Windows Analysis Report
https://dinosaur-megalodon-8eae.squarespace.com

Overview

General Information

Sample URL:	https://dinosaur-megalodon-8eae.squarespace.com
Analysis ID:	1579388
Infos:

Detection

Score:	1
Range:	0 - 100
Whitelisted:	false
Confidence:	100%

Signatures

HTML body with high number of embedded SVGs detected

Stores files to the Windows start menu directory

Classification

Signatures

HTML body with high number of embedded SVGs detected

Source: https://app.powerbi.com/view?r=eyJrIjoiZjY0Y2FhMzUtMzM0ZS00YjQ2LTk5NDQtNmUwY2M5MDRiNmNjIiwidCI6ImJkMWRiODMyLWYwY2QtNDRiNS04ZTNjLTYxMmNlY2NhMjQ4ZSJ9

HTTP Parser: Total embedded SVG size: 296694

Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1

Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: dinosaur-megalodon-8eae.squarespace.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /universal/styles-compressed/user-account-core-b6e8cafbf34b05da5c2b-min.en-US.css HTTP/1.1Host: assets.squarespace.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://dinosaur-megalodon-8eae.squarespace.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /@sqs/polyfiller/1.6/modern.js HTTP/1.1Host: assets.squarespace.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://dinosaur-megalodon-8eae.squarespace.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://dinosaur-megalodon-8eae.squarespace.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/vta/5c5a519771c10ba3470d8101/versioned-assets/1734634171682-RZF6JR6GWSGG409XDSTH/static.css HTTP/1.1Host: static1.squarespace.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://dinosaur-megalodon-8eae.squarespace.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/versioned-site-css/675bffea9281b6478ae50b81/0/5c5a519771c10ba3470d8101/675bffea9281b6478ae50ba2/1596/site.css HTTP/1.1Host: static1.squarespace.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://dinosaur-megalodon-8eae.squarespace.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /@sqs/polyfiller/1.6/modern.js HTTP/1.1Host: assets.squarespace.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /universal/scripts-compressed/extract-css-runtime-c53402e169a8bb53259f-min.en-US.js HTTP/1.1Host: assets.squarespace.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://dinosaur-megalodon-8eae.squarespace.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://dinosaur-megalodon-8eae.squarespace.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /universal/scripts-compressed/extract-css-runtime-c53402e169a8bb53259f-min.en-US.js HTTP/1.1Host: assets.squarespace.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/vta/5c5a519771c10ba3470d8101/scripts/site-bundle.3f54e02ecf800724a9e3b135d2a95191.js HTTP/1.1Host: static1.squarespace.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://dinosaur-megalodon-8eae.squarespace.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /view?r=eyJrIjoiZjY0Y2FhMzUtMzM0ZS00YjQ2LTk5NDQtNmUwY2M5MDRiNmNjIiwidCI6ImJkMWRiODMyLWYwY2QtNDRiNS04ZTNjLTYxMmNlY2NhMjQ4ZSJ9 HTTP/1.1Host: app.powerbi.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: documentReferer: https://dinosaur-megalodon-8eae.squarespace.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /13.0.24766.39/scripts/hash-manifest.js HTTP/1.1Host: app.powerbi.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://app.powerbi.com/view?r=eyJrIjoiZjY0Y2FhMzUtMzM0ZS00YjQ2LTk5NDQtNmUwY2M5MDRiNmNjIiwidCI6ImJkMWRiODMyLWYwY2QtNDRiNS04ZTNjLTYxMmNlY2NhMjQ4ZSJ9Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: WFESessionId=972aee4b-cffa-4e94-8362-2931a6a75d42; ARRAffinity=746146f9b8a568138e0f8e8d19178ca6868557dc4149a92ed430f901c8a2c233; ARRAffinitySameSite=746146f9b8a568138e0f8e8d19178ca6868557dc4149a92ed430f901c8a2c233
Source: global traffic	HTTP traffic detected: GET /static/vta/5c5a519771c10ba3470d8101/scripts/site-bundle.3f54e02ecf800724a9e3b135d2a95191.js HTTP/1.1Host: static1.squarespace.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /13.0.24766.39/scripts/hash-manifest.js HTTP/1.1Host: app.powerbi.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ARRAffinity=746146f9b8a568138e0f8e8d19178ca6868557dc4149a92ed430f901c8a2c233; ARRAffinitySameSite=746146f9b8a568138e0f8e8d19178ca6868557dc4149a92ed430f901c8a2c233
Source: global traffic	HTTP traffic detected: GET /images/PowerBI_Favicon.ico HTTP/1.1Host: app.powerbi.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://app.powerbi.com/view?r=eyJrIjoiZjY0Y2FhMzUtMzM0ZS00YjQ2LTk5NDQtNmUwY2M5MDRiNmNjIiwidCI6ImJkMWRiODMyLWYwY2QtNDRiNS04ZTNjLTYxMmNlY2NhMjQ4ZSJ9Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: WFESessionId=972aee4b-cffa-4e94-8362-2931a6a75d42; ARRAffinity=746146f9b8a568138e0f8e8d19178ca6868557dc4149a92ed430f901c8a2c233; ARRAffinitySameSite=746146f9b8a568138e0f8e8d19178ca6868557dc4149a92ed430f901c8a2c233; ai_user=iBBc4hq+kEwJXmZGxQIhgk\|2024-12-22T01:24:33.087Z; ai_session=TBsbv6KiNaAT2b8O2/rAhB\|1734830673092\|1734830673092
Source: global traffic	HTTP traffic detected: GET /approvedResources.json HTTP/1.1Host: pbivisuals.powerbi.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: application/json, text/plain, /sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Origin: https://app.powerbi.comSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://app.powerbi.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/PowerBI_Favicon.ico HTTP/1.1Host: app.powerbi.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ARRAffinity=746146f9b8a568138e0f8e8d19178ca6868557dc4149a92ed430f901c8a2c233; ARRAffinitySameSite=746146f9b8a568138e0f8e8d19178ca6868557dc4149a92ed430f901c8a2c233; ai_user=iBBc4hq+kEwJXmZGxQIhgk\|2024-12-22T01:24:33.087Z; ai_session=TBsbv6KiNaAT2b8O2/rAhB\|1734830673092\|1734830673092
Source: global traffic	HTTP traffic detected: GET /approvedResources.json HTTP/1.1Host: pbivisuals.powerbi.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /13.0.24766.39/sharedresources/BaseThemes/CY24SU10.json HTTP/1.1Host: app.powerbi.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0RequestId: 9e44789b-b013-3149-c73a-596610f72775User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36ActivityId: eba37318-8a38-bd4f-9f39-7794207bbe2bAccept: application/json, text/plain, /X-PowerBI-ResourceKey: f64caa35-334e-4b46-9944-6e0cc904b6ccsec-ch-ua-platform: "Windows"Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://app.powerbi.com/view?r=eyJrIjoiZjY0Y2FhMzUtMzM0ZS00YjQ2LTk5NDQtNmUwY2M5MDRiNmNjIiwidCI6ImJkMWRiODMyLWYwY2QtNDRiNS04ZTNjLTYxMmNlY2NhMjQ4ZSJ9Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: WFESessionId=972aee4b-cffa-4e94-8362-2931a6a75d42; ARRAffinity=746146f9b8a568138e0f8e8d19178ca6868557dc4149a92ed430f901c8a2c233; ARRAffinitySameSite=746146f9b8a568138e0f8e8d19178ca6868557dc4149a92ed430f901c8a2c233; ai_user=iBBc4hq+kEwJXmZGxQIhgk\|2024-12-22T01:24:33.087Z; ai_session=TBsbv6KiNaAT2b8O2/rAhB\|1734830673092\|1734830673092
Source: global traffic	HTTP traffic detected: GET /13.0.24766.39/sharedresources/BaseThemes/CY24SU10.json HTTP/1.1Host: app.powerbi.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ARRAffinity=746146f9b8a568138e0f8e8d19178ca6868557dc4149a92ed430f901c8a2c233; ARRAffinitySameSite=746146f9b8a568138e0f8e8d19178ca6868557dc4149a92ed430f901c8a2c233; ai_user=iBBc4hq+kEwJXmZGxQIhgk\|2024-12-22T01:24:33.087Z; ai_session=TBsbv6KiNaAT2b8O2/rAhB\|1734830673092\|1734830673092
Source: global traffic	HTTP traffic detected: GET /visuals.json HTTP/1.1Host: appsource.powerbi.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: application/json, text/plain, /sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Origin: https://app.powerbi.comSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://app.powerbi.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /visuals.json HTTP/1.1Host: appsource.powerbi.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9

