IOC Report
https://ctrk.klclick2.com/l/01JAXCVSZV8VH8J7M4VCN97K2J_2

loading gif

Files

File Path
Type
Category
Malicious
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed Oct 23 21:01:22 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
dropped
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed Oct 23 21:01:22 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
dropped
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Oct 6 08:05:01 2023, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
dropped
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed Oct 23 21:01:22 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
dropped
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed Oct 23 21:01:22 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
dropped
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed Oct 23 21:01:22 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
dropped
Chrome Cache Entry: 131
Web Open Font Format (Version 2), TrueType, length 15396, version 1.0
downloaded
Chrome Cache Entry: 132
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 100x100, components 4
dropped
Chrome Cache Entry: 133
HTML document, ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 134
PNG image data, 236 x 29, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 135
HTML document, Unicode text, UTF-8 text, with very long lines (5264), with CRLF line terminators
dropped
Chrome Cache Entry: 136
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 100x100, components 3
dropped
Chrome Cache Entry: 137
gzip compressed data, was "bv-analytics.js", last modified: Tue Feb 28 07:24:59 2023, max compression, from Unix, original size modulo 2^32 40711
downloaded
Chrome Cache Entry: 138
gzip compressed data, original size modulo 2^32 117295
downloaded
Chrome Cache Entry: 139
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 240x240, components 4
downloaded
Chrome Cache Entry: 140
PNG image data, 18 x 16, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 141
GIF image data, version 89a, 4 x 1
dropped
Chrome Cache Entry: 142
ASCII text, with no line terminators
downloaded
Chrome Cache Entry: 143
PNG image data, 24 x 21, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 144
Web Open Font Format (Version 2), CFF, length 62972, version 1.0
downloaded
Chrome Cache Entry: 145
PNG image data, 257 x 79, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 146
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 240x240, components 4
dropped
Chrome Cache Entry: 147
GIF image data, version 89a, 1 x 1
downloaded
Chrome Cache Entry: 148
GIF image data, version 89a, 11 x 11
downloaded
Chrome Cache Entry: 149
Web Open Font Format (Version 2), CFF, length 61644, version 1.0
downloaded
Chrome Cache Entry: 150
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 40x33, components 3
downloaded
Chrome Cache Entry: 151
ASCII text, with CRLF line terminators
downloaded
Chrome Cache Entry: 152
Web Open Font Format (Version 2), CFF, length 59476, version 1.0
downloaded
Chrome Cache Entry: 153
GIF image data, version 89a, 1 x 1
dropped
Chrome Cache Entry: 154
GIF image data, version 89a, 1 x 1
downloaded
Chrome Cache Entry: 155
PNG image data, 22 x 22, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 156
ASCII text, with very long lines (1077), with no line terminators
dropped
Chrome Cache Entry: 157
GIF image data, version 89a, 1 x 1
dropped
Chrome Cache Entry: 158
PNG image data, 30 x 29, 8-bit/color RGB, non-interlaced
downloaded
Chrome Cache Entry: 159
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 240x240, components 4
downloaded
Chrome Cache Entry: 160
ASCII text, with very long lines (526)
downloaded
Chrome Cache Entry: 161
Unicode text, UTF-8 text, with very long lines (65532), with no line terminators
dropped
Chrome Cache Entry: 162
PNG image data, 7 x 6, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 163
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 240x240, components 4
dropped
Chrome Cache Entry: 164
HTML document, ASCII text, with very long lines (65536), with no line terminators
dropped
Chrome Cache Entry: 165
PNG image data, 8 x 10, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 166
GIF image data, version 89a, 1 x 1
downloaded
Chrome Cache Entry: 167
gzip compressed data, original size modulo 2^32 117295
dropped
Chrome Cache Entry: 168
gzip compressed data, from Unix, original size modulo 2^32 3181
dropped
