https://kezenelectric.ca/First-America

Status: finished

Submission Time: 2021-06-10 21:01:18 +02:00

Malicious

Phishing

HTMLPhisher

Comments

Details

Analysis ID:
432851
API (Web) ID:
800455
Analysis Started:

2021-06-10 21:01:19 +02:00
Analysis Finished:

2021-06-10 21:08:03 +02:00
Technologies:

Engines
IOCs

Joe Sandbox

Engine	Download Report	Detection	Info
	Full Report Management Report IOC Report	malicious Score: 64	System: Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01

Third Party Analysis Engines

malicious

IPs

IP	Country	Detection
104.154.247.12	United States
104.129.24.42	United States
142.250.180.225	United States
Click to see the 4 hidden entries
35.208.111.117	United States
172.67.7.204	United States
66.70.177.74	Canada
239.255.255.250	Reserved

Domains

Name	IP	Detection
kezenelectric.ca	66.70.177.74
wallpaperaccess.com	172.67.7.204
gofirstam.com	104.129.24.42
Click to see the 6 hidden entries
dwdtechnology.wpengine.com	104.154.247.12
s.w.org	192.0.77.48
googlehosted.l.googleusercontent.com	142.250.180.225
wphoot.com	35.208.111.117
clients2.googleusercontent.com	0.0.0.0
www.dwdtechgroup.com	0.0.0.0

