| URL: https://deltacapoffers.com Model: Joe Sandbox AI | {
"typosquatting": false,
"unusual_query_string": false,
"suspicious_tld": false,
"ip_in_url": false,
"long_subdomain": false,
"malicious_keywords": false,
"encoded_characters": false,
"redirection": false,
"contains_email_address": false,
"known_domain": false,
"brand_spoofing_attempt": true,
"third_party_hosting": true
} |
URL: https://deltacapoffers.com |
| URL: https://deltacapoffers.com/prequalification.php?ut... Model: Joe Sandbox AI | {
"risk_score": 2,
"reasoning": "The provided JavaScript snippet appears to be a legitimate user interface component with common functionality such as progress tracking, form handling, and currency formatting. It does not contain any high-risk indicators like dynamic code execution, data exfiltration, or suspicious redirects. The script is focused on providing a smooth user experience and does not exhibit any malicious behaviors."
} |
document.addEventListener("DOMContentLoaded", function () {
let currentStep = 1;
const totalSteps = 4;
// Format currency
function formatCurrency(value) {
return new Intl.NumberFormat('en-US', {
style: 'currency',
currency: 'USD',
maximumFractionDigits: 0
}).format(value);
}
// Update progress bar
function updateProgress(step) {
const progressLine = document.querySelector('.progress-line-filled');
const progressPercentage = ((step - 1) / (totalSteps - 1)) * 100;
progressLine.style.width = `${progressPercentage}%`;
document.querySelectorAll('.progress-step').forEach((el, index) => {
el.classList.remove('active', 'completed');
if (index + 1 === step) {
el.classList.add('active');
} else if (index + 1 < step) {
el.classList.add('completed');
}
});
}
// Show step with animation
function showStep(step) {
document.querySelector(".container").setAttribute('step', step);
const steps = document.querySelectorAll('.step');
steps.forEach(el => {
el.style.animation = 'none';
el.offsetHeight; // Trigger reflow
el.style.animation = null;
el.classList.remove('active');
});
const newStep = document.getElementById(`step${step}`);
newStep.classList.add('active');
updateProgress(step);
}
const back = document.getElementById('back-btn');
back.addEventListener('click', () => {
currentStep--;
showStep(currentStep);
});
// Handle funding slider
const fundingSlider = document.getElementById('fundingSlider');
const fundingDisplay = document.getElementById('fundingDisplay');
fundingSlider.addEventListener('input', () => {
fundingDisplay.textContent = formatCurrency(fundingSlider.value);
});
fundingSlider.addEventListener('change', () => {
setTimeout(() => {
currentStep++;
showStep(currentStep);
}, 2000);
});
// Handle revenue slider
const revenueSlider = document.getElementById('revenueSlider');
const revenueDisplay = document.getElementById('revenueDisplay');
revenueSlider.addEventListener('input', () => {
revenueDisplay.textContent = formatCurrency(revenueSlider.value);
});
revenueSlider.addEventListener('change', () => {
setTimeout(() => {
currentStep++;
showStep(currentStep);
}, 2000);
});
// Handle company type selection
document.querySelectorAll('.type-btn').forEach(btn => {
btn.addEventListener('click', () => {
document.querySelectorAll('.type-btn').forEach(b => b.classList.remove('selected'));
btn.classList.add('selected');
document.getElementById('companyType').value = btn.innerText;
// Add animation class
btn.classList.add('animate__animated', 'animate__pulse');
setTimeout(() => {
currentStep++;
showStep(currentStep);
btn.classList.remove('animate__animated', 'animate__pulse');
}, 500);
});
});
// Form validation
function validateEmail(email) {
return /^[^\s@]+@[^\s@]+\.[^\s@]+$/.test(email);
}
function validatePhone(phone) {
return /^\(?([0-9]{3})\)?[-. ]?([0-9]{3})[-. ]?([0-9]{4})$/.test(phone);
}
document.getElement |
| URL: https://script.hotjar.com/modules.60031afbf51fb3e8... Model: Joe Sandbox AI | {
"risk_score": 4,
"reasoning": "The provided JavaScript snippet contains a few moderate-risk indicators, such as external data transmission and aggressive DOM manipulation. However, it does not appear to have any high-risk indicators like dynamic code execution or data exfiltration. The script seems to be related to analytics and telemetry functionality, which is a legitimate use case. Overall, the script requires further review due to its potentially aggressive behavior, but it does not demonstrate clear malicious intent."
