top title background image
flash

https://cl.s13.exct.net/?qs=3458350539d8dd387ca215f16b349bd246585ad73f6a2ab0b580ef6d4267d76b2f4bf70b0764f2e588f939c14b581cdf

Status: finished
Submission Time: 2023-12-12 00:05:27 +01:00
Malicious

Comments

Tags

Details

  • Analysis ID:
    1359182
  • API (Web) ID:
    1359182
  • Analysis Started:
    2023-12-12 00:05:28 +01:00
  • Analysis Finished:
    2023-12-12 00:09:50 +01:00
  • Technologies:

Joe Sandbox

Engine Download Report Detection Info
malicious
Score: 48
System: Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 134, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01

Third Party Analysis Engines

malicious

IPs

IP Country Detection
3.225.143.122
United States
172.217.3.77
United States
13.35.116.97
United States
Click to see the 21 hidden entries
54.156.16.64
United States
65.8.178.105
United States
13.32.87.66
United States
239.255.255.250
Reserved
99.83.141.71
United States
172.64.155.119
United States
13.109.190.111
United States
75.2.114.51
United States
13.110.32.51
United States
192.178.50.36
United States
192.178.50.46
United States
13.110.58.111
United States
13.110.34.51
United States
68.232.203.119
United States
13.35.116.44
United States
13.109.180.2
United States
96.43.154.9
United States
13.32.87.37
United States
151.101.64.114
United States
142.250.189.142
United States
192.0.66.59
United States

Domains

Name IP Detection
a10681260716.cdn.optimizely.com
0.0.0.0
cdn.krxd.net
0.0.0.0
www.marketingcloud.com
0.0.0.0
Click to see the 35 hidden entries
wp.salesforce.com
0.0.0.0
d.la2-c1-ia4.salesforceliveagent.com
0.0.0.0
clients2.google.com
0.0.0.0
www.salesforce.com
0.0.0.0
dpm.demdex.net
0.0.0.0
privacy-policy.truste.com
0.0.0.0
clients1.google.com
0.0.0.0
org62.my.salesforce.com
0.0.0.0
173bf10d.akstat.io
0.0.0.0
wp.sfdcdigital.com
0.0.0.0
www.exacttarget.com
0.0.0.0
service.force.com
0.0.0.0
cdn.optimizely.com
0.0.0.0
a.sfdcstatic.com
0.0.0.0
m2azrvax3zg5uzlxsxnq-f-ca513b392-clientnsv4-s.akamaihd.net
0.0.0.0
c.go-mpulse.net
0.0.0.0
salesforce-com.go-vip.net
192.0.66.59
accounts.google.com
172.217.3.77
cdn.evgnet.com
151.101.64.114
d2pj9rkatqbt38.cloudfront.net
13.32.87.37
dcs-public-edge-va6-158015560.us-east-1.elb.amazonaws.com
54.156.16.64
cl.s13.exct.net
96.43.154.9
static.cloud.coveo.com
65.8.178.105
la2-c1-ia4.ia4.r.salesforceliveagent.com
13.109.190.111
api.company-target.com
13.35.116.44
www.google.com
192.178.50.36
www.global.exacttarget.com
68.232.203.119
clients.l.google.com
192.178.50.46
location.l.force.com
13.110.32.51
salesforce.us-1.evergage.com
3.225.143.122
geolocation.onetrust.com
172.64.155.119
ia4-canary.edge2.salesforce.com
13.109.180.2
analytics.cloud.coveo.com
99.83.141.71
c1.sfdcstatic.com
0.0.0.0
s.go-mpulse.net
0.0.0.0

