAFAB849D1B26D7E7933082146AE6A220A449F066CBBBA2EBFC6CC30D3F756FBD98EE061C8DF
Malicious:	false
Reputation:	unknown
URL:	"https://www.google.com/xjs/_/ss/k=xjs.hd.Te3B62pO_2c.L.B1.O/am=CKkCAAAAAAAIAAAAAAAAAAAAAAAAAAAAAAAAQAAAAAAAAAAC7AQAAAMA7AIECAAAAACAARAAAIAACAAAAABAAKACAAAAAAAEAIAIAAEABQAAgMAoAAAQkAGUABIAAAAKAgAQABAACCADDUFUAKIAAAAAAAAAQAAAAIAgAAQCAHQABIABIBIAANEDAQAAAACCAAA2AGAIGIAAAAAAAAAAZAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQAAQAF/d=0/br=1/rs=ACT90oE0wYfFBYHWoWApgJKnmXTT7ch8Jw/m=syis,syn0?xjs=s4"
Preview:	.MTIaKb,.LwDUdc,.FAoEle,.RlTCPd,.wPNfjb,.caNvfd,.Vnob4b,.bbxTBb,.DpgmK,.YKUhfb,.uNnvb,.aVsZpf,.RoOVmf,.dIfvQd,.V3Ezn,.Enb9pe,.mYuoaf,.kJSB8,.tUr4Kc,.iQMtqe{--Yi4Nb:var(--mXZkqc);--pEa0Bc:var(--bbQxAb);--kloG3:var(--mXZkqc);--YaIeMb:var(--XKMDxc);--Pa8Wlb:var(--Nsm0ce);--izGsqb:var(--Nsm0ce);--todMNcl:var(--EpFNW);--p9J9c:var(--Nsm0ce)}:root{--KIZPne:#a3c9ff;--xPpiM:#001d35;--Ehh4mf:var(--Nsm0ce)}:root{--Yi4Nb:#d2d2d2;--pEa0Bc:#474747;--kloG3:#d2d2d2;--YaIeMb:#f7f8f9;--Pa8Wlb:#0b57d0;--izGsqb:#0b57d0;--todMNcl:#fff;--p9J9c:#0b57d0}.EpPYLd{display:block;position:relative}.YpcDnf{padding:0 16px;vertical-align:middle}.YpcDnf.HG1dvd{padding:0}.HG1dvd>*{padding:0 16px}.WtV5nd .YpcDnf{padding-left:28px}.Zt0a5e .YpcDnf{line-height:48px}.GZnQqe .YpcDnf{line-height:23px}.EpPYLd:hover{cursor:pointer}.EpPYLd,.CB8nDe:hover{cursor:default}.LGiluc,.EpPYLd[disabled]{pointer-events:none;cursor:default}@media (forced-colors:active){.EpPYLd[disabled]{color:GrayText}}.LGiluc{border-top:1px solid;height:0;

Chrome Cache Entry: 229

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text
Category:	downloaded
Size (bytes):	102
Entropy (8bit):	5.1877951423887705
Encrypted:	false
SSDEEP:
MD5:	BB4995D93E3FC9EBC791A6E26172F2C5
SHA1:	77010ECB3B4C1352B2C99B6EE2E7EDE5D92C9A66
SHA-256:	8C946B836E50199FC25EE390C1D2BFDD3E6859A3D1C0D0E67411EF32DB1A9C26
SHA-512:	3075CF7A241650BF044909D578E93D0BCA7A2129523D2956AE824047544D700874FD75EB7B682AB980A064C4B8FDDB24B92960D18607DCBBF4C39F98CDC6E8D5
Malicious:	false
Reputation:	unknown
URL:	"https://www.google.com/async/hpba?vet=10ahUKEwiQiuqq9N6JAxXfgf0HHcBtGcYQj-0KCBc..i&ei=Cos3Z5DdJN-D9u8PwNvlsAw&opi=89978449&yv=3&sp_imghp=false&sp_hpte=1&sp_hpep=1&stick=&cs=0&async=_basejs:%2Fxjs%2F_%2Fjs%2Fk%3Dxjs.hd.en_US.23L3tn_hsI8.es5.O%2Fam%3DAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQAAAAAAAAAAAAwAAABAAAAAACAAAAAAAAAABQgAgCAAABAAAALAAAEAQAIAAAAgIAAAIAOBRpgAgQAQAAACAAAABAAAAIAAAABAAAAAAAABQAAAAAAAgAAAAAAAAAIAAAQAAAAAAAAAAAAIAANADAAAAAAAAAAEBAGAIGIAAAgAAAAAAfQAQPABDCgsAAAAAAAAAAAAAAAABEgRzIQEBAQgAAAAAAAAAAAAAAAAAINLEhQ0%2Fdg%3D0%2Fbr%3D1%2Frs%3DACT90oEojYHL0Io77YRDcdUnB6nFjRpXyg,_basecss:%2Fxjs%2F_%2Fss%2Fk%3Dxjs.hd.Te3B62pO_2c.L.B1.O%2Fam%3DCKkCAAAAAAAIAAAAAAAAAAAAAAAAAAAAAAAAQAAAAAAAAAAC7AQAAAMA7AIECAAAAACAARAAAIAACAAAAABAAKACAAAAAAAEAIAIAAEABQAAgMAoAAAQkAGUABIAAAAKAgAQABAACCADDUFUAKIAAAAAAAAAQAAAAIAgAAQCAHQABIABIBIAANEDAQAAAACCAAA2AGAIGIAAAAAAAAAAZAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQAAQAF%2Fbr%3D1%2Frs%3DACT90oE0wYfFBYHWoWApgJKnmXTT7ch8Jw,_basecomb:%2Fxjs%2F_%2Fjs%2Fk%3Dxjs.hd.en_US.23L3tn_hsI8.es5.O%2Fck%3Dxjs.hd.Te3B62pO_2c.L.B1.O%2Fam%3DCKkCAAAAAAAIAAAAAAAAAAAAAAAAAAAAAAAAQAAAAAAAAAAC7wQAABMA7AIECAAAAACAARABQoAgCAAABABAALACAEAQAIAEAIgIAAEIBeBRpsAoQAQQkAGUABIBAAAKIgAQABAACCADDUFUAKIAAAAgAAAAQAAAAIAgAQQCAHQABIABIBIAANEDAQAAAACCAAE3AGAIGIAAAgAAAAAAfQAQPABDCgsAAAAAAAAAAAAAAAABEgRzIQEFAQgAAAAAAAAAAAAAAAAAINLEhQ0%2Fd%3D1%2Fed%3D1%2Fdg%3D0%2Fbr%3D1%2Fujg%3D1%2Frs%3DACT90oGiu_M-zQ9XcMk_icedlUGdCtltzg,_fmt:prog,_id:_Cos3Z5DdJN-D9u8PwNvlsAw_9"
Preview:	)]}'.22;["EYs3Z5nxK7iS9u8PuJ_F8A0","2116"]c;[2,null,"0"]1b;<div jsname="Nll0ne"></div>c;[9,null,"0"]0;

