Windows Analysis Report
https://2b071b590b23815710e03a579f8558c4.us-east-1.resend-links.com/CL0/https:%2F%2Fresearchrabbit.ai/1/01000194ff7908ce-75b81f61-987c-4988-9b49-119b46c8ae97-000000/NiU9oISNGBvg6t1AvKDzkpgFMLX2mGJotnSiNwF6JCQ=392

Overview

General Information

Sample URL:	https://2b071b590b23815710e03a579f8558c4.us-east-1.resend-links.com/CL0/https:%2F%2Fresearchrabbit.ai/1/01000194ff7908ce-75b81f61-987c-4988-9b49-119b46c8ae97-000000/NiU9oISNGBvg6t1AvKDzkpgFMLX2mGJotnS
Analysis ID:	1615147
Infos:

Detection

Score:	1
Range:	0 - 100
Confidence:	100%

Signatures

Detected non-DNS traffic on DNS port

Detected suspicious crossdomain redirect

Stores files to the Windows start menu directory

Classification

Signatures

Detected non-DNS traffic on DNS port

Source: global traffic

TCP traffic: 192.168.2.5:63450 -> 1.1.1.1:53

Detected suspicious crossdomain redirect

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

HTTP traffic: Redirect from: 2b071b590b23815710e03a579f8558c4.us-east-1.resend-links.com to https://researchrabbit.ai

Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1

Source: global traffic	HTTP traffic detected: GET /CL0/https:%2F%2Fresearchrabbit.ai/1/01000194ff7908ce-75b81f61-987c-4988-9b49-119b46c8ae97-000000/NiU9oISNGBvg6t1AvKDzkpgFMLX2mGJotnSiNwF6JCQ=392 HTTP/1.1Host: 2b071b590b23815710e03a579f8558c4.us-east-1.resend-links.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: researchrabbit.aiConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: www.researchrabbit.aiConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /content/v1/5dee82c56fcd7b0290640db5/149ef79f-93ed-43e6-a38a-a668a22ad73c/Research-Rabbit-Top-BG.png?format=1500w HTTP/1.1Host: images.squarespace-cdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.researchrabbit.ai/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /@sqs/polyfiller/1.6/modern.js HTTP/1.1Host: assets.squarespace.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.researchrabbit.aisec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.researchrabbit.ai/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/versioned-site-css/5dee82c56fcd7b0290640db5/267/5c5a519771c10ba3470d8101/5dee82c56fcd7b0290640dca/1611/site.css HTTP/1.1Host: static1.squarespace.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.researchrabbit.ai/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /embed.min.js HTTP/1.1Host: app.termly.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.researchrabbit.ai/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /content/v1/5dee82c56fcd7b0290640db5/3683aeff-de6f-4d89-9c1e-e1193688ab5f/footer-bg.png?format=1500w HTTP/1.1Host: images.squarespace-cdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.researchrabbit.ai/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /content/v1/5dee82c56fcd7b0290640db5/2d9c67bf-a7e9-4810-8948-45ce24546798/logo.png?format=1500w HTTP/1.1Host: images.squarespace-cdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.researchrabbit.ai/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /content/v1/5dee82c56fcd7b0290640db5/3683aeff-de6f-4d89-9c1e-e1193688ab5f/footer-bg.png?format=1500w HTTP/1.1Host: images.squarespace-cdn.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /@sqs/polyfiller/1.6/modern.js HTTP/1.1Host: assets.squarespace.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /content/v1/5dee82c56fcd7b0290640db5/149ef79f-93ed-43e6-a38a-a668a22ad73c/Research-Rabbit-Top-BG.png?format=1500w HTTP/1.1Host: images.squarespace-cdn.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/vta/5c5a519771c10ba3470d8101/versioned-assets/1739381320286-8FJE7NMLDZWANM5PXDLU/static.css HTTP/1.1Host: static1.squarespace.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.researchrabbit.ai/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /content/v1/5dee82c56fcd7b0290640db5/2d9c67bf-a7e9-4810-8948-45ce24546798/logo.png?format=1500w HTTP/1.1Host: images.squarespace-cdn.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /embed.min.js HTTP/1.1Host: app.termly.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /universal/scripts-compressed/extract-css-runtime-3d58e55fdbb2d1937b59-min.en-US.js HTTP/1.1Host: assets.squarespace.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.researchrabbit.aisec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.researchrabbit.ai/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /universal/scripts-compressed/extract-css-moment-js-vendor-c4d588d4255cd4c70fa3-min.en-US.js HTTP/1.1Host: assets.squarespace.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.researchrabbit.aisec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.researchrabbit.ai/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /universal/scripts-compressed/cldr-resource-pack-0c96ad3f9948c3a7b631-min.en-US.js HTTP/1.1Host: assets.squarespace.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.researchrabbit.aisec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.researchrabbit.ai/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /universal/scripts-compressed/extract-css-runtime-3d58e55fdbb2d1937b59-min.en-US.js HTTP/1.1Host: assets.squarespace.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /universal/scripts-compressed/cldr-resource-pack-0c96ad3f9948c3a7b631-min.en-US.js HTTP/1.1Host: assets.squarespace.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /universal/scripts-compressed/common-vendors-stable-2965e1fc774101038a7d-min.en-US.js HTTP/1.1Host: assets.squarespace.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.researchrabbit.aisec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.researchrabbit.ai/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /universal/scripts-compressed/common-vendors-8921de8f24d51c37e1bd-min.en-US.js HTTP/1.1Host: assets.squarespace.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.researchrabbit.aisec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.researchrabbit.ai/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /universal/scripts-compressed/extract-css-moment-js-vendor-c4d588d4255cd4c70fa3-min.en-US.js HTTP/1.1Host: assets.squarespace.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /universal/scripts-compressed/common-27143f3e7b490ad9250e-min.en-US.js HTTP/1.1Host: assets.squarespace.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.researchrabbit.aisec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.researchrabbit.ai/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /universal/scripts-compressed/common-vendors-stable-2965e1fc774101038a7d-min.en-US.js HTTP/1.1Host: assets.squarespace.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /universal/scripts-compressed/common-vendors-8921de8f24d51c37e1bd-min.en-US.js HTTP/1.1Host: assets.squarespace.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /universal/scripts-compressed/performance-daea797f26ec33aee348-min.en-US.js HTTP/1.1Host: assets.squarespace.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.researchrabbit.aisec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.researchrabbit.ai/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /universal/scripts-compressed/performance-daea797f26ec33aee348-min.en-US.js HTTP/1.1Host: assets.squarespace.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /universal/scripts-compressed/common-27143f3e7b490ad9250e-min.en-US.js HTTP/1.1Host: assets.squarespace.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9