Source: chromecache_177.2.dr

String found in binary or memory: <html xmlns:og="http://opengraphprotocol.org/schema/" xmlns:fb="http://www.facebook.com/2008/fbml" lang="en-US" > equals www.facebook.com (Facebook)

Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: dinosaur-megalodon-8eae.squarespace.com
Source: global traffic	DNS traffic detected: DNS query: images.squarespace-cdn.com
Source: global traffic	DNS traffic detected: DNS query: assets.squarespace.com
Source: global traffic	DNS traffic detected: DNS query: static1.squarespace.com
Source: global traffic	DNS traffic detected: DNS query: app.powerbi.com
Source: global traffic	DNS traffic detected: DNS query: content.powerapps.com
Source: global traffic	DNS traffic detected: DNS query: dc.services.visualstudio.com
Source: global traffic	DNS traffic detected: DNS query: wabi-uk-south-c-primary-api.analysis.windows.net
Source: global traffic	DNS traffic detected: DNS query: pbivisuals.powerbi.com
Source: global traffic	DNS traffic detected: DNS query: appsource.powerbi.com
Source: global traffic	DNS traffic detected: DNS query: login.365link.tech
Source: global traffic	DNS traffic detected: DNS query: google.com

Source: chromecache_142.2.dr, chromecache_172.2.dr	String found in binary or memory: http://github.com/jquery/globalize
Source: chromecache_184.2.dr, chromecache_145.2.dr	String found in binary or memory: http://interactjs.io/docs/#autoscroll
Source: chromecache_184.2.dr, chromecache_145.2.dr	String found in binary or memory: http://interactjs.io/docs/#resize-square
Source: chromecache_184.2.dr, chromecache_145.2.dr	String found in binary or memory: http://interactjs.io/docs/inertia
Source: chromecache_184.2.dr, chromecache_145.2.dr	String found in binary or memory: http://interactjs.io/docs/restriction
Source: chromecache_184.2.dr, chromecache_145.2.dr	String found in binary or memory: http://interactjs.io/docs/snapping
Source: chromecache_142.2.dr, chromecache_172.2.dr, chromecache_184.2.dr, chromecache_145.2.dr	String found in binary or memory: http://jquery.org/license
Source: chromecache_148.2.dr	String found in binary or memory: http://jqueryui.com
Source: chromecache_148.2.dr	String found in binary or memory: http://jqueryui.com/themeroller/?scope=&folderName=base&cornerRadiusShadow=8px&offsetLeftShadow=0px&
Source: chromecache_184.2.dr, chromecache_145.2.dr	String found in binary or memory: http://jscompress.com/
Source: chromecache_177.2.dr	String found in binary or memory: http://opengraphprotocol.org/schema/
Source: chromecache_184.2.dr, chromecache_145.2.dr	String found in binary or memory: http://underscorejs.org/LICENSE
Source: chromecache_181.2.dr, chromecache_175.2.dr	String found in binary or memory: http://wiki.jqueryui.com/Globalize
Source: chromecache_177.2.dr	String found in binary or memory: https://assets.squarespace.com/universal/default-favicon.ico
Source: chromecache_184.2.dr, chromecache_145.2.dr	String found in binary or memory: https://dev.azure.com/powerbi/PowerBIClients/_git/PowerBIClients/pullrequest/131629)
Source: chromecache_177.2.dr	String found in binary or memory: https://dinosaur-megalodon-8eae.squarespace.com
Source: chromecache_173.2.dr	String found in binary or memory: https://easings.net/en#easeOutExpo)
Source: chromecache_177.2.dr	String found in binary or memory: https://fonts.googleapis.com/css2?family=Roboto:ital
Source: chromecache_140.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOjCnqEu92Fr1Mu51TzBic-CsTKlA.woff2)
Source: chromecache_140.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOjCnqEu92Fr1Mu51TzBic0CsTKlA.woff2)
Source: chromecache_140.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOjCnqEu92Fr1Mu51TzBic1CsTKlA.woff2)
Source: chromecache_140.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOjCnqEu92Fr1Mu51TzBic2CsTKlA.woff2)
Source: chromecache_140.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOjCnqEu92Fr1Mu51TzBic3CsTKlA.woff2)
Source: chromecache_140.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOjCnqEu92Fr1Mu51TzBic5CsTKlA.woff2)
Source: chromecache_140.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOjCnqEu92Fr1Mu51TzBic6CsQ.woff2)
Source: chromecache_140.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOkCnqEu92Fr1Mu51xEIzIFKw.woff2)
Source: chromecache_140.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOkCnqEu92Fr1Mu51xFIzIFKw.woff2)
Source: chromecache_140.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOkCnqEu92Fr1Mu51xGIzIFKw.woff2)
Source: chromecache_140.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOkCnqEu92Fr1Mu51xHIzIFKw.woff2)
Source: chromecache_140.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOkCnqEu92Fr1Mu51xIIzI.woff2)
Source: chromecache_140.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOkCnqEu92Fr1Mu51xLIzIFKw.woff2)
Source: chromecache_140.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOkCnqEu92Fr1Mu51xMIzIFKw.woff2)
Source: chromecache_140.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmEU9fABc4EsA.woff2)
Source: chromecache_140.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmEU9fBBc4.woff2)
Source: chromecache_140.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmEU9fBxc4EsA.woff2)
Source: chromecache_140.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmEU9fCBc4EsA.woff2)
Source: chromecache_140.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmEU9fCRc4EsA.woff2)
Source: chromecache_140.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmEU9fChc4EsA.woff2)
Source: chromecache_140.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmEU9fCxc4EsA.woff2)
Source: chromecache_140.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfABc4EsA.woff2)
Source: chromecache_140.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfBBc4.woff2)
Source: chromecache_140.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfBxc4EsA.woff2)
Source: chromecache_140.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfCBc4EsA.woff2)
Source: chromecache_140.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfCRc4EsA.woff2)
Source: chromecache_140.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfChc4EsA.woff2)
Source: chromecache_140.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfCxc4EsA.woff2)
Source: chromecache_140.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu4WxKOzY.woff2)
Source: chromecache_140.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu4mxK.woff2)
Source: chromecache_140.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu5mxKOzY.woff2)
Source: chromecache_140.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu72xKOzY.woff2)
Source: chromecache_140.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu7GxKOzY.woff2)
Source: chromecache_140.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu7WxKOzY.woff2)
Source: chromecache_140.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu7mxKOzY.woff2)
Source: chromecache_184.2.dr, chromecache_145.2.dr	String found in binary or memory: https://github.com/gromo/jquery.scrollbar/
Source: chromecache_184.2.dr, chromecache_145.2.dr	String found in binary or memory: https://github.com/jquery/PEP
Source: chromecache_184.2.dr, chromecache_145.2.dr	String found in binary or memory: https://github.com/requirejs/requirejs/blob/master/LICENSE
Source: chromecache_162.2.dr, chromecache_159.2.dr	String found in binary or memory: https://github.com/zloirock/core-js
Source: chromecache_162.2.dr, chromecache_159.2.dr	String found in binary or memory: https://github.com/zloirock/core-js/blob/v3.26.0/LICENSE
Source: chromecache_177.2.dr	String found in binary or memory: https://images.squarespace-cdn.com
Source: chromecache_184.2.dr, chromecache_145.2.dr	String found in binary or memory: https://lodash.com/
Source: chromecache_184.2.dr, chromecache_145.2.dr	String found in binary or memory: https://lodash.com/license
Source: chromecache_184.2.dr, chromecache_145.2.dr	String found in binary or memory: https://npms.io/search?q=ponyfill.
Source: chromecache_184.2.dr, chromecache_145.2.dr	String found in binary or memory: https://openjsf.org/
Source: chromecache_184.2.dr, chromecache_145.2.dr	String found in binary or memory: https://raw.github.com/taye/interact.js/master/LICENSE
Source: chromecache_127.2.dr, chromecache_189.2.dr	String found in binary or memory: https://sourcemaps.squarespace.net/universal/scripts-compressed/sourcemaps/235e0d367207107d444f9fd17
Source: chromecache_177.2.dr	String found in binary or memory: https://static1.squarespace.com/static/vta/5c5a519771c10ba3470d8101/scripts/site-bundle.3f54e02ecf80
Source: chromecache_177.2.dr	String found in binary or memory: https://static1.squarespace.com/static/vta/5c5a519771c10ba3470d8101/versioned-assets/1734634171682-R

