Files
File Path
|
Type
|
Category
|
Malicious
|
|
---|---|---|---|---|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Mon Sep 30 13:08:51 2024, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Mon Sep 30 13:08:51 2024, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Thu Oct 5 07:00:51 2023, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Mon Sep 30 13:08:50 2024, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Mon Sep 30 13:08:51 2024, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Mon Sep 30 13:08:50 2024, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
Chrome Cache Entry: 100
|
PNG image data, 1080 x 1080, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
Chrome Cache Entry: 101
|
ASCII text, with very long lines (3734), with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 71
|
PNG image data, 1080 x 1080, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 72
|
PNG image data, 128 x 128, 8-bit colormap, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 73
|
ASCII text, with very long lines (65451)
|
dropped
|
||
Chrome Cache Entry: 74
|
PNG image data, 1080 x 1080, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
Chrome Cache Entry: 75
|
PNG image data, 1200 x 454, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 76
|
PNG image data, 1200 x 454, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
Chrome Cache Entry: 77
|
PNG image data, 800 x 247, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
Chrome Cache Entry: 78
|
PNG image data, 1080 x 1080, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
Chrome Cache Entry: 79
|
Unicode text, UTF-8 text, with very long lines (65467)
|
dropped
|
||
Chrome Cache Entry: 80
|
PNG image data, 128 x 128, 8-bit colormap, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 81
|
PNG image data, 1080 x 1080, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 82
|
PNG image data, 1080 x 1080, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
Chrome Cache Entry: 83
|
ASCII text, with very long lines (65451)
|
downloaded
|
||
Chrome Cache Entry: 84
|
PNG image data, 800 x 247, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 85
|
PNG image data, 1000 x 1000, 1-bit colormap, non-interlaced
|
downloaded
|
||
Chrome Cache Entry: 86
|
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1200x849, components
3
|
dropped
|
||
Chrome Cache Entry: 87
|
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1200x500, components
3
|
downloaded
|
||
Chrome Cache Entry: 88
|
RIFF (little-endian) data, Web/P image
|
downloaded
|
||
Chrome Cache Entry: 89
|
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1080, components
3
|
dropped
|
||
Chrome Cache Entry: 90
|
RIFF (little-endian) data, Web/P image
|
downloaded
|
||
Chrome Cache Entry: 91
|
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1080, components
3
|
downloaded
|
||
Chrome Cache Entry: 92
|
Unicode text, UTF-8 text, with very long lines (65467)
|
downloaded
|
||
Chrome Cache Entry: 93
|
GIF image data, version 89a, 1000 x 1000
|
dropped
|
||
Chrome Cache Entry: 94
|
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1200x500, components
3
|
dropped
|
||
Chrome Cache Entry: 95
|
PNG image data, 128 x 128, 8-bit colormap, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 96
|
RIFF (little-endian) data, Web/P image
|
downloaded
|
||
Chrome Cache Entry: 97
|
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1200x849, components
3
|
downloaded
|
||
Chrome Cache Entry: 98
|
PNG image data, 1080 x 1080, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
Chrome Cache Entry: 99
|
PNG image data, 1080 x 1080, 8-bit/color RGBA, non-interlaced
|
dropped
|
There are 28 hidden files, click here to show them.
