Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
Chrome Cache Entry: 110
|
data
|
dropped
|
||
|
Chrome Cache Entry: 111
|
HTML document, ASCII text, with very long lines (64037), with CRLF line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 112
|
Java source, ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 113
|
data
|
downloaded
|
||
|
Chrome Cache Entry: 114
|
data
|
downloaded
|
||
|
Chrome Cache Entry: 115
|
data
|
downloaded
|
||
|
Chrome Cache Entry: 116
|
data
|
dropped
|
||
|
Chrome Cache Entry: 117
|
data
|
dropped
|
||
|
Chrome Cache Entry: 118
|
data
|
dropped
|
||
|
Chrome Cache Entry: 119
|
Applesoft BASIC program data, first line number 43
|
downloaded
|
||
|
Chrome Cache Entry: 120
|
gzip compressed data, from Unix, original size modulo 2^32 788
|
dropped
|
||
|
Chrome Cache Entry: 121
|
data
|
dropped
|
||
|
Chrome Cache Entry: 122
|
data
|
downloaded
|
||
|
Chrome Cache Entry: 123
|
data
|
downloaded
|
||
|
Chrome Cache Entry: 124
|
data
|
dropped
|
||
|
Chrome Cache Entry: 125
|
data
|
dropped
|
||
|
Chrome Cache Entry: 126
|
data
|
dropped
|
||
|
Chrome Cache Entry: 127
|
data
|
dropped
|
||
|
Chrome Cache Entry: 128
|
data
|
dropped
|
||
|
Chrome Cache Entry: 129
|
data
|
dropped
|
||
|
Chrome Cache Entry: 130
|
data
|
dropped
|
||
|
Chrome Cache Entry: 131
|
data
|
dropped
|
||
|
Chrome Cache Entry: 132
|
data
|
dropped
|
||
|
Chrome Cache Entry: 133
|
data
|
downloaded
|
||
|
Chrome Cache Entry: 134
|
data
|
dropped
|
||
|
Chrome Cache Entry: 135
|
gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), original size modulo 2^32 145420
|
dropped
|
||
|
Chrome Cache Entry: 136
|
MS Windows icon resource - 3 icons, 32x32, 32 bits/pixel, 24x24, 32 bits/pixel
|
downloaded
|
||
|
Chrome Cache Entry: 137
|
data
|
dropped
|
||
|
Chrome Cache Entry: 138
|
data
|
downloaded
|
||
|
Chrome Cache Entry: 139
|
data
|
dropped
|
||
|
Chrome Cache Entry: 140
|
data
|
downloaded
|
||
|
Chrome Cache Entry: 141
|
data
|
downloaded
|
||
|
Chrome Cache Entry: 142
|
data
|
downloaded
|
||
|
Chrome Cache Entry: 143
|
data
|
dropped
|
||
|
Chrome Cache Entry: 144
|
data
|
dropped
|
||
|
Chrome Cache Entry: 145
|
data
|
downloaded
|
||
|
Chrome Cache Entry: 146
|
gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), original size modulo 2^32 17147
|
dropped
|
||
|
Chrome Cache Entry: 147
|
MS Windows icon resource - 3 icons, 32x32, 32 bits/pixel, 24x24, 32 bits/pixel
|
dropped
|
||
|
Chrome Cache Entry: 148
|
data
|
dropped
|
||
|
Chrome Cache Entry: 149
|
data
|
downloaded
|
||
|
Chrome Cache Entry: 150
|
data
|
downloaded
|
||
|
Chrome Cache Entry: 151
|
JSON data
|
dropped
|
||
|
Chrome Cache Entry: 152
|
data
|
downloaded
|
||
|
Chrome Cache Entry: 153
|
data
|
dropped
|
||
|
Chrome Cache Entry: 154
|
data
|
dropped
|
||
|
Chrome Cache Entry: 155
|
data
|
dropped
|
||
|
Chrome Cache Entry: 156
|
data
|
dropped
|
||
|
Chrome Cache Entry: 157
|
data
|
downloaded
|
||
|
Chrome Cache Entry: 158
|
data
|
dropped
|
||
|
Chrome Cache Entry: 159
|
Web Open Font Format, TrueType, length 15152, version 1.3277
|
downloaded
|
||
|
Chrome Cache Entry: 160
|
PNG image data, 144 x 144, 8-bit colormap, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 161
|
data
|
dropped
|
||
|
Chrome Cache Entry: 162
|
TeX font metric data (\333\326w\244\321\213\204\020\316\350\204c\271)
|
dropped
|
||
|
Chrome Cache Entry: 163
|
data
|
downloaded
|
||
|
Chrome Cache Entry: 164
|
data
|
downloaded
|
||
|
Chrome Cache Entry: 165
|
data
|
downloaded
|
||
|
Chrome Cache Entry: 166
|
data
|
dropped
|
||
|
Chrome Cache Entry: 167
|
data
|
dropped
|
||
|
Chrome Cache Entry: 168
|
data
|
downloaded
|
||
|
Chrome Cache Entry: 169
|
data
|
downloaded
|
||
|
Chrome Cache Entry: 170
|
data
|
dropped
|
||
|
Chrome Cache Entry: 171
|
gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), original size modulo 2^32 30974
|
dropped
|
||
|
Chrome Cache Entry: 172
|
data
|
dropped
|
||
|
Chrome Cache Entry: 173
|
data
|
downloaded
|
||
|
Chrome Cache Entry: 174
|
data
|
dropped
|
||
|
Chrome Cache Entry: 175
|
data
|