Chrome Cache Entry: 231

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text
Category:	dropped
Size (bytes):	102
Entropy (8bit):	5.188774215625141
Encrypted:	false
SSDEEP:
MD5:	5F1FAB7837F3E29675A7D74129FDA3C5
SHA1:	EB424209D1E19D5A30A1890A25FC3B27A8290A4F
SHA-256:	9B1F4B8C55EC21E8BB9FF9FD60B782298DF4BF318189EC6E95C001D680C9EC61
SHA-512:	2D72D8FD4BFDAB461468C9A1A8EAE2F2831D1C046F41BDA33F8FD445EA2B18EA033297B02A4FB60D711ED0C91634F1C430AF60D80FE0528F439377B46930420C
Malicious:	false
Reputation:	unknown
Preview:	)]}'.22;["VYs3Z-_vHazyi-gP0ZW6uA8","2116"]c;[2,null,"0"]1b;<div jsname="Nll0ne"></div>c;[9,null,"0"]0;

Chrome Cache Entry: 232

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (572)
Category:	dropped
Size (bytes):	1494
Entropy (8bit):	5.006859962607591
Encrypted:	false
SSDEEP:
MD5:	AD63816AE33DA638ED4BA29B314708FE
SHA1:	19B03660207A594BD811E713B04E13CA54706A69
SHA-256:	8288046F544B8D4661567639CB0DCC2D14F55D21C1F1D6795537ACA1928C1301
SHA-512:	3CACF0A4AD70528DBCCBB18D7DB86FE179A04EB472D59FB7A41ED707D7B7B13E31237F74CA0115815D70A52C3D8442A8D8F30FA31096D8F7170DEB000EDA379F
Malicious:	false
Reputation:	unknown
Preview:	this._hd=this._hd\|\|{};(function(_){var window=this;.try{._.y("aLUfP");.var mob=function(a){this.ks=a};var nob=function(a){_.Wn.call(this);var b=this;this.window=a.service.window.get();this.wa=this.ks();this.oa=window.orientation;this.ka=function(){var c=b.ks(),d="orientation"in window&&Math.abs(window.orientation)===90&&b.oa===-1window.orientation;b.oa=window.orientation;if(c!==b.wa\|\|d){b.wa=c;d=_.eb(b.wd);for(var e=d.next();!e.done;e=d.next()){e=e.value;var f=new mob(c);try{e(f)}catch(g){_.ca(g)}}}};this.wd=new Set;this.window.addEventListener("resize",this.ka);"orientation"in window&&this.window.addEventListener("orientationchange",.this.ka)};_.D(nob,_.Xn);nob.Ia=function(){return{service:{window:_.Yn}}};_.m=nob.prototype;_.m.addListener=function(a){this.wd.add(a)};_.m.removeListener=function(a){this.wd.delete(a)};._.m.ks=function(){if(_.ta()&&_.oa()&&!navigator.userAgent.includes("GSA")){var a=_.el(this.window);a=new _.Xk(a.width,Math.round(a.widththis.window.innerHeight/this.wind

Chrome Cache Entry: 234

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	SVG Scalable Vector Graphics image
Category:	dropped
Size (bytes):	14116
Entropy (8bit):	4.65552037622446
Encrypted:	false
SSDEEP:
MD5:	AD4439B83B65F1CA4CD6C81178DBC6A5
SHA1:	F505AF59D6CD81DA9C153622F7F09ABE812073B6
SHA-256:	254A7C313076C3CBD2A21E78C9C9762DBEDFF5F3D21CAC6090A8C4F67334E942
SHA-512:	690AC84ED5CC5C3BB34CA3207401E601CD065CE8725AC5A50219962108F15BE64CAA09C8D2D07ECD159B2A32330F27A6061FA18027379D574200B9813AC68D2C
Malicious:	false
Reputation:	unknown
Preview:	<svg xmlns="http://www.w3.org/2000/svg">. <defs>. <svg id="chevron-left" viewBox="0 0 24 24"><path d="M16.41 5.41L15 4l-8 8 8 8 1.41-1.41L9.83 12"></path></svg>. <svg id="chevron-right" viewBox="0 0 24 24"><path d="M7.59 18.59L9 20l8-8-8-8-1.41 1.41L14.17 12"></path></svg>. <svg id="expand-less" viewBox="0 0 24 24"><path d="M18.59 16.41L20 15l-8-8-8 8 1.41 1.41L12 9.83"></path></svg>. <svg id="expand-more" viewBox="0 0 24 24"><path d="M5.41 7.59L4 9l8 8 8-8-1.41-1.41L12 14.17"></path></svg>. <svg id="arrow-back" viewBox="0 0 24 24"><path d="M20 11H7.83l5.59-5.59L12 4l-8 8 8 8 1.41-1.41L7.83 13H20v-2z"></path></svg>. <svg id="arrow-forward" viewBox="0 0 24 24"><path d="M12 4l-1.41 1.41L16.17 11H4v2h12.17l-5.58 5.59L12 20l8-8-8-8z"></path></svg>. <svg id="arrow-upward" viewBox="0 0 24 24"><path d="M4 12l1.41 1.41L11 7.83V20h2V7.83l5.58 5.59L20 12l-8-8-8 8z"></path></svg>. <svg id="arrow-downward" viewBox="0 0 24 24"><path d="M20 12l-1.41-1.41L13 16.17V4h-2v12.17l