Source: chromecache_100.2.dr, chromecache_78.2.dr

String found in binary or memory: return f}OF.F="internal.enableAutoEventOnTimer";var Yb=wa(["data-gtm-yt-inspected-"]),QF=["www.youtube.com","www.youtube-nocookie.com"],RF,SF=!1; equals www.youtube.com (Youtube)

Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: 2b071b590b23815710e03a579f8558c4.us-east-1.resend-links.com
Source: global traffic	DNS traffic detected: DNS query: researchrabbit.ai
Source: global traffic	DNS traffic detected: DNS query: www.researchrabbit.ai
Source: global traffic	DNS traffic detected: DNS query: images.squarespace-cdn.com
Source: global traffic	DNS traffic detected: DNS query: assets.squarespace.com
Source: global traffic	DNS traffic detected: DNS query: static1.squarespace.com
Source: global traffic	DNS traffic detected: DNS query: app.termly.io

Source: chromecache_86.2.dr, chromecache_97.2.dr	String found in binary or memory: http://brm.io/matter-js/
Source: chromecache_86.2.dr, chromecache_97.2.dr	String found in binary or memory: http://feross.org
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: http://id.wikisource.org/wiki/Pedoman_Umum_Ejaan_Bahasa_Indonesia_yang_Disempurnakan
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: http://praleska.pro/
Source: chromecache_86.2.dr, chromecache_97.2.dr	String found in binary or memory: http://underscorejs.org/LICENSE
Source: chromecache_85.2.dr, chromecache_91.2.dr	String found in binary or memory: http://yuilibrary.com/license/
Source: chromecache_100.2.dr, chromecache_78.2.dr	String found in binary or memory: https://cct.google/taggy/agent.js
Source: chromecache_94.2.dr, chromecache_74.2.dr	String found in binary or memory: https://feross.org
Source: chromecache_84.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqW106F15M.woff2)
Source: chromecache_84.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWt06F15M.woff2)
Source: chromecache_84.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWtE6F15M.woff2)
Source: chromecache_84.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWtU6F15M.woff2)
Source: chromecache_84.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWtk6F15M.woff2)
Source: chromecache_84.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWu06F15M.woff2)
Source: chromecache_84.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2)
Source: chromecache_84.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuk6F15M.woff2)
Source: chromecache_84.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWvU6F15M.woff2)
Source: chromecache_84.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWxU6F15M.woff2)
Source: chromecache_84.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2)
Source: chromecache_84.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS2mu1aB.woff2)
Source: chromecache_84.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSCmu1aB.woff2)
Source: chromecache_84.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2)
Source: chromecache_84.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSKmu1aB.woff2)
Source: chromecache_84.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSOmu1aB.woff2)
Source: chromecache_84.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSumu1aB.woff2)
Source: chromecache_84.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSymu1aB.woff2)
Source: chromecache_84.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTUGmu1aB.woff2)
Source: chromecache_84.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTVOmu1aB.woff2)
Source: chromecache_84.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/poppins/v22/pxiByp8kv8JHgFVrLCz7Z1JlFc-K.woff2)
Source: chromecache_84.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/poppins/v22/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2)
Source: chromecache_84.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/poppins/v22/pxiByp8kv8JHgFVrLEj6Z1JlFc-K.woff2)
Source: chromecache_84.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/poppins/v22/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2)
Source: chromecache_84.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/poppins/v22/pxiByp8kv8JHgFVrLGT9Z1JlFc-K.woff2)
Source: chromecache_84.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/poppins/v22/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2)
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/Amine27
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/B0k0
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/BYK
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/DevelopmentIL
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/ElFadiliY
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/IrakliJani
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/JanisE
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/Kaushik1987
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/MadMG
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/Manfre98
Source: chromecache_92.2.dr	String found in binary or memory: https://github.com/Oire
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/Quenty31
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/ShahramMebashar
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/TalAter
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/Viktorminator
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/WikiDiscoverer
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/ZackVision
Source: chromecache_92.2.dr	String found in binary or memory: https://github.com/abdelsaid
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/adambrunner
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/alesma
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/aliem
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/amaranthrose
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/andela-batolagbe
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/andrewhood125
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/anthonylau
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/armendarabyan
Source: chromecache_97.2.dr	String found in binary or memory: https://github.com/ashima/webgl-noise
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/ashwoolford
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/askpt
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/atamyratabdy
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/avaly
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/bangnk
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/baryon
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/ben-lin
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/bkyceh
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/bleadof
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/bmarkovic
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/boyaq
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/bustta
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/caio-ribeiro-pereira
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/cepem
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/chienkira
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/chriscartlidge
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/chrisgedrim
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/chrisrodz
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/chyngyz
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/colindean
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/crnjakovic
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/demidov91
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/ebraminio
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/eillarra
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/erhangundogan
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/estellecomment
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/evoL
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/fadsel
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/flakerimi
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/floydpink
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/forabi
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/frontyard
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/gaspard
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/gholadr
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/gurdiga
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/hagmandan
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/harpreetkhalsagtbit
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/hehachris
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/hinrik
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/ibnesayeed
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/jalex79
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/jarcoal
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/jatinag22
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/javkhaanj7
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/jawish
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/jbleduigou
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/jcfranco
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/jfroffice
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/johnideal
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/jonashdown
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/jonbca
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/jorisroling
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/joshbrooks
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/juanghurtado
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/julionc
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/k2s
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/kalehv
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/karamell
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/kaushikgandhi
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/kcthota
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/kikoanis
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/kraz
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/kruyvanna
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/kwisatz
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/kyungw00k
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/lantip
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/le0tan
Source: chromecache_86.2.dr, chromecache_97.2.dr	String found in binary or memory: https://github.com/liabru/matter-wrap
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/lluchs
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/lukemcgregor
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/madhenry
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/majdal
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/marobo
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/matthewdeeco
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/mayanksinghal
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/mechuwind
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/mehiel
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/mergehez
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/middagj
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/miestasmia
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/mik01aj
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/milan-j
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/miodragnikac
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/mirontoli
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/mmozuras
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/mrbase
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/muminoff
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/mweimerskirch
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/naderio
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/narainsagar
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/nicolaidavies
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/nostalgiaz
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/noureddinem
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/nurlan
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/nusretparlak
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/oerd
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/orif-jr
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/passatgt
Source: chromecache_92.2.dr	String found in binary or memory: https://github.com/petrbela
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/ragnar123
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/ragulka
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/rajeevnaikte
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/rasidre
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/rexxars
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/robgallen
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/robin0van0der0v
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/ryangreaves
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/ryanhart2
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/sakarisson
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/sampathsris
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/sedovsek
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/sigurdga
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/sirn
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/skakri
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/skfd
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/socketpair
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/soniasimoes
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/sschueller
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/stephenramthun
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/suupic
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/suvash
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/techdimension
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/thanyawzinmin
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/tk120404
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/tomer
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/topchiyev
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/tyok
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/ulmus
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/uu109
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/vajradog
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/vnathalye
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/weldan
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/wernerm
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/xfh
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/xsoh
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/zemlanin
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/zenozeng
Source: chromecache_90.2.dr, chromecache_79.2.dr	String found in binary or memory: https://github.com/zloirock/core-js
Source: chromecache_90.2.dr, chromecache_79.2.dr	String found in binary or memory: https://github.com/zloirock/core-js/blob/v3.26.0/LICENSE
Source: chromecache_86.2.dr, chromecache_97.2.dr	String found in binary or memory: https://lodash.com/
Source: chromecache_86.2.dr, chromecache_97.2.dr	String found in binary or memory: https://lodash.com/license
Source: chromecache_86.2.dr, chromecache_97.2.dr	String found in binary or memory: https://openjsf.org/
Source: chromecache_100.2.dr, chromecache_78.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com
Source: chromecache_100.2.dr, chromecache_78.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=tcfe
Source: chromecache_85.2.dr, chromecache_91.2.dr	String found in binary or memory: https://sourcemaps.squarespace.net/universal/scripts-compressed/sourcemaps/001a119a2c2814fb0add8d161
Source: chromecache_76.2.dr, chromecache_101.2.dr	String found in binary or memory: https://sourcemaps.squarespace.net/universal/scripts-compressed/sourcemaps/15b49499c72090b2ea2c4c5b5
Source: chromecache_94.2.dr, chromecache_74.2.dr	String found in binary or memory: https://sourcemaps.squarespace.net/universal/scripts-compressed/sourcemaps/44ecbafb6c835dac203bf27df
Source: chromecache_82.2.dr, chromecache_89.2.dr	String found in binary or memory: https://sourcemaps.squarespace.net/universal/scripts-compressed/sourcemaps/840806199e6888386d8c1ad4b
Source: chromecache_95.2.dr	String found in binary or memory: https://sourcemaps.squarespace.net/universal/scripts-compressed/sourcemaps/b079279c17d3b0e258ea7c091
Source: chromecache_86.2.dr, chromecache_97.2.dr	String found in binary or memory: https://sourcemaps.squarespace.net/universal/scripts-compressed/sourcemaps/d30bc0970375a89a18f85eafe
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://sourcemaps.squarespace.net/universal/scripts-compressed/sourcemaps/e1cfe8c519b155f305a3da03d
Source: chromecache_100.2.dr, chromecache_78.2.dr	String found in binary or memory: https://td.doubleclick.net
Source: chromecache_100.2.dr, chromecache_78.2.dr	String found in binary or memory: https://www.google-analytics.com/analytics.js
Source: chromecache_100.2.dr, chromecache_78.2.dr	String found in binary or memory: https://www.google.com
Source: chromecache_100.2.dr, chromecache_78.2.dr	String found in binary or memory: https://www.googleadservices.com
Source: chromecache_78.2.dr	String found in binary or memory: https://www.googletagmanager.com
Source: chromecache_78.2.dr	String found in binary or memory: https://www.googletagmanager.com/a?
Source: chromecache_78.2.dr	String found in binary or memory: https://www.googletagmanager.com/static/service_worker/

