Files
File Path
|
Type
|
Category
|
Malicious
|
|
---|---|---|---|---|
Chrome Cache Entry: 100
|
Java source, ASCII text, with very long lines (5844)
|
dropped
|
||
Chrome Cache Entry: 101
|
ASCII text, with very long lines (9113)
|
dropped
|
||
Chrome Cache Entry: 102
|
ASCII text
|
downloaded
|
||
Chrome Cache Entry: 103
|
ASCII text, with very long lines (895)
|
dropped
|
||
Chrome Cache Entry: 104
|
Web Open Font Format (Version 2), TrueType, length 11056, version 1.0
|
downloaded
|
||
Chrome Cache Entry: 105
|
Unicode text, UTF-8 text, with very long lines (62881)
|
downloaded
|
||
Chrome Cache Entry: 106
|
ASCII text, with very long lines (65536), with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 107
|
HTML document, Unicode text, UTF-8 text, with very long lines (57411)
|
downloaded
|
||
Chrome Cache Entry: 108
|
JSON data
|
downloaded
|
||
Chrome Cache Entry: 109
|
ASCII text, with very long lines (65536), with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 110
|
ASCII text, with very long lines (394)
|
dropped
|
||
Chrome Cache Entry: 111
|
SVG Scalable Vector Graphics image
|
downloaded
|
||
Chrome Cache Entry: 112
|
ASCII text, with very long lines (65536), with no line terminators
|
dropped
|
||
Chrome Cache Entry: 113
|
ASCII text, with very long lines (394)
|
downloaded
|
||
Chrome Cache Entry: 114
|
ASCII text, with very long lines (306)
|
downloaded
|
||
Chrome Cache Entry: 115
|
ASCII text, with very long lines (9113)
|
downloaded
|
||
Chrome Cache Entry: 116
|
Unicode text, UTF-8 text, with very long lines (24043)
|
downloaded
|
||
Chrome Cache Entry: 117
|
Unicode text, UTF-8 text, with very long lines (10777)
|
downloaded
|
||
Chrome Cache Entry: 118
|
PNG image data, 144 x 144, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
Chrome Cache Entry: 85
|
MS Windows icon resource - 3 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel
|
dropped
|
||
Chrome Cache Entry: 86
|
Java source, ASCII text, with very long lines (5844)
|
downloaded
|
||
Chrome Cache Entry: 87
|
data
|
dropped
|
||
Chrome Cache Entry: 88
|
Unicode text, UTF-8 text, with very long lines (10777)
|
dropped
|
||
Chrome Cache Entry: 89
|
ASCII text, with very long lines (306)
|
dropped
|
||
Chrome Cache Entry: 90
|
Web Open Font Format (Version 2), TrueType, length 11016, version 1.0
|
downloaded
|
||
Chrome Cache Entry: 91
|
ASCII text, with very long lines (10465)
|
dropped
|
||
Chrome Cache Entry: 92
|
ASCII text, with very long lines (65536), with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 93
|
ASCII text, with very long lines (10465)
|
downloaded
|
||
Chrome Cache Entry: 94
|
HTML document, ASCII text, with very long lines (1757), with CRLF, CR, LF line terminators
|
downloaded
|
||
Chrome Cache Entry: 95
|
data
|
downloaded
|
||
Chrome Cache Entry: 96
|
Unicode text, UTF-8 text, with very long lines (24043)
|
dropped
|
||
Chrome Cache Entry: 97
|
Unicode text, UTF-8 text, with very long lines (62881)
|
dropped
|
||
Chrome Cache Entry: 98
|
ASCII text, with very long lines (895)
|
downloaded
|
||
Chrome Cache Entry: 99
|
MS Windows icon resource - 3 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel
|
downloaded
|
There are 25 hidden files, click here to show them.
Processes
Path
|
Cmdline
|
Malicious
|
|
---|---|---|---|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
|
||
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US
--service-sandbox-type=none --mojo-platform-channel-handle=2144 --field-trial-handle=2024,i,812826071641393304,11803860906050503024,262144
--disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction
/prefetch:8
|
||
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" "http://www.beta-casinu.com/"
|
||
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --single-argument http://tg//login?token=AQKwb_dmmCK2O6Xr9UTVd7qpxBWuNm6LwVTay9NYuR0bjg
|
||
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US
--service-sandbox-type=none --mojo-platform-channel-handle=2040 --field-trial-handle=1136,i,5276499293907575968,17547598059227624932,262144
--disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction
/prefetch:8
|
URLs
Name
|
IP
|
Malicious
|
|
---|---|---|---|
http://www.beta-casinu.com/
|
|||
https://web.telegram.org/
|
unknown
|
||
https://www.beta-casinu.com/
|
|||
https://ads.telegram.org/guidelines).