Chrome Cache Entry: 236

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	Web Open Font Format (Version 2), TrueType, length 35060, version 1.0
Category:	downloaded
Size (bytes):	35060
Entropy (8bit):	7.9934247518702914
Encrypted:	true
SSDEEP:
MD5:	0360DBC6E8C09DCE9183A1FD78F3BE2E
SHA1:	6CD4B65A94707AE941D78B12F082C968CB05EC92
SHA-256:	2DB6BC36808D43FA89029C652636E206FA3E889B35ECF71814AB85F8BA944AF3
SHA-512:	93C9F1856142DA0709F807CA3E5836065E61BC8160F9281FEC9244F31ED8AE8DF500CD5C64048AC59B4DBC36EBD18BA8E7FBCEEF58134DD76441079FAE147AB9
Malicious:	false
Reputation:	unknown
URL:	https://fonts.gstatic.com/s/productsans/v19/pxiDypQkot1TnFhsFMOfGShVF9eO.woff2
Preview:	wOF2..............u$..............................T....`..P.l..a.....D..;.."......6.$..@. ..,..6...[.]q..}:P..(....W.(........(;h 8..r.o...........k..........>..eZT\K.....4l..Z]...1B.1.G.....\|..p..._..S/...^I.e..l.=.I1...0..L./..D..Y{.w....(.....Q..J....v.........z......Q/.K..f._...-..T.f...[..U.).>.K35v...n.?-thr......w.?[D.u.Q.}..i_.cp..0E.R5m.>I.......x......H."C,....2...q...E..r.?...R../.J..m..X97...E.fJ...=.Q.>..`.QXuw..e."........\^.....~....>M.....h.Q.-.......SM,;W......#..#.B.....K.o...`...z...t....".$..s....o.v...w.I.mg.$n....../...N.....8H........^.~....X.Q.,YB.U...uX.e.o.l..o.2f..^_].~.3w........J$2)_.c8...&^.>...r.29.D&.I....T".H....O.2.$..r.\...1.}.ES~5...t.X`.x.gQk..e.L.N......{.6...4..G.....2.z...V...Vy.'..../.....'...z..i.G.......`...$@.k......1.....{PH.....qf......_...A.e..7.....C.?.^.....,......NDa<b..F...:.....+..\|.._I+.2.^......l...3..^.)qJ...0.....X.....yj....J"...lo..._j...Z...0...m..2.$.EBa.....w...\|..2&!.$..!S/^'.....r.U-.

Chrome Cache Entry: 237

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text
Category:	downloaded
Size (bytes):	102
Entropy (8bit):	5.242791617628347
Encrypted:	false
SSDEEP:
MD5:	74C21A89695F34240A0156086BF1ED21
SHA1:	7259EC683A7FA1B89FDC0A43086A75A579915A5C
SHA-256:	5BF8855FD01470D841E80FA357AE92DE084DA6A902B19EFEDD809F521B87DA02
SHA-512:	6C3C2C44720F7ADDCAB2E66859C460F9F145F80312F61DF77555AEEE17E8FCAD882D8268D7D0B68F0C71366E3FD2E2E54CCAD2A74536101250728CBB9A2D874F
Malicious:	false
Reputation:	unknown
URL:	"https://www.google.com/async/hpba?vet=10ahUKEwio8aDU9N6JAxUe_rsIHbpFOCUQj-0KCBc..i&ei=YYs3Z-i8HZ787_UPuovhqQI&opi=89978449&yv=3&sp_imghp=false&sp_hpte=1&sp_hpep=1&stick=&cs=0&async=_basejs:%2Fxjs%2F_%2Fjs%2Fk%3Dxjs.hd.en_US.23L3tn_hsI8.es5.O%2Fam%3DAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQAAAAAAAAAAAAwAAABAAAAAACAAAAAAAAAABQgAgCAAABAAAALAAAEAQAIAAAAgIAAAIAOBRpgAgQAQAAACAAAABAAAAIAAAABAAAAAAAABQAAAAAAAgAAAAAAAAAIAAAQAAAAAAAAAAAAIAANADAAAAAAAAAAEBAGAIGIAAAgAAAAAAfQAQPABDCgsAAAAAAAAAAAAAAAABEgRzIQEBAQgAAAAAAAAAAAAAAAAAINLEhQ0%2Fdg%3D0%2Fbr%3D1%2Frs%3DACT90oEojYHL0Io77YRDcdUnB6nFjRpXyg,_basecss:%2Fxjs%2F_%2Fss%2Fk%3Dxjs.hd.Te3B62pO_2c.L.B1.O%2Fam%3DCKkCAAAAAAAIAAAAAAAAAAAAAAAAAAAAAAAAQAAAAAAAAAAC7AQAAAMA7AIECAAAAACAARAAAIAACAAAAABAAKACAAAAAAAEAIAIAAEABQAAgMAoAAAQkAGUABIAAAAKAgAQABAACCADDUFUAKIAAAAAAAAAQAAAAIAgAAQCAHQABIABIBIAANEDAQAAAACCAAA2AGAIGIAAAAAAAAAAZAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQAAQAF%2Fbr%3D1%2Frs%3DACT90oE0wYfFBYHWoWApgJKnmXTT7ch8Jw,_basecomb:%2Fxjs%2F_%2Fjs%2Fk%3Dxjs.hd.en_US.23L3tn_hsI8.es5.O%2Fck%3Dxjs.hd.Te3B62pO_2c.L.B1.O%2Fam%3DCKkCAAAAAAAIAAAAAAAAAAAAAAAAAAAAAAAAQAAAAAAAAAAC7wQAABMA7AIECAAAAACAARABQoAgCAAABABAALACAEAQAIAEAIgIAAEIBeBRpsAoQAQQkAGUABIBAAAKIgAQABAACCADDUFUAKIAAAAgAAAAQAAAAIAgAQQCAHQABIABIBIAANEDAQAAAACCAAE3AGAIGIAAAgAAAAAAfQAQPABDCgsAAAAAAAAAAAAAAAABEgRzIQEFAQgAAAAAAAAAAAAAAAAAINLEhQ0%2Fd%3D1%2Fed%3D1%2Fdg%3D0%2Fbr%3D1%2Fujg%3D1%2Frs%3DACT90oGiu_M-zQ9XcMk_icedlUGdCtltzg,_fmt:prog,_id:_YYs3Z-i8HZ787_UPuovhqQI_9"
Preview:	)]}'.22;["Y4s3Z7PfIons7_UPkLOD6Ao","2116"]c;[2,null,"0"]1b;<div jsname="Nll0ne"></div>c;[9,null,"0"]0;

