Windows Analysis Report
https://enerpac.my.salesforce.com/00QNx000009t34v

Overview

General Information

Sample URL:	https://enerpac.my.salesforce.com/00QNx000009t34v
Analysis ID:	1447352

Detection

Score:	2
Range:	0 - 100
Whitelisted:	false
Confidence:	80%

Signatures

Found iframes

HTML body contains low number of good links

HTML title does not match URL

Stores files to the Windows start menu directory

Classification

Signatures

Found iframes

Source: https://enerpac.my.salesforce.com/?ec=302&startURL=%2F00QNx000009t34v	HTTP Parser: Iframe src: https://c.salesforce.com/login-messages/promos.html
Source: https://enerpac.my.salesforce.com/?ec=302&startURL=%2F00QNx000009t34v	HTTP Parser: Iframe src: https://login.salesforce.com/login/sessionserver212.html
Source: https://enerpac.my.salesforce.com/?ec=302&startURL=%2F00QNx000009t34v	HTTP Parser: Iframe src: https://c.salesforce.com/login-messages/promos.html

HTML body contains low number of good links

Source: https://enerpac.my.salesforce.com/?ec=302&startURL=%2F00QNx000009t34v	HTTP Parser: Number of links: 1
Source: https://login.microsoftonline.com/1602ae82-0266-40d6-910b-11680fe0f6a5/saml2?SAMLRequest=hZNdc6IwFIb%2FCpN7NKSiwlQ7CItarR8Y%2B8ENEzECLSRICIq%2FflltZ7p70T2TXJw5J%2B97Mnly%2F3DOUqWihUg4GwCtBYFCWcj3CYsGYItdtQ8ehveCZCnKTUuWMfPoUVJRKs1BJsxbZQBkwUxORCJMRjIqzDI0N9bT3EQtaOYFL3nIU6BYQtCibKxszoTMaLGhRZWEdOvNByAuy1yY7TZltMhJ2MrqliApFQdehLQV8uxB8AGEDoe3mOs9CyhOM0vCSHmd%2F0si5VHCWlkSFlzwQ8lZmrCrRFvrQkRoH6kQdbtqB%2B67qqHBnapp3T48UHjoEr19vRRQps4ABMi2mvCt%2FmpZ50%2BOdfp3%2Fymrrv66xRP1XJNSlTLf26NZhZ%2B105vw%2FRd74p2NqUfzwCW%2F1iGszkGE08XrEjkFlXvjcV0b1kUuvcXy3emN4rzexZW7nPLZ0dOMOniaTtL4pU4017lE49n8jnpRH75bnSgW%2BkeaZY96P5WFdZRueFyvNqM3f5KjmdYb6%2FgDk1MFVwdc7%2BpzRfx1aKA80%2Ffn3SLEMZJBcJmlbrLL7WjB%2BptpHfmJtGF0CLZ65Bw9Nt89YuH2kmQ9fmeT%2FYmNLodcxXY8HhUTIjlbPos7o3mIqRCSTpkoCSsHAEHUUaGuog7WDLNZCLYggj5QVp80jBJ2o%2BwndHa3JmFOMF6pq%2BUGA%2BX5i9amAXyyaV7di%2B9Q%2FixMvkgEw%2F9yd9%2F%2B7jH8TP%2F%2BDsPf&RelayState=%2F00QNx000009t34v&SigAlg=http%3A%2F%2Fwww.w3.org%2F2001%2F04%2Fxmldsig-more%23rsa-sha256&Signature=iKVBiwIlzlcV6%2FpQ1xk3CQ3...	HTTP Parser: Number of links: 0
Source: https://login.microsoftonline.com/1602ae82-0266-40d6-910b-11680fe0f6a5/saml2?SAMLRequest=hZNdc6IwFIb%2FCpN7MASkwBQ7KKJUsX6AWG8cxKhxIUECSP3162o7092L7pk5F5lz8r4nk%2Bc8vzRZKtS44IRRC8gSBAKmCdsRerBAGLiiDl46zzzOUpSbdlUe6RyfK8xL4XaRcvNRsUBVUJPFnHCTxhnmZpmYC9sfm0iCZl6wkiUsBYLNOS7Km1WPUV5luFjgoiYJDudjCxzLMudmq4UpLvI4kbIPiccp5ntWJFhKWPbCmQWhw%2BAjxu0nGwjObRZC4%2FI%2B%2F5dEyg6EShlJCsbZvmQ0JfQu0ZI1iGKsIxEiTRNVuNNEQ4ZbUZY1He4x3Gtxu3V%2FFBA8xwIb1LNvsbb16apX%2B459%2BTf%2FlMXX0yyPw403n3l0dE5%2BvbGi2Q9PRxhwzxn4fVVfETZdL%2BE8f98j47gb9MLBwamGdBOL0eVwDMdXbTKpldJdBYPr5Rq6g9XSsaP09LYRVXfRxFFCurCBzeuxT6LLzIlqL1pPu8Y5WilLVW4KQ0VVNElJoOtrMVx0X%2F0o672L1%2Fmob3gFP0xrN4I61e2ITkZdvPZP3q%2BP9DI7d5WPtuyedr1z3of5OJyN3Kb2Q3Qm7R3dQk43Pt%2BW49PVeFeSeeY2wz4M3KQeKenTxsj6slbePsLjvMIe5WVMSwsgiFQRtkWkBrJhImjKiqSg9hoI008auoQ%2BKPsJne2jiZvDIJiK07dFAITlF623BvDJpnl3L75D%2BbNw%2FEUi6PyXu%2BfWd4%2FO5%2FHvdej8Bg%3D%3D&RelayState=%2F00QNx000009t34v&SigAlg=http%3A%2F%2Fwww.w3.org%2F2001%2F04%2Fxmldsig-more%23rsa-sha256&Signature=U4nwfuX%2BK2wvgoa2gVlGLLmsd...	HTTP Parser: Number of links: 0

HTML title does not match URL

Source: https://login.microsoftonline.com/1602ae82-0266-40d6-910b-11680fe0f6a5/saml2?SAMLRequest=hZNdc6IwFIb%2FCpN7NKSiwlQ7CItarR8Y%2B8ENEzECLSRICIq%2FflltZ7p70T2TXJw5J%2B97Mnly%2F3DOUqWihUg4GwCtBYFCWcj3CYsGYItdtQ8ehveCZCnKTUuWMfPoUVJRKs1BJsxbZQBkwUxORCJMRjIqzDI0N9bT3EQtaOYFL3nIU6BYQtCibKxszoTMaLGhRZWEdOvNByAuy1yY7TZltMhJ2MrqliApFQdehLQV8uxB8AGEDoe3mOs9CyhOM0vCSHmd%2F0si5VHCWlkSFlzwQ8lZmrCrRFvrQkRoH6kQdbtqB%2B67qqHBnapp3T48UHjoEr19vRRQps4ABMi2mvCt%2FmpZ50%2BOdfp3%2Fymrrv66xRP1XJNSlTLf26NZhZ%2B105vw%2FRd74p2NqUfzwCW%2F1iGszkGE08XrEjkFlXvjcV0b1kUuvcXy3emN4rzexZW7nPLZ0dOMOniaTtL4pU4017lE49n8jnpRH75bnSgW%2BkeaZY96P5WFdZRueFyvNqM3f5KjmdYb6%2FgDk1MFVwdc7%2BpzRfx1aKA80%2Ffn3SLEMZJBcJmlbrLL7WjB%2BptpHfmJtGF0CLZ65Bw9Nt89YuH2kmQ9fmeT%2FYmNLodcxXY8HhUTIjlbPos7o3mIqRCSTpkoCSsHAEHUUaGuog7WDLNZCLYggj5QVp80jBJ2o%2BwndHa3JmFOMF6pq%2BUGA%2BX5i9amAXyyaV7di%2B9Q%2FixMvkgEw%2F9yd9%2F%2B7jH8TP%2F%2BDsPf&RelayState=%2F00QNx000009t34v&SigAlg=http%3A%2F%2Fwww.w3.org%2F2001%2F04%2Fxmldsig-more%23rsa-sha256&Signature=iKVBiwIlzlcV6%2FpQ1xk3CQ3...	HTTP Parser: Title: Redirecting does not match URL
Source: https://login.microsoftonline.com/1602ae82-0266-40d6-910b-11680fe0f6a5/saml2?SAMLRequest=hZNdc6IwFIb%2FCpN7MASkwBQ7KKJUsX6AWG8cxKhxIUECSP3162o7092L7pk5F5lz8r4nk%2Bc8vzRZKtS44IRRC8gSBAKmCdsRerBAGLiiDl46zzzOUpSbdlUe6RyfK8xL4XaRcvNRsUBVUJPFnHCTxhnmZpmYC9sfm0iCZl6wkiUsBYLNOS7Km1WPUV5luFjgoiYJDudjCxzLMudmq4UpLvI4kbIPiccp5ntWJFhKWPbCmQWhw%2BAjxu0nGwjObRZC4%2FI%2B%2F5dEyg6EShlJCsbZvmQ0JfQu0ZI1iGKsIxEiTRNVuNNEQ4ZbUZY1He4x3Gtxu3V%2FFBA8xwIb1LNvsbb16apX%2B459%2BTf%2FlMXX0yyPw403n3l0dE5%2BvbGi2Q9PRxhwzxn4fVVfETZdL%2BE8f98j47gb9MLBwamGdBOL0eVwDMdXbTKpldJdBYPr5Rq6g9XSsaP09LYRVXfRxFFCurCBzeuxT6LLzIlqL1pPu8Y5WilLVW4KQ0VVNElJoOtrMVx0X%2F0o672L1%2Fmob3gFP0xrN4I61e2ITkZdvPZP3q%2BP9DI7d5WPtuyedr1z3of5OJyN3Kb2Q3Qm7R3dQk43Pt%2BW49PVeFeSeeY2wz4M3KQeKenTxsj6slbePsLjvMIe5WVMSwsgiFQRtkWkBrJhImjKiqSg9hoI008auoQ%2BKPsJne2jiZvDIJiK07dFAITlF623BvDJpnl3L75D%2BbNw%2FEUi6PyXu%2BfWd4%2FO5%2FHvdej8Bg%3D%3D&RelayState=%2F00QNx000009t34v&SigAlg=http%3A%2F%2Fwww.w3.org%2F2001%2F04%2Fxmldsig-more%23rsa-sha256&Signature=U4nwfuX%2BK2wvgoa2gVlGLLmsd...	HTTP Parser: Title: Sign in to your account does not match URL

