IOC Report
http://s.team-fg.com/p/jjnh-trfg/frmkhpcw/

loading gifFilesProcessesURLsDomainsIPs2105432Label

Files

File Path
Type
Category
Malicious
Download
C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping3948_1954187670\_metadata\verified_contents.json
JSON data
dropped
C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping3948_1954187670\manifest.fingerprint
ASCII text, with no line terminators
dropped
C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping3948_1954187670\manifest.json
JSON data
dropped
C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping3948_1954187670\ssl_error_assistant.pb
data
dropped

Processes

Path
Cmdline
Malicious
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-pre-read-main-dll --field-trial-handle=2012,i,11247473949130860856,15678733379132640968,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction --variations-seed-version --mojo-platform-channel-handle=2024 /prefetch:3
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" "http://s.team-fg.com/p/jjnh-trfg/frmkhpcw/"

URLs

Name
IP
Malicious
http://s.team-fg.com/p/jjnh-trfg/frmkhpcw/
malicious
http://s.team-fg.com/p/jjnh-trfg/frmkhpcw/
185.208.156.194
malicious

Domains

Name
IP
Malicious
s.team-fg.com
185.208.156.194
beacons-handoff.gcp.gvt2.com
142.250.180.67
www.google.com
142.250.186.164
beacons.gvt2.com
142.251.143.35
beacons6.gvt2.com
142.250.185.67
beacons.gcp.gvt2.com
unknown

IPs

IP
Domain
Country
Malicious
185.208.156.194
s.team-fg.com
Switzerland
192.168.2.4
unknown
unknown
192.168.2.6
unknown
unknown
192.168.2.13
unknown
unknown
192.168.2.23
unknown
unknown
142.250.186.164
www.google.com
United States