http://www.footybite.tv/watch/sports-hd1.htm

Status: finished

Submission Time: 2022-12-14 13:53:55 +01:00

Malicious

Trojan

Comments

Details

Analysis ID:
766955
API (Web) ID:
1134227
Analysis Started:

2022-12-14 13:53:56 +01:00
Analysis Finished:

2022-12-14 13:58:33 +01:00
Technologies:

Engines
IOCs

Joe Sandbox

Engine	Download Report	Detection	Info
	Full Report Management Report IOC Report	malicious Score: 60	System: Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 134, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01

Third Party Analysis Engines

malicious

IPs

IP	Country	Detection
172.67.212.230	United States
104.21.17.85	United States
188.114.96.3	European Union
Click to see the 24 hidden entries
35.190.41.116	United States
188.114.97.3	European Union
239.255.255.250	Reserved
172.255.6.92	Netherlands
104.17.151.12	United States
139.45.197.238	Netherlands
104.21.53.136	United States
62.210.222.34	France
45.154.206.106	Sweden
172.67.142.212	United States
104.22.74.171	United States
172.67.133.253	United States
174.137.133.16	United States
142.250.180.142	United States
142.250.184.100	United States
172.67.145.78	United States
104.21.2.43	United States
216.58.209.45	United States
139.45.197.152	Netherlands
172.67.8.141	United States
104.21.46.63	United States
174.137.133.17	United States
174.137.133.18	United States
172.67.214.24	United States

Domains

Name	IP	Detection
uehawe.xyz	172.67.212.230
eventhenherthis.info	188.114.97.3
www.popxperts.com	172.67.145.78
Click to see the 41 hidden entries
awstats.cloud	104.21.46.63
popxperts.com	172.67.145.78
serve.contentango.com	172.67.214.24
clients.l.google.com	142.250.180.142
plytv.swarm.video	62.210.222.34
w8lr176xbdr4g1.constraindefiant.net	188.114.96.3
zeusadx.xml.ak-is2.net	174.137.133.17
spathefesting.com	172.255.6.92
revrtb.xml.ak-is2.net	174.137.133.16
xml.adxnexus.com	0.0.0.0
cdn.jsdelivr.net	0.0.0.0
clients2.google.com	0.0.0.0
xml.acertb.com	0.0.0.0
eqcoldclia.com	0.0.0.0
xml.popmonetizer.net	0.0.0.0
xml.popmonetizer.com	0.0.0.0
xml.poprtb.com	0.0.0.0
xml.zeusadx.com	0.0.0.0
xml.revrtb.net	0.0.0.0
gaigroak.com	139.45.197.152
q.popbutler.com	188.114.97.3
sportsembed.to	172.67.133.253
cdrvrs.com	139.45.197.238
judale.com	104.21.2.43
q.cachegorilla.com	188.114.96.3
adxnexus.xml.ak-is2.net	174.137.133.17
widgets.amung.us	104.22.74.171
www.footybite.tv	188.114.97.3
swarm.video	104.21.17.85
popmonetizer.xml.ak-is2.net	174.137.133.18
poprtbcom.xml.ak-is2.net	174.137.133.17
4jgcsb28qdrh.cdnexpress42.net	45.154.206.106
youradexchange.com	35.190.41.116
agacelebir.com	139.45.197.238
www.google.com	142.250.184.100
zap.buzz	104.21.53.136
acertb.xml.ak-is2.net	174.137.133.16
q.xmlrtb.com	172.67.142.212
accounts.google.com	216.58.209.45
whos.amung.us	172.67.8.141
befirstcdn.com	104.17.151.12

