Edit tour

Windows Analysis Report
https://bathingdelicatedemise.com/pixel/puclc?tmpl=70&bv=24.8.8162&plk=d577c65e4106d4ebdd0575cf904e1955

Overview

General Information

Sample URL:	https://bathingdelicatedemise.com/pixel/puclc?tmpl=70&bv=24.8.8162&plk=d577c65e4106d4ebdd0575cf904e1955
Analysis ID:	1527393

Detection

Score:	0
Range:	0 - 100
Whitelisted:	false
Confidence:	60%

Signatures

Stores files to the Windows start menu directory

Classification

Process Tree

System is w10x64_ra

chrome.exe (PID: 7012 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank" MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)

chrome.exe (PID: 6476 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2180 --field-trial-handle=1972,i,15320547904695206709,1647926389395203680,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)

chrome.exe (PID: 6228 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://bathingdelicatedemise.com/pixel/puclc?tmpl=70&bv=24.8.8162&plk=d577c65e4106d4ebdd0575cf904e1955" MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)

cleanup

Yara Signatures

⊘No yara matches

Sigma Signatures

⊘No Sigma rule has matched

Suricata Signatures

⊘No Suricata rule has matched

Joe Sandbox Signatures

Click to jump to signature section

Show All Signature Results

There are no malicious signatures, click here to show all signatures.

Source: https://www.google.com/	HTTP Parser: No favicon
Source: https://www.google.com/	HTTP Parser: No favicon
Source: https://www.google.com/search?q=pezoomsekre&oq=pezoomsekre&gs_lcrp=EgZjaHJvbWUyBggAEEUYOdIBCDM3NjRqMGo0qAIAsAIA&sourceid=chrome&ie=UTF-8	HTTP Parser: No favicon
Source: https://www.google.com/search?q=pezoomsekre.com&sca_esv=fe4d00f75289ff4c&ei=U_MCZ6-kCsSki-gP2JiO0AY&ved=0ahUKEwjvmd-qzPqIAxVE0gIHHViMA2oQ4dUDCA8&uact=5&oq=pezoomsekre.com&gs_lp=Egxnd3Mtd2l6LXNlcnAiD3Blem9vbXNla3JlLmNvbUjaDlDfClicDXACeACQAQCYAd8BoAGwA6oBAzItMrgBA8gBAPgBAZgCAKACAJgDAIgGAZIHAKAHWg&sclient=gws-wiz-serp	HTTP Parser: No favicon
Source: https://www.google.com/search?q=pezoomsekre.com&sca_esv=fe4d00f75289ff4c&ei=U_MCZ6-kCsSki-gP2JiO0AY&ved=0ahUKEwjvmd-qzPqIAxVE0gIHHViMA2oQ4dUDCA8&uact=5&oq=pezoomsekre.com&gs_lp=Egxnd3Mtd2l6LXNlcnAiD3Blem9vbXNla3JlLmNvbUjaDlDfClicDXACeACQAQCYAd8BoAGwA6oBAzItMrgBA8gBAPgBAZgCAKACAJgDAIgGAZIHAKAHWg&sclient=gws-wiz-serp	HTTP Parser: No favicon
Source: https://www.google.com/search?q=pezoomsekre.com&sca_esv=fe4d00f75289ff4c&ei=U_MCZ6-kCsSki-gP2JiO0AY&ved=0ahUKEwjvmd-qzPqIAxVE0gIHHViMA2oQ4dUDCA8&uact=5&oq=pezoomsekre.com&gs_lp=Egxnd3Mtd2l6LXNlcnAiD3Blem9vbXNla3JlLmNvbUjaDlDfClicDXACeACQAQCYAd8BoAGwA6oBAzItMrgBA8gBAPgBAZgCAKACAJgDAIgGAZIHAKAHWg&sclient=gws-wiz-serp	HTTP Parser: No favicon
Source: http://pezoomsekre.com/	HTTP Parser: No favicon

Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.16:49736 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.16:49739 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.202.163.200:443 -> 192.168.2.16:49745 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.202.163.200:443 -> 192.168.2.16:49822 version: TLS 1.2

Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 192.229.211.108
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.10
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.10
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.10
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 172.202.163.200
Source: unknown	TCP traffic detected without corresponding DNS query: 172.202.163.200
Source: unknown	TCP traffic detected without corresponding DNS query: 172.202.163.200
Source: unknown	TCP traffic detected without corresponding DNS query: 172.202.163.200
Source: unknown	TCP traffic detected without corresponding DNS query: 172.202.163.200
Source: unknown	TCP traffic detected without corresponding DNS query: 172.202.163.200
Source: unknown	TCP traffic detected without corresponding DNS query: 172.202.163.200
Source: unknown	TCP traffic detected without corresponding DNS query: 172.202.163.200
Source: unknown	TCP traffic detected without corresponding DNS query: 172.202.163.200
Source: unknown	TCP traffic detected without corresponding DNS query: 172.202.163.200
Source: unknown	TCP traffic detected without corresponding DNS query: 172.202.163.200
Source: unknown	TCP traffic detected without corresponding DNS query: 172.202.163.200
Source: unknown	TCP traffic detected without corresponding DNS query: 172.202.163.200
Source: unknown	TCP traffic detected without corresponding DNS query: 172.202.163.200
Source: unknown	TCP traffic detected without corresponding DNS query: 172.202.163.200
Source: unknown	TCP traffic detected without corresponding DNS query: 172.202.163.200
Source: unknown	TCP traffic detected without corresponding DNS query: 172.202.163.200
Source: unknown	TCP traffic detected without corresponding DNS query: 172.202.163.200
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.10
Source: unknown	TCP traffic detected without corresponding DNS query: 172.202.163.200
Source: unknown	TCP traffic detected without corresponding DNS query: 172.202.163.200
Source: unknown	TCP traffic detected without corresponding DNS query: 172.202.163.200

Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: pezoomsekre.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: pezoomsekre.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Referer: http://pezoomsekre.com/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9

Source: global traffic	DNS traffic detected: DNS query: bathingdelicatedemise.com
Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: google.com
Source: global traffic	DNS traffic detected: DNS query: ogs.google.com
Source: global traffic	DNS traffic detected: DNS query: apis.google.com
Source: global traffic	DNS traffic detected: DNS query: play.google.com
Source: global traffic	DNS traffic detected: DNS query: id.google.com
Source: global traffic	DNS traffic detected: DNS query: dns-tunnel-check.googlezip.net
Source: global traffic	DNS traffic detected: DNS query: tunnel.googlezip.net
Source: global traffic	DNS traffic detected: DNS query: pezoomsekre.com

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49744
Source: unknown	Network traffic detected: HTTP traffic on port 49890 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown	Network traffic detected: HTTP traffic on port 49817 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49742
Source: unknown	Network traffic detected: HTTP traffic on port 49926 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49800 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49766 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49898 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49743 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49781 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49769 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49795 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49739
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49738
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49737
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49736
Source: unknown	Network traffic detected: HTTP traffic on port 49772 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49734
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49733
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49732
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49730
Source: unknown	Network traffic detected: HTTP traffic on port 49732 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49820 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49812 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49893 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49749 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49915 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49752 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49777 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49725
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49724
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49723
Source: unknown	Network traffic detected: HTTP traffic on port 49819 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49918 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49787 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49748 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49892 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49745 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49793 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49751 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49921 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49774 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49757 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49782 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49799
Source: unknown	Network traffic detected: HTTP traffic on port 49734 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49795
Source: unknown	Network traffic detected: HTTP traffic on port 49927 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49794
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49793
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49792
Source: unknown	Network traffic detected: HTTP traffic on port 49814 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49822 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49791
Source: unknown	Network traffic detected: HTTP traffic on port 49765 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49768 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49723 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49754 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49737 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49822
Source: unknown	Network traffic detected: HTTP traffic on port 49733 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49788
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49821
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49787
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49820
Source: unknown	Network traffic detected: HTTP traffic on port 49779 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49785
Source: unknown	Network traffic detected: HTTP traffic on port 49813 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49782
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49781
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49780
Source: unknown	Network traffic detected: HTTP traffic on port 49916 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49785 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49819
Source: unknown	Network traffic detected: HTTP traffic on port 49776 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49799 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49817
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49816
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49815
Source: unknown	Network traffic detected: HTTP traffic on port 49736 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49791 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49814
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49813
Source: unknown	Network traffic detected: HTTP traffic on port 49753 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49779
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49812
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49778
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49899
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49777
Source: unknown	Network traffic detected: HTTP traffic on port 49816 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49898
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49776
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49775
Source: unknown	Network traffic detected: HTTP traffic on port 49925 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49774
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49773
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49772
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49893
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49892
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49770
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49891
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49890
Source: unknown	Network traffic detected: HTTP traffic on port 49788 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49724 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49742 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49767 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49780 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49794 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49928
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49927
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49926
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49925
Source: unknown	Network traffic detected: HTTP traffic on port 49773 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49769
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49768
Source: unknown	Network traffic detected: HTTP traffic on port 49739 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49756 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49767
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49800
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49921
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49766
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49765
Source: unknown	Network traffic detected: HTTP traffic on port 49678 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49821 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49928 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49815 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49725 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49770 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49918
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49917
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49916
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49915
Source: unknown	Network traffic detected: HTTP traffic on port 49778 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49757
Source: unknown	Network traffic detected: HTTP traffic on port 49738 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49755 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49756
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49755
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49754
Source: unknown	Network traffic detected: HTTP traffic on port 49891 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49753
Source: unknown	Network traffic detected: HTTP traffic on port 49673 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49752
Source: unknown	Network traffic detected: HTTP traffic on port 49730 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49751
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49750
Source: unknown	Network traffic detected: HTTP traffic on port 49917 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49899 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49744 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49775 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49750 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49749
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49748
Source: unknown	Network traffic detected: HTTP traffic on port 49792 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49745

Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.16:49736 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.16:49739 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.202.163.200:443 -> 192.168.2.16:49745 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.202.163.200:443 -> 192.168.2.16:49822 version: TLS 1.2

Source: classification engine

Classification label: clean0.win@27/65@31/194

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2180 --field-trial-handle=1972,i,15320547904695206709,1647926389395203680,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://bathingdelicatedemise.com/pixel/puclc?tmpl=70&bv=24.8.8162&plk=d577c65e4106d4ebdd0575cf904e1955"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2180 --field-trial-handle=1972,i,15320547904695206709,1647926389395203680,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown

Source: Window Recorder

Window detected: More than 3 window changes detected

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk

Mitre Att&ck Matrix

Reconnaissance	Resource Development	Initial Access	Execution	Persistence	Privilege Escalation	Defense Evasion	Credential Access	Discovery	Lateral Movement	Collection	Command and Control	Exfiltration	Impact
Gather Victim Identity Information	Acquire Infrastructure	Valid Accounts	Windows Management Instrumentation	1 Registry Run Keys / Startup Folder	1 Process Injection	1 Masquerading	OS Credential Dumping	System Service Discovery	Remote Services	Data from Local System	2 Encrypted Channel	Exfiltration Over Other Network Medium	Abuse Accessibility Features
Credentials	Domains	Default Accounts	Scheduled Task/Job	Boot or Logon Initialization Scripts	1 Registry Run Keys / Startup Folder	1 Process Injection	LSASS Memory	Application Window Discovery	Remote Desktop Protocol	Data from Removable Media	2 Non-Application Layer Protocol	Exfiltration Over Bluetooth	Network Denial of Service
Email Addresses	DNS Server	Domain Accounts	At	Logon Script (Windows)	Logon Script (Windows)	Obfuscated Files or Information	Security Account Manager	Query Registry	SMB/Windows Admin Shares	Data from Network Shared Drive	3 Application Layer Protocol	Automated Exfiltration	Data Encrypted for Impact
Employee Names	Virtual Private Server	Local Accounts	Cron	Login Hook	Login Hook	Binary Padding	NTDS	System Network Configuration Discovery	Distributed Component Object Model	Input Capture	1 Ingress Tool Transfer	Traffic Duplication	Data Destruction

Screenshots

Thumbnails

This section contains all screenshots as thumbnails, including those not shown in the slideshow.

Antivirus, Machine Learning and Genetic Malware Detection

Initial Sample

⊘No Antivirus matches

Dropped Files

⊘No Antivirus matches

Unpacked PE Files

⊘No Antivirus matches

Domains

⊘No Antivirus matches

URLs

⊘No Antivirus matches

Domains and IPs

Contacted Domains

Name	IP	Active	Malicious	Reputation
google.com	216.58.206.78	true	false	unknown
www3.l.google.com	142.250.185.238	true	false	unknown
plus.l.google.com	172.217.23.110	true	false	unknown
play.google.com	216.58.206.78	true	false	unknown
pezoomsekre.com	139.45.197.242	true	false	unknown
dns-tunnel-check.googlezip.net	216.239.34.159	true	false	unknown
tunnel.googlezip.net	216.239.34.157	true	false	unknown
id.google.com	216.58.206.35	true	false	unknown
www.google.com	172.217.18.4	true	false	unknown
bathingdelicatedemise.com	192.243.59.20	true	false	unknown
ogs.google.com	unknown	unknown	false	unknown
apis.google.com	unknown	unknown	false	unknown

Contacted URLs

Name	Malicious	Reputation
http://pezoomsekre.com/	false	unknown
https://www.google.com/search?q=pezoomsekre.com&sca_esv=fe4d00f75289ff4c&ei=U_MCZ6-kCsSki-gP2JiO0AY&ved=0ahUKEwjvmd-qzPqIAxVE0gIHHViMA2oQ4dUDCA8&uact=5&oq=pezoomsekre.com&gs_lp=Egxnd3Mtd2l6LXNlcnAiD3Blem9vbXNla3JlLmNvbUjaDlDfClicDXACeACQAQCYAd8BoAGwA6oBAzItMrgBA8gBAPgBAZgCAKACAJgDAIgGAZIHAKAHWg&sclient=gws-wiz-serp	false	unknown
http://pezoomsekre.com/favicon.ico	false	unknown
https://bathingdelicatedemise.com/pixel/puclc?tmpl=70&bv=24.8.8162&plk=d577c65e4106d4ebdd0575cf904e1955	false	unknown
https://www.google.com/	false	unknown
https://www.google.com/search?q=pezoomsekre&oq=pezoomsekre&gs_lcrp=EgZjaHJvbWUyBggAEEUYOdIBCDM3NjRqMGo0qAIAsAIA&sourceid=chrome&ie=UTF-8	false	unknown

World Map of Contacted IPs

No. of IPs < 25%
25% < No. of IPs < 50%
50% < No. of IPs < 75%
75% < No. of IPs

Public IPs

IP	Domain	Country	ASN	ASN Name	Malicious
142.250.185.99	unknown	United States	15169	GOOGLEUS	false
142.250.186.46	unknown	United States	15169	GOOGLEUS	false
172.217.18.14	unknown	United States	15169	GOOGLEUS	false
216.58.206.78	google.com	United States	15169	GOOGLEUS	false
142.250.185.227	unknown	United States	15169	GOOGLEUS	false
216.58.206.35	id.google.com	United States	15169	GOOGLEUS	false
64.233.166.84	unknown	United States	15169	GOOGLEUS	false
172.217.23.110	plus.l.google.com	United States	15169	GOOGLEUS	false
142.250.186.131	unknown	United States	15169	GOOGLEUS	false
142.250.186.110	unknown	United States	15169	GOOGLEUS	false
192.243.59.20	bathingdelicatedemise.com	Dominica	39572	ADVANCEDHOSTERS-ASNL	false
142.250.186.138	unknown	United States	15169	GOOGLEUS	false
142.250.184.195	unknown	United States	15169	GOOGLEUS	false
142.250.184.196	unknown	United States	15169	GOOGLEUS	false
1.1.1.1	unknown	Australia	13335	CLOUDFLARENETUS	false
172.217.18.4	www.google.com	United States	15169	GOOGLEUS	false
172.217.18.3	unknown	United States	15169	GOOGLEUS	false
139.45.197.242	pezoomsekre.com	Netherlands	9002	RETN-ASEU	false
142.250.185.238	www3.l.google.com	United States	15169	GOOGLEUS	false
216.58.206.46	unknown	United States	15169	GOOGLEUS	false
239.255.255.250	unknown	Reserved	unknown	unknown	false
172.217.16.194	unknown	United States	15169	GOOGLEUS	false
142.250.185.74	unknown	United States	15169	GOOGLEUS	false
216.239.34.157	tunnel.googlezip.net	United States	15169	GOOGLEUS	false

Private

IP
192.168.2.16
192.168.2.15
192.168.2.14

General Information

Joe Sandbox version:	41.0.0 Charoite
Analysis ID:	1527393
Start date and time:	2024-10-06 22:28:23 +02:00
Joe Sandbox product:	CloudBasic
Overall analysis duration:
Hypervisor based Inspection enabled:	false
Report type:	full
Cookbook file name:	defaultwindowsinteractivecookbook.jbs
Sample URL:	https://bathingdelicatedemise.com/pixel/puclc?tmpl=70&bv=24.8.8162&plk=d577c65e4106d4ebdd0575cf904e1955
Analysis system description:	Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
Number of analysed new started processes analysed:	13
Number of new started drivers analysed:	0
Number of existing processes analysed:	0
Number of existing drivers analysed:	0
Number of injected processes analysed:	0
Technologies:	EGA enabled
Analysis Mode:	stream
Analysis stop reason:	Timeout
Detection:	CLEAN
Classification:	clean0.win@27/65@31/194

Warnings

Exclude process from analysis (whitelisted): svchost.exe
Excluded IPs from analysis (whitelisted): 142.250.185.227, 142.250.185.238, 64.233.166.84, 2.19.126.137
Excluded domains from analysis (whitelisted): clients2.google.com, accounts.google.com, ctldl.windowsupdate.com, clientservices.googleapis.com, clients.l.google.com
Not all processes where analyzed, report is missing behavior information
VT rate limit hit for: https://bathingdelicatedemise.com/pixel/puclc?tmpl=70&bv=24.8.8162&plk=d577c65e4106d4ebdd0575cf904e1955

LLM Input / Output

Input	Output
URL: https://www.google.com/ Model: jbxai	{ "brand":["Google"], "contains_trigger_text":false, "trigger_text":"", "prominent_button_name":"Sign in", "text_input_field_labels":["Google Search", "I'm Feeling Lucky"], "pdf_icon_visible":false, "has_visible_captcha":false, "has_urgent_text":false, "text":"Google SearchI'm Feeling LuckyOur third decade of climate action: join us", "has_visible_qrcode":false}

URL: https://www.google.com/search?q=pezoomsekre.com&sca_esv=fe4d00f75289ff4c&ei=U_MCZ6-kCsSki-gP2JiO0AY&ved=0ahUKEwjvmd-qzPqIAxVE0gIHHViMA2oQ4dUDCA8&uact=5&oq=pezoomsekre.com&gs_lp=Egxnd3Mtd2l6LXNlcnAiD3Blem9vbXNla3JlLmNvbUjaDlDfClicDXACeACQAQCYAd8BoAGwA6oBAz Model: jbxai	{ "brand":["Facebook"], "contains_trigger_text":true, "trigger_text":"18+ videos - https://pezoomsekre.com/4/7655702 \| ...", "prominent_button_name":"Game house", "text_input_field_labels":["Facebook"], "pdf_icon_visible":false, "has_visible_captcha":false, "has_urgent_text":false, "text":"Game house If you want to know more click on the link I will guy you true https://pezoomsekre.com/4/7756262 https://pezoomsekre.com/4/7756262...", "has_visible_qrcode":false}

URL: https://www.google.com/search?q=pezoomsekre&oq=pezoomsekre&gs_lcrp=EgZjaHJvbWUyBggAEEUYOdIBCDM3NjRqMGo0qAIAsAIA&sourceid=chrome&ie=UTF-8 Model: jbxai	"{ \"brand\": [\"Facebook\"], \"contains_trigger_text\": true, \"trigger_text\": \"18+ videos - https://pezoomsekre.com/4/7655702 \| ...\", \"prominent_button_name\": \"Game house\", \"text_input_field_labels\": [\"LalaMOOD on X: \"chudai\" / X\"], \"pdf_icon_visible\": false, \"has_visible_captcha\": false, \"has_urgent_text\": true, \"text\": \"If you want to know more click on the link I will guy you true https://pezoomsekre.com/4/7756262 https://pezoomsekre.com/4/7756262...\" } "

URL: https://www.google.com/search?q=pezoomsekre.com&sca_esv=fe4d00f75289ff4c&ei=U_MCZ6-kCsSki-gP2JiO0AY&ved=0ahUKEwjvmd-qzPqIAxVE0gIHHViMA2oQ4dUDCA8&uact=5&oq=pezoomsekre.com&gs_lp=Egxnd3Mtd2l6LXNlcnAiD3Blem9vbXNla3JlLmNvbUjaDlDfClicDXACeACQAQCYAd8BoAGwA6oBAz Model: jbxai	{ "brand":["Facebook"], "contains_trigger_text":true, "trigger_text":"18+ videos - https://pezoomsekre.com/4/7655702 \| ...", "prominent_button_name":"Game house", "text_input_field_labels":["Facebook"], "pdf_icon_visible":false, "has_visible_captcha":false, "has_urgent_text":false, "text":"Game house If you want to know more click on the link I will guy you true https://pezoomsekre.com/4/7756262 https://pezoomsekre.com/4/7756262...", "has_visible_qrcode":false}

URL: https://www.google.com/search?q=pezoomsekre.com&sca_esv=fe4d00f75289ff4c&ei=U_MCZ6-kCsSki-gP2JiO0AY&ved=0ahUKEwjvmd-qzPqIAxVE0gIHHViMA2oQ4dUDCA8&uact=5&oq=pezoomsekre.com&gs_lp=Egxnd3Mtd2l6LXNlcnAiD3Blem9vbXNla3JlLmNvbUjaDlDfClicDXACeACQAQCYAd8BoAGwA6oBAz Model: jbxai	{ "brand":["Facebook"], "contains_trigger_text":true, "trigger_text":"If you want to know more click on the link I will guy you true", "prominent_button_name":"Game house", "text_input_field_labels":["AMG (The_new437) - Profile"], "pdf_icon_visible":false, "has_visible_captcha":false, "has_urgent_text":false, "text":"Explore historical ownership and registration records by performing a reverse Whois lookup for the email address ... 5.0 (1) Facebook https://www.facebook.com > permalink 18+ videos - https://pezoomsekre.com/4/7655702 \| ... 18+ videos all video https://aimpoozoatho. com/4/7655703 ... 18+ videos updated their cover photo. ... 18+ videos updated their profile picture. Facebook https://m.facebook.com > Gamer > Game house Game house If you want to know more click on the link I will guy you true https://pezoomsekre.com/4/7756262 https://pezoomsekre.com/4/7756262... X Markjannerpo 30+ likes Mark janner @Markjannerpo. Chudai Embedded video. 8:59. From pezoomsekre.com 3:05 PM - Sep 2, 2024. Pinterest the_new437 1 follower AMG (The_new437) - Profile pezoomsekre.com/4/7753533. the_new437. ... 1 seguidor. ... Siguiente a 1. Seguir. webflow. ... 4 Pines. ... 3 sem Travel website design. ... 4 Pines. Facebook The Iron Cartoon 50+ reactions - 3 weeks ago Bloomin' Emergency \| Jungle Beat: Munki & Trunk \| Kids...", "has_visible_qrcode":false}

