| URL: https://zfrmz.com Model: Joe Sandbox AI | {
"typosquatting": true,
"unusual_query_string": false,
"suspicious_tld": false,
"ip_in_url": false,
"long_subdomain": false,
"malicious_keywords": false,
"encoded_characters": false,
"redirection": false,
"contains_email_address": false,
"known_domain": false,
"brand_spoofing_attempt": false,
"third_party_hosting": true
} |
URL: https://zfrmz.com |
| URL: https://static.zohocdn.com/forms/js/fullpageformli... Model: Joe Sandbox AI | {
"risk_score": 5,
"reasoning": "The provided JavaScript snippet contains a mix of behaviors that require further review. While it does not exhibit any clear malicious intent, there are some moderate-risk indicators that warrant closer inspection. The script appears to handle various form-related functionality, including error handling, window resizing, and date picker management. However, the use of legacy APIs like `XDomainRequest` and the lack of transparency around some data transmission activities raise some concerns. Overall, the script requires more analysis to determine the full extent of its behavior and potential risks."
} |
var ZFFullPageForm={menuItemsSpeed:350,inputClearAnimationSpeed:500,errorHideTimeOut:4e3,errorSlideDownSpeed:100,errorSlideUpSpeed:200},ZFPageTitle={},ZFPageAnimation={animType:1,pageFadeInSpeed:600,footerFadeInSpeed:600,pageFadeOutSpeed:400,footerFadeOutSpeed:400,pageLoadSpeed:100,fieldFadeOutSpeed:500,fieldFadeInSpeed:800,pageNavbarAnimTime:400};function init(isFormLoad){ZFFullPageForm.isCssHasSupported=isCssSelectorSupportedInBrowser("div:has(input)"),floatingFormComponentsHandler(),checkAndAddMiniContClass(),ZFLive.isFormPdf||(initPageHeader(isFormLoad),window.addEventListener("unload",function(e){window.scrollTo(0,0)}),isFormLoad&&(setMaxWidthForDescriptionFieldImages($("div[elname=livefield-elem][reltype=parent]:visible:first").width()),bindWindowResizeEvent(),bindEventForClearIconShowOrHide($(ZFLive.formFormFieldsOuterWrapper)),showFormFirstPageComponents(),bindEvntInFirstPageSignatureComp($("div[elname=formBodyULName][page_no=1]"))))}function showFormFirstPageComponents(){$("div[elname=formBodyULName][page_no=1], div[elname=footer][page_no=1], div[elname=pageHdr]").animate({opacity:1},{duration:ZFPageAnimation.pageLoadSpeed,complete:function(){$(this).css("opacity","")}})}function bindWindowResizeEvent(){isMobileBrowser()?(window.matchMedia("(orientation: portrait)").addEventListener("change",function(e){hidePickerElems(),setTimeout(function(){setMatrixElemWidth($("div[elname=formWrapper]")),setMatrixElemHeight($("div[elname=formWrapper]"))},100),init(),scollPageNavElemIntoView(getCurrentActivePage())}),window.addEventListener("touchmove",function(e){setDatePickerPosition()})):window.visualViewport.addEventListener("resize",function(){setDatePickerPosition(),setTimeout(function(){setMatrixElemWidth($("div[elname=formWrapper]")),setMatrixElemHeight($("div[elname=formWrapper]"))},100),checkAndAddMiniContClass(),floatingFormComponentsHandler(),ZFLive.isThemePage&&initPageHeader()})}function hidePickerElems(){var currActiveDiv=$("div#formBodyDiv").find("div[elname=formBodyULName]:visible");if(currActiveDiv.length>0){var dateInpElems=$(currActiveDiv).find("input[elname=date],input[elname=dateTime]");if(dateInpElems.length>0){var datePickerSelectElems=$("#ui-datepicker-div").find("select:visible");datePickerSelectElems.length>0&&$(datePickerSelectElems).select2("close"),$(dateInpElems).datepicker("hide")}var selectElems=$(currActiveDiv).find("select:visible");selectElems.length>0&&($(".select2-dropdown").hide(),$(selectElems).select2("close")),$(currActiveDiv).find("div[phoneformat=INTERNATIONAL]").length>0&&window.dispatchEvent(new CustomEvent("scroll"));var zcrmField=$(currActiveDiv).find("div[comptype="+ZFFieldTypeConstants.ZOHO_CRM+"]");if($(zcrmField).length>0){var entryListingDiv=$("div[elname=crm-entry-listing-div]");if(0!=$(entryListingDiv).length&&$(entryListingDiv).is(":visible")){var entryULElem=$(entryListingDiv).find("ul[elname=entry-ul]");$(entryULElem).empty(),$(entryListingDiv).hide()}}}}function hideErrorOF(elem){var errMsgDiv=$(elem).find("div[name=errMsgDiv]"),errDiv=$(elem).find("div[name=errDiv]");$(elem).removeClass("error"),$(errMsgDiv).text(""),animateHideErrorMsgOF(errDiv)}function animateErrorMsgOF(elem){ZFUtil.findAndCloseHoverTextPopup(elem),"upload_field"===$(elem).attr("error_type")?animateUploadFieldErrorMsgOF(elem):(clearTimeout(ZFLive.onInputValErrTimeOut),$(elem).removeClass("zfErrorDivAnimate"),$(elem).hasClass("err_hiding")&&$(elem).hide(),ZFLive!=undefined&&ZFLive.preventHideOFError?$(elem).slideDown(ZFFullPageForm.errorSlideDownSpeed):1==$(elem).closest("div[elname='subFormFieldsUl']").length?$(elem).slideDown(ZFFullPageForm.errorSlideDownSpeed):($(elem).slideDown(ZFFullPageForm.errorSlideDownSpeed,function(){$(this).addClass("zfErrorDivAnimate")}),ZFLive.onInputValErrTimeOut=setTimeout(function(){animateHideErrorMsgOF(elem)},ZFFullPageForm.errorHideTimeOut)))}function animateUploadFieldErrorMsgOF(elem){ZFLive!=undefined&&ZFLive.preventHideOFError?$(elem).slideDown(ZFFullPageForm.errorSlideD |
| URL: https://forms.zohopublic.com/volt2g1/form/VBTALimi... Model: Joe Sandbox AI | {
"risk_score": 2,
"reasoning": "The provided JavaScript snippet appears to be a louserzation object (i18n) containing various error messages and validation rules. It does not contain any high-risk indicators such as dynamic code execution, data exfiltration, or suspicious redirects. The script seems to be focused on providing user-friendly error messages and validating user input, which is a common and legitimate practice. While it uses some outdated APIs like `XDomainRequest`, the overall behavior is benign and does not raise significant security concerns."
