IOC Report
PiratedLauncher.exe

loading gifFilesProcessesURLsDomainsIPsRegistryMemdumpsDOM21010010Label

Files

File Path
Type
Category
Malicious
Download
PiratedLauncher.exe
PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
initial sample
 malicious
Chrome Cache Entry: 311
ASCII text, with no line terminators
downloaded
Chrome Cache Entry: 312
JSON data
downloaded
Chrome Cache Entry: 313
ASCII text, with very long lines (48122)
downloaded
Chrome Cache Entry: 314
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 315
PNG image data, 580 x 400, 8-bit colormap, non-interlaced
downloaded
Chrome Cache Entry: 316
GIF image data, version 89a, 1 x 1
downloaded
Chrome Cache Entry: 317
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x360, components 3
downloaded
Chrome Cache Entry: 318
ASCII text, with very long lines (8441)
downloaded
Chrome Cache Entry: 319
PNG image data, 61 x 16, 8-bit/color RGB, non-interlaced
downloaded
Chrome Cache Entry: 320
HTML document, ASCII text
downloaded
Chrome Cache Entry: 321
exported SGML document, ASCII text, with very long lines (976)
downloaded
Chrome Cache Entry: 322
GIF image data, version 89a, 1 x 1
downloaded
Chrome Cache Entry: 323
Java source, ASCII text, with very long lines (1724)
downloaded
Chrome Cache Entry: 324
HTML document, Unicode text, UTF-8 text, with very long lines (10075)
downloaded
Chrome Cache Entry: 325
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 326
ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 327
GIF image data, version 89a, 1 x 1
downloaded
Chrome Cache Entry: 328
ASCII text, with very long lines (2610)
downloaded
Chrome Cache Entry: 329
HTML document, ASCII text, with very long lines (436), with no line terminators
downloaded
Chrome Cache Entry: 330
Unicode text, UTF-8 text, with very long lines (59605)
downloaded
Chrome Cache Entry: 331
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 332
ASCII text, with very long lines (594)
downloaded
Chrome Cache Entry: 333
ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 334
HTML document, ASCII text, with very long lines (1763)
downloaded
Chrome Cache Entry: 335
ASCII text, with very long lines (1666), with no line terminators
downloaded
Chrome Cache Entry: 336
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 337
ASCII text, with very long lines (53965)
downloaded
Chrome Cache Entry: 338
ASCII text, with very long lines (13534)
downloaded
Chrome Cache Entry: 339
ASCII text, with no line terminators
dropped
Chrome Cache Entry: 340
ASCII text, with no line terminators
downloaded
Chrome Cache Entry: 341
GIF image data, version 89a, 1 x 1
downloaded
Chrome Cache Entry: 342
ASCII text, with very long lines (41938), with no line terminators
downloaded
Chrome Cache Entry: 343
GIF image data, version 89a, 1 x 1
downloaded
Chrome Cache Entry: 344
JPEG image data, progressive, precision 8, 728x90, components 3
dropped
Chrome Cache Entry: 345
HTML document, ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 346
ASCII text, with very long lines (4721)
downloaded
Chrome Cache Entry: 347
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 348
HTML document, ASCII text, with very long lines (11019), with no line terminators
downloaded
Chrome Cache Entry: 349
JSON data
dropped
Chrome Cache Entry: 353
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 354
GIF image data, version 89a, 1 x 1
downloaded
Chrome Cache Entry: 355
ASCII text, with very long lines (20686), with no line terminators
downloaded
Chrome Cache Entry: 356
HTML document, ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 357
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x360, components 3
downloaded
Chrome Cache Entry: 358
PNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced
downloaded
Chrome Cache Entry: 359
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 360
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 361
Unicode text, UTF-8 text, with very long lines (19422)
downloaded
Chrome Cache Entry: 362
Web Open Font Format (Version 2), TrueType, length 40128, version 1.0
downloaded
Chrome Cache Entry: 363
GIF image data, version 89a, 1 x 1
downloaded
Chrome Cache Entry: 364
JPEG image data, progressive, precision 8, 728x90, components 3
downloaded
Chrome Cache Entry: 365
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 366
ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 367
HTML document, ASCII text, with very long lines (11019), with no line terminators
downloaded
Chrome Cache Entry: 368
ASCII text, with no line terminators
dropped
Chrome Cache Entry: 369
GIF image data, version 89a, 1 x 1
downloaded
Chrome Cache Entry: 370
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 672x560, components 3
dropped
Chrome Cache Entry: 371
PNG image data, 1 x 1, 1-bit colormap, non-interlaced
downloaded
Chrome Cache Entry: 372
ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 373
JPEG image data, progressive, precision 8, 728x90, components 3
downloaded
Chrome Cache Entry: 374
ASCII text, with very long lines (398)
downloaded
Chrome Cache Entry: 375
GIF image data, version 89a, 1 x 1
downloaded
Chrome Cache Entry: 376
ASCII text, with very long lines (2386)
downloaded
Chrome Cache Entry: 377
ASCII text, with very long lines (2222)
downloaded
Chrome Cache Entry: 378
ASCII text, with very long lines (3237)
downloaded
Chrome Cache Entry: 379
ASCII text, with very long lines (1159), with no line terminators
downloaded
Chrome Cache Entry: 380
ASCII text, with no line terminators
downloaded
Chrome Cache Entry: 381
PNG image data, 1 x 1, 1-bit colormap, non-interlaced
downloaded
Chrome Cache Entry: 382
ASCII text, with very long lines (2555)
downloaded
Chrome Cache Entry: 383
HTML document, Unicode text, UTF-8 (with BOM) text, with very long lines (30114)
downloaded
Chrome Cache Entry: 384
GIF image data, version 89a, 1 x 1
downloaded
Chrome Cache Entry: 385
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 386
HTML document, ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 387
ASCII text, with very long lines (1572)
downloaded
Chrome Cache Entry: 388
JSON data
dropped
Chrome Cache Entry: 389
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 390
ASCII text, with no line terminators
downloaded
Chrome Cache Entry: 391
HTML document, ASCII text, with very long lines (41982), with no line terminators
downloaded
Chrome Cache Entry: 392
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 393
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 394
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 395
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 396
ASCII text, with very long lines (806)
downloaded
Chrome Cache Entry: 397
HTML document, Unicode text, UTF-8 text, with very long lines (65532), with no line terminators
downloaded
Chrome Cache Entry: 398
ASCII text, with very long lines (20077), with no line terminators
downloaded
Chrome Cache Entry: 399
ASCII text, with very long lines (740)
downloaded
Chrome Cache Entry: 400
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 401
PNG image data, 484 x 484, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 403
ASCII text, with very long lines (2352)
downloaded
Chrome Cache Entry: 404
ASCII text, with very long lines (2469)
downloaded
Chrome Cache Entry: 405
JSON data
downloaded
Chrome Cache Entry: 406
ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 407
HTML document, ASCII text, with very long lines (3819)
downloaded
Chrome Cache Entry: 408
C source, ASCII text, with very long lines (2250), with no line terminators
downloaded
Chrome Cache Entry: 409
PNG image data, 666 x 200, 8-bit colormap, non-interlaced
downloaded
Chrome Cache Entry: 410
GIF image data, version 89a, 1 x 1
downloaded
Chrome Cache Entry: 411
ASCII text, with very long lines (398)
downloaded
Chrome Cache Entry: 412
ASCII text, with very long lines (3831)
downloaded
Chrome Cache Entry: 413
Java source, ASCII text, with very long lines (1650)
downloaded
Chrome Cache Entry: 414
ASCII text, with very long lines (48122)
downloaded
Chrome Cache Entry: 415
GIF image data, version 89a, 1 x 1
downloaded
Chrome Cache Entry: 416
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 417
GIF image data, version 89a, 1 x 1
downloaded
Chrome Cache Entry: 418
PNG image data, 939 x 940, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 419
GIF image data, version 89a, 1 x 1
downloaded
Chrome Cache Entry: 420
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 421
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 422
ASCII text, with very long lines (1321)
downloaded
Chrome Cache Entry: 423
JSON data
dropped
Chrome Cache Entry: 424
GIF image data, version 89a, 1 x 1
downloaded
Chrome Cache Entry: 425
HTML document, ASCII text, with very long lines (3027)
downloaded
Chrome Cache Entry: 426
ASCII text, with very long lines (3692)
downloaded
Chrome Cache Entry: 427
JSON data
downloaded
Chrome Cache Entry: 428
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 429
ASCII text, with very long lines (6002), with no line terminators
downloaded
Chrome Cache Entry: 430
HTML document, ASCII text
downloaded
Chrome Cache Entry: 431
PNG image data, 1 x 1, 1-bit colormap, non-interlaced
downloaded
Chrome Cache Entry: 432
Java source, ASCII text, with very long lines (2921)
downloaded
Chrome Cache Entry: 433
ASCII text, with very long lines (594)
downloaded
Chrome Cache Entry: 434
Unicode text, UTF-8 text, with very long lines (13749)
downloaded
Chrome Cache Entry: 435
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=5, xresolution=74, yresolution=82, resolutionunit=2, datetime=2023:09:10 14:54:46], baseline, precision 8, 312x78, components 3
dropped
Chrome Cache Entry: 436
ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 437
ASCII text, with very long lines (57363)
downloaded
Chrome Cache Entry: 438
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 439
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 440
Java source, ASCII text
downloaded
Chrome Cache Entry: 441
ASCII text, with very long lines (2372)
downloaded
Chrome Cache Entry: 442
ASCII text, with very long lines (5258)
downloaded
Chrome Cache Entry: 443
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 444
HTML document, ASCII text
downloaded
Chrome Cache Entry: 445
ASCII text, with very long lines (3379)
downloaded
Chrome Cache Entry: 446
ASCII text, with very long lines (57790)
downloaded
Chrome Cache Entry: 447
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x360, components 3
downloaded
Chrome Cache Entry: 448
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 449
PNG image data, 728 x 90, 8-bit/color RGB, non-interlaced
downloaded
Chrome Cache Entry: 450
HTML document, ASCII text, with very long lines (10861), with no line terminators
downloaded
Chrome Cache Entry: 451
JPEG image data, progressive, precision 8, 728x90, components 3
downloaded
Chrome Cache Entry: 452
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 453
HTML document, Unicode text, UTF-8 text, with very long lines (65532), with no line terminators
downloaded
Chrome Cache Entry: 454
ASCII text, with very long lines (2199)
downloaded
Chrome Cache Entry: 455
HTML document, ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 456
PNG image data, 1 x 1, 1-bit colormap, non-interlaced
downloaded
Chrome Cache Entry: 457
HTML document, ASCII text, with very long lines (38699), with no line terminators
downloaded
Chrome Cache Entry: 458
JSON data
dropped
Chrome Cache Entry: 459
ASCII text, with no line terminators
downloaded
Chrome Cache Entry: 460
Java source, ASCII text, with very long lines (916)
downloaded
Chrome Cache Entry: 461
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 462
PNG image data, 666 x 200, 8-bit colormap, non-interlaced
dropped
Chrome Cache Entry: 463
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x360, components 3
downloaded
Chrome Cache Entry: 464
ASCII text, with very long lines (3954)
downloaded
Chrome Cache Entry: 465
HTML document, ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 466
ASCII text, with very long lines (3545)
downloaded
Chrome Cache Entry: 467
ASCII text, with very long lines (2979)
downloaded
Chrome Cache Entry: 468
PNG image data, 2 x 2, 8-bit/color RGB, non-interlaced
downloaded
Chrome Cache Entry: 469
ASCII text, with no line terminators
dropped
Chrome Cache Entry: 470
GIF image data, version 89a, 1 x 1
downloaded
Chrome Cache Entry: 471
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x360, components 3
downloaded
Chrome Cache Entry: 472
ASCII text, with very long lines (7994)
downloaded
Chrome Cache Entry: 474
HTML document, ASCII text, with very long lines (3145)
downloaded
Chrome Cache Entry: 475
