Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
Chrome Cache Entry: 132
|
HTML document, ASCII text, with CRLF line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 133
|
ASCII text, with very long lines (47691)
|
downloaded
|
||
|
Chrome Cache Entry: 134
|
PNG image data, 2 x 2, 8-bit/color RGB, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 135
|
HTML document, ASCII text, with CRLF line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 136
|
PNG image data, 128 x 128, 8-bit/color RGB, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 137
|
ASCII text, with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 138
|
ASCII text, with very long lines (47691)
|
dropped
|
||
|
Chrome Cache Entry: 139
|
PNG image data, 128 x 128, 8-bit/color RGB, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 140
|
Unicode text, UTF-8 text, with very long lines (65335)
|
downloaded
|
||
|
Chrome Cache Entry: 141
|
PNG image data, 39 x 50, 8-bit/color RGB, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 142
|
PNG image data, 39 x 50, 8-bit/color RGB, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 143
|
PNG image data, 2 x 2, 8-bit/color RGB, non-interlaced
|
dropped
|
There are 3 hidden files, click here to show them.
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
|
||
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US
--service-sandbox-type=none --mojo-platform-channel-handle=2052 --field-trial-handle=1972,i,17134630784947432504,9666418931932445698,262144
--disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction
/prefetch:8
|
||
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" "https://u48644047.ct.sendgrid.net/ls/click?upn=u001.3irT40U-2BlTtWVjPO1bgMkUPMRV7HMaBj-2FcZe3i1L5jDR7G1Ks0wP9YDqpnyIpxjZeIBaCeYZtGJgliwzSaJhwg-3D-3Dg90K_vPQ7onHR3f0o8KfOdBDFScd6URBvV6dRJTvL1FnCMOJp3bqQS0z8XYrmZvQsYKgv9M18uyN4otj9SHTsh0jVVVuVPoownVxKSao-2Fy-2F5zkA0ggrGoSd-2BVIld1mpIeS3DUcNNIvsq7yFDKM7DHebzUtokLUwZtE0mCsLz1Bm0-2B1LrSQGv4FTM1s6ckzg8R6Atlvbv-2BxwILwC6PQXifnpXLjP04W47PCxVuKYY5jyS-2FXWc-3D"
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
https://u48644047.ct.sendgrid.net/ls/click?upn=u001.3irT40U-2BlTtWVjPO1bgMkUPMRV7HMaBj-2FcZe3i1L5jDR7G1Ks0wP9YDqpnyIpxjZeIBaCeYZtGJgliwzSaJhwg-3D-3Dg90K_vPQ7onHR3f0o8KfOdBDFScd6URBvV6dRJTvL1FnCMOJp3bqQS0z8XYrmZvQsYKgv9M18uyN4otj9SHTsh0jVVVuVPoownVxKSao-2Fy-2F5zkA0ggrGoSd-2BVIld1mpIeS3DUcNNIvsq7yFDKM7DHebzUtokLUwZtE0mCsLz1Bm0-2B1LrSQGv4FTM1s6ckzg8R6Atlvbv-2BxwILwC6PQXifnpXLjP04W47PCxVuKYY5jyS-2FXWc-3D
|
 |
||
|
https://proficocap.com/
|
104.21.53.171
|
|
|
|
https://proficocap.com/#grant.ramsden@virginmoney.com
|
|
||
|
https://tse1.mm.bing.net/th?id=OADD2.10239402414375_1AVQBVS8V3X3ACPMA&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=1920&h=1080&dynsize=1&qlt=90
|
150.171.27.10
|
||
|
