♫ VM-Tunes-Playback.html

Status: finished

Submission Time: 2021-04-19 23:51:17 +02:00

Malicious

Phishing

HTMLPhisher

Comments

Details

Analysis ID:
392888
API (Web) ID:
687879
Analysis Started:

2021-04-19 23:51:18 +02:00
Analysis Finished:

2021-04-20 00:04:47 +02:00
MD5:
8896a1eb844cb01ce56eddfabe90282d
SHA1:
78b25819b6270edc53c5763719b5c9f81bc3f1ac
SHA256:
7db3772473959c79e30762b7f75bbca9abd8f41f1bd4e5530db7f63b3769f873
Technologies:

Engines
IOCs

Joe Sandbox

Engine	Download Report	Detection	Info
	Full Report Management Report IOC Report	malicious Score: 68	System: Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01

Third Party Analysis Engines

Open Full Report

malicious

Score: 7/87

IPs

IP	Country	Detection
104.21.72.95	United States
172.67.176.224	United States
151.101.1.195	United States
Click to see the 10 hidden entries
216.58.212.129	United States
151.101.1.192	United States
104.16.124.175	United States
104.16.18.94	United States
67.199.248.11	United States
34.234.50.33	United States
239.255.255.250	Reserved
192.229.221.185	United States
13.32.25.13	United States
15.237.76.117	United States

Domains

Name	IP	Detection
oem.urll.pw	104.21.72.95
lpcdn.lpsnmedia.net	0.0.0.0
lptag.liveperson.net	0.0.0.0
Click to see the 23 hidden entries
publisher.liveperson.net	0.0.0.0
secure.aadcdn.microsoftonline-p.com	0.0.0.0
clients2.googleusercontent.com	0.0.0.0
mem.gfx.ms	0.0.0.0
static-assets.fs.liveperson.com	0.0.0.0
ajax.aspnetcdn.com	0.0.0.0
assets.onestore.ms	0.0.0.0
aadcdn.msauth.net	0.0.0.0
va.v.liveperson.net	0.0.0.0
accdn.lpsnmedia.net	0.0.0.0
consentreceiverfd-prod.azurefd.net	0.0.0.0
logincdn.msauth.net	0.0.0.0
sslcnd.aioecoin.org	172.67.176.224
googlehosted.l.googleusercontent.com	216.58.212.129
unpkg.com	104.16.124.175
liveperson.map.fastly.net	151.101.1.192
mcraa.fs.liveperson.com	34.234.50.33
cs1227.wpc.alphacdn.net	192.229.221.185
dh1y47vf5ttia.cloudfront.net	13.32.25.13
bit.ly	67.199.248.11
cdnjs.cloudflare.com	104.16.18.94
microsoftwindows.112.2o7.net	15.237.76.117
kamppcnddemoiz.firebaseapp.com	151.101.1.195