GIF image data, version 89a, 1 x 1
downloaded
Chrome Cache Entry: 476
ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 477
HTML document, ASCII text
downloaded
Chrome Cache Entry: 478
GIF image data, version 89a, 1 x 1
downloaded
Chrome Cache Entry: 479
PNG image data, 1 x 1, 1-bit colormap, non-interlaced
downloaded
Chrome Cache Entry: 480
ASCII text, with very long lines (776), with no line terminators
downloaded
Chrome Cache Entry: 481
ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 482
HTML document, Unicode text, UTF-8 text, with very long lines (65532), with no line terminators
downloaded
Chrome Cache Entry: 483
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 484
JSON data
downloaded
Chrome Cache Entry: 485
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 486
JPEG image data, progressive, precision 8, 300x250, components 3
downloaded
Chrome Cache Entry: 487
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 488
ASCII text, with very long lines (2752)
downloaded
Chrome Cache Entry: 489
ASCII text, with very long lines (23247)
downloaded
Chrome Cache Entry: 490
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 491
Web Open Font Format (Version 2), TrueType, length 36216, version 1.0
downloaded
Chrome Cache Entry: 492
ASCII text, with very long lines (1924)
downloaded
Chrome Cache Entry: 493
HTML document, ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 494
HTML document, ASCII text, with very long lines (1279)
downloaded
Chrome Cache Entry: 495
JSON data
downloaded
Chrome Cache Entry: 496
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 497
PNG image data, 1 x 1, 1-bit colormap, non-interlaced
downloaded
Chrome Cache Entry: 498
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 499
PNG image data, 939 x 940, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 500
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 501
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 502
ASCII text, with very long lines (1409)
downloaded
Chrome Cache Entry: 503
ASCII text, with very long lines (2386)
downloaded
Chrome Cache Entry: 504
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 505
ASCII text, with very long lines (50292), with no line terminators
downloaded
Chrome Cache Entry: 506
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x360, components 3
downloaded
Chrome Cache Entry: 507
TrueType Font data, 18 tables, 1st "FFTM", 16 names, Macintosh
downloaded
Chrome Cache Entry: 508
GIF image data, version 89a, 1 x 1
downloaded
Chrome Cache Entry: 509
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 510
GIF image data, version 89a, 1 x 1
downloaded
Chrome Cache Entry: 511
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 512
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 513
ASCII text, with very long lines (2515)
downloaded
Chrome Cache Entry: 514
ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 515
ASCII text, with no line terminators
downloaded
Chrome Cache Entry: 516
GIF image data, version 89a, 1 x 1
downloaded
Chrome Cache Entry: 517
HTML document, Unicode text, UTF-8 text, with very long lines (10075)
downloaded
Chrome Cache Entry: 518
ASCII text, with very long lines (8492), with no line terminators
downloaded
Chrome Cache Entry: 519
ASCII text, with very long lines (3545)
downloaded
Chrome Cache Entry: 520
HTML document, ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 521
HTML document, ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 522
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 523
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x360, components 3
downloaded
Chrome Cache Entry: 524
HTML document, ASCII text, with very long lines (62366)
downloaded
Chrome Cache Entry: 525
TrueType Font data, 18 tables, 1st "FFTM", 16 names, Macintosh
downloaded
Chrome Cache Entry: 526
ASCII text, with very long lines (398)
downloaded
Chrome Cache Entry: 527
PNG image data, 480 x 320, 8-bit/color RGB, non-interlaced
downloaded
Chrome Cache Entry: 528
PNG image data, 1 x 1, 1-bit colormap, non-interlaced
downloaded
Chrome Cache Entry: 529
PNG image data, 1 x 1, 1-bit colormap, non-interlaced
downloaded
Chrome Cache Entry: 530
JSON data
dropped
Chrome Cache Entry: 531
PNG image data, 826 x 183, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 532
ASCII text, with very long lines (19948), with no line terminators
downloaded
Chrome Cache Entry: 533
ASCII text, with very long lines (7410)
downloaded
Chrome Cache Entry: 534
HTML document, ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 535
ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 536
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 672x560, components 3
downloaded
Chrome Cache Entry: 537
HTML document, ASCII text, with very long lines (10994), with no line terminators
downloaded
Chrome Cache Entry: 538
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x360, components 3
downloaded
Chrome Cache Entry: 539
ASCII text, with no line terminators
dropped
Chrome Cache Entry: 541
PNG image data, 1 x 1, 1-bit colormap, non-interlaced
downloaded
Chrome Cache Entry: 542
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x360, components 3
downloaded
Chrome Cache Entry: 543
ASCII text, with very long lines (33507), with no line terminators
downloaded
Chrome Cache Entry: 545
HTML document, ASCII text, with very long lines (46897), with no line terminators
downloaded
Chrome Cache Entry: 546
PNG image data, 61 x 16, 8-bit/color RGB, non-interlaced
dropped
Chrome Cache Entry: 547
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 548
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x360, components 3
downloaded
Chrome Cache Entry: 549
ASCII text, with very long lines (7170)
downloaded
Chrome Cache Entry: 550
HTML document, ASCII text, with very long lines (41812), with no line terminators
downloaded
Chrome Cache Entry: 551
Web Open Font Format (Version 2), TrueType, length 15344, version 1.0
downloaded
Chrome Cache Entry: 552
Unicode text, UTF-8 text, with very long lines (36212), with no line terminators
downloaded
Chrome Cache Entry: 553
JSON data
downloaded
Chrome Cache Entry: 554
ASCII text, with very long lines (2066), with no line terminators
downloaded
Chrome Cache Entry: 555
ASCII text, with very long lines (2200)
downloaded
Chrome Cache Entry: 556
ASCII text, with very long lines (65186)
downloaded
Chrome Cache Entry: 557
HTML document, Unicode text, UTF-8 text, with very long lines (65532), with no line terminators
downloaded
Chrome Cache Entry: 558
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 559
GIF image data, version 89a, 1 x 1
downloaded
Chrome Cache Entry: 560
PNG image data, 200 x 204, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 561
HTML document, ASCII text, with very long lines (44891), with no line terminators
downloaded
Chrome Cache Entry: 562
ASCII text, with very long lines (1572)
downloaded
Chrome Cache Entry: 563
ASCII text, with very long lines (1572)
downloaded
Chrome Cache Entry: 564
PNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced
downloaded
Chrome Cache Entry: 565
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 566
ASCII text, with very long lines (2213)
downloaded
Chrome Cache Entry: 567
MS Windows icon resource - 1 icon, 256x256 with PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced, 32 bits/pixel
downloaded
Chrome Cache Entry: 568
ASCII text, with very long lines (1572)
downloaded
Chrome Cache Entry: 569
Web Open Font Format (Version 2), TrueType, length 15552, version 1.0
downloaded
Chrome Cache Entry: 570
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 571
ASCII text, with no line terminators
downloaded
Chrome Cache Entry: 572
ASCII text, with very long lines (8394), with no line terminators
downloaded
Chrome Cache Entry: 574
PNG image data, 200 x 204, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 575
TrueType Font data, 18 tables, 1st "FFTM", 16 names, Macintosh
downloaded
Chrome Cache Entry: 577
ASCII text, with very long lines (558)
downloaded
Chrome Cache Entry: 579
ASCII text, with very long lines (4128)
downloaded
Chrome Cache Entry: 580
HTML document, Unicode text, UTF-8 text, with very long lines (65532), with no line terminators
downloaded
Chrome Cache Entry: 581
GIF image data, version 89a, 1 x 1
downloaded
Chrome Cache Entry: 583
GIF image data, version 89a, 1 x 1
dropped
Chrome Cache Entry: 584
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 585
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 586
GIF image data, version 89a, 1 x 1
downloaded
Chrome Cache Entry: 587
HTML document, ASCII text, with very long lines (10861), with no line terminators
downloaded
Chrome Cache Entry: 588
TrueType Font data, 18 tables, 1st "FFTM", 16 names, Macintosh
downloaded
Chrome Cache Entry: 589
PNG image data, 826 x 183, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 590
ASCII text, with no line terminators
downloaded
Chrome Cache Entry: 591
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 592
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 593
ASCII text, with very long lines (12449)
downloaded
Chrome Cache Entry: 594
Java source, ASCII text
downloaded
Chrome Cache Entry: 595
ASCII text, with no line terminators
downloaded
Chrome Cache Entry: 596
ASCII text, with very long lines (1233)
downloaded
Chrome Cache Entry: 597
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 598
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 599
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 600
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=5, xresolution=74, yresolution=82, resolutionunit=2, datetime=2023:09:10 14:54:46], baseline, precision 8, 312x78, components 3
downloaded
Chrome Cache Entry: 601
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 602
ASCII text, with very long lines (60805)
downloaded
Chrome Cache Entry: 603
PNG image data, 100 x 63, 8-bit/color RGB, non-interlaced
downloaded
Chrome Cache Entry: 604
ASCII text, with very long lines (65469)
downloaded
Chrome Cache Entry: 607
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x360, components 3
downloaded
Chrome Cache Entry: 608
HTML document, ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 609
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 610
GIF image data, version 89a, 1 x 1
downloaded
Chrome Cache Entry: 611
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 613
PNG image data, 1 x 1, 1-bit colormap, non-interlaced
downloaded
Chrome Cache Entry: 614
HTML document, ASCII text
downloaded
Chrome Cache Entry: 615
HTML document, ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 616
JSON data
downloaded
Chrome Cache Entry: 617
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 618
HTML document, ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 619
JSON data
dropped
Chrome Cache Entry: 620
HTML document, ASCII text, with very long lines (634)
downloaded
Chrome Cache Entry: 621
HTML document, ASCII text, with very long lines (315), with no line terminators
downloaded
Chrome Cache Entry: 622
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 623
C++ source, ASCII text, with very long lines (351)
downloaded
Chrome Cache Entry: 624
PNG image data, 484 x 484, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 625
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 626
ASCII text
downloaded
Chrome Cache Entry: 627
ASCII text, with very long lines (2784)
downloaded
Chrome Cache Entry: 628
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 631
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 632
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 633
GIF image data, version 89a, 1 x 1
downloaded
Chrome Cache Entry: 634
ASCII text, with very long lines (3323)
downloaded
Chrome Cache Entry: 635
HTML document, ASCII text, with very long lines (11019), with no line terminators
downloaded
Chrome Cache Entry: 636
ASCII text, with very long lines (60925)
downloaded
Chrome Cache Entry: 637
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 638
PNG image data, 2 x 2, 8-bit/color RGB, non-interlaced
dropped
Chrome Cache Entry: 639
PNG image data, 1 x 1, 1-bit colormap, non-interlaced
downloaded
Chrome Cache Entry: 640
ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 641
JSON data
dropped
Chrome Cache Entry: 642
ASCII text, with very long lines (27407)
downloaded
Chrome Cache Entry: 643
ASCII text, with very long lines (1055)
downloaded
Chrome Cache Entry: 644
JPEG image data, progressive, precision 8, 300x600, components 3
downloaded
Chrome Cache Entry: 645
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
downloaded
There are 310 hidden files, click here to show them.

