IOC Report
https://estudioit.cl/starl/#ZGVicmEuY2FydGVyQGNhc2EuZ292LmF1

loading gif

Files

File Path
Type
Category
Malicious
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed Nov 20 01:16:47 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
dropped
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed Nov 20 01:16:47 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
dropped
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Oct 6 08:05:01 2023, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
dropped
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed Nov 20 01:16:47 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
dropped
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed Nov 20 01:16:47 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
dropped
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed Nov 20 01:16:47 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
dropped
Chrome Cache Entry: 172
ASCII text, with very long lines (28368)
downloaded
Chrome Cache Entry: 173
PNG image data, 216 x 46, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 174
Unicode text, UTF-8 text, with very long lines (64241)
downloaded
Chrome Cache Entry: 175
PNG image data, 11 x 20, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 176
PNG image data, 1059 x 736, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 178
ASCII text, with very long lines (32485)
downloaded
Chrome Cache Entry: 180
PNG image data, 1143 x 794, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 181
C source, ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 182
ASCII text, with very long lines (19027)
downloaded
Chrome Cache Entry: 183
PNG image data, 1871 x 308, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 185
PNG image data, 1409 x 979, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 186
ASCII text, with very long lines (23470)
downloaded
Chrome Cache Entry: 187
PNG image data, 4000 x 2238, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 189
ASCII text, with very long lines (27221)
downloaded
Chrome Cache Entry: 190
PNG image data, 161 x 160, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 192
ASCII text, with very long lines (4844)
downloaded
Chrome Cache Entry: 194
ASCII text, with very long lines (65394)
downloaded
Chrome Cache Entry: 197
ASCII text, with very long lines (5035), with CRLF line terminators
downloaded
Chrome Cache Entry: 198
ASCII text, with very long lines (14364)
downloaded
Chrome Cache Entry: 199
ASCII text, with very long lines (65447)
dropped
Chrome Cache Entry: 202
Web Open Font Format, TrueType, length 26288, version 0.0
downloaded
Chrome Cache Entry: 203
Web Open Font Format (Version 2), TrueType, length 12164, version 1.0
downloaded
Chrome Cache Entry: 204
PNG image data, 973 x 675, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 205
ASCII text, with very long lines (27371)
downloaded
Chrome Cache Entry: 208
PNG image data, 2609 x 470, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 209
PNG image data, 286 x 41, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 210
ASCII text, with very long lines (9983)
downloaded
Chrome Cache Entry: 211
ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 212
ASCII text, with very long lines (7594)
downloaded
Chrome Cache Entry: 214
PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 215
ASCII text, with very long lines (24708)
downloaded
Chrome Cache Entry: 217
PNG image data, 1598 x 899, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 218
PNG image data, 19 x 20, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 219
PNG image data, 1017 x 706, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 220
data
downloaded
Chrome Cache Entry: 221
ASCII text, with very long lines (1463), with CRLF line terminators
downloaded
Chrome Cache Entry: 222
PNG image data, 2501 x 831, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 224
PNG image data, 2609 x 471, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 229
ASCII text, with very long lines (2685)
downloaded
Chrome Cache Entry: 231
PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 232
HTML document, Unicode text, UTF-8 text, with CRLF line terminators
downloaded
Chrome Cache Entry: 234
ASCII text, with very long lines (4431)
downloaded
Chrome Cache Entry: 235
ASCII text, with very long lines (4309)
downloaded
Chrome Cache Entry: 237
PNG image data, 1094 x 761, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 238
Web Open Font Format (Version 2), TrueType, length 10544, version 1.0
downloaded
Chrome Cache Entry: 241
ASCII text, with no line terminators
downloaded
Chrome Cache Entry: 242
very short file (no magic)
dropped
Chrome Cache Entry: 243
ASCII text, with very long lines (12194)
downloaded
Chrome Cache Entry: 244
ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 246
ASCII text, with very long lines (5680)
downloaded
Chrome Cache Entry: 247
ASCII text, with very long lines (8287)
downloaded
Chrome Cache Entry: 248
gzip compressed data, max speed, from FAT filesystem (MS-DOS, OS/2, NT), original size modulo 2^32 142367
downloaded
Chrome Cache Entry: 249
ASCII text, with very long lines (22420)
downloaded
Chrome Cache Entry: 251
ASCII text, with very long lines (34785)
downloaded
Chrome Cache Entry: 252
ASCII text, with very long lines (48475), with no line terminators
downloaded
Chrome Cache Entry: 253
ASCII text, with very long lines (30635)
downloaded
Chrome Cache Entry: 255
MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel
downloaded
Chrome Cache Entry: 257
ASCII text, with very long lines (7926)
downloaded
Chrome Cache Entry: 258
ASCII text, with very long lines (32000)
downloaded
Chrome Cache Entry: 259
ASCII text, with very long lines (525), with CRLF line terminators
downloaded
Chrome Cache Entry: 260
Web Open Font Format (Version 2), TrueType, length 11100, version 1.0
downloaded
Chrome Cache Entry: 261
HTML document, ASCII text, with very long lines (7749), with CRLF line terminators
downloaded
Chrome Cache Entry: 262
ASCII text, with very long lines (18047)
