| URL: https://jmak-service.com Model: Joe Sandbox AI | {
"typosquatting": false,
"unusual_query_string": false,
"suspicious_tld": false,
"ip_in_url": false,
"long_subdomain": false,
"malicious_keywords": false,
"encoded_characters": false,
"redirection": false,
"contains_email_address": false,
"known_domain": false,
"brand_spoofing_attempt": false,
"third_party_hosting": false
} |
URL: https://jmak-service.com |
| URL: https://jmak-service.com/3225640388/assets/index-C... Model: Joe Sandbox AI | ```json
{
"risk_score": 2,
"reasoning": "The script uses fetch to load resources specified by link elements with rel='modulepreload'. This involves external data transmission, but there is no indication of malicious intent or interaction with suspicious domains. The script appears to be part of a legitimate library (Vue.js) and does not exhibit high-risk behaviors like dynamic code execution or data exfiltration."
} |
(function(){const t=document.createElement("link").relList;if(t&&t.supports&&t.supports("modulepreload"))return;for(const r of document.querySelectorAll('link[rel="modulepreload"]'))s(r);new MutationObserver(r=>{for(const i of r)if(i.type==="childList")for(const o of i.addedNodes)o.tagName==="LINK"&&o.rel==="modulepreload"&&s(o)}).observe(document,{childList:!0,subtree:!0});function n(r){const i={};return r.integrity&&(i.integrity=r.integrity),r.referrerPolicy&&(i.referrerPolicy=r.referrerPolicy),r.crossOrigin==="use-credentials"?i.credentials="include":r.crossOrigin==="anonymous"?i.credentials="omit":i.credentials="same-origin",i}function s(r){if(r.ep)return;r.ep=!0;const i=n(r);fetch(r.href,i)}})();/**
* @vue/shared v3.4.38
* (c) 2018-present Yuxi (Evan) You and Vue contributors
* @license MIT
**//*! #__NO_SIDE_EFFECTS__ */function hn(e,t){const n=new Set(e.split(","));return s=>n.has(s)}const U={},We=[],oe=()=>{},wr=()=>!1,Pt=e=>e.charCodeAt(0)===111&&e.charCodeAt(1)===110&&(e.charCodeAt(2)>122||e.charCodeAt(2)<97),pn=e=>e.startsWith("onUpdate:"),k=Object.assign,gn=(e,t)=>{const n=e.indexOf(t);n>-1&&e.splice(n,1)},vr=Object.prototype.hasOwnProperty,R=(e,t)=>vr.call(e,t),I=Array.isArray,nt=e=>Rt(e)==="[object Map]",Er=e=>Rt(e)==="[object Set]",T=e=>typeof e=="function",z=e=>typeof e=="string",Ye=e=>typeof e=="symbol",K=e=>e!==null&&typeof e=="object",bs=e=>(K(e)||T(e))&&T(e.then)&&T(e.catch),Cr=Object.prototype.toString,Rt=e=>Cr.call(e),Sr=e=>Rt(e).slice(8,-1),Or=e=>Rt(e)==="[object Object]",mn=e=>z(e)&&e!=="NaN"&&e[0]!=="-"&&""+parseInt(e,10)===e,st=hn(",key,ref,ref_for,ref_key,onVnodeBeforeMount,onVnodeMounted,onVnodeBeforeUpdate,onVnodeUpdated,onVnodeBeforeUnmount,onVnodeUnmounted"),Mt=e=>{const t=Object.create(null);return n=>t[n]||(t[n]=e(n))},Ir=/-(\w)/g,De=Mt(e=>e.replace(Ir,(t,n)=>n?n.toUpperCase():"")),Tr=/\B([A-Z])/g,Ve=Mt(e=>e.replace(Tr,"-$1").toLowerCase()),ys=Mt(e=>e.charAt(0).toUpperCase()+e.slice(1)),Kt=Mt(e=>e?`on${ys(e)}`:""),Ue=(e,t)=>!Object.is(e,t),Wt=(e,...t)=>{for(let n=0;n<e.length;n++)e[n](...t)},xs=(e,t,n,s=!1)=>{Object.defineProperty(e,t,{configurable:!0,enumerable:!1,writable:s,value:n})},Ar=e=>{const t=parseFloat(e);return isNaN(t)?e:t};let Un;const ws=()=>Un||(Un=typeof globalThis<"u"?globalThis:typeof self<"u"?self:typeof window<"u"?window:typeof global<"u"?global:{});function _n(e){if(I(e)){const t={};for(let n=0;n<e.length;n++){const s=e[n],r=z(s)?Fr(s):_n(s);if(r)for(const i in r)t[i]=r[i]}return t}else if(z(e)||K(e))return e}const Pr=/;(?![^(]*\))/g,Rr=/:([^]+)/,Mr=/\/\*[^]*?\*\//g;function Fr(e){const t={};return e.replace(Mr,"").split(Pr).forEach(n=>{if(n){const s=n.split(Rr);s.length>1&&(t[s[0].trim()]=s[1].trim())}}),t}function bn(e){let t="";if(z(e))t=e;else if(I(e))for(let n=0;n<e.length;n++){const s=bn(e[n]);s&&(t+=s+" ")}else if(K(e))for(const n in e)e[n]&&(t+=n+" ");return t.trim()}const Lr="itemscope,allowfullscreen,formnovalidate,ismap,nomodule,novalidate,readonly",$r=hn(Lr);function vs(e){return!!e||e===""}/**
* @vue/reactivity v3.4.38
* (c) 2018-present Yuxi (Evan) You and Vue contributors
* @license MIT
**/let ce;class Nr{constructor(t=!1){this.detached=t,this._active=!0,this.effects=[],this.cleanups=[],this.parent=ce,!t&&ce&&(this.index=(ce.scopes||(ce.scopes=[])).push(this)-1)}get active(){return this._active}run(t){if(this._active){const n=ce;try{return ce=this,t()}finally{ce=n}}}on(){ce=this}off(){ce=this.parent}stop(t){if(this._active){let n,s;for(n=0,s=this.effects.length;n<s;n++)this.effects[n].stop();for(n=0,s=this.cleanups.length;n<s;n++)this.cleanups[n]();if(this.scopes)for(n=0,s=this.scopes.length;n<s;n++)this.scopes[n].stop(!0);if(!this.detached&&this.parent&&!t){const r=this.parent.scopes.pop();r&&r!==this&&(this.parent.scopes[this.index]=r,r.index=this.index)}this.parent=void 0,this._active=!1}}}function Hr(e,t=ce){t&&t.active&&t.effects.push(e)}function jr(){return ce}let je;class yn{constructor(t,n,s,r){this.fn=t,this.trigger=n,this.scheduler=s,this.active=!0,this. |
| URL: https://newassets.hcaptcha.com/captcha/v1/b4956db/... Model: Joe Sandbox AI | {
"risk_score": 2,
"reasoning": "This script appears to be a polyfill for the Promise API, which is a common and legitimate JavaScript functionality. It does not contain any high-risk indicators like dynamic code execution, data exfiltration, or suspicious redirects. The script is focused on implementing the Promise API and related utility functions, which is a standard practice in web development. While it uses some legacy APIs like `setTimeout`, this is not inherently malicious and is often necessary for compatibility. Overall, this script seems to be a benign implementation of a common JavaScript feature."
