IOC Report
https://discover.jungheinrich.com/NDAyLVlGRi0zNTEAAAGV7GhbpsnXIP9vWLqvkDgQ16_LqFWmG8T6MVjgfIPJfaAcgS1Cfu1txx0S15vxI2PTPqO54r0=

loading gif

Files

File Path
Type
Category
Malicious
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed Oct 2 13:36:55 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
dropped
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed Oct 2 13:36:55 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
dropped
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Oct 6 08:05:01 2023, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
dropped
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed Oct 2 13:36:55 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
dropped
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed Oct 2 13:36:55 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
dropped
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed Oct 2 13:36:55 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
dropped
Chrome Cache Entry: 144
HTML document, ASCII text, with no line terminators
downloaded
Chrome Cache Entry: 146
Unicode text, UTF-8 text, with very long lines (65504), with no line terminators
downloaded
Chrome Cache Entry: 147
JSON data
dropped
Chrome Cache Entry: 148
HTML document, Unicode text, UTF-8 text, with CRLF line terminators
dropped
Chrome Cache Entry: 151
ASCII text, with very long lines (33810)
downloaded
Chrome Cache Entry: 152
Unicode text, UTF-8 text, with very long lines (65447), with CRLF line terminators
downloaded
Chrome Cache Entry: 155
Web Open Font Format, TrueType, length 80357, version 1.23
downloaded
Chrome Cache Entry: 157
JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, progressive, precision 8, 470x470, components 3
dropped
Chrome Cache Entry: 159
ASCII text, with very long lines (5552)
dropped
Chrome Cache Entry: 160
MS Windows icon resource - 4 icons, 64x64, 32 bits/pixel, 32x32, 32 bits/pixel
dropped
Chrome Cache Entry: 161
Unicode text, UTF-8 text, with very long lines (52854)
dropped
Chrome Cache Entry: 163
ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 165
JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, progressive, precision 8, 470x470, components 3
downloaded
Chrome Cache Entry: 166
HTML document, ASCII text, with very long lines (627), with no line terminators
downloaded
Chrome Cache Entry: 167
HTML document, ASCII text, with very long lines (65499)
dropped
Chrome Cache Entry: 168
Web Open Font Format (Version 2), TrueType, length 28544, version 1.0
downloaded
Chrome Cache Entry: 169
ASCII text, with no line terminators
downloaded
Chrome Cache Entry: 170
ASCII text, with very long lines (561)
downloaded
Chrome Cache Entry: 172
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 173
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 750x469, components 3
dropped
Chrome Cache Entry: 174
Web Open Font Format (Version 2), TrueType, length 28640, version 1.0
downloaded
Chrome Cache Entry: 175
JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, progressive, precision 8, 470x470, components 3
dropped
Chrome Cache Entry: 176
ASCII text, with no line terminators
dropped
Chrome Cache Entry: 177
ASCII text, with very long lines (44944)
dropped
Chrome Cache Entry: 178
ASCII text, with very long lines (22584)
downloaded
Chrome Cache Entry: 179
ASCII text, with very long lines (65536), with no line terminators
dropped
Chrome Cache Entry: 180
JSON data
dropped
Chrome Cache Entry: 181
ASCII text, with very long lines (7460)
downloaded
Chrome Cache Entry: 183
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 750x469, components 3
dropped
Chrome Cache Entry: 184
ASCII text, with very long lines (521)
downloaded
Chrome Cache Entry: 187
ASCII text, with very long lines (9217)
downloaded
Chrome Cache Entry: 188
Unicode text, UTF-8 text, with very long lines (52854)
downloaded
Chrome Cache Entry: 190
Web Open Font Format (Version 2), TrueType, length 28840, version 1.0
downloaded
Chrome Cache Entry: 191
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1440x600, components 3
dropped
Chrome Cache Entry: 193
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 750x469, components 3
dropped
Chrome Cache Entry: 198
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 750x469, components 3
downloaded
Chrome Cache Entry: 199
ASCII text, with very long lines (65499)
dropped
Chrome Cache Entry: 202
ASCII text, with very long lines (6125)
downloaded
Chrome Cache Entry: 209
ASCII text, with very long lines (606)
dropped
Chrome Cache Entry: 212
ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 216
GIF image data, version 89a, 1 x 1
dropped
Chrome Cache Entry: 217
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 750x469, components 3
downloaded
Chrome Cache Entry: 218
ASCII text, with very long lines (6125)
dropped
Chrome Cache Entry: 219
Unicode text, UTF-8 text, with very long lines (50522), with no line terminators
dropped
Chrome Cache Entry: 221
HTML document, Unicode text, UTF-8 text, with very long lines (21460), with CRLF, LF line terminators
downloaded
Chrome Cache Entry: 222
HTML document, Unicode text, UTF-8 text, with very long lines (21460), with CRLF, LF line terminators
downloaded
Chrome Cache Entry: 223
Unicode text, UTF-8 text, with very long lines (41169)
dropped
Chrome Cache Entry: 225
Web Open Font Format (Version 2), TrueType, length 33860, version 1.0
downloaded
Chrome Cache Entry: 226
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 750x469, components 3
dropped
Chrome Cache Entry: 227
JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, progressive, precision 8, 470x470, components 3
dropped
Chrome Cache Entry: 228
ASCII text, with very long lines (7711)
dropped
Chrome Cache Entry: 229
ASCII text, with very long lines (48616)
downloaded
Chrome Cache Entry: 231
Web Open Font Format (Version 2), TrueType, length 33776, version 1.0
downloaded
Chrome Cache Entry: 233
ASCII text, with CRLF line terminators
dropped
Chrome Cache Entry: 235
ASCII text, with very long lines (7711)
downloaded
Chrome Cache Entry: 238
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 750x469, components 3
downloaded
Chrome Cache Entry: 239
ASCII text, with very long lines (2702), with CRLF line terminators
downloaded
Chrome Cache Entry: 242
JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, progressive, precision 8, 470x470, components 3
dropped
Chrome Cache Entry: 243
HTML document, Unicode text, UTF-8 text, with very long lines (21460), with CRLF, LF line terminators
downloaded
Chrome Cache Entry: 245
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 246
ASCII text, with very long lines (501)
downloaded
Chrome Cache Entry: 247
JSON data
downloaded
Chrome Cache Entry: 253
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 750x469, components 3
downloaded
There are 60 hidden files, click here to show them.