Chrome Cache Entry: 169
PNG image data, 25 x 15, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 170
ASCII text, with very long lines (571), with CRLF line terminators
downloaded
Chrome Cache Entry: 171
GIF image data, version 89a, 1 x 1
downloaded
Chrome Cache Entry: 172
PNG image data, 22 x 22, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 173
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 240x240, components 4
downloaded
Chrome Cache Entry: 174
PNG image data, 8 x 10, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 175
ASCII text, with very long lines (4845), with no line terminators
dropped
Chrome Cache Entry: 176
PNG image data, 250 x 77, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 177
ASCII text, with no line terminators
downloaded
Chrome Cache Entry: 178
PNG image data, 24 x 21, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 179
ASCII text, with very long lines (65536), with no line terminators
dropped
Chrome Cache Entry: 180
PNG image data, 25 x 24, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 181
Unicode text, UTF-8 text, with very long lines (2258)
downloaded
Chrome Cache Entry: 182
gzip compressed data, original size modulo 2^32 32372
dropped
Chrome Cache Entry: 183
ASCII text, with very long lines (1077), with no line terminators
downloaded
Chrome Cache Entry: 184
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 240x240, components 4
dropped
Chrome Cache Entry: 185
PNG image data, 24 x 21, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 186
PNG image data, 8 x 10, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 187
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 40x33, components 3
dropped
Chrome Cache Entry: 188
GIF image data, version 89a, 1 x 1
downloaded
Chrome Cache Entry: 189
ASCII text, with very long lines (571), with CRLF line terminators
downloaded
Chrome Cache Entry: 190
Unicode text, UTF-8 text, with very long lines (64962), with no line terminators
dropped
Chrome Cache Entry: 191
Unicode text, UTF-8 text, with very long lines (2258)
dropped
Chrome Cache Entry: 192
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 240x240, components 4
downloaded
Chrome Cache Entry: 193
Web Open Font Format (Version 2), CFF, length 58936, version 1.0
downloaded
Chrome Cache Entry: 194
PNG image data, 8 x 10, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 195
GIF image data, version 89a, 1 x 1
dropped
Chrome Cache Entry: 196
GIF image data, version 89a, 4 x 1
downloaded
Chrome Cache Entry: 197
ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 198
PNG image data, 30 x 29, 8-bit/color RGB, non-interlaced
dropped
Chrome Cache Entry: 199
HTML document, ASCII text, with very long lines (720), with CRLF line terminators
downloaded
Chrome Cache Entry: 200
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 240x240, components 4
downloaded
Chrome Cache Entry: 201
ASCII text, with CRLF line terminators
downloaded
Chrome Cache Entry: 202
JSON data
downloaded
Chrome Cache Entry: 203
PNG image data, 24 x 20, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 204
Unicode text, UTF-8 text, with very long lines (64399)
downloaded
Chrome Cache Entry: 205
gzip compressed data, from Unix, original size modulo 2^32 101556
dropped
Chrome Cache Entry: 206
gzip compressed data, was "bv-analytics.js", last modified: Tue Feb 28 07:24:59 2023, max compression, from Unix, original size modulo 2^32 40711
dropped
Chrome Cache Entry: 207
PNG image data, 8 x 10, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 208
ASCII text, with very long lines (526)
dropped
Chrome Cache Entry: 209
ASCII text, with very long lines (13175), with no line terminators
downloaded
Chrome Cache Entry: 210
ASCII text, with very long lines (4845), with no line terminators
downloaded
Chrome Cache Entry: 211
GIF image data, version 89a, 1 x 1
dropped
Chrome Cache Entry: 212
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 240x240, components 4
downloaded
Chrome Cache Entry: 213
GIF image data, version 89a, 92 x 93
dropped
Chrome Cache Entry: 214
PNG image data, 24 x 21, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 215
GIF image data, version 89a, 30 x 32
dropped
Chrome Cache Entry: 216
JSON data
dropped
Chrome Cache Entry: 217
ASCII text, with very long lines (11169), with no line terminators
dropped
Chrome Cache Entry: 218
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 219
