IOC Report
http://www.klinch.ch//

loading gif

Files

File Path
Type
Category
Malicious
Chrome Cache Entry: 48
HTML document, Unicode text, UTF-8 text, with very long lines (43720)
downloaded
Chrome Cache Entry: 49
ASCII text, with very long lines (32017)
downloaded
Chrome Cache Entry: 50
MS Windows icon resource - 4 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel
downloaded
Chrome Cache Entry: 51
Web Open Font Format, CFF, length 8968, version 0.0
downloaded
Chrome Cache Entry: 52
MS Windows icon resource - 4 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel
dropped
Chrome Cache Entry: 53
Unicode text, UTF-8 text, with very long lines (65511), with no line terminators
downloaded
Chrome Cache Entry: 54
Web Open Font Format, TrueType, length 33108, version 0.0
downloaded
Chrome Cache Entry: 55
ASCII text
downloaded
Chrome Cache Entry: 56
Unicode text, UTF-8 text, with very long lines (65511), with no line terminators
dropped

Processes

Path
Cmdline
Malicious
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2080 --field-trial-handle=1968,i,9149734560668261207,11342347470763310604,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" "http://www.klinch.ch//"

URLs

Name
IP
Malicious
http://www.klinch.ch//
http://www.openjs.com/scripts/events/keyboard_shortcuts/
unknown
https://static.cargo.site/assets/social/IconFont-Regular-0.9.3.woff2);unicode-range:U
unknown
https://knoppkniel.com/
https://files.cargocollective.com/c297512/SimplonMono-Bold.woff
unknown
https://static.cargo.site/assets/builds/apipackage.min.js?c=3680624028&
108.138.26.24
https://files.cargocollective.com/c912954/UntitledSans-Light.woff
18.66.122.53
https://freight.cargo.site/t/original/i/bbdbde43edff00cef394f526e4aa52a330d7d2404d1ae9bf46248f4d6dee1b05/Knopp-Kniel_Logo_03_SM-Profilbild.ico
18.66.102.32
http://my.opera.com/emoller/blog/2011/12/20/requestanimationframe-for-smart-er-animating
unknown
http://underscorejs.org
unknown
http://paulirish.com/2011/requestanimationframe-for-smart-animating/
unknown
https://knoppkniel.com/rss
unknown
https://www.klinch.ch//
149.126.4.35
http://www.kreab.ch
unknown
https://freight.cargo.site/t/original/i/bbdbde43edff00cef394f526e4aa52a330d7d2404d1ae9bf46248f4d6dee
unknown
https://gist.github.com/paulirish/1579671
unknown
https://files.cargocollective.com/c912954/EXIL71.woff
18.66.122.53
http://mycrobez.ch
unknown
https://knoppkniel.com/stylesheet?c=3680624028&1667768525
3.234.189.133
https://static.cargo.site/libs/cargo.apicore.package.jquery213.min.js?c=3680624028&
108.138.26.24
https://freight.cargo.site/t/original/i/a94d232419ac482dc8d9158e37e400c30b62a5937e69fe7a397c42c98920
unknown
https://www.knoppkniel.com/
3.234.189.133
http://knoppkniel.com/DSGVO
unknown
https://freight.cargo.site
unknown
https://linktr.ee/beatjans/
unknown
https://freight.cargo.site/t/original/i/6cad674aaac5565bd86cf9a53dd0fd8a6a4d4385dffcaedab2bde6db0afe
unknown
http://www.opensource.org/licenses/mit-license.php
unknown
http://github.com/guillaumebort/jquery-ndd
unknown
http://handlebarsjs.com/
unknown
https://cargo.site
unknown
https://static.cargo.site/assets/social/IconFont-Regular-0.9.3.woff2);font-weight:240;unicode-range:
unknown
http://www.klinch.ch//
149.126.4.35
http://www.appelsiini.net/projects/viewport
unknown
http://backbonejs.org
unknown
https://github.com/wycats/handlebars.js/
unknown
https://freight.cargo.site/t/original/i/3e0f31d2c2d18c0ba9c7ebde308e9d83e5e170856ff2ab3e6ecf1bf3c1ec
unknown
https://freight.cargo.site/t/original/i/011303f7ffb6538d471ce0b4b2bdc8e51eecf2e1635e36121c93e74f20e7
unknown
https://static.cargo.site/assets/images/select-arrows.svg)
unknown
https://freight.cargo.site/i/0635f5f8950bff425ad77f5eb1cd23570ab5977db715608bf7fc03657c8beaee/Knopp-
unknown
https://knoppkniel.com
unknown
https://static.cargo.site/assets/social/IconFont-Regular-0.9.3.woff2
unknown
https://freight.cargo.site/t/original/i/c02b9d461c3a1d7756aed90c539ab62f77464bd5cfa0b52008dc9573fc15
unknown
https://static.cargo.site
unknown
There are 32 hidden URLs, click here to show them.

Domains

Name
IP
Malicious
bg.microsoft.map.fastly.net
199.232.214.172
d3fqahajli23b9.cloudfront.net
108.138.26.24
knoppkniel.com
3.234.189.133
klinch.ch
149.126.4.35
www.knoppkniel.com
3.234.189.133
d13notcisdyxg7.cloudfront.net
18.66.122.53
www.google.com
172.217.18.100
d3q7swlkq70mfj.cloudfront.net
18.66.102.32
fp2e7a.wpc.phicdn.net
192.229.221.95
freight.cargo.site
unknown
www.klinch.ch
unknown
static.cargo.site
unknown
files.cargocollective.com
unknown
There are 3 hidden domains, click here to show them.

IPs

IP
Domain
Country
Malicious
18.66.102.32
d3q7swlkq70mfj.cloudfront.net
United States
18.239.69.34
unknown
United States
192.168.2.8
unknown
unknown
192.168.2.7
unknown
unknown
192.168.2.6
unknown
unknown
239.255.255.250
unknown
Reserved
3.234.189.133
knoppkniel.com
United States
108.138.26.24
d3fqahajli23b9.cloudfront.net
United States
149.126.4.35
klinch.ch
Switzerland
172.217.18.100
www.google.com
United States
18.66.122.53
d13notcisdyxg7.cloudfront.net
United States
18.245.199.23
unknown
United States
There are 2 hidden IPs, click here to show them.

DOM / HTML

URL
Malicious
https://knoppkniel.com/