Files
File Path
|
Type
|
Category
|
Malicious
|
|
---|---|---|---|---|
Chrome Cache Entry: 107
|
HTML document, ASCII text, with very long lines (634)
|
downloaded
|
||
Chrome Cache Entry: 108
|
ASCII text, with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 109
|
HTML document, ASCII text
|
downloaded
|
Processes
Path
|
Cmdline
|
Malicious
|
|
---|---|---|---|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
|
||
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US
--service-sandbox-type=none --mojo-platform-channel-handle=2448 --field-trial-handle=2248,i,17017703825588552381,14886282017310328945,262144
--disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction
/prefetch:8
|
||
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" "https://bit.ly/INQUIRYNO03875"
|
URLs
Name
|
IP
|
Malicious
|
|
---|---|---|---|
https://bit.ly/INQUIRYNO03875
|
|||
https://bit.ly/INQUIRYNO03875
|
67.199.248.10
|
||
https://a.nel.cloudflare.com/report/v4?s=DV6%2BiCC%2BXCwEA6jQgkj7dZJonigM2%2BlahE6QBRqVbd3FxwvMaQzIRdAjTwa8u34dtQoEkpC9zTGdlxzAcyj9GOVyXQ0kbOdSBfos4eR0%2F54j1cNIzBpSgIeGU8jP7Q%3D%3D
|
35.190.80.1
|
||
https://virtltra.us/dl/INQUIRY059688.pdf.rar
|
unknown
|
||
https://virtltra.us/loading.php
|
|||
https://virtltra.us/favicon.ico
|
188.114.97.3
|
Domains
Name
|
IP
|
Malicious
|
|
---|---|---|---|
virtltra.us
|
188.114.97.3
|
||
a.nel.cloudflare.com
|
35.190.80.1
|
||
bit.ly
|
67.199.248.10
|
||
www.google.com
|
172.217.18.4
|
||
fp2e7a.wpc.phicdn.net
|
192.229.221.95
|
IPs
IP
|
Domain
|
Country
|
Malicious
|
|
---|---|---|---|---|
172.217.18.4
|
www.google.com
|
United States
|
||
192.168.2.4
|
unknown
|
unknown
|
||
239.255.255.250
|
unknown
|
Reserved
|
||
188.114.97.3
|
virtltra.us
|
European Union
|
||
35.190.80.1
|
a.nel.cloudflare.com
|
United States
|
||
67.199.248.10
|
bit.ly
|
United States
|
DOM / HTML
URL
|
Malicious
|
|
---|---|---|
https://virtltra.us/loading.php
|