flash

http://80.82.67.184/richard

Status: finished
Submission Time: 14.01.2020 23:58:33
Clean

Comments

Tags

Details

  • Analysis ID:
    201041
  • API (Web) ID:
    299872
  • Analysis Started:
    14.01.2020 23:58:33
  • Analysis Finished:
    15.01.2020 00:03:31
  • Technologies:
Full Report Engine Info Verdict Score Reports

System: Ubuntu Linux 16.04 x64 (Kernel 4.4.0-116, Firefox 59.0, Document Viewer 3.18.2, LibreOffice 5.1.6.2, OpenJDK 1.8.0_171)

clean
1/100

malicious
10/72

IPs

IP Country Detection
80.82.67.184
Netherlands
52.89.218.39
United States
35.161.170.1
United States
Click to see the 2 hidden entries
99.86.163.122
United States
3.248.137.36
United States

Domains

Name IP Detection
search.r53-2.services.mozilla.com
52.89.218.39
pipeline-incoming-prod-elb-149169523.us-west-2.elb.amazonaws.com
35.161.170.1
locprod1-elb-eu-west-1.prod.mozaws.net
3.248.137.36
Click to see the 1 hidden entries
balrog-cloudfront.prod.mozaws.net
99.86.163.122

URLs

Name Detection
https://discovery.addons.allizom.orgQ
http://www.apache.org/licenses/LICENSE-2.0
https://normandy.cdn.mozilla.net/api/v1Oextensions.shield-recipe-client.api_urlQextensions.shield-re
Click to see the 22 hidden entries
https://screenshots.firefox.com/
https://hg.mozilla.org/releases/mozilla-release/rev/c61f5f5ead48c78a80c80db5c489bdc7cfaf8175
http://80.82.67.184/richardnecko:classified1
https://www.widevine.com/
http://80.82.67.184/predictor::seen1
https://support.mozilla.org/kb/warning-unresponsive-script#w_other-causes
https://developer.mozilla.org/en-US/docs/JavaScript_OS.File/OS.File.Info#Cross-platform_Attributes/_
https://support.mozilla.org/kb/reset-firefox-easily-fix-most-problems
https://discovery.addons-dev.allizom.org
http://mozilla.org/MPL/2.0/.
https://bugzilla.mozilla.org/show_bug.cgi?id=1238180
https://bugzilla.mozilla.org/show_bug.cgi?id=1243643
https://bugzilla.mozilla.org/show_bug.cgi?id=1100294
https://developer.mozilla.org/docs/JavaScript_OS.File
http://www.openh264.org/
https://developer.mozilla.org/en-US/docs/JavaScript_OS.File/OS.File.Info#Cross-platform_Attributes/
https://support.mozilla.org/kb/flash-protected-mode-autodisabled
http://80.82.67.184/
https://discovery.addons.mozilla.org
https://discovery.addons.allizom.orgQhttps://discovery.addons-dev.allizom.org
http://80.82.67.184/richard
https://normandy.cdn.mozilla.net/api/v1O

