Edit tour
Windows
Analysis Report
https://freeusps.com/collections/2022/products/u-s-flag-2022rolls?data_from=collection_detail
Overview
General Information
Detection
Score: | 56 |
Range: | 0 - 100 |
Whitelisted: | false |
Confidence: | 100% |
Signatures
Antivirus / Scanner detection for submitted sample
Antivirus detection for URL or domain
Detected suspicious crossdomain redirect
HTML body with high number of embedded SVGs detected
HTML page contains hidden javascript code
HTML page contains string obfuscation
HTML title does not match URL
HTTP GET or POST without a user agent
Suspicious form URL found
Classification
- System is w10x64
- chrome.exe (PID: 5572 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --st art-maximi zed "about :blank" MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4) - chrome.exe (PID: 1236 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --ty pe=utility --utility -sub-type= network.mo jom.Networ kService - -lang=en-U S --servic e-sandbox- type=none --mojo-pla tform-chan nel-handle =2052 --fi eld-trial- handle=200 8,i,939479 5203490134 690,904797 5974164436 06,262144 --disable- features=O ptimizatio nGuideMode lDownloadi ng,Optimiz ationHints ,Optimizat ionHintsFe tching,Opt imizationT argetPredi ction /pre fetch:8 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
- chrome.exe (PID: 6384 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" "htt ps://freeu sps.com/co llections/ 2022/produ cts/u-s-fl ag-2022rol ls?data_fr om=collect ion_detail " MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
- cleanup
⊘No configs have been found
⊘No yara matches
⊘No Sigma rule has matched
⊘No Snort rule has matched
Timestamp: | 2024-08-04T00:50:29.282202+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49736 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:50:48.826988+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49846 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:51:06.765657+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49935 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:51:12.530925+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49956 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:50:58.568085+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49895 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:51:06.939488+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49935 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:51:07.029014+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49935 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:51:06.855082+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49935 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:51:14.410104+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49955 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:51:42.113956+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 50107 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:51:36.487650+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 50075 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:51:12.448342+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49956 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:51:06.854933+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49935 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:50:29.374101+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49736 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:51:12.532566+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49956 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:50:58.568031+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49895 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:51:40.326421+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 50089 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:51:14.410401+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49955 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:50:48.651914+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49846 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:50:48.565255+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49846 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:51:37.006977+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 50075 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:51:12.619951+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49956 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:51:06.941504+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49935 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:51:12.444480+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49956 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:51:12.535706+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49956 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:50:29.464226+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49736 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:50:29.281646+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49736 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:51:06.854782+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49935 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:50:58.563377+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49895 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:51:12.533080+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49956 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:50:48.739105+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49846 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:50:58.479590+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49895 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:50:58.563963+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49895 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:51:14.404841+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49955 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:51:12.444714+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49956 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:50:48.737653+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49846 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:51:14.405043+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49955 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:50:58.563035+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49895 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:51:06.941471+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49935 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:51:29.940755+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 50045 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:51:14.409579+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49955 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:51:12.619222+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49956 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:51:38.805507+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 50080 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:50:58.563136+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49895 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:51:38.361853+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 50080 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:50:29.464942+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49736 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:51:07.029508+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49935 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:51:06.940614+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49935 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:51:06.899948+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49935 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:51:14.409808+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49955 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:50:29.374258+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49736 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:51:14.491900+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49955 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:50:48.565321+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49846 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:51:12.532238+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49956 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:51:12.446426+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49956 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:51:12.534562+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49956 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:51:12.443420+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49956 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:50:29.281155+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49736 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:50:29.373427+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49736 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:50:29.467330+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49736 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:51:14.405714+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49955 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:50:48.827032+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49846 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:50:29.280613+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49736 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:51:12.446404+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49956 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:51:07.028879+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49935 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:51:06.943556+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49935 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:51:14.491773+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49955 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:50:48.740889+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49846 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:51:12.445646+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49956 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:50:29.375100+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49736 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:50:29.371722+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49736 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:50:48.650581+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49846 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:50:48.737607+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49846 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:51:06.854854+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49935 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:50:29.464346+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49736 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:51:06.942404+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49935 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:50:48.650698+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49846 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:50:58.562953+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49895 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:51:25.640745+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 50007 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:51:14.409902+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49955 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:50:58.479028+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49895 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:51:06.854577+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49935 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:51:12.531557+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49956 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:51:36.571150+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 50075 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:51:14.405136+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49955 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:51:06.855151+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49935 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:51:12.530973+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49956 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:51:06.855269+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49935 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:51:14.409704+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49955 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:50:29.371830+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49736 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:50:29.469171+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49736 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:51:12.357423+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49956 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:50:48.738425+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49846 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:50:48.737241+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49846 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:50:29.372716+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49736 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |
Timestamp: | 2024-08-04T00:50:48.649835+0200 |
SID: | 2012510 |
Source Port: | 443 |
Destination Port: | 49846 |
Protocol: | TCP |
Classtype: | Potentially Bad Traffic |