} |
/* https://hcaptcha.com/license */
!function(){"use strict";function t(t){var e=this.constructor;return this.then((function(i){return e.resolve(t()).then((function(){return i}))}),(function(i){return e.resolve(t()).then((function(){return e.reject(i)}))}))}function e(t){return new this((function(e,i){if(!t||"undefined"==typeof t.length)return i(new TypeError(typeof t+" "+t+" is not iterable(cannot read property Symbol(Symbol.iterator))"));var n=Array.prototype.slice.call(t);if(0===n.length)return e([]);var r=n.length;function o(t,i){if(i&&("object"==typeof i||"function"==typeof i)){var s=i.then;if("function"==typeof s)return void s.call(i,(function(e){o(t,e)}),(function(i){n[t]={status:"rejected",reason:i},0==--r&&e(n)}))}n[t]={status:"fulfilled",value:i},0==--r&&e(n)}for(var s=0;s<n.length;s++)o(s,n[s])}))}var i=setTimeout,n="undefined"!=typeof setImmediate?setImmediate:null;function r(t){return Boolean(t&&"undefined"!=typeof t.length)}function o(){}function s(t){if(!(this instanceof s))throw new TypeError("Promises must be constructed via new");if("function"!=typeof t)throw new TypeError("not a function");this._state=0,this._handled=!1,this._value=undefined,this._deferreds=[],f(t,this)}function a(t,e){for(;3===t._state;)t=t._value;0!==t._state?(t._handled=!0,s._immediateFn((function(){var i=1===t._state?e.onFulfilled:e.onRejected;if(null!==i){var n;try{n=i(t._value)}catch(r){return void c(e.promise,r)}l(e.promise,n)}else(1===t._state?l:c)(e.promise,t._value)}))):t._deferreds.push(e)}function l(t,e){try{if(e===t)throw new TypeError("A promise cannot be resolved with itself.");if(e&&("object"==typeof e||"function"==typeof e)){var i=e.then;if(e instanceof s)return t._state=3,t._value=e,void h(t);if("function"==typeof i)return void f((n=i,r=e,function(){n.apply(r,arguments)}),t)}t._state=1,t._value=e,h(t)}catch(o){c(t,o)}var n,r}function c(t,e){t._state=2,t._value=e,h(t)}function h(t){2===t._state&&0===t._deferreds.length&&s._immediateFn((function(){t._handled||s._unhandledRejectionFn(t._value)}));for(var e=0,i=t._deferreds.length;e<i;e++)a(t,t._deferreds[e]);t._deferreds=null}function u(t,e,i){this.onFulfilled="function"==typeof t?t:null,this.onRejected="function"==typeof e?e:null,this.promise=i}function f(t,e){var i=!1;try{t((function(t){i||(i=!0,l(e,t))}),(function(t){i||(i=!0,c(e,t))}))}catch(n){if(i)return;i=!0,c(e,n)}}s.prototype["catch"]=function(t){return this.then(null,t)},s.prototype.then=function(t,e){var i=new this.constructor(o);return a(this,new u(t,e,i)),i},s.prototype["finally"]=t,s.all=function(t){return new s((function(e,i){if(!r(t))return i(new TypeError("Promise.all accepts an array"));var n=Array.prototype.slice.call(t);if(0===n.length)return e([]);var o=n.length;function s(t,r){try{if(r&&("object"==typeof r||"function"==typeof r)){var a=r.then;if("function"==typeof a)return void a.call(r,(function(e){s(t,e)}),i)}n[t]=r,0==--o&&e(n)}catch(l){i(l)}}for(var a=0;a<n.length;a++)s(a,n[a])}))},s.allSettled=e,s.resolve=function(t){return t&&"object"==typeof t&&t.constructor===s?t:new s((function(e){e(t)}))},s.reject=function(t){return new s((function(e,i){i(t)}))},s.race=function(t){return new s((function(e,i){if(!r(t))return i(new TypeError("Promise.race accepts an array"));for(var n=0,o=t.length;n<o;n++)s.resolve(t[n]).then(e,i)}))},s._immediateFn="function"==typeof n&&function(t){n(t)}||function(t){i(t,0)},s._unhandledRejectionFn=function(t){"undefined"!=typeof console&&console&&console.warn("Possible Unhandled Promise Rejection:",t)};var d=function(){if("undefined"!=typeof self)return self;if("undefined"!=typeof window)return window;if("undefined"!=typeof global)return global;throw new Error("unable to locate global object")}();function p(t,e,i){return e<=t&&t<=i}function y(t){if(t===undefined)return{};if(t===Object(t))return t;throw TypeError("Could not convert argument to dictionary")}"function"!=typeof d.Promise?d.Promise=s:(d.Promise.prototype["finally"]||(d.Promise.prototype["finally"]=t),d.Promise.allSettled| |
| URL: https://hcaptcha.com/1/api.js?render=explicit&onlo... Model: Joe Sandbox AI | {
"risk_score": 2,
"reasoning": "This script appears to be a polyfill for the Promise API, which is a common and legitimate JavaScript functionality. It does not contain any high-risk indicators like dynamic code execution, data exfiltration, or suspicious redirects. The script is focused on implementing the Promise API and related utility functions, which is a standard practice in web development. While it uses some legacy APIs like `setTimeout`, this is not inherently malicious and is likely for compatibility purposes. Overall, this script seems to be a benign implementation of a common JavaScript feature."