Processes

Path
Cmdline
Malicious
C:\Users\user\Downloads\DhSrpBnDAT\PiratedLauncher.exe
"C:\Users\user\Downloads\DhSrpBnDAT\PiratedLauncher.exe"
malicious
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --single-argument https://work.ink/1XfF/erherhrehrehe
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-pre-read-main-dll --field-trial-handle=2016,i,1164867825189045582,17837619946412437627,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction --variations-seed-version --mojo-platform-channel-handle=2236 /prefetch:3
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --single-argument https://work.ink/1XfF/erherhrehrehe
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-pre-read-main-dll --field-trial-handle=1880,i,15141168138323434685,13522655820232853329,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction --variations-seed-version=20250402-050119.386000 --mojo-platform-channel-handle=2164 /prefetch:3

URLs

Name
IP
Malicious
https://piratedheat.top/api/json
172.67.177.246
https://player.vimeo.com/api/player.js
unknown
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/d/92a42790be7943cf/1743637053459/xxaG8HliFDRmbmH
104.18.94.41
https://www.googletagservices.com/agrp/
unknown
https://www.anonymised.io/privacy
unknown
http://s0.2mdn.net/ads/studio/close.png
unknown
https://work.ink/1XfF/erherhrehreheC:
unknown
https://work.ink/_app/immutable/assets/ProductSans-Regular.744c8a73.ttf
104.26.11.119
https://www.google.com/ads/measurement/l?ebcid=ALh7CaQQAbs8m2dB874biOVB6MgTZsPz3TtKMmPK3UT7Od8gfNTGOwuYQa30PnLGYv-FBCOqU5imMJACg7dadc7rrHQk-J-i6A
142.250.80.100
https://betterimages.work.ink/?url=aHR0cHM6Ly90cGMuZ29vZ2xlc3luZGljYXRpb24uY29tL2FyY2hpdmUvc2ltZ2FkLzEzMjk4OTkwODYzNTAwNTQ3NTc0&width=365
104.26.10.119
http://www.fontbureau.com/designers
unknown
https://dclk-match.dotomi.com/match/bounce/current?networkId=14000&version=1&google_gid=CAESELIo3tHbVS333tQtAqw-Uzo&google_cver=1&google_push=AXcoOmS9BreI0OjlARaaKAg5oItysS71hGIWvG3ThatMeFuU4uXJs3K7DnSeDchnxizgUPBOI4EACi2tZawrUd3TKhihMpHEdI-JqbBS80lAAhl9M5ub9fTnyMfYgbjam_vPvkFY1TmAaSw2pw&gdpr=1&gdpr_consent=CQPPOwAQPPOwAAKA1AENBjFsAP_gAEPgAAYgK9NX_G__bWlr8T73aftkeY1P99h77sQxBgbJE-4FzLvW_JwXx2E5NAz6tqIKmRIAu3TBIQNlHJDURVCgaogVrSDMaEyUoTNKJ6BkiFMRI2dYCFxvm4tjeQCY5vr991cx2B-t7dr83dzyy4hHn3a5_2S1WJCdAYetDfv8bROb-9IOd_x8v4v4_F7pE2-eS1l_pWvp7D9-Yts_9X299_bbff5Pn__ul_-_X_vf_n37v943BXkAkw0KiCMsiQEIlAwggQAqCsICKBAEAACQNEBACYMCnIGAC6wkQAgBQADBACAAEGAAIAABIAEIgAoAKBAABAIFAAGABAMBAAwMAAYALAQCAAEB0DFMCCAQLABIzIoNMCUABIICWyoQSAIEFcIQizwCABETBQAAAgAFAAAgPBYHEkgJWJBAFxBNAAAQAABBAgUIpOzAEEAZstReDJ9GVpgWD5gmaUwDIAiCMjJNiE37QAAA.d4AACHgAAAAA
159.127.43.73
https://betterimages.work.ink/?url=aHR0cHM6Ly9lbmNyeXB0ZWQtdGJuMC5nc3RhdGljLmNvbS9pbWFnZXM/cT10Ym46QU5kOUdjUU4tWF9IMXNGS2gzXzYybDlLQUpncUgxbUJuQnBiVUkxNEFnJnM=&width=365
104.26.10.119
https://answers.chartboost.com/en-us/articles/200780269
unknown
https://creativecdn.com/cm-notify?pi=adxab&google_nid=rtb_house_br&google_gid=CAESEF1Ps1eS9RMmcTRNpzjyO4Y&google_cver=1&google_push=AXcoOmRY6mJQEPOl04lKMpz-i9qWRN4VFq5V0Z6JYWDpcTpjlMlapTpY-t4RCaVUkm0YoV9IyXwlgOAnAvDCmp95LTRoCLhQrVJIPkg3OJBzPdGaEq8Rt211Pj7xFveD_8iyUthE04XwvT8eRKg&gdpr=1&gdpr_consent=CQPPOwAQPPOwAAKA1AENBjFsAP_gAEPgAAYgK9NX_G__bWlr8T73aftkeY1P99h77sQxBgbJE-4FzLvW_JwXx2E5NAz6tqIKmRIAu3TBIQNlHJDURVCgaogVrSDMaEyUoTNKJ6BkiFMRI2dYCFxvm4tjeQCY5vr991cx2B-t7dr83dzyy4hHn3a5_2S1WJCdAYetDfv8bROb-9IOd_x8v4v4_F7pE2-eS1l_pWvp7D9-Yts_9X299_bbff5Pn__ul_-_X_vf_n37v943BXkAkw0KiCMsiQEIlAwggQAqCsICKBAEAACQNEBACYMCnIGAC6wkQAgBQADBACAAEGAAIAABIAEIgAoAKBAABAIFAAGABAMBAAwMAAYALAQCAAEB0DFMCCAQLABIzIoNMCUABIICWyoQSAIEFcIQizwCABETBQAAAgAFAAAgPBYHEkgJWJBAFxBNAAAQAABBAgUIpOzAEEAZstReDJ9GVpgWD5gmaUwDIAiCMjJNiE37QAAA.d4AACHgAAAAA
185.184.8.90
https://mygaru.com/.well-known/devicestorage.json
unknown
https://cmp.inmobi.com/tcfv2/53/cmp2ui-en.js
18.173.218.40
https://cm.g.doubleclick.net/pixel?google_nid=zeta_interactive&google_push=AXcoOmSzfyB6CNV4Xfa-sRKACKB2YkImFH9Tman0eRRtP58Ed4x6VFt3sKMsvDekssg4pi7OLOPpEv_5M8F0mNFb11pssDkFpJ8anPTX&google_hm=NjU2NzA4NjAwMDUzNjA5OTIwMw==
142.250.65.194
https://fundingchoicesmessages.google.com/i/$
unknown
http://ad.doubleclick.net/viewad/817-grey.gif
unknown
https://piratedheat.top/api/cherryvx/download.php
unknown
https://support.google.com/recaptcha/#6175971
unknown
https://admasters.media/static/vendorDisclosure.json
unknown
http://www.galapagosdesign.com/DPlease
unknown
https://um.simpli.fi/gp_match?google_gid=CAESEB-JrnEOQfliBzqJ-ce7LH0&google_cver=1&google_push=AXcoOmTdU-SLXEaxyq_B66-f_IKTFQRcbHEtnKc6ng4lwGnTV0ebPaalZXv-qqBNJ30it9DZeIuuGm5l-HSD59pOMtEz1lyeZa05Vg&gdpr=1&gdpr_consent=CQPPOwAQPPOwAAKA1AENBjFsAP_gAEPgAAYgK9NX_G__bWlr8T73aftkeY1P99h77sQxBgbJE-4FzLvW_JwXx2E5NAz6tqIKmRIAu3TBIQNlHJDURVCgaogVrSDMaEyUoTNKJ6BkiFMRI2dYCFxvm4tjeQCY5vr991cx2B-t7dr83dzyy4hHn3a5_2S1WJCdAYetDfv8bROb-9IOd_x8v4v4_F7pE2-eS1l_pWvp7D9-Yts_9X299_bbff5Pn__ul_-_X_vf_n37v943BXkAkw0KiCMsiQEIlAwggQAqCsICKBAEAACQNEBACYMCnIGAC6wkQAgBQADBACAAEGAAIAABIAEIgAoAKBAABAIFAAGABAMBAAwMAAYALAQCAAEB0DFMCCAQLABIzIoNMCUABIICWyoQSAIEFcIQizwCABETBQAAAgAFAAAgPBYHEkgJWJBAFxBNAAAQAABBAgUIpOzAEEAZstReDJ9GVpgWD5gmaUwDIAiCMjJNiE37QAAA.d4AACHgAAAAA
34.150.170.96
https://s0.2mdn.net/sadbundle/2638866704594768685/fonts/Roboto-Medium.ttf
142.250.72.102
https://um.simpli.fi/gp_match?google_gid=CAESEB-JrnEOQfliBzqJ-ce7LH0&google_cver=1&google_push=AXcoOmTe57oDKttpTrjX4EJCB1t3G8sYfxdIyaYsvZ0_q5mDLaCvfTsfM1oJK2p0X_EytsvIkgoCn-eJz5IZ1rwH3rjC8Frz2acjPS5-bFN7hZpg2J-p0yZVzMFLhVIdc8qCIB1X3wLtiAyK&gdpr=1&gdpr_consent=CQPPOwAQPPOwAAKA1AENBjFsAP_gAEPgAAYgK9NX_G__bWlr8T73aftkeY1P99h77sQxBgbJE-4FzLvW_JwXx2E5NAz6tqIKmRIAu3TBIQNlHJDURVCgaogVrSDMaEyUoTNKJ6BkiFMRI2dYCFxvm4tjeQCY5vr991cx2B-t7dr83dzyy4hHn3a5_2S1WJCdAYetDfv8bROb-9IOd_x8v4v4_F7pE2-eS1l_pWvp7D9-Yts_9X299_bbff5Pn__ul_-_X_vf_n37v943BXkAkw0KiCMsiQEIlAwggQAqCsICKBAEAACQNEBACYMCnIGAC6wkQAgBQADBACAAEGAAIAABIAEIgAoAKBAABAIFAAGABAMBAAwMAAYALAQCAAEB0DFMCCAQLABIzIoNMCUABIICWyoQSAIEFcIQizwCABETBQAAAgAFAAAgPBYHEkgJWJBAFxBNAAAQAABBAgUIpOzAEEAZstReDJ9GVpgWD5gmaUwDIAiCMjJNiE37QAAA.d4AACHgAAAAA
34.150.170.96
https://openjsf.org/
unknown
https://piratedheat.top/api/comecloser/downloadquest.php
unknown
https://betterimages.work.ink/?url=$
unknown
https://work.ink/_app/immutable/nodes/3.57b6e39a.js
104.26.11.119
