| URL: https://nischatalks.lt.acemlna.com Model: Joe Sandbox AI | {
"typosquatting": false,
"unusual_query_string": false,
"suspicious_tld": true,
"ip_in_url": false,
"long_subdomain": true,
"malicious_keywords": false,
"encoded_characters": false,
"redirection": false,
"contains_email_address": false,
"known_domain": false,
"brand_spoofing_attempt": false,
"third_party_hosting": true
} |
URL: https://nischatalks.lt.acemlna.com |
| URL: JavaScript Model: Joe Sandbox AI | {
"risk_score": 1,
"reasoning": "This is a standard Google Tag Manager (GTM) implementation script. It loads from a trusted domain (googletagmanager.com), uses standard DOM manipulation for script injection, and follows established patterns for analytics tracking. The script is unobfuscated and its behavior is transparent."
} |
(function(w,d,s,l,i){w[l]=w[l]||[];w[l].push({'gtm.start':
new Date().getTime(),event:'gtm.js'});var f=d.getElementsByTagName(s)[0],
j=d.createElement(s),dl=l!='dataLayer'?'&l='+l:'';j.async=true;j.src=
'https://www.googletagmanager.com/gtm.js?id='+i+dl;f.parentNode.insertBefore(j,f);
})(window,document,'script','dataLayer','GTM-5DTSVLJL');
|
| URL: JavaScript Model: Joe Sandbox AI | {
"risk_score": 1,
"reasoning": "This code appears to be a legitimate ResizeObserver implementation. It contains standard DOM manipulation and measurement functionality, uses well-documented APIs, and shows no signs of malicious behavior. The code is minified but not obfuscated, and includes proper licensing header."
} |
/*! For license information please see site-bundle.js.LICENSE.txt */
!function(t,e){if("object"==typeof exports&&"object"==typeof module)module.exports=e();else if("function"==typeof define&&define.amd)define([],e);else{var r=e();for(var n in r)("object"==typeof exports?exports:t)[n]=r[n]}}(self,(function(){return function(){var t,e,r,n,o={44564:function(t,e,r){"use strict";r.r(e),r.d(e,{ResizeObserver:function(){return q},ResizeObserverEntry:function(){return E},ResizeObserverSize:function(){return u}});var n,o=[],i="ResizeObserver loop completed with undelivered notifications.";!function(t){t.BORDER_BOX="border-box",t.CONTENT_BOX="content-box",t.DEVICE_PIXEL_CONTENT_BOX="device-pixel-content-box"}(n||(n={}));var a,c=function(t){return Object.freeze(t)},u=function(t,e){this.inlineSize=t,this.blockSize=e,c(this)},s=function(){function t(t,e,r,n){return this.x=t,this.y=e,this.width=r,this.height=n,this.top=this.y,this.left=this.x,this.bottom=this.top+this.height,this.right=this.left+this.width,c(this)}return t.prototype.toJSON=function(){var t=this;return{x:t.x,y:t.y,top:t.top,right:t.right,bottom:t.bottom,left:t.left,width:t.width,height:t.height}},t.fromRect=function(e){return new t(e.x,e.y,e.width,e.height)},t}(),l=function(t){return t instanceof SVGElement&&"getBBox"in t},f=function(t){if(l(t)){var e=t.getBBox(),r=e.width,n=e.height;return!r&&!n}var o=t,i=o.offsetWidth,a=o.offsetHeight;return!(i||a||t.getClientRects().length)},h=function(t){var e;if(t instanceof Element)return!0;var r=null===(e=null==t?void 0:t.ownerDocument)||void 0===e?void 0:e.defaultView;return!!(r&&t instanceof r.Element)},d="undefined"!=typeof window?window:{},p=new WeakMap,v=/auto|scroll/,y=/^tb|vertical/,g=/msie|trident/i.test(d.navigator&&d.navigator.userAgent),m=function(t){return parseFloat(t||"0")},b=function(t,e,r){return void 0===t&&(t=0),void 0===e&&(e=0),void 0===r&&(r=!1),new u((r?e:t)||0,(r?t:e)||0)},w=c({devicePixelContentBoxSize:b(),borderBoxSize:b(),contentBoxSize:b(),contentRect:new s(0,0,0,0)}),x=function(t,e){if(void 0===e&&(e=!1),p.has(t)&&!e)return p.get(t);if(f(t))return p.set(t,w),w;var r=getComputedStyle(t),n=l(t)&&t.ownerSVGElement&&t.getBBox(),o=!g&&"border-box"===r.boxSizing,i=y.test(r.writingMode||""),a=!n&&v.test(r.overflowY||""),u=!n&&v.test(r.overflowX||""),h=n?0:m(r.paddingTop),d=n?0:m(r.paddingRight),x=n?0:m(r.paddingBottom),S=n?0:m(r.paddingLeft),E=n?0:m(r.borderTopWidth),O=n?0:m(r.borderRightWidth),L=n?0:m(r.borderBottomWidth),k=S+d,P=h+x,_=(n?0:m(r.borderLeftWidth))+O,j=E+L,A=u?t.offsetHeight-j-t.clientHeight:0,I=a?t.offsetWidth-_-t.clientWidth:0,T=o?k+_:0,N=o?P+j:0,C=n?n.width:m(r.width)-T-I,M=n?n.height:m(r.height)-N-A,F=C+k+I+_,G=M+P+A+j,R=c({devicePixelContentBoxSize:b(Math.round(C*devicePixelRatio),Math.round(M*devicePixelRatio),i),borderBoxSize:b(F,G,i),contentBoxSize:b(C,M,i),contentRect:new s(S,h,C,M)});return p.set(t,R),R},S=function(t,e,r){var o=x(t,r),i=o.borderBoxSize,a=o.contentBoxSize,c=o.devicePixelContentBoxSize;switch(e){case n.DEVICE_PIXEL_CONTENT_BOX:return c;case n.BORDER_BOX:return i;default:return a}},E=function(t){var e=x(t);this.target=t,this.contentRect=e.contentRect,this.borderBoxSize=c([e.borderBoxSize]),this.contentBoxSize=c([e.contentBoxSize]),this.devicePixelContentBoxSize=c([e.devicePixelContentBoxSize])},O=function(t){if(f(t))return 1/0;for(var e=0,r=t.parentNode;r;)e+=1,r=r.parentNode;return e},L=function(){var t=1/0,e=[];o.forEach((function(r){if(0!==r.activeTargets.length){var n=[];r.activeTargets.forEach((function(e){var r=new E(e.target),o=O(e.target);n.push(r),e.lastReportedSize=S(e.target,e.observedBox),o<t&&(t=o)})),e.push((function(){r.callback.call(r.observer,n,r.observer)})),r.activeTargets.splice(0,r.activeTargets.length)}}));for(var r=0,n=e;r<n.length;r++){(0,n[r])()}return t},k=function(t){o.forEach((function(e){e.activeTargets.splice(0,e.activeTargets.length),e.skippedTargets.splice(0,e.skippedTargets.length),e.observationTargets.forEach((function(r){r.isActive()&&(O(r.targe |
| URL: https://nischa.me/ms-blackfriday Model: Joe Sandbox AI | {
"contains_trigger_text": true,
"trigger_text": "Transform your finances and multiply your wealth (even if you've never been good with money)",
"prominent_button_name": "I'M READY TO TAKE CONTROL",
"text_input_field_labels": "unknown",
"pdf_icon_visible": false,
"has_visible_captcha": false,
"has_urgent_text": true,
"has_visible_qrcode": false,
"contains_chinese_text": false
} |
 |
| URL: JavaScript Model: Joe Sandbox AI | {
"risk_score": 2,
"reasoning": "This appears to be a legitimate YUI (Yahoo User Interface) library code snippet. While it uses some legacy practices (YUI is outdated), it contains standard module loading patterns and configuration setup. The code is from a known source (Yahoo) and doesn't exhibit malicious behaviors. The only minor risk factors are the use of legacy APIs and global object manipulation."