} |
/* https://hcaptcha.com/license */
!function(){"use strict";function e(e){var t=this.constructor;return this.then((function(n){return t.resolve(e()).then((function(){return n}))}),(function(n){return t.resolve(e()).then((function(){return t.reject(n)}))}))}function t(e){return new this((function(t,n){if(!e||"undefined"==typeof e.length)return n(new TypeError(typeof e+" "+e+" is not iterable(cannot read property Symbol(Symbol.iterator))"));var r=Array.prototype.slice.call(e);if(0===r.length)return t([]);var i=r.length;function o(e,n){if(n&&("object"==typeof n||"function"==typeof n)){var a=n.then;if("function"==typeof a)return void a.call(n,(function(t){o(e,t)}),(function(n){r[e]={status:"rejected",reason:n},0==--i&&t(r)}))}r[e]={status:"fulfilled",value:n},0==--i&&t(r)}for(var a=0;a<r.length;a++)o(a,r[a])}))}var n=setTimeout,r="undefined"!=typeof setImmediate?setImmediate:null;function i(e){return Boolean(e&&"undefined"!=typeof e.length)}function o(){}function a(e){if(!(this instanceof a))throw new TypeError("Promises must be constructed via new");if("function"!=typeof e)throw new TypeError("not a function");this._state=0,this._handled=!1,this._value=undefined,this._deferreds=[],d(e,this)}function s(e,t){for(;3===e._state;)e=e._value;0!==e._state?(e._handled=!0,a._immediateFn((function(){var n=1===e._state?t.onFulfilled:t.onRejected;if(null!==n){var r;try{r=n(e._value)}catch(i){return void l(t.promise,i)}c(t.promise,r)}else(1===e._state?c:l)(t.promise,e._value)}))):e._deferreds.push(t)}function c(e,t){try{if(t===e)throw new TypeError("A promise cannot be resolved with itself.");if(t&&("object"==typeof t||"function"==typeof t)){var n=t.then;if(t instanceof a)return e._state=3,e._value=t,void u(e);if("function"==typeof n)return void d((r=n,i=t,function(){r.apply(i,arguments)}),e)}e._state=1,e._value=t,u(e)}catch(o){l(e,o)}var r,i}function l(e,t){e._state=2,e._value=t,u(e)}function u(e){2===e._state&&0===e._deferreds.length&&a._immediateFn((function(){e._handled||a._unhandledRejectionFn(e._value)}));for(var t=0,n=e._deferreds.length;t<n;t++)s(e,e._deferreds[t]);e._deferreds=null}function h(e,t,n){this.onFulfilled="function"==typeof e?e:null,this.onRejected="function"==typeof t?t:null,this.promise=n}function d(e,t){var n=!1;try{e((function(e){n||(n=!0,c(t,e))}),(function(e){n||(n=!0,l(t,e))}))}catch(r){if(n)return;n=!0,l(t,r)}}a.prototype["catch"]=function(e){return this.then(null,e)},a.prototype.then=function(e,t){var n=new this.constructor(o);return s(this,new h(e,t,n)),n},a.prototype["finally"]=e,a.all=function(e){return new a((function(t,n){if(!i(e))return n(new TypeError("Promise.all accepts an array"));var r=Array.prototype.slice.call(e);if(0===r.length)return t([]);var o=r.length;function a(e,i){try{if(i&&("object"==typeof i||"function"==typeof i)){var s=i.then;if("function"==typeof s)return void s.call(i,(function(t){a(e,t)}),n)}r[e]=i,0==--o&&t(r)}catch(c){n(c)}}for(var s=0;s<r.length;s++)a(s,r[s])}))},a.allSettled=t,a.resolve=function(e){return e&&"object"==typeof e&&e.constructor===a?e:new a((function(t){t(e)}))},a.reject=function(e){return new a((function(t,n){n(e)}))},a.race=function(e){return new a((function(t,n){if(!i(e))return n(new TypeError("Promise.race accepts an array"));for(var r=0,o=e.length;r<o;r++)a.resolve(e[r]).then(t,n)}))},a._immediateFn="function"==typeof r&&function(e){r(e)}||function(e){n(e,0)},a._unhandledRejectionFn=function(e){"undefined"!=typeof console&&console&&console.warn("Possible Unhandled Promise Rejection:",e)};var f=function(){if("undefined"!=typeof self)return self;if("undefined"!=typeof window)return window;if("undefined"!=typeof global)return global;throw new Error("unable to locate global object")}();function p(e,t,n){return t<=e&&e<=n}function m(e){if(e===undefined)return{};if(e===Object(e))return e;throw TypeError("Could not convert argument to dictionary")}"function"!=typeof f.Promise?f.Promise=a:(f.Promise.prototype["finally"]||(f.Promise.prototype["finally"]=e),f.Promise.allSettled| |
| URL: https://jmak-service.com/3225640388/ Model: Joe Sandbox AI | {
"contains_trigger_text": false,
"trigger_text": "unknown",
"prominent_button_name": "unknown",
"text_input_field_labels": "unknown",
"pdf_icon_visible": false,
"has_visible_captcha": true,
"has_urgent_text": false,
"has_visible_qrcode": false,
"contains_chinese_text": false,
"contains_fake_security_alerts": false
} |
 |
| URL: https://jmak-service.com/3225640388/ Model: Joe Sandbox AI | {
"contains_trigger_text": false,
"trigger_text": "unknown",
"prominent_button_name": "unknown",
"text_input_field_labels": "unknown",
"pdf_icon_visible": false,
"has_visible_captcha": true,
"has_urgent_text": false,
"has_visible_qrcode": false,
"contains_chinese_text": false,
"contains_fake_security_alerts": false
} |
 |
| URL: https://jmak-service.com/3225640388/ Model: Joe Sandbox AI | {
"brands": "unknown"
} |
|
| URL: https://img1.wsimg.com/signals/js/clients/scc-c2/s... Model: Joe Sandbox AI | ```json
{
"risk_score": 3,
"reasoning": "The script contains obfuscated code, which is a high-risk indicator. However, there are no clear signs of malicious behavior such as data exfiltration or dynamic code execution. The obfuscation suggests a need for further review, but without additional context or suspicious activity, the risk remains low."