} |
var i18n =
{
"noentry":"No entry",
"nofields":"No fields are available",
"asterisksymbol":"*",
"entervalue":"Enter\x20a\x20value\x20for\x20this\x20field.",
"entervaluenumber":"Enter\x20a\x20number\x20for\x20this\x20field.",
"entervaluecaptcha":"Enter\x20a\x20value\x20for\x20this\x20field.",
"entervaluerecaptcha":"Confirm\x20you\x27re\x20not\x20a\x20robot.",
"recaptchaerror":"reCAPTCHA\x20validation\x20failed.",
"entervalidmail":"Enter\x20a\x20valid\x20email\x20address.\x20\x28eg\x3A\x20yourname\x40domain.com\x29",
"entervalidnumber":"Enter\x20a\x20numeric\x20value.\x20",
"invaliddecimal":"Enter\x20a\x20valid\x20decimal\x20number.\x20",
"invalidcurrency":"Enter\x20a\x20numeric\x20value.\x20\x28currency\x29",
"invalidurl":"Enter\x20a\x20valid\x20website.\x20\x28eg\x3A\x20www.domain.com\x29",
"invalidphone":"Enter\x20a\x20valid\x20phone\x20number.\x20Allowed\x20special\x20characters\x3A\x20\x2B\x20\x2D\x20.\x20\x28\x20\x29\x20space",
"invalidinitialphone":"Enter\x20a\x20phone\x20number\x20that\x20doesnt\x20begin\x20with\x20\x2B\x20or\x20\x29.",
"invalidUSAphone":"Enter\x20a\x20valid\x20phone\x20number.",
"invalidpatternformat":"Entry\x20does\x20not\x20match\x20the\x20required\x20format.",
"invalidletterregexformat":"Only\x20letters\x20are\x20allowed.",
"invalidletterandnumregexformat":"Only\x20letters\x20and\x20numbers\x20allowed.",
"invalidletternumandspaceregexformat":"Only\x20letters,\x20numbers\x20and\x20spaces\x20are\x20allowed.",
"invalidletterandspaceregexformat":"Only\x20letters\x20and\x20spaces\x20are\x20allowed.",
"invalidcountrycode":"Enter\x20a\x20valid\x20country\x20code.",
"selectchoice":"Select\x20a\x20choice.",
"chooseoption":"Choose\x20your\x20option\x28s\x29.",
"selectdate":"Choose\x20a\x20date.",
"selectcountrycode":"Select\x20a\x20country\x20code.",
"selectrating":"Specify\x20your\x20rating\x20here.",
"selecttime":"Choose\x20a\x20time.\x20",
"checkfield":"Select\x20this\x20option.",
"choosefile":"Upload\x20a\x20file\x20here.\x20",
"contactadmin":"Please\x20contact\x20your\x20form\x20administrator\x20for\x20further\x20assistance.",
"incompletesignature":"Add\x20your\x20signature\x20here.",
"matrixchoicemandatory":"Choose\x20at\x20least\x20one\x20answer\x20for\x20each\x20question.",
"uploadsize":"File\x20size\x20should\x20be\x20less\x20than\x20\x7B0\x7D.",
"chooseval":"Choose\x20a\x20rating\x20on\x20this\x20scale.",
"select":"\x2DSelect\x2D",
"wrongverificationcode":"That\x20CAPTCHA\x20was\x20incorrect.\x20",
"incompleteinputtime":"Enter\x20time\x20in\x20\x28HH\x3AMM\x20AM\x2FPM\x29\x20format.",
"incompleteinputtimetwentyfour":"Enter\x20time\x20in\x20\x28HH\x3AMM\x29\x20format.",
"fileupload":"There\x20was\x20an\x20error\x20while\x20uploading\x20file.\x20Please\x20try\x20again.",
"formclosed":"The\x20form\x20you\x20are\x20trying\x20to\x20access\x20is\x20closed.",
"donationhintmsgmin":"Min.\x20amount\x20is\x20",
"donationhintmsgmax":"Max.\x20amount\x20is",
"donationhintmsgminmax":"Enter\x20a\x20value\x20between\x20\x7B0\x7D\x20and\x20\x7B1\x7D",
"pymnterrminamnt":"Minimum amount is {0}",
"pymnterrmaxamnt":"Maximum amount is {0}",
"paymentdecimallen":"You\x20are\x20only\x20allowed\x20to\x20enter\x20\x7B0\x7D\x20digits.",
"entervalidamount":"Enter\x20a\x20valid\x20amount.",
"moredecimalplaces":"You\x20are\x20allowed\x20to\x20enter\x20only\x20up\x20to\x20\x7B0\x7D\x20decimals.",
"maxchoicelimit":"You\x20can\x20choose\x20only\x20up\x20to\x20\x7B0\x7D\x20choice\x28s\x29.",
"minchoicelimit":"You\x20must\x20choose\x20at\x20least\x20\x7B0\x7D\x20choice\x28s\x29.",
"allowedimg":"Only\x20the\x20following\x20file\x20types\x20are\x20supported\x3A\x20\x7B0\x7D",
"alloweddomain":"Only\x20the\x20following\x20email\x20domains\x20are\x20allowed\x3A\x20\x7B0\x7D",
"restricteddomain":"The\x20following\x20domains\x20have\x20been\x20restricted\x3A\x20\x7B0\x7D",
"checktcfield":"You\x20must\x20accept\x20the\x20terms\x20and\x20conditions.\x20",
"chooseimg":"Choose\x20an\x20image\x20of\x20your\x20choice.",
"subformentriesminlimit" |
| URL: https://static.zohocdn.com/forms/js/formsofthirdpa... Model: Joe Sandbox AI | {
"risk_score": 2,
"reasoning": "This JavaScript snippet appears to be a part of the jQuery UI library, which is a widely used and trusted library for building user interfaces. The code does not contain any high-risk indicators such as dynamic code execution, data exfiltration, or redirects to malicious domains. The behaviors observed, such as DOM manipulation, event handling, and utility functions, are common and expected in a UI library. While the code uses some legacy practices like `XDomainRequest`, these pose minor risks and are not inherently malicious. Overall, this script is likely legitimate and poses a low risk."