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49864
Source: unknown	Network traffic detected: HTTP traffic on port 49922 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49727 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49720 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49736 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49736
Source: unknown	Network traffic detected: HTTP traffic on port 49675 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49732
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49731
Source: unknown	Network traffic detected: HTTP traffic on port 49925 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49851
Source: unknown	Network traffic detected: HTTP traffic on port 49732 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49730
Source: unknown	Network traffic detected: HTTP traffic on port 49703 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49728 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49749 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49721 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49851 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49909 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49728
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49727
Source: unknown	Network traffic detected: HTTP traffic on port 49714 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49925
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49726
Source: unknown	Network traffic detected: HTTP traffic on port 49886 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49725
Source: unknown	Network traffic detected: HTTP traffic on port 49718 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49922
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49723
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49888
Source: unknown	Network traffic detected: HTTP traffic on port 49674 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49722
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49721
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49886
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49720
Source: unknown	Network traffic detected: HTTP traffic on port 49731 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49712 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49725 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49719 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49722 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49719
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49718
Source: unknown	Network traffic detected: HTTP traffic on port 49904 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49715 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49715
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49714
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49712
Source: unknown	Network traffic detected: HTTP traffic on port 49673 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49864 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49730 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49726 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49723 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49909
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49904
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49749
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49703
Source: unknown	Network traffic detected: HTTP traffic on port 49867 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49867
Source: unknown	Network traffic detected: HTTP traffic on port 49888 -> 443

Source: classification engine

Classification label: clean1.win@21/115@48/9

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps

Jump to behavior

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2116 --field-trial-handle=1876,i,14394039975335812045,10154006767898104271,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://dinosaur-megalodon-8eae.squarespace.com"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2116 --field-trial-handle=1876,i,14394039975335812045,10154006767898104271,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: Google Drive.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: YouTube.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Sheets.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Gmail.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Slides.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Docs.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe

Source: Window Recorder

Window detected: More than 3 window changes detected

Stores files to the Windows start menu directory

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk	Jump to behavior

Screenshots

Behavior Graph

Hide Legend

Legend:

Process
Signature
Created File
DNS/IP Info
Is Dropped
Is Windows Process
Number of created Registry Values
Number of created Files
Visual Basic
Delphi
Java
.Net C# or VB.NET
C, C++ or other language
Is malicious
Internet

Network Map

No. of IPs < 25%
25% < No. of IPs < 50%
50% < No. of IPs < 75%
75% < No. of IPs

Contacted Public IPs

IP	Domain	Country	ASN	ASN Name	Malicious
20.38.136.70	waws-prod-dxb-b24c6da5.sip.p.azurewebsites.windows.net	United States	8075	MICROSOFT-CORP-MSN-AS-BLOCKUS	false
40.74.24.71	waws-prod-am2-a8c336ff.sip.p.azurewebsites.windows.net	United States	8075	MICROSOFT-CORP-MSN-AS-BLOCKUS	false
151.101.0.237	static.squarespace.map.fastly.net	United States	54113	FASTLYUS	false
151.101.0.238	squarespace.map.fastly.net	United States	54113	FASTLYUS	false
142.250.181.132	www.google.com	United States	15169	GOOGLEUS	false
151.101.128.238	unknown	United States	54113	FASTLYUS	false
198.185.159.177	dinosaur-megalodon-8eae.squarespace.com	United States	53831	SQUARESPACEUS	false
239.255.255.250	unknown	Reserved	unknown	unknown	false

Private

IP
192.168.2.5

Contacted Domains

Name	IP	Active
google.com	142.250.181.110	true
waws-prod-am2-a8c336ff.sip.p.azurewebsites.windows.net	40.74.24.71	true
static.squarespace.map.fastly.net	151.101.0.237	true
www.google.com	142.250.181.132	true
s-part-0035.t-0009.t-msedge.net	13.107.246.63	true
dinosaur-megalodon-8eae.squarespace.com	198.185.159.177	true
squarespace.map.fastly.net	151.101.0.238	true
waws-prod-dxb-b24c6da5.sip.p.azurewebsites.windows.net	20.38.136.70	true
prod.squarespace.map.fastly.net	151.101.0.238	true
images.squarespace-cdn.com	unknown	unknown
appsource.powerbi.com	unknown	unknown
app.powerbi.com	unknown	unknown
assets.squarespace.com	unknown	unknown
static1.squarespace.com	unknown	unknown
login.365link.tech	unknown	unknown
wabi-uk-south-c-primary-api.analysis.windows.net	unknown	unknown
content.powerapps.com	unknown	unknown
dc.services.visualstudio.com	unknown	unknown
pbivisuals.powerbi.com	unknown	unknown

Contacted URLs

Name	Malicious	Reputation
https://static1.squarespace.com/static/vta/5c5a519771c10ba3470d8101/scripts/site-bundle.3f54e02ecf800724a9e3b135d2a95191.js	false	high
https://assets.squarespace.com/universal/styles-compressed/user-account-core-b6e8cafbf34b05da5c2b-min.en-US.css	false	high
https://static1.squarespace.com/static/versioned-site-css/675bffea9281b6478ae50b81/0/5c5a519771c10ba3470d8101/675bffea9281b6478ae50ba2/1596/site.css	false	high
https://app.powerbi.com/13.0.24766.39/sharedresources/BaseThemes/CY24SU10.json	false	high
https://pbivisuals.powerbi.com/approvedResources.json	false	high
https://static1.squarespace.com/static/vta/5c5a519771c10ba3470d8101/versioned-assets/1734634171682-RZF6JR6GWSGG409XDSTH/static.css	false	high
https://dinosaur-megalodon-8eae.squarespace.com/	false	unknown
https://app.powerbi.com/13.0.24766.39/scripts/hash-manifest.js	false	high
https://app.powerbi.com/images/PowerBI_Favicon.ico	false	high
https://app.powerbi.com/view?r=eyJrIjoiZjY0Y2FhMzUtMzM0ZS00YjQ2LTk5NDQtNmUwY2M5MDRiNmNjIiwidCI6ImJkMWRiODMyLWYwY2QtNDRiNS04ZTNjLTYxMmNlY2NhMjQ4ZSJ9	false	high
https://assets.squarespace.com/universal/scripts-compressed/extract-css-runtime-c53402e169a8bb53259f-min.en-US.js	false	high
https://appsource.powerbi.com/visuals.json	false	high
https://assets.squarespace.com/@sqs/polyfiller/1.6/modern.js	false	high

