Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
Chrome Cache Entry: 113
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using
IJG JPEG v80), quality = 82", baseline, precision 8, 200x72, components 3
|
downloaded
|
||
|
Chrome Cache Entry: 114
|
ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 115
|
PNG image data, 305 x 306, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 116
|
JSON data
|
dropped
|
||
|
Chrome Cache Entry: 117
|
PNG image data, 1347 x 830, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 118
|
JSON data
|
downloaded
|
||
|
Chrome Cache Entry: 119
|
ASCII text, with very long lines (59158)
|
downloaded
|
||
|
Chrome Cache Entry: 120
|
HTML document, ASCII text, with very long lines (1028), with no line terminators
|
dropped
|
||
|
Chrome Cache Entry: 121
|
JSON data
|
dropped
|
||
|
Chrome Cache Entry: 122
|
HTML document, ASCII text, with very long lines (1028), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 123
|
JSON data
|
downloaded
|
||
|
Chrome Cache Entry: 124
|
JSON data
|
downloaded
|
||
|
Chrome Cache Entry: 125
|
PNG image data, 305 x 306, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 126
|
JSON data
|
dropped
|
||
|
Chrome Cache Entry: 127
|
Web Open Font Format (Version 2), TrueType, length 18588, version 1.0
|
downloaded
|
||
|
Chrome Cache Entry: 128
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using
IJG JPEG v80), quality = 82", baseline, precision 8, 200x72, components 3
|
dropped
|
||
|
Chrome Cache Entry: 129
|
JSON data
|
downloaded
|
||
|
Chrome Cache Entry: 130
|
ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 131
|
ASCII text, with very long lines (65321)
|
downloaded
|
||
|
Chrome Cache Entry: 132
|
ASCII text, with very long lines (65465)
|
downloaded
|
||
|
Chrome Cache Entry: 133
|
JSON data
|
downloaded
|
||
|
Chrome Cache Entry: 134
|
PNG image data, 1347 x 830, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 135
|
ASCII text, with very long lines (65465)
|
dropped
|
||
|
Chrome Cache Entry: 136
|
JSON data
|
dropped
|
There are 15 hidden files, click here to show them.
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
|
||
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US
--service-sandbox-type=none --mojo-platform-channel-handle=1968 --field-trial-handle=1972,i,10089221679634567618,6428376792978850799,262144
--disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction
/prefetch:8
|
||
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" "https://48xm30slkn0sd8fsdnmcxri68s1lofp.notificationhandler.com/pra/j4IGU9hNQE9u6JiYeZKg?wp=false"
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
https://48xm30slkn0sd8fsdnmcxri68s1lofp.notificationhandler.com/pra/j4IGU9hNQE9u6JiYeZKg?wp=false
|
|||
|
https://fontawesome.com
|
unknown
|
||
|
https://learning.betterphish.com/api/user?token=j4IGU9hNQE9u6JiYeZKg
|
142.250.186.115
|
||
|
https://learning.betterphish.com/api/learning-moment?token=j4IGU9hNQE9u6JiYeZKg
|
142.250.186.115
|
||
|
https://learning.betterphish.com/favicon.ico
|
142.250.186.115
|
||
|
http://learning.betterphish.com/pra/j4IGU9hNQE9u6JiYeZKg
|
142.250.185.243
|
||
|
https://learning.betterphish.com/static/media/phinDefault.6d9e99c04c3d5f7eba77.png
|
142.250.186.115
|
||
|
https://learning.betterphish.com/api/logo?token=j4IGU9hNQE9u6JiYeZKg
|
142.250.186.115
|
||
|
https://learning.betterphish.com/static/js/main.c0bb93c3.js
|
142.250.186.115
|
||
|
https://api.ipify.org/?format=json&callback=getIP
|
104.26.13.205
|
||
|
https://github.com/twbs/bootstrap/blob/master/LICENSE)
|
unknown
|
||
|
https://learning.betterphish.com/static/css/main.5732336a.css
|
142.250.186.115
|
||
|
https://learning.betterphish.com/api/open-lm?token=j4IGU9hNQE9u6JiYeZKg
|
142.250.186.115
|
||
|
https://48xm30slkn0sd8fsdnmcxri68s1lofp.notificationhandler.com/pra/j4IGU9hNQE9u6JiYeZKg?wp=false
|
198.185.159.144
|
||
|
https://getbootstrap.com/)
|
unknown
|
||
|
https://use.fontawesome.com/releases/v5.15.1/css/all.css
|
unknown
|
||
|
https://learning.betterphish.com/pra/j4IGU9hNQE9u6JiYeZKg
|
|||
|
https://learning.betterphish.com/manifest.json
|
142.250.186.115
|
||
|
https://fontawesome.com/license/free
|
unknown
|
There are 8 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
www.google.com
|
216.58.206.68
|
||
|
api.ipify.org
|
104.26.13.205
|
||
|
s-part-0039.t-0009.t-msedge.net
|
13.107.246.67
|
||
|
ext-sq.squarespace.com
|
198.185.159.144
|
||
|
ghs.googlehosted.com
|
142.250.185.243
|
||
|
fp2e7a.wpc.phicdn.net
|
192.229.221.95
|
||
|
use.fontawesome.com
|
unknown
|
||
|
learning.betterphish.com
|
unknown
|
||
|
48xm30slkn0sd8fsdnmcxri68s1lofp.notificationhandler.com
|
unknown
|
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
142.250.186.68
|
unknown
|
United States
|
||
|
142.250.185.243
|
ghs.googlehosted.com
|
United States
|
||
|
192.168.2.4
|
unknown
|
unknown
|
||
|
216.58.206.68
|
www.google.com
|
United States
|
||
|
198.185.159.144
|
ext-sq.squarespace.com
|
United States
|
||
|
239.255.255.250
|
unknown
|
Reserved
|
||
|
104.26.13.205
|
api.ipify.org
|
United States
|
||
|
142.250.186.115
|
unknown
|
United States
|
DOM / HTML
|
URL
|
Malicious
|
|
|---|---|---|
|
https://learning.betterphish.com/pra/j4IGU9hNQE9u6JiYeZKg
|
||
|
https://learning.betterphish.com/pra/j4IGU9hNQE9u6JiYeZKg
|