} |
!function(t,e){"object"==typeof exports&&"object"==typeof module?module.exports=e():"function"==typeof define&&define.amd?define("scc-c2",[],e):"object"==typeof exports?exports["scc-c2"]=e():t["scc-c2"]=e()}(self,(()=>(()=>{"use strict";var t={d:(e,n)=>{for(var r in n)t.o(n,r)&&!t.o(e,r)&&Object.defineProperty(e,r,{enumerable:!0,get:n[r]})},o:(t,e)=>Object.prototype.hasOwnProperty.call(t,e),r:t=>{"undefined"!=typeof Symbol&&Symbol.toStringTag&&Object.defineProperty(t,Symbol.toStringTag,{value:"Module"}),Object.defineProperty(t,"__esModule",{value:!0})}},e={};t.r(e),t.d(e,{_isDebug:()=>v,debug:()=>w,error:()=>h,info:()=>m,log:()=>m,setDebug:()=>b,warn:()=>g});var n={};t.r(n),t.d(n,{cmdLogEvent:()=>Ki,cmdLogPerf:()=>Gi});var r,o,i,a,c,u=(r="",i={document:o=Object.create({get cookie(){return r},set cookie(t){r=t}})},a={},"undefined"==typeof window?{window:i,document:o,navigator:a}:{window:window||i,document:window.document||o,navigator:navigator||a}),f=function(){return u.window},s=function(){return u.document},l=function(){return u.navigator},p=function(){var t=f().location;return t&&t.hostname?t.hostname:""},y=function(){var t=p(),e=t.split("."),n=e.length;return n>2&&(t="".concat(e[n-2],".").concat(e[n-1]),2!==e[n-2].length&&3!==e[n-2].length||2!==e[n-1].length||(t="".concat(e[n-3],".").concat(t))),t},v=!1,b=function(t){v=!0===t||"true"===t},d=function(t){return f().console,function(){}},m=d(),h=d(),g=d(),w=function(){if(v){for(var t=arguments.length,e=new Array(t),n=0;n<t;n++)e[n]=arguments[n];m.apply(null,e)}},O=function(t){if(f()[c])return f()[c][t]},j=function(t,e){f()[c]&&(f()[c][t]=e)},_=function(t,e){f()[t]=e,j(t,e)};function S(t,e){var n=Object.keys(t);if(Object.getOwnPropertySymbols){var r=Object.getOwnPropertySymbols(t);e&&(r=r.filter((function(e){return Object.getOwnPropertyDescriptor(t,e).enumerable}))),n.push.apply(n,r)}return n}function P(t,e,n){return(e=function(t){var e=function(t){if("object"!=E(t)||!t)return t;var e=t[Symbol.toPrimitive];if(void 0!==e){var n=e.call(t,"string");if("object"!=E(n))return n;throw new TypeError("@@toPrimitive must return a primitive value.")}return String(t)}(t);return"symbol"==E(e)?e:e+""}(e))in t?Object.defineProperty(t,e,{value:n,enumerable:!0,configurable:!0,writable:!0}):t[e]=n,t}function E(t){return E="function"==typeof Symbol&&"symbol"==typeof Symbol.iterator?function(t){return typeof t}:function(t){return t&&"function"==typeof Symbol&&t.constructor===Symbol&&t!==Symbol.prototype?"symbol":typeof t},E(t)}var k=function(t,e){for(var n in t)if(Object.prototype.hasOwnProperty.call(t,n)){var r=t[n];try{if(e(n,r))return t}catch(t){}}return t},T=function(){for(var t={},e=0;e<arguments.length;e++){var n=e<0||arguments.length<=e?void 0:arguments[e];"object"===E(n)&&k(n,(function(e,n){t[e]=n}))}return t},C=function(t){for(var e in t)void 0===t[e]?delete t[e]:"object"===E(t[e])&&(C(t[e]),0===Object.keys(t[e]).length&&delete t[e]);return t},I=function(t){if(2===t.length)return t[1]},x=function(t,e,n){if("string"!=typeof t)return{};for(var r={},o=t.split(e),i=0;i<o.length;i++){var a=o[i].split(n);r[a[0]]=I(a)}return r},L=function(t,e,n){var r=[];return k(t,(function(t,e){r.push("".concat(t).concat(n).concat(e))})),0===r.length?"":r.join(e)},R=function(t,e){return e&&(t=function(t){for(var e=1;e<arguments.length;e++){var n=null!=arguments[e]?arguments[e]:{};e%2?S(Object(n),!0).forEach((function(e){P(t,e,n[e])})):Object.getOwnPropertyDescriptors?Object.defineProperties(t,Object.getOwnPropertyDescriptors(n)):S(Object(n)).forEach((function(e){Object.defineProperty(t,e,Object.getOwnPropertyDescriptor(n,e))}))}return t}({},t)),Object.keys(t).forEach((function(n){if("object"===E(t[n])){var r=R(t[n],e);e&&(t[n]=r)}})),Object.freeze(t)},D=function(t,e){if(void 0===t)return t;void 0===e&&(e=2);for(var n=String(t);n.length<e;)n="0"+n;return n},A=function(t){if(!(arguments.length>1&&void 0!==arguments[1])||arguments[1]||void 0!==t)return!0===t||1===t||"string"==typeof t&&("true"===t.toLowerCase()||"1"= |
| URL: https://jmak-service.com/3225640388/ Model: Joe Sandbox AI | {
"brands": "unknown"
} |
|
| URL: https://inbox-clearance.uscourtbusiness.com/iTY74/... Model: Joe Sandbox AI | {
"risk_score": 2,
"reasoning": "The provided JavaScript snippet appears to be a simple function that submits the first form on the page. This behavior is relatively low-risk and is likely part of legitimate functionality, such as a form submission process. There are no indicators of high-risk activities like dynamic code execution, data exfiltration, or suspicious redirects. The overall risk score is low."
} |
function IndigoWhirl() {
document.forms[0].submit();
}
|
| URL: https://newassets.hcaptcha.com/captcha/v1/b4956db/... Model: Joe Sandbox AI | {
"risk_score": 2,
"reasoning": "The provided JavaScript snippet appears to be a loading indicator for the hCaptcha service, which is a legitimate third-party service used for user verification. The script does not exhibit any high-risk behaviors, such as dynamic code execution, data exfiltration, or redirects to suspicious domains. The use of a base64-encoded image is a common practice for loading small assets. Overall, this script is likely benign and used for a legitimate purpose."
} |
/* https://hcaptcha.com/license */
var image_label_binary=function(t,e,i,s,o,n){"use strict";o=o&&Object.prototype.hasOwnProperty.call(o,"default")?o["default"]:o,n=n&&Object.prototype.hasOwnProperty.call(n,"default")?n["default"]:n;var a=new Image(200,200);function r(){e.Extend.self(this,e.DomComponent,"loading-indicator"),this.$icon=this.createElement(".icon")}a.src="data:image/gif;base64,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 |
| URL: https://jmak-service.com/3225640388/ Model: Joe Sandbox AI | {
"contains_trigger_text": true,
"trigger_text": "Please click on all entities similar to the following pattern",
"prominent_button_name": "Verify",
"text_input_field_labels": "unknown",
"pdf_icon_visible": false,
"has_visible_captcha": false,
"has_urgent_text": false,
"has_visible_qrcode": false,
"contains_chinese_text": false,
"contains_fake_security_alerts": false
} |
 |
| URL: https://jmak-service.com/3225640388/ Model: Joe Sandbox AI | {
"brands": "unknown"
} |
|
| URL: https://challenges.cloudflare.com/cdn-cgi/challeng... Model: Joe Sandbox AI | {
"risk_score": 3,
"reasoning": "The provided JavaScript snippet appears to be related to Cloudflare's challenge system, which is a legitimate security mechanism. While it uses some obfuscated code and makes external requests, the overall behavior is consistent with Cloudflare's challenge verification process and does not demonstrate any clear malicious intent. The risk score is low, as the script is likely part of a legitimate security measure."
