top title background image
flash

https://ccaeperu.com/?real-estate-agent2938423

Status: finished
Submission Time: 2021-04-09 15:12:58 +02:00
Malicious
Phishing
HTMLPhisher

Comments

Tags

Details

  • Analysis ID:
    384636
  • API (Web) ID:
    671380
  • Analysis Started:
    2021-04-09 15:12:58 +02:00
  • Analysis Finished:
    2021-04-09 15:18:13 +02:00
  • Technologies:

Joe Sandbox

Engine Download Report Detection Info
malicious
Score: 64
System: Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01

Third Party Analysis Engines

malicious

IPs

IP Country Detection
157.240.17.15
United States
68.66.226.79
United States
157.240.219.13
United States
Click to see the 1 hidden entries
157.240.17.35
United States

Domains

Name IP Detection
star-mini.c10r.facebook.com
157.240.17.35
fbsbx.com
157.240.17.35
scontent.xx.fbcdn.net
157.240.219.13
Click to see the 8 hidden entries
fb.com
157.240.17.35
facebook.com
157.240.17.35
fbcdn.net
157.240.17.35
ccaeperu.com
68.66.226.79
www.fb.com
0.0.0.0
www.facebook.com
0.0.0.0
m.facebook.com
0.0.0.0
static.xx.fbcdn.net
0.0.0.0

