URL: | http://www.hcltss-lms.com/mod/scorm/player.php |
Full analysis: | https://app.any.run/tasks/3f295334-373f-4b5c-ab1a-4fc017a38303 |
Verdict: | No threats detected |
Analysis date: | March 19, 2020, 09:49:36 |
OS: | Windows 7 Professional Service Pack 1 (build: 7601, 32 bit) |
Indicators: | |
MD5: | 3D3CB32323D429B421572FE9FFD1B054 |
SHA1: | BD78B500769ABA39B13679EE71D011831403B91B |
SHA256: | DDA75FB7E41D2C95F086F312F8D6343C76DD4DCBDC60AE1A4B178E5CED578C75 |
SSDEEP: | 3:N1KJS4QyGK3IBB8gbV:Cc4UK4BBTbV |
PID | CMD | Path | Indicators | Parent process | |||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
2892 | "C:\Program Files\Internet Explorer\iexplore.exe" http://www.hcltss-lms.com/mod/scorm/player.php | C:\Program Files\Internet Explorer\iexplore.exe | explorer.exe | ||||||||||||
User: admin Company: Microsoft Corporation Integrity Level: MEDIUM Description: Internet Explorer Version: 11.00.9600.16428 (winblue_gdr.131013-1700) Modules
| |||||||||||||||
3792 | "C:\Program Files\Internet Explorer\iexplore.exe" SCODEF:2892 CREDAT:267521 /prefetch:2 | C:\Program Files\Internet Explorer\iexplore.exe | iexplore.exe | ||||||||||||
User: admin Company: Microsoft Corporation Integrity Level: LOW Description: Internet Explorer Version: 11.00.9600.16428 (winblue_gdr.131013-1700) Modules
|
PID | Process | Filename | Type | |
---|---|---|---|---|
2892 | iexplore.exe | C:\Users\admin\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico | — | |
MD5:— | SHA256:— | |||
3792 | iexplore.exe | C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\DY534W2X\requirejs[1].php | text | |
MD5:4046892CFBA87B64EB2E78B59A7100BD | SHA256:51260055CD284F0BFF9BC87C1A5857938CE289609592D4905D3ECC45597CFB45 | |||
3792 | iexplore.exe | C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\DY534W2X\darkgrain[1].png | image | |
MD5:9E01887223102367FC2EB751684F7F3A | SHA256:A4B464E13A28E01B2EE6C523D8BEE460717B0EAF48C44CA01A5E091D874D322A | |||
3792 | iexplore.exe | C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\MFAQUS6V\javascript[1].php | text | |
MD5:46CF363ABB901D163AC9A1A2F8BCD149 | SHA256:A837F7B0A01A3D3CDFEBB04DE2A0AD7C52113B3DA0F718EFC45899CCE9F318C0 | |||
3792 | iexplore.exe | C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\MFAQUS6V\combo[2] | text | |
MD5:4F245DDDEEF75B0677C6A468C0A99EC8 | SHA256:6EEB221128281412AE7F46BD1F2DE31C3BAE225662B722F2CF676052BBD80078 | |||
3792 | iexplore.exe | C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\DY534W2X\javascript[1].php | html | |
MD5:99D0FBEE5B8B56B46155F8887EF2EB59 | SHA256:D43449E21297219118EA75F7C4882C6A052BB8512672768A6E7F756F453AD169 | |||
3792 | iexplore.exe | C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\MFAQUS6V\PNG%20Logo[1].png | image | |
MD5:FC542825D83B24325066F57C4AC3F5D8 | SHA256:198A908D0D0A4EB0D2CD7D6307AF2923423555C99E475B9CEA45988612E45406 | |||
3792 | iexplore.exe | C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\5IWPIAR9\javascript[1].php | text | |
MD5:1AC2C29ECC0F8716020855452601D3AC | SHA256:152E615FB1CFA6BF4B22769502CB1AF2EF966A14B46774D9FDA6F2EF1695F6CF | |||