Source: unknown	Network traffic detected: HTTP traffic on port 49733 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49744
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49742
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49741
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49740
Source: unknown	Network traffic detected: HTTP traffic on port 49727 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49743 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49746 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49720 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49739
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49738
Source: unknown	Network traffic detected: HTTP traffic on port 49717 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49736 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49737
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49736
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49735
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49734
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49733
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49732
Source: unknown	Network traffic detected: HTTP traffic on port 49675 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49731
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49730
Source: unknown	Network traffic detected: HTTP traffic on port 49732 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 63559 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49703 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49742 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49728 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49721 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49729
Source: unknown	Network traffic detected: HTTP traffic on port 49752 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49728
Source: unknown	Network traffic detected: HTTP traffic on port 49714 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49727
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49726
Source: unknown	Network traffic detected: HTTP traffic on port 49718 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49725
Source: unknown	Network traffic detected: HTTP traffic on port 49735 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49723
Source: unknown	Network traffic detected: HTTP traffic on port 49739 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49674 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49721
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49720
Source: unknown	Network traffic detected: HTTP traffic on port 49731 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49712 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49725 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49741 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49729 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49719 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49719
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49718
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49717
Source: unknown	Network traffic detected: HTTP traffic on port 49715 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49715
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49714
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49712
Source: unknown	Network traffic detected: HTTP traffic on port 49738 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49734 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49673 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49752
Source: unknown	Network traffic detected: HTTP traffic on port 49730 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49750
Source: unknown	Network traffic detected: HTTP traffic on port 49726 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49740 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49747 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63559
Source: unknown	Network traffic detected: HTTP traffic on port 49744 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49723 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49750 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49703
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49747
Source: unknown	Network traffic detected: HTTP traffic on port 49737 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49746

Source: classification engine

Classification label: clean1.win@17/49@22/11

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps

Jump to behavior

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2312 --field-trial-handle=2148,i,3261014996806316565,7538338313863205843,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://2b071b590b23815710e03a579f8558c4.us-east-1.resend-links.com/CL0/https:%2F%2Fresearchrabbit.ai/1/01000194ff7908ce-75b81f61-987c-4988-9b49-119b46c8ae97-000000/NiU9oISNGBvg6t1AvKDzkpgFMLX2mGJotnSiNwF6JCQ=392"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2312 --field-trial-handle=2148,i,3261014996806316565,7538338313863205843,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: Google Drive.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: YouTube.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Sheets.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Gmail.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Slides.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Docs.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe

Source: Window Recorder

Window detected: More than 3 window changes detected

Stores files to the Windows start menu directory

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk	Jump to behavior

Screenshots

Behavior

Click here to start
Slideshow Behavior Animation

Behavior Graph

Hide Legend

Legend:

Process
Signature
Created File
DNS/IP Info
Is Dropped
Is Windows Process
Number of created Registry Values
Number of created Files
Visual Basic
Delphi
Java
.Net C# or VB.NET
C, C++ or other language
Is malicious
Internet