Source: https://enerpac.my.salesforce.com/?ec=302&startURL=%2F00QNx000009t34v	HTTP Parser: <input type="password" .../> found
Source: https://login.microsoftonline.com/1602ae82-0266-40d6-910b-11680fe0f6a5/saml2?SAMLRequest=hZNdc6IwFIb%2FCpN7NKSiwlQ7CItarR8Y%2B8ENEzECLSRICIq%2FflltZ7p70T2TXJw5J%2B97Mnly%2F3DOUqWihUg4GwCtBYFCWcj3CYsGYItdtQ8ehveCZCnKTUuWMfPoUVJRKs1BJsxbZQBkwUxORCJMRjIqzDI0N9bT3EQtaOYFL3nIU6BYQtCibKxszoTMaLGhRZWEdOvNByAuy1yY7TZltMhJ2MrqliApFQdehLQV8uxB8AGEDoe3mOs9CyhOM0vCSHmd%2F0si5VHCWlkSFlzwQ8lZmrCrRFvrQkRoH6kQdbtqB%2B67qqHBnapp3T48UHjoEr19vRRQps4ABMi2mvCt%2FmpZ50%2BOdfp3%2Fymrrv66xRP1XJNSlTLf26NZhZ%2B105vw%2FRd74p2NqUfzwCW%2F1iGszkGE08XrEjkFlXvjcV0b1kUuvcXy3emN4rzexZW7nPLZ0dOMOniaTtL4pU4017lE49n8jnpRH75bnSgW%2BkeaZY96P5WFdZRueFyvNqM3f5KjmdYb6%2FgDk1MFVwdc7%2BpzRfx1aKA80%2Ffn3SLEMZJBcJmlbrLL7WjB%2BptpHfmJtGF0CLZ65Bw9Nt89YuH2kmQ9fmeT%2FYmNLodcxXY8HhUTIjlbPos7o3mIqRCSTpkoCSsHAEHUUaGuog7WDLNZCLYggj5QVp80jBJ2o%2BwndHa3JmFOMF6pq%2BUGA%2BX5i9amAXyyaV7di%2B9Q%2FixMvkgEw%2F9yd9%2F%2B7jH8TP%2F%2BDsPf&RelayState=%2F00QNx000009t34v&SigAlg=http%3A%2F%2Fwww.w3.org%2F2001%2F04%2Fxmldsig-more%23rsa-sha256&Signature=iKVBiwIlzlcV6%2FpQ1xk3CQ3...	HTTP Parser: <input type="password" .../> found
Source: https://login.microsoftonline.com/1602ae82-0266-40d6-910b-11680fe0f6a5/saml2?SAMLRequest=hZNdc6IwFIb%2FCpN7MASkwBQ7KKJUsX6AWG8cxKhxIUECSP3162o7092L7pk5F5lz8r4nk%2Bc8vzRZKtS44IRRC8gSBAKmCdsRerBAGLiiDl46zzzOUpSbdlUe6RyfK8xL4XaRcvNRsUBVUJPFnHCTxhnmZpmYC9sfm0iCZl6wkiUsBYLNOS7Km1WPUV5luFjgoiYJDudjCxzLMudmq4UpLvI4kbIPiccp5ntWJFhKWPbCmQWhw%2BAjxu0nGwjObRZC4%2FI%2B%2F5dEyg6EShlJCsbZvmQ0JfQu0ZI1iGKsIxEiTRNVuNNEQ4ZbUZY1He4x3Gtxu3V%2FFBA8xwIb1LNvsbb16apX%2B459%2BTf%2FlMXX0yyPw403n3l0dE5%2BvbGi2Q9PRxhwzxn4fVVfETZdL%2BE8f98j47gb9MLBwamGdBOL0eVwDMdXbTKpldJdBYPr5Rq6g9XSsaP09LYRVXfRxFFCurCBzeuxT6LLzIlqL1pPu8Y5WilLVW4KQ0VVNElJoOtrMVx0X%2F0o672L1%2Fmob3gFP0xrN4I61e2ITkZdvPZP3q%2BP9DI7d5WPtuyedr1z3of5OJyN3Kb2Q3Qm7R3dQk43Pt%2BW49PVeFeSeeY2wz4M3KQeKenTxsj6slbePsLjvMIe5WVMSwsgiFQRtkWkBrJhImjKiqSg9hoI008auoQ%2BKPsJne2jiZvDIJiK07dFAITlF623BvDJpnl3L75D%2BbNw%2FEUi6PyXu%2BfWd4%2FO5%2FHvdej8Bg%3D%3D&RelayState=%2F00QNx000009t34v&SigAlg=http%3A%2F%2Fwww.w3.org%2F2001%2F04%2Fxmldsig-more%23rsa-sha256&Signature=U4nwfuX%2BK2wvgoa2gVlGLLmsd...	HTTP Parser: <input type="password" .../> found

Source: https://enerpac.my.salesforce.com/?ec=302&startURL=%2F00QNx000009t34v	HTTP Parser: No favicon
Source: https://enerpac.my.salesforce.com/s.gif	HTTP Parser: No favicon
Source: https://login.microsoftonline.com/1602ae82-0266-40d6-910b-11680fe0f6a5/saml2?SAMLRequest=hZNdc6IwFIb%2FCpN7NKSiwlQ7CItarR8Y%2B8ENEzECLSRICIq%2FflltZ7p70T2TXJw5J%2B97Mnly%2F3DOUqWihUg4GwCtBYFCWcj3CYsGYItdtQ8ehveCZCnKTUuWMfPoUVJRKs1BJsxbZQBkwUxORCJMRjIqzDI0N9bT3EQtaOYFL3nIU6BYQtCibKxszoTMaLGhRZWEdOvNByAuy1yY7TZltMhJ2MrqliApFQdehLQV8uxB8AGEDoe3mOs9CyhOM0vCSHmd%2F0si5VHCWlkSFlzwQ8lZmrCrRFvrQkRoH6kQdbtqB%2B67qqHBnapp3T48UHjoEr19vRRQps4ABMi2mvCt%2FmpZ50%2BOdfp3%2Fymrrv66xRP1XJNSlTLf26NZhZ%2B105vw%2FRd74p2NqUfzwCW%2F1iGszkGE08XrEjkFlXvjcV0b1kUuvcXy3emN4rzexZW7nPLZ0dOMOniaTtL4pU4017lE49n8jnpRH75bnSgW%2BkeaZY96P5WFdZRueFyvNqM3f5KjmdYb6%2FgDk1MFVwdc7%2BpzRfx1aKA80%2Ffn3SLEMZJBcJmlbrLL7WjB%2BptpHfmJtGF0CLZ65Bw9Nt89YuH2kmQ9fmeT%2FYmNLodcxXY8HhUTIjlbPos7o3mIqRCSTpkoCSsHAEHUUaGuog7WDLNZCLYggj5QVp80jBJ2o%2BwndHa3JmFOMF6pq%2BUGA%2BX5i9amAXyyaV7di%2B9Q%2FixMvkgEw%2F9yd9%2F%2B7jH8TP%2F%2BDsPf&RelayState=%2F00QNx000009t34v&SigAlg=http%3A%2F%2Fwww.w3.org%2F2001%2F04%2Fxmldsig-more%23rsa-sha256&Signature=iKVBiwIlzlcV6%2FpQ1xk3CQ3...	HTTP Parser: No favicon
Source: https://enerpac.my.salesforce.com/?ec=302&startURL=%2F00QNx000009t34v	HTTP Parser: No favicon