https://ib.adnxs.com/getuid?https%3A%2F%2Fads.stickyadstv.com%2Fuser-registering%3FdataProviderId%3D209%26userId%3D$UID%26gdpr%3D1%26gdpr_consent%3DCQPPOwAQPPOwAAKA1AENBjFsAP_gAEPgAAYgK9NX_G__bWlr8T73aftkeY1P99h77sQxBgbJE-4FzLvW_JwXx2E5NAz6tqIKmRIAu3TBIQNlHJDURVCgaogVrSDMaEyUoTNKJ6BkiFMRI2dYCFxvm4tjeQCY5vr991cx2B-t7dr83dzyy4hHn3a5_2S1WJCdAYetDfv8bROb-9IOd_x8v4v4_F7pE2-eS1l_pWvp7D9-Yts_9X299_bbff5Pn__ul_-_X_vf_n37v943BXkAkw0KiCMsiQEIlAwggQAqCsICKBAEAACQNEBACYMCnIGAC6wkQAgBQADBACAAEGAAIAABIAEIgAoAKBAABAIFAAGABAMBAAwMAAYALAQCAAEB0DFMCCAQLABIzIoNMCUABIICWyoQSAIEFcIQizwCABETBQAAAgAFAAAgPBYHEkgJWJBAFxBNAAAQAABBAgUIpOzAEEAZstReDJ9GVpgWD5gmaUwDIAiCMjJNiE37QAAA.d4AACHgAAAAA&gdpr=1&gdpr_consent=CQPPOwAQPPOwAAKA1AENBjFsAP_gAEPgAAYgK9NX_G__bWlr8T73aftkeY1P99h77sQxBgbJE-4FzLvW_JwXx2E5NAz6tqIKmRIAu3TBIQNlHJDURVCgaogVrSDMaEyUoTNKJ6BkiFMRI2dYCFxvm4tjeQCY5vr991cx2B-t7dr83dzyy4hHn3a5_2S1WJCdAYetDfv8bROb-9IOd_x8v4v4_F7pE2-eS1l_pWvp7D9-Yts_9X299_bbff5Pn__ul_-_X_vf_n37v943BXkAkw0KiCMsiQEIlAwggQAqCsICKBAEAACQNEBACYMCnIGAC6wkQAgBQADBACAAEGAAIAABIAEIgAoAKBAABAIFAAGABAMBAAwMAAYALAQCAAEB0DFMCCAQLABIzIoNMCUABIICWyoQSAIEFcIQizwCABETBQAAAgAFAAAgPBYHEkgJWJBAFxBNAAAQAABBAgUIpOzAEEAZstReDJ9GVpgWD5gmaUwDIAiCMjJNiE37QAAA.d4AACHgAAAAA
103.43.90.114
https://support.google.com/recaptcha
unknown
https://s0.2mdn.net/simgad/8542918745996461304
142.250.80.70
https://workink.ladesk.com/scripts/track_visit.php?t=Y&C=Track&B=jlgtyzk38wclmlaepp38dtjz20klqhcb&S=x2jx9urj8kv1aozzq49r3lwtx60jfza3&pt=Launcher%20-%20Key%201%2F2%20-%20at%20work.ink&url=__S__work.ink%2F1XfF%2Ferherhrehrehe&ref=__S__work.ink%2F1XfF%2Ferherhrehrehe&sr=1280x1024&ud=%7B%7D&vn=Y&ci=&jstk=Y
3.75.35.9
https://rtb.adentifi.com/CookieSyncAdX?google_gid=CAESEEwYG30L_04VkIvFi6k2rnE&google_cver=1&google_push=AXcoOmQDhomYe_UhDSu5dp5Y-AsudOr2TazlgG9IanVdCO-lK5Cw7P_09YJVn6rCBCrATPgX0AU2cGQ-7kqG_U9YSTEdSC_uG8WlsA&gdpr=1&gdpr_consent=CQPPOwAQPPOwAAKA1AENBjFsAP_gAEPgAAYgK9NX_G__bWlr8T73aftkeY1P99h77sQxBgbJE-4FzLvW_JwXx2E5NAz6tqIKmRIAu3TBIQNlHJDURVCgaogVrSDMaEyUoTNKJ6BkiFMRI2dYCFxvm4tjeQCY5vr991cx2B-t7dr83dzyy4hHn3a5_2S1WJCdAYetDfv8bROb-9IOd_x8v4v4_F7pE2-eS1l_pWvp7D9-Yts_9X299_bbff5Pn__ul_-_X_vf_n37v943BXkAkw0KiCMsiQEIlAwggQAqCsICKBAEAACQNEBACYMCnIGAC6wkQAgBQADBACAAEGAAIAABIAEIgAoAKBAABAIFAAGABAMBAAwMAAYALAQCAAEB0DFMCCAQLABIzIoNMCUABIICWyoQSAIEFcIQizwCABETBQAAAgAFAAAgPBYHEkgJWJBAFxBNAAAQAABBAgUIpOzAEEAZstReDJ9GVpgWD5gmaUwDIAiCMjJNiE37QAAA.d4AACHgAAAAA
3.214.205.218
https://piratedheat.top/VS_Logo.pngT
unknown
https://work.ink/_api/v2/ws?userId=466095&custom=erherhrehrehe&referrer=https%3A%2F%2Fwork.ink%2F1XfF%2Ferherhrehrehe&toLink=&serverOverride=&customerSessionToken=
104.26.11.119
https://a.rfihub.com/cm?pub=445&in=1&google_gid=CAESEErpgddOev4Bgtls8tr37qo&google_cver=1&google_push=AXcoOmT8lvDzuPFPyXdn53YgUewIc1dTOSLp_vs72M3tl6a0TeFHeJETHTJL7ghCtaU8tIY1FTZ8bq6KZBM9Gk9gGqX_KhnkLblHZvk&gdpr=1&gdpr_consent=CQPPOwAQPPOwAAKA1AENBjFsAP_gAEPgAAYgK9NX_G__bWlr8T73aftkeY1P99h77sQxBgbJE-4FzLvW_JwXx2E5NAz6tqIKmRIAu3TBIQNlHJDURVCgaogVrSDMaEyUoTNKJ6BkiFMRI2dYCFxvm4tjeQCY5vr991cx2B-t7dr83dzyy4hHn3a5_2S1WJCdAYetDfv8bROb-9IOd_x8v4v4_F7pE2-eS1l_pWvp7D9-Yts_9X299_bbff5Pn__ul_-_X_vf_n37v943BXkAkw0KiCMsiQEIlAwggQAqCsICKBAEAACQNEBACYMCnIGAC6wkQAgBQADBACAAEGAAIAABIAEIgAoAKBAABAIFAAGABAMBAAwMAAYALAQCAAEB0DFMCCAQLABIzIoNMCUABIICWyoQSAIEFcIQizwCABETBQAAAgAFAAAgPBYHEkgJWJBAFxBNAAAQAABBAgUIpOzAEEAZstReDJ9GVpgWD5gmaUwDIAiCMjJNiE37QAAA.d4AACHgAAAAA
199.38.167.130
https://a.rfihub.com/cm?pub=445&in=1&google_gid=CAESEErpgddOev4Bgtls8tr37qo&google_cver=1&google_push=AXcoOmT6iqT8Dy_9fx63VfGRwYNGhh87d18lmPvHWveqSn8qW7SPmf-XrcEyGVeveLdHxy0VrgSBYKJeQ8TzGftdgRGQs13JAQDL0Q&gdpr=1&gdpr_consent=CQPPOwAQPPOwAAKA1AENBjFsAP_gAEPgAAYgK9NX_G__bWlr8T73aftkeY1P99h77sQxBgbJE-4FzLvW_JwXx2E5NAz6tqIKmRIAu3TBIQNlHJDURVCgaogVrSDMaEyUoTNKJ6BkiFMRI2dYCFxvm4tjeQCY5vr991cx2B-t7dr83dzyy4hHn3a5_2S1WJCdAYetDfv8bROb-9IOd_x8v4v4_F7pE2-eS1l_pWvp7D9-Yts_9X299_bbff5Pn__ul_-_X_vf_n37v943BXkAkw0KiCMsiQEIlAwggQAqCsICKBAEAACQNEBACYMCnIGAC6wkQAgBQADBACAAEGAAIAABIAEIgAoAKBAABAIFAAGABAMBAAwMAAYALAQCAAEB0DFMCCAQLABIzIoNMCUABIICWyoQSAIEFcIQizwCABETBQAAAgAFAAAgPBYHEkgJWJBAFxBNAAAQAABBAgUIpOzAEEAZstReDJ9GVpgWD5gmaUwDIAiCMjJNiE37QAAA.d4AACHgAAAAA
199.38.167.130
https://a.c.appier.net/gcm?google_gid=CAESEFm5WQxjok9c5B1jvPJB5DQ&google_cver=1&google_push=AXcoOmT9kS4pkpYkKUQcnzWJWGYd4Gvumfgvx5epY2PorJsqch-eq6OJmPZglavj3lGuNQcHWU0rLonlT8jDDkjc7kscp5Z0zH9J3g&gdpr=1&gdpr_consent=CQPPOwAQPPOwAAKA1AENBjFsAP_gAEPgAAYgK9NX_G__bWlr8T73aftkeY1P99h77sQxBgbJE-4FzLvW_JwXx2E5NAz6tqIKmRIAu3TBIQNlHJDURVCgaogVrSDMaEyUoTNKJ6BkiFMRI2dYCFxvm4tjeQCY5vr991cx2B-t7dr83dzyy4hHn3a5_2S1WJCdAYetDfv8bROb-9IOd_x8v4v4_F7pE2-eS1l_pWvp7D9-Yts_9X299_bbff5Pn__ul_-_X_vf_n37v943BXkAkw0KiCMsiQEIlAwggQAqCsICKBAEAACQNEBACYMCnIGAC6wkQAgBQADBACAAEGAAIAABIAEIgAoAKBAABAIFAAGABAMBAAwMAAYALAQCAAEB0DFMCCAQLABIzIoNMCUABIICWyoQSAIEFcIQizwCABETBQAAAgAFAAAgPBYHEkgJWJBAFxBNAAAQAABBAgUIpOzAEEAZstReDJ9GVpgWD5gmaUwDIAiCMjJNiE37QAAA.d4AACHgAAAAA
172.105.235.90
https://work.ink/_app/immutable/nodes/0.70b85033.js
104.26.11.119
https://dsum-sec.casalemedia.com/rrum?ixi=0&cm_dsp_id=85&gdpr=1&gdpr_consent=CQPPOwAQPPOwAAKA1AENBjFsAP_gAEPgAAYgK9NX_G__bWlr8T73aftkeY1P99h77sQxBgbJE-4FzLvW_JwXx2E5NAz6tqIKmRIAu3TBIQNlHJDURVCgaogVrSDMaEyUoTNKJ6BkiFMRI2dYCFxvm4tjeQCY5vr991cx2B-t7dr83dzyy4hHn3a5_2S1WJCdAYetDfv8bROb-9IOd_x8v4v4_F7pE2-eS1l_pWvp7D9-Yts_9X299_bbff5Pn__ul_-_X_vf_n37v943BXkAkw0KiCMsiQEIlAwggQAqCsICKBAEAACQNEBACYMCnIGAC6wkQAgBQADBACAAEGAAIAABIAEIgAoAKBAABAIFAAGABAMBAAwMAAYALAQCAAEB0DFMCCAQLABIzIoNMCUABIICWyoQSAIEFcIQizwCABETBQAAAgAFAAAgPBYHEkgJWJBAFxBNAAAQAABBAgUIpOzAEEAZstReDJ9GVpgWD5gmaUwDIAiCMjJNiE37QAAA.d4AACHgAAAAA&addtl_consent=1~1416.2834.3531.2358.2621.2929.14034.576.2376.27831.1987.839.2768.1899.89.2739.2852.2816.3002.3089.3209.3184.3250.320.34631.1969.1577.1917.2995.1548.2035.2882.2966.2669.2900.3257.2322.495.2109.2501.2472.2812.1786.1870.3043.1149.2651.3316.1226.3155.2917.1653.1968.1152.3106.32531.1415.494.70.2983.1166.1558.2822.385.2416.3095.3172.1284.2650.143.39131.3315.2881.2965.3154.2405.2328.3077.3238.1375.3150.286.2156.2895.2387.1053.3136.3299.2949.2813.2865.3222.23031.2312.2652.2931.2140.3288.3281.2532.1345.2770.2854.3211.13632.2605.27731.1495.1579.2997.1810.3109.3270.3063.3234.1067.3182.1638.3073.2986.4631.2927.2461.2979.3126.3210.2370.1827.3151.2633.1215.3185.36831.2604.1095.2359.430.2930.899.1721.2985.2901.3251.2418.2681.83.2817.3090.2883.3240.1143.1227.2407.2575.2400.2670.2801.2486.3183.550.11031.3235.3074.2325.1186.2636.3028.1449.2867.6931.931.16931.11531.367.3017.3010.29631.2849.21233.2552.41531.2124.1889.1651.2838.2999.3188.3272.3223.1840.2950.3318.55.318.1942.2884.2968.10231.1525.3300.436.1097.3016.1003.1276.2354.1591.3135.2980.3253.2343.568.16831.2767.3187.2107.3731.26831.3094.2821.3119.1312.2916.3000.10831.1099.2177.2517.2488.2572.2064.2880.230.2964.3237.1725.3059.1301.2898.3076.7235.1843.2869.3226.3167.3219.2047.3314.2225.2309.1678.3012.117.1825.2690.3058.3075.2897.2981.2684.3093.415.1051.1230.2886.3236.2963.2571.2403.4531.2798