Loading Joe Sandbox Report ...

Edit tour

Windows Analysis Report
https://freeusps.com/collections/2022/products/u-s-flag-2022rolls?data_from=collection_detail

Overview

General Information

Sample URL:https://freeusps.com/collections/2022/products/u-s-flag-2022rolls?data_from=collection_detail
Analysis ID:1487412
Infos:

Detection

Score:56
Range:0 - 100
Whitelisted:false
Confidence:100%

Signatures

Antivirus / Scanner detection for submitted sample
Antivirus detection for URL or domain
Detected suspicious crossdomain redirect
HTML body with high number of embedded SVGs detected
HTML page contains hidden javascript code
HTML page contains string obfuscation
HTML title does not match URL
HTTP GET or POST without a user agent
Suspicious form URL found

Classification

  • System is w10x64
  • chrome.exe (PID: 5572 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank" MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
    • chrome.exe (PID: 1236 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2052 --field-trial-handle=2008,i,9394795203490134690,904797597416443606,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
  • chrome.exe (PID: 6384 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://freeusps.com/collections/2022/products/u-s-flag-2022rolls?data_from=collection_detail" MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
  • cleanup
No configs have been found
No yara matches
No Sigma rule has matched
No Snort rule has matched
Timestamp:2024-08-04T00:50:29.282202+0200
SID:2012510
Source Port:443
Destination Port:49736
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:50:48.826988+0200
SID:2012510
Source Port:443
Destination Port:49846
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:51:06.765657+0200
SID:2012510
Source Port:443
Destination Port:49935
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:51:12.530925+0200
SID:2012510
Source Port:443
Destination Port:49956
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:50:58.568085+0200
SID:2012510
Source Port:443
Destination Port:49895
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:51:06.939488+0200
SID:2012510
Source Port:443
Destination Port:49935
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:51:07.029014+0200
SID:2012510
Source Port:443
Destination Port:49935
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:51:06.855082+0200
SID:2012510
Source Port:443
Destination Port:49935
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:51:14.410104+0200
SID:2012510
Source Port:443
Destination Port:49955
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:51:42.113956+0200
SID:2012510
Source Port:443
Destination Port:50107
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:51:36.487650+0200
SID:2012510
Source Port:443
Destination Port:50075
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:51:12.448342+0200
SID:2012510
Source Port:443
Destination Port:49956
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:51:06.854933+0200
SID:2012510
Source Port:443
Destination Port:49935
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:50:29.374101+0200
SID:2012510
Source Port:443
Destination Port:49736
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:51:12.532566+0200
SID:2012510
Source Port:443
Destination Port:49956
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:50:58.568031+0200
SID:2012510
Source Port:443
Destination Port:49895
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:51:40.326421+0200
SID:2012510
Source Port:443
Destination Port:50089
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:51:14.410401+0200
SID:2012510
Source Port:443
Destination Port:49955
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:50:48.651914+0200
SID:2012510
Source Port:443
Destination Port:49846
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:50:48.565255+0200
SID:2012510
Source Port:443
Destination Port:49846
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:51:37.006977+0200
SID:2012510
Source Port:443
Destination Port:50075
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:51:12.619951+0200
SID:2012510
Source Port:443
Destination Port:49956
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:51:06.941504+0200
SID:2012510
Source Port:443
Destination Port:49935
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:51:12.444480+0200
SID:2012510
Source Port:443
Destination Port:49956
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:51:12.535706+0200
SID:2012510
Source Port:443
Destination Port:49956
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:50:29.464226+0200
SID:2012510
Source Port:443
Destination Port:49736
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:50:29.281646+0200
SID:2012510
Source Port:443
Destination Port:49736
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:51:06.854782+0200
SID:2012510
Source Port:443
Destination Port:49935
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:50:58.563377+0200
SID:2012510
Source Port:443
Destination Port:49895
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:51:12.533080+0200
SID:2012510
Source Port:443
Destination Port:49956
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:50:48.739105+0200
SID:2012510
Source Port:443
Destination Port:49846
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:50:58.479590+0200
SID:2012510
Source Port:443
Destination Port:49895
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:50:58.563963+0200
SID:2012510
Source Port:443
Destination Port:49895
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:51:14.404841+0200
SID:2012510
Source Port:443
Destination Port:49955
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:51:12.444714+0200
SID:2012510
Source Port:443
Destination Port:49956
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:50:48.737653+0200
SID:2012510
Source Port:443
Destination Port:49846
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:51:14.405043+0200
SID:2012510
Source Port:443
Destination Port:49955
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:50:58.563035+0200
SID:2012510
Source Port:443
Destination Port:49895
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:51:06.941471+0200
SID:2012510
Source Port:443
Destination Port:49935
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:51:29.940755+0200
SID:2012510
Source Port:443
Destination Port:50045
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:51:14.409579+0200
SID:2012510
Source Port:443
Destination Port:49955
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:51:12.619222+0200
SID:2012510
Source Port:443
Destination Port:49956
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:51:38.805507+0200
