Loading Joe Sandbox Report ...

Edit tour

Windows Analysis Report
https://freeusps.com/collections/all-usps-stamp/products/u-s-flag-2022-9683?data_from=collection_detail

Overview

General Information

Sample URL:https://freeusps.com/collections/all-usps-stamp/products/u-s-flag-2022-9683?data_from=collection_detail
Analysis ID:1487416
Infos:

Detection

Score:80
Range:0 - 100
Whitelisted:false
Confidence:100%

Signatures

AI detected phishing page
Antivirus / Scanner detection for submitted sample
Antivirus detection for URL or domain
Multi AV Scanner detection for domain / URL
Multi AV Scanner detection for submitted file
Detected suspicious crossdomain redirect
HTML body with high number of embedded SVGs detected
HTML page contains hidden javascript code
HTML page contains string obfuscation
HTML title does not match URL
HTTP GET or POST without a user agent
Suspicious form URL found

Classification

  • System is w10x64
  • chrome.exe (PID: 364 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank" MD5: 5BBFA6CBDF4C254EB368D534F9E23C92)
    • chrome.exe (PID: 3580 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2312 --field-trial-handle=2244,i,16069394896530453880,5435321141966708087,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 MD5: 5BBFA6CBDF4C254EB368D534F9E23C92)
  • chrome.exe (PID: 2264 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://freeusps.com/collections/all-usps-stamp/products/u-s-flag-2022-9683?data_from=collection_detail" MD5: 5BBFA6CBDF4C254EB368D534F9E23C92)
  • cleanup
No configs have been found
No yara matches
No Sigma rule has matched
No Snort rule has matched
Timestamp:2024-08-04T00:55:10.234600+0200
SID:2012510
Source Port:443
Destination Port:49922
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:55:02.048860+0200
SID:2012510
Source Port:443
Destination Port:49870
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:54:52.097476+0200
SID:2012510
Source Port:443
Destination Port:49824
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:54:52.099045+0200
SID:2012510
Source Port:443
Destination Port:49824
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:55:16.581294+0200
SID:2012510
Source Port:443
Destination Port:49943
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:55:16.493094+0200
SID:2012510
Source Port:443
Destination Port:49943
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:55:10.327478+0200
SID:2012510
Source Port:443
Destination Port:49922
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:54:31.315195+0200
SID:2012510
Source Port:443
Destination Port:49716
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:54:52.096825+0200
SID:2012510
Source Port:443
Destination Port:49824
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:54:31.227962+0200
SID:2012510
Source Port:443
Destination Port:49716
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:55:02.050117+0200
SID:2012510
Source Port:443
Destination Port:49870
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:55:10.324846+0200
SID:2012510
Source Port:443
Destination Port:49922
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:55:40.172248+0200
SID:2012510
Source Port:443
Destination Port:50054
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:55:10.323972+0200
SID:2012510
Source Port:443
Destination Port:49922
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:54:31.314715+0200
SID:2012510
Source Port:443
Destination Port:49716
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:54:52.411563+0200
SID:2012510
Source Port:443
Destination Port:49824
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:54:31.270570+0200
SID:2012510
Source Port:443
Destination Port:49716
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:55:10.232307+0200
SID:2012510
Source Port:443
Destination Port:49922
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:55:28.535433+0200
SID:2012510
Source Port:443
Destination Port:49976
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:55:38.398815+0200
SID:2012510
Source Port:443
Destination Port:50048
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:55:10.417576+0200
SID:2012510
Source Port:443
Destination Port:49922
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:55:16.494619+0200
SID:2012510
Source Port:443
Destination Port:49943
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:55:40.696405+0200
SID:2012510
Source Port:443
Destination Port:50054
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:54:31.230685+0200
SID:2012510
Source Port:443
Destination Port:49716
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:55:02.129499+0200
SID:2012510
Source Port:443
Destination Port:49870
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:54:52.098223+0200
SID:2012510
Source Port:443
Destination Port:49824
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:54:31.229795+0200
SID:2012510
Source Port:443
Destination Port:49716
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:54:31.270516+0200
SID:2012510
Source Port:443
Destination Port:49716
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:55:16.493799+0200
SID:2012510
Source Port:443
Destination Port:49943
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:55:02.130107+0200
SID:2012510
Source Port:443
Destination Port:49870
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:55:16.320180+0200
SID:2012510
Source Port:443
Destination Port:49943
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:55:40.348123+0200
SID:2012510
Source Port:443
Destination Port:50054
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:54:31.142704+0200
SID:2012510
Source Port:443
Destination Port:49716
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:55:10.327277+0200
SID:2012510
Source Port:443
Destination Port:49922
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:55:42.943330+0200
SID:2012510
Source Port:443
Destination Port:50079
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:55:10.323792+0200
SID:2012510
Source Port:443
Destination Port:49922
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:55:10.416064+0200
SID:2012510
Source Port:443
Destination Port:49922
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:54:31.270611+0200
SID:2012510
Source Port:443
Destination Port:49716
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:55:10.324154+0200
SID:2012510
Source Port:443
Destination Port:49922
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:55:16.496430+0200
SID:2012510
Source Port:443
Destination Port:49943
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:54:31.315293+0200
SID:2012510
Source Port:443
Destination Port:49716
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:55:16.406431+0200
SID:2012510
Source Port:443
Destination Port:49943
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:54:52.098416+0200
SID:2012510
Source Port:443
Destination Port:49824
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:55:41.555786+0200
