Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk
|
Unknown
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk
|
Unknown
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk
|
Unknown
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk
|
Unknown
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk
|
Unknown
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk
|
Unknown
|
dropped
|
||
|
Chrome Cache Entry: 185
|
ASCII text, with very long lines (27290)
|
downloaded
|
||
|
Chrome Cache Entry: 186
|
ASCII text, with very long lines (65536), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 187
|
ASCII text, with very long lines (31714)
|
downloaded
|
||
|
Chrome Cache Entry: 188
|
Algol 68 source, ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 189
|
ASCII text, with very long lines (65536), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 190
|
ASCII text, with very long lines (65536), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 191
|
ASCII text, with very long lines (61088)
|
downloaded
|
||
|
Chrome Cache Entry: 192
|
ASCII text, with very long lines (24809)
|
downloaded
|
||
|
Chrome Cache Entry: 193
|
RIFF (little-endian) data, Web/P image
|
downloaded
|
||
|
Chrome Cache Entry: 194
|
ASCII text, with very long lines (65536), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 195
|
ASCII text, with very long lines (18565)
|
downloaded
|
||
|
Chrome Cache Entry: 196
|
ASCII text, with very long lines (65536), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 197
|
ASCII text, with very long lines (65536), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 198
|
ASCII text, with very long lines (1759)
|
downloaded
|
||
|
Chrome Cache Entry: 199
|
ASCII text, with very long lines (26682)
|
downloaded
|
||
|
Chrome Cache Entry: 200
|
ASCII text, with very long lines (53210)
|
downloaded
|
||
|
Chrome Cache Entry: 201
|
ASCII text, with very long lines (6429)
|
downloaded
|
||
|
Chrome Cache Entry: 202
|
JSON data
|
downloaded
|
||
|
Chrome Cache Entry: 203
|
ASCII text, with very long lines (25710)
|
downloaded
|
||
|
Chrome Cache Entry: 204
|
ASCII text, with very long lines (34437)
|
dropped
|
||
|
Chrome Cache Entry: 205
|
ASCII text, with very long lines (980)
|
downloaded
|
||
|
Chrome Cache Entry: 206
|
MS Windows icon resource - 1 icon, 256x256 with PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced, 32 bits/pixel
|
downloaded
|
||
|
Chrome Cache Entry: 207
|
ASCII text, with very long lines (27676)
|
downloaded
|
||
|
Chrome Cache Entry: 208
|
HTML document, ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 209
|
ASCII text, with very long lines (65536), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 210
|
ASCII text, with very long lines (57467)
|
downloaded
|
||
|
Chrome Cache Entry: 211
|
ASCII text, with very long lines (13544)
|
downloaded
|
||
|
Chrome Cache Entry: 212
|
JSON data
|
downloaded
|
||
|
Chrome Cache Entry: 213
|
ASCII text, with very long lines (29935)
|
downloaded
|
||
|
Chrome Cache Entry: 214
|
JSON data
|
downloaded
|
||
|
Chrome Cache Entry: 215
|
ASCII text, with very long lines (65310)
|
downloaded
|
||
|
Chrome Cache Entry: 216
|
ASCII text, with very long lines (34437)
|
downloaded
|
||
|
Chrome Cache Entry: 217
|
ASCII text, with very long lines (41394)
|
downloaded
|
||
|
Chrome Cache Entry: 218
|
ASCII text, with very long lines (48083)
