Automated Malware Analysis - Joe Sandbox Cloud Basic

ID	Detection	Sample Info	Download Report	Classification & Info
1467898	Malicious AV: None	https://mail.support-xfinity.152-42-227-61.cprapid.com/Billing_Pay_Online.html?Review-VerificationMyAccount 2024-07-05 00:42:36 +02:00	Full Report Management Report IOC Report	Info
1467897	Malicious AV: None	https://mail.support-xfinity.152-42-227-61.cprapid.com/Billing-Online.html?Review-VerificationMyAccount 2024-07-05 00:41:36 +02:00	Full Report Management Report IOC Report	Info
1467896	Malicious AV: None	http://mail.support-xfinity.152-42-227-61.cprapid.com/ 2024-07-05 00:40:36 +02:00	Full Report Management Report IOC Report	Info
1467895	Malicious AV: None	http://review-page-violation-issue-meta-center.vercel.app/ 2024-07-05 00:39:31 +02:00	Full Report Management Report IOC Report	Info Class
1467894	Malicious AV: None	http://www.telegramkv.com/ 2024-07-05 00:38:34 +02:00	Full Report Management Report IOC Report	Info Class
1467893	Malicious AV: None	https://pradeeprunner.com/auth.html 2024-07-05 00:37:30 +02:00	Full Report Management Report IOC Report	Info
1467892	Malicious AV: None	http://exchange.add-solution.de/ecp_ocbcadejsm_login?l2vjcc9ly3bfb2niy2fkzwpzbv9mb3jtl2vjcf9vy2jjywrlanntx2zvcm0/tdjwamndowxzm0jmyjjoavkyrmtav3b6yly5bwizsnqvzwnwx29jymnhzgvqc21fzm9ybt9mmlzqy0m5bfkzqmzimk5pwtjga1pxchpivjltyjnkdewyvmpjrjl2wtjkallxumxhbk50wdjadmntmc9urepxyw1ore9x...~311~...lsbxrhvjncnllswtviv0l6u25rpq== 2024-07-05 00:36:30 +02:00	Full Report Management Report IOC Report	Info Class
1467891	Malicious AV: None	https://request-remove-violation-here.surge.sh/next.html 2024-07-05 00:35:30 +02:00	Full Report Management Report IOC Report	Info Class
1467890	Malicious AV: None	http://cacahs.fdavm.com/ 2024-07-05 00:34:28 +02:00	Full Report Management Report IOC Report	Info
1467889	Malicious AV: None	https://supp-review9482.eu/ 2024-07-05 00:33:28 +02:00	Full Report Management Report IOC Report	Info
1467888	Malicious AV: None	http://mysterymint-s10.vercel.app/ 2024-07-05 00:32:28 +02:00	Full Report Management Report IOC Report	Info
1467887	Malicious AV: None	https://iwahadxi.hosted.phplist.com/lists/lt.php/?tid=eU1SAFEEUlZTABhUAVAGGAZWVFsfXVQLWkkDBQIAUAwCAgcAAldPWwdaBlNRVAgYVwEEXh9QClxcSQcAUlcbWgQGAAJVVwRXBAoBSQcBAVALVA8LHwIEXVtJUg8GVxsAVVMHGA5SB1EBC1YDAQQBDA 2024-07-05 00:31:28 +02:00	Full Report Management Report IOC Report	Info
1467886	Malicious AV: None	https://ns43q4.csb.app/ 2024-07-05 00:30:27 +02:00	Full Report Management Report IOC Report	Info
1467885	Malicious HTMLPhisher AV: None	http://pub-431046b43b84431ea1b4a212cd34e302.r2.dev/gsecondcheck.html?usr=ouwxfmmtalwl 2024-07-05 00:29:27 +02:00	Full Report Management Report IOC Report	Info Class
1467884	Malicious AV: None	http://sp.26skins.com/steamstore/soundtracks/ 2024-07-05 00:28:27 +02:00	Full Report Management Report IOC Report	Info
1467883	Malicious AV: None	http://we-whatsapp-kf.top/ 2024-07-05 00:27:26 +02:00	Full Report Management Report IOC Report	Info
1467882	Malicious AV: None	http://teligrum.ru/ 2024-07-05 00:26:26 +02:00	Full Report Management Report IOC Report	Info
1467881	Malicious AV: None	http://we-whatsapp-kf.club/ 2024-07-05 00:25:26 +02:00	Full Report Management Report IOC Report	Info
1467880	Malicious AV: None	https://urlz.fr/r1TD 2024-07-05 00:24:22 +02:00	Full Report Management Report IOC Report	Info
1467879	Malicious Yara Snort RedLine AV: 55%	file.exe 2024-07-05 00:24:06 +02:00	Full Report Management Report IOC Report	Info Class

Windows: InjectsWrites Registry keysDrops PE FilesHas more than one ProcessHas Email attachmentDisassembly is available

Android: Receives SMS Sends SMS Reboot Native CMD

Common: Generates Internet Traffic Generates HTTP Network Traffic Expired Sample Creates malicious files Contains malware configuration(s)

Customization Show ID column

Analyses Overview

Search started