} |
!function(factory){"function"==typeof define&&define.amd?define(["jquery"],factory):factory(jQuery)}(function($){var uuid,removeData,eventType,orig;function focusable(element,isTabIndexNotNaN){var map,mapName,img,nodeName=element.nodeName.toLowerCase();return"area"===nodeName?(mapName=(map=element.parentNode).name,!(!element.href||!mapName||"map"!==map.nodeName.toLowerCase())&&(!!(img=$("img[usemap='#"+mapName+"']")[0])&&visible(img))):(/^(input|select|textarea|button|object)$/.test(nodeName)?!element.disabled:"a"===nodeName&&element.href||isTabIndexNotNaN)&&visible(element)}function visible(element){return $.expr.filters.visible(element)&&!$(element).parents().addBack().filter(function(){return"hidden"===$.css(this,"visibility")}).length}$.ui=$.ui||{},$.extend($.ui,{version:"1.11.4",keyCode:{BACKSPACE:8,COMMA:188,DELETE:46,DOWN:40,END:35,ENTER:13,ESCAPE:27,HOME:36,LEFT:37,PAGE_DOWN:34,PAGE_UP:33,PERIOD:190,RIGHT:39,SPACE:32,TAB:9,UP:38}}),$.fn.extend({scrollParent:function(includeHidden){var position=this.css("position"),excludeStaticParent="absolute"===position,overflowRegex=includeHidden?/(auto|scroll|hidden)/:/(auto|scroll)/,scrollParent=this.parents().filter(function(){var parent=$(this);return(!excludeStaticParent||"static"!==parent.css("position"))&&overflowRegex.test(parent.css("overflow")+parent.css("overflow-y")+parent.css("overflow-x"))}).eq(0);return"fixed"!==position&&scrollParent.length?scrollParent:$(this[0].ownerDocument||document)},uniqueId:(uuid=0,function(){return this.each(function(){this.id||(this.id="ui-id-"+ ++uuid)})}),removeUniqueId:function(){return this.each(function(){/^ui-id-\d+$/.test(this.id)&&$(this).removeAttr("id")})}}),$.extend($.expr[":"],{data:$.expr.createPseudo?$.expr.createPseudo(function(dataName){return function(elem){return!!$.data(elem,dataName)}}):function(elem,i,match){return!!$.data(elem,match[3])},focusable:function(element){return focusable(element,!isNaN($.attr(element,"tabindex")))},tabbable:function(element){var tabIndex=$.attr(element,"tabindex"),isTabIndexNaN=isNaN(tabIndex);return(isTabIndexNaN||tabIndex>=0)&&focusable(element,!isTabIndexNaN)}}),$("<a>").outerWidth(1).jquery||$.each(["Width","Height"],function(i,name){var side="Width"===name?["Left","Right"]:["Top","Bottom"],type=name.toLowerCase(),orig={innerWidth:$.fn.innerWidth,innerHeight:$.fn.innerHeight,outerWidth:$.fn.outerWidth,outerHeight:$.fn.outerHeight};function reduce(elem,size,border,margin){return $.each(side,function(){size-=parseFloat($.css(elem,"padding"+this))||0,border&&(size-=parseFloat($.css(elem,"border"+this+"Width"))||0),margin&&(size-=parseFloat($.css(elem,"margin"+this))||0)}),size}$.fn["inner"+name]=function(size){return size===undefined?orig["inner"+name].call(this):this.each(function(){$(this).css(type,reduce(this,size)+"px")})},$.fn["outer"+name]=function(size,margin){return"number"!=typeof size?orig["outer"+name].call(this,size):this.each(function(){$(this).css(type,reduce(this,size,!0,margin)+"px")})}}),$.fn.addBack||($.fn.addBack=function(selector){return this.add(null==selector?this.prevObject:this.prevObject.filter(selector))}),$("<a>").data("a-b","a").removeData("a-b").data("a-b")&&($.fn.removeData=(removeData=$.fn.removeData,function(key){return arguments.length?removeData.call(this,$.camelCase(key)):removeData.call(this)})),$.ui.ie=!!/msie [\w.]+/.exec(navigator.userAgent.toLowerCase()),$.fn.extend({focus:(orig=$.fn.focus,function(delay,fn){return"number"==typeof delay?this.each(function(){var elem=this;setTimeout(function(){$(elem).focus(),fn&&fn.call(elem)},delay)}):orig.apply(this,arguments)}),disableSelection:(eventType="onselectstart"in document.createElement("div")?"selectstart":"mousedown",function(){return this.bind(eventType+".ui-disableSelection",function(event){event.preventDefault()})}),enableSelection:function(){return this.unbind(".ui-disableSelection")},zIndex:function(zIndex){if(zIndex!==undefined)return this.css("zIndex",zIndex);if(this.length)for(var position,value,elem= |
| URL: https://static.zohocdn.com/forms/js/formstplivejs.... Model: Joe Sandbox AI | {
"risk_score": 1,
"reasoning": "The provided JavaScript snippet appears to be a part of the jQuery library, which is a widely used and trusted JavaScript framework. It does not contain any high-risk indicators such as dynamic code execution, data exfiltration, or redirects to malicious domains. The code is primarily focused on DOM manipulation, event handling, and utility functions, which are common and expected behaviors for a library like jQuery. While the code uses some legacy practices like `XDomainRequest`, these pose minor risks and are not inherently malicious. Overall, this script is likely benign and can be considered low risk."