.2850.2213.2003.2784.1842.3225.2839.1838.2440.7831.2535.445.1985.1677.1570.3293.737.821.2596.2292.2222.3038.2614.2698.327.2687.4731.2918.803.2186.2526.1423.3068.5231.2567.8931.3173.2830.2234.39531.1845.1929.2889.2973.2465.1040.2805.239.291.1583.2577.3190.2994.981.820.904.34231.3019.3292.1540.1880.1964.147.2661.1712.2584.802.1046.25931.2072.2888.3245.2335.2643.2090.3227.2947.2056.1667.43.12831.2956.3145.3324.28831.2414.2074.61.424.2115.3008.1268.3127.3306.2609.2133.1107.2920.1162.560.322.1978.1697.1967.2331.864.2569.2510.311.2909.2961.574.10631.2657.2377.2216.196.2608.2878.2787.3228.1732.591.584.2205.2282.108.1750.1512.2860.149.2831.2656.3097.2103.2527.40632.2919.3003.2253.3328.3163.1440.1703.2645.2729.2484.2568.2908.394.2425.1859.2493.14332.228.2987.2563.3260.4131.192.2874.2958.938.1603.2629.2713.2468.3053.371.2027.3231.9731.1782.1866.3217.2863.3290.122.14237.1270.2772.28731.2695.2135.2219.25731.2677.2940.979.587.1252.15731.3052.2891.2975.2646.2068.3070.1745.3009.2008.2610.1584.3034.1455.1031.2873.3230.2628.3307.28031.25131.2862.7931.3128.1716.2658.491.3099.1800.144.3831.323.1555.3005.2844.3117.407.985.2336.486.3194.3330.1659.2583.2846.2923.3189.3196.2279.2447.2642.559.135.2166.1616.3066.1963.33631.1403.2481.2660.3055.3296.1027.2477.13731.2316.1682.1290.2887.2894.3244.2411.124.1832.3215.1356.922.2137.523.2130.1188.2792.2876.2564.2088.159.26031.1878.1962.93.2827.3100.2922.3331.2498.2893.1205.540.211.1944.1699.2039.1307.46.2612.3309.2791.1765.2875.522.1135.2052.2147.2714.2941.1421.3018.3112.4831.1092.1516.2542.266.3130.259.2220.3214&cb=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dcasale_media2_dsp_secure%26google_cm%26google_hm%3D
104.18.27.193
https://piratedheat.top/heatlogo.png
172.67.177.246
https://piratedheat.top/api/checkKey.php?api_key=l
unknown
https://workink.ladesk.com/scripts/file.php?view=Y&file=fz20f8n40kv6f88gnwdpodaqzu0l0iaq
3.75.35.9
https://betterimages.work.ink/?url=aHR0cHM6Ly9lbmNyeXB0ZWQtdGJuMC5nc3RhdGljLmNvbS9pbWFnZXM/cT10Ym46QU5kOUdjVDBOZzRvMVpTS3BZWFVuejlXOVphTWo2cFliYUVFWlQzQ2h3JnM=&width=365
104.26.10.119
https://www.synamedia.com/privacy-policy/
unknown
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=92a42677692842db&lang=auto
104.18.95.41
https://a.rfihub.com/cm?pub=445&in=1&google_gid=CAESEErpgddOev4Bgtls8tr37qo&google_cver=1&google_push=AXcoOmSzfyB6CNV4Xfa-sRKACKB2YkImFH9Tman0eRRtP58Ed4x6VFt3sKMsvDekssg4pi7OLOPpEv_5M8F0mNFb11pssDkFpJ8anPTX&gdpr=1&gdpr_consent=CQPPOwAQPPOwAAKA1AENBjFsAP_gAEPgAAYgK9NX_G__bWlr8T73aftkeY1P99h77sQxBgbJE-4FzLvW_JwXx2E5NAz6tqIKmRIAu3TBIQNlHJDURVCgaogVrSDMaEyUoTNKJ6BkiFMRI2dYCFxvm4tjeQCY5vr991cx2B-t7dr83dzyy4hHn3a5_2S1WJCdAYetDfv8bROb-9IOd_x8v4v4_F7pE2-eS1l_pWvp7D9-Yts_9X299_bbff5Pn__ul_-_X_vf_n37v943BXkAkw0KiCMsiQEIlAwggQAqCsICKBAEAACQNEBACYMCnIGAC6wkQAgBQADBACAAEGAAIAABIAEIgAoAKBAABAIFAAGABAMBAAwMAAYALAQCAAEB0DFMCCAQLABIzIoNMCUABIICWyoQSAIEFcIQizwCABETBQAAAgAFAAAgPBYHEkgJWJBAFxBNAAAQAABBAgUIpOzAEEAZstReDJ9GVpgWD5gmaUwDIAiCMjJNiE37QAAA.d4AACHgAAAAA
199.38.167.131
https://securepubads.g.doubleclick.net/pagead/js/cocar.js
unknown
https://betterimages.work.ink/?url=aHR0cHM6Ly90cGMuZ29vZ2xlc3luZGljYXRpb24uY29tL3NpbWdhZC84OTUyMTYzNzkwMjEyMzg4MTg5&width=365
104.26.10.119
https://dis.criteo.com/dis/usersync.aspx?r=4&p=14&cp=google&cu=1&url=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dcjp%26google_hm%3D%40%40CRITEO_USERID%40%40%26google_push%3DAXcoOmS5pQHVC4t7MWriyc4KuXhCWtcDSqIp-yxZ-Gj7xwCFmvfxTpTnizlYQI00gMjYHJhfalRIatRxieExd6ycn5cw4nf6O8CPSg&google_gid=CAESEPUj4-748I28bQzxzfAdupw&google_cver=1&gdpr=1&gdpr_consent=CQPPOwAQPPOwAAKA1AENBjFsAP_gAEPgAAYgK9NX_G__bWlr8T73aftkeY1P99h77sQxBgbJE-4FzLvW_JwXx2E5NAz6tqIKmRIAu3TBIQNlHJDURVCgaogVrSDMaEyUoTNKJ6BkiFMRI2dYCFxvm4tjeQCY5vr991cx2B-t7dr83dzyy4hHn3a5_2S1WJCdAYetDfv8bROb-9IOd_x8v4v4_F7pE2-eS1l_pWvp7D9-Yts_9X299_bbff5Pn__ul_-_X_vf_n37v943BXkAkw0KiCMsiQEIlAwggQAqCsICKBAEAACQNEBACYMCnIGAC6wkQAgBQADBACAAEGAAIAABIAEIgAoAKBAABAIFAAGABAMBAAwMAAYALAQCAAEB0DFMCCAQLABIzIoNMCUABIICWyoQSAIEFcIQizwCABETBQAAAgAFAAAgPBYHEkgJWJBAFxBNAAAQAABBAgUIpOzAEEAZstReDJ9GVpgWD5gmaUwDIAiCMjJNiE37QAAA.d4AACHgAAAAA
74.119.117.16
https://betterimages.work.ink/?url=aHR0cHM6Ly9leHRlcm5hbC1jb250ZW50LmR1Y2tkdWNrZ28uY29tL2l1Lz91PWh0dHBzJTNBJTJGJTJGd3d3Lm5vdGlvbi5jb20lMkZmcm9udC1zdGF0aWMlMkZtZXRhJTJGZGVmYXVsdC5wbmcmZj0xJm5vZmI9MSZpcHQ9NTljMWI3OTMzYjk1OTgwNTgyNDBjNGYxZDc4MDM1NGQyOTJlYjM1N2MxMzIzYzIxNmI1N2RiZWQ4YWUzYjM5OCZpcG89aW1hZ2Vz&width=365
104.26.10.119
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=92a426beefb11016&lang=auto
104.18.95.41
https://betterimages.work.ink/?url=aHR0cHM6Ly90cGMuZ29vZ2xlc3luZGljYXRpb24uY29tL2FyY2hpdmUvc2ltZ2FkLzg5MzU4NjY5MzAzMzE1NDg2MjQ=&width=365
104.26.10.119
https://dis.criteo.com/dis/usersync.aspx?r=4&p=14&cp=google&cu=1&url=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dcjp%26google_hm%3D%40%40CRITEO_USERID%40%40%26google_push%3DAXcoOmRV3oz_eNb1x1TJW-b926SukAdQFW7_SQv5hpyrc3HhCJjioim6hDe8oZf2p7RHZU9URdt8rl6NDSlmdsfFDx9lT1FCAVf7JEQKbrz0wheqHarlowQaDVAGt2M6Sx6DGI_IUNNS9Aker_k&google_gid=CAESEPUj4-748I28bQzxzfAdupw&google_cver=1&gdpr=1&gdpr_consent=CQPPOwAQPPOwAAKA1AENBjFsAP_gAEPgAAYgK9NX_G__bWlr8T73aftkeY1P99h77sQxBgbJE-4FzLvW_JwXx2E5NAz6tqIKmRIAu3TBIQNlHJDURVCgaogVrSDMaEyUoTNKJ6BkiFMRI2dYCFxvm4tjeQCY5vr991cx2B-t7dr83dzyy4hHn3a5_2S1WJCdAYetDfv8bROb-9IOd_x8v4v4_F7pE2-eS1l_pWvp7D9-Yts_9X299_bbff5Pn__ul_-_X_vf_n37v943BXkAkw0KiCMsiQEIlAwggQAqCsICKBAEAACQNEBACYMCnIGAC6wkQAgBQADBACAAEGAAIAABIAEIgAoAKBAABAIFAAGABAMBAAwMAAYALAQCAAEB0DFMCCAQLABIzIoNMCUABIICWyoQSAIEFcIQizwCABETBQAAAgAFAAAgPBYHEkgJWJBAFxBNAAAQAABBAgUIpOzAEEAZstReDJ9GVpgWD5gmaUwDIAiCMjJNiE37QAAA.d4AACHgAAAAA
74.119.117.16
https://cm.g.doubleclick.net/pixel?google_push=AXcoOmR18Ft0NvAAIMV7zy6UamsNZfIfOTZM6KbWBB3HdBh3_yd_2Z-bQ0T9RYmnV0qgmWquPk8ZS02UaG0osGUM45c9uSrwhmfF7Kys5O2R3auLBe7h0eQOrboTeCZd7VwWUSbbdsIPYJ02PIw&google_nid=whaleco_services_llc&gdpr_consent=CQPPOwAQPPOwAAKA1AENBjFsAP_gAEPgAAYgK9NX_G__bWlr8T73aftkeY1P99h77sQxBgbJE-4FzLvW_JwXx2E5NAz6tqIKmRIAu3TBIQNlHJDURVCgaogVrSDMaEyUoTNKJ6BkiFMRI2dYCFxvm4tjeQCY5vr991cx2B-t7dr83dzyy4hHn3a5_2S1WJCdAYetDfv8bROb-9IOd_x8v4v4_F7pE2-eS1l_pWvp7D9-Yts_9X299_bbff5Pn__ul_-_X_vf_n37v943BXkAkw0KiCMsiQEIlAwggQAqCsICKBAEAACQNEBACYMCnIGAC6wkQAgBQADBACAAEGAAIAABIAEIgAoAKBAABAIFAAGABAMBAAwMAAYALAQCAAEB0DFMCCAQLABIzIoNMCUABIICWyoQSAIEFcIQizwCABETBQAAAgAFAAAgPBYHEkgJWJBAFxBNAAAQAABBAgUIpOzAEEAZstReDJ9GVpgWD5gmaUwDIAiCMjJNiE37QAAA.d4AACHgAAAAA
142.250.65.194
http://mathiasbynens.be/
unknown