gzip compressed data, from Unix, original size modulo 2^32 3181
downloaded
Chrome Cache Entry: 220
GIF image data, version 89a, 1 x 1
downloaded
Chrome Cache Entry: 221
HTML document, ASCII text, with very long lines (1137)
downloaded
Chrome Cache Entry: 222
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 240x240, components 4
dropped
Chrome Cache Entry: 224
ASCII text, with very long lines (16691), with no line terminators
downloaded
Chrome Cache Entry: 225
ASCII text, with very long lines (29577)
downloaded
Chrome Cache Entry: 226
ASCII text, with no line terminators
downloaded
Chrome Cache Entry: 227
PNG image data, 24 x 20, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 228
GIF image data, version 89a, 92 x 93
downloaded
Chrome Cache Entry: 229
GIF image data, version 89a, 16 x 16
downloaded
Chrome Cache Entry: 230
PNG image data, 236 x 29, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 231
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 240x240, components 4
dropped
Chrome Cache Entry: 232
gzip compressed data, from Unix, original size modulo 2^32 101556
downloaded
Chrome Cache Entry: 233
GIF image data, version 89a, 1 x 1
dropped
Chrome Cache Entry: 234
HTML document, ASCII text, with very long lines (1137)
dropped
Chrome Cache Entry: 235
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 240x240, components 4
dropped
Chrome Cache Entry: 236
HTML document, ASCII text, with very long lines (720), with CRLF, LF line terminators
downloaded
Chrome Cache Entry: 237
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 240x240, components 4
downloaded
Chrome Cache Entry: 238
ASCII text, with very long lines (65451)
downloaded
Chrome Cache Entry: 239
GIF image data, version 89a, 4 x 1
dropped
Chrome Cache Entry: 240
GIF image data, version 89a, 11 x 11
dropped
Chrome Cache Entry: 241
HTML document, Unicode text, UTF-8 text, with very long lines (5264), with CRLF line terminators
downloaded
Chrome Cache Entry: 242
ASCII text, with no line terminators
dropped
Chrome Cache Entry: 243
ASCII text, with CRLF line terminators
dropped
Chrome Cache Entry: 244
ASCII text, with very long lines (3835)
dropped
Chrome Cache Entry: 245
JSON data
downloaded
Chrome Cache Entry: 246
Unicode text, UTF-8 text, with very long lines (64399)
dropped
Chrome Cache Entry: 247
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 240x240, components 4
dropped
Chrome Cache Entry: 248
PNG image data, 25 x 15, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 249
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 240x240, components 4
downloaded
Chrome Cache Entry: 250
PNG image data, 22 x 22, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 251
gzip compressed data, was "mkt-widgets.js", last modified: Tue Jul 2 16:05:51 2024, from Unix, original size modulo 2^32 507816
dropped
Chrome Cache Entry: 252
JSON data
dropped
Chrome Cache Entry: 253
GIF image data, version 89a, 15 x 15
downloaded
Chrome Cache Entry: 254
PNG image data, 24 x 21, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 255
ASCII text, with no line terminators
downloaded
Chrome Cache Entry: 256
GIF image data, version 89a, 4 x 1
dropped
Chrome Cache Entry: 257
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 240x240, components 4
dropped
Chrome Cache Entry: 258
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 100x100, components 3
downloaded
Chrome Cache Entry: 259
ASCII text, with no line terminators
dropped
Chrome Cache Entry: 260
GIF image data, version 89a, 1 x 1
downloaded
Chrome Cache Entry: 261
PNG image data, 25 x 17, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 262
gzip compressed data, from Unix, original size modulo 2^32 2230
downloaded
Chrome Cache Entry: 263
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 240x240, components 4
downloaded
Chrome Cache Entry: 264
GIF image data, version 89a, 30 x 32
downloaded
Chrome Cache Entry: 265
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 100x100, components 4
downloaded
Chrome Cache Entry: 266
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 240x240, components 4
downloaded
Chrome Cache Entry: 267
PNG image data, 250 x 77, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 268
PNG image data, 25 x 24, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 269
Web Open Font Format (Version 2), TrueType, length 33092, version 1.0
downloaded
Chrome Cache Entry: 270
JSON data
dropped
Chrome Cache Entry: 271
