Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
Chrome Cache Entry: 46
|
ASCII text, with very long lines (32132)
|
dropped
|
||
|
Chrome Cache Entry: 47
|
ASCII text, with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 48
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 49
|
HTML document, ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 50
|
ASCII text, with very long lines (32132)
|
downloaded
|
||
|
Chrome Cache Entry: 51
|
ASCII text, with very long lines (57394)
|
downloaded
|
||
|
Chrome Cache Entry: 52
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
|
||
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US
--service-sandbox-type=none --mojo-platform-channel-handle=2056 --field-trial-handle=1984,i,11165518156941151438,3193607871778775963,262144
--disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction
/prefetch:8
|
||
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" "http://abc-wiedzy.pl/app"
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
http://abc-wiedzy.pl/app
|
 |
||
|
https://www.abc-wiedzy.pl/app/
|
|
||
|
http://abc-wiedzy.pl/app
|
46.248.185.43
|
|
|
|
https://www.abc-wiedzy.pl/app
|
46.248.185.43
|
||
|
https://meshoopictures.com/wp-includes/ID3/post.php
|
unknown
|
||
|
https://a.nel.cloudflare.com/report/v4?s=U685Tygu3N9Ad7mm0CGN6gIP7xyOY%2FL22JxYzelAnX9xFIkkFaTQ2RL6ZO9Edo%2FMPP6Xtxv1CGzTBJTlV6%2BiWmTbod45l0xif0wXXZw4k3n1bjKbEPf39n7ODmTIoNmfdEMI%2F%2Fo%3D
|
35.190.80.1
|
||
|
https://www.atletic.cat/contactform/contact.php
|
unknown
|
||
|
https://ajax.aspnetcdn.com/ajax/jquery/jquery-1.9.0.min.js
|
unknown
|
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
www.abc-wiedzy.pl
|
46.248.185.43
|
|
|
|
abc-wiedzy.pl
|
46.248.185.43
|
|
|
|
rawcdn.githack.com
|
104.21.234.231
|
||
|
bg.microsoft.map.fastly.net
|
199.232.214.172
|
||
|
a.nel.cloudflare.com
|
35.190.80.1
|
||
|
www.google.com
|
142.250.186.36
|
||
|
www.americanexpress.com
|
unknown
|
||
|
ajax.aspnetcdn.com
|
unknown
|
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
46.248.185.43
|
www.abc-wiedzy.pl
|
Poland
|
|
|
|
142.250.186.36
|
www.google.com
|
United States
|
||
|
192.168.2.7
|
unknown
|
unknown
|
||
|
192.168.2.4
|
unknown
|
unknown
|
||
|
239.255.255.250
|
unknown
|
Reserved
|
||
|
104.21.234.231
|
rawcdn.githack.com
|
United States
|
||
|
35.190.80.1
|
a.nel.cloudflare.com
|
United States
|
DOM / HTML
|
URL
|
Malicious
|
|
|---|---|---|
|
https://www.abc-wiedzy.pl/app/
|
|