} |
(self.webpackChunkextract_css=self.webpackChunkextract_css||[]).push([[97684],{415611:(e,V,T)=>{"use strict";T.r(V),T.d(V,{YUI:()=>_}),e=T.hmd(e);var m=T(760636);/**
@license
YUI 3.17.2 (build 9c3c78e)
Copyright 2014 Yahoo! Inc. All rights reserved.
Licensed under the BSD License.
http://yuilibrary.com/license/
*/typeof _!="undefined"&&(_._YUI=_);var _=function(){var v=0,u=this,n=arguments,d=n.length,r=function(i,f){return i&&i.hasOwnProperty&&i instanceof f},a=typeof YUI_config!="undefined"&&YUI_config;if(r(u,_)?(u._init(),_.GlobalConfig&&u.applyConfig(_.GlobalConfig),a&&u.applyConfig(a),d||u._setup()):u=new _,d){for(;v<d;v++)u.applyConfig(n[v]);u._setup()}return u.instanceOf=r,u};(function(){var v,u,n="3.17.2",d=".",r="http://yui.yahooapis.com/",a="yui3-js-enabled",i="yui3-css-stamp",f=function(){},g=Array.prototype.slice,A={"io.xdrReady":1,"io.xdrResponse":1,"SWF.eventHandler":1},E=typeof window!="undefined",h=E?window:null,s=E?h.document:null,c=s&&s.documentElement,o=c&&c.className,t={},p=new Date().getTime(),l=function(S,O,M,I){S&&S.addEventListener?S.addEventListener(O,M,I):S&&S.attachEvent&&S.attachEvent("on"+O,M)},y=function(S,O,M,I){if(S&&S.removeEventListener)try{S.removeEventListener(O,M,I)}catch(L){}else S&&S.detachEvent&&S.detachEvent("on"+O,M)},N=function(){_.Env.DOMReady=!0;var S=new Event("domready");window.dispatchEvent(S),E&&y(s,"DOMContentLoaded",N)},D=function(){_.Env.windowLoaded=!0,_.Env.DOMReady=!0;var S=new Event("domready");window.dispatchEvent(S),E&&y(window,"load",D)},b=function(S,O){var M=S.Env._loader,I=["loader-base"],L=_.Env,w=L.mods;return M?(M.ignoreRegistered=!1,M.onEnd=null,M.data=null,M.required=[],M.loadType=null):(M=new S.Loader(S.config),S.Env._loader=M),w&&w.loader&&(I=[].concat(I,_.Env.loaderExtras)),_.Env.core=S.Array.dedupe([].concat(_.Env.core,I)),M},C=function(S,O){for(var M in O)O.hasOwnProperty(M)&&(S[M]=O[M])},x={success:!0};c&&o.indexOf(a)==-1&&(o&&(o+=" "),o+=a,c.className=o),n.indexOf("@")>-1&&(n="3.5.0");var U={};v={stats:{getAll:function(){try{return window.top.YUIStats=window.top.YUIStats||U}catch(S){return U}},getOne:function(S){return v.stats.getAll()[S]=v.stats.getAll()[S]||{create:0,initializer:0,destructor:0}},getSerializedDataForReporter:function(){var S={},O=v.stats.getAll();return Y.Object.keys(O).forEach(function(M){var I=O[M],L=I.create,w=I.initializer,H=I.destructor;S.hasOwnProperty(L)||(S[L]={}),S[L].hasOwnProperty(w)||(S[L][w]={}),S[L][w].hasOwnProperty(H)||(S[L][w][H]=[]),S[L][w][H].push(M)}),S},markCreate:function(S){var O=v.stats.getOne(S);O.create++},markInitializer:function(S){var O=v.stats.getOne(S);O.initializer++},markDestructor:function(S){var O=v.stats.getOne(S);O.destructor++}},applyConfig:function(S){S=S||f;var O,M,I=this.config,L=I.modules,w=I.groups,H=I.aliases,R=this.Env._loader;for(M in S)S.hasOwnProperty(M)&&(O=S[M],L&&M=="modules"?C(L,O):H&&M=="aliases"?C(H,O):w&&M=="groups"?C(w,O):M=="win"?(I[M]=O&&O.contentWindow||O,I.doc=I[M]?I[M].document:null):M=="_yuid"||(I[M]=O));R&&R._config(S)},_config:function(S){this.applyConfig(S)},_init:function(){var S,O,M=this,I=_.Env,L=M.Env,w;if(M.version=n,!L){if(M.Env={core:["get","features","intl-base","yui-log","yui-later"],loaderExtras:["loader-rollup","loader-yui3"],mods:{},versions:{},base:r,cdn:r+n+"/build/",_idx:0,_used:{},_attached:{},_exported:{},_missed:[],_yidx:0,_uidx:0,_guidp:"y",_loaded:{},_BASE_RE:/(?:\?(?:[^&]*&)*([^&]*))?\b(yui(?:-\w+)?)\/\2(?:-(min|debug))?\.js/,parseBasePath:function(H,R){var k=H.match(R),P,X;return k&&(P=RegExp.leftContext||H.slice(0,H.indexOf(k[0])),X=k[3],k[1]&&(P+="?"+k[1]),P={filter:X,path:P}),P},getBase:I&&I.getBase||function(H){var R=s&&s.getElementsByTagName("script")||[],k=L.cdn,P,X,B,F;for(X=0,B=R.length;X<B;++X)if(F=R[X].src,F&&(P=M.Env.parseBasePath(F,H),P)){S=P.filter,k=P.path;break}return k}},L=M.Env,L._loaded[n]={},I&&M!==_)L._yidx=++I._yidx,L._guidp=("yui_"+n+"_"+L._yidx+"_"+p).replace(/[^a-z0-9_]+/g,"_");else if(_._YUI){I=_._YUI.Env,L._yidx+=I._yidx,L._uidx+=I |
| URL: JavaScript Model: Joe Sandbox AI | {
"risk_score": 2,
"reasoning": "This is Facebook's standard Pixel tracking code. It loads from a legitimate Facebook domain (connect.facebook.net), uses standard tracking practices, and follows expected patterns for analytics implementation. While it does load external scripts and track page views (+2 points), the trusted domain (Facebook) and transparent analytics purpose warrant a -1 point adjustment."
