| URL: https://laserglow-technologies-industrial-48815730.hubspotpagebuilder.com Model: Joe Sandbox AI | {
"typosquatting": false,
"unusual_query_string": false,
"suspicious_tld": false,
"ip_in_url": false,
"long_subdomain": true,
"malicious_keywords": false,
"encoded_characters": false,
"redirection": false,
"contains_email_address": false,
"known_domain": false,
"brand_spoofing_attempt": false,
"third_party_hosting": true
} |
URL: https://laserglow-technologies-industrial-48815730.hubspotpagebuilder.com |
| URL: https://laserglow-technologies-industrial-48815730... Model: Joe Sandbox AI | {
"risk_score": 3,
"reasoning": "The provided JavaScript snippet appears to be a performance tracking script used by HubSpot, a reputable marketing and sales platform. While it collects some user data and sends it to HubSpot's servers, the behavior is consistent with typical analytics and telemetry functionality. The script does not exhibit any high-risk indicators like dynamic code execution, data exfiltration, or redirects to malicious domains. Some moderate-risk indicators, such as external data transmission, are present, but the overall risk is low due to the legitimate context of the script."
} |
!function(){"use strict";const t="/_hcms/perf/v2",e=window,n=Math.pow(2,31);var i={mode:"compressed",staticDomainPrefix:"//static.hsappstatic.net",bender:{depVersions:{"content-cwv-embed":"static-1.1293","browserslist-config-hubspot":"static-1.114",csstype:"static-1.8","head-dlb":"static-1.1074",HeadJS:"static-2.440","hoist-non-react-statics":"static-3.9","hs-test-utils":"static-1.3276","hub-http":"static-1.2011","hub-http-janus":"static-1.493","hub-http-rxjs":"static-1.463",HubStyleTokens:"static-2.6808",jasmine:"static-4.425","jasmine-runner":"static-1.1821","metrics-js":"static-1.4705",msw:"static-1.39",quartz:"static-1.2288",react:"static-7.123","react-dom":"static-7.85","react-redux":"static-7.16",redux:"static-4.16","redux-thunk":"static-2.17",rxjs:"static-5.10",StyleGuideUI:"static-3.401","testing-library":"static-1.99","webpack-env":"static-1.4",enviro:"static-4.230","hs-promise-rejection-tracking":"static-1.903",PortalIdParser:"static-2.218",raven:"static-3.863","raven-hubspot":"static-1.1170"},depPathPrefixes:{"content-cwv-embed":"/content-cwv-embed/static-1.1293","browserslist-config-hubspot":"/browserslist-config-hubspot/static-1.114",csstype:"/csstype/static-1.8","head-dlb":"/head-dlb/static-1.1074",HeadJS:"/HeadJS/static-2.440","hoist-non-react-statics":"/hoist-non-react-statics/static-3.9","hs-test-utils":"/hs-test-utils/static-1.3276","hub-http":"/hub-http/static-1.2011","hub-http-janus":"/hub-http-janus/static-1.493","hub-http-rxjs":"/hub-http-rxjs/static-1.463",HubStyleTokens:"/HubStyleTokens/static-2.6808",jasmine:"/jasmine/static-4.425","jasmine-runner":"/jasmine-runner/static-1.1821","metrics-js":"/metrics-js/static-1.4705",msw:"/msw/static-1.39",quartz:"/quartz/static-1.2288",react:"/react/static-7.123","react-dom":"/react-dom/static-7.85","react-redux":"/react-redux/static-7.16",redux:"/redux/static-4.16","redux-thunk":"/redux-thunk/static-2.17",rxjs:"/rxjs/static-5.10",StyleGuideUI:"/StyleGuideUI/static-3.401","testing-library":"/testing-library/static-1.99","webpack-env":"/webpack-env/static-1.4",enviro:"/enviro/static-4.230","hs-promise-rejection-tracking":"/hs-promise-rejection-tracking/static-1.903",PortalIdParser:"/PortalIdParser/static-2.218",raven:"/raven/static-3.863","raven-hubspot":"/raven-hubspot/static-1.1170"},project:"content-cwv-embed",staticDomain:"//static.hsappstatic.net",staticDomainPrefix:"//static.hsappstatic.net"}};function r(){const t=document.getElementById("hs-script-loader");return t&&"SCRIPT"===t.tagName}function a(){return Array.prototype.slice.apply(document.querySelectorAll('script[data-loader="hs-scriptloader"], script#hs-analytics')).filter((t=>t.src)).map((t=>t.id))}function o(){if(!r())return{usesScriptLoader:!1,embedIdsPresent:[]};return{usesScriptLoader:!0,embedIdsPresent:a()}}function c(){const t=navigator,e=t.connection||t.mozConnection||t.webkitConnection;return e?{type:e.type,effectiveType:e.effectiveType,downlink:e.downlink,rtt:e.rtt}:{}}let s={};function u(t){const e=t.navigationType;"navigate"!==e&&"reload"!==e&&"prerender"!==e||(s[t.name]=t.value)}function d(){const t=s;s={};return t}function f(t,e){return Math.floor(Math.round(t/e)*e)}function p(){return performance.timing.toJSON()}function l(){return performance.getEntriesByType("navigation")[0]}function m(){const t=l();return{startTime:t.startTime,requestStart:t.requestStart,responseStart:t.responseStart,responseEnd:t.responseEnd,domComplete:t.domComplete,decodedBodySize:t.decodedBodySize,encodedBodySize:t.encodedBodySize,activationStart:t.activationStart,deliveryType:t.deliveryType}}function h(){const t=e.hsVars;t||console.warn("Cannot collect HS CMS performance data, hsVars are missing");const n=i.bender.depVersions[i.bender.project].replace(/static-/,""),r="static"===n;return{url:location.href,portal:t.portal_id,content:t.page_id,group:t.content_group_id,renderId:t.render_id,embedPackageVersion:r?void 0:n}}function v(){return Object.assign({},h(),{visibleOnScriptLoad:!1})}function g(){const t=Object.assign({ |
| URL: https://laserglow-technologies-industrial-48815730... Model: Joe Sandbox AI | {
"risk_score": 3,
"reasoning": "The provided JavaScript snippet appears to be a legitimate script for the HubSpot Tools Menu functionality. It does not contain any high-risk indicators like dynamic code execution, data exfiltration, or suspicious redirects. The script primarily focuses on loading resources, handling local development scenarios, and retrieving permissions for the HubSpot Tools Menu. While it uses some legacy practices like `XDomainRequest`, the overall behavior is consistent with the expected functionality and does not raise significant security concerns."