Created / dropped Files

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Sun Oct 6 19:28:58 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
Category:	dropped
Size (bytes):	2675
Entropy (8bit):	3.9995504864799463
Encrypted:	false
SSDEEP:
MD5:	C91FEF3885E853F1E4232159755961C4
SHA1:	08A674011AD305ECB5D094A56E7A5E9651C765EE
SHA-256:	CDE9CDBD3E99FE8CDEE9ED99E6162D14CE8F059B2C1E3F12506BB60E6EFDE29A
SHA-512:	C1732312F0554682494E07DA952BA862DD103AF37053E512B344276A158C9036763D2F7C6594C34C27E810644C8F4C97E8C9C2A57587ACE7FC03FE068991DD7A
Malicious:	false
Reputation:	unknown
Preview:	L..................F.@.. ...$+.,.... .._....N.Yr.... w......................1....P.O. .:i.....+00.../C:\.....................1.....FW.J..PROGRA~1..t......O.IFY......B...............J.........P.r.o.g.r.a.m. .F.i.l.e.s...@.s.h.e.l.l.3.2...d.l.l.,.-.2.1.7.8.1.....T.1.....CW.V..Google..>......CW.VFY......L.....................p+j.G.o.o.g.l.e.....T.1.....CW.V..Chrome..>......CW.VFY......M......................8..C.h.r.o.m.e.....`.1.....CW.V..APPLIC~1..H......CW.VFY............................."&.A.p.p.l.i.c.a.t.i.o.n.....n.2. w..;W.+ .CHROME~1.EXE..R......CW.VFY.............................H..c.h.r.o.m.e._.p.r.o.x.y...e.x.e.......j...............-.......i..............5.....C:\Program Files\Google\Chrome\Application\chrome_proxy.exe..S.....\.....\.....\.....\.....\.....\.....\.....\.....\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.\.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.*.C.:.\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.F

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Oct 6 08:05:01 2023, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
Category:	dropped
Size (bytes):	2689
Entropy (8bit):	4.009297448293643
Encrypted:	false
SSDEEP:
MD5:	466B890A4A119223CD9D7E5EF2C3A647
SHA1:	59C83274151C3FBE0C0945B1C212E15C84BBDF86
SHA-256:	727A8996E189EF6057B5A78881887F16E01555CAB4D71D4B21204F05110F6A8C
SHA-512:	490AA263861C9C4D3FD7B6CBA0A0408DC2A973BA4A095A3579C11B7866E7F40BD058652D33079AC38DBBEB79F0199307052B3E966F2BB0642FB0A6618522E572
Malicious:	false
Reputation:	unknown
Preview:	L..................F.@.. ...$+.,.....Y.04...N.Yr.... w......................1....P.O. .:i.....+00.../C:\.....................1.....FW.J..PROGRA~1..t......O.IFY......B...............J.........P.r.o.g.r.a.m. .F.i.l.e.s...@.s.h.e.l.l.3.2...d.l.l.,.-.2.1.7.8.1.....T.1.....CW.V..Google..>......CW.VFY......L.....................p+j.G.o.o.g.l.e.....T.1.....CW.V..Chrome..>......CW.VFY......M......................8..C.h.r.o.m.e.....`.1.....CW.V..APPLIC~1..H......CW.VFY............................."&.A.p.p.l.i.c.a.t.i.o.n.....n.2. w..;W.+ .CHROME~1.EXE..R......CW.VFW.E...........................H..c.h.r.o.m.e._.p.r.o.x.y...e.x.e.......j...............-.......i..............5.....C:\Program Files\Google\Chrome\Application\chrome_proxy.exe..S.....\.....\.....\.....\.....\.....\.....\.....\.....\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.\.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.*.C.:.\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.F

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Sun Oct 6 19:28:58 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
Category:	dropped
Size (bytes):	2677
Entropy (8bit):	3.9994359850014356
Encrypted:	false
SSDEEP:
MD5:	3820DEDF1F7455C9E8661575F825AF77
SHA1:	F8999684A9E015EE0C1BF9C59E10B6600E8A9A63
SHA-256:	5C9E911A4A19FCF1303D3D5CF6DCC985572791234B442A59088457A827B4B633
SHA-512:	A4F733E87B5EF69F0CA83A64B8EF638A04E287BFD192159A72B6920249A1FFF71FD7400557CE159A6D374EF29F065BD60CD9C70B3C6B7B4793E7162954C3C9AC
Malicious:	false
Reputation:	unknown
Preview:	L..................F.@.. ...$+.,......_....N.Yr.... w......................1....P.O. .:i.....+00.../C:\.....................1.....FW.J..PROGRA~1..t......O.IFY......B...............J.........P.r.o.g.r.a.m. .F.i.l.e.s...@.s.h.e.l.l.3.2...d.l.l.,.-.2.1.7.8.1.....T.1.....CW.V..Google..>......CW.VFY......L.....................p+j.G.o.o.g.l.e.....T.1.....CW.V..Chrome..>......CW.VFY......M......................8..C.h.r.o.m.e.....`.1.....CW.V..APPLIC~1..H......CW.VFY............................."&.A.p.p.l.i.c.a.t.i.o.n.....n.2. w..;W.+ .CHROME~1.EXE..R......CW.VFY.............................H..c.h.r.o.m.e._.p.r.o.x.y...e.x.e.......j...............-.......i..............5.....C:\Program Files\Google\Chrome\Application\chrome_proxy.exe..S.....\.....\.....\.....\.....\.....\.....\.....\.....\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.\.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.*.C.:.\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.F

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Sun Oct 6 19:28:58 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
Category:	dropped
Size (bytes):	2677
Entropy (8bit):	3.987235450492546
Encrypted:	false
SSDEEP:
MD5:	95A53517BC6102BD9D6CD791B9F3BCB2
SHA1:	507F9ECB619190BBBFFEA81D28FC38F2692EC8D9
SHA-256:	1D3F6076988D85B36AA27F962D826632C16A23A2200B40203B12E6CEC29F3691
SHA-512:	1FE896B84744F0B4FB4A96C29DAF81CDF4076E2B240234DB9F9BF95E9676308AB01767E98B3D2DD8EBF16FF8A30C58C1843CEC4663B1753EC857FDDBB81DD540
Malicious:	false
Reputation:	unknown
Preview:	L..................F.@.. ...$+.,.....5$_....N.Yr.... w......................1....P.O. .:i.....+00.../C:\.....................1.....FW.J..PROGRA~1..t......O.IFY......B...............J.........P.r.o.g.r.a.m. .F.i.l.e.s...@.s.h.e.l.l.3.2...d.l.l.,.-.2.1.7.8.1.....T.1.....CW.V..Google..>......CW.VFY......L.....................p+j.G.o.o.g.l.e.....T.1.....CW.V..Chrome..>......CW.VFY......M......................8..C.h.r.o.m.e.....`.1.....CW.V..APPLIC~1..H......CW.VFY............................."&.A.p.p.l.i.c.a.t.i.o.n.....n.2. w..;W.+ .CHROME~1.EXE..R......CW.VFY.............................H..c.h.r.o.m.e._.p.r.o.x.y...e.x.e.......j...............-.......i..............5.....C:\Program Files\Google\Chrome\Application\chrome_proxy.exe..S.....\.....\.....\.....\.....\.....\.....\.....\.....\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.\.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.*.C.:.\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.F

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Sun Oct 6 19:28:57 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
Category:	dropped
Size (bytes):	2679
Entropy (8bit):	3.9975410029809937
Encrypted:	false
SSDEEP:
MD5:	F84E9F72EB5981E50D26C5BD1D66B5CB
SHA1:	E15928CDFD3602D326618433C44F6595C79CADD3
SHA-256:	C9F903F6568C3BA1DA57AB926948BBBF4BACB53BBB8D663F293D92C11D6EEFBC
SHA-512:	8301BCB9C175D51EF9D24049CD5A796CA7E1A5B41D18FDC0EE8664A04485B09F239198B6CAA98808D3F30FCC5DBBA9A3E869602A9E5CE6E804DC906FEFB78D84
Malicious:	false
Reputation:	unknown
Preview:	L..................F.@.. ...$+.,.....<._....N.Yr.... w......................1....P.O. .:i.....+00.../C:\.....................1.....FW.J..PROGRA~1..t......O.IFY......B...............J.........P.r.o.g.r.a.m. .F.i.l.e.s...@.s.h.e.l.l.3.2...d.l.l.,.-.2.1.7.8.1.....T.1.....CW.V..Google..>......CW.VFY......L.....................p+j.G.o.o.g.l.e.....T.1.....CW.V..Chrome..>......CW.VFY......M......................8..C.h.r.o.m.e.....`.1.....CW.V..APPLIC~1..H......CW.VFY............................."&.A.p.p.l.i.c.a.t.i.o.n.....n.2. w..;W.+ .CHROME~1.EXE..R......CW.VFY.............................H..c.h.r.o.m.e._.p.r.o.x.y...e.x.e.......j...............-.......i..............5.....C:\Program Files\Google\Chrome\Application\chrome_proxy.exe..S.....\.....\.....\.....\.....\.....\.....\.....\.....\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.\.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.*.C.:.\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.F

Chrome Cache Entry: 113

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	gzip compressed data, original size modulo 2^32 12213
Category:	dropped
Size (bytes):	1427
Entropy (8bit):	7.873449347275651
Encrypted:	false
SSDEEP:
MD5:	CF3BA37C0E866D57A22990FA6E0BC3F0
SHA1:	84F52A3C2C6BAD4239A1AF1F945EF386F83F8C2C
SHA-256:	447FC61E4C118EA140C50147B1097C153F8F9AE10D894F87F7B638461D98A145
SHA-512:	781C688DEDC7357C9DAB2D14307A35145CE9E375C0D6CCD37F19841E38624625CB8222B863A4F5E18618A3A8CA01C789D3E22778BF67D877A9A1B778753577B0
Malicious:	false
Reputation:	unknown
Preview:	...........Z[.$5...]A\|...`.....!!>.b.H~.I%..=u.a..T..;ql.y...?...o.....?.......,.Z..&b.$.._.\|..].I.>ge.8.F.WXS#.!..m...:.B-g.YsI..W%../...\|..Bp.C...4..F=..N....}...'c.........=A;........U.X...%..Y..Wuc.3%"$.....b....w....I.fsQ...0...^0V..{.(...Zw1....W.d.:8.0.b3VF.e..KZ..;......"......>..;..!O..A.B.j.>.$K....... ...%.K..L...q..e....O.`O..UF..<........8....3'B...V..].+.....B].2..'T.m'..=..{....S.1Z..O......;..}2..p...Mt..ax..AB.E$.G..&,S...U..X.....8.w9.7...s...m..". W.s._.HNe...o......M...\|.Lf....D.q.&;#.7>....\nx../8.......O.R.QvS.......V..~...R..VAd<.....x....%.k.r...,.......-.......x.......$..Uy..vzwD.Kzb..+......5.w.-D..L.....<.F....nv.V.,z.L.M%$U..Y%..m.a.y.Q......X2..M..Z3MS...a..I.-..w....u..<.......7Gw.....[8...'%....V.F.p.g.C.>".......Q...0x$.U.y.\|....%..H.Y...pVO8.6.H-.f.H.i..>..U..;h..&....v%].Dl:.O...9......`{......T.0}..{.]..... S.....S..M(z.DW.>cWA.)[.].......T.k....."....d....VV:5..Q.`.d..Z?..:.5TC...X.q..!M.Y

Chrome Cache Entry: 114

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	PGP Secret Sub-key -
Category:	dropped
Size (bytes):	356395
Entropy (8bit):	7.9991866581106414
Encrypted:	true
SSDEEP:
MD5:	28C8D69A075E866B48F14F17C32DEB13
SHA1:	44BEB0C0D287C008BAF4D05DE9B7C4C6F2F39FB4
SHA-256:	922D238BB0540D61022633B763E445564CBE15BF80B1607A1E0168E8B2DD9DB7
SHA-512:	38242F240E5B5D455784ACFFA2F80FAA2D84370A1A96C529C39F2B1C5364DA8D729369B413356F00EDFB3FA2D6BEDEA325322AE76E893ED47D82BD44FB35BBB8
Malicious:	false
Reputation:	unknown
Preview:	....).......~..P..s........z.......6...W..PUUUU.>.X....,..\|..<.\|..(...b..(...b..(...b..(...b..(...b..(...b..(...b..(...b..(.=.UX.#.{...z.....z....~.....$.S.+.i./JC.3.7....u....a8p...z.<......4...u./..b8t1..z.<.....6...Fu./..`8r%..z.<......5....u....c8v=..z.<.....7...&u.o.na8q+..z.<.....4...u....b8u7..z.<....6...fu....`8. ....<.....5.........c8.8....<....7.........a..,..........Z4....._.^b..2.........Z6...V.._..`..&..........Z5.........c..>.........Z7...6..?.>a..)...........4........b..5..........6...v....~`..#...........5........~c..;..........7.........ax./....\|.....:4...e.............C#c.S3s.K+k.[;{.G'g.].t..[w.=x...Wo.}...._....9O.$.q.`".5.>.S.#L..K4....\..P..J.+l...=P....%.',}Y?Z.A..:.....d.............c....`....P...@.XnK...e.Y..M.....D..........O........Y6....!G......ND.....Rf.]........pm.K.#A.$.;.+.....v..Y.l.8.Vn2......o...1,.~J..R.<...'m.e3....!....66.o.0.`c./.o......m)s......[..;d39..h...9./...p@'YE

Chrome Cache Entry: 115

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	data
Category:	downloaded
Size (bytes):	6171
Entropy (8bit):	7.967561842826371
Encrypted:	false
SSDEEP:
MD5:	71017734C6E73EF0BBF80AEE0E5C7BFB
SHA1:	8466F12C31FF5E2E99936B91D103BFA3CC519328
SHA-256:	EB8EDF260E7B70260CD4DCBEC9FA89F66FF3ABB03C441E236A956F29E24ED725
SHA-512:	DB8FD4694244A5617E9DA67FE3BABD7B248787D96C46F49EEEB03636D2F4E9501CDD238800EF0F613ECC4EDAD604746F9E11548E041BF7D449170E01620151BE
Malicious:	false
Reputation:	unknown
URL:	https://www.google.com/async/bgasy?ei=U_MCZ6-kCsSki-gP2JiO0AY&opi=89978449&yv=3&cs=0&async=_fmt:jspb
Preview:	....d....~..%.nd\|.L".w.....M.g.}.?........1...........X.A#L.>wt;...L....D...H..a.,.{.....M...s.........voD.....1MH875'.N..Q.D...{..s..9b........,$.@...f#.N...}..u.........mQ..w.i.h..J....o..6E......_..Er..E@m.....w....I>...E.V.6....).6M...FW..).y(.U.'."....v.&..[_q..P.t'8.6'...t\|_...V.>5.3.m.........%\|...J.v..R.z...#...@..J.9......r..}......wD+6].n2.<..[l.........i+....:.J.7..`t%.a.#.5r..WK...b..'\I.n. ..J...H.2..F]...z.B.ESA.Pg..m......................m..:..K.t...e.Mn.....7e.,.D..?..,C....(,..p.WWXi...D8.9Q.....wr((4..mW..Z.D.a..b....]..CDq'.3..."5.V..m.g..o...5...Cv..6.Q. .... k,/..L.9..9v....s$.c>...!....V..\|c.......=s..ZT...j.../.M...bxW...0...H..~...`...0.w..B.lr,..!..........8,I.H"L..C#O....(..(1..._.{fAxc&Q...F......jkFf2..F..}W.K.O.a:&..)S..P3..H...{...'C[..sz$jC...fb\....~....Up.....B..D.-.d.w.\L.4..J+.rH.!I.V_..r....Ni.-..._.d.....?b.....H].[X....93...[..f.1A<iy63...XPJ#~...0.a.#...d.<.\.#bm.k....q..Pg.. ..%'.CGY..P?

Chrome Cache Entry: 117

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (3532)
Category:	dropped
Size (bytes):	3537
Entropy (8bit):	6.056189310049051
Encrypted:	false
SSDEEP:
MD5:	D4635169256C0CDBE109B80CE4F4C153
SHA1:	C76F2D2696B5A59DF365BED5DE25F994D76547FE
SHA-256:	0C189835C0348F06F9315FC7A47021E13FB8B8AFE2BDB2A6922E5DDB961C3074
SHA-512:	004F356F680BD07C22A3F36F89F3F0D26A6C253D111CCE9150EEDC108C2D73F85F56512881E8EF1D821184BE374750473EEE29607760EDF895D133218EF871F3
Malicious:	false
Reputation:	unknown
Preview:	)]}'.[[["anthony rizzo",46,[3,357,362,396,143],{"lm":[],"zf":33,"zh":"Anthony Rizzo","zi":"American baseball first baseman","zl":8,"zp":{"gs_ssp":"eJzj4tLP1TdIT0szLcsyYPTiTcwrycjPq1QoyqyqygcAd7QJPw"},"zs":"data:image/jpeg;base64,/9j/4AAQSkZJRgABAQAAAQABAAD/2wCEAAkGBwgHBgkIBwgKCgkLDRYPDQwMDRsUFRAWIB0iIiAdHx8kKDQsJCYxJx8fLT0tMTU3Ojo6Iys/RD84QzQ5OjcBCgoKDQwNGg8PGjclHyU3Nzc3Nzc3Nzc3Nzc3Nzc3Nzc3Nzc3Nzc3Nzc3Nzc3Nzc3Nzc3Nzc3Nzc3Nzc3Nzc3N//AABEIAFAAUAMBIgACEQEDEQH/xAAbAAACAwEBAQAAAAAAAAAAAAAFBgMEBwIBAP/EADcQAAEDAwMBBQYEBQUAAAAAAAECAwQABRESITEGEyJBUWEUcYGRocEyQrHRIzNSYuEVFqKy8P/EABkBAAMBAQEAAAAAAAAAAAAAAAEDBAIABf/EACMRAAICAgICAQUAAAAAAAAAAAABAhEDIRJBEzEEFCIyUWH/2gAMAwEAAhEDEQA/AHUpqtOktwo6nnTxskf1HwFXlJpb6xWoMx2UNrUTrc7oz+Ef5q9MnoUb/clOzG9SskIUr4kj7Cgz0lStgahuLqnJCFg+Y+/2qEkjmjZo9U6c8mnlu52uSYLtziKjpvEYtyDHP8J5xCynWtsfhwoJUCn1GME0gq4qeRc5ElEBp5tvTCQW29O2oFWe96+vjQZpDBdY8tmFdkSlpSo3BD+lByhxJ1pyg+Ok4GCdsj1oHHWdSc1eufU1wmzbi8223GYuO70RKitsKwBqTnGFbc+voMDmVbg1uDfZ066NR6PeDtmCCcllxSD8e9+iqODFKHRL+DM

Chrome Cache Entry: 119

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	data
Category:	downloaded
Size (bytes):	6212
Entropy (8bit):	7.972271919335132
Encrypted:	false
SSDEEP:
MD5:	FA29372B0E5F0FDD940D591EA5CCF335
SHA1:	8641A6F17E07882D8FEDAFE8DB2F4FA15E762B2C
SHA-256:	BB654C7B848A2AEFE90C235B5C1308ECDF7E7EC8B58CA7A0CCF5DF957214BDC7
SHA-512:	197E41E1F8AF8FDFE9F8A2C866A77B199B55A74D770671AA3566EF606916099B59DB7F56AF08573E0F1FAAC6CD655846BB295D1ECB082DDD12496BB826BC5765
Malicious:	false
Reputation:	unknown
URL:	https://www.google.com/async/bgasy?ei=WfMCZ93rFouti-gPq4fV8Qg&opi=89978449&sca_esv=fe4d00f75289ff4c&yv=3&cs=0&async=_fmt:jspb
Preview:	.. .dB......."...{4"..6........o.....o...?fu.......cs.."h.i.W.n.....~]......\|..v#..g....^...4..7W.......t$..y\|..PB.p\|S........}.6.r..>....K3.B.....N...v.J.....1....;j..^_O."....6w4B.U.v{Z5/.5w....7.....HZfJ.E.D...'...%..%..$.nM."Q..ho......a...?_4.. .....qjUE..Z.$...63..qz..1.T.yv..<.....;v...4.g.&.4..K:....$.....M<Q..V.H.gG.=.h..{C...gh<x..<l^.e)[..3@@.m"/..i0k[..#.-R..`..n....'.0......1.w-..'(...9......p..R.+..z...-......w._-l.#B.H.j..,./..&mOD..H....D.0...\#.. %&...I.5.E..aTn......2...Ao.. .......bup..N....b..^N....j&S..\).`..8..Z.Q..<.0.IJ$.1.........yB..\|.....~,..>u..:..R.\..k&{M..a.....&BR.k.iuGs.0.....~...</....7...SF.............3*..@.(......[C.)..H.....l9<;..Og..U.........}...@..9.O.~S..[.Y.....J..Q..g.....?.l..06si"......<...W.KVI^.....A.4.&r..C..Q..t..8`.M......$.U&...%y&'...`O..../#.8\|Bl.8....._..i..B8o.df....t..c..i....CC.dQ.....4.00....P0...t.g...F.7.D.2.....z0....Ng.........S.._.?.'..B..5...8.k-......,.8]..-6.

Chrome Cache Entry: 120

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	data
Category:	downloaded
Size (bytes):	73546
Entropy (8bit):	7.9967808169521515
Encrypted:	true
SSDEEP:
MD5:	71012B329D17B296979C4B133137863A
SHA1:	C794629CFD211916D76F2B4F47DC13AA655CE44A
SHA-256:	2790BEAC3E35F0A5F037470B2822B0CC825947085109B9AA6EB34431E4E368FD
SHA-512:	85D375234A1DD141E5D22A699DDE26D8751267746C6E759D3382D6E3FDFE1BED5E0499AD6D03E027C15FFF34C79F9516F0E8EE916828C60EF5F68C4F9942A6EC
Malicious:	false
Reputation:	unknown
URL:	https://www.google.com/search?q=pezoomsekre.com&sca_esv=fe4d00f75289ff4c&ei=U_MCZ6-kCsSki-gP2JiO0AY&ved=0ahUKEwjvmd-qzPqIAxVE0gIHHViMA2oQ4dUDCA8&uact=5&oq=pezoomsekre.com&gs_lp=Egxnd3Mtd2l6LXNlcnAiD3Blem9vbXNla3JlLmNvbUjaDlDfClicDXACeACQAQCYAd8BoAGwA6oBAzItMrgBA8gBAPgBAZgCAKACAJgDAIgGAZIHAKAHWg&sclient=gws-wiz-serp
Preview:	....$.B.....7..j?\.Q.z.........\.0-.q=...S.......(.CVpf...8.Nm.o.U..1.v2.S?..........d!X...d..yS....$@(.\.:....W.v}vO....\.I'...@...........A..]qZ./K.\.....{.{.y....H..$}...."O.........Ay@R..t.H...Q .=9..q+....J..m.,]V)}......f..&6....\..p..S......4)."......1Z].q...C.P....B@..e....'...-0.?..L.x..*P.6...T....R$..Ih.Uy ..2.Xn...?I.....;h..dC9....^...@t..8..s......tsV.5..P....6R.N...}.{.lx?=..v.y.....W....Y...Q..(.`4.n.1..l......n.j..R.^..9.vy{Y=...f......~.......'..q%.VJ#..1Kl....n..m?.......r..F.f...J.v..n.0..=..d..+..R....F.....\....".../..o.....>.W....../..\|(.....y...O....uv..U.....w.?....?/^.;..G..6.4 ....t.Y......>K,..;./.l.J...E.....cT..-..>PT7s...\{P.._P.W....U...ff.1b.Jc..QJi..r..~.t.$3Y...f.F.0_.1.1.{Ss&..R...&m..3..JF\e..\q..n.L.....]..3u...G....g...y."....e.L.$..J..v75....v.....$\.S....P.u.d...B.~....40.zLd.RG....x..#.U@8.L..2...&..\.l...-...P....L.!W.........O.G........<..s......K.....JyOi...R..CD..-.2`.W&.^5w..."...].l U.

