https://secure.campaigner.com/CSB/Public/archive.aspx?args=NTIxMzE2MjA%3d&acc=NzY2ODM4

Status: finished

Submission Time: 2021-06-11 17:48:53 +02:00

Malicious

Phishing

HTMLPhisher

Comments

Details

Analysis ID:
433372
API (Web) ID:
800976
Analysis Started:

2021-06-11 17:48:53 +02:00
Analysis Finished:

2021-06-11 17:52:36 +02:00
Technologies:

Engines
IOCs

Joe Sandbox

Engine	Download Report	Detection	Info
	Full Report Management Report IOC Report	malicious Score: 72	System: Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01

IPs

IP	Country	Detection
216.24.224.42	Canada
31.13.92.14	Ireland
31.13.92.36	Ireland
Click to see the 3 hidden entries
104.18.11.207	United States
66.29.132.67	United States
104.16.19.94	United States

Domains

Name	IP	Detection
star-mini.c10r.facebook.com	31.13.92.36
scontent.xx.fbcdn.net	31.13.92.14
cdnjs.cloudflare.com	104.16.19.94
Click to see the 9 hidden entries
maxcdn.bootstrapcdn.com	104.18.11.207
secure.campaigner.com	216.24.224.42
macadavid.cf	66.29.132.67
www.facebook.com	0.0.0.0
media.campaigner.com	0.0.0.0
ka-f.fontawesome.com	0.0.0.0
code.jquery.com	0.0.0.0
kit.fontawesome.com	0.0.0.0
connect.facebook.net	0.0.0.0

URLs

Name	Detection
https://macadavid.cf/000/index.php
https://macadavid.cf/000/index.php
https://macadavid.cf/000/index.php$Share
Click to see the 67 hidden entries
https://macadavid.cf/000/index.phpblic/archive.aspx?args=NTIxMzE2MjA%3d&acc=NzY2ODM40
https://macadavid.cf/000/index.phpblic/archive.aspx?args=NTIxMzE2MjA%3d&acc=NzY2ODM4macadavid.cf/000
http://fontawesome.io/license/
https://media.campaigner.com/csb/content/ui-theme/global/fonts/font-awesome/font-awesome.min.css
http://ianlunn.github.io/Hover/)
http://www.nytimes.com/
http://fontawesome.iohttp://fontawesome.iohttp://fontawesome.io/license/http://fontawesome.io/licens
https://code.jquery.com/jquery-3.1.1.min.js
https://media.campaigner.com/csb/scripts/custom/socialsharinghelper.js
https://media.campaigner.com/csb/Telerik.Web.UI.WebResource.axd?d=PMrIT5dOWaVYIcpFWUE4nGT9ocicfa2Xof
https://secure.campaigner.com/CSB/Public/archive.aspx?args=NTIxMzE2MjA%3D&acc=NzY2ODM4
https://media.campaigner.com/csb/content/ui-theme/global/vendor/waves/waves.min.css
http://www.linkedin.com/shareArticle?mini=true&url=
https://secure.campaigner.com/CSB/Public/archive.aspx?args=NTIxMzE2MjA%3d&acc=NzY2ODM4
https://code.jquery.com/jquery-3.3.1.js
https://maxcdn.bootstrapcdn.com/bootstrap/4.0.0/css/bootstrap.min.css
http://benalman.com/projects/jquery-throttle-debounce-plugin/
http://gsgd.co.uk/sandbox/jquery/easing/
https://github.com/IanLunn/Hover
https://kit.fontawesome.com
https://cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js
https://login.microsoftonline.com/common/login
http://www.live.com/
https://getbootstrap.com)
https://media.campaigner.com/csb/app_themes/lightning/common/fonticons.css
https://media.campaigner.com/csb/app_themes/lightning/combobox.campformcombo.css
https://media.campaigner.com/csb/node_modules/campaigner-core/src/style/theme/campaigner/bootstrap.m
http://www.youtube.com/
http://ianlunn.co.uk/
https://media.campaigner.com/csb/WebResource.axd?d=pynGkmcFUV13He1Qd6_TZItUc7uOXVQ_JJSF3nqWHTssVf86I
https://github.com/twbs/bootstrap/blob/master/LICENSE)
http://www.gnu.org/licenses/gpl.html
http://www.wikipedia.com/
https://secure.campaigner.com/CSB/Public/archive.aspx?args=NTIxMzE2MjA%3d&acc=NzY2ODM4Root
https://fontawesome.com
https://media.campaigner.com/csb/node_modules/campaigner-core/src/style/theme/campaigner/campaigner.
https://fontawesome.com/license/free
http://benalman.com/about/license/
http://www.twitter.com/
http://www.telerik.com/help/aspnet-ajax/window-programming-setting-client-events-using-javascript.ht
http://www.amazon.com/
http://www.appcropolis.com)
https://www.internalfb.com/intern/invariant/
https://code.jquery.com/jquery-3.2.1.slim.min.js
https://ka-f.fontawesome.com
https://macadavid.cf/0
http://fontawesome.io
https://twitter.com/share?url=
https://secure.campaigner.com/--redacted--/?--redacted--
https://media.campaigner.com/csb/node_modules/campaigner-core/src/style/theme/campaigner/bootstrap-e
https://media.campaigner.com/csb/scripts/genericopenwindowfcts.js
http://www.reddit.com/
https://secure.campaigner.com/CSB/Public/archive.aspx?args=NTIxMzE2MjA%3d&acc=NzY2ODM40
https://secure.campaigner.com/CSB/Public/archive.aspx?args=NTIxMzE2MjA%3d&acc=NzY2ODM4
https://maxcdn.bootstrapcdn.com/bootstrap/4.0.0/js/bootstrap.min.js
https://kit.fontawesome.com/585b051251.js
http://opensource.org/licenses/MIT).
https://media.campaigner.com/editorassets/themes/soak-it-up/content-background.png
https://media.campaigner.com/csb/scripts/thirdparty/jquery-latest.min.js
https://media.campaigner.com/media/76/766838/Screen
https://secure.campaigner.com/favicon.ico
https://secure.campaig
https://media.campaigner.com/csb/content/ui-theme/global/fonts/brand-icons/brand-icons.min.css
https://media.campaigner.com/csb/Telerik.Web.UI.WebResource.axd?_TSM_HiddenField_=radScriptManager_T
https://github.com/twbs/bootstrap/graphs/contributors)
https://secure.campaigner.com/favicon.ico~
http://www.opensource.org/licenses/mit-license.php