} |
!function(f,b,e,v,n,t,s){if(f.fbq)return;n=f.fbq=function(){n.callMethod?n.callMethod.apply(n,arguments):n.queue.push(arguments)};if(!f._fbq)f._fbq=n;n.push=n;n.loaded=!0;n.version='2.0';n.agent='plsquarespace';n.queue=[];t=b.createElement(e);t.async=!0;t.src=v;s=b.getElementsByTagName(e)[0];s.parentNode.insertBefore(t,s)}(window,document,'script','https://connect.facebook.net/en_US/fbevents.js');fbq('init', '1486981695511387');fbq('track', "PageView");
|
| URL: JavaScript Model: Joe Sandbox AI | {
"risk_score": 1,
"reasoning": "This appears to be a legitimate TypedArray implementation code, likely from a JavaScript polyfill or core library. It contains standard array buffer and typed array functionality with no suspicious behaviors. The code is minified but shows typical patterns for handling ArrayBuffer, DataView, and TypedArray operations. No dangerous APIs or data exfiltration attempts are present."
} |
(()=>{var t,r={481:(t,r,e)=>{var n=e(8807),o=e(8427),i=TypeError;t.exports=function(t){if(n(t))return t;throw i(o(t)+" is not a function")}},2420:(t,r,e)=>{var n=e(1758),o=e(8427),i=TypeError;t.exports=function(t){if(n(t))return t;throw i(o(t)+" is not a constructor")}},5946:(t,r,e)=>{var n=e(8807),o=String,i=TypeError;t.exports=function(t){if("object"==typeof t||n(t))return t;throw i("Can't set "+o(t)+" as a prototype")}},3288:(t,r,e)=>{var n=e(6982),o=e(6042),i=e(189).f,a=n("unscopables"),s=Array.prototype;null==s[a]&&i(s,a,{configurable:!0,value:o(null)}),t.exports=function(t){s[a][t]=!0}},5158:(t,r,e)=>{"use strict";var n=e(3100).charAt;t.exports=function(t,r,e){return r+(e?n(t,r).length:1)}},5712:(t,r,e)=>{var n=e(3521),o=TypeError;t.exports=function(t,r){if(n(r,t))return t;throw o("Incorrect invocation")}},1843:(t,r,e)=>{var n=e(1188),o=String,i=TypeError;t.exports=function(t){if(n(t))return t;throw i(o(t)+" is not an object")}},7603:t=>{t.exports="undefined"!=typeof ArrayBuffer&&"undefined"!=typeof DataView},491:(t,r,e)=>{"use strict";var n,o,i,a=e(7603),s=e(5417),u=e(412),c=e(8807),f=e(1188),l=e(1854),p=e(765),h=e(8427),v=e(7001),g=e(9379),d=e(189).f,y=e(3521),m=e(2421),b=e(1083),x=e(6982),w=e(4436),E=e(887),S=E.enforce,R=E.get,A=u.Int8Array,O=A&&A.prototype,T=u.Uint8ClampedArray,I=T&&T.prototype,k=A&&m(A),P=O&&m(O),L=Object.prototype,_=u.TypeError,j=x("toStringTag"),M=w("TYPED_ARRAY_TAG"),C=a&&!!b&&"Opera"!==p(u.opera),U=!1,D={Int8Array:1,Uint8Array:1,Uint8ClampedArray:1,Int16Array:2,Uint16Array:2,Int32Array:4,Uint32Array:4,Float32Array:4,Float64Array:8},N={BigInt64Array:8,BigUint64Array:8},F=function(t){var r=m(t);if(f(r)){var e=R(r);return e&&l(e,"TypedArrayConstructor")?e.TypedArrayConstructor:F(r)}},B=function(t){if(!f(t))return!1;var r=p(t);return l(D,r)||l(N,r)};for(n in D)(i=(o=u[n])&&o.prototype)?S(i).TypedArrayConstructor=o:C=!1;for(n in N)(i=(o=u[n])&&o.prototype)&&(S(i).TypedArrayConstructor=o);if((!C||!c(k)||k===Function.prototype)&&(k=function(){throw _("Incorrect invocation")},C))for(n in D)u[n]&&b(u[n],k);if((!C||!P||P===L)&&(P=k.prototype,C))for(n in D)u[n]&&b(u[n].prototype,P);if(C&&m(I)!==P&&b(I,P),s&&!l(P,j))for(n in U=!0,d(P,j,{get:function(){return f(this)?this[M]:void 0}}),D)u[n]&&v(u[n],M,n);t.exports={NATIVE_ARRAY_BUFFER_VIEWS:C,TYPED_ARRAY_TAG:U&&M,aTypedArray:function(t){if(B(t))return t;throw _("Target is not a typed array")},aTypedArrayConstructor:function(t){if(c(t)&&(!b||y(k,t)))return t;throw _(h(t)+" is not a typed array constructor")},exportTypedArrayMethod:function(t,r,e,n){if(s){if(e)for(var o in D){var i=u[o];if(i&&l(i.prototype,t))try{delete i.prototype[t]}catch(e){try{i.prototype[t]=r}catch(t){}}}P[t]&&!e||g(P,t,e?r:C&&O[t]||r,n)}},exportTypedArrayStaticMethod:function(t,r,e){var n,o;if(s){if(b){if(e)for(n in D)if((o=u[n])&&l(o,t))try{delete o[t]}catch(t){}if(k[t]&&!e)return;try{return g(k,t,e?r:C&&k[t]||r)}catch(t){}}for(n in D)!(o=u[n])||o[t]&&!e||g(o,t,r)}},getTypedArrayConstructor:F,isView:function(t){if(!f(t))return!1;var r=p(t);return"DataView"===r||l(D,r)||l(N,r)},isTypedArray:B,TypedArray:k,TypedArrayPrototype:P}},1812:(t,r,e)=>{"use strict";var n=e(412),o=e(1765),i=e(5417),a=e(7603),s=e(6815),u=e(7001),c=e(7570),f=e(2229),l=e(5712),p=e(2048),h=e(5664),v=e(2785),g=e(3205),d=e(2421),y=e(1083),m=e(8206).f,b=e(189).f,x=e(9369),w=e(9625),E=e(3803),S=e(887),R=s.PROPER,A=s.CONFIGURABLE,O=S.get,T=S.set,I="ArrayBuffer",k="Wrong index",P=n.ArrayBuffer,L=P,_=L&&L.prototype,j=n.DataView,M=j&&j.prototype,C=Object.prototype,U=n.Array,D=n.RangeError,N=o(x),F=o([].reverse),B=g.pack,H=g.unpack,q=function(t){return[255&t]},V=function(t){return[255&t,t>>8&255]},W=function(t){return[255&t,t>>8&255,t>>16&255,t>>24&255]},G=function(t){return t[3]<<24|t[2]<<16|t[1]<<8|t[0]},$=function(t){return B(t,23,4)},Y=function(t){return B(t,52,8)},z=function(t,r){b(t.prototype,r,{get:function(){return O(this)[r]}})},K=function(t,r,e,n){var o=v(e),i=O(t);if(o+r>i.byteLength)throw D(k);var a=O(i.buffer).bytes,s |
| URL: JavaScript Model: Joe Sandbox AI | {
"risk_score": 4,
"reasoning": "Script demonstrates moderate risk behaviors: 1) URL encoding/manipulation function, 2) attempts to access parent window location, 3) dynamically injects external script from deadlinefunnel.com. However, Deadline Funnel is a known marketing tool, and the script's behavior is consistent with its intended functionality. The encoding appears to be for URL safety rather than malicious obfuscation. Score adjusted down due to legitimate business context."