} |
(function(){
window._cf_chl_opt={
cvId: '3',
cZone: 'challenges.cloudflare.com',
cTplV: 5,
chlApivId: '0',
chlApiWidgetId: '581tz',
chlApiSitekey: '0x4AAAAAAA4m3cYMrgFfe15a',
chlApiMode: 'managed',
chlApiSize: 'normal',
chlApiRcV: 'W8VaScquRS3dG3sl4u0lPvw5DYAuFs9DdYNh03V6Z9E-1736343090-1.3.1.1-U_5s4q_y6Eo6M605VWhsMBUukdJ9iUlH_1sfdr9rqkE',
chlApiTimeoutEncountered: 0,
chlApiOverrunBudgetMs:10000,
chlTimeoutMs:120000,
cK:[],
cType: 'chl_api_m',
cRay: '8fec8c5d0ef743ad',
cH: 'Y2zTjIKAx_dXTOwl4Ql2HmFh_I625oP6l6Ca5quyplk-1736343090-1.1.1.1-D1qVp0TQaqB2VeCfHxJXhF92ZP7jEZhId2W9sh3jgYs8H0sLlZnCcwcPXCo2_zWl',
cFPWv: 'g',
cLt: 'n',
chlApiFailureFeedbackEnabled:true,
chlApiLoopFeedbackEnabled:false,
wOL:false,
wT: 'auto',
wS: 'normal',
md: 'HipiCTB8vz5ZWsj8hkQxm2fcHvG4CeejjQwn.xy1ijU-1736343090-1.1.1.1-fZY7dn84rL5Jauwt2yVNTdi8V0GXsom9fwnqPxHulRHMfJyj3ZqHWLl1ypiUIUYtvOMxkgvXjF2PK5XzMCMfrnqQapWCifttR1Nidtfo.XGQb7KZXTWcBFzf.KN3FAUJ1ObCe53BO85a1TJRcLkz2y_iDU1jwPHCM.9Qm9P.2mxia3Ycr6FFgFUHsaAZczU1aXi_GvAP81aWOUdhMbi4spEwJ2OWC0huDsPnlAsgpJgTvkc4JgEij.thLsDc1i8_4rfr7MRs9BFDvP2ZL0c3WiYbt.C1vI79X7EMdzyTa7B6yXp4nuKdbN7GeV8J1kMectVqGEfgoIVyyUXxRnwBtJMn8gdnjZiQQME4Tu2M4UDZpbYkyj43H1NJhQbKKWDLj9sBJqTg3txqoevCUm1Y2CesIcHTg8l6T5r3KtHSWaQ5XNSxIq0T0AtVzPinZvDDe88UdsCrxMXqtpHVciZCC3P0g_1PKciiIOQye2QpANQiS9BM.vzlJXFpdupfQMrr3Honko3Dj06IRvqy7COiS2VsUKgsrihKAYueSjxkKoTmf99KKtEPjQE_JalwLrSnhLPW87MneeQZDiO9LLnLGishjtQk.hHQ87czwBLb6IhLUaJbrYC4efqVw3O4dfPE9PkY8ocLj1fFp22VeaSdWCd53d3VoGmXGk_pbXvwolCzlGi3VdnFQI7KX3j.aTP5BO31mYW2IoXX5ePuLL0vyoK8yVHHz15JUogc
|
| URL: https://challenges.cloudflare.com/cdn-cgi/challeng... Model: Joe Sandbox AI | {
"risk_score": 3,
"reasoning": "The provided JavaScript snippet appears to be a Cloudflare challenge script, which is a legitimate security mechanism used to protect websites from abuse. The script does not exhibit any high-risk behaviors, such as dynamic code execution, data exfiltration, or redirects to malicious domains. It primarily handles communication with the Cloudflare challenge system, which is a common and expected behavior for this type of script. While the script uses some legacy APIs and has a moderate level of DOM manipulation, these are not inherently malicious and are likely part of the challenge implementation. Overall, the script appears to be a benign security mechanism and does not pose a significant risk."
} |
(function(){
window._cf_chl_opt={
cvId: '3',
cZone: 'challenges.cloudflare.com',
cTplV: 5,
chlApivId: '0',
chlApiWidgetId: '581tz',
chlApiSitekey: '0x4AAAAAAA4m3cYMrgFfe15a',
chlApiMode: 'managed',
chlApiSize: 'normal',
chlApiRcV: 'W8VaScquRS3dG3sl4u0lPvw5DYAuFs9DdYNh03V6Z9E-1736343090-1.3.1.1-U_5s4q_y6Eo6M605VWhsMBUukdJ9iUlH_1sfdr9rqkE',
chlApiTimeoutEncountered: 0,
chlApiOverrunBudgetMs:10000,
chlTimeoutMs:120000,
cK:[],
cType: 'chl_api_m',
cRay: '8fec8c5d0ef743ad',
cH: 'Y2zTjIKAx_dXTOwl4Ql2HmFh_I625oP6l6Ca5quyplk-1736343090-1.1.1.1-D1qVp0TQaqB2VeCfHxJXhF92ZP7jEZhId2W9sh3jgYs8H0sLlZnCcwcPXCo2_zWl',
cFPWv: 'g',
cLt: 'n',
chlApiFailureFeedbackEnabled:true,
chlApiLoopFeedbackEnabled:false,
wOL:false,
wT: 'auto',
wS: 'normal',
