https://u16095581.ct.sendgrid.net/ls/click?upn=FLaa9Uev-2B7s-2FZ9Dw3t6-2FoboxXa9RoxlkakQvTvnjy9nXTXjD6tNZcebsQGigytMZye255UswQ6f3sQ0K3qccZrkmIGtWjJPIGztPn38pYzM-3D7_6s_DwB70HpLJuR35GFtSIesHJrrx5IO6qEPxbkrEpQrYnrx-2FXwixj3Q3HnEwW-2Fs-2BBPbBxlPPFHusk7-2BufOFY4-2BYO9fqGw8G6IKDphuEsqM-2B5hWTu2tXyTpvimSzAQwQnBG-2BsgMdkv-2B3igkZIHlWGKqVkU4mGhq9zYrBUF7V0zSm4CdYW3168zSE6-2FrgVMBpTopWiclUE2uJbujZKS9qBrMxjc8wcVkUUy8Jmc7-2BKB9-2BhEc-3D

Status: finished

Submission Time: 2021-02-25 21:39:56 +01:00

Malicious

Comments

Details

Analysis ID:
358579
API (Web) ID:
619164
Analysis Started:

2021-02-25 21:39:56 +01:00
Analysis Finished:

2021-02-25 21:45:17 +01:00
Technologies:

Engines
IOCs

Joe Sandbox

Engine	Download Report	Detection	Info
	Full Report Management Report IOC Report	malicious Score: 64	System: Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01

Third Party Analysis Engines

Open Full Report

malicious

Score: 6/84

malicious

IPs

IP	Country	Detection
151.101.1.195	United States
167.89.123.122	United States
142.250.184.33	United States
Click to see the 2 hidden entries
99.84.90.99	United States
239.255.255.250	Reserved

Domains

Name	IP	Detection
qgohifmzuv.web.app	151.101.1.195
d26p066pn2w0s0.cloudfront.net	99.84.90.99
u16095581.ct.sendgrid.net	167.89.123.122
Click to see the 3 hidden entries
googlehosted.l.googleusercontent.com	142.250.184.33
clients2.googleusercontent.com	0.0.0.0
logo.clearbit.com	0.0.0.0

URLs

Name	Detection
https://qgohifmzuv.web.app/assets/js/jquery.min.js
https://qgohifmzuv.web.app/#kirchen_deanna@sccollege.edu
https://qgohifmzuv.web.app
Click to see the 11 hidden entries
https://qgohifmzuv.web.app/#kirchen_deanna
https://qgohifmzuv.web.app/assets/js/script.min.js
https://qgohifmzuv.web.app/8w
https://qgohifmzuv.web.app/
https://qgohifmzuv.web.app/assets/bootstrap/js/bootstrap.min.js
https://qgohifmzuv.web.app/x
https://dns.google
http://logo.clearbit.com/sccollege.edu
https://u16095581.ct.sendgrid.net/ls/click?upn=FLaa9Uev-2B7s-2FZ9Dw3t6-2FoboxXa9RoxlkakQvTvnjy9nXTXj
https://clients2.googleusercontent.com
https://feedback.googleusercontent.com