https://www.temu.com/api/adx/cm/pixel?google_gid=CAESEDRt0fL8RNEt1j1HCc4-cV8&google_cver=1&google_push=AXcoOmRmfoMsTfiqvxnEgs0J1gkN6FyasdGN56tuWuBfH7ZELhS9SVDWT-DVawju9JpupIKf16hh7EN3vBPJraBCBB4BWLyEoxiJT8-L&gdpr=1&gdpr_consent=CQPPOwAQPPOwAAKA1AENBjFsAP_gAEPgAAYgK9NX_G__bWlr8T73aftkeY1P99h77sQxBgbJE-4FzLvW_JwXx2E5NAz6tqIKmRIAu3TBIQNlHJDURVCgaogVrSDMaEyUoTNKJ6BkiFMRI2dYCFxvm4tjeQCY5vr991cx2B-t7dr83dzyy4hHn3a5_2S1WJCdAYetDfv8bROb-9IOd_x8v4v4_F7pE2-eS1l_pWvp7D9-Yts_9X299_bbff5Pn__ul_-_X_vf_n37v943BXkAkw0KiCMsiQEIlAwggQAqCsICKBAEAACQNEBACYMCnIGAC6wkQAgBQADBACAAEGAAIAABIAEIgAoAKBAABAIFAAGABAMBAAwMAAYALAQCAAEB0DFMCCAQLABIzIoNMCUABIICWyoQSAIEFcIQizwCABETBQAAAgAFAAAgPBYHEkgJWJBAFxBNAAAQAABBAgUIpOzAEEAZstReDJ9GVpgWD5gmaUwDIAiCMjJNiE37QAAA.d4AACHgAAAAA
20.33.69.37
http://underscorejs.org/LICENSE
unknown
https://www.bose.co.uk/en_gb/legal/cookie_policy.html
unknown
https://s0.2mdn.net/sadbundle/16010757000807545995/js/build/adkit.0.13.6.min.js
142.250.72.102
https://cmp.inmobi.com/tcfv2/53/CMP_FILE?referer=work.ink
unknown
https://a.c.appier.net/gcm?google_gid=CAESEFm5WQxjok9c5B1jvPJB5DQ&google_cver=1&google_push=AXcoOmTDahQGSFpep0f6lp3RqeAAwMeQf89Rz0yU622XmhxID6fdbhXwW7RAiSZGgpUTrkCR1eaH2GhMr8f0ZErl8UnKHg1WxJs5&gdpr=1&gdpr_consent=CQPPOwAQPPOwAAKA1AENBjFsAP_gAEPgAAYgK9NX_G__bWlr8T73aftkeY1P99h77sQxBgbJE-4FzLvW_JwXx2E5NAz6tqIKmRIAu3TBIQNlHJDURVCgaogVrSDMaEyUoTNKJ6BkiFMRI2dYCFxvm4tjeQCY5vr991cx2B-t7dr83dzyy4hHn3a5_2S1WJCdAYetDfv8bROb-9IOd_x8v4v4_F7pE2-eS1l_pWvp7D9-Yts_9X299_bbff5Pn__ul_-_X_vf_n37v943BXkAkw0KiCMsiQEIlAwggQAqCsICKBAEAACQNEBACYMCnIGAC6wkQAgBQADBACAAEGAAIAABIAEIgAoAKBAABAIFAAGABAMBAAwMAAYALAQCAAEB0DFMCCAQLABIzIoNMCUABIICWyoQSAIEFcIQizwCABETBQAAAgAFAAAgPBYHEkgJWJBAFxBNAAAQAABBAgUIpOzAEEAZstReDJ9GVpgWD5gmaUwDIAiCMjJNiE37QAAA.d4AACHgAAAAA
172.105.235.90
http://googleads.g.doubleclick.net
unknown
https://piratedheat.top/Crack.zip
unknown
https://work.ink/_app/immutable/nodes/1.efb1eb3c.js
104.26.11.119
https://sync.springserve.com/usersync?redirect_url=https%3A%2F%2Fads.stickyadstv.com%2Fuser-registering%3FdataProviderId%3D1628%26userId%3DSS_UUID&gdpr=1&gdpr_consent=CQPPOwAQPPOwAAKA1AENBjFsAP_gAEPgAAYgK9NX_G__bWlr8T73aftkeY1P99h77sQxBgbJE-4FzLvW_JwXx2E5NAz6tqIKmRIAu3TBIQNlHJDURVCgaogVrSDMaEyUoTNKJ6BkiFMRI2dYCFxvm4tjeQCY5vr991cx2B-t7dr83dzyy4hHn3a5_2S1WJCdAYetDfv8bROb-9IOd_x8v4v4_F7pE2-eS1l_pWvp7D9-Yts_9X299_bbff5Pn__ul_-_X_vf_n37v943BXkAkw0KiCMsiQEIlAwggQAqCsICKBAEAACQNEBACYMCnIGAC6wkQAgBQADBACAAEGAAIAABIAEIgAoAKBAABAIFAAGABAMBAAwMAAYALAQCAAEB0DFMCCAQLABIzIoNMCUABIICWyoQSAIEFcIQizwCABETBQAAAgAFAAAgPBYHEkgJWJBAFxBNAAAQAABBAgUIpOzAEEAZstReDJ9GVpgWD5gmaUwDIAiCMjJNiE37QAAA.d4AACHgAAAAA
3.214.246.9
https://app.clipflip.video/static/iab-vendor.json
unknown
https://www.jysk.ee/cookies
unknown
https://ep2.adtrafficquality.google/sodar/$
unknown
https://npms.io/search?q=ponyfill.
unknown
https://work.ink/_app/immutable/chunks/search.d4ffa297.js
104.26.11.119
https://ag.innovid.com/trk?tid=11711&google_gid=CAESEMFyDwEUQLeB37yQRD2qryE&google_cver=1&google_push=AXcoOmSBCtqiNZpLarr7xj35V2xKT9l-HaOBGLmTuyx7lIebSbNTOiqdzaU3Fkbx9x9ZK23WJPPtdGHrMC-J8uFYQGt_TJv9ISk6-0g&gdpr=1&gdpr_consent=CQPPOwAQPPOwAAKA1AENBjFsAP_gAEPgAAYgK9NX_G__bWlr8T73aftkeY1P99h77sQxBgbJE-4FzLvW_JwXx2E5NAz6tqIKmRIAu3TBIQNlHJDURVCgaogVrSDMaEyUoTNKJ6BkiFMRI2dYCFxvm4tjeQCY5vr991cx2B-t7dr83dzyy4hHn3a5_2S1WJCdAYetDfv8bROb-9IOd_x8v4v4_F7pE2-eS1l_pWvp7D9-Yts_9X299_bbff5Pn__ul_-_X_vf_n37v943BXkAkw0KiCMsiQEIlAwggQAqCsICKBAEAACQNEBACYMCnIGAC6wkQAgBQADBACAAEGAAIAABIAEIgAoAKBAABAIFAAGABAMBAAwMAAYALAQCAAEB0DFMCCAQLABIzIoNMCUABIICWyoQSAIEFcIQizwCABETBQAAAgAFAAAgPBYHEkgJWJBAFxBNAAAQAABBAgUIpOzAEEAZstReDJ9GVpgWD5gmaUwDIAiCMjJNiE37QAAA.d4AACHgAAAAA
18.224.196.27
http://www.founder.com.cn/cn/bThe
unknown
https://www.redcubes.biz/privacy-policy
unknown
https://work.ink/1XfF/erherhrehrehe
https://ep2.adtrafficquality.google/sodar/sodar2.js
142.251.35.161
https://googleads.g.doubleclick.net/
unknown
https://cmp.inmobi.com/GVL-v2/cmp-list.json
18.173.218.40
https://ad.doubleclick.net/
unknown
https://cmp.inmobi.com
unknown
https://piratedheat.top/api/comecloser/downloadpcvr.php
unknown
https://www.google.com/ads/measurement/l?ebcid=ALh7CaSmadWGxIcNeUWJfK1IcsRxrj28jQUHZJsGjGZPIAI9gVEHOKCrqpD5qDg3cwZe2u12jsItwlr9gwaqbffk5Y3rpMk1SQ
142.250.80.100
https://s0.2mdn.net/sadbundle/2638866704594768685/styles/main.css
142.250.72.102
https://s0.2mdn.net/sadbundle/16010757000807545995/standard/content.js?unique=174363705642
142.250.72.102
https://github.com/google/safevalues/issues
unknown
https://www.clipflip.video/data-privacy
unknown
https://ib.adnxs.com/getuid?https://cm.g.doubleclick.net/pixel?google_nid=appnexus&google_hm=${BASE64_UID_ENC}
103.43.91.58
https://cloud.google.com/contact
unknown
https://piratedheat.top/api/heat/download.php
unknown
https://www.algorix.co/gdpr-disclosure.json
unknown
https://piratedheat.top/api/checkKey.php?api_key=
172.67.177.246
https://www.iab.com/topics/public-policy/
unknown
https://dclk-match.dotomi.com/match/bounce/current?DotomiTest=72e2d6533eb2376&is_secure=true&networkId=14000&version=1&google_gid=CAESELIo3tHbVS333tQtAqw-Uzo&google_cver=1&google_push=AXcoOmQN1ooN_5AEPDe4PD_gnJ95UmxaWPNGSg8X6EDi6hpyj6ow5055zYI3lPpc_qlfrHX2zL92y1lThsatk1_itftxlbdjThun-Q&gdpr=1&gdpr_consent=CQPPOwAQPPOwAAKA1AENBjFsAP_gAEPgAAYgK9NX_G__bWlr8T73aftkeY1P99h77sQxBgbJE-4FzLvW_JwXx2E5NAz6tqIKmRIAu3TBIQNlHJDURVCgaogVrSDMaEyUoTNKJ6BkiFMRI2dYCFxvm4tjeQCY5vr991cx2B-t7dr83dzyy4hHn3a5_2S1WJCdAYetDfv8bROb-9IOd_x8v4v4_F7pE2-eS1l_pWvp7D9-Yts_9X299_bbff5Pn__ul_-_X_vf_n37v943BXkAkw0KiCMsiQEIlAwggQAqCsICKBAEAACQNEBACYMCnIGAC6wkQAgBQADBACAAEGAAIAABIAEIgAoAKBAABAIFAAGABAMBAAwMAAYALAQCAAEB0DFMCCAQLABIzIoNMCUABIICWyoQSAIEFcIQizwCABETBQAAAgAFAAAgPBYHEkgJWJBAFxBNAAAQAABBAgUIpOzAEEAZstReDJ9GVpgWD5gmaUwDIAiCMjJNiE37QAAA.d4AACHgAAAAA
216.34.207.172
https://work.ink/media/logo_circle.svg
104.26.11.119
https://api.cmp.inmobi.com/?log=%7B%22userEvents%22%3A%5B%7B%22clientTimestamp%22%3A1743637015900%2C%22event%22%3A%22startOnPage%3AGDPR_0%22%7D%2C%7B%22clientTimestamp%22%3A1743637017407%2C%22event%22%3A%22acceptAll%3Aclick%22%7D%5D%2C%22acceptanceState%22%3A%22All%22%2C%22gbcData%22%3A%22%7B%5C%221%5C%22%3A%5C%22granted%5C%22%2C%5C%222%5C%22%3A%5C%22granted%5C%22%2C%5C%223%5C%22%3A%5C%22granted%5C%22%2C%5C%224%5C%22%3A%5C%22granted%5C%22%2C%5C%225%5C%22%3A%5C%22granted%5C%22%2C%5C%226%5C%22%3A%5C%22granted%5C%22%2C%5C%227%5C%22%3A%5C%22granted%5C%22%7D%22%2C%22clientTimestamp%22%3A1743637017407%2C%22operationType%22%3A%22done%22%2C%22sessionId%22%3A%22GBC-y4rhtnuqp7jne2mvtcq1%22%7D
18.159.154.70
https://admasters.media/privacy/
unknown
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/pat/92a426eecd9dd954/1743637027842/624fe64a7b7e5393cbf53d634969ca799090b7ad63e1a6b38e354317f88f0f65/N69LFxmCj6RQmcc
104.18.95.41
There are 90 hidden URLs, click here to show them.