gzip compressed data, original size modulo 2^32 32372
downloaded
Chrome Cache Entry: 272
ASCII text, with very long lines (3835)
downloaded
Chrome Cache Entry: 273
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 240x240, components 4
dropped
Chrome Cache Entry: 274
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 240x240, components 4
downloaded
Chrome Cache Entry: 275
ASCII text, with very long lines (30837)
downloaded
Chrome Cache Entry: 276
PNG image data, 257 x 79, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 277
ASCII text, with very long lines (5958), with no line terminators
downloaded
Chrome Cache Entry: 278
PNG image data, 22 x 22, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 279
MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel
downloaded
Chrome Cache Entry: 280
GIF image data, version 89a, 4 x 1
downloaded
Chrome Cache Entry: 281
ASCII text, with very long lines (65451)
dropped
Chrome Cache Entry: 282
PNG image data, 24 x 21, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 283
gzip compressed data, was "mkt-widgets.js", last modified: Tue Jul 2 16:05:51 2024, from Unix, original size modulo 2^32 507816
downloaded
Chrome Cache Entry: 284
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 240x240, components 4
dropped
Chrome Cache Entry: 285
PNG image data, 8 x 10, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 286
GIF image data, version 89a, 1 x 1
dropped
Chrome Cache Entry: 287
GIF image data, version 89a, 4 x 1
downloaded
Chrome Cache Entry: 288
MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel
dropped
Chrome Cache Entry: 289
HTML document, ASCII text, with very long lines (720), with CRLF line terminators
dropped
Chrome Cache Entry: 290
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 100x100, components 4
dropped
Chrome Cache Entry: 291
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 100x100, components 3
dropped
Chrome Cache Entry: 292
ASCII text, with very long lines (11169), with no line terminators
downloaded
Chrome Cache Entry: 293
GIF image data, version 89a, 4 x 1
dropped
Chrome Cache Entry: 294
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 240x240, components 4
downloaded
Chrome Cache Entry: 295
PNG image data, 18 x 16, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 296
GIF image data, version 89a, 1 x 1
dropped
Chrome Cache Entry: 297
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 298
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 100x100, components 3
downloaded
Chrome Cache Entry: 299
GIF image data, version 89a, 4 x 1
downloaded
Chrome Cache Entry: 300
gzip compressed data, from Unix, original size modulo 2^32 2230
dropped
Chrome Cache Entry: 301
PNG image data, 8 x 10, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 302
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 100x100, components 4
downloaded
Chrome Cache Entry: 303
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 240x240, components 4
dropped
Chrome Cache Entry: 304
ASCII text, with very long lines (13175), with no line terminators
dropped
Chrome Cache Entry: 305
ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 306
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 240x240, components 4
dropped
Chrome Cache Entry: 307
PNG image data, 22 x 20, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 308
Unicode text, UTF-8 text, with very long lines (65532), with no line terminators
downloaded
Chrome Cache Entry: 309
GIF image data, version 89a, 1 x 1
dropped
Chrome Cache Entry: 310
GIF image data, version 89a, 1 x 1
downloaded
Chrome Cache Entry: 311
PNG image data, 22 x 20, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 312
PNG image data, 7 x 6, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 313
PNG image data, 25 x 17, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 314
GIF image data, version 89a, 15 x 15
dropped
Chrome Cache Entry: 315
Unicode text, UTF-8 text, with very long lines (64962), with no line terminators
downloaded
Chrome Cache Entry: 316
GIF image data, version 89a, 16 x 16
dropped
Chrome Cache Entry: 317
ASCII text, with very long lines (5958), with no line terminators
dropped
Chrome Cache Entry: 318
PNG image data, 8 x 10, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 319
ASCII text, with very long lines (16691), with no line terminators
dropped
Chrome Cache Entry: 320
ASCII text
downloaded
There are 186 hidden files, click here to show them.