Source: https://enerpac.my.salesforce.com/?ec=302&startURL=%2F00QNx000009t34v	HTTP Parser: No <meta name="author".. found
Source: https://login.microsoftonline.com/1602ae82-0266-40d6-910b-11680fe0f6a5/saml2?SAMLRequest=hZNdc6IwFIb%2FCpN7NKSiwlQ7CItarR8Y%2B8ENEzECLSRICIq%2FflltZ7p70T2TXJw5J%2B97Mnly%2F3DOUqWihUg4GwCtBYFCWcj3CYsGYItdtQ8ehveCZCnKTUuWMfPoUVJRKs1BJsxbZQBkwUxORCJMRjIqzDI0N9bT3EQtaOYFL3nIU6BYQtCibKxszoTMaLGhRZWEdOvNByAuy1yY7TZltMhJ2MrqliApFQdehLQV8uxB8AGEDoe3mOs9CyhOM0vCSHmd%2F0si5VHCWlkSFlzwQ8lZmrCrRFvrQkRoH6kQdbtqB%2B67qqHBnapp3T48UHjoEr19vRRQps4ABMi2mvCt%2FmpZ50%2BOdfp3%2Fymrrv66xRP1XJNSlTLf26NZhZ%2B105vw%2FRd74p2NqUfzwCW%2F1iGszkGE08XrEjkFlXvjcV0b1kUuvcXy3emN4rzexZW7nPLZ0dOMOniaTtL4pU4017lE49n8jnpRH75bnSgW%2BkeaZY96P5WFdZRueFyvNqM3f5KjmdYb6%2FgDk1MFVwdc7%2BpzRfx1aKA80%2Ffn3SLEMZJBcJmlbrLL7WjB%2BptpHfmJtGF0CLZ65Bw9Nt89YuH2kmQ9fmeT%2FYmNLodcxXY8HhUTIjlbPos7o3mIqRCSTpkoCSsHAEHUUaGuog7WDLNZCLYggj5QVp80jBJ2o%2BwndHa3JmFOMF6pq%2BUGA%2BX5i9amAXyyaV7di%2B9Q%2FixMvkgEw%2F9yd9%2F%2B7jH8TP%2F%2BDsPf&RelayState=%2F00QNx000009t34v&SigAlg=http%3A%2F%2Fwww.w3.org%2F2001%2F04%2Fxmldsig-more%23rsa-sha256&Signature=iKVBiwIlzlcV6%2FpQ1xk3CQ3	HTTP Parser: No <meta name="author".. found
Source: https://login.microsoftonline.com/1602ae82-0266-40d6-910b-11680fe0f6a5/saml2?SAMLRequest=hZNdc6IwFIb%2FCpN7NKSiwlQ7CItarR8Y%2B8ENEzECLSRICIq%2FflltZ7p70T2TXJw5J%2B97Mnly%2F3DOUqWihUg4GwCtBYFCWcj3CYsGYItdtQ8ehveCZCnKTUuWMfPoUVJRKs1BJsxbZQBkwUxORCJMRjIqzDI0N9bT3EQtaOYFL3nIU6BYQtCibKxszoTMaLGhRZWEdOvNByAuy1yY7TZltMhJ2MrqliApFQdehLQV8uxB8AGEDoe3mOs9CyhOM0vCSHmd%2F0si5VHCWlkSFlzwQ8lZmrCrRFvrQkRoH6kQdbtqB%2B67qqHBnapp3T48UHjoEr19vRRQps4ABMi2mvCt%2FmpZ50%2BOdfp3%2Fymrrv66xRP1XJNSlTLf26NZhZ%2B105vw%2FRd74p2NqUfzwCW%2F1iGszkGE08XrEjkFlXvjcV0b1kUuvcXy3emN4rzexZW7nPLZ0dOMOniaTtL4pU4017lE49n8jnpRH75bnSgW%2BkeaZY96P5WFdZRueFyvNqM3f5KjmdYb6%2FgDk1MFVwdc7%2BpzRfx1aKA80%2Ffn3SLEMZJBcJmlbrLL7WjB%2BptpHfmJtGF0CLZ65Bw9Nt89YuH2kmQ9fmeT%2FYmNLodcxXY8HhUTIjlbPos7o3mIqRCSTpkoCSsHAEHUUaGuog7WDLNZCLYggj5QVp80jBJ2o%2BwndHa3JmFOMF6pq%2BUGA%2BX5i9amAXyyaV7di%2B9Q%2FixMvkgEw%2F9yd9%2F%2B7jH8TP%2F%2BDsPf&RelayState=%2F00QNx000009t34v&SigAlg=http%3A%2F%2Fwww.w3.org%2F2001%2F04%2Fxmldsig-more%23rsa-sha256&Signature=iKVBiwIlzlcV6%2FpQ1xk3CQ3	HTTP Parser: No <meta name="author".. found
Source: https://enerpac.my.salesforce.com/?ec=302&startURL=%2F00QNx000009t34v	HTTP Parser: No <meta name="author".. found
Source: https://login.microsoftonline.com/1602ae82-0266-40d6-910b-11680fe0f6a5/saml2?SAMLRequest=hZNdc6IwFIb%2FCpN7NKSiwlQ7CItarR8Y%2B8ENEzECLSRICIq%2FflltZ7p70T2TXJw5J%2B97Mnly%2F3DOUqWihUg4GwCtBYFCWcj3CYsGYItdtQ8ehveCZCnKTUuWMfPoUVJRKs1BJsxbZQBkwUxORCJMRjIqzDI0N9bT3EQtaOYFL3nIU6BYQtCibKxszoTMaLGhRZWEdOvNByAuy1yY7TZltMhJ2MrqliApFQdehLQV8uxB8AGEDoe3mOs9CyhOM0vCSHmd%2F0si5VHCWlkSFlzwQ8lZmrCrRFvrQkRoH6kQdbtqB%2B67qqHBnapp3T48UHjoEr19vRRQps4ABMi2mvCt%2FmpZ50%2BOdfp3%2Fymrrv66xRP1XJNSlTLf26NZhZ%2B105vw%2FRd74p2NqUfzwCW%2F1iGszkGE08XrEjkFlXvjcV0b1kUuvcXy3emN4rzexZW7nPLZ0dOMOniaTtL4pU4017lE49n8jnpRH75bnSgW%2BkeaZY96P5WFdZRueFyvNqM3f5KjmdYb6%2FgDk1MFVwdc7%2BpzRfx1aKA80%2Ffn3SLEMZJBcJmlbrLL7WjB%2BptpHfmJtGF0CLZ65Bw9Nt89YuH2kmQ9fmeT%2FYmNLodcxXY8HhUTIjlbPos7o3mIqRCSTpkoCSsHAEHUUaGuog7WDLNZCLYggj5QVp80jBJ2o%2BwndHa3JmFOMF6pq%2BUGA%2BX5i9amAXyyaV7di%2B9Q%2FixMvkgEw%2F9yd9%2F%2B7jH8TP%2F%2BDsPf&RelayState=%2F00QNx000009t34v&SigAlg=http%3A%2F%2Fwww.w3.org%2F2001%2F04%2Fxmldsig-more%23rsa-sha256&Signature=iKVBiwIlzlcV6%2FpQ1xk3CQ3	HTTP Parser: No <meta name="author".. found
Source: https://login.microsoftonline.com/1602ae82-0266-40d6-910b-11680fe0f6a5/saml2?SAMLRequest=hZNdc6IwFIb%2FCpN7MASkwBQ7KKJUsX6AWG8cxKhxIUECSP3162o7092L7pk5F5lz8r4nk%2Bc8vzRZKtS44IRRC8gSBAKmCdsRerBAGLiiDl46zzzOUpSbdlUe6RyfK8xL4XaRcvNRsUBVUJPFnHCTxhnmZpmYC9sfm0iCZl6wkiUsBYLNOS7Km1WPUV5luFjgoiYJDudjCxzLMudmq4UpLvI4kbIPiccp5ntWJFhKWPbCmQWhw%2BAjxu0nGwjObRZC4%2FI%2B%2F5dEyg6EShlJCsbZvmQ0JfQu0ZI1iGKsIxEiTRNVuNNEQ4ZbUZY1He4x3Gtxu3V%2FFBA8xwIb1LNvsbb16apX%2B459%2BTf%2FlMXX0yyPw403n3l0dE5%2BvbGi2Q9PRxhwzxn4fVVfETZdL%2BE8f98j47gb9MLBwamGdBOL0eVwDMdXbTKpldJdBYPr5Rq6g9XSsaP09LYRVXfRxFFCurCBzeuxT6LLzIlqL1pPu8Y5WilLVW4KQ0VVNElJoOtrMVx0X%2F0o672L1%2Fmob3gFP0xrN4I61e2ITkZdvPZP3q%2BP9DI7d5WPtuyedr1z3of5OJyN3Kb2Q3Qm7R3dQk43Pt%2BW49PVeFeSeeY2wz4M3KQeKenTxsj6slbePsLjvMIe5WVMSwsgiFQRtkWkBrJhImjKiqSg9hoI008auoQ%2BKPsJne2jiZvDIJiK07dFAITlF623BvDJpnl3L75D%2BbNw%2FEUi6PyXu%2BfWd4%2FO5%2FHvdej8Bg%3D%3D&RelayState=%2F00QNx000009t34v&SigAlg=http%3A%2F%2Fwww.w3.org%2F2001%2F04%2Fxmldsig-more%23rsa-sha256&Signature=U4nwfuX%2BK2wvgoa2gVlGLLmsd	HTTP Parser: No <meta name="author".. found

Source: https://enerpac.my.salesforce.com/?ec=302&startURL=%2F00QNx000009t34v	HTTP Parser: No <meta name="copyright".. found
Source: https://login.microsoftonline.com/1602ae82-0266-40d6-910b-11680fe0f6a5/saml2?SAMLRequest=hZNdc6IwFIb%2FCpN7NKSiwlQ7CItarR8Y%2B8ENEzECLSRICIq%2FflltZ7p70T2TXJw5J%2B97Mnly%2F3DOUqWihUg4GwCtBYFCWcj3CYsGYItdtQ8ehveCZCnKTUuWMfPoUVJRKs1BJsxbZQBkwUxORCJMRjIqzDI0N9bT3EQtaOYFL3nIU6BYQtCibKxszoTMaLGhRZWEdOvNByAuy1yY7TZltMhJ2MrqliApFQdehLQV8uxB8AGEDoe3mOs9CyhOM0vCSHmd%2F0si5VHCWlkSFlzwQ8lZmrCrRFvrQkRoH6kQdbtqB%2B67qqHBnapp3T48UHjoEr19vRRQps4ABMi2mvCt%2FmpZ50%2BOdfp3%2Fymrrv66xRP1XJNSlTLf26NZhZ%2B105vw%2FRd74p2NqUfzwCW%2F1iGszkGE08XrEjkFlXvjcV0b1kUuvcXy3emN4rzexZW7nPLZ0dOMOniaTtL4pU4017lE49n8jnpRH75bnSgW%2BkeaZY96P5WFdZRueFyvNqM3f5KjmdYb6%2FgDk1MFVwdc7%2BpzRfx1aKA80%2Ffn3SLEMZJBcJmlbrLL7WjB%2BptpHfmJtGF0CLZ65Bw9Nt89YuH2kmQ9fmeT%2FYmNLodcxXY8HhUTIjlbPos7o3mIqRCSTpkoCSsHAEHUUaGuog7WDLNZCLYggj5QVp80jBJ2o%2BwndHa3JmFOMF6pq%2BUGA%2BX5i9amAXyyaV7di%2B9Q%2FixMvkgEw%2F9yd9%2F%2B7jH8TP%2F%2BDsPf&RelayState=%2F00QNx000009t34v&SigAlg=http%3A%2F%2Fwww.w3.org%2F2001%2F04%2Fxmldsig-more%23rsa-sha256&Signature=iKVBiwIlzlcV6%2FpQ1xk3CQ3...	HTTP Parser: No <meta name="copyright".. found
Source: https://login.microsoftonline.com/1602ae82-0266-40d6-910b-11680fe0f6a5/saml2?SAMLRequest=hZNdc6IwFIb%2FCpN7NKSiwlQ7CItarR8Y%2B8ENEzECLSRICIq%2FflltZ7p70T2TXJw5J%2B97Mnly%2F3DOUqWihUg4GwCtBYFCWcj3CYsGYItdtQ8ehveCZCnKTUuWMfPoUVJRKs1BJsxbZQBkwUxORCJMRjIqzDI0N9bT3EQtaOYFL3nIU6BYQtCibKxszoTMaLGhRZWEdOvNByAuy1yY7TZltMhJ2MrqliApFQdehLQV8uxB8AGEDoe3mOs9CyhOM0vCSHmd%2F0si5VHCWlkSFlzwQ8lZmrCrRFvrQkRoH6kQdbtqB%2B67qqHBnapp3T48UHjoEr19vRRQps4ABMi2mvCt%2FmpZ50%2BOdfp3%2Fymrrv66xRP1XJNSlTLf26NZhZ%2B105vw%2FRd74p2NqUfzwCW%2F1iGszkGE08XrEjkFlXvjcV0b1kUuvcXy3emN4rzexZW7nPLZ0dOMOniaTtL4pU4017lE49n8jnpRH75bnSgW%2BkeaZY96P5WFdZRueFyvNqM3f5KjmdYb6%2FgDk1MFVwdc7%2BpzRfx1aKA80%2Ffn3SLEMZJBcJmlbrLL7WjB%2BptpHfmJtGF0CLZ65Bw9Nt89YuH2kmQ9fmeT%2FYmNLodcxXY8HhUTIjlbPos7o3mIqRCSTpkoCSsHAEHUUaGuog7WDLNZCLYggj5QVp80jBJ2o%2BwndHa3JmFOMF6pq%2BUGA%2BX5i9amAXyyaV7di%2B9Q%2FixMvkgEw%2F9yd9%2F%2B7jH8TP%2F%2BDsPf&RelayState=%2F00QNx000009t34v&SigAlg=http%3A%2F%2Fwww.w3.org%2F2001%2F04%2Fxmldsig-more%23rsa-sha256&Signature=iKVBiwIlzlcV6%2FpQ1xk3CQ3...	HTTP Parser: No <meta name="copyright".. found
Source: https://enerpac.my.salesforce.com/?ec=302&startURL=%2F00QNx000009t34v	HTTP Parser: No <meta name="copyright".. found
Source: https://login.microsoftonline.com/1602ae82-0266-40d6-910b-11680fe0f6a5/saml2?SAMLRequest=hZNdc6IwFIb%2FCpN7NKSiwlQ7CItarR8Y%2B8ENEzECLSRICIq%2FflltZ7p70T2TXJw5J%2B97Mnly%2F3DOUqWihUg4GwCtBYFCWcj3CYsGYItdtQ8ehveCZCnKTUuWMfPoUVJRKs1BJsxbZQBkwUxORCJMRjIqzDI0N9bT3EQtaOYFL3nIU6BYQtCibKxszoTMaLGhRZWEdOvNByAuy1yY7TZltMhJ2MrqliApFQdehLQV8uxB8AGEDoe3mOs9CyhOM0vCSHmd%2F0si5VHCWlkSFlzwQ8lZmrCrRFvrQkRoH6kQdbtqB%2B67qqHBnapp3T48UHjoEr19vRRQps4ABMi2mvCt%2FmpZ50%2BOdfp3%2Fymrrv66xRP1XJNSlTLf26NZhZ%2B105vw%2FRd74p2NqUfzwCW%2F1iGszkGE08XrEjkFlXvjcV0b1kUuvcXy3emN4rzexZW7nPLZ0dOMOniaTtL4pU4017lE49n8jnpRH75bnSgW%2BkeaZY96P5WFdZRueFyvNqM3f5KjmdYb6%2FgDk1MFVwdc7%2BpzRfx1aKA80%2Ffn3SLEMZJBcJmlbrLL7WjB%2BptpHfmJtGF0CLZ65Bw9Nt89YuH2kmQ9fmeT%2FYmNLodcxXY8HhUTIjlbPos7o3mIqRCSTpkoCSsHAEHUUaGuog7WDLNZCLYggj5QVp80jBJ2o%2BwndHa3JmFOMF6pq%2BUGA%2BX5i9amAXyyaV7di%2B9Q%2FixMvkgEw%2F9yd9%2F%2B7jH8TP%2F%2BDsPf&RelayState=%2F00QNx000009t34v&SigAlg=http%3A%2F%2Fwww.w3.org%2F2001%2F04%2Fxmldsig-more%23rsa-sha256&Signature=iKVBiwIlzlcV6%2FpQ1xk3CQ3...	HTTP Parser: No <meta name="copyright".. found
Source: https://login.microsoftonline.com/1602ae82-0266-40d6-910b-11680fe0f6a5/saml2?SAMLRequest=hZNdc6IwFIb%2FCpN7MASkwBQ7KKJUsX6AWG8cxKhxIUECSP3162o7092L7pk5F5lz8r4nk%2Bc8vzRZKtS44IRRC8gSBAKmCdsRerBAGLiiDl46zzzOUpSbdlUe6RyfK8xL4XaRcvNRsUBVUJPFnHCTxhnmZpmYC9sfm0iCZl6wkiUsBYLNOS7Km1WPUV5luFjgoiYJDudjCxzLMudmq4UpLvI4kbIPiccp5ntWJFhKWPbCmQWhw%2BAjxu0nGwjObRZC4%2FI%2B%2F5dEyg6EShlJCsbZvmQ0JfQu0ZI1iGKsIxEiTRNVuNNEQ4ZbUZY1He4x3Gtxu3V%2FFBA8xwIb1LNvsbb16apX%2B459%2BTf%2FlMXX0yyPw403n3l0dE5%2BvbGi2Q9PRxhwzxn4fVVfETZdL%2BE8f98j47gb9MLBwamGdBOL0eVwDMdXbTKpldJdBYPr5Rq6g9XSsaP09LYRVXfRxFFCurCBzeuxT6LLzIlqL1pPu8Y5WilLVW4KQ0VVNElJoOtrMVx0X%2F0o672L1%2Fmob3gFP0xrN4I61e2ITkZdvPZP3q%2BP9DI7d5WPtuyedr1z3of5OJyN3Kb2Q3Qm7R3dQk43Pt%2BW49PVeFeSeeY2wz4M3KQeKenTxsj6slbePsLjvMIe5WVMSwsgiFQRtkWkBrJhImjKiqSg9hoI008auoQ%2BKPsJne2jiZvDIJiK07dFAITlF623BvDJpnl3L75D%2BbNw%2FEUi6PyXu%2BfWd4%2FO5%2FHvdej8Bg%3D%3D&RelayState=%2F00QNx000009t34v&SigAlg=http%3A%2F%2Fwww.w3.org%2F2001%2F04%2Fxmldsig-more%23rsa-sha256&Signature=U4nwfuX%2BK2wvgoa2gVlGLLmsd...	HTTP Parser: No <meta name="copyright".. found