Network Map

No. of IPs < 25%
25% < No. of IPs < 50%
50% < No. of IPs < 75%
75% < No. of IPs

Contacted Public IPs

IP	Domain	Country	ASN	ASN Name	Malicious
104.18.31.234	app.termly.io	United States	13335	CLOUDFLARENETUS	false
151.101.192.238	squarespace.map.fastly.net	United States	54113	FASTLYUS	false
172.217.18.4	www.google.com	United States	15169	GOOGLEUS	false
151.101.0.237	unknown	United States	54113	FASTLYUS	false
151.101.128.237	static.squarespace.map.fastly.net	United States	54113	FASTLYUS	false
198.185.159.144	ext-sq.squarespace.com	United States	53831	SQUARESPACEUS	false
239.255.255.250	unknown	Reserved	unknown	unknown	false
104.18.30.234	unknown	United States	13335	CLOUDFLARENETUS	false
198.49.23.144	researchrabbit.ai	United States	53831	SQUARESPACEUS	false
104.21.96.1	2b071b590b23815710e03a579f8558c4.us-east-1.resend-links.com	United States	13335	CLOUDFLARENETUS	false

Private

IP
192.168.2.5

Contacted Domains

Name	IP	Active
researchrabbit.ai	198.49.23.144	true
static.squarespace.map.fastly.net	151.101.128.237	true
www.google.com	172.217.18.4	true
2b071b590b23815710e03a579f8558c4.us-east-1.resend-links.com	104.21.96.1	true
app.termly.io	104.18.31.234	true
ext-sq.squarespace.com	198.185.159.144	true
squarespace.map.fastly.net	151.101.192.238	true
prod.squarespace.map.fastly.net	151.101.192.238	true
images.squarespace-cdn.com	unknown	unknown
www.researchrabbit.ai	unknown	unknown
assets.squarespace.com	unknown	unknown
static1.squarespace.com	unknown	unknown

Contacted URLs

Name	Malicious	Antivirus Detection	Reputation
https://www.researchrabbit.ai/	false	Avira URL Cloud: safe	unknown
https://assets.squarespace.com/universal/scripts-compressed/common-vendors-stable-2965e1fc774101038a7d-min.en-US.js	false		high
https://assets.squarespace.com/@sqs/polyfiller/1.6/modern.js	false		high
https://assets.squarespace.com/universal/scripts-compressed/cldr-resource-pack-0c96ad3f9948c3a7b631-min.en-US.js	false		high
https://images.squarespace-cdn.com/content/v1/5dee82c56fcd7b0290640db5/2d9c67bf-a7e9-4810-8948-45ce24546798/logo.png?format=1500w	false		high
https://assets.squarespace.com/universal/scripts-compressed/performance-daea797f26ec33aee348-min.en-US.js	false		high
https://images.squarespace-cdn.com/content/v1/5dee82c56fcd7b0290640db5/149ef79f-93ed-43e6-a38a-a668a22ad73c/Research-Rabbit-Top-BG.png?format=1500w	false		high
https://researchrabbit.ai/	false	Avira URL Cloud: safe	unknown
https://static1.squarespace.com/static/vta/5c5a519771c10ba3470d8101/versioned-assets/1739381320286-8FJE7NMLDZWANM5PXDLU/static.css	false		high

