alibaba_account_verification_file.html

Status: finished

Submission Time: 2020-07-30 11:18:55 +02:00

Malicious

Phishing

HTMLPhisher

Comments

Details

Analysis ID:
253937
API (Web) ID:
403417
Analysis Started:

2020-07-30 11:18:56 +02:00
Analysis Finished:

2020-07-30 11:25:54 +02:00
MD5:
c820e06558eb6e0ba161e32ed0309bcd
SHA1:
1f781a4f17034249007441365671c94691fcd4fc
SHA256:
f8301b193f1ce8f5fc20965328402c4097638531ac99bbe77a343e00a297fa7e
Technologies:

Engines
IOCs

Joe Sandbox

Engine	Download Report	Detection	Info
	Full Report Management Report IOC Report	malicious Score: 56	System: Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01

IPs

IP	Country	Detection
198.11.132.198	United States

Domains

Name	IP	Detection
gj.gds.mmstat.com	205.204.101.182
cloud-us-scproxy.alibaba.com.gds.alibabadns.com	198.11.132.198
u.alicdn.com	0.0.0.0
Click to see the 5 hidden entries
g.msn.com	0.0.0.0
style.alibaba.com	0.0.0.0
login.alibaba.com	0.0.0.0
img.alibaba.com	0.0.0.0
gj.mmstat.com	0.0.0.0