Source: unknown	HTTPS traffic detected: 20.12.23.50:443 -> 192.168.2.16:49760 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.16:49762 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.16:49771 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 20.12.23.50:443 -> 192.168.2.16:49830 version: TLS 1.2

Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 2.19.120.29
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27

Source: global traffic	DNS traffic detected: DNS query: enerpac.my.salesforce.com
Source: global traffic	DNS traffic detected: DNS query: usa238.sfdc-lywfpd.salesforce.com
Source: global traffic	DNS traffic detected: DNS query: login.salesforce.com
Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: c.salesforce.com
Source: global traffic	DNS traffic detected: DNS query: cdn.evgnet.com
Source: global traffic	DNS traffic detected: DNS query: salesforce.us-1.evergage.com
Source: global traffic	DNS traffic detected: DNS query: www.salesforce.com
Source: global traffic	DNS traffic detected: DNS query: a.sfdcstatic.com
Source: global traffic	DNS traffic detected: DNS query: geolocation.onetrust.com
Source: global traffic	DNS traffic detected: DNS query: login.microsoftonline.com
Source: global traffic	DNS traffic detected: DNS query: aadcdn.msftauth.net
Source: global traffic	DNS traffic detected: DNS query: aadcdn.msauthimages.net
Source: global traffic	DNS traffic detected: DNS query: dscm.li
Source: global traffic	DNS traffic detected: DNS query: identity.nel.measure.office.net

Source: unknown	Network traffic detected: HTTP traffic on port 49708 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49817 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49803 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49826 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49699
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49696
Source: unknown	Network traffic detected: HTTP traffic on port 49820 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49711 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49812 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49703 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49700 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49823 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49729
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49727
Source: unknown	Network traffic detected: HTTP traffic on port 49714 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49726
Source: unknown	Network traffic detected: HTTP traffic on port 49706 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49840
Source: unknown	Network traffic detected: HTTP traffic on port 49712 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49819 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49834 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49729 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49760 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49688 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49805 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49718
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49839
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49838
Source: unknown	Network traffic detected: HTTP traffic on port 49715 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49715
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49714
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49713
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49834
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49712
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49833
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49711
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49799
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49832
Source: unknown	Network traffic detected: HTTP traffic on port 49709 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49710
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49830
Source: unknown	Network traffic detected: HTTP traffic on port 49839 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49822 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49726 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49808 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49709
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49708
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49829
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49707
Source: unknown	Network traffic detected: HTTP traffic on port 49811 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49706
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49827
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49705
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49826
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49704
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49703
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49702
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49823
Source: unknown	Network traffic detected: HTTP traffic on port 49771 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49822
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49700
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49821
Source: unknown	Network traffic detected: HTTP traffic on port 49710 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49699 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49820
Source: unknown	Network traffic detected: HTTP traffic on port 49813 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49727 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49704 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49762 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49807 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49833 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49819
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49818
Source: unknown	Network traffic detected: HTTP traffic on port 49776 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49799 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49810 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49817
Source: unknown	Network traffic detected: HTTP traffic on port 49713 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49816
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49815
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49813
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49812
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49811
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49810
Source: unknown	Network traffic detected: HTTP traffic on port 49816 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49776
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49775
Source: unknown	Network traffic detected: HTTP traffic on port 49707 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49771
Source: unknown	Network traffic detected: HTTP traffic on port 49696 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49827 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49802 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49809
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49808
Source: unknown	Network traffic detected: HTTP traffic on port 49830 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49807
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49805
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49804
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49803
Source: unknown	Network traffic detected: HTTP traffic on port 49718 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49802
Source: unknown	Network traffic detected: HTTP traffic on port 49758 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49838 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49762
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49761
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49760
Source: unknown	Network traffic detected: HTTP traffic on port 49678 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49821 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49815 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49840 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49702 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49809 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49758
Source: unknown	Network traffic detected: HTTP traffic on port 49673 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49705 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49818 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49761 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49804 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49829 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49832 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49775 -> 443

Source: unknown	HTTPS traffic detected: 20.12.23.50:443 -> 192.168.2.16:49760 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.16:49762 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.16:49771 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 20.12.23.50:443 -> 192.168.2.16:49830 version: TLS 1.2

Source: classification engine

Classification label: clean2.win@16/6@46/294

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --single-argument https://enerpac.my.salesforce.com/00QNx000009t34v
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2164 --field-trial-handle=1952,i,14431919621662205081,9828366422186814041,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2164 --field-trial-handle=1952,i,14431919621662205081,9828366422186814041,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown

Source: Window Recorder

Window detected: More than 3 window changes detected

Stores files to the Windows start menu directory

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk

Screenshots

Network Map

No. of IPs < 25%
25% < No. of IPs < 50%
50% < No. of IPs < 75%
75% < No. of IPs

Contacted Public IPs

IP	Domain	Country	ASN	ASN Name	Malicious
142.250.185.99	unknown	United States	15169	GOOGLEUS	false
142.250.186.67	unknown	United States	15169	GOOGLEUS	false
13.107.246.45	part-0017.t-0009.t-msedge.net	United States	8068	MICROSOFT-CORP-MSN-AS-BLOCKUS	false
173.194.76.84	unknown	United States	15169	GOOGLEUS	false
104.18.32.137	geolocation.onetrust.com	United States	13335	CLOUDFLARENETUS	false
142.250.184.200	unknown	United States	15169	GOOGLEUS	false
142.250.186.138	unknown	United States	15169	GOOGLEUS	false
2.18.64.17	unknown	European Union	6057	AdministracionNacionaldeTelecomunicacionesUY	false
172.217.16.202	unknown	United States	15169	GOOGLEUS	false
1.1.1.1	unknown	Australia	13335	CLOUDFLARENETUS	false
151.101.192.114	cdn.evgnet.com	United States	54113	FASTLYUS	false
2.18.64.7	unknown	European Union	6057	AdministracionNacionaldeTelecomunicacionesUY	false
92.123.12.154	unknown	European Union	16625	AKAMAI-ASUS	false
95.101.54.121	unknown	European Union	34164	AKAMAI-LONGB	false
34.218.131.71	usa238.sfdc-lywfpd.salesforce.com	United States	16509	AMAZON-02US	false
20.190.159.73	unknown	United States	8075	MICROSOFT-CORP-MSN-AS-BLOCKUS	false
3.216.65.206	salesforce.us-1.evergage.com	United States	14618	AMAZON-AESUS	false
20.190.159.71	unknown	United States	8075	MICROSOFT-CORP-MSN-AS-BLOCKUS	false
172.64.155.119	unknown	United States	13335	CLOUDFLARENETUS	false
2.18.64.11	unknown	European Union	6057	AdministracionNacionaldeTelecomunicacionesUY	false
35.158.127.51	st1.edge.sfdc-yzvdd4.edge2.salesforce.com	United States	16509	AMAZON-02US	false
239.255.255.250	unknown	Reserved	unknown	unknown	false
188.114.96.3	dscm.li	European Union	13335	CLOUDFLARENETUS	false
152.199.21.175	sni1gl.wpc.upsiloncdn.net	United States	15133	EDGECASTUS	false
142.250.186.100	www.google.com	United States	15169	GOOGLEUS	false
142.250.184.238	unknown	United States	15169	GOOGLEUS	false
85.222.152.195	login.l2.salesforce.com	United Kingdom	14340	SALESFORCEUS	false