Name	Type	MD5	SHA1	SHA256
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Sun Dec 22 00:23:53 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide	637B91EC29470201817D9DB9C90E53FB	894167ACF08081947790CE024EEFC1B37BBB5DD0	06686C5B13B38871F370F48A421E0D0D029832650F385F99B5F62EF3DA43B8BB
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Sun Dec 22 00:23:53 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide	81CA54D9C3C8C41D64F6E4012979CCE5	2BE239A20D958CE8633F44DA66FEC99D386EF648	05C0F0096A6C8FE33FFD52E57854AAE1FA54A119AE1FF969126F742A4587773C
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed Oct 4 12:54:07 2023, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide	D8115A25C969BCB753B56D6D7368886F	6250B44E700C7D3D1ECC4CC75F6D0ABD8FA1A5E8	A216123971B4CB2901640469D3B7DD1A774DC8E219D35A4291A69EB513121027
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Sun Dec 22 00:23:53 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide	952F6C70CAD52EEA4DBAF78CDDB3FEFC	F4F848D2819F01FEFC236FB0974EC918BA751E4A	06DBD48FC1097883BB35359E6ADD29506E5BEC8E0602F69FB1AB600CCAE68E8F
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Sun Dec 22 00:23:53 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide	22F463784B51F1E4371AFDA5D3AF619C	24E5FCAE3156546FB6ADD55B9E2A8AAC9DCECB9C	8419287D82DED120401BA2501A7F9085CC2B17BE17EF0700F16F5206E7027E49
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Sun Dec 22 00:23:53 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide	BDBCC0ED5F656BF630C6D9ACEC9D6E68	F904221D04656B555FD55E02F23FD1C7C7B50F18	700E49036011FE4C05D314EDA1CB5BAB0AB523A789DC1EA6A33701AC33B3703F
Chrome Cache Entry: 121	ASCII text, with very long lines (65536), with no line terminators	9671E1EB7537E97AD6DDF9679E4B7F5B	E378803DD7FEA0572A3EE5E7A2CD29B600149F81	D70EED0D6E418A88047320FC6901F388EACD41A01C36BDE81BCA0B4B835D63CC
Chrome Cache Entry: 122	JSON data	8B18BDA31CE5195296688A43A0C0B8F6	DBA52E0069E770342128DBC4D6C41B58DD23BA66	C5F364BD98C148DD9F3EDBCE0D1121F72070C0C506FF02B7D7E18D81FEC5E2AA
Chrome Cache Entry: 123	JSON data	8B18BDA31CE5195296688A43A0C0B8F6	DBA52E0069E770342128DBC4D6C41B58DD23BA66	C5F364BD98C148DD9F3EDBCE0D1121F72070C0C506FF02B7D7E18D81FEC5E2AA
Chrome Cache Entry: 124	ASCII text, with very long lines (36378), with no line terminators	399797AB55DE35D0EF471DA9F708B2FB	59B15D2A860497C9BFF1B6A367D72B5C49648D47	461B47439D36AC6A2A0EFEAD785DE41705D9B37A36CC2A3622F395EBE3215566
Chrome Cache Entry: 125	SVG Scalable Vector Graphics image	DD83474C1FE56BA83823DB405F2864A6	8DC066DCFB9BC876C7EB70E1E287499BB6F77603	9EFE38CA6602E68A28DDE97256018EB7C7CCF3163E174C03B6FE5D4095752EC5
Chrome Cache Entry: 126	SVG Scalable Vector Graphics image	DD83474C1FE56BA83823DB405F2864A6	8DC066DCFB9BC876C7EB70E1E287499BB6F77603	9EFE38CA6602E68A28DDE97256018EB7C7CCF3163E174C03B6FE5D4095752EC5
Chrome Cache Entry: 127	ASCII text, with very long lines (41697)	A10635C5D0DDEB17A72D51F6AD263873	0C31770D9AC6A45DEC623B02EDE747BBD4F62375	45D5E94A4AF6D07F2598C00AFA64165BE73D1F5D13C219F45D478EA37815DC00
Chrome Cache Entry: 128	SVG Scalable Vector Graphics image	A28A1CAE64528512D1684BF44A6C1F91	C94072A684B92B928AAE3C79BC6E5EDACD00B68D	01A4C3E58FAE39C84B5F9C6901E5C88B5F676DE0F4FB7D4F3CD44442A34F7CC8
Chrome Cache Entry: 129	JSON data	150C8ECA614768DFF3A55738AFB7BE97	FB4C729CD026E29099D55358A62DA57C759AB3DA	33616E3D875830E08502E83557274867C71295A4B3AD5C6F1DA3BFF1E115D343
Chrome Cache Entry: 130	ASCII text, with very long lines (56224), with no line terminators	DD7149363C2632C6FF506908D185E210	C2E161E38D3DDFEA9DA549E803C98CCF059E8CA6	F351C0D0FAFF9B264956F0AA49735491CAD5C438314BA64409B1880F264E5B7B
Chrome Cache Entry: 131	SVG Scalable Vector Graphics image	DD3F89BA65C6149AB84C5D6BFDEEBAEA	6434E0FCA135A582C3232D4991D6EA3D31F58C24	EAFF6FCBB1CD09AFDA8669C5B637B7F6D107D48F04562FAB6383B31FEEE2E6F0
Chrome Cache Entry: 132	ASCII text, with very long lines (65536), with no line terminators	AF5DC9328EBAABC39370D87451BDFB18	FBC38859F1008CD67B3D20A5C06F76992FE8985D	B75EDD37E676F2CDF6B222D88CD0D123BE298A30847C75AB97B3B1622744E97A
Chrome Cache Entry: 133	ASCII text, with very long lines (65536), with no line terminators	1BC48E3784D51A958F13B9123AE3EDBA	54471B21B524931A54A1810223576D76E95CB138	448F72393579899E533628708C212DE2043FC243740E7BBDC904A39BDAD20DD9
Chrome Cache Entry: 134	ASCII text, with very long lines (20978), with no line terminators	69F8FD18A008C9F2CB1B71A94CF6E851	1E4476DF74072D96C0A4B3524E1A80E37AC446C0	148B8E760FD21CB124E30413B7753C11FBEB0590A06FF2B126C3AB565CC66E98
Chrome Cache Entry: 135	ASCII text, with very long lines (65536), with no line terminators	912D2130BD259F4DC24DAF76BE7FD5C7	96F5420715B82A2565864B8E57B92C0C5AE57EE1	37C638F57EBA0FF717FB074B373E8A3ABD8D537786B5B8AE824C60EBAE444918
Chrome Cache Entry: 136	ASCII text, with very long lines (64957), with CRLF, LF line terminators	8183598805341BFFF2740D6EED9A2EF1	A76413E31E0393BC147046FE67BB0FC92B302A86	10A0B184FB29602FB631497022DFBBBEA699802D45A71B12F5B535AEDA5DADF2
Chrome Cache Entry: 137	ASCII text, with very long lines (65536), with no line terminators	5787FCA6C66BE9FD9B83623E7635ED3C	A87DA96076A047D9E5BF0C4669C27CA984A195CE	2055EE54EEF36D2C5570E6CB2FEBD6E4A41E946ADF8E30DEDBD0BA6B38FF5BDC
Chrome Cache Entry: 138	ASCII text, with very long lines (771), with no line terminators	740AB27F1AF9A1E5AFC2B85BDB392A7A	40F115FB83C4C670C4AFA4E021F1A357587997F5	F55C1AEA48174384D171024BF7F13402F9F264019F895A67C9090A021FD7C38D
Chrome Cache Entry: 139	SVG Scalable Vector Graphics image	0F1CEC4B55968474443A410EF1795B2A	5B7B4C094669D1400606643A515EC6DA49BAF2A5	3013374AFE506D6A2EC7AAECED50578C94F094D43F883A72281D0ED55F316109