Chrome Cache Entry: 122

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	PGP Secret Sub-key -
Category:	dropped
Size (bytes):	465667
Entropy (8bit):	7.999245047579721
Encrypted:	true
SSDEEP:
MD5:	83C3C30E716E2CC0C3201C41C8935504
SHA1:	2157BF7FD23AC8AC81338E5AD9177C88AED99291
SHA-256:	68500D4FF8BD0E06262DCC33D0E57A7775EC8DB655BDF0E80260FA24502411D3
SHA-512:	1B7EDACAFB2A6473C1B2868684B9F336CA6F6F591F52758F0E32774483E45E105624B1DB1E76CFF91748B86EF28CED181CCEE9A6892C134A6A403162C63BEC84
Malicious:	false
Reputation:	unknown
Preview:	....)..8...m.....5..6....._........z..UUUU....E`...........b..(...b..(...b..(...b..(...b..(...b..(...b..(...b..(...b.^.U=:..!..G.(.....{.}..q.P.N2.;.......4t<.~../.hPg.l......".....Q.:..A..,.iX..B..".C.#....CQ.:^.a....hT..r....#W"..W.#Q.:^.Q..-.i\..Z..:.c.#..7.cQ.:.q../OhR7.fM.....".....Q.:.I.,OiZw.NM...Sw#....SQ.:.i...hV..~....3."....3Q.:>.Y.-.i^..Q..1.s.#..O.sQ.:>.y.//hQO.i-.....".....Q.:>.E.^,/iY/.E-.%.K/#....KQ.:..e.^..hU..u....+o"..o.+Q.:..U.^-.i]..]..=.k.#....kQ.:~.u.^/ohS..cm.....".....Q.:~.M..,oi[_.Km.+.[_#....[Q.:~.m....hW..{....;?"..?.;Q.:..]..-.i_..W..7.{.#....{Q.:..}../..P..o......".....Q.:..C.>,_...v.x........9..,Z.l.5.6l.m.=...:r..3..\.r..;..<z...7.>\|....?.v...e.x.&r.Z...;.<.-.D../...mT...._..""......7.aC.....=.5-.....,h.......]...8. 9..l.!%T.....P..4(d!.`.........>...b....4...~.a.Y.....+.8@.W.:...D..K......#0.N....+..I.@ch.+....R.$..R{...y.7U.i-It....)}XZ...J7._.C.R..&h...../.... ..tS.W.".........v.73..fR=.....L.i...j...{@o.....D.

Chrome Cache Entry: 123

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	data
Category:	downloaded
Size (bytes):	14168
Entropy (8bit):	7.984546482737964
Encrypted:	false
SSDEEP:
MD5:	E4625827CDAFE233FC1A5FF6AB9AB703
SHA1:	01ABD9811FB2094F2BA5A543FB52FFCE09DD5FE7
SHA-256:	8B024B0F08CBA2CA4B86FD8728A549454B215E6DDF64C46F4F654320CADAF533
SHA-512:	D1A883854E4447158A4CD62CC32E8D26A28D7816BAD0EB2103090E5A544731D64284564ABACC7EEBF2B2892BDDF022C40D426BF95F079C48163F881B4DBD92B8
Malicious:	false
Reputation:	unknown
URL:	https://www.google.com/complete/search?q&cp=0&client=gws-wiz-serp&xssi=t&gs_pcrt=2&hl=en&authuser=0&pq=pezoomsekre.com&psi=WfMCZ93rFouti-gPq4fV8Qg.1728246616629&dpr=1
Preview:	..&.d$.\|...f5.-{..t...0/.2.V..~...x,..l...i.GR..X....H...6....4............D......._....._...zw....#....#.#$.7F.....o....CC.......?...........?.....\|...)@..:..1h9....z.......R.:..,..o.}.w..@..Xr.).......jO.t.C.......o...?Ez..l...e...,.K......!U.g..i....i..k...u....<...f.@..).O.4....k{.-t9.w>-w.-\|.F^...j0.>M.7M.Y......5-q.V.h..=.rrn..wj.M.:.q.L].X.....M3@.f.l..1-s...3M3>M.E.F.....X..~.. .^.F.G<M3......cPP.(>..;..$.b.T$.^%."_..Z..iA........(...l8.gE.^..95......H...l..v..A....$.....=}}...9..:J.&.P...=..3...r....?\|<P0.~.oED.^'....P....1I..U..D..U....y.x.k?...(.........e.....B@K...&....k6....EA.*").].'.;QsT...w@...H...4.!...F.....!....a!.....8C~~.$hqO....k...>`e......D..\..9.s".....W7.,#)...Ww.D....L.Z...J6I.Kz:U....=h..`.....2........+.".Ps.\.y....{[Ze....:.;C.q..M.S,...S).#a.;.U.y.NH.;Skj<~.=...b.Z...2..j+<..rpH..V.a..r...B.4.E...\|..#.=a.={.....S....L.X..i;5.<hO:.I7p.).A.1v]<Mw-W6.H.#.E. ..b".....C...... 5(...(w.8;..L+..".6j...xk:b..g.z%/..c....ELxC...o..

Chrome Cache Entry: 124

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	data
Category:	dropped
Size (bytes):	806
Entropy (8bit):	7.741313452654238
Encrypted:	false
SSDEEP:
MD5:	6BFD74B7485569FA49CDFD4D9C0451E8
SHA1:	FA00308DB310EE6D7E4A24F9CBF4780BC9A53E30
SHA-256:	298E356A493AA7A5968CCAEAD18995510201DCE0F38ADFBB132B561A3CA6A87D
SHA-512:	097FAE253772A1C7D6EFE982CBAEB878A31D72E58C9ADE13087D1E3AA53329CF848EB39C25ECFEF53B7DD5ED059EB6300A62FB161F35CBE4FA39E2D9C092A8FB
Malicious:	false
Reputation:	unknown
Preview:	..4. .9..+..h.....O.6]H.<t.tQ:...M.z..Aw..i.6.H+.w#..nQ.[4RIJw...../;wj.......L...$.4........L4.{.~. .t.@S...F.2..yz.I.....C. I..(....\|0_o....V8...tE.. ..i...1uw...G[SN.?VxS..9Mg7...m..!R..)E..M....F..m....V0D....1F.......}.s.f..".......s..;q.Y.v.+...iQ..V..!....z.....v..._.....j5..d...1.....j.s}iaVE57..q.&..u..tyi..$~..w......&w1.;...6_Xpv.d........g.......;....(...,.M.......+KP...EM.?d..K)C..QA..G.m.....W..(,+..9....._.....e8.p.][W..N....9M.P.#.Ao....K.51.j>..6...t..w.!..{.c..Cm..0 .JH.y..n...^..b..<....A.D.p..=...Y..,.T..._+..&..>.(.".V....n.#..sV(.5.QR..h%"\..-.c....z.G..X....E...!...e.......<u...u...O.l.I....^6.."@."^Q.]d..../.>>N%s..[<,X.{l.',3....rEH..t3...k.......J.4.....c.8.....e..A.0n.]jz..M6.Q..2.4...m...Q...}7...7i/.$....;(.....,k_>=....

Chrome Cache Entry: 130

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	data
Category:	dropped
Size (bytes):	111
Entropy (8bit):	5.819838699640875
Encrypted:	false
SSDEEP:
MD5:	0D075343FC3F359A435608E5B2571D35
SHA1:	63407D619A7638F7DBC84FA841A542C54851C57E
SHA-256:	CCE63DA9196FC9EEC9671DDD5CFC2F9989F62615EE08D1520D9F609CCF650F5F
SHA-512:	004BF401C1FBCB78A50BBBD5472FEE44C1E40AAD7EF5E00507575B377C2EDA3A2CC865509F4DD1CD30177CD7452B6510C378B8A81F3F80FF0559EB3D1447E461
Malicious:	false
Reputation:	unknown
Preview:	...)]}'.21;["J_MCZ6-8HIOilQeW6NyxCA","2093"]X..c;[2,null,"0"]1b;<div jsname="Nll0ne"></div>x..@`"...../I...7...

Chrome Cache Entry: 131

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	PNG image data, 272 x 92, 8-bit/color RGBA, non-interlaced
Category:	dropped
Size (bytes):	5969
Entropy (8bit):	7.949719859611916
Encrypted:	false
SSDEEP:
MD5:	8F9327DB2597FA57D2F42B4A6C5A9855
SHA1:	1737D3DFB411C07B86ED8BD30F5987A4DC397CC1
SHA-256:	5776CD87617EACEC3BC00EBCF530D1924026033EDA852F706C1A675A98915826
SHA-512:	B807694ED1EF6DFA6CB5D35B46526FF9584D9AAD66CE4DC93CDEB7B8B103A7C78369D1141D53F092EDDEA0441E982D3A16DF6E98959A5557C288B580CF5191E6
Malicious:	false
Reputation:	unknown
Preview:	.PNG........IHDR.......\............IDATx..]...U..:.................].{.A.A.(......\....1........A@6.......$...(.CXX\|..d...IUu..dz...g..u.....sO.1..g..W.....~..fv..+.TL.z.q.c..e..;..{..._"...`V...NwUwg....L.{6...y...]....2yo.x}^\|.....)....444.....r7.f&.<...t.!.l'8.s..LCCcl...t........ ......;..,a..0.xju........\|.. D%.l._..........]Y.. ...&N.r.~$g...&...Z}.w.3q......RKwm.ihh.I.pL.n..7j.W..%..Ld...@......q7x)..A.x.0..M .H..Wq.g.h..k.\|P..-Q.}.Ca...@.A.....D....x.....vOp.....+.z...N...T..o.?...?.%e....&..#..3.....P..Np9...$m.Ne. ..3y?......]....l.).z...g.^.v.!....-...&..M .Eg..w.K. ..;..@.qiP4yhh.....U.l7X-.u...-.tP..X..D.i......p'.T>Y.\o.TM.....xx&...&..M ..{.MQ...@.......C.ihh...]].ws..L.<.1...M ..>/yl...yhh.Yh..y..n...H.iW!..4444.p'8G.<...4444. .!.$'.._`....&....h=@8..........T.Ao..4444..#..i.q.'t.u........T..+j.ASyjT...u..(f.y.uw...-e.B...5.W........m~..5-\|_">.j....c[o..m+....K.v.Tak_.".\.....<........u.....},..02..'.h.v.^.....s..A..Ctw

Chrome Cache Entry: 134

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	PNG image data, 64 x 64, 8-bit colormap, non-interlaced
Category:	downloaded
Size (bytes):	886
Entropy (8bit):	7.584944069327464
Encrypted:	false
SSDEEP:
MD5:	6197225BB330BBCB1713F4DA68EA4722
SHA1:	70802450DB9DAFCE33FA239E11D4B23FEF0DA470
SHA-256:	B0D05EA4BA29FA175D0916EA1F3D82EB48764F60B3869E5FEF7899B982320755
SHA-512:	146C817C6DB969B1892022AE27FC36E1B73B74CBA23AC95EE78F05C3338F227C0000083705BE37C2C6EE2AEEA356193C2694AE21114DEFAAAF454463A5F62B80
Malicious:	false
Reputation:	unknown
URL:	https://encrypted-tbn0.gstatic.com/images?q=tbn:ANd9GcTQAQ1IF_EQAnf_7SAWkATsIpfN15-chL1thp9HRyo&s=10
Preview:	.PNG........IHDR...@...@............fPLTE.........UUU....................999............@@@~~~MMMddd...sss\\\222...lll........'''HHH..........M......IDATX....b. ..`.H.h.tf...%w..L....y_..q0.....C.h.6_...{.%..D.....O....`...H\.+..._+p..p.p...x....o...0....@..d.....K......_)...a.....}=....sz....>...^..\............/....D.(....(.m..x.[@.........b.....?t~...QM....b........ru.).@...1....U...d.3.B!..&;..'....S..X..}.?.._(0......A..-...H7.....>)K...R....\|*.\|j..&.t_./.6..L.....v=.W...a.....9T....G%..vI..kX0......#D..t..@.....x.J8B0@..70..U..(~.........>.....P\|..4..B...M?..B...5..tY...e..3?..5.<..e.8 .......=......8..&................qLG.d.r.Sv...X.'.SR.2...2cQ....H)...3....;.D....j.U..P..K.-,.........vgfi.Tk/...vy6kcA.#."...{gy/(...`iQ..C7..@.84.?...".q.qn..=..l..6..9...a.....y.f...hB.m.l4.V.........l.o.wo8voy.o..o..o<.o}.o.i.......%...zO....IEND.B`.

Chrome Cache Entry: 135

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	PNG image data, 64 x 20, 8-bit colormap, non-interlaced
Category:	downloaded
Size (bytes):	677
Entropy (8bit):	7.521462872580435
Encrypted:	false
SSDEEP:
MD5:	DBB90B9229148B7181BC7C5024DC4057
SHA1:	99D9A25325DC9736C80D483C0F735F462429D54F
SHA-256:	6FFDE72A85C780EF15B63BACA8FF6CC9937B4B87B931F9BFDEAC5C9263A1EA65
SHA-512:	02E910F2D11F5876D7D8580F3E3DD15B102A0335B629FB72FDCCDEC23079690CD2B13CAAA50A55A65A7787B4B28A1CAA16046811BFE63E75B1CFC05AF0C6D00D
Malicious:	false
Reputation:	unknown
URL:	https://encrypted-tbn0.gstatic.com/images?q=tbn:ANd9GcTctXhdhx71t6Sei_UpcDrn8kcrIlirZUJOLjJnYnk&s=10
Preview:	.PNG........IHDR...@.................PLTE.........................................SSSjjj...~~~...IIIBBB......---... 666................z......[..i....^^^.................?.......$H......U2.r..k.1............................/f.{..T.!.....IDAT8..R.b.0....e..%k8.J..KY.#M..?U.R...=.G.8.@......U.....)ia..W8;E ..G_.Z'p..r....^.)..TS..L.:_l.l......u.\|...,.-...%j!0dw..D.3h.[E.....$.,..p....8X....&.P...-v4..;......)..D+..on.....)..L..$.>...Q&..F.E....#.*.A/....q!TB..(k.....vw.q..........d#...Qf.qK<Q.Lf.bw...@8p1.>I....M..38..{V....=.lu.M..........8sL....B\|.\|y.O....l.:.......7?2.,......V..].y\|..b. .hK_.}g...;...s.....N....J.O.V....O...+.....IEND.B`.

Chrome Cache Entry: 137

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	PNG image data, 64 x 44, 8-bit colormap, non-interlaced
Category:	downloaded
Size (bytes):	1124
Entropy (8bit):	7.719877851550252
Encrypted:	false
SSDEEP:
MD5:	43743253BEE64CB3997688E83672AFDF
SHA1:	C0AF039FF8A55491381D71B0EA510407CA4F09D7
SHA-256:	6BB292A4930348A9E691E52A464265D9784270A492CBA2232DCCF60D4E53EB98
SHA-512:	D0A2B4349C2030454122F16E5178B5B33F988F4846FF1177A305D97FE77119257BC9F79CD4D90454B337ED688DC1234A263C7BD09A4E86C871BBC40BAF7339B0
Malicious:	false
Reputation:	unknown
URL:	https://encrypted-tbn0.gstatic.com/images?q=tbn:ANd9GcSEOir1hoMO6sQSxXaSSmIezXbEJdbrd9trHoZpbuk&s=10
Preview:	.PNG........IHDR...@...,......N....~PLTE.....D..8..5..0..=..2..A..C..,.....)..B..@..>.....;..&.............IRh......ls......!$2Q......dj\|3>Y<F_.$H...{..Zau.+L...QYo&/.t....IDATH..V..0....\....pl....v.!.d2.U.....,uK....V.,..6...M.q.)?YH...{.......Q....^....>...`.h.KkW....9.v...H/.0K...`.NI..<(.\|.....}D...a.....\|.Nl>&..K!.........U.......]........L...6.........\|..I.:..A.T..\E..8..W.g..A./d&.V...-..h.M.3.#......-...V......n.6..4W}?.5...`t......7.* 5X...0.....S.....w;...W.o.X./9.."....DI..,.=.A..!..#.A).=^H.....R..[U.rs...j8..:.....}..c.3...%am..U..e=@.}(>.1.../P.&.'....C......;.J.L.< yV7&..1...f.c.>.-,>+..S&AE...35..G....0M...W...p..X....G.k.:1.(..$nj#.. .3^u....P...fk....c?.+...;.O`...Z.u..)...5;...-........t...d.7.....D.h....g.+=......Y.F.........czu.t1o..<...G2..T.^5..i...........5.....A..7yc...3.c...S.u.[+i.r....D)..t....z^.p..E.p..:.b.8XTc=..'.,.n......r...[.,...D.\|?..Y.yJ..M.Q..,..)5.....R.2.....P5..#..r.../..f`..~.q]Ku...f....TBk.'I..

Chrome Cache Entry: 139

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 64x31, components 3
Category:	downloaded
Size (bytes):	1288
Entropy (8bit):	7.476911558570749
Encrypted:	false
SSDEEP:
MD5:	89F104F17B473617C96B6A255CD803D0
SHA1:	FB6BCF6AD7A50DCCD074A52FCA6851FC506C14E1
SHA-256:	A5D457901518C4758075266D9746A0A72DE64093B781F685436C083B41132583
SHA-512:	0350DD447A638A65937ADA383AB9E08B307A5AC64573541A3FAE17C6DC61AE209F0155BCED696BF65807438F1C5F9C5877F40BBC774A48DDE4E6C6F788A70183
Malicious:	false
Reputation:	unknown
URL:	https://encrypted-tbn0.gstatic.com/images?q=tbn:ANd9GcT80ZEMyupMbLhCMW5Sxxg-KWwvWcXtE5IT7jQVy4I&s=10
Preview:	......JFIF......................................... ."" ...$(4,$&1'..-=-157:::#+?D?8C49:7...........7%.%77777777777777777777777777777777777777777777777777........@.."......................................1..........................!1..A"Qa.q.....#23R...............................!......................a!1.."AQ.............?.b.u:.]ai..'%JmWt.C..-..R=D.o.>..C....T...U-%S#.J.$_q.'.-k.....L.F...N./zAy..JRW.H)..?..^v..k.v.LIQ..`.n.....~Z..7...j..@...P...Y..]r..W.\.....Zy.....8..L..s)F4.z..b.us...R.h..H......'.-%u,."La.......Cm.N...bv...s5-...`D....L............;.)K.>..$..._.ev..(oE..O..]..JHU.........Z..\O....T.K.D....?.-........mb-Q........,.................]K.ND8T.B.:S.......T.G.arl1/.C..z.q...3....2.!.Q...C...;.{...{..l..J...z..&...CJ^..._.}.s.lw..j%R>G.Mqy.-..`.#K.T........x7.Z...:.L.CJ...Z!...!D.Y"..*._.Q..=p..N...Nrk.<.......j\|7n.R4.#....6.-....!".JE.......7,...B..5J..S.R.}.:...c%n.(.;....+.4u-L........l.\.O......1<."dx,.\|X.^rB.Jd.J.o.gq.^.

Chrome Cache Entry: 140

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	data
Category:	downloaded
Size (bytes):	610
Entropy (8bit):	7.5985512442943115
Encrypted:	false
SSDEEP:
MD5:	C569E65A687831C5942C388C31E3D1FD
SHA1:	9A516C894987A18E05471B4ACFC2B22D75382B5C
SHA-256:	ADCC051E33E31164FAE61E35B0F9A61AAD844B3A1834AAF1F80B8F223A81E77E
SHA-512:	E84F44A182418D05C262B7A6EC953C8BA4EA838256F725E81613AF334894E4F6F8FA18F46E2AF261CAD7527CBE2DD8B7016ED4922D723CCF3DB5EF1AFCFD7063
Malicious:	false
Reputation:	unknown
URL:	https://www.google.com/xjs/_/js/k=xjs.hd.en.5kvEiulbeUw.es5.O/am=AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABAAAAAAAAAAAgEKAAAAAKAAAAAAAAAAAAAAAAAAAIAAQQAAIgEAAAIAAAsAAAQCACAAAAEBAIAACcCjTAAAEQBMAAAAAAAQAAAEigAAAAgAAMAAAAAgAAAAAABAAQAAAAAAAAAAAAAAAAAAgAACAQAAAAAAAAAAAAgAAACAHgAAAAAAAABAAAAAQQAAMEAGIAAAAAAAAKAPAIIHwJDCAgAAAAAAAAAAAAAABCBBMBcSUBCAAAAAAAAAAAAAAAAAAJCSJi4s/d=0/dg=0/br=1/rs=ACT90oH5e2n6oobGvVqLAK2VdIVpMlkz5g/m=aLUfP?xjs=s4
Preview:	../. [:...l....$c.U.`..!.p...(.....Z....9..-..)U.=.....&Ml......K#....\......+....f2Z....2}...eh....]]2...k..uk.(z.....N..l..."......TM.5VQ=N..Y'...g.j..9v.8...A.y<;.......p..@..ucpU..\|T..w3.c>...[.q.Y..2;..f.p}..,....5..A8r V..m.IP.....#....k.s....R..P....w.W..v..Bay.F..8......-o[...@fP.a.<)...........p.....-=.l.nM....K.B..L.B]6..V....G...0F....E.....<.~.QV4k ...#..>...../.j.n?.3T^VYh.~.....R-..R..M.Fv.~.y....k.;..r....X.E......m6...4..b....^.A.4q.+/C.. .E..eS<.;....Nq].ty#~....V.T..8.[/.D.q...{..u.k_..]....C.i..=.@h.S...W]9.-..Y.xA........LU..f...'.....m._......