URLs

Name	Detection
https://kezenelectric.ca/home/about-us/accreditations-certifications/
https://kezenelectric.ca/home/about-us/
https://kezenelectric.ca/First-America/
Click to see the 97 hidden entries
https://kezenelectric.ca/home/about-us/meet-our-team/
https://kezenelectric.ca/exec/fd_helpWin?topic=8#main
https://kezenelectric.ca/
https://kezenelectric.ca/exec/fd_helpWin?topic=8
https://kezenelectric.ca/First-America
https://kezenelectric.ca/First-AmericaFirst
https://kezenelectric.ca/home/past-projects/
https://kezenelectric.ca/First-AmericaM
https://kezenelectric.ca/First-America/(First
https://kezenelectric.ca/home/contact-us/testamonials/
https://kezenelectric.ca/First-America2(First
https://kezenelectric.ca/First-America/First
https://kezenelectric.ca/First-Americal
https://kezenelectric.ca/home/contact-us/
https://kezenelectric.ca/First-America/index2.php
https://kezenelectric.ca/First-America/2(First
https://kezenelectric.ca/First-America/
https://kezenelectric.ca/First-Americak
https://kezenelectric.ca/wp-includes/js/wp-emoji-release.min.js?ver=5.7.2aD
https://kezenelectric.ca/wp-content/plugins/wp-customer-reviews/js/wp-customer-reviews.js?ver=3.5.6a
https://wphoot.com/k
https://kezenelectric.ca/wp-content/themes/metrolo/js/hoot.theme.js?ver=1.9.14aD
https://kezenelectric.ca/k
https://wphoot.com/
https://kezenelectric.ca/wp-content/themes/metrolo/js/jquery.parallax.js?ver=1.4.2
https://twemoji.maxcdn.com/v/13.0.1/
https://kezenelectric.ca/wp-includes/js/wp-emoji-release.min.js?ver=5.7.2
https://www.dwdtechgroup.com
https://kezenelectric.ca/favicon.ico
http://kezenelectric.ca/wp-content/uploads/2018/11/CCC.jpg
https://kezenelectric.ca/home/about-us/About
https://feedback.googleusercontent.com
https://kezenelectric.ca/wp-content/themes/metrolo/js/jquery.lightSlider.js?ver=1.1.1aD
https://clients2.googleusercontent.com
https://kezenelectric.ca/wp-includes/js/wp-embed.min.js?ver=5.7.2
https://kezenelectric.ca/home/contact-us/testamonials/
https://kezenelectric.ca/wp-includes/js/jquery/jquery.min.js?ver=3.5.1aD
https://kezenelectric.ca/wp-includes/js/hoverIntent.min.js?ver=1.8.1
https://kezenelectric.ca/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
https://kezenelectric.ca/home/past-projects/Past
https://kezenelectric.ca/home/past-projects/
https://kezenelectric.ca/wp-content/uploads/2018/09/cropped-LOGO-3-32x32.jpg
https://kezenelectric.ca/exec/fd_helpWin?topic=8#main
http://kezenelectric.ca/wp-content/uploads/2018/11/index-300x117.png
https://kezenelectric.ca/wp-content/themes/metrolo/js/jquery.superfish.js?ver=1.7.5aD
https://kezenelectric.ca/wp-includes/js/hoverIntent.min.js?ver=1.8.1aD
https://kezenelectric.ca/exec/fd_helpWin?topic=8#maintHZQ
https://wphoot.com/;
https://wphoot.com/wp-content/uploads/siteground-optimizer-assets/fitvids.min.js?ver=1.1
https://kezenelectric.ca
https://kezenelectric.ca/wp-content/themes/metrolo/js/jquery.fitvids.js?ver=1.1
https://wphoot.com/x
https://wphoot.com/wp-includes/js/wp-embed.min.js?ver=5.7.2
https://wphoot.com/themes/metrolo/Metrolo
https://kezenelectric.ca/wp-includes/js/wp-embed.min.js?ver=5.7.2aD
https://kezenelectric.ca/Kezen
https://kezenelectric.ca/home/about-us/
https://kezenelectric.ca/home/contact-us/
https://kezenelectric.ca/wp-content/themes/metrolo/js/hoot.theme.js?ver=1.9.14
https://kezenelectric.ca/wp-includes/js/hoverIntent.min.js?ver=1.8.1a
http://kezenelectric.ca/wp-content/uploads/2018/11/LOGO-300x179.jpg
https://kezenelectric.ca/
https://wphoot.com/wp-includes/js/hoverIntent.min.js?ver=1.8.1
https://wphoot.com
https://kezenelectric.ca/Wc
https://kezenelectric.ca/wp-content/uploads/2018/09/cropped-LOGO-3-32x32.jpg(
https://kezenelectric.ca/home/contact-us/testamonials/Testamonials
http://kezenelectric.ca/Kezen
https://kezenelectric.ca/wp-content/themes/metrolo/js/modernizr.custom.js?ver=2.8.3
https://kezenelectric.ca/wp-content/themes/metrolo/js/jquery.superfish.js?ver=1.7.5
https://kezenelectric.ca/wp-content/themes/metrolo/js/jquery.fitvids.js?ver=1.1aD
https://wphoot.com/themes/metrolo/
https://kezenelectric.ca/wp-content/plugins/wp-customer-reviews/js/wp-customer-reviews.js?ver=3.5.6
https://wphoot.com/wp-content/uploads/siteground-optimizer-assets/contact-form-7.min.js?ver=5.3.2
https://kezenelectric.ca/home/about-us/accreditations-certifications/c
https://wphoot.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
https://wphoot.com/wp-content/uploads/siteground-optimizer-assets/hoot-theme.min.js?ver=2.12
https://wphoot.com/wp-content/uploads/siteground-optimizer-assets/megamenu.min.js?ver=2.9.2
https://kezenelectric.ca/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2aD
https://wphoot.com/themes/metrolo/
https://kezenelectric.ca/wp-content/themes/metrolo/js/jquery.parallax.js?ver=1.4.2aD
https://kezenelectric.ca/wp-content/themes/metrolo/js/modernizr.custom.js?ver=2.8.3aD
https://wphoot.com/wp-content/uploads/siteground-optimizer-assets/modernizr.min.js?ver=2.8.3
https://wallpaperaccess.com
https://kezenelectric.ca/wp-includes/js/jquery/jquery.min.js?ver=3.5.1
https://kezenelectric.ca/home/about-us/meet-our-team/Meet
http://kezenelectric.ca/
https://wphoot.com/_
https://wphoot.comh
https://kezenelectric.ca/wp-content/themes/metrolo/js/jquery.lightSlider.js?ver=1.1.1
https://kezenelectric.ca/home/about-us/accreditations-certifications/
https://kezenelectric.ca/home/contact-us/Contact
https://wphoot.com/wp-content/plugins/easy-digital-downloads/assets/js/edd-ajax.min.js?ver=2.9.26
https://kezenelectric.ca/home/about-us/accreditations-certifications/Accreditations
https://dns.google
https://kezenelectric.ca/exec/fd_helpWin?topic=8
https://kezenelectric.ca/home/about-us/meet-our-team/

