https://cl.s13.exct.net/?qs=3458350539d8dd387ca215f16b349bd246585ad73f6a2ab0b580ef6d4267d76b2f4bf70b0764f2e588f939c14b581cdf

Status: finished

Submission Time: 2023-12-12 00:05:27 +01:00

Malicious

Comments

Details

Analysis ID:
1359182
API (Web) ID:
1359182
Analysis Started:

2023-12-12 00:05:28 +01:00
Analysis Finished:

2023-12-12 00:09:50 +01:00
Technologies:

Engines
IOCs

Joe Sandbox

Engine	Download Report	Detection	Info
	Full Report Management Report IOC Report	malicious Score: 48	System: Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 134, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01

Third Party Analysis Engines

malicious

IPs

IP	Country	Detection
3.225.143.122	United States
172.217.3.77	United States
13.35.116.97	United States
Click to see the 21 hidden entries
54.156.16.64	United States
65.8.178.105	United States
13.32.87.66	United States
239.255.255.250	Reserved
99.83.141.71	United States
172.64.155.119	United States
13.109.190.111	United States
75.2.114.51	United States
13.110.32.51	United States
192.178.50.36	United States
192.178.50.46	United States
13.110.58.111	United States
13.110.34.51	United States
68.232.203.119	United States
13.35.116.44	United States
13.109.180.2	United States
96.43.154.9	United States
13.32.87.37	United States
151.101.64.114	United States
142.250.189.142	United States
192.0.66.59	United States

Domains

Name	IP	Detection
a10681260716.cdn.optimizely.com	0.0.0.0
cdn.krxd.net	0.0.0.0
www.marketingcloud.com	0.0.0.0
Click to see the 35 hidden entries
wp.salesforce.com	0.0.0.0
d.la2-c1-ia4.salesforceliveagent.com	0.0.0.0
clients2.google.com	0.0.0.0
www.salesforce.com	0.0.0.0
dpm.demdex.net	0.0.0.0
privacy-policy.truste.com	0.0.0.0
clients1.google.com	0.0.0.0
org62.my.salesforce.com	0.0.0.0
173bf10d.akstat.io	0.0.0.0
wp.sfdcdigital.com	0.0.0.0
www.exacttarget.com	0.0.0.0
service.force.com	0.0.0.0
cdn.optimizely.com	0.0.0.0
a.sfdcstatic.com	0.0.0.0
m2azrvax3zg5uzlxsxnq-f-ca513b392-clientnsv4-s.akamaihd.net	0.0.0.0
c.go-mpulse.net	0.0.0.0
salesforce-com.go-vip.net	192.0.66.59
accounts.google.com	172.217.3.77
cdn.evgnet.com	151.101.64.114
d2pj9rkatqbt38.cloudfront.net	13.32.87.37
dcs-public-edge-va6-158015560.us-east-1.elb.amazonaws.com	54.156.16.64
cl.s13.exct.net	96.43.154.9
static.cloud.coveo.com	65.8.178.105
la2-c1-ia4.ia4.r.salesforceliveagent.com	13.109.190.111
api.company-target.com	13.35.116.44
www.google.com	192.178.50.36
www.global.exacttarget.com	68.232.203.119
clients.l.google.com	192.178.50.46
location.l.force.com	13.110.32.51
salesforce.us-1.evergage.com	3.225.143.122
geolocation.onetrust.com	172.64.155.119
ia4-canary.edge2.salesforce.com	13.109.180.2
analytics.cloud.coveo.com	99.83.141.71
c1.sfdcstatic.com	0.0.0.0
s.go-mpulse.net	0.0.0.0