Chrome Cache Entry: 141

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	data
Category:	dropped
Size (bytes):	23784
Entropy (8bit):	7.991960357105412
Encrypted:	true
SSDEEP:
MD5:	990B2D8D46CEC4EF5717816BFABD1A53
SHA1:	43B51640FF7BAE957ED1972137125D8D28385D98
SHA-256:	CD5D218FFB7EE50CBE6EDEC380FEAC5F4126BB535A5601A80E5DB0B53B494055
SHA-512:	4B99EA2ADCB0B57E1B8F4258122BE92EC4EEF4534BEC4F3A75ADA4D38281411DDE5166F02C6128CF93029E6FF920F4B8D318000F7DF1EFE8828E1D6C020040E7
Malicious:	false
Reputation:	unknown
Preview:	..%....C@#t....o....\|A..n2.....F..l..2<^....ha.....y....Sx.9..+.... ......z{.po..0U.......A...T5......x==Cz.Y...I._...T.E...?...7.....k..^z.i.-.1..l!..y..Y.i2..{..>.!....iU.:.x...$@....~=.%.UD...0gN;wW...`..)f._n...G."5...Y.$.^..1\"3.t...Vd.8...Y.-......l......~..+b].dX.+.=q.Qb..fT#D7......Rz.]..g.........ad(IK..QgNl.w.3I...!..Z.3...k...;P`.e(.Q...S...{....A...P$8..^.9.XbE..[4P...9ql?^...Y..96Wd~..k....V.......E..L.D.d?.(..".'.m. ..B...?..mdB .KM4...d.+".G...C..rA.-....q)]..'...V..t.p.4...[...o.9q\...F.).XM..`..i.j....T_....<O.\...`.d...._..T?.-...U..wa..t.L.{..3n.e.9.$I.......@..FW$@.. .............M..d.%}.........).%..3...o..02..Z.yrpv.-.K...E......(6l..9..sZ....z.7.....B..U.....z^.[W#j.,.......Q{....R.UcEfA..Gmr.^1`.8...."2.T .M...0w..........p"3.}..................j6.....@i_\.\..J4..44..V..yv.7...%..X...!Vr._<..>.1.Y}-e(..!.]?..vY.u..x........-...............{. ...d(..M.n.T3....&..F.zA./..\.b..[..a.'..0..-..v.......fD6......\|.<.h{%X.,F^

Chrome Cache Entry: 144

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	data
Category:	dropped
Size (bytes):	112
Entropy (8bit):	5.862591194127912
Encrypted:	false
SSDEEP:
MD5:	EF1B06DCF05AF22EBACE0690BE1B6AD9
SHA1:	778C0AD3C8127C85D62E5D22E7E15C4CAD04D56E
SHA-256:	3399F0A653B473FBDA2A1607C9B7B0B2518A1320F2C85A9E9B0F151A02C71FFB
SHA-512:	D02073801C06AD21FEA9BE0CD564D4C04D034865ECCA0A00E07125A6066F067FBC96904F208CA4C008B46CC43D8D5570E78982845873C849786AC4CC7030BE7A
Malicious:	false
Reputation:	unknown
Preview:	...)]}'.22;["H_MCZ8uRHf-B9u8P4s6giAI","2093"]X..c;[2,null,"0"]1b;<div jsname="Nll0ne"></div>x..@`"...../I...7...

Chrome Cache Entry: 145

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced
Category:	dropped
Size (bytes):	2091
Entropy (8bit):	7.8938748179764
Encrypted:	false
SSDEEP:
MD5:	6282A05D151E7D0446C655D1892475E2
SHA1:	B2B05F319DA0E73250200AE9BB518A318D6B4C5D
SHA-256:	4CAB9CF78FD7C85AE2236CDD47B905FA4173F664946DFAB008591B3CFE4280B7
SHA-512:	DF0C4C01555430BD2AFAD409E40A422F5EFB0ED9B6E86168874B46312FFC0BA7CA2B5503E49858035056C342A83CBC42721AA89077BD2E1F698692AF4277BAB5
Malicious:	false
Reputation:	unknown
Preview:	.PNG........IHDR...0...0.....W.......IDATx........m.tm.86.m.m...m.Xo..._~..Mm.&..x....v.....?... .~^.TV....z.wK.....-.`..w.............4....."...z6Z."....`;@....!...S.Q..E...L$..`01..S(.v...vn._...H.......H.fs.8).....q....\....9B>...)>#2...A....z..8.#+A.V-..hh....3.......c.......F. 3.......~.^Q......c.....a.1...gZ....y....wU..2...].-.0b].......[......w...&K..$..K..\.t..QoY..O?....u.Sa.-...na.Z..}..._s..~[.Ue.M.!#Y.....%.t.7y....J......Q.0fC.Fo..@..&...B.....&..}.ld....O.#+...<.z..,."?vC....Y.....<d..."b.D.(sX..c..5.z,..!...oV.. .....>O.#..pHG..y.j.7.-@.K.s..,...&.%6.. O=dj....S..;.O..ylc.O.~....Tn.F.\|.Y..X..@........e..O.Z......}(H...vp.... ...y..&..:.......8y...{n..R^...:.q.......>....C.....^P..C..%..<. 6...9..,.$0x.M.=.`\..MI..\|.........^...W-"...@..J........K.m...h...x.H.>.c.>.w!......:X.b%.v....)..[R..-..>.+!..?...?.....Q.G:F...k..A.)`*.^N$...{9.<.PD...7`).3.d........h.k..{]&.;^.h.s>BREP.X.O.~P\|[....R].m,.......Z..Pk.g0.yl...Z.qp..

Chrome Cache Entry: 147

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	data
Category:	downloaded
Size (bytes):	57824
Entropy (8bit):	7.995868035606345
Encrypted:	true
SSDEEP:
MD5:	B11580FE4E541E1584C0779EEB127694
SHA1:	EF929DA03CD616C0D54EC159A8DABD09878DAC4E
SHA-256:	797ED2F2C582E737A1594806E1D0D80B6E82411E3E56C2DD881DECF0A5D4A570
SHA-512:	018694D4501231378E56A9C57C259E16479F5DE14628FB92DCC8DC4394AE3771EC38C746244057D2D3D88F44852412DC0B1C1A5C46FCE8F9CC8AC703E673E8B1
Malicious:	false
Reputation:	unknown
URL:	https://www.google.com/
Preview:	S..3.a[Zq......d..5..@u&..?~...g..pL..?.Mf..fw8]n.........??_.j...Y...$(..W.c.9=~~-.+...>..djV...z....L.X....H.L.T..H.Ry.Z.....&#.;..Z..f&.....Q.......@&....>#.d...?.s....2.W..$p...g.#..I...ko.......o...g..q%.X.#@..H....{.....I=.{=3@i..O...m...Xr.....{.....@.....,x......A.[Y.I.JA. ....J...D..L..o....@....XR.N.W.C....9.$.....0....M.....R..\...R .'3.D.y..R.....E....B.s.RhJ.rP.P....R...hc....U...U.m...C.EK....e..s..z....I..`&.........9........(....O.A.!..M.B....Wvg..U....0z....,.D.1..5..S..#'..'1......U...2f...:H....0g6.5.E.A.4...h..3.:E@t.{.4s.;V^q.".i...hi...pTb<..}..w.+I..V.Q...f2f...4).B...2.u....~(".!2.D.T.g}.8=...3k".....8...6jU....... ........l...T.....t.C..V.m/..1..9..aL..<.. ..VU..OHT.b.IOP...@q.e"X..m...\|8-OP...<..F...x.....rY.\|.et.d.......Y3.l;s..&.O.....Y.E........h...........~.?\|...n..x.]...E.\..7=...FX.b.m).R.,....A-R..c...==R........r..?........v.0.3;......=.f'We?...F.O.......{...b....o.......Y#.>..RD,..x..\.gO..P.........

Chrome Cache Entry: 148

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with no line terminators
Category:	downloaded
Size (bytes):	8
Entropy (8bit):	3.0
Encrypted:	false
SSDEEP:
MD5:	3BBBAC058FC4ED9E8078F0318D31D9FA
SHA1:	FB3F78865EAC1BDD3406F00B9CAE5C6CDF6211B8
SHA-256:	3938C63E8B782001C4B451B439634C1380B1E262D919E11BA7374862835D83E4
SHA-512:	B69FBB06800C913E488AA496A397F6A1E1322441089B90C90798737782A71CFAA9B2F147C2F9B4BD14A45E05B3ACE2FB1ED4F862693BA7134785F94417393078
Malicious:	false
Reputation:	unknown
URL:	http://pezoomsekre.com/
Preview:	empty OK

Chrome Cache Entry: 149

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	gzip compressed data, max compression, original size modulo 2^32 5430
Category:	dropped
Size (bytes):	1494
Entropy (8bit):	7.850152923557724
Encrypted:	false
SSDEEP:
MD5:	3C7DCF00B5DDECE397782818B2CF9D74
SHA1:	FBF7D59857A3CA4D6C94F0819B58A191D76E7DB2
SHA-256:	08D60D0844BC4457BC7BADB32545AD3A3D037D941C8D5F7D0DE6AAD1517B15A5
SHA-512:	9770C8AB4C875A030192B60B7CC474A202995C9EC7483AB6618DADA674EAB7A5ABAD06E3B7003846171EFC3BFFE3C063AD12C418DD6190E8230470BA1C281449
Malicious:	false
Reputation:	unknown
Preview:	...........X{PTU.?.....G.5..0.h.1..L..>.p..L..L+kF'...Rg.@KtD _........hI...B..\|.]`.}.{.;..\.e.....3..g....w.w...n.1..+..y=...........XF...0.b.:.XWF..r..DD........Q&.\|......e!. ....0....}...vb..H.5.)...Pv..]vk:..uh.v.},(M...!...7..q.s..y.\...J.\|.s...Q{...I.(..F..p...;w....C..6...Kg1.p,....N..>...8W%...[.7....ID.b...V<]...E..k.R.o/I.....<...d..x...7...E..W..}.C..=...z..b....1.....7....)w..9......(.\|...T~#.\|..{...........!.s5>\..ac...?h..~..A.....$B..fE..._..co..L..........4c.x....0..fl/p).T.........fYFYC,..<.^..... #../c...[..B..O....j.yS.gb.C...S......H..!I].6H..$.....HD9D...]D..s......o...x...c^...5.. ......[.3....y.{.ae.\|.)........J..s.W..W....p.s.j......b..K.T0.....csq...t.VvP...Q....{dX.z.v).... . ....;"..hf^<....o...=.2..%..W^/.....$l.NGic!.].........\|_.5.7W..KZ]..>6..U...&6..o"......-../..VC]t.K....{......\|\yjm.......u..6....K.j... (G.<.9O._ss.s..N.YE.h...w.y..Y......y......o..W....G..JQ.9.w?...q7.f..i..j.'..... ./.

Chrome Cache Entry: 150

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	data
Category:	downloaded
Size (bytes):	3643
Entropy (8bit):	7.943017429041248
Encrypted:	false
SSDEEP:
MD5:	762318DF031EAFAC5E2F3454B5EA2AD4
SHA1:	F363C1804E17DA8252BC80FBDE4FCFC976898F38
SHA-256:	3AD8BE192AB11F599E56A2F8688961D326EE64BFB0A5D20D171878532925D794
SHA-512:	A3D006D945EC8D7CD739CF755E70840123C85C66EBB5196A5FD4BE1F0F88B31F000116932A151D15033D38B43B1A6A44A71665EF19E0CDD80747BCFAEDCD4204
Malicious:	false
Reputation:	unknown
URL:	https://www.google.com/complete/search?client=chrome-omni&gs_ri=chrome-ext-ansg&xssi=t&q=&oit=0&gs_rn=42&sugkey=AIzaSyBOti4mM-6x9WDnZIjIeyEU21OpBXqWBgw
Preview:	.x..d^....k.......Lv<]0..-1....M......Ml......},.0.T..4........1...R..T...........?..{.{..>.....e..K.....N.^..v.....O..\|^...n...W3.<..ug>.c..p.~..y.B.>.^T.....~.A..K.}........S....v...}3Ms{.>..]]..6...~........E.T.?...Y............E..'a..]5.;.k..../..u...q.ok8....8..>..W&..V...................xP..........mv.s.W.....T.A.8...N...Qe?...@...p.]....-.P.j~I...&..J.[.G.yc.$m.....I../1...........+.r...L ....=.@>..8..h.x....^....#.l,G..3Z.kkN$.>. ..7.P...g=Y'a8D...g1^)..~.-...-.?..G........]...T{'c.0.~....".!Bt'....P.X{...<..-Y.:#.&.t. .~;.W.~.(......N.0g..{.hTE.O.yP.Bj..R?<..2..O..JgABjF...R.D.5....F....&..Y..d=......w._.aT.p.!..1..0...P.:....B..$o5x....\.L.n......c...S>...mAD..H....5.O..k...f.C..;u.W.'{2x_B...N9V....DS.s"..~3.uk....+.6.'..M\|.i.`.....\|.....:.E/.t`.....z_..c....j.g.O$...-..R.........m...Ta..}..lv.0A!PPs...@m.L+.....Q.t0..'9U.r...od9.....X......&...P...aR...Mlp.....SY.eB.......^d..\|.H.`B.T..jlb.u8...x4{.l..d......C..../r#s*.A..O

Chrome Cache Entry: 151

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	data
Category:	downloaded
Size (bytes):	1255
Entropy (8bit):	7.826131730367415
Encrypted:	false
SSDEEP:
MD5:	63374B413CC4A3029E9F2B07E04C233E
SHA1:	F77D6738E0612EB1680F6ACDA6360800050DC89F
SHA-256:	CE8FC192A4097ED755F23F6B0E606B37251C25F77B9543DD78A22237AB9E2B0D
SHA-512:	CFB51B0287AE9965537E6DE667E58B00CFE025C6046066387DC2AEA065CD79AFB5ABFB6AB7595752E866973524734A7B107A4E3C2EBF42CDBABFFDCAA5A675B6
Malicious:	false
Reputation:	unknown
URL:	https://www.google.com/complete/search?client=chrome-omni&gs_ri=chrome-ext-ansg&xssi=t&q=pe&oit=1&cp=2&pgcl=4&gs_rn=42&psi=v5HDooeM-E0qdbuM&sugkey=AIzaSyBOti4mM-6x9WDnZIjIeyEU21OpBXqWBgw
Preview:	.k..d.....+....d...L..$..@.x.H..(..F&.......\|.W..(.[#......p.Q..H...F6.....Z.B..=.a.....o....5..0/..v.aj...^..C..(..&..A.\x...>]..QD .....W.......w....]v}?....:....o..0.....J>........x.O.F9H...c.W].if..$.@.2......n<......>..{p..7.....g...y.,r...Y..iY.\|v.S.y..9...>.....vv}m.<....3{1..z.......X...!b6..dY.Z.Z.q..H....y.l..H.B..-...R.sq...n...\.6}.....5 ux...Ik1I.\.\|..5.B/oUK.U.V.[....1f.gQn3../b..,.....f[]X.t..3.P..&..l.e.x.Ss...\M-..."[....(=\|..)dV@.d.z_..u@....3yF...<]...RF..Lp...A.....5..j^.Hr!$<..9....'..M..wU.q.u..c..G.KD:....._sO.n[....N.d..XD.US..$W......3.W.gP.Jc.M..........N.cM9"..x...%..Q.L.O.q.R6.=.......m5.cF..R X..6.T.....6E...k.&..W....E8@....ip-=1+R....".C{..x.R.K....dr.%(R'.1.G....$.G..d..%...E}n;b.h..l........Y..\.f...[H...[..+...*O.....N\|.)....]..H@..Y].._ONCZ.R....$..D.Tm..f!...R=)Ws...n.3.:.[MD.....\.....W\.......jD...w.H.Y......%....%..{..\|g.../y.j...D..J..s.).R6dwT.6...u.m1.Aw1....o..3....w...1.........

Chrome Cache Entry: 153

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	data
Category:	downloaded
Size (bytes):	806
Entropy (8bit):	7.748929963795568
Encrypted:	false
SSDEEP:
MD5:	0A6B171C59A98B51371D50E6DB7199D2
SHA1:	3DBACFAAFF815F6B746E226C66BE0A690EA4ED83
SHA-256:	1834D52F321F6689FF3AD05B63571100AC6020F3F916F5606A774B5D55ED9DA3
SHA-512:	C993C8C44D6365F153DD03D1626C4849C7AA9DDCD90114F98340119F1E59EE1B15E2D53F7284900C64D937E059C01164A3125A500CB5BB0894A2B4864C23CE2A
Malicious:	false
Reputation:	unknown
URL:	"https://www.google.com/xjs/_/js/k=xjs.hd.en.5kvEiulbeUw.es5.O/am=AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABAAAAAAAAAAAgEKAAAAAKAAAAAAAAAAAAAAAAAAAIAAQQAAIgEAAAIAAAsAAAQCACAAAAEBAIAACcCjTAAAEQBMAAAAAAAQAAAEigAAAAgAAMAAAAAgAAAAAABAAQAAAAAAAAAAAAAAAAAAgAACAQAAAAAAAAAAAAgAAACAHgAAAAAAAABAAAAAQQAAMEAGIAAAAAAAAKAPAIIHwJDCAgAAAAAAAAAAAAAABCBBMBcSUBCAAAAAAAAAAAAAAAAAAJCSJi4s/d=0/dg=0/br=1/rs=ACT90oH5e2n6oobGvVqLAK2VdIVpMlkz5g/m=lOO0Vd,sy8v,P6sQOc?xjs=s4"
Preview:	.04. .j...r.oI...PQ.'.s.W...."q`I....e....m.b{g..tnD..-.x.F..7K.......e)".+....:.............Q'.&"....;..:.\|...P'1'o.,..a.s4q......B.]."......`%.)..%.r.O.c6....-o.<m.q.....y9V....Y.L..S..=.O.....$.......B.i...(.H.b...(.........C.sc..^.Ed.1..-.....dv.,....E...`.9..8.......k. ....y6[D=?.RT3Y....taq...q0...7...13..:e`....:.$..G.2.blq..a:.O..0=......... =.-.(.....4.]r.....R.d.Xz-..,~mo/o.]B.]y.l.E.....(.+F... q...Gv.l.../MwG......@.7.qz.ny.....U..w..."~...\.(w^..J.NXM..O......D....M.jy_.....m..........P.r.4L...]..3c.0.IKN.$Q..7}.....q;.".....:.w@.u.:U}.P.I......e...A.qT..5..U.N...1.4EN....>...R..%....k.\h..q...v..?.....y...:...P(..R-A...a.Y\|.../.::Auf4..rX.a..R?X^..%.+B*..[.".s6P2..W.iP.....{r..8..$..r.....wm...ND......P'.I@.CK.p...M\.^.IDm}.V<.da!=i......%

Chrome Cache Entry: 155

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	data
Category:	dropped
Size (bytes):	7564
Entropy (8bit):	7.974483009023935
Encrypted:	false
SSDEEP:
MD5:	E3B5E5E21E36C705E1E7511622CE0313
SHA1:	4EEDC413B79CDEE9CF46C5A68B934FAD19533916
SHA-256:	EE4727DAF44F7C217FD068EEEA779ED20340AB56A61F7A1BE33FDCA453C44127
SHA-512:	58C484430174AE6427560C15C45CDEDBE579470AB6D71E878410211A12363498896E5D0D40565B3B6A298445E50BD104BC9781B958663401D33400F07273E34F
Malicious:	false
Reputation:	unknown
Preview:	.K...6...pH...q....;,_.7H....c...&BI....kO....9.V............<...6.'9y...#........f...kq..\qi"e.=..^Y....I8....^m}.zu....#dK-..C....YJP&....Ih../u...T..5~>...))E..lv~.~o..>...<S&,...C.c...l....<A&%.V.3.o...S.nCI.$.c..!HnE._..~..E..ur....!...}.?s....\...O..d+z..,;..3V.G..KN...G'....Y...OPa..4.XnUn...v...^y.$.c......Q@D..1Udf...\6.a.J...k..P,.$...B...;o..............}...._...Q=m..V..........6.._....~.O.....~l.6....u..o..7.T<W.v..._...G...mf..k.sr.P.;.o..6sl.N.u.^.O8..~..).y....]^N.....+.b.........J..MFi.k..~VH.....u....!.t=..../.dc..........N.A-.9./.Z....-.....].zJ!?./.F...,.l......A....A.2t.)(.' ..cb....x;Sg..Yv......U.... .\!OQU.....v=.p..h.o./\|.X.....c3......\.....}G/rU../.gv......n...%>...?VG.\|0\|....3.V..K`.Kj.....X%(d&...G..D.w/k14..{...Jq..I..n....).c2....]k..5Z.'....X.f.h..\|..T...2.....d.....K...2.}..6r..#OV.Z.`'.....Z.(I..5er.N.,..s....,_#.i.q..8..$>.".<..5K.2^j..ZU......G7",.........$U...\|.....N..9...(Y....Z.q.......cT..D..<

Chrome Cache Entry: 157

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	data
Category:	dropped
Size (bytes):	28781
Entropy (8bit):	7.992079946010411
Encrypted:	true
SSDEEP:
MD5:	DB483FA3E38211007FD5C34A78BA0435
SHA1:	1FE4ED2AB21BE7D2DFA42E324CC62D9145DF931C
SHA-256:	A734010C5AC71EB7DF43D3E35BBAED7F63840E3A272862ECC0C58B6DCE8B37A5
SHA-512:	CC1FD251BA9875A4E8E499DAD7220D9F8825AE0E20C48A4540828091B7492F840AB8773284295C9ECB6E24B244FE59AAE8551078EE0300649AC78C51F2A8D7CA
Malicious:	false
Reputation:	unknown
Preview:	.)N.d..\|E.D.osu.+.1...F....2..s{...n..Y....^...h...Y?M.....sT...v..&%.... .. =....8..............g_.......(...1...&...............?..._.......YN...GY.sd......u.pb..W......u. R.../.((1.O.K..9.."7.4..7J8.s(."..X.u..:.P?_..$.,.nU}d6.Kqs...@......^.u.g\|.T...u. ...u. R@...4.Qm.......<....>m..V..E....do<.I.H..HB.Jsq.r}b..6....O..b..o...L...S...m+7\o...../5.p.e..)n.".^..............d"K{7wM-..F.,7bO.X.2h.N...f...g.rUF...\|...E.\|...q.....7._.un.....\..........[.....S...........gA^~.;b..P."w.m}..}...06..wV.....\|....).#.W;.u........p.....P...>Q..fh..i.fh...7..t/2w-1u/3w..u.qNlq..s.........-]H....+l.(.Yi.x......s8..?.3..a.Y....k...\|.^.1..1....~4..2...K.\.,o..K...3z..c..}....g........i..o.aj.eh....S.i..}W.xO..'.xQ.T...F...t./>..GT.v....bz....y.%..k.g....3.....7...;nxNv..yO..F.x.G.4..e.~x...V{...v..v......2.]C..YQ..]h...W..S..^..A.cg..........j...._gA`....j`yt:-.J.^..............'.`...S4..{`.2J..U...L..'.[. .o.}.4lU....s..l....*C.....T\._..lRjH9P.. .