URLs

Name
IP
Malicious
https://discover.jungheinrich.com/NDAyLVlGRi0zNTEAAAGV7GhbpsnXIP9vWLqvkDgQ16_LqFWmG8T6MVjgfIPJfaAcgS1Cfu1txx0S15vxI2PTPqO54r0=
https://login.jungheinrich.com/login.jungheinrich.com/oauth2/v2.0/authorize?p=B2C_1A_SIGNUP_SIGNIN_CUSTOMER_PORTAL&client_id=7f365a08-cb5b-4440-8cbf-6f06e8dec743&nonce=9fe01f37-d9d5-424d-b798-9582a2f28991&redirect_uri=https://www.jungheinrich.de/jh-api/portal/login/callback&scope=openid+offline_access&state=%7B%22context%22%3A1113598%2C%22flow%22%3A%22LOGIN%22%7D&response_type=code&response_mode=form_post
https://www.jungheinrich.de/myjungheinrich#/login
https://www.jungheinrich.de/myjungheinrich?mkt_tok=NDAyLVlGRi0zNTEAAAGV7Ghbpumj8ZLg56XgUmxVEcrBVEiF3BtAOu3O8TPI8OMWHcFE0p1FdD1eUFu0SBMjKXxY3aV538PFdxi7wQGgjtp8VjsTj6n7t6SUZr5mHfk#/login
https://www.jungheinrich.de/ihre-loesungen