URLs

Name Detection
https://www.salesforce.com/dreamforce/?d=70130000000i808
https://d.la2-c1-ia4.salesforceliveagent.com/chat/rest/Visitor/Settings.jsonp?Settings.prefix=Visitor&Settings.buttonIds=[5733y000000MDKV]&Settings.updateBreadcrumb=1&callback=embedded_svc.liveAgentAPI.connection.handlePing&deployment_id=57230000000DmsR&org_id=00D000000000062&version=48
http://www.youronlinechoices.eu/
Click to see the 97 hidden entries
https://cl.s13.exct.net/?qs=3458350539d8dd387ca215f16b349bd246585ad73f6a2ab0b580ef6d4267d76b2f4bf70b0764f2e588f939c14b581cdf
https://wp.salesforce.com/en-us/wp-content/uploads/sites/4/2022/10/nav-company-promo-bottom-desktop.jpg?w=420
https://www.salesforce.com/fr/
https://trust.salesforce.com/en/trust-and-compliance-documentation/
https://wp.sfdcdigital.com/en-us/wp-json
https://wp.salesforce.com/en-us/wp-content/uploads/sites/4/2022/10/nav-salesforce-plus-promo-sky-desktop.jpg?w=420
https://cloud.mail.salesforce.com/unsubscribe
http://lodash.com/license
https://privacy.truste.com/privacy-seal/validation?rid=06c32bdf-edf6-4937-b29d-bcf8db992eb3
https://www.salesforce.com/etc/clientlibs/sfdc-www/clientlibs_www_livechat/img/call-icon.svg);
https://www.salesforce.com/company/contact-us/?d=cta-glob-footer-11
https://www.salesforce.com/company/legal/
https://a.sfdcstatic.com/shared/chat/agent3.png
https://d.la2-c1-ia4.salesforceliveagent.com/chat/rest/EmbeddedService/EmbeddedServiceConfig.jsonp?Settings.prefix=EmbeddedService&org_id=00D000000000062&EmbeddedServiceConfig.configName=Sales&callback=embedded_svc.liveAgentAPI.handleChatSettings&version=48&EmbeddedServiceConfig.language=en-US
https://www.salesforce.com/company/feedback/?d=cta-glob-footer-9
https://developer.mozilla.org/en-US/docs/Web/API/CustomEvent/CustomEvent
https://a.sfdcstatic.com/digital/one-trust/core/stable/scripttemplates/otSDKStub.js
https://www.salesforce.com/form/contact/contact-privacy.jsp
https://c1.sfdcstatic.com/content/dam/web/en_us/www/documents/white-papers/marketing-performance-opt
https://c.la1-c1cs-ph2.salesforceliveagent.com/content
https://hosted-scratch.herokuapp.com/trial
https://googleads.g.doubleclick.net/
https://wp.salesforce.com/en-us/wp-content/uploads/sites/4/2022/10/nav-company-promo-sky-desktop.jpg?w=420
https://wp.salesforce.com/en-us/wp-content/uploads/sites/4/2022/10/nav-industries-promo-bottom-desktop.jpg?w=420
https://wp.salesforce.com/en-us/wp-content/uploads/sites/4/2022/10/nav-resources-promo-bottom-desktop.jpg?w=420
http://jquery.com/
https://www.salesforce.com/cn/
https://wp.salesforce.com/en-us/wp-content/uploads/sites/4/2022/10/nav-products-promo-sky-desktop.jpg?w=420
https://investor.salesforce.com/overview/default.aspx?d=cta-glob-footer-7
https://clients2.google.com/service/update2/crx?os=win&arch=x64&os_arch=x86_64&nacl_arch=x86-64&prod=chromecrx&prodchannel=&prodversion=117.0.5938.132&lang=en-US&acceptformat=crx3,puff&x=id%3Dnmmhkkegccagdldgiimedpiccmgmieda%26v%3D0.0.0.0%26installedby%3Dother%26uc%26brand%3DONGR%26ping%3Dr%253D-1%2526e%253D1
https://a.sfdcstatic.com/shared/chat/agent14.png
https://extensiongallery.tableau.com
https://cdn.krxd.net
https://wp.salesforce.com/en-us/wp-content/uploads/sites/4/2022/10/nav-products-promo-bottom-desktop.jpg?w=420
https://www.salesforce.com/etc/designs/sfdc-www/en_us/favicon.ico
https://www.exacttarget.com/privacy-policy?linkid=View+Privacy+Policy
https://td.doubleclick.net
https://www.tableau.com/product-usage-data