Chrome Cache Entry: 140	ASCII text	3D4540DAD0B06083E40479557E5848DA	C3F5E1983A043A333C2E937A037D808A9E1BE775	3789A58E0A25310C63553D58D72A4F4059476D5D08A7504E96CFB1D38D9AEF53
Chrome Cache Entry: 141	SVG Scalable Vector Graphics image	00C8B3416D8EEB1D56215C360614DFA0	540E7E87B568D0D2AD9753FF7B8AE0FCFEBA6CE1	814FAA809056381B7627A1856C717471AA415E91ECFFD5ADBA3FF75157F321E5
Chrome Cache Entry: 142	ASCII text, with CRLF line terminators	6804C4E377A65E8D110018A28B97C035	07CA294F77F622A072A5B2CE1C2C14C3627A389F	3B271325E90DDB188A858500B4939D6D4BBC0E28720DA2C486266704C715A8DB
Chrome Cache Entry: 143	ASCII text, with very long lines (65536), with no line terminators	2ED36710D043B152362ECD20F619B115	60E46BD6279546C46EA03D5BAE18F89F0B26CC80	93FE7523108B428A6AA90A0E4D0970C6819EC90560293E30F757D1C675B73049
Chrome Cache Entry: 144	ASCII text, with very long lines (65536), with no line terminators	AF5DC9328EBAABC39370D87451BDFB18	FBC38859F1008CD67B3D20A5C06F76992FE8985D	B75EDD37E676F2CDF6B222D88CD0D123BE298A30847C75AB97B3B1622744E97A
Chrome Cache Entry: 145	ASCII text, with very long lines (65158)	3D88DD88297C53ABCC71FAEB0173EB1B	2721D94B06F2F698CAB1950F2B7F113FC7DE8A1D	170BEA89FDA7A1C27364A44DB0C0B745E0002C0F4E3E8B59F66CB30AD0BF047F
Chrome Cache Entry: 146	ASCII text, with very long lines (36378), with no line terminators	399797AB55DE35D0EF471DA9F708B2FB	59B15D2A860497C9BFF1B6A367D72B5C49648D47	461B47439D36AC6A2A0EFEAD785DE41705D9B37A36CC2A3622F395EBE3215566
Chrome Cache Entry: 147	SVG Scalable Vector Graphics image	A28A1CAE64528512D1684BF44A6C1F91	C94072A684B92B928AAE3C79BC6E5EDACD00B68D	01A4C3E58FAE39C84B5F9C6901E5C88B5F676DE0F4FB7D4F3CD44442A34F7CC8
Chrome Cache Entry: 148	ASCII text, with very long lines (19939), with CRLF line terminators	7F4CE5DE222CB4D83B4541E19B4CEEB6	60B2FC2BC042FC6831DBF47D115443CD94888690	58BA95FF001C45ACE69724E41A0507A6E5E8CE0729EA6BAFB81CE1EAF01E4E13
Chrome Cache Entry: 149	ASCII text, with very long lines (65536), with no line terminators	912D2130BD259F4DC24DAF76BE7FD5C7	96F5420715B82A2565864B8E57B92C0C5AE57EE1	37C638F57EBA0FF717FB074B373E8A3ABD8D537786B5B8AE824C60EBAE444918
Chrome Cache Entry: 150	ASCII text, with very long lines (65196)	D3C192776CF445925568C40ED18B155E	02DE7165092644634E7106165200F3673D3D821B	C55384D439292C77BA6A0826E2544A204AE51CA8E4FB5A7A5962602F88E60BB4
Chrome Cache Entry: 151	ASCII text, with very long lines (17772), with no line terminators	B70C4593BF34728D4CCA4386D9F6F63F	EBF05EC99EC8FBC9005EE4F7758335DA29E2A75E	D4F4ACA4B54FA80811575B5A2113206B2DF02C15408C6E5009A17FF87354730D
Chrome Cache Entry: 152	SVG Scalable Vector Graphics image	DD3F89BA65C6149AB84C5D6BFDEEBAEA	6434E0FCA135A582C3232D4991D6EA3D31F58C24	EAFF6FCBB1CD09AFDA8669C5B637B7F6D107D48F04562FAB6383B31FEEE2E6F0
Chrome Cache Entry: 153	ASCII text, with very long lines (65536), with no line terminators	65A0BA37DA90D6E8F24006DC373458FF	F0B072AF30C506975AC713E561CC43DA62FCF9FE	D1FF92B9BB7425A0E6CB343AD637B3CAB67FC594014B86F1B09DC882933B593F
Chrome Cache Entry: 154	JSON data	150C8ECA614768DFF3A55738AFB7BE97	FB4C729CD026E29099D55358A62DA57C759AB3DA	33616E3D875830E08502E83557274867C71295A4B3AD5C6F1DA3BFF1E115D343
Chrome Cache Entry: 155	ASCII text, with very long lines (738), with no line terminators	0B14EE42C0BEA158B6DEEE7224CE9973	D18B5196AA290030CB2F5DB673F485C3625B254D	ABF0F71300A843A73CB3950A39C0CE93311E0019C89F02805020A3A462B7ED58
Chrome Cache Entry: 156	ASCII text, with very long lines (65536), with no line terminators	2ED36710D043B152362ECD20F619B115	60E46BD6279546C46EA03D5BAE18F89F0B26CC80	93FE7523108B428A6AA90A0E4D0970C6819EC90560293E30F757D1C675B73049
Chrome Cache Entry: 157	SVG Scalable Vector Graphics image	0F1CEC4B55968474443A410EF1795B2A	5B7B4C094669D1400606643A515EC6DA49BAF2A5	3013374AFE506D6A2EC7AAECED50578C94F094D43F883A72281D0ED55F316109
Chrome Cache Entry: 158	ASCII text, with very long lines (65196)	D3C192776CF445925568C40ED18B155E	02DE7165092644634E7106165200F3673D3D821B	C55384D439292C77BA6A0826E2544A204AE51CA8E4FB5A7A5962602F88E60BB4
Chrome Cache Entry: 159	Unicode text, UTF-8 text, with very long lines (43878), with NEL line terminators	93A2AEA230D421D550375C528B22583E	E8D88B00DB1C30510928A7C6618F0F7CFFA9B4C2	54E832663426C696B1F603379026E5E15720E8C812BBBC60D63AA2AD8A479F75
Chrome Cache Entry: 160	ASCII text, with very long lines (38832), with no line terminators	5886F5756BE17AC8CC4103572F1E27A3	F8E52D554B1063AF1813A17CBEADA84D9910F00C	5D0C67F391DC1712CF4ED7FB9400BDE2E11A66779FAF58BB427AE55387B91394
Chrome Cache Entry: 161	ASCII text, with very long lines (2356), with no line terminators	8CE53E2F88B67E05B5ABA3466DE8BE07	98A6016346A586057FDC84E3BCABECFEED43B59F	8E815DE943351493B2D3859DA2D958F71F6D7E46D7BA2AED29FB6D2BC0C2B08A
Chrome Cache Entry: 162	Unicode text, UTF-8 text, with very long lines (43878), with NEL line terminators	93A2AEA230D421D550375C528B22583E	E8D88B00DB1C30510928A7C6618F0F7CFFA9B4C2	54E832663426C696B1F603379026E5E15720E8C812BBBC60D63AA2AD8A479F75
Chrome Cache Entry: 163	JSON data	57860DD94DE850FFD2D7888C6D995747	ABC02D3310F939D9CCE0E13D612A22B4A085D138	6EEB669BE51373463D1F554956FCD427E86AE4093EAD1A3EC7B4378F6374F588
Chrome Cache Entry: 164	ASCII text, with very long lines (65536), with no line terminators	1BC48E3784D51A958F13B9123AE3EDBA	54471B21B524931A54A1810223576D76E95CB138	448F72393579899E533628708C212DE2043FC243740E7BBDC904A39BDAD20DD9
Chrome Cache Entry: 165	ASCII text, with very long lines (38832), with no line terminators	5886F5756BE17AC8CC4103572F1E27A3	F8E52D554B1063AF1813A17CBEADA84D9910F00C	5D0C67F391DC1712CF4ED7FB9400BDE2E11A66779FAF58BB427AE55387B91394