} |
!function(){var e=[,function(e,t){e.exports="//static.hsappstatic.net/HubspotToolsMenu/static-1.393/js/sprocket_white.svg"},function(e,t){e.exports="//static.hsappstatic.net/HubspotToolsMenu/static-1.393/js/sprocket_orange.svg"},function(e,t){e.exports="//static.hsappstatic.net/HubspotToolsMenu/static-1.393/css/toolsmenu.css"}],t={};function n(s){var o=t[s];if(void 0!==o)return o.exports;var i=t[s]={exports:{}};e[s].call(i.exports,i,i.exports,n);return i.exports}n.n=function(e){var t=e&&e.__esModule?function(){return e.default}:function(){return e};n.d(t,{a:t});return t};n.d=function(e,t){for(var s in t)n.o(t,s)&&!n.o(e,s)&&Object.defineProperty(e,s,{enumerable:!0,get:t[s]})};n.o=function(e,t){return Object.prototype.hasOwnProperty.call(e,t)};!function(){"use strict";const e="HS_SPROCKET_MENU_LOCAL_OVERRIDE",t="https://local.hsappstatic.net/HubspotToolsMenu/static/js/index.js",s=()=>Array.from(document.body.getElementsByTagName("script")).some((e=>e.src===t)),o=()=>!(!window.localStorage.getItem(e)&&1)&&!s(),i=()=>{const e=document.createElement("script");e.src=t;e.onload=()=>{setTimeout((()=>{const e=new Event("DOMContentLoaded");document.dispatchEvent(e)}),100)};document.body.appendChild(e)};o()&&i();var r=n(1),a=n.n(r),l=n(2),c=n.n(l),d=n(3),h=n.n(d);const p={SUCCESS:"hs-local-dev-server--success",WARNING:"hs-local-dev-server--warning",FAILURE:"hs-local-dev-server--failed"};class u{constructor(e){this.baseUrl=this.getHsBaseUrl(e.app_hs_base_url);this.cpBaseUrl=this.getHsBaseUrl(e.cp_hs_base_url);this.contentId=e.dynamic_page_id&&"0"!==e.dynamic_page_id&&"null"!==e.dynamic_page_id?e.dynamic_page_id:e.page_id;this.categoryId=e.category_id;this.contentGroupId=e.content_group_id;this.portalId=e.portal_id;this.environments={PRODUCTION:1,STAGING:2};this.isCustomerPortal=!0===e.is_customer_portal;this.cmsEnvironment=this.getCmsEnvironmentFromCookie();this.contentUrl=this.getHsContentUrl();this.permissionObj={};this.dynamic_page_id=e.dynamic_page_id}getHsBaseUrl(e){return window.localStorage.getItem("HS_LOCAL_TESTING")?e.replace(/[^/](\w+?)(?=\.)/,"local"):e}getHsContentUrl(){const e=window.location.href.split("?")[0],t=new URLSearchParams(window.location.search);return t.has("hs_preview")?`${e}?hs_preview=${t.get("hs_preview")}`:e}createElementFromHTML(e){const t=document.createElement("div");t.innerHTML=e.trim();return t.firstChild}jsonp(e,t){window.jsonpHandler=e=>{t(e)};const n=`${e}${-1!==e.indexOf("?")?"&":"?"}callback=jsonpHandler`,s=document.createElement("script");s.type="text/javascript";s.referrerPolicy="no-referrer-when-downgrade";s.async=!0;s.src=n;document.getElementsByTagName("head")[0].appendChild(s)}httpGet(e,t){const n=new XMLHttpRequest;n.withCredentials=!0;n.onreadystatechange=function(){4===this.readyState&&200===this.status&&t(JSON.parse(this.responseText))};n.open("GET",e,!0);n.send()}showToolsMenuIfAuthor(){let e,t=this.contentId;const n=this.contentUrl;let s=!1;if(this.isCustomerPortal)e="customer-portal";else if(window.location.pathname.endsWith("_hcms/mem/login"))e="content-membership";else if(this.contentId&&this.contentGroupId)if(7===this.categoryId)e="blog-listing-pages";else if(6===this.categoryId)e="knowledge-articles";else if(12===this.categoryId)if(this.dynamic_page_id)e="knowledge-articles";else{e="knowledge-bases";t=this.contentGroupId}else e=13===this.categoryId?"case-studies":"blog-posts";else if(this.contentGroupId){e=6===this.categoryId?"knowledge-bases":"blogs";t=this.contentGroupId}else{s=!0;e="landing-pages"}const o=`${this.baseUrl}/content-tools-menu/api/v1/tools-menu/has-permission-json?portalId=${this.portalId}`;this.httpGet(o,(o=>{if(o.has_permission){const o=`${this.cpBaseUrl}/content-tools-menu/api/v1/tools-menu/permissions?portalId=${this.portalId}`;this.httpGet(o,(o=>{this.permissionObj=o;"content-membership"===e?this.getContentMembershipCookie(e,this.portalId):this.getAppLinks(e,t,this.portalId,n);s&&this.setupDeferredPrefetchingOfEditorAssets(e)}))}}))}getContentMembershipCookie(e,t) |
| URL: https://laserglow-technologies-industrial-48815730... Model: Joe Sandbox AI | {
"risk_score": 2,
"reasoning": "The provided JavaScript snippet appears to be a configuration object for HubSpot, a legitimate marketing and sales platform. The variables contain typical information used for analytics and tracking purposes, such as page IDs, content groups, and language settings. While the snippet uses some legacy APIs like `XDomainRequest`, which pose minor risks, the overall behavior is consistent with legitimate analytics and tracking functionality. There are no clear indicators of malicious intent or high-risk activities, so the risk score is low."
} |
var hsVars = {
render_id: "37c59b11-697c-4a78-b46e-e48867789e15",
ticks: 1736266013428,
page_id: 184623230610,
content_group_id: 0,
portal_id: 48815730,
app_hs_base_url: "https://app.hubspot.com",
cp_hs_base_url: "https://cp.hubspot.com",
language: "en",
analytics_page_type: "landing-page",
scp_content_type: "",
analytics_page_id: "184623230610",
category_id: 1,
folder_id: 0,
is_hubspot_user: false
}
|
| URL: https://laserglow-technologies-industrial-48815730... Model: Joe Sandbox AI | {
"risk_score": 2,
"reasoning": "The provided JavaScript snippet appears to be a legitimate script loader for HubSpot's services, including their Collected Forms, Analytics, and Cookie Banner features. The script loads resources from known HubSpot domains (js.hscollectedforms.net, js.hs-analytics.net, js.hs-banner.com) and does not exhibit any high-risk behaviors like dynamic code execution, data exfiltration, or suspicious redirects. The script is likely used for standard web analytics and user engagement purposes, which are common and expected functionalities. While the script uses some legacy APIs like XDomainRequest, these pose minor risks and are not inherently malicious. Overall, this script appears to be a benign implementation of HubSpot's services."
} |
// HubSpot Script Loader. Please do not block this resource. See more: http://hubs.ly/H0702_H0
!function(t,e,r){if(!document.getElementById(t)){var n=document.createElement("script");for(var a in n.src="https://js.hscollectedforms.net/collectedforms.js",n.type="text/javascript",n.id=t,r)r.hasOwnProperty(a)&&n.setAttribute(a,r[a]);var i=document.getElementsByTagName("script")[0];i.parentNode.insertBefore(n,i)}}("CollectedForms-48815730",0,{"crossorigin":"anonymous","data-leadin-portal-id":48815730,"data-leadin-env":"prod","data-loader":"hs-scriptloader","data-hsjs-portal":48815730,"data-hsjs-env":"prod","data-hsjs-hublet":"na1"});
!function(e,t){if(!document.getElementById(e)){var c=document.createElement("script");c.src="https://js.hs-analytics.net/analytics/1736428800000/48815730.js",c.type="text/javascript",c.id=e;var n=document.getElementsByTagName("script")[0];n.parentNode.insertBefore(c,n)}}("hs-analytics");
var _hsp = window._hsp = window._hsp || [];
_hsp.push(['addEnabledFeatureGates', []]);
_hsp.push(['setBusinessUnitId', 0]);
!function(t,e,r){if(!document.getElementById(t)){var n=document.createElement("script");for(var a in n.src="https://js.hs-banner.com/v2/48815730/banner.js",n.type="text/javascript",n.id=t,r)r.hasOwnProperty(a)&&n.setAttribute(a,r[a]);var i=document.getElementsByTagName("script")[0];i.parentNode.insertBefore(n,i)}}("cookieBanner-48815730",0,{"data-cookieconsent":"ignore","data-hs-ignore":true,"data-loader":"hs-scriptloader","data-hsjs-portal":48815730,"data-hsjs-env":"prod","data-hsjs-hublet":"na1"});
|
| URL: https://laserglow-technologies-industrial-48815730... Model: Joe Sandbox AI | ```json
{
"risk_score": 2,
"reasoning": "The script dynamically loads JavaScript chunks using a promise-based approach, which is a common practice in modern web applications for code splitting and lazy loading. It does not exhibit high-risk behaviors such as dynamic code execution via eval or data exfiltration. The script references a static resource from a trusted domain (hsappstatic.net), which suggests a legitimate context. However, it does perform external data transmission by loading scripts from a CDN, which is a moderate-risk indicator. Overall, the script appears to be part of a legitimate application, likely for performance optimization, with no clear malicious intent."