|
downloaded
|
||
|
Chrome Cache Entry: 219
|
ASCII text, with very long lines (32480)
|
downloaded
|
||
|
Chrome Cache Entry: 220
|
ASCII text, with very long lines (6429)
|
dropped
|
||
|
Chrome Cache Entry: 221
|
ASCII text, with very long lines (65536), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 222
|
ASCII text, with very long lines (65536), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 223
|
ASCII text, with very long lines (65536), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 224
|
ASCII text, with very long lines (65536), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 225
|
JSON data
|
downloaded
|
||
|
Chrome Cache Entry: 226
|
ASCII text, with very long lines (65536), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 227
|
ASCII text, with very long lines (65536), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 228
|
ASCII text, with very long lines (14761)
|
downloaded
|
||
|
Chrome Cache Entry: 229
|
ASCII text, with very long lines (65536), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 230
|
ASCII text, with very long lines (44063)
|
downloaded
|
||
|
Chrome Cache Entry: 231
|
ASCII text, with very long lines (65536), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 232
|
ASCII text, with very long lines (65536), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 233
|
ASCII text, with very long lines (26179)
|
downloaded
|
||
|
Chrome Cache Entry: 234
|
ASCII text, with very long lines (65536), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 235
|
ASCII text, with very long lines (1846)
|
downloaded
|
||
|
Chrome Cache Entry: 236
|
ASCII text, with very long lines (65536), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 237
|
ASCII text, with very long lines (65536), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 238
|
ASCII text, with very long lines (50236)
|
downloaded
|
||
|
Chrome Cache Entry: 239
|
JSON data
|
downloaded
|
||
|
Chrome Cache Entry: 240
|
ASCII text, with very long lines (65536), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 241
|
ASCII text, with very long lines (65536), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 242
|
ASCII text, with very long lines (65536), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 243
|
ASCII text, with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 244
|
ASCII text, with very long lines (10539)
|
downloaded
|
||
|
Chrome Cache Entry: 245
|
ASCII text, with very long lines (65310)
|
dropped
|
||
|
Chrome Cache Entry: 246
|
ASCII text, with very long lines (10196)
|
downloaded
|
||
|
Chrome Cache Entry: 247
|
ASCII text, with very long lines (65536), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 248
|
ASCII text, with very long lines (65536), with no line terminators
|
dropped
|
There are 61 hidden files, click here to show them.
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
|
||
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US
--service-sandbox-type=none --mojo-platform-channel-handle=2100 --field-trial-handle=1980,i,4219295517727998443,15291737355667848618,262144
--disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction
/prefetch:8
|
||
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" "http://xdr.euw31usea1-carbonhelixbytedandomaincontrolpanele-for-github.sentinelone.net/"
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