} |
!function(e,t){"use strict";"object"==typeof module&&"object"==typeof module.exports?module.exports=e.document?t(e,!0):function(e){if(!e.document)throw new Error("jQuery requires a window with a document");return t(e)}:t(e)}("undefined"!=typeof window?window:this,function(C,e){"use strict";var t=[],r=Object.getPrototypeOf,s=t.slice,g=t.flat?function(e){return t.flat.call(e)}:function(e){return t.concat.apply([],e)},u=t.push,i=t.indexOf,n={},o=n.toString,v=n.hasOwnProperty,a=v.toString,l=a.call(Object),y={},m=function(e){return"function"==typeof e&&"number"!=typeof e.nodeType},x=function(e){return null!=e&&e===e.window},E=C.document,c={type:!0,src:!0,nonce:!0,noModule:!0};function b(e,t,n){var r,i,o=(n=n||E).createElement("script");if(o.text=e,t)for(r in c)(i=t[r]||t.getAttribute&&t.getAttribute(r))&&o.setAttribute(r,i);n.head.appendChild(o).parentNode.removeChild(o)}function w(e){return null==e?e+"":"object"==typeof e||"function"==typeof e?n[o.call(e)]||"object":typeof e}var f="3.5.1",S=function(e,t){return new S.fn.init(e,t)};function p(e){var t=!!e&&"length"in e&&e.length,n=w(e);return!m(e)&&!x(e)&&("array"===n||0===t||"number"==typeof t&&0<t&&t-1 in e)}S.fn=S.prototype={jquery:f,constructor:S,length:0,toArray:function(){return s.call(this)},get:function(e){return null==e?s.call(this):e<0?this[e+this.length]:this[e]},pushStack:function(e){var t=S.merge(this.constructor(),e);return t.prevObject=this,t},each:function(e){return S.each(this,e)},map:function(n){return this.pushStack(S.map(this,function(e,t){return n.call(e,t,e)}))},slice:function(){return this.pushStack(s.apply(this,arguments))},first:function(){return this.eq(0)},last:function(){return this.eq(-1)},even:function(){return this.pushStack(S.grep(this,function(e,t){return(t+1)%2}))},odd:function(){return this.pushStack(S.grep(this,function(e,t){return t%2}))},eq:function(e){var t=this.length,n=+e+(e<0?t:0);return this.pushStack(0<=n&&n<t?[this[n]]:[])},end:function(){return this.prevObject||this.constructor()},push:u,sort:t.sort,splice:t.splice},S.extend=S.fn.extend=function(){var e,t,n,r,i,o,a=arguments[0]||{},s=1,u=arguments.length,l=!1;for("boolean"==typeof a&&(l=a,a=arguments[s]||{},s++),"object"==typeof a||m(a)||(a={}),s===u&&(a=this,s--);s<u;s++)if(null!=(e=arguments[s]))for(t in e)r=e[t],"__proto__"!==t&&a!==r&&(l&&r&&(S.isPlainObject(r)||(i=Array.isArray(r)))?(n=a[t],o=i&&!Array.isArray(n)?[]:i||S.isPlainObject(n)?n:{},i=!1,a[t]=S.extend(l,o,r)):void 0!==r&&(a[t]=r));return a},S.extend({expando:"jQuery"+(f+Math.random()).replace(/\D/g,""),isReady:!0,error:function(e){throw new Error(e)},noop:function(){},isPlainObject:function(e){var t,n;return!(!e||"[object Object]"!==o.call(e)||(t=r(e))&&("function"!=typeof(n=v.call(t,"constructor")&&t.constructor)||a.call(n)!==l))},isEmptyObject:function(e){var t;for(t in e)return!1;return!0},globalEval:function(e,t,n){b(e,{nonce:t&&t.nonce},n)},each:function(e,t){var n,r=0;if(p(e))for(n=e.length;r<n&&!1!==t.call(e[r],r,e[r]);r++);else for(r in e)if(!1===t.call(e[r],r,e[r]))break;return e},makeArray:function(e,t){var n=t||[];return null!=e&&(p(Object(e))?S.merge(n,"string"==typeof e?[e]:e):u.call(n,e)),n},inArray:function(e,t,n){return null==t?-1:i.call(t,e,n)},merge:function(e,t){for(var n=+t.length,r=0,i=e.length;r<n;r++)e[i++]=t[r];return e.length=i,e},grep:function(e,t,n){for(var r=[],i=0,o=e.length,a=!n;i<o;i++)!t(e[i],i)!==a&&r.push(e[i]);return r},map:function(e,t,n){var r,i,o=0,a=[];if(p(e))for(r=e.length;o<r;o++)null!=(i=t(e[o],o,n))&&a.push(i);else for(o in e)null!=(i=t(e[o],o,n))&&a.push(i);return g(a)},guid:1,support:y}),"function"==typeof Symbol&&(S.fn[Symbol.iterator]=t[Symbol.iterator]),S.each("Boolean Number String Function Array Date RegExp Object Error Symbol".split(" "),function(e,t){n["[object "+t+"]"]=t.toLowerCase()});var d=function(n){var e,d,b,o,i,h,f,g,w,u,l,T,C,a,E,v,s,c,y,S="sizzle"+1*new Date,p=n.document,k=0,r=0,m=ue(),x=ue(),A=ue(),N=ue(),D=function(e,t){return e===t&&(l=!0),0},j={}.hasOwnPropert |
| URL: https://static.zohocdn.com/forms/js/formsselect.b9... Model: Joe Sandbox AI | {
"risk_score": 2,
"reasoning": "The provided JavaScript snippet appears to be a part of the Select2 library, which is a popular jQuery-based library for creating custom dropdown and select elements. The code is using the 'almond' AMD loader and defining a 'select2/utils' module, which contains utility functions for the library. This code does not exhibit any high-risk behaviors, such as dynamic code execution, data exfiltration, or suspicious redirects. The code is primarily focused on extending and decorating the functionality of the Select2 library, which is a legitimate use case. Therefore, this snippet is considered low risk."
} |