} |
!function(e){function n(n){for(var t,i,o=n[0],s=n[1],a=0,u=[];a<o.length;a++){i=o[a];r[i]&&u.push(r[i][0]);r[i]=0}for(t in s)Object.prototype.hasOwnProperty.call(s,t)&&(e[t]=s[t]);d&&d(n);for(;u.length;)u.shift()()}var t={},r={"js/index.js":0};function i(e){return o.p+""+e+".js"}function o(n){if(t[n])return t[n].exports;var r=t[n]={i:n,l:!1,exports:{}};e[n].call(r.exports,r,r.exports,o);r.l=!0;return r.exports}o.e=function(e){var n=[],t=r[e];if(0!==t)if(t)n.push(t[2]);else{var s=new Promise((function(n,i){t=r[e]=[n,i]}));n.push(t[2]=s);var a,u=document.getElementsByTagName("head")[0],d=document.createElement("script");d.charset="utf-8";d.timeout=120;o.nc&&d.setAttribute("nonce",o.nc);d.src=i(e);0!==d.src.indexOf(window.location.origin+"/")&&(d.crossOrigin="anonymous");a=function(n){d.onerror=d.onload=null;clearTimeout(l);var t=r[e];if(0!==t){if(t){var i=n&&("load"===n.type?"missing":n.type),o=n&&n.target&&n.target.src,s=new Error("Loading chunk "+e+" failed.\n("+i+": "+o+")");s.type=i;s.request=o;t[1](s)}r[e]=void 0}};var l=setTimeout((function(){a({type:"timeout",target:d})}),12e4);d.onerror=d.onload=a;u.appendChild(d)}return Promise.all(n)};o.m=e;o.c=t;o.d=function(e,n,t){o.o(e,n)||Object.defineProperty(e,n,{enumerable:!0,get:t})};o.r=function(e){"undefined"!=typeof Symbol&&Symbol.toStringTag&&Object.defineProperty(e,Symbol.toStringTag,{value:"Module"});Object.defineProperty(e,"__esModule",{value:!0})};o.t=function(e,n){1&n&&(e=o(e));if(8&n)return e;if(4&n&&"object"==typeof e&&e&&e.__esModule)return e;var t=Object.create(null);o.r(t);Object.defineProperty(t,"default",{enumerable:!0,value:e});if(2&n&&"string"!=typeof e)for(var r in e)o.d(t,r,function(n){return e[n]}.bind(null,r));return t};o.n=function(e){var n=e&&e.__esModule?function(){return e.default}:function(){return e};o.d(n,"a",n);return n};o.o=function(e,n){return Object.prototype.hasOwnProperty.call(e,n)};o.p="//static.hsappstatic.net/cms-free-branding-lib/static-1.267/";o.oe=function(e){console.error(e);throw e};var s=window.webpackJsonp=window.webpackJsonp||[],a=s.push.bind(s);s.push=n;s=s.slice();for(var u=0;u<s.length;u++)n(s[u]);var d=a;o(o.s=205)}([function(e,n,t){"use strict";let r;r="undefined"!=typeof NO_I18N_GLOBAL&&!0===NO_I18N_GLOBAL?{}:window.I18n=window.I18n||{};n.a=r},function(e,n,t){"use strict";(function(e){t.d(n,"a",(function(){return r}));t.d(n,"b",(function(){return i}));function r(){return"undefined"!=typeof window&&window||void 0!==e&&e||{}}function i(){return r().hubspot=r().hubspot||{}}}).call(this,t(2))},function(e,n){var t;t=function(){return this}();try{t=t||new Function("return this")()}catch(e){"object"==typeof window&&(t=window)}e.exports=t},function(e,n,t){"use strict";n.a=function(e,n){const t=[{source:n,target:e}];for(;t.length>0;){const{source:e,target:n}=t.shift();for(const r in e)e.hasOwnProperty(r)&&("object"==typeof e[r]&&"object"==typeof n[r]?e[r]!==n[r]&&t.push({source:e[r],target:n[r]}):n[r]=e[r])}}},function(e,n,t){"use strict";t.r(n);t.d(n,"translations",(function(){return r}));i({en:{"cmsf-branding":{buttonLabel:"Built on HubSpot",dropdown:{reportAbuse:"Report Abuse",getCms:"Create your own free website"}}}});var r;function i(e){(r=r||[]).push(e)}},function(e,n,t){"use strict";t.r(n);t.d(n,"translations",(function(){return r}));i({en:{i18n:{duration:{seconds:"{{ seconds }} sec",minutes:"{{ minutes }} min",hours:"{{ hours }} hr",hoursAndMinutes:"{{ hours }} hr {{ minutes }} min",days:"{{ days }} days",shortForm:{seconds:"{{ seconds }}s",minutes:"{{ minutes }}m",hours:"{{ hours }}h",days:"{{ days }}d",hoursAndMinutes:"{{ hours }}h {{ minutes }}m"}},dateTime:{quarterAndYear:"Q{{quarterNumber}} {{yearNumber}}"},numberRepresentation:{fraction:"{{ numerator }}/{{ denominator }}",numberWithCurrencyCode:"{{currencyCode}} {{amountNumberValue}}",phoneNumberWithExtension:"{{phoneNumber}}, ext. {{extension}}"}}}});var r;function i(e){(r=r||[]).push(e)}},function(e,n,t){"use strict";t.r(n);t.d(n,"translations",(function(){return r}));i({af |
| URL: https://js.hs-banner.com/v2/48815730/banner.js... Model: Joe Sandbox AI | {
"risk_score": 2,
"reasoning": "This script appears to be the HubSpot Cookie Banner code, which is a legitimate and commonly used script for managing cookie consent on websites. The script sets up the necessary configuration for the HubSpot cookie banner, including adding cookie domains and setting the API base URL. While it uses some legacy practices like `XDomainRequest`, the overall behavior is consistent with its intended purpose and does not exhibit any high-risk indicators. Therefore, this script is considered low risk."
