flash

https://onedrive.live.com/redir?resid=7066DF4C1D0AB014%21730&authkey=%21AHfvfhIqJz7URpI&page=View&wd=target%28Quick%20Notes.one%7Ce4864d19-c30a-4c4a-b033-f0bd266d599b%2FUntitled%20Page%7Ca546cc8d-4a78-493f-a62b-5e5827c1282e%2F%29

Status: finished
Submission Time: 15.09.2021 13:32:22
Malicious
Phishing
HTMLPhisher

Comments

Tags

Details

  • Analysis ID:
    483780
  • API (Web) ID:
    851352
  • Analysis Started:
    15.09.2021 13:34:38
  • Analysis Finished:
    15.09.2021 13:41:24
  • Technologies:
Full Report Management Report IOC Report Engine Info Verdict Score Reports

System: Windows 10 64 bit v1803 with Office Professional Plus 2016, Chrome 85, IE 11, Adobe Reader DC 19, Java 8 Update 211

malicious
76/100

malicious

malicious

IPs

IP Country Detection
40.90.136.179
United States
172.217.168.65
United States
52.10.65.30
United States
Click to see the 3 hidden entries
172.217.168.13
United States
172.217.168.78
United States
239.255.255.250
Reserved

Domains

Name IP Detection
axervices.com
52.10.65.30
accounts.google.com
172.217.168.13
i-db3p-cor003.api.p001.1drv.com
40.90.136.179
Click to see the 16 hidden entries
clients.l.google.com
172.217.168.78
googlehosted.l.googleusercontent.com
172.217.168.65
onenoteonlinesync.onenote.com
0.0.0.0
ka-f.fontawesome.com
0.0.0.0
messaging.office.com
0.0.0.0
c.live.com
0.0.0.0
ajax.aspnetcdn.com
0.0.0.0
skyapi.onedrive.live.com
0.0.0.0
clients2.googleusercontent.com
0.0.0.0
clients2.google.com
0.0.0.0
git-bucket-001.azurewebsites.net
0.0.0.0
onedrive.live.com
0.0.0.0
p.sfx.ms
0.0.0.0
amcdn.msftauth.net
0.0.0.0
spoprod-a.akamaihd.net
0.0.0.0
www.onenote.com
0.0.0.0

