Report - 117.222.188.122/

Report Overview

Submitted URL
117.222.188.122/
IP
117.222.188.122
ASN
#9829 National Internet Backbone
Submitted
2024-04-18 10:16:11
Access
public
Website Title
Login
Final URL
117.222.188.122/cgi-bin/index2.asp
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
12

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
117.222.188.122	unknown	unknown	No data	No data	2.6 kB	74 kB	117.222.188.122

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-04-18	medium	117.222.188.122	Sinkholed
2024-04-18	medium	117.222.188.122	Sinkholed
2024-04-18	medium	117.222.188.122	Sinkholed
2024-04-18	medium	117.222.188.122	Sinkholed
2024-04-18	medium	117.222.188.122	Sinkholed
2024-04-18	medium	117.222.188.122	Sinkholed

ThreatFox

No alerts detected

JavaScript (9)

	URL	Size	First Seen	Last Seen
	117.222.188.122/cgi-bin/index2.asp	0 B	2023-03-07	2024-05-01
Pretty URL 117.222.188.122/cgi-bin/index2.asp IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-01 00:32:01 Times Seen37233148 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	unknown	11 B	2023-04-15	2024-04-18
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2023-04-15 00:36:10 Last Seen2024-04-18 14:15:52 Times Seen141 Hash 62c8364909daa41542b8816972fea7d3 f5a6d90acd40a477e791d73081594d6be9963346 b7dd020701ae3b6f4a7771ee3c51fb83ceb2e167f59e7da1d32c0fb5f737698d Loading...

	117.222.188.122/cgi-bin/index2.asp	0 B	2023-03-07	2024-05-01
Pretty URL 117.222.188.122/cgi-bin/index2.asp IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-01 00:32:01 Times Seen37233148 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	117.222.188.122/cgi-bin/index2.asp	0 B	2023-03-07	2024-05-01
Pretty URL 117.222.188.122/cgi-bin/index2.asp IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-01 00:32:01 Times Seen37233148 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	117.222.188.122/cgi-bin/index2.asp	253 B	2023-04-16	2024-04-18
Pretty URL 117.222.188.122/cgi-bin/index2.asp IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-16 17:15:54 Last Seen2024-04-18 14:15:52 Times Seen100 Hash 233b0ea17ee3b164c64efa7365e47740 f46b7f390e2f7101502f18d8deafe80d5f118e0e 492751b111b7de7cf48bb47dabcda11fe923bd42d621d1bf0cfdf891e8dc66c8 Loading...

	117.222.188.122/cgi-bin/index2.asp	0 B	2023-03-07	2024-05-01
Pretty URL 117.222.188.122/cgi-bin/index2.asp IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-01 00:32:01 Times Seen37233148 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	117.222.188.122/JS/util.js	55 kB	2023-03-07	2024-04-18
Pretty URL 117.222.188.122/JS/util.js IP 117.222.188.122 ASN #9829 National Internet Backbone Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:10:42 Last Seen2024-04-18 14:15:52 Times Seen106 Hash c0bba93822c41e7bc2b97cbeacf68f2f 5c5a2f3edede89e0d0c98bf371a1080682c6b958 f497c73b444e1b0ffb5134baa29eaabf2539dd084746309ac59672c1077041cd Loading...

	117.222.188.122/cgi-bin/index2.asp	0 B	2023-03-07	2024-05-01
Pretty URL 117.222.188.122/cgi-bin/index2.asp IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-01 00:32:01 Times Seen37233148 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

		Size	First Seen	Last Seen
	#1 Write - de9b817f913a7a65a9669e629ebae957	9 B	2023-03-07	2024-04-18
Pretty Observations First Seen2023-03-07 12:10:42 Last Seen2024-04-18 14:15:52 Times Seen109 Hash de9b817f913a7a65a9669e629ebae957 0b3a4bd9dc2afd8acb1cfaa25ae0ab949ab4e66f 02e740109863631e1c35cdb5ff0a1583058f2a2167abaae30b6df96999da1159 Loading...

HTTP Transactions (6)

URL IP Response Size

117.222.188.122/

117.222.188.122

7.9 kB

URL
117.222.188.122/
IP
117.222.188.122:0
ASN
#9829 National Internet Backbone

File type
data
Size
7.9 kB (7854 bytes)
Hash
93f33d46564a71747aa08676ca2764eb
1ecefebdc921473369e37242a9ce8f08c41ac6be
25499d7976589594229b201d05149b1edb313ab479d1a1c24a34a7691b9c5ab0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: 117.222.188.122
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.0 401 Unauthorized
Date: Thu, 18 Apr 2024 10:15:47 GMT
Server: Boa/0.94.13
Connection: close
Content-Type: text/html; charset=gb2312
Set-Cookie: SESSIONID=boasid633d1430;path=/;