} |
function SendUrlToDeadlineFunnel(e){var r,t,c,a,h,n,o,A,i = "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/=",d=0,l=0,s="",u=[];if(!e)return e;do r=e.charCodeAt(d++),t=e.charCodeAt(d++),c=e.charCodeAt(d++),A=r<<16|t<<8|c,a=A>>18&63,h=A>>12&63,n=A>>6&63,o=63&A,u[l++]=i.charAt(a)+i.charAt(h)+i.charAt(n)+i.charAt(o);while(d<e.length);s=u.join("");var C=e.length%3;var decoded = (C?s.slice(0,C-3):s)+"===".slice(C||3);decoded = decoded.replace("+", "-");decoded = decoded.replace("/", "_");return decoded;} var dfUrl = SendUrlToDeadlineFunnel(location.href); var dfParentUrlValue;try {dfParentUrlValue = window.parent.location.href;} catch(err) {if(err.name === "SecurityError") {dfParentUrlValue = document.referrer;}}var dfParentUrl = (parent !== window) ? ("/" + SendUrlToDeadlineFunnel(dfParentUrlValue)) : "";(function() {var s = document.createElement("script");s.type = "text/javascript";s.async = true;s.setAttribute("data-scriptid", "dfunifiedcode");s.src ="https://a.deadlinefunnel.com/unified/reactunified.bundle.js?userIdHash=eyJpdiI6Ii9KMGdLc1dISmIyYUtWeHVyYlpxUnc9PSIsInZhbHVlIjoidGJZNmxwa0YwVVpvdXZlYVRUWGtNdz09IiwibWFjIjoiM2ZkYWI1MTExMzY2NGQ5YzRjMDIxM2NiZDBiMjFkOTkxYWZkNjdmYzVkNjc5NTNkNWI2OWVlMmY1NTlhNmE5NiJ9&pageFromUrl="+dfUrl+"&parentPageFromUrl="+dfParentUrl;var s2 = document.getElementsByTagName("script")[0];s2.parentNode.insertBefore(s, s2);})();
|
| URL: JavaScript Model: Joe Sandbox AI | {
"risk_score": 2,
"reasoning": "This appears to be a legitimate language/louserzation module containing CLDR (Common Locale Data Repository) data. It uses standard module pattern and contains only static language data. No dynamic code execution, external calls, or suspicious behaviors detected. The obfuscated-looking structure is typical for bundled modules."
} |
(()=>{var o={544791:(_,i,a)=>{var s={"./en.json":759707,"src/main/webapp/universal/node_modules/@sqs/i18n-cldr/packs/en.json":759707};function e(n){var r=u(n);return a(r)}function u(n){if(!a.o(s,n)){var r=new Error("Cannot find module '"+n+"'");throw r.code="MODULE_NOT_FOUND",r}return s[n]}e.keys=function(){return Object.keys(s)},e.resolve=u,_.exports=e,e.id=544791},759707:_=>{"use strict";_.exports=JSON.parse(`{"version":"1.9.2","cldr":"45.0.0","checksum":"a32312c4","language":"en","defaultTag":"en-Latn-US","scripts":{"Latn":{"strings":"E_Afar_Abkhazian_Acehnese_Acoli_Adangme_Adyghe_Avestan_Tunisian Arabic_Afrikaans_Afrihili_Aghem_Ainu_Akan_Akkadian_Alabama_Aleut_Gheg Albanian_Southern Altai_Amharic_Aragonese_Old English_Angika_Arabic_Aramaic_Mapuche_Araona_Arapaho_Algerian Arabic_Najdi Arabic_Arawak_Moroccan Arabic_Egyptian Arabic_Assamese_Asu_American Sign Language_Asturian_Avaric_Kotava_Awadhi_Aymara_Azerbaijani_Bashkir_Baluchi_Balinese_Bavarian_Basaa_Bamun_Batak Toba_Ghomala_Belarusian_Beja_Bemba_Betawi_Bena_Bafut_Badaga_Bulgarian_Western Balochi_Bhojpuri_Bislama_Bikol_Bini_Banjar_Kom_Siksika_Bambara_Bangla_Tibetan_Bishnupriya_Bakhtiari_Breton_Braj_Brahui_Bodo_Bosnian_Akoose_Buriat_Buginese_Bulu_Blin_Medumba_Catalan_Caddo_Carib_Cayuga_Atsam_Chakma_Chechen_Cebuano_Chiga_Chamorro_Chibcha_Chagatai_Chuukese_Mari_Chinook Jargon_Choctaw_Chipewyan_Cherokee_Cheyenne_Central Kurdish_Corsican_Coptic_Capiznon_Cree_Crimean Tatar_Seselwa Creole French_Czech_Kashubian_Church Slavic_Chuvash_Welsh_Danish_Dakota_Dargwa_Taita_German_Delaware_Slave_Dogrib_Dinka_Zarma_Dogri_Lower Sorbian_Central Dusun_Duala_Middle Dutch_Divehi_Jola-Fonyi_Dyula_Dzongkha_Dazaga_Embu_Ewe_Efik_Emilian_Ancient Egyptian_Ekajuk_Greek_Elamite_English_Middle English_Esperanto_Spanish_Central Yupik_Estonian_Basque_Ewondo_Extremaduran_Persian_Fang_Fanti_Fula_Finnish_Filipino_Tornedalen Finnish_Fijian_Faroese_Fon_French_Cajun French_Middle French_Old French_Arpitan_Northern Frisian_Eastern Frisian_Friulian_Western Frisian_Irish_Ga_Gagauz_Gan Chinese_Gayo_Gbaya_Zoroastrian Dari_Scottish Gaelic_Geez_Gilbertese_Galician_Gilaki_Middle High German_Guarani_Old High German_Goan Konkani_Gondi_Gorontalo_Gothic_Grebo_Ancient Greek_Swiss German_Gujarati_Wayuu_Frafra_Gusii_Manx_Gwich\u02BCin_Hausa_Haida_Hakka Chinese_Hawaiian_Hebrew_Hindi_Fiji Hindi_Hiligaynon_Hittite_Hmong_Hiri Motu_Croatian_Upper Sorbian_Xiang Chinese_Haitian Creole_Hungarian_Hupa_Armenian_Herero_Interlingua_Iban_Ibibio_Indonesian_Interlingue_Igbo_Sichuan Yi_Inupiaq_Iloko_Ingush_Ido_Icelandic_Italian_Inuktitut_Ingrian_Japanese_Jamaican Creole English_Lojban_Ngomba_Machame_Judeo-Persian_Judeo-Arabic_Jutish_Javanese_Georgian_Kara-Kalpak_Kabyle_Kachin_Jju_Kamba_Kawi_Kabardian_Kanembu_Tyap_Makonde_Kabuverdianu_Kenyang_Koro_Kongo_Kaingang_Khasi_Khotanese_Koyra Chiini_Khowar_Kikuyu_Kirmanjki_Kuanyama_Kazakh_Kako_Kalaallisut_Kalenjin_Khmer_Kimbundu_Kannada_Korean_Komi-Permyak_Konkani_Kosraean_Kpelle_Kanuri_Karachay-Balkar_Krio_Kinaray-a_Karelian_Kurukh_Kashmiri_Shambala_Bafia_Colognian_Kurdish_Kumyk_Kutenai_Komi_Cornish_Kyrgyz_Latin_Ladino_Langi_Western Panjabi_Lamba_Luxembourgish_Lezghian_Lingua Franca Nova_Ganda_Limburgish_Ligurian_Livonian_Lakota_Lombard_Lingala_Lao_Mongo_Louisiana Creole_Lozi_Northern Luri_Lithuanian_Latgalian_Luba-Katanga_Luba-Lulua_Luiseno_Lunda_Luo_Mizo_Luyia_Latvian_Literary Chinese_Laz_Madurese_Mafa_Magahi_Maithili_Makasar_Mandingo_Masai_Maba_Moksha_Mandar_Mende_Meru_Morisyen_Malagasy_Middle Irish_Makhuwa-Meetto_Meta\u02BC_Marshallese_M\u0101ori_Mi'kmaw_Minangkabau_Macedonian_Malayalam_Mongolian_Manchu_Manipuri_Mohawk_Mossi_Marathi_Western Mari_Malay_Maltese_Mundang_Multiple languages_Creek_Mirandese_Marwari_Mentawai_Burmese_Myene_Erzya_Mazanderani_Nauru_Min Nan Chinese_Neapolitan_Nama_Norwegian Bokm\xE5l_North Ndebele_Low German_Nepali_Newari_Ndonga_Nias_Niuean_Ao Naga_Dutch_Kwasio_Norwegian Nynorsk_Ngiemboon_Norwegian_Nogai_Old Norse_Novial_N\u2019Ko_South Ndebele_Northern Sotho_Nuer_Navajo_Class |
| URL: JavaScript Model: Joe Sandbox AI | {
"risk_score": 4,
"reasoning": "The script shows moderate risk indicators including service worker registration and message passing between windows. While it includes Google copyright notice and appears to be a legitimate service worker implementation, it contains cross-origin communication and dynamic URL construction. The code is minified which reduces readability but appears to be from a legitimate source. No clear malicious behaviors are observed, but the cross-origin messaging warrants caution."