Dropped files

Name	File Type	Hashes
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG	ASCII text	#
C:\Users\user\AppData\Local\Temp\6816_1641461432\manifest.fingerprint	ASCII text, with no line terminators	#
C:\Users\user\AppData\Local\Temp\4526033d-5007-412a-b7cd-0225003d0ef0.tmp	Google Chrome extension, version 3	#
Click to see the 97 hidden entries
C:\Users\user\AppData\Local\Temp\3cc13d65-885f-4f53-893f-07ce5223ad05.tmp	very short file (no magic)	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\e7d9936c-39eb-46b5-987e-033bfb909415.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\b4e83329-d3b9-4db0-8cca-568978d4fd5d.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\acb745c5-9475-46b2-aced-b807c8514b68.tmp	SysEx File -	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\a5098b39-921b-4d83-ba3a-52e687953ddb.tmp	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Version	ASCII text, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Browser	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\f176bfa6-17a1-40b2-9808-d25a7d3d26b7.tmp	UTF-8 Unicode text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\MANIFEST-000004	MPEG-4 LOAS	#
C:\Users\user\AppData\Local\Temp\6816_1877668474\manifest.fingerprint	ASCII text, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\000004.dbtmp	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\c7fa8ddf-888d-4dc8-a8fd-22c29d6c5204.tmp	UTF-8 Unicode text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\bd2236e6-47c7-44e8-aaeb-f63b91b37cc9.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\ab51f823-ac2b-46a9-9a18-88485413c168.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Visited Links	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000003.log	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\000003.log	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG	ASCII text	#
C:\Users\user\AppData\Local\Temp\scoped_dir6816_811571267\CRX_INSTALL\_locales\el\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	#
C:\Users\user\AppData\Local\Temp\scoped_dir6816_811571267\CRX_INSTALL\_locales\id\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	#
C:\Users\user\AppData\Local\Temp\scoped_dir6816_811571267\CRX_INSTALL\_locales\hu\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	#
C:\Users\user\AppData\Local\Temp\scoped_dir6816_811571267\CRX_INSTALL\_locales\hr\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	#
C:\Users\user\AppData\Local\Temp\scoped_dir6816_811571267\CRX_INSTALL\_locales\hi\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	#
C:\Users\user\AppData\Local\Temp\scoped_dir6816_811571267\CRX_INSTALL\_locales\gu\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	#
C:\Users\user\AppData\Local\Temp\scoped_dir6816_811571267\CRX_INSTALL\_locales\fr\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	#
C:\Users\user\AppData\Local\Temp\scoped_dir6816_811571267\CRX_INSTALL\_locales\fil\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	#
C:\Users\user\AppData\Local\Temp\scoped_dir6816_811571267\CRX_INSTALL\_locales\fi\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	#
C:\Users\user\AppData\Local\Temp\scoped_dir6816_811571267\CRX_INSTALL\_locales\fa\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	#
C:\Users\user\AppData\Local\Temp\scoped_dir6816_811571267\CRX_INSTALL\_locales\et\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	#
C:\Users\user\AppData\Local\Temp\scoped_dir6816_811571267\CRX_INSTALL\_locales\es\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	#
C:\Users\user\AppData\Local\Temp\scoped_dir6816_811571267\CRX_INSTALL\_locales\en\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG	ASCII text	#
C:\Users\user\AppData\Local\Temp\scoped_dir6816_811571267\CRX_INSTALL\_locales\de\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	#
C:\Users\user\AppData\Local\Temp\scoped_dir6816_811571267\CRX_INSTALL\_locales\da\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	#
C:\Users\user\AppData\Local\Temp\scoped_dir6816_811571267\CRX_INSTALL\_locales\cs\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	#
C:\Users\user\AppData\Local\Temp\scoped_dir6816_811571267\CRX_INSTALL\_locales\ca\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	#
C:\Users\user\AppData\Local\Temp\scoped_dir6816_811571267\CRX_INSTALL\_locales\bn\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	#
C:\Users\user\AppData\Local\Temp\scoped_dir6816_811571267\CRX_INSTALL\_locales\bg\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	#
C:\Users\user\AppData\Local\Temp\scoped_dir6816_811571267\CRX_INSTALL\_locales\ar\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	#
C:\Users\user\AppData\Local\Temp\scoped_dir6816_811571267\CRX_INSTALL\_locales\am\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	#
C:\Users\user\AppData\Local\Temp\eab219ef-4551-40ac-a34f-03f4acc5c73f.tmp	Google Chrome extension, version 3	#
C:\Users\user\AppData\Local\Temp\ca69d301-407f-4c62-9494-e07c629d7208.tmp	very short file (no magic)	#
C:\Users\user\AppData\Local\Temp\6816_683499445\manifest.fingerprint	ASCII text, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\000003.log	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\000003.log	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Tabs	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Session	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies-journal	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies	SQLite 3.x database, last written using SQLite version 3032001	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\temp-index	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\dea8b6c059e7296b_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\6de907a866c54acf_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\40d8ad6f0f62e96a_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.6_0\_metadata\computed_hashes.json	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\962ff325-93c1-4988-b3a8-dfc330ef7561.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\81e66f72-9213-4f03-8935-42b38aa9d99c.tmp	very short file (no magic)	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\67ed8a34-b10b-46c1-afd8-f19d213b8616.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\3231859a-0a2e-4d47-8b6d-78b387703288.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\6e58f150-3d8a-4687-8485-2be551ec89fb.tmp	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\666026a8-95fd-4873-a333-6e205007a998.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\6149b4b3-5a88-4925-af07-77dac008aaa8.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\4c603eba-cf03-4a28-ab6e-43dec1cf915a.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\07f56a1c-236f-49cf-840a-a232fba6d156.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\GPUCache\data_1	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\813890ff-223e-45e6-91fa-77fcb9e4b480.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\a216b292-35e3-4a8a-8ccc-1298dac27205.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\000003.log	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Platform Notifications\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Local Storage\leveldb\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\GPUCache\data_1	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\000003.log	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\05af708f-88a1-4b8c-b248-537a0e18a7b1.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\000003.log	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History-journal	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History	SQLite 3.x database, last written using SQLite version 3032001	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\000003.log	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Favicons-journal	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Favicons	SQLite 3.x database, last written using SQLite version 3032001	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8520.615.0.5_1\_metadata\computed_hashes.json	ASCII text, with very long lines, with no line terminators	#

Comments

Tags

Available tags:

Details

Joe Sandbox

Third Party Analysis Engines

IPs

Domains

URLs

Dropped files

Comments

Tags

Available tags:

Details

Joe Sandbox

Third Party Analysis Engines

IPs

Domains

URLs

Dropped files

Search started