â_â_Play _to _Listen.htm

Status: finished

Submission Time: 2021-07-22 10:55:51 +02:00

Malicious

Phishing

HTMLPhisher

Comments

Details

Analysis ID:
452435
API (Web) ID:
820024
Analysis Started:

2021-07-22 10:55:51 +02:00
Analysis Finished:

2021-07-22 11:05:05 +02:00
MD5:
59bcd893624173dbb0ae81eb3019974f
SHA1:
995c8ee3b0810659468fbc216e1d8c0d1f2fa1f6
SHA256:
51cb67fbe8cc07001310c8b8c9c78f9b117f8efb03f31ed41dd2432b38639a8b
Technologies:

Engines
IOCs

Joe Sandbox

Engine	Download Report	Detection	Info
	Full Report Management Report IOC Report	malicious Score: 60	System: Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01

Third Party Analysis Engines

malicious

IPs

IP	Country	Detection
104.16.122.175	United States
151.101.1.195	United States
172.217.168.45	United States
Click to see the 9 hidden entries
142.250.203.97	United States
142.250.185.142	United States
104.16.18.94	United States
67.199.248.10	United States
152.199.23.72	United States
104.21.47.62	United States
239.255.255.250	Reserved
152.199.21.175	United States
104.21.72.95	United States

Domains

Name	IP	Detection
cs1025.wpc.upsiloncdn.net	152.199.23.72
acctcdn.msftauth.net	0.0.0.0
secure.aadcdn.microsoftonline-p.com	0.0.0.0
Click to see the 16 hidden entries
clients2.google.com	0.0.0.0
aadcdn.msauthimages.net	0.0.0.0
clients2.googleusercontent.com	0.0.0.0
acctcdn.msauth.net	0.0.0.0
account.live.com	0.0.0.0
aadcdn.msauth.net	0.0.0.0
googlehosted.l.googleusercontent.com	142.250.203.97
titko.wancdnapp.page	104.21.47.62
unpkg.com	104.16.122.175
clients.l.google.com	142.250.185.142
sni1gl.wpc.alphacdn.net	152.199.21.175
bit.ly	67.199.248.10
cdnjs.cloudflare.com	104.16.18.94
noem.urll.pw	104.21.72.95
manaapdpemtri.firebaseapp.com	151.101.1.195
accounts.google.com	172.217.168.45

URLs

Name	Detection
https://titko.wancdnapp.page
file:///C:/Users/user/Desktop/%23U00e2_%23U00e2_Play%20_to%20_Listen.htm?bbre=1626976601159#/1626976601159-@!&EfQBIjex4nAvaSN&@!QtCJrXmE3YnhHsy5VU2ow!&@-erika.lontoc@enbridge.com-1626976601159/1626976601159
https://account.live.com/
Click to see the 50 hidden entries
https://live.com/U
https://support.google.com/chromecast/troubleshooter/2995236
https://a.nel.cloudflare.com/report/v3?s=pyWl84jQ9GbAN1%2FACl4YZpuAdFkZde1gzydH4iwZgwquKAqAc9pZL9L7z
https://payments.google.com/payments/v4/js/integrator.js
https://www.google.com;
https://acctcdn.msauth.net/knockout_old_GJ62c6D9R5HuKFdkoO8XYw2.js?v=1
https://hangouts.google.com/
https://acctcdn.msauth.net/jquerypackage_1.10_5V7LAuc3bNAQx2QQfr1RPw2.js?v=1
https://acctcdn.msauth.net/accountcorepackage_YD-Y5A3nlj0ms1Ks9fXU6A2.js?v=1
https://acctcdn.msauth.net/bootstrap_3.3.0_B68S-_daR6nLiLVZsh4XiA2.js?v=1
https://bit.ly/39KyDE6Recover
https://manaapdpemtri.firebaseapp.com
https://ogs.google.com
https://acctcdn.msauth.net/
https://aadcdn.msauthimages.net
https://acctcdn.msauth.net/wlivepackagefull_2169QIWB52Tqqm3jo5_AUA2.js?v=1
https://support.google.com/chromecast/answer/2998456
https://acctcdn.msauth.net/images/favicon.ico?v=2
https://clients2.googleusercontent.com
https://a.nel.cloudflare.com/report/v3?s=OoKkeU3%2BmVhMJM%2BBBdrcmySbHyEoeycPWzMZ%2FvEzV4Rbwd8dNIUBH
https://aadcdn.msauth.net
https://www.google.com/
https://feedback.googleusercontent.com
https://clients2.google.com/service/update2/crx
https://account.live.com
https://accounts.google.com
https://acctcdn.msauth.net
https://unpkg.com
https://play.google.com
https://live.com/Ni
https://bit.ly/39KyDE6k&ZLP&/
https://bit.ly/39KyDE6
https://sandbox.google.com/payments/v4/js/integrator.js
https://noem.urll.pw
https://www.google.com
https://a.nel.cloudflare.com/report/v3?s=rGdgGtsHnyV9rMKv2I%2F3XUiIeYY3BophwuhClI01RJE%2F%2FYZBX5cuF
https://secure.aadcdn.microsoftonline-p.com/ests/2.1.6669.4/content/images/favicon_a.ico
https://secure.aadcdn.microsoftonline-p.com/ests/2.1.6669.4/content/images/favicon_a.ico4
https://bit.ly
https://live.com/
https://acctcdn.msauth.net/resetpasswordpackage_X7k_NcCIooflIFuKCGNtCw2.js?v=1
https://cdnjs.cloudflare.com
https://apis.google.com
https://csp.withgoogle.com/csp/report-to/downloads-lorry
https://clients2.google.com
https://account.live.com/password/reset
https://dns.google
https://live.com//a
https://acctcdn.msauth.net/datarequestpackage_h-_7C7UzwdefXJT9njDBTQ2.js
https://acctcdn.msauth.net/oneds_Xr2D7Nex80v7A-8bxF8jgQ2.js?v=1