http://xdr.euw31usea1-carbonhelixbytedandomaincontrolpanele-for-github.sentinelone.net/
|
 |
||
|
https://xdr.euw31usea1-carbonhelixbytedandomaincontrolpanele-for-github.sentinelone.net/login
|
|
||
|
https://xdr.euw31usea1-carbonhelixbytedandomaincontrolpanele-for-github.sentinelone.net/assets/locales/en.json
|
34.224.32.67
|
||
|
https://xdr.euw31usea1-carbonhelixbytedandomaincontrolpanele-for-github.sentinelone.net/5512.a060eb584396dfa3.js
|
34.224.32.67
|
||
|
https://xdr.euw31usea1-carbonhelixbytedandomaincontrolpanele-for-github.sentinelone.net/web/api/v2.1/private/settings/unauthenticated
|
34.224.32.67
|
||
|
https://xdr.euw31usea1-carbonhelixbytedandomaincontrolpanele-for-github.sentinelone.net/4168.b2c17ff22704f4f8.js
|
34.224.32.67
|
||
|
https://xdr.euw31usea1-carbonhelixbytedandomaincontrolpanele-for-github.sentinelone.net/9213.af429cb23e6adce0.js
|
34.224.32.67
|
||
|
https://xdr.euw31usea1-carbonhelixbytedandomaincontrolpanele-for-github.sentinelone.net/2217.c6c9f0aefadd2e1e.js
|
34.224.32.67
|
||
|
https://xdr.euw31usea1-carbonhelixbytedandomaincontrolpanele-for-github.sentinelone.net/4450.9230b058b6ad9560.js
|
34.224.32.67
|
||
|
https://xdr.euw31usea1-carbonhelixbytedandomaincontrolpanele-for-github.sentinelone.net/5667.895a4971bba2ca00.js
|
34.224.32.67
|
||
|
https://xdr.euw31usea1-carbonhelixbytedandomaincontrolpanele-for-github.sentinelone.net/6000.a2f724cb20623e79.js
|
34.224.32.67
|
||
|
https://xdr.euw31usea1-carbonhelixbytedandomaincontrolpanele-for-github.sentinelone.net/101.1f851b8508a4f0b9.js
|
34.224.32.67
|
||
|
https://xdr.euw31usea1-carbonhelixbytedandomaincontrolpanele-for-github.sentinelone.net/2874.1171682d8d109317.js
|
34.224.32.67
|
||
|
https://xdr.euw31usea1-carbonhelixbytedandomaincontrolpanele-for-github.sentinelone.net/4749.2c79850a268ea486.js
|
34.224.32.67
|
||
|
https://xdr.euw31usea1-carbonhelixbytedandomaincontrolpanele-for-github.sentinelone.net/4231.ea6f5442eda9110e.js
|
34.224.32.67
|
||
|
https://xdr.euw31usea1-carbonhelixbytedandomaincontrolpanele-for-github.sentinelone.net/web/api/v2.1/private/system/utilities
|
34.224.32.67
|
||
|
https://xdr.euw31usea1-carbonhelixbytedandomaincontrolpanele-for-github.sentinelone.net/ngsw.json?ngsw-cache-bust=0.3745979568968034
|
34.224.32.67
|
||
|
https://xdr.euw31usea1-carbonhelixbytedandomaincontrolpanele-for-github.sentinelone.net/3564.d8e995c812f3af6f.js
|
34.224.32.67
|
||
|
https://xdr.euw31usea1-carbonhelixbytedandomaincontrolpanele-for-github.sentinelone.net/3814.46611fe73b91cdeb.js
|
34.224.32.67
|
||
|
https://xdr.euw31usea1-carbonhelixbytedandomaincontrolpanele-for-github.sentinelone.net/main.f4d9bca1e86e2c4b.js
|
34.224.32.67
|
||
|
https://xdr.euw31usea1-carbonhelixbytedandomaincontrolpanele-for-github.sentinelone.net/554.a4e492c13291ff16.js
|
34.224.32.67
|
||
|
https://xdr.euw31usea1-carbonhelixbytedandomaincontrolpanele-for-github.sentinelone.net/4939.29f6fb193ec7fe08.js
|
34.224.32.67
|
||
|
https://cdn.pendo.io/agent/static/67a8f76c-f960-40e6-4644-c8fe09d48803/pendo.js
|
34.36.213.229
|
||
|
https://xdr.euw31usea1-carbonhelixbytedandomaincontrolpanele-for-github.sentinelone.net/2619.3652d1af5c77b840.js
|
34.224.32.67
|
||
|
https://xdr.euw31usea1-carbonhelixbytedandomaincontrolpanele-for-github.sentinelone.net/405.0a7ef686da4091a9.js
|
34.224.32.67
|
||
|
http://opensource.org/licenses/mit-license
|
unknown
|
||
|