URLs

Name	Detection
https://www.salesforce.com/dreamforce/?d=70130000000i808
https://d.la2-c1-ia4.salesforceliveagent.com/chat/rest/Visitor/Settings.jsonp?Settings.prefix=Visitor&Settings.buttonIds=[5733y000000MDKV]&Settings.updateBreadcrumb=1&callback=embedded_svc.liveAgentAPI.connection.handlePing&deployment_id=57230000000DmsR&org_id=00D000000000062&version=48
http://www.youronlinechoices.eu/
Click to see the 97 hidden entries
https://cl.s13.exct.net/?qs=3458350539d8dd387ca215f16b349bd246585ad73f6a2ab0b580ef6d4267d76b2f4bf70b0764f2e588f939c14b581cdf
https://wp.salesforce.com/en-us/wp-content/uploads/sites/4/2022/10/nav-company-promo-bottom-desktop.jpg?w=420
https://www.salesforce.com/fr/
https://trust.salesforce.com/en/trust-and-compliance-documentation/
https://wp.sfdcdigital.com/en-us/wp-json
https://wp.salesforce.com/en-us/wp-content/uploads/sites/4/2022/10/nav-salesforce-plus-promo-sky-desktop.jpg?w=420
https://cloud.mail.salesforce.com/unsubscribe
http://lodash.com/license
https://privacy.truste.com/privacy-seal/validation?rid=06c32bdf-edf6-4937-b29d-bcf8db992eb3
https://www.salesforce.com/etc/clientlibs/sfdc-www/clientlibs_www_livechat/img/call-icon.svg);
https://www.salesforce.com/company/contact-us/?d=cta-glob-footer-11
https://www.salesforce.com/company/legal/
https://a.sfdcstatic.com/shared/chat/agent3.png
https://d.la2-c1-ia4.salesforceliveagent.com/chat/rest/EmbeddedService/EmbeddedServiceConfig.jsonp?Settings.prefix=EmbeddedService&org_id=00D000000000062&EmbeddedServiceConfig.configName=Sales&callback=embedded_svc.liveAgentAPI.handleChatSettings&version=48&EmbeddedServiceConfig.language=en-US
https://www.salesforce.com/company/feedback/?d=cta-glob-footer-9
https://developer.mozilla.org/en-US/docs/Web/API/CustomEvent/CustomEvent
https://a.sfdcstatic.com/digital/one-trust/core/stable/scripttemplates/otSDKStub.js
https://www.salesforce.com/form/contact/contact-privacy.jsp
https://c1.sfdcstatic.com/content/dam/web/en_us/www/documents/white-papers/marketing-performance-opt
https://c.la1-c1cs-ph2.salesforceliveagent.com/content
https://hosted-scratch.herokuapp.com/trial
https://googleads.g.doubleclick.net/
https://wp.salesforce.com/en-us/wp-content/uploads/sites/4/2022/10/nav-company-promo-sky-desktop.jpg?w=420
https://wp.salesforce.com/en-us/wp-content/uploads/sites/4/2022/10/nav-industries-promo-bottom-desktop.jpg?w=420
https://wp.salesforce.com/en-us/wp-content/uploads/sites/4/2022/10/nav-resources-promo-bottom-desktop.jpg?w=420
http://jquery.com/
https://www.salesforce.com/cn/
https://wp.salesforce.com/en-us/wp-content/uploads/sites/4/2022/10/nav-products-promo-sky-desktop.jpg?w=420
https://investor.salesforce.com/overview/default.aspx?d=cta-glob-footer-7
https://clients2.google.com/service/update2/crx?os=win&arch=x64&os_arch=x86_64&nacl_arch=x86-64&prod=chromecrx&prodchannel=&prodversion=117.0.5938.132&lang=en-US&acceptformat=crx3,puff&x=id%3Dnmmhkkegccagdldgiimedpiccmgmieda%26v%3D0.0.0.0%26installedby%3Dother%26uc%26brand%3DONGR%26ping%3Dr%253D-1%2526e%253D1
https://a.sfdcstatic.com/shared/chat/agent14.png
https://extensiongallery.tableau.com
https://cdn.krxd.net
https://wp.salesforce.com/en-us/wp-content/uploads/sites/4/2022/10/nav-products-promo-bottom-desktop.jpg?w=420
https://www.salesforce.com/etc/designs/sfdc-www/en_us/favicon.ico
https://www.exacttarget.com/privacy-policy?linkid=View+Privacy+Policy
https://td.doubleclick.net
https://www.tableau.com/product-usage-data
https://service.force.com/embeddedservice/5.0/frame/filetransfer.esw.min.js
https://a.sfdcstatic.com/shared/chat/agent8.png
https://wp.salesforce.com/en-us/wp-content/uploads/sites/4/2022/10/nav-industries-promo-sky-desktop.jpg?w=420
https://www.salesforce.com/es/
https://instagram.com/salesforce/
https://a.sfdcstatic.com/digital/
