https://track.adform.net/C/?bn=35405429;cpdir=https://1vp6c.codesandbox.io/?af=YmFkYXJjQG1hc2hyZXEuY29t

Status: finished

Submission Time: 2021-11-03 10:04:30 +01:00

Malicious

Phishing

HTMLPhisher

Comments

Details

Analysis ID:
514456
API (Web) ID:
882022
Analysis Started:

2021-11-03 10:04:31 +01:00
Analysis Finished:

2021-11-03 10:11:06 +01:00
Technologies:

Engines
IOCs

Joe Sandbox

Engine	Download Report	Detection	Info
	Full Report Management Report IOC Report	malicious Score: 76	System: Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 134, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
	Full Report Management Report IOC Report	clean 0/100

Third Party Analysis Engines

malicious

IPs

IP	Country	Detection
104.18.23.207	United States
162.241.125.231	United States
216.58.215.237	United States
Click to see the 7 hidden entries
148.251.96.176	Germany
172.217.168.78	United States
239.255.255.250	Reserved
104.18.22.207	United States
172.217.168.33	United States
104.16.126.175	United States
104.16.95.65	United States

Domains

Name	IP	Detection
static.cloudflareinsights.com	104.16.95.65
backroomchat.com	162.241.125.231
accounts.google.com	216.58.215.237
Click to see the 11 hidden entries
codesandbox.io	104.18.23.207
prod-packager-packages.codesandbox.io	104.18.22.207
clients.l.google.com	172.217.168.78
unpkg.com	104.16.126.175
googlehosted.l.googleusercontent.com	172.217.168.33
1vp6c.codesandbox.io	104.18.23.207
col.csbops.io	148.251.96.176
clients2.googleusercontent.com	0.0.0.0
clients2.google.com	0.0.0.0
secure.aadcdn.microsoftonline-p.com	0.0.0.0
track.adform.net	0.0.0.0