Private

IP
192.168.2.16

Contacted Domains

Name	IP	Active
part-0017.t-0009.t-msedge.net	13.107.246.45	true
cs1100.wpc.omegacdn.net	152.199.23.37	true
dscm.li	188.114.96.3	true
cdn.evgnet.com	151.101.192.114	true
usa238.sfdc-lywfpd.salesforce.com	34.218.131.71	true
sni1gl.wpc.upsiloncdn.net	152.199.21.175	true
www.google.com	142.250.186.100	true
login.l2.salesforce.com	85.222.152.195	true
salesforce.us-1.evergage.com	3.216.65.206	true
geolocation.onetrust.com	104.18.32.137	true
st1.edge.sfdc-yzvdd4.edge2.salesforce.com	35.158.127.51	true
login.salesforce.com	unknown	unknown
aadcdn.msftauth.net	unknown	unknown
aadcdn.msauthimages.net	unknown	unknown
enerpac.my.salesforce.com	unknown	unknown
c.salesforce.com	unknown	unknown
identity.nel.measure.office.net	unknown	unknown
a.sfdcstatic.com	unknown	unknown
login.microsoftonline.com	unknown	unknown
www.salesforce.com	unknown	unknown

Contacted URLs

Name	Malicious	Reputation
https://enerpac.my.salesforce.com/s.gif	false	unknown
https://enerpac.my.salesforce.com/?ec=302&startURL=%2F00QNx000009t34v	false	unknown
https://login.salesforce.com/login/sessionserver212.html	false	unknown

Name	Type	MD5	SHA1	SHA256
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri May 24 18:19:02 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide	984198ED5CDBAE09BA47B3619033B14E	5F345F9ACAA637EB98DECDB588D6F122621831A0	44079CFC1D5301C65CB2EF74C52CB4EAE589079445488CD7D897E198F09CEB07
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri May 24 18:19:02 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide	C3A90F7A9B2C6BEB6EF334F9C40251CA	74001F5AFBD97F63654030203DEED439D7C5434C	F3978CCFD0CA9BD6614C06C6CCF6B3D7381322A752B9C1FA1B4E4314A4551873
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Oct 6 08:05:01 2023, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide	21764594FA50BE5E78F8FEDC08F65F5A	8C327923C3F49343EA670B5B2C33226D0BE51444	72BCD20CC2B239D432B1DE6EC9A6688A9E4CCA44EC012C8C9882B23C252B1514
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri May 24 18:19:02 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide	A43B9A6D9A46EC309A870DDF673F7C50	8DE4579F4C533185A18397C9A6F16F4C860D0814	95D259C8DBB16751E4ED75E3899CFA540341E24249D67128448424686325AD89
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri May 24 18:19:02 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide	4F26CBB055A01190BEEBFB052B9D9361	5D4CF42374981554CC96B89560CD64235A538AC9	5EDDFF90FAEB0C44446D69693613DE9B2B0EF80B02E6BDC2AA2313BBD9CC0239
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri May 24 18:19:02 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide	71F387A47057F72DB998A96833DF5CBF	6746B39A0230075F8484381858626D01B4751A8E	F07EF505B705226220DE3C5A63CE81E46E2A6804FCB3F53922FB16E24BF0735E

Found iframes

Source: https://enerpac.my.salesforce.com/?ec=302&startURL=%2F00QNx000009t34v	HTTP Parser: Iframe src: https://c.salesforce.com/login-messages/promos.html
Source: https://enerpac.my.salesforce.com/?ec=302&startURL=%2F00QNx000009t34v	HTTP Parser: Iframe src: https://login.salesforce.com/login/sessionserver212.html
Source: https://enerpac.my.salesforce.com/?ec=302&startURL=%2F00QNx000009t34v	HTTP Parser: Iframe src: https://c.salesforce.com/login-messages/promos.html

HTML body contains low number of good links

Source: https://enerpac.my.salesforce.com/?ec=302&startURL=%2F00QNx000009t34v	HTTP Parser: Number of links: 1
Source: https://login.microsoftonline.com/1602ae82-0266-40d6-910b-11680fe0f6a5/saml2?SAMLRequest=hZNdc6IwFIb%2FCpN7NKSiwlQ7CItarR8Y%2B8ENEzECLSRICIq%2FflltZ7p70T2TXJw5J%2B97Mnly%2F3DOUqWihUg4GwCtBYFCWcj3CYsGYItdtQ8ehveCZCnKTUuWMfPoUVJRKs1BJsxbZQBkwUxORCJMRjIqzDI0N9bT3EQtaOYFL3nIU6BYQtCibKxszoTMaLGhRZWEdOvNByAuy1yY7TZltMhJ2MrqliApFQdehLQV8uxB8AGEDoe3mOs9CyhOM0vCSHmd%2F0si5VHCWlkSFlzwQ8lZmrCrRFvrQkRoH6kQdbtqB%2B67qqHBnapp3T48UHjoEr19vRRQps4ABMi2mvCt%2FmpZ50%2BOdfp3%2Fymrrv66xRP1XJNSlTLf26NZhZ%2B105vw%2FRd74p2NqUfzwCW%2F1iGszkGE08XrEjkFlXvjcV0b1kUuvcXy3emN4rzexZW7nPLZ0dOMOniaTtL4pU4017lE49n8jnpRH75bnSgW%2BkeaZY96P5WFdZRueFyvNqM3f5KjmdYb6%2FgDk1MFVwdc7%2BpzRfx1aKA80%2Ffn3SLEMZJBcJmlbrLL7WjB%2BptpHfmJtGF0CLZ65Bw9Nt89YuH2kmQ9fmeT%2FYmNLodcxXY8HhUTIjlbPos7o3mIqRCSTpkoCSsHAEHUUaGuog7WDLNZCLYggj5QVp80jBJ2o%2BwndHa3JmFOMF6pq%2BUGA%2BX5i9amAXyyaV7di%2B9Q%2FixMvkgEw%2F9yd9%2F%2B7jH8TP%2F%2BDsPf&RelayState=%2F00QNx000009t34v&SigAlg=http%3A%2F%2Fwww.w3.org%2F2001%2F04%2Fxmldsig-more%23rsa-sha256&Signature=iKVBiwIlzlcV6%2FpQ1xk3CQ3...	HTTP Parser: Number of links: 0
Source: https://login.microsoftonline.com/1602ae82-0266-40d6-910b-11680fe0f6a5/saml2?SAMLRequest=hZNdc6IwFIb%2FCpN7MASkwBQ7KKJUsX6AWG8cxKhxIUECSP3162o7092L7pk5F5lz8r4nk%2Bc8vzRZKtS44IRRC8gSBAKmCdsRerBAGLiiDl46zzzOUpSbdlUe6RyfK8xL4XaRcvNRsUBVUJPFnHCTxhnmZpmYC9sfm0iCZl6wkiUsBYLNOS7Km1WPUV5luFjgoiYJDudjCxzLMudmq4UpLvI4kbIPiccp5ntWJFhKWPbCmQWhw%2BAjxu0nGwjObRZC4%2FI%2B%2F5dEyg6EShlJCsbZvmQ0JfQu0ZI1iGKsIxEiTRNVuNNEQ4ZbUZY1He4x3Gtxu3V%2FFBA8xwIb1LNvsbb16apX%2B459%2BTf%2FlMXX0yyPw403n3l0dE5%2BvbGi2Q9PRxhwzxn4fVVfETZdL%2BE8f98j47gb9MLBwamGdBOL0eVwDMdXbTKpldJdBYPr5Rq6g9XSsaP09LYRVXfRxFFCurCBzeuxT6LLzIlqL1pPu8Y5WilLVW4KQ0VVNElJoOtrMVx0X%2F0o672L1%2Fmob3gFP0xrN4I61e2ITkZdvPZP3q%2BP9DI7d5WPtuyedr1z3of5OJyN3Kb2Q3Qm7R3dQk43Pt%2BW49PVeFeSeeY2wz4M3KQeKenTxsj6slbePsLjvMIe5WVMSwsgiFQRtkWkBrJhImjKiqSg9hoI008auoQ%2BKPsJne2jiZvDIJiK07dFAITlF623BvDJpnl3L75D%2BbNw%2FEUi6PyXu%2BfWd4%2FO5%2FHvdej8Bg%3D%3D&RelayState=%2F00QNx000009t34v&SigAlg=http%3A%2F%2Fwww.w3.org%2F2001%2F04%2Fxmldsig-more%23rsa-sha256&Signature=U4nwfuX%2BK2wvgoa2gVlGLLmsd...	HTTP Parser: Number of links: 0

HTML title does not match URL

Source: https://login.microsoftonline.com/1602ae82-0266-40d6-910b-11680fe0f6a5/saml2?SAMLRequest=hZNdc6IwFIb%2FCpN7NKSiwlQ7CItarR8Y%2B8ENEzECLSRICIq%2FflltZ7p70T2TXJw5J%2B97Mnly%2F3DOUqWihUg4GwCtBYFCWcj3CYsGYItdtQ8ehveCZCnKTUuWMfPoUVJRKs1BJsxbZQBkwUxORCJMRjIqzDI0N9bT3EQtaOYFL3nIU6BYQtCibKxszoTMaLGhRZWEdOvNByAuy1yY7TZltMhJ2MrqliApFQdehLQV8uxB8AGEDoe3mOs9CyhOM0vCSHmd%2F0si5VHCWlkSFlzwQ8lZmrCrRFvrQkRoH6kQdbtqB%2B67qqHBnapp3T48UHjoEr19vRRQps4ABMi2mvCt%2FmpZ50%2BOdfp3%2Fymrrv66xRP1XJNSlTLf26NZhZ%2B105vw%2FRd74p2NqUfzwCW%2F1iGszkGE08XrEjkFlXvjcV0b1kUuvcXy3emN4rzexZW7nPLZ0dOMOniaTtL4pU4017lE49n8jnpRH75bnSgW%2BkeaZY96P5WFdZRueFyvNqM3f5KjmdYb6%2FgDk1MFVwdc7%2BpzRfx1aKA80%2Ffn3SLEMZJBcJmlbrLL7WjB%2BptpHfmJtGF0CLZ65Bw9Nt89YuH2kmQ9fmeT%2FYmNLodcxXY8HhUTIjlbPos7o3mIqRCSTpkoCSsHAEHUUaGuog7WDLNZCLYggj5QVp80jBJ2o%2BwndHa3JmFOMF6pq%2BUGA%2BX5i9amAXyyaV7di%2B9Q%2FixMvkgEw%2F9yd9%2F%2B7jH8TP%2F%2BDsPf&RelayState=%2F00QNx000009t34v&SigAlg=http%3A%2F%2Fwww.w3.org%2F2001%2F04%2Fxmldsig-more%23rsa-sha256&Signature=iKVBiwIlzlcV6%2FpQ1xk3CQ3...	HTTP Parser: Title: Redirecting does not match URL
Source: https://login.microsoftonline.com/1602ae82-0266-40d6-910b-11680fe0f6a5/saml2?SAMLRequest=hZNdc6IwFIb%2FCpN7MASkwBQ7KKJUsX6AWG8cxKhxIUECSP3162o7092L7pk5F5lz8r4nk%2Bc8vzRZKtS44IRRC8gSBAKmCdsRerBAGLiiDl46zzzOUpSbdlUe6RyfK8xL4XaRcvNRsUBVUJPFnHCTxhnmZpmYC9sfm0iCZl6wkiUsBYLNOS7Km1WPUV5luFjgoiYJDudjCxzLMudmq4UpLvI4kbIPiccp5ntWJFhKWPbCmQWhw%2BAjxu0nGwjObRZC4%2FI%2B%2F5dEyg6EShlJCsbZvmQ0JfQu0ZI1iGKsIxEiTRNVuNNEQ4ZbUZY1He4x3Gtxu3V%2FFBA8xwIb1LNvsbb16apX%2B459%2BTf%2FlMXX0yyPw403n3l0dE5%2BvbGi2Q9PRxhwzxn4fVVfETZdL%2BE8f98j47gb9MLBwamGdBOL0eVwDMdXbTKpldJdBYPr5Rq6g9XSsaP09LYRVXfRxFFCurCBzeuxT6LLzIlqL1pPu8Y5WilLVW4KQ0VVNElJoOtrMVx0X%2F0o672L1%2Fmob3gFP0xrN4I61e2ITkZdvPZP3q%2BP9DI7d5WPtuyedr1z3of5OJyN3Kb2Q3Qm7R3dQk43Pt%2BW49PVeFeSeeY2wz4M3KQeKenTxsj6slbePsLjvMIe5WVMSwsgiFQRtkWkBrJhImjKiqSg9hoI008auoQ%2BKPsJne2jiZvDIJiK07dFAITlF623BvDJpnl3L75D%2BbNw%2FEUi6PyXu%2BfWd4%2FO5%2FHvdej8Bg%3D%3D&RelayState=%2F00QNx000009t34v&SigAlg=http%3A%2F%2Fwww.w3.org%2F2001%2F04%2Fxmldsig-more%23rsa-sha256&Signature=U4nwfuX%2BK2wvgoa2gVlGLLmsd...	HTTP Parser: Title: Sign in to your account does not match URL