Chrome Cache Entry: 239

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (7408)
Category:	downloaded
Size (bytes):	546586
Entropy (8bit):	5.627752305647107
Encrypted:	false
SSDEEP:
MD5:	B784DF2922501B635A25B95BDC38124C
SHA1:	56B288BC0F42F70A4A381FA3EB6C9B76B13ED2CE
SHA-256:	586824824F6EF3647B11B07F909DDB98EE1473EF8691328AB9763F34FFD624C6
SHA-512:	6C2FF2BC816FBD0BD348B94D70A5BFC129FD45539F58F8D9AC8238AA9B0A1E09358E78B1063025F68AD93C0388E4529899B49A21E680B8874BBD2E9170C1E1A3
Malicious:	false
Reputation:	unknown
URL:	"https://www.google.com/xjs/_/js/k=xjs.hd.en_US.23L3tn_hsI8.es5.O/ck=xjs.hd.Te3B62pO_2c.L.B1.O/am=CKkCAAAAAAAIAAAAAAAAAAAAAAAAAAAAAAAAQAAAAAAAAAAC7wQAABMA7AIECAAAAACAARABQoAgCAAABABAALACAEAQAIAEAIgIAAEIBeBRpsAoQAQQkAGUABIBAAAKIgAQABAACCADDUFUAKIAAAAgAAAAQAAAAIAgAQQCAHQABIABIBIAANEDAQAAAACCAAE3AGAIGIAAAgAAAAAAfQAQPABDCgsAAAAAAAAAAAAAAAABEgRzIQEFAQgAAAAAAAAAAAAAAAAAINLEhQ0/d=0/dg=0/br=1/ujg=1/rs=ACT90oGiu_M-zQ9XcMk_icedlUGdCtltzg/m=sb_wiz,aa,abd,sy185,syrg,syr8,syr6,syr7,syr9,syrh,syri,syqr,syrd,syrc,syrb,syep,syra,syr0,syqz,syr1,syqw,syqd,syr3,sy170,syrs,sy183,syyn,syrr,syqp,syrq,async,syul,ifl,pHXghd,sf,sys9,sy3m1,sonic,TxCJfd,sy3m5,qzxzOb,IsdWVc,sy3m7,sy1cm,sy191,sy18x,syqc,syqa,syqb,syq9,syq8,sy3li,sy3ll,sy28i,sy127,syql,syq4,sye3,syaz,syaw,sybm,spch,syt5,syt4,rtH1bd,sy1a3,sy15x,sy156,sy12c,syf3,sy1a2,SMquOb,sy8n,syf5,syfe,syfc,syfb,syf4,syf0,syey,sy8i,sy8f,sy8h,syex,syf2,syew,sybk,sybf,sybi,syap,syai,syaq,syah,syag,syaf,sya3,sybg,syb1,syb2,syb8,syam,syb7,syb0,syav,syad,syak,syb3,sya5,sya7,sya8,sya4,syan,syac,sya9,sybo,sybn,sybc,sybd,sy9w,sy9z,sy9y,sy9t,sy9s,sya2,syb4,syev,syeu,syer,syeq,sy8l,uxMpU,syem,sybv,sybt,sybp,syat,sybr,sybl,sy93,sy92,sy91,Mlhmy,QGR0gd,aurFic,sy9c,fKUV3e,OTA3Ae,sy8o,OmgaI,EEDORb,PoEs9b,Pjplud,sy8x,A1yn5d,YIZmRd,uY49fb,sy8d,sy8b,sy89,sy8a,sy88,sy87,byfTOb,lsjVmc,LEikZe,kWgXee,Ug7Xab,U0aPgd,ovKuLd,sgY6Zb,qafBPd,ebZ3mb,dowIGb,sy1a7,sy1a4,syxi,syta,d5EhJe,sy1ao,fCxEDd,syuq,sy1an,sy1am,sy1al,sy1ae,sy1ab,sy1ac,sy17s,sy17m,syup,syx6,syx5,T1HOxc,sy1ad,sy1aa,zx30Y,sy1ap,sy1ai,sy16c,Wo3n8,syqx,loL8vb,syrm,syrl,syrk,ms4mZb,syp5,B2qlPe,syu3,NzU6V,syyz,syuk,zGLm3b,syvx,syvy,syvo,DhPYme,syy5,syy0,syy3,syy2,sywh,sywi,syy1,syxy,syxz,KHourd,MpJwZc,UUJqVe,sy7s,sOXFj,sy7r,s39S4,oGtAuc,NTMZac,nAFL3,sy85,sy84,q0xTif,y05UD,sy12n,sy19m,sy19g,syx4,sy198,sy144,syx3,syx2,syx1,sy19f,sy13x,sy195,sy141,syuo,sy19e,sy12i,sy199,sy142,sy143,sy19h,sy129,sy19d,sy19c,sy19a,symn,sy19b,sy19j,sy18z,sy196,sy18y,sy194,sy190,sy18u,sy14z,sy146,sy147,syx9,syxa,epYOx?xjs=s3"
Preview:	_F_installCss("c-wiz{contain:style}c-wiz>c-data{display:none}c-wiz.rETSD{contain:none}c-wiz.Ubi8Z{contain:layout style}.jbBItf{display:block;position:relative}.DU0NJ{bottom:0;left:0;position:absolute;right:0;top:0}.lP3Jof{display:inline-block;position:relative}.nNMuOd{animation:qli-container-rotate 1568.2352941176ms linear infinite}@keyframes qli-container-rotate{from{transform:rotate(0)}to{transform:rotate(1turn)}}.RoKmhb{height:100%;opacity:0;position:absolute;width:100%}.nNMuOd .VQdeab{animation:qli-fill-unfill-rotate 5332ms cubic-bezier(0.4,0,0.2,1) infinite both,qli-blue-fade-in-out 5332ms cubic-bezier(0.4,0,0.2,1) infinite both}.nNMuOd .IEqiAf{animation:qli-fill-unfill-rotate 5332ms cubic-bezier(0.4,0,0.2,1) infinite both,qli-red-fade-in-out 5332ms cubic-bezier(0.4,0,0.2,1) infinite both}.nNMuOd .smocse{animation:qli-fill-unfill-rotate 5332ms cubic-bezier(0.4,0,0.2,1) infinite both,qli-yellow-fade-in-out 5332ms cubic-bezier(0.4,0,0.2,1) infinite both}.nNMuOd .FlKbCe{animation:qli