https://service.force.com/embeddedservice/5.0/frame/filetransfer.esw.min.js
https://a.sfdcstatic.com/shared/chat/agent8.png
https://wp.salesforce.com/en-us/wp-content/uploads/sites/4/2022/10/nav-industries-promo-sky-desktop.jpg?w=420
https://www.salesforce.com/es/
https://instagram.com/salesforce/
https://a.sfdcstatic.com/digital/
https://wp.salesforce.com/en-us/wp-content/uploads/sites/4/2022/06/nav-customers-l3-default-top-desktop.jpg?w=420
https://org62.my.salesforce.com
https://accounts.google.com/ListAccounts?gpsia=1&source=ChromiumBrowser&json=standard
https://service.force.com/embeddedservice/5.0/esw.min.css
https://www.aboutads.info/choices/
https://salesforce.us-1.evergage.com
https://a.sfdcstatic.com/df15_sflive-segments-template.json
https://www.salesforce.com/de/
https://d.la2-c1-ia4.salesforceliveagent.com/chat
https://www.salesforce.com/crm/?d=70130000000i80D
https://a.sfdcstatic.com/shared/chat/chat-agent-image-2x.png
https://privacy.truste.com/privacy-seal/validation?rid=b5e42bbd-4d3e-4631-a14e-c04a441f1a4a
http://www.opensource.org/licenses/mit-license.php
https://www.salesforce.com/eu/
https://www.linkedin.com/company/salesforce/?d=cta-glob-footer-3
https://px.ads.linkedin.com/collect?
https://cdn.evgnet.com/beacon/salesforce/sf_shared_prod/scripts/evergage.min.js
about:blank
https://privacy-policy.truste.com/privacy-seal/seal?rid=b5e42bbd-4d3e-4631-a14e-c04a441f1a4a
http://dbushell.com/
https://d.la2-c1-ia4.salesforceliveagent.com/chat/rest/Visitor/Availability.jsonp?sid=undefined&r=185&Availability.prefix=Visitor&Availability.ids=[5733y000000MDKV]&callback=embedded_svc.liveAgentAPI.connection.handlePing&deployment_id=57230000000DmsR&org_id=00D000000000062&version=48
https://a.sfdcstatic.com/shared/chat/agent4.png
https://oag.ca.gov/privacy/ccpa
https://www.salesforce.com/ca/
https://appexchange.salesforce.com/
https://service.force.com/embeddedservice/5.0/utils/common.min.js
https://s2.go-mpulse.net/boomerang/
https://www.salesforce.com/content/dam/web/en_us/www/documents/legal/compliance%20documents/protecti
https://podcasts.salesforce.com
https://service.force.com/embeddedservice/5.0/frame/chasitor.esw.min.js
https://www.salesforce.com
http://github.com/garycourt/murmurhash-js
http://login.salesforce.com/lightning/n/standard-OnlineSalesHome%20
https://a.sfdcstatic.com/shared/chat/agent7.png
https://wp.salesforce.com/en-us/wp-content/uploads/sites/4/2022/06/nav-salesforce-plus-promo-bottom-desktop.jpg?w=420
https://developer.salesforce.com/docs/atlas.en-us.snapins_web_dev.meta/snapins_web_dev/snapins_web_c
https://www.salesforce.com/jp/
https://investor.salesforce.com/financials/default.aspx#sec
https://www.salesforce.com/in/
https://a.sfdcstatic.com/shared/chat/agent15.png
https://www.salesforce.com/kr/
https://login.salesforce.com
https://geolocation.onetrust.com
https://slack.com/intl/en-gb/trust/compliance/cookie-policy
http://underscorejs.org/LICENSE
https://www.salesforce.com/fr-ca/
https://schema.org
https://twitter.com/salesforce/?d=cta-glob-footer-2
https://trust.salesforce.com/en/
https://static.cloud.coveo.com/coveo.analytics.js/2/coveoua.js
https://www.salesforce.com/form/other/privacy-request/
https://clients1.google.com/tools/pso/ping?as=chrome&brand=ONGR&pid=&hl=en&events=C1I,C2I,C7I,C1S,C7S&rep=2&rlz=C1:,C2:,C7:&id=00000000000000000000000000000000000000001284F62F19
https://www.youtube.com/Salesforce/?d=cta-glob-footer-4

Dropped files

No malicious files found. See full and IOC report for all dropped files.