} |
'use strict';class m{constructor(a){this.j=a;this.g={};this.h={};this.i=0;this.id=String(Math.floor(Number.MAX_SAFE_INTEGER*Math.random()))}}function n(a){return a.performance&&a.performance.now()||Date.now()}
var p=function(a,b){class d{constructor(c,g,f){this.failureType=c;this.data=g;this.g=f;this.h=new m(n(f))}s(c,g){const f=c.clientId;if(c.type===0){c.isDead=!0;var e=this.h,h=n(this.g);e.g[f]==null&&(e.g[f]=0,e.h[f]=h,e.i++);e.g[f]++;c.stats={targetId:e.id,clientCount:e.i,totalLifeMs:Math.round(h-e.j),heartbeatCount:e.g[f],clientLifeMs:Math.round(h-e.h[f])}}c.failure={failureType:this.failureType,data:this.data};g(c)}}return new d(5,a,b)};/*
Copyright Google LLC
SPDX-License-Identifier: Apache-2.0
*/
let q=globalThis.trustedTypes,r;function t(){let a=null;if(!q)return a;try{const b=d=>d;a=q.createPolicy("goog#html",{createHTML:b,createScript:b,createScriptURL:b})}catch(b){}return a};var u=class{constructor(a){this.g=a}toString(){return this.g+""}};function v(a){const b=a;var d;r===void 0&&(r=t());d=r;return new u(d?d.createScriptURL(b):b)}function w(a){if(a instanceof u)return a.g;throw Error("");};function x(a,...b){if(b.length===0)return v(a[0]);let d=a[0];for(let c=0;c<b.length;c++)d+=encodeURIComponent(b[c])+a[c+1];return v(d)}function y(a){var b=x`sw.js`,d=w(b).toString();const c=d.split(/[?#]/),g=/[?]/.test(d)?"?"+c[1]:"";return z(c[0],g,/[#]/.test(d)?"#"+(g?c[2]:c[1]):"",a)}
function z(a,b,d,c){function g(e,h){e!=null&&(Array.isArray(e)?e.forEach(l=>g(l,h)):(b+=f+encodeURIComponent(h)+"="+encodeURIComponent(e),f="&"))}let f=b.length?"&":"?";c.constructor===Object&&(c=Object.entries(c));Array.isArray(c)?c.forEach(e=>g(e[1],e[0])):c.forEach(g);return v(a+b+d)};const A=/Chrome\/(\d+)/;var C=function(a){const b=a.origin;if(b){var d=a.o?"swe.js":"sw.js",c=a.g?x`/static/service_worker/${a.g}/${d}?origin=${b}`:x`/gtm/static/${d}?origin=${b}`,g=new Map([["origin",b]]);a.h&&g.set("path",a.h);var f=a.l?y(g):c,e=()=>{const k=A.exec(a.window.navigator.userAgent);return k&&Number(k[1])<119},h=a.window.document.location.href;a.g&&(a.l?h=`${a.h}/_/service_worker`:e()||(h="/static/service_worker"));var l={scope:h};a.g&&(l.updateViaCache="all");a.window.navigator.serviceWorker.register(w(f),
l).then(()=>{a.window.navigator.serviceWorker.ready.then(k=>{a.i=k.active;B(a)})},k=>{a.j=p(k==null?void 0:k.toString(),a.window);B(a)});a.window.navigator.serviceWorker.addEventListener("message",k=>{a.window.parent.postMessage(k.data,a.origin)})}},B=function(a){const b=a.m.slice();a.m=[];for(const d of b)a.handleEvent(d)};
(function(a){if((f=>{try{return f!==f.top}catch(e){return!0}})(a.window)){var b=new URL(a.window.document.location.href),d=b.searchParams.get("origin");if(d){a.origin=d;a.l=!!b.searchParams.get("1p");a.o=!!b.searchParams.get("e");a.h=b.searchParams.get("path")||"";var c=b.pathname.match(RegExp(".*/service_worker/(\\w+)/"));c&&c.length&&(a.g=c[1]);var g=a.window.document.location.ancestorOrigins;g&&g[0]!==a.origin||(C(a),a.window.addEventListener("message",f=>{a.handleEvent(f)}))}}})(new class{constructor(a){this.window=
a;this.origin="";this.o=this.l=!1;this.h="";this.j=this.i=null;this.m=[];this.g=""}handleEvent(a){a.origin===this.origin&&(this.i?this.i.postMessage(a.data):this.j?this.j.s(a.data,b=>{this.window.parent.postMessage(b,this.origin)}):this.m.push(a))}}(window));
|
| URL: JavaScript Model: Joe Sandbox AI | {
"risk_score": 2,
"reasoning": "This appears to be a legitimate bundled React application (likely created with webpack). It contains standard JavaScript practices including module imports, cookie handling, and URL parsing. While it does include DOM manipulation and cookie operations, these are typical for web applications and follow standard patterns. The code appears to be from a deadline/funnel management system with no obvious malicious behaviors."
