top title background image
flash

https://global.gotowebinar.com/join/39448698507981838/489839691

Status: finished
Submission Time: 2022-05-06 09:37:22 +02:00
Suspicious
Evader

Comments

Tags

Details

  • Analysis ID:
    621429
  • API (Web) ID:
    988933
  • Analysis Started:
    2022-05-06 09:37:23 +02:00
  • Analysis Finished:
    2022-05-06 09:46:04 +02:00
  • Technologies:

Joe Sandbox

Engine Download Report Detection Info
suspicious
Score: 30
System: Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 134, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01

IPs

IP Country Detection
192.28.147.68
United States
107.23.173.147
United States
108.138.36.117
United States
Click to see the 62 hidden entries
44.196.183.90
United States
172.217.168.65
United States
54.173.254.241
United States
172.217.168.66
United States
172.217.168.3
United States
173.199.54.10
United States
18.158.204.100
United States
87.248.119.252
United Kingdom
172.217.168.8
United States
157.240.17.15
United States
52.94.222.140
United States
13.107.43.14
United States
206.19.49.24
United States
108.138.36.89
United States
54.243.235.133
United States
35.186.235.23
United States
142.250.203.109
United States
44.228.212.110
United States
142.250.203.100
United States
173.199.2.21
United States
216.115.223.37
United States
172.217.168.70
United States
54.211.181.92
United States
151.101.1.140
United States
74.125.128.155
United States
35.186.249.72
United States
18.66.192.2
United States
35.244.142.80
United States
108.138.36.107
United States
157.240.20.35
United States
18.194.65.61
United States
204.79.197.200
United States
185.33.221.50
Netherlands
216.58.215.238
United States
54.231.197.176
United States
108.138.36.20
United States
108.138.36.61
United States
34.248.131.147
United States
18.197.190.5
United States
108.138.40.116
United States
18.66.192.107
United States
54.163.87.110
United States
52.35.142.151
United States
52.32.189.204
United States
108.138.36.76
United States
108.138.36.34
United States
52.28.151.154
United States
172.217.168.2
United States
78.108.120.31
European Union
108.138.36.30
United States
18.185.197.79
United States
52.11.10.7
United States
239.255.255.250
Reserved
18.211.97.103
United States
216.239.36.54
United States
89.187.165.194
Czech Republic
152.199.21.175
United States
52.223.40.198
United States
18.66.192.91
United States
212.82.100.181
United Kingdom
3.120.70.162
United States
35.168.188.76
United States

