https://app.box.com/s/qft12my1l5l17o04knifd8gw776ko70i

Status: finished

Submission Time: 2023-03-20 22:56:29 +01:00

Malicious

Phishing

HTMLPhisher

Comments

Details

Analysis ID:
830993
API (Web) ID:
1198092
Analysis Started:

2023-03-20 22:56:30 +01:00
Analysis Finished:

2023-03-20 23:02:36 +01:00
Technologies:

Engines
IOCs

Joe Sandbox

Engine	Download Report	Detection	Info
	Full Report Management Report IOC Report	malicious Score: 64	System: Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01

Third Party Analysis Engines

malicious

IPs

IP	Country	Detection
74.112.186.144	United States
104.18.10.207	United States
18.165.183.129	United States
Click to see the 7 hidden entries
35.170.228.5	United States
142.250.203.100	United States
142.250.203.110	United States
104.18.11.207	United States
239.255.255.250	Reserved
104.17.25.14	United States
142.250.203.109	United States

Domains

Name	IP	Detection
stackpath.bootstrapcdn.com	104.18.10.207
auth.split.io	35.170.228.5
accounts.google.com	142.250.203.109
Click to see the 13 hidden entries
notes.services.box.com	74.112.186.144
cdnjs.cloudflare.com	104.17.25.14
maxcdn.bootstrapcdn.com	104.18.11.207
www.google.com	142.250.203.100
clients.l.google.com	142.250.203.110
app.box.com	74.112.186.144
client-log.box.com	74.112.186.144
dz87sht31vgqa.cloudfront.net	18.165.183.129
sdk.split.io	0.0.0.0
cdn01.boxcdn.net	0.0.0.0
clients2.google.com	0.0.0.0
code.jquery.com	0.0.0.0
streaming.split.io	0.0.0.0

