Malware Library 2021 (ia801400.us.archive.org)

Warning!!: Links starts with hxxp or hxxps are dangerous, you shouldn’t open them.

VT → https://www.virustotal.com/gui/file/acae64fb96c896a93e45563fad12679c4904c23e9c84bef86c6bb1662b2a9fb7/detection

Phishing → hxxp://archive.org/download/w___srthttpswww.verajohn.commarketingvjlp5306-bvj-lan-jp-pro-livecasino-v2-0520u/
Facebook Post → https://www.facebook.com/565325056859272/posts/httpsia801400usarchiveorg9itemsecoumbertolaestructuraausenteintroduccionalasemio/3414289781962771/

Redirectors → hxxps://worddocs.page.link/oySD

Known Extensions download: zip, tar, exe, 7z, avi, mp3, mp4, iso, pdf, html, hta, vbs, vba

image

Processing: lightreport-2e95d045ff86903502b52f5fd0976aad.html…

Found X connections with these countries: Russia, US, UK, Bulgaria, German, Italia, Slovakia, Arábia:

  • Suspicious (France, Netherlands)

Found X connections with these websites: Discord, Archive.org, Google Books (books.google.com)

Found X youtube channels:
https://www.youtube.com/channel/UClalI8hJm9q7nOEim6ojMrQ

Credits:
Urlscan (https://urlscan.io/search/#ia801400.us.archive.org)
VirusTotal
UrlHaus (https://urlhaus.abuse.ch/url/1504376/)
Joe Sandbox → <file:///F:/lightreport-2e95d045ff86903502b52f5fd0976aad.html> | https://www.joesandbox.com/analysis/394453/0/lighthtml?download=1
Github Phishing Database → https://github.com/mitchellkrogza/Phishing.Database (Removed due false positive)
Twitter → See the picture
image
MalwareURL → https://www.malwareurl.com/ns_listing.php?as=AS7941