Windows Analysis Report
https://identity.eu.my-clay.com/Account/CompleteRegistration?code=CfDJ8KgkDTOKMMpOuP36p3Dozxt8PELhFtKv7XhGiLvUJb65B4gsgrZAJNeoWOl3%2bJqjFC0z2PgNNrBPIYyDQpCLYYktywk8FL8riSS1Gw9JoQjzsJeXeEGLQPLN93pvJbRNrEaprcXkfbiWItEC6wUTL8%2bUI3JeJ18XbphkqGM9o3eFYb5fspQpTOcpN9%2fgGTMKuaFzVmBdnIyLH8B%2fLvMz8bqGONRUa%

Overview

General Information

Sample URL:	https://identity.eu.my-clay.com/Account/CompleteRegistration?code=CfDJ8KgkDTOKMMpOuP36p3Dozxt8PELhFtKv7XhGiLvUJb65B4gsgrZAJNeoWOl3%2bJqjFC0z2PgNNrBPIYyDQpCLYYktywk8FL8riSS1Gw9JoQjzsJeXeEGLQPLN93pvJbRN
Analysis ID:	1592150
Infos:

Detection

Score:	2
Range:	0 - 100
Whitelisted:	false
Confidence:	100%

Signatures

Form action URLs do not match main URL

HTML body contains low number of good links

HTML page contains hidden javascript code

HTML title does not match URL

Stores files to the Windows start menu directory

Classification

Signatures

Form action URLs do not match main URL

Source: https://appleid.apple.com/auth/authorize?client_id=com.saltoks&redirect_uri=https%3A%2F%2Fidentity.eu.my-clay.com%2Ffederation%2Fapple%2Fsignin&response_type=code%20id_token&scope=openid%20name%20email&response_mode=form_post&nonce=638725669239955805.NWViZTZiMWQtYzA5Yi00ZDk3LTk3NDMtYWNiODk2NDhkMmIwMzg1NDA4NDMtNTcxYS00MjE3LWIwYmItNWE0ZjY3MDIwNWIz&state=CfDJ8KgkDTOKMMpOuP36p3DozxsFursk5PSsorWoh4tyne5_El5GnOJMHRff52ZWRNh7ApdIOwqJ1v7hCfPbbsNdVy5N0U12cFwLOTqqPeN_JvcUuIgRyZ_6k76ImUXlkyh_ii-r8bzpKxl9CyUE9RLIvmPtySOjY9jIx7F8NhmyClqaWPTyZN5bHJdK9AvO1NzqODYj4m4HYY2ApOyf3Z8tiauKcZdcLpDAY7D_LHvdenTu95LofVh-yaU1Qp6O-WPNy0isWN_yakoqSJfSBbvRndBVOPRiNweDU9tzlpbPB8barcLK_4ld4fDrciRP1pmoz9lBw4jd9LanCNkFhHi0BW6slnSCSyUmj22Z7wKRCU0NcKy9oDz5XmDFoLiASRBLcpK5fHFlXurU5OiipIhzHTXrHVmtyaQNI88grRWHNvi95RC_HL-8fBtd4Iql1FYVez7o-3qstxutuT5Ug6J4tEk63JVn-2mwnn3dZa8tonUxG2OSSkcjFmIvN2O54b__Iw	HTTP Parser: Form action: https://identity.eu.my-clay.com/federation/apple/signin apple my-clay
Source: https://appleid.apple.com/auth/authorize?client_id=com.saltoks&redirect_uri=https%3A%2F%2Fidentity.eu.my-clay.com%2Ffederation%2Fapple%2Fsignin&response_type=code%20id_token&scope=openid%20name%20email&response_mode=form_post&nonce=638725669239955805.NWViZTZiMWQtYzA5Yi00ZDk3LTk3NDMtYWNiODk2NDhkMmIwMzg1NDA4NDMtNTcxYS00MjE3LWIwYmItNWE0ZjY3MDIwNWIz&state=CfDJ8KgkDTOKMMpOuP36p3DozxsFursk5PSsorWoh4tyne5_El5GnOJMHRff52ZWRNh7ApdIOwqJ1v7hCfPbbsNdVy5N0U12cFwLOTqqPeN_JvcUuIgRyZ_6k76ImUXlkyh_ii-r8bzpKxl9CyUE9RLIvmPtySOjY9jIx7F8NhmyClqaWPTyZN5bHJdK9AvO1NzqODYj4m4HYY2ApOyf3Z8tiauKcZdcLpDAY7D_LHvdenTu95LofVh-yaU1Qp6O-WPNy0isWN_yakoqSJfSBbvRndBVOPRiNweDU9tzlpbPB8barcLK_4ld4fDrciRP1pmoz9lBw4jd9LanCNkFhHi0BW6slnSCSyUmj22Z7wKRCU0NcKy9oDz5XmDFoLiASRBLcpK5fHFlXurU5OiipIhzHTXrHVmtyaQNI88grRWHNvi95RC_HL-8fBtd4Iql1FYVez7o-3qstxutuT5Ug6J4tEk63JVn-2mwnn3dZa8tonUxG2OSSkcjFmIvN2O54b__Iw	HTTP Parser: Form action: https://identity.eu.my-clay.com/federation/apple/signin apple my-clay

HTML body contains low number of good links

Source: https://appleid.apple.com/auth/authorize?client_id=com.saltoks&redirect_uri=https%3A%2F%2Fidentity.eu.my-clay.com%2Ffederation%2Fapple%2Fsignin&response_type=code%20id_token&scope=openid%20name%20email&response_mode=form_post&nonce=638725669239955805.NWViZTZiMWQtYzA5Yi00ZDk3LTk3NDMtYWNiODk2NDhkMmIwMzg1NDA4NDMtNTcxYS00MjE3LWIwYmItNWE0ZjY3MDIwNWIz&state=CfDJ8KgkDTOKMMpOuP36p3DozxsFursk5PSsorWoh4tyne5_El5GnOJMHRff52ZWRNh7ApdIOwqJ1v7hCfPbbsNdVy5N0U12cFwLOTqqPeN_JvcUuIgRyZ_6k76ImUXlkyh_ii-r8bzpKxl9CyUE9RLIvmPtySOjY9jIx7F8NhmyClqaWPTyZN5bHJdK9AvO1NzqODYj4m4HYY2ApOyf3Z8tiauKcZdcLpDAY7D_LHvdenTu95LofVh-yaU1Qp6O-WPNy0isWN_yakoqSJfSBbvRndBVOPRiNweDU9tzlpbPB8barcLK_4ld4fDrciRP1pmoz9lBw4jd9LanCNkFhHi0BW6slnSCSyUmj22Z7wKRCU0NcKy9oDz5XmDFoLiASRBLcpK5fHFlXurU5OiipIhzHTXrHVmtyaQNI88grRWHNvi95RC_HL-8fBtd4Iql1FYVez7o-3qstxutuT5Ug6J4tEk63JVn-2mwnn3dZa8tonUxG2OSSkcjFmIvN2O54b__Iw

HTTP Parser: Number of links: 0

HTML page contains hidden javascript code

HTTP Parser: Base64 decoded: 5ebe6b1d-c09b-4d97-9743-acb89648d2b038540843-571a-4217-b0bb-5a4f670205b3

HTML title does not match URL

Source: https://identity.eu.my-clay.com/Account/CompleteRegistration?code=CfDJ8KgkDTOKMMpOuP36p3Dozxt8PELhFtKv7XhGiLvUJb65B4gsgrZAJNeoWOl3%2bJqjFC0z2PgNNrBPIYyDQpCLYYktywk8FL8riSS1Gw9JoQjzsJeXeEGLQPLN93pvJbRNrEaprcXkfbiWItEC6wUTL8%2bUI3JeJ18XbphkqGM9o3eFYb5fspQpTOcpN9%2fgGTMKuaFzVmBdnIyLH8B%2fLvMz8bqGONRUa%2b4n5ZxQZjpAMETBM05PT8wJDX5x%2fItYEfQcxQ%3d%3d&clientId=cbe74aaf-5932-4749-b07e-9d26c8bb0d6b&productId=a5fda6d4-6817-40f1-8635-4131db3054cb	HTTP Parser: Title: Complete your profile does not match URL
Source: https://appleid.apple.com/auth/authorize?client_id=com.saltoks&redirect_uri=https%3A%2F%2Fidentity.eu.my-clay.com%2Ffederation%2Fapple%2Fsignin&response_type=code%20id_token&scope=openid%20name%20email&response_mode=form_post&nonce=638725669239955805.NWViZTZiMWQtYzA5Yi00ZDk3LTk3NDMtYWNiODk2NDhkMmIwMzg1NDA4NDMtNTcxYS00MjE3LWIwYmItNWE0ZjY3MDIwNWIz&state=CfDJ8KgkDTOKMMpOuP36p3DozxsFursk5PSsorWoh4tyne5_El5GnOJMHRff52ZWRNh7ApdIOwqJ1v7hCfPbbsNdVy5N0U12cFwLOTqqPeN_JvcUuIgRyZ_6k76ImUXlkyh_ii-r8bzpKxl9CyUE9RLIvmPtySOjY9jIx7F8NhmyClqaWPTyZN5bHJdK9AvO1NzqODYj4m4HYY2ApOyf3Z8tiauKcZdcLpDAY7D_LHvdenTu95LofVh-yaU1Qp6O-WPNy0isWN_yakoqSJfSBbvRndBVOPRiNweDU9tzlpbPB8barcLK_4ld4fDrciRP1pmoz9lBw4jd9LanCNkFhHi0BW6slnSCSyUmj22Z7wKRCU0NcKy9oDz5XmDFoLiASRBLcpK5fHFlXurU5OiipIhzHTXrHVmtyaQNI88grRWHNvi95RC_HL-8fBtd4Iql1FYVez7o-3qstxutuT5Ug6J4tEk63JVn-2mwnn3dZa8tonUxG2OSSkcjFmIvN2O54b__Iw	HTTP Parser: Title: Sign in to AppleAccount does not match URL

Source: https://identity.eu.my-clay.com/Account/CompleteRegistration?code=CfDJ8KgkDTOKMMpOuP36p3Dozxt8PELhFtKv7XhGiLvUJb65B4gsgrZAJNeoWOl3%2bJqjFC0z2PgNNrBPIYyDQpCLYYktywk8FL8riSS1Gw9JoQjzsJeXeEGLQPLN93pvJbRNrEaprcXkfbiWItEC6wUTL8%2bUI3JeJ18XbphkqGM9o3eFYb5fspQpTOcpN9%2fgGTMKuaFzVmBdnIyLH8B%2fLvMz8bqGONRUa%2b4n5ZxQZjpAMETBM05PT8wJDX5x%2fItYEfQcxQ%3d%3d&clientId=cbe74aaf-5932-4749-b07e-9d26c8bb0d6b&productId=a5fda6d4-6817-40f1-8635-4131db3054cb	HTTP Parser: <input type="password" .../> found
Source: https://appleid.apple.com/auth/authorize?client_id=com.saltoks&redirect_uri=https%3A%2F%2Fidentity.eu.my-clay.com%2Ffederation%2Fapple%2Fsignin&response_type=code%20id_token&scope=openid%20name%20email&response_mode=form_post&nonce=638725669239955805.NWViZTZiMWQtYzA5Yi00ZDk3LTk3NDMtYWNiODk2NDhkMmIwMzg1NDA4NDMtNTcxYS00MjE3LWIwYmItNWE0ZjY3MDIwNWIz&state=CfDJ8KgkDTOKMMpOuP36p3DozxsFursk5PSsorWoh4tyne5_El5GnOJMHRff52ZWRNh7ApdIOwqJ1v7hCfPbbsNdVy5N0U12cFwLOTqqPeN_JvcUuIgRyZ_6k76ImUXlkyh_ii-r8bzpKxl9CyUE9RLIvmPtySOjY9jIx7F8NhmyClqaWPTyZN5bHJdK9AvO1NzqODYj4m4HYY2ApOyf3Z8tiauKcZdcLpDAY7D_LHvdenTu95LofVh-yaU1Qp6O-WPNy0isWN_yakoqSJfSBbvRndBVOPRiNweDU9tzlpbPB8barcLK_4ld4fDrciRP1pmoz9lBw4jd9LanCNkFhHi0BW6slnSCSyUmj22Z7wKRCU0NcKy9oDz5XmDFoLiASRBLcpK5fHFlXurU5OiipIhzHTXrHVmtyaQNI88grRWHNvi95RC_HL-8fBtd4Iql1FYVez7o-3qstxutuT5Ug6J4tEk63JVn-2mwnn3dZa8tonUxG2OSSkcjFmIvN2O54b__Iw	HTTP Parser: <input type="password" .../> found