URLs

Name	Detection
https://accounts.google.com/ListAccounts?gpsia=1&source=ChromiumBrowser&json=standard
https://notes.services.box.com/p/note?fileId=1164721829413&sharedLink=https%3A%2F%2Fapp.box.com%2Fs%2Fqft12my1l5l17o04knifd8gw776ko70i&hostname=app.box.com
https://app.box.com/notes/1164721829413?s=qft12my1l5l17o04knifd8gw776ko70i
Click to see the 71 hidden entries
https://maxcdn.bootstrapcdn.com/bootstrap/4.0.0/css/bootstrap.min.css
https://notes.services.box.com/clientSocketConnectionInfo?fileId=1164721829413&_=1679349452465
https://getbootstrap.com/)
https://notes.services.box.com/3/9133/3001/socket.io/?clientVersion=8.2297.0&EIO=4&transport=polling&t=OS11ndL&sid=lpvWMe6y-UCxux37ALr5
https://notes.services.box.com/3/9133/3001/socket.io/?clientVersion=8.2297.0&EIO=4&transport=polling&t=OS11zUv&sid=FJ53pnQpy7l_zAfJALr7
https://stackpath.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js
https://notes.services.box.com/3/9133/3001/socket.io/?clientVersion=8.2297.0&EIO=4&transport=polling&t=OS126W8&sid=FJ53pnQpy7l_zAfJALr7
https://app.box.com/notes/1164721829413?s=qft12my1l5l17o04knifd8gw776ko70i
https://youngarsmfg.com/faxmail/postoo.php
https://notes.services.box.com/3/9133/3001/socket.io/?clientVersion=8.2297.0&EIO=4&transport=polling&t=OS11ndN&sid=lpvWMe6y-UCxux37ALr5
https://app.box.com/s/821u4wbadx46bwm98ch1k57gcclzy6zt
https://notes.services.box.com/3/9133/3001/socket.io/?clientVersion=8.2297.0&EIO=4&transport=polling&t=OS11psM&sid=FJ53pnQpy7l_zAfJALr7
https://notes.services.box.com/app_init?authCode=&fileId=1164721829413&sharedLink=https%3A%2F%2Fapp.box.com%2Fs%2Fqft12my1l5l17o04knifd8gw776ko70i&listId=inbox&_=1679349452464
https://client-log.box.com/analytics-events/
https://notes.services.box.com/3/9133/3001/socket.io/?clientVersion=8.2297.0&EIO=4&transport=polling&t=OS11u9c&sid=FJ53pnQpy7l_zAfJALr7
https://notes.services.box.com/box-image?fileId=1164711816928&fileName=Box%20Notes%20Image%202023-03-14%2021.15.17.png&sharedLink=https%3A%2F%2Fapp.box.com%2Fs%2F821u4wbadx46bwm98ch1k57gcclzy6zt&viewContext=inline
https://notes.services.box.com/3/9133/3001/socket.io/?clientVersion=8.2297.0&EIO=4&transport=polling&t=OS126WP&sid=FJ53pnQpy7l_zAfJALr7
https://notes.services.box.com/3/9133/3001/socket.io/?clientVersion=8.2297.0&EIO=4&transport=polling&t=OS128Hz&sid=FJ53pnQpy7l_zAfJALr7
https://notes.services.box.com/3/9133/3001/socket.io/?clientVersion=8.2297.0&EIO=4&transport=polling&t=OS11sN-&sid=FJ53pnQpy7l_zAfJALr7
https://notes.services.box.com/3/9133/3001/socket.io/?clientVersion=8.2297.0&EIO=4&transport=polling&t=OS11pEh&sid=FJ53pnQpy7l_zAfJALr7
https://notes.services.box.com/3/9133/3001/socket.io/?clientVersion=8.2297.0&EIO=4&transport=polling&t=OS11nYg&sid=lpvWMe6y-UCxux37ALr5
https://notes.services.box.com/3/9133/3001/socket.io/?clientVersion=8.2297.0&EIO=4&transport=polling&t=OS122q1&sid=FJ53pnQpy7l_zAfJALr7
https://github.com/twbs/bootstrap/blob/master/LICENSE)
