Avast WEBforum

Other => Viruses and worms => Topic started by: polonus on January 09, 2019, 06:01:27 PM

Title: Suspicious networking with Zoho mail-ad-campaign
Post by: polonus on January 09, 2019, 06:01:27 PM
Re: https://urlscan.io/result/7a89bb58-aaca-4bc4-8d30-741d331d4107/
Results: https://privacyscore.org/site/119242/  (third party embeds)
Re: https://aw-snap.info/file-viewer/?protocol=secure&ref_sel=GSP2&ua_sel=ff&chk-cache=&fs=1&tgt=el58Lm18W2xsW3N0LW18bnxney5eXW1gdXw%3D~enc

On those 3rd party embeds: https://otx.alienvault.com/indicator/domain/zohostatic.com
Suspicious: https://www.joesandbox.com/analysis/38900/0/executive
Re: https://www.hybrid-analysis.com/sample/2c6e14a6e2aeb4241e8d7a0751bad60fda9f21cf165c1d1c49c1c50b28a1e344?environmentId=1 
Consider also: https://gist.github.com/htsks/b19188146c7172a9bdc8

polonus