Source: https://identity.eu.my-clay.com/Account/CompleteRegistration?code=CfDJ8KgkDTOKMMpOuP36p3Dozxt8PELhFtKv7XhGiLvUJb65B4gsgrZAJNeoWOl3%2bJqjFC0z2PgNNrBPIYyDQpCLYYktywk8FL8riSS1Gw9JoQjzsJeXeEGLQPLN93pvJbRNrEaprcXkfbiWItEC6wUTL8%2bUI3JeJ18XbphkqGM9o3eFYb5fspQpTOcpN9%2fgGTMKuaFzVmBdnIyLH8B%2fLvMz8bqGONRUa%2b4n5ZxQZjpAMETBM05PT8wJDX5x%2fItYEfQcxQ%3d%3d&clientId=cbe74aaf-5932-4749-b07e-9d26c8bb0d6b&productId=a5fda6d4-6817-40f1-8635-4131db3054cb	HTTP Parser: No <meta name="author".. found
Source: https://appleid.apple.com/auth/authorize?client_id=com.saltoks&redirect_uri=https%3A%2F%2Fidentity.eu.my-clay.com%2Ffederation%2Fapple%2Fsignin&response_type=code%20id_token&scope=openid%20name%20email&response_mode=form_post&nonce=638725669239955805.NWViZTZiMWQtYzA5Yi00ZDk3LTk3NDMtYWNiODk2NDhkMmIwMzg1NDA4NDMtNTcxYS00MjE3LWIwYmItNWE0ZjY3MDIwNWIz&state=CfDJ8KgkDTOKMMpOuP36p3DozxsFursk5PSsorWoh4tyne5_El5GnOJMHRff52ZWRNh7ApdIOwqJ1v7hCfPbbsNdVy5N0U12cFwLOTqqPeN_JvcUuIgRyZ_6k76ImUXlkyh_ii-r8bzpKxl9CyUE9RLIvmPtySOjY9jIx7F8NhmyClqaWPTyZN5bHJdK9AvO1NzqODYj4m4HYY2ApOyf3Z8tiauKcZdcLpDAY7D_LHvdenTu95LofVh-yaU1Qp6O-WPNy0isWN_yakoqSJfSBbvRndBVOPRiNweDU9tzlpbPB8barcLK_4ld4fDrciRP1pmoz9lBw4jd9LanCNkFhHi0BW6slnSCSyUmj22Z7wKRCU0NcKy9oDz5XmDFoLiASRBLcpK5fHFlXurU5OiipIhzHTXrHVmtyaQNI88grRWHNvi95RC_HL-8fBtd4Iql1FYVez7o-3qstxutuT5Ug6J4tEk63JVn-2mwnn3dZa8tonUxG2OSSkcjFmIvN2O54b__Iw	HTTP Parser: No <meta name="author".. found
Source: https://appleid.apple.com/auth/authorize?client_id=com.saltoks&redirect_uri=https%3A%2F%2Fidentity.eu.my-clay.com%2Ffederation%2Fapple%2Fsignin&response_type=code%20id_token&scope=openid%20name%20email&response_mode=form_post&nonce=638725669239955805.NWViZTZiMWQtYzA5Yi00ZDk3LTk3NDMtYWNiODk2NDhkMmIwMzg1NDA4NDMtNTcxYS00MjE3LWIwYmItNWE0ZjY3MDIwNWIz&state=CfDJ8KgkDTOKMMpOuP36p3DozxsFursk5PSsorWoh4tyne5_El5GnOJMHRff52ZWRNh7ApdIOwqJ1v7hCfPbbsNdVy5N0U12cFwLOTqqPeN_JvcUuIgRyZ_6k76ImUXlkyh_ii-r8bzpKxl9CyUE9RLIvmPtySOjY9jIx7F8NhmyClqaWPTyZN5bHJdK9AvO1NzqODYj4m4HYY2ApOyf3Z8tiauKcZdcLpDAY7D_LHvdenTu95LofVh-yaU1Qp6O-WPNy0isWN_yakoqSJfSBbvRndBVOPRiNweDU9tzlpbPB8barcLK_4ld4fDrciRP1pmoz9lBw4jd9LanCNkFhHi0BW6slnSCSyUmj22Z7wKRCU0NcKy9oDz5XmDFoLiASRBLcpK5fHFlXurU5OiipIhzHTXrHVmtyaQNI88grRWHNvi95RC_HL-8fBtd4Iql1FYVez7o-3qstxutuT5Ug6J4tEk63JVn-2mwnn3dZa8tonUxG2OSSkcjFmIvN2O54b__Iw	HTTP Parser: No <meta name="author".. found

Source: https://identity.eu.my-clay.com/Account/CompleteRegistration?code=CfDJ8KgkDTOKMMpOuP36p3Dozxt8PELhFtKv7XhGiLvUJb65B4gsgrZAJNeoWOl3%2bJqjFC0z2PgNNrBPIYyDQpCLYYktywk8FL8riSS1Gw9JoQjzsJeXeEGLQPLN93pvJbRNrEaprcXkfbiWItEC6wUTL8%2bUI3JeJ18XbphkqGM9o3eFYb5fspQpTOcpN9%2fgGTMKuaFzVmBdnIyLH8B%2fLvMz8bqGONRUa%2b4n5ZxQZjpAMETBM05PT8wJDX5x%2fItYEfQcxQ%3d%3d&clientId=cbe74aaf-5932-4749-b07e-9d26c8bb0d6b&productId=a5fda6d4-6817-40f1-8635-4131db3054cb	HTTP Parser: No <meta name="copyright".. found
Source: https://appleid.apple.com/auth/authorize?client_id=com.saltoks&redirect_uri=https%3A%2F%2Fidentity.eu.my-clay.com%2Ffederation%2Fapple%2Fsignin&response_type=code%20id_token&scope=openid%20name%20email&response_mode=form_post&nonce=638725669239955805.NWViZTZiMWQtYzA5Yi00ZDk3LTk3NDMtYWNiODk2NDhkMmIwMzg1NDA4NDMtNTcxYS00MjE3LWIwYmItNWE0ZjY3MDIwNWIz&state=CfDJ8KgkDTOKMMpOuP36p3DozxsFursk5PSsorWoh4tyne5_El5GnOJMHRff52ZWRNh7ApdIOwqJ1v7hCfPbbsNdVy5N0U12cFwLOTqqPeN_JvcUuIgRyZ_6k76ImUXlkyh_ii-r8bzpKxl9CyUE9RLIvmPtySOjY9jIx7F8NhmyClqaWPTyZN5bHJdK9AvO1NzqODYj4m4HYY2ApOyf3Z8tiauKcZdcLpDAY7D_LHvdenTu95LofVh-yaU1Qp6O-WPNy0isWN_yakoqSJfSBbvRndBVOPRiNweDU9tzlpbPB8barcLK_4ld4fDrciRP1pmoz9lBw4jd9LanCNkFhHi0BW6slnSCSyUmj22Z7wKRCU0NcKy9oDz5XmDFoLiASRBLcpK5fHFlXurU5OiipIhzHTXrHVmtyaQNI88grRWHNvi95RC_HL-8fBtd4Iql1FYVez7o-3qstxutuT5Ug6J4tEk63JVn-2mwnn3dZa8tonUxG2OSSkcjFmIvN2O54b__Iw	HTTP Parser: No <meta name="copyright".. found
Source: https://appleid.apple.com/auth/authorize?client_id=com.saltoks&redirect_uri=https%3A%2F%2Fidentity.eu.my-clay.com%2Ffederation%2Fapple%2Fsignin&response_type=code%20id_token&scope=openid%20name%20email&response_mode=form_post&nonce=638725669239955805.NWViZTZiMWQtYzA5Yi00ZDk3LTk3NDMtYWNiODk2NDhkMmIwMzg1NDA4NDMtNTcxYS00MjE3LWIwYmItNWE0ZjY3MDIwNWIz&state=CfDJ8KgkDTOKMMpOuP36p3DozxsFursk5PSsorWoh4tyne5_El5GnOJMHRff52ZWRNh7ApdIOwqJ1v7hCfPbbsNdVy5N0U12cFwLOTqqPeN_JvcUuIgRyZ_6k76ImUXlkyh_ii-r8bzpKxl9CyUE9RLIvmPtySOjY9jIx7F8NhmyClqaWPTyZN5bHJdK9AvO1NzqODYj4m4HYY2ApOyf3Z8tiauKcZdcLpDAY7D_LHvdenTu95LofVh-yaU1Qp6O-WPNy0isWN_yakoqSJfSBbvRndBVOPRiNweDU9tzlpbPB8barcLK_4ld4fDrciRP1pmoz9lBw4jd9LanCNkFhHi0BW6slnSCSyUmj22Z7wKRCU0NcKy9oDz5XmDFoLiASRBLcpK5fHFlXurU5OiipIhzHTXrHVmtyaQNI88grRWHNvi95RC_HL-8fBtd4Iql1FYVez7o-3qstxutuT5Ug6J4tEk63JVn-2mwnn3dZa8tonUxG2OSSkcjFmIvN2O54b__Iw	HTTP Parser: No <meta name="copyright".. found

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

Directory created: C:\Program Files\Google\Chrome\Application\Dictionaries

Jump to behavior

Source: global traffic	HTTP traffic detected: GET /?callback=jQuery37105484807738369033_1736970097837&_=1736970097838 HTTP/1.1Host: ipinfo.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /?callback=jQuery37105484807738369033_1736970097837&_=1736970097838 HTTP/1.1Host: ipinfo.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9

Source: chromecache_141.2.dr	String found in binary or memory: "https://www.facebook.com/Apple", equals www.facebook.com (Facebook)
Source: chromecache_141.2.dr	String found in binary or memory: "https://www.linkedin.com/company/apple", equals www.linkedin.com (Linkedin)
Source: chromecache_141.2.dr	String found in binary or memory: "https://www.twitter.com/Apple" equals www.twitter.com (Twitter)
Source: chromecache_141.2.dr	String found in binary or memory: "https://www.youtube.com/user/Apple", equals www.youtube.com (Youtube)

Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: identity.eu.my-clay.com
Source: global traffic	DNS traffic detected: DNS query: ipinfo.io
Source: global traffic	DNS traffic detected: DNS query: is1-ssl.mzstatic.com

