IOC Report
https://form.jotform.com/222924400154042

loading gif

Files

File Path
Type
Category
Malicious
Chrome Cache Entry: 100
ASCII text, with very long lines (344), with no line terminators
downloaded
Chrome Cache Entry: 101
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 102
ASCII text
downloaded
Chrome Cache Entry: 103
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 104
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 105
PNG image data, 288 x 288, 8-bit colormap, non-interlaced
dropped
Chrome Cache Entry: 67
JSON data
dropped
Chrome Cache Entry: 68
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 69
Web Open Font Format (Version 2), TrueType, length 103152, version 3.1245
downloaded
Chrome Cache Entry: 70
ASCII text, with very long lines (65447)
downloaded
Chrome Cache Entry: 71
Web Open Font Format (Version 2), TrueType, length 109376, version 3.1245
downloaded
Chrome Cache Entry: 72
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 73
ASCII text
downloaded
Chrome Cache Entry: 74
ASCII text
downloaded
Chrome Cache Entry: 75
Unicode text, UTF-8 text, with very long lines (6048)
downloaded
Chrome Cache Entry: 76
ASCII text, with very long lines (65358)
downloaded
Chrome Cache Entry: 77
PNG image data, 288 x 288, 8-bit colormap, non-interlaced
downloaded
Chrome Cache Entry: 78
ASCII text
downloaded
Chrome Cache Entry: 79
ASCII text, with very long lines (2199)
downloaded
Chrome Cache Entry: 80
HTML document, Unicode text, UTF-8 text, with very long lines (5622)
downloaded
Chrome Cache Entry: 81
ASCII text, with very long lines (3168), with no line terminators
downloaded
Chrome Cache Entry: 82
ASCII text, with very long lines (2753)
downloaded
Chrome Cache Entry: 83
ASCII text, with very long lines (404)
downloaded
Chrome Cache Entry: 84
PNG image data, 1600 x 1170, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 85
ASCII text
downloaded
Chrome Cache Entry: 86
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 87
Web Open Font Format (Version 2), TrueType, length 111736, version 3.1245
downloaded
Chrome Cache Entry: 88
ASCII text, with very long lines (790)
downloaded
Chrome Cache Entry: 89
ASCII text, with very long lines (3968)
downloaded
Chrome Cache Entry: 90
ASCII text, with very long lines (46912)
downloaded
Chrome Cache Entry: 91
ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 92
Web Open Font Format (Version 2), TrueType, length 111740, version 3.1245
downloaded
Chrome Cache Entry: 93
PNG image data, 1600 x 1170, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 94
Web Open Font Format (Version 2), TrueType, length 111192, version 3.1245
downloaded
Chrome Cache Entry: 95
ASCII text
downloaded
Chrome Cache Entry: 96
ASCII text
downloaded
Chrome Cache Entry: 97
JSON data
downloaded
Chrome Cache Entry: 98
ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 99
ASCII text
downloaded
There are 30 hidden files, click here to show them.

Processes

Path
Cmdline
Malicious
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2080 --field-trial-handle=2004,i,11903820565349120790,11878242633129214982,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" "https://form.jotform.com/222924400154042"