https://notes.services.box.com/3/9133/3001/socket.io/?clientVersion=8.2297.0&EIO=4&transport=polling&t=OS11psr&sid=FJ53pnQpy7l_zAfJALr7
https://notes.services.box.com/3/9133/3001/socket.io/?clientVersion=8.2297.0&EIO=4&transport=polling&t=OS11nue&sid=lpvWMe6y-UCxux37ALr5
https://notes.services.box.com/3/9133/3001/socket.io/?clientVersion=8.2297.0&EIO=4&transport=polling&t=OS12DdG&sid=FJ53pnQpy7l_zAfJALr7
https://getbootstrap.com)
https://auth.split.io/api/v2/auth?users=key
https://notes.services.box.com/3/9133/3001/socket.io/?clientVersion=8.2297.0&EIO=4&transport=polling&t=OS11xjH&sid=FJ53pnQpy7l_zAfJALr7
https://notes.services.box.com/3/9133/3001/socket.io/?clientVersion=8.2297.0&EIO=4&transport=polling&t=OS11vxR&sid=FJ53pnQpy7l_zAfJALr7
https://cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js
https://notes.services.box.com/3/9133/3001/socket.io/?clientVersion=8.2297.0&EIO=4&transport=polling&t=OS11p_u&sid=FJ53pnQpy7l_zAfJALr7
https://notes.services.box.com/3/9133/3001/socket.io/?clientVersion=8.2297.0&EIO=4&transport=polling&t=OS124km&sid=FJ53pnQpy7l_zAfJALr7
https://notes.services.box.com/3/9133/3001/socket.io/?clientVersion=8.2297.0&EIO=4&transport=polling&t=OS11sN_&sid=FJ53pnQpy7l_zAfJALr7
https://notes.services.box.com/3/9133/3001/socket.io/?clientVersion=8.2297.0&EIO=4&transport=polling&t=OS1212l&sid=FJ53pnQpy7l_zAfJALr7
https://notes.services.box.com/3/9133/3001/socket.io/?clientVersion=8.2297.0&EIO=4&transport=polling&t=OS11opk
https://notes.services.box.com/p/note?fileId=1164721829413&hostname=app.box.com&sharedLink=https://app.box.com/s/qft12my1l5l17o04knifd8gw776ko70i
https://notes.services.box.com/3/9133/3001/socket.io/?clientVersion=8.2297.0&EIO=4&transport=polling&t=OS1212X&sid=FJ53pnQpy7l_zAfJALr7
https://notes.services.box.com/3/9133/3001/socket.io/?clientVersion=8.2297.0&EIO=4&transport=polling&t=OS11o1h&sid=lpvWMe6y-UCxux37ALr5
https://notes.services.box.com/3/9133/3001/socket.io/?clientVersion=8.2297.0&EIO=4&transport=polling&t=OS12BrF&sid=FJ53pnQpy7l_zAfJALr7
https://notes.services.box.com/3/9133/3001/socket.io/?clientVersion=8.2297.0&EIO=4&transport=websocket&sid=lpvWMe6y-UCxux37ALr5
https://notes.services.box.com/box-image?encoding=base64&fileId=1164711816928&fileName=Box%20Notes%20Image%202023-03-14%2021.15.17.png&sharedLink=https%3A%2F%2Fapp.box.com%2Fs%2F821u4wbadx46bwm98ch1k57gcclzy6zt&viewContext=inline
https://notes.services.box.com/3/9133/3001/socket.io/?clientVersion=8.2297.0&EIO=4&transport=polling&t=OS12A3U&sid=FJ53pnQpy7l_zAfJALr7
https://notes.services.box.com/3/9133/3001/socket.io/?clientVersion=8.2297.0&EIO=4&transport=polling&t=OS11_GR&sid=FJ53pnQpy7l_zAfJALr7
https://notes.services.box.com/3/9133/3001/socket.io/?clientVersion=8.2297.0&EIO=4&transport=polling&t=OS122q3&sid=FJ53pnQpy7l_zAfJALr7
https://notes.services.box.com/3/9133/3001/socket.io/?clientVersion=8.2297.0&EIO=4&transport=polling&t=OS11_GT&sid=FJ53pnQpy7l_zAfJALr7