!function(a){"function"==typeof define&&define.amd?define(["jquery"],a):a("object"==typeof exports?require("jquery"):jQuery)}(function(a){var b=function(){if(a&&a.fn&&a.fn.select2&&a.fn.select2.amd)var b=a.fn.select2.amd;var c;return function(){var a,c,d;b&&b.requirejs||(b?c=b:b={},function(b){function e(a,b){return u.call(a,b)}function f(a,b){var c,d,e,f,g,h,i,j,k,l,m,n=b&&b.split("/"),o=s.map,p=o&&o["*"]||{};if(a&&"."===a.charAt(0))if(b){for(g=(a=a.split("/")).length-1,s.nodeIdCompat&&w.test(a[g])&&(a[g]=a[g].replace(w,"")),a=n.slice(0,n.length-1).concat(a),k=0;k<a.length;k+=1)if("."===(m=a[k]))a.splice(k,1),k-=1;else if(".."===m){if(1===k&&(".."===a[2]||".."===a[0]))break;k>0&&(a.splice(k-1,2),k-=2)}a=a.join("/")}else 0===a.indexOf("./")&&(a=a.substring(2));if((n||p)&&o){for(k=(c=a.split("/")).length;k>0;k-=1){if(d=c.slice(0,k).join("/"),n)for(l=n.length;l>0;l-=1)if((e=o[n.slice(0,l).join("/")])&&(e=e[d])){f=e,h=k;break}if(f)break;!i&&p&&p[d]&&(i=p[d],j=k)}!f&&i&&(f=i,h=j),f&&(c.splice(0,h,f),a=c.join("/"))}return a}function g(a,c){return function(){var d=v.call(arguments,0);return"string"!=typeof d[0]&&1===d.length&&d.push(null),n.apply(b,d.concat([a,c]))}}function i(a){return function(b){q[a]=b}}function j(a){if(e(r,a)){var c=r[a];delete r[a],t[a]=!0,m.apply(b,c)}if(!e(q,a)&&!e(t,a))throw new Error("No "+a);return q[a]}function k(a){var b,c=a?a.indexOf("!"):-1;return c>-1&&(b=a.substring(0,c),a=a.substring(c+1,a.length)),[b,a]}var m,n,o,p,q={},r={},s={},t={},u=Object.prototype.hasOwnProperty,v=[].slice,w=/\.js$/;o=function(a,b){var c,d=k(a),e=d[0];return a=d[1],e&&(c=j(e=f(e,b))),e?a=c&&c.normalize?c.normalize(a,function(a){return function(b){return f(b,a)}}(b)):f(a,b):(e=(d=k(a=f(a,b)))[0],a=d[1],e&&(c=j(e))),{f:e?e+"!"+a:a,n:a,pr:e,p:c}},p={require:function(a){return g(a)},exports:function(a){var b=q[a];return void 0!==b?b:q[a]={}},module:function(a){return{id:a,uri:"",exports:q[a],config:function(a){return function(){return s&&s.config&&s.config[a]||{}}}(a)}}},m=function(a,c,d,f){var h,k,l,m,n,s,u=[],v=typeof d;if(f=f||a,"undefined"===v||"function"===v){for(c=!c.length&&d.length?["require","exports","module"]:c,n=0;n<c.length;n+=1)if("require"===(k=(m=o(c[n],f)).f))u[n]=p.require(a);else if("exports"===k)u[n]=p.exports(a),s=!0;else if("module"===k)h=u[n]=p.module(a);else if(e(q,k)||e(r,k)||e(t,k))u[n]=j(k);else{if(!m.p)throw new Error(a+" missing "+k);m.p.load(m.n,g(f,!0),i(k),{}),u[n]=q[k]}l=d?d.apply(q[a],u):void 0,a&&(h&&h.exports!==b&&h.exports!==q[a]?q[a]=h.exports:l===b&&s||(q[a]=l))}else a&&(q[a]=d)},a=c=n=function(a,c,d,e,f){if("string"==typeof a)return p[a]?p[a](c):j(o(a,c).f);if(!a.splice){if((s=a).deps&&n(s.deps,s.callback),!c)return;c.splice?(a=c,c=d,d=null):a=b}return c=c||function(){},"function"==typeof d&&(d=e,e=f),e?m(b,a,c,d):setTimeout(function(){m(b,a,c,d)},4),n},n.config=function(a){return n(a)},a._defined=q,(d=function(a,b,c){if("string"!=typeof a)throw new Error("See almond README: incorrect module build, no module name");b.splice||(c=b,b=[]),e(q,a)||e(r,a)||(r[a]=[a,b,c])}).amd={jQuery:!0}}(),b.requirejs=a,b.require=c,b.define=d)}(),b.define("almond",function(){}),b.define("jquery",[],function(){var b=a||$;return null==b&&console&&console.error&&console.error("Select2: An instance of jQuery or a jQuery-compatible library was not found. Make sure that you are including jQuery before Select2 on your web page."),b}),b.define("select2/utils",["jquery"],function(a){function b(a){var b=a.prototype,c=[];for(var d in b){"function"==typeof b[d]&&"constructor"!==d&&c.push(d)}return c}var c={Extend:function(a,b){function c(){this.constructor=a}var d={}.hasOwnProperty;for(var e in b)d.call(b,e)&&(a[e]=b[e]);return c.prototype=b.prototype,a.prototype=new c,a.__super__=b.prototype,a},Decorate:function(a,c){function d(){var b=Array.prototype.unshift,d=c.prototype.constructor.length,e=a.prototype.constructor;d>0&&(b.call(arguments,a.prototype.constructor),e=c.prototype.constructor),e.apply(this,arguments)}var f=b(c) |
| URL: https://static.zohocdn.com/forms/js/formslive.48ca... Model: Joe Sandbox AI | {
"risk_score": 3,
"reasoning": "The provided JavaScript snippet appears to be a part of a web form functionality and does not contain any high-risk indicators. It primarily focuses on handling form field focus and navigation, which is a common and legitimate behavior. While it uses some legacy APIs like `XDomainRequest`, the overall context suggests this is likely part of a larger web application and not intended for malicious purposes. The script exhibits low-risk indicators and can be considered relatively benign."
} |
// $Id: $
/**
* IMPORTANT NOTE: This compressed js file includes Zoho Forms Forms/Report live js.
*/
function ZFLiveFormFocusHanderOnNavigation(actionType,pageNo){this.actionType=actionType,this.pageNo=pageNo}function ZFLiveFieldFocusHander(fieldElem,forError){this.fieldElem=fieldElem,this.isDisabledField=$(fieldElem).hasClass("fieldDisabled"),this.isFocusForError=void 0!==forError&&forError}function setFocusForElementThatCannotBeFocused(focusElem,callBackOnFocus,callBackFunctionParam){if(isSfChild(focusElem)){var scrollToViewElem=$(focusElem);if("livefield-elem"!=$(focusElem).attr("elname")){var closestFieldElem=$(focusElem).closest('[elname="livefield-elem"]');$(closestFieldElem).length>0&&(scrollToViewElem=closestFieldElem)}$(scrollToViewElem)[0].scrollIntoView({behavior:"auto",block:"center"})}if(isEmbeddedForm()&&(isMobileBrowser()||isSafari()))setTimeout(function(){var hiddenInput=$("<input />");$(hiddenInput).attr("type","text"),$(hiddenInput).attr("style","position: absolute; opacity: 0; pointer-events: none"),$(focusElem).prepend(hiddenInput),$(hiddenInput).focus(),setTimeout(function(){var existingTabIndex=setTabIndexForElementAndMakeFocus(focusElem);$(hiddenInput).remove(),resetTabIndexForElementAndMakeCallBackWithTimeout(focusElem,existingTabIndex,callBackOnFocus,callBackFunctionParam)},500)},500);else{var focusTimout=0;isiOSMobileBrowser()&&(focusTimout=100),setTimeout(function(){var existingTabIndex=setTabIndexForElementAndMakeFocus(focusElem);resetTabIndexForElementAndMakeCallBackWithTimeout(focusElem,existingTabIndex,callBackOnFocus,callBackFunctionParam)},focusTimout)}}function setTabIndexForElementAndMakeFocus(focusElem){var existingTabIndex=$(focusElem).attr("tabindex");return(void 0===existingTabIndex||existingTabIndex<=0)&&$(focusElem).attr("tabindex",1),$(focusElem).focus(),existingTabIndex}function resetTabIndexForElementAndMakeCallBackWithTimeout(focusElem,existingTabIndex,callBackOnFocus,callBackFunctionParam){setTimeout(function(){void 0===existingTabIndex?