Name	Type	MD5	SHA1	SHA256
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Feb 14 13:14:22 2025, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide	AC7CF09ACA790515837A2B2A789A0884	06E0C3D2A44FBADB8193604AF3667030114DA66C	BC0B5596D84DB854441BE0DAD4603852073F14AEC50195770D803D4EB1CF652F
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Feb 14 13:14:22 2025, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide	B0552094F433CA0091DB1CBD5319AAD1	94CFE1AD56E405E64C8EC5C900E64E73209E3887	B667A6B21DF3FEF9C61A87149D3C8FDEA6B68E5A13ECB4DA4B5707892F9D4CBE
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed Oct 4 12:54:07 2023, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide	31FE97063849D8BB667CAD79A7893EAA	12F75A8F77C4F786869A7CF7106E2F3B353D554A	98D8E9FC24B580AFB223F195EED32465E244CFEE6DFD3FC1F02DBF6FD15D65DD
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Feb 14 13:14:22 2025, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide	D2B0CD70D2FAE003400D86D0CBB9B7AE	C54FEE14326CAC04059225D57A7BB77BC79E0A3A	AE58BED0AC09A2F40BEBC1540B73D6513B136A4A21DEAF45F07519779D11507A
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Feb 14 13:14:22 2025, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide	1C205AD58F7FEC43B5466521F4487BCB	7739402E04F460F65EBEB57B2E741354E8AC8FBC	5AD71025AC4AC7E21B30BF11A37EC0869BD2B6D0896A0C46145ED293ADDCD49C
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Feb 14 13:14:22 2025, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide	3CCD3EFF0EE8AEAA4DED2E2D83428673	7AFE655AF256CDED1042CAA715C6CDAF631F5C03	DA9B10793CB6122C38A4A313D36B66E3F5129E85C9EE3F834BEA5B6DBA691CFA
Chrome Cache Entry: 100	ASCII text, with very long lines (5268)	8730EF40F73F0E01165E03B33FB4A8C8	ACCC3D03AB4E78D7AE49DFF228AA7A66C4A543CD	A593BA7F5045F1E96DE2CED4AA2146A341D06FBF1150FA90A36D8B340C18A330
Chrome Cache Entry: 101	ASCII text, with very long lines (42196)	357F040FD1F3262F142128DB90C8A9BD	3090B48314E512743F3AD4EF9CF57248443348C7	13D2A26D3F51F407D483AD8A4285A27B3FA38969E0E6FD250C24F0781D2D0F87
Chrome Cache Entry: 74	ASCII text, with very long lines (65536), with no line terminators	FCA378EB5E776CAF1334AB47258594AC	DAFE61E58CDEDC34109DBA7E9171F4AAB578E6E9	59E24B78949F0A7F77E32B1DE0D14E754794F29C90958FC0976FBC9823309996
Chrome Cache Entry: 75	ASCII text, with very long lines (65536), with no line terminators	014DF191ED47B395338F25502C9F004F	D587C36F56EE2FBDECBA1B7E7DE97FE48C8B6C7B	D0C56DBBB9FC26D01A9870493DA0637F7E18CFD8B5FEDD51887E1D3115CAA887
Chrome Cache Entry: 76	ASCII text, with very long lines (42196)	357F040FD1F3262F142128DB90C8A9BD	3090B48314E512743F3AD4EF9CF57248443348C7	13D2A26D3F51F407D483AD8A4285A27B3FA38969E0E6FD250C24F0781D2D0F87
Chrome Cache Entry: 77	PNG image data, 1500 x 834, 8-bit/color RGBA, non-interlaced	7CFCF450D5962A832C5794C9948E196C	24B9B775017DC2EE7EE9B82265DE25D4C8F96E41	CDF8B0106A58B388C20E7D04531F384278926A8F5A1259F60E652B4C20626C30
Chrome Cache Entry: 78	ASCII text, with very long lines (5268)	05DCD473BB414B5ECC6FEB28DA47AF5A	059D70A544CB5A64260A233F69D6D65B7196B37D	2F11CAC0B9DE49C99FC3F4070FA4FF041FBE83A9A9D87F80E794D62940FBCF30
Chrome Cache Entry: 79	Unicode text, UTF-8 text, with very long lines (43878), with NEL line terminators	93A2AEA230D421D550375C528B22583E	E8D88B00DB1C30510928A7C6618F0F7CFFA9B4C2	54E832663426C696B1F603379026E5E15720E8C812BBBC60D63AA2AD8A479F75
Chrome Cache Entry: 80	PNG image data, 194 x 71, 8-bit gray+alpha, non-interlaced	5AEDE7B795293FD6EBA885596CC6EDD3	C5CD0A3937541900A970D207C44B6DE43A1C51DA	344058C02E3DEE8FB0BA184322DBBAF7567FECF0F657FC22A0B85AD2EC7AB979
Chrome Cache Entry: 81	PNG image data, 1500 x 834, 8-bit/color RGBA, non-interlaced	7CFCF450D5962A832C5794C9948E196C	24B9B775017DC2EE7EE9B82265DE25D4C8F96E41	CDF8B0106A58B388C20E7D04531F384278926A8F5A1259F60E652B4C20626C30
Chrome Cache Entry: 82	ASCII text, with very long lines (39341)	50A45F31007A805405E999B6F6DA212A	6FF82BC52895BDEC2CF632C85E90B2BA51F553EE	9D247C72CD4B4E0EDEA4A54CE95A652982B80E98AA1B81E04062C6627C0E1DA0
Chrome Cache Entry: 83	Unicode text, UTF-8 text, with very long lines (7601)	AE56D0A56562BF40B451C20C5A19F415	884218CDE708CAB937933218A1D6FF4B65345155	348336CE54AD878D4D533D06CFC1B7DC49495CF0CC18810D1D5BCE117B84C8B1
Chrome Cache Entry: 84	ASCII text, with very long lines (1572)	9C20933D97B73C407148C48238AE271D	6B32E8624BEBE6E1167C402FE4C41AE7A626B55B	938E86A09A5559BBE4BAF855F844905A91A93DFE81D57DE8DE53993C32C22B4C
Chrome Cache Entry: 85	ASCII text, with very long lines (53553)	5D0BCC8974305C1639CC4D72A394EC6A	3A9894E9672251202B2F245EBDB3A32D6DB6605E	C95A01F682BB631DDE4EBA163D3468B181EA06F602389BA33507905562C0346B
Chrome Cache Entry: 86	ASCII text, with very long lines (37682)	1EF6B5B4FB6C3062F0ADADA74B3F3519	3B8E632742C2802615878E45248D2B0590F7FA55	31AE932937E3E6EC55C15AB76FA71E3156A1ED26946537A43D5C55162049B669
Chrome Cache Entry: 87	ASCII text, with very long lines (65469)	9EE9315DB92E0AEF2FB2CC9C2588F25A	9C07E7BDADC0FFE909898537DB88252892051CAA	51B6C39AE27C47669A21C94FD991464FB543A2C89CD34615C0C762A43A62B351
Chrome Cache Entry: 88	PNG image data, 1440 x 263, 8-bit colormap, non-interlaced	71B0C481ED5E5EF87307F92C25CE61D6	940377209FD90ED4510634976E1A467A42837823	0420F0BCAF3C49459E8E72F65035AECEBDDA7930B2690F37FDEE8835833D3CEE
Chrome Cache Entry: 89	ASCII text, with very long lines (39341)	50A45F31007A805405E999B6F6DA212A	6FF82BC52895BDEC2CF632C85E90B2BA51F553EE	9D247C72CD4B4E0EDEA4A54CE95A652982B80E98AA1B81E04062C6627C0E1DA0
Chrome Cache Entry: 90	Unicode text, UTF-8 text, with very long lines (43878), with NEL line terminators	93A2AEA230D421D550375C528B22583E	E8D88B00DB1C30510928A7C6618F0F7CFFA9B4C2	54E832663426C696B1F603379026E5E15720E8C812BBBC60D63AA2AD8A479F75
Chrome Cache Entry: 91	ASCII text, with very long lines (53553)	5D0BCC8974305C1639CC4D72A394EC6A	3A9894E9672251202B2F245EBDB3A32D6DB6605E	C95A01F682BB631DDE4EBA163D3468B181EA06F602389BA33507905562C0346B
Chrome Cache Entry: 92	Unicode text, UTF-8 text, with very long lines (7601)	AE56D0A56562BF40B451C20C5A19F415	884218CDE708CAB937933218A1D6FF4B65345155	348336CE54AD878D4D533D06CFC1B7DC49495CF0CC18810D1D5BCE117B84C8B1
Chrome Cache Entry: 93	ASCII text, with very long lines (65469)	9EE9315DB92E0AEF2FB2CC9C2588F25A	9C07E7BDADC0FFE909898537DB88252892051CAA	51B6C39AE27C47669A21C94FD991464FB543A2C89CD34615C0C762A43A62B351
Chrome Cache Entry: 94	ASCII text, with very long lines (65536), with no line terminators	FCA378EB5E776CAF1334AB47258594AC	DAFE61E58CDEDC34109DBA7E9171F4AAB578E6E9	59E24B78949F0A7F77E32B1DE0D14E754794F29C90958FC0976FBC9823309996
Chrome Cache Entry: 95	ASCII text, with very long lines (65536), with no line terminators	19981E077894F46D4CA7B4BC089598A4	2708CCFF621EA41AC9A9FBBB8567209C79FFEB18	DB668AF76B9091361E3FD6BEC46825BB542AF193AD7C6E6B84D54686BD29D521
Chrome Cache Entry: 96	ASCII text, with very long lines (65536), with no line terminators	06E86C33D3F638F05967AC5AAF809075	7A69BFFBFBC0078F59A725A94FCFDA666DF2B747	F0D01009DC51A1602650C06BDC9B5EA80FD1EBD8BE6647602FC21B26BE102F29
Chrome Cache Entry: 97	ASCII text, with very long lines (37682)	1EF6B5B4FB6C3062F0ADADA74B3F3519	3B8E632742C2802615878E45248D2B0590F7FA55	31AE932937E3E6EC55C15AB76FA71E3156A1ED26946537A43D5C55162049B669
Chrome Cache Entry: 98	PNG image data, 194 x 71, 8-bit gray+alpha, non-interlaced	5AEDE7B795293FD6EBA885596CC6EDD3	C5CD0A3937541900A970D207C44B6DE43A1C51DA	344058C02E3DEE8FB0BA184322DBBAF7567FECF0F657FC22A0B85AD2EC7AB979
Chrome Cache Entry: 99	PNG image data, 1440 x 263, 8-bit colormap, non-interlaced	71B0C481ED5E5EF87307F92C25CE61D6	940377209FD90ED4510634976E1A467A42837823	0420F0BCAF3C49459E8E72F65035AECEBDDA7930B2690F37FDEE8835833D3CEE