Dropped files

Name	File Type	Hashes
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\000003.log	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG	ASCII text	#
Click to see the 97 hidden entries
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\GPUCache\data_1	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\9209b84d-f87d-4c88-a1ae-740cdded2081.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\d5dd8309-2c52-4367-a472-d42383780cd9.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\000003.log	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Platform Notifications\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Local Storage\leveldb\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\GPUCache\data_1	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\000003.log	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Reporting and NEL-journal	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Reporting and NEL	SQLite 3.x database, last written using SQLite version 3032001	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Action Predictor-journal	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Action Predictor	SQLite 3.x database, last written using SQLite version 3032001	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\000003.log	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History-journal	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History	SQLite 3.x database, last written using SQLite version 3032001	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\ec90fb78-de35-4fa6-9dd2-8b8849b8e515.tmp	UTF-8 Unicode text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Temp\2cf10051-368b-4a63-9187-52a96724d6ab.tmp	very short file (no magic)	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\e278d02e-572f-473e-b399-a28098695b37.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\de762af8-2e3d-499a-b79b-7c4f6b79a410.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\dadb1716-9259-4092-b8cf-f1b8cd5be034.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\bcfbd2dc-723f-4359-a515-c75e0e03b969.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Subresource Filter\Indexed Rules\27\scoped_dir4088_621323181\Ruleset Data	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Subresource Filter\Indexed Rules\27\9.28.0\Indexing in Progress	empty	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\ShaderCache\GPUCache\data_1	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Version	ASCII text, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Browser	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\fc3906b8-9c0e-4a95-8b07-055643a48396.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_1	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\MANIFEST-000004	MPEG-4 LOAS	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\000004.dbtmp	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\da6f5efe-3c59-44eb-a2e9-6c8aed899b72.tmp	UTF-8 Unicode text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\d79d15a9-5231-4456-956d-c50f29f6f08a.tmp	very short file (no magic)	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\cb0cae96-daba-427a-97a5-92928b23ae34.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\bbabfc87-a240-4b8d-821f-598845db053a.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Visited Links	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000003.log	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\5d79c79c-fa16-4d69-b074-eac8f5654963.tmp	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\64097c87-b929-47bf-b31f-0f40acc05d47.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\6000b322-d641-44d5-afb2-9ddbad0e5d2c.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\5ae6876a-337e-455f-be66-1f92e7a8c57c.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\4cb5de2d-46c0-4be5-9bfc-610e16465c18.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\3adc0dd0-6a64-4bb2-8f82-d57b462d75f8.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\19607768-f0f6-4625-ac00-d9f28ff1904e.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\9f077f25-f689-4b4b-ab6e-616e71c28813.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\89745beb-24db-42db-b351-f8f3e5b69c9d.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\5e0711ad-6166-433d-a38c-0d20301fad0f.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\0decd6ee54701714_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\58e5cdb6-b902-4a8c-9fd7-ed6d1f425689.tmp	SysEx File -	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\4c8ad0ce-e74b-4048-a96d-4cddba995082.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\3b96f2ad-a05d-467d-a53f-1b0f4ebebe15.tmp	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\37797b19-b212-4890-b1c2-220e2cbb8560.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\30793f91-41d5-4674-a5ed-dca7d1179b45.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\2a7c8b50-6f47-46fc-8fbb-834d58806ea5.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\0649255a-64ea-44e4-a23d-277039c6dd4f.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\EDC238BFF48A31D55A97E1E93892934B_C31B2498754E340573F1336DE607D619	data	#
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\4D1ED785E3365DE6C966A82E99CCE8EA_216A6C169356295AB09C26D4D7D32E06	data	#
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\EDC238BFF48A31D55A97E1E93892934B_C31B2498754E340573F1336DE607D619	data	#
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\4D1ED785E3365DE6C966A82E99CCE8EA_216A6C169356295AB09C26D4D7D32E06	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Tabs	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\000003.log	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Favicons-journal	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Favicons	SQLite 3.x database, last written using SQLite version 3032001	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8520.615.0.5_1\_metadata\computed_hashes.json	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.6_0\_metadata\computed_hashes.json	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\000003.log	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\000003.log	data	#
C:\Program Files\Google\Chrome\Application\Dictionaries\en-US-9-0.bdic	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Session	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies-journal	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies	SQLite 3.x database, last written using SQLite version 3032001	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\temp-index	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\f6ef8939da32ec75_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\f469a98fdcf53c25_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\7e4cea594f77c74d_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\7cab34efca253074_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\59f8bbf14d4853fd_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\4278acc4333443e6_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\263002cf0fbb71e6_0	data	#

â_â_Play _to _Listen.htm

Comments

Tags

Available tags:

Details

Joe Sandbox

Third Party Analysis Engines

IPs

Domains

URLs

Dropped files

â_â_Play _to _Listen.htm Options

Comments

Tags

Available tags:

Details

Joe Sandbox

Third Party Analysis Engines

IPs

Domains

URLs

Dropped files

Search started

â_â_Play _to _Listen.htm