md: 'HipiCTB8vz5ZWsj8hkQxm2fcHvG4CeejjQwn.xy1ijU-1736343090-1.1.1.1-fZY7dn84rL5Jauwt2yVNTdi8V0GXsom9fwnqPxHulRHMfJyj3ZqHWLl1ypiUIUYtvOMxkgvXjF2PK5XzMCMfrnqQapWCifttR1Nidtfo.XGQb7KZXTWcBFzf.KN3FAUJ1ObCe53BO85a1TJRcLkz2y_iDU1jwPHCM.9Qm9P.2mxia3Ycr6FFgFUHsaAZczU1aXi_GvAP81aWOUdhMbi4spEwJ2OWC0huDsPnlAsgpJgTvkc4JgEij.thLsDc1i8_4rfr7MRs9BFDvP2ZL0c3WiYbt.C1vI79X7EMdzyTa7B6yXp4nuKdbN7GeV8J1kMectVqGEfgoIVyyUXxRnwBtJMn8gdnjZiQQME4Tu2M4UDZpbYkyj43H1NJhQbKKWDLj9sBJqTg3txqoevCUm1Y2CesIcHTg8l6T5r3KtHSWaQ5XNSxIq0T0AtVzPinZvDDe88UdsCrxMXqtpHVciZCC3P0g_1PKciiIOQye2QpANQiS9BM.vzlJXFpdupfQMrr3Honko3Dj06IRvqy7COiS2VsUKgsrihKAYueSjxkKoTmf99KKtEPjQE_JalwLrSnhLPW87MneeQZDiO9LLnLGishjtQk.hHQ87czwBLb6IhLUaJbrYC4efqVw3O4dfPE9PkY8ocLj1fFp22VeaSdWCd53d3VoGmXGk_pbXvwolCzlGi3VdnFQI7KX3j.aTP5BO31mYW2IoXX5ePuLL0vyoK8yVHHz15JUogc6C.c1CmtfRYj1LUeh1QxwFZa47J4IcgA0fi0Xls2zUe65mY2hbjXKf8TqqR3KXa2vQvmE_.ylIdCbFzOzGfMRvDeGUXmhasxNkJSgVDoG7EbN_wBG4IvDxg_K9WVmHAaMkfQVhwtN7xbpiQRgb1_n1nqTq_fEw3eunXf8WEBXDhFHTMiQlpb0lhqGFLWrr0ai78E_zHYUL3K3O0Ry3Y8z2DZTEUrcO4b2FHa0shpOaUi0hKGBWZz3FQO8XUglScRsjIB8p1QjUO5MoNnLUOp4BGDCv3s6O776kYUkNugPuOguqOPNWoV.Tha.PdKrLm7WduDzGFspULAoSFV2iH.yn37.sfWHNcLO8xPMlWS1kqa6lmxdCgnNbA_CpNOHXgR9Hpao.NmS299QD.TUnr1rRZJS.DJzrtboAQKfd7q33I3yuCz9GmAWiyLaZzy9UiuauqaFflVz1gw.YoWey5uXbYd3.2tnqkGjW3Aooje4U1bUJ3vr8nlVRwwdz7vbJLo6qHwy9_aV7crw9wvTZ2q7Y3SBrQr4MkkX1O0PdVNBIn8iy115ERxMUNavsJ50VRLroKCsr1p9qsFZ8I.BstHC0gdhEUPC5xcXTxeLItTU6sEEahSebyax_af78DhW0dKXA0DUdMgZYSLN_DyTAlt5Y0MoFqzEgraz73GrUNSKUYcxgm0axZI3HnzIDC2sfn8PoxlAEJ9i3msxv35vJbkkgu_vttmJ8Uu2rGmI34r3X0ximimseVqqHqiR_f92WA0Yu6zYe9IGSdGXjktxW9YZjYlh4rQDsW2RpTLZ0LBZea2..8f2lKBIChbdOzV7oh4XECfhpfXQwBUCcxhPPygnJB5lpNNwr5scDp4mYCCwg6UJ_mTcMcrlajtC.5_XHFZJlU_Jhg',
cITimeS: '1736343090',
refresh: function(){
if(window['parent']){
window['parent'].postMessage({
source: 'cloudflare-challenge',
widgetId: '581tz',
nextRcV: 'W8VaScquRS3dG3sl4u0lPvw5DYAuFs9DdYNh03V6Z9E-1736343090-1.3.1.1-U_5s4q_y6Eo6M605VWhsMBUukdJ9iUlH_1sfdr9rqkE',
event: 'reloadRequest',
}, "*");
}
}
};
var handler = function(event) {
var e = event.data;
if (e.source && e.source === 'cloudflare-challenge' && e.event === 'meow' && e.widgetId === window._cf_chl_opt.chlApiWidgetId) {
if(window['parent']){
window['parent'].postMessage({
source: 'cloudflare-challenge',
widgetId: window._cf_chl_opt.chlApiWidgetId,
event: 'food',
seq: e.seq,
}, '*');
|
| URL: https://inbox-clearance.uscourtbusiness.com/iTY74/ Model: Joe Sandbox AI | {
"contains_trigger_text": false,
"trigger_text": "unknown",
"prominent_button_name": "unknown",
"text_input_field_labels": "unknown",
"pdf_icon_visible": false,
"has_visible_captcha": false,
"has_urgent_text": false,
"has_visible_qrcode": false,
"contains_chinese_text": false,
"contains_fake_security_alerts": false
} |
 |
| URL: https://challenges.cloudflare.com/cdn-cgi/challeng... Model: Joe Sandbox AI | {
"risk_score": 3,
"reasoning": "The provided JavaScript snippet appears to be a Cloudflare challenge script, which is a common security mechanism used to protect websites from bots and other automated threats. The script does not exhibit any high-risk behaviors, such as dynamic code execution, data exfiltration, or redirects to malicious domains. It primarily handles the Cloudflare challenge process, including translations and polyfills, which are typical for this type of functionality. While the script uses some legacy APIs like `XDomainRequest`, these pose minor risks and are not inherently malicious. Overall, the script seems to be a legitimate part of the Cloudflare security solution and does not raise significant security concerns."
