top title background image
flash

ATT78678~Covid-19.HTM

Status: finished
Submission Time: 2021-09-20 19:39:30 +02:00
Malicious

Comments

Tags

Details

  • Analysis ID:
    486738
  • API (Web) ID:
    854312
  • Analysis Started:
    2021-09-20 19:41:13 +02:00
  • Analysis Finished:
    2021-09-20 19:49:53 +02:00
  • MD5:
    ed5ebacca5f138fe79be8ae5b09741a8
  • SHA1:
    b8a744687b2715f80072a889a9b0922eb140fde1
  • SHA256:
    a121bc13a2f483960b1bf48551575396aed5a0c0b1528ca1ad7fb02c1566eddc
  • Technologies:

Joe Sandbox

Engine Download Report Detection Info
malicious
Score: 48
System: Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01

Third Party Analysis Engines

malicious

IPs

IP Country Detection
142.250.186.78
United States
204.93.193.76
United States
142.250.180.237
United States
Click to see the 6 hidden entries
142.250.201.196
United States
239.255.255.250
Reserved
142.250.185.163
United States
142.250.180.200
United States
142.250.186.110
United States
104.16.19.94
United States

Domains

Name IP Detection
gstaticadssl.l.google.com
142.250.185.163
accounts.google.com
142.250.180.237
www-google-analytics.l.google.com
142.250.186.110
Click to see the 7 hidden entries
medisolhealthcare.com
204.93.193.76
cdnjs.cloudflare.com
104.16.19.94
www-googletagmanager.l.google.com
142.250.180.200
www.google.com
142.250.201.196
clients.l.google.com
142.250.186.78
clients2.google.com
0.0.0.0
app.interakt.ai
0.0.0.0

URLs

Name Detection
https://medisolhealthcare.com/00
https://medisolhealthcare.com/tamu.edu/index.html
https://medisolhealthcare.com/00/
Click to see the 42 hidden entries
https://www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d3945.9165706755552!2d76.92436481460193!3d8.507481599281519!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x3b05bbfc5555555b%3A0x951cc4a2b9385586!2sMedisol+Healthcare!5e0!3m2!1sen!2sin!4v1543508867808
https://medisolhealthcare.com/tamu.edu/assets/images/medisol-logo-n-90x100.jpg
https://a.nel.cloudflare.com/report/v3?s=Kkc0bVlDPnCF5dPVRayrcfJFRWz4E6np4DijPxgaOjyx7TFpRReJNlcNstM
https://accounts.google.com
https://app.interakt.ai/kiwi-sdk/kiwi-sdk-17-prod-min.js?v=1632192138079
https://medisolhealthcare.com/tamu.edu/assets/smooth-scroll/smooth-scroll.js
https://medisolhealthcare.com/tamu.edu/files/Services_0001.png
https://medisolhealthcare.com/tamu.edu/assets/images/banner-1-2000x750.jpg
https://medisolhealthcare.com/tamu.edu/files/Services_0003.png
https://medisolhealthcare.com/tamu.edu/assets/socicon/css/styles.css
https://medisolhealthcare.com/tamu.edu/assets/animate.css/animate.min.css
https://medisolhealthcare.com/tamu.edu/assets/bootstrap/js/bootstrap.min.js
https://medisolhealthcare.com/tamu.edu/assets/mobirise/css/mbr-additional.css
https://clients2.googleusercontent.com
https://medisolhealthcare.com/tamu.edu/files/Medisol.jpg
https://apis.google.com
https://medisolhealthcare.com/tamu.edu/assets/viewport-checker/jquery.viewportchecker.js
https://medisolhealthcare.com/tamu.edu/assets/images/health-banner-1400x702.jpg
https://medisolhealthcare.com
https://clients2.google.com
https://dns.google
https://csp.withgoogle.com/csp/report-to/apps-themes
https://ogs.google.com
https://medisolhealthcare.com/tamu.edu/assets/tether/tether.min.css
https://cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0
https://medisolhealthcare.com/tamu.edu/assets/bootstrap-carousel-swipe/bootstrap-carousel-swipe.js
https://clients2.google.com/service/update2/crx?os=win&arch=x64&os_arch=x86_64&nacl_arch=x86-64&prod=chromecrx&prodchannel=&prodversion=85.0.4183.121&lang=en-US&acceptformat=crx3&x=id%3Dnmmhkkegccagdldgiimedpiccmgmieda%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1&x=id%3Dpkedcjkdefgpdelpbcmbmeomcjbeemfm%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1
https://medisolhealthcare.com/tamu.edu/assets/theme/css/style.css
https://accounts.google.com/ListAccounts?gpsia=1&source=ChromiumBrowser&json=standard
https://cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
https://medisolhealthcare.com/tamu.edu/assets/web/assets/jquery/jquery.min.js
https://medisolhealthcare.com/tamu.edu/assets/dropdown/js/script.min.js
https://medisolhealthcare.com/tamu.edu/assets/touch-swipe/jquery.touch-swipe.min.js
https://medisolhealthcare.com/tamu.edu/assets/theme/js/script.js
https://medisolhealthcare.com/tamu.edu/assets/bootstrap/css/bootstrap.min.css
https://medisolhealthcare.com/tamu.edu/assets/dropdown/css/style.css
https://medisolhealthcare.com/tamu.edu/assets/tether/tether.min.js
https://www.google.com
https://medisolhealthcare.com/tamu.edu/assets/images/banner-4-2000x750.jpg
https://medisolhealthcare.com/tamu.edu/assets/images/banner-2-2000x750.jpg
https://medisolhealthcare.com/tamu.edu/assets/images/banner-3-2000x750.jpg
https://medisolhealthcare.com/