Chrome Cache Entry: 159

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	data
Category:	dropped
Size (bytes):	115016
Entropy (8bit):	7.998046148766327
Encrypted:	true
SSDEEP:
MD5:	E06C5100ABB814C43DD065009180DF26
SHA1:	B72C4D95D2F4A1DDEBC96EB2AEE5FC5001BA39D4
SHA-256:	465245C4098176D9CD0BE4594741FC84C71D604C0BF8853648F2BE2A56998008
SHA-512:	622E258C916D0265170D9362E100C35C4DC547D2DC390EAFF7DCE8A4590B819EE674A621887BDA8313E13B3C617E3E47DAE494435D041C496CB65B868DFFA6EC
Malicious:	false
Reputation:	unknown
Preview:	S..U4R....@...F!.q.....^F...Z<.......................l............{..Y....\|A.~L.PTK`...T.D...q.'..[I.(D..~......U....H...cNej.s.II....9.=.....P..,..).w)..o...........e,w..n.M......{.(P)..tf..........$d...0..w...P.........Z....$@.6..f....3.q&..k.S..M....0.T.@...............G....J..44:..>29y.9.....+.7..6..f.2..W...v...T..V.P.HY.....?..4._.....9.=7...]U.~#..1i5@Jk...{.t....@.T...E.~jX?d.~.9.:.z........M.z..G...M.....%.G.'r+.....`i.c.S..{.{ow..?..{...0....R.s..o..... Q .....).;.r[7M..kWU.M..E...m........ha......H....~.m.+I.;c...B'....&..][.AET@.1.jn.o.X...$.M.............c...w.c...6..].....k.C.}{O.:.S:..1k/..M^.....l.d...el.\|..I..K............./.1...w..&%.../...}......[D.\|9g.Y.9.s.$.f..z...P.+.vA)t...9_.<..]..0..$.cL.X.J....8.q....t..9.s..<...G..~?..Qd.s.&..rn...0....^F5...l.{\... T.n.B....cC..o......(h..:3.....,hO.j............E...m.;.p3...?..c.(......O ,:....8....iX.3....GM.\|.....U..#...#..-.t...G......(...b_6...6.9...k.........j..W

Chrome Cache Entry: 160

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (2693)
Category:	downloaded
Size (bytes):	197852
Entropy (8bit):	5.519589791165447
Encrypted:	false
SSDEEP:
MD5:	08C8037875AFFFB594A3558958F31941
SHA1:	9A71DE04447772947AAD65C0E40AA01BAF112A92
SHA-256:	2BA0AC245EC7F0D4889CBB4E3CC9A6B8E873E8FF878FEF7DFA8527928A6A36D6
SHA-512:	0BEB47D4118C756C5E0F23E6C484A007F5E97634F80C5B94DD0C339C350B0A3A3897684CE0019710A49BF53BD49FA29779145C7E493A99B11A37E9DE3D600F4B
Malicious:	false
Reputation:	unknown
URL:	"https://www.gstatic.com/og/_/js/k=og.asy.en_US.dOMbB--dfZU.2019.O/rt=j/m=_ac,_awd,ada,lldp/exm=/d=1/ed=1/rs=AA2YrTtDl72aORs0Vn985jGyWBoBWtBXMA"
Preview:	this.gbar_=this.gbar_\|\|{};(function(_){var window=this;.try{._._F_toggles_initialize=function(a){(typeof globalThis!=="undefined"?globalThis:typeof self!=="undefined"?self:this)._F_toggles=a\|\|[]};(0,_._F_toggles_initialize)([]);.var aa,ba,da,ea;aa=typeof Object.defineProperties=="function"?Object.defineProperty:function(a,b,c){if(a==Array.prototype\|\|a==Object.prototype)return a;a[b]=c.value;return a};ba=function(a){a=["object"==typeof globalThis&&globalThis,a,"object"==typeof window&&window,"object"==typeof self&&self,"object"==typeof global&&global];for(var b=0;b<a.length;++b){var c=a[b];if(c&&c.Math==Math)return c}throw Error("a");};da=ba(this);.ea=function(a,b){if(b)a:{var c=da;a=a.split(".");for(var d=0;d<a.length-1;d++){var e=a[d];if(!(e in c))break a;c=c[e]}a=a[a.length-1];d=c[a];b=b(d);b!=d&&b!=null&&aa(c,a,{configurable:!0,writable:!0,value:b})}};ea("Symbol.dispose",function(a){return a?a:Symbol("b")});ea("globalThis",function(a){return a\|\|da});.ea("Promise.prototype.finally",f

Chrome Cache Entry: 161

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	data
Category:	downloaded
Size (bytes):	7941
Entropy (8bit):	7.973007128980929
Encrypted:	false
SSDEEP:
MD5:	AD196D9ED4DBCA1F16C1619C9EB87D01
SHA1:	76D81D63AAB87207DF02CEB706B571C1EB8048F8
SHA-256:	CA99F7071F80D060599C0B2712C46CFE26EB1961F4E07D5C245EC2578949143B
SHA-512:	EB4CCB7CB0BEDBBAF5DDF6283ACD0A2C4744A38920E3062862E913438D0B157AD1D37532F3F306DBDC995D467235D27122DF10F9652A4F4365C63C4650027B7C
Malicious:	false
Reputation:	unknown
URL:	"https://www.google.com/xjs/_/js/k=xjs.hd.en.5kvEiulbeUw.es5.O/am=AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABAAAAAAAAAAAgEKAAAAAKAAAAAAAAAAAAAAAAAAAIAAQQAAIgEAAAIAAAsAAAQCACAAAAEBAIAACcCjTAAAEQBMAAAAAAAQAAAEigAAAAgAAMAAAAAgAAAAAABAAQAAAAAAAAAAAAAAAAAAgAACAQAAAAAAAAAAAAgAAACAHgAAAAAAAABAAAAAQQAAMEAGIAAAAAAAAKAPAIIHwJDCAgAAAAAAAAAAAAAABCBBMBcSUBCAAAAAAAAAAAAAAAAAAJCSJi4s/d=0/dg=0/br=1/rs=ACT90oH5e2n6oobGvVqLAK2VdIVpMlkz5g/m=sy1ei,P10Owf,sy1db,sy1d9,syqz,gSZvdb,sy10f,sy10e,WlNQGd,syr4,syr1,syr0,syqy,DPreE,sy10r,sy10p,nabPbb,sy109,sy107,syjy,syo2,CnSW2d,kQvlef,sy10q,fXO0xe?xjs=s4"
Preview:	..#.........5...\|........../.X.-.....1....U.<..t_...!...)..!...{....`..6..H6\|$...&.....u7...G..&$....l....}.)..z\...t.....0Bp....1.Gb..i.M..."n.JNx+IO.;.?...TD.W...0.U.=..<.....K.f.9.}..<...F.U9.G.=....._..2.V.d..{;.....76..C........rDM.L._F...2.... 2.jy.)#.-G........ed).T...H....G:.y.G&.7&...w..Sn{d..x)..T2.#.^Y.....'.N.\...".0(...<I2... .."Q.a.D.f..........s(..........Iu)...H..QN.n.I.$.._!..).\|...6mN...!.PH.@...wZ>$....gl.s.0.E..1.Fp..!3.s../.xd..L...I... .Ol?..........bl.CN./.ifp(.W...?./=.......b...4lH..W..{]}V..I._...w.[\m..j./t...'m.......u....V=yv..0...=.w...'......z.y.\|..K_0.........c.4.{.\|..!....W\|l...6K..yx.1.O.9_O..'...t.fq/-E.....i....E....M............. ..Z....@lvQ..YF....6..._.BD.QZ.0..5.v.oM...@.:.@.4:.@..TTL.)..>;.a.zk.3e..9....G.=l5.Y.IH..>...=.....l....@.#a.P.L.. ..(.&.. .e..E..O..[(...9....@.oE....a0....{...Z..08.........9............)......[4y~.......\|.:.....6..}........*no.x....2IK.wp..s..h.s,...I}n....O.............o^..

Chrome Cache Entry: 163

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	data
Category:	downloaded
Size (bytes):	1592
Entropy (8bit):	7.883061136461756
Encrypted:	false
SSDEEP:
MD5:	B0E00E1529CE389AEE685F38942D6F8B
SHA1:	0E83379A63E27F55682DFA048DE81669515016C4
SHA-256:	44FA89542E5E96F19C082E8F178ABF803284E84F1E6A1E937DE6085EF4371AF4
SHA-512:	B8386A86804A610631793D244157A7C3C63A1627865377C64A112D82B0BD0609F6388C87C68DB1C24F103E61242F9D4C346DCDF05DF6A06F2F596B331D60E8F1
Malicious:	false
Reputation:	unknown
URL:	"https://www.google.com/xjs/_/ss/k=xjs.s.N7uEhNpUhSA.L.B1.O/am=QOoQIAQAAAJABBpAAAAAAAAAAAAAAAAAAAAAIAEAACAAAAAAABAAgAgAoEwCAADyAgAANgAgAADwAQAcEAAYAAAAAAAAkAAAAAAAAgBUCAAAAAAAAIAAAEAEBAAAFAIAAABAAAAABgAAAACEAAEACGAAQgCgAAkIFAHoRyEAAAAwAACAEBAGGAYgqABgAKcAAAAAAAAAAQAAAYAQAAAAUEAAAAECAPQIBIABICYCAIQAgAAlABAAAEAAAAABAgEAiJkAHJABCAAAAAAAAAASAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAKAAAAAAAAAAAAAAAAAAAAAAABA/d=1/ed=1/br=1/rs=ACT90oHncx24eRLJV5TakesrrDUJp34KzA/m=X3N0Bf,attn,cdos,gwc,hsm,jsa,mb4ZUb,d,csi,cEt90b,SNUn3,qddgKe,sTsDMc,dtl0hd,eHDfl"
Preview:	.p~. ..i._....N.bK.[....J9.v.\...O.C...m.>..h...[tX.._tX.uP..........9PR....yuP..(V........N.Rjh...k /...B..+.2.g.9.....@.]?..tDH,.@.=.O..,.s(.z9.lg....ezJ..?..n....[.4.4!R.T\|.'.......A.j..6v...>..,.........R%.....o"..0.....;..\|.n.....).] t.l.....vk..q~.}.t..73....//..gC./Vw..yz..%t.3".aD.NO.D......b.K_..w....WgB.W..le.....:...=.@...O..7.... nC.5.n...dO.6i..xv.p...ZxPR..8..}...P.K.w....z\|7....'.L...F"a+.....&E..G...C~..Q.eM..g.\..L?..N&..7.:@S..d..G......7..I.X....2.m..(.6.:...2`s(..U..Y._".r^.....p.#e.9.....3.......o..W...#.S......:.)..-.=.z"\|..J.C.BR.Sc..' .n=.....w...B..vZ..%E.&..T..1!.....\h.......IVx%..\.8,.......R..),b.5....!.<.j.A..3^YW...M.....7.4...D...`=.r..P.t<.%...B.O4HY.q2.\|..z.........B.X..Q.0.p.s.XZ..!......`.CB..~..d....R.8.Y.7...h+=2Z...D........<..LQ>...xZw.d-.$P...6..U....."g.k..y.hc.....KT.A_....L...n.....n....>.o...Q..v.NUvG7ZJ01q..F.@.a...;....6].$A1!. 2*m..v.t%...p.......-..K.E1!..n..\W:.#

Chrome Cache Entry: 165

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	data
Category:	downloaded
Size (bytes):	112
Entropy (8bit):	5.86259119412791
Encrypted:	false
SSDEEP:
MD5:	ED4796BB23B9831611525D01D155535A
SHA1:	D920D2C8CB2C9BEBD29D6B44B2DCF084392944AC
SHA-256:	ADBECE186CEB934ED128CD00B6844E5927A2BFA0B873D68ECB9ECE91C846DCAA
SHA-512:	1DFF207CD4111B4BB995B5AE3881928472793D7554A4C25CD28B29C664F86208BC9B75A528750B8267A7E75366D06322AB298AC1872CF5288693031ED5D45521
Malicious:	false
Reputation:	unknown
URL:	"https://www.google.com/async/hpba?vet=10ahUKEwj9nb-VzPqIAxWH7wIHHUe_AaYQj-0KCBU..i&ei=JvMCZ_3yJIffi-gPx_6GsAo&opi=89978449&yv=3&sp_imghp=false&sp_hpte=1&sp_hpep=1&stick=&cs=0&async=_basejs:%2Fxjs%2F_%2Fjs%2Fk%3Dxjs.hd.en.5kvEiulbeUw.es5.O%2Fam%3DAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABAAAAAAAAAAAgEKAAAAAKAAAAAAAAAAAAAAAAAAAIAAQQAAIgEAAAIAAAsAAAQCACAAAAEBAIAACcCjTAAAEQBMAAAAAAAQAAAEigAAAAgAAMAAAAAgAAAAAABAAQAAAAAAAAAAAAAAAAAAgAACAQAAAAAAAAAAAAgAAACAHgAAAAAAAABAAAAAQQAAMEAGIAAAAAAAAKAPAIIHwJDCAgAAAAAAAAAAAAAABCBBMBcSUBCAAAAAAAAAAAAAAAAAAJCSJi4s%2Fdg%3D0%2Fbr%3D1%2Frs%3DACT90oH5e2n6oobGvVqLAK2VdIVpMlkz5g,_basecss:%2Fxjs%2F_%2Fss%2Fk%3Dxjs.hd.Yezew14qcA8.L.B1.O%2Fam%3DJFUAAAAAAAAAAAwAAAAAAAAAAAAAAAAAAAAAgAAAABAAAAAAAAAAQAGwkwAAACMAgA0ACAAAAAAAAQDAAAAAAAAAIAEAAAAEACoAAAAAAIAAABBBAACgCAAAAICAECAAAAEUQAhQgAQEiiAehQAAAMAAAAAhAAwwDEBQAcAoQAAAAACAAAACIAQAAACKAAQIANAjEAAGgJgAAAiBHgACAAAAQAAAASAAAGYCMEAGIAAAAAAAAIAMAAAAAAAAAAAAAAAAAAAAAAAAAABAABAAUAAAAAAAAAAAAAAAAAAAAAAC%2Fbr%3D1%2Frs%3DACT90oFygYNawd3rFKrAIv-yvbsAXSuT-Q,_basecomb:%2Fxjs%2F_%2Fjs%2Fk%3Dxjs.hd.en.5kvEiulbeUw.es5.O%2Fck%3Dxjs.hd.Yezew14qcA8.L.B1.O%2Fam%3DJFUAAAAAAAAAAAwAAAAAAAAAAAAAAAAAAAAAgAAAABAAAAAAAAAAQgG6kwAAAKMAgA0ACAAAAAAAAQDAAIAAQQAAIgEAAAIEACsAAAQCAKAAABFBAICgCcCjTICAESBMAAEUQAhQgAQEiiAehQgAAMAAAAAhAAwwDEBQAcAoQAAAAACAAAACIAQAgACKAQQIANAjEAAGgJgAAAiBHgACAAAAQABAASAAQWYCMEAGIAAAAAAAAKAPAIIHwJDCAgAAAAAAAAAAAAAABCBBMBcSUBCAAAAAAAAAAAAAAAAAAJCSJi4s%2Fd%3D1%2Fed%3D1%2Fdg%3D0%2Fbr%3D1%2Fujg%3D1%2Frs%3DACT90oHkynR6lS4OkFQLBNYU4qdhOpfpXw,_fmt:prog,_id:_JvMCZ_3yJIffi-gPx_6GsAo_8"
Preview:	...)]}'.22;["J_MCZ-mWDaaLi-gP6K6P8Ac","2093"]X..c;[2,null,"0"]1b;<div jsname="Nll0ne"></div>x..@`"...../I...7...

Chrome Cache Entry: 166

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (2287)
Category:	dropped
Size (bytes):	221974
Entropy (8bit):	5.525116818290676
Encrypted:	false
SSDEEP:
MD5:	CA99755538A8D8B1866C97729137BFEE
SHA1:	0949EAA1931E46A95BF1B0674F43D92885B3BEC7
SHA-256:	088314A76E272A02EA40D754DDBA1E839D2C2817C5385CE332A03664C0B45B36
SHA-512:	B07F8E3D1D304CE4B12AF1043A53ED544BAA0ECE5F3ED0ACC12B4AD52C76D0B36346E9255194FB34869748A42AC823889056B097E0A0122C3A1484236AD0BFC5
Malicious:	false
Reputation:	unknown
Preview:	this.gbar_=this.gbar_\|\|{};(function(_){var window=this;.try{.var He;He=0;_.Ie=function(a){return Object.prototype.hasOwnProperty.call(a,_.Qb)&&a[_.Qb]\|\|(a[_.Qb]=++He)};_.Je=function(a){return _.Pb(a)&&a.nodeType==1};_.Ke=function(a,b){if("textContent"in a)a.textContent=b;else if(a.nodeType==3)a.data=String(b);else if(a.firstChild&&a.firstChild.nodeType==3){for(;a.lastChild!=a.firstChild;)a.removeChild(a.lastChild);a.firstChild.data=String(b)}else _.Ee(a),a.appendChild(_.te(a).createTextNode(String(b)))};var Le;_.Me=function(a,b,c){Array.isArray(c)&&(c=c.join(" "));var d="aria-"+b;c===""\|\|c==void 0?(Le\|\|(Le={atomic:!1,autocomplete:"none",dropeffect:"none",haspopup:!1,live:"off",multiline:!1,multiselectable:!1,orientation:"vertical",readonly:!1,relevant:"additions text",required:!1,sort:"none",busy:!1,disabled:!1,hidden:!1,invalid:"false"}),c=Le,b in c?a.setAttribute(d,c[b]):a.removeAttribute(d)):a.setAttribute(d,c)};var Qe;_.Pe=function(a,b,c,d,e,f){if(_.qc&&e)return _.Ne(a);if(e&&!d)re

Chrome Cache Entry: 167

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	data
Category:	downloaded
Size (bytes):	99
Entropy (8bit):	6.311076064480354
Encrypted:	false
SSDEEP:
MD5:	38D6AB73126227AF154C83365CF0B7C1
SHA1:	67A9DC378A1A66A518587F1AF8DD36E95C2C00E9
SHA-256:	86E3CE6D4F3A39CF93DDE14FCEE1E93DD3A2A5613B2360CD4D7997DD40BB92CC
SHA-512:	8AF48032964FD54ACD1580B3E8C2F882B5521E5E97170D545484AE5106E224BB87C3B03F55F616E3328C83A7311051EE44CD5D4341A70FCAF4EFA5CFB4635420
Malicious:	false
Reputation:	unknown
URL:	https://www.google.com/complete/search?client=chrome-omni&gs_ri=chrome-ext-ansg&xssi=t&q=pezooms&oit=1&cp=7&pgcl=4&gs_rn=42&psi=v5HDooeM-E0qdbuM&sugkey=AIzaSyBOti4mM-6x9WDnZIjIeyEU21OpBXqWBgw
Preview:	.>...[_.W... .........a.N......4)....1.C..."'.....Q....O..r..6:Hd.`^.*....4....v..f$.;.o5...

Chrome Cache Entry: 168

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	data
Category:	downloaded
Size (bytes):	779
Entropy (8bit):	7.696874185497697
Encrypted:	false
SSDEEP:
MD5:	A5191CC80AA6335A4BCC229ACC2704E6
SHA1:	BED8329E76C615E75133C26BABA69082B1CFF643
SHA-256:	C6C2E120F938A1A1F93E5534CCC09EDE73D2009690863EB49A30A6D13EBC7186
SHA-512:	300DF750F192D3790DA19587F6B25F0C93F7C27D0067D36828D5868E8B7216CE34875E22429B881BA27B06E95F9BD6B4A6EA32DE4B88BDFA594D7CCB12568787
Malicious:	false
Reputation:	unknown
URL:	"https://www.google.com/xjs/_/ss/k=xjs.hd.Yezew14qcA8.L.B1.O/am=JFUAAAAAAAAAAAwAAAAAAAAAAAAAAAAAAAAAgAAAABAAAAAAAAAAQAGwkwAAACMAgA0ACAAAAAAAAQDAAAAAAAAAIAEAAAAEACoAAAAAAIAAABBBAACgCAAAAICAECAAAAEUQAhQgAQEiiAehQAAAMAAAAAhAAwwDEBQAcAoQAAAAACAAAACIAQAAACKAAQIANAjEAAGgJgAAAiBHgACAAAAQAAAASAAAGYCMEAGIAAAAAAAAIAMAAAAAAAAAAAAAAAAAAAAAAAAAABAABAAUAAAAAAAAAAAAAAAAAAAAAAC/d=0/br=1/rs=ACT90oFygYNawd3rFKrAIv-yvbsAXSuT-Q/m=syjy,syo2?xjs=s4"
Preview:	..4. .{g}....T..X.+b.K..[ ..e:t9.'..u..i.....'H.E....$.......q.M............&...<.9....?.B."G....D..`.....l.)$"g..!G.....G./.6"..U....l..ag.......3S "7..P"r6X...,,.y@.\.......M.I.a.-.Q....:./.p..........8../X.K....s~........[...K...<..........\...........ON....$..w.<6...L.K.48.:..7..,..l fE.>L{...}..=9..1^T.....K..k...d......@.T..bRL..H..&2.WK...E.. ...k....;..z.).N...E...4.fI5.&.^..E..4....v.@X...iUZj...."..l$.YgW}.Tk....../.Z...D.S...l....+Pe....X^..G.?..>G+.@.D....;e....D~...?.DK(X.S~g.t-.a.T.q..+5...l..:...W.0 .{.pA...i."e..5......]..\|.mZ7.`.]..pr..\|.":..\.\|nX(..#..}St].q&Vep...:...K/\......3z.^..a%.:..UJ>.,.Q.2&.. ...k.L.gcfX.....sL`.^.Ig.k&V.......7.n..T...,.4N5..gh\|.ZeM/3`.LT V..U.Y].b=Dm6.#....t*.P.{oy.Wn.z.....x...\G.IY...

Chrome Cache Entry: 170

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	data
Category:	dropped
Size (bytes):	640
Entropy (8bit):	7.6772726597792795
Encrypted:	false
SSDEEP:
MD5:	7D54E4C6CB5C25E819F9DD99A1FFF7CA
SHA1:	AA04C7D42B3214A9632D3B7B498F61EFD19E1FC6
SHA-256:	421182DE989D9FF8CE92D22952CEF6A281238714A0A6C92AC29BA6A5CC1C55EC
SHA-512:	FDF08A3DDF1C469E77E3DEE92FA35AFB7A633F2E308939689C711A2E67F9FD2EE5FE90492788BFE3514439A51DB8D6E8124EE65BDD298B8435A70EFFA5B9487B
Malicious:	false
Reputation:	unknown
Preview:	.x1. .....%+.@N..g.c..@SY...8.Gs.K....3K"...Hb!..I.S..3.e.'i.;....0E..%......\-....h.$.......V...L..5.f.2..<.n.gS..ho........%z.LJ.V..h)hJ..+...B.E....lJ..Hg...+.a..B...ky...Q"..^.4...+..K..l4.2.[...P........e..1.9.w7..q..b6z......#.~.B-....E...%.....F\|w...#..P+...cA\..z.".j.;...G.s.X..E../....b3C..,e. A.`.y..6.e.:...sH.UR8.>.F/.!.=4....[r#..]......P.]..z7F..;X.....B.c.k...f0r......i..<....Ju[T...3...}PYU...&..)....k.h.M ...n.Bg.. ...1.B.^.........{.9K.".Y...S.{k...!G.qm..I...{..&.......Ln....[...kz..9...-I.&..P...T..9....6z..+...x........`.:.B.[...].4.zwVy.....\.......6..{*..]F.?.K.n..^t.Q..6..