URLs

Name Detection
https://ccaeperu.com/?cmd=stmn8bymn1v1.18svn81tv1ymtxtxy1ymns8y1vt81b.9nty9s8
https://ccaeperu.com/?real-estate-agent2938423cmd=m9xvsybnvn1sv.bsnmnsyx119yb8
https://ccaeperu.com/?cmd=m9xvsybnvn1sv.bsnmnsyx119yb8mx1yv88sst1s8sxsv11nt.t
Click to see the 51 hidden entries
https://ccaeperu.com/?cmd=t8ntyxt9mnn.9.t9t1ns9tnb11.n9tttbstxsmt91bmnsb8xts1
https://ccaeperu.com/?cmd=vt9n.n11981t1t8b1t1xm1msm.s9tsxxssy9tstt1t8nsb.y1ms
https://ccaeperu.com/?real-estate-agent2938423cmd=xbsmyynyy.8y18y8tvmsstm1ntys
https://ccaeperu.com/?cmd=xbsmyynyy.8y18y8tvmsstm1ntysyxmx.ty.1xtxsm9bs8s88n8
https://ccaeperu.com/?real-estate-agent2938423
https://ccaeperu.com/?real-estate-agent2938423cmd=vt9n.n11981t1t8b1t1xm1msm.s9
https://ccaeperu.com/?real-estate-agent2938423cmd=snstmsbsvtx.s1.smysttx.sv11m
https://ccaeperu.com/?real-estate-agent2938423cmd=stmn8bymn1v1.18svn81tv1ymtxt
https://ccaeperu.com/?real-estate-agent2938423~
https://ccaeperu.com/?cmd=snstmsbsvtx.s1.smysttx.sv11m9ss9xbtb1mvmmytn9t1tyny
https://ccaeperu.com/?real-estate-agent2938423cmd=t8ntyxt9mnn.9.t9t1ns9tnb11.n
https://ccaeperu.com/?real-estate-agent2938423Root
https://ccaeperu.com/?real-estate-agent2938423cmd=svnv9tsbx9tbsttsnxbtbnt.mynx
https://ccaeperu.com/?cmd=xbsmyynyy.8y18y8tvmsstm1ntysyxmx.ty.1xtxsm9bs8s88n8
https://ccaeperu.com/?cmd=9tyym8t91xbt8b81mt81smbbm1s.9vtn8ytms1v9vvy8198118b
https://ccaeperu.com/?cmd=snstmsbsvtx.s1.smysttx.sv11m9ss9xbtb1mvmmytn9t1tyny
https://ccaeperu.com/?cmd=m9xvsybnvn1sv.bsnmnsyx119yb8mx1yv88sst1s8sxsv11nt.t
https://ccaeperu.com/?real-estate-agent2938423//-estate-agent2938423Root
https://ccaeperu.com/?cmd=svnv9tsbx9tbsttsnxbtbnt.mynxy1vytby81nv1mb1v.b1ms9s
https://ccaeperu.com/?real-estate-agent2938423
https://ccaeperu.com/?cmd=svnv9tsbx9tbsttsnxbtbnt.mynxy1vytby81nv1mb1v.b1ms9s
https://ccaeperu.com/?real-estate-agent2938423om/-estate-agent2938423Root
https://ccaeperu.com/?cmd=bnvtbtxmsbx1vy11snsm8nx8smbbmy8x8snns.8tm99yn88xtvv
https://ccaeperu.com/?real-estate-agent2938423cmd=9tyym8t91xbt8b81mt81smbbm1s.
https://ccaeperu.com/?real-estate-agent2938423cmd=bnvtbtxmsbx1vy11snsm8nx8smbb
https://ccaeperu.com/?cmd=bnvtbtxmsbx1vy11snsm8nx8smbbmy8x8snns.8tm99yn88xtvv
https://ccaeperu.com/?cmd=stmn8bymn1v1.18svn81tv1ymtxtxy1ymns8y1vt81b.9nty9s8
https://ccaeperu.com/?cmd=9tyym8t91xbt8b81mt81smbbm1s.9vtn8ytms1v9vvy8198118b
https://ccaeperu.com/?cmd=t8ntyxt9mnn.9.t9t1ns9tnb11.n9tttbstxsmt91bmnsb8xts1
https://ccaeperu.com/?cmd=vt9n.n11981t1t8b1t1xm1msm.s9tsxxssy9tstt1t8nsb.y1ms
https://scontent.xx.fbcdn.net/hads-ak-prn2/1487645_6012475414660_1439393861_n.png
https://static.xx.fbcdn.net/rsrc.php/v3/yr/r/vdzjXL4eT5D.js?_nc_x=Ij3Wp8lg5Kz
https://www.facebook.c
https://m.facebook.com/
https://static.xx.fbcdn.net/rsrc.php/v3iK-b4/yR/l/en_US/W5StuHxENhR.js?_nc_x=Ij3Wp8lg5Kz
https://static.xx.fbcdn.net/rsrc.php/v3/yb/l/0
https://ccaeperu.com/r
https://www.facebook.creal-estate-agent2938423~
https://static.xx.fbcdn.net/rsrc.php/v3/yP/l/0
https://developers.fb.com/?ref=pf
https://static.xx.fbcdn.net/rsrc.php/v3/y7/r/qMrE4RFJBoQ.js?_nc_x=Ij3Wp8lg5Kz
https://fb.com/
https://static.xx.fbcdn.net/rsrc.php/v3/y6/l/0
https://static.xx.fbcdn.net/rsrc.php/v3/yU/r/fzkbB_w4sxK.js?_nc_x=Ij3Wp8lg5Kz
https://static.xx.fbcdn.net/rsrc.php/v3/y5/l/0
https://static.xx.fbcdn.net/rsrc.php/v3/yj/l/0
https://www.internalfb.com/intern/invariant/
https://www.fb.com/rsrc.php/yl/r/H3nktOa7ZMg.ico
https://ccaeperu.com/?
https://static.xx.fbcdn.net/rsrc.php/v3/yT/l/0
https://static.xx.fbcdn.net/rsrc.php/v3/yR/r/kPkP7qOaPwj.js?_nc_x=Ij3Wp8lg5Kz

