Report Overview
Submitted URL
161.129.66.7/winit/it87t0o9p9y.txt
IP
161.129.66.7
ASN
#207083 HostSlim B.V.
Submitted
2024-04-17 07:45:29
Access
public
Website Title
161.129.66.7/winit/it87t0o9p9y.txt
Final URL
161.129.66.7/winit/it87t0o9p9y.txt
Tags
urlquery detections
Suspicious - Base64 encoded file
Detections
urlquery
2
Network Intrusion Detection
0
Threat Detection Systems
6
Domain Summary
Domain / FQDN | Rank | Registered | First Seen | Last Seen | Sent | Received | IP |
---|---|---|---|---|---|---|---|
161.129.66.7 | unknown | unknown | No data | No data | 760 B | 690 kB | 161.129.66.7 |
Related reports
Network Intrusion Detection Systems
Suricata /w Emerging Threats Pro
Threat Detection Systems
Public InfoSec YARA rules
Scan Date | Severity | Indicator | Alert |
---|---|---|---|
2024-04-17 | medium | 161.129.66.7/winit/it87t0o9p9y.txt | Detects an base64 encoded executable with reversed characters |
OpenPhish
No alerts detected
PhishTank
No alerts detected
mnemonic secure dns
No alerts detected
Quad9 DNS
Scan Date | Severity | Indicator | Alert |
---|---|---|---|
2024-04-17 | medium | 161.129.66.7 | Sinkholed |
2024-04-17 | medium | 161.129.66.7 | Sinkholed |
ThreatFox
No alerts detected
Files detected
URL
161.129.66.7/winit/it87t0o9p9y.txt
IP
161.129.66.7
ASN
#207083 HostSlim B.V.
File type
PE32 executable (GUI) Intel 80386, for MS Windows, 7 sections
Size
494 kB (494080 bytes)
Hash
5aad5bb4abcde9aac0af952860e1394b
1f7afa4621b3dd392440fde7e49ae685f7cc7a24
JavaScript (0)
HTTP Transactions (2)
URL | IP | Response | Size | |||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
161.129.66.7/winit/it87t0o9p9y.txt | 161.129.66.7 | 200 OK | 659 kB | |||||||||||||
Detections
HTTP Headers
| ||||||||||||||||
161.129.66.7/favicon.ico | 161.129.66.7 | 200 OK | 31 kB | |||||||||||||
Detections
HTTP Headers
| ||||||||||||||||