$(focusElem).removeAttr("tabindex"):$(focusElem).attr("tabindex",existingTabIndex),void 0!==callBackOnFocus&&callBackOnFocus(callBackFunctionParam)},500)}function ZFFormulaCondition(){this.fieldLinkName,this.operator,this.condValue,this.is_subform_child=!1,this.result=!1,this.group_name}ZFLiveFormFocusHanderOnNavigation.prototype.setFocus=function(){if("onload"==this.actionType)this.setFocusOnLoad();else if("pageNav"==this.actionType)if(isMobileBrowser()&&isEmbeddedForm()){var firstLi=$("div[elname=formBodyULName][page_no='"+this.pageNo+"']").find("div[elname=livefield-elem]:visible").first();new ZFLiveFieldFocusHander($(firstLi),!1).focusThisFieldElement()}else this.setFocusOnPageNav()},ZFLiveFormFocusHanderOnNavigation.prototype.setFocusOnLoad=function(){$(ZFPageAnimation.scrollWindow).scrollTop(0)},ZFLiveFormFocusHanderOnNavigation.prototype.setFocusOnPageNav=function(){if(ZFLive.ShowPageTitle===PageTitleOptions.NAVIGATION_BAR&&$("#navigBar").is(":visible")){var pageNeedToBeFocused=$("div#pageTitleCont").find("p[pagenum='"+this.pageNo+"']");0==$("div#pageTitleCont").length&&(pageNeedToBeFocused=$("div#navigBar").find("div[pagenum='"+this.pageNo+"']")),$(pageNeedToBeFocused).attr("tabindex",0),setFocusForElementThatCannotBeFocused(pageNeedToBeFocused)}else if(ZFLive.ShowPageTitle===PageTitleOptions.PAGE)setFocusForElementThatCannotBeFocused($("div[elname=formBodyULName][page_no='"+this.pageNo+"']").find("div[elname=formPageHeader]:first").find("h2"));else{var firstLi=$("div[elname=formBodyULName][page_no='"+this.pageNo+"']").find("div[elname=livefield-elem]:visible").first();new ZFLiveFieldFocusHander($(firstLi),!1).focusThisFieldElement()}},ZFLiveFieldFocusHander.prototype.getParentSfElem=function(){return $(this.fieldElem).closest("div[elname=subFormFieldsUl]").closest("div[elname=livefield-elem]")},ZFLiveFieldFocusHander.prototype.setErrorForSfCard=function(sfParentElem){var rowId=getClosestParentSubFormUL(sfParentElem).attr("rowid"),thisSfCardEl |
| URL: https://forms.zohopublic.com/volt2g1/form/VBTALimited1/formperma/9uXnYrcI8nZnNeq2EUuS8N67Tttzolf7VwjpujnualA Model: Joe Sandbox AI | {
"contains_trigger_text": false,
"trigger_text": "unknown",
"prominent_button_name": "NEXT",
"text_input_field_labels": "unknown",
"pdf_icon_visible": false,
"has_visible_captcha": true,
"has_urgent_text": false,
"has_visible_qrcode": false,
"contains_chinese_text": false,
"contains_fake_security_alerts": false
} |
 |
| URL: https://forms.zohopublic.com/volt2g1/form/VBTALimited1/formperma/9uXnYrcI8nZnNeq2EUuS8N67Tttzolf7VwjpujnualA Model: Joe Sandbox AI | {
"brands": "unknown"
} |
|
| URL: https://challenges.cloudflare.com/cdn-cgi/challeng... Model: Joe Sandbox AI | {
"risk_score": 7,
"reasoning": "This script appears to be a Cloudflare challenge script, which is a common security mechanism used to protect websites from bots and other malicious activity. While the script contains some obfuscated code and makes use of various Cloudflare-specific APIs, it does not exhibit any clear signs of malicious behavior. However, the extensive use of obfuscation and the presence of a large amount of encoded data raise some concerns, warranting a medium-high risk score."
} |
(function(){
window._cf_chl_opt={
cvId: '3',
cZone: 'challenges.cloudflare.com',
cTplV: 5,
chlApivId: '0',
chlApiWidgetId: 'gzq5h',
chlApiSitekey: '0x4AAAAAAA4o-VTtOPjxHSIx',
chlApiMode: 'managed',
chlApiSize: 'normal',
chlApiRcV: 'pfI_eb7w6HjY5YJOqiFlJ0oMfWY_uDfqJEM_pQl1H98-1736523337-1.3.1.1-Gkkz_y3LCjkVdHhi1dPqKR9MIDpUE8vsofwc8P5.YZY',
chlApiTimeoutEncountered: 0,
chlApiOverrunBudgetMs:10000,
chlTimeoutMs:120000,
cK:[],
cType: 'chl_api_m',
cRay: '8ffdbce9dc0042aa',
cH: 'jrtQryuTrKRXpAj4a9wI8FuFxIH2UCCaEZEZdprRV3I-1736523337-1.1.1.1-.f6na5otYCaqo95CgNEMKBF0lwzER29Ivoo7fv5PEhAd2qWC89r.NBU7lpT3ZzqW',
cFPWv: 'b',
cLt: 'n',
chlApiFailureFeedbackEnabled:true,
chlApiLoopFeedbackEnabled:false,
wOL:false,
wT: 'auto',
wS: 'normal',
md: 'gAO6oQB.jK9kvrQ92FGY_D6RAfJbEwyM7qHhUB3jyjE-1736523337-1.1.1.1-9q67hEBtfJqvanBSIT4yn5ZPpRUlTVETZUFEQUTxvDhNlLdT8rQTnuvaqzrjkgN6NhfCJbpwDOhoPLhtSErMx2QUH3JcdauZRskkc4gfRJz31OUxVNpu.2HG9IOA2swqEVQW0nU7fh.UuYVvuTUdbXQ5CF6r3RNKL6qU59pPR9pK0L8k0Jx49HAJYeh3LFh6DFlqO9LHNx47V6CLxcvjCUHCOim.iOrm6wgSHef3O7yQHCZ2sjAM9vH1ccKP6dYgejmHmnm8WCEWeUkN1mNkJ__ECuKPsGJEkqFUAx6f8svDgfZTKdwz.UDkLOQkXtbw3CdmDXdXCmrGBZcIY2fLy6Thv37Nrnv826AOFCwYibxEUHp_gFX6b_OGm0Ru7TGWTw_YNXvWOospkkbjYPtHSTdBFwGR4dmnHvUgoLw.9IfhFellZ3uYfjJLDcQ9rV_YtqtXUUdXfkb_nCXFTu6xWfjWmbSX_lPVkvC1V0s8I8FIZn2k00PaJl_3rMgGXeZy8UR5FQxaC9Nu_TW0xrVe1ARtWUf4Ky.43_JqNfJji_0VzHNsdGX8vrpIk_ucP1nR3IQyg3sX9XNwr7LE8Kcf7H92NhhJqLTFm3kK7NgrixRule9OoPbljQvWAWNaghbAOVTGXyA.4hLQ7XKVcZLZjZy5CCmWWINcgI3iYQ4EXXVpfvDje9SK6GOjBv02BdE2AARnEdWFCkxdzsHESSkERipWkkUhxXEIqVM5B
|
| URL: https://oficinadelestudianteextracomunitario.org/... Model: Joe Sandbox AI | {
"risk_score": 1,
"reasoning": "The provided JavaScript snippet simply reloads the current page, which is a common and benign operation. This behavior does not indicate any high-risk or malicious activities."
