Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Mon Oct 7 18:29:06 2024, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Mon Oct 7 18:29:06 2024, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Oct 6 08:05:01 2023, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Mon Oct 7 18:29:06 2024, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Mon Oct 7 18:29:06 2024, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Mon Oct 7 18:29:06 2024, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
|
Chrome Cache Entry: 145
|
PNG image data, 47 x 82, 8-bit/color RGB, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 146
|
XML 1.0 document, Unicode text, UTF-8 (with BOM) text
|
downloaded
|
||
|
Chrome Cache Entry: 147
|
HTML document, ASCII text, with CRLF line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 148
|
Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 151
|
Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 152
|
PNG image data, 2 x 2, 8-bit/color RGB, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 154
|
ASCII text, with very long lines (47261)
|
downloaded
|
||
|
Chrome Cache Entry: 155
|
HTML document, Unicode text, UTF-8 text, with very long lines (3354), with CRLF, LF line terminators
|
dropped
|
||
|
Chrome Cache Entry: 156
|
SVG Scalable Vector Graphics image
|
downloaded
|
||
|
Chrome Cache Entry: 157
|
ASCII text, with very long lines (47992), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 158
|
ASCII text, with very long lines (1158)
|
dropped
|
||
|
Chrome Cache Entry: 160
|
Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 163
|
HTML document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 166
|
PNG image data, 73 x 68, 8-bit/color RGB, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 167
|
Unicode text, UTF-8 text, with very long lines (65306)
|
downloaded
|
||
|
Chrome Cache Entry: 168
|
ASCII text, with very long lines (65451)
|
dropped
|
||
|
Chrome Cache Entry: 170
|
ASCII text, with very long lines (65447)
|
downloaded
|
||
|
Chrome Cache Entry: 172
|
HTML document, ASCII text, with very long lines (505), with CRLF line terminators
|
dropped
|
||
|
Chrome Cache Entry: 173
|
XML 1.0 document, ASCII text
|
downloaded
|
There are 16 hidden files, click here to show them.
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
https://statics.teams.cdn.office.net/evergreen-assets/safelinks/1/atp-safelinks.html?url=https%3A%2F%2Fphpstack-1335745-4931432.cloudwaysapps.com%2F%23%26%26%2B~XanJlZEBwcm9hZy5jb20=&locale=en-us&dest=https%3A%2F%2Fteams.microsoft.com%2Fapi%2Fmt%2Fpart%2Famer-03%2Fbeta%2Fatpsafelinks%2Fgeturlreputationsitev2%2F&pc=dqIG3sYngZE8N2eRBkF7CAkOWKg5g3tGjnQGJGQlc61U8QGlKCs5AzH6JKtW7FyetS1g5oEXSNBKJVlJbTCgrea0O041dBSjafsPfOc5KxbMkQRnpwalZQdhHfcjoeWL7rzuDGG%252fj2e7scaAUTCy2PY0WmBb87rgNNPdmEQne%252f00jq9aOpwCvhJrGkNK5f8MP5jaUwccFhr9IIoVaCOrXUhSnuRv%252fw%252bxhUGpneOsAgBs7CjJQbmepBIHfEqwCkqvDbYbxYB4Hm9sLVAOFaz9VFMFSXPJt4MqeWAChikWLAZATmvniptR3h97WVF%252fZtjtm3RxdNyPROzhUvL92w9fdWmSw%252bHBxn5rMHOUpaQU16ZpcfATiVaU51fqKaYO2v4ZnK7axAavLgOpgAJivuE6JO2sqksPH41Z6PVam5c4J%252bwwz5Z2pqrOSxPxEcPGeDff%252bxp9PApNxpvURRLl98WzRw%252ftZEOu%252foKPhjN0OiTGAQDLRWTF%252bMCzSQg37tk7ZYUYYc0Ycs4xDjchhFprJCCSfrZ8WyHq6cjqmnbgDKRQig28xGNFnSDEeWMDBQeeeVyNqDv0FAAxkSAMO%252b7t4Qu1y0h0MHJYEb5pxfOYe8Pyfcsn7pyR%252fkKEqziEQVGlIETrpjVMNyrhJrnX9S%252flWaxf0H3tD%252fqMhzPysO9QdPSJTG054WE4jq5GRqTKu8P25t4KJLY15Oz2j5iCg7Bd5lczhgv4PQevplLuCGckM%252fs5EPk2r2FkSOxHF51EB5FR2TgXQR5UAp2BbaWTm9irKwSSUK5z1MsGMDokVMEB4bQ9mpZrl1%252bDMixJ1mQyyLXpelmEyN8zw1nTsbXAvDQgIvPLPj0QUtphEMnmVEXMkQHiw2WHWUSxIxYcY%252fltyp6bnMrankPAnpChbWQmk95rKsUz8tqtLjNDclK1y1FLy%252fh7sed9duxDDFupXnhmXxGJOmUV6FG1arxXL8urm1F98thG8anfchv3DafKsyVHHgmdUFNH6Uhcu4sB8fo0kqm2y7IWS96w5BeG334JvnFDJPLDPvtK5ojeXfDXh%252boKJdBxXGC9NmPwgDp8XeOavQnNlJRfUAXkhukdjDg1EHGF%252b9luUuTH%252fEbKHniTzx4OvIWUnDvXcdpuEIAnW8mDJzMXpmxpl3nwtTqeQWMeSNzjute9yTZEU%252beQk498EMyU%252fuPUg%252fSOH5r%252fwjGCsPpm%252f%252bUA00SsNvWuDD0AbNIKYubFuNKQ3SX6N7M11wOksoUG%252fz9IheWtOawwl7F0lqN3xkTQhfiiHovdudAPiB%252fzt25Im27XxPQ9s1c%252bnOWOPh6m%252bvaCQcj6bcwkFbNl5Y1KL7XQvirYSFsNXnrYuQvTPMk1n5CRq6dxsl9FRGV9MMdrZduC%252bG4B0zxLA58d8fTW2zfEXnRcMTgQKLK%252fmeZT7K3wwAvQiA%253d%253d%3B%20expires%3DWed%2C%2009%20Oct%202024%2014%3A05%3A23%20GMT%3B%20path%3D%2F%3B%20SameSite%3DNone%3B%20secu
|
 |
||
|
https://cm-email-assets.s3.amazonaws.com/images/ContactMonkey-Team-RHgG2HKedjWK7A71P9queFFLgux8kwcr5DRYDP4VPcva96r5cgW6PiqHiSLkORIGILE6gqUD5FC44k37BcCvWgAPKXAcpJ1sJU3tF7IPivA1H7eCYe4LonxtUt60lylx/10.html#XanJlZEBwcm9hZy5jb20=
|
|
||
|
https://cm-email-assets.s3.amazonaws.com/images/ContactMonkey-Team-RHgG2HKedjWK7A71P9queFFLgux8kwcr5DRYDP4VPcva96r5cgW6PiqHiSLkORIGILE6gqUD5FC44k37BcCvWgAPKXAcpJ1sJU3tF7IPivA1H7eCYe4LonxtUt60lylx/b+bdu++nua++wivprdd+m.html#&&+~XanJlZEBwcm9hZy5jb20=
|
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
cm-email-assets.s3.amazonaws.com
|
unknown
|
|
|
|
s3-w.us-east-1.amazonaws.com
|
3.5.16.35
|
||
|
jsdelivr.map.fastly.net
|
151.101.65.229
|
||
|
phpstack-1335745-4931432.cloudwaysapps.com
|
138.197.99.28
|
||
|
code.jquery.com
|
151.101.66.137
|
||
|
cdnjs.cloudflare.com
|
104.17.25.14
|
||
|
challenges.cloudflare.com
|
104.18.94.41
|
||
|
decoestilismoko.ru
|
104.21.51.55
|
||
|
www.google.com
|
142.250.186.164
|
||
|
s-0005.dual-s-msedge.net
|
52.123.129.14
|
||
|
phpstack-1335745-4893982.cloudwaysapps.com
|
138.197.99.28
|
||
|
cdn.jsdelivr.net
|
unknown
|
There are 2 hidden domains, click here to show them.
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
142.250.186.46
|
unknown
|
United States
|
||
|
173.194.76.84
|
unknown
|
United States
|
||
|
104.18.94.41
|
challenges.cloudflare.com
|
United States
|
||
|
192.168.2.17
|
unknown
|
unknown
|
||
|
192.168.2.16
|
unknown
|
unknown
|
||
|
52.217.68.4
|
unknown
|
United States
|
||
|
52.123.129.14
|
s-0005.dual-s-msedge.net
|
United States
|
||
|
151.101.130.137
|
unknown
|
United States
|
||
|
192.168.2.5
|
unknown
|
unknown
|
||
|
192.168.2.22
|
unknown
|
unknown
|
||
|
172.217.23.99
|
unknown
|
United States
|
||
|
151.101.66.137
|
code.jquery.com
|
United States
|
||
|
142.250.186.110
|
unknown
|
United States
|
||
|
3.5.16.35
|
s3-w.us-east-1.amazonaws.com
|
United States
|
||
|
104.17.24.14
|
unknown
|
United States
|
||
|
172.217.16.202
|
unknown
|
United States
|
||
|
1.1.1.1
|
unknown
|
Australia
|
||
|
34.104.35.123
|
unknown
|
United States
|
||
|
216.58.212.131
|
unknown
|
United States
|
||
|
151.101.65.229
|
jsdelivr.map.fastly.net
|
United States
|
||
|
104.18.95.41
|
unknown
|
United States
|
||
|
2.19.126.154
|
unknown
|
European Union
|
||
|
239.255.255.250
|
unknown
|
Reserved
|
||
|
2.19.126.151
|
unknown
|
European Union
|
||
|
142.250.186.164
|
www.google.com
|
United States
|
||
|
104.21.51.55
|
decoestilismoko.ru
|
United States
|
||
|
138.197.99.28
|
phpstack-1335745-4931432.cloudwaysapps.com
|
United States
|
||
|
104.17.25.14
|
cdnjs.cloudflare.com
|
United States
|
There are 18 hidden IPs, click here to show them.