Dropped files

Name File Type Hashes Detection
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\VBLSBCBU.htm
HTML document, UTF-8 Unicode (with BOM) text, with very long lines
#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\B0LQ5SBH.htm
HTML document, UTF-8 Unicode (with BOM) text, with very long lines
#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\A5FVZRWT.htm
HTML document, UTF-8 Unicode (with BOM) text, with very long lines
#
Click to see the 58 hidden entries
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\O7nelmd9XSI[1].htm
HTML document, UTF-8 Unicode (with BOM) text, with very long lines
#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\6LTWT96P.htm
HTML document, UTF-8 Unicode (with BOM) text, with very long lines
#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\RUFPPAMX.htm
HTML document, UTF-8 Unicode (with BOM) text, with very long lines
#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\9HQ2AZB5.htm
HTML document, UTF-8 Unicode (with BOM) text, with very long lines
#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\r[1].htm
HTML document, UTF-8 Unicode (with BOM) text, with very long lines
#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\favicon[1].htm
HTML document, UTF-8 Unicode (with BOM) text, with very long lines
#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\Z4A97TMF.htm
HTML document, UTF-8 Unicode (with BOM) text, with very long lines
#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\HTQSVEM0.htm
HTML document, UTF-8 Unicode (with BOM) text, with very long lines
#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\G1MK1W1S.htm
HTML document, UTF-8 Unicode (with BOM) text, with very long lines
#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\RqQo1U5NOq1[1].htm
HTML document, UTF-8 Unicode (with BOM) text, with very long lines
#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\3GXKZCM3.htm
HTML document, UTF-8 Unicode (with BOM) text, with very long lines
#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\vdzjXL4eT5D[1].js
ASCII text, with very long lines
#
C:\Users\user\AppData\Local\Temp\~DFA111B94D5E8C7290.TMP
data
#
C:\Users\user\AppData\Local\Temp\~DF77662EBE27437295.TMP
data
#
C:\Users\user\AppData\Local\Temp\~DF0C626AC06D5E2361.TMP
data
#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\toipMWCRTEo[1].js
ASCII text, with very long lines
#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\TRX669RO.htm
HTML document, ASCII text, with very long lines, with no line terminators
#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\Z2s1olWKEnZ[1].css
ASCII text, with very long lines
#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\ahNSxu_HONL[1].css
ASCII text, with very long lines
#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\favicon[1].htm
HTML document, UTF-8 Unicode (with BOM) text, with very long lines
#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\fzkbB_w4sxK[1].js
ASCII text, with very long lines
#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\kPkP7qOaPwj[1].js
ASCII text, with very long lines
#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\qMrE4RFJBoQ[1].js
ASCII text, with very long lines
#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\4MFjarAmouj[1].js
ASCII text, with very long lines
#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\Af0wuS8syLV[1].css
ASCII text, with very long lines
#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\U3QfFrS_cgV[1].css
assembler source, ASCII text, with very long lines
#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\vjVEyrdqGK6[1].css
ASCII text, with very long lines
#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\W5StuHxENhR[1].js
ASCII text, with very long lines
#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\rBNJvj38u9T[1].js
ASCII text, with very long lines
#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\c2cKQyepvf-[1].js
ASCII text, with very long lines
#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\mnwJrbabqoh[1].js
ASCII text, with very long lines
#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\dF5SId3UHWd[1].svg
SVG Scalable Vector Graphics image
#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\hsts-pixel[1].gif
GIF image data, version 89a, 1 x 1
#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\BwjU4B_qfpp[1].js
ASCII text, with very long lines
#
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{6767ACED-9935-11EB-90EB-ECF4BBEA1588}.dat
Microsoft Word Document
#
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{6767ACEF-9935-11EB-90EB-ECF4BBEA1588}.dat
Microsoft Word Document
#
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{6767ACF0-9935-11EB-90EB-ECF4BBEA1588}.dat
Microsoft Word Document
#
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\imagestore\gee00pr\imagestore.dat
data
#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\GonuXiY4BzC[1].js
ASCII text, with very long lines
#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\MNiY97WzXPw[1].js
C source, ASCII text, with very long lines
#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\SWQSh8s8jr2[1].css
ASCII text, with very long lines
#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\VEs5hzVWt5B[1].js
ASCII text, with very long lines
#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\gB76kJXPYJV[1].png
PNG image data, 196 x 196, 8-bit colormap, non-interlaced
#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\sO8pFbm5AdZ[1].png
PNG image data, 124 x 279, 8-bit colormap, non-interlaced
#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\22KpFFJQuZn[1].css
ASCII text, with very long lines
#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\2b4ptAQoeCF[1].js
ASCII text, with very long lines
#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\B9RXHZ5I.htm
HTML document, UTF-8 Unicode text, with very long lines
#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\IxxDAbiZepi[1].css
ASCII text, with very long lines
#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\JopZtdti8dq[1].js
ASCII text, with very long lines
#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\NOmsNpPjqKN[1].js
ASCII text, with very long lines
#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\QrKwBeCiZyv[1].css
ASCII text, with very long lines
#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\RpTFjVvO4D0[1].js
ASCII text, with very long lines
#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\TAH3WlPZB8H[1].js
ASCII text, with very long lines
#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\h3jijAStzKK[1].css
ASCII text, with very long lines
#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\n4bGLjGRWrl[1].js
ASCII text, with very long lines
#
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\DOMStore\E5F0NRSV\m.facebook[1].xml
ASCII text, with no line terminators
#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\1487645_6012475414660_1439393861_n[1].png
PNG image data, 10 x 10, 8-bit/color RGB, non-interlaced
#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\6jPqzzsJS-8[1].png
PNG image data, 25 x 50, 8-bit colormap, non-interlaced
#