Source: chromecache_188.2.dr, chromecache_196.2.dr, chromecache_130.2.dr, chromecache_158.2.dr	String found in binary or memory: http://baris.aydinoglu.info)
Source: chromecache_188.2.dr, chromecache_196.2.dr, chromecache_130.2.dr, chromecache_158.2.dr	String found in binary or memory: http://barisaydinoglu.github.com/Detectizr/
Source: chromecache_181.2.dr, chromecache_199.2.dr, chromecache_175.2.dr, chromecache_173.2.dr	String found in binary or memory: http://canjs.com/
Source: chromecache_144.2.dr, chromecache_143.2.dr	String found in binary or memory: http://feross.org
Source: chromecache_137.2.dr	String found in binary or memory: http://fontawesome.io
Source: chromecache_137.2.dr	String found in binary or memory: http://fontawesome.io/license
Source: chromecache_158.2.dr	String found in binary or memory: http://github.com/Modernizr/Modernizr/issues/1182
Source: chromecache_199.2.dr, chromecache_175.2.dr	String found in binary or memory: http://github.com/RobinHerbots/jquery.inputmask
Source: chromecache_166.2.dr, chromecache_126.2.dr, chromecache_199.2.dr, chromecache_175.2.dr	String found in binary or memory: http://jedwatson.github.io/classnames
Source: chromecache_181.2.dr, chromecache_173.2.dr	String found in binary or memory: http://purl.eligrey.com/github/classList.js/blob/master/classList.js
Source: chromecache_141.2.dr	String found in binary or memory: http://schema.org
Source: chromecache_141.2.dr	String found in binary or memory: http://schema.org/
Source: chromecache_188.2.dr, chromecache_158.2.dr	String found in binary or memory: http://srufaculty.sru.edu/david.dailey/svg/newstuff/clipPath4.svg
Source: chromecache_181.2.dr, chromecache_173.2.dr	String found in binary or memory: http://underscorejs.org/LICENSE
Source: chromecache_202.2.dr	String found in binary or memory: http://www.apache.org/licenses/LICENSE-2.0
Source: chromecache_184.2.dr, chromecache_202.2.dr	String found in binary or memory: http://www.apache.org/licenses/LICENSE-2.0Copyright
Source: chromecache_199.2.dr, chromecache_175.2.dr	String found in binary or memory: http://www.opensource.org/licenses/mit-license.php)
Source: chromecache_141.2.dr	String found in binary or memory: http://www.wikidata.org/entity/Q312
Source: chromecache_188.2.dr, chromecache_158.2.dr	String found in binary or memory: http://yepnopejs.com.
Source: chromecache_141.2.dr	String found in binary or memory: https://account.apple.com/
Source: chromecache_171.2.dr, chromecache_127.2.dr, chromecache_172.2.dr, chromecache_167.2.dr	String found in binary or memory: https://appleid.cdn-apple.com/appleauth/static/jsapi/acknowledgements.txt
Source: chromecache_141.2.dr	String found in binary or memory: https://apps.apple.com/us/app/apple-store/id375380948
Source: chromecache_188.2.dr, chromecache_158.2.dr	String found in binary or memory: https://bugs.chromium.org/p/chromium/issues/detail?id=129004
Source: chromecache_188.2.dr, chromecache_158.2.dr	String found in binary or memory: https://codepen.io/eltonmesquita/full/GgXbvo/
Source: chromecache_188.2.dr, chromecache_158.2.dr	String found in binary or memory: https://css-tricks.com/almanac/properties/a/appearance/
Source: chromecache_188.2.dr, chromecache_158.2.dr	String found in binary or memory: https://dev.w3.org/csswg/css3-conditional/#at-supports
Source: chromecache_188.2.dr, chromecache_158.2.dr	String found in binary or memory: https://dev.w3.org/csswg/css3-conditional/#the-csssupportsrule-interface
Source: chromecache_188.2.dr, chromecache_158.2.dr	String found in binary or memory: https://developer.mozilla.org/en-US/docs/Web/API/Clipboard
Source: chromecache_188.2.dr, chromecache_158.2.dr	String found in binary or memory: https://developer.mozilla.org/en-US/docs/Web/API/Clipboard_API
Source: chromecache_188.2.dr, chromecache_158.2.dr	String found in binary or memory: https://developer.mozilla.org/en-US/docs/Web/API/HTMLCanvasElement.toDataURL
Source: chromecache_188.2.dr, chromecache_158.2.dr	String found in binary or memory: https://developer.mozilla.org/en-US/docs/Web/API/Window/scrollTo
Source: chromecache_188.2.dr, chromecache_158.2.dr	String found in binary or memory: https://developer.mozilla.org/en-US/docs/Web/CSS/-moz-appearance
Source: chromecache_188.2.dr, chromecache_158.2.dr	String found in binary or memory: https://developer.mozilla.org/en-US/docs/Web/CSS/filter
Source: chromecache_188.2.dr, chromecache_158.2.dr	String found in binary or memory: https://developer.mozilla.org/en/docs/HTML/Using_the_application_cache
Source: chromecache_188.2.dr, chromecache_158.2.dr	String found in binary or memory: https://developers.whatwg.org/links.html#downloading-resources
Source: chromecache_188.2.dr, chromecache_158.2.dr	String found in binary or memory: https://drafts.fxtf.org/compositing-1/
Source: chromecache_144.2.dr, chromecache_143.2.dr	String found in binary or memory: https://feross.org/opensource
Source: chromecache_137.2.dr	String found in binary or memory: https://fontawesome.com
Source: chromecache_137.2.dr	String found in binary or memory: https://fontawesome.com/license/free
Source: chromecache_137.2.dr	String found in binary or memory: https://getbootstrap.com/)
Source: chromecache_188.2.dr, chromecache_158.2.dr	String found in binary or memory: https://github.com/Modernizr/Modernizr/issues/648
Source: chromecache_137.2.dr	String found in binary or memory: https://github.com/h5bp/html5-boilerplate/blob/master/src/css/main.css
Source: chromecache_188.2.dr, chromecache_158.2.dr	String found in binary or memory: https://github.com/slightlyoff/ServiceWorker/blob/master/explainer.md
Source: chromecache_137.2.dr	String found in binary or memory: https://github.com/twbs/bootstrap/blob/master/LICENSE)
Source: chromecache_185.2.dr, chromecache_147.2.dr, chromecache_140.2.dr, chromecache_133.2.dr	String found in binary or memory: https://github.com/zloirock/core-js
Source: chromecache_185.2.dr, chromecache_147.2.dr, chromecache_140.2.dr, chromecache_133.2.dr	String found in binary or memory: https://github.com/zloirock/core-js/blob/v3.39.0/LICENSE
Source: chromecache_188.2.dr, chromecache_158.2.dr	String found in binary or memory: https://html.spec.whatwg.org/multipage/interaction.html#contenteditable
Source: chromecache_188.2.dr, chromecache_158.2.dr	String found in binary or memory: https://html.spec.whatwg.org/multipage/semantics.html#attr-style-scoped
Source: chromecache_141.2.dr	String found in binary or memory: https://investor.apple.com/
Source: chromecache_189.2.dr	String found in binary or memory: https://ipinfo.io/missingauth
Source: chromecache_181.2.dr, chromecache_199.2.dr, chromecache_175.2.dr, chromecache_173.2.dr	String found in binary or memory: https://jquery.com/
Source: chromecache_181.2.dr, chromecache_199.2.dr, chromecache_175.2.dr, chromecache_173.2.dr	String found in binary or memory: https://jquery.org/license
Source: chromecache_141.2.dr	String found in binary or memory: https://locate.apple.com/
Source: chromecache_181.2.dr, chromecache_173.2.dr	String found in binary or memory: https://lodash.com/
Source: chromecache_181.2.dr, chromecache_173.2.dr	String found in binary or memory: https://lodash.com/license
Source: chromecache_181.2.dr, chromecache_173.2.dr	String found in binary or memory: https://openjsf.org/
Source: chromecache_188.2.dr, chromecache_158.2.dr	String found in binary or memory: https://paulirish.com/demo/inline-svg
Source: chromecache_166.2.dr, chromecache_126.2.dr	String found in binary or memory: https://preactjs.com
Source: chromecache_188.2.dr, chromecache_158.2.dr	String found in binary or memory: https://stackoverflow.com/questions/3952009/defer-attribute-chrome#answer-3982619
Source: chromecache_141.2.dr	String found in binary or memory: https://support.apple.com
Source: chromecache_141.2.dr	String found in binary or memory: https://support.apple.com/#organization
Source: chromecache_141.2.dr	String found in binary or memory: https://support.apple.com/?cid=gn-ols-home-hp-tab
Source: chromecache_134.2.dr, chromecache_163.2.dr	String found in binary or memory: https://support.apple.com/ipad?cid=gn-ols-ipad-psp-prodfly
Source: chromecache_134.2.dr, chromecache_163.2.dr	String found in binary or memory: https://support.apple.com/iphone?cid=gn-ols-iphone-psp-prodfly
Source: chromecache_188.2.dr, chromecache_158.2.dr	String found in binary or memory: https://w3c.github.io/FileAPI/#constructorBlob
Source: chromecache_188.2.dr, chromecache_158.2.dr	String found in binary or memory: https://web.archive.org/web/20180602074607/https://daneden.me/2011/12/14/putting-up-with-androids-bu
Source: chromecache_141.2.dr	String found in binary or memory: https://www.apple.com/
Source: chromecache_141.2.dr	String found in binary or memory: https://www.apple.com/#organization
Source: chromecache_141.2.dr	String found in binary or memory: https://www.apple.com/ac/structured-data/images/knowledge_graph_logo.png?201803231038
Source: chromecache_192.2.dr, chromecache_183.2.dr	String found in binary or memory: https://www.apple.com/airpods/
Source: chromecache_192.2.dr, chromecache_183.2.dr	String found in binary or memory: https://www.apple.com/apple-intelligence/
Source: chromecache_192.2.dr, chromecache_183.2.dr	String found in binary or memory: https://www.apple.com/apple-vision-pro/
Source: chromecache_141.2.dr	String found in binary or memory: https://www.apple.com/errors/us_error.html
Source: chromecache_192.2.dr, chromecache_183.2.dr	String found in binary or memory: https://www.apple.com/retail/
Source: chromecache_192.2.dr, chromecache_183.2.dr	String found in binary or memory: https://www.apple.com/us/shop/goto/trade_in
Source: chromecache_141.2.dr	String found in binary or memory: https://www.icloud.com
Source: chromecache_141.2.dr	String found in binary or memory: https://www.linkedin.com/company/apple
Source: chromecache_141.2.dr	String found in binary or memory: https://www.twitter.com/Apple
Source: chromecache_141.2.dr	String found in binary or memory: https://www.youtube.com/user/Apple

Source: classification engine

Classification label: clean2.win@18/144@14/3

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Program Files\Google\Chrome\Application\Dictionaries

Jump to behavior

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps

Jump to behavior

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2304 --field-trial-handle=2236,i,14419739948207854976,17419969883120276566,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://identity.eu.my-clay.com/Account/CompleteRegistration?code=CfDJ8KgkDTOKMMpOuP36p3Dozxt8PELhFtKv7XhGiLvUJb65B4gsgrZAJNeoWOl3%2bJqjFC0z2PgNNrBPIYyDQpCLYYktywk8FL8riSS1Gw9JoQjzsJeXeEGLQPLN93pvJbRNrEaprcXkfbiWItEC6wUTL8%2bUI3JeJ18XbphkqGM9o3eFYb5fspQpTOcpN9%2fgGTMKuaFzVmBdnIyLH8B%2fLvMz8bqGONRUa%2b4n5ZxQZjpAMETBM05PT8wJDX5x%2fItYEfQcxQ%3d%3d&clientId=cbe74aaf-5932-4749-b07e-9d26c8bb0d6b&productId=a5fda6d4-6817-40f1-8635-4131db3054cb"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2304 --field-trial-handle=2236,i,14419739948207854976,17419969883120276566,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: Google Drive.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: YouTube.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Sheets.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Gmail.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Slides.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Docs.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe

Source: Window Recorder

Window detected: More than 3 window changes detected

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

Directory created: C:\Program Files\Google\Chrome\Application\Dictionaries

Jump to behavior

Stores files to the Windows start menu directory

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk	Jump to behavior

Screenshots

Behavior Graph

Hide Legend

Legend:

Process
Signature
Created File
DNS/IP Info
Is Dropped
Is Windows Process
Number of created Registry Values
Number of created Files
Visual Basic
Delphi
Java
.Net C# or VB.NET
C, C++ or other language
Is malicious
Internet

Network Map

No. of IPs < 25%
25% < No. of IPs < 50%
50% < No. of IPs < 75%
75% < No. of IPs

Contacted Public IPs

IP	Domain	Country	ASN	ASN Name	Malicious
34.117.59.81	ipinfo.io	United States	139070	GOOGLE-AS-APGoogleAsiaPacificPteLtdSG	false
239.255.255.250	unknown	Reserved	unknown	unknown	false
142.250.184.228	www.google.com	United States	15169	GOOGLEUS	false

Contacted Domains

Name	IP	Active
ipinfo.io	34.117.59.81	true
www.google.com	142.250.184.228	true
is1-ssl.mzstatic.com	unknown	unknown
identity.eu.my-clay.com	unknown	unknown

Contacted URLs

Name	Malicious	Antivirus Detection	Reputation
https://ipinfo.io/?callback=jQuery37105484807738369033_1736970097837&_=1736970097838	false		high
https://identity.eu.my-clay.com/Account/CompleteRegistration?code=CfDJ8KgkDTOKMMpOuP36p3Dozxt8PELhFtKv7XhGiLvUJb65B4gsgrZAJNeoWOl3%2bJqjFC0z2PgNNrBPIYyDQpCLYYktywk8FL8riSS1Gw9JoQjzsJeXeEGLQPLN93pvJbRNrEaprcXkfbiWItEC6wUTL8%2bUI3JeJ18XbphkqGM9o3eFYb5fspQpTOcpN9%2fgGTMKuaFzVmBdnIyLH8B%2fLvMz8bqGONRUa%2b4n5ZxQZjpAMETBM05PT8wJDX5x%2fItYEfQcxQ%3d%3d&clientId=cbe74aaf-5932-4749-b07e-9d26c8bb0d6b&productId=a5fda6d4-6817-40f1-8635-4131db3054cb	false		high