URLs

Name	Detection
https://sportsembed.to/channels/hd/SCCfwxq.png
https://zap.buzz/wdP6KEM
https://q.popbutler.com/r?fid=8PDSlaGTv02
Click to see the 79 hidden entries
http://cdrvrs.com/5/3749440/?oo=1&aab=1
https://widgets.amung.us/draw/?w=colored&n=1432&c=000000ffffff&p=left
https://serve.contentango.com/gen.php?id=WYbHISCtLV
https://accounts.google.com/ListAccounts?gpsia=1&source=ChromiumBrowser&json=standard
https://zap.buzz/8YbeKDQ
http://www.footybite.tv/watch/sports-hd1.htm
https://serve.contentango.com/gen.php?id=s5e83yzhMM
https://plytv.swarm.video/
https://youradexchange.com/script/suurl4.php?r=4827899&cbur=0.407603720298777&cbiframe=1&cbWidth=1264&cbHeight=600&cbtitle=&cbpage=http%3A%2F%2Fwww.footybite.tv%2F&cbref=&cbdescription=&cbkeywords=&cbcdn=befirstcdn.com&aggr=0
https://q.cachegorilla.com/r?fid=qnDs59EhYW1
https://zap.buzz/8YbeKB7
https://zap.buzz/Od0b242
https://gaigroak.com/ifjoeglisgewpjccao.json
https://whos.amung.us/cwidget/bkw7sodkdx/000000ffffff.png
https://widgets.amung.us/draw/?w=colored&n=1446&c=000000ffffff&p=left
https://uehawe.xyz/w3ar3w1n
https://awstats.cloud/js/plausible.js
https://xml.popmonetizer.net/redirect?feed=395185&auth=3ufKeJ&pubid=150133
https://xml.acertb.com/redirect?feed=439530&auth=mbF9JB&pubid=155067
https://zap.buzz/y6dO7zY
https://xml.acertb.com/redirect?feed=439531&auth=nId62s&pubid=155067
https://zap.buzz/jyRbnxw
https://swarm.video/nsns.js
https://zap.buzz/4YxWXAJ
https://widgets.amung.us/draw/?w=colored&n=4219&c=000000ffffff&p=left
https://xml.zeusadx.com/redirect?feed=439529&auth=NelXWV&pubid=155066
https://w8lr176xbdr4g1.constraindefiant.net/css/embed.min.css?v=0.4
https://w8lr176xbdr4g1.constraindefiant.net/deb.html
https://zap.buzz/Jr1rKxA
https://serve.contentango.com/gen.php?id=GQg8mmsLEC
https://xml.adxnexus.com/redirect?feed=439526&auth=nHAOr4&pubid=155064
https://gaigroak.com/zlwyqhbpvganueljqtfnsrvzctgv.png?aHR0cHM6Ly9qb210aW5naS5uZXQvYXB1LnBocD96b25laWQ9Mzc0OTQ0MSZvZj0x
http://www.footybite.tv/watch/sports-hd1.htm
https://xml.revrtb.net/redirect?feed=439522&auth=t3o0Pv&pubid=155062
https://judale.com/script/bootstrap.js
https://widgets.amung.us/draw/?w=colored&n=4121&c=000000ffffff&p=left
https://befirstcdn.com/script/bootstrap.js
https://q.xmlrtb.com/r?fid=ykpf51ZH0vb
http://cdrvrs.com/tag.min.js
http://www.footybite.tv/favicon.ico
https://zap.buzz/wdP6KGM
https://zap.buzz/2YXVQX7
https://serve.contentango.com/load.php
https://serve.contentango.com/gen.php?id=tDdYeo7o7
https://serve.contentango.com/gen.php?id=XgOPsot9Xe
https://whos.amung.us/cwidget/boommarch/000000ffffff.png
https://zap.buzz/EDPB44p
https://xml.revrtb.net/redirect?feed=439523&auth=duo252&pubid=155062
https://zap.buzz/lxARJ8J
https://serve.contentango.com/gen.php?id=CX0BW0NjsB
https://gaigroak.com/xlhdw.css?aHR0cHM6Ly9qb210aW5naS5uZXQvYXB1LnBocD96b25laWQ9Mzc0OTQ0MSZvZj0x
https://w8lr176xbdr4g1.constraindefiant.net/embed/6y5l8ujvxr
https://xml.adxnexus.com/redirect?feed=439527&auth=CdrHmC&pubid=155064
https://xml.poprtb.com/redirect?feed=457659&auth=Q9s9fl&pubid=155068
https://xml.popmonetizer.net/redirect?feed=439525&auth=cX7Z1Z&pubid=155063
https://befirstcdn.com/script/ut.js?cb=1671022495356
https://zap.buzz/Q6Zb26x
https://eventhenherthis.info/redirect?tid=756113&file=Watch_Live
https://serve.contentango.com/gen.php?id=PReDvl944m
https://zap.buzz/EDPB47v
https://clients2.google.com/service/update2/crx?os=win&arch=x64&os_arch=x86_64&nacl_arch=x86-64&prod=chromecrx&prodchannel=&prodversion=104.0.5112.81&lang=en-GB&acceptformat=crx3&x=id%3Dnmmhkkegccagdldgiimedpiccmgmieda%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1
https://serve.contentango.com/gen.php?id=MrwGr89ffS
https://xml.popmonetizer.com/redirect?feed=453690&auth=51bnE2&pubid=150133
https://spathefesting.com/iAZoqS9qIg28n/28749
https://befirstcdn.com/script/ut.js?cb=1671022496437
https://zap.buzz/y6dO7e0
https://serve.contentango.com/gen.php?id=HsP3nKe6J5
https://widgets.amung.us/draw/?w=colored&n=4133&c=000000ffffff&p=left
https://serve.contentango.com/gen.php?id=fXHggLmTuE
https://serve.contentango.com/gen.php?id=sGwNIyGLG5
https://awstats.cloud/api/event
https://w8lr176xbdr4g1.constraindefiant.net/js/jquery.min.js
https://serve.contentango.com/gen.php?id=CMAs8uhhKm
https://youradexchange.com/script/suurl4.php?r=5954546&cbur=0.8101973958651965&cbiframe=1&cbWidth=1264&cbHeight=600&cbtitle=&cbpage=https%3A%2F%2Fsportsembed.to%2F&cbref=&cbdescription=&cbkeywords=&cbcdn=befirstcdn.com&aggr=0
https://sportsembed.to/channels/hd/hd1.php
https://serve.contentango.com/gen.php?id=uFkWgZKDzl
https://sportsembed.to/channels/hd/hd1.php
https://w8lr176xbdr4g1.constraindefiant.net/embed/6y5l8ujvxr
https://xml.popmonetizer.net/redirect?feed=439524&auth=AiDdvG&pubid=155063

Dropped files

No malicious files found. See full and IOC report for all dropped files.

Deep Malware Analysis

http://www.footybite.tv/watch/sports-hd1.htm

Comments

Tags

Available tags:

Details

Joe Sandbox

Third Party Analysis Engines

IPs

Domains

URLs

Dropped files

Deep Malware Analysis

http://www.footybite.tv/watch/sports-hd1.htm Options

Comments

Tags

Available tags:

Details

Joe Sandbox

Third Party Analysis Engines

IPs

Domains

URLs

Dropped files

Search started

http://www.footybite.tv/watch/sports-hd1.htm