IOC Report
https://zapier.com/manage/zaps/260804844/stop/?check=IjI2MDgwNDg0NCI:1sw6GK:uv5U5bs_AnY16h4uo_BzI3aI4ksuRZ1R0-V1GaGYufM

loading gif

Files

File Path
Type
Category
Malicious
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Thu Oct 3 14:57:55 2024, atime=Mon Oct 2 20:46:57 2023, length=1210144, window=hide
dropped
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Thu Oct 3 14:57:54 2024, atime=Mon Oct 2 20:46:57 2023, length=1210144, window=hide
dropped
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Oct 6 08:54:41 2023, atime=Mon Oct 2 20:46:57 2023, length=1210144, window=hide
dropped
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Thu Oct 3 14:57:54 2024, atime=Mon Oct 2 20:46:57 2023, length=1210144, window=hide
dropped
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Thu Oct 3 14:57:55 2024, atime=Mon Oct 2 20:46:57 2023, length=1210144, window=hide
dropped
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Thu Oct 3 14:57:54 2024, atime=Mon Oct 2 20:46:57 2023, length=1210144, window=hide
dropped
Chrome Cache Entry: 127
JSON data
dropped
Chrome Cache Entry: 128
MS Windows icon resource - 4 icons, -64x-64, 96x96
dropped
Chrome Cache Entry: 129
JSON data
downloaded
Chrome Cache Entry: 132
GIF image data, version 89a, 1 x 1
dropped
Chrome Cache Entry: 133
CSV text
downloaded
Chrome Cache Entry: 137
ASCII text, with very long lines (9217)
downloaded
Chrome Cache Entry: 141
ASCII text, with very long lines (355)
downloaded
Chrome Cache Entry: 142
ASCII text, with very long lines (724)
dropped
Chrome Cache Entry: 143
ASCII text, with no line terminators
dropped
Chrome Cache Entry: 145
ASCII text, with very long lines (4869), with no line terminators
downloaded
Chrome Cache Entry: 147
ASCII text, with very long lines (57671), with no line terminators
dropped
Chrome Cache Entry: 148
JSON data
downloaded
Chrome Cache Entry: 149
gzip compressed data, last modified: Wed Oct 2 16:50:25 2024, original size modulo 2^32 205787
downloaded
Chrome Cache Entry: 151
JSON data
downloaded
Chrome Cache Entry: 152
gzip compressed data, last modified: Tue Sep 24 13:12:07 2024, original size modulo 2^32 1092466
downloaded
Chrome Cache Entry: 153
ASCII text
downloaded
Chrome Cache Entry: 154
ASCII text, with very long lines (1572)
downloaded
Chrome Cache Entry: 155
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 156
ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 158
ASCII text, with very long lines (4269)
dropped
Chrome Cache Entry: 159
ASCII text, with very long lines (25302)
dropped
Chrome Cache Entry: 160
Unicode text, UTF-8 text, with very long lines (41169)
downloaded
Chrome Cache Entry: 162
ASCII text, with no line terminators
downloaded
Chrome Cache Entry: 163
JSON data
dropped
Chrome Cache Entry: 164
ASCII text, with very long lines (21778), with no line terminators
downloaded
Chrome Cache Entry: 165
Web Open Font Format (Version 2), TrueType, length 48444, version 1.0
downloaded
Chrome Cache Entry: 166
JSON data
dropped
Chrome Cache Entry: 168
ASCII text
downloaded
Chrome Cache Entry: 170
JSON data
downloaded
Chrome Cache Entry: 173
ASCII text, with very long lines (22462)
downloaded
Chrome Cache Entry: 174
Web Open Font Format (Version 2), TrueType, length 48236, version 1.0
downloaded
Chrome Cache Entry: 175
ASCII text, with CRLF line terminators
downloaded
Chrome Cache Entry: 176
ASCII text, with very long lines (1434), with no line terminators
dropped
Chrome Cache Entry: 178
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 180
HTML document, ASCII text, with very long lines (22606), with no line terminators
downloaded
Chrome Cache Entry: 181
ASCII text, with very long lines (2418), with no line terminators
downloaded
Chrome Cache Entry: 182
gzip compressed data, last modified: Tue Sep 24 13:12:08 2024, original size modulo 2^32 6678066
dropped
Chrome Cache Entry: 183
ASCII text, with very long lines (4871), with no line terminators
dropped
Chrome Cache Entry: 184
ASCII text, with very long lines (52360)
dropped
Chrome Cache Entry: 186
gzip compressed data, last modified: Wed Oct 2 16:50:24 2024, original size modulo 2^32 84309
downloaded
Chrome Cache Entry: 190
gzip compressed data, last modified: Wed Oct 2 16:50:25 2024, original size modulo 2^32 305218
dropped
Chrome Cache Entry: 196
JSON data
downloaded
Chrome Cache Entry: 198
PNG image data, 244 x 66, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 199
ASCII text, with very long lines (4269)
downloaded
Chrome Cache Entry: 200
HTML document, ASCII text, with very long lines (51447)
downloaded
Chrome Cache Entry: 203
ASCII text, with very long lines (9217)
dropped
Chrome Cache Entry: 204
ASCII text, with very long lines (65451)
downloaded
Chrome Cache Entry: 207
gzip compressed data, last modified: Wed Oct 2 16:50:25 2024, original size modulo 2^32 275602
downloaded
Chrome Cache Entry: 208
JSON data
downloaded
Chrome Cache Entry: 209
ASCII text, with very long lines (5552)
dropped
Chrome Cache Entry: 211
Unicode text, UTF-8 text, with very long lines (50522), with no line terminators
downloaded
Chrome Cache Entry: 212
JSON data
dropped
Chrome Cache Entry: 213
ASCII text, with very long lines (25302)
downloaded
Chrome Cache Entry: 214
ASCII text, with very long lines (22096), with no line terminators
dropped
There are 51 hidden files, click here to show them.