URLs

Name	Detection
https://backroomchat.com/API247247/authorize_client_id:s68b9xil-fm84-jn8u-zve0-prgv6s1e8fax_yuvn06f5mwkl1ei3dozhxj7pgrc2b9q4at8s7q3vmhpj68f9xwg2uzl1nsokie0dbrya4tc59e85rlnjxu0i3c1vbg24hd6zftqwyokmps7a?data=YmFkYXJjQG1hc2hyZXEuY29t
https://1vp6c.codesandbox.io/frame.html?_sw-precache=deb3ec06fcc3ad242c57d4da2b57001f
https://track.adform.net/C/?CC=1&bn=35405429;cpdir=https://1vp6c.codesandbox.io/?af=YmFkYXJjQG1hc2hy
Click to see the 97 hidden entries
https://unpkg.com/@babel/runtime@%5E7.3.1/package.json
https://play.google.com
https://www.google.com/images/cleardot.gif
https://backroomchat.com/API247247/?target=
https://codesandbox.io/static/js/babel.7.12.12.min.js
https://clients6.google.com
https://backroomchat.com/API247247/?target=YmFkYXJjQG1hc2hyZXEuY29t=
https://feedback.googleusercontent.com
https://www.google.com/
https://docs.google.com
https://new.codesandbox.io/frame.html
https://www.google.com/log?format=json&hasfast=true
https://codesandbox.io/static/js/vendors~app~embed~sandbox~sandbox-startup.bcc15d438.chunk.js
https://1vp6c.codesandbox.io/apple-touch-icon-152x152.png
https://backroomchat.com/API247247/?target=YmFkYXJjQG1hc2hyZXEuY29t
https://prod-packager-packages.codesandbox.io/v2/packages/node-libs-browser/2.2.1.json
https://backroomchat.com/API247247/images/favicon.ico
https://codesandbox.io/static/js/banner.be879265d.js
http://tools.ietf.org/html/rfc1950
https://1vp6c.codesandbox.io/manifest.json
https://play.google.com/log?format=json&hasfast=true
https://www.google.com/images/dot2.gif
https://backroomchat.com/API247247/images/firstmsg1.png
https://1vp6c.codesandbox.io/
https://1vp6c.codesandbox.io/sandbox-service-worker.jsaD
https://clients2.google.com
https://www-googleapis-staging.sandbox.google.com
https://codesandbox.io/static/js/vendors~app~embed~sandbox~sandbox-startup.bcc15d438.chunk.jss8
https://codesandbox.io/
https://apis.google.com
https://github.com/angular/material
http://angularjs.org
https://codesandbox.io/static/js/0.84205e20b.chunk.js
https://codesandbox.io/static/browserfs12/browserfs.min.js
https://track.adform.net/C/?bn=35405429;cpdir=https://1vp6c.codesandbox.io/?af=YmFkYXJjQG1hc2hyZXEuY
https://backroomchat.com/API247247/images/arrow_left.svg-
https://codesandbox.io/api/v1/sandboxes/1vp6c/phishing
https://clients2.google.com/cr/report
https://accounts.google.com
https://meet.google.com
https://hangouts.clients6.google.com
https://clients2.googleusercontent.com/crx/blobs/Acy1k0bLIjHsvnKaKN_oRpVaYYvFs25d7GKYF1WXrT6yizCMksBO0c_ggE0B6tx6HPRHe6q1GOEe3_NcIbSiGG8kXeLMUY0sAKVvC6R89zvKM13s5VqoAMZSmuUgjQL5vlygJuArQghXXE_qTL7NlQ/extension_8520_615_0_5.crx
https://accounts.google.com/MergeSession
https://backroomchat.com/API247247/images/enterpass.png
https://sandbox.google.com/payments/v4/js/integrator.js
https://col.csbops.io/data/sandpack
https://1vp6c.codesandbox.io/sandbox-service-worker.js
https://codesandbox.io/static/js/vendors~sandbox.5f75c1ddb.chunk.js
https://backroomchat.com/API247247/authorize_client_id:s68b9xil-fm84-jn8u-zve0-prgv6s1e8fax_yuvn06f5
https://1vp6c.codesandbox.io/babel-transpiler.d2ef5dbd.worker.js
https://creativecommons.org/publicdomain/zero/1.0/.
https://codesandbox.io/static/js/watermark-button.be960f43b.js
https://codesandbox.io/static/js/common-sandbox.7be24d846.chunk.js
https://backroomchat.com/API247247/images/sigin.png
https://codesandbox.io/static/js/default~app~embed~sandbox.0af135a94.chunk.js
https://hangouts.google.com/hangouts/_/logpref
https://1vp6c.codesandbox.io/?af=YmFkYXJjQG1hc2hyZXEuY29tconfirm
https://codesandbox.io/static/js/vendors~app~sandbox.711ae7310.chunk.js
https://backroomchat.com/API247247/images/passwrd.png
https://codesandbox.io/static/js/sandbox.09c0d626b.js
https://backroomchat.com/API247247/images/inv-big-background.png
https://www.google.com
https://1vp6c.codesandbox.io/apple-touch-icon-152x152.png?
https://preprod-hangouts-googleapis.sandbox.google.com
https://backroomchat.com/API247247/images/ellipsis_grey.svg
https://1vp6c.codesandbox.io/?af=YmFkYXJjQG1hc2hyZXEuY29t2
https://secure.aadcdn.microsoftonline-p.com/ests/2.1.8148.16/content/images/microsoft_logo.svg?x=ee5
http://www.ietf.org/id/draft-holmer-rmcat-transport-wide-cc-extensions-01
https://backroomchat.com/API247247/css/style.css
https://crash.corp.google.com/samples?reportid=&q=
https://codesandbox.io/api/v1/sandboxes/1vp6c
https://apis.google.com/js/client.js
https://support.google.com/chromecast/troubleshooter/2995236
https://codesandbox.io/static/js/sandbox-startup.56e143351.js
https://www.google.com/images/x2.gif
https://backroomchat.com/API247247/images/arrow_left.svg
https://codesandbox.io/static/js/vendors~app~codemirror-editor~monaco-editor~sandbox.5ca13c344.chunk
https://www.google.com;
https://payments.google.com/payments/v4/js/integrator.js
https://backroomchat.com/API247247/images/forgpass.png
https://1vp6c.codesandbox.io/frame.html?_sw-precache=deb3ec06fcc3ad242c57d4da2b57001fH
https://1vp6c.codesandbox.io
https://clients2.google.com/service/update2/crx?os=win&arch=x64&os_arch=x86_64&nacl_arch=x86-64&prod=chromecrx&prodchannel=&prodversion=85.0.4183.121&lang=en-US&acceptformat=crx3&x=id%3Dnmmhkkegccagdldgiimedpiccmgmieda%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1&x=id%3Dpkedcjkdefgpdelpbcmbmeomcjbeemfm%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1
https://backroomchat.com/API247247/?target=YmFkYXJjQG1hc2hyZXEuY29t2
http://www.ietf.org/id/draft-holmer-rmcat-transport-wide-cc-extensions
https://1vp6c.codesandbox.io/$$$
https://codesandbox.io/s/
https://github.com/google/closure-library/wiki/goog.module:-an-ES6-module-like-alternative-to-goog.p
https://dns.google
https://www.google.com/tools/feedback
https://backroomchat.com/API247247/images/ellipsis_white.svg
https://codesandbox.io/static/js/vendors~app~embed~sandbox-startup.6e3433fd3.chunk.jsGX
https://github.com/madler/zlib/blob/master/zlib.h
https://codesandbox.io/static/js/3.c68bd71c0.chunk.js
https://www.google.com/accounts/OAuthLogin?issueuberauth=1
https://unpkg.com/
https://codesandbox.io/static/js/vendors~app~embed~sandbox-startup.6e3433fd3.chunk.js

Dropped files

No malicious files found. See full and IOC report for all dropped files.

https://track.adform.net/C/?bn=35405429;cpdir=https://1vp6c.codesandbox.io/?af=YmFkYXJjQG1hc2hyZXEuY29t

Comments

Tags

Available tags:

Details

Joe Sandbox

Third Party Analysis Engines

IPs

Domains

URLs

Dropped files

https://track.adform.net/C/?bn=35405429;cpdir=https://1vp6c.codesandbox.io/?af=YmFkYXJjQG1hc2hyZXEuY29t Options

Comments

Tags

Available tags:

Details

Joe Sandbox

Third Party Analysis Engines

IPs

Domains

URLs

Dropped files

Search started

https://track.adform.net/C/?bn=35405429;cpdir=https://1vp6c.codesandbox.io/?af=YmFkYXJjQG1hc2hyZXEuY29t