Dropped files

Name	File Type	Hashes
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History	SQLite 3.x database, last written using SQLite version 3032001	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\000003.log	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Reporting and NEL-journal	data	#
Click to see the 97 hidden entries
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Reporting and NEL	SQLite 3.x database, last written using SQLite version 3032001	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\QuotaManager-journal	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\QuotaManager	SQLite 3.x database, last written using SQLite version 3032001	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Action Predictor-journal	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Action Predictor	SQLite 3.x database, last written using SQLite version 3032001	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\000003.log	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History-journal	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\File System\Origins\MANIFEST-000001	PGP\011Secret Key -	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\File System\Origins\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\File System\Origins\000003.log	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\File System\Origins\000001.dbtmp	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\000003.log	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Favicons-journal	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Favicons	SQLite 3.x database, last written using SQLite version 3032001	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8520.615.0.5_1\_metadata\computed_hashes.json	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\000003.log	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\000004.dbtmp	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\cf03e488-4006-4aed-a42e-31e7dd0c0a39.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\cba595f5-4b38-4568-8eda-aa17998e16b3.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\c4005ad4-7ef8-4b7e-960e-ad09a8a8c684.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\c1652dca-5907-4397-b613-cde51acd4b2f.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\a61a9d9e-1da0-4847-b7aa-e3cdf777b186.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Visited Links	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000003.log	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.6_0\_metadata\computed_hashes.json	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\GPUCache\data_1	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\9a88bfbb-e9d5-4757-8815-bb24bda897a2.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\000003.log	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Platform Notifications\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Local Storage\leveldb\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\GPUCache\data_1	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\3085c1ef-01c8-4cfa-a8dd-fb9b1ffb49ad.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\7646c7fe-eb7f-4111-baed-47a93160456f.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\5da3893660e7a47a_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\5278677776ece701_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\229c73a4fe442ea3_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\200e0abd4ba2ff0b_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\1d1b2948d4525464_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\06aba3ef4a05b1d3_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\05a632044e49ec3d_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\002445640ee1de89_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\9516885b-c89d-4b07-9f59-157c5e4b9756.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\7ce2b011-7949-43fa-aaba-66550c560841.tmp	UTF-8 Unicode text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\6485724e45ee2243_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\734753a9-f224-42a9-a38d-289cb990c9ac.tmp	very short file (no magic)	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\71e4fe4e-990f-4b98-aff1-06858d9696bd.tmp	UTF-8 Unicode text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\1e072769-31fe-439b-9f52-047825c17262.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\1288b324-97f1-48f3-bcfc-db67dedd2185.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\02be7372-55df-4983-b6ff-7018cbaa805c.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\9c7b99d7-f559-43b7-a91c-0ac609b76ef8.tmp	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\9548abb1-5605-427d-b54b-4fedc2fe2c35.tmp	SysEx File -	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\76da7b8b-f094-4fb5-b0c0-393127c4b8ba.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\0a1a5bbe-8aa9-4dc8-8139-02fc0a5e7de4.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\77EC63BDA74BD0D0E0426DC8F8008506	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\d9852fc8edfab566_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\000003.log	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\000003.log	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Tabs	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Session	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies-journal	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies	SQLite 3.x database, last written using SQLite version 3032001	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\f597f914edb8e129_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\f22d5e331d7c4eab_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\ee05b7802d222e35_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\dc6462b65c6623d5_0	data	#
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\77EC63BDA74BD0D0E0426DC8F8008506	Microsoft Cabinet archive data, 60080 bytes, 1 file	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\c27291f84aa51d71_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\bda3c198988ffc1a_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\b92b2c27ad669878_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\a8d7eb2cedf7692b_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\a431c1478c67bc32_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\9e21f8aa16d21fc2_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\8ed7979f48ca3039_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\80a193e1143879d7_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\786b0adb2bd9c037_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\75ddb2c602fd7877_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\6c75240678e5e01e_0	data	#

https://kezenelectric.ca/First-America

Comments

Tags

Available tags:

Details

Joe Sandbox

Third Party Analysis Engines

IPs

Domains

URLs

Dropped files

https://kezenelectric.ca/First-America Options

Comments

Tags

Available tags:

Details

Joe Sandbox

Third Party Analysis Engines

IPs

Domains

URLs

Dropped files

Search started

https://kezenelectric.ca/First-America