Source: https://enerpac.my.salesforce.com/?ec=302&startURL=%2F00QNx000009t34v	HTTP Parser: <input type="password" .../> found
Source: https://login.microsoftonline.com/1602ae82-0266-40d6-910b-11680fe0f6a5/saml2?SAMLRequest=hZNdc6IwFIb%2FCpN7NKSiwlQ7CItarR8Y%2B8ENEzECLSRICIq%2FflltZ7p70T2TXJw5J%2B97Mnly%2F3DOUqWihUg4GwCtBYFCWcj3CYsGYItdtQ8ehveCZCnKTUuWMfPoUVJRKs1BJsxbZQBkwUxORCJMRjIqzDI0N9bT3EQtaOYFL3nIU6BYQtCibKxszoTMaLGhRZWEdOvNByAuy1yY7TZltMhJ2MrqliApFQdehLQV8uxB8AGEDoe3mOs9CyhOM0vCSHmd%2F0si5VHCWlkSFlzwQ8lZmrCrRFvrQkRoH6kQdbtqB%2B67qqHBnapp3T48UHjoEr19vRRQps4ABMi2mvCt%2FmpZ50%2BOdfp3%2Fymrrv66xRP1XJNSlTLf26NZhZ%2B105vw%2FRd74p2NqUfzwCW%2F1iGszkGE08XrEjkFlXvjcV0b1kUuvcXy3emN4rzexZW7nPLZ0dOMOniaTtL4pU4017lE49n8jnpRH75bnSgW%2BkeaZY96P5WFdZRueFyvNqM3f5KjmdYb6%2FgDk1MFVwdc7%2BpzRfx1aKA80%2Ffn3SLEMZJBcJmlbrLL7WjB%2BptpHfmJtGF0CLZ65Bw9Nt89YuH2kmQ9fmeT%2FYmNLodcxXY8HhUTIjlbPos7o3mIqRCSTpkoCSsHAEHUUaGuog7WDLNZCLYggj5QVp80jBJ2o%2BwndHa3JmFOMF6pq%2BUGA%2BX5i9amAXyyaV7di%2B9Q%2FixMvkgEw%2F9yd9%2F%2B7jH8TP%2F%2BDsPf&RelayState=%2F00QNx000009t34v&SigAlg=http%3A%2F%2Fwww.w3.org%2F2001%2F04%2Fxmldsig-more%23rsa-sha256&Signature=iKVBiwIlzlcV6%2FpQ1xk3CQ3...	HTTP Parser: <input type="password" .../> found
Source: https://login.microsoftonline.com/1602ae82-0266-40d6-910b-11680fe0f6a5/saml2?SAMLRequest=hZNdc6IwFIb%2FCpN7MASkwBQ7KKJUsX6AWG8cxKhxIUECSP3162o7092L7pk5F5lz8r4nk%2Bc8vzRZKtS44IRRC8gSBAKmCdsRerBAGLiiDl46zzzOUpSbdlUe6RyfK8xL4XaRcvNRsUBVUJPFnHCTxhnmZpmYC9sfm0iCZl6wkiUsBYLNOS7Km1WPUV5luFjgoiYJDudjCxzLMudmq4UpLvI4kbIPiccp5ntWJFhKWPbCmQWhw%2BAjxu0nGwjObRZC4%2FI%2B%2F5dEyg6EShlJCsbZvmQ0JfQu0ZI1iGKsIxEiTRNVuNNEQ4ZbUZY1He4x3Gtxu3V%2FFBA8xwIb1LNvsbb16apX%2B459%2BTf%2FlMXX0yyPw403n3l0dE5%2BvbGi2Q9PRxhwzxn4fVVfETZdL%2BE8f98j47gb9MLBwamGdBOL0eVwDMdXbTKpldJdBYPr5Rq6g9XSsaP09LYRVXfRxFFCurCBzeuxT6LLzIlqL1pPu8Y5WilLVW4KQ0VVNElJoOtrMVx0X%2F0o672L1%2Fmob3gFP0xrN4I61e2ITkZdvPZP3q%2BP9DI7d5WPtuyedr1z3of5OJyN3Kb2Q3Qm7R3dQk43Pt%2BW49PVeFeSeeY2wz4M3KQeKenTxsj6slbePsLjvMIe5WVMSwsgiFQRtkWkBrJhImjKiqSg9hoI008auoQ%2BKPsJne2jiZvDIJiK07dFAITlF623BvDJpnl3L75D%2BbNw%2FEUi6PyXu%2BfWd4%2FO5%2FHvdej8Bg%3D%3D&RelayState=%2F00QNx000009t34v&SigAlg=http%3A%2F%2Fwww.w3.org%2F2001%2F04%2Fxmldsig-more%23rsa-sha256&Signature=U4nwfuX%2BK2wvgoa2gVlGLLmsd...	HTTP Parser: <input type="password" .../> found

Source: https://enerpac.my.salesforce.com/?ec=302&startURL=%2F00QNx000009t34v	HTTP Parser: No favicon
Source: https://enerpac.my.salesforce.com/s.gif	HTTP Parser: No favicon
Source: https://login.microsoftonline.com/1602ae82-0266-40d6-910b-11680fe0f6a5/saml2?SAMLRequest=hZNdc6IwFIb%2FCpN7NKSiwlQ7CItarR8Y%2B8ENEzECLSRICIq%2FflltZ7p70T2TXJw5J%2B97Mnly%2F3DOUqWihUg4GwCtBYFCWcj3CYsGYItdtQ8ehveCZCnKTUuWMfPoUVJRKs1BJsxbZQBkwUxORCJMRjIqzDI0N9bT3EQtaOYFL3nIU6BYQtCibKxszoTMaLGhRZWEdOvNByAuy1yY7TZltMhJ2MrqliApFQdehLQV8uxB8AGEDoe3mOs9CyhOM0vCSHmd%2F0si5VHCWlkSFlzwQ8lZmrCrRFvrQkRoH6kQdbtqB%2B67qqHBnapp3T48UHjoEr19vRRQps4ABMi2mvCt%2FmpZ50%2BOdfp3%2Fymrrv66xRP1XJNSlTLf26NZhZ%2B105vw%2FRd74p2NqUfzwCW%2F1iGszkGE08XrEjkFlXvjcV0b1kUuvcXy3emN4rzexZW7nPLZ0dOMOniaTtL4pU4017lE49n8jnpRH75bnSgW%2BkeaZY96P5WFdZRueFyvNqM3f5KjmdYb6%2FgDk1MFVwdc7%2BpzRfx1aKA80%2Ffn3SLEMZJBcJmlbrLL7WjB%2BptpHfmJtGF0CLZ65Bw9Nt89YuH2kmQ9fmeT%2FYmNLodcxXY8HhUTIjlbPos7o3mIqRCSTpkoCSsHAEHUUaGuog7WDLNZCLYggj5QVp80jBJ2o%2BwndHa3JmFOMF6pq%2BUGA%2BX5i9amAXyyaV7di%2B9Q%2FixMvkgEw%2F9yd9%2F%2B7jH8TP%2F%2BDsPf&RelayState=%2F00QNx000009t34v&SigAlg=http%3A%2F%2Fwww.w3.org%2F2001%2F04%2Fxmldsig-more%23rsa-sha256&Signature=iKVBiwIlzlcV6%2FpQ1xk3CQ3...	HTTP Parser: No favicon
Source: https://enerpac.my.salesforce.com/?ec=302&startURL=%2F00QNx000009t34v	HTTP Parser: No favicon

