http://eprocurement.corona.com.co/eprocurement2/#/login/

Status: finished

Submission Time: 2021-08-20 18:09:08 +02:00

Malicious

Comments

Details

Analysis ID:
468973
API (Web) ID:
836542
Analysis Started:

2021-08-20 18:09:08 +02:00
Analysis Finished:

2021-08-20 18:14:20 +02:00
Technologies:

Engines
IOCs

Joe Sandbox

Engine	Download Report	Detection	Info
	Full Report Management Report IOC Report	malicious Score: 48	System: Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01

IPs

IP	Country	Detection
200.32.81.196	Argentina
239.255.255.250	Reserved
142.250.185.164	United States
Click to see the 4 hidden entries
172.217.18.109	United States
142.250.186.131	United States
216.58.212.161	United States
216.58.212.174	United States

Domains

Name	IP	Detection
eprocurement.corona.com.co	200.32.81.196
gstaticadssl.l.google.com	142.250.186.131
www.corona.com.co	13.90.152.140
Click to see the 6 hidden entries
accounts.google.com	172.217.18.109
www.google.com	142.250.185.164
clients.l.google.com	216.58.212.174
googlehosted.l.googleusercontent.com	216.58.212.161
clients2.googleusercontent.com	0.0.0.0
clients2.google.com	0.0.0.0