Detected non-DNS traffic on DNS port

Source: global traffic

TCP traffic: 192.168.2.5:63450 -> 1.1.1.1:53

Detected suspicious crossdomain redirect

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

HTTP traffic: Redirect from: 2b071b590b23815710e03a579f8558c4.us-east-1.resend-links.com to https://researchrabbit.ai

Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1

Source: global traffic	HTTP traffic detected: GET /CL0/https:%2F%2Fresearchrabbit.ai/1/01000194ff7908ce-75b81f61-987c-4988-9b49-119b46c8ae97-000000/NiU9oISNGBvg6t1AvKDzkpgFMLX2mGJotnSiNwF6JCQ=392 HTTP/1.1Host: 2b071b590b23815710e03a579f8558c4.us-east-1.resend-links.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: researchrabbit.aiConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: www.researchrabbit.aiConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /content/v1/5dee82c56fcd7b0290640db5/149ef79f-93ed-43e6-a38a-a668a22ad73c/Research-Rabbit-Top-BG.png?format=1500w HTTP/1.1Host: images.squarespace-cdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.researchrabbit.ai/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /@sqs/polyfiller/1.6/modern.js HTTP/1.1Host: assets.squarespace.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.researchrabbit.aisec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.researchrabbit.ai/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/versioned-site-css/5dee82c56fcd7b0290640db5/267/5c5a519771c10ba3470d8101/5dee82c56fcd7b0290640dca/1611/site.css HTTP/1.1Host: static1.squarespace.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.researchrabbit.ai/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /embed.min.js HTTP/1.1Host: app.termly.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.researchrabbit.ai/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /content/v1/5dee82c56fcd7b0290640db5/3683aeff-de6f-4d89-9c1e-e1193688ab5f/footer-bg.png?format=1500w HTTP/1.1Host: images.squarespace-cdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.researchrabbit.ai/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /content/v1/5dee82c56fcd7b0290640db5/2d9c67bf-a7e9-4810-8948-45ce24546798/logo.png?format=1500w HTTP/1.1Host: images.squarespace-cdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.researchrabbit.ai/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /content/v1/5dee82c56fcd7b0290640db5/3683aeff-de6f-4d89-9c1e-e1193688ab5f/footer-bg.png?format=1500w HTTP/1.1Host: images.squarespace-cdn.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /@sqs/polyfiller/1.6/modern.js HTTP/1.1Host: assets.squarespace.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /content/v1/5dee82c56fcd7b0290640db5/149ef79f-93ed-43e6-a38a-a668a22ad73c/Research-Rabbit-Top-BG.png?format=1500w HTTP/1.1Host: images.squarespace-cdn.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/vta/5c5a519771c10ba3470d8101/versioned-assets/1739381320286-8FJE7NMLDZWANM5PXDLU/static.css HTTP/1.1Host: static1.squarespace.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.researchrabbit.ai/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /content/v1/5dee82c56fcd7b0290640db5/2d9c67bf-a7e9-4810-8948-45ce24546798/logo.png?format=1500w HTTP/1.1Host: images.squarespace-cdn.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /embed.min.js HTTP/1.1Host: app.termly.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /universal/scripts-compressed/extract-css-runtime-3d58e55fdbb2d1937b59-min.en-US.js HTTP/1.1Host: assets.squarespace.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.researchrabbit.aisec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.researchrabbit.ai/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /universal/scripts-compressed/extract-css-moment-js-vendor-c4d588d4255cd4c70fa3-min.en-US.js HTTP/1.1Host: assets.squarespace.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.researchrabbit.aisec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.researchrabbit.ai/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /universal/scripts-compressed/cldr-resource-pack-0c96ad3f9948c3a7b631-min.en-US.js HTTP/1.1Host: assets.squarespace.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.researchrabbit.aisec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.researchrabbit.ai/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /universal/scripts-compressed/extract-css-runtime-3d58e55fdbb2d1937b59-min.en-US.js HTTP/1.1Host: assets.squarespace.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /universal/scripts-compressed/cldr-resource-pack-0c96ad3f9948c3a7b631-min.en-US.js HTTP/1.1Host: assets.squarespace.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /universal/scripts-compressed/common-vendors-stable-2965e1fc774101038a7d-min.en-US.js HTTP/1.1Host: assets.squarespace.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.researchrabbit.aisec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.researchrabbit.ai/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /universal/scripts-compressed/common-vendors-8921de8f24d51c37e1bd-min.en-US.js HTTP/1.1Host: assets.squarespace.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.researchrabbit.aisec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.researchrabbit.ai/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /universal/scripts-compressed/extract-css-moment-js-vendor-c4d588d4255cd4c70fa3-min.en-US.js HTTP/1.1Host: assets.squarespace.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /universal/scripts-compressed/common-27143f3e7b490ad9250e-min.en-US.js HTTP/1.1Host: assets.squarespace.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.researchrabbit.aisec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.researchrabbit.ai/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /universal/scripts-compressed/common-vendors-stable-2965e1fc774101038a7d-min.en-US.js HTTP/1.1Host: assets.squarespace.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /universal/scripts-compressed/common-vendors-8921de8f24d51c37e1bd-min.en-US.js HTTP/1.1Host: assets.squarespace.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /universal/scripts-compressed/performance-daea797f26ec33aee348-min.en-US.js HTTP/1.1Host: assets.squarespace.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.researchrabbit.aisec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.researchrabbit.ai/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /universal/scripts-compressed/performance-daea797f26ec33aee348-min.en-US.js HTTP/1.1Host: assets.squarespace.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /universal/scripts-compressed/common-27143f3e7b490ad9250e-min.en-US.js HTTP/1.1Host: assets.squarespace.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9

Source: chromecache_100.2.dr, chromecache_78.2.dr

Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: 2b071b590b23815710e03a579f8558c4.us-east-1.resend-links.com
Source: global traffic	DNS traffic detected: DNS query: researchrabbit.ai
Source: global traffic	DNS traffic detected: DNS query: www.researchrabbit.ai
Source: global traffic	DNS traffic detected: DNS query: images.squarespace-cdn.com
Source: global traffic	DNS traffic detected: DNS query: assets.squarespace.com
Source: global traffic	DNS traffic detected: DNS query: static1.squarespace.com
Source: global traffic	DNS traffic detected: DNS query: app.termly.io

