Register Login

sloganpng

top title background image

gzLeH3Dmtn.lnk

Status: finished

Submission Time: 2023-02-01 07:20:06 +01:00

Malicious

Evader

Comments

Tags

Details

Analysis ID:
795670
API (Web) ID:
1162915
Analysis Started:

2023-02-01 07:20:06 +01:00
Analysis Finished:

2023-02-01 07:23:36 +01:00
MD5:
6a04cb119228b5ca8bb2fc2f4856103f
SHA1:
2f7eb865bd303466749a66e5cee8f21962d43cd0
SHA256:
0135bf39f5a2167cce8af04e8eaac0caee8b52123fea1a3ec2411be0a92da400
Technologies:

Engines
IOCs

Joe Sandbox

Engine	Download Report	Detection	Info
	Full Report Management Report IOC Report	malicious Score: 68	System: Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01

IPs

IP	Country	Detection
188.114.96.3	European Union
104.16.123.96	United States

Domains

Name	IP	Detection
a8eiy8.innovationsinsight.cyou	188.114.96.3
www.cloudflare.com	104.16.123.96

URLs

Name	Detection
http://a8eiy8.innovationsinsight.cyou/?3/
http://a8eiy8.innovationsinsight.cyou/
hTtP://a8eiy8.innovationsinsight.cyou/?3/l
Click to see the 7 hidden entries
https://www.cloudflare.com/g
https://www.cloudflare.com/
https://www.cloudflare.com/cdn-cgi/error
https://www.cloudflare.com/cdn-cgi/errorfM
https://www.cloudflare.com/cdn-cgi/errore.com/
https://www.cloudflare.com/cdn-cgi/errorT
hTtP://a8eiy8.innovationsinsight.cyou/?3/

Dropped files

Name	File Type	Hashes	Detection
C:\YDgC5P9\YDgC5P9.jS	ASCII text, with no line terminators	#