} |
/*! For license information please see modules.60031afbf51fb3e88a5b.js.LICENSE.txt */
!function(){var e={4788:function(e,t,n){"use strict";n.d(t,{s:function(){return r}});const r=Object.freeze({IDENTIFY_USER:"identify_user",AUTOTAG_RECORDING:"autotag_recording",TAG_RECORDING:"tag_recording",HEATMAP_HELO:"heatmap_helo",RECORDING_HELO:"recording_helo",REPORT_USER_ID:"report_user_id",MUTATION:"mutation",MOUSE_CLICK:"mouse_click",INPUT_CHOICE_CHANGE:"input_choice_change",KEY_PRESS:"key_press",MOUSE_MOVE:"mouse_move",RELATIVE_MOUSE_MOVE:"relative_mouse_move",CLIPBOARD:"clipboard",PAGE_VISIBILITY:"page_visibility",SCROLL_REACH:"scroll_reach",SCROLL:"scroll",SELECT_CHANGE:"select_change",VIEWPORT_RESIZE:"viewport_resize",SCRIPT_PERFORMANCE:"script_performance",REPORT_CONTENT:"report_content",INSERTED_RULE:"inserted_rule",DELETED_RULE:"deleted_rule"})},6939:function(e,t,n){"use strict";n.d(t,{f:function(){return f},W:function(){return g}});const r=Object.freeze({LIVE:"LIVE",REVIEW_WEBAPP:"REVIEW_WEBAPP",REVIEW:"REVIEW",STAGING:"STAGING",DEV:"DEV",DEV_OLD:"DEV_OLD"}),o=(()=>{const e=document.location.host.match(/^(insights-webapp|surveys-webapp|insights|surveys)-(.*?)((?:\.[^.]+)?(?:\.hotjarians\.net)|(?:\.[^.]+)?(?:\.eks\.hotjar\.com))$/);return e&&{component:e[1],reviewId:e[2],domain:e[3],reviewUrlSuffix:e[2]+e[3]}})()?.reviewUrlSuffix,i=Object.freeze({[r.LIVE]:{INSIGHTS:"insights.hotjar.com",SURVEYS:"surveys.hotjar.com"},[r.REVIEW]:{INSIGHTS:`insights-${o}`,SURVEYS:`surveys-${o}`},[r.REVIEW_WEBAPP]:{INSIGHTS:`insights-webapp-${o}`,SURVEYS:`surveys-webapp-${o}`},[r.STAGING]:{INSIGHTS:"insights-staging.hotjar.com",SURVEYS:"surveys-staging.hotjar.com"},[r.DEV]:{INSIGHTS:"local.hotjar.com:8443",SURVEYS:"surveys.local.hotjar.com:8443"},[r.DEV_OLD]:{INSIGHTS:"local.hotjar.com",SURVEYS:"surveys.local.hotjar.com"}}),a=e=>(t,n)=>t===i[e][n],s=a(r.DEV),c=a(r.DEV_OLD),u=a(r.LIVE),l=a(r.REVIEW_WEBAPP),h=a(r.REVIEW),d=a(r.STAGING),f=(e,t)=>{if(t)return`https://${t}/${e}`;const n=((e="INSIGHTS",t=document.location.host)=>u(t,e)?r.LIVE:s(t,e)?r.DEV:c(t,e)?r.DEV_OLD:l(t,e)?r.REVIEW_WEBAPP:h(t,e)?r.REVIEW:d(t,e)?r.STAGING:r.LIVE)();return`https://${i[n].SURVEYS}/${e}`},g=(e=document.location.href)=>{const t=[i[r.LIVE].SURVEYS,i[r.REVIEW_WEBAPP].SURVEYS,i[r.REVIEW].SURVEYS,i[r.STAGING].SURVEYS,i[r.DEV].SURVEYS,i[r.DEV_OLD].SURVEYS],n=document.createElement("a");return n.href=e,t.indexOf(n.hostname)>=0}},9163:function(e,t,n){"use strict";n.d(t,{R:function(){return r}});var r={getFeatures:hj.tryCatch((function(){return hj.settings.features||[]}),"hj.features.getFeatures"),hasFeature:hj.tryCatch((function(e){var t;try{var n=window.localStorage.getItem("HJ_OVERRIDE_FEATURE:".concat(e));t="true"===n||"1"===n}catch(e){t=!1}return r.getFeatures().indexOf(e)>-1||t}),"hj.features.hasFeature")}},9982:function(e,t,n){"use strict";n.d(t,{H:function(){return o}});var r=n(8422),o=function(e){var t=arguments.length>1&&void 0!==arguments[1]?arguments[1]:a,n=arguments.length>2&&void 0!==arguments[2]?arguments[2]:s,r=0,o=!1;function c(){0!=--r||o||t.bind(this)()}function u(){o=!0,n.bind(this)()}Object.keys(e).forEach((function(t){var n=e[t];"string"==typeof n&&(n=[n]),r+=n.length,n.forEach((function(e){i(e,t,c,u)}))}))},i=function(e,t,n,o){var i;t===r.vH.SCRIPT?(i=document.createElement("script")).src="".concat(hj.scriptDomain).concat(e):t===r.vH.STYLESHEET&&((i=document.createElement("link")).href="".concat(hj.scriptDomain).concat(e),i.rel="stylesheet"),i.onload=n,i.onerror=o,document.getElementsByTagName("head")[0].appendChild(i)};function a(){}function s(){var e=this.src||this.href;hj.exceptions.log(new Error("Failed to load module: ".concat(e,".")),"loader")}},8417:function(e,t,n){"use strict";n.d(t,{c:function(){return i}});var r=n(9982),o=!1,i=function(e){var t=e.title,n=e.message,i=e.status,a=window.hjLazyModules;o?hj.widget.renderNotificationWidget({title:t,message:n,status:i}):(0,r.H)(a.NOTIFICATION,(function(){o=!0,hj.widget.renderNotificationWidget({title:t,mes |
| URL: https://deltacapoffers.com/prequalification.php?ut... Model: Joe Sandbox AI | {
"risk_score": 2,
"reasoning": "This script appears to be a legitimate Hotjar analytics script, which is a common third-party tracking and analytics service. While it uses the `hj` function to interact with the Hotjar service, this is a standard practice for integrating Hotjar and does not demonstrate any high-risk behaviors. The script is not obfuscated, does not execute dynamic code, and does not exfiltrate sensitive data. Therefore, it is assessed as a low-risk script."