Source: chromecache_86.2.dr, chromecache_97.2.dr	String found in binary or memory: http://brm.io/matter-js/
Source: chromecache_86.2.dr, chromecache_97.2.dr	String found in binary or memory: http://feross.org
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: http://id.wikisource.org/wiki/Pedoman_Umum_Ejaan_Bahasa_Indonesia_yang_Disempurnakan
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: http://praleska.pro/
Source: chromecache_86.2.dr, chromecache_97.2.dr	String found in binary or memory: http://underscorejs.org/LICENSE
Source: chromecache_85.2.dr, chromecache_91.2.dr	String found in binary or memory: http://yuilibrary.com/license/
Source: chromecache_100.2.dr, chromecache_78.2.dr	String found in binary or memory: https://cct.google/taggy/agent.js
Source: chromecache_94.2.dr, chromecache_74.2.dr	String found in binary or memory: https://feross.org
Source: chromecache_84.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqW106F15M.woff2)
Source: chromecache_84.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWt06F15M.woff2)
Source: chromecache_84.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWtE6F15M.woff2)
Source: chromecache_84.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWtU6F15M.woff2)
Source: chromecache_84.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWtk6F15M.woff2)
Source: chromecache_84.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWu06F15M.woff2)
Source: chromecache_84.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2)
Source: chromecache_84.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuk6F15M.woff2)
Source: chromecache_84.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWvU6F15M.woff2)
Source: chromecache_84.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWxU6F15M.woff2)
Source: chromecache_84.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2)
Source: chromecache_84.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS2mu1aB.woff2)
Source: chromecache_84.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSCmu1aB.woff2)
Source: chromecache_84.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2)
Source: chromecache_84.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSKmu1aB.woff2)
Source: chromecache_84.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSOmu1aB.woff2)
Source: chromecache_84.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSumu1aB.woff2)
Source: chromecache_84.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSymu1aB.woff2)
Source: chromecache_84.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTUGmu1aB.woff2)
Source: chromecache_84.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTVOmu1aB.woff2)
Source: chromecache_84.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/poppins/v22/pxiByp8kv8JHgFVrLCz7Z1JlFc-K.woff2)
Source: chromecache_84.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/poppins/v22/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2)
Source: chromecache_84.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/poppins/v22/pxiByp8kv8JHgFVrLEj6Z1JlFc-K.woff2)
Source: chromecache_84.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/poppins/v22/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2)
Source: chromecache_84.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/poppins/v22/pxiByp8kv8JHgFVrLGT9Z1JlFc-K.woff2)
Source: chromecache_84.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/poppins/v22/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2)
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/Amine27
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/B0k0
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/BYK
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/DevelopmentIL
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/ElFadiliY
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/IrakliJani
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/JanisE
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/Kaushik1987
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/MadMG
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/Manfre98
Source: chromecache_92.2.dr	String found in binary or memory: https://github.com/Oire
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/Quenty31
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/ShahramMebashar
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/TalAter
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/Viktorminator
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/WikiDiscoverer
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/ZackVision
Source: chromecache_92.2.dr	String found in binary or memory: https://github.com/abdelsaid
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/adambrunner
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/alesma
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/aliem
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/amaranthrose
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/andela-batolagbe
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/andrewhood125
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/anthonylau
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/armendarabyan
Source: chromecache_97.2.dr	String found in binary or memory: https://github.com/ashima/webgl-noise
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/ashwoolford
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/askpt
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/atamyratabdy
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/avaly
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/bangnk
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/baryon
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/ben-lin
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/bkyceh
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/bleadof
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/bmarkovic
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/boyaq
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/bustta
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/caio-ribeiro-pereira
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/cepem
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/chienkira
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/chriscartlidge
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/chrisgedrim
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/chrisrodz
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/chyngyz
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/colindean
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/crnjakovic
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/demidov91
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/ebraminio
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/eillarra
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/erhangundogan
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/estellecomment
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/evoL
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/fadsel
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/flakerimi
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/floydpink
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/forabi
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/frontyard
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/gaspard
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/gholadr
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/gurdiga
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/hagmandan
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/harpreetkhalsagtbit
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/hehachris
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/hinrik
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/ibnesayeed
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/jalex79
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/jarcoal
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/jatinag22
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/javkhaanj7
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/jawish
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/jbleduigou
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/jcfranco
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/jfroffice
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/johnideal
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/jonashdown
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/jonbca
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/jorisroling
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/joshbrooks
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/juanghurtado
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/julionc
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/k2s
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/kalehv
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/karamell
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/kaushikgandhi
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/kcthota
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/kikoanis
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/kraz
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/kruyvanna
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/kwisatz
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/kyungw00k
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/lantip
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/le0tan
Source: chromecache_86.2.dr, chromecache_97.2.dr	String found in binary or memory: https://github.com/liabru/matter-wrap
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/lluchs
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/lukemcgregor
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/madhenry
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/majdal
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/marobo
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/matthewdeeco
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/mayanksinghal
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/mechuwind
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/mehiel
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/mergehez
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/middagj
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/miestasmia
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/mik01aj
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/milan-j
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/miodragnikac
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/mirontoli
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/mmozuras
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/mrbase
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/muminoff
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/mweimerskirch
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/naderio
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/narainsagar
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/nicolaidavies
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/nostalgiaz
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/noureddinem
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/nurlan
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/nusretparlak
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/oerd
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/orif-jr
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/passatgt
Source: chromecache_92.2.dr	String found in binary or memory: https://github.com/petrbela
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/ragnar123
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/ragulka
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/rajeevnaikte
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/rasidre
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/rexxars
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/robgallen
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/robin0van0der0v
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/ryangreaves
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/ryanhart2
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/sakarisson
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/sampathsris
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/sedovsek
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/sigurdga
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/sirn
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/skakri
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/skfd
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/socketpair
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/soniasimoes
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/sschueller
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/stephenramthun
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/suupic
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/suvash
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/techdimension
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/thanyawzinmin
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/tk120404
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/tomer
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/topchiyev
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/tyok
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/ulmus
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/uu109
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/vajradog
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/vnathalye
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/weldan
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/wernerm
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/xfh
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/xsoh
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/zemlanin
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://github.com/zenozeng
Source: chromecache_90.2.dr, chromecache_79.2.dr	String found in binary or memory: https://github.com/zloirock/core-js
Source: chromecache_90.2.dr, chromecache_79.2.dr	String found in binary or memory: https://github.com/zloirock/core-js/blob/v3.26.0/LICENSE
Source: chromecache_86.2.dr, chromecache_97.2.dr	String found in binary or memory: https://lodash.com/
Source: chromecache_86.2.dr, chromecache_97.2.dr	String found in binary or memory: https://lodash.com/license
Source: chromecache_86.2.dr, chromecache_97.2.dr	String found in binary or memory: https://openjsf.org/
Source: chromecache_100.2.dr, chromecache_78.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com
Source: chromecache_100.2.dr, chromecache_78.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=tcfe
Source: chromecache_85.2.dr, chromecache_91.2.dr	String found in binary or memory: https://sourcemaps.squarespace.net/universal/scripts-compressed/sourcemaps/001a119a2c2814fb0add8d161
Source: chromecache_76.2.dr, chromecache_101.2.dr	String found in binary or memory: https://sourcemaps.squarespace.net/universal/scripts-compressed/sourcemaps/15b49499c72090b2ea2c4c5b5
Source: chromecache_94.2.dr, chromecache_74.2.dr	String found in binary or memory: https://sourcemaps.squarespace.net/universal/scripts-compressed/sourcemaps/44ecbafb6c835dac203bf27df
Source: chromecache_82.2.dr, chromecache_89.2.dr	String found in binary or memory: https://sourcemaps.squarespace.net/universal/scripts-compressed/sourcemaps/840806199e6888386d8c1ad4b
Source: chromecache_95.2.dr	String found in binary or memory: https://sourcemaps.squarespace.net/universal/scripts-compressed/sourcemaps/b079279c17d3b0e258ea7c091
Source: chromecache_86.2.dr, chromecache_97.2.dr	String found in binary or memory: https://sourcemaps.squarespace.net/universal/scripts-compressed/sourcemaps/d30bc0970375a89a18f85eafe
Source: chromecache_83.2.dr, chromecache_92.2.dr	String found in binary or memory: https://sourcemaps.squarespace.net/universal/scripts-compressed/sourcemaps/e1cfe8c519b155f305a3da03d
Source: chromecache_100.2.dr, chromecache_78.2.dr	String found in binary or memory: https://td.doubleclick.net
Source: chromecache_100.2.dr, chromecache_78.2.dr	String found in binary or memory: https://www.google-analytics.com/analytics.js
Source: chromecache_100.2.dr, chromecache_78.2.dr	String found in binary or memory: https://www.google.com
Source: chromecache_100.2.dr, chromecache_78.2.dr	String found in binary or memory: https://www.googleadservices.com
Source: chromecache_78.2.dr	String found in binary or memory: https://www.googletagmanager.com
Source: chromecache_78.2.dr	String found in binary or memory: https://www.googletagmanager.com/a?
Source: chromecache_78.2.dr	String found in binary or memory: https://www.googletagmanager.com/static/service_worker/