URLs

Name
IP
Malicious
https://zapier.com/manage/zaps/260804844/stop/?check=IjI2MDgwNDg0NCI:1sw6GK:uv5U5bs_AnY16h4uo_BzI3aI4ksuRZ1R0-V1GaGYufM
https://zapier.com/manage/zaps/260804844/stop/?check=IjI2MDgwNDg0NCI:1sw6GK:uv5U5bs_AnY16h4uo_BzI3aI4ksuRZ1R0-V1GaGYufM

Domains

Name
IP
Malicious
star-mini.c10r.facebook.com
157.240.253.35
d20qeu5vw8i5t2.cloudfront.net
18.245.46.67
s.twitter.com
104.244.42.131
ax-0001.ax-msedge.net
150.171.28.10
platform.twitter.map.fastly.net
146.75.52.157
scontent.xx.fbcdn.net
157.240.253.1
t.co
172.66.0.227
googleads.g.doubleclick.net
142.250.186.34
zapier.com
13.33.187.12
cdn.pdst.fm
35.244.142.80
www.google.com
142.250.184.228
tracking.g2crowd.com
104.18.30.176
td.doubleclick.net
142.250.186.66
design-system-bff.zapier.com
52.87.144.228
cdn.cookielaw.org
104.18.86.42
geolocation.onetrust.com
172.64.155.119
edge-web.dual-gslb.spotify.com
35.186.224.24
static.ads-twitter.com
unknown
www.facebook.com
unknown
www.linkedin.com
unknown
connect.facebook.net
unknown
px.ads.linkedin.com
unknown
analytics.twitter.com
unknown
snap.licdn.com
unknown
cdn.zapier.com
unknown
analytics.tiktok.com
unknown
pixels.spotify.com
unknown
There are 17 hidden domains, click here to show them.

IPs

IP
Domain
Country
Malicious
142.250.185.99
unknown
United States
2.18.64.26
unknown
European Union
2.18.64.220
unknown
European Union
44.209.38.104
unknown
United States
146.75.52.157
platform.twitter.map.fastly.net
Sweden
192.168.2.17
unknown
unknown
13.33.187.12
zapier.com
United States
2.18.64.21
unknown
European Union
157.240.0.6
unknown
United States
142.250.185.163
unknown
United States
104.18.32.137
unknown
United States
13.33.187.86
unknown
United States
150.171.28.10
ax-0001.ax-msedge.net
United States
52.87.144.228
design-system-bff.zapier.com
United States
142.250.184.227
unknown
United States
142.250.184.228
www.google.com
United States
18.245.46.67
d20qeu5vw8i5t2.cloudfront.net
United States
142.250.184.196
unknown
United States
142.250.186.34
googleads.g.doubleclick.net
United States
162.159.140.229
unknown
United States
2.18.64.212
unknown
European Union
142.250.186.163
unknown
United States
157.240.0.35
unknown
United States
104.18.30.176
tracking.g2crowd.com
United States
142.250.185.110
unknown
United States
104.244.42.131
s.twitter.com
United States
216.58.206.42
unknown
United States
35.186.224.24
edge-web.dual-gslb.spotify.com
United States
216.58.206.68
unknown
United States
172.64.155.119
geolocation.onetrust.com
United States
13.107.42.14
unknown
United States
18.245.46.71
unknown
United States
239.255.255.250
unknown
Reserved
157.240.253.1
scontent.xx.fbcdn.net
United States
64.233.184.84
unknown
United States
142.250.184.238
unknown
United States
142.250.186.40
unknown
United States
35.244.142.80
cdn.pdst.fm
United States
157.240.253.35
star-mini.c10r.facebook.com
United States
142.250.186.168
unknown
United States
104.18.86.42
cdn.cookielaw.org
United States
142.250.186.42
unknown
United States
172.66.0.227
t.co
United States
172.217.16.195
unknown
United States
142.250.186.66
td.doubleclick.net
United States
There are 35 hidden IPs, click here to show them.