} |
window.location.reload();
|
| URL: https://oficinadelestudianteextracomunitario.org/... Model: Joe Sandbox AI | {
"risk_score": 2,
"reasoning": "The provided JavaScript snippet appears to be a legitimate implementation of the Cloudflare Turnstile CAPTCHA system. It initializes the Turnstile widget, attaches an event listener to handle the 'turnstile:pass' event, and automatically submits the form when the CAPTCHA is successfully completed. The script does not exhibit any high-risk behaviors, such as dynamic code execution, data exfiltration, or redirects to suspicious domains. The only low-risk indicator is the use of a legacy `XDomainRequest` API, but this is a minor concern and is likely due to compatibility reasons. Overall, this script seems to be a standard implementation of a CAPTCHA system and poses a low risk."
} |
function onloadTurnstileCallback() {
console.log('Turnstile script loaded');
// Initialize Turnstile after the script is loaded
window.turnstile = window.turnstile || {};
window.turnstile.render = window.turnstile.render || {};
const turnstileElement = document.querySelector('.cf-turnstile');
if (turnstileElement) {
console.log('Turnstile element found');
// Attach the event listener to the Turnstile instance
turnstileElement.addEventListener('turnstile:pass', function() {
console.log('Turnstile CAPTCHA passed');
document.getElementById('captcha-form').submit();
});
// Define a retry function for the fallback
function checkTurnstileResponse(retryCount = 0) {
if (window.turnstile && window.turnstile.getResponse) {
const response = window.turnstile.getResponse();
if (response) {
// Append the response to the form before submitting
const form = document.getElementById('captcha-form');
const input = document.createElement('input');
input.type = 'hidden';
input.name = 'cf-turnstile-response';
input.value = response;
form.appendChild(input); // Add the response input to the form
// Auto-submit the form
setTimeout(function() {
form.submit();
}, 500); // You can adjust the delay if necessary (in milliseconds)
} else if (retryCount < 10) { // Retry up to 10 times
console.log('Turnstile response not yet obtained, retrying...');
setTimeout(() => checkTurnstileResponse(retryCount + 1), 3000); // Retry after 5 seconds
} else {
console.error('Turnstile response not obtained after several attempts');
}
} else if (retryCount < 10) { // Retry if Turnstile is not ready
console.log('Turnstile not ready, retrying...');
setTimeout(() => checkTurnstileResponse(retryCount + 1), 3000); // Retry after 5 seconds
} else {
console.error('Turnstile not initialized after several attempts');
}
}
// Start checking for the Turnstile response
setTimeout(() => checkTurnstileResponse(), 3000); // Initial delay before starting checks
} else {
console.error('Turnstile element not found');
}
}
|
| URL: https://challenges.cloudflare.com/cdn-cgi/challeng... Model: Joe Sandbox AI | {
"risk_score": 3,
"reasoning": "The provided JavaScript snippet appears to be a Cloudflare challenge script, which is a common security mechanism used to protect websites from bots and other automated threats. The script sets up various configuration options for the Cloudflare challenge and includes functionality to handle communication between the challenge and the parent window. While the script uses some techniques that could be considered moderately risky, such as dynamic message handling and communication with external domains, these behaviors are likely part of the legitimate functionality of the Cloudflare challenge and do not indicate malicious intent. Overall, the script appears to be a benign implementation of a common web security mechanism."
} |
(function(){
window._cf_chl_opt={
cvId: '3',
cZone: 'challenges.cloudflare.com',
cTplV: 5,
chlApivId: '0',
chlApiWidgetId: 'gzq5h',
chlApiSitekey: '0x4AAAAAAA4o-VTtOPjxHSIx',
chlApiMode: 'managed',
chlApiSize: 'normal',
chlApiRcV: 'pfI_eb7w6HjY5YJOqiFlJ0oMfWY_uDfqJEM_pQl1H98-1736523337-1.3.1.1-Gkkz_y3LCjkVdHhi1dPqKR9MIDpUE8vsofwc8P5.YZY',
chlApiTimeoutEncountered: 0,
chlApiOverrunBudgetMs:10000,
chlTimeoutMs:120000,
cK:[],
cType: 'chl_api_m',
cRay: '8ffdbce9dc0042aa',
cH: 'jrtQryuTrKRXpAj4a9wI8FuFxIH2UCCaEZEZdprRV3I-1736523337-1.1.1.1-.f6na5otYCaqo95CgNEMKBF0lwzER29Ivoo7fv5PEhAd2qWC89r.NBU7lpT3ZzqW',
cFPWv: 'b',
cLt: 'n',
chlApiFailureFeedbackEnabled:true,
chlApiLoopFeedbackEnabled:false,
wOL:false,
wT: 'auto',
wS: 'normal',