Processes

Path
Cmdline
Malicious
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2200 --field-trial-handle=2004,i,1031686611799395412,517448459770975587,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" "https://ctrk.klclick2.com/l/01JAXCVSZV8VH8J7M4VCN97K2J_2"

URLs

Name
IP
Malicious
https://ctrk.klclick2.com/l/01JAXCVSZV8VH8J7M4VCN97K2J_2
https://shop.opnw.com/Cart?ecplus=true
unknown
https://thespot.hon.com/hon/suppliers/hon/eci.asp?session_id=d09eb548-93be-435b-9ded-b21201188885&am
unknown
http://fontawesome.io
unknown
https://network-a.bazaarvoice.com/a.gif?loadId=b28647775363bdc6da5f&tz=240&sourceVersion=3.17.2&magpieJsVersion=3.17.2&source=bv-loader&environment=prod&client=essendant_resellers&dc=21486&host=shop.opnw.com&r_batch=!((bvProduct:InlineRatings,bvProductVersion:%272.6.2%27,cl:Diagnostic,deploymentZone:main_site,detail1:apiRequest,displaySegment:baseline,locale:en_US,name:statisticsJson,type:api))&_=v5v7pv
99.86.4.122
https://stats.g.doubleclick.net/g/collect
unknown
https://content.ecinteractive.com/ecinteractive/CDN/Images/delete_icon.gif
104.18.32.157
https://ds.ecisolutions.com/pixere.com/ECinteractivePlus/OPNW/images/search-icon.jpg)
unknown
https://ds.ecisolutions.com/pixere.com/ECinteractivePlus/OPNW/images/logo-white.png
205.216.10.78
https://content.oppictures.com/Master_Images/Master_Variants/Variant_240/15046180.JPG
152.195.52.62
https://shop.opnw.com/bundles/header?v=eWuvXiK6suz0p4vj6TWJsI7wqZMRS7hurtlQrVV2YqM1
205.216.10.210
https://shop.opnw.com/bundles/approvalForwarding?v=MRpqrRMC8pJVNVp9twMghhILv1ij10YhK6HCK5Mj83w1
205.216.10.210
http://typekit.com/eulas/00000000000000003b9af23b
unknown
http://typekit.com/eulas/00000000000000003b9af23c
unknown
https://ds.ecisolutions.com/pixere.com/ECinteractivePlus/OPNW/images/dot.png)
unknown
http://jqueryui.com
unknown
https://content.oppictures.com/Master_Images/Master_Variants/Variant_100/312016.JPG"
unknown
https://shop.opnw.com/Authentication/Login?returnUrl=%2FSearch%3Fkeyword%3Dtax%2520forms%26utm_campa
unknown
https://content.oppictures.com/Master_Images/Master_Variants/Variant_100/15044232.JPG"
unknown
https://content.oppictures.com/Master_Images/Master_Variants/Variant_240/15045853.JPG
152.195.52.62
https://ds.ecisolutions.com/pixere.com/ECinteractivePlus/OPNW/images/arrow-icon.png)
unknown
https://ds.ecisolutions.com/pixere.com/ECinteractivePlus/OPNW/images/foot-facebook.png
205.216.10.78
https://ds.ecisolutions.com/pixere.com/ECinteractivePlus/OPNW/images/new-email-icon.jpg)
unknown
https://apps.bazaarvoice.com/analytics/bv-analytics.js
3.161.82.75
http://www.klaviyo.com/?utm_campaign=pbk
unknown
https:////content.oppictures.com/Master_Images/Master_Variants/Variant_75/TOPS_LOGO.JPG"
unknown
http://jqueryui.com/themeroller/?ffDefault=Verdana%2CArial%2Csans-serif&fwDefault=normal&fsDefault=1
unknown
https://www.google.com
unknown
https://maxcdn.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css
104.18.10.207
https://content.ecinteractive.com/ecinteractive/CDN/images/spinnerLarge.gif
104.18.32.157
https://shop.opnw.com/Error/NotFound?aspxerrorpath=/Content/grid_view_current.css
205.216.10.210
https://ds.ecisolutions.com/pixere.com/ECinteractivePlus/OPNW/images/cart-icon.png
205.216.10.78
https://content.oppictures.com/Master_Images/Master_Variants/Variant_240/15046233.JPG"
unknown
https://shop.opnw.com/CreditCard/Editor
unknown
https://content.oppictures.com/Master_Images/Master_Variants/Variant_240/15046207.JPG
152.195.52.62
