Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Strange Analysis Results #383

Open
MaxwellDPS opened this issue Nov 6, 2024 · 1 comment
Open

Strange Analysis Results #383

MaxwellDPS opened this issue Nov 6, 2024 · 1 comment
Assignees

Comments

@MaxwellDPS
Copy link

Howdy @buffer!

Hey, first off thug is pretty slick! Thus far when using it I get back a pretty solid report. But I have one site that seems to be stoping analysis with out errors but should be loading in much more than thug is showing.

I am not getting any errors even in debug, but it finishes in a few seconds and it seems like something is crashing or some anti-analysis is taking place.

URLScan shows all the loading in resources, but thug wont even with different profiles.
https://urlscan.io/result/dcdb4f69-79ae-47e8-a40f-41defb5529e5/#summary

Site I was scanning is

https://www.hpcwire.com

What thug returns

{
  "url": "http://www.hpcwire.com",
  "timestamp": "2024-11-06 18:45:23.611475",
  "logtype": "json-log",
  "thug": {
    "version": "6.9",
    "jsengine": {
      "engine": "Google V8",
      "version": "12.9.202.27"
    },
    "personality": {
      "useragent": "win7chrome45"
    },
    "plugins": {
      "acropdf": "9.1.0",
      "javaplugin": "1.6.0.32",
      "shockwaveflash": "10.0.64.0"
    },
    "options": {
      "local": false,
      "nofetch": false,
      "proxy": null,
      "events": [],
      "delay": 0,
      "referer": "google.com",
      "timeout": 300,
      "threshold": 0,
      "extensive": false
    }
  },
  "awis": [],
  "behavior": [
    {
      "description": "[window open redirection] http://www.hpcwire.com -\u003E http://www.hpcwire.com",
      "cve": "",
      "snippet": "",
      "method": "Dynamic Analysis",
      "timestamp": "2024-11-06 18:45:23.667388"
    },
    {
      "description": "http://www.hpcwire.com -- window open --\u003E http://www.hpcwire.com",
      "cve": "",
      "snippet": "",
      "method": "Dynamic Analysis",
      "timestamp": "2024-11-06 18:45:23.667537"
    }
  ],
  "classifiers": [],
  "code": [],
  "connections": [
    {
      "source": "http://www.hpcwire.com",
      "destination": "http://www.hpcwire.com",
      "method": "window open",
      "flags": {

      }
    }
  ],
  "cookies": [],
  "exploits": [],
  "favicons": [],
  "files": [],
  "images": [],
  "locations": [],
  "screenshots": [],
  "features": {

  },
  "graph": "\u003C?xml version=\"1.0\" encoding=\"UTF-8\" standalone=\"no\"?\u003E\n\u003C!DOCTYPE svg PUBLIC \"-//W3C//DTD SVG 1.1//EN\"\n \"http://www.w3.org/Graphics/SVG/1.1/DTD/svg11.dtd\"\u003E\n\u003C!-- Generated by graphviz version 2.43.0 (0)\n --\u003E\n\u003C!-- Pages: 1 --\u003E\n\u003Csvg width=\"255pt\" height=\"77pt\"\n viewBox=\"0.00 0.00 255.00 77.00\" xmlns=\"http://www.w3.org/2000/svg\" xmlns:xlink=\"http://www.w3.org/1999/xlink\"\u003E\n\u003Cg id=\"graph0\" class=\"graph\" transform=\"scale(1 1) rotate(0) translate(4 73)\"\u003E\n\u003Cpolygon fill=\"white\" stroke=\"transparent\" points=\"-4,4 -4,-73 251,-73 251,4 -4,4\"/\u003E\n\u003C!-- http://www.hpcwire.com --\u003E\n\u003Cg id=\"node1\" class=\"node\"\u003E\n\u003Ctitle\u003Ehttp://www.hpcwire.com\u003C/title\u003E\n\u003Cellipse fill=\"none\" stroke=\"black\" cx=\"123.5\" cy=\"-18\" rx=\"123.5\" ry=\"18\"/\u003E\n\u003Ctext text-anchor=\"middle\" x=\"123.5\" y=\"-14.3\" font-family=\"Times,serif\" font-size=\"14.00\"\u003Ehttp://www.hpcwire.com\u003C/text\u003E\n\u003C/g\u003E\n\u003C!-- http://www.hpcwire.com->http://www.hpcwire.com --\u003E\n\u003Cg id=\"edge1\" class=\"edge\"\u003E\n\u003Ctitle\u003Ehttp://www.hpcwire.com->http://www.hpcwire.com\u003C/title\u003E\n\u003Cpath fill=\"none\" stroke=\"black\" d=\"M79.91,-35.04C71.01,-44.86 85.54,-54 123.5,-54 147.22,-54 161.79,-50.43 167.22,-45.35\"/\u003E\n\u003Cpolygon fill=\"black\" stroke=\"black\" points=\"170.72,-44.99 167.09,-35.04 163.72,-45.08 170.72,-44.99\"/\u003E\n\u003Ctext text-anchor=\"middle\" x=\"123.5\" y=\"-57.8\" font-family=\"Times,serif\" font-size=\"14.00\"\u003E[1] window open\u003C/text\u003E\n\u003C/g\u003E\n\u003C/g\u003E\n\u003C/svg\u003E\n",
}
@buffer buffer self-assigned this Nov 30, 2024
@buffer
Copy link
Owner

buffer commented Nov 30, 2024

Sorry for the late response. I will take a look at it as soon as possible. Thanks for reporting!

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

No branches or pull requests

2 participants