Dropped files

Name File Type Hashes Detection
/home/user/.cache/dconf/user
very short file (no magic)
#
/home/user/.cache/mozilla/firefox/v9nzj3nw.default/activity-stream.tippytop.json.tmp
ASCII text, with very long lines, with no line terminators
#
/home/user/.cache/mozilla/firefox/v9nzj3nw.default/cache2/entries/7D0DF88A5F52C22C222EA72EA1AC18B62CF57B56
data
#
Click to see the 53 hidden entries
/home/user/.cache/mozilla/firefox/v9nzj3nw.default/cache2/entries/84994CF72DFE1657F1651E673865EA34C0410336
data
#
/home/user/.cache/mozilla/firefox/v9nzj3nw.default/cache2/entries/DB86BBDC253E97828558379CCB123BA87C4EF54F
data
#
/home/user/.cache/mozilla/firefox/v9nzj3nw.default/safebrowsing-updating/allow-flashallow-digest256.pset
data
#
/home/user/.cache/mozilla/firefox/v9nzj3nw.default/safebrowsing-updating/allow-flashallow-digest256.sbstore
data
#
/home/user/.cache/mozilla/firefox/v9nzj3nw.default/safebrowsing-updating/base-track-digest256.pset
data
#
/home/user/.cache/mozilla/firefox/v9nzj3nw.default/safebrowsing-updating/base-track-digest256.sbstore
data
#
/home/user/.cache/mozilla/firefox/v9nzj3nw.default/safebrowsing-updating/block-flash-digest256.pset
data
#
/home/user/.cache/mozilla/firefox/v9nzj3nw.default/safebrowsing-updating/block-flash-digest256.sbstore
data
#
/home/user/.cache/mozilla/firefox/v9nzj3nw.default/safebrowsing-updating/block-flashsubdoc-digest256.pset
data
#
/home/user/.cache/mozilla/firefox/v9nzj3nw.default/safebrowsing-updating/block-flashsubdoc-digest256.sbstore
data
#
/home/user/.cache/mozilla/firefox/v9nzj3nw.default/safebrowsing-updating/except-flash-digest256.pset
data
#
/home/user/.cache/mozilla/firefox/v9nzj3nw.default/safebrowsing-updating/except-flash-digest256.sbstore
data
#
/home/user/.cache/mozilla/firefox/v9nzj3nw.default/safebrowsing-updating/except-flashallow-digest256.pset
data
#
/home/user/.cache/mozilla/firefox/v9nzj3nw.default/safebrowsing-updating/except-flashallow-digest256.sbstore
data
#
/home/user/.cache/mozilla/firefox/v9nzj3nw.default/safebrowsing-updating/except-flashsubdoc-digest256.pset
data
#
/home/user/.cache/mozilla/firefox/v9nzj3nw.default/safebrowsing-updating/except-flashsubdoc-digest256.sbstore
data
#
/home/user/.cache/mozilla/firefox/v9nzj3nw.default/safebrowsing-updating/mozplugin-block-digest256.pset
data
#
/home/user/.cache/mozilla/firefox/v9nzj3nw.default/safebrowsing-updating/mozplugin-block-digest256.sbstore
data
#
/home/user/.cache/mozilla/firefox/v9nzj3nw.default/safebrowsing-updating/mozstd-trackwhite-digest256.pset
data
#
/home/user/.cache/mozilla/firefox/v9nzj3nw.default/safebrowsing-updating/mozstd-trackwhite-digest256.sbstore
data
#
/home/user/.cache/mozilla/firefox/v9nzj3nw.default/safebrowsing-updating/test-block-simple-1.sbstore
data
#
/home/user/.cache/mozilla/firefox/v9nzj3nw.default/safebrowsing-updating/test-block-simple.pset
data
#
/home/user/.cache/mozilla/firefox/v9nzj3nw.default/safebrowsing-updating/test-block-simple.sbstore
data
#
/home/user/.cache/mozilla/firefox/v9nzj3nw.default/safebrowsing-updating/test-harmful-simple-1.sbstore
data
#
/home/user/.cache/mozilla/firefox/v9nzj3nw.default/safebrowsing-updating/test-harmful-simple.pset
data
#
/home/user/.cache/mozilla/firefox/v9nzj3nw.default/safebrowsing-updating/test-harmful-simple.sbstore
data
#
/home/user/.cache/mozilla/firefox/v9nzj3nw.default/safebrowsing-updating/test-malware-simple-1.sbstore
data
#
/home/user/.cache/mozilla/firefox/v9nzj3nw.default/safebrowsing-updating/test-malware-simple.pset
data
#
/home/user/.cache/mozilla/firefox/v9nzj3nw.default/safebrowsing-updating/test-malware-simple.sbstore
data
#
/home/user/.cache/mozilla/firefox/v9nzj3nw.default/safebrowsing-updating/test-phish-simple-1.sbstore
data
#
/home/user/.cache/mozilla/firefox/v9nzj3nw.default/safebrowsing-updating/test-phish-simple.pset
data
#
/home/user/.cache/mozilla/firefox/v9nzj3nw.default/safebrowsing-updating/test-phish-simple.sbstore
data
#
/home/user/.cache/mozilla/firefox/v9nzj3nw.default/safebrowsing-updating/test-track-simple-1.sbstore
data
#
/home/user/.cache/mozilla/firefox/v9nzj3nw.default/safebrowsing-updating/test-track-simple.pset
data
#
/home/user/.cache/mozilla/firefox/v9nzj3nw.default/safebrowsing-updating/test-track-simple.sbstore
data
#
/home/user/.cache/mozilla/firefox/v9nzj3nw.default/safebrowsing-updating/test-trackwhite-simple-1.sbstore
data
#
/home/user/.cache/mozilla/firefox/v9nzj3nw.default/safebrowsing-updating/test-trackwhite-simple.pset
data
#
/home/user/.cache/mozilla/firefox/v9nzj3nw.default/safebrowsing-updating/test-trackwhite-simple.sbstore
data
#
/home/user/.cache/mozilla/firefox/v9nzj3nw.default/safebrowsing-updating/test-unwanted-simple-1.sbstore
data
#
/home/user/.cache/mozilla/firefox/v9nzj3nw.default/safebrowsing-updating/test-unwanted-simple.pset
data
#
/home/user/.cache/mozilla/firefox/v9nzj3nw.default/safebrowsing-updating/test-unwanted-simple.sbstore
data
#
/home/user/.cache/mozilla/firefox/v9nzj3nw.default/startupCache/scriptCache-child-new.bin
data
#
/home/user/.cache/mozilla/firefox/v9nzj3nw.default/startupCache/scriptCache-new.bin
data
#
/home/user/.cache/mozilla/firefox/v9nzj3nw.default/startupCache/urlCache-new.bin
data
#
/home/user/.mozilla/firefox/v9nzj3nw.default/cookies.sqlite-shm
data
#
/home/user/.mozilla/firefox/v9nzj3nw.default/favicons.sqlite-shm
data
#
/home/user/.mozilla/firefox/v9nzj3nw.default/places.sqlite-shm
data
#
/home/user/.mozilla/firefox/v9nzj3nw.default/prefs-1.js
ASCII text, with very long lines
#
/home/user/.mozilla/firefox/v9nzj3nw.default/search.json.mozlz4.tmp
data
#
/home/user/.mozilla/firefox/v9nzj3nw.default/sessionCheckpoints.json.tmp
ASCII text, with no line terminators
#
/home/user/.mozilla/firefox/v9nzj3nw.default/storage/permanent/chrome/idb/2918063365piupsah.sqlite-shm
data
#
/home/user/.mozilla/firefox/v9nzj3nw.default/storage/permanent/chrome/idb/3561288849sdhlie.sqlite-shm
data
#
/home/user/.mozilla/firefox/v9nzj3nw.default/webappsstore.sqlite-shm
data
#