URLs

Name	Detection
http://www.youtube.com/
http://www.alibaba.com/
http://us.my.alibaba.com/mcadmin/bulkfolder/bulkfolder_list.htm
Click to see the 97 hidden entries
http://tradeshow.alibaba.com/
http://stat.alibaba.com/p4p/list.html
http://i02.i.aliimg.com/images/eng/style/css_images/addsearch_pop_bg_ie.gif)
http://i02.i.aliimg.com/images/cms/upload/gold_supplier/mya_ifmvsggs_table_bg.jpg)
http://i02.i.aliimg.com/images/cms/upload/others/home/23x22_080710_sdicon.jpg)
http://resources.alibaba.com/EFGHIJKLMNOPQ
http://i02.i.aliimg.com/images/eng/style/css_images/sprites/sprites_menu.gif)
http://i02.i.aliimg.com/images/eng/style/css_images/sprites/sprites_ggs_home_nav.gif)
http://www.etao.com
http://www.alibaba.com/help/contact-us.html#askquestion
http://style.alibaba.com/css/4v/relateJS.css?c=200810221400
http://style.alibaba.com/js/language/en.js
http://i02.i.aliimg.com/images/eng/style/css_images/sprites/main_navig_sprites.gif)
http://www.tmall.com
http://i02.i.aliimg.com/images/eng/p4p/loading.gif)
http://www.taobao.com
http://www.alibaba.com/help/trade_safe/home.htmners
http://www.alibaba.com/aboutalibaba/aligroup/index.html
http://i02.i.aliimg.com/images/eng/style/button/button_skin_d.gif)
http://i02.i.aliimg.com/images/cms/upload/myalibaba/service/16x16_20120208_weibo.gif)
http://i02.i.aliimg.com/images/cms/upload/gold_supplier/mya_ifmvsggs_table_icon_bg.png)
http://www.alibaba.com/help/research-panel.html?tracelog=24581_research_panel
http://www.alisoft.com
http://i02.i.aliimg.com/images/eng/style/css_images/home_new/homeSpritesV6.gif)
http://i02.i.aliimg.com/images/eng/style/css_images/join_current.gif)
https://sha256.daily.1688.com/sha256test.js
http://developer.yahoo.net/yui/license.txt
http://style.alibaba.com/css/4v/navigat.css?c=201009032100
http://us.my.alibaba.com/
http://style.alibaba.com/css/4v/common.css?c=201012162100
http://i02.i.aliimg.com/images/eng/style/css_images/main_reg_join.gif)
http://i02.i.aliimg.com/images/eng/style/css_images/sprites/sprites_tabs.gif)
http://i02.i.aliimg.com/images/eng/style/css_images/sprites/sprites_homeIcon.gif)
http://www.alibaba.com/help/trade_safe/home.htm
http://news.alibaba.com/specials/aboutalibaba/index.htmlP
http://i02.i.aliimg.com/images/eng/style/icon/success_a.gif
http://www.twitter.com/
http://resources.alibaba.com/s/aboutalibaba/partners
http://i02.i.aliimg.com/images/eng/style/css_images/arrow_right.gif)
http://topmsg.alibaba.com/getStatus.js
http://www.amazon.com/
http://i02.i.aliimg.com/images/eng/style/css_images/aliSearch_current_tabs.gif)
http://importer.alibaba.com/
http://news.alibaba.com/specials/aboutalibaba/index.htmlle.html
https://stylessl.aliunicorn.com/
http://resources.alibaba.com/trade_safe/home.htmIEFRAME.dll
http://tradeshow.alibaba.com/s/aboutalibaba/partners
http://news.alibaba.com/article/detail/help/100454423-1-product-listing-policy.html
http://i02.i.aliimg.com/images/eng/style/css_images/sprites/sprites_subNav.gif)
http://tradeshow.alibaba.com/g
http://style.alibaba.com/css/4v/navCGS.css?c=201009032100
http://i02.i.aliimg.com/images/eng/style/css_images/ul_dot_style.gif)
http://dmtracking2.alibaba.com/b.jpg?cD0xJnU9ey91cy5teS5hbGliYWJhLmNvbS91c2VyL2NvbXBhbnkvZm9yZ2V0X3B
http://my.alibaba.com
http://us.my.alib
http://i02.i.aliimg.com/images/eng/style/icon/icon_treasure_chest_pop.gif)
http://i02.i.aliimg.com/images/cms/upload/gold_supplier/mya_ifmvsggs_apply_now.jpg)
http://www.alibaba.com/trade/servlet/page/static/copyright_policy
http://importer.alibaba.com
https://login.alibaba.com
http://us.my.alibaba.com
http://i02.i.aliimg.com/images/eng/style/css_images/levelflag.gif)
http://style.alibaba.com/css/4v/myalibaba/sns.css?c=200810221400
http://www.alibaba.com/Products/aboutalibaba/partnership_with_alibaba.html
http://us.my.alibaba.com/m/s/aboutalibaba/partnership_with_alibaba.htmlr.htm?ErrorStatus=0x800C0005&
http://i02.i.aliimg.com/images/eng/style/css_images/myalibaba/arrow_left.gif)
http://www.alibaba.com/Products
http://i02.i.aliimg.com/images/cms/upload/sourcing/groupsourcing/common/35x35.jpg)
http://i02.i.aliimg.com/images/eng/style/css_images/btm_searchbar.gif)
http://i02.i.aliimg.com/images/eng/style/css_images/sprites/sprites_main_navi.gif)
http://us.my.alibaba.com/m/s/aboutalibaba/partnership_with_alibaba.html
http://resources.alibaba.com/s/aboutalibaba/partnership_with_alibaba.html
http://resources.alibaba.com/trade_safe/home.htm
http://img.alibaba.com/images/eng/style/icon/close.gif
http://i02.i.aliimg.com/simg/sprites/app/sms_validate.gif)
http://message.alibaba.com
http://www.yahoo.com.cn
http://i02.i.aliimg.com/images/images/eng/style/css_images/sprites/sprites-ma-v.png
http://i02.i.aliimg.com/images/eng/style/css_images/sprites/sprites-ma-v.png)
http://i02.i.aliimg.com/images/cms/upload/gold_supplier/mya_ifmvsggs_upgrade_now.jpg)
http://i02.i.aliimg.com/images/eng/style/css_images/search_bg.gif)
http://i02.i.aliimg.com/images/eng/style/css_images/myalibaba/left_menu_mail_bg.gif)
http://www.alibaba.com/sitemap.htmlutalibaba/index.html
http://style.aliunicorn.com/
http://style.alibaba.com/css/4v/myalibaba.css?c=20110530
http://style.alibaba.com/js/myalibaba.js?c=200810221400
http://i02.i.aliimg.com/images/eng/style/css_images/sprites/newSearchBar.png)
http://i02.i.aliimg.com/images/eng/style/css_images/sprites/ali_search_bar.png)
http://www.reddit.com/
http://i02.i.aliimg.com/images/eng/style/css_images/addsearch_icon.gif)
http://cmap.alibaba.com/ml.html
http://stat.alibaba.com/ued/favorites.html
http://news.aliba60
http://i02.i.aliimg.com/images/eng/style/css_images/aliSearchB_tabsBg.gif)
http://i02.i.aliimg.com/images/eng/style/css_images/sprites/sprites-ma-icon.png)
http://i02.i.aliimg.com/images/eng/style/css_images/myalibaba/more_help_arrow.gif)
http://i02.i.aliimg.com/images/eng/style/css_images/myalibaba/bg_uploader_box.gif)