} |
var _hsp = window['_hsp'] = window['_hsp'] || [];
_hsp.push(['setBannerSettings', {}]);
_hsp.push(['setCustomizationSettings', {}]);
_hsp.push(['addCookieDomain', '.hsforms.com']);
_hsp.push(['addCookieDomain', '.hubspot.com']);
_hsp.push(['addCookieDomain', '.hubspotpagebuilder.com']);
_hsp.push(['addCookieDomain', '.laserglow.com']);
_hsp.push(['setApiBaseUrl', 'https://js.hs-banner.com/v2']);
/**
* HubSpot Cookie Banner Code Copyright 2025 HubSpot, Inc. http://www.hubspot.com
*/
!function(){var e=[,function(e,t){var n;function o(){var e,t;t=arguments[0]||{};this.config={};this.config.elements=t.elements?t.elements:[];this.config.attributes=t.attributes?t.attributes:{};this.config.attributes[o.ALL]=this.config.attributes[o.ALL]?this.config.attributes[o.ALL]:[];this.config.allow_comments=!!t.allow_comments&&t.allow_comments;this.allowed_elements={};this.config.protocols=t.protocols?t.protocols:{};this.config.add_attributes=t.add_attributes?t.add_attributes:{};this.dom=t.dom?t.dom:document;for(e=0;e<this.config.elements.length;e++)this.allowed_elements[this.config.elements[e]]=!0;this.config.remove_element_contents={};this.config.remove_all_contents=!1;if(t.remove_contents)if(t.remove_contents instanceof Array)for(e=0;e<t.remove_contents.length;e++)this.config.remove_element_contents[t.remove_contents[e]]=!0;else this.config.remove_all_contents=!0;this.transformers=t.transformers?t.transformers:[]}o.REGEX_PROTOCOL=/^([A-Za-z0-9\+\-\.\&\;\*\s]*?)(?:\:|&*0*58|&*x0*3a)/i;o.RELATIVE="__RELATIVE__";o.ALL="__ALL__";o.prototype.clean_node=function(e){var t=this.dom.createDocumentFragment();this.current_element=t;this.whitelist_nodes=[];function n(e,t){var n;for(n=0;n<t.length;n++)if(t[n]==e)return n;return-1}function s(){var e,t,n=[],o={};for(e=0;e<arguments.length;e++)if(arguments[e]&&arguments[e].length)for(t=0;t<arguments[e].length;t++)if(!o[arguments[e][t]]){o[arguments[e][t]]=!0;n.push(arguments[e][t])}return n}function r(e){var t;switch(e.nodeType){case 1:a.call(this,e);break;case 3:case 5:t=e.cloneNode(!1);this.current_element.appendChild(t);break;case 8:if(this.config.allow_comments){t=e.cloneNode(!1);this.current_element.appendChild(t)}break;default:console&&console.log&&console.log("unknown node type",e.nodeType)}}function a(e){var t,i,a,l,h,d,u,g,f,_,m=c.call(this,e);a=(e=m.node).nodeName.toLowerCase();i=this.current_element;if(this.allowed_elements[a]||m.whitelist){this.current_element=this.dom.createElement(e.nodeName);i.appendChild(this.current_element);var p=this.config.attributes;l=s(p[a],p[o.ALL],m.attr_whitelist);for(t=0;t<l.length;t++){d=l[t];if(h=e.attributes[d]){_=!0;if(this.config.protocols[a]&&this.config.protocols[a][d]){g=this.config.protocols[a][d];_=(f=h.value.toLowerCase().match(o.REGEX_PROTOCOL))?-1!=n(f[1],g):-1!=n(o.RELATIVE,g)}if(_){(u=document.createAttribute(d)).value=h.value;this.current_element.setAttributeNode(u)}}}if(this.config.add_attributes[a])for(d in this.config.add_attributes[a]){(u=document.createAttribute(d)).value=this.config.add_attributes[a][d];this.current_element.setAttributeNode(u)}}else if(-1!=n(e,this.whitelist_nodes)){this.current_element=e.cloneNode(!0);for(;this.current_element.childNodes.length>0;)this.current_element.removeChild(this.current_element.firstChild);i.appendChild(this.current_element)}if(!this.config.remove_all_contents&&!this.config.remove_element_contents[a])for(t=0;t<e.childNodes.length;t++)r.call(this,e.childNodes[t]);this.current_element.normalize&&this.current_element.normalize();this.current_element=i}function c(e){var t,o,i,r={attr_whitelist:[],node:e,whitelist:!1};for(t=0;t<this.transformers.length;t++)if(null!=(i=this.transformers[t]({allowed_elements:this.allowed_elements,config:this.config,node:e,node_name:e.nodeName.toLowerCase(),whitelist_nodes:this.whitelist_nodes,dom:this.dom}))){if("object"!=typeof i)throw new Error("transformer output must be an object or null");if(i.whitelist_nodes&&i.whitelist_nodes instanceof Array)for(o=0;o<i.whitelist_nodes.l |
| URL: https://js.hs-analytics.net/analytics/173642880000... Model: Joe Sandbox AI | {
"risk_score": 1,
"reasoning": "This script appears to be a legitimate HubSpot analytics tracking code. It sets up the HubSpot analytics tracking functionality, including setting the portal ID, tracking page views, and initializing the event visualizer script. The script does not exhibit any high-risk behaviors like dynamic code execution, data exfiltration, or redirects to malicious domains. The use of the HubSpot analytics platform is a common and expected behavior, and the script does not contain any suspicious or obfuscated elements."
} |
/**
* HubSpot Analytics Tracking Code Build Number 1.1194
* Copyright 2025 HubSpot, Inc. http://www.hubspot.com
*/
var _hsq = _hsq || [];
_hsq.push(['setPortalId', 48815730]);
_hsq.push(['trackPageView']);
_hsq.push(['setLegacy', false]);
_hsq.push(['addHashedCookieDomain', '224894981']);
_hsq.push(['addHashedCookieDomain', '20629287']);
_hsq.push(['addHashedCookieDomain', '251652889']);
_hsq.push(['addHashedCookieDomain', '63333424']);
_hsq.push(['embedHubSpotScript', 'https://js-na1.hs-scripts.com/48815730.js', 'hs-script-loader']);
_hsq.push(['initEventVisualizerScript']);
_hsq.push(['setTrackingDomain', 'track.hubspot.com']);
/** _anon_wrapper_ **/ (function() {
/*! For license information please see hsa-prod.js.LICENSE.txt */
(hstc=hstc||{}).JS_VERSION=1.1;hstc.ANALYTICS_HOST="track.hubspot.com";(hstc=hstc||{}).Math={uuid:function(){if(window.navigator.userAgent.indexOf("googleweblight")>-1)return hstc.Math._mathRandomUuid();var t=window.crypto||window.msCrypto;return void 0!==t&&void 0!==t.getRandomValues&&void 0!==window.Uint16Array?hstc.Math._cryptoUuid():hstc.Math._mathRandomUuid()},_mathRandomUuid:function(){var t=(new Date).getTime();return"xxxxxxxxxxxx4xxxyxxxxxxxxxxxxxxx".replace(/[xy]/g,(function(e){var i=(t+16*Math.random())%16|0;t=Math.floor(t/16);return("x"===e?i:3&i|8).toString(16)}))},_cryptoUuid:function(){var t=window.crypto||window.msCrypto,e=new Uint16Array(8);t.getRandomValues(e);var i=function(t){for(var e=t.toString(16);e.length<4;)e="0"+e;return e};return i(e[0])+i(e[1])+i(e[2])+i(e[3])+i(e[4])+i(e[5])+i(e[6])+i(e[7])}};Math.uuid=Math.uuid||function(){hstc.utils.logError(new Error("Attempt to use Math.uuid()"));return hstc.Math.uuid()};(hstc=hstc||{}).debug=!1;hstc.log=function(){try{var t=new hstc.cookies.Cookie,e="hs_dbg",i=document.location.hash.indexOf("#hsdbg")>-1;if(hstc.debug||i||"1"===t.get(e)){var n=window.console;n&&"function"==typeof n.log&&n.log.apply(n,arguments);if(document.location.hash.indexOf("#hsdbg")>-1){hstc.__logs=hstc.__logs||[];hstc.__logs.push.apply(hstc.__logs,arguments)}t.set(e,1)}}catch(t){}};(hstc=hstc||{}).global={};hstc.global.Context=function(t,e,i,n,r,s,o){this.doc=t||document;this.nav=e||navigator;this.scr=i||screen;this.win=n||window;this.loc=r||this.win.location;this.top=s||top;this.parent=o||parent};hstc.global.Context.prototype.getDocument=function(){return this.doc};hstc.global.Context.prototype.getNavigator=function(){return this.nav};hstc.global.Context.prototype.getScreen=function(){return this.scr};hstc.global.Context.prototype.getWindow=function(){return this.win};hstc.global.Context.prototype.getLocation=function(){return this.loc};hstc.global.Context.prototype.getHostName=function(){try{return this.loc.hostname}catch(t){return this.doc.domain}};hstc.global.Context.prototype.getPathName=function(){return this.loc.pathname};hstc.global.Context.prototype.getTop=function(){return this.top};hstc.global.Context.prototype.getParent=function(){return this.parent};hstc.global.Context.prototype.getReferrer=function(){var t="";try{t=this.top.document.referrer}catch(e){if(parent)try{t=this.parent.document.referrer}catch(e){t=""}}""===t&&(t=this.doc.referrer);return t};hstc.global.Context.prototype.getCharacterSet=function(){return this.doc.characterSet?this.doc.characterSet:this.doc.charset?this.doc.charset:""};hstc.global.Context.prototype.getLanguage=function(){return this.nav.language?this.nav.language:this.nav.browserLanguage?this.nav.browserLanguage:""};hstc.global.Context.prototype.getOrigin=function(){return this.loc.origin?this.loc.origin:this.loc.protocol+"//"+this.getHostName()+(this.loc.port?":"+this.loc.port:"")};hstc.global.Context.prototype.getCurrentHref=function(t){return t?this.getOrigin().toLowerCase()+t.toLowerCase():this.loc.href.toLowerCase()};(hstc=hstc||{}).utils={};hstc.utils.tostr=Object.prototype.toString;hstc.utils.getNextWeekStart=function(t){var e=t||new Date,i=e.getDay(),n=e.getDate()+(0==i?7:7-i);return hstc.utils.clearTimePart(new Date |
| URL: https://sheikhoobaba.com/... Model: Joe Sandbox AI | {
"risk_score": 6,
"reasoning": "The provided JavaScript snippet exhibits several behaviors that raise moderate security concerns. It uses the `window._cf_chl_opt` object to store various configuration options, some of which could be considered suspicious. The snippet appears to be part of a Cloudflare security mechanism, but the extensive data collection and obfuscation techniques used are concerning. Further investigation would be needed to determine the full extent of the script's functionality and potential risks."