Chrome Cache Entry: 241

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text
Category:	downloaded
Size (bytes):	102
Entropy (8bit):	5.175177922018153
Encrypted:	false
SSDEEP:
MD5:	74B80B3DE5545C9ADB4CC1430134B597
SHA1:	199E9B72946DAD201F509AFE49450F4FBC57DDD4
SHA-256:	352EF2DBB8765B92DB38DDCCD14564629AF27507CC62B941AC2D091F5594273D
SHA-512:	23B3F3E85643A8685AE92F137AAAFABC3944A15C10FA8DBA9A8711D1A66F4506CC2A38C34FA7964807A06BF2F4BF6FCEA7D8BCAF667F466B5D54C66C6A1CA8D9
Malicious:	false
Reputation:	unknown
URL:	"https://www.google.com/async/hpba?yv=3&cs=0&ei=Cos3Z5DdJN-D9u8PwNvlsAw&async=_basejs:/xjs/_/js/k%3Dxjs.hd.en_US.23L3tn_hsI8.es5.O/am%3DAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQAAAAAAAAAAAAwAAABAAAAAACAAAAAAAAAABQgAgCAAABAAAALAAAEAQAIAAAAgIAAAIAOBRpgAgQAQAAACAAAABAAAAIAAAABAAAAAAAABQAAAAAAAgAAAAAAAAAIAAAQAAAAAAAAAAAAIAANADAAAAAAAAAAEBAGAIGIAAAgAAAAAAfQAQPABDCgsAAAAAAAAAAAAAAAABEgRzIQEBAQgAAAAAAAAAAAAAAAAAINLEhQ0/dg%3D0/br%3D1/rs%3DACT90oEojYHL0Io77YRDcdUnB6nFjRpXyg,_basecss:/xjs/_/ss/k%3Dxjs.hd.Te3B62pO_2c.L.B1.O/am%3DCKkCAAAAAAAIAAAAAAAAAAAAAAAAAAAAAAAAQAAAAAAAAAAC7AQAAAMA7AIECAAAAACAARAAAIAACAAAAABAAKACAAAAAAAEAIAIAAEABQAAgMAoAAAQkAGUABIAAAAKAgAQABAACCADDUFUAKIAAAAAAAAAQAAAAIAgAAQCAHQABIABIBIAANEDAQAAAACCAAA2AGAIGIAAAAAAAAAAZAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQAAQAF/br%3D1/rs%3DACT90oE0wYfFBYHWoWApgJKnmXTT7ch8Jw,_basecomb:/xjs/_/js/k%3Dxjs.hd.en_US.23L3tn_hsI8.es5.O/ck%3Dxjs.hd.Te3B62pO_2c.L.B1.O/am%3DCKkCAAAAAAAIAAAAAAAAAAAAAAAAAAAAAAAAQAAAAAAAAAAC7wQAABMA7AIECAAAAACAARABQoAgCAAABABAALACAEAQAIAEAIgIAAEIBeBRpsAoQAQQkAGUABIBAAAKIgAQABAACCADDUFUAKIAAAAgAAAAQAAAAIAgAQQCAHQABIABIBIAANEDAQAAAACCAAE3AGAIGIAAAgAAAAAAfQAQPABDCgsAAAAAAAAAAAAAAAABEgRzIQEFAQgAAAAAAAAAAAAAAAAAINLEhQ0/d%3D1/ed%3D1/dg%3D0/br%3D1/ujg%3D1/rs%3DACT90oGiu_M-zQ9XcMk_icedlUGdCtltzg,_fmt:prog,_id:_Cos3Z5DdJN-D9u8PwNvlsAw_8&sp_imghp=false&sp_hpep=2&sp_hpte=0&vet=10ahUKEwiQiuqq9N6JAxXfgf0HHcBtGcYQj-0KCBY..i"
Preview:	)]}'.22;["DYs3Z82wIISN9u8PlMX8-Ag","2116"]c;[2,null,"0"]1b;<div jsname="Nll0ne"></div>c;[9,null,"0"]0;