URLs

Name
IP
Malicious
https://form.jotform.com/222924400154042
https://cdn.jotfor.ms/fonts/inter/fonts/Inter-ExtraBold.woff)
unknown
https://cdn03.jotfor.ms/js/vendor/jSignature/jSignature.CompressorBase30.js?v=3.3.53127
172.67.7.107
https://screenshots.jotform.com/wishbox-server.php?callback=?
unknown
https://cdn.jotfor.ms/fonts/inter/fonts/Inter-Light.woff2
172.67.7.107
https://cdn.jotfor.ms/images/exclamation-octagon.png
unknown
https://www.jotform.com/server.php
unknown
https://cdn.jotfor.ms/assets/img/uncategorized/hipaa-badge-compliance.png
unknown
https://api.jotform.com/test/formBranding?formID=222924400154042
104.19.129.105
https://cdn.jotfor.ms/assets/img/builder/search_icon.png
unknown
http://www.opensource.org/licenses/mit-license.php
unknown
https://cdn.jotfor.ms/fonts/inter/fonts/Inter-Regular.woff2
172.67.7.107
https://cdn.jotfor.ms/fonts/inter/fonts/Inter-Regular.woff2)
unknown
https://www.jotform.com/oembed/?format=json&url=https%3A%2F%2Fform.jotform.com%2F222924400154042
unknown
https://www.jotform.com/oembed/?format=xml&url=https%3A%2F%2Fform.jotform.com%2F222924400154042
unknown
https://cdn.jotfor.ms/fonts/inter/fonts/Inter-Regular.woff)
unknown
https://www.jotform.com/uploads/rbr9604/form_files/logo%20ldi.6351688c9defb2.40862514.jpg
104.19.128.105
https://cdn03.jotfor.ms/themes/CSS/548b1325700cc48d318b4567.css?v=3.3.53127&themeRevisionID=60d3156f
unknown
https://cdn01.jotfor.ms/static/prototype.forms.js?v=3.3.53127
172.67.7.107
https://www.jotform.com/?utm_source=powered_by_jotform&utm_medium=banner&utm_term=
unknown
https://cdn02.jotfor.ms/css/styles/payment/payment_feature.css?3.3.53127
104.22.73.81
https://cdn.jotfor.ms/fonts/inter/fonts/Inter-Black.woff)
unknown
https://cdn.jotfor.ms/fonts/inter/fonts/Inter-SemiBold.woff)
unknown
https://cdn01.jotfor.ms/s/umd/e7110c790c1/for-form-branding-footer.js?v=3.3.53127
172.67.7.107
https://cdn.jotfor.ms/fonts/inter/fonts/Inter-Bold.woff2
172.67.7.107
https://browser.sentry-cdn.com/5.19.0/bundle.min.js
unknown
https://cdn01.jotfor.ms/js/vendor/jquery-3.7.1.min.js?v=3.3.53127
172.67.7.107
https://cdn.jotfor.ms/fonts/inter/fonts/Inter-SemiBold.woff2
172.67.7.107
https://screenshots.jotform.com/wishbox-server.php
unknown
https://www.jotform.com/hipaa
unknown
https://cdn.jotfor.ms/assets/img/payments/stripeACH_plaid.svg);
unknown
https://cdn.jotfor.ms/fonts/inter/fonts/Inter-ExtraBold.woff2)
unknown
https://api.jotform.com
unknown
https://cdn.jotfor.ms/assets/img/payments/alert_blue.svg
unknown
https://screenshots.jotform.com/queue/
unknown
https://cdn.jotfor.ms/assets/img/payments/collapse_icon.svg
unknown
https://cdn.jotfor.ms/fonts/inter/fonts/Inter-Bold.woff)
unknown
https://cdn.jotfor.ms/fonts/inter/fonts/Inter-Medium.woff)
unknown
https://cdn.jotfor.ms/assets/img/payments/product_drag.png
unknown
https://cdn.jotfor.ms/fonts/inter/fonts/Inter-Thin.woff2)
unknown
https://cdn.jotfor.ms/assets/img/payments/trash_btn.svg
unknown
https://cdn.jotfor.ms/fonts/inter/fonts/Inter-Light.woff2)
unknown
http://willow-systems.com
unknown
https://screenshots.jotform.com/opt/templates/screen_editor.html?shot=
unknown
https://submit.jotform.com/submit/222924400154042
unknown
https://cdn01.jotfor.ms/s/umd/e7110c790c1/for-pdfimporter-patch.js?v=3.3.53127
172.67.7.107
https://www.jotform.com/accessible-forms/?utm_source=formfooter&utm_medium=banner&utm_term=
unknown
https://cdn.jotfor.ms/fonts/inter/fonts/Inter-Light.woff)
unknown
https://events.jotform.com/
unknown
https://thednp.github.io/dommatrix/)
unknown
https://cdn03.jotfor.ms/js/vendor/jotform.signaturepad.new.js?v=3.3.53127
172.67.7.107
https://cdn02.jotfor.ms/themes/CSS/defaultV2.css?v=d0f72cd
104.22.73.81
https://cdn.jotfor.ms/assets/img/theme-assets/5ca4930530899c64ff77cfa1/previewPDF-icon.svg
172.67.7.107
https://cdn02.jotfor.ms/static/jotform.forms.js?v=3.3.53127
104.22.73.81
https://cdn.jotfor.ms/
unknown
https://cdn03.jotfor.ms/js/vendor/maskedinput_5.0.9.min.js?v=3.3.53127
172.67.7.107
https://cdn.jotfor.ms
unknown
https://cdn.jotfor.ms/assets/img/favicons/favicon-2021-light%402x.png
172.67.7.107
http://tt.epicplay.com
unknown
http://sizzlejs.com/
unknown
https://form.jotform.com/222924400154042
https://cdn.jotfor.ms/assets/img/payments/shopping_bag.svg
unknown
https://cdn.jotfor.ms/fonts/inter/fonts/Inter-ExtraLight.woff2)
unknown
https://cdn01.jotfor.ms/js/punycode-1.4.1.min.js?v=3.3.53127
172.67.7.107
https://hipaa-api.jotform.com
unknown
https://cdn03.jotfor.ms/js/errorNavigation.js?v=3.3.53127
172.67.7.107
https://cdn.jotfor.ms/fonts/inter/fonts/Inter-Medium.woff2
172.67.7.107
https://cdn02.jotfor.ms/js/vendor/jSignature/jSignature.UndoButton.js?v=3.3.53127
104.22.73.81
https://cdn02.jotfor.ms/js/vendor/smoothscroll.min.js?v=3.3.53127
104.22.73.81
http://rumkin.com)
unknown
https://hipaa.jotform.com/
unknown
https://cdn.jotfor.ms/assets/img/payments/product_settings.png
unknown
https://cdn.jotfor.ms/images/calendar.png
172.67.7.107
http://loading.retry.widdit.com/
unknown
https://cdn.jotfor.ms/assets/img/payments/close_white.svg
unknown
https://cdn.jotfor.ms/assets/img/payments/product_upload.svg
unknown
https://www.jotform.com
unknown
https://cdn01.jotfor.ms/js/vendor/jSignature/jSignature.CompressorSVG.js?v=3.3.53127
172.67.7.107
https://cdn.jotfor.ms/fonts/inter/fonts/Inter-SemiBold.woff2)
unknown
https://www.jotform.com/encrypted-forms
unknown
https://cdn.jotfor.ms/assets/img/payments/image_zoom.svg
unknown
https://widgets.jotform.io/mobileResponsive/mobile.responsive.min.css
unknown
https://cdn.jotfor.ms/assets/img/uncategorized/encrypted-form-badge.png
unknown
http://kukawski.pl)
unknown
https://cdn.jotfor.ms/fonts/inter/fonts/Inter-Medium.woff2)
unknown
http://www.apache.org/licenses/LICENSE-2.0
unknown
http://svg.codeplex.com/
unknown
https://cdn.jotfor.ms/assets/img/logo2021/jotform-logo-white.svg
172.67.7.107
https://cdn01.jotfor.ms/css/styles/payment/payment_styles.css?3.3.53127
172.67.7.107
https://www.jotform.com/uploads/rbr9604/form_files/pfc_63515b639216c_95ffc786-3c9f-42f5-9d1d-36b9c14
unknown
http://dojofoundation.org/license
unknown
https://cdn01.jotfor.ms/stylebuilder/static/form-common.css?v=d0f72cd
172.67.7.107
https://cdn.jotfor.ms/fonts/inter/fonts/Inter-Bold.woff2)
unknown
https://cdn.jotfor.ms/fonts/inter/fonts/Inter-Black.woff2)
unknown
http://www.unbolt.net
unknown
https://cdn.jotfor.ms/assets/img/payments/sort_icon.png
unknown
https://cdn.jotfor.ms/assets/img/uncategorized/access-image.png
unknown
https://cdn.jotfor.ms/assets/img/payments/product_delete.png
unknown
https://cdn02.jotfor.ms/js/vendor/jSignature/jSignature.js?v=3.3.53127
104.22.73.81
http://phpjs.org/functions/base64_encode
unknown
https://cdn.jotfor.ms/fonts/inter/fonts/Inter-Thin.woff)
unknown
There are 90 hidden URLs, click here to show them.