3792 | iexplore.exe | C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\YTOWV792\styles[1].php | text | |
MD5:1FAD5A10F03FB2AE7F8986AFADD7A925 | SHA256:4E02EB7B6C5B0631014629E793092CC8A3748BDAF5DF939B5943C10CC636C4A2 | |||
3792 | iexplore.exe | C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\YTOWV792\jquery-ui.min[1].css | text | |
MD5:840CCA94D5E33FAF324BCD4988FA8401 | SHA256:8964F1FE20BD22829AA12283E7E59515E7FC658348810E00C55A4C6C1C368628 |
PID | Process | Method | HTTP Code | IP | URL | CN | Type | Size | Reputation |
---|---|---|---|---|---|---|---|---|---|
3792 | iexplore.exe | GET | 200 | 13.71.121.15:80 | http://www.hcltss-lms.com/theme/image.php/hclt/theme/1583309937/darkgrain | IN | image | 3.40 Kb | unknown |
3792 | iexplore.exe | GET | 200 | 13.71.121.15:80 | http://www.hcltss-lms.com/login/index.php | IN | html | 5.87 Kb | unknown |
3792 | iexplore.exe | GET | 200 | 13.71.121.15:80 | http://www.hcltss-lms.com/theme/jquery.php/core/ui-1.11.4/theme/smoothness/jquery-ui.min.css | IN | text | 7.20 Kb | unknown |
3792 | iexplore.exe | GET | 200 | 13.71.121.15:80 | http://www.hcltss-lms.com/theme/javascript.php/hclt/1583309937/footer | IN | text | 38.3 Kb | unknown |
3792 | iexplore.exe | GET | 200 | 13.71.121.15:80 | http://www.hcltss-lms.com/theme/styles.php/hclt/1583309937/all | IN | text | 140 Kb | unknown |
3792 | iexplore.exe | GET | 200 | 13.71.121.15:80 | http://www.hcltss-lms.com/theme/yui_combo.php?m/1583309937/filter_oembed/powerbiloader/powerbiloader-min.js | IN | text | 566 b | unknown |
3792 | iexplore.exe | GET | 200 | 13.71.121.15:80 | http://www.hcltss-lms.com/theme/yui_combo.php?m/1583309937/core/event/event-min.js&m/1583309937/filter_mathjaxloader/loader/loader-min.js | IN | text | 798 b | unknown |
3792 | iexplore.exe | GET | 200 | 13.71.121.15:80 | http://www.hcltss-lms.com/theme/font.php/hclt/theme/1583309937/bebasneue_regular-webfont.eot | IN | eot | 17.4 Kb | unknown |
3792 | iexplore.exe | GET | 200 | 13.71.121.15:80 | http://www.hcltss-lms.com/theme/image.php/hclt/core/1583309937/help | IN | image | 691 b | unknown |
3792 | iexplore.exe | GET | 200 | 13.71.121.15:80 | http://www.hcltss-lms.com/theme/image.php/hclt/theme/1583309937/login-bg1 | IN | image | 316 Kb | unknown |
PID | Process | IP | Domain | ASN | CN | Reputation |
---|---|---|---|---|---|---|
— | — | 152.199.19.161:443 | iecvlist.microsoft.com | MCI Communications Services, Inc. d/b/a Verizon Business | US | whitelisted |
3792 | iexplore.exe | 209.197.3.15:80 | netdna.bootstrapcdn.com | Highwinds Network Group, Inc. | US | whitelisted |
2892 | iexplore.exe | 204.79.197.200:80 | www.bing.com | Microsoft Corporation | US | whitelisted |
3792 | iexplore.exe | 13.71.121.15:80 | www.hcltss-lms.com | Microsoft Corporation | IN | unknown |
— | — | 13.71.121.15:80 | www.hcltss-lms.com | Microsoft Corporation | IN | unknown |
Domain | IP | Reputation |
---|---|---|
www.hcltss-lms.com |
| unknown |
api.bing.com |
| whitelisted |
www.bing.com |
| whitelisted |
netdna.bootstrapcdn.com |
| whitelisted |
iecvlist.microsoft.com |
| whitelisted |
r20swj13mr.microsoft.com |
| whitelisted |