http://ny-t.r-tb.com/

Status: finished

Submission Time: 2022-02-01 15:12:59 +01:00

Malicious

Comments

Details

Analysis ID:
564184
API (Web) ID:
931711
Analysis Started:

2022-02-01 15:13:56 +01:00
Analysis Finished:

2022-02-01 15:23:28 +01:00
Technologies:

Engines
IOCs

Joe Sandbox

Engine	Download Report	Detection	Info
	Full Report Management Report IOC Report	malicious Score: 56	System: Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 134, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01

Third Party Analysis Engines

malicious

IPs

IP	Country	Detection
104.16.124.96	United States
104.16.123.96	United States
104.17.23.75	United States
Click to see the 29 hidden entries
142.250.102.154	United States
104.18.1.239	United States
35.190.26.57	United States
239.255.255.250	Reserved
68.142.70.14	United States
188.114.97.7	European Union
142.251.36.130	United States
13.224.222.119	United States
216.58.201.70	United States
142.251.36.132	United States
151.101.1.229	United States
104.17.72.14	United States
104.16.95.65	United States
192.28.144.124	United States
104.17.22.75	United States
172.217.23.193	United States
104.22.65.104	United States
54.73.67.72	United States
35.190.80.1	United States
142.251.36.77	United States
142.251.36.78	United States
104.17.73.206	United States
192.229.220.19	United States
35.188.42.15	United States
151.101.0.65	United States
45.92.42.1	United Kingdom
151.101.13.51	United States
163.171.156.28	European Union
104.16.53.99	United States

Domains

Name	IP	Detection
clients2.googleusercontent.com	0.0.0.0
ptcfc.com	104.16.53.99
api.radar.cloudflare.com	104.18.1.239
Click to see the 53 hidden entries
clients.l.google.com	142.251.36.142
713-xsc-918.mktoresp.com	192.28.144.124
googlehosted.l.googleusercontent.com	172.217.23.193
adserver-vpc-alb-3-890571764.eu-west-1.elb.amazonaws.com	54.73.67.72
www.google.ae	142.251.36.67
cdnetworks.cedexis-test.com.wsoversea.com	163.171.156.28
limelight-ssl.cedexis-test.com	0.0.0.0
d.adroll.com	0.0.0.0
carefully-rested-condor.edgecompute.app	0.0.0.0
testingcf.jsdelivr.net	0.0.0.0
stats.g.doubleclick.net	0.0.0.0
www.cloudflare.com	104.16.123.96
clients2.google.com	0.0.0.0
partly-divine-monitor.edgecompute.app	0.0.0.0
ad.doubleclick.net	0.0.0.0
adservice.google.ae	0.0.0.0
munchkin.marketo.net	0.0.0.0
info.cloudflare.com	0.0.0.0
9309168.fls.doubleclick.net	0.0.0.0
vdms-ssl.cedexis-test.com	0.0.0.0
stackpath-map3.cedexis-test.com	0.0.0.0
fastly.jsdelivr.net	0.0.0.0
fastly.cedexis-test.com	0.0.0.0
cdnetworks.cedexis-test.com	0.0.0.0
p29.cedexis-test.com	0.0.0.0
d1inq1x5xtur5k.cloudfront.net	13.224.222.119
dart.l.doubleclick.net	216.58.201.70
benchmark.1e100cdn.net	35.190.26.57
static.cloudflareinsights.com	104.16.95.65
tr.www.cloudflare.com	104.16.124.96
ajax.cloudflare.com	104.17.72.14
adservice.google.com	142.251.36.130
ny-t.r-tb.com	104.22.65.104
cedexis-1.s.llnwi.net	68.142.70.14
jsdelivr.b-cdn.net	45.92.42.1
serverless-benchmarks-js.compute-pipe.com	188.114.97.7
www.google.com	142.251.36.132
cs482.wpc.edgecastcdn.net	192.229.220.19
serverless-benchmarks-rust.compute-pipe.com	188.114.97.7
jsdelivr.map.fastly.net	151.101.1.229
ab13.mktossl.com	104.17.73.206
ecp.map.fastly.net	151.101.13.51
embed.videodelivery.net	104.17.23.75
pagead46.l.doubleclick.net	142.251.36.130
a.nel.cloudflare.com	35.190.80.1
accounts.google.com	142.251.36.77
stats.l.doubleclick.net	142.250.102.154
videodelivery.net	104.17.22.75
sentry.io	35.188.42.15
prod.cedexis-ssl.map.fastly.net	151.101.0.65
assets.www.cloudflare.com	104.16.123.96
www.googleoptimize.com	142.251.36.78
iframe.videodelivery.net	104.17.22.75