URLs

Name Detection
https://axervices.com/ytxol/
https://axervices.com/ytxol/0fflink.php#authoriz3?cli3nt_k3y=typce-x1c9r-irmlm1631705773c263cd4d5242
https://axervices.com/ytxol/0fflink.php#authoriz3?cli3nt_k3y=typce-x1c9r-irmlm1631705773c263cd4d524218156280b6d5504a1ae6c263cd4d524218156280b6d5504a1ae6c263cd4d524218156280b6d5504a1ae6c263cd4d524218156280b6d5504a1ae6c263cd4d524218156280b6d5504a1ae6jy0p3-21jmv-bktp7
Click to see the 82 hidden entries
https://axervices.com/ytxol/0fflink.php
https://axervices.com/ytxol/Sign
https://onedrive.live.com/View.aspx?resid=7066DF4C1D0AB014!730&wd=target(Quick%20Notes.one%7Ce4864d19-c30a-4c4a-b033-f0bd266d599b/Untitled%20Page%7Ca546cc8d-4a78-493f-a62b-5e5827c1282e/)&authkey=!AHfvfhIqJz7URpI
https://onedrive.live.com/handlers/clientstring.mvc?mkt=en-US&group=GroupFolders&v=19.710.0628.2003&
https://git-bucket-001.azurewebsites.net/jquery-3.1.1.min.js
https://spoprod-a.akamaihd.net/files/onedrive-website-release-prod_master_20210729.001/wac0-efa56458
https://git-bucket-001.azurewebsites.net/popper.min.js
https://axervices.com/jt
https://git-bucket-001.azurewebsites.net/favicon_a_eupayfgghk9sol6lg210.icoN
https://spoprod-a.akamaihd.net/files/onedrive-website-release-prod_master_20210729.001/wac_s_office-
https://sandbox.google.com/payments/v4/js/integrator.js
https://onenote.com/u
https://onedrive.live.com/
https://clients2.googleusercontent.com/crx/blobs/Acy1k0bLIjHsvnKaKN_oRpVaYYvFs25d7GKYF1WXrT6yizCMksBO0c_ggE0B6tx6HPRHe6q1GOEe3_NcIbSiGG8kXeLMUY0sAKVvC6R89zvKM13s5VqoAMZSmuUgjQL5vlygJuArQghXXE_qTL7NlQ/extension_8520_615_0_5.crx
https://www.google.com
https://live.com/4
https://www.onenote.com/officeaddins/learningtools/?et=
https://ajax.aspnetcdn.com/ajax/jQuery/jquery-1.7.2.min.js
https://git-bucket-001.azurewebsites.net/jquery.min.jsaD
https://onenote.com/d
https://git-bucket-001.azurewebsites.net/favicon_a_eupayfgghk9sol6lg210.ico
https://live.com/OiK
https://spoprod-a.akamaihd.net/files/onedrive-website-release-prod_master_20210729.001/wac1-cdc297b4
https://accounts.google.com
https://live.com/
https://live.com/=
https://ka-f.fontawesome.com/
https://onedrive.live.com/View.aspx?resid=7066DF4C1D0AB014
https://apis.google.com
https://git-bucket-001.azurewebsites.net/jquery.min.js
https://live.com/%
https://spoprod-a.akamaihd.net/files/onedrive-website-release-prod_master_20210729.001/jquery-1.7.2-
https://p.sfx.ms//storage/aria-2.5.0.min.js
https://onenote.com/h6
https://live.com/)
https://content.growth.office.net/mirrored/resources/programmablesurfaces/prod/officewebsurfaces.cor
https://live.com//
https://spoprod-a.akamaihd.net/files/onedrive-website-release-prod_master_20210729.001/wac2-bf8b3319
https://clients2.google.com
https://live.com/Wsx
https://dns.google
https://git-bucket-001.azurewebsites.net/jquery-3.2.1.slim.min.js
https://live.com/7HJ
https://ogs.google.com
https://live.com/W
https://onenote.com/O
https://onedrive.live.comh
https://support.google.com/chromecast/troubleshooter/2995236
https://onedrive.live.com
https://git-bucket-001.azurewebsites.net/
https://live.com/Tk
https://clients2.google.com/service/update2/crx?os=win&arch=x64&os_arch=x86_64&nacl_arch=x86-64&prod=chromecrx&prodchannel=&prodversion=85.0.4183.121&lang=en-US&acceptformat=crx3&x=id%3Dnmmhkkegccagdldgiimedpiccmgmieda%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1&x=id%3Dpkedcjkdefgpdelpbcmbmeomcjbeemfm%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1
https://accounts.google.com/ListAccounts?gpsia=1&source=ChromiumBrowser&json=standard
https://payments.google.com/payments/v4/js/integrator.js
https://amcdn.msftauth.net/me?partner=OneNoteOnline&version=10.21153.1&market=EN-US&wrapperId=suites
https://www.google.com;
https://onenote.com/I
https://hangouts.google.com/
https://a.nel.cloudflare.com/report/v3?s=Gnrs4E%2BU5Gu0P2a5%2B70C%2BGxyKcU9PyU2l%2BkTne88OKwSVvQGG63
https://live.com/J
https://www.onenote.com
https://www.onenote.com/
https://skyapi.onedrive.live.com/api/proxy?v=3
https://live.com/w
https://git-bucket-001.azurewebsites.net/5051251.js
https://onenote.com/
https://live.com/y
https://axervices.com/e
https://support.google.com/chromecast/answer/2998456
https://onedrive.live.com/redir?resid=7066DF4C1D0AB014%21730&authkey=%21AHfvfhIqJz7URpI&page=View&wd=target%28Quick%20Notes.one%7Ce4864d19-c30a-4c4a-b033-f0bd266d599b%2FUntitled%20Page%7Ca546cc8d-4a78-493f-a62b-5e5827c1282e%2F%29
https://live.com/ifI
https://axervices.com/
https://git-bucket-001.azurewebsites.net/jquery-3.3.1.js
https://clients2.googleusercontent.com
https://onedrive.live.com/handlers/clientstring.mvc?mkt=en-US&group=Office&v=19.710.0628.2003&useReq
https://spoprod-a.akamaihd.net
https://git-bucket-001.azurewebsites.net/bootstrap.min.js
https://live.com/k
https://onedrive.live.com/redir?resid=7066DF4C1D0AB014%21730&authkey=%21AHfvfhIqJz7URpI&page=View&wd
https://www.google.com/
https://feedback.googleusercontent.com
https://clients2.google.com/service/update2/crx