https://ds.ecisolutions.com/pixere.com/ECinteractivePlus/OPNW/images/footer-middle-bg.jpg)
unknown
https://content.oppictures.com/Master_Images/Master_Variants/Variant_240/312016.JPG"
unknown
https://ds.ecisolutions.com/pixere.com/ECinteractivePlus/OPNW/images/foot-twitter.png
205.216.10.78
https://ds.ecisolutions.com/pixere.com/ECinteractivePlus/OPNW/images/web-special-left-arrow.png);bac
unknown
https://use.typekit.net/af/727d5c/00000000000000003b9af236/27/
unknown
https://shop.opnw.com/images/trans.gif?keyword=tax
unknown
https://content.ecinteractive.com/ecinteractive/CDN/images/rTile.png
104.18.32.157
https://shop.opnw.com/bundles/tooltipster?v=7bV3-QygB44mthX3qeCrBeslqHPsho64jeGqRCtwj3w1
205.216.10.210
https://network-a.bazaarvoice.com/a.gif?loadId=b28647775363bdc6da5f&tz=240&sourceVersion=3.17.2&magpieJsVersion=3.17.2&source=bv-loader&environment=prod&client=essendant_resellers&dc=21486&host=shop.opnw.com&r_batch=!((bvProduct:InlineRatings,bvProductVersion:%272.6.2%27,cl:Feature,deploymentZone:main_site,displaySegment:baseline,interaction:%270%27,locale:en_US,name:InView,productId:TOP22906KIT,type:Used),(bvProduct:InlineRatings,bvProductVersion:%272.6.2%27,cl:Feature,deploymentZone:main_site,displaySegment:baseline,interaction:%270%27,locale:en_US,name:InView,productId:TOP22993NEC,type:Used))&_=54f5q3
99.86.4.122
https://content.ecinteractive.com/ecinteractive/CDN/images/checkGreen.png
104.18.32.157
https://shop.opnw.com/bundles/googleAnalytics4?v=5dQEPNmWHrcy-w24BlhKaz75Gbv9w10P7BKhMp2ojfg1
205.216.10.210
https://shop.opnw.com/Home/GetAccountNewsDetails?_=1729720889180
205.216.10.210
https://use.typekit.net/
unknown
https://image.providesupport.com/sjs/static.js
unknown
https://shop.opnw.com/Invoices/ViewInvoices
unknown
https://apps.bazaarvoice.com/deployments/essendant_resellers/main_site/production/en_US/inline_ratings-config.js
3.161.82.75
https://shop.opnw.com/bundles/favorites?v=ojC4p3ConbwHhLlhjMqydWw1dUAMQJXt-E0bCjPYdCc1
205.216.10.210
https://use.typekit.net/af/1bb271/00000000000000003b9af235/27/
unknown
https://content.oppictures.com/Master_Images/Master_Variants/Variant_240/15044205.JPG
152.195.52.62
https://shop.sitonit.net/discount/102875
unknown
https://shop.opnw.com/bundles/jquerymigratenew?v=H2TXag-0Q9yl0JVzTQ7eInQk3nV-wwyTBXc85StC1t01
205.216.10.210
https://apps.bazaarvoice.com/apps/inline_ratings/inline_ratings-2.6.2.js
3.161.82.75
http://typekit.com/eulas/00000000000000003b9af235
unknown
http://typekit.com/eulas/00000000000000003b9af236
unknown
https://shop.opnw.com/Authentication/Login
unknown
https://ds.ecisolutions.com/pixere.com/ECinteractivePlus/OPNW/images/arrow-icon.png
205.216.10.78
https://ds.ecisolutions.com/pixere.com/ECinteractivePlus/OPNW/css/OPNW.css
205.216.10.78
https://shop.opnw.com/Authentication/Login?returnUrl=%2FQuickOrder
unknown
https://shop.opnw.com/RenderCss/Site
205.216.10.210
https://cct.google/taggy/agent.js
unknown
https://ds.ecisolutions.com/pixere.com/ECinteractivePlus/OPNW/images/payemnt-gateway-img.png
205.216.10.78
https://ds.ecisolutions.com/pixere.com/ECinteractivePlus/OPNW/images/foot-email.png
205.216.10.78
https://shop.opnw.com/lp/OPNW-Green
unknown
https://content.ecinteractive.com/ecinteractive/CDN/themes/t03CS01/169.1/cart_icon1.gif
104.18.32.157
https://apps.bazaarvoice.com/deployments/essendant_resellers/main_site/production/en_US/bv.js
3.161.82.75
https://shop.opnw.com/images/trans.gif?aspxerrorpath=/Search/GetAlsoConsider
unknown
https://shop.opnw.com/bundles/priceMethodIcon?v=44gCbnvSLFHD7j5oKNxDYTBemiQ_u65DgS5j17kV_Ts1