} |
(function(h,o,t,j,a,r){
h.hj=h.hj||function(){(h.hj.q=h.hj.q||[]).push(arguments)};
h._hjSettings={hjid:4993558,hjsv:6};
a=o.getElementsByTagName('head')[0];
r=o.createElement('script');r.async=1;
r.src=t+h._hjSettings.hjid+j+h._hjSettings.hjsv;
a.appendChild(r);
})(window,document,'https://static.hotjar.com/c/hotjar-','.js?sv=');
|
| URL: https://fe.sitedataprocessing.com/fewv1/ProcessSta... Model: Joe Sandbox AI | {
"risk_score": 8,
"reasoning": "This script demonstrates several high-risk behaviors, including data exfiltration, sending user data to untrusted domains, and potential malicious redirects. The script sets cookies with session and visitor IDs, and then attempts to load scripts from 'a.usbrowserspeed.com' and 'fe.sitedataprocessing.com', which are suspicious domains. The script also uses obfuscated code, further increasing the risk. Overall, this script exhibits a high level of malicious intent and should be treated with caution."
} |
document.cookie = 'vv_session_id=8LUZMuZCXLpaAH5etkKOhTi7SSlZ829Q6Kmj2sIUEH7IBs; expires=Mon, 13 Jan 2025 14:42:17 GMT; path=/';document.cookie = 'vv_visitor_id=8LUZMuZCXLpaAH5etkKOhTi7SSlZ829; expires=Thu, 13 Jan 2028 14:12:20 GMT; path=/';try{var vvfr = document.createElement('script'); vvfr.type = 'text/javascript'; vvfr.async = true;vvfr.src = 'https://a.usbrowserspeed.com/cs?pid=6a9590e1e862a56eb7dc74c87ff0719c6ae754ea069fe1e0dcccfce1ce896bab&puid=w5S3rcUX5o-8LUZMuZCXLpaAH5etkKOhTi7SSlZ829';var vvfsr = document.getElementsByTagName('script')[0]; vvfsr.parentNode.insertBefore(vvfr, vvfsr);}catch(err){ }try { var scriptTag = document.createElement('script'); scriptTag.src = 'https://d-code.liadm.com/did-003x.min.js', scriptTag.onload = function(e) { function doResolve(){ window.liQd_did_003x.resolve((function(e) { e && null != e.sha2 && null != e.sha2 && function() { var t = new Date, s = document.createElement('script'); s.type = 'text/javascript', s.async = !0, s.src = 'https://fe.sitedataprocessing.com/fewv1/ProcessLEvent.aspx?account_id=w5S3rcUX5o&cur_sess_id=8LUZMuZCXLpaAH5etkKOhTi7SSlZ829Q6Kmj2sIUEH7IBs&cur_visitor_id=8LUZMuZCXLpaAH5etkKOhTi7SSlZ829&chkid=' + e.sha2 + '&date=' + t.getTime(); var a = document.getElementsByTagName('script')[0]; a.parentNode.insertBefore(s, a) }() }), (function(e) { console.error(e) }), { resolve: ['nonId', 'md5', 'sha2'] }) } function checkProperty() { if (window.liQd_did_003x) { if(typeof window.liQd_did_003x.resolve === 'function') {doResolve();} else { setTimeout(checkProperty, 500);} } else { setTimeout(checkProperty, 500);} } checkProperty(); }, document.head.appendChild(scriptTag) } catch (errl) {};
|
| URL: https://cdnjs.cloudflare.com/ajax/libs/jquery/3.7.... Model: Joe Sandbox AI | {
"risk_score": 1,
"reasoning": "This appears to be the standard jQuery library, which is a widely used and trusted JavaScript library. It does not contain any high-risk indicators, such as dynamic code execution, data exfiltration, or suspicious redirects. The code is well-structured and does not exhibit any obfuscation or aggressive DOM manipulation. Overall, this script is likely benign and used for legitimate web development purposes."