} |
(function(){window._cf_chl_opt={cvId: '3',cZone: "sheikhoobaba.com",cType: 'interactive',cRay: '8ff4bc3e7dbd184d',cH: 'y0qL2MSbw6w7f5bw2MyLIK6tCEJJgug1Qdi54QHKlQ4-1736428938-1.2.1.1-Rv.4kwp4bWpPc0UftcHuVoldspFEpQihAEMx1lc9fwqHvBxzYK7c5LEUmfYKChA_',cUPMDTk: "\/?__cf_chl_tk=ScIccAnL_wECrxBUZYx_BbSkmnZ379VxDtp5rlT0QYw-1736428938-1.0.1.1-QFv1BSTepubCXxxCccvflZPTcC9jPBMITOYyOVZx3CM",cFPWv: 'g',cITimeS: '1736428938',cTTimeMs: '1000',cMTimeMs: '390000',cTplC: 0,cTplV: 5,cTplB: 'cf',cK: "",fa: "\/?__cf_chl_f_tk=ScIccAnL_wECrxBUZYx_BbSkmnZ379VxDtp5rlT0QYw-1736428938-1.0.1.1-QFv1BSTepubCXxxCccvflZPTcC9jPBMITOYyOVZx3CM",md: "r5j2Jdzw0wdfPPrhNaBOo.oq6No.PJfx1w1Zp9Ws9NA-1736428938-1.2.1.1-di7CMcorYafcgomKNU_f0KoX1Z0TVFmNz5TOHIPZb.3cYrUgOlebtB_T6z2erKO6lfqcOfrZDk.xctjSO8QYa6wccOZuo8zH8v8p_n7hG3gNKJdynkci6ZWzwDCJJbmlZQFGvNXPKPKhFxeAJBuwLCvsdrWq3iwCHShH9MZKr3MBLTi815dSj9P..I_vWMpcaGSpCA2LiZqUiSJxiDPlB5pp7q8o9XNXfEfH8yZz8Vxu3BI60ISp7BUDYQ2C6xOzCP9fegOXJ19EbnQYZ22dMwBtIJKocEFw9bZpMKG2sxFqPWEj41cCG9XpPNcNk27c9_V7Cvpl0iMQ2d0m.ckYAOY_vITaUTxcvOc52AvUl8FKwYtcNNUb6KIYPuPXWCncD9JpnkFh_JG8ch9OrasbIvJ2_UtGlb0o6TbjnkvoJLjPdvxJgULBU_yMyZVUPBQyl3QgF6pxK8W_uIDAYx1uGjVUbPsCXn8U.aI3KeZ1Os_D_LiNPkpQQqXUVlm739UkUNj0klxfqRxjpqK9rk_Opty3Uzj8usPsS1tNk7B8ddi27qfmk0CndlbXI0c9LmDcF8JenL1fDuAlT.aG8R1yeQ3CE8enDaQRhk5q_6JI8Xr9a8nXIPxCtv7b18qXeQS7SoKYaz..EEAOI16dbjlLjRgoYOuqdVwcGt6isrIud6ambtXQzZa_bOxjNC_fufRUjm89pKAx1U2w_bhkkToxopeczqjhE_H6M8tYxHHneSphJDvyIq1P5v6_5nkYOpMLff1rDecDr8k9EvyPZPLtMImeXrhREt51GsCCPNZjl0YSpT_I_u80ey.KlA4cp3nzzA9lIQbCkxwPtrr5Pq5WFf8C9MxAmXzaQBHc9wyW7qgtbk07ftz6y6yVWOCdrVUB6mbDA5cAsfBxbA1oEcq8UG.fhrZg7CG_9RFtvBsUyxhrE4ASCoU73cmYBSMmxOVbH.WCjdozepRlE0QLoLqTA.WzPl5WFEECz4_pqN8fy4RcS1QxqunkGRQkjVZk2vRJLh8YWdZ3mJycCvMBxnz6IuBQUQ6w2KXnxaXqyChe04tI40kkw6GaeW1RoM1dw0u66u3M_K3DyULOsaWd7NghEs_jhVOa5QmD3KZ6QdudP3aHQ61o1zQwczxDnsAhRGx3GxrxB_RWRsMrXfK9_stvtSl_HnD8EgPMGufzvGPV9U54ZLl4NnUfnhHRzvotHEz7mvFkOfG3MPr30n.4HQoHGBjkaO.TBVM3q4IKQJLhy5zfmoIev5..xzPlRTnWT2tP4T9fS62Y97IhMvYvyFFqZnFLOLvKUAYMk9NLIrfmAU4Krd1r5Q4N3dKJuhy5pJdUrFV38OeN0cPT_AsPVtAz9GPjW4w219VMSnSrBAWm_YXU30pNyK9UGu0GBMDh_fkVrKemNOHSacUcILT3JlDABgRufF95YN6w.ke8n88PZVd8QQd4vje6VnJ0.vJLlOKKzDQLhMr0HFnw8znQ0ThsKoE10Q0Z4uSi5hrSYTpgfGNSkB6wWCV4gkwm2mtS8P2SzX_fIzEiSfTwpKDjjkJ8zLiCxJ3A0fRYV.fZurGtG3XvOTD.PjGgcZ4mR.6sboBhqClhfm9kU3c7RYhIovljAS8t3_GeTE0enhmoK89p5ryQioyTW3P9iEScteRAHDF76UvxBlmhlizsZq_SaTTAhXhsySztYr3ycqaTDMu.QdgQoHJba7phPu1_3d.qjwzBgsoMk5UXWvDjw6.NIdcH6YygLgwMvP7YvA2eATDqkN8fsn087N9KuKnqoXgFP1fOb4iDKRZNr2MaU4VcMHwH07CScaiQMzxxqnq8OY_h446slCpkCNhfycobMwkRKbFlb_wzap.eAV2uBWUt8psY0p5xGfT9yLS60l9pRK7W9DI",mdrd: "t4E5rtlbz9bCugOZqyUukLTzNdnFERrRcMM.hVemQe4-1736428938-1.2.1.1-KwA8JVfpfsHet9154I7eOyrZuK6PRzL9AHlihJ0EdfLzi6ucNbFzsq3FHsrZHdRUWqbJxhr7YmvBItSI8lEyHYGZE22TnlrFwz2aFe8Nps.W1CZoFQnVGdxM4Aq_ocHU0K5Up6XBTseZg4SLmjXjc0J0BfvH4pRU3v7vrG56PCBJdipWfsNJiXxcFIZXKvTajuzIuIsXQEhQZUSAM8WHateJaHVbCh7Gm_PodRSCXaPpqsz8QbPJIGvwZysmv17Hx9EoRb.2zNUGhhL89JuGdudewNx18xgnIkJ7ZM7xqkAECv4b.qSKBmVUnjewmBEUy5TEH3OzaYk2aCh73_uUvMWdy1bJXCZknun1l8GUenmD072UAhubbHm2PTSmy5tqE4tLBJE1mFtIsAuLKsqWMIU5r8BB283uAQgXNT_lG86SalxTsguXgK3TY.zVC3hiBKi6jAxNvMfXsKfzBZIYkSLy.9_gOd8f_Zm5YhfyBMXC2RTEsolalqloR3odq19siqZaZs1nOiLtpPjtOb_YPbsQQpRynFdZ8Qw1nNuNcR7qYbLGr8LBrKcTvt0TuerlHTsbysmVbr8_s_OouayjPWh8b32reekLgxPYSYNjE57_Ne4sfel2G2UqKJMmWNyfKKGzx.p0o.moCtuBuXSHZQKxnnzSDPppiBHXuYGLldyXTmkKdXB09we1G51ddvenub0CFMAj89Khly.4pikXvFAbDghlY9oU95Ci2_0O8ortS5HLueWXLcwYjmXTysS2tnPX._pMA.R8aKZ8f6Li4RHG.gu1wD6q_HM_JVRovFswENgWW9pmItpDzPgX49_PveymjJXvL8Dk9zpAAr0IyoS.edkvey5Dnb5mWSuCm.s3bNL9jOBqCcX0R2U77V8SKDQn1nMR56GlM0Tm3b3pq6e4BOcpdt4SiXAmI2.R7Emkol.ODzshv9VUnHpPs8FahA4I9Fx3guTpyubi6zD3SxN.yqEZlSR5SsCTQwOTK_f4McAdsNYoyyZzYDShk7lL6r7oIi1o_yjMW3zRLlTgTL9QSAvfZWQHzyuWbW7_LV7stCqscsmSODs5gt2qXADMzp29ycOLL.O0PbH80SLpe.xdpYbdPlNvAjFWQPXabOV_m9iQoeiT4ccYc30y9OKg6Qm1AEteHsZOR1YE4AHSbCGOwJWq0aHC8AKVEEo6xVhsJD.uZMj2U7cvAATMpk21CkdPyBUmMXr1rTz0pT1SCUtM5KQm9W6Wv1cZOptO3habJVK7aYBAQLE96yyqOPdWG7EKw_Htm.._P9L0RvGOP4Zl99p3mUZoYQtgmkCorL9DemAl6gIKuxRKmAudx6Dkkaad |
| URL: https://js.hscollectedforms.net/collectedforms.js... Model: Joe Sandbox AI | {
"risk_score": 3,
"reasoning": "The provided JavaScript snippet appears to be a minified library or framework, likely used for legitimate purposes such as analytics or tracking. While it contains some behaviors that could be considered risky, such as the use of legacy APIs and external data transmission, the overall context suggests this is a benign script with no clear malicious intent. The risk score is on the lower end of the spectrum, indicating a low-risk script that may require further review but is unlikely to pose a significant security threat."
