Files
File Path
|
Type
|
Category
|
Malicious
|
|
---|---|---|---|---|
Chrome Cache Entry: 55
|
gzip compressed data, from Unix, original size modulo 2^32 89500
|
downloaded
|
||
Chrome Cache Entry: 56
|
MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel
|
downloaded
|
||
Chrome Cache Entry: 57
|
gzip compressed data, from Unix, original size modulo 2^32 3153
|
downloaded
|
||
Chrome Cache Entry: 58
|
PNG image data, 800 x 725, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 59
|
MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel
|
dropped
|
||
Chrome Cache Entry: 60
|
PNG image data, 1920 x 320, 8-bit colormap, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 61
|
PNG image data, 800 x 725, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
Chrome Cache Entry: 62
|
gzip compressed data, from Unix, original size modulo 2^32 17570
|
downloaded
|
||
Chrome Cache Entry: 63
|
gzip compressed data, from Unix, original size modulo 2^32 17570
|
dropped
|
||
Chrome Cache Entry: 64
|
PNG image data, 1920 x 320, 8-bit colormap, non-interlaced
|
downloaded
|
||
Chrome Cache Entry: 65
|
gzip compressed data, from Unix, original size modulo 2^32 7743
|
dropped
|
||
Chrome Cache Entry: 66
|
gzip compressed data, from Unix, original size modulo 2^32 7743
|
downloaded
|
||
Chrome Cache Entry: 67
|
gzip compressed data, from Unix, original size modulo 2^32 89500
|
dropped
|
There are 4 hidden files, click here to show them.
Processes
Path
|
Cmdline
|
Malicious
|
|
---|---|---|---|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
|
||
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US
--service-sandbox-type=none --mojo-platform-channel-handle=2524 --field-trial-handle=2188,i,18194354065727049789,2286488283068731129,262144
--disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction
/prefetch:8
|
||
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" "http://dw.dwxzwerm.cc/"
|
||
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --single-argument http://dw.dwxzwerm.cc/
|
||
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US
--service-sandbox-type=none --mojo-platform-channel-handle=1052 --field-trial-handle=1704,i,4352826017271232276,10932791044126584700,262144
--disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction
/prefetch:8
|
URLs
Name
|
IP
|
Malicious
|
|
---|---|---|---|
http://dw.dwxzwerm.cc/
|
|||
http://dw.dwxzwerm.cc/data/jquery-3.6.0.min.js
|
149.104.35.171
|
||
http://dw.dwxzwerm.cc/css/main.css
|
149.104.35.171
|
||
http://dw.dwxzwerm.cc/images/distribute-bg.png
|
149.104.35.171
|
||
http://dw.dwxzwerm.cc/
|
|||
http://dw.dwxzwerm.cc/data/qx/icon.png
|
149.104.35.171
|
||
http://dw.dwxzwerm.cc/favicon.ico
|
149.104.35.171
|
||
http://dw.dwxzwerm.cc/data/qrcode.js
|
149.104.35.171
|
Domains
Name
|
IP
|
Malicious
|
|
---|---|---|---|
www.google.com
|
142.250.184.228
|
||
gutianle.cdn.youziyuncdn.com
|
149.104.35.171
|
||
fp2e7a.wpc.phicdn.net
|
192.229.221.95
|
||
s-part-0032.t-0009.t-msedge.net
|
13.107.246.60
|
||
dw.dwxzwerm.cc
|
unknown
|
IPs
IP
|
Domain
|
Country
|
Malicious
|
|
---|---|---|---|---|
239.255.255.250
|
unknown
|
Reserved
|
||
192.168.2.14
|
unknown
|
unknown
|
||
142.250.184.228
|
www.google.com
|
United States
|
||
192.168.2.4
|
unknown
|
unknown
|
||
149.104.35.171
|
gutianle.cdn.youziyuncdn.com
|
United States
|
DOM / HTML
URL
|
Malicious
|
|
---|---|---|
http://dw.dwxzwerm.cc/
|