} |
/*! jQuery v3.7.1 | (c) OpenJS Foundation and other contributors | jquery.org/license */
!function(e,t){"use strict";"object"==typeof module&&"object"==typeof module.exports?module.exports=e.document?t(e,!0):function(e){if(!e.document)throw new Error("jQuery requires a window with a document");return t(e)}:t(e)}("undefined"!=typeof window?window:this,function(ie,e){"use strict";var oe=[],r=Object.getPrototypeOf,ae=oe.slice,g=oe.flat?function(e){return oe.flat.call(e)}:function(e){return oe.concat.apply([],e)},s=oe.push,se=oe.indexOf,n={},i=n.toString,ue=n.hasOwnProperty,o=ue.toString,a=o.call(Object),le={},v=function(e){return"function"==typeof e&&"number"!=typeof e.nodeType&&"function"!=typeof e.item},y=function(e){return null!=e&&e===e.window},C=ie.document,u={type:!0,src:!0,nonce:!0,noModule:!0};function m(e,t,n){var r,i,o=(n=n||C).createElement("script");if(o.text=e,t)for(r in u)(i=t[r]||t.getAttribute&&t.getAttribute(r))&&o.setAttribute(r,i);n.head.appendChild(o).parentNode.removeChild(o)}function x(e){return null==e?e+"":"object"==typeof e||"function"==typeof e?n[i.call(e)]||"object":typeof e}var t="3.7.1",l=/HTML$/i,ce=function(e,t){return new ce.fn.init(e,t)};function c(e){var t=!!e&&"length"in e&&e.length,n=x(e);return!v(e)&&!y(e)&&("array"===n||0===t||"number"==typeof t&&0<t&&t-1 in e)}function fe(e,t){return e.nodeName&&e.nodeName.toLowerCase()===t.toLowerCase()}ce.fn=ce.prototype={jquery:t,constructor:ce,length:0,toArray:function(){return ae.call(this)},get:function(e){return null==e?ae.call(this):e<0?this[e+this.length]:this[e]},pushStack:function(e){var t=ce.merge(this.constructor(),e);return t.prevObject=this,t},each:function(e){return ce.each(this,e)},map:function(n){return this.pushStack(ce.map(this,function(e,t){return n.call(e,t,e)}))},slice:function(){return this.pushStack(ae.apply(this,arguments))},first:function(){return this.eq(0)},last:function(){return this.eq(-1)},even:function(){return this.pushStack(ce.grep(this,function(e,t){return(t+1)%2}))},odd:function(){return this.pushStack(ce.grep(this,function(e,t){return t%2}))},eq:function(e){var t=this.length,n=+e+(e<0?t:0);return this.pushStack(0<=n&&n<t?[this[n]]:[])},end:function(){return this.prevObject||this.constructor()},push:s,sort:oe.sort,splice:oe.splice},ce.extend=ce.fn.extend=function(){var e,t,n,r,i,o,a=arguments[0]||{},s=1,u=arguments.length,l=!1;for("boolean"==typeof a&&(l=a,a=arguments[s]||{},s++),"object"==typeof a||v(a)||(a={}),s===u&&(a=this,s--);s<u;s++)if(null!=(e=arguments[s]))for(t in e)r=e[t],"__proto__"!==t&&a!==r&&(l&&r&&(ce.isPlainObject(r)||(i=Array.isArray(r)))?(n=a[t],o=i&&!Array.isArray(n)?[]:i||ce.isPlainObject(n)?n:{},i=!1,a[t]=ce.extend(l,o,r)):void 0!==r&&(a[t]=r));return a},ce.extend({expando:"jQuery"+(t+Math.random()).replace(/\D/g,""),isReady:!0,error:function(e){throw new Error(e)},noop:function(){},isPlainObject:function(e){var t,n;return!(!e||"[object Object]"!==i.call(e))&&(!(t=r(e))||"function"==typeof(n=ue.call(t,"constructor")&&t.constructor)&&o.call(n)===a)},isEmptyObject:function(e){var t;for(t in e)return!1;return!0},globalEval:function(e,t,n){m(e,{nonce:t&&t.nonce},n)},each:function(e,t){var n,r=0;if(c(e)){for(n=e.length;r<n;r++)if(!1===t.call(e[r],r,e[r]))break}else for(r in e)if(!1===t.call(e[r],r,e[r]))break;return e},text:function(e){var t,n="",r=0,i=e.nodeType;if(!i)while(t=e[r++])n+=ce.text(t);return 1===i||11===i?e.textContent:9===i?e.documentElement.textContent:3===i||4===i?e.nodeValue:n},makeArray:function(e,t){var n=t||[];return null!=e&&(c(Object(e))?ce.merge(n,"string"==typeof e?[e]:e):s.call(n,e)),n},inArray:function(e,t,n){return null==t?-1:se.call(t,e,n)},isXMLDoc:function(e){var t=e&&e.namespaceURI,n=e&&(e.ownerDocument||e).documentElement;return!l.test(t||n&&n.nodeName||"HTML")},merge:function(e,t){for(var n=+t.length,r=0,i=e.length;r<n;r++)e[i++]=t[r];return e.length=i,e},grep:function(e,t,n){for(var r=[],i=0,o=e.length,a=!n;i<o;i++)!t(e[i],i)!==a&&r.push(e[i]);return r},map:function(e,t,n){va |
| URL: https://data.processwebsitedata.com/cscripts/w5S3r... Model: Joe Sandbox AI | {
"risk_score": 4,
"reasoning": "The provided JavaScript snippet appears to be a cookie consent management script that loads and initializes the Cookie Consent library from a third-party CDN. While the script does not exhibit any high-risk behaviors, it has some moderate-risk indicators that warrant further review. The script dynamically loads an external CSS file and JavaScript library, which could potentially be used for data exfiltration or other malicious purposes if the third-party provider is compromised. Additionally, the script modifies the DOM and sets cookies, which could be considered aggressive behavior. However, the script's purpose seems to be legitimate, and it does not contain any obvious signs of malicious intent. Overall, the risk score is in the medium range, and the script should be reviewed in the context of the website's overall security posture and the trustworthiness of the third-party provider."
