URL: | https://celeb.gate.cc |
Full analysis: | https://app.any.run/tasks/21276b56-3156-4f24-9530-c5c37211f756 |
Verdict: | No threats detected |
Analysis date: | July 16, 2019, 14:47:52 |
OS: | Windows 7 Professional Service Pack 1 (build: 7601, 32 bit) |
Indicators: | |
MD5: | 48348777C24A5838010E37A52CB337D7 |
SHA1: | 7DE3C04C26256D4D404D7479A6D77940779AE084 |
SHA256: | 62108C7007555C08A2C83A12BC6BE2AADE43A27013BA4EC16C2D4E17B712B7C8 |
SSDEEP: | 3:N8dJASyGn:20y |
PID | CMD | Path | Indicators | Parent process |
---|---|---|---|---|
3388 | "C:\Program Files\Internet Explorer\iexplore.exe" -nohome | C:\Program Files\Internet Explorer\iexplore.exe | explorer.exe | |
User: admin Company: Microsoft Corporation Integrity Level: MEDIUM Description: Internet Explorer Version: 8.00.7600.16385 (win7_rtm.090713-1255) | ||||
3600 | "C:\Program Files\Internet Explorer\iexplore.exe" SCODEF:3388 CREDAT:71937 | C:\Program Files\Internet Explorer\iexplore.exe | iexplore.exe | |
User: admin Company: Microsoft Corporation Integrity Level: LOW Description: Internet Explorer Version: 8.00.7600.16385 (win7_rtm.090713-1255) | ||||
2716 | C:\Windows\system32\Macromed\Flash\FlashUtil32_26_0_0_131_ActiveX.exe -Embedding | C:\Windows\system32\Macromed\Flash\FlashUtil32_26_0_0_131_ActiveX.exe | — | svchost.exe |
User: admin Company: Adobe Systems Incorporated Integrity Level: MEDIUM Description: Adobe® Flash® Player Installer/Uninstaller 26.0 r0 Version: 26,0,0,131 |
PID | Process | Filename | Type | |
---|---|---|---|---|
3388 | iexplore.exe | C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JGRR2OYX\favicon[1].ico | — | |
MD5:— | SHA256:— | |||
3388 | iexplore.exe | C:\Users\admin\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico | — | |
MD5:— | SHA256:— | |||
3600 | iexplore.exe | C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\1182A7G1\celeb_gate_cc[1].txt | — | |
MD5:— | SHA256:— | |||
3600 | iexplore.exe | C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\GXM3IUDU\logo_cg[1].png | image | |
MD5:663567166F63E26BFAE13E21D1B220C1 | SHA256:FEDC3EA378E26D581321FBEF2EE0935BEB14724EC47BE8C321157E22F85B416C | |||
3600 | iexplore.exe | C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\index.dat | dat | |
MD5:E4145D20001478294BAEAE1A421CA169 | SHA256:696DD67823C327DB7161342F28F8C149BD3F5CC8103F6E25030BB6FDE29199B5 | |||
3600 | iexplore.exe | C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\1182A7G1\styles[1].css | text | |
MD5:4F8A0644EFDADA36659098BA462BBAA7 | SHA256:254EBC28A332A905FD2C556124A91803CDDC48C5583DD6299376E7728B46FB5B | |||
3600 | iexplore.exe | C:\Users\admin\AppData\Roaming\Microsoft\Windows\Cookies\Low\index.dat | dat | |
MD5:AE166FC9544063E846C1CB5747410C5F | SHA256:45D1596DC1136D0FB88DA178B42093B7D49A0CDEBDC167DFAE22CE140B01A991 | |||
3600 | iexplore.exe | C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\1182A7G1\celeb_gate_cc[1].htm | html | |
MD5:0B64DB132761BA2B08B3932896EB1F7F | SHA256:4278F91E471479A888483B48979FA81BB0FBDEE5B18251FBD2176ACFEAACA752 | |||
3600 | iexplore.exe | C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\1182A7G1\app[1].js | text | |
MD5:AE5CDD0880BF3626274F448EA03ABCE7 | SHA256:0FC7FA6C618CA79826A9EA228714A3EED42FB4C1FAE50FE98E70E51D3D2F9424 | |||
3600 | iexplore.exe | C:\Users\admin\AppData\Roaming\Microsoft\Windows\Cookies\Low\admin@gate[1].txt | text | |
MD5:4D5F9B6840D22FDFDCA7012EB6BDB75B | SHA256:FD0D6558601FB2A4CA18283CDA31CA8BFE9608BBAC4CC2FC7F43CA5A9BD21FCE |
PID | Process | Method | HTTP Code | IP | URL | CN | Type | Size | Reputation |
---|---|---|---|---|---|---|---|---|---|
3388 | iexplore.exe | GET | 200 | 204.79.197.200:80 | http://www.bing.com/favicon.ico | US | image | 237 b | whitelisted |
PID | Process | IP | Domain | ASN | CN | Reputation |
---|---|---|---|---|---|---|
3388 | iexplore.exe | 204.79.197.200:80 | www.bing.com | Microsoft Corporation | US | whitelisted |
3600 | iexplore.exe | 104.19.198.151:443 | cdnjs.cloudflare.com | Cloudflare Inc | US | shared |
3600 | iexplore.exe | 104.27.180.114:443 | celeb.gate.cc | Cloudflare Inc | US | shared |
3600 | iexplore.exe | 172.217.22.14:443 | www.google-analytics.com | Google Inc. | US | whitelisted |
3600 | iexplore.exe | 104.27.181.114:443 | celeb.gate.cc | Cloudflare Inc | US | shared |
3600 | iexplore.exe | 213.174.135.1:443 | creative.strpjmp.com | DataWeb Global Group B.V. | US | malicious |
3388 | iexplore.exe | 104.27.181.114:443 | celeb.gate.cc | Cloudflare Inc | US | shared |
3600 | iexplore.exe | 88.208.18.48:443 | go.strpjmp.com | DataWeb Global Group B.V. | NL | unknown |
3600 | iexplore.exe | 173.194.76.156:443 | stats.g.doubleclick.net | Google Inc. | US | whitelisted |
3600 | iexplore.exe | 173.194.76.157:443 | stats.g.doubleclick.net | Google Inc. | US | whitelisted |
Domain | IP | Reputation |
---|---|---|
www.bing.com |
| whitelisted |
celeb.gate.cc |
| malicious |
www.globalrewards.co |
| unknown |
go.strpjmp.com |
| malicious |
www.google-analytics.com |
| whitelisted |
creative.strpjmp.com |
| suspicious |
stats.g.doubleclick.net |
| whitelisted |
cdnjs.cloudflare.com |
| whitelisted |