Chrome Cache Entry: 242

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (5488)
Category:	downloaded
Size (bytes):	5493
Entropy (8bit):	6.08726245681336
Encrypted:	false
SSDEEP:
MD5:	0A758ABD044ECA180E1651D1B0ED32BF
SHA1:	7D7DC252EF0910E9CDA4265740B864F211928225
SHA-256:	8EDAF7D7D3F17800503F369180EFE84C87D05E79C14D7F915A66141341E5D5FF
SHA-512:	42641EDD3C640D0025A159600E386EC39841BE51AC7BE12BE44580183F34D1D4924329A4C19ED01070A87BC06B88B51875EFD665871D3D4408BDA58C13D81277
Malicious:	false
Reputation:	unknown
URL:	https://www.google.com/complete/search?q&cp=0&client=gws-wiz&xssi=t&gs_pcrt=2&hl=en&authuser=0&psi=YYs3Z-i8HZ787_UPuovhqQI.1731693409081&dpr=1&nolsbt=1
Preview:	)]}'.[[["arcane episode release schedule",0,[3,357,362,396,143],{"zf":33,"zl":8,"zp":{"gs_ss":"1"}}],["2025 nfl mock draft",0,[3,357,362,396,143],{"zf":33,"zl":8,"zp":{"gs_ss":"1"}}],["gm recalls",0,[3,357,362,396,143],{"zf":33,"zl":8,"zp":{"gs_ss":"1"}}],["what is bluesky social media",0,[3,357,362,396,143],{"zf":33,"zl":8,"zp":{"gs_ss":"1"}}],["jerome powell speech",0,[3,357,362,396,143],{"zf":33,"zl":8,"zp":{"gs_ss":"1"}}],["high school football playoffs",0,[3,357,362,396,143],{"zf":33,"zl":8,"zp":{"gs_ss":"1"}}],["san francisco 49ers",46,[3,357,362,396,143],{"lm":[],"zf":33,"zh":"San Francisco 49ers","zi":"Football team","zl":8,"zp":{"gs_ssp":"eJzj4tDP1TcwK8qrNGD0Ei5OzFNIK0rMS84sTs5XMLFMLSoGAJluChw"},"zs":"data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAFAAAAAvCAMAAABDu72LAAAA6lBMVEX///+qAAAAAACvAAC0oGEtAACZm5tHAAC1m16iAACOkJAvAAA/AADi4uJxcXGsrKxmAAC7oGFbX1/X19f4+Ph8AABaAAC0AABiYmKhj1fExMRSUlJ1AACqkVhrAACdAACwfEvOzs6vaD+yj1eyiFN/f3/v7++5ubkYFQ1gUjJ3Zj5gAACqEguwcESKAACKdkisQylFS0usOi

Chrome Cache Entry: 244

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1440x810, components 3
Category:	downloaded
Size (bytes):	65665
Entropy (8bit):	7.681369566068306
Encrypted:	false
SSDEEP:
MD5:	61EB1498B0714E633B3D2FCF878C6735
SHA1:	102B121EDBCA383614D38CF405BABEE285F3F004
SHA-256:	24B4227F6FA917210D208CA0DF3FD45DB106A3F0BD30E1193C5F0813EF609FE3
SHA-512:	026CC4C728532A98CADC9267F06C6D90EB6FEA4660B64407027C8FFE2BEE56BFA59E021EC410AFBBCB1B6FF200C75B7B9DAF054D318E33803A82D86C349C62C4
Malicious:	false
Reputation:	unknown
URL:	https://lh3.googleusercontent.com/CMeutwvkARWLCyrjSLBqp0KSCGYBZoL7lYkoqLYS-utC81JRLRUwMvdDcNypJ_p7iSAHRTvZX7G6tVaXRNCqT6QlNbP3E9mSEvwmRhTNMV-YQdR2J4af=w1440-l90-sg-rj-c0xffffff
Preview:	......JFIF......................................................................................................................................................*...."..........................................g..........................!...1AQqt."24asu.....#$356r...%&BR.......Cb...Sdv......7DTc....'..Ee......................................3......................1q.!2A..Qa....Br......".3Rb............?....`..............................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................

Chrome Cache Entry: 245

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (3474), with no line terminators
Category:	downloaded
Size (bytes):	3474
Entropy (8bit):	4.899804347595534
Encrypted:	false
SSDEEP:
MD5:	F0915DBFD82FF819E96770A432730525
SHA1:	81D2A13630F4B9C7A7553A0FAD690D6E4F67D379
SHA-256:	C6465D242D3CC89CE7213EB8296355F9E55C3FE5FF7099279D86F339F1402454
SHA-512:	BC7856D38EE952800B85D550717283EDF5DA62B4A4BFDEBF2A60DCD80BC56DD84132180F62942E62B47B0C3A80A959CB519D69677F807CC1FBAB4C2ED269AD10
Malicious:	false
Reputation:	unknown
URL:	https://about.google/assets-main/css/home.min.css?cache=81d2a13
Preview:	._-home-page .modules-lib__mission-statement{height:auto;margin-bottom:0;margin-top:0}._-home-page .modules-lib__mission-statement .modules-lib__mission-statement__headline{margin-top:36px;font-family:"Google Sans",Roboto,Arial,Helvetica,sans-serif;font-size:20px;letter-spacing:normal;line-height:28px;margin-bottom:0}@media (min-width:1024px){._-home-page .modules-lib__mission-statement .modules-lib__mission-statement__headline{margin-top:48px;font-size:28px;line-height:36px}}@media (min-width:1024px) and (min-width:1024px){._-home-page .modules-lib__mission-statement .modules-lib__mission-statement__headline{margin-top:60px}}._-home-page .clickable-tile__link{border:0}._-home-page .clickable-tile__link:hover{background:0 0;border:0}._-home-page .clickable-tile__link:focus{background:0 0;border-radius:4px;-webkit-box-shadow:0 0 0 2px #1a73e8;box-shadow:0 0 0 2px #1a73e8}._-home-page .clickable-tile__link:visited{color:#1a73e8}._-home-page .clickable-tile__body{padding:0}@media (min-wid