Chrome Cache Entry: 174

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	data
Category:	downloaded
Size (bytes):	112
Entropy (8bit):	5.780045546825798
Encrypted:	false
SSDEEP:
MD5:	0F234BB2F37FE1332B4F35290EFB1B04
SHA1:	C508F291783975E93C95BE37F4409C101B277704
SHA-256:	62AABFD223AB541A3359BA89579935A699DBC251BDE8A3C356802C0351DEADB5
SHA-512:	C1220B0514D6B358F201D3A96CA84EF385943C9023E801D4027AB07D2831960D60296AA60F22AF1A0FD38C108CB8254224B1E575DE7E7585AE133B1E5B9BA3CB
Malicious:	false
Reputation:	unknown
URL:	"https://www.google.com/async/hpba?vet=10ahUKEwjUzImRzPqIAxVuxAIHHYaXPTMQj-0KCBU..i&ei=HfMCZ5TKFO6Ii-gPhq_2mQM&opi=89978449&yv=3&sp_imghp=false&sp_hpte=1&sp_hpep=1&stick=&cs=0&async=_basejs:%2Fxjs%2F_%2Fjs%2Fk%3Dxjs.hd.en.5kvEiulbeUw.es5.O%2Fam%3DAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABAAAAAAAAAAAgEKAAAAAKAAAAAAAAAAAAAAAAAAAIAAQQAAIgEAAAIAAAsAAAQCACAAAAEBAIAACcCjTAAAEQBMAAAAAAAQAAAEigAAAAgAAMAAAAAgAAAAAABAAQAAAAAAAAAAAAAAAAAAgAACAQAAAAAAAAAAAAgAAACAHgAAAAAAAABAAAAAQQAAMEAGIAAAAAAAAKAPAIIHwJDCAgAAAAAAAAAAAAAABCBBMBcSUBCAAAAAAAAAAAAAAAAAAJCSJi4s%2Fdg%3D0%2Fbr%3D1%2Frs%3DACT90oH5e2n6oobGvVqLAK2VdIVpMlkz5g,_basecss:%2Fxjs%2F_%2Fss%2Fk%3Dxjs.hd.Yezew14qcA8.L.B1.O%2Fam%3DJFUAAAAAAAAAAAwAAAAAAAAAAAAAAAAAAAAAgAAAABAAAAAAAAAAQAGwkwAAACMAgA0ACAAAAAAAAQDAAAAAAAAAIAEAAAAEACoAAAAAAIAAABBBAACgCAAAAICAECAAAAEUQAhQgAQEiiAehQAAAMAAAAAhAAwwDEBQAcAoQAAAAACAAAACIAQAAACKAAQIANAjEAAGgJgAAAiBHgACAAAAQAAAASAAAGYCMEAGIAAAAAAAAIAMAAAAAAAAAAAAAAAAAAAAAAAAAABAABAAUAAAAAAAAAAAAAAAAAAAAAAC%2Fbr%3D1%2Frs%3DACT90oFygYNawd3rFKrAIv-yvbsAXSuT-Q,_basecomb:%2Fxjs%2F_%2Fjs%2Fk%3Dxjs.hd.en.5kvEiulbeUw.es5.O%2Fck%3Dxjs.hd.Yezew14qcA8.L.B1.O%2Fam%3DJFUAAAAAAAAAAAwAAAAAAAAAAAAAAAAAAAAAgAAAABAAAAAAAAAAQgG6kwAAAKMAgA0ACAAAAAAAAQDAAIAAQQAAIgEAAAIEACsAAAQCAKAAABFBAICgCcCjTICAESBMAAEUQAhQgAQEiiAehQgAAMAAAAAhAAwwDEBQAcAoQAAAAACAAAACIAQAgACKAQQIANAjEAAGgJgAAAiBHgACAAAAQABAASAAQWYCMEAGIAAAAAAAAKAPAIIHwJDCAgAAAAAAAAAAAAAABCBBMBcSUBCAAAAAAAAAAAAAAAAAAJCSJi4s%2Fd%3D1%2Fed%3D1%2Fdg%3D0%2Fbr%3D1%2Fujg%3D1%2Frs%3DACT90oHkynR6lS4OkFQLBNYU4qdhOpfpXw,_fmt:prog,_id:_HfMCZ5TKFO6Ii-gPhq_2mQM_8"
Preview:	...)]}'.22;["HvMCZ8e0M9eLi-gPirGXyAM","2093"]X..c;[2,null,"0"]1b;<div jsname="Nll0ne"></div>x..@`"...../I...7...

Chrome Cache Entry: 175

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	data
Category:	downloaded
Size (bytes):	1666
Entropy (8bit):	7.891554597093854
Encrypted:	false
SSDEEP:
MD5:	25A1340DC22D7807F6D20C1439A3A587
SHA1:	7D8DB4F3256FCAA3A01910D0D77C0D47FB14B347
SHA-256:	DDC4217CB87BA40283A0126D6067477E27C556A6DD9A7AB981FECC58B0796772
SHA-512:	5502D1637D3BC3D6710E211901C967D62E740F064F80E4C60B80CFC0DC9CA418F741CA1399C8AFBB6567666D767732878ACB12E016F263244F628B9D781A7106
Malicious:	false
Reputation:	unknown
URL:	"https://www.google.com/xjs/_/ss/k=xjs.hd.Yezew14qcA8.L.B1.O/am=JFUAAAAAAAAAAAwAAAAAAAAAAAAAAAAAAAAAgAAAABAAAAAAAAAAQAGwkwAAACMAgA0ACAAAAAAAAQDAAAAAAAAAIAEAAAAEACoAAAAAAIAAABBBAACgCAAAAICAECAAAAEUQAhQgAQEiiAehQAAAMAAAAAhAAwwDEBQAcAoQAAAAACAAAACIAQAAACKAAQIANAjEAAGgJgAAAiBHgACAAAAQAAAASAAAGYCMEAGIAAAAAAAAIAMAAAAAAAAAAAAAAAAAAAAAAAAAABAABAAUAAAAAAAAAAAAAAAAAAAAAAC/d=1/ed=1/br=1/rs=ACT90oFygYNawd3rFKrAIv-yvbsAXSuT-Q/m=cdos,hsm,jsa,mb4ZUb,d,csi,cEt90b,SNUn3,qddgKe,sTsDMc,dtl0hd,eHDfl"
Preview:	.8.. ..i._....N....Z...rH.Up.....si.s...X...k...P.:.4mG....p..u.......e.....rN{.:-..jV/...R...^......Dq...[!ho.NA..B....H..!.L3.P..;...29.....m=.i..X.......'..$....})..).....\q.wr.OA..LM..........2...<z..9.=.B.$Ch..}...'.90.;.2..A&.......m.#3...m.....nd........d.5Ch....".Y....l%#^].5...H~h....\|P.....+...[_...z..7'....L...I.........bH;.}.R....n...6.[.Q.t..h..z........w..\...4..&.e[q)76KRhJ.o?...~t..\..}Q...x..-}...;<t..C.G..Vl...........Z.^..M.z..}y..8Xm.O5"..'.W.m.f..KCs0.\.._..K/(a...'l..%.h............r.`5.."X....k...W...s/x.y...`..A1!..:~.+-A2.I..Gh.:b...&..k[.\.-%.i9.=..]...!.X-.V..p&.x.s..u..P.....i#.....w..x+..#.N..R..68...@X'.!a...^.].5.JK..I.o.6X......^.?.`..j.......y.\|+Znt.d).;Dx..:G..5.>..!.....A$lX.~...........#..#.mw"&..k........D.-...4..en..%Q ..l..Z...t.....%(...W....6./I?<x...tA.VdP..X....'..1K#~.lC.:..X[..a...8.#^..B!..Y".6.I$..O...5..8...xj.Xh...J..G.R...2.h6.U. .F.`..=.........i...c%o8*.........z.K.w\...5.V

Chrome Cache Entry: 176

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	gzip compressed data, original size modulo 2^32 17845
Category:	downloaded
Size (bytes):	1683
Entropy (8bit):	7.880288087970638
Encrypted:	false
SSDEEP:
MD5:	42CD37B9BCBDEF1C85A8AD9CFFCD6AF6
SHA1:	A64C67D16947580DCA4C39EAF0E113834B0FAD82
SHA-256:	14C9D8DFECF6749215C7203B32EC5A75443EBF1941E2C2B0E62A5608015517AC
SHA-512:	28B20718DF094FC910ACC0C458505EAEDD782CBA94CDD185FD1355F303B14262601B9E30A597A19F0DDE2B2D14BEE83A54AFA70B2B404B14DAEC4687993C2BC8
Malicious:	false
Reputation:	unknown
URL:	https://www.google.com/xjs/_/js/md=2/k=xjs.s.en_US.uzv50Xj9NxM.es5.O/am=AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAAAAAAAAAABCgQCAAAAAAACgAAAAAAAAAAAAAAAAAAAAAQCACAkBAAAAQAAAAWAAAiQEAAACAAAAQEAAAQIAL4_ScAAAAAAAAAAACIAGACAAAAAAAuAAAIFAEAAAACAAAwAAAAEAAAAAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAEEIB-AAAAAAAAAAAAAAIAAAAAwAAFAAL4AQAAAEAAAAAQBAAAHJABCAAAAAAAAOA-AHgeMBxSWAAAAAAAAAAAAAAAAAQgQTAHpL8gAAQAAAAAAAAAAAAAAAAAgJSgicsFACQ/rs=ACT90oGApL4_LfgIfK17r1O5ncDsN4utjA
Preview:	...........[Y..6...].u..ut.E.....E?..{/.Y...s_.{9JlY.EQ.d..~........?.....O....).CD.H../.,A.+..9.cP\.<Jg..FV.."$i..h7...v..~.{.7..2w.:...r.E...z...6..EF.=.Z..v..iP{.N....T;..;'...EQ.7..M....e......O.:..o..........8=.f.99.).R...E...}...Xz-....k@...N..Lx.......(.Bj`s.M..4I.#/..c_aBY...y........S.m%.&...d.....64Z.i..2..g^K.[6..gV"....q.#....4..7..e.?....\|w;...5!.m.1.u...Lg..4b... ..? .qv...E.,.h....$.5.!.S.L.l.3.(k.P...........ZE..X.k.......<..Gg..aHj...`.@!.c.RQ.....H..S...h.....m..N`.1T.[Z..8...G.Q.Py...1.kZ.m..O]H2..j../......}?...E..Y\|vt...NP.c..f3.....nze....c...(.#..i2.q.^..pY.n.@O...K.].k..IL.......{....`.U<..a.zu..b.....xf...D...;.w.(/...@....C}.w. P\5...X.......5P.......j.5.aih..&]Z.D.!#L..,....Gj.S...T...#.\...J.{....CA...#.T.v+.:... s...-.68a.t...(+cH[.+..T.*.-Bh.:.~k.i..#..J..F65...X.[...t........h...`[U..Qy.!W.[g..H...u.&..;...4W.!.=....sCez.F..O.q.^&......g.u._.]....k.......?"[.....7...H........._p..._..7.x.7.x.7...^-....h..{

Chrome Cache Entry: 177

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	gzip compressed data, max compression, truncated
Category:	downloaded
Size (bytes):	36
Entropy (8bit):	4.266332639970622
Encrypted:	false
SSDEEP:
MD5:	D2DD33633120B0066476C1EA9B8C386A
SHA1:	1545923588BC21FFDCBC0C59C7092535A6EDBEDF
SHA-256:	F99D692902144DB09B19E325A9BF578020CABFC5A65243C524D39088756BBA40
SHA-512:	E1597E50B9664A6370F10F279AF8DFC397EA23F9D0DA3544EC86D5225B282A60916DE176514E132CAF5781ECD17E65AD0E6C1EBCE1F31C888033902036F5DE9E
Malicious:	false
Reputation:	unknown
URL:	https://content-autofill.googleapis.com/v1/pages/ChVDaHJvbWUvMTE3LjAuNTkzOC4xMzISEAn11VQ7sgCk8RIFDWlIR0c=?alt=proto
Preview:	..........sN..v*7,.vM.pOw.....m.....

Chrome Cache Entry: 178

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	PNG image data, 64 x 16, 8-bit colormap, non-interlaced
Category:	downloaded
Size (bytes):	738
Entropy (8bit):	7.612085957571396
Encrypted:	false
SSDEEP:
MD5:	A75233D3C1A27A9FE8AFC925AEEC5C3B
SHA1:	E2CDB2047110DFBB434EB2644F694E25F0AD57F3
SHA-256:	7F205FE64D61B2AFBA21D72206C3FE3A483676A4DFA81C55BCCDB72F9CDD6C0E
SHA-512:	CB5596A6970285DFCB7CF4867FEA77B48EB479FD2CF516AC87F0EE9490B4AB1C6B4924927F937110617D998F4F79BB1673CBE50FDA58045F855820E75B8E8EAE
Malicious:	false
Reputation:	unknown
URL:	https://encrypted-tbn0.gstatic.com/images?q=tbn:ANd9GcR4RqEUsxf2HMBFipGAK8dXPkv2SbEHbbmKxbDw92s&s=10
Preview:	.PNG........IHDR...@..........9......PLTE....i..f..a..d.....]...%._..Y..[.....R...........................+0.X\................w...B...z.`\...(x..J.c......CGp..{..U......:?..JN....vy..fi..t.....IDAT8.....0.....i.Z..g`...i........+.....K.7.O2.>..?~n.m..E..i.?2._.39{..).=ta.....Z...-<.c;.f..R...4...].`.\|...X.^...1.tv..(..".........,.r=..Rz...'?..h.XM. c..&....&I.=.....4.Rf......'.}.9O..1!0F.....`..D.1#"#..i...rY.d]ky.N!...r...p.9".........9'........\|[h].K...4&.TU......."........F m...:.+..zCn..Y.#tT..U.`8....jJ.....h..@./.ik..f.........Nm#...7rj.yG.../..........`F*.Q...~`...K...M.........q.`Q...&...U.2.0.}...O..B........a>n..p%...=.....8...c...d.q.>I;..T..s./..UM...0.../._.....(d$ ^.....IEND.B`.

Chrome Cache Entry: 179

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	data
Category:	dropped
Size (bytes):	167559
Entropy (8bit):	7.998565376641245
Encrypted:	true
SSDEEP:
MD5:	CC0FF0E96D9E21179F2E6761D2595424
SHA1:	57B6242CB84CD92C15B781D7C95CBCE72E5EE216
SHA-256:	9944E07887FC3AEF18E6642F6FBF089897A9D794748CD4B45CC3DA2C10B0E903
SHA-512:	6398375BDA5E11336F32BB38DE5E212282038BA7C983E082709ED6E5FC4FD81596639E9DEAEAB18A01533294BF497946BCA43CDA35E4313AD05A3A0DE7621F87
Malicious:	false
Reputation:	unknown
Preview:	S..w..q..p..v.A.Z..s#.z..X...PU.KB..j...O...._.........0.~...`4.-,..ml......]\..=<..}\|..}..V...\|I.'vo...P'm.......N...3A....!9...K...\|..A.5\.:......`..T-..a.Z..}..}U..}.d..V...._`a.c.X....~.....\|)..e..9`....c,=.....J."j.X......e...hb.}&.#.c.e...,.6....U,....Z......B..6........ ...v~?.8.....~.......O.3....dX....#..<J.9...y...:...@.j..r...^..g..l...f\|l........."E...cC.@Cf.\|...k....;.m.....0&.H..Gc.....\....(...-+I....#(.0.B.Vi...v....7.....3..%..U@..6. b........hf..(... .-b..=1.+,.bUSisL.q.tL.4....c.i..../S.m.TIm....cv..)T..Kc........#2..D.]?2...L.;. .D.TO.....@.....t@J=-....#..O.U}@.......q.1.og..Tm.w3...b=._of..f..R........?......x..p....V5..^....oQH.....J...._[....!e.....P.s......._.w!...sHJ.C.!)......U.....@6..Q..Y....:d..1oV!..,......n.../...W.u.!J.aD..O\.......`.......y#}_........j.RU.....}..x../.zUW7..\|/.lq.$.E..&.%.G.1...g..Sv.....M4....<....fu..4..O $ig.D..0h...b.tr......\|$.d3.......<....u.i..c...B.y&..}t.?..0...v..U....b.

Chrome Cache Entry: 180

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	data
Category:	downloaded
Size (bytes):	23065
Entropy (8bit):	7.9908639723425186
Encrypted:	true
SSDEEP:
MD5:	49251E72DAFF974547A71A531773AA09
SHA1:	9D002BC1BF9C57FB07E6F3CD89A4742FDD421AD7
SHA-256:	DA8921A4546BCB6FE9A70A831802E1C5C03225DCED81EDD365FA579E6A627DA1
SHA-512:	3CAC5A20801EDFCA7317B4BA605B04A0E78DE4154C743B3A98388878348A2E3C8A633E95A952FA0ACAB8040EA52EC18C30DADDE8345460B540803B193958B816
Malicious:	false
Reputation:	unknown
URL:	"https://www.google.com/xjs/_/js/k=xjs.s.en_US.uzv50Xj9NxM.es5.O/am=AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAAAAAAAAAABCgQCAAAAAAACgAAAAAAAAAAAAAAAAAAAAAQCACAkBAAAAQAAAAWAAAiQEAAACAAAAQEAAAQIAL4_ScAAAAAAAAAAACIAGACAAAAAAAuAAAIFAEAAAACAAAwAAAAEAAAAAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAEEIB-AAAAAAAAAAAAAAIAAAAAwAAFAAL4AQAAAEAAAAAQBAAAHJABCAAAAAAAAOA-AHgeMBxSWAAAAAAAAAAAAAAAAAQgQTAHpL8gAAQAAAAAAAAAAAAAAAAAgJSgicsFACQ/d=0/dg=0/br=1/rs=ACT90oGApL4_LfgIfK17r1O5ncDsN4utjA/m=sy5mb,sy3vp,DpX64d,uKlGbf,sy5mc,EufiNb,sy1j9,P10Owf,sy1dd,sy1da,gSZvdb,WlNQGd,sy3qp,sy3qo,nabPbb,sy5dz,sy5dy,sy1ey,sy110,sy10y,sy10z,sy1f0,sy1ex,VD4Qme,sygu,BYwJlf,sy159,sy156,sy155,VEbNoe,sy73l,sy2rq,SC7lYd,sy1im,sy1il,q00IXe,sy1ir,sy1iq,sy1io,Fh0l0,sy3fo,qcH9Lc,pjDTFb,sy3f0,sy3ez,sy2jn,KgxeNb,sy3el,khkNpe?xjs=s4"
Preview:	.#....C.F..9.y.......;.d...Dm..e....dx}.@K....}oj....`..(L..1M\..".VH....Lg..:...BW.....j.d....F`.EI...^.n..j4 .....?F..C...ae..6....-..K...&.~.....B..'.M...Yg..&..l`.A..s?\|...l[_....B.....\R."....sf.k.._U...;1S..rKY....Ej.4..rI....1\"3.....,b5...y.j.sN...6G.^.l.a>~..i..W...E.'.9JL..G-BtC.g.J.(...i.rEJ`...\..F......:s.....Q(.."C.u?%.}x6.....(C..bw.....>.C.o..ru$/.".y....X`..E?..uJ[..cg...c.........a....#.(.[......_....T<.~%P .".'..."..BYx......2!..&.Ee..ED..wH..T.a.%f."...Xt.Dy...N....A'>........%............V....ls...6D0..2.bF>.2..G^.L.j.........a...0....[.?d...8..$i"..vr...j.3j..2?....h.aN.....7...LV(.S.G......a(.....\|........7g....A^t..^..b..#....gi.1[B..n..p....o......C.os.ZD...,m.P.[)j.&j...a..f.6.H..0t.@....P..D.).w..~........8....m......T.I\|J...dDC9.e.....Fi_\.=..?......oZ5~..i..(.~.z.l......+...!..k!C)..Q...ulp..Z7../.\...k.~P...=..;0W...3z/z6d...........j&.=~...,X-([.%..Q..u.c..G....@....\|.,..pcFd...hzn...~J..`.

Chrome Cache Entry: 181

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	data
Category:	dropped
Size (bytes):	153675
Entropy (8bit):	7.998353125270562
Encrypted:	true
SSDEEP:
MD5:	5098F1532B908A461D3CEA1DF73AA477
SHA1:	DD80532AAA712109D94E8D7DFC77F824A6EE1F3D
SHA-256:	C5DF68E04246EC29E656A4EC2189FF5C0189431ADB81C2584B2EA085172DFF67
SHA-512:	EA7303DDEE7BB3640628911D551808BA5A9AA5CBD28E4E0DD272F95281DC751F6DA029BE1FFF233333251400471F9EEBB685E7F11574BDF919BCE0949C25234C
Malicious:	false
Reputation:	unknown
Preview:	S^.wA....q.....F.q..p...2..uR.C...^..MU...~..?.....?+0.q..?....l...................Y..{6+..0UCQ-.m....dL.I.4.WI..$$A........J:....v..[.(...T....zX..f....&%"..).Z..."...I.Q.....?.....\|.m&'...+X.3;".TT.ub......_.....b..i...!..K\.1.1........qc.w.......Q..4.t..........Y..e..aQ.Y.9,...W.!.I;3..a.V.........u99._:.Pzaih.T&rVy..g...<..Q.D...+..w......4.`..H..l.L4..T......d.\|?....?_dn..6H....F.[K;..a(.@..6..oiU-F...;.d.#eT...j.np0....W#TV.Z.W.G..E..f.f..]f. ...k...........7s.3s....`f. 3.$.....HF....5.9k.....i-V....rT....n.=.Y..._../.H...B.R.E.F.ve.=9.....u.....X.r9(...x..J...Z.`M..=.1r.....P646T.$Q.K......Y.%.ts.Xr....N.VU..i.......O.?.r.d.."..f..ZD(2........L.P@.V..7.b6..9.Wh...:.<O..<.,g.[....3..?Uu%i..5#.i.AYim....w...%.@..E..E%...w.....KZ/4.....e.d..K..j..{..!..8...0..r.0i.....!0.RR.\|....'.3_~.Db..!....z..N..l.....Y...E+.X..we..._...>"% .4..=....yg.k....C.....L.1.............F.`.c.~.....#...jb&...X.2.xu,.I......5r.....X..6p..m(.

Chrome Cache Entry: 182

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	RIFF (little-endian) data, Web/P image
Category:	downloaded
Size (bytes):	660
Entropy (8bit):	7.7436458678149815
Encrypted:	false
SSDEEP:
MD5:	C3DFF0D9F30EC0BCF4DEC9524505916B
SHA1:	4B378403ACBEBC3747E08C69B5FD7770A850C9EB
SHA-256:	73D788F86BE22112BB53762545989C0F1BBDB7343161130952C9BA3834FF81E3
SHA-512:	677EA304D00D176ACF61FF68BF23BD5F77AD2928D7DE9F4B842292BC9D3FB7029FE9F578B62F142DCE689230F392E828098EED3484FE2DBEE6E1A7AA5378E2C6
Malicious:	false
Reputation:	unknown
URL:	https://www.google.com/images/searchbox/desktop_searchbox_sprites318_hr.webp
Preview:	RIFF....WEBPVP8L..../'....Hv.=n.......Q...a..(Rv.o..U.....l..m........0l.6l..f.......A?B.C.A...2h..Ag0....G8.n#)R.j.x..P.F..I;.Ox......7-...bX./..]...3..T....5...x...G.C....%.u.....u/._.=....<!q.\...9.....\....p:..P.4.aS.N).>.>.."..9..Vh ....no....l.1..#6p\c..2..>..=8...........FP.^....+/.~......hs..D.Jm..9...r....t*.H..~T^\|.....l..l......he..}f....d.."....K...&1..................pl.Pf.%6...2X..I...eXQ(.K..1%c..w.s._..._K`K.1}..D.E=...<..ytM..>.q'.e.L.~$...b..;k.M.....t\O..m.I._..F....'........z.]..u?~..P.zJM.. k...p~9..D....".Zl$?f..+...\.Pg..%...;.[R>N.#.W.e..@q...(....]&......K.......?.\|.z..(...:&m.V.C.'...D^.R....

