Register Login

sloganpng

top title background image

https://directcms.jp-bank.japanpost.jp/js/s.js

Status: finished

Submission Time: 2020-03-24 16:27:49 +01:00

Clean

Comments

Tags

Details

Analysis ID:
217623
API (Web) ID:
332181
Analysis Started:

2020-03-24 16:33:24 +01:00
Analysis Finished:

2020-03-24 16:38:12 +01:00
Technologies:

Engines
IOCs

Joe Sandbox

Engine	Download Report	Detection	Info
	Full Report Management Report IOC Report	clean Score: 1	System: Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01

IPs

IP	Country	Detection
52.192.0.73	United States

Domains

Name	IP	Detection
directcms-264659335.ap-northeast-1.elb.amazonaws.com	52.192.0.73
directcms.jp-bank.japanpost.jp	0.0.0.0
site-cdn.onenote.net	0.0.0.0

Dropped files

Name	File Type	Hashes	Detection
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{0E6EABB0-6E28-11EA-AAE5-44C1B3FB757B}.dat	Microsoft Word Document	#
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{0E6EABB2-6E28-11EA-AAE5-44C1B3FB757B}.dat	Microsoft Word Document	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KGYEP10B\s[1].js	ASCII text, with very long lines	#
Click to see the 6 hidden entries
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\T7L7U67X\s.js.t2w9yf8.partial	ASCII text, with very long lines	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\T7L7U67X\s.js.t2w9yf8.partial:Zone.Identifier	ASCII text, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\T7L7U67X\s.js:Zone.Identifier	very short file (no magic)	#
C:\Users\user\AppData\Local\Temp\JavaDeployReg.log	ASCII text, with CRLF line terminators	#
C:\Users\user\AppData\Local\Temp\~DF7437E298DFAB71CE.TMP	data	#
C:\Users\user\AppData\Local\Temp\~DFB6728F4A5DAF22FA.TMP	data	#