https://xdr.euw31usea1-carbonhelixbytedandomaincontrolpanele-for-github.sentinelone.net/5040.2c6fbcdc3dcb28a6.js
|
34.224.32.67
|
||
|
https://webpjs.appspot.com
|
unknown
|
||
|
https://xdr.euw31usea1-carbonhelixbytedandomaincontrolpanele-for-github.sentinelone.net/3421.e43497aa419f2f0f.js
|
34.224.32.67
|
||
|
https://metrics-proxy-us.sentinelone.net
|
unknown
|
||
|
https://xdr.euw31usea1-carbonhelixbytedandomaincontrolpanele-for-github.sentinelone.net/2558.a76df88a812a74c3.js
|
34.224.32.67
|
||
|
https://xdr.euw31usea1-carbonhelixbytedandomaincontrolpanele-for-github.sentinelone.net/3891.23542dd2ceb8ecb5.js
|
34.224.32.67
|
||
|
https://xdr.euw31usea1-carbonhelixbytedandomaincontrolpanele-for-github.sentinelone.net/3404.7606cb9c3edb8010.js
|
34.224.32.67
|
||
|
https://xdr.euw31usea1-carbonhelixbytedandomaincontrolpanele-for-github.sentinelone.net/1386.9d1e9f7fa89b22b0.js
|
34.224.32.67
|
||
|
https://xdr.euw31usea1-carbonhelixbytedandomaincontrolpanele-for-github.sentinelone.net/5154.f7d224583c157e98.js
|
34.224.32.67
|
||
|
https://agent.pendo.io/licenses
|
unknown
|
||
|
https://xdr.euw31usea1-carbonhelixbytedandomaincontrolpanele-for-github.sentinelone.net/web/api/v2.1/private/users/my-token
|
34.224.32.67
|
||
|
https://xdr.euw31usea1-carbonhelixbytedandomaincontrolpanele-for-github.sentinelone.net/assets/images/login/login_background.webp
|
34.224.32.67
|
||
|
https://xdr.euw31usea1-carbonhelixbytedandomaincontrolpanele-for-github.sentinelone.net/2235.68099ceb40c6f365.js
|
34.224.32.67
|
||
|
https://xdr.euw31usea1-carbonhelixbytedandomaincontrolpanele-for-github.sentinelone.net/1008.4dd2d1e9635a1ca5.js
|
34.224.32.67
|
||
|
https://xdr.euw31usea1-carbonhelixbytedandomaincontrolpanele-for-github.sentinelone.net/181.fa77e28fa058cf74.js
|
34.224.32.67
|
||
|
https://xdr.euw31usea1-carbonhelixbytedandomaincontrolpanele-for-github.sentinelone.net/5182.a5e27b2ed62a83e8.js
|
34.224.32.67
|
||
|
https://xdr.euw31usea1-carbonhelixbytedandomaincontrolpanele-for-github.sentinelone.net/
|
|||
|
https://xdr.euw31usea1-carbonhelixbytedandomaincontrolpanele-for-github.sentinelone.net/6044.5ce1eb115fdbccdb.js
|
34.224.32.67
|
||
|
https://cdn.sentinelone.net
|
unknown
|
||
|
https://xdr.euw31usea1-carbonhelixbytedandomaincontrolpanele-for-github.sentinelone.net/polyfills.0ce139978f82e549.js
|
34.224.32.67
|
||
|
https://xdr.euw31usea1-carbonhelixbytedandomaincontrolpanele-for-github.sentinelone.net/assets/locales/en/login-main-login-form.json
|
34.224.32.67
|
||
|
https://xdr.euw31usea1-carbonhelixbytedandomaincontrolpanele-for-github.sentinelone.net/2341.c933240f90a070a1.js
|
34.224.32.67
|
||
|
https://feedback.us.pendo.io
|
unknown
|
||
|
https://xdr.euw31usea1-carbonhelixbytedandomaincontrolpanele-for-github.sentinelone.net/4114.bafd25d735f5bf97.js
|
34.224.32.67
|
||
|
https://xdr.euw31usea1-carbonhelixbytedandomaincontrolpanele-for-github.sentinelone.net/ngsw-worker.js
|
34.224.32.67
|
||
|
https://xdr.euw31usea1-carbonhelixbytedandomaincontrolpanele-for-github.sentinelone.net/4774.9ed4dc02f4ea8826.js
|
34.224.32.67
|
||
|
https://xdr.euw31usea1-carbonhelixbytedandomaincontrolpanele-for-github.sentinelone.net/favicon.ico
|
34.224.32.67
|
||
|
https://xdr.euw31usea1-carbonhelixbytedandomaincontrolpanele-for-github.sentinelone.net/4674.a6042ff8e1d3ef33.js
|
34.224.32.67
|
||
|
https://xdr.euw31usea1-carbonhelixbytedandomaincontrolpanele-for-github.sentinelone.net/6109.2e72ca19fbd707a4.js