md: 'gAO6oQB.jK9kvrQ92FGY_D6RAfJbEwyM7qHhUB3jyjE-1736523337-1.1.1.1-9q67hEBtfJqvanBSIT4yn5ZPpRUlTVETZUFEQUTxvDhNlLdT8rQTnuvaqzrjkgN6NhfCJbpwDOhoPLhtSErMx2QUH3JcdauZRskkc4gfRJz31OUxVNpu.2HG9IOA2swqEVQW0nU7fh.UuYVvuTUdbXQ5CF6r3RNKL6qU59pPR9pK0L8k0Jx49HAJYeh3LFh6DFlqO9LHNx47V6CLxcvjCUHCOim.iOrm6wgSHef3O7yQHCZ2sjAM9vH1ccKP6dYgejmHmnm8WCEWeUkN1mNkJ__ECuKPsGJEkqFUAx6f8svDgfZTKdwz.UDkLOQkXtbw3CdmDXdXCmrGBZcIY2fLy6Thv37Nrnv826AOFCwYibxEUHp_gFX6b_OGm0Ru7TGWTw_YNXvWOospkkbjYPtHSTdBFwGR4dmnHvUgoLw.9IfhFellZ3uYfjJLDcQ9rV_YtqtXUUdXfkb_nCXFTu6xWfjWmbSX_lPVkvC1V0s8I8FIZn2k00PaJl_3rMgGXeZy8UR5FQxaC9Nu_TW0xrVe1ARtWUf4Ky.43_JqNfJji_0VzHNsdGX8vrpIk_ucP1nR3IQyg3sX9XNwr7LE8Kcf7H92NhhJqLTFm3kK7NgrixRule9OoPbljQvWAWNaghbAOVTGXyA.4hLQ7XKVcZLZjZy5CCmWWINcgI3iYQ4EXXVpfvDje9SK6GOjBv02BdE2AARnEdWFCkxdzsHESSkERipWkkUhxXEIqVM5BFwr0ETghEDpvEB2qWY2PkA47G7m2yeQjPmTa0_qMG9QpqLjXm7QnkmxQ4TjQCmvFyNCjBSkJnMSgVr0NSnn_t5NrcE5vKtHQOv.zdFcr87hIKwMGM93xpShYCCh.kqQ3nV_pjoqePo5mu7brQbaW620gICm7DuvIsC_muvcTqjFRcvXhtuW83R41b5i6ytRuSZ8ht5cJTVpBw2xJO.VGJFnWm4oUWSjHi3HL5eyo.gSrCigFphR6He_PWu46R.cT1hlVOnV_RnndFWXnELjRBBGMsWggikDpQDoKSsKWKIjGRD7wIlRfgFV.i23FL2EwXVyhxxm00Me92TWM15izneZAhEBegbK0W.uOpciMNJPGzJo.C08AM6zIPxWIqWC.zP6lw29FHDzhROGHCf1UJZlF3gU.0WiqqAmhpMgWWvsOGk6yV0R0T74fI3rsviSTzqH8OeFYO0OpFvmo7XzTymz_wlK88pL.uOB3V8qVUPBdfgpqcL3OjDon6DVbzMeyKBeXovf34_I95B8ILFwIDHTQ3.cWbfmWvVWStDWHrhMLYMhBcm6E0zz63Qou8zY9p4fEf1gPalvrY5LKObs6.DKKeHLnuSjHhQXlXjlme8bQXSzyaIpn4Bm8ngdOy2_6sgelOtik0qp8JvK7L5XGPulHTflZ1ac.zIE4bm4oh_NUTHOUQ',
cITimeS: '1736523337',
refresh: function(){
if(window['parent']){
window['parent'].postMessage({
source: 'cloudflare-challenge',
widgetId: 'gzq5h',
nextRcV: 'pfI_eb7w6HjY5YJOqiFlJ0oMfWY_uDfqJEM_pQl1H98-1736523337-1.3.1.1-Gkkz_y3LCjkVdHhi1dPqKR9MIDpUE8vsofwc8P5.YZY',
event: 'reloadRequest',
}, "*");
}
}
};
var handler = function(event) {
var e = event.data;
if (e.source && e.source === 'cloudflare-challenge' && e.event === 'meow' && e.widgetId === window._cf_chl_opt.chlApiWidgetId) {
if(window['parent']){
window['parent'].postMessage({
source: 'cloudflare-challenge',
widgetId: window._cf_chl_opt.chlApiWidgetId,
event: 'food',
seq: e.seq,
}, '*');
}
}
}
window.addEventListener('message', handler);
}());
|
| URL: https://oficinadelestudianteextracomunitario.org/ Model: Joe Sandbox AI | {
"contains_trigger_text": false,
"trigger_text": "unknown",
"prominent_button_name": "unknown",
"text_input_field_labels": "unknown",
"pdf_icon_visible": false,
"has_visible_captcha": false,
"has_urgent_text": false,
"has_visible_qrcode": false,
"contains_chinese_text": false,
"contains_fake_security_alerts": false
} |
 |
| URL: https://oficinadelestudianteextracomunitario.org Model: Joe Sandbox AI | {
"typosquatting": false,
"unusual_query_string": false,
"suspicious_tld": false,
"ip_in_url": false,
"long_subdomain": false,
"malicious_keywords": false,
"encoded_characters": false,
"redirection": false,
"contains_email_address": false,
"known_domain": false,
"brand_spoofing_attempt": false,
"third_party_hosting": false
} |
URL: https://oficinadelestudianteextracomunitario.org |
| URL: https://oficinadelestudianteextracomunitario.org/ Model: Joe Sandbox AI | {
"brands": [
"Cloudflare"
]
} |
|
| URL: https://en.wikipedia.org/wiki/Windows_Server_2019#DummyBot Model: Joe Sandbox AI | {
"contains_trigger_text": true,
"trigger_text": "Click here to view document",
"prominent_button_name": "unknown",
"text_input_field_labels": "unknown",
"pdf_icon_visible": false,
"has_visible_captcha": false,
"has_urgent_text": false,
"has_visible_qrcode": false,
"contains_chinese_text": false,
"contains_fake_security_alerts": false
} |
 |
| URL: https://en.wikipedia.org Model: Joe Sandbox AI | {
"typosquatting": false,
"unusual_query_string": false,
"suspicious_tld": false,
"ip_in_url": false,
"long_subdomain": false,
"malicious_keywords": false,
"encoded_characters": false,
"redirection": false,
"contains_email_address": false,
"known_domain": true,
"brand_spoofing_attempt": false,
"third_party_hosting": false
} |
URL: https://en.wikipedia.org |
| URL: https://en.wikipedia.org/wiki/Windows_Server_2019#DummyBot Model: Joe Sandbox AI | {
"contains_trigger_text": false,
"trigger_text": "unknown",
"prominent_button_name": "unknown",
"text_input_field_labels": "unknown",
"pdf_icon_visible": false,
"has_visible_captcha": false,
"has_urgent_text": false,
"has_visible_qrcode": false,
"contains_chinese_text": false,
"contains_fake_security_alerts": false
} |
 |
| URL: https://en.wikipedia.org/wiki/Windows_Server_2019#DummyBot Model: Joe Sandbox AI | {
"brands": [
"Microsoft",
"Windows Server"
]
} |
|
| URL: https://en.wikipedia.org/wiki/Windows_Server_2019#DummyBot Model: Joe Sandbox AI | {
"brands": [
"Microsoft"
]
} |
|
| URL: https://zohopublic.com Model: Joe Sandbox AI | {
"typosquatting": false,
"unusual_query_string": false,
"suspicious_tld": false,
"ip_in_url": false,
"long_subdomain": false,
"malicious_keywords": false,
"encoded_characters": false,
"redirection": false,
"contains_email_address": false,
"known_domain": true,
"brand_spoofing_attempt": false,
"third_party_hosting": false
} |
URL: https://zohopublic.com |
Edit tour
chrome.exe (PID: 7024 cmdline: 
Key Decision
Richest Path
Thread / callback creation
Lower opacity -> Library Node