Processes
Path
|
Cmdline
|
Malicious
|
|
---|---|---|---|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
|
||
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US
--service-sandbox-type=none --mojo-platform-channel-handle=2084 --field-trial-handle=1804,i,16770883255077033529,6040602622191381980,262144
--disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction
/prefetch:8
|
||
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" "https://lp.constantcontactpages.com/cu/jZ7GwHZ/tropicalstormhelene"
|
URLs
Name
|
IP
|
Malicious
|
|
---|---|---|---|
https://lp.constantcontactpages.com/cu/jZ7GwHZ/tropicalstormhelene
|
|||
https://files.constantcontact.com/318c2729001/fc155b18-9d44-44d2-a941-e77fb05daea6.jpg
|
143.204.98.111
|
||
https://files.constantcontact.com/318c2729001/ec4d1cda-57dc-4c14-80b8-da7a7d3cfff4.png
|
143.204.98.111
|
||
https://files.constantcontact.com/318c2729001/4ba7f228-08b9-4d98-a666-5d1e9e1ec025.png
|
143.204.98.111
|
||
https://static.ctctcdn.com/h/fed-framework/2.6.0-2/FED-Icon-Font.woff)
|
unknown
|
||
https://files.constantcontact.com/318c2729001/3256e914-30c8-4214-ad42-e66ddf28a9fb.png
|
143.204.98.111
|
||
https://files.constantcontact.com/318c2729001/01c26290-1e7d-48ba-84e6-02a7b01fb5de.jpg
|
143.204.98.111
|
||
https://files.constantcontact.com/318c2729001/5296794d-8b60-4ee7-ada4-a61fad89349e.png
|
143.204.98.111
|
||
https://i.vimeocdn.com/filter/overlay?src0=https%3A%2F%2Fi.vimeocdn.com%2Fvideo%2F1932234685-1455b38e121cf285b85b051bddf49f1926461d8130fb04179398e083a3443fb8-d_1920x1080&src1=http%3A%2F%2Ff.vimeocdn.com%2Fp%2Fimages%2Fcrawler_play.png
|
151.101.128.217
|
||
http://ns.attribution.com/ads/1.0/
|
unknown
|
||
https://static.ctctcdn.com/h/fed-framework/2.6.0-2/FED-Icon-Font.ttf)
|
unknown
|
||
https://static.ctctcdn.com/letters/images/icons/down-arrow.svg)
|
unknown
|
||
https://code.jquery.com/jquery-3.4.1.min.js
|
151.101.2.137
|
||
https://files.constantcontact.com/318c2729001/deaac8f2-1278-4850-80b8-b0073963c5b2.png
|
143.204.98.111
|
||
https://static.ctctcdn.com/h/fed-framework/2.6.0-2/FED-Icon-Font.svg#FED-Icon-Font)
|
unknown
|
||
https://files.constantcontact.com/318c2729001/c1b5f895-eb87-422f-99a1-68d1393585f9.png
|
143.204.98.111
|
||
https://files.constantcontact.com/318c2729001/69374d7a-bf53-414d-8b64-f1c3cd7de7b3.png
|
143.204.98.111
|
There are 6 hidden URLs, click here to show them.
Domains
Name
|
IP
|
Malicious
|
|
---|---|---|---|
vimeo.map.fastly.net
|
151.101.128.217
|
||
d6j37cnssol7h.cloudfront.net
|
143.204.98.111
|
||
code.jquery.com
|
151.101.2.137
|
||
www.google.com
|
216.58.206.36
|
||
fp2e7a.wpc.phicdn.net
|
192.229.221.95
|
||
a.rs6.net
|
unknown
|
||
lp.constantcontactpages.com
|
unknown
|
||
static.ctctcdn.com
|
unknown
|
||
imgssl.constantcontact.com
|
unknown
|
||
i.vimeocdn.com
|
unknown
|
||
files.constantcontact.com
|
unknown
|
There are 1 hidden domains, click here to show them.
IPs
IP
|
Domain
|
Country
|
Malicious
|
|
---|---|---|---|---|
192.168.2.8
|
unknown
|
unknown
|
||
151.101.0.217
|
unknown
|
United States
|
||
216.58.206.36
|
www.google.com
|
United States
|
||
151.101.2.137
|
code.jquery.com
|
United States
|
||
239.255.255.250
|
unknown
|
Reserved
|
||
151.101.128.217
|
vimeo.map.fastly.net
|
United States
|
||
151.101.66.137
|
unknown
|
United States
|
||
143.204.98.111
|
d6j37cnssol7h.cloudfront.net
|
United States
|