Source: https://enerpac.my.salesforce.com/?ec=302&startURL=%2F00QNx000009t34v	HTTP Parser: No <meta name="author".. found
Source: https://login.microsoftonline.com/1602ae82-0266-40d6-910b-11680fe0f6a5/saml2?SAMLRequest=hZNdc6IwFIb%2FCpN7NKSiwlQ7CItarR8Y%2B8ENEzECLSRICIq%2FflltZ7p70T2TXJw5J%2B97Mnly%2F3DOUqWihUg4GwCtBYFCWcj3CYsGYItdtQ8ehveCZCnKTUuWMfPoUVJRKs1BJsxbZQBkwUxORCJMRjIqzDI0N9bT3EQtaOYFL3nIU6BYQtCibKxszoTMaLGhRZWEdOvNByAuy1yY7TZltMhJ2MrqliApFQdehLQV8uxB8AGEDoe3mOs9CyhOM0vCSHmd%2F0si5VHCWlkSFlzwQ8lZmrCrRFvrQkRoH6kQdbtqB%2B67qqHBnapp3T48UHjoEr19vRRQps4ABMi2mvCt%2FmpZ50%2BOdfp3%2Fymrrv66xRP1XJNSlTLf26NZhZ%2B105vw%2FRd74p2NqUfzwCW%2F1iGszkGE08XrEjkFlXvjcV0b1kUuvcXy3emN4rzexZW7nPLZ0dOMOniaTtL4pU4017lE49n8jnpRH75bnSgW%2BkeaZY96P5WFdZRueFyvNqM3f5KjmdYb6%2FgDk1MFVwdc7%2BpzRfx1aKA80%2Ffn3SLEMZJBcJmlbrLL7WjB%2BptpHfmJtGF0CLZ65Bw9Nt89YuH2kmQ9fmeT%2FYmNLodcxXY8HhUTIjlbPos7o3mIqRCSTpkoCSsHAEHUUaGuog7WDLNZCLYggj5QVp80jBJ2o%2BwndHa3JmFOMF6pq%2BUGA%2BX5i9amAXyyaV7di%2B9Q%2FixMvkgEw%2F9yd9%2F%2B7jH8TP%2F%2BDsPf&RelayState=%2F00QNx000009t34v&SigAlg=http%3A%2F%2Fwww.w3.org%2F2001%2F04%2Fxmldsig-more%23rsa-sha256&Signature=iKVBiwIlzlcV6%2FpQ1xk3CQ3	HTTP Parser: No <meta name="author".. found
Source: https://login.microsoftonline.com/1602ae82-0266-40d6-910b-11680fe0f6a5/saml2?SAMLRequest=hZNdc6IwFIb%2FCpN7NKSiwlQ7CItarR8Y%2B8ENEzECLSRICIq%2FflltZ7p70T2TXJw5J%2B97Mnly%2F3DOUqWihUg4GwCtBYFCWcj3CYsGYItdtQ8ehveCZCnKTUuWMfPoUVJRKs1BJsxbZQBkwUxORCJMRjIqzDI0N9bT3EQtaOYFL3nIU6BYQtCibKxszoTMaLGhRZWEdOvNByAuy1yY7TZltMhJ2MrqliApFQdehLQV8uxB8AGEDoe3mOs9CyhOM0vCSHmd%2F0si5VHCWlkSFlzwQ8lZmrCrRFvrQkRoH6kQdbtqB%2B67qqHBnapp3T48UHjoEr19vRRQps4ABMi2mvCt%2FmpZ50%2BOdfp3%2Fymrrv66xRP1XJNSlTLf26NZhZ%2B105vw%2FRd74p2NqUfzwCW%2F1iGszkGE08XrEjkFlXvjcV0b1kUuvcXy3emN4rzexZW7nPLZ0dOMOniaTtL4pU4017lE49n8jnpRH75bnSgW%2BkeaZY96P5WFdZRueFyvNqM3f5KjmdYb6%2FgDk1MFVwdc7%2BpzRfx1aKA80%2Ffn3SLEMZJBcJmlbrLL7WjB%2BptpHfmJtGF0CLZ65Bw9Nt89YuH2kmQ9fmeT%2FYmNLodcxXY8HhUTIjlbPos7o3mIqRCSTpkoCSsHAEHUUaGuog7WDLNZCLYggj5QVp80jBJ2o%2BwndHa3JmFOMF6pq%2BUGA%2BX5i9amAXyyaV7di%2B9Q%2FixMvkgEw%2F9yd9%2F%2B7jH8TP%2F%2BDsPf&RelayState=%2F00QNx000009t34v&SigAlg=http%3A%2F%2Fwww.w3.org%2F2001%2F04%2Fxmldsig-more%23rsa-sha256&Signature=iKVBiwIlzlcV6%2FpQ1xk3CQ3	HTTP Parser: No <meta name="author".. found
Source: https://enerpac.my.salesforce.com/?ec=302&startURL=%2F00QNx000009t34v	HTTP Parser: No <meta name="author".. found
Source: https://login.microsoftonline.com/1602ae82-0266-40d6-910b-11680fe0f6a5/saml2?SAMLRequest=hZNdc6IwFIb%2FCpN7NKSiwlQ7CItarR8Y%2B8ENEzECLSRICIq%2FflltZ7p70T2TXJw5J%2B97Mnly%2F3DOUqWihUg4GwCtBYFCWcj3CYsGYItdtQ8ehveCZCnKTUuWMfPoUVJRKs1BJsxbZQBkwUxORCJMRjIqzDI0N9bT3EQtaOYFL3nIU6BYQtCibKxszoTMaLGhRZWEdOvNByAuy1yY7TZltMhJ2MrqliApFQdehLQV8uxB8AGEDoe3mOs9CyhOM0vCSHmd%2F0si5VHCWlkSFlzwQ8lZmrCrRFvrQkRoH6kQdbtqB%2B67qqHBnapp3T48UHjoEr19vRRQps4ABMi2mvCt%2FmpZ50%2BOdfp3%2Fymrrv66xRP1XJNSlTLf26NZhZ%2B105vw%2FRd74p2NqUfzwCW%2F1iGszkGE08XrEjkFlXvjcV0b1kUuvcXy3emN4rzexZW7nPLZ0dOMOniaTtL4pU4017lE49n8jnpRH75bnSgW%2BkeaZY96P5WFdZRueFyvNqM3f5KjmdYb6%2FgDk1MFVwdc7%2BpzRfx1aKA80%2Ffn3SLEMZJBcJmlbrLL7WjB%2BptpHfmJtGF0CLZ65Bw9Nt89YuH2kmQ9fmeT%2FYmNLodcxXY8HhUTIjlbPos7o3mIqRCSTpkoCSsHAEHUUaGuog7WDLNZCLYggj5QVp80jBJ2o%2BwndHa3JmFOMF6pq%2BUGA%2BX5i9amAXyyaV7di%2B9Q%2FixMvkgEw%2F9yd9%2F%2B7jH8TP%2F%2BDsPf&RelayState=%2F00QNx000009t34v&SigAlg=http%3A%2F%2Fwww.w3.org%2F2001%2F04%2Fxmldsig-more%23rsa-sha256&Signature=iKVBiwIlzlcV6%2FpQ1xk3CQ3	HTTP Parser: No <meta name="author".. found
Source: https://login.microsoftonline.com/1602ae82-0266-40d6-910b-11680fe0f6a5/saml2?SAMLRequest=hZNdc6IwFIb%2FCpN7MASkwBQ7KKJUsX6AWG8cxKhxIUECSP3162o7092L7pk5F5lz8r4nk%2Bc8vzRZKtS44IRRC8gSBAKmCdsRerBAGLiiDl46zzzOUpSbdlUe6RyfK8xL4XaRcvNRsUBVUJPFnHCTxhnmZpmYC9sfm0iCZl6wkiUsBYLNOS7Km1WPUV5luFjgoiYJDudjCxzLMudmq4UpLvI4kbIPiccp5ntWJFhKWPbCmQWhw%2BAjxu0nGwjObRZC4%2FI%2B%2F5dEyg6EShlJCsbZvmQ0JfQu0ZI1iGKsIxEiTRNVuNNEQ4ZbUZY1He4x3Gtxu3V%2FFBA8xwIb1LNvsbb16apX%2B459%2BTf%2FlMXX0yyPw403n3l0dE5%2BvbGi2Q9PRxhwzxn4fVVfETZdL%2BE8f98j47gb9MLBwamGdBOL0eVwDMdXbTKpldJdBYPr5Rq6g9XSsaP09LYRVXfRxFFCurCBzeuxT6LLzIlqL1pPu8Y5WilLVW4KQ0VVNElJoOtrMVx0X%2F0o672L1%2Fmob3gFP0xrN4I61e2ITkZdvPZP3q%2BP9DI7d5WPtuyedr1z3of5OJyN3Kb2Q3Qm7R3dQk43Pt%2BW49PVeFeSeeY2wz4M3KQeKenTxsj6slbePsLjvMIe5WVMSwsgiFQRtkWkBrJhImjKiqSg9hoI008auoQ%2BKPsJne2jiZvDIJiK07dFAITlF623BvDJpnl3L75D%2BbNw%2FEUi6PyXu%2BfWd4%2FO5%2FHvdej8Bg%3D%3D&RelayState=%2F00QNx000009t34v&SigAlg=http%3A%2F%2Fwww.w3.org%2F2001%2F04%2Fxmldsig-more%23rsa-sha256&Signature=U4nwfuX%2BK2wvgoa2gVlGLLmsd	HTTP Parser: No <meta name="author".. found