https://notes.services.box.com/3/9133/3001/socket.io/?clientVersion=8.2297.0&EIO=4&transport=polling&t=OS11zUs&sid=FJ53pnQpy7l_zAfJALr7
https://notes.services.box.com/3/9133/3001/socket.io/?clientVersion=8.2297.0&EIO=4&transport=polling&t=OS11qbU&sid=FJ53pnQpy7l_zAfJALr7
https://code.jquery.com/jquery-3.2.1.slim.min.js
https://notes.services.box.com/3/9133/3001/socket.io/?clientVersion=8.2297.0&EIO=4&transport=polling&t=OS12BrD&sid=FJ53pnQpy7l_zAfJALr7
https://notes.services.box.com/3/9133/3001/socket.io/?clientVersion=8.2297.0&EIO=4&transport=polling&t=OS11pEj&sid=FJ53pnQpy7l_zAfJALr7
https://notes.services.box.com/3/9133/3001/socket.io/?clientVersion=8.2297.0&EIO=4&transport=websocket&sid=FJ53pnQpy7l_zAfJALr7
https://notes.services.box.com/3/9133/3001/socket.io/?clientVersion=8.2297.0&EIO=4&transport=polling&t=OS11nUa
https://notes.services.box.com/3/9133/3001/socket.io/?clientVersion=8.2297.0&EIO=4&transport=polling&t=OS11ou7&sid=FJ53pnQpy7l_zAfJALr7
https://notes.services.box.com/3/9133/3001/socket.io/?clientVersion=8.2297.0&EIO=4&transport=polling&t=OS11nup&sid=lpvWMe6y-UCxux37ALr5
http://opensource.org/licenses/MIT).
https://maxcdn.bootstrapcdn.com/bootstrap/4.0.0/js/bootstrap.min.js
https://notes.services.box.com/3/9133/3001/socket.io/?clientVersion=8.2297.0&EIO=4&transport=polling&t=OS11xjD&sid=FJ53pnQpy7l_zAfJALr7
https://notes.services.box.com/3/9133/3001/socket.io/?clientVersion=8.2297.0&EIO=4&transport=polling&t=OS11piq&sid=FJ53pnQpy7l_zAfJALr7
https://clients2.google.com/service/update2/crx?os=win&arch=x64&os_arch=x86_64&nacl_arch=x86-64&prod=chromecrx&prodchannel=&prodversion=104.0.5112.81&lang=en-GB&acceptformat=crx3&x=id%3Dnmmhkkegccagdldgiimedpiccmgmieda%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1
https://notes.services.box.com/3/9133/3001/socket.io/?clientVersion=8.2297.0&EIO=4&transport=polling&t=OS11nYq&sid=lpvWMe6y-UCxux37ALr5
https://notes.services.box.com/3/9133/3001/socket.io/?clientVersion=8.2297.0&EIO=4&transport=polling&t=OS11qbV&sid=FJ53pnQpy7l_zAfJALr7
https://notes.services.box.com/client_log
https://notes.services.box.com/3/9133/3001/socket.io/?clientVersion=8.2297.0&EIO=4&transport=polling&t=OS11u9U&sid=FJ53pnQpy7l_zAfJALr7
https://app.box.com/s/qft12my1l5l17o04knifd8gw776ko70i
https://notes.services.box.com/3/9133/3001/socket.io/?clientVersion=8.2297.0&EIO=4&transport=polling&t=OS12DdH&sid=FJ53pnQpy7l_zAfJALr7
https://github.com/twbs/bootstrap/graphs/contributors)
https://notes.services.box.com/3/9133/3001/socket.io/?clientVersion=8.2297.0&EIO=4&transport=polling&t=OS12A3X&sid=FJ53pnQpy7l_zAfJALr7
https://notes.services.box.com/3/9133/3001/socket.io/?clientVersion=8.2297.0&EIO=4&transport=polling&t=OS128I0&sid=FJ53pnQpy7l_zAfJALr7
https://notes.services.box.com/3/9133/3001/socket.io/?clientVersion=8.2297.0&EIO=4&transport=polling&t=OS11ou9&sid=FJ53pnQpy7l_zAfJALr7
https://notes.services.box.com/3/9133/3001/socket.io/?clientVersion=8.2297.0&EIO=4&transport=polling&t=OS124ku&sid=FJ53pnQpy7l_zAfJALr7