Dropped files

Name	File Type	Hashes
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\down[1]	PNG image data, 15 x 15, 8-bit colormap, non-interlaced	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\common[1].css	ASCII text, with very long lines, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\dnserror[1]	HTML document, UTF-8 Unicode (with BOM) text, with CRLF line terminators	#
Click to see the 45 hidden entries
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\down[1]	PNG image data, 15 x 15, 8-bit colormap, non-interlaced	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\errorPageStrings[1]	UTF-8 Unicode (with BOM) text, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\forget_pwd_images[1].gif	GIF image data, version 89a, 100 x 220	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\httpErrorPagesScripts[1]	UTF-8 Unicode (with BOM) text, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\relateJS[1].css	assembler source, ASCII text, with very long lines, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\NewErrorPageTemplate[1]	UTF-8 Unicode (with BOM) text, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\NewErrorPageTemplate[2]	UTF-8 Unicode (with BOM) text, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\dnserror[1]	HTML document, UTF-8 Unicode (with BOM) text, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\dnserror[2]	HTML document, UTF-8 Unicode (with BOM) text, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\NewErrorPageTemplate[1]	UTF-8 Unicode (with BOM) text, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\down[2]	PNG image data, 15 x 15, 8-bit colormap, non-interlaced	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\errorPageStrings[1]	UTF-8 Unicode (with BOM) text, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\errorPageStrings[2]	UTF-8 Unicode (with BOM) text, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\httpErrorPagesScripts[1]	UTF-8 Unicode (with BOM) text, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\httpErrorPagesScripts[2]	UTF-8 Unicode (with BOM) text, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\myalibaba[1].css	ASCII text, with very long lines, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\sns[1].css	ASCII text, with CRLF line terminators	#
C:\Users\user\AppData\Local\Temp\~DF1857E3BEC1A5DC47.TMP	data	#
C:\Users\user\AppData\Local\Temp\~DF1DFC69B8CB59BE13.TMP	data	#
C:\Users\user\AppData\Local\Temp\~DFD48430536F0DDB59.TMP	data	#
C:\Users\user\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\Z2TWPPV1AUNWIJMRL22O.temp	data	#
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin8215062560\msapplication.xml	XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{3CCD7A1F-D291-11EA-90E0-ECF4BB862DED}.dat	Microsoft Word Document	#
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{46BD655A-D291-11EA-90E0-ECF4BB862DED}.dat	Microsoft Word Document	#
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-17529550060\msapplication.xml	XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-18270793970\msapplication.xml	XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-21706820\msapplication.xml	XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-314712940\msapplication.xml	XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-4759708130\msapplication.xml	XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-6757900\msapplication.xml	XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-8760897390\msapplication.xml	XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin20259167780\msapplication.xml	XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin20332743330\msapplication.xml	XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{3CCD7A1D-D291-11EA-90E0-ECF4BB862DED}.dat	Microsoft Word Document	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\NewErrorPageTemplate[1]	UTF-8 Unicode (with BOM) text, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\beacon_en[1].js	exported SGML document, UTF-8 Unicode text, with very long lines, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\dnserror[1]	HTML document, UTF-8 Unicode (with BOM) text, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\down[1]	PNG image data, 15 x 15, 8-bit colormap, non-interlaced	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\en[1].js	UTF-8 Unicode text, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\errorPageStrings[1]	UTF-8 Unicode (with BOM) text, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\httpErrorPagesScripts[1]	UTF-8 Unicode (with BOM) text, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\ae[1].js	ASCII text, with very long lines, with CRLF, LF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\myalibaba[1].js	ASCII text, with very long lines, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\navCGS[1].css	ASCII text, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\navigat[1].css	UTF-8 Unicode text, with very long lines, with CRLF line terminators	#

alibaba_account_verification_file.html

Comments

Tags

Available tags:

Details

Joe Sandbox

IPs

Domains

URLs

Dropped files

alibaba_account_verification_file.html Options

Comments

Tags

Available tags:

Details

Joe Sandbox

IPs

Domains

URLs

Dropped files

Search started

alibaba_account_verification_file.html