Name	Type	MD5	SHA1	SHA256
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed Jan 15 18:41:32 2025, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide	0CCE45B1CCD04E9FE9AE0D1F36631BE2	1C8E5B6288EBAAF21EA3B59EAF52C723DD7E6875	5DF898240396F5EDB0C59816F119082AE2B6F1F31A7781053B04EF23C4A9DCFC
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed Jan 15 18:41:32 2025, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide	913B54D37DA57D3493B87A91A92A4D25	058D420E24350B0357A8E2FDC835842D68C7AD31	AB968F0CCA446995AC97A6BDE4B776195E9FD2F63FB8478A630694A8AB5351C3
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed Oct 4 12:54:07 2023, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide	AAC9EEE1E1665954E39E905F72AB1ACF	0B9752B03BFC04F80003A51CE90B041462BA3B5A	2623F8972236EE4FAFEDEE5E018D1F8638CFBDA6C44D42D7B2914896485DBB92
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed Jan 15 18:41:32 2025, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide	3DA06857707A112B2D97AB4E21B23F91	171A688C77CBBA164C6D5B0F2AADADBE1DFC2392	8BF3DFA4DBEA6CE319A2BB13D9160617CDBCC883E598C7E5B20DB6DEBAEF4824
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed Jan 15 18:41:32 2025, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide	D6EAB0B0FBCBFA2063C1BB4FDD8498AB	11B281C88AAEC4C05C4DCDCCE25CF69C5338E5BF	7E7E610B08B6FE9A07278A79539DCA6B608A7619EAAD2AA7C3621F7D80647FB9
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed Jan 15 18:41:32 2025, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide	1AE2EB8A82207382BCE45E3E728B9924	4C6E86A0F18A6473528197AB21CDA7CCF964DB91	7DDE4362B9B229FEC69AC50C17667552C716320E8C6F7479627A066A2AC8DC81
Chrome Cache Entry: 120	ASCII text, with very long lines (6983), with no line terminators	33E5F7B4CD1360FA6599E7ADCBB494DD	899CB51CCB51A5560FFB399FD7AA22D175EEBE05	7AEBD37D8BF463AB9608270C72B559B4409B1AF7F7BA5799D2541E0BE027F06F
Chrome Cache Entry: 121	ASCII text, with very long lines (11742)	FF706D7FC775DABEBA9743DAABB0DD2A	C8AAD45ABBAE4DB500C1229FFB03C63F65F48BA5	C9EB57CF46D1986209C6D556D3AB36A8865B8448C5C491805E6232F93AD75B22
Chrome Cache Entry: 122	ASCII text	CC3C17D31CFDA473CA545554C30794AC	B64FA9CF9CBA5BA68567EC8FEA1A229B023F9FFD	4F70A22F0D4E8ED3F4F2F823F7385328CBAAEDFF0EAE324A51287C3C1CBA4F92
Chrome Cache Entry: 123	PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced	36628D41138BD45A55C901B64F0FF98E	0A3B98F475893B9B39D969F5AADE4E4E288CCFBF	EFD2034F9F4151FA39299BC91EA548E8F303B3B3DFD4C52B07D27DAF9BFE6CB8
Chrome Cache Entry: 124	MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel	891E510219786F543CA998282ED99F45	19FE2FF6A2418BCB44B02308B998CEF84199EE08	E4BDF72E2F803F7E19907C12F407AC7F7CD5F1F94BFD730B9BE24B0D49191B48
Chrome Cache Entry: 125	PNG image data, 41 x 41, 8-bit/color RGBA, non-interlaced	6947E85B1DDDA13712E7BEE954265BEB	C3AEE71CC217987C17AEB5787AD91D0858621AED	1E88EBE49FA029C5DABC3871222C354B3899B704119712283143B142E730922B
Chrome Cache Entry: 126	ASCII text, with very long lines (65536), with no line terminators	E8E8B7A18F4EBDA24A25F702B22FA5C1	45DF73C1E3A0A3221A36654FCC46250E31D44C3C	B740DD04F5C2A05AC983F4716999989B7A05B48C7E4717F77729B3DF19E97E3C
Chrome Cache Entry: 127	ASCII text, with very long lines (61816)	E117C52AA120AF175C53D47940799C63	27194EB74566CA87B21B33D9D4A784591FA2ACED	F2C7EBD470B82C72F842FD3EADA1C0F41731C596C63302E80C65DDB33DA46B72
Chrome Cache Entry: 128	ASCII text, with very long lines (65457)	FD351FADBC3E6B555C32D67014ECD500	DF9B66562912B579E1C09F3D8441249E97ADD285	00800D17E80D488FF1EBACD198B037C8835B1E02082F98E87E15792E07B55A5A
Chrome Cache Entry: 129	PNG image data, 41 x 41, 8-bit/color RGBA, non-interlaced	58248AA2AD97D6E3B9253C10DB0BA30B	724D6D3500C417FABC460A89443E541A1D1DE177	C103BB15A7776A00250DBF73759326A7B79AC6D2A1A236396EF7E0B61FC16AA1
Chrome Cache Entry: 130	ASCII text, with very long lines (12505)	ADF5BE3456C326E8848438C776EC7C29	C59C27A2C55BA6FD3C86BA4A4A2F6CCFECEC5BCC	7858D220124EE618D062B51F055A900FA382C1B8D6056AA5E24258953F844620
Chrome Cache Entry: 131	ASCII text, with no line terminators	00498535F9304FFED6B25E68407AC5B4	4193409C2742D5E2ACABF1712084D743729A4D37	AAB203174B7B463276A2D32C4EE90A50E938D772BA7B093B9D447B2632E959E9
Chrome Cache Entry: 132	Web Open Font Format (Version 2), TrueType, length 129484, version 1.0	5071D158EB5BA0431B8922015ED930C6	46A034ED9FF3728E11DC64A0C9940D552DAF6083	93C70675BF7A740FB2B357E085C31DE4E1ADCF2B6A636135AAD9CF1D65D93B53
Chrome Cache Entry: 133	ASCII text, with very long lines (65468)	32F4FA4ECCB6A6820192CDA118740320	FDF120A5541118E9F89F614A6086C3C952548775	46BEA9FBF01351E6B48CC01E2151A72207D7049691B25C197E17CC4A89125C20
Chrome Cache Entry: 134	JSON data	3C6F24A4E5427E163B340FF2CBE41066	C9245156868F56F57114598E95A1DCA0EF8706E6	5B616FEA5CE81618EAE78DAEB9038E6B101712D3A07542A7C99222F524DDE1A8
Chrome Cache Entry: 135	ASCII text, with very long lines (65457)	FD351FADBC3E6B555C32D67014ECD500	DF9B66562912B579E1C09F3D8441249E97ADD285	00800D17E80D488FF1EBACD198B037C8835B1E02082F98E87E15792E07B55A5A
Chrome Cache Entry: 136	PNG image data, 32 x 32, 8-bit/color RGB, non-interlaced	0E73385E8CD77F1E6CA06F210AE1CFD7	99072C99CCC74857A3BDA2E75944544A244D8297	1F0BC2440CEB5EB4DE69F19166563FE3F386B9D5EAA498A000CAEAFAEB2E57C6
Chrome Cache Entry: 137	Unicode text, UTF-8 text, with very long lines (43805)	F6BAF090CF98310A0F3F48D2C9B0820E	E8B08CA34E56423CD0F2F4462769FE86D421F1D5	58EF05F0175BE844985BF4EA72512BE2EC47BA3E3C051B35A0B7E503136D4910
Chrome Cache Entry: 138	SVG Scalable Vector Graphics image	2D43F24008EF4F53F4FB37A1EA995C5E	2EBB4E3408529D41A923BEB5EB7863157991C839	9EBD3AABAB461B12E7297EB32B77BEC1DC7E06C1AEA36FAEE1E5D49DE711CCA9
Chrome Cache Entry: 139	PNG image data, 41 x 41, 8-bit/color RGBA, non-interlaced	6947E85B1DDDA13712E7BEE954265BEB	C3AEE71CC217987C17AEB5787AD91D0858621AED	1E88EBE49FA029C5DABC3871222C354B3899B704119712283143B142E730922B
Chrome Cache Entry: 140	ASCII text, with very long lines (65453)	A78AF43FAB840B7E3B95735BD323ED5D	DAFEF8BF1545DA679D6DE2EA59F3445940ABEC91	B4AF9044E4527B02A27FB80891E443202D8D09BCD9A25340682E7A4599A81599
Chrome Cache Entry: 141	HTML document, ASCII text, with very long lines (30706)	75BAAE06F118023A8E28DF39CC860935	61128718DDA59E24905047240559FE20782C0DA8	F313A463A92E87BF27EB5E1E3AE795E5A37E658186A7365431591AAD4A417154
Chrome Cache Entry: 142	ASCII text, with no line terminators	0E8B7AA12574E8F27630805D3E3AE814	187763C0687A5662EECBFA9105C18FE8D1E6E2E8	3281D39EA6034506AAC35B0EA9C60AA48861D197A1F33ECD63E7DB8A9933862D
Chrome Cache Entry: 143	Unicode text, UTF-8 text, with very long lines (47124), with NEL line terminators	CB89686C7EA998E78A087B513D31D63A	2FF260068D33A00F4401C98009B629F44F64C4E9	C60AECBCA851C18CF9AACA3B0926B2AAA5A628C07D97BF2C7C24F27D98FDAC6E
Chrome Cache Entry: 144	Unicode text, UTF-8 text, with very long lines (47124), with NEL line terminators	CB89686C7EA998E78A087B513D31D63A	2FF260068D33A00F4401C98009B629F44F64C4E9	C60AECBCA851C18CF9AACA3B0926B2AAA5A628C07D97BF2C7C24F27D98FDAC6E
Chrome Cache Entry: 145	Web Open Font Format (Version 2), TrueType, length 77160, version 4.459	AF7AE505A9EED503F8B8E6982036873E	D6F48CBA7D076FB6F2FD6BA993A75B9DC1ECBF0C	2ADEFCBC041E7D18FCF2D417879DC5A09997AA64D675B7A3C4B6CE33DA13F3FE
Chrome Cache Entry: 146	ASCII text, with very long lines (1621)	CA38A87A6C6AEEDCB2E175F99CD7C6FB	E0B51B38E39473D63F32AC7F17AFE1403711E2A6	0BFF01B41B8CB4029163BB35826202FA274A6E27570D61AAA39232FC5158275E
Chrome Cache Entry: 147	ASCII text, with very long lines (65468)	32F4FA4ECCB6A6820192CDA118740320	FDF120A5541118E9F89F614A6086C3C952548775	46BEA9FBF01351E6B48CC01E2151A72207D7049691B25C197E17CC4A89125C20
Chrome Cache Entry: 148	Web Open Font Format (Version 2), TrueType, length 234260, version 1.0	B37ECD8895B373064F6E8630804F08AA	F2BFB2774A6294A641973B2920A9B2D7B2D863C9	7B0041C48BA67087FCF5F6E8EC8D24E95DB06CAE9BF78C45B4542984BCB7208C
Chrome Cache Entry: 149	Unicode text, UTF-8 text, with very long lines (64979), with no line terminators	5FF7CC8CA5035914BF6A7C5E2FD044DB	F96D54F2663E5C915CB65CB1611CD8D9B2ABE083	789B9508D2CA03EC0D97F688C00C578D17EF154179BD6BB4D5256C30A5D10025
Chrome Cache Entry: 150	ASCII text	CC3C17D31CFDA473CA545554C30794AC	B64FA9CF9CBA5BA68567EC8FEA1A229B023F9FFD	4F70A22F0D4E8ED3F4F2F823F7385328CBAAEDFF0EAE324A51287C3C1CBA4F92
Chrome Cache Entry: 151	Web Open Font Format (Version 2), TrueType, length 220536, version 1.0	059D2EDEB663A16DE959975D5ED21DB8	3674A0E6FBC086CF109A1B192EF5016D328FDFA5	3231B77EE2775DADBAA76DE85F95763976AFF1091F63A67FA553D727A6EDB933
Chrome Cache Entry: 152	ASCII text	48F64032F368F28EB6BCC023E8356131	53DA77839238159D512DCB4BBB42B6D81E26AA65	FB30947A7F55B40C8E6AA8F2F8A65CAF2A2ACBC6E6A6E213EA4F3436AD0C9516
Chrome Cache Entry: 153	Unicode text, UTF-8 text, with very long lines (64791)	0B39246A2DF73C7B5A66B4DC5C611C4A	1BB458B0F66582B30832EBFE3BCD8367EED6BF18	631A0099861F33E4A735B776CA139A62C5AEE33283826248349F298B2E590875
Chrome Cache Entry: 154	PNG image data, 55 x 44, 8-bit colormap, non-interlaced	661D5E043242A61588175B0DD1FC6E45	246E4DE900E5525A65790655E6DE3D632649AB1A	040D47627017D1C0B6CCDB613ADDEDBE7230EC423056A4E43473FA8ECA3BC66B
Chrome Cache Entry: 155	Unicode text, UTF-8 text, with CRLF, LF line terminators	C4B61D2A21F2723EA6D6F6A68412D1F2	1ACB40561D2D5E9E43D061B39B2C8C0CD3E8CCD2	3031AA1B654CA979F7577E4706173D35A9D8FF35CBDB80A8E4911FD9423E2BC4
Chrome Cache Entry: 156	PNG image data, 41 x 41, 8-bit/color RGBA, non-interlaced	998DC68493A838B8500BF3377CF3F8DB	FD04D699F91541F5ABE080B96B61696436758B76	8CA7314C7C38DA00143BFC118009DE7A90BF87488C2C5F4605B3AAFBF6500D09
Chrome Cache Entry: 157	ASCII text	D95841F7F8CA1E64B29B14EC1BF8B625	99ADB1F42583DF74F9529B472EFC3D95921A7A01	F46F8884CEAA4D6AECBAD6B256014C541AB5F892B0D403F7B3F4E4CE9C6673D9
Chrome Cache Entry: 158	HTML document, Unicode text, UTF-8 text, with very long lines (11857)	BAA6703AE31B710081BC8F40796507CC	62A80AF2056252EF1942CB8CD392F8A67D8757C9	B5A9BF072ADE217AB958474521D73134E7C3520E2FB56722A8BF555769DBFF72