} |
(function(){function d(){let t="vv_cookieconsent_status",r=decodeURIComponent(document.cookie),i=r.split(";"),n="";for(let r=0;r<i.length;r++){let u=i[r];while(u.charAt(0)==" ")u=u.substring(1);u.indexOf(t+"=")==0&&(n=u.substring(t.length+1,u.length))}return n==""&&(n="not found"),n}function l(){let t=document.head,n=document.createElement("link");n.type="text/css";n.rel="stylesheet";n.href="https://cdn.jsdelivr.net/npm/cookieconsent@3/build/cookieconsent.min.css";t.appendChild(n)}function a(n){let u=function(){et(n)},t=document.createElement("script");t.src="https://cdn.jsdelivr.net/npm/cookieconsent@3/build/cookieconsent.min.js";let i=document.getElementsByTagName("head")[0],r=!1;t.onload=t.onreadystatechange=function(){r||this.readyState&&this.readyState!="loaded"&&this.readyState!="complete"||(r=!0,u(n),t.onload=t.onreadystatechange=null,i.removeChild(t))};i.appendChild(t)}function et(n){let t=!1;n==!0&&(t=1e4);window.cookieconsent.initialise({palette:{popup:{background:"",text:"",link:""},button:{background:"",border:"",text:""}},position:"",theme:"",type:"opt-out",content:{message:"",allow:"",deny:"",link:"",href:""},cookie:{name:"vv_cookieconsent_status",path:"/",domain:"",expiryDays:"365",secure:!1},dismissOnTimeout:t,dismissOnWindowClick:!0,onStatusChange:function(){this.hasConsented()&&y()},onPopupClose:function(){this.getStatus()!=""&&window.clearTimeout(this.dismissTimeout)},onPopupOpen:function(){this.getStatus()!=""&&this.getStatus()!="undefined"&&this.getStatus()!=undefined&&window.clearTimeout(this.dismissTimeout)},onInitialise:function(){this.getStatus()!=""&&this.getStatus()!="undefined"&&this.getStatus()!=undefined&&window.clearTimeout(this.dismissTimeout)}})}function y(){var n,t;if(!st()){for(n=0;n<u.length;n++)if(u[n].IsPool.toLowerCase()=="true"&&(f=!0,u[n].Type.toLowerCase().indexOf("qtrack")>-1)){rt=!0;break}if(t=function(){var n=document.cookie.match("(^|;) ?vv_visitor_id=([^;]*)(;|$)"),t=document.cookie.match("(^|;) ?vv_session_id=([^;]*)(;|$)");f=n&&t?!1:!0},t(),(f==!0&&b==!1||g()==!0)&&(f=!1),b==!0&&g()==!1)try{ot()}catch(i){console.log("error running webtracking")}if(k==!0&&u&&u.length>0&&f==!1)try{nt()}catch(i){console.log("error running calltracking")}}}function g(){var n=document.cookie.match("(^|;) ?__vvDNTFlag__=([^;]*)(;|$)");return n?!0:!1}function nt(){function b(){h=document.referrer?document.referrer:""}function s(n,t,i){var r=new Date,u;i?r.setTime(r.getTime()+i*6e4):r.setTime(r.getTime()+2592e6);u="; expires="+r.toGMTString();document.cookie=n+"="+t+u+"; path=/"}function c(){var