205.216.10.210
http://images.ecinteractive.com/webimages/eb503604-b25d-49bc-84b5-a2bd00c4f676/footerhead.png)
unknown
https://network-a.bazaarvoice.com/a.gif?loadId=b28647775363bdc6da5f&tz=240&sourceVersion=3.17.2&magpieJsVersion=3.17.2&source=bv-loader&environment=prod&client=essendant_resellers&dc=21486&host=shop.opnw.com&r_batch=!((bvProduct:InlineRatings,bvProductVersion:%272.6.2%27,cl:Diagnostic,deploymentZone:main_site,detail1:apiSuccess,displaySegment:baseline,locale:en_US,name:statisticsJson,type:api))&_=gzfiyl
99.86.4.122
https://shop.opnw.com/Search?cri=Category%5E_2%5E_0%5E_Furniture%5E_Category%5E_True
unknown
https://apps.bazaarvoice.com/deployments/essendant_resellers/main_site/production/en_US/api-config.js
3.161.82.75
https://ds.ecisolutions.com/pixere.com/ECinteractivePlus/OPNW/images/web-special-right-arrow.png);ol
unknown
https://ds.ecisolutions.com/pixere.com/ECinteractivePlus/OPNW/images/foot-phone.png
205.216.10.78
https://shop.opnw.com/Error/NotFound?aspxerrorpath=/Search/GetAlsoConsider
205.216.10.210
https://content.oppictures.com/Master_Images/Master_Variants/Variant_240/15046198.JPG
152.195.52.62
https://image.providesupport.com
unknown
https://content.oppictures.com/Master_Images/Master_Variants/Variant_240/15046171.JPG
152.195.52.62
https://ds.ecisolutions.com/pixere.com/ECinteractivePlus/OPNW/images/search-icon.jpg
205.216.10.78
https://shop.opnw.com/bundles/Sitemaintenance/autoOffNotification?v=vwswy5ulfGULCzE2--pCDTUMudlQAECVZ-Y9tUepmpc1
205.216.10.210
https://content.ecinteractive.com/ecinteractive/CDN/images/loading_small.gif
104.18.32.157
https://ds.ecisolutions.com/pixere.com/ECinteractivePlus/OPNW/images/foot-linkedin.png
205.216.10.78
https://ds.ecisolutions.com/pixere.com/ECinteractivePlus/OPNW/images/foot-instagram.png
205.216.10.78
http://images.ecinteractive.com/webimages/eb503604-b25d-49bc-84b5-a2bd00c4f676/email.jpg)
unknown
http://images.ecinteractive.com/webimages/eb503604-b25d-49bc-84b5-a2bd00c4f676/site-news.jpg)
unknown
https://content.oppictures.com/Master_Images/Master_Variants/Variant_240/15046234.JPG
152.195.52.62
https://ds.ecisolutions.com/pixere.com/ECinteractivePlus/OPNW/images/dot-active.png)
unknown
https://content.oppictures.com/Master_Images/Master_Variants/Variant_240/15045704.JPG
152.195.52.62
https://shop.opnw.com/images/trans.gif?aspxerrorpath=/Content/grid_view_current.css
unknown
https://network-a.bazaarvoice.com/a.gif?loadId=b28647775363bdc6da5f&tz=240&sourceVersion=3.17.2&magpieJsVersion=3.17.2&source=bv-loader&environment=prod&client=essendant_resellers&dc=21486&host=shop.opnw.com&r_batch=!((bvProduct:InlineRatings,bvProductVersion:%272.6.2%27,cl:Feature,deploymentZone:main_site,displaySegment:baseline,interaction:%270%27,locale:en_US,name:InView,productId:TOP22905KITNEC,type:Used))&_=dwf0ka
99.86.4.122
https://ds.ecisolutions.com/pixere.com/ECinteractivePlus/OPNW/images/cart-icon.png)
unknown
https://content.ecinteractive.com/ecinteractive/CDN/images/icon_error.png
104.18.32.157
https://ds.ecisolutions.com/pixere.com/ECinteractivePlus/OPNW/images/logo.png
205.216.10.78
https://messenger.providesupport.com
unknown
https://apps.bazaarvoice.com/apps/api/api-0.8.2.js
3.161.82.75
https://content.oppictures.com/Master_Images/Master_Variants/Variant_240/15046208.JPG
152.195.52.62
https://ds.ecisolutions.com/pixere.com/ECinteractivePlus/OPNW/images/topbannerloginbg.png)
unknown
There are 90 hidden URLs, click here to show them.