Chrome Cache Entry: 159	Web Open Font Format (Version 2), TrueType, length 14140, version 1.0	FE6211ADC96DEA156EEAB09139C4789E	882548E4F33B2645D1E2A7767DF649AE13423130	ECE874C827DF61F534C2386E1A019CA41DED745AC72C8CD7CB4593259EC8A98E
Chrome Cache Entry: 160	Unicode text, UTF-8 text, with very long lines (64142), with no line terminators	0F956D70E0C3D9ADA690572257C241C3	25651C4C2691FB84A661862281E14956F7F4682A	0D87F2089A0F3B4F9AFE25DE2DEFB9BA8604A2586EAF1C0A0DB1B72D3BBEF782
Chrome Cache Entry: 161	SVG Scalable Vector Graphics image	2D43F24008EF4F53F4FB37A1EA995C5E	2EBB4E3408529D41A923BEB5EB7863157991C839	9EBD3AABAB461B12E7297EB32B77BEC1DC7E06C1AEA36FAEE1E5D49DE711CCA9
Chrome Cache Entry: 162	PNG image data, 32 x 32, 8-bit/color RGB, non-interlaced	0E73385E8CD77F1E6CA06F210AE1CFD7	99072C99CCC74857A3BDA2E75944544A244D8297	1F0BC2440CEB5EB4DE69F19166563FE3F386B9D5EAA498A000CAEAFAEB2E57C6
Chrome Cache Entry: 163	JSON data	3C6F24A4E5427E163B340FF2CBE41066	C9245156868F56F57114598E95A1DCA0EF8706E6	5B616FEA5CE81618EAE78DAEB9038E6B101712D3A07542A7C99222F524DDE1A8
Chrome Cache Entry: 164	ASCII text, with very long lines (6983), with no line terminators	33E5F7B4CD1360FA6599E7ADCBB494DD	899CB51CCB51A5560FFB399FD7AA22D175EEBE05	7AEBD37D8BF463AB9608270C72B559B4409B1AF7F7BA5799D2541E0BE027F06F
Chrome Cache Entry: 165	ASCII text, with very long lines (432)	7EC78B141B996CC21791F4CEDE96835A	2DB67DBDD357EC484017735D91A93C6F2A71324A	304509C623CF149B85192D5C4DD22EE1EA382EA6E1A5CB737661A4CCE0FE0FA6
Chrome Cache Entry: 166	ASCII text, with very long lines (65536), with no line terminators	E8E8B7A18F4EBDA24A25F702B22FA5C1	45DF73C1E3A0A3221A36654FCC46250E31D44C3C	B740DD04F5C2A05AC983F4716999989B7A05B48C7E4717F77729B3DF19E97E3C
Chrome Cache Entry: 167	ASCII text, with very long lines (61816)	E117C52AA120AF175C53D47940799C63	27194EB74566CA87B21B33D9D4A784591FA2ACED	F2C7EBD470B82C72F842FD3EADA1C0F41731C596C63302E80C65DDB33DA46B72
Chrome Cache Entry: 168	ASCII text, with very long lines (11742)	FF706D7FC775DABEBA9743DAABB0DD2A	C8AAD45ABBAE4DB500C1229FFB03C63F65F48BA5	C9EB57CF46D1986209C6D556D3AB36A8865B8448C5C491805E6232F93AD75B22
Chrome Cache Entry: 169	Unicode text, UTF-8 text, with very long lines (64992), with no line terminators	C246FE2828CCFFEF6227F4D5EFB9A6CC	003A1DDE0BA658411D6704BE00EA9F17566A70C8	E4FD439F7A177B44246F2DAD59FF7EB43DD876BC7B716EB0C0D88B568B0A4589
Chrome Cache Entry: 170	PNG image data, 5652 x 15, 8-bit/color RGBA, non-interlaced	416250F60D785A2E02F17E054D2E4E44	21572C9751E5A3DC20395BEFA0FCB349C32C4811	0A012CF808A24573168308916092D2D4BD3F2B4AF8E16B59167013CC77ACEE55
Chrome Cache Entry: 171	ASCII text, with very long lines (60050)	41331AE4A2FCD0F4A505B4A2D8F224C9	C1C9C43533FA400E282A57A52D77E5E1EFC3D500	31E05AAE107426F3697CC03499F76B9835595205947BF5A5CF8E93FC1E472A97
Chrome Cache Entry: 172	ASCII text, with very long lines (60050)	41331AE4A2FCD0F4A505B4A2D8F224C9	C1C9C43533FA400E282A57A52D77E5E1EFC3D500	31E05AAE107426F3697CC03499F76B9835595205947BF5A5CF8E93FC1E472A97
Chrome Cache Entry: 173	ASCII text, with very long lines (61395)	765F8A6B9AD91D564B2D86D20A4DD218	9017C451D5F71DE5A32EB1855B75578D138CFF78	9C68C82BB22BAE0B62969556CCF4E74C947F7A39B70FB177B9967466C6539DBB
Chrome Cache Entry: 174	PNG image data, 41 x 41, 8-bit/color RGBA, non-interlaced	58248AA2AD97D6E3B9253C10DB0BA30B	724D6D3500C417FABC460A89443E541A1D1DE177	C103BB15A7776A00250DBF73759326A7B79AC6D2A1A236396EF7E0B61FC16AA1
Chrome Cache Entry: 175	ASCII text, with very long lines (49996)	385D019E629DFC6CB9B8966EC47F0D13	338A9663F029F0A063AAE9D3372B149F77CB1DA8	24905B938816E6954E065C633C889E2B968E9E915E69471058728A3C0AC6C105
Chrome Cache Entry: 176	ASCII text, with no line terminators	06CA92A6F6D85A2CE2EF5F3B989BF5E2	562560E98F033DEF297DE209B662065A8A6EA12A	C18C5F5E852E13BA76B9F9A863468A880CF314BB93266EC225D93A2EF3698639
Chrome Cache Entry: 177	Unicode text, UTF-8 text, with CRLF, LF line terminators	972CF44292BB6D314BC7F8FBC6B607EF	4714997A92689CA124E5FE9BF9E4374E1338CC1C	425E1BB5789C9B88305BA9BD2C8CE3CA9A476C2D0D4399DC04A3C4A350380928
Chrome Cache Entry: 178	TrueType Font data, 15 tables, 1st "FFTM", 14 names, Macintosh, Copyright (c) 2018, Gurpreet Kaur Balgir1shared-iconsiconsFontForge 2.0 : shared-icons : 23-7-20	E48C756B6037D6D7EC88E3E75F2F0E83	7822FDF8E0E11F419930F413E2B9766284543EB5	7B28292CD7FB89CAF6051AD0EB4E464C1EA4F83062842AA95CC697152A135D48
Chrome Cache Entry: 179	ASCII text	D95841F7F8CA1E64B29B14EC1BF8B625	99ADB1F42583DF74F9529B472EFC3D95921A7A01	F46F8884CEAA4D6AECBAD6B256014C541AB5F892B0D403F7B3F4E4CE9C6673D9
Chrome Cache Entry: 180	ASCII text	48F64032F368F28EB6BCC023E8356131	53DA77839238159D512DCB4BBB42B6D81E26AA65	FB30947A7F55B40C8E6AA8F2F8A65CAF2A2ACBC6E6A6E213EA4F3436AD0C9516
Chrome Cache Entry: 181	ASCII text, with very long lines (61395)	765F8A6B9AD91D564B2D86D20A4DD218	9017C451D5F71DE5A32EB1855B75578D138CFF78	9C68C82BB22BAE0B62969556CCF4E74C947F7A39B70FB177B9967466C6539DBB
Chrome Cache Entry: 182	PNG image data, 55 x 44, 8-bit colormap, non-interlaced	661D5E043242A61588175B0DD1FC6E45	246E4DE900E5525A65790655E6DE3D632649AB1A	040D47627017D1C0B6CCDB613ADDEDBE7230EC423056A4E43473FA8ECA3BC66B
Chrome Cache Entry: 183	JSON data	BD47D84B0162700CBB151564F4E1EA1B	11DD16218E7DABE93815CEC08032BB950E55BF24	1809970A58BCFACC3A62992D815CE22737B97D0FBF2BF44858F8DBC250391BDF
Chrome Cache Entry: 184	TrueType Font data, 18 tables, 1st "GDEF", 26 names, Macintosh, Copyright 2011 Google Inc. All Rights Reserved.RobotoRegularVersion 2.137; 2017Roboto-RegularRob	3E1AF3EF546B9E6ECEF9F3BA197BF7D2	DD1B1DB13FF1F72138C134C62F38FEF83749F36A	79E851404657DAC2106B3D22AD256D47824A9A5765458EDB72C9102A45816D95
Chrome Cache Entry: 185	ASCII text, with very long lines (65453)	A78AF43FAB840B7E3B95735BD323ED5D	DAFEF8BF1545DA679D6DE2EA59F3445940ABEC91	B4AF9044E4527B02A27FB80891E443202D8D09BCD9A25340682E7A4599A81599
Chrome Cache Entry: 186	ASCII text, with very long lines (65536), with no line terminators	00457FBC4A59737B8E35F6AB9FA9CB0C	18E6E6066B28939E219A4CF8E45F07CF25C601F8	F5EC5CFEFC085F50D63BC1E671B579DE23B1F9C0999A60DE6853552910730A31
Chrome Cache Entry: 187	PNG image data, 435 x 151, 8-bit/color RGBA, non-interlaced	CA89CA3540A0094F63796140AECD2569	049EABDEA799C8DF5425F87CFA1F021DCF48FA58	BD9F83380EA8FD7DB78BB1359EECE22F8B855481F8331D10C7062D37186886F6
Chrome Cache Entry: 188	HTML document, Unicode text, UTF-8 text, with very long lines (11857)	BAA6703AE31B710081BC8F40796507CC	62A80AF2056252EF1942CB8CD392F8A67D8757C9	B5A9BF072ADE217AB958474521D73134E7C3520E2FB56722A8BF555769DBFF72
Chrome Cache Entry: 189	ASCII text, with very long lines (432)	7EC78B141B996CC21791F4CEDE96835A	2DB67DBDD357EC484017735D91A93C6F2A71324A	304509C623CF149B85192D5C4DD22EE1EA382EA6E1A5CB737661A4CCE0FE0FA6
Chrome Cache Entry: 190	Web Open Font Format, TrueType, length 9552, version 1.0	E9E7624727BA14678B9A71B6F90745E3	0F0B7625CD06387C601F1632B0F69719B920F68A	6DE3580FDEACE0FF74927B2449E34587DD0B2A03C7711CF0087925E25429EFE3
Chrome Cache Entry: 191	MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel	891E510219786F543CA998282ED99F45	19FE2FF6A2418BCB44B02308B998CEF84199EE08	E4BDF72E2F803F7E19907C12F407AC7F7CD5F1F94BFD730B9BE24B0D49191B48
Chrome Cache Entry: 192	JSON data	BD47D84B0162700CBB151564F4E1EA1B	11DD16218E7DABE93815CEC08032BB950E55BF24	1809970A58BCFACC3A62992D815CE22737B97D0FBF2BF44858F8DBC250391BDF
Chrome Cache Entry: 193	Unicode text, UTF-8 text, with very long lines (64791)	0B39246A2DF73C7B5A66B4DC5C611C4A	1BB458B0F66582B30832EBFE3BCD8367EED6BF18	631A0099861F33E4A735B776CA139A62C5AEE33283826248349F298B2E590875
Chrome Cache Entry: 194	Unicode text, UTF-8 text, with very long lines (64945), with no line terminators	AFB1ACE4DCC38C8E776DF3E969FF3F25	4405D094F18FF7ED533C79B064B35314764ABB24	7C97771CE3A7AB9AD7DD7F6E047FD17395915FA89AA3C5C250EFD7971762C084
Chrome Cache Entry: 195	PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced	36628D41138BD45A55C901B64F0FF98E	0A3B98F475893B9B39D969F5AADE4E4E288CCFBF	EFD2034F9F4151FA39299BC91EA548E8F303B3B3DFD4C52B07D27DAF9BFE6CB8
Chrome Cache Entry: 196	ASCII text, with very long lines (12505)	ADF5BE3456C326E8848438C776EC7C29	C59C27A2C55BA6FD3C86BA4A4A2F6CCFECEC5BCC	7858D220124EE618D062B51F055A900FA382C1B8D6056AA5E24258953F844620
Chrome Cache Entry: 197	Unicode text, UTF-8 text, with very long lines (45262)	7FB24D229E183AB411ED7662850CE5A0	AB45D979CF4185CA6B49BA7BCEBD7C0EA7A52F1A	834F65E861D9E517777F27EBC9BBD2A2FDB291C9D2D913D03E8BAD40600DA99A
Chrome Cache Entry: 198	PNG image data, 5652 x 15, 8-bit/color RGBA, non-interlaced	416250F60D785A2E02F17E054D2E4E44	21572C9751E5A3DC20395BEFA0FCB349C32C4811	0A012CF808A24573168308916092D2D4BD3F2B4AF8E16B59167013CC77ACEE55
Chrome Cache Entry: 199	ASCII text, with very long lines (49996)	385D019E629DFC6CB9B8966EC47F0D13	338A9663F029F0A063AAE9D3372B149F77CB1DA8	24905B938816E6954E065C633C889E2B968E9E915E69471058728A3C0AC6C105
Chrome Cache Entry: 200	PNG image data, 41 x 41, 8-bit/color RGBA, non-interlaced	998DC68493A838B8500BF3377CF3F8DB	FD04D699F91541F5ABE080B96B61696436758B76	8CA7314C7C38DA00143BFC118009DE7A90BF87488C2C5F4605B3AAFBF6500D09
Chrome Cache Entry: 201	ASCII text, with no line terminators	A995CE7CB1A998673679B6C0B4E346AB	8212F2EAB4920A5B4F67A7C32EA847918818C3EE	976DAD86563D55F8AF1EDA1DBF885BEA55FFD0984F62817CB0359268254C692C
Chrome Cache Entry: 202	TrueType Font data, 18 tables, 1st "GDEF", 26 names, Macintosh, Copyright 2011 Google Inc. All Rights Reserved.RobotoBoldRoboto BoldVersion 2.137; 2017Roboto-Bo	EE7B96FA85D8FDB8C126409326AC2D2B	0CE37CED9C5FCAC9BDC452A432C1258870BA4677	7D0B991EE3E0BE7AF01AD7EA8CD2BEEA6C00A25E679A0226B6737F079AAFFF86
Chrome Cache Entry: 203	PNG image data, 435 x 151, 8-bit/color RGBA, non-interlaced	CA89CA3540A0094F63796140AECD2569	049EABDEA799C8DF5425F87CFA1F021DCF48FA58	BD9F83380EA8FD7DB78BB1359EECE22F8B855481F8331D10C7062D37186886F6
Chrome Cache Entry: 204	ASCII text, with very long lines (1621)	CA38A87A6C6AEEDCB2E175F99CD7C6FB	E0B51B38E39473D63F32AC7F17AFE1403711E2A6	0BFF01B41B8CB4029163BB35826202FA274A6E27570D61AAA39232FC5158275E