Dropped files

Name	File Type	Hashes
Chrome Cache Entry: 201	ASCII text, with no line terminators	#
Chrome Cache Entry: 209	very short file (no magic)	#
Chrome Cache Entry: 208	ASCII text, with very long lines (65536), with no line terminators	#
Click to see the 62 hidden entries
Chrome Cache Entry: 207	PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced	#
Chrome Cache Entry: 206	JSON data	#
Chrome Cache Entry: 205	JSON data	#
Chrome Cache Entry: 204	very short file (no magic)	#
Chrome Cache Entry: 203	very short file (no magic)	#
Chrome Cache Entry: 202	ASCII text, with no line terminators	#
Chrome Cache Entry: 210	very short file (no magic)	#
Chrome Cache Entry: 200	JSON data	#
Chrome Cache Entry: 199	ASCII text, with very long lines (1577)	#
Chrome Cache Entry: 198	GIF image data, version 89a, 32 x 16	#
Chrome Cache Entry: 197	PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced	#
Chrome Cache Entry: 196	PNG image data, 170 x 403, 8-bit/color RGBA, non-interlaced	#
Chrome Cache Entry: 195	very short file (no magic)	#
Chrome Cache Entry: 194	Unicode text, UTF-8 text, with very long lines (5433), with no line terminators	#
Chrome Cache Entry: 193	ASCII text, with no line terminators	#
Chrome Cache Entry: 211	ASCII text, with no line terminators	#
Chrome Cache Entry: 212	very short file (no magic)	#
Chrome Cache Entry: 213	very short file (no magic)	#
Chrome Cache Entry: 214	ASCII text, with no line terminators	#
Chrome Cache Entry: 215	ASCII text, with no line terminators	#
Chrome Cache Entry: 216	very short file (no magic)	#
Chrome Cache Entry: 217	very short file (no magic)	#
Chrome Cache Entry: 218	ASCII text, with no line terminators	#
Chrome Cache Entry: 219	ASCII text, with no line terminators	#
Chrome Cache Entry: 220	ASCII text, with very long lines (19015)	#
Chrome Cache Entry: 221	ASCII text, with very long lines (65447)	#
Chrome Cache Entry: 222	GIF image data, version 89a, 128 x 128	#
Chrome Cache Entry: 223	Unicode text, UTF-8 text, with very long lines (5433), with no line terminators	#
Chrome Cache Entry: 224	ASCII text, with very long lines (50758)	#
Chrome Cache Entry: 225	very short file (no magic)	#
Chrome Cache Entry: 177	ASCII text, with very long lines (65451)	#
Chrome Cache Entry: 162	Unicode text, UTF-8 text, with very long lines (31952)	#
Chrome Cache Entry: 163	ASCII text, with no line terminators	#
Chrome Cache Entry: 164	Unicode text, UTF-8 text, with very long lines (31977)	#
Chrome Cache Entry: 165	HTML document, ASCII text, with very long lines (321), with no line terminators	#
Chrome Cache Entry: 166	ASCII text, with very long lines (65536), with no line terminators	#
Chrome Cache Entry: 167	HTML document, Unicode text, UTF-8 text, with very long lines (27853), with CRLF line terminators	#
Chrome Cache Entry: 168	ASCII text, with very long lines (32012)	#
Chrome Cache Entry: 169	GIF image data, version 89a, 128 x 128	#
Chrome Cache Entry: 170	data	#
Chrome Cache Entry: 171	ASCII text	#
Chrome Cache Entry: 172	Web Open Font Format (Version 2), TrueType, length 84992, version 2.983	#
Chrome Cache Entry: 173	very short file (no magic)	#
Chrome Cache Entry: 174	very short file (no magic)	#
Chrome Cache Entry: 175	JSON data	#
Chrome Cache Entry: 176	ASCII text, with very long lines (32065)	#
Chrome Cache Entry: 161	very short file (no magic)	#
Chrome Cache Entry: 178	PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced	#
Chrome Cache Entry: 179	very short file (no magic)	#
Chrome Cache Entry: 180	PNG image data, 170 x 403, 8-bit/color RGBA, non-interlaced	#
Chrome Cache Entry: 181	ASCII text, with very long lines (48664)	#
Chrome Cache Entry: 182	GIF image data, version 89a, 32 x 16	#
Chrome Cache Entry: 183	data	#
Chrome Cache Entry: 184	ASCII text, with very long lines (31995)	#
Chrome Cache Entry: 185	very short file (no magic)	#
Chrome Cache Entry: 186	ASCII text, with no line terminators	#
Chrome Cache Entry: 187	JSON data	#
Chrome Cache Entry: 188	Unicode text, UTF-8 text, with very long lines (4863)	#
Chrome Cache Entry: 189	PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced	#
Chrome Cache Entry: 190	ASCII text, with very long lines (65325)	#
Chrome Cache Entry: 191	JSON data	#
Chrome Cache Entry: 192	Web Open Font Format (Version 2), TrueType, length 84396, version 2.983	#

https://app.box.com/s/qft12my1l5l17o04knifd8gw776ko70i

Comments

Tags

Available tags:

Details

Joe Sandbox

Third Party Analysis Engines

IPs

Domains

URLs

Dropped files

https://app.box.com/s/qft12my1l5l17o04knifd8gw776ko70i Options

Comments

Tags

Available tags:

Details

Joe Sandbox

Third Party Analysis Engines

IPs

Domains

URLs

Dropped files

Search started

https://app.box.com/s/qft12my1l5l17o04knifd8gw776ko70i