} |
/*! For license information please see reactunified.bundle.js.LICENSE.txt */
(()=>{var e,t,r={6628:(e,t,r)=>{"use strict";r(38077),r(81919),r(99474),r(35082),r(40739);var n=r(4942),o=r(15861),i=r(64687),a=r.n(i),u=(r(60228),r(73964),r(78832),r(752),r(21694),r(76265),r(6203),r(34338),r(64043),r(57267),r(69358),r(60429),r(76801),r(43843),r(49693),r(98742),r(96869),r(30024),r(47522),r(55791),r(59749),r(86544),r(62795),r(13383),r(97195),r(61514),r(67294)),s=r(20209),c=r(85837),l=r.n(c),f=r(73935),d=(r(9873),r(24551));function p(e){var t=function(e){var t,r,n=document.querySelectorAll("[data-scriptid]");if(n.length>0)var o=n;else o=document.getElementsByTagName("script");for(var i=0;i<o.length;i+=1){var a=o[i].src;if(a&&2==(t=h(a)).length){var u;if(2==(u=t[1].split(/\?/g)).length){var s,c,l,f=(0,d.dD)("?"+u[1]),p=(s=Object.keys(f)).length;for(i=0;i<p;)""!=c&&(l=f[c=s[i]],i+=1,e[c]=l)}return(r=u[0].split(/\/+/g)).length>=2&&(e.userIdHash=r[0],e.pageFromUrl=r[1],void 0!==r[2]&&(e.parentPageFromUrl=r[2])),e}}return e}(e),r=function(e){if(dfAppConfig.clientUrl&&null!==dfAppConfig.clientUrl.search){for(var t,r,n=(0,d.dD)(dfAppConfig.clientUrl.search),o=Object.keys(n),i=o.length,a=0;a<i;)r=n[t=o[a]],a+=1,e[t]=r;return e}}(t);return void 0!==r&&(dfAppConfig.debug=r.debug,dfAppConfig.promocode=r.promocode,(0,d.yD)(r,"Page params:")),t.clientUrl=dfAppConfig.clientUrl,void 0!==t.prefill&&(dfAppConfig.prefill=t.prefill),void 0!==t.promocode&&(dfAppConfig.promocode=t.promocode),void 0!==t.debug&&(dfAppConfig.debug=!!r&&r.debug),void 0!==t.baseUrl&&(dfAppConfig.domain="//"+t.baseUrl,"dev.dfstaging.com"===t.baseUrl?dfAppConfig.redisDomain="https://c.dfstaging.com":"deadlinefunnel.com"===t.baseUrl&&(dfAppConfig.redisDomain="https://c.deadlinefunnel.com")),void 0!==t.promotionId&&(dfAppConfig.promotionId=t.promotionId),void 0!==t.userIdHash&&(dfAppConfig.userIdHash=t.userIdHash),void 0!==t.pageFromUrl&&(dfAppConfig.pageFromUrl=t.pageFromUrl),void 0!==t.parentPageFromUrl&&(dfAppConfig.parentPageFromUrl=t.parentPageFromUrl),t}Element.prototype.dfHas=function(e){for(var t=this.childNodes,r=0;r<t.lenght;r++)if(t[r].dfHasClass(e))return!0;return!1};var h=function(e){return e.split("unified/")},g=function(e){var t=("; "+document.cookie).split("; df-".concat(e,"="));return 2===t.length&&t.pop().split(";").shift()},m=function(e,t){var r=g(e);if(!r||r!==t){var n=new Date;n.setMonth(n.getMonth()+6),document.cookie="df-".concat(e,"=").concat(t,";expires=").concat(n.toGMTString(),";path=/;samesite=lax;")}},v=r(83878),y=r(88192),b=r(25267);r(89730),r(56945);var w=function(){var e=(0,o.Z)(a().mark((function e(){return a().wrap((function(e){for(;;)switch(e.prev=e.next){case 0:return e.prev=0,e.next=3,Promise.resolve().then(r.bind(r,56945));case 3:e.next=8;break;case 5:throw e.prev=5,e.t0=e.catch(0),new Error("Lightbox styles could not be loaded.");case 8:case"end":return e.stop()}}),e,null,[[0,5]])})));return function(){return e.apply(this,arguments)}}(),x=function(){var e=arguments.length>0&&void 0!==arguments[0]&&arguments[0];e?window.location.replace(e):window.close()},E=function(e,t,r,n){var o,i=e?e.split(","):[];if(i.length){var a=(o=i,(0,v.Z)(o)||function(e){if("undefined"!=typeof Symbol&&null!=e[Symbol.iterator]||null!=e["@@iterator"])return Array.from(e)}(o)||(0,y.Z)(o)||(0,b.Z)()),u=a[0],s=a.slice(1);s=s.join(",");var c=u.includes("?")?"&":"?",l="".concat(u).concat(c,"dfClear=true&dfUserHash=").concat(t,"&dfPromotionId=").concat(r).concat(s?"&urls=".concat(s):"").concat(n?"&finalUrl=".concat(n):"");window.location.replace(l)}else x(n)};var T;function k(e,t){var r=Object.keys(e);if(Object.getOwnPropertySymbols){var n=Object.getOwnPropertySymbols(e);t&&(n=n.filter((function(t){return Object.getOwnPropertyDescriptor(e,t).enumerable}))),r.push.apply(r,n)}return r}function S(e){for(var t=1;t<arguments.length;t++){var r=null!=arguments[t]?arguments[t]:{};t%2?k(Object(r),!0).forEach((function(t){(0,n.Z)(e,t,r[t])})):Object.getOwnPropertyDescriptors?Object.definePr |
| URL: https://nischa.me Model: Joe Sandbox AI | {
"typosquatting": false,
"unusual_query_string": false,
"suspicious_tld": true,
"ip_in_url": false,
"long_subdomain": false,
"malicious_keywords": false,
"encoded_characters": false,
"redirection": false,
"contains_email_address": false,
"known_domain": false,
"brand_spoofing_attempt": false,
"third_party_hosting": false
} |
URL: https://nischa.me |
| URL: JavaScript Model: Joe Sandbox AI | {
"risk_score": 2,
"reasoning": "This appears to be a legitimate module bundler (likely Webpack) code with standard chunk loading functionality. It contains common module system operations (require, exports) and chunk loading logic. While it uses some dynamic code patterns, these are standard for module bundlers and are not malicious. The code is minified but not obfuscated in a suspicious way."