URLs

Name	Detection
http://eprocurement.corona.com.co/eprocurement2/
http://eprocurement.corona.com.co/eprocurement2/bower_components/jquery/dist/jquery.min.js
http://eprocurement.corona.com.co/eprocurement2/Servicios/Parametros.svc/ObtenerOpcionesLenguaje
Click to see the 97 hidden entries
http://eprocurement.corona.com.co/eprocurement2/scripts/controllers/ordenesProveedorCtrl.js
http://eprocurement.corona.com.co/eprocurement2/scripts/controllers/ordenesCompradorCtrl.js
http://eprocurement.corona.com.co/eprocurement2/scripts/directives/documentosClasesDir.js
http://eprocurement.corona.com.co/eprocurement2/bower_components/angular-recaptcha/angular-recaptcha.js
http://eprocurement.corona.com.co/eprocurement2/scripts/controllers/documentosCtrl.js
http://eprocurement.corona.com.co/eprocurement2/Servicios/Parametros.svc/ObtenerURLS
http://eprocurement.corona.com.co/eprocurement2/views/login.html
http://eprocurement.corona.com.co/eprocurement2/scripts/controllers/configuracionCtrl.js
http://eprocurement.corona.com.co/eprocurement2/scripts/directives/centroFilterDir.js
http://eprocurement.corona.com.co/eprocurement2/scripts/controllers/proyeccionesCtrl.js
http://eprocurement.corona.com.co/eprocurement2/bower_components/angular/angular.js
http://eprocurement.corona.com.co/eprocurement2/#/login
http://eprocurement.corona.com.co/eprocurement2/scripts/controllers/homeCtrl.js
http://eprocurement.corona.com.co/eprocurement2/scripts/services/docsHomeSrv.js
http://eprocurement.corona.com.co/eprocurement2/fonts/walkway/walkwaysemibold_regular_macroman/stylesheet.css
http://eprocurement.corona.com.co/eprocurement2/fonts/walkway/walkwaysemibold_regular_macroman/Walkway_SemiBold-webfont.ttf
http://eprocurement.corona.com.co/eprocurement2/bower_components/angular-sanitize/angular-sanitize.js
http://eprocurement.corona.com.co/eprocurement2/fonts/walkway/walkwayultrabold_regular_macroman/stylesheet.css
http://eprocurement.corona.com.co/eprocurement2/bower_components/ng-grid/ng-grid-2.0.11.min.js
http://eprocurement.corona.com.co/eprocurement2/bower_components/angular-bootstrap/ui-bootstrap-tpls.js
http://eprocurement.corona.com.co/eprocurement2/images/main-bg.jpg
http://eprocurement.corona.com.co/eprocurement2/scripts/directives/estadosFilterDir.js
http://eprocurement.corona.com.co/eprocurement2/bower_components/angular-bootstrap/ui-bootstrap.js
http://eprocurement.corona.com.co/eprocurement2/scripts/directives/ng-table.js
http://eprocurement.corona.com.co/eprocurement2/bower_components/bootstrap/dist/css/bootstrap.css
http://eprocurement.corona.com.co/eprocurement2/scripts/directives/proveedoresFilterDir.js
http://eprocurement.corona.com.co/eprocurement2/scripts/directives/table2excel.js
http://eprocurement.corona.com.co/eprocurement2/bower_components/angular-animate/angular-animate.js
http://eprocurement.corona.com.co/eprocurement2/scripts/app.js
http://eprocurement.corona.com.co/eprocurement2/scripts/services/lenguajeServ.js
http://eprocurement.corona.com.co/eprocurement2/scripts/directives/documentosTiposDir.js
http://eprocurement.corona.com.co/eprocurement2/scripts/controllers/prehomeCtrl.js
http://eprocurement.corona.com.co/eprocurement2/scripts/services/comParams.js
http://eprocurement.corona.com.co/eprocurement2/bower_components/angular-resource/angular-resource.js
http://eprocurement.corona.com.co/eprocurement2/bower_components/angular-route/angular-route.js
http://eprocurement.corona.com.co/eprocurement2/scripts/directives/comentariosDir.js
http://eprocurement.corona.com.co/eprocurement2/scripts/directives/upload.js
http://eprocurement.corona.com.co/eprocurement2/scripts/controllers/menuTopCtrl.js
http://eprocurement.corona.com.co/eprocurement2/scripts/services/portafolioSrv.js
http://eprocurement.corona.com.co/eprocurement2/scripts/controllers/lenguajeCtrl.js
http://eprocurement.corona.com.co/eprocurement2/scripts/directives/sociedadesTodasFilterDir.js
http://eprocurement.corona.com.co/eprocurement2/scripts/controllers/pagosCtrl.js
http://eprocurement.corona.com.co/eprocurement2/fonts/walkway/walkwayultrabold_regular_macroman/Walkway_UltraBold-webfont.ttf
http://eprocurement.corona.com.co/eprocurement2/scripts/directives/sociedadesFilterDir.js
http://eprocurement.corona.com.co/eprocurement2/scripts/controllers/portafolioCtrl.js
http://eprocurement.corona.com.co/eprocurement2/scripts/controllers/loginCtrl.js
http://eprocurement.corona.com.co/eprocurement2/scripts/controllers/forgotpasswCtrl.js
http://eprocurement.corona.com.co/eprocurement2/scripts/controllers/facturasCtrl.js
http://eprocurement.corona.com.co/eprocurement2/scripts/controllers/menuLatCtrl.js
http://corona.com.co/F
http://eprocurement.corona.com.co)
https://www.google.comh
http://eprocurement.corona.com.co/eprocurement2/#/login/
https://accounts.google.com
http://eprocurement.corona.com.co/eprocurement2/bower_components/angular-recaptcha/angular-recaptcha
https://sandbox.google.com/payments/v4/js/integrator.js
http://eprocurement.corona.com.co/eprocurement2/#/login
http://corona.com.co/zB
https://www.google.com/
https://apis.google.com
https://www.google.com/recaptcha/api2/
http://eprocurement.corona.com.co
https://clients2.google.com
http://eprocurement.corona.com.co/eprocurement2/#/login/2:
https://ogs.google.com
https://www.google.com/recaptcha/api2/bframe?hl=en&v=Eyd0Dt8h04h7r-D86uAD1JP-&k=6LfV28YUAAAAAEkBQPmRvpzmlv9FyzeW-77R00r1&cb=610xzjr4baok
http://eprocurement.corona.com.co/eprocurement2/bower_components/angular-sanitize/angular-sanitize.j
http://eprocurement.corona.com.co/eprocurement2/#/login//(
http://corona.com.co/w
http://eprocurement.corona.com.co/eprocurement2/#/login20eprocurement.corona.com.co/eprocurement2/#/
http://eprocurement.corona.com.co/eprocurement2/#/login/2
https://support.google.com/chromecast/troubleshooter/2995236
https://dns.google
https://payments.google.com/payments/v4/js/integrator.js
https://support.google.com/recaptcha
https://www.google.com;
https://developers.google.com/recaptcha/docs/faq#my-computer-or-network-may-be-sending-automated-que
http://corona.com.co/2
http://eprocurement.corona.com.co/eprocurement2/#/logineprocurement.corona.com.co/eprocurement2/#/lo
https://play.google.com/log?format=json&hasfast=true
http://corona.com.co/?0
http://corona.com.co/5
https://support.google.com/recaptcha/#6175971
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LfV28YUAAAAAEkBQPmRvpzmlv9FyzeW-77R00r1&co=aHR0
http://corona.com.co/y?o
https://www.google.com)
http://eprocurement.corona.com.co/eprocurement2/#/login/L
http://corona.com.co/#
http://eprocurement.corona.com.coh
http://corona.com.co/
http://eprocurement.corona.com.co/eprocurement2/bower_components/angular-bootstrap/ui-bootstrap-tpls
http://eprocurement.corona.com.co/eprocurement2/#/login/W
http://eprocurement.corona.com.co/eprocurement2/bower_components/angular-resource/angular-resource.j
https://feedback.googleusercontent.com
http://corona.com.co/DUt
https://www.google.com
https://www.google.com/log?format=json&hasfast=true

