top title background image
flash

📧 Tax Statements-2-121_076_454656_3-4(4).hTm

Status: finished
Submission Time: 2023-03-20 22:19:26 +01:00
Malicious
Phishing
HTMLPhisher, ReCaptcha Phish

Comments

Tags

Details

  • Analysis ID:
    830984
  • API (Web) ID:
    1198083
  • Analysis Started:
    2023-03-20 22:23:17 +01:00
  • Analysis Finished:
    2023-03-20 22:31:16 +01:00
  • MD5:
    e5497fd17c23a351fd4f964d04f63871
  • SHA1:
    91f45eedfe4e06860d0c825fe4dde6f6671f4b88
  • SHA256:
    a2148a5596c580189823a73f156ce8e05c3b61ef1a8255f7a35ca65d9d3098cd
  • Technologies:

Joe Sandbox

Engine Download Report Detection Info
malicious
Score: 72
System: Windows 10 64 bit 20H2 Native physical Machine for testing VM-aware malware (Office 2019, Chrome 93, Firefox 91, Adobe Reader DC 21, Java 8 Update 301

IPs

IP Country Detection
142.250.185.77
United States
239.255.255.250
Reserved
142.250.185.196
United States
Click to see the 2 hidden entries
142.250.185.142
United States
192.185.113.229
United States

Domains

Name IP Detection
accounts.google.com
142.250.185.77
www.google.com
142.250.185.196
clients.l.google.com
142.250.185.142
Click to see the 2 hidden entries
fuadrashid.com
192.185.113.229
clients2.google.com
0.0.0.0

URLs

Name Detection
file:///C:/Users/user/Desktop/%23Ud83d%23Udce7%20Tax%20Statements-2-121_076_454656_3-4(4).hTm
https://www.google.com/recaptcha/api2/anchor?ar=1&k=%0A6Lcf2-EhAAAAAAb4lCjGZLljSQMQ9lL7LxhkWGBN&co=aHR0cHM6Ly9mdWFkcmFzaGlkLmNvbTo0NDM.&hl=en&v=Trd6gj1dhC_fx0ma_AWHc1me&size=normal&cb=eys0y7domytm
https://www.google.com/recaptcha/api2/anchor?ar=1&k=%0A6Lcf2-EhAAAAAAb4lCjGZLljSQMQ9lL7LxhkWGBN&co=aHR0cHM6Ly9mdWFkcmFzaGlkLmNvbTo0NDM.&hl=en&v=Trd6gj1dhC_fx0ma_AWHc1me&size=normal&cb=eys0y7domytm
Click to see the 10 hidden entries
https://fuadrashid.com/su35/gtl/
https://fuadrashid.com/su35/gtl/9d3844dcadd00b46e3c10b77a0a825247573748608401705203573270e089c75a6b105a2f85776e2cdd4528476e3084017052035a93c9f185932557fd997ff3a4ba3e0e124e9a338084017052035b5c58094f8174d1bce72ba953e424e3130f4df0b084017052035/gUNkRyOTOnTErUDeoDOLI
https://www.google.com/recaptcha/api.js
https://fuadrashid.com/su35/gtl/9d3844dcadd00b46e3c10b77a0a825247573748608401705203573270e089c75a6b105a2f85776e2cdd4528476e3084017052035a93c9f185932557fd997ff3a4ba3e0e124e9a338084017052035b5c58094f8174d1bce72ba953e424e3130f4df0b084017052035/gUNkRyOTOnTErUDeoDOLI#lkohanski@alkegen.com
https://accounts.google.com/ListAccounts?gpsia=1&source=ChromiumBrowser&json=standard
https://clients2.google.com/service/update2/crx?os=win&arch=x64&os_arch=x86_64&nacl_arch=x86-64&prod=chromecrx&prodchannel=&prodversion=94.0.4606.61&lang=en-US&acceptformat=crx3&x=id%3Dnmmhkkegccagdldgiimedpiccmgmieda%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1
https://fuadrashid.com/su35/gtl/9d3844dcadd00b46e3c10b77a0a825247573748608401705203573270e089c75a6b105a2f85776e2cdd4528476e3084017052035a93c9f185932557fd997ff3a4ba3e0e124e9a338084017052035b5c58094f8174d1bce72ba953e424e3130f4df0b084017052035/capt
https://www.google.com/recaptcha/api2/webworker.js?hl=en&v=Trd6gj1dhC_fx0ma_AWHc1me
https://www.google.com/recaptcha/api2/bframe?hl=en&v=Trd6gj1dhC_fx0ma_AWHc1me&k=6Lcf2-EhAAAAAAb4lCjGZLljSQMQ9lL7LxhkWGBN
https://www.google.com/recaptcha/api2/bframe?hl=en&v=Trd6gj1dhC_fx0ma_AWHc1me&k=6Lcf2-EhAAAAAAb4lCjGZLljSQMQ9lL7LxhkWGBN