URLs

Name	Detection
http://ny-t.r-tb.com/favicon.ico
http://ny-t.r-tb.com/2$Suspected
https://iframe.videodelivery.net/36e2ecf71363317a16bd2236dfa3b8b1?poster=https%3A%2F%2Fwww.cloudflare.com%2Fstatic%2Fd54759e4e89631c396f7741c5250b8fa%2Fimage_new-homepage_thumbnail_video_findlaw.jpg&preload=auto
Click to see the 78 hidden entries
https://iframe.videodelivery.net/652f2749728df84fc32f9a6480438364?poster=https%3A%2F%2Fwww.cloudflare.com%2Fstatic%2F6c664e30bf2f38015fb61bd986a719c8%2Fthumbnail_stream_case-study_lendingtree.jpg&preload=auto
https://iframe.videodelivery.net/e696e3b6be9ada0fc9e9674aedb54b17?poster=https%3A%2F%2Fwww.cloudflare.com%2Fstatic%2Fcd4f24ce8e7102f1250568b31eef4fc7%2Fimage_new-homepage_thumbnail_video_hubspot.jpg&preload=auto
http://ny-t.r-tb.com/
http://ny-t.r-tb.com/
http://ny-t.r-tb.com/cdn-cgi/images/icon-exclamation.png?1376755637
https://iframe.videodelivery.net/5efe5eca1517ad1a2f9ff3e75cc9cf5a?poster=https%3A%2F%2Fwww.cloudflare.com%2Fstatic%2F49e13a9372ad387fe3f96771e6783819%2Fthumbnail_stream_case-study_customer-video.jpg&preload=auto
http://ny-t.r-tb.com/cdn-cgi/styles/cf.errors.css
https://adservice.google.com
http://llvm.org/):
https://www.google.com/images/x2.gif
https://clients2.google.com/service/update2/crx
https://tr.www.cloudflare.com/ns.html?id=GTM-PKQFGQB
https://hangouts.google.com/
https://chromium.googlesource.com/a/native_client/pnacl-llvm.git
https://www.google.com;
https://adservice.google.ae
https://clients6.google.com
https://payments.google.com/payments/v4/js/integrator.js
http://www.ietf.org/id/draft-holmer-rmcat-transport-wide-cc-extensions
https://www.google.ae
https://www.cloudflare.com/trademark/
https://9309168.fls.doubleclick.net/activityi;dc_pre=CPCPlczY3vUCFfAhBgAd84oHXg;src=9309168;type=resou0;cat=us-re0;ord=1699083194691;gtm=2yg1q0;auiddc=1855812276.1643757326;u1=2022%20Feb%2001%2015%3A15%3A45;u2=undefined;u3=https%3A%2F%2Fwww.cloudflare.com%2Fcase-studies%2F;u4=undefined;u5=undefined;u6=undefined;u10=undefined;~oref=https%3A%2F%2Fwww.cloudflare.com%2Fcase-studies%2F?
https://support.google.com/chromecast/troubleshooter/2995236
https://www.google.com/intl/en-US/chrome/blank.html
https://docs.google.com
https://ad.doubleclick.net
https://www.google.com/images/dot2.gif
https://meetings.clients6.google.com
https://play.google.com/log?format=json&hasfast=true
https://www.cloudflare.com/5xx-error-landing/
https://code.google.com/p/nativeclient/issues/entry%s:
https://tr.www.cloudflare.com/gtm.js?id=GTM-PKQFGQB
http://tools.ietf.org/html/rfc1950
https://chromium.googlesource.com/a/native_client/pnacl-clang.git
https://code.google.com/p/nativeclient/issues/entry
https://www.cloudflare.com/5xx-error-landing2
https://support.google.com/chromecast/answer/2998456
https://feedback.googleusercontent.com
https://www.google.com/
https://clients2.googleusercontent.com
https://www.cloudflare.com/ssl/
https://meet.google.com
https://hangouts.clients6.google.com
https://www.googleoptimize.com
https://www.google.com
https://preprod-hangouts-googleapis.sandbox.google.com
https://accounts.google.com/MergeSession
https://9309168.fls.doubleclick.net
http://www.ietf.org/id/draft-holmer-rmcat-transport-wide-cc-extensions-01
https://sandbox.google.com/payments/v4/js/integrator.js
https://hangouts.google.com/hangouts/_/logpref
https://www.google.com/log?format=json&hasfast=true
https://benchmark.1e100cdn.net
https://crash.corp.google.com/samples?reportid=&q=
https://www.cloudflare.com/disclosure/
https://www.google.com/images/cleardot.gif
https://apis.google.com/js/client.js
https://stats.g.doubleclick.net
https://www.cloudflare.com/plans/#overview
https://www-googleapis-staging.sandbox.google.com
https://ogs.google.com
https://9309168.fls.doubleclick.net/activityi;dc_pre=CPPH_MjY3vUCFacKBgAdC0gMuA;src=9309168;type=prici0;cat=us-pr0;ord=5246337112613;gtm=2yg1q0;auiddc=1855812276.1643757326;u1=2022%20Feb%2001%2015%3A15%3A38;u2=undefined;u3=https%3A%2F%2Fwww.cloudflare.com%2Fplans%2F;u4=undefined;u10=undefined;~oref=https%3A%2F%2Fwww.cloudflare.com%2Fplans%2F?
https://github.com/google/closure-library/wiki/goog.module:-an-ES6-module-like-alternative-to-goog.p
https://dns.google
http://www.apache.org/licenses/LICENSE-2.0
https://www.google.com/tools/feedback
https://www.cloudflare.com/hp/
https://www.cloudflare.com/5xx-error-landing/2
https://clients2.google.com
https://www.cloudflare.com/case-studies/
https://github.com/madler/zlib/blob/master/zlib.h
https://www.google.com/accounts/OAuthLogin?issueuberauth=1
https://apis.google.com
https://github.com/angular/material
https://creativecommons.org/publicdomain/zero/1.0/.
http://angularjs.org
https://clients2.google.com/cr/report
https://accounts.google.com

Dropped files

No malicious files found. See full and IOC report for all dropped files.

http://ny-t.r-tb.com/

Comments

Tags

Available tags:

Details

Joe Sandbox

Third Party Analysis Engines

IPs

Domains

URLs

Dropped files

http://ny-t.r-tb.com/ Options

Comments

Tags

Available tags:

Details

Joe Sandbox

Third Party Analysis Engines

IPs

Domains

URLs

Dropped files

Search started

http://ny-t.r-tb.com/