downloaded
Chrome Cache Entry: 263
ASCII text, with very long lines (12150)
downloaded
Chrome Cache Entry: 264
ASCII text, with very long lines (18889)
downloaded
Chrome Cache Entry: 265
ASCII text, with very long lines (11580)
downloaded
Chrome Cache Entry: 266
ASCII text, with very long lines (37696)
downloaded
Chrome Cache Entry: 267
ASCII text, with very long lines (21040)
downloaded
Chrome Cache Entry: 268
ASCII text, with very long lines (34235), with CRLF, LF line terminators
downloaded
Chrome Cache Entry: 269
ASCII text, with very long lines (12068)
downloaded
Chrome Cache Entry: 270
ASCII text, with very long lines (7381)
downloaded
Chrome Cache Entry: 271
ASCII text, with CRLF line terminators
downloaded
Chrome Cache Entry: 273
JSON data
downloaded
Chrome Cache Entry: 274
ASCII text, with very long lines (7667)
downloaded
Chrome Cache Entry: 275
ASCII text, with very long lines (7422), with CRLF line terminators
downloaded
Chrome Cache Entry: 277
ASCII text, with very long lines (18823)
downloaded
Chrome Cache Entry: 278
ASCII text, with very long lines (25532)
downloaded
Chrome Cache Entry: 279
ASCII text, with very long lines (47004)
downloaded
Chrome Cache Entry: 280
ASCII text, with very long lines (13242)
downloaded
Chrome Cache Entry: 282
JSON data
downloaded
Chrome Cache Entry: 283
Web Open Font Format (Version 2), TrueType, length 11356, version 1.0
downloaded
Chrome Cache Entry: 284
JSON data
dropped
Chrome Cache Entry: 285
ASCII text, with very long lines (29300)
downloaded
Chrome Cache Entry: 286
ASCII text, with very long lines (11369)
downloaded
Chrome Cache Entry: 287
ASCII text, with very long lines (10160)
downloaded
Chrome Cache Entry: 289
PNG image data, 1119 x 704, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 292
ASCII text, with very long lines (12368)
downloaded
Chrome Cache Entry: 293
PNG image data, 1440 x 1001, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 294
ASCII text, with very long lines (65446)
downloaded
Chrome Cache Entry: 295
ASCII text, with very long lines (10629)
downloaded
Chrome Cache Entry: 296
PNG image data, 2 x 2, 8-bit/color RGB, non-interlaced
dropped
Chrome Cache Entry: 297
ASCII text, with very long lines (42133)
downloaded
Chrome Cache Entry: 299
ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 301
ASCII text, with very long lines (47383)
downloaded
Chrome Cache Entry: 302
ASCII text, with very long lines (14363)
downloaded
Chrome Cache Entry: 303
ASCII text, with very long lines (979)
downloaded
Chrome Cache Entry: 305
ASCII text, with very long lines (17413)
downloaded
Chrome Cache Entry: 310
ASCII text, with very long lines (65446)
downloaded
Chrome Cache Entry: 311
ASCII text, with very long lines (9909)
downloaded
Chrome Cache Entry: 312
HTML document, ASCII text, with CRLF line terminators
downloaded
Chrome Cache Entry: 313
PNG image data, 2500 x 828, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 314
ASCII text, with very long lines (598), with CRLF line terminators
downloaded
Chrome Cache Entry: 315
ASCII text, with very long lines (11651), with CRLF line terminators
downloaded
Chrome Cache Entry: 316
ASCII text, with very long lines (15296)
downloaded
Chrome Cache Entry: 317
ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 318
ASCII text, with very long lines (47671)
downloaded
Chrome Cache Entry: 320
ASCII text, with very long lines (6401)
downloaded
Chrome Cache Entry: 321
ASCII text, with very long lines (24140)
downloaded
Chrome Cache Entry: 322
ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 323
data
downloaded
Chrome Cache Entry: 324
Unicode text, UTF-8 text, with very long lines (31996)
dropped
Chrome Cache Entry: 326
ASCII text, with very long lines (24055)
downloaded
Chrome Cache Entry: 327
ASCII text, with very long lines (65536), with no line terminators
dropped
Chrome Cache Entry: 328
Unicode text, UTF-8 text, with very long lines (65530), with no line terminators
downloaded
Chrome Cache Entry: 329
ASCII text, with very long lines (30221)
dropped
Chrome Cache Entry: 330
PNG image data, 1699 x 1181, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 331
ASCII text, with very long lines (3819), with CRLF line terminators
downloaded
Chrome Cache Entry: 333
ASCII text, with very long lines (10459)
downloaded
Chrome Cache Entry: 334
ASCII text, with very long lines (21706)
downloaded
Chrome Cache Entry: 335
PNG image data, 1034 x 719, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 337
ASCII text, with very long lines (28943)
downloaded
Chrome Cache Entry: 340
Unicode text, UTF-8 text, with very long lines (65519), with no line terminators
downloaded
Chrome Cache Entry: 341
gzip compressed data, max speed, from FAT filesystem (MS-DOS, OS/2, NT), original size modulo 2^32 17287
downloaded
Chrome Cache Entry: 342
PNG image data, 25 x 25, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 343
ASCII text, with very long lines (11110)
downloaded
Chrome Cache Entry: 344
PNG image data, 86 x 9, 8-bit/color RGB, non-interlaced
dropped
Chrome Cache Entry: 345
PNG image data, 1037 x 807, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 346
PNG image data, 1067 x 742, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 347
ASCII text, with very long lines (24681)
downloaded
Chrome Cache Entry: 348
ASCII text, with very long lines (2815), with CRLF line terminators
downloaded
Chrome Cache Entry: 349
PNG image data, 2501 x 832, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 350
ASCII text, with very long lines (48316), with no line terminators
downloaded
Chrome Cache Entry: 351
ASCII text, with very long lines (22580)
downloaded
Chrome Cache Entry: 352
ASCII text, with very long lines (1644), with no line terminators
downloaded
Chrome Cache Entry: 353
ASCII text, with very long lines (20263)
downloaded
Chrome Cache Entry: 354
data
downloaded
Chrome Cache Entry: 357
ASCII text, with very long lines (15533)
downloaded
Chrome Cache Entry: 359
ASCII text, with very long lines (4198)
downloaded
There are 135 hidden files, click here to show them.

