Register Login

sloganpng

top title background image

http://cgi.www5b.biglobe.ne.jp/~tomo5-55/accp4_8/acc/acc.cgi?REDIRECT=https://nightofkhifes.za.com/qazwsx/auth/JJHFHKS/KDKKDSS/xxx@xxx.com

Status: finished

Submission Time: 2023-08-18 03:01:55 +02:00

Malicious

Comments

Tags

Details

Analysis ID:
1293207
API (Web) ID:
1293207
Analysis Started:

2023-08-18 03:01:56 +02:00
Analysis Finished:

2023-08-18 03:06:27 +02:00
Technologies:

Engines
IOCs

Joe Sandbox

Engine	Download Report	Detection	Info
	Full Report Management Report IOC Report	malicious Score: 48	System: Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01

Third Party Analysis Engines

malicious

IPs

IP	Country	Detection
172.217.168.68	United States
239.255.255.250	Reserved
172.217.168.77	United States
Click to see the 2 hidden entries
142.250.203.110	United States
160.13.60.168	Japan

Domains

Name	IP	Detection
google.com	142.250.203.110
accounts.google.com	172.217.168.77
www.google.com	172.217.168.68
Click to see the 4 hidden entries
cgi.www5b.biglobe.ne.jp	160.13.60.168
clients.l.google.com	142.250.203.110
clients2.google.com	0.0.0.0
nightofkhifes.za.com	0.0.0.0

URLs

Name	Detection
http://cgi.www5b.biglobe.ne.jp/~tomo5-55/accp4_8/acc/acc.cgi?REDIRECT=https://nightofkhifes.za.com/qazwsx/auth/JJHFHKS/KDKKDSS/xxx@xxx.com
http://cgi.www5b.biglobe.ne.jp/favicon.ico
https://nightofkhifes.za.com/qazwsx/auth/JJHFHKS/KDKKDSS/xxx
Click to see the 6 hidden entries
https://trusttoken.dev
https://polyset.xyz
https://pst-issuer.hcaptcha.com
https://clients2.google.com/service/update2/crx?os=win&arch=x64&os_arch=x86_64&nacl_arch=x86-64&prod=chromecrx&prodchannel=&prodversion=115.0.5790.171&lang=en-US&acceptformat=crx3,puff&x=id%3Dnmmhkkegccagdldgiimedpiccmgmieda%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1
https://accounts.google.com/ListAccounts?gpsia=1&source=ChromiumBrowser&json=standard
http://cgi.www5b.biglobe.ne.jp/~tomo5-55/accp4_8/acc/acc.cgi?REDIRECT=https://nightofkhifes.za.com/qazwsx/auth/JJHFHKS/KDKKDSS/xxx@xxx.com

Dropped files

Name	File Type	Hashes	Detection
C:\Program Files\chrome_PuffinComponentUnpacker_BeginUnzipping4840_681014057\LICENSE	ASCII text	#
C:\Program Files\chrome_PuffinComponentUnpacker_BeginUnzipping4840_681014057\_metadata\verified_contents.json	JSON data	#
C:\Program Files\chrome_PuffinComponentUnpacker_BeginUnzipping4840_681014057\keys.json	JSON data	#
Click to see the 4 hidden entries
C:\Program Files\chrome_PuffinComponentUnpacker_BeginUnzipping4840_681014057\manifest.fingerprint	ASCII text, with no line terminators	#
C:\Program Files\chrome_PuffinComponentUnpacker_BeginUnzipping4840_681014057\manifest.json	JSON data	#
Chrome Cache Entry: 195	HTML document, Non-ISO extended-ASCII text	#
Chrome Cache Entry: 196	HTML document, ASCII text, with CRLF line terminators	#