Joe Sandbox Cloud Basic

Want to search on specific fields?


Try our:

Advanced Search

Want to search in depth on all Cloud Basic reports?

Try: Joe Sandbox View

Register Login
sloganpng
top title background image
flash

http://msoffice506.weebly.com

Status: finished
Submission Time: 2021-04-08 03:40:50 +02:00
Malicious
Phishing
HTMLPhisher

Comments

Tags

Details

  • Analysis ID:
    383629
  • API (Web) ID:
    669401
  • Analysis Started:
    2021-04-08 03:40:50 +02:00
  • Analysis Finished:
    2021-04-08 03:43:58 +02:00
  • Technologies:

Joe Sandbox

Engine Download Report Detection Info
Full Report Management Report IOC Report
malicious
Score: 64
System: Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01

Third Party Analysis Engines

malicious

IPs

IP Country Detection
151.101.1.46
 United States
44.241.55.43
 United States
199.34.228.54
 United States

Domains

Name IP Detection
pages-wildcard.weebly.com
 199.34.228.54
sp-2020021412301152490000000a-1069308460.us-west-2.elb.amazonaws.com
 44.241.55.43
weebly.map.fastly.net
 151.101.1.46
Click to see the 3 hidden entries
msoffice506.weebly.com
 0.0.0.0
ec.editmysite.com
 0.0.0.0
cdn2.editmysite.com
 0.0.0.0

URLs

Name Detection
http://hammerjs.github.io/
https://bugs.webkit.org/show_bug.cgi?id=85161
https://msoffice506.weebly.com/Root
Click to see the 20 hidden entries
http://msoffice506.weebly.com/
https://msoffice506.weebly.com/
https://msoffice506.weebly.com/
http://pixelunion.net
https://gist.github.com/megawac/8201012
https://github.com/WebKit/webkit/blob/master/Source/WebCore/dom/MutationObserver.cpp
https://msoffice506.weebly.com/2Sign
https://github.com/megawac/MutationObserver.js
http://www.bohemiancoding.com/sketch
https://msoffice506.weebly.com/"
https://msoffice506.weebly.com/uploads/1/3/6/6/136605011/hjfhhjf_orig.png
https://cdn2.editmysite.com/js/
https://bugzilla.mozilla.org/show_bug.cgi?id=749920
https://www.weebly.com/signup?utm_source=internal&utm_medium=footer
https://stats.g.doubleclick.net/j/collect?
https://msoffice506.weebly.com/uploads/1/3/6/6/136605011/hhhjfhdhjfhfjkvv-ll_orig.png
https://msoffice506.weebly.com/favicon.ico
https://gist.github.com/megawac/8355978
https://twitter.com/jacobrossi/status/480596438489890816
https://www.google.%/ads/ga-audiences?

Dropped files

Name File Type Hashes Detection
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\J3GPWO06.htm
 HTML document, ASCII text, with very long lines, with CRLF, LF line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\footer-toast-published-image-1[1].png
 PNG image data, 199 x 97, 8-bit colormap, non-interlaced
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\L0xoDF4xlVMF-BfR8bXMIjhOsXG-q2oeuFoqFrlnANW6Cp8[1].woff
 Web Open Font Format, TrueType, length 16816, version 1.1
 #
Click to see the 44 hidden entries
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\L0xoDF4xlVMF-BfR8bXMIjhOsXG-q2oeuFoqFrmAB9W6Cp8[1].woff
 Web Open Font Format, TrueType, length 16904, version 1.1
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\L0xuDF4xlVMF-BfR8bXMIhJHg45mwgGEFl0_3vq_ROW-[1].woff
 Web Open Font Format, TrueType, length 15160, version 1.1
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\fancybox[1].css
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\free-footer-v3[1].css
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\jquery.pxuMenu[1].js
 HTML document, ASCII text
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\jquery.revealer[1].js
 ASCII text
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\recaptcha__en[1].js
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\social-icons[1].css
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\custom-1[1].js
 ASCII text
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\main-customer-accounts-site[1].js
 UTF-8 Unicode text, with very long lines, with LF, NEL line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\hjfhhjf_orig[1].png
 PNG image data, 905 x 141, 8-bit/color RGBA, non-interlaced
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\jquery.trend[1].js
 ASCII text
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\main[1].js
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\qkBIXvYC6trAT55ZBi1ueQVIjQTD-JqaHUlM[1].woff
 Web Open Font Format, TrueType, length 16836, version 1.1
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\qkBIXvYC6trAT55ZBi1ueQVIjQTDH52aHUlM[1].woff
 Web Open Font Format, TrueType, length 16908, version 1.1
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\qkBKXvYC6trAT7RQNNK2EG7SIwPWMNlCV3lGb7U[1].woff
 Web Open Font Format, TrueType, length 17380, version 1.1
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\qkBKXvYC6trAT7RQNNK2EG7SIwPWMNmlUHlGb7U[1].woff
 Web Open Font Format, TrueType, length 17652, version 1.1
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\stl[1].js
 HTML document, UTF-8 Unicode text, with very long lines
 #
C:\Users\user\AppData\Local\Temp\~DF319CEFDB770DE62E.TMP
 data
 #
C:\Users\user\AppData\Local\Temp\~DF4850F0FA0D4B6F93.TMP
 data
 #
C:\Users\user\AppData\Local\Temp\~DFE6847D51F5B54A46.TMP
 data
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\qkBIXvYC6trAT55ZBi1ueQVIjQTDH52aE0lM[1].woff
 Web Open Font Format, TrueType, length 14336, version 1.1
 #
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{FDCCFF1A-9856-11EB-90E4-ECF4BB862DED}.dat
 Microsoft Word Document
 #
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{03FC83BC-9857-11EB-90E4-ECF4BB862DED}.dat
 Microsoft Word Document
 #
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{FDCCFF1C-9856-11EB-90E4-ECF4BB862DED}.dat
 Microsoft Word Document
 #
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\imagestore\ynfz0jx\imagestore.dat
 data
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\L0xuDF4xlVMF-BfR8bXMIhJHg45mwgGEFl0_Of2_ROW-[1].woff
 Web Open Font Format, TrueType, length 15236, version 1.1
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\favicon[1].ico
 MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\footerSignup[1].js
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\hhhjfhdhjfhfjkvv-ll_orig[1].png
 PNG image data, 433 x 65, 8-bit/color RGBA, non-interlaced
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\main_style[1].css
 assembler source, ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\plugins[1].js
 ASCII text
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\qkBIXvYC6trAT55ZBi1ueQVIjQTD-JqaE0lM[1].woff
 Web Open Font Format, TrueType, length 14260, version 1.1
 #
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\DOMStore\GJKVX0LQ\msoffice506.weebly[1].xml
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\sites[1].css
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\snowday262[1].js
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\MutationObserver[1].js
 ASCII text
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\api[1].js
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\arrow-light[1].svg
 SVG Scalable Vector Graphics image
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\css[1].css
 ASCII text
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\css[2].css
 ASCII text
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\css[3].css
 ASCII text
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\ga[1].js
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\jquery.min[1].js
 ASCII text, with very long lines
 #