Domains

Name
IP
Malicious
star-mini.c10r.facebook.com
157.240.0.35
s-part-0044.t-0009.fb-t-msedge.net
13.107.253.72
ax-0001.ax-dc-msedge.net
150.171.30.10
cae-lb-1701003602.eu-central-1.elb.amazonaws.com
3.124.105.105
s-part-0017.t-0009.t-msedge.net
13.107.246.45
ax-0001.ax-msedge.net
150.171.27.10
stats.g.doubleclick.net
74.125.206.155
mkto-nld1020133.com
104.17.74.206
scontent.xx.fbcdn.net
157.240.253.1
youtube-ui.l.google.com
142.250.186.78
analytics-alv.google.com
216.239.36.181
d8b8ic747x4nv.cloudfront.net
18.172.112.88
402-yff-351.mktoresp.com
130.248.173.59
d2m18ihig7wvpg.cloudfront.net
13.225.78.48
www.google.com
142.250.184.196
td.doubleclick.net
142.250.185.162
assets.jhps-api.de
13.224.189.12
consentcdn.cookiebot.com
unknown
www.facebook.com
unknown
consent.cookiebot.com
unknown
www.linkedin.com
unknown
discover.jungheinrich.com
unknown
media-live2.prod.scw.jungheinrichcloud.com
unknown
connect.facebook.net
unknown
px.ads.linkedin.com
unknown
munchkin.marketo.net
unknown
www.jungheinrich.de
unknown
imgsct.cookiebot.com
unknown
snap.licdn.com
unknown
analytics.google.com
unknown
endpoint-app.cognigy.ai
unknown
www.youtube.com
unknown
login.jungheinrich.com
unknown
There are 23 hidden domains, click here to show them.

IPs

IP
Domain
Country
Malicious
142.250.74.202
unknown
United States
142.250.185.206
unknown
United States
13.225.78.21
unknown
United States
2.18.64.26
unknown
European Union
52.239.213.4
unknown
United States
13.107.246.45
s-part-0017.t-0009.t-msedge.net
United States
216.58.206.78
unknown
United States
192.168.2.16
unknown
unknown
13.225.78.48
d2m18ihig7wvpg.cloudfront.net
United States
216.239.38.181
unknown
United States
13.224.189.12
assets.jhps-api.de
United States
13.224.189.55
unknown
United States
74.125.206.155
stats.g.doubleclick.net
United States
157.240.0.6
unknown
United States
142.251.168.84
unknown
United States
150.171.30.10
ax-0001.ax-dc-msedge.net
United States
142.250.185.162
td.doubleclick.net
United States
172.64.146.215
unknown
United States
104.17.74.206
mkto-nld1020133.com
United States
142.250.184.227
unknown
United States
157.240.252.35
unknown
United States
88.221.110.136
unknown
European Union
142.250.184.196
www.google.com
United States
142.250.186.78
youtube-ui.l.google.com
United States
142.250.185.67
unknown
United States
23.215.21.26
unknown
United States
216.239.36.181
analytics-alv.google.com
United States
157.240.0.35
star-mini.c10r.facebook.com
United States
130.248.173.59
402-yff-351.mktoresp.com
United States
142.250.185.238
unknown
United States
18.172.112.88
d8b8ic747x4nv.cloudfront.net
United States
172.217.18.2
unknown
United States
13.225.78.13
unknown
United States
13.107.42.14
unknown
United States
216.58.206.46
unknown
United States
150.171.27.10
ax-0001.ax-msedge.net
United States
3.124.105.105
cae-lb-1701003602.eu-central-1.elb.amazonaws.com
United States
13.107.253.72
s-part-0044.t-0009.fb-t-msedge.net
United States
104.102.43.106
unknown
United States
239.255.255.250
unknown
Reserved
157.240.253.1
scontent.xx.fbcdn.net
United States
88.221.110.227
unknown
European Union
142.250.185.72
unknown
United States
142.250.186.168
unknown
United States
There are 34 hidden IPs, click here to show them.