Form action URLs do not match main URL

Source: https://appleid.apple.com/auth/authorize?client_id=com.saltoks&redirect_uri=https%3A%2F%2Fidentity.eu.my-clay.com%2Ffederation%2Fapple%2Fsignin&response_type=code%20id_token&scope=openid%20name%20email&response_mode=form_post&nonce=638725669239955805.NWViZTZiMWQtYzA5Yi00ZDk3LTk3NDMtYWNiODk2NDhkMmIwMzg1NDA4NDMtNTcxYS00MjE3LWIwYmItNWE0ZjY3MDIwNWIz&state=CfDJ8KgkDTOKMMpOuP36p3DozxsFursk5PSsorWoh4tyne5_El5GnOJMHRff52ZWRNh7ApdIOwqJ1v7hCfPbbsNdVy5N0U12cFwLOTqqPeN_JvcUuIgRyZ_6k76ImUXlkyh_ii-r8bzpKxl9CyUE9RLIvmPtySOjY9jIx7F8NhmyClqaWPTyZN5bHJdK9AvO1NzqODYj4m4HYY2ApOyf3Z8tiauKcZdcLpDAY7D_LHvdenTu95LofVh-yaU1Qp6O-WPNy0isWN_yakoqSJfSBbvRndBVOPRiNweDU9tzlpbPB8barcLK_4ld4fDrciRP1pmoz9lBw4jd9LanCNkFhHi0BW6slnSCSyUmj22Z7wKRCU0NcKy9oDz5XmDFoLiASRBLcpK5fHFlXurU5OiipIhzHTXrHVmtyaQNI88grRWHNvi95RC_HL-8fBtd4Iql1FYVez7o-3qstxutuT5Ug6J4tEk63JVn-2mwnn3dZa8tonUxG2OSSkcjFmIvN2O54b__Iw	HTTP Parser: Form action: https://identity.eu.my-clay.com/federation/apple/signin apple my-clay
Source: https://appleid.apple.com/auth/authorize?client_id=com.saltoks&redirect_uri=https%3A%2F%2Fidentity.eu.my-clay.com%2Ffederation%2Fapple%2Fsignin&response_type=code%20id_token&scope=openid%20name%20email&response_mode=form_post&nonce=638725669239955805.NWViZTZiMWQtYzA5Yi00ZDk3LTk3NDMtYWNiODk2NDhkMmIwMzg1NDA4NDMtNTcxYS00MjE3LWIwYmItNWE0ZjY3MDIwNWIz&state=CfDJ8KgkDTOKMMpOuP36p3DozxsFursk5PSsorWoh4tyne5_El5GnOJMHRff52ZWRNh7ApdIOwqJ1v7hCfPbbsNdVy5N0U12cFwLOTqqPeN_JvcUuIgRyZ_6k76ImUXlkyh_ii-r8bzpKxl9CyUE9RLIvmPtySOjY9jIx7F8NhmyClqaWPTyZN5bHJdK9AvO1NzqODYj4m4HYY2ApOyf3Z8tiauKcZdcLpDAY7D_LHvdenTu95LofVh-yaU1Qp6O-WPNy0isWN_yakoqSJfSBbvRndBVOPRiNweDU9tzlpbPB8barcLK_4ld4fDrciRP1pmoz9lBw4jd9LanCNkFhHi0BW6slnSCSyUmj22Z7wKRCU0NcKy9oDz5XmDFoLiASRBLcpK5fHFlXurU5OiipIhzHTXrHVmtyaQNI88grRWHNvi95RC_HL-8fBtd4Iql1FYVez7o-3qstxutuT5Ug6J4tEk63JVn-2mwnn3dZa8tonUxG2OSSkcjFmIvN2O54b__Iw	HTTP Parser: Form action: https://identity.eu.my-clay.com/federation/apple/signin apple my-clay

HTML body contains low number of good links

HTTP Parser: Number of links: 0

HTML page contains hidden javascript code

HTTP Parser: Base64 decoded: 5ebe6b1d-c09b-4d97-9743-acb89648d2b038540843-571a-4217-b0bb-5a4f670205b3

HTML title does not match URL

Source: https://identity.eu.my-clay.com/Account/CompleteRegistration?code=CfDJ8KgkDTOKMMpOuP36p3Dozxt8PELhFtKv7XhGiLvUJb65B4gsgrZAJNeoWOl3%2bJqjFC0z2PgNNrBPIYyDQpCLYYktywk8FL8riSS1Gw9JoQjzsJeXeEGLQPLN93pvJbRNrEaprcXkfbiWItEC6wUTL8%2bUI3JeJ18XbphkqGM9o3eFYb5fspQpTOcpN9%2fgGTMKuaFzVmBdnIyLH8B%2fLvMz8bqGONRUa%2b4n5ZxQZjpAMETBM05PT8wJDX5x%2fItYEfQcxQ%3d%3d&clientId=cbe74aaf-5932-4749-b07e-9d26c8bb0d6b&productId=a5fda6d4-6817-40f1-8635-4131db3054cb	HTTP Parser: Title: Complete your profile does not match URL
Source: https://appleid.apple.com/auth/authorize?client_id=com.saltoks&redirect_uri=https%3A%2F%2Fidentity.eu.my-clay.com%2Ffederation%2Fapple%2Fsignin&response_type=code%20id_token&scope=openid%20name%20email&response_mode=form_post&nonce=638725669239955805.NWViZTZiMWQtYzA5Yi00ZDk3LTk3NDMtYWNiODk2NDhkMmIwMzg1NDA4NDMtNTcxYS00MjE3LWIwYmItNWE0ZjY3MDIwNWIz&state=CfDJ8KgkDTOKMMpOuP36p3DozxsFursk5PSsorWoh4tyne5_El5GnOJMHRff52ZWRNh7ApdIOwqJ1v7hCfPbbsNdVy5N0U12cFwLOTqqPeN_JvcUuIgRyZ_6k76ImUXlkyh_ii-r8bzpKxl9CyUE9RLIvmPtySOjY9jIx7F8NhmyClqaWPTyZN5bHJdK9AvO1NzqODYj4m4HYY2ApOyf3Z8tiauKcZdcLpDAY7D_LHvdenTu95LofVh-yaU1Qp6O-WPNy0isWN_yakoqSJfSBbvRndBVOPRiNweDU9tzlpbPB8barcLK_4ld4fDrciRP1pmoz9lBw4jd9LanCNkFhHi0BW6slnSCSyUmj22Z7wKRCU0NcKy9oDz5XmDFoLiASRBLcpK5fHFlXurU5OiipIhzHTXrHVmtyaQNI88grRWHNvi95RC_HL-8fBtd4Iql1FYVez7o-3qstxutuT5Ug6J4tEk63JVn-2mwnn3dZa8tonUxG2OSSkcjFmIvN2O54b__Iw	HTTP Parser: Title: Sign in to AppleAccount does not match URL

