Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Mon Oct 28 09:30:14 2024, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Mon Oct 28 09:30:14 2024, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Mon Oct 28 09:30:14 2024, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
|
Chrome Cache Entry: 173
|
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 175
|
ASCII text, with very long lines (11766), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 176
|
Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 177
|
ASCII text, with very long lines (7625)
|
dropped
|
||
|
Chrome Cache Entry: 178
|
HTML document, Unicode text, UTF-8 text
|
downloaded
|
||
|
Chrome Cache Entry: 180
|
ASCII text, with very long lines (967)
|
dropped
|
||
|
Chrome Cache Entry: 181
|
PNG image data, 31 x 2, 8-bit/color RGB, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 182
|
JSON data
|
dropped
|
||
|
Chrome Cache Entry: 183
|
ASCII text, with very long lines (48395)
|
downloaded
|
||
|
Chrome Cache Entry: 185
|
ASCII text, with very long lines (28287)
|
downloaded
|
||
|
Chrome Cache Entry: 186
|
ASCII text, with very long lines (8056)
|
dropped
|
||
|
Chrome Cache Entry: 187
|
ASCII text, with very long lines (1835)
|
dropped
|
||
|
Chrome Cache Entry: 188
|
SVG Scalable Vector Graphics image
|
downloaded
|
||
|
Chrome Cache Entry: 189
|
Unicode text, UTF-8 text, with very long lines (61934), with no line terminators
|
dropped
|
||
|
Chrome Cache Entry: 190
|
Unicode text, UTF-8 text, with very long lines (65445)
|
downloaded
|
||
|
Chrome Cache Entry: 191
|
PNG image data, 410 x 400, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 192
|
JSON data
|
dropped
|
||
|
Chrome Cache Entry: 194
|
ASCII text, with very long lines (871)
|
dropped
|
||
|
Chrome Cache Entry: 198
|
Unicode text, UTF-8 text, with CRLF line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 202
|
Unicode text, UTF-8 (with BOM) text, with very long lines (13123), with CRLF line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 203
|
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 204
|
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 207
|
ASCII text, with very long lines (47671)
|
downloaded
|
||
|
Chrome Cache Entry: 208
|
ASCII text, with very long lines (39553), with CRLF line terminators
|
dropped
|
||
|
Chrome Cache Entry: 209
|
ASCII text, with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 211
|
ASCII text, with very long lines (352), with CRLF line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 212
|
ASCII text, with very long lines (61300)
|
downloaded
|
||
|
Chrome Cache Entry: 213
|
PNG image data, 2 x 2, 8-bit/color RGB, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 214
|
ASCII text, with very long lines (25293)
|
dropped
|
||
|
Chrome Cache Entry: 215
|
ASCII text, with very long lines (64632), with CRLF line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 216
|
ASCII text, with very long lines (65536), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 217
|
JSON data
|
dropped
|
||
|
Chrome Cache Entry: 219
|
ASCII text, with very long lines (39862)
|
dropped
|
||
|
Chrome Cache Entry: 221
|
ASCII text, with very long lines (540), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 223
|
JSON data
|
dropped
|
||
|
Chrome Cache Entry: 227
|
JSON data
|
downloaded
|
||
|
Chrome Cache Entry: 228
|
PNG image data, 10 x 10, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 229
|
ASCII text, with very long lines (64184)
|
dropped
|
||
|
Chrome Cache Entry: 232
|
ASCII text, with very long lines (6203)
|
dropped
|
||
|
Chrome Cache Entry: 236
|
assembler source, ASCII text, with CRLF line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 237
|
JSON data
|
downloaded
|
||
|
Chrome Cache Entry: 239
|
C++ source, ASCII text, with very long lines (8606)
|
downloaded
|
||
|
Chrome Cache Entry: 240
|
ASCII text, with very long lines (361), with no line terminators
|
dropped
|
||
|
Chrome Cache Entry: 242
|
JSON data
|
dropped
|
||
|
Chrome Cache Entry: 246
|
ASCII text, with very long lines (54049)
|
downloaded
|
||
|
Chrome Cache Entry: 247
|
ASCII text, with very long lines (65393), with CRLF line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 251
|
ASCII text, with very long lines (383)
|
dropped
|
||
|
Chrome Cache Entry: 254
|
Unicode text, UTF-8 text, with very long lines (387), with CRLF line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 256
|
ASCII text, with very long lines (8422)
|
downloaded
|
||
|
Chrome Cache Entry: 257
|
ASCII text, with very long lines (42815)
|
downloaded
|
||
|
Chrome Cache Entry: 259
|
HTML document, ASCII text, with very long lines (1238)
|
downloaded
|
||
|
Chrome Cache Entry: 263
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
There are 46 hidden files, click here to show them.
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
https://ferrumzks.powerappsportals.com/
|
|||
|
https://ferrumzks.byrnemooredocumentattached.sbs/
|
|||
|
https://ferrumzks.byrnemooredocumentattached.sbs/cgi-sys/defaultwebpage.cgi
|
|||
|
https://ferrumzks.powerappsportals.com/
|
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
a.nel.cloudflare.com
|
35.190.80.1
|
||
|
png.pngtree.com
|
104.18.3.157
|
||
|
challenges.cloudflare.com
|
104.18.94.41
|
||
|
s-part-0017.t-0009.t-msedge.net
|
13.107.246.45
|
||
|
ferrumzks.byrnemooredocumentattached.sbs
|
188.114.96.3
|
||
|
www.google.com
|
172.217.18.4
|
||
|
s-part-0032.t-0009.t-msedge.net
|
13.107.246.60
|
||
|
content.powerapps.com
|
unknown
|
||
|
ferrumzks.powerappsportals.com
|
unknown
|
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
142.250.185.67
|
unknown
|
United States
|
||
|
34.104.35.123
|
unknown
|
United States
|
||
|
1.1.1.1
|
unknown
|
Australia
|
||
|
52.178.17.3
|
unknown
|
United States
|
||
|
13.107.246.45
|
s-part-0017.t-0009.t-msedge.net
|
United States
|
||
|
216.58.206.78
|
unknown
|
United States
|
||
|
172.217.18.4
|
www.google.com
|
United States
|
||
|
104.18.94.41
|
challenges.cloudflare.com
|
United States
|
||
|
192.168.2.16
|
unknown
|
unknown
|
||
|
20.107.224.38
|
unknown
|
United States
|
||
|
104.18.95.41
|
unknown
|
United States
|
||
|
13.107.246.60
|
s-part-0032.t-0009.t-msedge.net
|
United States
|
||
|
104.18.2.157
|
unknown
|
United States
|
||
|
142.250.185.227
|
unknown
|
United States
|
||
|
172.217.23.110
|
unknown
|
United States
|
||
|
239.255.255.250
|
unknown
|
Reserved
|
||
|
188.114.97.3
|
unknown
|
European Union
|
||
|
51.116.246.104
|
unknown
|
United Kingdom
|
||
|
188.114.96.3
|
ferrumzks.byrnemooredocumentattached.sbs
|
European Union
|
||
|
104.18.3.157
|
png.pngtree.com
|
United States
|
||
|
35.190.80.1
|
a.nel.cloudflare.com
|
United States
|
||
|
66.102.1.84
|
unknown
|
United States
|
There are 12 hidden IPs, click here to show them.