Dropped files

Name	File Type	Hashes
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\index[1].htm	HTML document, UTF-8 Unicode (with BOM) text, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\index[1].htm	HTML document, UTF-8 Unicode (with BOM) text, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\waves.min[1].css	ASCII text, with very long lines, with no line terminators	#
Click to see the 69 hidden entries
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\hover[1].css	ASCII text	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\gmail[1].png	PNG image data, 1280 x 1280, 8-bit/color RGBA, non-interlaced	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\font-awesome.min[1].css	UTF-8 Unicode text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\favicon[1].ico	MS Windows icon resource - 3 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\campaigner.min[1].css	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\brand-icons.min[1].css	UTF-8 Unicode text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\bootstrap.min[1].js	ASCII text, with very long lines	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\bootstrap.min[1].css	UTF-8 Unicode text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\RxZJdnzeo3R5zSexge8UUT8E0i7KZn-EPnyo3HZu7kw[1].woff	Web Open Font Format, TrueType, length 18576, version 1.1	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\585b051251[2].js	ASCII text, with very long lines	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\585b051251[1].js	ASCII text, with very long lines	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\2UX7WLTfW3W8TclTUvlFyQ[1].woff	Web Open Font Format, TrueType, length 18520, version 1.1	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\outlook1[1].png	PNG image data, 26 x 26, 8-bit/color RGBA, non-interlaced	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\other1[1].png	PNG image data, 190 x 187, 8-bit/color RGBA, non-interlaced	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\office3651[1].png	PNG image data, 187 x 188, 8-bit/color RGBA, non-interlaced	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\like[1].htm	HTML document, UTF-8 Unicode text, with very long lines	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\combobox.campformcombo[1].css	ASCII text, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\DOMStore\6AOSI0IH\secure.campaigner[1].xml	ASCII text, with no line terminators	#
C:\Users\user\AppData\Local\Temp\~DFB9B088C2B4A83B25.TMP	data	#
C:\Users\user\AppData\Local\Temp\~DF8357F423EC5F7CBF.TMP	data	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\popper.min[1].js	ASCII text, with very long lines	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\free.min[1].css	ASCII text, with very long lines	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\free-v4-shims.min[1].css	ASCII text, with very long lines	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\css[1].css	ASCII text	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\content-background[1].png	PNG image data, 4 x 4, 8-bit/color RGBA, non-interlaced	#
C:\Users\user\AppData\Local\Temp\~DFDC4F66DA4FD5A51A.TMP	data	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\bootstrap-extended.min[1].css	UTF-8 Unicode text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\archive[1].htm	HTML document, ASCII text, with very long lines, with CRLF, LF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\Telerik.Web.UI.WebResource[1].css	ASCII text, with very long lines, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\KFOmCnqEu92Fr1Mu4mxM[1].woff	Web Open Font Format, TrueType, length 20332, version 1.1	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\KFOlCnqEu92Fr1MmWUlfBBc-[1].woff	Web Open Font Format, TrueType, length 20396, version 1.1	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\KFOjCnqEu92Fr1Mu51TzBic6CsI[1].woff	Web Open Font Format, TrueType, length 21656, version 1.1	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\KFOjCnqEu92Fr1Mu51S7ACc6CsI[1].woff	Web Open Font Format, TrueType, length 22080, version 1.1	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\8[1].jpg	[TIFF image data, big-endian, direntries=12, height=709, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=1200], baseline, precision 8, 1200x646, frames 3	#