dropped
|
||
|
Chrome Cache Entry: 176
|
data
|
downloaded
|
||
|
Chrome Cache Entry: 177
|
gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), original size modulo 2^32 30974
|
downloaded
|
||
|
Chrome Cache Entry: 178
|
gzip compressed data, from Unix, original size modulo 2^32 788
|
downloaded
|
||
|
Chrome Cache Entry: 179
|
data
|
downloaded
|
||
|
Chrome Cache Entry: 180
|
data
|
dropped
|
||
|
Chrome Cache Entry: 181
|
gzip compressed data, from Unix, original size modulo 2^32 1295
|
dropped
|
||
|
Chrome Cache Entry: 182
|
data
|
downloaded
|
||
|
Chrome Cache Entry: 183
|
data
|
dropped
|
||
|
Chrome Cache Entry: 184
|
data
|
dropped
|
||
|
Chrome Cache Entry: 185
|
data
|
downloaded
|
||
|
Chrome Cache Entry: 186
|
data
|
downloaded
|
||
|
Chrome Cache Entry: 187
|
data
|
dropped
|
||
|
Chrome Cache Entry: 188
|
gzip compressed data, from Unix, original size modulo 2^32 1295
|
downloaded
|
||
|
Chrome Cache Entry: 189
|
data
|
dropped
|
||
|
Chrome Cache Entry: 190
|
data
|
downloaded
|
||
|
Chrome Cache Entry: 191
|
data
|
downloaded
|
||
|
Chrome Cache Entry: 192
|
data
|
downloaded
|
||
|
Chrome Cache Entry: 193
|
data
|
downloaded
|
||
|
Chrome Cache Entry: 194
|
data
|
downloaded
|
||
|
Chrome Cache Entry: 195
|
data
|
downloaded
|
||
|
Chrome Cache Entry: 196
|
data
|
downloaded
|
||
|
Chrome Cache Entry: 197
|
data
|
dropped
|
||
|
Chrome Cache Entry: 198
|
data
|
dropped
|
||
|
Chrome Cache Entry: 199
|
data
|
downloaded
|
||
|
Chrome Cache Entry: 200
|
gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), original size modulo 2^32 145420
|
downloaded
|
||
|
Chrome Cache Entry: 201
|
data
|
downloaded
|
||
|
Chrome Cache Entry: 202
|
data
|
downloaded
|
||
|
Chrome Cache Entry: 203
|
JSON data
|
downloaded
|
||
|
Chrome Cache Entry: 204
|
Web Open Font Format, TrueType, length 27376, version 1.3277
|
downloaded
|
||
|
Chrome Cache Entry: 205
|
data
|
dropped
|
||
|
Chrome Cache Entry: 206
|
data
|
dropped
|
||
|
Chrome Cache Entry: 207
|
data
|
dropped
|
||
|
Chrome Cache Entry: 208
|
data
|
dropped
|
||
|
Chrome Cache Entry: 209
|
data
|
downloaded
|
||
|
Chrome Cache Entry: 210
|
data
|
downloaded
|
||
|
Chrome Cache Entry: 211
|
data
|
downloaded
|
||
|
Chrome Cache Entry: 212
|
data
|
dropped
|
||
|
Chrome Cache Entry: 213
|
gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), original size modulo 2^32 17147
|
downloaded
|
||
|
Chrome Cache Entry: 214
|
data
|
downloaded
|
||
|
Chrome Cache Entry: 215
|
data
|
downloaded
|
||
|
Chrome Cache Entry: 216
|
data
|
downloaded
|
||
|
Chrome Cache Entry: 217
|
data
|
dropped
|
||
|
Chrome Cache Entry: 218
|
data
|
downloaded
|
||
|
Chrome Cache Entry: 219
|
data
|
downloaded
|
||
|
Chrome Cache Entry: 220
|
Applesoft BASIC program data, first line number 43
|
dropped
|
||
|
Chrome Cache Entry: 221
|
PNG image data, 144 x 144, 8-bit colormap, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 222
|
data
|
downloaded
|
||
|
Chrome Cache Entry: 223
|
gzip compressed data, from Unix, original size modulo 2^32 14730
|
downloaded
|
||
|
Chrome Cache Entry: 224
|
data
|
dropped
|
||
|
Chrome Cache Entry: 225
|
data
|
downloaded
|
||
|
Chrome Cache Entry: 226
|
data
|
dropped
|
||
|
Chrome Cache Entry: 227
|
data
|
dropped
|
||
|
Chrome Cache Entry: 228
|
data
|
downloaded
|
||
|
Chrome Cache Entry: 229
|
data
|
downloaded
|
||
|
Chrome Cache Entry: 230
|
data
|
downloaded
|
||
|
Chrome Cache Entry: 231
|
data
|
dropped
|
||
|
Chrome Cache Entry: 232
|
data
|
dropped
|
||
|
Chrome Cache Entry: 233
|
data
|
downloaded
|
||
|
Chrome Cache Entry: 234
|
TeX font metric data (\333\326w\244\321\213\204\020\316\350\204c\271)
|
downloaded
|
||
|
Chrome Cache Entry: 235
|
data
|
dropped
|
||
|
Chrome Cache Entry: 236
|
data
|
dropped
|
||
|
Chrome Cache Entry: 237
|
data
|
downloaded
|
||
|
Chrome Cache Entry: 238
|
data
|
downloaded
|
||
|
Chrome Cache Entry: 239
|
data
|
downloaded
|
||
|
Chrome Cache Entry: 240
|
data
|
dropped
|
||
|
Chrome Cache Entry: 241
|
data
|
downloaded
|
There are 123 hidden files, click here to show them.
