IOC Report
http://casey.marquette@cybertrustnetwork.com/

loading gif

Files

File Path
Type
Category
Malicious
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed Oct 23 14:59:44 2024, atime=Mon Oct 2 20:46:57 2023, length=1210144, window=hide
dropped
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed Oct 23 14:59:44 2024, atime=Mon Oct 2 20:46:57 2023, length=1210144, window=hide
dropped
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Oct 6 08:54:41 2023, atime=Mon Oct 2 20:46:57 2023, length=1210144, window=hide
dropped
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed Oct 23 14:59:44 2024, atime=Mon Oct 2 20:46:57 2023, length=1210144, window=hide
dropped
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed Oct 23 14:59:44 2024, atime=Mon Oct 2 20:46:57 2023, length=1210144, window=hide
dropped
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed Oct 23 14:59:44 2024, atime=Mon Oct 2 20:46:57 2023, length=1210144, window=hide
dropped

URLs

Name
IP
Malicious
http://casey.marquette@cybertrustnetwork.com/
https://casey.marquette@cybertrustnetwork.com/

Domains

Name
IP
Malicious
worker.clerkprod-cloudflare.net
104.18.0.101
assets.apollo.io
172.67.2.155
challenges.cloudflare.com
104.18.94.41
cybertrustnetwork.com
34.228.48.36
app.termly.io
104.18.31.234
www.google.com
142.250.186.68
aplo-evnt.com
34.107.133.146
domains.rewardful.com
161.35.235.194
affiliates.cybertrustnetwork.com
unknown
snap.licdn.com
unknown
www.linkedin.com
unknown
img.clerk.com
unknown
clerk.cybertrustnetwork.com
unknown
px.ads.linkedin.com
unknown
There are 4 hidden domains, click here to show them.

IPs

IP
Domain
Country
Malicious
142.250.186.68
www.google.com
United States
17.32.194.37
unknown
United States
142.250.74.206
unknown
United States
142.250.186.174
unknown
United States
192.168.2.17
unknown
unknown
142.250.185.200
unknown
United States
104.18.94.41
challenges.cloudflare.com
United States
172.217.23.106
unknown
United States
192.168.2.18
unknown
unknown
104.18.0.101
worker.clerkprod-cloudflare.net
United States
104.18.1.101
unknown
United States
54.144.220.28
unknown
United States
172.67.2.155
assets.apollo.io
United States
161.35.235.194
domains.rewardful.com
United States
142.250.184.200
unknown
United States
88.221.110.136
unknown
European Union
104.18.41.41
unknown
United States
1.1.1.1
unknown
Australia
104.18.31.234
app.termly.io
United States
108.177.15.84
unknown
United States
172.217.16.206
unknown
United States
142.250.186.163
unknown
United States
2.16.164.10
unknown
European Union
104.18.23.132
unknown
United States
104.18.95.41
unknown
United States
104.20.40.213
unknown
United States
13.107.42.14
unknown
United States
216.58.206.46
unknown
United States
142.250.185.170
unknown
United States
239.255.255.250
unknown
Reserved
104.18.30.234
unknown
United States
23.215.17.144
unknown
United States
34.107.133.146
aplo-evnt.com
United States
104.18.22.132
unknown
United States
2.23.196.201
unknown
European Union
172.217.16.195
unknown
United States
104.20.39.213
unknown
United States
34.228.48.36
cybertrustnetwork.com
United States
There are 28 hidden IPs, click here to show them.