Source: unknown	Network traffic detected: HTTP traffic on port 49733 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49744
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49742
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49741
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49740
Source: unknown	Network traffic detected: HTTP traffic on port 49727 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49743 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49746 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49720 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49739
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49738
Source: unknown	Network traffic detected: HTTP traffic on port 49717 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49736 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49737
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49736
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49735
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49734
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49733
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49732
Source: unknown	Network traffic detected: HTTP traffic on port 49675 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49731
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49730
Source: unknown	Network traffic detected: HTTP traffic on port 49732 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 63559 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49703 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49742 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49728 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49721 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49729
Source: unknown	Network traffic detected: HTTP traffic on port 49752 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49728
Source: unknown	Network traffic detected: HTTP traffic on port 49714 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49727
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49726
Source: unknown	Network traffic detected: HTTP traffic on port 49718 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49725
Source: unknown	Network traffic detected: HTTP traffic on port 49735 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49723
Source: unknown	Network traffic detected: HTTP traffic on port 49739 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49674 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49721
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49720
Source: unknown	Network traffic detected: HTTP traffic on port 49731 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49712 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49725 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49741 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49729 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49719 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49719
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49718
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49717
Source: unknown	Network traffic detected: HTTP traffic on port 49715 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49715
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49714
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49712
Source: unknown	Network traffic detected: HTTP traffic on port 49738 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49734 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49673 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49752
Source: unknown	Network traffic detected: HTTP traffic on port 49730 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49750
Source: unknown	Network traffic detected: HTTP traffic on port 49726 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49740 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49747 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63559
Source: unknown	Network traffic detected: HTTP traffic on port 49744 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49723 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49750 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49703
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49747
Source: unknown	Network traffic detected: HTTP traffic on port 49737 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49746

Source: classification engine

Classification label: clean1.win@17/49@22/11

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps

Jump to behavior

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2312 --field-trial-handle=2148,i,3261014996806316565,7538338313863205843,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://2b071b590b23815710e03a579f8558c4.us-east-1.resend-links.com/CL0/https:%2F%2Fresearchrabbit.ai/1/01000194ff7908ce-75b81f61-987c-4988-9b49-119b46c8ae97-000000/NiU9oISNGBvg6t1AvKDzkpgFMLX2mGJotnSiNwF6JCQ=392"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2312 --field-trial-handle=2148,i,3261014996806316565,7538338313863205843,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: Google Drive.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: YouTube.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Sheets.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Gmail.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Slides.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Docs.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe

Source: Window Recorder

Window detected: More than 3 window changes detected

Stores files to the Windows start menu directory

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk	Jump to behavior

ID:	1615147
Product:	CloudBasic
Start time:	15:13:28
Start date:	14.02.2025
Cookbook:	browseurl.jbs
System description:	Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
Architecture:	WINDOWS

Windows Analysis Report
https://2b071b590b23815710e03a579f8558c4.us-east-1.resend-links.com/CL0/https:%2F%2Fresearchrabbit.ai/1/01000194ff7908ce-75b81f61-987c-4988-9b49-119b46c8ae97-000000/NiU9oISNGBvg6t1AvKDzkpgFMLX2mGJotnSiNwF6JCQ=392

Overview

General Information

Detection

Signatures

Classification

Signatures

Networking

System Summary

Boot Survival

Screenshots

Behavior Graph

Network Map

Contacted Public IPs

Private

Contacted Domains

Contacted URLs

Windows Analysis Report https://2b071b590b23815710e03a579f8558c4.us-east-1.resend-links.com/CL0/https:%2F%2Fresearchrabbit.ai/1/01000194ff7908ce-75b81f61-987c-4988-9b49-119b46c8ae97-000000/NiU9oISNGBvg6t1AvKDzkpgFMLX2mGJotnSiNwF6JCQ=392

Overview

General Information

Detection

Signatures

Classification

Signatures

Networking

System Summary

Boot Survival

Screenshots

Behavior Graph

Network Map

Contacted Public IPs

Private

Contacted Domains

Contacted URLs

Windows Analysis Report
https://2b071b590b23815710e03a579f8558c4.us-east-1.resend-links.com/CL0/https:%2F%2Fresearchrabbit.ai/1/01000194ff7908ce-75b81f61-987c-4988-9b49-119b46c8ae97-000000/NiU9oISNGBvg6t1AvKDzkpgFMLX2mGJotnSiNwF6JCQ=392