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
|
||
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US
--service-sandbox-type=none --no-subproc-heap-profiling --field-trial-handle=2188,i,1239798624536174216,5055867596480514111,262144
--disable-features=OptimizationGuideModelDownloading,OptimizationHintsFetching,OptimizationTargetPrediction --variations-seed-version=20240909-180142.416000
--mojo-platform-channel-handle=2200 /prefetch:3
|
||
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" "https://1drv.ms/f/s!BGFxeW-p8eX4gQbAlS3QGsRgYLO6?e=fXfFWpIjuUW7ZIzZ2-r8YQ&at=9"
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
https://1drv.ms/f/s!BGFxeW-p8eX4gQbAlS3QGsRgYLO6?e=fXfFWpIjuUW7ZIzZ2-r8YQ&at=9
|
|||
|
https://onedrive.live.com/webappmanifest.json
|
13.107.139.11
|
||
|
https://onedrive.live.com/_forms/default.aspx?ReturnUrl=%2F%3Fid%3DF8E5F1A96F797161%21134%26resid%3D
|
unknown
|
||
|
https://onedrive.live.com/?authkey=%21AsCVLdAaxGBgs7o&id=F8E5F1A96F797161%21134&cid=F8E5F1A96F797161
|
|||
|
https://onedrive.live.com/_forms/default.aspx
|
unknown
|
||
|
https://onedrive.live.com/?id=F8E5F1A96F797161!134&resid=F8E5F1A96F797161!134&ithint=folder&authkey=!AsCVLdAaxGBgs7o&cid=f8e5f1a96f797161
|
|||
|
https://onedrive.live.com/redir?resid=F8E5F1A96F797161!134&authkey=!AsCVLdAaxGBgs7o&ithint=folder&e=fXfFWpIjuUW7ZIzZ2-r8YQ&at=9
|
13.107.139.11
|
||
|
https://skyapi.onedrive.live.com
|
unknown
|
||
|
https://spoprod-a.akamaihd.net/files/odsp-common-library-prod_2019-02-15_20190219.002/require.js
|
unknown
|
||
|
https://onedrive.live.com/_layouts/15/spwebworkerproxy.ashx
|
13.107.139.11
|
||
|
https://onedrive.live.com/_layouts/15/images/odbfavicon.ico?rev=47
|
13.107.139.11
|
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
dual-spov-0006.spov-msedge.net
|
13.107.139.11
|
||
|
www.google.com
|
142.251.40.164
|
||
|
1drv.ms
|
13.107.42.12
|
||
|
onedrive.live.com
|
unknown
|
||
|
api.onedrive.com
|
unknown
|
||
|
p.sfx.ms
|
unknown
|
||
|
storage.live.com
|
unknown
|
||
|
m365cdn.nel.measure.office.net
|
unknown
|
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
13.107.139.11
|
dual-spov-0006.spov-msedge.net
|
United States
|
||
|
192.168.11.20
|
unknown
|
unknown
|
||
|
142.251.40.164
|
www.google.com
|
United States
|
||
|
239.255.255.250
|
unknown
|
Reserved
|
DOM / HTML
|
URL
|
Malicious
|
|
|---|---|---|
|
https://onedrive.live.com/?id=F8E5F1A96F797161!134&resid=F8E5F1A96F797161!134&ithint=folder&authkey=!AsCVLdAaxGBgs7o&cid=f8e5f1a96f797161
|
||
|
https://onedrive.live.com/?authkey=%21AsCVLdAaxGBgs7o&id=F8E5F1A96F797161%21134&cid=F8E5F1A96F797161
|
||
|
https://onedrive.live.com/?authkey=%21AsCVLdAaxGBgs7o&id=F8E5F1A96F797161%21134&cid=F8E5F1A96F797161
|