Source: https://identity.eu.my-clay.com/Account/CompleteRegistration?code=CfDJ8KgkDTOKMMpOuP36p3Dozxt8PELhFtKv7XhGiLvUJb65B4gsgrZAJNeoWOl3%2bJqjFC0z2PgNNrBPIYyDQpCLYYktywk8FL8riSS1Gw9JoQjzsJeXeEGLQPLN93pvJbRNrEaprcXkfbiWItEC6wUTL8%2bUI3JeJ18XbphkqGM9o3eFYb5fspQpTOcpN9%2fgGTMKuaFzVmBdnIyLH8B%2fLvMz8bqGONRUa%2b4n5ZxQZjpAMETBM05PT8wJDX5x%2fItYEfQcxQ%3d%3d&clientId=cbe74aaf-5932-4749-b07e-9d26c8bb0d6b&productId=a5fda6d4-6817-40f1-8635-4131db3054cb	HTTP Parser: <input type="password" .../> found
Source: https://appleid.apple.com/auth/authorize?client_id=com.saltoks&redirect_uri=https%3A%2F%2Fidentity.eu.my-clay.com%2Ffederation%2Fapple%2Fsignin&response_type=code%20id_token&scope=openid%20name%20email&response_mode=form_post&nonce=638725669239955805.NWViZTZiMWQtYzA5Yi00ZDk3LTk3NDMtYWNiODk2NDhkMmIwMzg1NDA4NDMtNTcxYS00MjE3LWIwYmItNWE0ZjY3MDIwNWIz&state=CfDJ8KgkDTOKMMpOuP36p3DozxsFursk5PSsorWoh4tyne5_El5GnOJMHRff52ZWRNh7ApdIOwqJ1v7hCfPbbsNdVy5N0U12cFwLOTqqPeN_JvcUuIgRyZ_6k76ImUXlkyh_ii-r8bzpKxl9CyUE9RLIvmPtySOjY9jIx7F8NhmyClqaWPTyZN5bHJdK9AvO1NzqODYj4m4HYY2ApOyf3Z8tiauKcZdcLpDAY7D_LHvdenTu95LofVh-yaU1Qp6O-WPNy0isWN_yakoqSJfSBbvRndBVOPRiNweDU9tzlpbPB8barcLK_4ld4fDrciRP1pmoz9lBw4jd9LanCNkFhHi0BW6slnSCSyUmj22Z7wKRCU0NcKy9oDz5XmDFoLiASRBLcpK5fHFlXurU5OiipIhzHTXrHVmtyaQNI88grRWHNvi95RC_HL-8fBtd4Iql1FYVez7o-3qstxutuT5Ug6J4tEk63JVn-2mwnn3dZa8tonUxG2OSSkcjFmIvN2O54b__Iw	HTTP Parser: <input type="password" .../> found

Source: https://identity.eu.my-clay.com/Account/CompleteRegistration?code=CfDJ8KgkDTOKMMpOuP36p3Dozxt8PELhFtKv7XhGiLvUJb65B4gsgrZAJNeoWOl3%2bJqjFC0z2PgNNrBPIYyDQpCLYYktywk8FL8riSS1Gw9JoQjzsJeXeEGLQPLN93pvJbRNrEaprcXkfbiWItEC6wUTL8%2bUI3JeJ18XbphkqGM9o3eFYb5fspQpTOcpN9%2fgGTMKuaFzVmBdnIyLH8B%2fLvMz8bqGONRUa%2b4n5ZxQZjpAMETBM05PT8wJDX5x%2fItYEfQcxQ%3d%3d&clientId=cbe74aaf-5932-4749-b07e-9d26c8bb0d6b&productId=a5fda6d4-6817-40f1-8635-4131db3054cb	HTTP Parser: No <meta name="author".. found
Source: https://appleid.apple.com/auth/authorize?client_id=com.saltoks&redirect_uri=https%3A%2F%2Fidentity.eu.my-clay.com%2Ffederation%2Fapple%2Fsignin&response_type=code%20id_token&scope=openid%20name%20email&response_mode=form_post&nonce=638725669239955805.NWViZTZiMWQtYzA5Yi00ZDk3LTk3NDMtYWNiODk2NDhkMmIwMzg1NDA4NDMtNTcxYS00MjE3LWIwYmItNWE0ZjY3MDIwNWIz&state=CfDJ8KgkDTOKMMpOuP36p3DozxsFursk5PSsorWoh4tyne5_El5GnOJMHRff52ZWRNh7ApdIOwqJ1v7hCfPbbsNdVy5N0U12cFwLOTqqPeN_JvcUuIgRyZ_6k76ImUXlkyh_ii-r8bzpKxl9CyUE9RLIvmPtySOjY9jIx7F8NhmyClqaWPTyZN5bHJdK9AvO1NzqODYj4m4HYY2ApOyf3Z8tiauKcZdcLpDAY7D_LHvdenTu95LofVh-yaU1Qp6O-WPNy0isWN_yakoqSJfSBbvRndBVOPRiNweDU9tzlpbPB8barcLK_4ld4fDrciRP1pmoz9lBw4jd9LanCNkFhHi0BW6slnSCSyUmj22Z7wKRCU0NcKy9oDz5XmDFoLiASRBLcpK5fHFlXurU5OiipIhzHTXrHVmtyaQNI88grRWHNvi95RC_HL-8fBtd4Iql1FYVez7o-3qstxutuT5Ug6J4tEk63JVn-2mwnn3dZa8tonUxG2OSSkcjFmIvN2O54b__Iw	HTTP Parser: No <meta name="author".. found
Source: https://appleid.apple.com/auth/authorize?client_id=com.saltoks&redirect_uri=https%3A%2F%2Fidentity.eu.my-clay.com%2Ffederation%2Fapple%2Fsignin&response_type=code%20id_token&scope=openid%20name%20email&response_mode=form_post&nonce=638725669239955805.NWViZTZiMWQtYzA5Yi00ZDk3LTk3NDMtYWNiODk2NDhkMmIwMzg1NDA4NDMtNTcxYS00MjE3LWIwYmItNWE0ZjY3MDIwNWIz&state=CfDJ8KgkDTOKMMpOuP36p3DozxsFursk5PSsorWoh4tyne5_El5GnOJMHRff52ZWRNh7ApdIOwqJ1v7hCfPbbsNdVy5N0U12cFwLOTqqPeN_JvcUuIgRyZ_6k76ImUXlkyh_ii-r8bzpKxl9CyUE9RLIvmPtySOjY9jIx7F8NhmyClqaWPTyZN5bHJdK9AvO1NzqODYj4m4HYY2ApOyf3Z8tiauKcZdcLpDAY7D_LHvdenTu95LofVh-yaU1Qp6O-WPNy0isWN_yakoqSJfSBbvRndBVOPRiNweDU9tzlpbPB8barcLK_4ld4fDrciRP1pmoz9lBw4jd9LanCNkFhHi0BW6slnSCSyUmj22Z7wKRCU0NcKy9oDz5XmDFoLiASRBLcpK5fHFlXurU5OiipIhzHTXrHVmtyaQNI88grRWHNvi95RC_HL-8fBtd4Iql1FYVez7o-3qstxutuT5Ug6J4tEk63JVn-2mwnn3dZa8tonUxG2OSSkcjFmIvN2O54b__Iw	HTTP Parser: No <meta name="author".. found

Source: https://identity.eu.my-clay.com/Account/CompleteRegistration?code=CfDJ8KgkDTOKMMpOuP36p3Dozxt8PELhFtKv7XhGiLvUJb65B4gsgrZAJNeoWOl3%2bJqjFC0z2PgNNrBPIYyDQpCLYYktywk8FL8riSS1Gw9JoQjzsJeXeEGLQPLN93pvJbRNrEaprcXkfbiWItEC6wUTL8%2bUI3JeJ18XbphkqGM9o3eFYb5fspQpTOcpN9%2fgGTMKuaFzVmBdnIyLH8B%2fLvMz8bqGONRUa%2b4n5ZxQZjpAMETBM05PT8wJDX5x%2fItYEfQcxQ%3d%3d&clientId=cbe74aaf-5932-4749-b07e-9d26c8bb0d6b&productId=a5fda6d4-6817-40f1-8635-4131db3054cb	HTTP Parser: No <meta name="copyright".. found
Source: https://appleid.apple.com/auth/authorize?client_id=com.saltoks&redirect_uri=https%3A%2F%2Fidentity.eu.my-clay.com%2Ffederation%2Fapple%2Fsignin&response_type=code%20id_token&scope=openid%20name%20email&response_mode=form_post&nonce=638725669239955805.NWViZTZiMWQtYzA5Yi00ZDk3LTk3NDMtYWNiODk2NDhkMmIwMzg1NDA4NDMtNTcxYS00MjE3LWIwYmItNWE0ZjY3MDIwNWIz&state=CfDJ8KgkDTOKMMpOuP36p3DozxsFursk5PSsorWoh4tyne5_El5GnOJMHRff52ZWRNh7ApdIOwqJ1v7hCfPbbsNdVy5N0U12cFwLOTqqPeN_JvcUuIgRyZ_6k76ImUXlkyh_ii-r8bzpKxl9CyUE9RLIvmPtySOjY9jIx7F8NhmyClqaWPTyZN5bHJdK9AvO1NzqODYj4m4HYY2ApOyf3Z8tiauKcZdcLpDAY7D_LHvdenTu95LofVh-yaU1Qp6O-WPNy0isWN_yakoqSJfSBbvRndBVOPRiNweDU9tzlpbPB8barcLK_4ld4fDrciRP1pmoz9lBw4jd9LanCNkFhHi0BW6slnSCSyUmj22Z7wKRCU0NcKy9oDz5XmDFoLiASRBLcpK5fHFlXurU5OiipIhzHTXrHVmtyaQNI88grRWHNvi95RC_HL-8fBtd4Iql1FYVez7o-3qstxutuT5Ug6J4tEk63JVn-2mwnn3dZa8tonUxG2OSSkcjFmIvN2O54b__Iw	HTTP Parser: No <meta name="copyright".. found
Source: https://appleid.apple.com/auth/authorize?client_id=com.saltoks&redirect_uri=https%3A%2F%2Fidentity.eu.my-clay.com%2Ffederation%2Fapple%2Fsignin&response_type=code%20id_token&scope=openid%20name%20email&response_mode=form_post&nonce=638725669239955805.NWViZTZiMWQtYzA5Yi00ZDk3LTk3NDMtYWNiODk2NDhkMmIwMzg1NDA4NDMtNTcxYS00MjE3LWIwYmItNWE0ZjY3MDIwNWIz&state=CfDJ8KgkDTOKMMpOuP36p3DozxsFursk5PSsorWoh4tyne5_El5GnOJMHRff52ZWRNh7ApdIOwqJ1v7hCfPbbsNdVy5N0U12cFwLOTqqPeN_JvcUuIgRyZ_6k76ImUXlkyh_ii-r8bzpKxl9CyUE9RLIvmPtySOjY9jIx7F8NhmyClqaWPTyZN5bHJdK9AvO1NzqODYj4m4HYY2ApOyf3Z8tiauKcZdcLpDAY7D_LHvdenTu95LofVh-yaU1Qp6O-WPNy0isWN_yakoqSJfSBbvRndBVOPRiNweDU9tzlpbPB8barcLK_4ld4fDrciRP1pmoz9lBw4jd9LanCNkFhHi0BW6slnSCSyUmj22Z7wKRCU0NcKy9oDz5XmDFoLiASRBLcpK5fHFlXurU5OiipIhzHTXrHVmtyaQNI88grRWHNvi95RC_HL-8fBtd4Iql1FYVez7o-3qstxutuT5Ug6J4tEk63JVn-2mwnn3dZa8tonUxG2OSSkcjFmIvN2O54b__Iw	HTTP Parser: No <meta name="copyright".. found

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

Directory created: C:\Program Files\Google\Chrome\Application\Dictionaries

Jump to behavior

Source: global traffic	HTTP traffic detected: GET /?callback=jQuery37105484807738369033_1736970097837&_=1736970097838 HTTP/1.1Host: ipinfo.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /?callback=jQuery37105484807738369033_1736970097837&_=1736970097838 HTTP/1.1Host: ipinfo.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9

Source: chromecache_141.2.dr	String found in binary or memory: "https://www.facebook.com/Apple", equals www.facebook.com (Facebook)
Source: chromecache_141.2.dr	String found in binary or memory: "https://www.linkedin.com/company/apple", equals www.linkedin.com (Linkedin)
Source: chromecache_141.2.dr	String found in binary or memory: "https://www.twitter.com/Apple" equals www.twitter.com (Twitter)
Source: chromecache_141.2.dr	String found in binary or memory: "https://www.youtube.com/user/Apple", equals www.youtube.com (Youtube)

Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: identity.eu.my-clay.com
Source: global traffic	DNS traffic detected: DNS query: ipinfo.io
Source: global traffic	DNS traffic detected: DNS query: is1-ssl.mzstatic.com