f=document.cookie.match("(^|;) ?vvPD=([^;]*)(;|$)"),t,i,u;n=f?JSON.parse(unescape(f[2])):{};t=document.cookie.match("(^|;) ?vvCTPEx=([^;]*)(;|$)");r=t?unescape(t[2]).split("|"):[];i=document.cookie.match("(^|;) ?vv_session_id=([^;]*)(;|$)");e=i?unescape(i[2]):"";u=document.cookie.match("(^|;) ?vv_visitor_id=([^;]*)(;|$)");o=u?unescape(u[2]):""}function f(t){var e,o,i,u;if(t.nodeType===3||t.nodeName=="A"){if(t.nodeType===3){if(r&&r.length>0)for(i=0;i<r.length;i++)r[i]&&t.data&&t.data.indexOf(r[i])>-1&&(t.data=r[i]&&r[i].substring(0,1)=="+"?t.data.replace(r[i],n.NewPhoneNumber):t.data.replace(r[i],n.NewPhoneNumber));else while(e=ft.exec(t.data))if(e)for(i=0;i<1;i++)e[i]&&e[i].match(w)&&(t.data=l(e[i]).substring(0,1)=="+"?t.data.replace(l(e[i]),n.NewPhoneNumber):t.data.replace(l(e[i]),n.NewPhoneNumber))}else if(t.nodeName=="A"){if(r&&r.length>0)for(i=0;i<r.length;i++)r[i]&&t.href&&t.href.indexOf(r[i])>-1&&t.href&&t.href.length>5&&t.href.substring(0,4)=="tel:"&&(t.href="tel://"+n.NewPhoneNumberUnFormatted.replace(/[^0-9+]/g,""));else if(o=ut.exec(t.href),o)for(i=0;i<1;i++)o[i].match(w)&&(t.href=o[i].indexOf("+")>-1?"tel://"+n.NewPhoneNumberUnFormatted.replace(/[^0-9+]/g,""):t.href.replace(o[i],n.NewPhoneNumber.replace(/[^0-9+]/g,"")));for(u=0;u<t.childNodes.length;u++)f(t.childNodes[u])}}else for(u=0;u<t.childNodes.length;u++)f(t.childNodes[u])}function l(n){return n&&n.length>3&&(n.substring(0,1)==" "&&(n=n.substring(1 |
| URL: https://deltacapoffers.com/prequalification.php?utm_source=klayvio&utm_medium=email&utm_campaign=scrapeddripcampaign&utm_id=efi&utm_term=efi&utm_content=scrapedlists6&_kx=YFJgSt5YAM6jpJldJ4ZDop7CB1jVRJhqJKw59Uk4HMU.QZibAu Model: Joe Sandbox AI | {
"contains_trigger_text": false,
"trigger_text": "unknown",
"prominent_button_name": "unknown",
"text_input_field_labels": "unknown",
"pdf_icon_visible": false,
"has_visible_captcha": false,
"has_urgent_text": false,
"has_visible_qrcode": false,
"contains_chinese_text": false,
"contains_fake_security_alerts": false
} |
 |
| URL: https://deltacapoffers.com/prequalification.php?utm_source=klayvio&utm_medium=email&utm_campaign=scrapeddripcampaign&utm_id=efi&utm_term=efi&utm_content=scrapedlists6&_kx=YFJgSt5YAM6jpJldJ4ZDop7CB1jVRJhqJKw59Uk4HMU.QZibAu Model: Joe Sandbox AI | {
"brands": [
"Delta Capital"
]
} |
|
| URL: https://d-code.liadm.com/did-003x.min.js... Model: Joe Sandbox AI | ```json
{
"risk_score": 3,
"reasoning": "The script appears to be related to analytics or tracking, as it collects various identifiers and context selectors. However, it does not exhibit high-risk behaviors such as dynamic code execution or data exfiltration to untrusted domains. The use of identifiers suggests tracking behavior, which is a low-risk indicator. Without evidence of malicious intent or interaction with suspicious domains, the risk remains low."