Domains

Name IP Detection
d18gxqxuuyhhhs.cloudfront.net
108.138.36.61
adservice.google.de
0.0.0.0
secure.adnxs.com
0.0.0.0
Click to see the 97 hidden entries
vmss.boldchat.com
0.0.0.0
logmeinsupport.nanorep.co
0.0.0.0
assets.cdngetgo.com
0.0.0.0
builds.cdn.getgo.com
0.0.0.0
alb.reddit.com
0.0.0.0
edge.gycpi.b.yahoodns.net
87.248.119.252
ib.anycast.adnxs.com
185.33.221.50
api.company-target.com
108.138.36.76
qualdnt.b-cdn.net
89.187.165.194
partnerad.l.doubleclick.net
172.217.168.66
global.gotowebinar.com
0.0.0.0
l-0005.l-dc-msedge.net
13.107.43.14
677-xnu-203.mktoresp.com
192.28.147.68
dxedge-prod-lb-404808087.eu-central-1.elb.amazonaws.com
18.158.204.100
ssl-logmein.myssltrk.com
54.243.235.133
sentry.io
35.188.42.15
aax-eu.amazon-adsystem.com
52.94.222.140
www-googletagmanager.l.google.com
172.217.168.8
www-google-analytics.l.google.com
216.58.215.238
accounts.google.com
142.250.203.109
pagead46.l.doubleclick.net
172.217.168.2
www.google.de
172.217.168.3
trial-eum-clienttons-s.akamaihd.net
0.0.0.0
link.gotowebinar.com
0.0.0.0
s.go-mpulse.net
0.0.0.0
c.clicktale.net
0.0.0.0
sp.analytics.yahoo.com
0.0.0.0
9294863.fls.doubleclick.net
0.0.0.0
support.logmeininc.com
0.0.0.0
tags.tiqcdn.com
0.0.0.0
dntcl.qualaroo.com
0.0.0.0
s.yimg.com
0.0.0.0
munchkin.marketo.net
0.0.0.0
px.ads.linkedin.com
0.0.0.0
connect.facebook.net
0.0.0.0
logging.getgo.com
35.168.188.76
cdn.lmiutil.com
0.0.0.0
visitor-services.boldchat.com
0.0.0.0
www.redditstatic.com
0.0.0.0
js.adsrvr.org
0.0.0.0
tags.w55c.net
0.0.0.0
support.goto.com
0.0.0.0
trial-eum-clientnsv4-s.akamaihd.net
0.0.0.0
cbi.boldchat.com
0.0.0.0
clients2.google.com
0.0.0.0
clients2.googleusercontent.com
0.0.0.0
stats.g.doubleclick.net
0.0.0.0
vidassets.terminus.services
108.138.36.89
q-aus1.contentsquare.net
54.211.181.92
weblibrary.cdn.getgo.com
18.66.192.91
d341gyqammcjte.cloudfront.net
18.66.192.107
wec-assets-api.terminus.services
54.173.254.241
egwglobal.gotomeeting.com
216.115.208.230
us1-6.nanorep.co
54.163.87.110
dual-a-0001.a-msedge.net
204.79.197.200
stats.l.doubleclick.net
74.125.128.155
api-telemetry.servers.getgo.com
52.32.189.204
sni1gl.wpc.xicdn.net
152.199.21.175
star-mini.c10r.facebook.com
157.240.20.35
match.adsrvr.org
52.223.40.198
consent.trustarc.com
108.138.36.20
cdn.mxpnl.com
35.186.235.23
d5psds0urxgad.cloudfront.net
18.66.192.2
launch.getgo.com
78.108.120.31
d.impactradius-event.com
35.186.249.72
www.google.com
142.250.203.100
s3.amazonaws.com
54.231.197.176
api.svc.gotowebinar.com
44.196.183.90
px.airpr.com
108.138.36.117
g2wbr-global-live.gslb.expertcity.com
173.199.54.10
wec-assets.terminus.services
108.138.36.34
j.mrpdata.net
3.120.70.162
events.launchdarkly.com
107.23.173.147
authentication.logmeininc.com
18.197.190.5
cdn.pdst.fm
35.244.142.80
k-aus1.contentsquare.net
18.211.97.103
scontent.xx.fbcdn.net
157.240.17.15
tag.demandbase.com
108.138.36.30
insight.adsrvr.org
52.223.40.198
us-central1-adaptive-growth.cloudfunctions.net
216.239.36.54
apt-lb.techtarget.com
206.19.49.24
spdc-global.pbp.gysm.yahoodns.net
212.82.100.181
adservice.google.com
172.217.168.66
dg2iu7dxxehbo.cloudfront.net
108.138.40.116
c-ct-eu.contentsquare.net
34.248.131.147
d1oqdhsokyodr9.cloudfront.net
108.138.36.107
cdn.digicertcdn.com
172.64.149.82
rpc-dc19.bold360.com
52.11.10.7
dpx.airpr.com
18.185.197.79
dart.l.doubleclick.net
172.217.168.70
visitor-services.bold360.com
52.28.151.154
global.gotomeeting.com
108.138.36.96
googlehosted.l.googleusercontent.com
172.217.168.65
clients.l.google.com
216.58.215.238
googleads.g.doubleclick.net
216.58.215.226
s.gotomeeting.com
173.199.2.21
dualstack.reddit.map.fastly.net
151.101.1.140

