Loading Joe Sandbox Report ...

Edit tour

Windows Analysis Report
https://app.salesforceiq.com/r?target=6668871d36fd2c590e69738f&t=AFwhZf1FA5UQoPJfZhv0fx01F18fhOllxr31LLKGz8PWgJeYNHYxSGFA1JrUEUUQObQ88teMdqd0o9ZIV8WeyIc-KGkN2-4Kwg3aQDptaBRRW9C5s_w2iMo0-UsKA37NOqreaHz7kZF-&url=https%3A%2F%2Fcmcoutperform.com%2Fsites%2Fdefault%2Ffiles%2FCourse-Guides%2FCMC-Course-Gui

Overview

General Information

Sample URL:https://app.salesforceiq.com/r?target=6668871d36fd2c590e69738f&t=AFwhZf1FA5UQoPJfZhv0fx01F18fhOllxr31LLKGz8PWgJeYNHYxSGFA1JrUEUUQObQ88teMdqd0o9ZIV8WeyIc-KGkN2-4Kwg3aQDptaBRRW9C5s_w2iMo0-UsKA37NOqreaHz
Analysis ID:1455410

Detection

Score:1
Range:0 - 100
Whitelisted:false
Confidence:80%

Signatures

Detected non-DNS traffic on DNS port
Stores files to the Windows start menu directory

Classification

  • System is w10x64_ra
  • chrome.exe (PID: 7108 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --single-argument https://app.salesforceiq.com/r?target=6668871d36fd2c590e69738f&t=AFwhZf1FA5UQoPJfZhv0fx01F18fhOllxr31LLKGz8PWgJeYNHYxSGFA1JrUEUUQObQ88teMdqd0o9ZIV8WeyIc-KGkN2-4Kwg3aQDptaBRRW9C5s_w2iMo0-UsKA37NOqreaHz7kZF-&url=https%3A%2F%2Fcmcoutperform.com%2Fsites%2Fdefault%2Ffiles%2FCourse-Guides%2FCMC-Course-Guide-Spring-2024.pdf MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
    • chrome.exe (PID: 6320 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2176 --field-trial-handle=1892,i,8974076035582547648,5252766854740829689,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
  • cleanup
No yara matches
No Sigma rule has matched
No Snort rule has matched

Click to jump to signature section

Show All Signature Results

There are no malicious signatures, click here to show all signatures.

Source: https://cmcoutperform.com/sites/default/files/Course-Guides/CMC-Course-Guide-Spring-2024.pdfHTTP Parser: No favicon
Source: file:///C:/Users/user/Downloads/downloaded.pdfHTTP Parser: No favicon
Source: unknownHTTPS traffic detected: 2.19.85.159:443 -> 192.168.2.16:56739 version: TLS 1.2
Source: unknownHTTPS traffic detected: 2.1