} |
!function(){window.liQd=window.liQd||[];window.liQd.push({"globalVarName":"liQd_did_003x","distributorId":"did-003x","defaultEventDelay":1000,"identityResolutionConfig":{"source":"did-003x"},"identifiersToResolve":"_aalyticsuid,trc_cookie_storage,dtm_token,_pubcid,hid,muuid,globalTI_SID,ajs_user_id,_li_uuid,s_ecid,_shopify_y,gup_anonid,s_vi,IXWRAPPERLiveIntentIp,_parrable_id,tmguid,_sharedid,dsq__u,dsq__s","contextSelectors":"title,meta[name='description'],h1,link[rel='canonical']","contextElementsLength":5000})}();!function(){"use strict";var e="undefined"!=typeof globalThis?globalThis:"undefined"!=typeof window?window:"undefined"!=typeof global?global:"undefined"!=typeof self?self:{};function t(e){return e&&e.__esModule&&Object.prototype.hasOwnProperty.call(e,"default")?e.default:e}var n=function(e){try{return!!e()}catch(e){return!0}},r=!n((function(){var e=function(){}.bind();return"function"!=typeof e||e.hasOwnProperty("prototype")})),o=r,i=Function.prototype,s=i.call,a=o&&i.bind.bind(s,s),l=o?a:function(e){return function(){return s.apply(e,arguments)}},c=function(e){return null==e},u=c,d=TypeError,p=function(e){if(u(e))throw new d("Can't call method on "+e);return e},f=p,h=Object,g=function(e){return h(f(e))},v=g,y=l({}.hasOwnProperty),m=Object.hasOwn||function(e,t){return y(v(e),t)},w=l,b=w({}.toString),S=w("".slice),E=function(e){return S(b(e),8,-1)},C=E,x=Array.isArray||function(e){return"Array"===C(e)},k="object"==typeof document&&document.all,P=void 0===k&&void 0!==k?function(e){return"function"==typeof e||e===k}:function(e){return"function"==typeof e},R=n,I=P,O=/#|\.prototype\./,_=function(e,t){var n=U[A(e)];return n===T||n!==L&&(I(t)?R(t):!!t)},A=_.normalize=function(e){return String(e).replace(O,".").toLowerCase()},U=_.data={},L=_.NATIVE="N",T=_.POLYFILL="P",j=_,D={exports:{}},F=!0,H=function(e){return e&&e.Math===Math&&e},$=H("object"==typeof globalThis&&globalThis)||H("object"==typeof window&&window)||H("object"==typeof self&&self)||H("object"==typeof e&&e)||H("object"==typeof e&&e)||function(){return this}()||Function("return this")(),N=$,q=Object.defineProperty,M=$,B=function(e,t){try{q(N,e,{value:t,configurable:!0,writable:!0})}catch(n){N[e]=t}return t},V="__core-js_shared__",Q=D.exports=M[V]||B(V,{});(Q.versions||(Q.versions=[])).push({version:"3.38.1",mode:"pure",copyright:" 2014-2024 Denis Pushkarev (zloirock.ru)",license:"https://github.com/zloirock/core-js/blob/v3.38.1/LICENSE",source:"https://github.com/zloirock/core-js"});var G=D.exports,z=m,J=x,X=j,W=G,K=X.data,Y=X.normalize,Z="USE_FUNCTION_CONSTRUCTOR",ee="AsyncIteratorPrototype",te=function(e,t){if(J(e))for(var n=0;n<e.length;n++)K[Y(e[n])]=t};t((function(e){"object"==typeof e&&(te(e.useNative,X.NATIVE),te(e.usePolyfill,X.POLYFILL),te(e.useFeatureDetection,null),z(e,Z)&&(W[Z]=!!e[Z]),z(e,ee)&&(W[ee]=e[ee]))}))({usePolyfill:["Date.now"]});var ne=l({}.isPrototypeOf),re=r,oe=Function.prototype,ie=oe.apply,se=oe.call,ae="object"==typeof Reflect&&Reflect.apply||(re?se.bind(ie):function(){return se.apply(ie,arguments)}),le=E,ce=l,ue=function(e){if("Function"===le(e))return ce(e)},de={},pe=!n((function(){return 7!==Object.defineProperty({},1,{get:function(){return 7}})[1]})),fe=r,he=Function.prototype.call,ge=fe?he.bind(he):function(){return he.apply(he,arguments)},ve={},ye={}.propertyIsEnumerable,me=Object.getOwnPropertyDescriptor,we=me&&!ye.call({1:2},1);ve.f=we?function(e){var t=me(this,e);return!!t&&t.enumerable}:ye;var be,Se,Ee=function(e,t){return{enumerable:!(1&e),configurable:!(2&e),writable:!(4&e),value:t}},Ce=n,xe=E,ke=Object,Pe=l("".split),Re=Ce((function(){return!ke("z").propertyIsEnumerable(0)}))?function(e){return"String"===xe(e)?Pe(e,""):ke(e)}:ke,Ie=Re,Oe=p,_e=function(e){return Ie(Oe(e))},Ae=P,Ue=function(e){return"object"==typeof e?null!==e:Ae(e)},Le={},Te=Le,je=$,De=P,Fe=function(e){return De(e)?e:void 0},He=function(e,t){return arguments.length<2?Fe(Te[e])||Fe(je[e]):Te[e]&&Te[e][t]||je[e]&&je[e][t]},$e=$.navigator,Ne=$e&&$e.userAgent,qe= |
| URL: https://static.hotjar.com/c/hotjar-4993558.js?sv=6... Model: Joe Sandbox AI | ```json
{
"risk_score": 2,
"reasoning": "The script appears to be part of a legitimate analytics or user behavior tracking service (Hotjar), which is indicated by the presence of settings related to user session recording and integration with other analytics services. It does not exhibit high-risk behaviors such as dynamic code execution or data exfiltration to suspicious domains. However, it does involve tracking behavior and potentially sending data to third-party domains, which is a moderate-risk indicator. The script's intent aligns with typical analytics functionality, which justifies a lower risk score."