} |
(()=>{"use strict";var m={},u={};function c(e){var t=u[e];if(t!==void 0)return t.exports;var a=u[e]={id:e,loaded:!1,exports:{}};return m[e].call(a.exports,a,a.exports,c),a.loaded=!0,a.exports}c.m=m,c.amdO={},(()=>{var e=[];c.O=(t,a,n,s)=>{if(a){s=s||0;for(var f=e.length;f>0&&e[f-1][2]>s;f--)e[f]=e[f-1];e[f]=[a,n,s];return}for(var d=1/0,f=0;f<e.length;f++){for(var[a,n,s]=e[f],i=!0,b=0;b<a.length;b++)(s&!1||d>=s)&&Object.keys(c.O).every(p=>c.O[p](a[b]))?a.splice(b--,1):(i=!1,s<d&&(d=s));if(i){e.splice(f--,1);var r=n();r!==void 0&&(t=r)}}return t}})(),c.n=e=>{var t=e&&e.__esModule?()=>e.default:()=>e;return c.d(t,{a:t}),t},(()=>{var e=Object.getPrototypeOf?a=>Object.getPrototypeOf(a):a=>a.__proto__,t;c.t=function(a,n){if(n&1&&(a=this(a)),n&8||typeof a=="object"&&a&&(n&4&&a.__esModule||n&16&&typeof a.then=="function"))return a;var s=Object.create(null);c.r(s);var f={};t=t||[null,e({}),e([]),e(e)];for(var d=n&2&&a;typeof d=="object"&&!~t.indexOf(d);d=e(d))Object.getOwnPropertyNames(d).forEach(i=>f[i]=()=>a[i]);return f.default=()=>a,c.d(s,f),s}})(),c.d=(e,t)=>{for(var a in t)c.o(t,a)&&!c.o(e,a)&&Object.defineProperty(e,a,{enumerable:!0,get:t[a]})},c.f={},c.e=e=>Promise.all(Object.keys(c.f).reduce((t,a)=>(c.f[a](e,t),t),[])),c.u=e=>""+({146:"async-settings-domains-linked-domain-panel",147:"async-section-collection-item-editor",534:"async-byot",537:"async-settings-marketing-pinitbuttons",930:"async-googleworkspace-initial-purchase",952:"async-checkout-domain-term-extension-universal-checkout",1347:"async-apps-coverpageconfig-layoutchooser",1391:"async-design-forms-options-radio",2123:"async-print-on-demand",2259:"async-design-lockscreen",2484:"codemirror-addon-matchtags",2663:"async-census-ui-purchase-funnel",2967:"sync-settings-fullscreen-billing-subscription-detail",3290:"async-gsuite-reactivation",3313:"async-settings-landing-domains-email",3325:"async-settings-memberareas",3598:"async-digital-products-open-product-picker",4302:"async-settings-extensionsv3",4370:"async-global-nav-root",4473:"async-commerce-storepolicysettings",5271:"async-commerce-waitlists-settingspanel",5515:"async-settings-labs-circlelabs",5802:"async-design-tweak-colors-palette-editor",6176:"async-commerce-open-product-creation-wizard",6665:"async-content-browser-portfolio-panel",6910:"image-effect-liquid",6930:"async-design-custom-css",6932:"yui-for-config-cover-page-manifest",7045:"async-digital-products-orders",7133:"async-commerce-relatedproducts",7228:"async-commerce-paymentsettings-stripesettingspanel",7767:"async-commerce-inventory",7980:"frame-toolbar-desktop",8065:"async-settings-billing-fullscreen-payment-information-panel",8566:"async-settings-advanced-defaulttexteditor",8607:"codemirror-addon-javascript-hint",9258:"async-customer-notifications-postorderemailspanel",9416:"async-design-fonts-buttons",9598:"async-design-forms-effects",10091:"async-shared-sso-manager",10922:"async-design-fonts-misc",10924:"async-commerce-productstatus-limitedstockpanel",11268:"async-svg-compatibility",11698:"async-content-browser-add-event-item-modal",11701:"async-design-tweak-style",11707:"async-commerce-waitlists-waitlistpanel",11713:"async-digital-products-open-catalog",11716:"async-campaigns-subrouter",11921:"async-pages-content-browser-website-tools-menu",12246:"codemirror-addon-show-hint",12511:"async-giving-page-open-catalog",13052:"async-apps-coverpageconfig-media",13834:"async-settings-advanced-injection",14324:"async-design-forms-fonts-definition",15297:"async-gsuite-add-user",15649:"async-pages-pagespanel",15715:"async-style-configuration-cookie-banner",15811:"async-design-tweak-checkout",16125:"async-settings-google-workspace-account",16232:"async-settings-advanced-urlmappings",16538:"async-settings-landing-third-party-tools",16618:"async-dynamic-templates",16891:"async-cookie-and-privacy-panel",17179:"date-util-with-timezone",17670:"async-census-ui-abandoned-cart",17821:"async-apps-coverpageconfig-brandingtext",18418:"async-settings-advanced-developer",18519:" |
| URL: https://nischa.me/ms-blackfriday Model: Joe Sandbox AI | {
"brands": [
"Nasdaq",
"Yahoo Finance",
"GQ",
"CNBC",
"Business Insider",
"GoBankingRates"
]
} |
|
| URL: https://nischa.me/ms-blackfriday Model: Joe Sandbox AI | {
"contains_trigger_text": true,
"trigger_text": "Join Money Simplified And Get 12 Months Of Direct Mentorship Free",
"prominent_button_name": "I'M READY TO TAKE CONTROL",
"text_input_field_labels": "unknown",
"pdf_icon_visible": false,
"has_visible_captcha": false,
"has_urgent_text": true,
"has_visible_qrcode": false,
"contains_chinese_text": false
} |
 |
| URL: https://nischa.me/ms-blackfriday Model: Joe Sandbox AI | {
"brands": [
"Nasdaq",
"Yahoo Finance",
"GQ",
"CNBC",
"Business Insider",
"BankingRates"
]
} |
|
| URL: https://nischa.thrivecart.com/ms-blackfriday Model: Joe Sandbox AI | {
"contains_trigger_text": false,
"trigger_text": "unknown",
"prominent_button_name": "unknown",
"text_input_field_labels": "unknown",
"pdf_icon_visible": false,
"has_visible_captcha": false,
"has_urgent_text": false,
"has_visible_qrcode": false,
"contains_chinese_text": false
} |
 |
| URL: https://nischa.thrivecart.com Model: Joe Sandbox AI | {
"typosquatting": false,
"unusual_query_string": false,
"suspicious_tld": false,
"ip_in_url": false,
"long_subdomain": false,
"malicious_keywords": false,
"encoded_characters": false,
"redirection": false,
"contains_email_address": false,
"known_domain": true,
"brand_spoofing_attempt": false,
"third_party_hosting": true
} |
URL: https://nischa.thrivecart.com |
| URL: https://nischa.thrivecart.com/ms-blackfriday Model: Joe Sandbox AI | {
"brands": []
} |
|
| URL: https://nischa.thrivecart.com/ms-blackfriday Model: Joe Sandbox AI | {
"contains_trigger_text": true,
"trigger_text": "Instant Access To Money Simplified and Nischa's Inner Circle",
"prominent_button_name": "I'm Ready to Take Control!",
"text_input_field_labels": [
"Your name",
"Your email address"
],
"pdf_icon_visible": false,
"has_visible_captcha": false,
"has_urgent_text": false,
"has_visible_qrcode": false,
"contains_chinese_text": false
} |
 |
| URL: https://nischa.thrivecart.com/ms-blackfriday Model: Joe Sandbox AI | {
"contains_trigger_text": true,
"trigger_text": "Instant Access To Money Simplified and Nischa's Inner Circle",
"prominent_button_name": "I'm Ready to Take Control!",
"text_input_field_labels": [
"Your name",
"Your email address"
],
"pdf_icon_visible": false,
"has_visible_captcha": false,
"has_urgent_text": false,
"has_visible_qrcode": false,
"contains_chinese_text": false
} |
 |
| URL: https://nischa.thrivecart.com/ms-blackfriday Model: Joe Sandbox AI | {
"brands": [
