Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
wp-4033.html
|
HTML document, ASCII text, with CRLF line terminators
|
initial sample
|
||
|
Chrome Cache Entry: 100
|
Web Open Font Format (Version 2), TrueType, length 14344, version 1.0
|
downloaded
|
||
|
Chrome Cache Entry: 101
|
PNG image data, 950 x 950, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 96
|
PNG image data, 950 x 950, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 97
|
Web Open Font Format (Version 2), TrueType, length 16552, version 1.0
|
downloaded
|
||
|
Chrome Cache Entry: 98
|
ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 99
|
ASCII text
|
downloaded
|
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "C:\Users\user\Desktop\wp-4033.html"
|
||
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US
--service-sandbox-type=none --string-annotations=is-enterprise-managed=no --field-trial-handle=1852,i,1246780445846859488,14320660525965824350,262144
--variations-seed-version=20241208-180523.718000 --mojo-platform-channel-handle=2248 /prefetch:11
|
||
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=on_device_model.mojom.OnDeviceModelService
--lang=en-US --service-sandbox-type=on_device_model_execution --string-annotations=is-enterprise-managed=no --field-trial-handle=4228,i,1246780445846859488,14320660525965824350,262144
--variations-seed-version=20241208-180523.718000 --mojo-platform-channel-handle=4304 /prefetch:14
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
file:///C:/Users/user/Desktop/wp-4033.html
|
|||
|
https://res.public.onecdn.static.microsoft/creativeservice/2d863f0f-0fd5-72db-6971-f905df03ef53_3255140379518978990_128000000004796009_assets__image_1709055739600.jpg
|
184.30.26.134
|
||
|
https://chrome.cloudflare-dns.com/dns-query
|
162.159.61.3
|
||
|
https://tse1.mm.bing.net/th?id=OADD2.10239381745532_1JDRPDZH72BPX8C2U&pid=21.2&c=3&w=1080&h=1920&dynsize=1&qlt=90
|
150.171.27.10
|
||
|
https://assets.msn.com/weathermapdata/1/static/weather/Icons/MSIAWwA=/Condition/AAei6xJ.png
|
95.100.135.50
|
||
|
https://tse1.mm.bing.net/th?id=OADD2.10239400982061_1EHZVYH9FVJ5IHVOG&pid=21.2&c=3&w=1080&h=1920&dynsize=1&qlt=90
|
150.171.27.10
|
||
|
https://cxcs.microsoft.net/api/tips-content/de-ch/xml/tips?release=cobalt&environment=dashboard&resolutionType=merge
|
23.201.169.47
|
||
|
https://tse1.mm.bing.net/th?id=OADD2.10239400982062_1OH80Z91ZG0E7FIE6&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=1920&h=1080&dynsize=1&qlt=90
|
150.171.27.10
|
||
|
https://Mirror-H.xyz/
|
unknown
|
||
|
https://assets.msn.com/weathermapdata/1/static/weather/Icons/MSIAWwA=/Alert/Alert_SN_B.png
|
95.100.135.50
|
||
|
https://ecn.dev.virtualearth.net/REST/v1/Imagery/Map/RoadVibrant/40.7416,-73.9509/13?ms=266,192&ml=Basemap,OsmBuildings,TrafficFlow&key=AuK9Wj9_fIFeSA2BncPNlMXKaYsr9N1FuExVVA5dMSpJYQ8_Ga2AaeMqEE2MT2j6&c=de-ch&fmt=png&od=1&logo=n&da=ro&maxAge=1200&pushpin=40.741644,-73.950879;cls.f
|
23.199.50.102
|
||
|
https://browser.events.data.msn.cn/OneCollector/1.0?cors=true&content-type=application%2Fx-json-stream&client-id=NO_AUTH&client-version=1DS-Web-JS-3.2.8&apikey=c498711f02654edca8a715ca6e1cb4d4-dc31da17-845c-4cca-84e5-547d05dad708-6945&upload-time=1735043581053&w=0&anoncknm=al_app_anon&NoResponseBody=true
|
20.189.173.11
|
||
|
https://tse1.mm.bing.net/th?id=OADD2.10239381745531_14NMMGXOBD5ROU0L2&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=1920&h=1080&dynsize=1&qlt=90
|
150.171.27.10
|
||
|
https://tse1.mm.bing.net/th?id=OADD2.10239400907278_18Z8XATNERZPPW6AG&pid=21.2&c=3&w=1080&h=1920&dynsize=1&qlt=90
|
150.171.27.10
|
||
|
https://i.ibb.co/xzvcd1f/Cyb3r-Drag0nz-Team-1.png
|
91.134.9.160
|
||
|
https://tse1.mm.bing.net/th?id=OADD2.10239400907277_1XBKHGYGEB4DHBRDY&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=1920&h=1080&dynsize=1&qlt=90
|
150.171.27.10
|
There are 6 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
www.google.com
|
142.250.181.68
|
||
|
ax-0001.ax-msedge.net
|
150.171.27.10
|
||
|
i.ibb.co
|
91.134.9.160
|
||
|
srtb.msn.com
|
unknown
|
||
|
tse1.mm.bing.net
|
unknown
|
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
91.134.9.160
|
i.ibb.co
|
France
|
||
|
192.168.2.24
|
unknown
|
unknown
|
||
|
142.250.181.68
|
www.google.com
|
United States
|
||
|
91.134.9.159
|
unknown
|
France
|
DOM / HTML
|
URL
|
Malicious
|
|
|---|---|---|
|
file:///C:/Users/user/Desktop/wp-4033.html
|