IOC Report
https://google.com/amp/s/docs.zoom.us/doc/wa4EksmOSPmA2TZMu5KOEA

loading gif

Files

File Path
Type
Category
Malicious
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Oct 25 07:20:20 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
dropped
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Oct 25 07:20:20 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
dropped
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Oct 6 08:05:01 2023, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
dropped
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Oct 25 07:20:20 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
dropped
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Oct 25 07:20:20 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
dropped
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Oct 25 07:20:20 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
dropped
Chrome Cache Entry: 122
JSON data
dropped
Chrome Cache Entry: 123
JSON data
dropped
Chrome Cache Entry: 124
Java source, ASCII text, with very long lines (736)
downloaded
Chrome Cache Entry: 125
ASCII text, with very long lines (9916)
downloaded
Chrome Cache Entry: 126
ASCII text, with very long lines (14669)
downloaded
Chrome Cache Entry: 127
ASCII text, with very long lines (2440)
downloaded
Chrome Cache Entry: 128
JSON data
dropped
Chrome Cache Entry: 129
ASCII text, with very long lines (8926)
downloaded
Chrome Cache Entry: 130
HTML document, ASCII text, with very long lines (31425)
dropped
Chrome Cache Entry: 131
ASCII text, with very long lines (4567)
downloaded
Chrome Cache Entry: 132
Java source, ASCII text, with very long lines (1189)
downloaded
Chrome Cache Entry: 133
ASCII text, with very long lines (7633)
downloaded
Chrome Cache Entry: 135
Java source, ASCII text, with very long lines (369)
downloaded
Chrome Cache Entry: 137
ASCII text
downloaded
Chrome Cache Entry: 138
ASCII text, with very long lines (7490)
downloaded
Chrome Cache Entry: 140
ASCII text, with very long lines (9223)
downloaded
Chrome Cache Entry: 141
Unicode text, UTF-8 text, with very long lines (45492)
dropped
Chrome Cache Entry: 143
Unicode text, UTF-8 text, with very long lines (18648)
downloaded
Chrome Cache Entry: 145
ASCII text, with very long lines (11302)
downloaded
Chrome Cache Entry: 146
ASCII text, with very long lines (4174)
downloaded
Chrome Cache Entry: 147
Web Open Font Format (Version 2), TrueType, length 17660, version 1.0
downloaded
Chrome Cache Entry: 148
ASCII text, with very long lines (65536), with no line terminators
dropped
Chrome Cache Entry: 149
ASCII text, with very long lines (7092)
downloaded
Chrome Cache Entry: 151
ASCII text, with very long lines (1032)
downloaded
Chrome Cache Entry: 152
Java source, ASCII text, with very long lines (1602)
downloaded
Chrome Cache Entry: 153
ASCII text, with very long lines (1548)
downloaded
Chrome Cache Entry: 155
ASCII text, with very long lines (30095)
downloaded
Chrome Cache Entry: 156
Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
downloaded
Chrome Cache Entry: 157
PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 158
ASCII text, with very long lines (48514)
downloaded
Chrome Cache Entry: 159
Web Open Font Format (Version 2), TrueType, length 16708, version 1.0
downloaded
Chrome Cache Entry: 160
ASCII text
dropped
Chrome Cache Entry: 161
ASCII text, with very long lines (7450)
downloaded
Chrome Cache Entry: 162
PNG image data, 432 x 432, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 164
HTML document, ASCII text, with very long lines (31425)
downloaded
Chrome Cache Entry: 166
ASCII text, with very long lines (5007)
downloaded
Chrome Cache Entry: 167
Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
downloaded
Chrome Cache Entry: 168
ASCII text, with very long lines (15651)
downloaded
Chrome Cache Entry: 169
ASCII text, with very long lines (43471)
downloaded
Chrome Cache Entry: 170
ASCII text, with very long lines (16888)
downloaded
Chrome Cache Entry: 171
ASCII text, with very long lines (20360)
downloaded
Chrome Cache Entry: 172
JSON data
dropped
Chrome Cache Entry: 173
Unicode text, UTF-8 text, with very long lines (42306)
downloaded
Chrome Cache Entry: 174
Unicode text, UTF-8 text, with very long lines (6163)
downloaded
Chrome Cache Entry: 176
ASCII text, with very long lines (4714)
downloaded
Chrome Cache Entry: 177
ASCII text, with very long lines (10373)
downloaded
Chrome Cache Entry: 178
ASCII text, with very long lines (31773)
downloaded
Chrome Cache Entry: 179
ASCII text, with very long lines (6076)
downloaded
There are 45 hidden files, click here to show them.

URLs

Name
IP
Malicious
https://google.com/amp/s/docs.zoom.us/doc/wa4EksmOSPmA2TZMu5KOEA
https://docs.zoom.us/doc/wa4EksmOSPmA2TZMu5KOEA

Domains

Name
IP
Malicious
google.com
142.250.184.238
a.nel.cloudflare.com
35.190.80.1
edge-log-gateway-web-2f8111e8e5387748.elb.us-east-1.amazonaws.com
170.114.65.138
us.telemetry.zoom.us
170.114.52.83
st1.zoom.us
170.114.46.1
us01-web-va1.zoom.us
170.114.11.83
www.google.com
142.250.185.228
edge-log-gateway-web-158ad3d115123922.elb.us-east-2.amazonaws.com
134.224.0.54
docs.zoom.us
170.114.52.96
log-gateway.zoom.us
unknown
us01docs.zoom.us
unknown
us01docs-va1.zoom.us
unknown
There are 2 hidden domains, click here to show them.

IPs

IP
Domain
Country
Malicious
134.224.0.55
unknown
United States
142.250.185.228
www.google.com
United States
1.1.1.1
unknown
Australia
170.114.52.83
us.telemetry.zoom.us
United States
172.217.16.206
unknown
United States
134.224.0.54
edge-log-gateway-web-158ad3d115123922.elb.us-east-2.amazonaws.com
United States
216.58.206.67
unknown
United States
142.251.5.84
unknown
United States
192.168.2.16
unknown
unknown
170.114.65.138
edge-log-gateway-web-2f8111e8e5387748.elb.us-east-1.amazonaws.com
United States
239.255.255.250
unknown
Reserved
142.250.185.163
unknown
United States
142.250.185.142
unknown
United States
170.114.46.1
st1.zoom.us
United States
170.114.45.1
unknown
United States
142.250.184.238
google.com
United States
170.114.52.96
docs.zoom.us
United States
35.190.80.1
a.nel.cloudflare.com
United States
170.114.11.83
us01-web-va1.zoom.us
United States
There are 9 hidden IPs, click here to show them.