Domains

Name
IP
Malicious
cdn01.jotfor.ms
172.67.7.107
bg.microsoft.map.fastly.net
199.232.214.172
go.lb.jotform.com
35.201.118.58
cdn03.jotfor.ms
172.67.7.107
cdn.jotfor.ms
172.67.7.107
www.google.com
64.233.176.106
api.jotform.com
104.19.129.105
cdn02.jotfor.ms
104.22.73.81
events.jotform.com
104.19.128.105
www.jotform.com
104.19.128.105
fp2e7a.wpc.phicdn.net
192.229.211.108
go.files.jotform.com
35.190.41.132
form.jotform.com
unknown
files.jotform.com
unknown
There are 4 hidden domains, click here to show them.

IPs

IP
Domain
Country
Malicious
104.19.129.105
api.jotform.com
United States
35.201.118.58
go.lb.jotform.com
United States
192.168.2.4
unknown
unknown
172.67.7.107
cdn01.jotfor.ms
United States
104.19.128.105
events.jotform.com
United States
35.190.41.132
go.files.jotform.com
United States
239.255.255.250
unknown
Reserved
64.233.176.106
www.google.com
United States
104.22.73.81
cdn02.jotfor.ms
United States

DOM / HTML

URL
Malicious
https://form.jotform.com/222924400154042
https://form.jotform.com/222924400154042
https://form.jotform.com/222924400154042
https://form.jotform.com/222924400154042