Chrome Cache Entry: 183

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	gzip compressed data, original size modulo 2^32 126135
Category:	downloaded
Size (bytes):	42573
Entropy (8bit):	7.995169488196785
Encrypted:	true
SSDEEP:
MD5:	ABDA4D3A17526328B95AAD4CFBF82980
SHA1:	F0E1D7C57C6504D2712CEC813BC6FD92446EC9E8
SHA-256:	EE22A58FA0825364628A7618894BCACB1DF5A6A775CAFCFB6DEA146E56A7A476
SHA-512:	91769A876DF0AEA973129C758D9A36B319A9285374C95EA1B16E9712F9AA65A1BE5ACF996C8F53D8CAE5FAF68E4E5829CD379F523055F8BCFAA0DEAE0D729170
Malicious:	false
Reputation:	unknown
URL:	"https://apis.google.com/_/scs/abc-static/_/js/k=gapi.gapi.en.SpvAvsXfWWo.O/m=gapi_iframes,googleapis_client/rt=j/sv=1/d=1/ed=1/am=AACA/rs=AHpOoo-MoqWi0fF1M09Ccs-6QfulXvxfdg/cb=gapi.loaded_0"
Preview:	...........;is.F...+Hl...-......-...$.8....r..&...(...!....>p....V......~W.n,.:v..."....&.e.....~by.&N..Q\.'3w.fVf.E".Y..e.._.V........E..,....).6i(.qB.....B$.. l....@I.n7..}{D..'...F.GzS.?A..F.D...d...l..a~.Z..t....i..r..%.`n".E.]n.,.^.L>.d#<6........~........!x.....Z.e..P.......j.H@....6..e..;w.ge..v;h..FG..\|.mJ.+..M..?...3:.2...`.....0r0Ri.`.....r...K..b0L.y..f-j...a..Sd..Y....?.2.....\|_Fyv..s.e1.....]1.1[.6.'..l.0O#..>..-.I\.. .Y!..Vd...p8T.. ,...m.....r.........:.ChfS?...:~..`...&....A.[...x..Y..r..<...`.......,.HsmQmj.P....$r.(.....+..+....T.....~Pk.[f..<N...4....m.Q.l......5.q9..2.l......./F..Y..OD.\|......%K9.p.....+..UA...c...pU....Y.+...9...\|..,.t.kL....".NS.n\..!...Q5.p..PyK.w.mZ~..>...W.[.EX..?.;.34?>.....p..gO.e..g9..~....7..J....>...tC.tb..i...........~.z.P..@.2h......g]..M.m..c.......'g..G.fUA.7c.`.A3..b...1...,I.6.j..K....*..&j.b..g..-G...5T&.}........X..Mj...&..M7.......z.6F...A.X..DZ.G.....C9...+}i...9D8

Chrome Cache Entry: 184

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	HTML document, Unicode text, UTF-8 text, with very long lines (1136)
Category:	dropped
Size (bytes):	1555
Entropy (8bit):	5.249530958699059
Encrypted:	false
SSDEEP:
MD5:	FBE36EB2EECF1B90451A3A72701E49D2
SHA1:	AE56EA57C52D1153CEC33CEF91CF935D2D3AF14D
SHA-256:	E8F2DED5D74C0EE5F427A20B6715E65BC79ED5C4FC67FB00D89005515C8EFE63
SHA-512:	7B1FD6CF34C26AF2436AF61A1DE16C9DBFB4C43579A9499F4852A7848F873BAC15BEEEA6124CF17F46A9F5DD632162364E0EC120ACA5F65E7C5615FF178A248F
Malicious:	false
Reputation:	unknown
Preview:	<!DOCTYPE html>.<html lang=en>. <meta charset=utf-8>. <meta name=viewport content="initial-scale=1, minimum-scale=1, width=device-width">. <title>Error 400 (Bad Request)!!1</title>. <style>. {margin:0;padding:0}html,code{font:15px/22px arial,sans-serif}html{background:#fff;color:#222;padding:15px}body{margin:7% auto 0;max-width:390px;min-height:180px;padding:30px 0 15px} > body{background:url(//www.google.com/images/errors/robot.png) 100% 5px no-repeat;padding-right:205px}p{margin:11px 0 22px;overflow:hidden}ins{color:#777;text-decoration:none}a img{border:0}@media screen and (max-width:772px){body{background:none;margin-top:0;max-width:none;padding-right:0}}#logo{background:url(//www.google.com/images/branding/googlelogo/1x/googlelogo_color_150x54dp.png) no-repeat;margin-left:-5px}@media only screen and (min-resolution:192dpi){#logo{background:url(//www.google.com/images/branding/googlelogo/2x/googlelogo_color_150x54dp.png) no-repeat 0% 0%/100% 100%;-moz-border-image:url(//ww

Chrome Cache Entry: 185

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	data
Category:	dropped
Size (bytes):	1920
Entropy (8bit):	7.894470036906519
Encrypted:	false
SSDEEP:
MD5:	2C861C2E5FCE7AB3F6BD496E0C33228B
SHA1:	02F6009764B1C0ECC0C96E64DFFF8614D90C7CB1
SHA-256:	7529E638C73CFE840A12608A71878D56659F2A0DC75D1678D2D324BFF94F9856
SHA-512:	7E75AFD398E28EA50FFF609574BEA070DC6748144DCCE19F7F1FAE7F343AEE330C4F9D0D87CF9888113087418B559A19AF64CD2FFFD162C8E56BA6D533EE99E5
Malicious:	false
Reputation:	unknown
Preview:	.x.. .~........-x-..?P...m......B.]td:.U.3U3. E...gzf...A(V:Qo.9..qQ..8\..........MHmU15..._j.!...ry..4....Hb.K.Xzw.)g.+.q{.O}.~.C5%...U.~1..\|...g..h...-.2.1....,..@..#p].:7.....I..N...P.A..;?..+.."I...PZ.+......7..a..Vz...A..IU......j.....h..../K......q.2...qE..... M.k....,.x. }po".!...N;{.....4..?.z..M.....2.._x.....~~.....2.......qQHf......t1.\|.q)..]'.....g...R+..&.. .{p..1.......TC .x.n$.D.... <9rz\.meQ....Vl.$..~.H...T....4.X]@..KY<#WP.5.t!../...O........sm.}Sr.....<.A1r..a..`...].uk.w]....N...5hs..[..........g.J..N.L-...>......\...]S....T..Y....I.o.$p.....P.i..>.h...Q..EnV.h../...#^.].\{.....:.6...3..bC<._....,.KN>....w.Z...6.P..t.y.........$LZ-8...L....hUb.M..........o.^ ....'..)...b..E...4..">Z.>YK...&..Y.z...9..b..MaN.d...l.t ..;...B.?.\|J..l..Rn^.t>.Uy..g.....I......q....12..l>5..J..U..s'c...;.t.....s...O.6..&......\|.~..q.+.(.ro..&..../.k.4.....Z..}.../@..H...k.W.A.!O...y...Y...'..E.+LK.xy..j..N./..KR.v.X.E.g..C..W..K...

Chrome Cache Entry: 186

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	data
Category:	downloaded
Size (bytes):	2279
Entropy (8bit):	7.887704717988979
Encrypted:	false
SSDEEP:
MD5:	A47F3B47AE7E387C3CA5C0215AAE7FF7
SHA1:	4F21D13A7D7B68BA4C821A6169A2FEA547E7F74B
SHA-256:	CCB346A2B3C939CBDFB0A3402FCD4174DA87D380E363C06619B6EA5959325639
SHA-512:	D0987621E900F02624CBEEC3954A94206572C6647AF99FA0CD03B7730D9AB9AAFCB344D5373920BDF403FEF0CA431A1725B7167C5258F1485163CEFFEB7B497D
Malicious:	false
Reputation:	unknown
URL:	https://www.google.com/complete/search?q&cp=0&client=gws-wiz&xssi=t&gs_pcrt=2&hl=en&authuser=0&psi=JvMCZ_3yJIffi-gPx_6GsAo.1728246565593&dpr=1
Preview:	....d.6..}7...sg..]!..X...@.....y.7...4..xL...t.,....`@o....nS..H.L<......./???P./.....>..."....!h\|5G.a$.......}.......M._.YA....x.t...\|..........E=..I{'.+........?T.?...o(7.\........5..... ..#k..s.c:............N.}C.dI..wR.H3....~S....5....>......y......\|.e.oUa+5.lua+M.l...p$w.$.......z...mM......-...XAH..@..@<.%...&..r0%w..%.M.iGH....gQ..yA.y..C.....eW...!;.....O....dm.......</K.f.....7t.Z.....O..@V....X......\|........r.L...B+D....i...[ 2/Z..."_."..i._....\|.".G.k.^......yd.Gx-...n.m..>.A[`..;cL.=....os...3..\P.g.C."Yg..V.g.m..<.._.Z.So.J.?`...y7...}..J....gm6.G~,..9.A.....(.m0B..TKF..r/..N.Fj......J.s4.i..(......W.w.?...w.Q..6.%l...@........."....,...c...3....0.......,...%.J....G;...E1.......S.d%......<....+~..v...r...bv~..S..99g....b..>.X.........1*{.n.f.-....M.7.y8i.......G..So..t....2..\|1`..=.=....j..2F...s....k.g..Ig#.ls..\0...........X..u....\.~'K.D..;d....../....`..G0.$....d.kr.C..(:...4wN".F..}tX......lg...mIm

Chrome Cache Entry: 190

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	data
Category:	downloaded
Size (bytes):	115756
Entropy (8bit):	7.997156049206615
Encrypted:	true
SSDEEP:
MD5:	2DD3B0344EF5BEF20BB9CE6C9A9AABC7
SHA1:	CC24ECE2A8BBDB90A0A0EE1656ECEA04F14D9511
SHA-256:	E530AF4FA10C869C516C149825C40EDAEC28DA5016053B83413693241C4B61D7
SHA-512:	7608F18AE775FA3C60D64B82FEEA1E9C331474814805C616E1787A41FBA4F7720AB1A620709323FE8779CFE5AE7EBCFF3C1BEBD8BA2282E3AE690F5B18819B8F
Malicious:	false
Reputation:	unknown
URL:	"https://www.google.com/xjs/_/js/k=xjs.s.en_US.uzv50Xj9NxM.es5.O/am=AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAAAAAAAAAABCgQCAAAAAAACgAAAAAAAAAAAAAAAAAAAAAQCACAkBAAAAQAAAAWAAAiQEAAACAAAAQEAAAQIAL4_ScAAAAAAAAAAACIAGACAAAAAAAuAAAIFAEAAAACAAAwAAAAEAAAAAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAEEIB-AAAAAAAAAAAAAAIAAAAAwAAFAAL4AQAAAEAAAAAQBAAAHJABCAAAAAAAAOA-AHgeMBxSWAAAAAAAAAAAAAAAAAQgQTAHpL8gAAQAAAAAAAAAAAAAAAAAgJSgicsFACQ/d=0/dg=0/br=1/rs=ACT90oGApL4_LfgIfK17r1O5ncDsN4utjA/m=sb_wiz,aa,abd,sy2lh,syzu,syzt,syzl,syzs,syzv,async,sy1gr,bgd,sy7j6,foot,sy212,kyn,sy1um,sy29a,lli,sf,syzg,syzh,sy45a,sonic,TxCJfd,sy7tw,qzxzOb,IsdWVc,sy7ty,sy2mx,syga,sy3g6,sy15q,sy1ji,sy1jj,spch,tl,syy7,syy5,syy6,rtH1bd,sy3c5,sy3c3,syzo,syzq,syyg,syyd,sy3c4,sy113,EkevXb,sywn,sywk,sywi,sywj,sywm,sywl,sywh,sywg,sywf,sywr,SMquOb,syye,syya,syyc,d5EhJe,sy1dp,sy10g,sy1do,sy1dn,sy1dk,sy1dm,sy1dl,sy1dj,sy1di,sy1dh,sy1dg,sy1df,syyo,sywo,sywy,syyk,syyn,T1HOxc,syyl,syyj,zx30Y,sy1dr,sy1dc,Wo3n8,sy153,sy152,L1AAkb,sy1in,fiAufb,sy1el,SZXsif,sy768,sy7jl,sy5mq,syy3,sYEX8b,sy1iz,NEW1Qc,xBbsrc,sy1j2,sy1j1,IX53Tb,ma4xG,sy185,sy17x,sy181,sy17y,sy17g,syvc,syvb,syv3,syve,syvf,sy17u,sy17v,syw5,syvl,syvk,syvt,syvs,syvr,syvq,syvm,syvn,syvu,syvg,syvj,syw2,sy19t,sytp,E9M6Uc,syw4,syw3,NO84gd,b5lhvb,IoGlCf,syti,syth,C8HsP,syw8,syw6,syvi,sytr,gOTY1,syxd,syxa,syxb,sywz,syxc,syx9,syx6,syx1,syx2,sywc,sywp,sywq,sywe,sywa,syw9,sywb,syx8,syx0,PbHo4e,sy7u6,sy7u7,sy6gx,ND0kmf,sy51h,sy18u,zGLm3b,sy3ey,sy3er,sy3es,sy2tz,sy2sq,sy3ex,sy3f6,sy3f5,sy3eq,sy3en,sy3f3,sy3f2,KHourd,sy3y2,T5VV,sy2rm,aDVF7,sy635,rhYw1b,sy297,sy295,sy2a3,sy2a4,Tia57b,KpRAue,sy2a5,NyeqM,sy3ej,sy3ei,sy3eh,O9SqHb,M6QgBb,sy19z,sy19y,sy18c,sy182,sy184,sy180,sy19x,sy19w,sy187,sytq,EO13pd,sy2l0,I9y8sd,MpJwZc,UUJqVe,sy80,sOXFj,sy7z,s39S4,oGtAuc,NTMZac,nAFL3,sy8u,sy8t,q0xTif,y05UD,sy1nt,sy1n2,sy1n3,sy1n4,sy1n5,sy1n1,syqb,sy460,sy3e6,sy2eo,sy1nf,sy1ne,sy1nd,sy21o,sy1ni,sy2en,sy1nb,sy19b,sy1nc,sy1mx,sy1n7,sy1na,sy1mv,sy2ep,sy2c5,sy461,sy45w,sy1ou,sy38j,sy1mu,sy2ev,sy1vh,sy2er,sy1vk,sy1n0,sy2ey,sy1tb,sy29h,sy1qn,sy1qo,epYOx,RagDlc?xjs=s4"
Preview:	S..U4R....@....(..?.....=i.x.T-.2/X....?..).......0......p.../o._?...:...../.....j..v[.j.H6.1..D.u+)..H..Ps.Ow/.....cI..0.kNm..[..$.*{?..g.3.y.......!....t.......w..?..}...1...!.$8m.p......79oS..4...D.../.\k.....Q\.W.O../._N&..VU;.....K.....g.hM^.^.{a.....I.2.R...$@..T.........+..K .OSG.2._..Ou.....e[3~....1f7..q=.../.....M.o..@. J%...J..zl.1n.3..UV..v.+...so..g.i{2.@+... Y..`UE.2...2...L(.. .......m.Y.V.kwcv.9.MI..~V.E..q.Y,g9.Y.cd......1Z....z."......s..J....9..I._C.../m..cP.......[..8..j..}.1...k+(c.. ....\|...].....iG..%!d+....Pc..S...N.c...@p.../.2['.v/.i{..0.+@R.........-..!...e.w.....I.!...a.{.z. ....6...&..$....?.H.,u..z...P.!.K.H.1..-...(%....X....=o.#.....Hus..U.v..wJ._x..K&.%m;.o\|...o;.l..Q....b6..xn...A......-69......6..e.L.B%..*T..v`lh..-.uMv.?..).....9.......).c...6e....w..v...=."....y,..RA......E.#.......\...s..P4....@....J.q.;..\|.........h5>..Q0.(...Mmp..fN.Y.....~C..h.X.3`n.l2.ay.G.....&..M.>.Yon..nsK.Ht..:.......@.RDQ......\|+...x.G.

Chrome Cache Entry: 197

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	data
Category:	downloaded
Size (bytes):	49
Entropy (8bit):	5.012469537904455
Encrypted:	false
SSDEEP:
MD5:	C6AEE152A3D14A0B5728EFE297C67B92
SHA1:	CE71AE030251F37D82FC3A315E6E4237773B334A
SHA-256:	D843EF7E56C8502F8732C0E9EB2E5616CC512AA3E24296F68015F720F84925CF
SHA-512:	7CC053635E1C257026958FBE1311866C00D95BF50E20F300B563CC627D2EBAAF1ACFCEA56C907D5D2DB9D8BC27523BD938E3512FE1C285844742826DF360FD3D
Malicious:	false
Reputation:	unknown
URL:	https://www.google.com/complete/search?q=pezoomsekre.com&cp=0&client=gws-wiz-serp&xssi=t&gs_pcrt=3&hl=en&authuser=0&pq=pezoomsekre.com&psi=WfMCZ93rFouti-gPq4fV8Qg.1728246616629&dpr=1&ofp=EAE
Preview:	...)]}'.[[],{"q":"IwFTIZf-fboXGuhzTSmEBlQzT4Y"}].

Chrome Cache Entry: 199

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	Web Open Font Format (Version 2), TrueType, length 15552, version 1.0
Category:	downloaded
Size (bytes):	15552
Entropy (8bit):	7.983966851275127
Encrypted:	false
SSDEEP:
MD5:	285467176F7FE6BB6A9C6873B3DAD2CC
SHA1:	EA04E4FF5142DDD69307C183DEF721A160E0A64E
SHA-256:	5A8C1E7681318CAA29E9F44E8A6E271F6A4067A2703E9916DFD4FE9099241DB7
SHA-512:	5F9BB763406EA8CE978EC675BD51A0263E9547021EA71188DBD62F0212EB00C1421B750D3B94550B50425BEBFF5F881C41299F6A33BBFA12FB1FF18C12BC7FF1
Malicious:	false
Reputation:	unknown
URL:	https://fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
Preview:	wOF2......<...........<Z.........................d..z..J.`..L.\..<.....<.....^...x.6.$..6. .... ..S..}%.......\|....x..[j.E...d..-A...]=sjf$X.o.5......V....i?}.\...;...V......5..mO=,[.B..d'..=..M...q...8..U'..N..G...[..8....Jp..xP...'.?....}.-.1F.C.....%z..#...Q...~.~..3.............r.Xk..v..7t.+bw...f..b...q.W..'E.....O..a..HI.....Y.B..i.K.0.:.d.E.Lw....Q..~.6.}B...bT.F.,<./....Qu....\|...H....Fk.-..H..p4.$......{.2.....".T'..........Va.6+.9uv....RW..U$8...p...........H5...B..N..V...{.1....5}p.q6..T...U.P.N...U...!.w..?..mI..8q.}.... >.Z.K.....tq..}.><Ok..w.. ..v....W...{....o...."+#+,..vdt...p.WKK:.p1...3`. 3.......Q.].V.$}.......:.S..bb!I...c.of.2uq.n.MaJ..Cf.......w.$.9C...sj.=...=.Z7...h.w M.D..A.t.....]..GVpL...U(.+.)m..e)..H.}i.o.L...S.r..m..Ko....i..M..J..84.=............S..@......Z.V.E..b...0.....@h>...."$.?....../..?.....?.J.a,..\|..d...\|`.m5..b..LWc...L...?.G.].i...Q..1.:..LJV.J...bU.2.:\.kt.......t.....k....B..i.z+...........A.....

Chrome Cache Entry: 200

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	gzip compressed data, max compression, original size modulo 2^32 48893
Category:	downloaded
Size (bytes):	11704
Entropy (8bit):	7.980986027264199
Encrypted:	false
SSDEEP:
MD5:	A9E64B2EAA41B9214B2C105EB8979846
SHA1:	D23469B4D17C6A84A31A168E7BF99010C357B582
SHA-256:	5BE9B4DB35A83A9871BBF13EC34C21F660A94D7BA5B9C0216D9319C4757CB367
SHA-512:	0956B029D53668626778E1EC073D88EC1F2EED812AB60DB8FF4DA5DD731FC0DF86518A41D4F5A631BE624174AAAD3E3AE3D609998D4F8A95B52EEEBB20F5F6C0
Malicious:	false
Reputation:	unknown
URL:	https://ogs.google.com/widget/callout?prid=19037050&pgid=19037049&puid=9ceb59a7585b55bd&eom=1&cce=1&dc=1&origin=https%3A%2F%2Fwww.google.com&cn=callout&pid=1&spid=538&hl=en
Preview:	...........]yw.F..?.......,..BZ..}..8Ks\|..@...$.....;3..@.I..v..'h4...H.7/5[..}..z=.....2e.Sc..4.1..0.d...Ev.........[..;...x..mAW..S.2kL.A.mYH......h4.;.'{...@....%.P..>.q..`..,....1...l...&.....u....M{.,.c....r]sn..:F.Ki.'s.Vc.:....U`S.......p..x`.O.O.o...ai.....\|.1mE6...T-5a.}...3.]6].2.Sq\|.1./......W.ikN{.1...J.R.....P,.E)+1,..+.=...8..... ta@......"B.>..a...RG.z...."G...1^$i.c.\|.j!.'..~...g.w{.#..P.q..\0?...T...e1.2....h.........&..K.....<K..8...XD......+.4.G..[.\.4[.......q...?.A.j.....B>.e.zF.'..f.O.`X.r.\|.X..r!..BQH.2..%)[..Ky<.....a.@.2..H].A.o.l.Q.$...!r.$A..e....U_...}FK$....i.v...+..I,.l....b....y>+..:;.=..h\|....:..[Le2e.~.{f....>...s@:Gi....q3..]/...;k..z...$..(FE......[B$......1...S...........,.J9.....C5].+3.........K..K...Jg&....\.1T.uu(;).F...j2.G.n;=..c..u:S.yU.2e.U....s.+..W..z..=.K.."T.VgV.-yhtd..9.....Y..K....y..J...t....(..B2<..=..L.V.e&.....KOv.3..c.F.S.:u2."..p.'.....e.8......~.*...T.<\|..3.`&4.i.W.3S..-Y.j..Xi

Chrome Cache Entry: 204

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	data
Category:	dropped
Size (bytes):	6321
Entropy (8bit):	7.972497657863395
Encrypted:	false
SSDEEP:
MD5:	697E0686071285B6C392DA1F330D42B0
SHA1:	936C9AC183EF15EAF3D8FA4209E324A31B50F83F
SHA-256:	E0CBB044A15C03B3205289CB1FF46FEAC8C2F7A47C4EBF4B211F5E8819D36639
SHA-512:	EE5AEA1FED6926508D12B3AF0A01219F6E093C0B9AF83058E411459AE8D09AA277B2B0D0465CDA2BEDC260D052D97D606FC6ECF265B74C03979860A3749EEF21
Malicious:	false
Reputation:	unknown
Preview:	.. .dB.......D.-".FD..C....(.j5.u................?...q,.P#1...t;....O..H..G...3.n..g?..u..BG.............-z.doavJ......BCbp...;...siF..m..c...l.J&..W...`?....@..}.4..96.....2.........z.^I.>T......T.ld.^,`....7.E~8U~....[.I..8.D.<.@.@.1N....,.........y..R.~)...........3...7...I$...!;..V.....R....w....n4..D.......H.....rVMil1N...m....[y..Yt.W[...Z.......wh.1.X1.=.. ...ym.=0...a\.:XX... .2P....."JU.-..,.NE...g.^..."NXw!E....z.@~.....g.;sl..XY..+,.r..*.%.8...~.ns...vM....o..'..IS9.=~d8J.@.q.U..j2.I.\|._.n0..2.=.....<.i(bj9.Aw).j...tJ{q.tB.c.uy_.HD.H.f..3oW.T.U..):X../q.l._).A.4.5.sI...).7..EU..N.&c.H}..r.Ai.1../..]Y..K.cS$o.CU.7)..j.2..:..?L..X...Q'.......)>...Y..=$..Y.S"....)..r.'..w.P..S'{....g....\|..N>.,%...,."..5.2.....^.g..)b...0b......D....,.4.tF.S..8...l?.N=#.Tb.P.......eZ7.$..4......8E.p..UN.Z.%y.1..W@.....9.Z.....w\|......Tez....HK....A.....F.."X.8+c^c.?.I6.x....O.>v.....3.Pa.4.xF.g.Gi.n...(.Y<".H.`....]..5J..?4:.i;..p....ym.r..