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/608171432:1733530697:8BWsYhk1SWZlRP7GpYN7tPMosN7A_9EHlf49BfqZObo/8eef4911a8e143cb/MZci78iv2CCudpo2.FGQ5mZ5Rf0uaBDJlbj5xATahfU-1733687437-1.1.1.1-orHo8b5s0mjHvI02qYmgkSKS324gw5u9MJx4_q2_vPNFnQ_SCLfrUsZYIz4F5ypF
|
104.18.95.41
|
||
|
https://cdn.jsdelivr.net/npm/bootstrap
|
unknown
|
||
|
https://proficocap.com/favicon.ico
|
104.21.53.171
|
||
|
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/rgsuz/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/normal/auto/
|
104.18.95.41
|
||
|
https://logo.clearbit.com/virginmoney.com
|
13.227.8.72
|
||
|
https://github.com/twbs/bootstrap/blob/main/LICENSE)
|
unknown
|
||
|
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/i/8eef4911a8e143cb/1733687444189/TpwymHuahAs5EpN
|
104.18.95.41
|
||
|
https://proficocap.com/cdn-cgi/challenge-platform/h/g/flow/ov1/2103902929:1733530456:gWlw6UrWrF1EVwazpOoHDdN2NPkECb29gam9UES4p7M/8eef48dc28b04405/Lyh2pldR2U_E_.MUR82KipgfyzNT77WVEZwHtUhweWU-1733687428-1.2.1.1-G7.NbYDLguhv11ABpOVb3tBc0A56ETChg8iDEU7elt4XUzrkd1lpQ9Ezh8w9c7jA
|
104.21.53.171
|
||
|
https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0-beta3/css/all.min.css
|
104.17.25.14
|
||
|
https://proficocap.com/?__cf_chl_rt_tk=alWt9AgDFfYo2aih2ijenQDb0ivCF8gU6Vb8YAtsw9E-1733687428-1.0.1.1-LkP5f.qskE7jddQD4VSpNDRu53KJfHIimFuUUnj55uQ#grant.ramsden@virginmoney.com
|
|||
|
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=8eef4911a8e143cb&lang=auto
|
104.18.95.41
|
||
|
https://a.nel.cloudflare.com/report/v4?s=NtBqaQHfiWWUjgRK%2FdXcPZXeDWXock6mo7Tw%2BIVyfVw2kgvcR5x%2Fwxet3SMCdTYMH51jspIR7N6pOfuOGkUZomiE9avmM15YSSiJ%2F2N1jYPSIX9If38lpWJ%2FHf9Laam1cw%3D%3D
|
35.190.80.1
|
||
|
https://a.nel.cloudflare.com/report/v4?s=BaBa%2Bcls9XuXgYmrVEVw9n%2Bhi9%2F%2BAQrzF8U5ipv6RCLOiYa8iAIomZnG2OE7fSb0hTmYyr8zHA5IYWMJ9z%2BjRGX38WSfY%2Fa54ZhR3f2UUb0bgXN7iYKX3K6%2B1h3zxKm6cQ%3D%3D
|
35.190.80.1
|
||
|
https://getbootstrap.com/)
|
unknown
|
||
|
https://tse1.mm.bing.net/th?id=OADD2.10239399109665_1344PV668L57B53FJ&pid=21.2&c=3&w=1080&h=1920&dynsize=1&qlt=90
|
150.171.27.10
|
||
|
http://webmail.$
|
unknown
|
||
|
https://tse1.mm.bing.net/th?id=OADD2.10239385875217_1AS9NW8J4VEXSVA8E&pid=21.2&c=3&w=1080&h=1920&dynsize=1&qlt=90
|
150.171.27.10
|
||
|
https://a.nel.cloudflare.com/report/v4?s=EYmntC%2FcD10lxgaAhlff%2Ff9ho3LrZqPX0Y6lGu6F%2ByYlSJxmge5No%2FSnJBL2ETxUu9n%2FDGXYTd%2BobgO%2Fx88HKGkiv3%2FN%2BqN1Rz5foS4Klr2rCIoU7ZUd3SpsUyVGb1O2Kw%3D%3D
|
35.190.80.1
|
||
|
https://proficocap.com/auth.php
|
104.21.53.171
|
||
|
https://tse1.mm.bing.net/th?id=OADD2.10239402414374_1RZXN1BFTHNSAZBQY&pid=21.2&c=3&w=1080&h=1920&dynsize=1&qlt=90
|
150.171.27.10
|
||
|
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/cmg/1
|
104.18.95.41
|
||
|
https://image.thum.io/get/http://www.virginmoney.com
|
34.202.133.228
|
||
|