Dropped files

Name File Type Hashes Detection
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences1 (copy)
UTF-8 Unicode text, with very long lines, with no line terminators
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Network Persistent State.. (copy)
ASCII text, with very long lines, with no line terminators
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Local Storage\leveldb\LOG.old. (copy)
ASCII text
#
Click to see the 84 hidden entries
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Local Storage\leveldb\LOG
ASCII text
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\GPUCache\data_1
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\2d2e9e75-5b41-49eb-843d-3551b8ec59e6.tmp
ASCII text, with very long lines, with no line terminators
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG.old (copy)
ASCII text
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG
ASCII text
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG.old (copy)
ASCII text
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG
ASCII text
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\000003.log
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Platform Notifications\LOG
ASCII text
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences (copy)
UTF-8 Unicode text, with very long lines, with no line terminators
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Reporting and NEL-journal
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Reporting and NEL
SQLite 3.x database, last written using SQLite version 3032001
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferencest (copy)
ASCII text, with very long lines, with no line terminators
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\PreferencesTM (copy)
ASCII text, with very long lines, with no line terminators
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferences.. (copy)
ASCII text, with very long lines, with no line terminators
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG.old (copy)
ASCII text
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG
ASCII text
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Persistent State.N (copy)
ASCII text, with very long lines, with no line terminators
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Persistent State (copy)
ASCII text, with very long lines, with no line terminators
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\CURRENT (copy)
ASCII text
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\d001ec69-44fc-4d8f-8ddd-73c57d9a32e3.tmp
ASCII text, with very long lines, with no line terminators
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local State (copy)
ASCII text, with very long lines, with no line terminators
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Version
ASCII text, with no line terminators
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Browser
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG.old (copy)
ASCII text
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG
ASCII text
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\faf789f3-c2b1-4218-a8b4-529ed761717a.tmp
ASCII text, with very long lines, with no line terminators
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\MANIFEST-000004
MPEG-4 LOAS
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG.oldaa (copy)
ASCII text
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG
ASCII text
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG.old (copy)
ASCII text
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\000004.dbtmp
ASCII text
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\bec917c6-5d49-45d5-b474-0c576ad57e25.tmp
UTF-8 Unicode text, with very long lines, with no line terminators
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Visited Links
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG.old. (copy)
ASCII text
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG
ASCII text
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000003.log
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG.old (copy)
ASCII text
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG
ASCII text
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\000003.log
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Platform Notifications\LOG.oldw" (copy)
ASCII text
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG
ASCII text
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies-journal
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies
SQLite 3.x database, last written using SQLite version 3032001
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-indexHo (copy)
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\temp-index
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\e68aa0d72d457781_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\5313946ae3e46240_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\008dc773b56dfd0d_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG.old (copy)
ASCII text
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG
ASCII text
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG.old (copy)
ASCII text
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Session
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\93fbe77e-5319-44f9-bcae-4c6564f3d892.tmp
ASCII text, with very long lines, with no line terminators
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\50241162-5e97-435f-8b0f-d9eacf39c72c.tmp
UTF-8 Unicode text, with very long lines, with no line terminators
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\272a7d03-4c35-4eab-8962-bae1443cd0f4.tmp
ASCII text, with very long lines, with no line terminators
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\1bab34aa-98b6-436e-b760-27246e5ee0c1.tmp
ASCII text, with very long lines, with no line terminators
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\193da7c6-f409-4a4d-aad9-ba23fbf1f1a1.tmp
very short file (no magic)
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\1761d2c9-60a0-4a8c-aa7b-a22c1a89b675.tmp
ASCII text, with very long lines, with no line terminators
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\73fa1c65-86aa-4351-8153-0c65dd5f6503.tmp
ASCII text, with very long lines, with no line terminators
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\39db147a-87c8-441d-95df-bf11781c5633.tmp
ASCII text, with very long lines, with no line terminators
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\1afc58c0-7b5a-4efa-bb5a-a7d9c835788d.tmp
ASCII text, with very long lines, with no line terminators
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG.oldY. (copy)
ASCII text
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG
ASCII text
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Last Tabsld (copy)
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Last Session.! (copy)
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History-journal
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History
SQLite 3.x database, last written using SQLite version 3032001
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG.oldg (copy)
ASCII text
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG
ASCII text
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG.old (copy)
ASCII text
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG
ASCII text
#
C:\Program Files\Google\Chrome\Application\Dictionaries\en-US-9-0.bdic
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG
ASCII text
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\000003.log
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG.old (copy)
ASCII text
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG
ASCII text
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\000003.log
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG.old (copy)
ASCII text
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG
ASCII text
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\000003.log
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Tabs
data
#