URLs

Name	Detection
https://oem.urll.pw
file:///C:/Users/user/Desktop/%23U266b%20VM-Tunes-Playback.html?bbre=1618901529410#/1618901529410-!@&uv8Nle9RThzwtgiyc7LO5P@!&TrnjD0EpQFmPVUaz@&!-rhammond@tbconsulting.com-1618901529410/1618901529410
https://a.nel.cloudflare.com/report?s=TtCTRVGBR69MruerW%2Br3yGfeB4q%2B6IKytD2GwaCk1HgqFxh5QzW6YKIe2h
Click to see the 55 hidden entries
https://mem.gfx.ms/meversion?partner=MSHomePage&market=de-ch&uhf=1
https://lpcdn.lpsnmedia.net/le_secure_storage/3.12.0.0-release_5037/storage.secure.min.js?loc=https%
https://dns.google
https://accdn.lpsnmedia.net/api/account/60270350/configuration/le-campaigns/campaigns/1768650730/eng
https://bit.ly
https://lpcdn.lpsnmedia.net
https://a.nel.cloudflare.com/report?s=w0RnTse85ScQoD2J%2BFTalRG01TCzDu%2FxbIaL6EM0bjqF%2BuJ295NPXt6M
https://liveperson.net/
https://publisher.liveperson.net/iframe-le-tag/iframe.html?lpsite=60270350&lpsection=store-sales-de-ch&buttons=lpChatService,lpChatSales
https://accdn.lpsnmedia.net/api/account/60270350/configuration/engagement-window/window-confs/164451
https://ajax.aspnetcdn.com/ajax/jQuery/jquery-1.11.2.min.js
https://bit.ly/3sO6Ew2Microsoft
https://accdn.lpsnmedia.net/api/account/60270350/configuration/le-campaigns/campaigns/1644274130/eng
https://ajax.aspnetcdn.com/ajax/jQuery/jquery-1.7.2.min.jsaD
https://ajax.aspnetcdn.com/
https://accdn.lpsnmedia.net/api/account/60270350/configuration/setting/accountproperties/?cb=lpCb153
https://bit.ly/3sO6Ew2
https://mem.gfx.ms/scripts/me/MeControl/10.21035.1/de-DE/meCore.min.js
https://kamppcnddemoiz.firebaseapp.com
https://lpcdn.lpsnmedia.net/le_re/3.45.1.4-release_5061/jsv2/overlay.js?_v=3.45.1.4-release_5061
https://clients2.googleusercontent.com
https://sslcnd.aioecoin.org
https://static-assets.fs.liveperson.com/microsoft/lp_ada_enhancements-prod.js
https://aadcdn.msauth.net
https://feedback.googleusercontent.com
https://lptag.liveperson.net/lptag/api/account/60270350/configuration/applications/taglets/.jsonp?v=
https://lptag.liveperson.net/tag/tag.js?site=60270350
https://mem.gfx.ms/scripts/me/MeControl/10.21035.1/de-DE/meBoot.min.js
https://logincdn.msauth.net/16.000/content/js/MeControl_cT3-bL3bZ5AAnjmz77cksQ2.js
https://lpcdn.lpsnmedia.net/le_re/3.45.1.4-release_5061/jsv2/UISuite.js?_v=3.45.1.4-release_5061
https://liveperson.net/oe
https://publisher.liveperson.net-_https://publisher.liveperson.net
https://lpcdn.lpsnmedia.net(_https://lpcdn.lpsnmedia.net
https://unpkg.com
https://lpcdn.lpsnmedia.net//
https://a.nel.cloudflare.com/report?s=BZV83GSY9t52A8Pvo5JvtUSjpaQEzlaZM6%2B2s4rQqxVTFJMWaWMwfDmmwCvz
https://assets.onestore.ms
https://publisher.liveperson.net/
https://bit.ly/36bzVan
https://bit.ly/36bzVand
https://consentreceiverfd-prod.azurefd.net/v1
https://assets.onestore.ms/
https://accdn.lpsnmedia.net/api/account/60270350/configuration/setting/accountproperties/?cb=lpCb531
https://ajax.aspnetcdn.com/ajax/jQuery/jquery-1.7.2.min.js
https://secure.aadcdn.microsoftonline-p.com/ests/2.1.6669.4/content/images/favicon_a.ico
https://accdn.lpsnmedia.net/api/account/60270350/configuration/le-campaigns/zones?fields=id&fields=z
https://liveperson.net/2
https://lpcdn.lpsnmedia.net/
https://live.com/
https://publisher.liveperson.net/iframe-le-tag/iframe.html?lpsite=60270350&lpsection=store-sales-de-
https://lpcdn.lpsnmedia.net/le_secure_storage/3.12.0.0-release_5037/storage.secure.min.html?loc=http
https://bit.ly/36bzVanMicrosoft
https://publisher.liveperson.net//
https://cdnjs.cloudflare.com
https://publisher.liveperson.net