Domains

Name
IP
Malicious
fp4.ads.stickyadstv.com.akadns.net
63.251.28.211
securepubads.g.doubleclick.net
142.250.65.162
um.simpli.fi
34.150.170.96
rtb-csync-use1.smartadserver.com
216.22.16.73
tr.blismedia.com
34.96.105.8
global.px.quantserve.com
192.184.68.166
work.ink
104.26.11.119
betterimages.work.ink
104.26.10.119
www.temu.com.cdn.cloudflare.net
104.18.43.206
cdn.w55c.net
35.212.33.9
l-0005.l-msedge.net
13.107.42.14
choice-apis-prod-2120274730.eu-central-1.elb.amazonaws.com
18.159.154.70
na-ice.360yield.com
54.159.240.74
cm.g.doubleclick.net
142.250.65.194
ds-pr-bh.ybp.gysm.yahoodns.net
3.224.102.41
www.google.com
142.251.40.228
dcs-ups.g03.yahoodns.net
69.147.82.60
publickeyservice-a.msmt-3.gcp.privacysandboxservices.com
34.49.23.1
tagr-gcp-odr-use1.mookie1.com
35.190.90.30
static-cdn.hotjar.com
13.33.252.108
e9957.e4.akamaiedge.net
23.51.57.155
match.adsrvr.org
15.197.193.217
match.prod.bidr.io
52.70.147.192
d1d95dev3v7dza.cloudfront.net
3.171.139.88
creativecdn.com
185.184.8.90
2.ec1.vbus.apps.ladesk.com
3.71.145.122
ep2.adtrafficquality.google
142.251.35.161
d2ctznuk6ro1vp.cloudfront.net
13.225.63.103
d162h6x3rxav67.cloudfront.net
18.173.132.63
betterdeals.gg
104.21.71.39
googleads.g.doubleclick.net
142.251.32.98
ads.travelaudience.com
35.190.0.66
a-us-east.rfihub.com.akadns.net
199.38.167.131
a.tribalfusion.com
172.64.150.63
gw-cp-us-isp.temu.com
20.33.69.37
challenges.cloudflare.com
104.18.95.41
res.betterdeals.gg
172.67.143.21
firewall-external-1524972847.us-east-1.elb.amazonaws.com
3.212.76.159
mts.l.google.com
142.250.72.110
dsp-cookie.trafficmanager.net
20.253.86.149
s0.2mdn.net
142.250.80.70
widget.us5.vip.prod.criteo.com
74.119.117.16
aragorn-prod-oh-acai-lb.inbake.com
18.224.196.27
d23sp3kzv1t6m5.cloudfront.net
18.173.218.40
h2.shared.global.fastly.net
151.101.2.49
piratedheat.top
172.67.177.246
s.tribalfusion.com
172.64.150.63
vc-live-cf.hotjar.io
3.168.122.69
static.cloudflareinsights.com
104.16.79.73
www.googletagservices.com
142.250.65.226
dsp.adkernel.com
174.137.133.49
track.adformnet.akadns.net
185.167.164.53
workink.ladesk.com
3.75.35.9
script.hotjar.com
18.164.96.87
rtb.adentifi.com
3.92.9.191
sync.srv.stackadapt.com
52.7.141.70
ipv4.imgur.map.fastly.net
199.232.192.193
a.nel.cloudflare.com
35.190.80.1
gocm-jp.c.appier.net.akadns.net
172.105.235.90
ep1.adtrafficquality.google
142.250.65.226
ad.doubleclick.net
142.250.65.166
ib.sin1.geoadnxs.com
103.43.91.58
sync.springserve.com
3.214.246.9
dsum-sec.casalemedia.com
104.18.27.193
outspot2-ams.adx.opera.com
82.145.213.8
bfp.global.dual.dotomi.weighted.com.akadns.net
159.127.43.73
tr-us.adsmoloco.com
107.178.251.134
impssl.constantcontact.com.cdn.cloudflare.net
104.18.42.5
ag.innovid.com
unknown
pm.w55c.net
unknown
a.rfihub.com
unknown
ads.stickyadstv.com
unknown
pixel.adsafeprotected.com
unknown
static.hotjar.com
unknown
api.cmp.inmobi.com
unknown
dis.criteo.com
unknown
odr.mookie1.com
unknown
c1.adform.net
unknown
px.ads.linkedin.com
unknown
1f2e7.v.fwmrm.net
unknown
dclk-match.dotomi.com
unknown
sync-tm.everesttech.net
unknown
sync.teads.tv
unknown
impssl.constantcontact.com
unknown
t.adx.opera.com
unknown
ups.analytics.yahoo.com
unknown
d.agkn.com
unknown
vc.hotjar.io
unknown
mweb.ck.inmobi.com
unknown
a.c.appier.net
unknown
dsp.360yield.com
unknown
rtb-csync.smartadserver.com
unknown
www.temu.com
unknown
publickeyservice.msmt.gcp.privacysandboxservices.com
unknown
pr-bh.ybp.yahoo.com
unknown
tag.researchnow.com
unknown
mts0.google.com
unknown
cms.quantserve.com
unknown
i.imgur.com
unknown
ib.adnxs.com
unknown
There are 90 hidden domains, click here to show them.

IPs

IP
Domain
Country
Malicious
18.173.132.63
d162h6x3rxav67.cloudfront.net
United States
63.251.28.211
fp4.ads.stickyadstv.com.akadns.net
United States
13.33.252.108
static-cdn.hotjar.com
United States
185.167.164.53
track.adformnet.akadns.net
United States
35.236.220.17
unknown
United States
142.251.40.134
unknown
United States
20.33.69.37
gw-cp-us-isp.temu.com
United States
35.190.80.1
a.nel.cloudflare.com
United States
142.250.65.198
unknown
United States
104.18.42.5
impssl.constantcontact.com.cdn.cloudflare.net
United States
35.71.131.137
unknown
United States
199.232.192.193
ipv4.imgur.map.fastly.net
United States
3.171.139.88
d1d95dev3v7dza.cloudfront.net
United States
159.127.43.73
bfp.global.dual.dotomi.weighted.com.akadns.net
United States
199.38.167.131
a-us-east.rfihub.com.akadns.net
United States
199.38.167.130
unknown
United States
216.22.16.73
rtb-csync-use1.smartadserver.com
United States
18.224.196.27
aragorn-prod-oh-acai-lb.inbake.com
United States
3.214.205.218
unknown
United States
3.212.76.159
firewall-external-1524972847.us-east-1.elb.amazonaws.com
United States
142.251.32.110
unknown
United States
142.250.80.70
s0.2mdn.net
United States
18.164.96.87
script.hotjar.com
United States
18.173.218.40
d23sp3kzv1t6m5.cloudfront.net
United States
142.251.35.161
ep2.adtrafficquality.google
United States
69.147.82.60
dcs-ups.g03.yahoodns.net
United States
151.101.2.49
h2.shared.global.fastly.net
United States
192.168.2.16
unknown
unknown
142.251.40.228
www.google.com
United States
142.250.72.100
unknown
United States
104.16.79.73
static.cloudflareinsights.com
United States
104.26.10.119
betterimages.work.ink
United States
52.7.141.70
sync.srv.stackadapt.com
United States
142.250.64.102
unknown
United States
107.178.251.134
tr-us.adsmoloco.com
United States
172.67.143.21
res.betterdeals.gg
United States
142.250.81.230
unknown
United States
44.217.247.185
unknown
United States
18.173.218.68
unknown
United States
35.212.33.9
cdn.w55c.net
United States
18.173.218.64
unknown
United States
172.67.69.160
unknown
United States
35.190.0.66
ads.travelaudience.com
United States
52.70.147.192
match.prod.bidr.io
United States
54.159.240.74
na-ice.360yield.com
United States
3.224.102.41
ds-pr-bh.ybp.gysm.yahoodns.net
United States
192.184.68.228
unknown
United States
18.158.39.44
unknown
United States
3.71.145.122
2.ec1.vbus.apps.ladesk.com
United States
3.75.35.9
workink.ladesk.com
United States
172.217.165.134
unknown
United States
174.137.133.49
dsp.adkernel.com
United States
142.250.80.38
unknown
United States
3.92.9.191
rtb.adentifi.com
United States
142.250.80.100
unknown
United States
104.21.71.39
betterdeals.gg
United States
34.49.23.1
publickeyservice-a.msmt-3.gcp.privacysandboxservices.com
United States
142.250.72.102
unknown
United States
104.18.95.41
challenges.cloudflare.com
United States
172.64.150.63
a.tribalfusion.com
United States
35.190.90.30
tagr-gcp-odr-use1.mookie1.com
United States
13.107.42.14
l-0005.l-msedge.net
United States
185.184.8.90
creativecdn.com
Poland
3.233.173.17
unknown
United States
142.251.41.6
unknown
United States
142.250.65.166
ad.doubleclick.net
United States
142.250.72.110
mts.l.google.com
United States
82.145.213.8
outspot2-ams.adx.opera.com
United Kingdom
34.150.170.96
um.simpli.fi
United States
3.168.122.69
vc-live-cf.hotjar.io
United States
104.18.94.41
unknown
United States
20.253.86.149
dsp-cookie.trafficmanager.net
United States
23.51.57.155
e9957.e4.akamaiedge.net
United States
15.197.193.217
match.adsrvr.org
United States
104.18.43.206
www.temu.com.cdn.cloudflare.net
United States
104.26.11.119
work.ink
United States
192.184.68.166
global.px.quantserve.com
United States
142.251.32.102
unknown
United States
172.67.177.246
piratedheat.top
United States
34.96.105.8
tr.blismedia.com
United States
104.18.27.193
dsum-sec.casalemedia.com
United States
142.250.65.196
unknown
United States
13.225.63.103
d2ctznuk6ro1vp.cloudfront.net
United States
74.119.117.16
widget.us5.vip.prod.criteo.com
United States
142.250.65.194
cm.g.doubleclick.net
United States
103.43.91.58
ib.sin1.geoadnxs.com
Australia
216.34.207.172
unknown
United States
18.159.154.70
choice-apis-prod-2120274730.eu-central-1.elb.amazonaws.com
United States
172.105.235.90
gocm-jp.c.appier.net.akadns.net
United States
142.251.40.97
unknown
United States
There are 80 hidden IPs, click here to show them.

Registry

Path
Value
Malicious
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing
EnableConsoleTracing
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\PiratedLauncher_RASAPI32
EnableFileTracing
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\PiratedLauncher_RASAPI32
EnableAutoFileTracing
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\PiratedLauncher_RASAPI32
EnableConsoleTracing
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\PiratedLauncher_RASAPI32
FileTracingMask
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\PiratedLauncher_RASAPI32
ConsoleTracingMask
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\PiratedLauncher_RASAPI32
MaxFileSize
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\PiratedLauncher_RASAPI32
FileDirectory
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\PiratedLauncher_RASMANCS
EnableFileTracing
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\PiratedLauncher_RASMANCS
EnableAutoFileTracing
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\PiratedLauncher_RASMANCS
EnableConsoleTracing
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\PiratedLauncher_RASMANCS
FileTracingMask
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\PiratedLauncher_RASMANCS
ConsoleTracingMask
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\PiratedLauncher_RASMANCS
MaxFileSize
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\PiratedLauncher_RASMANCS
FileDirectory
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer
SlowContextMenuEntries
There are 6 hidden registries, click here to show them.