https://u48644047.ct.sendgrid.net/ls/click?upn=u001.3irT40U-2BlTtWVjPO1bgMkUPMRV7HMaBj-2FcZe3i1L5jDR7G1Ks0wP9YDqpnyIpxjZeIBaCeYZtGJgliwzSaJhwg-3D-3Dg90K_vPQ7onHR3f0o8KfOdBDFScd6URBvV6dRJTvL1FnCMOJp3bqQS0z8XYrmZvQsYKgv9M18uyN4otj9SHTsh0jVVVuVPoownVxKSao-2Fy-2F5zkA0ggrGoSd-2BVIld1mpIeS3DUcNNIvsq7yFDKM7DHebzUtokLUwZtE0mCsLz1Bm0-2B1LrSQGv4FTM1s6ckzg8R6Atlvbv-2BxwILwC6PQXifnpXLjP04W47PCxVuKYY5jyS-2FXWc-3D
|
167.89.118.28
|
||
|
https://tse1.mm.bing.net/th?id=OADD2.10239385875220_1FZJ7DDRUSKY0IVFA&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=1920&h=1080&dynsize=1&qlt=90
|
150.171.27.10
|
||
|
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/pat/8eef4911a8e143cb/1733687444189/f6217f608b824ca04203a9dc66ad631785a35b06ac7270e998d764984692a685/R9JS_IJzkoaUp51
|
104.18.95.41
|
||
|
https://a.nel.cloudflare.com/report/v4?s=HCCGsQvdlNc%2BJmxUPQiMeRCM8982DcflmoYcquVM6726eKfELIICtRripthlRXUSrHio2UGj1gLsOdgH5IGc%2Fr2mwHJN9WyTPSehGdGI7Gpitjf9SdA6Z7qNEFVlIkB3fSg%3D
|
35.190.80.1
|
||
|
https://tse1.mm.bing.net/th?id=OADD2.10239399109664_12R6JVR4SJZQSTHCV&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=1920&h=1080&dynsize=1&qlt=90
|
150.171.27.10
|
||
|
https://proficocap.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=8eef48dc28b04405
|
104.21.53.171
|
There are 21 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
proficocap.com
|
104.21.53.171
|
|
|
|
d26p066pn2w0s0.cloudfront.net
|
13.227.8.72
|
||
|
a.nel.cloudflare.com
|
35.190.80.1
|
||
|
u48644047.ct.sendgrid.net
|
167.89.118.28
|
||
|
cdnjs.cloudflare.com
|
104.17.25.14
|
||
|
challenges.cloudflare.com
|
104.18.95.41
|
||
|
www.google.com
|
142.250.181.100
|
||
|
image.thum.io
|
34.202.133.228
|
||
|
cdn.jsdelivr.net
|
unknown
|
||
|
logo.clearbit.com
|
unknown
|
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
104.21.53.171
|
proficocap.com
|
United States
|
|
|
|
167.89.118.28
|
u48644047.ct.sendgrid.net
|
United States
|
||
|
104.18.95.41
|
challenges.cloudflare.com
|
United States
|
||
|
192.168.2.4
|
unknown
|
unknown
|
||
|
34.202.133.228
|
image.thum.io
|
United States
|
||
|
142.250.181.100
|
www.google.com
|
United States
|
||
|
239.255.255.250
|
unknown
|
Reserved
|
||
|
172.67.215.208
|
unknown
|
United States
|
||
|
13.227.8.72
|
d26p066pn2w0s0.cloudfront.net
|
United States
|
||
|
35.190.80.1
|
a.nel.cloudflare.com
|
United States
|
||
|
13.227.8.65
|
unknown
|
United States
|
||
|
104.17.25.14
|
cdnjs.cloudflare.com
|
United States
|
There are 2 hidden IPs, click here to show them.
DOM / HTML
|
URL
|
Malicious
|
|
|---|---|---|
|
https://proficocap.com/#grant.ramsden@virginmoney.com
|
|
|
|
https://proficocap.com/#grant.ramsden@virginmoney.com
|
|
|
|
https://proficocap.com/?__cf_chl_rt_tk=alWt9AgDFfYo2aih2ijenQDb0ivCF8gU6Vb8YAtsw9E-1733687428-1.0.1.1-LkP5f.qskE7jddQD4VSpNDRu53KJfHIimFuUUnj55uQ#grant.ramsden@virginmoney.com
|
||
|
https://proficocap.com/#grant.ramsden@virginmoney.com
|
||
|
https://proficocap.com/#grant.ramsden@virginmoney.com
|
||
|
https://proficocap.com/#grant.ramsden@virginmoney.com
|