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-8760897390\msapplication.xml	XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\bootstrap.min[1].css	ASCII text, with very long lines	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\all[1].js	ASCII text, with very long lines	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\Telerik.Web.UI.WebResource[1].js	UTF-8 Unicode text, with very long lines, with CRLF, LF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\Screen%20Shot%202021-03-04%20at%209.10.51%20PM[1].png	PNG image data, 700 x 742, 8-bit/color RGBA, non-interlaced	#
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\imagestore\ynfz0jx\imagestore.dat	data	#
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin8215062560\msapplication.xml	XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin20332743330\msapplication.xml	XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin20259167780\msapplication.xml	XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\css[1].css	ASCII text	#
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-6757900\msapplication.xml	XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-4759708130\msapplication.xml	XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-21706820\msapplication.xml	XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-18270793970\msapplication.xml	XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-17529550060\msapplication.xml	XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{180F7E13-CB18-11EB-90E4-ECF4BB862DED}.dat	Microsoft Word Document	#
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{11894F36-CB18-11EB-90E4-ECF4BB862DED}.dat	Microsoft Word Document	#
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{11894F34-CB18-11EB-90E4-ECF4BB862DED}.dat	Microsoft Word Document	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\socialsharinghelper[1].js	UTF-8 Unicode (with BOM) text, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\font-awesome[1].eot	Embedded OpenType (EOT), FontAwesome family	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\all[1].js	ASCII text, with very long lines	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\adobe[1].jpg	JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 400x400, frames 3	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\WebResource[1].js	ASCII text, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\OqOE21UvWe3[1].png	PNG image data, 16 x 16, 8-bit gray+alpha, non-interlaced	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\KFOlCnqEu92Fr1MmSU5fBBc-[1].woff	Web Open Font Format, TrueType, length 20404, version 1.1	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\KFOlCnqEu92Fr1MmEU9fBBc-[1].woff	Web Open Font Format, TrueType, length 20532, version 1.1	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\KFOjCnqEu92Fr1Mu51TjASc6CsI[1].woff	Web Open Font Format, TrueType, length 22280, version 1.1	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\fonticons[1].css	ASCII text	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\nN7EzeTFXEH[1].js	ASCII text, with very long lines	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\jquery.min[1].js	ASCII text, with very long lines	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\jquery-latest.min[1].js	ASCII text, with very long lines, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\jquery-3.2.1.slim.min[1].js	ASCII text, with very long lines	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\jquery-3.1.1.min[1].js	ASCII text, with very long lines	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\genericopenwindowfcts[1].js	UTF-8 Unicode (with BOM) text, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\css[2].css	ASCII text	#

https://secure.campaigner.com/CSB/Public/archive.aspx?args=NTIxMzE2MjA%3d&acc=NzY2ODM4

Comments

Tags

Available tags:

Details

Joe Sandbox

IPs

Domains

URLs

Dropped files

https://secure.campaigner.com/CSB/Public/archive.aspx?args=NTIxMzE2MjA%3d&acc=NzY2ODM4 Options

Comments

Tags

Available tags:

Details

Joe Sandbox

IPs

Domains

URLs

Dropped files

Search started

https://secure.campaigner.com/CSB/Public/archive.aspx?args=NTIxMzE2MjA%3d&acc=NzY2ODM4