Chrome Cache Entry: 166	Web Open Font Format, TrueType, length 104724, version 1.0	79D483993BAF07E0BCDB8D1CAF00FD38	FA7DC9744C480483065929EB6C150138D65356F9	FB2C7414C3D78511067E9AD17A314B366D4B40106A792CC53433BB0EE54EBAB5
Chrome Cache Entry: 167	ASCII text, with very long lines (738), with no line terminators	0B14EE42C0BEA158B6DEEE7224CE9973	D18B5196AA290030CB2F5DB673F485C3625B254D	ABF0F71300A843A73CB3950A39C0CE93311E0019C89F02805020A3A462B7ED58
Chrome Cache Entry: 168	ASCII text, with very long lines (65536), with no line terminators	C1F9913565887F13621DBA8A07213EFB	8FB5175FA8BA29316870CA21958DCA4A0ED65027	A55A90621B24800E2F4C5D45F10765DE6EB453D441FEA832744BC3F5F6ED9EF9
Chrome Cache Entry: 169	ASCII text, with very long lines (20978), with no line terminators	69F8FD18A008C9F2CB1B71A94CF6E851	1E4476DF74072D96C0A4B3524E1A80E37AC446C0	148B8E760FD21CB124E30413B7753C11FBEB0590A06FF2B126C3AB565CC66E98
Chrome Cache Entry: 170	ASCII text, with very long lines (65536), with no line terminators	65A0BA37DA90D6E8F24006DC373458FF	F0B072AF30C506975AC713E561CC43DA62FCF9FE	D1FF92B9BB7425A0E6CB343AD637B3CAB67FC594014B86F1B09DC882933B593F
Chrome Cache Entry: 171	ASCII text, with very long lines (65536), with no line terminators	01032D20556F14081AF12C28B890E54C	8410D163DC8AB84FD73EC736FED7553C28F2816F	388FCE5AE601D53754E1AB68FA8D40D0DDFE9802D3C851609F6C994956E424A7
Chrome Cache Entry: 172	ASCII text, with CRLF line terminators	6804C4E377A65E8D110018A28B97C035	07CA294F77F622A072A5B2CE1C2C14C3627A389F	3B271325E90DDB188A858500B4939D6D4BBC0E28720DA2C486266704C715A8DB
Chrome Cache Entry: 173	ASCII text	C05A503012C2900CD52DD14D9F60702F	D5741CB0A76F141EB2639C5841F6CCA227C67F21	A016198F2DE70D23ED6746CA3E1D13DF01F6883C363658F8C3308BCC544143AE
Chrome Cache Entry: 174	ASCII text, with very long lines (65536), with no line terminators	C1F9913565887F13621DBA8A07213EFB	8FB5175FA8BA29316870CA21958DCA4A0ED65027	A55A90621B24800E2F4C5D45F10765DE6EB453D441FEA832744BC3F5F6ED9EF9
Chrome Cache Entry: 175	Unicode text, UTF-8 text, with very long lines (15109), with CRLF line terminators	BC5E72E8CE083D46ADB43848B3E75434	8E8EC43AF69CF3D5D7AA2C507A443893C1C77BB5	4626C0FC01A26A8061936336C4A9F252B78C0272CE6BD1D4EE849985807355CE
Chrome Cache Entry: 176	ASCII text, with very long lines (56224), with no line terminators	DD7149363C2632C6FF506908D185E210	C2E161E38D3DDFEA9DA549E803C98CCF059E8CA6	F351C0D0FAFF9B264956F0AA49735491CAD5C438314BA64409B1880F264E5B7B
Chrome Cache Entry: 177	HTML document, ASCII text, with very long lines (17251)	003B7D0DF9ACDA35108B2604B4E5D116	06D6B224CE404B5E4F2BFFF1291633C9D12B3A24	6482382E5DED46CCFE3B2A5E3CF201ED31C118AA9440A8A8C28AAE314FCB1A06
Chrome Cache Entry: 178	ASCII text, with very long lines (771), with no line terminators	740AB27F1AF9A1E5AFC2B85BDB392A7A	40F115FB83C4C670C4AFA4E021F1A357587997F5	F55C1AEA48174384D171024BF7F13402F9F264019F895A67C9090A021FD7C38D
Chrome Cache Entry: 179	SVG Scalable Vector Graphics image	00C8B3416D8EEB1D56215C360614DFA0	540E7E87B568D0D2AD9753FF7B8AE0FCFEBA6CE1	814FAA809056381B7627A1856C717471AA415E91ECFFD5ADBA3FF75157F321E5
Chrome Cache Entry: 180	JSON data	57860DD94DE850FFD2D7888C6D995747	ABC02D3310F939D9CCE0E13D612A22B4A085D138	6EEB669BE51373463D1F554956FCD427E86AE4093EAD1A3EC7B4378F6374F588
Chrome Cache Entry: 181	Unicode text, UTF-8 text, with very long lines (15109), with CRLF line terminators	BC5E72E8CE083D46ADB43848B3E75434	8E8EC43AF69CF3D5D7AA2C507A443893C1C77BB5	4626C0FC01A26A8061936336C4A9F252B78C0272CE6BD1D4EE849985807355CE
Chrome Cache Entry: 182	ASCII text, with very long lines (65536), with no line terminators	01032D20556F14081AF12C28B890E54C	8410D163DC8AB84FD73EC736FED7553C28F2816F	388FCE5AE601D53754E1AB68FA8D40D0DDFE9802D3C851609F6C994956E424A7
Chrome Cache Entry: 183	ASCII text, with very long lines (65467)	3F54E02ECF800724A9E3B135D2A95191	17251F6DD74987E4D9B2617ACE9D4DEAC0AECF38	DFFF0B3ED5F34C51136CF0D001CA84DD2D3B7A3F96603B8C6A800E5404C4E852
Chrome Cache Entry: 184	ASCII text, with very long lines (65158)	3D88DD88297C53ABCC71FAEB0173EB1B	2721D94B06F2F698CAB1950F2B7F113FC7DE8A1D	170BEA89FDA7A1C27364A44DB0C0B745E0002C0F4E3E8B59F66CB30AD0BF047F
Chrome Cache Entry: 185	ASCII text, with very long lines (17772), with no line terminators	B70C4593BF34728D4CCA4386D9F6F63F	EBF05EC99EC8FBC9005EE4F7758335DA29E2A75E	D4F4ACA4B54FA80811575B5A2113206B2DF02C15408C6E5009A17FF87354730D
Chrome Cache Entry: 186	ASCII text, with very long lines (65536), with no line terminators	D464356A2046D5D24A8F9A8B484F0C3E	71DA639BD15C2A063C0EE7982473DE49684280CB	7DAB4724C550D209DE68E912144ECBA57A87839EDC554C05089BF9DC1043F80A
Chrome Cache Entry: 187	ASCII text, with very long lines (65536), with no line terminators	9671E1EB7537E97AD6DDF9679E4B7F5B	E378803DD7FEA0572A3EE5E7A2CD29B600149F81	D70EED0D6E418A88047320FC6901F388EACD41A01C36BDE81BCA0B4B835D63CC
Chrome Cache Entry: 188	ASCII text, with very long lines (65467)	3F54E02ECF800724A9E3B135D2A95191	17251F6DD74987E4D9B2617ACE9D4DEAC0AECF38	DFFF0B3ED5F34C51136CF0D001CA84DD2D3B7A3F96603B8C6A800E5404C4E852
Chrome Cache Entry: 189	ASCII text, with very long lines (41697)	A10635C5D0DDEB17A72D51F6AD263873	0C31770D9AC6A45DEC623B02EDE747BBD4F62375	45D5E94A4AF6D07F2598C00AFA64165BE73D1F5D13C219F45D478EA37815DC00
Chrome Cache Entry: 190	ASCII text, with very long lines (64957), with CRLF, LF line terminators	8183598805341BFFF2740D6EED9A2EF1	A76413E31E0393BC147046FE67BB0FC92B302A86	10A0B184FB29602FB631497022DFBBBEA699802D45A71B12F5B535AEDA5DADF2

