URL User Request GET HTTP/1.1IP51.91.79.17:443
CertificateIssuerLet's Encrypt Subjecttemp.sh Fingerprint41:CB:B2:D7:55:C1:7B:F8:AC:BB:C2:78:14:C2:B4:03:73:FD:AF:19 ValiditySun, 25 Feb 2024 21:03:27 GMT - Sat, 25 May 2024 21:03:26 GMT
File typeHTML document, Unicode text, UTF-8 text Hashd087c84bc56ddcb0d0016f8910b06452 82ae96337cda8b15e86d4e0113866fd19340b41c 7e058bb6a8952b3543118c673c0bc354493be6080151dd6eca1180b95b69759c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /RxRbk/sk64.dll HTTP/1.1
Host: temp.sh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Thu, 28 Mar 2024 08:31:48 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: gzip
|
IP51.91.79.17:443
Requested byhttps://temp.sh/RxRbk/sk64.dll CertificateIssuerLet's Encrypt Subjecttemp.sh Fingerprint41:CB:B2:D7:55:C1:7B:F8:AC:BB:C2:78:14:C2:B4:03:73:FD:AF:19 ValiditySun, 25 Feb 2024 21:03:27 GMT - Sat, 25 May 2024 21:03:26 GMT
File typeHTML document, ASCII text Hash7dfb9a4219d20c6babc4877451844e3c 8b56a18d01c00f757df29faeb95b2711ecd3cd18 9177a352dcbf8875ebb2e22e682760d47faa4d77398add153dd7084e7568c5bc
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: temp.sh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://temp.sh/RxRbk/sk64.dll
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 NOT FOUND
Server: nginx/1.18.0 (Ubuntu)
Date: Thu, 28 Mar 2024 08:31:49 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: gzip
|