} |
window._cf_chl_opt.uaO=false;window._cf_chl_opt.qqQL2={"metadata":{"challenge.terms":"https%3A%2F%2Fwww.cloudflare.com%2Fwebsite-terms%2F","challenge.supported_browsers":"https%3A%2F%2Fdevelopers.cloudflare.com%2Ffundamentals%2Fget-started%2Fconcepts%2Fcloudflare-challenges%2F%23browser-support","challenge.privacy_link":"https%3A%2F%2Fwww.cloudflare.com%2Fprivacypolicy%2F"},"translations":{"turnstile_timeout":"Timed%20out","turnstile_success":"Success%21","turnstile_feedback_report":"Having%20trouble%3F","turnstile_iframe_alt":"Widget%20containing%20a%20Cloudflare%20security%20challenge","time_check_cached_warning":"Your%20device%20clock%20is%20set%20to%20a%20wrong%20time%20or%20this%20challenge%20page%20was%20accidentally%20cached%20by%20an%20intermediary%20and%20is%20no%20longer%20available","turnstile_verifying":"Verifying...","invalid_sitekey":"Invalid%20sitekey.%20Contact%20the%20Site%20Administrator%20if%20this%20problem%20persists.","testing_only_always_pass":"Testing%20only%2C%20always%20pass.","feedback_report_output_subtitle":"Your%20feedback%20report%20has%20been%20successfully%20submitted","turnstile_overrun_description":"Stuck%20here%3F","turnstile_failure":"Error","turnstile_refresh":"Refresh","turnstile_footer_privacy":"Privacy","turnstile_feedback_description":"Send%20Feedback","testing_only":"Testing%20only.","check_delays":"Verification%20is%20taking%20longer%20than%20expected.%20Check%20your%20Internet%20connection%20and%20%3Ca%20class%3D%22refresh_link%22%3Erefresh%20the%20page%3C%2Fa%3E%20if%20the%20issue%20persists.","turnstile_footer_terms":"Terms","outdated_browser":"Your%20browser%20is%20out%20of%20date.%20Update%20your%20browser%20to%20view%20this%20site%20properly.%3Cbr%2F%3E%3Ca%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%20href%3D%22https%3A%2F%2Fdevelopers.cloudflare.com%2Ffundamentals%2Fget-started%2Fconcepts%2Fcloudflare-challenges%2F%23browser-support%22%3EClick%20here%20for%20more%20information%3C%2Fa%3E","turnstile_expired":"Expired","not_embedded":"This%20challenge%20must%20be%20embedded%20into%20a%20parent%20page.","human_button_text":"Verify%20you%20are%20human","invalid_domain":"Invalid%20domain.%20Contact%20the%20Site%20Administrator%20if%20this%20problem%20persists."},"polyfills":{"feedback_report_output_subtitle":false},"rtl":false,"lang":"en-us"};~function(gJ,eM,eN,eQ,eT,eV,eW,eX,f9,fl,fr,fs,ft,fD,fO,fS,fT,fU,fV,fZ,g0,g6,g7,gD,gH,g4,g5){for(gJ=b,function(c,d,gI,e,f){for(gI=b,e=c();!![];)try{if(f=-parseInt(gI(1048))/1+-parseInt(gI(1357))/2+parseInt(gI(710))/3*(-parseInt(gI(1069))/4)+parseInt(gI(832))/5*(parseInt(gI(475))/6)+-parseInt(gI(937))/7+parseInt(gI(739))/8+-parseInt(gI(965))/9*(-parseInt(gI(565))/10),d===f)break;else e.push(e.shift())}catch(g){e.push(e.shift())}}(a,185149),eM=this||self,eN=eM[gJ(1510)],eM[gJ(398)]=function(gK,d,e,f,g){gK=gJ,d={},d[gK(389)]=function(h,i){return i==h},d[gK(1058)]=gK(939),d[gK(809)]=gK(899),d[gK(968)]=gK(554),d[gK(725)]=function(h,i){return h*i},e=d,f=1,g=e[gK(725)](1e3,eM[gK(489)][gK(1103)](2<<f,32)),eM[gK(487)](function(gL){if(gL=gK,gL(939)!==e[gL(1058)])return e[gL(389)](null,h)?'':i==''?null:j.i(k[gL(760)],32768,function(o,gM){return gM=gL,m[gM(1013)](o)});else eM[e[gL(809)]]&&(eM[gL(1196)][gL(1199)](),eM[gL(1196)][gL(1539)](),eM[gL(917)]=!![],eM[gL(899)][gL(1364)]({'source':e[gL(968)],'widgetId':eM[gL(803)][gL(499)],'event':gL(782),'cfChlOut':eM[gL(803)][gL(1231)],'cfChlOutS':eM[gL(803)][gL(808)],'code':gL(607),'rcV':eM[gL(803)][gL(574)]},'*'))},g)},eM[gJ(290)]=function(f,g,h,gN,i,j,F,k,l,m,n,o,s,x,B,C,D){i=(gN=gJ,{'AhdgB':function(E){return E()},'GLAXC':function(E,F){return F!==E},'UGpTK':function(E,F){return E||F},'znBWI':function(E,F){return E+F},'zBUHD':gN(837),'JPLRw':gN(304),'tNMGc':gN(1581),'yVYYV':function(E,F){return E+F}});try{(j=eO(f[gN(1158)],f[gN(1405)]),f[gN(1158)]instanceof Error)?f[gN(1158)]=JSON[gN(1308)](f[gN(1158)],Object[gN(1432)](f[gN(1158)])):i[gN(447)](gN(1127),gN(268))?f[gN(1158)]=JSON[gN(1308)](f[gN(1158)] |
| URL: https://inbox-clearance.uscourtbusiness.com Model: Joe Sandbox AI | {
"typosquatting": false,
"unusual_query_string": false,
"suspicious_tld": false,
"ip_in_url": false,
"long_subdomain": false,
"malicious_keywords": true,
"encoded_characters": false,
"redirection": false,
"contains_email_address": false,
"known_domain": false,
"brand_spoofing_attempt": true,
"third_party_hosting": true
} |
URL: https://inbox-clearance.uscourtbusiness.com |
| URL: https://inbox-clearance.uscourtbusiness.com/iTY74/ Model: Joe Sandbox AI | {
"brands": [
"Cloudflare"
]
} |
 |
| URL: https://challenges.cloudflare.com/turnstile/v0/g/8... Model: Joe Sandbox AI | ```json
{
"risk_score": 1,
"reasoning": "The script contains no high-risk or moderate-risk indicators. It appears to be a utility script with no evidence of malicious behavior, such as dynamic code execution or data exfiltration. The code is not obfuscated and does not interact with external domains."