} |
window.hjSiteSettings = window.hjSiteSettings || {"site_id":4993558,"rec_value":0.0,"state_change_listen_mode":"automatic","record":true,"continuous_capture_enabled":true,"recording_capture_keystrokes":true,"session_capture_console_consent":true,"anonymize_digits":true,"anonymize_emails":true,"suppress_all":false,"suppress_all_on_specific_pages":[],"suppress_text":false,"suppress_location":false,"user_attributes_enabled":false,"legal_name":null,"privacy_policy_url":null,"deferred_page_contents":[],"record_targeting_rules":[],"feedback_widgets":[],"heatmaps":[],"polls":[],"integrations":{"optimizely":{"tag_recordings":false},"abtasty":{"tag_recordings":false},"kissmetrics":{"send_user_id":false},"mixpanel":{"send_events":false},"unbounce":{"tag_recordings":false},"hubspot":{"enabled":false,"send_recordings":false,"send_surveys":false}},"features":["ask.popover_redesign","client_script.compression.pc","csq_theme","error_reporting","feedback.embeddable_widget","feedback.widgetV2","settings.billing_v2","survey.embeddable_widget","survey.image_question","survey.screenshots","survey.type_button"],"tracking_code_verified":true,"cs_project_id":null,"account_id":3648945,"account_signature":"1c5b3193d4f1a374bcd4c24d9298df7a33f24c8ccc2494774490e490a7341352"};
!function(){"use strict";function e(t){return e="function"==typeof Symbol&&"symbol"==typeof Symbol.iterator?function(e){return typeof e}:function(e){return e&&"function"==typeof Symbol&&e.constructor===Symbol&&e!==Symbol.prototype?"symbol":typeof e},e(t)}function t(e,t){for(var r=0;r<t.length;r++){var i=t[r];i.enumerable=i.enumerable||!1,i.configurable=!0,"value"in i&&(i.writable=!0),Object.defineProperty(e,n(i.key),i)}}function n(t){var n=function(t,n){if("object"!=e(t)||!t)return t;var r=t[Symbol.toPrimitive];if(void 0!==r){var i=r.call(t,"string");if("object"!=e(i))return i;throw new TypeError("@@toPrimitive must return a primitive value.")}return String(t)}(t);return"symbol"==e(n)?n:String(n)}var r,i=function(){function e(t){var n=arguments.length>1&&void 0!==arguments[1]?arguments[1]:10,r=arguments.length>2&&void 0!==arguments[2]?arguments[2]:1e3;!function(e,t){if(!(e instanceof t))throw new TypeError("Cannot call a class as a function")}(this,e),this.send=t,this.batchSize=n,this.flushInterval=r,this.buffer=[],this.flushTimer=null}var n,r;return n=e,(r=[{key:"getBuffer",value:function(){return this.buffer}},{key:"add",value:function(e){var t=this;this.buffer.push(e),this.buffer.length>=this.batchSize?this.flush():this.flushTimer||(this.flushTimer=setTimeout((function(){t.flush()}),this.flushInterval))}},{key:"flush",value:function(){this.buffer.length>0&&(this.send(this.buffer),this.buffer=[]),this.flushTimer&&(clearTimeout(this.flushTimer),this.flushTimer=null)}}])&&t(n.prototype,r),Object.defineProperty(n,"prototype",{writable:!1}),e}();function a(){return a=Object.assign?Object.assign.bind():function(e){for(var t=1;t<arguments.length;t++){var n=arguments[t];for(var r in n)Object.prototype.hasOwnProperty.call(n,r)&&(e[r]=n[r])}return e},a.apply(this,arguments)}var o,s=function(){try{return"performance"in window&&"now"in window.performance}catch(e){return!1}},c={version:6,metricsUrl:(null===(r=window._hjSettings)||void 0===r?void 0:r.metricsUrl)||"https://metrics.hotjar.io",sampling:{metrics:.1,fieldMetrics:.01,debug:.5,universalDebug:.05*.1},browser:{hasPerformance:!1,shouldLogMetrics:!1,inLab:!1},buffer:{bufferSize:40,flushInterval:3e3}},l={isDebugEnabled:!1,isMetricsEnabled:!1,isFieldMetricsEnabled:!1,loggedMetrics:{},genericTags:{}},u=function(e,t,n){var r;l.loggedMetrics[e]=a(a({},l.loggedMetrics[e]),{},((r={})[t]=n||{},r))},d=function(e){if(!e)return"value";var t=Object.keys(e)[0];return t&&e[t]||"value"},g=function(e){var t,n=null!==(t=e.tag)&&void 0!==t?t:void 0;return l.isDebugEnabled?a(a(a({},n),e.extraTags),l.genericTags):n},f=function(e,t){if(!o)return!1;var n=l.isMetricsEnabled||l.isDebugEnabled;return"lab"===e&&(n=c.browser.inLab),"field"===e&&(n=l.isFieldMetricsEna |
Edit tour
chrome.exe (PID: 3928 cmdline: 
Key Decision
Richest Path
Thread / callback creation
Lower opacity -> Library Node