} |
/*! For license information please see project.js.LICENSE.txt */
!function(){"use strict";var t={}.toString,e=function(e){return t.call(e).slice(8,-1)},r=Array.isArray||function(t){return"Array"==e(t)},n=function(t){return"object"==typeof t?null!==t:"function"==typeof t},i=function(t){if(null==t)throw TypeError("Can't call method on "+t);return t},o=function(t){return Object(i(t))},s=Math.ceil,a=Math.floor,u=function(t){return isNaN(t=+t)?0:(t>0?a:s)(t)},c=Math.min,l=function(t){return t>0?c(u(t),9007199254740991):0},d=function(t,e){if(!n(t))return t;var r,i;if(e&&"function"==typeof(r=t.toString)&&!n(i=r.call(t)))return i;if("function"==typeof(r=t.valueOf)&&!n(i=r.call(t)))return i;if(!e&&"function"==typeof(r=t.toString)&&!n(i=r.call(t)))return i;throw TypeError("Can't convert object to primitive value")},f=function(t){try{return!!t()}catch(t){return!0}},h=!f((function(){return 7!=Object.defineProperty({},"a",{get:function(){return 7}}).a})),p="object"==typeof window&&window&&window.Math==Math?window:"object"==typeof self&&self&&self.Math==Math?self:Function("return this")(),m=p.document,b=n(m)&&n(m.createElement),g=function(t){return b?m.createElement(t):{}},y=!h&&!f((function(){return 7!=Object.defineProperty(g("div"),"a",{get:function(){return 7}}).a})),v=function(t){if(!n(t))throw TypeError(String(t)+" is not an object");return t},w=Object.defineProperty,S={f:h?w:function(t,e,r){v(t);e=d(e,!0);v(r);if(y)try{return w(t,e,r)}catch(t){}if("get"in r||"set"in r)throw TypeError("Accessors not supported");"value"in r&&(t[e]=r.value);return t}},E=function(t,e){return{enumerable:!(1&t),configurable:!(2&t),writable:!(4&t),value:e}},T=function(t,e,r){var n=d(e);n in t?S.f(t,n,E(0,r)):t[n]=r};"undefined"!=typeof window?window:"undefined"!=typeof global?global:"undefined"!=typeof self&&self;function O(t,e){return t(e={exports:{}},e.exports),e.exports}var A,F,x,C=h?function(t,e,r){return S.f(t,e,E(1,r))}:function(t,e,r){t[e]=r;return t},j=function(t,e){try{C(p,t,e)}catch(r){p[t]=e}return e},L=!1,N=O((function(t){var e="__core-js_shared__",r=p[e]||j(e,{});(t.exports=function(t,e){return r[t]||(r[t]=void 0!==e?e:{})})("versions",[]).push({version:"3.0.1",mode:L?"pure":"global",copyright:" 2019 Denis Pushkarev (zloirock.ru)"})})),I=0,R=Math.random(),P=function(t){return"Symbol(".concat(void 0===t?"":t,")_",(++I+R).toString(36))},k=!f((function(){return!String(Symbol())})),_=N("wks"),U=p.Symbol,B=function(t){return _[t]||(_[t]=k&&U[t]||(k?U:P)("Symbol."+t))},M=B("species"),D=function(t,e){var i;r(t)&&("function"!=typeof(i=t.constructor)||i!==Array&&!r(i.prototype)?n(i)&&null===(i=i[M])&&(i=void 0):i=void 0);return new(void 0===i?Array:i)(0===e?0:e)},$=B("species"),q=function(t){return!f((function(){var e=[];(e.constructor={})[$]=function(){return{foo:1}};return 1!==e[t](Boolean).foo}))},V={}.propertyIsEnumerable,z=Object.getOwnPropertyDescriptor,Q={f:z&&!V.call({1:2},1)?function(t){var e=z(this,t);return!!e&&e.enumerable}:V},H="".split,G=f((function(){return!Object("z").propertyIsEnumerable(0)}))?function(t){return"String"==e(t)?H.call(t,""):Object(t)}:Object,W=function(t){return G(i(t))},K={}.hasOwnProperty,J=function(t,e){return K.call(t,e)},Y=Object.getOwnPropertyDescriptor,X={f:h?Y:function(t,e){t=W(t);e=d(e,!0);if(y)try{return Y(t,e)}catch(t){}if(J(t,e))return E(!Q.f.call(t,e),t[e])}},Z=N("native-function-to-string",Function.toString),tt=p.WeakMap,et="function"==typeof tt&&/native code/.test(Z.call(tt)),rt=N("keys"),nt=function(t){return rt[t]||(rt[t]=P(t))},it={},ot=p.WeakMap,st=function(t){return x(t)?F(t):A(t,{})},at=function(t){return function(e){var r;if(!n(e)||(r=F(e)).type!==t)throw TypeError("Incompatible receiver, "+t+" required");return r}};if(et){var ut=new ot,ct=ut.get,lt=ut.has,dt=ut.set;A=function(t,e){dt.call(ut,t,e);return e};F=function(t){return ct.call(ut,t)||{}};x=function(t){return lt.call(ut,t)}}else{var ft=nt("state");it[ft]=!0;A=function(t,e){C(t,ft,e);return e};F=function(t){return J(t,ft)?t[ft]:{}};x=function(t){r |
| URL: https://challenges.cloudflare.com/cdn-cgi/challeng... Model: Joe Sandbox AI | {
"risk_score": 3,
"reasoning": "The provided JavaScript snippet appears to be a Cloudflare challenge script, which is a legitimate and common practice for web security. The script sets up a message event listener to handle communication between the challenge widget and the parent window. It does not exhibit any high-risk behaviors, such as dynamic code execution, data exfiltration, or malicious redirects. The script's purpose is to facilitate the Cloudflare challenge process, which is a standard security measure to protect websites from abuse. Therefore, this script is considered low-risk."