Dropped files

Name File Type Hashes Detection
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\1d5a541437e1e052_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\20e07459e7e2ecba_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\2310e2ec0ef84354_0
data
#
Click to see the 97 hidden entries
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\253ada26cb26b6aa_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\281a196a87838cee_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\2df19ed1090687b9_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\2f093249a8f8bca4_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\3341dc8ccaa38e24_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\37f28228f077dd16_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\387591b72ede2a53_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\3da036a9ad3ac2b3_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\49e154754a1b515c_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\511f06892f5a721b_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\524efa2be89cbfde_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\5b7aec4e1f50e12f_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\5bde89341a061de0_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\5eb56a63fca89ad6_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\6307df8c1ac7f419_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\64ad52f359b9abdc_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\6671f4ecda0f6e11_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\6852eb091f2be39b_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\74dda42491470d94_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\7c2fb13884395e20_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\7cd4eb7d184ef6b5_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\7e3b21fda9937990_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\810e53cf61aed9ba_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\82587ac11889a0d9_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\859faf000b5b27df_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\88d4628693712bea_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\8a281a193daaab2f_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\8b5a510c5c1f1192_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\8c527f7c99a46d20_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\8e1634acc9edb463_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\8e8c910519af4dd5_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\90b75c1a333fbe5d_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\93a3fa42e61c139b_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\9b751b01290223f0_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\9f4474a9eac49cfc_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\a44c0a7d4561d38e_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\a496b5ea39da3bad_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\a4e4f981b679f738_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\a5534787ec2d07e5_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\a63ea7b972ca7cfa_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\a7116b5a814c13d9_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\a99544b9320222ee_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\aa4a263f93dfaac5_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\ace05e7cac6c477f_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\af47f16bd7610af9_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\af5c3b38004ce8f5_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\b4f273c849fd66a8_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\b6d69d74b43ab990_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\b8d6903289bdf5e5_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\b9a0c0163bb1d181_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\bb7b434ae64a8b31_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\c3aaa4689d2da28d_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\e2fa7340d4950923_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\e4f97bb7584c4d55_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\e513ed8e4730e1c9_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\e5fee07f85dd431e_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\e78b87c38b36287e_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\e96383cd4fdf8308_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\e99eb54082532864_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\ee2f7dc01c580763_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\f7dd50aa7b62010a_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\fa1d01002fa990ce_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\fd818ce584f1de3a_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\temp-index
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index. (copy)
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies
SQLite 3.x database, last written using SQLite version 3032001
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies-journal
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Session
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Tabs
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\000003.log
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG
ASCII text
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG.old. (copy)
ASCII text
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\000003.log
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG
ASCII text
#
C:\Program Files\Google\Chrome\Application\Dictionaries\en-US-9-0.bdic
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\05051875-1ace-443f-a0af-a60e0a7bbe5a.tmp
ASCII text, with very long lines, with no line terminators
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\4d0c01db-e51a-4b69-8816-77003dd6e1f0.tmp
ASCII text, with very long lines, with no line terminators
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\8951c169-f7b2-47bf-b8e9-ca42c0030403.tmp
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\90638c1b-b32d-4316-a550-dcc847eb096b.tmp
SysEx File -
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\0248a230-586c-41e4-b51b-148a6651fded.tmp
very short file (no magic)
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\031c8e58-69c7-457d-adf8-5dd4bd7cf123.tmp
ASCII text, with very long lines, with no line terminators
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\03b6d0a4-71c8-48d7-9511-4a96725ed566.tmp
ASCII text, with very long lines, with no line terminators
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\093c6b48-f04a-4390-bec0-7c1580c46d0f.tmp
ASCII text, with very long lines, with no line terminators
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\33c92c73-f10a-495d-8abd-603994e7758e.tmp
ASCII text, with very long lines, with no line terminators
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\3aa12950-fdf1-4272-aac0-edb8e655bc65.tmp
UTF-8 Unicode text, with very long lines, with no line terminators
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\3b3269c6-5eb4-462e-87be-0412c09ed954.tmp
ASCII text, with very long lines, with no line terminators
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\56da1bd8-99de-4dcb-81ad-b09dc41680a9.tmp
ASCII text, with very long lines, with no line terminators
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG
ASCII text
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG.oldCK (copy)
ASCII text
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG
ASCII text
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG.oldG (copy)
ASCII text
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\02c7e165ebc7c9de_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\047447b274c22c54_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\089da834c75847e1_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\1bc1b686e63f82ff_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\1bcd0439134a3715_0
data
#