Chrome Cache Entry: 246

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text
Category:	downloaded
Size (bytes):	102
Entropy (8bit):	5.203575931353837
Encrypted:	false
SSDEEP:
MD5:	B2ED16163D7FC634039BB265E9D222BA
SHA1:	1B29F2150492EE9F04BBD682B2B1DECB8A8BC3B6
SHA-256:	48FF8273140563F259544446B1B86C61B265401744A5BA64E64EFE7CBE452C96
SHA-512:	DE0634695B9AF820054D62E42A185F4DB0414F4A51931FB66527B7ECECC6A5DB61FC11F9F34EF8DA0C2FD5C5639C0F893341948672D97EAD474AF5367B9A8A71
Malicious:	false
Reputation:	unknown
URL:	"https://www.google.com/async/hpba?vet=10ahUKEwixrKDN9N6JAxVY97sIHb7BKLoQj-0KCBc..i&ei=Uos3Z7G7MNju7_UPvoOj0Qs&opi=89978449&yv=3&sp_imghp=false&sp_hpte=1&sp_hpep=1&stick=&cs=0&async=_basejs:%2Fxjs%2F_%2Fjs%2Fk%3Dxjs.hd.en_US.23L3tn_hsI8.es5.O%2Fam%3DAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQAAAAAAAAAAAAwAAABAAAAAACAAAAAAAAAABQgAgCAAABAAAALAAAEAQAIAAAAgIAAAIAOBRpgAgQAQAAACAAAABAAAAIAAAABAAAAAAAABQAAAAAAAgAAAAAAAAAIAAAQAAAAAAAAAAAAIAANADAAAAAAAAAAEBAGAIGIAAAgAAAAAAfQAQPABDCgsAAAAAAAAAAAAAAAABEgRzIQEBAQgAAAAAAAAAAAAAAAAAINLEhQ0%2Fdg%3D0%2Fbr%3D1%2Frs%3DACT90oEojYHL0Io77YRDcdUnB6nFjRpXyg,_basecss:%2Fxjs%2F_%2Fss%2Fk%3Dxjs.hd.Te3B62pO_2c.L.B1.O%2Fam%3DCKkCAAAAAAAIAAAAAAAAAAAAAAAAAAAAAAAAQAAAAAAAAAAC7AQAAAMA7AIECAAAAACAARAAAIAACAAAAABAAKACAAAAAAAEAIAIAAEABQAAgMAoAAAQkAGUABIAAAAKAgAQABAACCADDUFUAKIAAAAAAAAAQAAAAIAgAAQCAHQABIABIBIAANEDAQAAAACCAAA2AGAIGIAAAAAAAAAAZAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQAAQAF%2Fbr%3D1%2Frs%3DACT90oE0wYfFBYHWoWApgJKnmXTT7ch8Jw,_basecomb:%2Fxjs%2F_%2Fjs%2Fk%3Dxjs.hd.en_US.23L3tn_hsI8.es5.O%2Fck%3Dxjs.hd.Te3B62pO_2c.L.B1.O%2Fam%3DCKkCAAAAAAAIAAAAAAAAAAAAAAAAAAAAAAAAQAAAAAAAAAAC7wQAABMA7AIECAAAAACAARABQoAgCAAABABAALACAEAQAIAEAIgIAAEIBeBRpsAoQAQQkAGUABIBAAAKIgAQABAACCADDUFUAKIAAAAgAAAAQAAAAIAgAQQCAHQABIABIBIAANEDAQAAAACCAAE3AGAIGIAAAgAAAAAAfQAQPABDCgsAAAAAAAAAAAAAAAABEgRzIQEFAQgAAAAAAAAAAAAAAAAAINLEhQ0%2Fd%3D1%2Fed%3D1%2Fdg%3D0%2Fbr%3D1%2Fujg%3D1%2Frs%3DACT90oGiu_M-zQ9XcMk_icedlUGdCtltzg,_fmt:prog,_id:_Uos3Z7G7MNju7_UPvoOj0Qs_9"
Preview:	)]}'.22;["VIs3Z4n4MqqD9u8PsuXByAk","2116"]c;[2,null,"0"]1b;<div jsname="Nll0ne"></div>c;[9,null,"0"]0;

Chrome Cache Entry: 247

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (20581)
Category:	dropped
Size (bytes):	20765
Entropy (8bit):	5.294839791503179
Encrypted:	false
SSDEEP:
MD5:	15065981497259D972918A646AB771E0
SHA1:	F2DE8453FCCB34BAF26D784AFA965DBE8C0D1550
SHA-256:	8A1B58D624EEB47E9E3073531A5D364E41A2E7853C052873A79917F97DD0BB44
SHA-512:	38CA7D35BEC8C1E2F3E17EEE4048E724F84B7C44EF001AF83E3CA68281A7E3E77E132283FF3597BFB0069B2B3B5C73BA9C9AFEFB12793EEC2F501D5F13E6D7ED
Malicious:	false
Reputation:	unknown
Preview:	/! Hammer.JS - v2.0.8 - 2016-04-23. http://hammerjs.github.io/. . Copyright (c) 2016 Jorik Tangelder;. * Licensed under the MIT license /.!function(a,b,c,d){"use strict";function e(a,b,c){return setTimeout(j(a,c),b)}function f(a,b,c){return Array.isArray(a)?(g(a,c[b],c),!0):!1}function g(a,b,c){var e;if(a)if(a.forEach)a.forEach(b,c);else if(a.length!==d)for(e=0;e<a.length;)b.call(c,a[e],e,a),e++;else for(e in a)a.hasOwnProperty(e)&&b.call(c,a[e],e,a)}function h(b,c,d){var e="DEPRECATED METHOD: "+c+"\n"+d+" AT \n";return function(){var c=new Error("get-stack-trace"),d=c&&c.stack?c.stack.replace(/^[^\(]+?[\n$]/gm,"").replace(/^\s+at\s+/gm,"").replace(/^Object.<anonymous>\s\(/gm,"{anonymous}()@"):"Unknown Stack Trace",f=a.console&&(a.console.warn\|\|a.console.log);return f&&f.call(a.console,e,d),b.apply(this,arguments)}}function i(a,b,c){var d,e=b.prototype;d=a.prototype=Object.create(e),d.constructor=a,d._super=e,c&&la(d,c)}function j(a,b){return function(){return a.apply(b,argumen