} |
"use strict";(function(){function Wt(e,r,n,o,c,u,g){try{var h=e[u](g),l=h.value}catch(p){n(p);return}h.done?r(l):Promise.resolve(l).then(o,c)}function Ht(e){return function(){var r=this,n=arguments;return new Promise(function(o,c){var u=e.apply(r,n);function g(l){Wt(u,o,c,g,h,"next",l)}function h(l){Wt(u,o,c,g,h,"throw",l)}g(void 0)})}}function D(e,r){return r!=null&&typeof Symbol!="undefined"&&r[Symbol.hasInstance]?!!r[Symbol.hasInstance](e):D(e,r)}function Me(e,r,n){return r in e?Object.defineProperty(e,r,{value:n,enumerable:!0,configurable:!0,writable:!0}):e[r]=n,e}function Fe(e){for(var r=1;r<arguments.length;r++){var n=arguments[r]!=null?arguments[r]:{},o=Object.keys(n);typeof Object.getOwnPropertySymbols=="function"&&(o=o.concat(Object.getOwnPropertySymbols(n).filter(function(c){return Object.getOwnPropertyDescriptor(n,c).enumerable}))),o.forEach(function(c){Me(e,c,n[c])})}return e}function Ar(e,r){var n=Object.keys(e);if(Object.getOwnPropertySymbols){var o=Object.getOwnPropertySymbols(e);r&&(o=o.filter(function(c){return Object.getOwnPropertyDescriptor(e,c).enumerable})),n.push.apply(n,o)}return n}function nt(e,r){return r=r!=null?r:{},Object.getOwnPropertyDescriptors?Object.defineProperties(e,Object.getOwnPropertyDescriptors(r)):Ar(Object(r)).forEach(function(n){Object.defineProperty(e,n,Object.getOwnPropertyDescriptor(r,n))}),e}function Bt(e){if(Array.isArray(e))return e}function jt(e,r){var n=e==null?null:typeof Symbol!="undefined"&&e[Symbol.iterator]||e["@@iterator"];if(n!=null){var o=[],c=!0,u=!1,g,h;try{for(n=n.call(e);!(c=(g=n.next()).done)&&(o.push(g.value),!(r&&o.length===r));c=!0);}catch(l){u=!0,h=l}finally{try{!c&&n.return!=null&&n.return()}finally{if(u)throw h}}return o}}function qt(){throw new TypeError("Invalid attempt to destructure non-iterable instance.\nIn order to be iterable, non-array objects must have a [Symbol.iterator]() method.")}function at(e,r){(r==null||r>e.length)&&(r=e.length);for(var n=0,o=new Array(r);n<r;n++)o[n]=e[n];return o}function zt(e,r){if(e){if(typeof e=="string")return at(e,r);var n=Object.prototype.toString.call(e).slice(8,-1);if(n==="Object"&&e.constructor&&(n=e.constructor.name),n==="Map"||n==="Set")return Array.from(n);if(n==="Arguments"||/^(?:Ui|I)nt(?:8|16|32)(?:Clamped)?Array$/.test(n))return at(e,r)}}function Ae(e,r){return Bt(e)||jt(e,r)||zt(e,r)||qt()}function F(e){"@swc/helpers - typeof";return e&&typeof Symbol!="undefined"&&e.constructor===Symbol?"symbol":typeof e}function Ue(e,r){var n={label:0,sent:function(){if(u[0]&1)throw u[1];return u[1]},trys:[],ops:[]},o,c,u,g;return g={next:h(0),throw:h(1),return:h(2)},typeof Symbol=="function"&&(g[Symbol.iterator]=function(){return this}),g;function h(p){return function(E){return l([p,E])}}function l(p){if(o)throw new TypeError("Generator is already executing.");for(;g&&(g=0,p[0]&&(n=0)),n;)try{if(o=1,c&&(u=p[0]&2?c.return:p[0]?c.throw||((u=c.return)&&u.call(c),0):c.next)&&!(u=u.call(c,p[1])).done)return u;switch(c=0,u&&(p=[p[0]&2,u.value]),p[0]){case 0:case 1:u=p;break;case 4:return n.label++,{value:p[1],done:!1};case 5:n.label++,c=p[1],p=[0];continue;case 7:p=n.ops.pop(),n.trys.pop();continue;default:if(u=n.trys,!(u=u.length>0&&u[u.length-1])&&(p[0]===6||p[0]===2)){n=0;continue}if(p[0]===3&&(!u||p[1]>u[0]&&p[1]<u[3])){n.label=p[1];break}if(p[0]===6&&n.label<u[1]){n.label=u[1],u=p;break}if(u&&n.label<u[2]){n.label=u[2],n.ops.push(p);break}u[2]&&n.ops.pop(),n.trys.pop();continue}p=r.call(e,n)}catch(E){p=[6,E],c=0}finally{o=u=0}if(p[0]&5)throw p[1];return{value:p[0]?p[1]:void 0,done:!0}}}var Gt={code:200500,internalRepr:"iframe_load_err",public:!0,retryable:!1,description:"Turnstile's api.js was loaded, but the iframe under challenges.cloudflare.com could not be loaded. Has the visitor blocked some parts of challenges.cloudflare.com or are they self-hosting api.js?"};var Xt=300020;var De=300030;var Ve=300031;var j;(function(e){e.MANAGED="managed",e.NON_INTERACTIVE="non-interactive",e.INVISIBLE="invisible"})(j||(j={}));var L;(fun |
| URL: https://inbox-clearance.uscourtbusiness.com/iTY74/ Model: Joe Sandbox AI | {
"contains_trigger_text": false,
"trigger_text": "unknown",
"prominent_button_name": "unknown",
"text_input_field_labels": "unknown",
"pdf_icon_visible": false,
"has_visible_captcha": false,
"has_urgent_text": false,
"has_visible_qrcode": false,
"contains_chinese_text": false,
"contains_fake_security_alerts": false
} |
 |
| URL: https://inbox-clearance.uscourtbusiness.com/iTY74/ Model: Joe Sandbox AI | {
"brands": [
"Cloudflare"
]
} |
|
| URL: https://inbox-clearance.uscourtbusiness.com/iTY74/ Model: Joe Sandbox AI | {
"contains_trigger_text": false,
"trigger_text": "unknown",
"prominent_button_name": "Next",
"text_input_field_labels": [
"Email, phone, or Skype"
],
"pdf_icon_visible": false,
"has_visible_captcha": false,
"has_urgent_text": false,
"has_visible_qrcode": false,
"contains_chinese_text": false,
"contains_fake_security_alerts": false
} |
 |
| URL: https://inbox-clearance.uscourtbusiness.com/iTY74/ Model: Joe Sandbox AI | {
"brands": [
"Microsoft"
]
} |
|
| URL: https://inbox-clearance.uscourtbusiness.com/iTY74/ Model: Joe Sandbox AI | ```json{ "legit_domain": "microsoft.com", "classification": "wellknown", "reasons": [ "The brand 'Microsoft' is well-known and typically associated with the domain 'microsoft.com'.", "The URL 'inbox-clearance.uscourtbusiness.com' does not match the legitimate domain for Microsoft.", "The domain 'uscourtbusiness.com' is unrelated to Microsoft and could be a sign of phishing.", "The use of 'inbox-clearance' as a subdomain is suspicious and not typically associated with Microsoft.", "The presence of input fields for 'Email, phone, or Skype' suggests an attempt to collect sensitive information, which is common in phishing sites." ], "riskscore": 9}
Google indexed: False |
URL: inbox-clearance.uscourtbusiness.com
Brands: Microsoft
Input Fields: Email, phone, or Skype |
Edit tour
chrome.exe (PID: 6840 cmdline: 
Key Decision
Richest Path
Thread / callback creation
Lower opacity -> Library Node