HTML body with high number of embedded SVGs detected

Source: https://app.powerbi.com/view?r=eyJrIjoiZjY0Y2FhMzUtMzM0ZS00YjQ2LTk5NDQtNmUwY2M5MDRiNmNjIiwidCI6ImJkMWRiODMyLWYwY2QtNDRiNS04ZTNjLTYxMmNlY2NhMjQ4ZSJ9

HTTP Parser: Total embedded SVG size: 296694

Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1

Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: dinosaur-megalodon-8eae.squarespace.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /universal/styles-compressed/user-account-core-b6e8cafbf34b05da5c2b-min.en-US.css HTTP/1.1Host: assets.squarespace.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://dinosaur-megalodon-8eae.squarespace.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /@sqs/polyfiller/1.6/modern.js HTTP/1.1Host: assets.squarespace.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://dinosaur-megalodon-8eae.squarespace.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://dinosaur-megalodon-8eae.squarespace.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/vta/5c5a519771c10ba3470d8101/versioned-assets/1734634171682-RZF6JR6GWSGG409XDSTH/static.css HTTP/1.1Host: static1.squarespace.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://dinosaur-megalodon-8eae.squarespace.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/versioned-site-css/675bffea9281b6478ae50b81/0/5c5a519771c10ba3470d8101/675bffea9281b6478ae50ba2/1596/site.css HTTP/1.1Host: static1.squarespace.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://dinosaur-megalodon-8eae.squarespace.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /@sqs/polyfiller/1.6/modern.js HTTP/1.1Host: assets.squarespace.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /universal/scripts-compressed/extract-css-runtime-c53402e169a8bb53259f-min.en-US.js HTTP/1.1Host: assets.squarespace.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://dinosaur-megalodon-8eae.squarespace.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://dinosaur-megalodon-8eae.squarespace.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /universal/scripts-compressed/extract-css-runtime-c53402e169a8bb53259f-min.en-US.js HTTP/1.1Host: assets.squarespace.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/vta/5c5a519771c10ba3470d8101/scripts/site-bundle.3f54e02ecf800724a9e3b135d2a95191.js HTTP/1.1Host: static1.squarespace.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://dinosaur-megalodon-8eae.squarespace.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /view?r=eyJrIjoiZjY0Y2FhMzUtMzM0ZS00YjQ2LTk5NDQtNmUwY2M5MDRiNmNjIiwidCI6ImJkMWRiODMyLWYwY2QtNDRiNS04ZTNjLTYxMmNlY2NhMjQ4ZSJ9 HTTP/1.1Host: app.powerbi.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: documentReferer: https://dinosaur-megalodon-8eae.squarespace.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /13.0.24766.39/scripts/hash-manifest.js HTTP/1.1Host: app.powerbi.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://app.powerbi.com/view?r=eyJrIjoiZjY0Y2FhMzUtMzM0ZS00YjQ2LTk5NDQtNmUwY2M5MDRiNmNjIiwidCI6ImJkMWRiODMyLWYwY2QtNDRiNS04ZTNjLTYxMmNlY2NhMjQ4ZSJ9Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: WFESessionId=972aee4b-cffa-4e94-8362-2931a6a75d42; ARRAffinity=746146f9b8a568138e0f8e8d19178ca6868557dc4149a92ed430f901c8a2c233; ARRAffinitySameSite=746146f9b8a568138e0f8e8d19178ca6868557dc4149a92ed430f901c8a2c233
Source: global traffic	HTTP traffic detected: GET /static/vta/5c5a519771c10ba3470d8101/scripts/site-bundle.3f54e02ecf800724a9e3b135d2a95191.js HTTP/1.1Host: static1.squarespace.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /13.0.24766.39/scripts/hash-manifest.js HTTP/1.1Host: app.powerbi.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ARRAffinity=746146f9b8a568138e0f8e8d19178ca6868557dc4149a92ed430f901c8a2c233; ARRAffinitySameSite=746146f9b8a568138e0f8e8d19178ca6868557dc4149a92ed430f901c8a2c233
Source: global traffic	HTTP traffic detected: GET /images/PowerBI_Favicon.ico HTTP/1.1Host: app.powerbi.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://app.powerbi.com/view?r=eyJrIjoiZjY0Y2FhMzUtMzM0ZS00YjQ2LTk5NDQtNmUwY2M5MDRiNmNjIiwidCI6ImJkMWRiODMyLWYwY2QtNDRiNS04ZTNjLTYxMmNlY2NhMjQ4ZSJ9Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: WFESessionId=972aee4b-cffa-4e94-8362-2931a6a75d42; ARRAffinity=746146f9b8a568138e0f8e8d19178ca6868557dc4149a92ed430f901c8a2c233; ARRAffinitySameSite=746146f9b8a568138e0f8e8d19178ca6868557dc4149a92ed430f901c8a2c233; ai_user=iBBc4hq+kEwJXmZGxQIhgk\|2024-12-22T01:24:33.087Z; ai_session=TBsbv6KiNaAT2b8O2/rAhB\|1734830673092\|1734830673092
Source: global traffic	HTTP traffic detected: GET /approvedResources.json HTTP/1.1Host: pbivisuals.powerbi.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: application/json, text/plain, /sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Origin: https://app.powerbi.comSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://app.powerbi.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/PowerBI_Favicon.ico HTTP/1.1Host: app.powerbi.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ARRAffinity=746146f9b8a568138e0f8e8d19178ca6868557dc4149a92ed430f901c8a2c233; ARRAffinitySameSite=746146f9b8a568138e0f8e8d19178ca6868557dc4149a92ed430f901c8a2c233; ai_user=iBBc4hq+kEwJXmZGxQIhgk\|2024-12-22T01:24:33.087Z; ai_session=TBsbv6KiNaAT2b8O2/rAhB\|1734830673092\|1734830673092
Source: global traffic	HTTP traffic detected: GET /approvedResources.json HTTP/1.1Host: pbivisuals.powerbi.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /13.0.24766.39/sharedresources/BaseThemes/CY24SU10.json HTTP/1.1Host: app.powerbi.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0RequestId: 9e44789b-b013-3149-c73a-596610f72775User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36ActivityId: eba37318-8a38-bd4f-9f39-7794207bbe2bAccept: application/json, text/plain, /X-PowerBI-ResourceKey: f64caa35-334e-4b46-9944-6e0cc904b6ccsec-ch-ua-platform: "Windows"Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://app.powerbi.com/view?r=eyJrIjoiZjY0Y2FhMzUtMzM0ZS00YjQ2LTk5NDQtNmUwY2M5MDRiNmNjIiwidCI6ImJkMWRiODMyLWYwY2QtNDRiNS04ZTNjLTYxMmNlY2NhMjQ4ZSJ9Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: WFESessionId=972aee4b-cffa-4e94-8362-2931a6a75d42; ARRAffinity=746146f9b8a568138e0f8e8d19178ca6868557dc4149a92ed430f901c8a2c233; ARRAffinitySameSite=746146f9b8a568138e0f8e8d19178ca6868557dc4149a92ed430f901c8a2c233; ai_user=iBBc4hq+kEwJXmZGxQIhgk\|2024-12-22T01:24:33.087Z; ai_session=TBsbv6KiNaAT2b8O2/rAhB\|1734830673092\|1734830673092
Source: global traffic	HTTP traffic detected: GET /13.0.24766.39/sharedresources/BaseThemes/CY24SU10.json HTTP/1.1Host: app.powerbi.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ARRAffinity=746146f9b8a568138e0f8e8d19178ca6868557dc4149a92ed430f901c8a2c233; ARRAffinitySameSite=746146f9b8a568138e0f8e8d19178ca6868557dc4149a92ed430f901c8a2c233; ai_user=iBBc4hq+kEwJXmZGxQIhgk\|2024-12-22T01:24:33.087Z; ai_session=TBsbv6KiNaAT2b8O2/rAhB\|1734830673092\|1734830673092
Source: global traffic	HTTP traffic detected: GET /visuals.json HTTP/1.1Host: appsource.powerbi.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: application/json, text/plain, /sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Origin: https://app.powerbi.comSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://app.powerbi.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /visuals.json HTTP/1.1Host: appsource.powerbi.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9

Source: chromecache_177.2.dr

String found in binary or memory: <html xmlns:og="http://opengraphprotocol.org/schema/" xmlns:fb="http://www.facebook.com/2008/fbml" lang="en-US" > equals www.facebook.com (Facebook)

Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: dinosaur-megalodon-8eae.squarespace.com
Source: global traffic	DNS traffic detected: DNS query: images.squarespace-cdn.com
Source: global traffic	DNS traffic detected: DNS query: assets.squarespace.com
Source: global traffic	DNS traffic detected: DNS query: static1.squarespace.com
Source: global traffic	DNS traffic detected: DNS query: app.powerbi.com
Source: global traffic	DNS traffic detected: DNS query: content.powerapps.com
Source: global traffic	DNS traffic detected: DNS query: dc.services.visualstudio.com
Source: global traffic	DNS traffic detected: DNS query: wabi-uk-south-c-primary-api.analysis.windows.net
Source: global traffic	DNS traffic detected: DNS query: pbivisuals.powerbi.com
Source: global traffic	DNS traffic detected: DNS query: appsource.powerbi.com
Source: global traffic	DNS traffic detected: DNS query: login.365link.tech
Source: global traffic	DNS traffic detected: DNS query: google.com