|
unknown
|
||
https://www.beta-casinu.com/countries-CzeCvYH8.js
|
172.67.144.230
|
||
https://www.beta-casinu.com/crypto.worker-CfCshcpI.js
|
172.67.144.230
|
||
https://browsehappy.com/
|
unknown
|
||
https://www.beta-casinu.com/langSign-CN-ja8rh.js
|
172.67.144.230
|
||
https://telegram.org/dl/ios)
|
unknown
|
||
https://telegram.org/android)
|
unknown
|
||
https://www.beta-casinu.com/index-jdz_mo9Z.css
|
172.67.144.230
|
||
https://web.telegram.org/k/
|
unknown
|
||
https://www.beta-casinu.com/putPreloader-BxORNqqF.js
|
172.67.144.230
|
||
https://www.beta-casinu.com/pageSignQR-5M1Vvp0W.js
|
172.67.144.230
|
||
https://www.beta-casinu.com/button-CiBNjYjQ.js
|
172.67.144.230
|
||
https://www.beta-casinu.com/index-B6mnDBy-.js
|
172.67.144.230
|
||
https://www.beta-casinu.com/site.webmanifest?v=jw3mK7G9Aq
|
172.67.144.230
|
||
https://t.me/botfather)
|
unknown
|
||
https://venus.web.telegram.org/apiw1
|
149.154.167.99
|
||
https://www.beta-casinu.com/sw-D9sW9K3C.js
|
172.67.144.230
|
||
https://getdesktop.telegram.org/)__
|
unknown
|
||
https://www.beta-casinu.com/qr-code-styling-CvBVNv73.js
|
172.67.144.230
|
||
https://github.com/eshaz/simple-yenc
|
unknown
|
||
https://www.beta-casinu.com/page-CDWkLdSd.js
|
172.67.144.230
|
||
https://www.beta-casinu.com/assets/fonts/KFOlCnqEu92Fr1MmEU9fBBc4AMP6lQ.woff2
|
172.67.144.230
|
||
https://www.beta-casinu.com/lang-BpEKa8Us.js
|
172.67.144.230
|
||
https://www.beta-casinu.com/mtproto.worker-BiKXXaal.js
|
172.67.144.230
|
||
https://www.beta-casinu.com/assets/fonts/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2
|
172.67.144.230
|
||
https://www.beta-casinu.com/textToSvgURL-Cnw_Q8Rw.js
|
172.67.144.230
|
||
https://telegram.org/dl/)__
|
unknown
|
||
https://www.beta-casinu.com/_commonjsHelpers-Cpj98o6Y.js
|
172.67.144.230
|
||
https://kws2.web.telegram.org/apiws
|
149.154.167.99
|
||
https://www.beta-casinu.com/assets/img/logo_padded.svg
|
172.67.144.230
|
||
https://www.beta-casinu.com/assets/img/favicon.ico?v=jw3mK7G9Ry
|
172.67.144.230
|
||
https://www.beta-casinu.com/assets/img/android-chrome-144x144.png?v=jw3mK7G9Ry
|
172.67.144.230
|
||
https://github.com/emn178/js-md5
|
unknown
|
There are 25 hidden URLs, click here to show them.
Domains
Name
|
IP
|
Malicious
|
|
---|---|---|---|
google.com
|
142.250.186.78
|
||
www.beta-casinu.com
|
172.67.144.230
|
||
venus.web.telegram.org
|
149.154.167.99
|
||
www.google.com
|
142.250.186.164
|
||
kws2.web.telegram.org
|
149.154.167.99
|
||
fp2e7a.wpc.phicdn.net
|
192.229.221.95
|
IPs
IP
|
Domain
|
Country
|
Malicious
|
|
---|---|---|---|---|
192.168.2.4
|
unknown
|
unknown
|
||
172.67.144.230
|
www.beta-casinu.com
|
United States
|
||
149.154.167.99
|
venus.web.telegram.org
|
United Kingdom
|
||
192.168.2.5
|
unknown
|
unknown
|
||
239.255.255.250
|
unknown
|
Reserved
|
||
142.250.186.164
|
www.google.com
|
United States
|
||
104.21.10.72
|
unknown
|
United States
|
DOM / HTML
URL
|
Malicious
|
|
---|---|---|
https://www.beta-casinu.com/
|
||
https://www.beta-casinu.com/
|
||
https://www.beta-casinu.com/
|
||
https://www.beta-casinu.com/
|
||
https://www.beta-casinu.com/
|