Source: chromecache_188.2.dr, chromecache_196.2.dr, chromecache_130.2.dr, chromecache_158.2.dr	String found in binary or memory: http://baris.aydinoglu.info)
Source: chromecache_188.2.dr, chromecache_196.2.dr, chromecache_130.2.dr, chromecache_158.2.dr	String found in binary or memory: http://barisaydinoglu.github.com/Detectizr/
Source: chromecache_181.2.dr, chromecache_199.2.dr, chromecache_175.2.dr, chromecache_173.2.dr	String found in binary or memory: http://canjs.com/
Source: chromecache_144.2.dr, chromecache_143.2.dr	String found in binary or memory: http://feross.org
Source: chromecache_137.2.dr	String found in binary or memory: http://fontawesome.io
Source: chromecache_137.2.dr	String found in binary or memory: http://fontawesome.io/license
Source: chromecache_158.2.dr	String found in binary or memory: http://github.com/Modernizr/Modernizr/issues/1182
Source: chromecache_199.2.dr, chromecache_175.2.dr	String found in binary or memory: http://github.com/RobinHerbots/jquery.inputmask
Source: chromecache_166.2.dr, chromecache_126.2.dr, chromecache_199.2.dr, chromecache_175.2.dr	String found in binary or memory: http://jedwatson.github.io/classnames
Source: chromecache_181.2.dr, chromecache_173.2.dr	String found in binary or memory: http://purl.eligrey.com/github/classList.js/blob/master/classList.js
Source: chromecache_141.2.dr	String found in binary or memory: http://schema.org
Source: chromecache_141.2.dr	String found in binary or memory: http://schema.org/
Source: chromecache_188.2.dr, chromecache_158.2.dr	String found in binary or memory: http://srufaculty.sru.edu/david.dailey/svg/newstuff/clipPath4.svg
Source: chromecache_181.2.dr, chromecache_173.2.dr	String found in binary or memory: http://underscorejs.org/LICENSE
Source: chromecache_202.2.dr	String found in binary or memory: http://www.apache.org/licenses/LICENSE-2.0
Source: chromecache_184.2.dr, chromecache_202.2.dr	String found in binary or memory: http://www.apache.org/licenses/LICENSE-2.0Copyright
Source: chromecache_199.2.dr, chromecache_175.2.dr	String found in binary or memory: http://www.opensource.org/licenses/mit-license.php)
Source: chromecache_141.2.dr	String found in binary or memory: http://www.wikidata.org/entity/Q312
Source: chromecache_188.2.dr, chromecache_158.2.dr	String found in binary or memory: http://yepnopejs.com.
Source: chromecache_141.2.dr	String found in binary or memory: https://account.apple.com/
Source: chromecache_171.2.dr, chromecache_127.2.dr, chromecache_172.2.dr, chromecache_167.2.dr	String found in binary or memory: https://appleid.cdn-apple.com/appleauth/static/jsapi/acknowledgements.txt
Source: chromecache_141.2.dr	String found in binary or memory: https://apps.apple.com/us/app/apple-store/id375380948
Source: chromecache_188.2.dr, chromecache_158.2.dr	String found in binary or memory: https://bugs.chromium.org/p/chromium/issues/detail?id=129004
Source: chromecache_188.2.dr, chromecache_158.2.dr	String found in binary or memory: https://codepen.io/eltonmesquita/full/GgXbvo/
Source: chromecache_188.2.dr, chromecache_158.2.dr	String found in binary or memory: https://css-tricks.com/almanac/properties/a/appearance/
Source: chromecache_188.2.dr, chromecache_158.2.dr	String found in binary or memory: https://dev.w3.org/csswg/css3-conditional/#at-supports
Source: chromecache_188.2.dr, chromecache_158.2.dr	String found in binary or memory: https://dev.w3.org/csswg/css3-conditional/#the-csssupportsrule-interface
Source: chromecache_188.2.dr, chromecache_158.2.dr	String found in binary or memory: https://developer.mozilla.org/en-US/docs/Web/API/Clipboard
Source: chromecache_188.2.dr, chromecache_158.2.dr	String found in binary or memory: https://developer.mozilla.org/en-US/docs/Web/API/Clipboard_API
Source: chromecache_188.2.dr, chromecache_158.2.dr	String found in binary or memory: https://developer.mozilla.org/en-US/docs/Web/API/HTMLCanvasElement.toDataURL
Source: chromecache_188.2.dr, chromecache_158.2.dr	String found in binary or memory: https://developer.mozilla.org/en-US/docs/Web/API/Window/scrollTo
Source: chromecache_188.2.dr, chromecache_158.2.dr	String found in binary or memory: https://developer.mozilla.org/en-US/docs/Web/CSS/-moz-appearance
Source: chromecache_188.2.dr, chromecache_158.2.dr	String found in binary or memory: https://developer.mozilla.org/en-US/docs/Web/CSS/filter
Source: chromecache_188.2.dr, chromecache_158.2.dr	String found in binary or memory: https://developer.mozilla.org/en/docs/HTML/Using_the_application_cache
Source: chromecache_188.2.dr, chromecache_158.2.dr	String found in binary or memory: https://developers.whatwg.org/links.html#downloading-resources
Source: chromecache_188.2.dr, chromecache_158.2.dr	String found in binary or memory: https://drafts.fxtf.org/compositing-1/
Source: chromecache_144.2.dr, chromecache_143.2.dr	String found in binary or memory: https://feross.org/opensource
Source: chromecache_137.2.dr	String found in binary or memory: https://fontawesome.com
Source: chromecache_137.2.dr	String found in binary or memory: https://fontawesome.com/license/free
Source: chromecache_137.2.dr	String found in binary or memory: https://getbootstrap.com/)
Source: chromecache_188.2.dr, chromecache_158.2.dr	String found in binary or memory: https://github.com/Modernizr/Modernizr/issues/648
Source: chromecache_137.2.dr	String found in binary or memory: https://github.com/h5bp/html5-boilerplate/blob/master/src/css/main.css
Source: chromecache_188.2.dr, chromecache_158.2.dr	String found in binary or memory: https://github.com/slightlyoff/ServiceWorker/blob/master/explainer.md
Source: chromecache_137.2.dr	String found in binary or memory: https://github.com/twbs/bootstrap/blob/master/LICENSE)
Source: chromecache_185.2.dr, chromecache_147.2.dr, chromecache_140.2.dr, chromecache_133.2.dr	String found in binary or memory: https://github.com/zloirock/core-js
Source: chromecache_185.2.dr, chromecache_147.2.dr, chromecache_140.2.dr, chromecache_133.2.dr	String found in binary or memory: https://github.com/zloirock/core-js/blob/v3.39.0/LICENSE
Source: chromecache_188.2.dr, chromecache_158.2.dr	String found in binary or memory: https://html.spec.whatwg.org/multipage/interaction.html#contenteditable
Source: chromecache_188.2.dr, chromecache_158.2.dr	String found in binary or memory: https://html.spec.whatwg.org/multipage/semantics.html#attr-style-scoped
Source: chromecache_141.2.dr	String found in binary or memory: https://investor.apple.com/
Source: chromecache_189.2.dr	String found in binary or memory: https://ipinfo.io/missingauth
Source: chromecache_181.2.dr, chromecache_199.2.dr, chromecache_175.2.dr, chromecache_173.2.dr	String found in binary or memory: https://jquery.com/
Source: chromecache_181.2.dr, chromecache_199.2.dr, chromecache_175.2.dr, chromecache_173.2.dr	String found in binary or memory: https://jquery.org/license
Source: chromecache_141.2.dr	String found in binary or memory: https://locate.apple.com/
Source: chromecache_181.2.dr, chromecache_173.2.dr	String found in binary or memory: https://lodash.com/
Source: chromecache_181.2.dr, chromecache_173.2.dr	String found in binary or memory: https://lodash.com/license
Source: chromecache_181.2.dr, chromecache_173.2.dr	String found in binary or memory: https://openjsf.org/
Source: chromecache_188.2.dr, chromecache_158.2.dr	String found in binary or memory: https://paulirish.com/demo/inline-svg
Source: chromecache_166.2.dr, chromecache_126.2.dr	String found in binary or memory: https://preactjs.com
Source: chromecache_188.2.dr, chromecache_158.2.dr	String found in binary or memory: https://stackoverflow.com/questions/3952009/defer-attribute-chrome#answer-3982619
Source: chromecache_141.2.dr	String found in binary or memory: https://support.apple.com
Source: chromecache_141.2.dr	String found in binary or memory: https://support.apple.com/#organization
Source: chromecache_141.2.dr	String found in binary or memory: https://support.apple.com/?cid=gn-ols-home-hp-tab
Source: chromecache_134.2.dr, chromecache_163.2.dr	String found in binary or memory: https://support.apple.com/ipad?cid=gn-ols-ipad-psp-prodfly
Source: chromecache_134.2.dr, chromecache_163.2.dr	String found in binary or memory: https://support.apple.com/iphone?cid=gn-ols-iphone-psp-prodfly
Source: chromecache_188.2.dr, chromecache_158.2.dr	String found in binary or memory: https://w3c.github.io/FileAPI/#constructorBlob
Source: chromecache_188.2.dr, chromecache_158.2.dr	String found in binary or memory: https://web.archive.org/web/20180602074607/https://daneden.me/2011/12/14/putting-up-with-androids-bu
Source: chromecache_141.2.dr	String found in binary or memory: https://www.apple.com/
Source: chromecache_141.2.dr	String found in binary or memory: https://www.apple.com/#organization
Source: chromecache_141.2.dr	String found in binary or memory: https://www.apple.com/ac/structured-data/images/knowledge_graph_logo.png?201803231038
Source: chromecache_192.2.dr, chromecache_183.2.dr	String found in binary or memory: https://www.apple.com/airpods/
Source: chromecache_192.2.dr, chromecache_183.2.dr	String found in binary or memory: https://www.apple.com/apple-intelligence/
Source: chromecache_192.2.dr, chromecache_183.2.dr	String found in binary or memory: https://www.apple.com/apple-vision-pro/
Source: chromecache_141.2.dr	String found in binary or memory: https://www.apple.com/errors/us_error.html
Source: chromecache_192.2.dr, chromecache_183.2.dr	String found in binary or memory: https://www.apple.com/retail/
Source: chromecache_192.2.dr, chromecache_183.2.dr	String found in binary or memory: https://www.apple.com/us/shop/goto/trade_in
Source: chromecache_141.2.dr	String found in binary or memory: https://www.icloud.com
Source: chromecache_141.2.dr	String found in binary or memory: https://www.linkedin.com/company/apple
Source: chromecache_141.2.dr	String found in binary or memory: https://www.twitter.com/Apple
Source: chromecache_141.2.dr	String found in binary or memory: https://www.youtube.com/user/Apple

Source: classification engine

Classification label: clean2.win@18/144@14/3

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Program Files\Google\Chrome\Application\Dictionaries

Jump to behavior

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps

Jump to behavior

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2304 --field-trial-handle=2236,i,14419739948207854976,17419969883120276566,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://identity.eu.my-clay.com/Account/CompleteRegistration?code=CfDJ8KgkDTOKMMpOuP36p3Dozxt8PELhFtKv7XhGiLvUJb65B4gsgrZAJNeoWOl3%2bJqjFC0z2PgNNrBPIYyDQpCLYYktywk8FL8riSS1Gw9JoQjzsJeXeEGLQPLN93pvJbRNrEaprcXkfbiWItEC6wUTL8%2bUI3JeJ18XbphkqGM9o3eFYb5fspQpTOcpN9%2fgGTMKuaFzVmBdnIyLH8B%2fLvMz8bqGONRUa%2b4n5ZxQZjpAMETBM05PT8wJDX5x%2fItYEfQcxQ%3d%3d&clientId=cbe74aaf-5932-4749-b07e-9d26c8bb0d6b&productId=a5fda6d4-6817-40f1-8635-4131db3054cb"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2304 --field-trial-handle=2236,i,14419739948207854976,17419969883120276566,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: Google Drive.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: YouTube.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Sheets.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Gmail.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Slides.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Docs.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe

Source: Window Recorder

Window detected: More than 3 window changes detected

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

Directory created: C:\Program Files\Google\Chrome\Application\Dictionaries

Jump to behavior

Stores files to the Windows start menu directory

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk	Jump to behavior

ID:	1592150
Product:	CloudBasic
Start time:	20:40:29
Start date:	15.01.2025
Cookbook:	browseurl.jbs
System description:	Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
Architecture:	WINDOWS

Overview

General Information

Detection

Signatures

Classification

Signatures

Phishing

Compliance

Networking

System Summary

Boot Survival

Screenshots

Behavior Graph

Network Map

Contacted Public IPs

Contacted Domains

Contacted URLs