117.222.188.122/JS/util.js

117.222.188.122

200 OK

55 kB

URL GET HTTP/1.0
117.222.188.122/JS/util.js
IP
117.222.188.122:80
ASN
#9829 National Internet Backbone

Requested by
http://117.222.188.122/cgi-bin/index2.asp

File type
ISO-8859 text, with CRLF line terminators
Size
55 kB (54639 bytes)
Hash
f83f363d6184a2bd2c72d605d046d037
27cf2a8a0b62afc5005b0a069b45877fdcfad02a
0e8fff3f9ec8bf1bb31409140793da051c394114b18e40a0f3ca19c54b5f6df7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /JS/util.js HTTP/1.1
Host: 117.222.188.122
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://117.222.188.122/cgi-bin/index2.asp
Cookie: SESSIONID=boasid633d1430
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.0 200 OK
Date: Thu, 18 Apr 2024 10:15:50 GMT
Server: Boa/0.94.13
Connection: Keep-Alive
Keep-Alive: timeout=10, max=100
Cache-Control: no-cache
Pragma: no-cache
Expires: 0
Content-Length: 54639
Last-Modified: Fri, 09 Aug 2019 07:51:00 GMT
Content-Type: text/plain

117.222.188.122/img/logo.png

117.222.188.122

200 OK

1.3 kB

URL GET HTTP/1.0
117.222.188.122/img/logo.png
IP
117.222.188.122:80
ASN
#9829 National Internet Backbone

Requested by
http://117.222.188.122/cgi-bin/index2.asp

File type
PNG image data, 330 x 126, 8-bit/color RGB, non-interlaced
Size
1.3 kB (1253 bytes)
Hash
3a9d9bf8740535465dcd695dfaa688da
29e210dd51c4b3e39574b8dac60f82268a0a4b46
9629580c1616f187ce32eab8351730bf15b095bb228194216b960e8b9870cabd

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /img/logo.png HTTP/1.1
Host: 117.222.188.122
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://117.222.188.122/cgi-bin/index2.asp
Cookie: SESSIONID=boasid633d1430
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.0 200 OK
Date: Thu, 18 Apr 2024 10:15:51 GMT
Server: Boa/0.94.13
Connection: Keep-Alive
Keep-Alive: timeout=10, max=99
Cache-Control: no-cache
Pragma: no-cache
Expires: 0
Content-Length: 1253
Last-Modified: Fri, 09 Aug 2019 07:51:00 GMT
Content-Type: text/plain

117.222.188.122/cgi-bin/index2.asp

0.0.0.0

0 B

URL User Request GET
117.222.188.122/cgi-bin/index2.asp
IP
0.0.0.0:0
ASN
#0

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cgi-bin/index2.asp HTTP/1.1
Host: 117.222.188.122
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://117.222.188.122/
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Cookie: SESSIONID=boasid633d1430
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

117.222.188.122/cgi-bin/index2.asp

117.222.188.122

200 OK

9.4 kB

URL User Request GET HTTP/1.0
117.222.188.122/cgi-bin/index2.asp
IP
117.222.188.122:80
ASN
#9829 National Internet Backbone

File type
HTML document, Unicode text, UTF-8 text, with very long lines (10635), with no line terminators
Size
9.4 kB (9358 bytes)
Hash
d7da4ad2bad4f9d09df9816b9f5480e6
45804a21d8f93eee872d47a09e4326ea925ab559
501dd62d3a46553a1bdb03c0d9e92bfaea57e65898b95b2ced3911544f7a570a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cgi-bin/index2.asp HTTP/1.1
Host: 117.222.188.122
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://117.222.188.122/
DNT: 1
Connection: keep-alive
Cookie: SESSIONID=boasid633d1430
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.0 200 OK
Content-type: text/html;charset=GB2312

117.222.188.122/favicon.ico

117.222.188.122

404 Not Found

153 B

URL GET HTTP/1.0
117.222.188.122/favicon.ico
IP
117.222.188.122:80
ASN
#9829 National Internet Backbone

Requested by
http://117.222.188.122/cgi-bin/index2.asp

File type
HTML document, ASCII text, with no line terminators
Size
153 B (153 bytes)
Hash
643db8e09e99c1612c0a85625fee8d97
b9b0d33d341d102c49ae44f44be1ad29d3d31004
c8c9e6f863f3c59be98de0d85076403251943a7297e2fabb76383ac39c5512f7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: 117.222.188.122
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://117.222.188.122/cgi-bin/index2.asp
Cookie: SESSIONID=boasid633d1430
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.0 404 Not Found
Date: Thu, 18 Apr 2024 10:15:51 GMT
Server: Boa/0.94.13
Connection: close
Content-Type: text/html; charset=ISO-8859-1

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (9)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Observations