https://vztnl-my.sharepoint.com/:o:/g/personal/mvanzaal_vzt_nl/EuuLOsYLcitAhOY9KZNqP9gBXbzHgWcXtG3S-zCfidXUXA?e=5%3ahV4RUj&at=9

Status: finished

Submission Time: 2021-11-05 08:42:36 +01:00

Malicious

Phishing

HTMLPhisher

Comments

Details

Analysis ID:
516205
API (Web) ID:
883777
Analysis Started:

2021-11-05 08:43:12 +01:00
Analysis Finished:

2021-11-05 08:50:54 +01:00
Technologies:

Engines
IOCs

Joe Sandbox

Engine	Download Report	Detection	Info
	Full Report Management Report IOC Report	malicious Score: 52	System: Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
	Full Report Management Report IOC Report	clean 0/100

IPs

IP	Country	Detection
157.240.17.15	United States
199.232.136.157	United States
142.250.186.168	United States
Click to see the 24 hidden entries
93.184.220.70	European Union
142.250.185.131	United States
40.108.231.27	United States
104.244.42.8	United States
152.199.21.140	United States
13.104.208.160	United States
104.22.24.131	United States
54.189.175.59	United States
216.58.212.174	United States
152.199.21.141	United States
104.26.7.220	United States
157.240.17.35	United States
199.34.228.54	United States
104.22.25.131	United States
185.159.242.66	Netherlands
108.174.11.37	United States
216.58.212.161	United States
142.250.184.237	United States
142.250.186.142	United States
142.250.185.196	United States
239.255.255.250	Reserved
74.125.140.157	United States
192.229.233.50	United States
151.101.1.46	United States

Domains

Name	IP	Detection
www.onenote.com	0.0.0.0
googlehosted.l.googleusercontent.com	216.58.212.161
officewayside.weebly.com	0.0.0.0
Click to see the 47 hidden entries
abs.twimg.com	0.0.0.0
cdn2.editmysite.com	0.0.0.0
messaging.office.com	0.0.0.0
ajax.aspnetcdn.com	0.0.0.0
stats.g.doubleclick.net	0.0.0.0
clients2.googleusercontent.com	0.0.0.0
vztnl-my.sharepoint.com	0.0.0.0
clients2.google.com	0.0.0.0
amcdn.msftauth.net	0.0.0.0
cdn.syndication.twimg.com	0.0.0.0
clients.l.google.com	216.58.212.174
platform.twitter.com	0.0.0.0
www.facebook.com	0.0.0.0
onenoteonlinesync.onenote.com	0.0.0.0
ton.twimg.com	0.0.0.0
www.linkedin.com	0.0.0.0
pbs.twimg.com	0.0.0.0
storage.live.com	0.0.0.0
connect.facebook.net	0.0.0.0
px.ads.linkedin.com	0.0.0.0
ec.editmysite.com	0.0.0.0
snap.licdn.com	0.0.0.0
accounts.google.com	142.250.184.237
sp-2020021412301152490000000a-1069308460.us-west-2.elb.amazonaws.com	54.189.175.59
cs45.wac.edgecastcdn.net	93.184.220.70
weebly.map.fastly.net	151.101.1.46
platform.twitter.map.fastly.net	199.232.136.157
i-db3p-cor005.api.p001.1drv.com	13.104.208.160
embed.tawk.to	104.22.25.131
va.tawk.to	104.22.24.131
scontent.xx.fbcdn.net	157.240.17.15
ssl-google-analytics.l.google.com	142.250.186.168
www.google.com	142.250.185.196
cs510.wpc.edgecastcdn.net	152.199.21.141
star-mini.c10r.facebook.com	157.240.17.35
gstaticadssl.l.google.com	142.250.185.131
www-google-analytics.l.google.com	142.250.186.142
stats.l.doubleclick.net	74.125.140.157
pop-esv5.mix.linkedin.com	108.174.11.37
www-googletagmanager.l.google.com	142.250.186.168
www.freeprivacypolicy.com	104.26.7.220
syndication.twitter.com	104.244.42.8
187270-ipv4.farm.dprodmgd104.aa-rt.sharepoint.com	40.108.231.27
pages-wildcard.weebly.com	199.34.228.54
www.vzt.nl	185.159.242.66
cs511.wpc.edgecastcdn.net	152.199.21.140
cs672.wac.edgecastcdn.net	192.229.233.50