Memdumps

Base Address
Regiontype
Protect
Malicious
Download
3291000
trusted library allocation
page read and write
 malicious
C92000
unkown
page readonly
 malicious
32FF000
trusted library allocation
page read and write
12C0000
heap
page read and write
5746000
trusted library allocation
page read and write
5BC0000
trusted library allocation
page read and write
D2C3000
heap
page read and write
1240000
heap
page read and write
3732000
trusted library allocation
page read and write
3540000
trusted library allocation
page read and write
302B000
trusted library allocation
page execute and read and write
D124000
heap
page read and write
B7FC000
trusted library allocation
page read and write
5BE0000
heap
page read and write
CEC6000
trusted library allocation
page read and write
D39D000
heap
page read and write
9900000
trusted library allocation
page read and write
EDB0000
trusted library allocation
page read and write
4291000
trusted library allocation
page read and write
573E000
trusted library allocation
page read and write
945F000
stack
page read and write
AD30000
heap
page read and write
5B6E000
stack
page read and write
12DA000
heap
page read and write
B7FE000
trusted library allocation
page read and write
97AE000
stack
page read and write
AC40000
trusted library allocation
page read and write
56D0000
heap
page read and write
3329000
trusted library allocation
page read and write
3317000
trusted library allocation
page read and write
19FA000
trusted library allocation
page execute and read and write
331B000
trusted library allocation
page read and write
3552000
trusted library allocation
page read and write
B7F9000
trusted library allocation
page read and write
5760000
trusted library allocation
page read and write
AF30000
trusted library allocation
page read and write
7B2E000
heap
page read and write
357A000
trusted library allocation
page read and write
12A9E000
stack
page read and write
7D10000
trusted library allocation
page read and write
3307000
trusted library allocation
page read and write
983E000
stack
page read and write
5A50000
heap
page read and write
338A000
trusted library allocation
page read and write
AA3C000
stack
page read and write
32D8000
trusted library allocation
page read and write
98BE000
stack
page read and write
B7DA000
trusted library allocation
page read and write
AE11000
heap
page read and write
32E1000
trusted library allocation
page read and write
308E000
stack
page read and write
13B3000
heap
page read and write
A31D000
stack
page read and write
5BD0000
trusted library allocation
page read and write
7442000
trusted library allocation
page read and write
B879000
trusted library allocation
page read and write
92AD000
stack
page read and write
7B7A000
heap
page read and write
795F000
stack
page read and write
AC9C000
stack
page read and write
370C000
trusted library allocation
page read and write
A800000
trusted library allocation
page execute and read and write
5800000
trusted library allocation
page execute and read and write
D236000
heap
page read and write
5A60000
heap
page read and write
13ED000
trusted library allocation
page execute and read and write
3040000
trusted library allocation
page read and write
1A07000
heap
page read and write
3463000
trusted library allocation
page read and write
1304000
heap
page read and write
170E000
stack
page read and write
5790000
trusted library allocation
page read and write
5710000
heap
page execute and read and write
D3A4000
heap
page read and write
799E000
stack
page read and write
3098000
trusted library allocation
page read and write
184E000
stack
page read and write
15CF000
stack
page read and write
B360000
trusted library allocation
page read and write
EC7000
stack
page read and write
C230000
trusted library allocation
page read and write
D020000
heap
page read and write
5741000
trusted library allocation
page read and write
AE84000
heap
page read and write
D0B9000
heap
page read and write
A6AE000
stack
page read and write
3303000
trusted library allocation
page read and write
5810000
trusted library allocation
page read and write
9920000
trusted library allocation
page read and write
3325000
trusted library allocation
page read and write
3477000
trusted library allocation
page read and write
D199000
heap
page read and write
FA0E000
heap
page read and write
19F2000
trusted library allocation
page read and write
B6CC000
trusted library allocation
page read and write
128E000
stack
page read and write
1299E000
stack
page read and write
B80B000
trusted library allocation
page read and write
5D70000
heap
page read and write
1375000
heap
page read and write
AEA7000
heap
page read and write
5BE5000
heap
page read and write
3331000
trusted library allocation
page read and write
5770000
trusted library allocation
page read and write
EC6D000
stack
page read and write
4C91000
trusted library allocation
page read and write
5713000
heap
page execute and read and write
5C00000
heap
page read and write
350B000
trusted library allocation
page read and write
3706000
trusted library allocation
page read and write
19ED000
trusted library allocation
page execute and read and write
785E000
stack
page read and write
95F0000
trusted library section
page read and write
C9BC000
heap
page read and write
D420000
trusted library allocation
page read and write
332D000
trusted library allocation
page read and write
C690000
trusted library allocation
page read and write
91B0000
trusted library allocation
page execute and read and write
D213000
heap
page read and write
AF0F000
heap
page read and write
13F0000
heap
page read and write
10281000
trusted library allocation
page read and write
A8BE000
stack
page read and write
35B8000
trusted library allocation
page read and write
92EF000
stack
page read and write
574D000
trusted library allocation
page read and write
B867000
trusted library allocation
page read and write
34BA000
trusted library allocation
page read and write
32E9000
trusted library allocation
page read and write
34B8000
trusted library allocation
page read and write
7AF0000
heap
page read and write
3313000
trusted library allocation
page read and write
3339000
trusted library allocation
page read and write
B6C0000
trusted library allocation
page read and write
5812000
trusted library allocation
page read and write
D3A0000
heap
page read and write
1A00000
heap
page read and write
1381000
heap
page read and write
9910000
trusted library allocation
page execute and read and write
935E000
stack
page read and write
DE4A000
heap
page read and write
13F5000
heap
page read and write
3025000
trusted library allocation
page execute and read and write
57F0000
heap
page read and write
D3B0000
heap
page read and write
A7F0000
trusted library allocation
page read and write
1230000
heap
page read and write
58B0000
heap
page read and write
357C000
trusted library allocation
page read and write
11ADD000
heap
page read and write
E030000
trusted library allocation
page read and write
B710000
trusted library allocation
page read and write
58A0000
heap
page read and write
330B000
trusted library allocation
page read and write
32D6000
trusted library allocation
page read and write
D19D000
heap
page read and write
3020000
trusted library allocation
page read and write
AD99000
heap
page read and write
13E3000
trusted library allocation
page execute and read and write
B6C3000
trusted library allocation
page read and write
AB3C000
stack
page read and write
A46D000
stack
page read and write
57B0000
trusted library allocation
page read and write
572B000
trusted library allocation
page read and write
3180000
heap
page read and write
B6E3000
trusted library allocation
page read and write
5890000
trusted library section
page readonly
377E000
trusted library allocation
page read and write
D350000
heap
page read and write
58B3000
heap
page read and write
A830000
heap
page read and write
3335000
trusted library allocation
page read and write
A7EE000
stack
page read and write
A5AE000
stack
page read and write
A6EE000
stack
page read and write
F3A4000
heap
page read and write
174E000
stack
page read and write
DD45000
heap
page read and write
FC7000
stack
page read and write
3702000
trusted library allocation
page read and write
7AA0000
heap
page execute and read and write
7B84000
heap
page read and write
A820000
trusted library allocation
page read and write
7A9E000
stack
page read and write
1311000
heap
page read and write
130F000
heap
page read and write
5820000
trusted library allocation
page read and write
7D15000
trusted library allocation
page read and write
AF29000
heap
page read and write
1385000
heap
page read and write
350F000
trusted library allocation
page read and write
95EC000
stack
page read and write
5BF0000
heap
page read and write
7B38000
heap
page read and write
C095000
heap
page read and write
3321000
trusted library allocation
page read and write
9840000
trusted library allocation
page read and write
B0F0000
trusted library allocation
page read and write
A41E000
stack
page read and write
32DD000
trusted library allocation
page read and write
B0A2000
trusted library allocation
page read and write
ACA0000
trusted library allocation
page read and write
3130000
heap
page execute and read and write
13E0000
trusted library allocation
page read and write
12DE000
heap
page read and write
9620000
trusted library allocation
page execute and read and write
32E5000
trusted library allocation
page read and write
9300000
trusted library allocation
page read and write
56F0000
trusted library allocation
page execute and read and write
5B70000
trusted library allocation
page execute and read and write
19F6000
trusted library allocation
page execute and read and write
37A1000
trusted library allocation
page read and write
C90000
unkown
page readonly
334B000
trusted library allocation
page read and write
5D8D000
heap
page read and write
5780000
trusted library allocation
page read and write
7AD0000
heap
page read and write
9630000
trusted library allocation
page read and write
19F0000
trusted library allocation
page read and write
96AC000
stack
page read and write
12AB0000
heap
page read and write
5C27000
heap
page read and write
B6D4000
trusted library allocation
page read and write
98C3000
trusted library allocation
page read and write
5720000
trusted library allocation
page read and write
B6D1000
trusted library allocation
page read and write
12AA0000
heap
page read and write
538D000
stack
page read and write
3022000
trusted library allocation
page read and write
12089000
heap
page read and write
12C7000
heap
page read and write
12F7000
heap
page read and write
5785000
trusted library allocation
page read and write
94EC000
stack
page read and write
588B000
stack
page read and write
B280000
heap
page read and write
3090000
trusted library allocation
page read and write
AC48000
trusted library allocation
page read and write
317C000
stack
page read and write
5BC9000
trusted library allocation
page read and write
AECA000
heap
page read and write
D06C000
heap
page read and write
CB70000
trusted library allocation
page read and write
3734000
trusted library allocation
page read and write
7D0F000
stack
page read and write
12020000
heap
page read and write
13D0000
trusted library allocation
page read and write
13E4000
trusted library allocation
page read and write
D304000
heap
page read and write
160E000
stack
page read and write
5700000
trusted library allocation
page read and write
7420000
trusted library allocation
page read and write
D87E000
stack
page read and write
19E0000
trusted library allocation
page read and write
330F000
trusted library allocation
page read and write
A56C000
stack
page read and write
135F000
heap
page read and write
99A0000
trusted library allocation
page read and write
7C0E000
stack
page read and write
5C23000
heap
page read and write
335F000
trusted library allocation
page read and write
12D0000
heap
page read and write
3027000
trusted library allocation
page execute and read and write
D2A0000
heap
page read and write
328E000
stack
page read and write
7D1A000
trusted library allocation
page read and write
There are 256 hidden memdumps, click here to show them.

DOM / HTML

URL
Malicious
https://work.ink/1XfF/erherhrehrehe
https://work.ink/1XfF/erherhrehrehe
https://work.ink/1XfF/erherhrehrehe
https://work.ink/1XfF/erherhrehrehe
https://work.ink/1XfF/erherhrehrehe
https://work.ink/1XfF/erherhrehrehe
https://work.ink/1XfF/erherhrehrehe
https://work.ink/1XfF/erherhrehrehe
https://work.ink/1XfF/erherhrehrehe
https://work.ink/1XfF/erherhrehrehe
https://work.ink/1XfF/erherhrehrehe
https://work.ink/1XfF/erherhrehrehe
https://work.ink/1XfF/erherhrehrehe
https://work.ink/1XfF/erherhrehrehe
https://work.ink/1XfF/erherhrehrehe
https://work.ink/1XfF/erherhrehrehe
https://work.ink/1XfF/erherhrehrehe
https://work.ink/1XfF/erherhrehrehe
There are 8 hidden doms, click here to show them.