Domains

Name
IP
Malicious
s3-w.us-east-1.amazonaws.com
54.231.165.145
d3rpajgr3c5p5n.cloudfront.net
3.161.82.75
api.essendant.com
74.115.189.45
shop.opnw.com
205.216.10.210
bazaarvoice-prod-01.dn.apigee.net
34.251.187.74
maxcdn.bootstrapcdn.com
104.18.10.207
network-a.bazaarvoice.com
99.86.4.122
www.google.com
142.250.186.36
ds.ecisolutions.com
205.216.10.78
widgets.essendant.com
74.115.189.80
content.ecinteractive.com
104.18.32.157
cs548.adn.nucdn.net
152.195.52.62
api.bazaarvoice.com
unknown
use.typekit.net
unknown
content.oppictures.com
unknown
image.providesupport.com
unknown
pixprod1.s3.amazonaws.com
unknown
ctrk.klclick2.com
unknown
p.typekit.net
unknown
www.klaviyo.com
unknown
apps.bazaarvoice.com
unknown
There are 11 hidden domains, click here to show them.

IPs

IP
Domain
Country
Malicious
54.231.165.145
s3-w.us-east-1.amazonaws.com
United States
99.86.4.122
network-a.bazaarvoice.com
United States
3.161.82.75
d3rpajgr3c5p5n.cloudfront.net
United States
205.216.10.78
ds.ecisolutions.com
United States
104.18.10.207
maxcdn.bootstrapcdn.com
United States
192.168.2.16
unknown
unknown
16.182.72.25
unknown
United States
152.195.52.62
cs548.adn.nucdn.net
United States
104.18.32.157
content.ecinteractive.com
United States
74.115.189.80
widgets.essendant.com
United States
74.115.189.45
api.essendant.com
United States
3.161.82.20
unknown
United States
142.250.186.36
www.google.com
United States
34.251.187.74
bazaarvoice-prod-01.dn.apigee.net
United States
239.255.255.250
unknown
Reserved
205.216.10.210
shop.opnw.com
United States
There are 6 hidden IPs, click here to show them.

DOM / HTML

URL
Malicious
https://shop.opnw.com/Search?keyword=tax%20forms&utm_campaign=tax%20forms%20%2801JAXARMM4NXDE8VMYNWXZ13MQ%29&utm_medium=email&utm_source=OPNW&_kx=_nGfGQiHug_42GlmQrsDDroCjmfLwaqOW89dA0S8mdWODy3XEt4CdHPiW4I165z_.TtPzUP
https://shop.opnw.com/Search?keyword=tax%20forms&utm_campaign=tax%20forms%20%2801JAXARMM4NXDE8VMYNWXZ13MQ%29&utm_medium=email&utm_source=OPNW&_kx=_nGfGQiHug_42GlmQrsDDroCjmfLwaqOW89dA0S8mdWODy3XEt4CdHPiW4I165z_.TtPzUP
https://shop.opnw.com/Search?keyword=tax%20forms&utm_campaign=tax%20forms%20%2801JAXARMM4NXDE8VMYNWXZ13MQ%29&utm_medium=email&utm_source=OPNW&_kx=_nGfGQiHug_42GlmQrsDDroCjmfLwaqOW89dA0S8mdWODy3XEt4CdHPiW4I165z_.TtPzUP
https://shop.opnw.com/Search?keyword=tax%20forms&utm_campaign=tax%20forms%20%2801JAXARMM4NXDE8VMYNWXZ13MQ%29&utm_medium=email&utm_source=OPNW&_kx=_nGfGQiHug_42GlmQrsDDroCjmfLwaqOW89dA0S8mdWODy3XEt4CdHPiW4I165z_.TtPzUP