} |
(function(){
window._cf_chl_opt={
cvId: '3',
cZone: 'challenges.cloudflare.com',
cTplV: 5,
chlApivId: '0',
chlApiWidgetId: '8dtyh',
chlApiSitekey: '0x4AAAAAAAAjq6WYeRDKmebM',
chlApiMode: 'managed',
chlApiSize: 'normal',
chlApiRcV: 'G5X7.GECBuT0WW9vgh4gJ4t1AMC61AiImKfjXt121Do-1736428941-1.3.1.1-9NE_x0aVGFGzjY8us7VANCidjmRSqMWDRQ.NAywJwDI',
chlApiTimeoutEncountered: 0,
chlApiOverrunBudgetMs:10000,
chlTimeoutMs:120000,
cK:[],
cType: 'chl_api_m',
cRay: '8ff4bc51e8ccf799',
cH: 'QS2oKT2wwreCrZidJDSI93O2yxwYFVQ.CZ.wN4yrrDY-1736428941-1.1.1.1-SznMaKp3HXUdDR3GF399RpAypNeb6OMiLHDD3k1EH8iafIebvDZWwgqRDJcWlMU4',
cFPWv: 'g',
cLt: 'n',
chlApiFailureFeedbackEnabled:true,
chlApiLoopFeedbackEnabled:false,
wOL:false,
wT: 'light',
wS: 'normal',
md: '9phxPGVj1cEU1meJxJdzUpLnNJODy9bZWs81V7coOqA-1736428941-1.1.1.1-.4KmlMOpd3gnGgWF.ioS25ulvrd64nRFPiD05JdlsTbdWE_MyHt7AusD2HLBeZ7CVExHOYbW_j.spv1iId5y3v1q8R5svmNfDJunfGp8ONkgE1XnLqfvPs6xIBcDpIlI2ghhKfMLGyUGpiX_ac7mxIiiWan2F_TRlDG1meAT0NTdTzh5_KJj56B3Jna8HVaKiv7APBF9Kjq7GToZqymuY0F.ALzFVtXKxM9ketX_KrBeAXz3GlPjSiz1CD_QDddW5UYORtKHprRjz_ma4nNBLTlR9jyPs4sF76uwTNb4kfpa7aMie0dV377Wjf3l5TTO_eZ5Tv1Y0FHaPQ5KNyZZVRvf1c.pD0wfqdwTe11ku8zrmRYvEqcn1.XUnSMDEAsqTQZ1QbEt0uku0SEKuBwEvAgIZecLiO7.sLyau.MVqR340_VXXgO7wai1.4QoUzLX9gMt2d9M_O9AuPPnz0QU3baGyqE8PmgumrnXZHYeWaGFjY3_uTF2v.cPyP7v3XhaChX1qvmq5rsIm4t7gBbI.zrFNlANOaCvlngIX8jYXbSUZi._Wl24fLsCYJJJRj6QHkOSbGaKZ9xHa3UNQKtRPNtrV_UCVroVH9QJVfZjkl102RtpmKDinHt781.lw5OLLDY5iDdhsbuLd4P8.mIZ2XditfU56EypRTsRMEpsTvmIICOkA1VgScWnMd6udyNQk.YvVK.YoOxD8_K69ZrhummP6bmDPgJPd.7lC1_PSdy_.o41.LSIlhiIqE5mnJOaF9gMrrVZDjfe_ys_RwvGayleDAEoB0c0ctEsVGvgIswjidFRoqCCnZGXEHqEdWYhkD1cp7xaIUHTYHoqCcUJDmZGNfILeA6SAlFSq0tCEMTZk4cOtd3.gBhttJHiVlj6bK5HKNpuqiFcYyi90OKympJphjr.pXwT07QCgaVcA4Ovof2xqMw8u0Ot.6Bbc9nBukQ6V5N8iGtmylV.JmQjcsELGBLen0QtDaMuo3bWIDTpwzHsYZ2iW2MS5T7FdqPXYFLC.5GeMZ9JFPXSBhAOPhklm3xOXBK11bdhIQrg88xTMbk63fiMOMs9qsv4k6q3wmjV3Mwy3BGyJy5Cb0CaYmmdlzsR299WJQddKXdullNURfQGRnLvypxFLCDXzP8rfHEZyPQZ1IPemFok8Mzb1kccr4AI6WD0Nv1CyZvyGG.AtM5X8h4cRKY6bYn0g_mgw._5CY_cwdvMVMM.y9cUwxtlyNhX0fHkixTQR9K.iB76H48f9Hr2pKxYXJ5em.C.4DYf8flhGy.kHtzVh90GCeIvZyEHZNJAKeM9dqBHA.Q0T_Xmpv8gRNQO7Zh3ynICiD_hp0aqUN3qtDmpRj2P0O4paFSuzp9UvArCbOjMESg',
cITimeS: '1736428941',
refresh: function(){
if(window['parent']){
window['parent'].postMessage({
source: 'cloudflare-challenge',
widgetId: '8dtyh',
nextRcV: 'G5X7.GECBuT0WW9vgh4gJ4t1AMC61AiImKfjXt121Do-1736428941-1.3.1.1-9NE_x0aVGFGzjY8us7VANCidjmRSqMWDRQ.NAywJwDI',
event: 'reloadRequest',
}, "*");
}
}
};
var handler = function(event) {
var e = event.data;
if (e.source && e.source === 'cloudflare-challenge' && e.event === 'meow' && e.widgetId === window._cf_chl_opt.chlApiWidgetId) {
if(window['parent']){
window['parent'].postMessage({
source: 'cloudflare-challenge',
widgetId: window._cf_chl_opt.chlApiWidgetId,
event: 'food',
seq: e.seq,
}, '*');
}
}
}
window.addEventListener('message', handler);
}());
|
| URL: https://laserglow-technologies-industrial-48815730.hubspotpagebuilder.com/laserglow Model: Joe Sandbox AI | {
"contains_trigger_text": true,
"trigger_text": "Laserglow Has Shared A Document With You.",
"prominent_button_name": "Download",
"text_input_field_labels": "unknown",
"pdf_icon_visible": false,
"has_visible_captcha": false,
"has_urgent_text": false,
"has_visible_qrcode": false,
"contains_chinese_text": false,
"contains_fake_security_alerts": false
} |
 |
| URL: https://sheikhoobaba.com/ Model: Joe Sandbox AI | {
"contains_trigger_text": false,
"trigger_text": "unknown",
"prominent_button_name": "unknown",
"text_input_field_labels": "unknown",
"pdf_icon_visible": false,
"has_visible_captcha": true,
"has_urgent_text": false,
"has_visible_qrcode": false,
"contains_chinese_text": false,
"contains_fake_security_alerts": false
} |
 |
| URL: https://sheikhoobaba.com Model: Joe Sandbox AI | {
"typosquatting": false,
"unusual_query_string": false,
"suspicious_tld": false,
"ip_in_url": false,
"long_subdomain": false,
"malicious_keywords": false,
"encoded_characters": false,
"redirection": false,
"contains_email_address": false,
"known_domain": false,
"brand_spoofing_attempt": false,
"third_party_hosting": false
} |
URL: https://sheikhoobaba.com |
| URL: https://sheikhoobaba.com/ Model: Joe Sandbox AI | {
"contains_trigger_text": false,
"trigger_text": "unknown",
"prominent_button_name": "unknown",
"text_input_field_labels": "unknown",
"pdf_icon_visible": false,
"has_visible_captcha": true,
"has_urgent_text": false,
"has_visible_qrcode": false,
"contains_chinese_text": false,
"contains_fake_security_alerts": false