"Visa",
"Mastercard",
"American Express",
"PayPal"
]
} |
|
| URL: https://nischa.thrivecart.com/ms-blackfriday Model: Joe Sandbox AI | {
"brands": [
"Nischa"
]
} |
|
| URL: https://nischa.thrivecart.com/ms-blackfriday Model: Joe Sandbox AI | {
"contains_trigger_text": true,
"trigger_text": "I'm Ready to Take Control!",
"prominent_button_name": "I'm Ready to Take Control!",
"text_input_field_labels": [
"Your name",
"Your email address"
],
"pdf_icon_visible": false,
"has_visible_captcha": false,
"has_urgent_text": false,
"has_visible_qrcode": false,
"contains_chinese_text": false
} |
 |
| URL: https://nischa.thrivecart.com/ms-blackfriday Model: Joe Sandbox AI | {
"contains_trigger_text": false,
"trigger_text": "unknown",
"prominent_button_name": "I'm Ready to Take Control!",
"text_input_field_labels": [
"Your name",
"Your email address"
],
"pdf_icon_visible": false,
"has_visible_captcha": false,
"has_urgent_text": false,
"has_visible_qrcode": false,
"contains_chinese_text": false
} |
 |
| URL: https://nischa.thrivecart.com/ms-blackfriday Model: Joe Sandbox AI | {
"brands": [
"Visa",
"Mastercard",
"American Express",
"PayPal"
]
} |
|
| URL: https://nischa.thrivecart.com/ms-blackfriday Model: Joe Sandbox AI | {
"contains_trigger_text": false,
"trigger_text": "unknown",
"prominent_button_name": "I'm Ready to Take Control!",
"text_input_field_labels": [
"Your name",
"Your email address"
],
"pdf_icon_visible": false,
"has_visible_captcha": false,
"has_urgent_text": true,
"has_visible_qrcode": false,
"contains_chinese_text": false
} |
 |
| URL: https://nischa.thrivecart.com/ms-blackfriday Model: Joe Sandbox AI | {
"brands": [
"Visa",
"Mastercard",
"PayPal"
]
} |
|
| URL: https://nischa.thrivecart.com/ms-blackfriday Model: Joe Sandbox AI | ```json{ "legit_domain": "visa.com", "classification": "wellknown", "reasons": [ "The brand 'Visa' is a well-known financial services corporation.", "The URL 'nischa.thrivecart.com' does not match the legitimate domain 'visa.com'.", "The domain 'thrivecart.com' is not associated with Visa and is a third-party service provider.", "The subdomain 'nischa' is not indicative of a legitimate Visa service.", "The presence of input fields for personal information on a non-Visa domain is suspicious." ], "riskscore": 8}
Google indexed: False |
URL: nischa.thrivecart.com
Brands: Visa
Input Fields: Your name, Your email address |
| URL: https://nischa.thrivecart.com/ms-blackfriday Model: Joe Sandbox AI | {
"brands": [
"Visa",
"Mastercard",
"American Express",
"PayPal"
]
} |
 |
| URL: https://nischa.thrivecart.com/ms-blackfriday Model: Joe Sandbox AI | ```json{ "legit_domain": "thrivecart.com", "classification": "unknown", "reasons": [ "The brand 'Nischa' is not widely recognized and is classified as 'unknown'.", "The domain 'thrivecart.com' is a legitimate and well-known platform for online sales and checkout services.", "The subdomain 'nischa' could indicate a customer or user of ThriveCart, which is common for platforms offering services to multiple users.", "There are no suspicious elements in the URL such as misspellings or unusual domain extensions.", "The presence of generic input fields like 'Your name' and 'Your email address' is typical for legitimate forms but does not provide strong evidence of legitimacy." ], "riskscore": 3} |
URL: nischa.thrivecart.com
Brands: Nischa
Input Fields: Your name, Your email address |
| URL: https://nischa.thrivecart.com/ms-blackfriday Model: Joe Sandbox AI | ```json{ "legit_domain": "visa.com", "classification": "wellknown", "reasons": [ "The brand 'Visa' is a well-known financial services corporation.", "The URL 'nischa.thrivecart.com' does not match the legitimate domain 'visa.com'.", "The domain 'thrivecart.com' is not associated with Visa and is a third-party service provider.", "The subdomain 'nischa' is not indicative of any known Visa service or product.", "The presence of input fields for personal information on a non-Visa domain is suspicious." ], "riskscore": 8}
Google indexed: False |
URL: nischa.thrivecart.com
Brands: Visa
Input Fields: Your name, Your email address |
| URL: https://nischa.thrivecart.com/ms-blackfriday Model: Joe Sandbox AI | ```json{ "legit_domain": "visa.com", "classification": "wellknown", "reasons": [ "The brand 'Visa' is a well-known financial services corporation.", "The URL 'nischa.thrivecart.com' does not match the legitimate domain 'visa.com'.", "The domain 'thrivecart.com' is not associated with Visa and is a third-party service provider.", "The subdomain 'nischa' is not indicative of any known Visa service or product.", "The presence of input fields for personal information on a non-Visa domain is suspicious." ], "riskscore": 8}
Google indexed: False |
URL: nischa.thrivecart.com
Brands: Visa
Input Fields: Your name, Your email address |
| URL: https://nischa.thrivecart.com/ms-blackfriday Model: Joe Sandbox AI | {
"contains_trigger_text": false,
"trigger_text": "unknown",
"prominent_button_name": "I'm Ready to Take Control!",
"text_input_field_labels": [
"Your name",
"Your email address"
],
"pdf_icon_visible": false,
"has_visible_captcha": false,
"has_urgent_text": false,
"has_visible_qrcode": false,
"contains_chinese_text": false
} |
 |
| URL: https://nischa.thrivecart.com/ms-blackfriday Model: Joe Sandbox AI | {
"contains_trigger_text": true,
"trigger_text": "I'm Ready to Take Control!",
"prominent_button_name": "I'm Ready to Take Control!",
"text_input_field_labels": [
"Your name",
"Your email address"
],
"pdf_icon_visible": false,
"has_visible_captcha": false,
"has_urgent_text": false,
"has_visible_qrcode": false,
"contains_chinese_text": false
} |
 |
| URL: https://nischa.thrivecart.com/ms-blackfriday Model: Joe Sandbox AI | {
"contains_trigger_text": true,
"trigger_text": "I'm Ready to Take Control!",
"prominent_button_name": "I'm Ready to Take Control!",
"text_input_field_labels": [
"Your name",
"Your email address"
],
"pdf_icon_visible": false,
"has_visible_captcha": false,
"has_urgent_text": false,
"has_visible_qrcode": false,
"contains_chinese_text": false
} |
 |
| URL: https://nischa.thrivecart.com/ms-blackfriday Model: Joe Sandbox AI | {
"brands": [
"Visa",
"Mastercard",
"American Express",
"PayPal"
]
} |
|
| URL: https://nischa.thrivecart.com/ms-blackfriday Model: Joe Sandbox AI | {
"brands": [
"Visa",
"Mastercard",
"American Express"
]
} |
|
| URL: https://nischa.thrivecart.com/ms-blackfriday Model: Joe Sandbox AI | {
"brands": [
"Visa",
"Mastercard",
"American Express",
"PayPal"
]
} |
|
Edit tour
chrome.exe (PID: 3016 cmdline: 
Key Decision
Richest Path
Thread / callback creation
Lower opacity -> Library Node