Static File Info

⊘No static file info

Description:	Adversaries may achieve persistence by adding a program to a startup folder or referencing it with a Registry run key. Adding an entry to the "run keys" in the Registry or startup folder will cause the program referenced to be executed when a user logs in.These programs will be executed under the context of the user and will have the account's associated permissions level.
Tactics:	Persistence, Privilege Escalation
Data Sources:	Command: Command Execution, File: File Modification, Process: Process Creation, Windows Registry: Windows Registry Key Creation, Windows Registry: Windows Registry Key Modification
Platforms:	Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may inject code into processes in order to evade process-based defenses as well as possibly elevate privileges. Process injection is a method of executing arbitrary code in the address space of a separate live process. Running code in the context of another process may allow access to the process's memory, system/network resources, and possibly elevated privileges. Execution via process injection may also evade detection from security products since the execution is masked under a legitimate process.
Tactics:	Defense Evasion, Privilege Escalation
Data Sources:	File: File Metadata, File: File Modification, Module: Module Load, Process: OS API Execution, Process: Process Access, Process: Process Metadata, Process: Process Modification
Platforms:	Linux, macOS, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may attempt to manipulate features of their artifacts to make them appear legitimate or benign to users and/or security tools. Masquerading occurs when the name or location of an object, legitimate or malicious, is manipulated or abused for the sake of evading defenses and observation. This may include manipulating file metadata, tricking users into misidentifying the file type, and giving legitimate task or service names.
Tactics:	Defense Evasion
Data Sources:	Command: Command Execution, File: File Metadata, File: File Modification, Image: Image Metadata, Process: OS API Execution, Process: Process Creation, Process: Process Metadata, Scheduled Job: Scheduled Job Metadata, Scheduled Job: Scheduled Job Modification, Service: Service Creation, Service: Service Metadata
Platforms:	Containers, Linux, macOS, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may employ a known encryption algorithm to conceal command and control traffic rather than relying on any inherent protections provided by a communication protocol. Despite the use of a secure algorithm, these implementations may be vulnerable to reverse engineering if secret keys are encoded and/or generated within malware samples/configuration files.
Tactics:	Command and Control
Data Sources:	Network Traffic: Network Traffic Content
Platforms:	Linux, macOS, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may use an OSI non-application layer protocol for communication between host and C2 server or among infected hosts within a network. The list of possible protocols is extensive.Specific examples include use of network layer protocols, such as the Internet Control Message Protocol (ICMP), transport layer protocols, such as the User Datagram Protocol (UDP), session layer protocols, such as Socket Secure (SOCKS), as well as redirected/tunneled protocols, such as Serial over LAN (SOL).
Tactics:	Command and Control
Data Sources:	Network Traffic: Network Traffic Content, Network Traffic: Network Traffic Flow
Platforms:	Linux, macOS, Network, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may communicate using OSI application layer protocols to avoid detection/network filtering by blending in with existing traffic. Commands to the remote system, and often the results of those commands, will be embedded within the protocol traffic between the client and server.
Tactics:	Command and Control
Data Sources:	Network Traffic: Network Traffic Content, Network Traffic: Network Traffic Flow
Platforms:	Linux, macOS, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may transfer tools or other files from an external system into a compromised environment. Tools or files may be copied from an external adversary-controlled system to the victim network through the command and control channel or through alternate protocols such as ftp . Once present, adversaries may also transfer/spread tools between victim devices within a compromised environment (i.e. Lateral Tool Transfer ).
Tactics:	Command and Control
Data Sources:	Command: Command Execution, File: File Creation, Network Traffic: Network Connection Creation, Network Traffic: Network Traffic Content, Network Traffic: Network Traffic Flow
Platforms:	Linux, macOS, Windows
Url:	Open detailed description by Mitre

Behavior Section

Behavior Chronological

Disassembly

Uncategorized

Graph

Loading Joe Sandbox Report ...

Warning!

Windows Analysis Report http://527newagain.top

Overview

General Information

Detection

Signatures

Classification

Process Tree

Yara Signatures

Sigma Signatures

Suricata Signatures

Joe Sandbox Signatures

AV Detection

Phishing

Compliance

Networking

System Summary

Boot Survival

Mitre Att&ck Matrix

Screenshots

Thumbnails

Antivirus, Machine Learning and Genetic Malware Detection

Initial Sample

Dropped Files

Unpacked PE Files

Domains

URLs

Domains and IPs

Contacted Domains

Contacted URLs

World Map of Contacted IPs

Public IPs

Private

General Information

Warnings

LLM Input / Output

Created / dropped Files

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk

Chrome Cache Entry: 130

Chrome Cache Entry: 131

Chrome Cache Entry: 132

Chrome Cache Entry: 133

Chrome Cache Entry: 135

Chrome Cache Entry: 140

Chrome Cache Entry: 141

Chrome Cache Entry: 142

Chrome Cache Entry: 143

Chrome Cache Entry: 145

Chrome Cache Entry: 146

Chrome Cache Entry: 147

Chrome Cache Entry: 149

Chrome Cache Entry: 151

Chrome Cache Entry: 155

Chrome Cache Entry: 157

Chrome Cache Entry: 158

Chrome Cache Entry: 159

Chrome Cache Entry: 160

Chrome Cache Entry: 162

Chrome Cache Entry: 164

Chrome Cache Entry: 165

Chrome Cache Entry: 166

Chrome Cache Entry: 168

Chrome Cache Entry: 169

Chrome Cache Entry: 170

Chrome Cache Entry: 171

Chrome Cache Entry: 173

Chrome Cache Entry: 175

Chrome Cache Entry: 177

Chrome Cache Entry: 178

Windows Analysis Report
http://527newagain.top