SID:2012510
Source Port:443
Destination Port:50080
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:50:58.563136+0200
SID:2012510
Source Port:443
Destination Port:49895
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:51:38.361853+0200
SID:2012510
Source Port:443
Destination Port:50080
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:50:29.464942+0200
SID:2012510
Source Port:443
Destination Port:49736
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:51:07.029508+0200
SID:2012510
Source Port:443
Destination Port:49935
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:51:06.940614+0200
SID:2012510
Source Port:443
Destination Port:49935
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:51:06.899948+0200
SID:2012510
Source Port:443
Destination Port:49935
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:51:14.409808+0200
SID:2012510
Source Port:443
Destination Port:49955
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:50:29.374258+0200
SID:2012510
Source Port:443
Destination Port:49736
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:51:14.491900+0200
SID:2012510
Source Port:443
Destination Port:49955
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:50:48.565321+0200
SID:2012510
Source Port:443
Destination Port:49846
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:51:12.532238+0200
SID:2012510
Source Port:443
Destination Port:49956
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:51:12.446426+0200
SID:2012510
Source Port:443
Destination Port:49956
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:51:12.534562+0200
SID:2012510
Source Port:443
Destination Port:49956
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:51:12.443420+0200
SID:2012510
Source Port:443
Destination Port:49956
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:50:29.281155+0200
SID:2012510
Source Port:443
Destination Port:49736
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:50:29.373427+0200
SID:2012510
Source Port:443
Destination Port:49736
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:50:29.467330+0200
SID:2012510
Source Port:443
Destination Port:49736
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:51:14.405714+0200
SID:2012510
Source Port:443
Destination Port:49955
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:50:48.827032+0200
SID:2012510
Source Port:443
Destination Port:49846
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:50:29.280613+0200
SID:2012510
Source Port:443
Destination Port:49736
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:51:12.446404+0200
SID:2012510
Source Port:443
Destination Port:49956
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:51:07.028879+0200
SID:2012510
Source Port:443
Destination Port:49935
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:51:06.943556+0200
SID:2012510
Source Port:443
Destination Port:49935
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:51:14.491773+0200
SID:2012510
Source Port:443
Destination Port:49955
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:50:48.740889+0200
SID:2012510
Source Port:443
Destination Port:49846
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:51:12.445646+0200
SID:2012510
Source Port:443
Destination Port:49956
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:50:29.375100+0200
SID:2012510
Source Port:443
Destination Port:49736
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:50:29.371722+0200
SID:2012510
Source Port:443
Destination Port:49736
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:50:48.650581+0200
SID:2012510
Source Port:443
Destination Port:49846
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:50:48.737607+0200
SID:2012510
Source Port:443
Destination Port:49846
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:51:06.854854+0200
SID:2012510
Source Port:443
Destination Port:49935
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:50:29.464346+0200
SID:2012510
Source Port:443
Destination Port:49736
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:51:06.942404+0200
SID:2012510
Source Port:443
Destination Port:49935
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:50:48.650698+0200
SID:2012510
Source Port:443
Destination Port:49846
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:50:58.562953+0200
SID:2012510
Source Port:443
Destination Port:49895
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:51:25.640745+0200
SID:2012510
Source Port:443
Destination Port:50007
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:51:14.409902+0200
SID:2012510
Source Port:443
Destination Port:49955
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:50:58.479028+0200
SID:2012510
Source Port:443
Destination Port:49895
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:51:06.854577+0200
SID:2012510
Source Port:443
Destination Port:49935
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:51:12.531557+0200
SID:2012510
Source Port:443
Destination Port:49956
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:51:36.571150+0200
SID:2012510
Source Port:443
Destination Port:50075
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:51:14.405136+0200
SID:2012510
Source Port:443
Destination Port:49955
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:51:06.855151+0200
SID:2012510
Source Port:443
Destination Port:49935
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:51:12.530973+0200
SID:2012510
Source Port:443
Destination Port:49956
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:51:06.855269+0200
SID:2012510
Source Port:443
Destination Port:49935
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:51:14.409704+0200
SID:2012510
Source Port:443
Destination Port:49955
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:50:29.371830+0200
SID:2012510
Source Port:443
Destination Port:49736
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:50:29.469171+0200
SID:2012510
Source Port:443
Destination Port:49736
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:51:12.357423+0200
SID:2012510
Source Port:443
Destination Port:49956
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:50:48.738425+0200
SID:2012510
Source Port:443
Destination Port:49846
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:50:48.737241+0200
SID:2012510
Source Port:443
Destination Port:49846
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:50:29.372716+0200
SID:2012510
Source Port:443
Destination Port:49736
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:50:48.649835+0200
SID:2012510
Source Port:443
Destination Port:49846
Protocol:TCP
Classtype:Potentially Bad Traffic