flash

https://b6dj2ueylkg.juraganrc.com/?url=aHR0cHM6Ly9ob2xseS1sYXZlbmRlci1yYXR0bGVzbmFrZS5nbGl0Y2gubWUvdmlsZC5odG1s

Status: finished
Submission Time: 2022-11-29 19:03:59 +01:00
Malicious
Phishing
HTMLPhisher

Comments

Tags

Details

  • Analysis ID:
    756170
  • API (Web) ID:
    1123446
  • Analysis Started:
    2022-11-29 19:03:59 +01:00
  • Analysis Finished:
    2022-11-29 19:09:12 +01:00
  • Technologies:
Full Report Management Report IOC Report Engine Info Verdict Score Reports

System: Windows 10 64 bit v1803 with Office Professional Plus 2016, Chrome 104, IE 11, Adobe Reader DC 19, Java 8 Update 211

malicious
72/100

malicious

IPs

IP Country Detection
13.107.219.60
United States
142.250.203.110
United States
139.162.167.121
Netherlands
Click to see the 5 hidden entries
44.199.49.219
United States
172.217.168.45
United States
192.185.138.191
United States
172.217.168.36
United States
239.255.255.250
Reserved

Domains

Name IP Detection
accounts.google.com
172.217.168.45
holly-lavender-rattlesnake.glitch.me
44.199.49.219
honapalestine.com
139.162.167.121
Click to see the 5 hidden entries
b6dj2ueylkg.juraganrc.com
192.185.138.191
www.google.com
172.217.168.36
clients.l.google.com
142.250.203.110
part-0032.t-0009.fbs1-t-msedge.net
13.107.219.60
clients2.google.com
0.0.0.0

URLs

Name Detection
https://b6dj2ueylkg.juraganrc.com/?url=aHR0cHM6Ly9ob2xseS1sYXZlbmRlci1yYXR0bGVzbmFrZS5nbGl0Y2gubWUvdmlsZC5odG1s
https://honapalestine.com/1/frontend/web/assets/e189e3b3/js/bootstrap.js
https://honapalestine.com/1/frontend/web/assets/e189e3b3/css/bootstrap.css
Click to see the 21 hidden entries
https://honapalestine.com/1/frontend/web/images/bg.jpg
https://honapalestine.com/1/frontend/web/images/logo-en.png
https://honapalestine.com/1/frontend/web/assets/493c98da/jquery.js
https://honapalestine.com/1/frontend/web/images/searchenglishbgar.png
https://honapalestine.com/1/frontend/web/assets/df38217b/yii.js
https://honapalestine.com/1/frontend/web/css/site.css
https://honapalestine.com/1/frontend/web/images/listenlive.png
https://honapalestine.com/1/frontend/web/index.php?/
https://holly-lavender-rattlesnake.glitch.me/vild.html
https://b6dj2ueylkg.juraganrc.com/?url=aHR0cHM6Ly9ob2xseS1sYXZlbmRlci1yYXR0bGVzbmFrZS5nbGl0Y2gubWUvd
https://holly-lavender-rattlesnake.glitch.me/vild.html#
https://honapalestine.com/1/frontend/web/images/appstore.png
https://clients2.google.com/service/update2/crx?os=win&arch=x64&os_arch=x86_64&nacl_arch=x86-64&prod=chromecrx&prodchannel=&prodversion=104.0.5112.81&lang=en-US&acceptformat=crx3&x=id%3Dnmmhkkegccagdldgiimedpiccmgmieda%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1
https://honapalestine.com/1/frontend/web/images/playstore.png
https://accounts.google.com/ListAccounts?gpsia=1&source=ChromiumBrowser&json=standard
https://honapalestine.com/
https://honapalestine.com/1/frontend/web/images/icons.png
https://honapalestine.com/1/frontend/web/css/FrutigerLTArabic-55Roman.ttf
https://holly-lavender-rattlesnake.glitch.me/favicon.ico
https://honapalestine.com/1/frontend/web/index.php?/
https://holly-lavender-rattlesnake.glitch.me/vild.html#

Dropped files

Name File Type Hashes Detection
C:\Users\user\Desktop\cmdline.out
ASCII text, with CRLF line terminators
#
C:\Users\user\Desktop\download\index.html@url=aHR0cHM6Ly9ob2xseS1sYXZlbmRlci1yYXR0bGVzbmFrZS5nbGl0Y2gubWUvdmlsZC5odG1s
HTML document, ASCII text, with CRLF line terminators
#