Source: chromecache_142.2.dr, chromecache_172.2.dr	String found in binary or memory: http://github.com/jquery/globalize
Source: chromecache_184.2.dr, chromecache_145.2.dr	String found in binary or memory: http://interactjs.io/docs/#autoscroll
Source: chromecache_184.2.dr, chromecache_145.2.dr	String found in binary or memory: http://interactjs.io/docs/#resize-square
Source: chromecache_184.2.dr, chromecache_145.2.dr	String found in binary or memory: http://interactjs.io/docs/inertia
Source: chromecache_184.2.dr, chromecache_145.2.dr	String found in binary or memory: http://interactjs.io/docs/restriction
Source: chromecache_184.2.dr, chromecache_145.2.dr	String found in binary or memory: http://interactjs.io/docs/snapping
Source: chromecache_142.2.dr, chromecache_172.2.dr, chromecache_184.2.dr, chromecache_145.2.dr	String found in binary or memory: http://jquery.org/license
Source: chromecache_148.2.dr	String found in binary or memory: http://jqueryui.com
Source: chromecache_148.2.dr	String found in binary or memory: http://jqueryui.com/themeroller/?scope=&folderName=base&cornerRadiusShadow=8px&offsetLeftShadow=0px&
Source: chromecache_184.2.dr, chromecache_145.2.dr	String found in binary or memory: http://jscompress.com/
Source: chromecache_177.2.dr	String found in binary or memory: http://opengraphprotocol.org/schema/
Source: chromecache_184.2.dr, chromecache_145.2.dr	String found in binary or memory: http://underscorejs.org/LICENSE
Source: chromecache_181.2.dr, chromecache_175.2.dr	String found in binary or memory: http://wiki.jqueryui.com/Globalize
Source: chromecache_177.2.dr	String found in binary or memory: https://assets.squarespace.com/universal/default-favicon.ico
Source: chromecache_184.2.dr, chromecache_145.2.dr	String found in binary or memory: https://dev.azure.com/powerbi/PowerBIClients/_git/PowerBIClients/pullrequest/131629)
Source: chromecache_177.2.dr	String found in binary or memory: https://dinosaur-megalodon-8eae.squarespace.com
Source: chromecache_173.2.dr	String found in binary or memory: https://easings.net/en#easeOutExpo)
Source: chromecache_177.2.dr	String found in binary or memory: https://fonts.googleapis.com/css2?family=Roboto:ital
Source: chromecache_140.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOjCnqEu92Fr1Mu51TzBic-CsTKlA.woff2)
Source: chromecache_140.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOjCnqEu92Fr1Mu51TzBic0CsTKlA.woff2)
Source: chromecache_140.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOjCnqEu92Fr1Mu51TzBic1CsTKlA.woff2)
Source: chromecache_140.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOjCnqEu92Fr1Mu51TzBic2CsTKlA.woff2)
Source: chromecache_140.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOjCnqEu92Fr1Mu51TzBic3CsTKlA.woff2)
Source: chromecache_140.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOjCnqEu92Fr1Mu51TzBic5CsTKlA.woff2)
Source: chromecache_140.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOjCnqEu92Fr1Mu51TzBic6CsQ.woff2)
Source: chromecache_140.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOkCnqEu92Fr1Mu51xEIzIFKw.woff2)
Source: chromecache_140.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOkCnqEu92Fr1Mu51xFIzIFKw.woff2)
Source: chromecache_140.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOkCnqEu92Fr1Mu51xGIzIFKw.woff2)
Source: chromecache_140.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOkCnqEu92Fr1Mu51xHIzIFKw.woff2)
Source: chromecache_140.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOkCnqEu92Fr1Mu51xIIzI.woff2)
Source: chromecache_140.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOkCnqEu92Fr1Mu51xLIzIFKw.woff2)
Source: chromecache_140.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOkCnqEu92Fr1Mu51xMIzIFKw.woff2)
Source: chromecache_140.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmEU9fABc4EsA.woff2)
Source: chromecache_140.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmEU9fBBc4.woff2)
Source: chromecache_140.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmEU9fBxc4EsA.woff2)
Source: chromecache_140.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmEU9fCBc4EsA.woff2)
Source: chromecache_140.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmEU9fCRc4EsA.woff2)
Source: chromecache_140.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmEU9fChc4EsA.woff2)
Source: chromecache_140.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmEU9fCxc4EsA.woff2)
Source: chromecache_140.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfABc4EsA.woff2)
Source: chromecache_140.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfBBc4.woff2)
Source: chromecache_140.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfBxc4EsA.woff2)
Source: chromecache_140.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfCBc4EsA.woff2)
Source: chromecache_140.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfCRc4EsA.woff2)
Source: chromecache_140.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfChc4EsA.woff2)
Source: chromecache_140.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfCxc4EsA.woff2)
Source: chromecache_140.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu4WxKOzY.woff2)
Source: chromecache_140.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu4mxK.woff2)
Source: chromecache_140.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu5mxKOzY.woff2)
Source: chromecache_140.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu72xKOzY.woff2)
Source: chromecache_140.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu7GxKOzY.woff2)
Source: chromecache_140.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu7WxKOzY.woff2)
Source: chromecache_140.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu7mxKOzY.woff2)
Source: chromecache_184.2.dr, chromecache_145.2.dr	String found in binary or memory: https://github.com/gromo/jquery.scrollbar/
Source: chromecache_184.2.dr, chromecache_145.2.dr	String found in binary or memory: https://github.com/jquery/PEP
Source: chromecache_184.2.dr, chromecache_145.2.dr	String found in binary or memory: https://github.com/requirejs/requirejs/blob/master/LICENSE
Source: chromecache_162.2.dr, chromecache_159.2.dr	String found in binary or memory: https://github.com/zloirock/core-js
Source: chromecache_162.2.dr, chromecache_159.2.dr	String found in binary or memory: https://github.com/zloirock/core-js/blob/v3.26.0/LICENSE
Source: chromecache_177.2.dr	String found in binary or memory: https://images.squarespace-cdn.com
Source: chromecache_184.2.dr, chromecache_145.2.dr	String found in binary or memory: https://lodash.com/
Source: chromecache_184.2.dr, chromecache_145.2.dr	String found in binary or memory: https://lodash.com/license
Source: chromecache_184.2.dr, chromecache_145.2.dr	String found in binary or memory: https://npms.io/search?q=ponyfill.
Source: chromecache_184.2.dr, chromecache_145.2.dr	String found in binary or memory: https://openjsf.org/
Source: chromecache_184.2.dr, chromecache_145.2.dr	String found in binary or memory: https://raw.github.com/taye/interact.js/master/LICENSE
Source: chromecache_127.2.dr, chromecache_189.2.dr	String found in binary or memory: https://sourcemaps.squarespace.net/universal/scripts-compressed/sourcemaps/235e0d367207107d444f9fd17
Source: chromecache_177.2.dr	String found in binary or memory: https://static1.squarespace.com/static/vta/5c5a519771c10ba3470d8101/scripts/site-bundle.3f54e02ecf80
Source: chromecache_177.2.dr	String found in binary or memory: https://static1.squarespace.com/static/vta/5c5a519771c10ba3470d8101/versioned-assets/1734634171682-R

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49864
Source: unknown	Network traffic detected: HTTP traffic on port 49922 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49727 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49720 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49736 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49736
Source: unknown	Network traffic detected: HTTP traffic on port 49675 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49732
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49731
Source: unknown	Network traffic detected: HTTP traffic on port 49925 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49851
Source: unknown	Network traffic detected: HTTP traffic on port 49732 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49730
Source: unknown	Network traffic detected: HTTP traffic on port 49703 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49728 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49749 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49721 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49851 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49909 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49728
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49727
Source: unknown	Network traffic detected: HTTP traffic on port 49714 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49925
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49726
Source: unknown	Network traffic detected: HTTP traffic on port 49886 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49725
Source: unknown	Network traffic detected: HTTP traffic on port 49718 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49922
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49723
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49888
Source: unknown	Network traffic detected: HTTP traffic on port 49674 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49722
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49721
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49886
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49720
Source: unknown	Network traffic detected: HTTP traffic on port 49731 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49712 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49725 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49719 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49722 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49719
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49718
Source: unknown	Network traffic detected: HTTP traffic on port 49904 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49715 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49715
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49714
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49712
Source: unknown	Network traffic detected: HTTP traffic on port 49673 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49864 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49730 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49726 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49723 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49909
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49904
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49749
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49703
Source: unknown	Network traffic detected: HTTP traffic on port 49867 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49867
Source: unknown	Network traffic detected: HTTP traffic on port 49888 -> 443

Source: classification engine

Classification label: clean1.win@21/115@48/9

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps

Jump to behavior

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2116 --field-trial-handle=1876,i,14394039975335812045,10154006767898104271,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://dinosaur-megalodon-8eae.squarespace.com"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2116 --field-trial-handle=1876,i,14394039975335812045,10154006767898104271,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: Google Drive.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: YouTube.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Sheets.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Gmail.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Slides.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Docs.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe

Source: Window Recorder

Window detected: More than 3 window changes detected

Stores files to the Windows start menu directory

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk	Jump to behavior

ID:	1579388
Product:	CloudBasic
Start time:	02:22:57
Start date:	22.12.2024
Cookbook:	browseurl.jbs
System description:	Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
Architecture:	WINDOWS

Windows Analysis Report
https://dinosaur-megalodon-8eae.squarespace.com

Overview

General Information

Detection

Signatures

Classification

Signatures

Phishing

Networking

System Summary

Boot Survival

Screenshots

Behavior Graph

Network Map

Contacted Public IPs

Private

Contacted Domains

Contacted URLs

Windows Analysis Report https://dinosaur-megalodon-8eae.squarespace.com

Overview

General Information

Detection

Signatures

Classification

Signatures

Phishing

Networking

System Summary

Boot Survival

Screenshots

Behavior Graph

Network Map

Contacted Public IPs

Private

Contacted Domains

Contacted URLs

Windows Analysis Report
https://dinosaur-megalodon-8eae.squarespace.com