https://wp.salesforce.com/en-us/wp-content/uploads/sites/4/2022/06/nav-customers-l3-default-top-desktop.jpg?w=420
https://org62.my.salesforce.com
https://accounts.google.com/ListAccounts?gpsia=1&source=ChromiumBrowser&json=standard
https://service.force.com/embeddedservice/5.0/esw.min.css
https://www.aboutads.info/choices/
https://salesforce.us-1.evergage.com
https://a.sfdcstatic.com/df15_sflive-segments-template.json
https://www.salesforce.com/de/
https://d.la2-c1-ia4.salesforceliveagent.com/chat
https://www.salesforce.com/crm/?d=70130000000i80D
https://a.sfdcstatic.com/shared/chat/chat-agent-image-2x.png
https://privacy.truste.com/privacy-seal/validation?rid=b5e42bbd-4d3e-4631-a14e-c04a441f1a4a
http://www.opensource.org/licenses/mit-license.php
https://www.salesforce.com/eu/
https://www.linkedin.com/company/salesforce/?d=cta-glob-footer-3
https://px.ads.linkedin.com/collect?
https://cdn.evgnet.com/beacon/salesforce/sf_shared_prod/scripts/evergage.min.js
about:blank
https://privacy-policy.truste.com/privacy-seal/seal?rid=b5e42bbd-4d3e-4631-a14e-c04a441f1a4a
http://dbushell.com/
https://d.la2-c1-ia4.salesforceliveagent.com/chat/rest/Visitor/Availability.jsonp?sid=undefined&r=185&Availability.prefix=Visitor&Availability.ids=[5733y000000MDKV]&callback=embedded_svc.liveAgentAPI.connection.handlePing&deployment_id=57230000000DmsR&org_id=00D000000000062&version=48
https://a.sfdcstatic.com/shared/chat/agent4.png
https://oag.ca.gov/privacy/ccpa
https://www.salesforce.com/ca/
https://appexchange.salesforce.com/
https://service.force.com/embeddedservice/5.0/utils/common.min.js
https://s2.go-mpulse.net/boomerang/
https://www.salesforce.com/content/dam/web/en_us/www/documents/legal/compliance%20documents/protecti
https://podcasts.salesforce.com
https://service.force.com/embeddedservice/5.0/frame/chasitor.esw.min.js
https://www.salesforce.com
http://github.com/garycourt/murmurhash-js
http://login.salesforce.com/lightning/n/standard-OnlineSalesHome%20
https://a.sfdcstatic.com/shared/chat/agent7.png
https://wp.salesforce.com/en-us/wp-content/uploads/sites/4/2022/06/nav-salesforce-plus-promo-bottom-desktop.jpg?w=420
https://developer.salesforce.com/docs/atlas.en-us.snapins_web_dev.meta/snapins_web_dev/snapins_web_c
https://www.salesforce.com/jp/
https://investor.salesforce.com/financials/default.aspx#sec
https://www.salesforce.com/in/
https://a.sfdcstatic.com/shared/chat/agent15.png
https://www.salesforce.com/kr/
https://login.salesforce.com
https://geolocation.onetrust.com
https://slack.com/intl/en-gb/trust/compliance/cookie-policy
http://underscorejs.org/LICENSE
https://www.salesforce.com/fr-ca/
https://schema.org
https://twitter.com/salesforce/?d=cta-glob-footer-2
https://trust.salesforce.com/en/
https://static.cloud.coveo.com/coveo.analytics.js/2/coveoua.js
https://www.salesforce.com/form/other/privacy-request/
https://clients1.google.com/tools/pso/ping?as=chrome&brand=ONGR&pid=&hl=en&events=C1I,C2I,C7I,C1S,C7S&rep=2&rlz=C1:,C2:,C7:&id=00000000000000000000000000000000000000001284F62F19
https://www.youtube.com/Salesforce/?d=cta-glob-footer-4

Dropped files

No malicious files found. See full and IOC report for all dropped files.

https://cl.s13.exct.net/?qs=3458350539d8dd387ca215f16b349bd246585ad73f6a2ab0b580ef6d4267d76b2f4bf70b0764f2e588f939c14b581cdf

Comments

Tags

Available tags:

Details

Joe Sandbox

Third Party Analysis Engines

IPs

Domains

URLs

Dropped files

https://cl.s13.exct.net/?qs=3458350539d8dd387ca215f16b349bd246585ad73f6a2ab0b580ef6d4267d76b2f4bf70b0764f2e588f939c14b581cdf Options

Comments

Tags

Available tags:

Details

Joe Sandbox

Third Party Analysis Engines

IPs

Domains

URLs

Dropped files

Search started

https://cl.s13.exct.net/?qs=3458350539d8dd387ca215f16b349bd246585ad73f6a2ab0b580ef6d4267d76b2f4bf70b0764f2e588f939c14b581cdf