Source: https://enerpac.my.salesforce.com/?ec=302&startURL=%2F00QNx000009t34v	HTTP Parser: No <meta name="copyright".. found
Source: https://login.microsoftonline.com/1602ae82-0266-40d6-910b-11680fe0f6a5/saml2?SAMLRequest=hZNdc6IwFIb%2FCpN7NKSiwlQ7CItarR8Y%2B8ENEzECLSRICIq%2FflltZ7p70T2TXJw5J%2B97Mnly%2F3DOUqWihUg4GwCtBYFCWcj3CYsGYItdtQ8ehveCZCnKTUuWMfPoUVJRKs1BJsxbZQBkwUxORCJMRjIqzDI0N9bT3EQtaOYFL3nIU6BYQtCibKxszoTMaLGhRZWEdOvNByAuy1yY7TZltMhJ2MrqliApFQdehLQV8uxB8AGEDoe3mOs9CyhOM0vCSHmd%2F0si5VHCWlkSFlzwQ8lZmrCrRFvrQkRoH6kQdbtqB%2B67qqHBnapp3T48UHjoEr19vRRQps4ABMi2mvCt%2FmpZ50%2BOdfp3%2Fymrrv66xRP1XJNSlTLf26NZhZ%2B105vw%2FRd74p2NqUfzwCW%2F1iGszkGE08XrEjkFlXvjcV0b1kUuvcXy3emN4rzexZW7nPLZ0dOMOniaTtL4pU4017lE49n8jnpRH75bnSgW%2BkeaZY96P5WFdZRueFyvNqM3f5KjmdYb6%2FgDk1MFVwdc7%2BpzRfx1aKA80%2Ffn3SLEMZJBcJmlbrLL7WjB%2BptpHfmJtGF0CLZ65Bw9Nt89YuH2kmQ9fmeT%2FYmNLodcxXY8HhUTIjlbPos7o3mIqRCSTpkoCSsHAEHUUaGuog7WDLNZCLYggj5QVp80jBJ2o%2BwndHa3JmFOMF6pq%2BUGA%2BX5i9amAXyyaV7di%2B9Q%2FixMvkgEw%2F9yd9%2F%2B7jH8TP%2F%2BDsPf&RelayState=%2F00QNx000009t34v&SigAlg=http%3A%2F%2Fwww.w3.org%2F2001%2F04%2Fxmldsig-more%23rsa-sha256&Signature=iKVBiwIlzlcV6%2FpQ1xk3CQ3...	HTTP Parser: No <meta name="copyright".. found
Source: https://login.microsoftonline.com/1602ae82-0266-40d6-910b-11680fe0f6a5/saml2?SAMLRequest=hZNdc6IwFIb%2FCpN7NKSiwlQ7CItarR8Y%2B8ENEzECLSRICIq%2FflltZ7p70T2TXJw5J%2B97Mnly%2F3DOUqWihUg4GwCtBYFCWcj3CYsGYItdtQ8ehveCZCnKTUuWMfPoUVJRKs1BJsxbZQBkwUxORCJMRjIqzDI0N9bT3EQtaOYFL3nIU6BYQtCibKxszoTMaLGhRZWEdOvNByAuy1yY7TZltMhJ2MrqliApFQdehLQV8uxB8AGEDoe3mOs9CyhOM0vCSHmd%2F0si5VHCWlkSFlzwQ8lZmrCrRFvrQkRoH6kQdbtqB%2B67qqHBnapp3T48UHjoEr19vRRQps4ABMi2mvCt%2FmpZ50%2BOdfp3%2Fymrrv66xRP1XJNSlTLf26NZhZ%2B105vw%2FRd74p2NqUfzwCW%2F1iGszkGE08XrEjkFlXvjcV0b1kUuvcXy3emN4rzexZW7nPLZ0dOMOniaTtL4pU4017lE49n8jnpRH75bnSgW%2BkeaZY96P5WFdZRueFyvNqM3f5KjmdYb6%2FgDk1MFVwdc7%2BpzRfx1aKA80%2Ffn3SLEMZJBcJmlbrLL7WjB%2BptpHfmJtGF0CLZ65Bw9Nt89YuH2kmQ9fmeT%2FYmNLodcxXY8HhUTIjlbPos7o3mIqRCSTpkoCSsHAEHUUaGuog7WDLNZCLYggj5QVp80jBJ2o%2BwndHa3JmFOMF6pq%2BUGA%2BX5i9amAXyyaV7di%2B9Q%2FixMvkgEw%2F9yd9%2F%2B7jH8TP%2F%2BDsPf&RelayState=%2F00QNx000009t34v&SigAlg=http%3A%2F%2Fwww.w3.org%2F2001%2F04%2Fxmldsig-more%23rsa-sha256&Signature=iKVBiwIlzlcV6%2FpQ1xk3CQ3...	HTTP Parser: No <meta name="copyright".. found
Source: https://enerpac.my.salesforce.com/?ec=302&startURL=%2F00QNx000009t34v	HTTP Parser: No <meta name="copyright".. found
Source: https://login.microsoftonline.com/1602ae82-0266-40d6-910b-11680fe0f6a5/saml2?SAMLRequest=hZNdc6IwFIb%2FCpN7NKSiwlQ7CItarR8Y%2B8ENEzECLSRICIq%2FflltZ7p70T2TXJw5J%2B97Mnly%2F3DOUqWihUg4GwCtBYFCWcj3CYsGYItdtQ8ehveCZCnKTUuWMfPoUVJRKs1BJsxbZQBkwUxORCJMRjIqzDI0N9bT3EQtaOYFL3nIU6BYQtCibKxszoTMaLGhRZWEdOvNByAuy1yY7TZltMhJ2MrqliApFQdehLQV8uxB8AGEDoe3mOs9CyhOM0vCSHmd%2F0si5VHCWlkSFlzwQ8lZmrCrRFvrQkRoH6kQdbtqB%2B67qqHBnapp3T48UHjoEr19vRRQps4ABMi2mvCt%2FmpZ50%2BOdfp3%2Fymrrv66xRP1XJNSlTLf26NZhZ%2B105vw%2FRd74p2NqUfzwCW%2F1iGszkGE08XrEjkFlXvjcV0b1kUuvcXy3emN4rzexZW7nPLZ0dOMOniaTtL4pU4017lE49n8jnpRH75bnSgW%2BkeaZY96P5WFdZRueFyvNqM3f5KjmdYb6%2FgDk1MFVwdc7%2BpzRfx1aKA80%2Ffn3SLEMZJBcJmlbrLL7WjB%2BptpHfmJtGF0CLZ65Bw9Nt89YuH2kmQ9fmeT%2FYmNLodcxXY8HhUTIjlbPos7o3mIqRCSTpkoCSsHAEHUUaGuog7WDLNZCLYggj5QVp80jBJ2o%2BwndHa3JmFOMF6pq%2BUGA%2BX5i9amAXyyaV7di%2B9Q%2FixMvkgEw%2F9yd9%2F%2B7jH8TP%2F%2BDsPf&RelayState=%2F00QNx000009t34v&SigAlg=http%3A%2F%2Fwww.w3.org%2F2001%2F04%2Fxmldsig-more%23rsa-sha256&Signature=iKVBiwIlzlcV6%2FpQ1xk3CQ3...	HTTP Parser: No <meta name="copyright".. found
Source: https://login.microsoftonline.com/1602ae82-0266-40d6-910b-11680fe0f6a5/saml2?SAMLRequest=hZNdc6IwFIb%2FCpN7MASkwBQ7KKJUsX6AWG8cxKhxIUECSP3162o7092L7pk5F5lz8r4nk%2Bc8vzRZKtS44IRRC8gSBAKmCdsRerBAGLiiDl46zzzOUpSbdlUe6RyfK8xL4XaRcvNRsUBVUJPFnHCTxhnmZpmYC9sfm0iCZl6wkiUsBYLNOS7Km1WPUV5luFjgoiYJDudjCxzLMudmq4UpLvI4kbIPiccp5ntWJFhKWPbCmQWhw%2BAjxu0nGwjObRZC4%2FI%2B%2F5dEyg6EShlJCsbZvmQ0JfQu0ZI1iGKsIxEiTRNVuNNEQ4ZbUZY1He4x3Gtxu3V%2FFBA8xwIb1LNvsbb16apX%2B459%2BTf%2FlMXX0yyPw403n3l0dE5%2BvbGi2Q9PRxhwzxn4fVVfETZdL%2BE8f98j47gb9MLBwamGdBOL0eVwDMdXbTKpldJdBYPr5Rq6g9XSsaP09LYRVXfRxFFCurCBzeuxT6LLzIlqL1pPu8Y5WilLVW4KQ0VVNElJoOtrMVx0X%2F0o672L1%2Fmob3gFP0xrN4I61e2ITkZdvPZP3q%2BP9DI7d5WPtuyedr1z3of5OJyN3Kb2Q3Qm7R3dQk43Pt%2BW49PVeFeSeeY2wz4M3KQeKenTxsj6slbePsLjvMIe5WVMSwsgiFQRtkWkBrJhImjKiqSg9hoI008auoQ%2BKPsJne2jiZvDIJiK07dFAITlF623BvDJpnl3L75D%2BbNw%2FEUi6PyXu%2BfWd4%2FO5%2FHvdej8Bg%3D%3D&RelayState=%2F00QNx000009t34v&SigAlg=http%3A%2F%2Fwww.w3.org%2F2001%2F04%2Fxmldsig-more%23rsa-sha256&Signature=U4nwfuX%2BK2wvgoa2gVlGLLmsd...	HTTP Parser: No <meta name="copyright".. found

Source: unknown	HTTPS traffic detected: 20.12.23.50:443 -> 192.168.2.16:49760 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.16:49762 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.16:49771 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 20.12.23.50:443 -> 192.168.2.16:49830 version: TLS 1.2

Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 2.19.120.29
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27

Source: global traffic	DNS traffic detected: DNS query: enerpac.my.salesforce.com
Source: global traffic	DNS traffic detected: DNS query: usa238.sfdc-lywfpd.salesforce.com
Source: global traffic	DNS traffic detected: DNS query: login.salesforce.com
Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: c.salesforce.com
Source: global traffic	DNS traffic detected: DNS query: cdn.evgnet.com
Source: global traffic	DNS traffic detected: DNS query: salesforce.us-1.evergage.com
Source: global traffic	DNS traffic detected: DNS query: www.salesforce.com
Source: global traffic	DNS traffic detected: DNS query: a.sfdcstatic.com
Source: global traffic	DNS traffic detected: DNS query: geolocation.onetrust.com
Source: global traffic	DNS traffic detected: DNS query: login.microsoftonline.com
Source: global traffic	DNS traffic detected: DNS query: aadcdn.msftauth.net
Source: global traffic	DNS traffic detected: DNS query: aadcdn.msauthimages.net
Source: global traffic	DNS traffic detected: DNS query: dscm.li
Source: global traffic	DNS traffic detected: DNS query: identity.nel.measure.office.net

Source: unknown	Network traffic detected: HTTP traffic on port 49708 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49817 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49803 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49826 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49699
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49696
Source: unknown	Network traffic detected: HTTP traffic on port 49820 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49711 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49812 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49703 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49700 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49823 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49729
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49727
Source: unknown	Network traffic detected: HTTP traffic on port 49714 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49726
Source: unknown	Network traffic detected: HTTP traffic on port 49706 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49840
Source: unknown	Network traffic detected: HTTP traffic on port 49712 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49819 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49834 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49729 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49760 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49688 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49805 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49718
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49839
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49838
Source: unknown	Network traffic detected: HTTP traffic on port 49715 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49715
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49714
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49713
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49834
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49712
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49833
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49711
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49799
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49832
Source: unknown	Network traffic detected: HTTP traffic on port 49709 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49710
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49830
Source: unknown	Network traffic detected: HTTP traffic on port 49839 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49822 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49726 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49808 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49709
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49708
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49829
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49707
Source: unknown	Network traffic detected: HTTP traffic on port 49811 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49706
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49827
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49705
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49826
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49704
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49703
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49702
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49823
Source: unknown	Network traffic detected: HTTP traffic on port 49771 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49822
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49700
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49821
Source: unknown	Network traffic detected: HTTP traffic on port 49710 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49699 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49820
Source: unknown	Network traffic detected: HTTP traffic on port 49813 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49727 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49704 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49762 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49807 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49833 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49819
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49818
Source: unknown	Network traffic detected: HTTP traffic on port 49776 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49799 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49810 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49817
Source: unknown	Network traffic detected: HTTP traffic on port 49713 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49816
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49815
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49813
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49812
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49811
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49810
Source: unknown	Network traffic detected: HTTP traffic on port 49816 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49776
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49775
Source: unknown	Network traffic detected: HTTP traffic on port 49707 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49771
Source: unknown	Network traffic detected: HTTP traffic on port 49696 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49827 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49802 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49809
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49808
Source: unknown	Network traffic detected: HTTP traffic on port 49830 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49807
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49805
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49804
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49803
Source: unknown	Network traffic detected: HTTP traffic on port 49718 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49802
Source: unknown	Network traffic detected: HTTP traffic on port 49758 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49838 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49762
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49761
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49760
Source: unknown	Network traffic detected: HTTP traffic on port 49678 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49821 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49815 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49840 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49702 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49809 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49758
Source: unknown	Network traffic detected: HTTP traffic on port 49673 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49705 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49818 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49761 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49804 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49829 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49832 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49775 -> 443

Source: unknown	HTTPS traffic detected: 20.12.23.50:443 -> 192.168.2.16:49760 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.16:49762 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.16:49771 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 20.12.23.50:443 -> 192.168.2.16:49830 version: TLS 1.2

Source: classification engine

Classification label: clean2.win@16/6@46/294

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --single-argument https://enerpac.my.salesforce.com/00QNx000009t34v
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2164 --field-trial-handle=1952,i,14431919621662205081,9828366422186814041,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2164 --field-trial-handle=1952,i,14431919621662205081,9828366422186814041,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown

Source: Window Recorder

Window detected: More than 3 window changes detected

Stores files to the Windows start menu directory

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk

ID:	1447352
Product:	CloudBasic
Start time:	21:18:35
Start date:	24.05.2024
Cookbook:	defaultwindowsinteractivecookbook.jbs
System description:	Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
Architecture:	WINDOWS

Windows Analysis Report
https://enerpac.my.salesforce.com/00QNx000009t34v

Overview

General Information

Detection

Signatures

Classification

Signatures

Phishing

Compliance

Networking

System Summary

Boot Survival

Screenshots

Network Map

Contacted Public IPs

Private

Contacted Domains

Contacted URLs

Windows Analysis Report https://enerpac.my.salesforce.com/00QNx000009t34v

Overview

General Information

Detection

Signatures

Classification

Signatures

Phishing

Compliance

Networking

System Summary

Boot Survival

Screenshots

Network Map

Contacted Public IPs

Private

Contacted Domains

Contacted URLs

Windows Analysis Report
https://enerpac.my.salesforce.com/00QNx000009t34v