URLs

Name
IP
Malicious
https://estudioit.cl/starl/#ZGVicmEuY2FydGVyQGNhc2EuZ292LmF1
malicious
https://estudioit.cl/starl/#ZGVicmEuY2FydGVyQGNhc2EuZ292LmF1
malicious
https://www.office.com/
https://zlu.aphwksjn.ru/N17zZ9/#ZGVicmEuY2FydGVyQGNhc2EuZ292LmF1

Domains

Name
IP
Malicious
estudioit.cl
173.248.187.77
malicious
92hveklcg5pdjvfdfv3xamefmwwb7jpnd2quavuzctqwyg3ir0x.gedeloanal.com
188.114.97.3
ipapi.co
172.67.69.226
a.nel.cloudflare.com
35.190.80.1
code.jquery.com
151.101.130.137
cdnjs.cloudflare.com
104.17.25.14
CDG-efz.ms-acdc.office.com
52.97.233.50
sni1gl.wpc.alphacdn.net
152.199.21.175
challenges.cloudflare.com
104.18.94.41
s-part-0017.t-0009.t-msedge.net
13.107.246.45
www.google.com
142.250.185.196
zlu.aphwksjn.ru
188.114.97.3
js.monitor.azure.com
unknown
www.office.com
unknown
outlook.office.com
unknown
substrate.office.com
unknown
logincdn.msftauth.net
unknown
mem.gfx.ms
unknown
login.microsoftonline.com
unknown
portal.office.com
unknown
officehub.nel.measure.office.net
unknown
acctcdn.msftauth.net
unknown
There are 12 hidden domains, click here to show them.

IPs

IP
Domain
Country
Malicious
173.248.187.77
estudioit.cl
United States
malicious
13.107.6.156
unknown
United States
142.250.185.78
unknown
United States
51.132.193.104
unknown
United Kingdom
13.107.246.45
s-part-0017.t-0009.t-msedge.net
United States
95.101.149.131
unknown
European Union
23.38.98.104
unknown
United States
104.18.94.41
challenges.cloudflare.com
United States
192.168.2.16
unknown
unknown
52.182.143.211
unknown
United States
20.190.159.64
unknown
United States
151.101.130.137
code.jquery.com
United States
2.19.126.202
unknown
European Union
142.251.168.84
unknown
United States
20.190.159.68
unknown
United States
142.250.185.163
unknown
United States
151.101.194.137
unknown
United States
35.190.80.1
a.nel.cloudflare.com
United States
172.217.18.110
unknown
United States
88.221.110.179
unknown
European Union
172.67.69.226
ipapi.co
United States
142.250.184.202
unknown
United States
1.1.1.1
unknown
Australia
104.26.9.44
unknown
United States
239.255.255.250
unknown
Reserved
142.250.185.196
www.google.com
United States
188.114.97.3
92hveklcg5pdjvfdfv3xamefmwwb7jpnd2quavuzctqwyg3ir0x.gedeloanal.com
European Union
152.199.21.175
sni1gl.wpc.alphacdn.net
United States
172.217.16.195
unknown
United States
104.17.25.14
cdnjs.cloudflare.com
United States
There are 20 hidden IPs, click here to show them.