} |
 |
| URL: https://laserglow-technologies-industrial-48815730.hubspotpagebuilder.com/laserglow Model: Joe Sandbox AI | {
"brands": [
"Laserglow"
]
} |
|
| URL: https://sheikhoobaba.com/ Model: Joe Sandbox AI | {
"brands": "unknown"
} |
|
| URL: https://sheikhoobaba.com/ Model: Joe Sandbox AI | {
"contains_trigger_text": false,
"trigger_text": "unknown",
"prominent_button_name": "Verify you are human",
"text_input_field_labels": "unknown",
"pdf_icon_visible": false,
"has_visible_captcha": true,
"has_urgent_text": false,
"has_visible_qrcode": false,
"contains_chinese_text": false,
"contains_fake_security_alerts": false
} |
 |
| URL: https://sheikhoobaba.com/ Model: Joe Sandbox AI | {
"brands": [
"Cloudflare"
]
} |
|
| URL: https://sheikhoobaba.com/ Model: Joe Sandbox AI | {
"brands": "unknown"
} |
|
| URL: https://autodiscover.lordsdata.com Model: Joe Sandbox AI | {
"typosquatting": false,
"unusual_query_string": false,
"suspicious_tld": false,
"ip_in_url": false,
"long_subdomain": false,
"malicious_keywords": false,
"encoded_characters": false,
"redirection": false,
"contains_email_address": false,
"known_domain": false,
"brand_spoofing_attempt": false,
"third_party_hosting": false
} |
URL: https://autodiscover.lordsdata.com |
| URL: https://autodiscover.lordsdata.com/?auth=2&sso_reload=true Model: Joe Sandbox AI | {
"contains_trigger_text": false,
"trigger_text": "unknown",
"prominent_button_name": "unknown",
"text_input_field_labels": [
"Email, phone, or Skype"
],
"pdf_icon_visible": false,
"has_visible_captcha": false,
"has_urgent_text": false,
"has_visible_qrcode": false,
"contains_chinese_text": false,
"contains_fake_security_alerts": false
} |
 |
| URL: https://autodiscover.lordsdata.com/?auth=2&sso_reload=true Model: Joe Sandbox AI | {
"contains_trigger_text": true,
"trigger_text": "Sign in",
"prominent_button_name": "Next",
"text_input_field_labels": [
"Email, phone, or Skype"
],
"pdf_icon_visible": false,
"has_visible_captcha": false,
"has_urgent_text": false,
"has_visible_qrcode": false,
"contains_chinese_text": false,
"contains_fake_security_alerts": false
} |
 |
| URL: https://autodiscover.lordsdata.com/?auth=2&sso_reload=true Model: Joe Sandbox AI | {
"brands": "unknown"
} |
|
| URL: https://autodiscover.lordsdata.com/?auth=2&sso_reload=true Model: Joe Sandbox AI | {
"contains_trigger_text": true,
"trigger_text": "Sign in",
"prominent_button_name": "Next",
"text_input_field_labels": [
"Email, phone, or Skype"
],
"pdf_icon_visible": false,
"has_visible_captcha": false,
"has_urgent_text": false,
"has_visible_qrcode": false,
"contains_chinese_text": false,
"contains_fake_security_alerts": false
} |
 |
| URL: https://autodiscover.lordsdata.com/?auth=2&sso_reload=true Model: Joe Sandbox AI | {
"brands": [
"Microsoft"
]
} |
|
| URL: https://autodiscover.lordsdata.com/?auth=2&sso_reload=true Model: Joe Sandbox AI | {
"brands": [
"Microsoft"
]
} |
|
| URL: https://autodiscover.lordsdata.com/?auth=2&sso_reload=true Model: Joe Sandbox AI | ```json{ "legit_domain": "microsoft.com", "classification": "wellknown", "reasons": [ "The brand 'Microsoft' is classified as 'wellknown'.", "The URL 'autodiscover.lordsdata.com' does not match the legitimate domain 'microsoft.com'.", "The domain 'lordsdata.com' is not associated with Microsoft.", "The use of 'autodiscover' in the subdomain is commonly associated with phishing attempts targeting email services.", "The presence of input fields for 'Email, phone, or Skype' is typical for phishing sites attempting to harvest credentials." ], "riskscore": 9}
Google indexed: False |
URL: autodiscover.lordsdata.com
Brands: Microsoft
Input Fields: Email, phone, or Skype |
| URL: https://autodiscover.lordsdata.com/?auth=2&sso_reload=true Model: Joe Sandbox AI | ```json{ "legit_domain": "microsoft.com", "classification": "wellknown", "reasons": [ "The brand 'Microsoft' is well-known and typically associated with the domain 'microsoft.com'.", "The URL 'autodiscover.lordsdata.com' does not match the legitimate domain 'microsoft.com'.", "The domain 'lordsdata.com' does not have any known association with Microsoft.", "The use of 'autodiscover' in the subdomain is a common tactic in phishing to mimic legitimate services.", "The presence of input fields for 'Email, phone, or Skype' suggests an attempt to collect sensitive information, which is a common phishing tactic." ], "riskscore": 9}
Google indexed: False |
URL: autodiscover.lordsdata.com
Brands: Microsoft
Input Fields: Email, phone, or Skype |
Edit tour
chrome.exe (PID: 4524 cmdline: 
Key Decision
Richest Path
Thread / callback creation
Lower opacity -> Library Node