|
34.224.32.67
|
||
|
https://xdr.euw31usea1-carbonhelixbytedandomaincontrolpanele-for-github.sentinelone.net/2595.ba47ae0d38a98147.js
|
34.224.32.67
|
||
|
https://xdr.euw31usea1-carbonhelixbytedandomaincontrolpanele-for-github.sentinelone.net/4840.e54d74aabf0f1db4.js
|
34.224.32.67
|
||
|
https://xdr.euw31usea1-carbonhelixbytedandomaincontrolpanele-for-github.sentinelone.net/5749.c15f7badd0f7b921.js
|
34.224.32.67
|
||
|
https://xdr.euw31usea1-carbonhelixbytedandomaincontrolpanele-for-github.sentinelone.net/1410.356fcb31b2e54bd9.js
|
34.224.32.67
|
||
|
https://xdr.euw31usea1-carbonhelixbytedandomaincontrolpanele-for-github.sentinelone.net/3181.1f0b0d1817c24692.js
|
34.224.32.67
|
||
|
https://xdr.euw31usea1-carbonhelixbytedandomaincontrolpanele-for-github.sentinelone.net/5405.15c884461bed1689.js
|
34.224.32.67
|
||
|
https://xdr.euw31usea1-carbonhelixbytedandomaincontrolpanele-for-github.sentinelone.net/3481.3668918514e6fdd2.js
|
34.224.32.67
|
||
|
https://xdr.euw31usea1-carbonhelixbytedandomaincontrolpanele-for-github.sentinelone.net/ngsw.json?ngsw-cache-bust=0.4596868262996825
|
34.224.32.67
|
||
|
https://xdr.euw31usea1-carbonhelixbytedandomaincontrolpanele-for-github.sentinelone.net/assets/locales/en/login.json
|
34.224.32.67
|
||
|
https://xdr.euw31usea1-carbonhelixbytedandomaincontrolpanele-for-github.sentinelone.net/4896.1bbad4aa3245c33f.js
|
34.224.32.67
|
||
|
https://xdr.euw31usea1-carbonhelixbytedandomaincontrolpanele-for-github.sentinelone.net/5275.1f910e7a75bf9e9a.js
|
34.224.32.67
|
||
|
https://xdr.euw31usea1-carbonhelixbytedandomaincontrolpanele-for-github.sentinelone.net/6057.0c5d22361f796ec2.js
|
34.224.32.67
|
||
|
https://xdr.euw31usea1-carbonhelixbytedandomaincontrolpanele-for-github.sentinelone.net/4348.c4c4c8b5af0dab06.js
|
34.224.32.67
|
||
|
https://angular.io/license
|
unknown
|
||
|
https://api.feedback.us.pendo.io
|
unknown
|
||
|
https://xdr.euw31usea1-carbonhelixbytedandomaincontrolpanele-for-github.sentinelone.net/4096.0b528c268bcd177f.js
|
34.224.32.67
|
||
|
https://usea1-cs1.sentinelone.net/
|
unknown
|
||
|
https://xdr.euw31usea1-carbonhelixbytedandomaincontrolpanele-for-github.sentinelone.net/styles.7b39e0462e103cee.css
|
34.224.32.67
|
There are 62 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
xdr.euw31usea1-carbonhelixbytedandomaincontrolpanele-for-github.sentinelone.net
|
unknown
|
|
|
|
cdn.pendo.io
|
34.36.213.229
|
||
|
www.google.com
|
172.217.16.196
|
||
|
login.sentinelone.net
|
34.224.32.67
|
||
|
fp2e7a.wpc.phicdn.net
|
192.229.221.95
|
||
|
windowsupdatebg.s.llnwi.net
|
87.248.204.0
|
||
|
206.23.85.13.in-addr.arpa
|
unknown
|
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
142.250.186.68
|
unknown
|
United States
|
||
|
34.224.32.67
|
login.sentinelone.net
|
United States
|
||
|
34.36.213.229
|
cdn.pendo.io
|
United States
|
||
|
192.168.2.5
|
unknown
|
unknown
|
||
|
192.168.2.11
|
unknown
|
unknown
|
||
|
239.255.255.250
|
unknown
|
Reserved
|
||
|
172.217.16.196
|
www.google.com
|
United States
|
DOM / HTML
|
URL
|
Malicious
|
|
|---|---|---|
|
https://xdr.euw31usea1-carbonhelixbytedandomaincontrolpanele-for-github.sentinelone.net/login
|
|
|
|
https://xdr.euw31usea1-carbonhelixbytedandomaincontrolpanele-for-github.sentinelone.net/
|
||
|
https://xdr.euw31usea1-carbonhelixbytedandomaincontrolpanele-for-github.sentinelone.net/
|