top title background image
flash

http://162.212.114.3:56594/Mozi.m

Status: finished
Submission Time: 2020-04-18 04:02:11 +02:00
Malicious
Trojan

Comments

Tags

Details

  • Analysis ID:
    223570
  • API (Web) ID:
    343770
  • Analysis Started:
    2020-04-18 04:04:53 +02:00
  • Analysis Finished:
    2020-04-18 04:09:32 +02:00
  • Technologies:

Joe Sandbox

Engine Download Report Detection Info
malicious
Score: 52
System: Ubuntu Linux 16.04 x64 (Kernel 4.4.0-116, Firefox 88.0, Document Viewer 3.18.2, LibreOffice 5.1.6.2, OpenJDK 1.8.0_171)

Third Party Analysis Engines

malicious
Score: 37/59
malicious
Score: 16/40
malicious
Score: 17/31
malicious
malicious

IPs

IP Country Detection
34.246.136.171
United States
13.224.102.34
United States
52.88.148.130
United States
Click to see the 2 hidden entries
162.212.114.3
Canada
52.38.153.3
United States

Domains

Name IP Detection
search.r53-2.services.mozilla.com
52.38.153.3
pipeline-incoming-prod-elb-149169523.us-west-2.elb.amazonaws.com
52.88.148.130
locprod1-elb-eu-west-1.prod.mozaws.net
34.246.136.171
Click to see the 1 hidden entries
balrog-cloudfront.prod.mozaws.net
13.224.102.34

URLs

Name Detection
http://mozilla.org/MPL/2.0/.
https://normandy.cdn.mozilla.net/api/v1O
https://discovery.addons.allizom.orgQhttps://discovery.addons-dev.allizom.org
Click to see the 23 hidden entries
https://discovery.addons.mozilla.org
https://support.mozilla.org/kb/flash-protected-mode-autodisabled
http://162.212.114.3:56594/Mozi.mnecko:classified1strongly-framed1request-methodGETresponse-headHTTP
https://developer.mozilla.org/en-US/docs/JavaScript_OS.File/OS.File.Info#Cross-platform_Attributes/
http://www.openh264.org/
https://developer.mozilla.org/docs/JavaScript_OS.File
https://bugzilla.mozilla.org/show_bug.cgi?id=1100294
https://bugzilla.mozilla.org/show_bug.cgi?id=1243643
http://162.212.114.3:56594/predictor::seen1
https://bugzilla.mozilla.org/show_bug.cgi?id=1238180
https://discovery.addons.allizom.orgQ
https://discovery.addons-dev.allizom.org
https://support.mozilla.org/kb/reset-firefox-easily-fix-most-problems
https://developer.mozilla.org/en-US/docs/JavaScript_OS.File/OS.File.Info#Cross-platform_Attributes/_
https://support.mozilla.org/kb/warning-unresponsive-script#w_other-causes
http://upx.sf.net
https://www.widevine.com/
http://162.212.114.3:56594/Mozi.m
https://hg.mozilla.org/releases/mozilla-release/rev/c61f5f5ead48c78a80c80db5c489bdc7cfaf8175
https://screenshots.firefox.com/
http://162.212.114.3:56594/
https://normandy.cdn.mozilla.net/api/v1Oextensions.shield-recipe-client.api_urlQextensions.shield-re
http://www.apache.org/licenses/LICENSE-2.0

Dropped files

Name File Type Hashes Detection
/tmp/mozilla_user0/81bQXC48.zip.part
ELF 32-bit MSB executable, MIPS, MIPS-I version 1 (SYSV), statically linked, stripped
#