URLs

Name	Detection
https://www.vzt.nl/algemenevoorwaarden
https://vztnl-my.sharepoint.com/:o:/g/personal/mvanzaal_vzt_nl/EuuLOsYLcitAhOY9KZNqP9gBXbzHgWcXtG3S-zCfidXUXA?rtime=EMODEjCg2Ug
https://www.vzt.nl/
Click to see the 58 hidden entries
https://www.vzt.nl/vacatures
https://vztnl-my.sharepoint.com/personal/mvanzaal_vzt_nl/_layouts/15/Doc.aspx?sourcedoc={c63a8beb-720b-402b-84e6-3d29936a3fd8}&action=view&wd=target%28VAN%20ZAAL%20TRANSPORT.one%7Cee96c080-a5a0-45b2-ab17-4c46e71e821a%2FVAN%20ZAAL%20TRANSPORT%7C8b790e4f-45a0-4569-b92d-4e687cda39f3%2F%29
http://www.ietf.org/id/draft-holmer-rmcat-transport-wide-cc-extensions
https://payments.google.com/payments/v4/js/integrator.js
https://www.google.com;
https://chromium.googlesource.com/a/native_client/pnacl-llvm.git
https://support.google.com/chromecast/troubleshooter/2995236
https://hangouts.google.com/
https://ogs.google.com
https://www.google.com/images/x2.gif
https://clients6.google.com
http://llvm.org/):
https://www.google.com/intl/en-US/chrome/blank.html
https://www.google.com/images/dot2.gif
https://officewayside.weebly.com/
https://meetings.clients6.google.com
https://play.google.com/log?format=json&hasfast=true
https://code.google.com/p/nativeclient/issues/entry%s:
http://tools.ietf.org/html/rfc1950
https://code.google.com/p/nativeclient/issues/entry
https://support.google.com/chromecast/answer/2998456
https://clients2.googleusercontent.com
https://platform.twitter.com/widgets/widget_iframe.a53eecb4584348a2ad32ec2ae21f6eae.html?origin=https%3A%2F%2Fwww.vzt.nl
https://docs.google.com
https://www.google.com/
https://feedback.googleusercontent.com
https://chromium.googlesource.com/a/native_client/pnacl-clang.git
https://clients2.google.com/service/update2/crx
https://stats.g.doubleclick.net
https://clients2.google.com/cr/report
https://apis.google.com/js/client.js
https://www.google.com/images/cleardot.gif
https://crash.corp.google.com/samples?reportid=&q=
https://www.google.com/log?format=json&hasfast=true
https://vztnl-my.sharepoint.com/:o:/g/personal/mvanzaal_vzt_nl/EuuLOsYLcitAhOY9KZNqP9gBXbzHgWcXtG3S-
https://sandbox.google.com/payments/v4/js/integrator.js
http://www.ietf.org/id/draft-holmer-rmcat-transport-wide-cc-extensions-01
https://accounts.google.com/MergeSession
https://preprod-hangouts-googleapis.sandbox.google.com
https://www.google.com
https://hangouts.clients6.google.com
https://meet.google.com
https://hangouts.google.com/hangouts/_/logpref
https://accounts.google.com
https://github.com/google/closure-library/wiki/goog.module:-an-ES6-module-like-alternative-to-goog.p
http://angularjs.org
https://creativecommons.org/publicdomain/zero/1.0/.
https://github.com/angular/material
https://apis.google.com
https://vztnl-my.sharepoint.com/personal/mvanzaal_vzt_nl/_layouts/15/Doc.aspx?sourcedoc=%7Bc63a8beb-
https://www.google.com/accounts/OAuthLogin?issueuberauth=1
https://github.com/madler/zlib/blob/master/zlib.h
https://www-googleapis-staging.sandbox.google.com
https://clients2.google.com
https://vztnl-my.sharepoint.com/personal/mvanzaal_vzt_nl/_layouts/15/Doc.aspx?sourcedoc=
https://www.google.com/tools/feedback
http://www.apache.org/licenses/LICENSE-2.0
https://dns.google

Dropped files

No malicious files found. See full and IOC report for all dropped files.

https://vztnl-my.sharepoint.com/:o:/g/personal/mvanzaal_vzt_nl/EuuLOsYLcitAhOY9KZNqP9gBXbzHgWcXtG3S-zCfidXUXA?e=5%3ahV4RUj&at=9

Comments

Tags

Available tags:

Details

Joe Sandbox

IPs

Domains

URLs

Dropped files

https://vztnl-my.sharepoint.com/:o:/g/personal/mvanzaal_vzt_nl/EuuLOsYLcitAhOY9KZNqP9gBXbzHgWcXtG3S-zCfidXUXA?e=5%3ahV4RUj&at=9 Options

Comments

Tags

Available tags:

Details

Joe Sandbox

IPs

Domains

URLs

Dropped files

Search started

https://vztnl-my.sharepoint.com/:o:/g/personal/mvanzaal_vzt_nl/EuuLOsYLcitAhOY9KZNqP9gBXbzHgWcXtG3S-zCfidXUXA?e=5%3ahV4RUj&at=9