Chrome Cache Entry: 207

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	data
Category:	downloaded
Size (bytes):	104
Entropy (8bit):	6.294048732501768
Encrypted:	false
SSDEEP:
MD5:	D22B2DD5BFD0754000EF81F77932838F
SHA1:	04670D3C83577F70AADA3F6DC4FE03C349FAA0C2
SHA-256:	C47DD82AFCF5B2C9B7982EAFA62207E334194330D4360F748E80A9ACC6825655
SHA-512:	23FF753DC61610E10BB99B37256C8DB716A12A4DC0CF3C9870CF33D9AB4698152AE11BADFD4637BC70C60AA2A3F8EA9FCC80418AEED3BF0A2F1BEA6BDCD76026
Malicious:	false
Reputation:	unknown
URL:	https://www.google.com/complete/search?client=chrome-omni&gs_ri=chrome-ext-ansg&xssi=t&q=pezoomsekre.com&oit=3&cp=15&url=https%3A%2F%2Fwww.google.com%2Fsearch%3Fq%3Dpezoomsekre.com%26sca_esv%3Dfe4d00f75289ff4c%26ei%3DU_MCZ6-kCsSki-gP2JiO0AY%26ved%3D0ahUKEwjvmd-qzPqIAxVE0gIHHViMA2oQ4dUDCA8%26uact%3D5%26oq%3Dpezoomsekre.com%26gs_lp%3DEgxnd3Mtd2l6LXNlcnAiD3Blem9vbXNla3JlLmNvbUjaDlDfClicDXACeACQAQCYAd8BoAGwA6oBAzItMrgBA8gBAPgBAZgCAKACAJgDAIgGAZIHAKAHWg%26sclient%3Dgws-wiz-serp&pgcl=9&gs_rn=42&psi=v5HDooeM-E0qdbuM&sugkey=AIzaSyBOti4mM-6x9WDnZIjIeyEU21OpBXqWBgw
Preview:	.B...[_.W... ..\|p.0..0^'......kA..-..m&T........?<._.9CA.:&2.O.\|..Di...+.._.....h.T...{9..X......f..

Chrome Cache Entry: 208

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	data
Category:	downloaded
Size (bytes):	72467
Entropy (8bit):	7.996513206807646
Encrypted:	true
SSDEEP:
MD5:	00955038D8E9AC1627866470C5DD85EF
SHA1:	736EA6EEFBB01272B4385AC14E80D5B801A638F2
SHA-256:	C39587DA0005F165BB9949956E4B8C74FF72AA54466D6E1BE52CB93963EE6B6F
SHA-512:	9EF454D363219A71920B9893F78E3EC33E0B009A3C92A62E37FA0D7D7E3B43C3B4E983772ECCB4A49E6C2CA8CB9C25F9B22B62CA70CC20042975086868CB3F43
Malicious:	false
Reputation:	unknown
URL:	https://www.google.com/search?q=pezoomsekre&oq=pezoomsekre&gs_lcrp=EgZjaHJvbWUyBggAEEUYOdIBCDM3NjRqMGo0qAIAsAIA&sourceid=chrome&ie=UTF-8
Preview:	....$.B....8.7..j?\.Q.z.........\.0-.q=...........(.CVpvoC9....9..0F.d-..9......<rJ...PE8.\[.=....k..4..p...U_......3.9.f.3....$+1.l$[.....:.$.+]qZ./K.\.....{.{.y.....H..$}...."O...I.W>........Gr.8.....q$.[.8...B%.o.f.J..Nv.f..&6....\..p...!LtyG.Z..T....#.f.1Z].q...C.P....B@..e....'...-0./.....+.DF.7...S{.J!EraOB....!..)..r....I..'...A#.%g..9....".....<.Y..{..x...r......8V...x..&...<..........yh.._uHK.d.wN.f{..]4.n...R6I.N....].....s_w....xS>.?..<_...w.L.....p....j..z3..R..%6...Cw...uD.j..~.Ay.hO.....G.i;.}.Q.a..c..i..ZB.~.=..K.u=(.................M.......O^V....Gbi...gG.Gby.:;..o............./..I..b..E.....I..,.P.a...%....=<...g.V......i.1....vN.).[.{.G.=.../...a`'U...f&.>b.Jc..QJi..r..~.t.$3Y...E#Z./.....9.VH).QZ.6B...._##...s.8.Z6.J&t..X.k...vX.....g...Ln.z...l.2.fl....Lh{.........U.....8..d(..i.....!6..G.Q...=&2b..`<.J...... ..&SJ...I.,.9...R.kf9/.M .S.c....jj..@`\|.....l..K"r- o.bN~.0OI..g1....&(-(-..=Dd..+..qe..Us...*".]...ReNs.}

Chrome Cache Entry: 209

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	data
Category:	downloaded
Size (bytes):	161002
Entropy (8bit):	7.998480640386828
Encrypted:	true
SSDEEP:
MD5:	59AC95A37D27E5931EDBA241252E0F68
SHA1:	CE5EC77616D17BB23D4DCF57275DD2CE7B83747B
SHA-256:	58C085AA0432841CA78BE6975CCCEDB668D2C0D6BF993966F5D6566ECBEDF96A
SHA-512:	6360174C76A88685DB2B80809AC43471E20C4B29CE6F18AAD59C9748D6AA10C54FC3D893EF15C530CDB37626149FAC7893336FB64ADC66C2B2BED5EFAE7A36AD
Malicious:	false
Reputation:	unknown
URL:	"https://www.google.com/xjs/_/js/k=xjs.s.en_US.uzv50Xj9NxM.es5.O/ck=xjs.s.N7uEhNpUhSA.L.B1.O/am=QOoQIAQAAAJABBpAAAAAAAAAAAAAAAAAAAAAIAEAACAAAAAAABAAhCgQqEwCAADyCgAANgAgAADwAQAcEAAYAAAQCACAkBAAAAQAAgBWCAAiQEAAAKAAAEQEBAAQNAL4_SdAAAAABgAAAACMAGECCGAAQgCuAAkIFAHoRyECAAAwAACAEBAGGAYgqABgAKcAAAAAAAAAAQAAAYAQAAAEUMB-AAECAPQIBIABICYCAIQAwAAlABL4AUAAAEABAgEQjJkAHJABCAAAAAAAAOA-AHgeMBxSWAAAAAAAAAAAAAAAAAQgQTAHpL8gAAQAAAAAAAAAAAAAAAAAgJSgicsFACQ/d=0/dg=0/br=1/ujg=1/rs=ACT90oG-oE77KJgmUVIve6i-Pbzn16whBA/m=UMk45c,bplExb,nMfLA,O19q8,xMHx5e,R6UkWb,tW711b,UX8qee,tDA9G,sy39u,sy39r,sy39q,sy39p,sy10k,sy10l,sy10j,sy15v,sy10x,sy10m,sy10i,sy10w,sy2rc,sy2rd,sy2re,sy15r,sy194,sy195,sy15s,sy3w9,sy3w8,sy39n,sy15p,sy158,sy13e,sy136,sy13f,sy13c,sy13a,sy2rf,sy15n,sy15j,sy15i,sy15k,sy157,Eox39d,sy7nm,sy5g2,sy28k,sytb,tIj4fb,sy3u2,w4UyN,sy8w,syhm,syhp,syhj,syhk,syhn,syhi,syhx,syhv,syhu,syht,syhq,syhh,syas,sydj,sybq,sybr,sye0,sydk,sye1,sydh,sydi,syd4,syd0,syd1,sybb,syby,syax,sybu,syba,syae,syai,syab,syaf,syaj,syaa,syag,sya7,sya9,sya4,sydl,syaq,sybp,syat,sybs,syao,sybn,syap,sybo,syav,syb9,sybt,sybx,syb5,sybv,syb3,syb2,syb1,syaz,syb7,syau,sydm,syde,syd6,syda,syd7,sycp,sycq,sycw,sycv,syck,sycn,sych,sycm,sycj,syco,sycg,sycf,sycu,sycr,sycb,syca,syc8,syc7,syc9,syc2,syc0,syc4,syc1,syc3,syan,sycs,syh5,syhg,syhc,syhe,syha,syhb,sy8f,sy8b,sy8e,syh7,syhd,syh6,syh4,syh1,syh0,sygy,sy8i,uxMpU,sygt,sydv,sydt,sydu,sydn,sye2,sydp,sydo,syal,syc5,sydr,sydg,sy9f,sy9e,sy9d,Mlhmy,QGR0gd,aurFic,sy9o,fKUV3e,OTA3Ae,sy8y,OmgaI,EEDORb,PoEs9b,Pjplud,sy99,sy95,sy92,A1yn5d,YIZmRd,uY49fb,sy88,sy86,sy87,sy85,sy84,sy83,byfTOb,lsjVmc,LEikZe,kWgXee,Ug7Xab,U0aPgd,ovKuLd,sgY6Zb,qafBPd,ebZ3mb,dowIGb,sy3xa,sy3x9,sy3x8,sy3x7,SJpD2c,sy5dk,sy16k,sy16j,sy16e,sy16l,sy17q,sy16i,sy17n,sy13u,sy13z,sy13m,sy13v,sy13n,sy13k,sy13l,sy13g,sy13r,syuc,sy13j,syub,syu9,sy5dh,sy1v3,sy5dg,sy3nf,syus,syut,syu4,syug,syv8,syvo,syua,sy3ng,syuu,syue,syud,syu8,syu6,syu5,sytz,syty,sytt,sytu,sy1cy,sy10e,syuq,sy5di,bEGPrc,sy1ds,sy5dm,sy5dl,mBG1hd,sy5dn,mscaJf,sy5dr,sGwFce,HxbScf,eAR4Hf,sy5ds,h3zgVb,lRePd,sy3x1,nN2e1e,sy5do,sy5dt,IRJCef,sy5dq,sy5dp,scFHte,pr5okc,IFqxxc,sy3x2,OXpAmf,sy5du,sy3u4,sy3tx,syz7,syz8,sy3tw,sy1d1,sy1d2,sy191,sy193,sy192,sy18y,sy18z,sy18w,sy18v,sy18r,sy18x,sy11m,sy11n,syzf,syzd,syze,sy11l,sy11o,sy11k,sy11p,sy11c,sy11d,sy11q,sy11r,syzb,syzi,syy0,syxk,syy1,GElbSc,sytg,sytd,sytc,syta,DPreE,sy5e2,xdV1C,sy5ly,HYSCof,sy67j,sy3cs,sy1bf,KSk4yc,sy3bo,msmzHf,sy79b,pHXghd?xjs=s3"
Preview:	Sw.w.klo.a..4...~A..q.....@U.CB..j..~..?...?...........\|`hdlbjfnaiemckg........................^7vO.L.C..=....._8.D....M .P..V.z....4Q....r "s.......h...N-v:>.o......LMQI.#.FMLW..l{...J.@..e.jj..}9.k...P..s."....U.w".......??_HQV...Bb..L...%.{....No@DP............'f..R:..u..7n`....k...Q.E..m...if.....!af.<Dg...X."U..!...O......?_..U.....,.=v.>^..av@ H.-N.l..w........"/..l:`&..Xs4.1....Z=1(..(&...[V..g..W(mQ.f.P..GK....{.y.....Y.....* XP.Y.....^fa~..nf..(......E....=.B/V5.6.$.GJ.O.Yz.t,z6../3.m...)K.1f7KV......G.......L..H..G&.;2.."..H..I...D&.@.d'P.<."5".}..!)GQcZ.T.....1./.2n5...,vE..[i...f../..+...P7!.........W.1.zf.U..n...X..(.U.T3.C).<.;.C)..R.kK...;...=!...(...m..{.{.bw!p.`.CR..R..I..H..{.BW.P. ...@...C+.Y.V.,.w.i......Ylr..b7..W..6.....I.W......^...p.HjX{..Zw...~9.U...=.U....w7@.{..}/...Y.Duu....#.._.....H7H.J...qXY[...y.w...w.7;/V.?..w_+E.:......i...q.R....@1I:9....J>.H.I.n.. ..9...[58....RJ).!...blT\|...n...cW.X...U@.)..6...I..I\i.J~

Chrome Cache Entry: 211

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	data
Category:	downloaded
Size (bytes):	98
Entropy (8bit):	6.354406017540451
Encrypted:	false
SSDEEP:
MD5:	9C7D9109E6B853CC50C62D4EAB4F64C2
SHA1:	C7647C90A369F0FE3FBB1A95CA36F4578DDD6519
SHA-256:	3765C07A263BF3A175F18D2BA20CB45A03B5AB7EF5319074C4154B30EEFBB2FA
SHA-512:	1715C0E8E898053F2D751CCFAF499F77C28FDD26E1E44DE87A7A012C25C0DC6541758C959945CBABEAFAA771068CD7E1AB828B9568C7D0BA5718B3B7DB9B58F6
Malicious:	false
Reputation:	unknown
URL:	https://www.google.com/complete/search?client=chrome-omni&gs_ri=chrome-ext-ansg&xssi=t&q=pezoom&oit=1&cp=6&pgcl=4&gs_rn=42&psi=v5HDooeM-E0qdbuM&sugkey=AIzaSyBOti4mM-6x9WDnZIjIeyEU21OpBXqWBgw
Preview:	.>....f..+"\|1..R}>L.0.@.lA.ml.!>.4^t.. p......,.9)...!j...e.]..........W..96.......u=.D...V...

Chrome Cache Entry: 212

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	RIFF (little-endian) data, Web/P image
Category:	dropped
Size (bytes):	5494
Entropy (8bit):	7.943800412453245
Encrypted:	false
SSDEEP:
MD5:	1E4ADFCE09B0D0C2E9DB0D9144ABAFE9
SHA1:	2058B270F22F40FB4B1EFD90CBF84BCF156564A4
SHA-256:	460997174B5C47F2245ACB674BD5B1D0092272C4698AE83E504FC8CF06E1260B
SHA-512:	B537A3FAAEA9B02D8AD75DA0F22CF9E2A16F308E7A24440DE20F25FC300486739D0F5410DDB396B253F208DF76E1889BB1E3A6BA2DB2D8D78AC0E23090B35204
Malicious:	false
Reputation:	unknown
Preview:	RIFFn...WEBPVP8La.../.@f..`..#.......1..[3.jl.....=.c;...j.h7/r..i.3.t.%.r..+G......Kz...c..N...$.?..4..W....U..y.....}8... .... ..@...!....... ........9..` ,...N....P&..B.!......(<.r..9.2....e.."o..A..B.f...o..:..q...Wx.EP.. ..m{.m..oV..m...l....$....Tu..'.._...6V.........pZ.I.w.}...y.$cM...R.S..D.A../....D.n.....'"u.5.....]2BR.].p.....lRrR".....3Bbb.HC..!c...W.C.4..UP.{...;..-84a.L6.M`G..X.'..;...b..'..H.#.#...2.....mG.................$ER.1>.......][.F...J.......XkKb.....>d.....K...S... ......PF!ICFA.VrN>.Q..+.P..=..............t...@5.Mf...m....0....-,...v.F.....`..G.@..#A.d[Vs.....$BX\|.)Y.....`.[.m..m.m.v..m.m..$I...kcw..n.m..D=y?z.gveS.H\|....3s..]....T..pu.....:.m.D.........D...A.]..ZsE..E.R.r\...-.C...r....=m.>.(.l....u.*D-.n.lF.l..B#I.$l..}...=o...H..I..^Zdx.........@.g.m.m.m.m.m..F.D.FgG3..?..HS....R...T5)J.'.'...._np...6....'...k.k...o.7o.?.V.K.k.Y..p./.......VQ...?t....P...0M.#...6H.z..pH..Ga.E...0.b.{..0d.W7d.T=.<.'

Chrome Cache Entry: 214

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	data
Category:	dropped
Size (bytes):	6346
Entropy (8bit):	7.963432709611075
Encrypted:	false
SSDEEP:
MD5:	706B630AD5EF453F42CB56E6F6EC8992
SHA1:	A491F18B15BF94464F4FDB0BC8C8805F1B5B1247
SHA-256:	E7E0C045BCD3CD976E9E6207C9E5A4EB3B888598EE791A9E23E8D4E34208EDFD
SHA-512:	FC58D4BF18EECCF70CAE389B4FEBB245682021BD90D1F4591967D5A037C1C21431D8E5A2BC3D195D91B1E01EAC9BC9EEABF1D3401A284AFCB72227015646D656
Malicious:	false
Reputation:	unknown
Preview:	.. .d....~..%.nD.I..\|..p.^...4..l......o...?.Mv......c{..".HL..X..y........H..H1....f...s.[../\|F^....P..?....t$.jv..;.,......1$..L.!~.......\|.ja@.K..T.e...^..J9@..`l.[..p...........C.Dw_'...].....pL.-.......+.e.F..vj...+..&....Z[. .x..e.......'.E.DJ......O..7.5.L.;,....`).....>a.U..4..s...#.}m...Q<m._...L.d](....N....F:./Y<.(.....=.sE.g..K.[OWw.].x66.4`.'.8.#-.`.0.0...m..sP.......H...s...Q.......m...k..._...T..2.g..R..D.^p..^....Eh1...&.......,.J.e\|y....D..d..'.q.x......Q.)J.....0;..#.E.Fy....Q..Gu<K....7...i...IY.<1._)...].y....b.t.&_k.A.......P...i}Qt.Do.\|.CT...X.\.hX..H.e.........L...7 ...e%.VU\.6...kb4..0T....Il...HnJ.A"..9..,. .l>.<Z.A..T%...C. .&L.<f..p....&..Q.!.a.....x./....c...3".....ca.J(..&..n7C...../.IH...}Cn.G.P.....V.}uTU..{..-...&.L`.$.,. ..0t.>..Z........Ng.q/..Uf.5.!`...l..#.h..g".rQH.:.r..3.&......K.....FT6.3...; .IyQ......{....o.U..+.......g..^1.Y.K..D.,a.'...B...(h..O.dx\+u.Yw`K..aF..g...2{w....>....a5Sv8....b\|X.,.F.Q.

Static File Info

⊘No static file info

Description:	Adversaries may achieve persistence by adding a program to a startup folder or referencing it with a Registry run key. Adding an entry to the "run keys" in the Registry or startup folder will cause the program referenced to be executed when a user logs in.These programs will be executed under the context of the user and will have the account's associated permissions level.
Tactics:	Persistence, Privilege Escalation
Data Sources:	Command: Command Execution, File: File Modification, Process: Process Creation, Windows Registry: Windows Registry Key Creation, Windows Registry: Windows Registry Key Modification
Platforms:	Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may inject code into processes in order to evade process-based defenses as well as possibly elevate privileges. Process injection is a method of executing arbitrary code in the address space of a separate live process. Running code in the context of another process may allow access to the process's memory, system/network resources, and possibly elevated privileges. Execution via process injection may also evade detection from security products since the execution is masked under a legitimate process.
Tactics:	Defense Evasion, Privilege Escalation
Data Sources:	File: File Metadata, File: File Modification, Module: Module Load, Process: OS API Execution, Process: Process Access, Process: Process Metadata, Process: Process Modification
Platforms:	Linux, macOS, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may attempt to manipulate features of their artifacts to make them appear legitimate or benign to users and/or security tools. Masquerading occurs when the name or location of an object, legitimate or malicious, is manipulated or abused for the sake of evading defenses and observation. This may include manipulating file metadata, tricking users into misidentifying the file type, and giving legitimate task or service names.
Tactics:	Defense Evasion
Data Sources:	Command: Command Execution, File: File Metadata, File: File Modification, Image: Image Metadata, Process: OS API Execution, Process: Process Creation, Process: Process Metadata, Scheduled Job: Scheduled Job Metadata, Scheduled Job: Scheduled Job Modification, Service: Service Creation, Service: Service Metadata
Platforms:	Containers, Linux, macOS, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may employ a known encryption algorithm to conceal command and control traffic rather than relying on any inherent protections provided by a communication protocol. Despite the use of a secure algorithm, these implementations may be vulnerable to reverse engineering if secret keys are encoded and/or generated within malware samples/configuration files.
Tactics:	Command and Control
Data Sources:	Network Traffic: Network Traffic Content
Platforms:	Linux, macOS, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may use an OSI non-application layer protocol for communication between host and C2 server or among infected hosts within a network. The list of possible protocols is extensive.Specific examples include use of network layer protocols, such as the Internet Control Message Protocol (ICMP), transport layer protocols, such as the User Datagram Protocol (UDP), session layer protocols, such as Socket Secure (SOCKS), as well as redirected/tunneled protocols, such as Serial over LAN (SOL).
Tactics:	Command and Control
Data Sources:	Network Traffic: Network Traffic Content, Network Traffic: Network Traffic Flow
Platforms:	Linux, macOS, Network, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may communicate using OSI application layer protocols to avoid detection/network filtering by blending in with existing traffic. Commands to the remote system, and often the results of those commands, will be embedded within the protocol traffic between the client and server.
Tactics:	Command and Control
Data Sources:	Network Traffic: Network Traffic Content, Network Traffic: Network Traffic Flow
Platforms:	Linux, macOS, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may transfer tools or other files from an external system into a compromised environment. Tools or files may be copied from an external adversary-controlled system to the victim network through the command and control channel or through alternate protocols such as ftp . Once present, adversaries may also transfer/spread tools between victim devices within a compromised environment (i.e. Lateral Tool Transfer ).
Tactics:	Command and Control
Data Sources:	Command: Command Execution, File: File Creation, Network Traffic: Network Connection Creation, Network Traffic: Network Traffic Content, Network Traffic: Network Traffic Flow
Platforms:	Linux, macOS, Windows
Url:	Open detailed description by Mitre

Behavior Section

Behavior Chronological

Disassembly

Uncategorized

Graph

Loading Joe Sandbox Report ...

Warning!

Windows Analysis Report https://bathingdelicatedemise.com/pixel/puclc?tmpl=70&bv=24.8.8162&plk=d577c65e4106d4ebdd0575cf904e1955

Overview

General Information

Detection

Signatures

Classification

Process Tree

Yara Signatures

Sigma Signatures

Suricata Signatures

Joe Sandbox Signatures

Phishing

Compliance

Networking

System Summary

Boot Survival

Mitre Att&ck Matrix

Screenshots

Thumbnails

Antivirus, Machine Learning and Genetic Malware Detection

Initial Sample

Dropped Files

Unpacked PE Files

Domains

URLs

Domains and IPs

Contacted Domains

Contacted URLs

World Map of Contacted IPs

Public IPs

Private

General Information

Warnings

LLM Input / Output

Created / dropped Files

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk

Chrome Cache Entry: 113

Chrome Cache Entry: 114

Chrome Cache Entry: 115

Chrome Cache Entry: 117

Chrome Cache Entry: 119

Chrome Cache Entry: 120

Chrome Cache Entry: 122

Chrome Cache Entry: 123

Chrome Cache Entry: 124

Chrome Cache Entry: 130

Chrome Cache Entry: 131

Chrome Cache Entry: 134

Chrome Cache Entry: 135

Chrome Cache Entry: 137

Chrome Cache Entry: 139

Chrome Cache Entry: 140

Chrome Cache Entry: 141

Chrome Cache Entry: 144

Chrome Cache Entry: 145

Chrome Cache Entry: 147

Chrome Cache Entry: 148

Chrome Cache Entry: 149

Chrome Cache Entry: 150

Chrome Cache Entry: 151

Chrome Cache Entry: 153

Chrome Cache Entry: 155

Chrome Cache Entry: 157

Chrome Cache Entry: 159

Chrome Cache Entry: 160

Chrome Cache Entry: 161

Chrome Cache Entry: 163

Chrome Cache Entry: 165

Chrome Cache Entry: 166

Windows Analysis Report
https://bathingdelicatedemise.com/pixel/puclc?tmpl=70&bv=24.8.8162&plk=d577c65e4106d4ebdd0575cf904e1955