Dropped files

Name	File Type	Hashes
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\806da29bd455460d_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\f46ad1d2652b0b43_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\f2c2056a537001a5_0	data	#
Click to see the 97 hidden entries
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\e8b2031716f41f1b_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\e4b9b26cef092fbf_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\e08eb03b7a449858_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\ccadee8b0401689c_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\c15539f7824102b7_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\a30fc148fc1e2336_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\9cd657817e50f6a9_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\9a5575bef7c495dc_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\94ac35bc6015ee2c_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\8f3c2e2c260a7099_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\f4b52f3407c83df3_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\7b789c0299b8f7ee_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\781980b07f1bb38f_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\72c95bbf6fafcc43_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\72090e93af2b3d0c_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\6b848a87f40dd230_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\6ab11d413e2bdb41_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\6911ce7d6805bcdf_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\6686b0c92e7fc912_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\5db4ad138a5b020e_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\4a7b0a16eebe4c59_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\43fb384703621b6c_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.6_0\_metadata\computed_hashes.json	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_lpcdn.lpsnmedia.net_0.indexeddb.leveldb\000001.dbtmp	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History-journal	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History	SQLite 3.x database, last written using SQLite version 3032001	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_1	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\000003.log	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Favicons-journal	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Favicons	SQLite 3.x database, last written using SQLite version 3032001	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8520.615.0.5_1\_metadata\computed_hashes.json	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\3b99dc3d3bc104fb_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\000003.log	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\000003.log	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Tabs	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Session	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies-journal	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies	SQLite 3.x database, last written using SQLite version 3032001	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\temp-index	MS Windows COFF PowerPC object file	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\ff3254c380ce1732_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\f8d72f35efba786a_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\437c5f30-8ba5-4a61-936e-1bdf3ff35bea.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\23420e37-c5d0-4c72-b673-970c9e965aa5.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\232c279a-26c1-4387-85dd-fa734f2ecb0a.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\16ec3aa3-63f0-4cda-8afe-de9caeec48ad.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\10a8fa7e-7e68-4d0d-817b-6f2cdc880d7c.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\87e62352-1da4-4a74-9183-cc7f4f55bfc7.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\7a12da7a-550b-4b52-a888-32cd320743c7.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\6f50b598-266c-4386-9e67-e9aa1d69b0b7.tmp	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\60e261c6-2551-4b9b-aec4-e016193993dc.tmp	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\5695072a-a0e1-402a-8430-0e431711e528.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\4d19c318-9286-47b7-83fe-7814e5ec35f9.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\4b83b281-7a4d-4cda-87dd-02af20fd4de6.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\28901f1c-e599-45c3-befa-457797a78849.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\425d99bc-d502-432a-87a0-966a97336d9b.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\2969d7e7-c717-4d11-be8b-463a551a792d.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\1347c287-a842-4ee7-b78f-1ad8b2b0bf96.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\0ff4afdc-7bb5-400f-9984-d8b5442fef32.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\0df8896e-5f09-4797-a9e0-22e3b341e497.tmp	data	#
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\EDC238BFF48A31D55A97E1E93892934B_C31B2498754E340573F1336DE607D619	data	#
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\77EC63BDA74BD0D0E0426DC8F8008506	data	#
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\5887976EDAA817EEF5159B09F6FCD000_35673150FB44DAA99337A19E2291E035	data	#
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\EDC238BFF48A31D55A97E1E93892934B_C31B2498754E340573F1336DE607D619	data	#
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\77EC63BDA74BD0D0E0426DC8F8008506	Microsoft Cabinet archive data, 58596 bytes, 1 file	#
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\5887976EDAA817EEF5159B09F6FCD000_35673150FB44DAA99337A19E2291E035	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\38c7c19d1d0ee3c7_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\328b75cf02d95d5e_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\27e50e06ba23059b_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\22fb0e1969c285c1_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\1e6171275c40f1e4_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\14f647dfe193b5d9_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\14c06f6781117c4a_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\10ac5d3142a4549b_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\0b0857b71d9c5820_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\094e2d6bf2abec98_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\0481116f3cd8293f_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG	ASCII text	#
C:\Program Files\Google\Chrome\Application\Dictionaries\en-US-9-0.bdic	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\98014802-86a5-4667-9431-0bb10ea3b75b.tmp	UTF-8 Unicode text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\96d32720-d0f5-47e4-8324-9f4226fdd3fa.tmp	UTF-8 Unicode text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\845e983b-e2b0-44d0-987f-48eafd2900d4.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\795b6019-9577-45ac-8bb7-418a690d4721.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\60a1d070-9f76-45ca-856e-3de4cd1aecf3.tmp	very short file (no magic)	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\5cfdfa3a-2490-4047-87aa-d0d82c426968.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\5ccba7b0-ffaa-497b-9458-1cbfd5298559.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\591cef64-6fc3-45a2-844d-c95630ff0265.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\49baa814-f561-4f12-ae6d-489d01d40098.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\495d2c21-6e51-4ebc-b7e4-4eb9cd382acf.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\414c7795-3046-4a93-a0aa-d0856b8ac01b.tmp	UTF-8 Unicode text, with very long lines, with no line terminators	#

♫ VM-Tunes-Playback.html

Comments

Tags

Available tags:

Details

Joe Sandbox

Third Party Analysis Engines

IPs

Domains

URLs

Dropped files

♫ VM-Tunes-Playback.html Options

Comments

Tags

Available tags:

Details

Joe Sandbox

Third Party Analysis Engines

IPs

Domains

URLs

Dropped files

Search started

♫ VM-Tunes-Playback.html