SID:2012510
Source Port:443
Destination Port:50062
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:55:16.496205+0200
SID:2012510
Source Port:443
Destination Port:49943
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:55:38.050752+0200
SID:2012510
Source Port:443
Destination Port:50048
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:55:41.671718+0200
SID:2012510
Source Port:443
Destination Port:50062
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:55:42.929958+0200
SID:2012510
Source Port:443
Destination Port:50079
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:55:16.495394+0200
SID:2012510
Source Port:443
Destination Port:49943
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:54:31.229993+0200
SID:2012510
Source Port:443
Destination Port:49716
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:55:16.496312+0200
SID:2012510
Source Port:443
Destination Port:49943
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:55:10.233695+0200
SID:2012510
Source Port:443
Destination Port:49922
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:55:10.416155+0200
SID:2012510
Source Port:443
Destination Port:49922
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:54:31.315251+0200
SID:2012510
Source Port:443
Destination Port:49716
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:54:52.412387+0200
SID:2012510
Source Port:443
Destination Port:49824
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:55:02.048980+0200
SID:2012510
Source Port:443
Destination Port:49870
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:55:10.417461+0200
SID:2012510
Source Port:443
Destination Port:49922
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:55:10.234047+0200
SID:2012510
Source Port:443
Destination Port:49922
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:55:32.089198+0200
SID:2012510
Source Port:443
Destination Port:50013
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:55:40.696573+0200
SID:2012510
Source Port:443
Destination Port:50054
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:54:52.007592+0200
SID:2012510
Source Port:443
Destination Port:49824
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:54:52.410877+0200
SID:2012510
Source Port:443
Destination Port:49824
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:55:16.494494+0200
SID:2012510
Source Port:443
Destination Port:49943
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:55:02.046101+0200
SID:2012510
Source Port:443
Destination Port:49870
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:55:10.326458+0200
SID:2012510
Source Port:443
Destination Port:49922
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:54:31.228706+0200
SID:2012510
Source Port:443
Destination Port:49716
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:55:02.050977+0200
SID:2012510
Source Port:443
Destination Port:49870
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:55:41.674953+0200
SID:2012510
Source Port:443
Destination Port:50062
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:54:52.097613+0200
SID:2012510
Source Port:443
Destination Port:49824
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:55:10.325315+0200
SID:2012510
Source Port:443
Destination Port:49922
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:55:30.132660+0200
SID:2012510
Source Port:443
Destination Port:49994
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:55:02.046035+0200
SID:2012510
Source Port:443
Destination Port:49870
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:54:31.227778+0200
SID:2012510
Source Port:443
Destination Port:49716
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:55:10.325422+0200
SID:2012510
Source Port:443
Destination Port:49922
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:54:52.097687+0200
SID:2012510
Source Port:443
Destination Port:49824
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:54:52.418603+0200
SID:2012510
Source Port:443
Destination Port:49824
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:55:02.136034+0200
SID:2012510
Source Port:443
Destination Port:49870
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:55:16.409002+0200
SID:2012510
Source Port:443
Destination Port:49943
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:54:31.317705+0200
SID:2012510
Source Port:443
Destination Port:49716
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:55:10.140098+0200
SID:2012510
Source Port:443
Destination Port:49922
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:54:52.411514+0200
SID:2012510
Source Port:443
Destination Port:49824
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:54:31.141817+0200
SID:2012510
Source Port:443
Destination Port:49716
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:54:52.415927+0200
SID:2012510
Source Port:443
Destination Port:49824
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:55:02.131155+0200
SID:2012510
Source Port:443
Destination Port:49870
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:54:52.411631+0200
SID:2012510
Source Port:443
Destination Port:49824
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:54:52.418753+0200
SID:2012510
Source Port:443
Destination Port:49824
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:54:31.230826+0200
SID:2012510
Source Port:443
Destination Port:49716
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:55:02.049996+0200
SID:2012510
Source Port:443
Destination Port:49870
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:54:31.229471+0200
SID:2012510
Source Port:443
Destination Port:49716
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:54:52.411151+0200
SID:2012510
Source Port:443
Destination Port:49824
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:55:10.231929+0200
SID:2012510
Source Port:443
Destination Port:49922
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:55:02.046893+0200
SID:2012510
Source Port:443
Destination Port:49870
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:55:02.050047+0200
SID:2012510
Source Port:443
Destination Port:49870
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:55:16.495498+0200
SID:2012510
Source Port:443
Destination Port:49943
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:55:16.407394+0200
SID:2012510
Source Port:443
Destination Port:49943
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:55:02.047000+0200
SID:2012510
Source Port:443
Destination Port:49870
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:55:10.329233+0200
SID:2012510
Source Port:443
Destination Port:49922
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:54:52.410736+0200
SID:2012510
Source Port:443
Destination Port:49824
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:55:16.494038+0200
SID:2012510
Source Port:443
Destination Port:49943
Protocol:TCP
Classtype:Potentially Bad Traffic
Timestamp:2024-08-04T00:55:38.398895+0200</