URLs

Name Detection
https://launch.getgo.com/launcher2/static/scripts/app/launcher.js
https://applauncher.gotowebinar.com/favicon.ico
https://support.goto.com/
Click to see the 44 hidden entries
https://applauncher.gotowebinar.com/1.11.0/images/citrix-logo.png
https://clients2.googleusercontent.com/crx/blobs/Acy1k0bLIjHsvnKaKN_oRpVaYYvFs25d7GKYF1WXrT6yizCMksBO0c_ggE0B6tx6HPRHe6q1GOEe3_NcIbSiGG8kXeLMUY0sAKVvC6R89zvKM13s5VqoAMZSmuUgjQL5vlygJuArQghXXE_qTL7NlQ/extension_8520_615_0_5.crx
https://weblibrary.cdn.getgo.com/togo/6.3.4/togo-fonts/lato-regular.woff2
https://launch.getgo.com/launcher2/telemetry/javascript-starting?jsonp_callback=jQuery19102725768812889837_1651855112939&_=1651855112940
https://adservice.google.com/ddm/fls/i/dc_pre=CKP95rKvyvcCFZWz1QodoJMP-A;src=9294863;type=brows0;cat=goto-0;ord=1092030314851;gtm=2wg540;auiddc=959450738.1651855183;u1=www.gotomeeting.com%2Fgotomeeting%2FAbout_en-US;u2=us;~oref=https%3A%2F%2Fwww.gotomeeting.com%2Fgotomeeting%2FAbout_en-US
https://applauncher.gotowebinar.com/1.11.0/styles/main.css
https://applauncher.gotowebinar.com/boot.js
https://applauncher.gotowebinar.com/1.11.0/scripts/requirejs-config.js
https://events.launchdarkly.com/events/diagnostic/5be2128248b4d42ff691b7f0
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6Ld1RuIUAAAAAM2u6LHAAG29vsnyhPRwzsZ6Ofej&co=aHR0cHM6Ly9zdXBwb3J0LmdvdG8uY29tOjQ0Mw..&hl=en&v=nEGwmCAyCoKVn9PSwAGnQWhY&size=invisible&cb=velfmrlsr36n
http://crl.thawte.com/ThawteTimestampingCA.crl0
https://events.launchdarkly.com/events/bulk/5be2128248b4d42ff691b7f0
http://s.gotomeeting.com/About_en-US
https://applauncher.gotowebinar.com/#join/attendee/en_US/e0-woEGWRwbepnnIZLqPxl-xVAsz-QXh/e0-woEGWRw
https://9294863.fls.doubleclick.net/activityi;dc_pre=CK7_5rKvyvcCFXH01Qodu2EIng;src=9294863;type=brows0;cat=gtm-u0;ord=4848085309628;gtm=2wg540;auiddc=959450738.1651855183;u1=https%3A%2F%2Fwww.gotomeeting.com%2Fgotomeeting%2FAbout_en-US;u2=us;~oref=https%3A%2F%2Fwww.gotomeeting.com%2Fgotomeeting%2FAbout_en-US?
https://weblibrary.cdn.getgo.com/togo/6.3.4/styles/togo.css
https://www.gotomeeting.com/gotomeeting/About_en-US
https://applauncher.gotowebinar.com/1.11.0/images/ImageB.png
https://global.gotowebinar.com/join/39448698507981838/489839691
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6Ld1RuIUAAAAAM2u6LHAAG29vsnyhPRwzsZ6Ofej&co=aHR0cHM6Ly9zdXBwb3J0LmdvdG8uY29tOjQ0Mw..&hl=en&v=nEGwmCAyCoKVn9PSwAGnQWhY&size=invisible&cb=55ge4eyzyh0e
https://global.gotomeeting.com/install
https://logging.getgo.com/log
https://applauncher.gotowebinar.com/1.11.0/scripts/lib/smartbanner/jquery.smartbanner.css
https://dns.google
https://adservice.google.com/ddm/fls/i/dc_pre=CK7_5rKvyvcCFXH01Qodu2EIng;src=9294863;type=brows0;cat=gtm-u0;ord=4848085309628;gtm=2wg540;auiddc=959450738.1651855183;u1=https%3A%2F%2Fwww.gotomeeting.com%2Fgotomeeting%2FAbout_en-US;u2=us;~oref=https%3A%2F%2Fwww.gotomeeting.com%2Fgotomeeting%2FAbout_en-US
https://applauncher.gotowebinar.com/1.11.0/scripts/lib/durandal/css/durandal.css
https://applauncher.gotowebinar.com/1.11.0/images/ImageA.png
https://launch.gotowebinar.com/join/webinars/39448698507981838/attendees/489839691
https://applauncher.gotowebinar.com/1.11.0/images/goto_logo_big.svg
https://clients2.google.com/service/update2/crx?os=win&arch=x64&os_arch=x86_64&nacl_arch=x86-64&prod=chromecrx&prodchannel=&prodversion=85.0.4183.121&lang=en-US&acceptformat=crx3&x=id%3Dnmmhkkegccagdldgiimedpiccmgmieda%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1&x=id%3Dpkedcjkdefgpdelpbcmbmeomcjbeemfm%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1
http://ocsp.thawte.com0
https://support.goto.com/webinar/help/i-cant-join-my-session-g2w060002?c_prod=g2w&c_name=iph
https://accounts.google.com/ListAccounts?gpsia=1&source=ChromiumBrowser&json=standard
https://9294863.fls.doubleclick.net/activityi;dc_pre=CKP95rKvyvcCFZWz1QodoJMP-A;src=9294863;type=brows0;cat=goto-0;ord=1092030314851;gtm=2wg540;auiddc=959450738.1651855183;u1=www.gotomeeting.com%2Fgotomeeting%2FAbout_en-US;u2=us;~oref=https%3A%2F%2Fwww.gotomeeting.com%2Fgotomeeting%2FAbout_en-US?
https://weblibrary.cdn.getgo.com/togo/6.3.4/togo-fonts/lato-light.woff2
https://applauncher.gotowebinar.com/config.js
https://global.gotowebinar.com/join/39448698507981838/4898396912
https://applauncher.gotowebinar.com/
https://launch.getgo.com/launcher2/static/styles/v2.css
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6Ld1RuIUAAAAAM2u6LHAAG29vsnyhPRwzsZ6Ofej&co=aHR0cHM6Ly9zdXBwb3J0LmdvdG8uY29tOjQ0Mw..&hl=en&v=nEGwmCAyCoKVn9PSwAGnQWhY&size=invisible&cb=z9ftirygc5v9
https://applauncher.gotowebinar.com/1.11.0/scripts/lib/marketing.js
https://launch.gotowebinar.com/join/webinars/39448698507981838/attendees/4898396912
https://applauncher.gotowebinar.com/1.11.0/scripts/app/main.applauncher.js
https://9294863.fls.doubleclick.net/ddm/fls/r/dc_pre=CK7_5rKvyvcCFXH01Qodu2EIng;src=9294863;type=brows0;cat=gtm-u0;ord=4848085309628;gtm=2wg540;auiddc=959450738.1651855183;u1=https%3A%2F%2Fwww.gotomeeting.com%2Fgotomeeting%2FAbout_en-US;u2=us;~oref=https%3A%2F%2Fwww.gotomeeting.com%2Fgotomeeting%2FAbout_en-US

Dropped files

No malicious files found. See full and IOC report for all dropped files.