Dropped files

Name	File Type	Hashes
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies-journal	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\000003.log	data	#
Click to see the 97 hidden entries
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8520.615.0.5_1\_metadata\computed_hashes.json	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.6_0\_metadata\computed_hashes.json	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG.old (copy)	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\000003.log	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG.old (copy)	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\000003.log	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Tabs	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Session	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG.old. (copy)	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies	SQLite 3.x database, last written using SQLite version 3032001	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index (copy)	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\temp-index	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\f225801f932db86c_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\eb9c3dced5b8e090_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\ea531e760732cc34_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\e6315c838510da6f_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\e057b92807791b95_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\db76fdbd76ef7ab6_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\d41ce6fee838f23e_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\cc000dca877bd219_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History-journal	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferencesv (copy)	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferencesc (copy)	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferences. (copy)	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG.old (copy)	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Persistent State.\| (copy)	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Persistent State.. (copy)	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG.old (copy)	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\000003.log	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Last Tabs (copy)	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Last Session$ (copy)	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\c3660637b286bd55_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History	SQLite 3.x database, last written using SQLite version 3032001	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG.oldal (copy)	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\File System\Origins\MANIFEST-000001	PGP\011Secret Key -	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\File System\Origins\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\File System\Origins\CURRENT_" (copy)	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\File System\Origins\000003.log	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\File System\Origins\000001.dbtmp	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG.old (copy)	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG.oldl (copy)	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\3732fd04034f266a_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\357bfb670947fc90_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\349424b612e655ad_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\2e383a7b77a2d0e8_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\26f02519806f8a53_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\2231ff1cdada9a2f_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\0a59411ccc4b0ed8_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\09ba7bf61aa7cda7_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\07e369fc32ee1b10_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\020fa3a58dd7fd12_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG.old (copy)	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\41b187d3d01a4e16_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG	ASCII text	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\9faaf35a-760c-4d87-a219-8b83caa0e3e9.tmp	UTF-8 Unicode text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\9d75e571-ad05-4ba1-8f5e-d3a62e7b4e22.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\69cefd61-9871-427e-8009-c22ab7579e10.tmp	UTF-8 Unicode text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\3ce15c65-94df-47be-84bc-f8a2135820c8.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\28cc61c1-38d4-4376-a188-d873d69d705e.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\198e2f7a-0e58-49cf-b2d1-d9cef7f143ae.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\91051bca-c677-4747-a562-10e688502dcb.tmp	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\4527ce78-a868-4316-943d-f69f9cb50aa0.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\0ec02da6-850b-4a0d-bd02-ead688e4544c.tmp	ASCII text, with very long lines, with no line terminators	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\797a9caff384add5_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\bdf4a0be2e2e2ef8_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\bcaa69e9fbaa0624_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\bb8d2b09d1409be0_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\b52452182c4a02ca_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\b4a8bcbb93a4e4e5_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\b30fbbce0e39f2a4_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\afd52415c46f7d65_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\aac23e88c61bf610_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\aa32a02aa62c44a3_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\a2114d7688ef643a_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\a1a37a7ddd282fac_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\928772b7a97899b7_0	data	#
C:\Program Files\Google\Chrome\Application\Dictionaries\en-US-9-0.bdic	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\794ee617f6d43a80_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\76498fcd216e4695_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\6faa21ce20b02be0_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\6a3d4ada7613f246_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\62f529e6af85dda6_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\62ebf8d82348c6f3_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\5bc449652d715a20_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\50d8c327cc9b16c2_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\4bcaef12224d89ad_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\45c0301a22c48101_0	data	#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\43abd6a363bb0730_0	data	#

http://eprocurement.corona.com.co/eprocurement2/#/login/

Comments

Tags

Available tags:

Details

Joe Sandbox

IPs

Domains

URLs

Dropped files

http://eprocurement.corona.com.co/eprocurement2/#/login/ Options

Comments

Tags

Available tags:

Details

Joe Sandbox

IPs

Domains

URLs

Dropped files

Search started

http://eprocurement.corona.com.co/eprocurement2/#/login/