Report - winentrance.in/ss/tt/tt-without-data.zip

Report Overview

Submitted URL
winentrance.in/ss/tt/tt-without-data.zip
IP
148.66.136.66
ASN
#26496 AS-26496-GO-DADDY-COM-LLC
Submitted
2024-05-10 10:25:42
Access
public
Website Title
0byte Mini
Final URL
winentrance.in/ss/tt/tt-without-data.zip
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
4
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
winentrance.in	unknown	2007-03-27	2015-05-05	2022-12-14	826 B	9.1 kB	148.66.136.66
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-05-10	343 B	950 B	142.250.74.106
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-05-10	441 B	18 kB	216.58.207.227

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2024-05-10 10:25:18	low	148.66.136.66	Client IP	ET INFO Observed ZeroSSL SSL/TLS Certificate
2024-05-10 10:25:18	low	148.66.136.66	Client IP	ET INFO Observed ZeroSSL SSL/TLS Certificate
2024-05-10 10:25:18	low	148.66.136.66	Client IP	ET INFO Observed ZeroSSL SSL/TLS Certificate
2024-05-10 10:25:18	low	148.66.136.66	Client IP	ET INFO Observed ZeroSSL SSL/TLS Certificate

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (0)

HTTP Transactions (4)

	URL	IP	Response	Size
	winentrance.in/ss/tt/tt-without-data.zip	148.66.136.66	200 OK	4.1 kB
URL User Request GET HTTP/1.1 winentrance.in/ss/tt/tt-without-data.zip IP 148.66.136.66:80 ASN #26496 AS-26496-GO-DADDY-COM-LLC File type HTML document, Unicode text, UTF-8 (with BOM) text, with very long lines (56212) Size 4.1 kB (4130 bytes) Hash 0307d59ec1cbafb2493603aa86d5728b 7c7e117dd29cf4bc6b71afc72d4f9f8330e828f0 95de4968c559aa019df199f84ba55f10776843d68afe4b1f62ec5d08419887ff HTTP Headers `GET /ss/tt/tt-without-data.zip HTTP/1.1 Host: winentrance.in User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Fri, 10 May 2024 10:25:18 GMT Server: Apache X-Powered-By: PHP/7.3.33 Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate Pragma: no-cache Set-Cookie: PHPSESSID=af31b099a98a7215648e60fa8b95fe6b; path=/ Upgrade: h2,h2c Connection: Upgrade, Keep-Alive Vary: Accept-Encoding Content-Encoding: gzip Content-Length: 4130 Keep-Alive: timeout=5 Content-Type: text/html;charset=utf-8`

	fonts.googleapis.com/css?family=VT323	142.250.74.106	200 OK	413 B
URL GET HTTP/1.1 fonts.googleapis.com/css?family=VT323 IP 142.250.74.106:80 ASN #15169 GOOGLE Requested by http://winentrance.in/ss/tt/tt-without-data.zip File type ASCII text Size 413 B (413 bytes) Hash edfa180f99ef5dd8a8307c38d569b942 eb036ede3750000dbf7c231927027a1b6c5c1b8a 392fda968981243c3b5b239cd6a91c1d97e496ea057e1601129fe2c2b26ada04 HTTP Headers `GET /css?family=VT323 HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://winentrance.in/ Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Content-Type: text/css; charset=utf-8 Access-Control-Allow-Origin: * Timing-Allow-Origin: * Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin Expires: Fri, 10 May 2024 10:25:19 GMT Date: Fri, 10 May 2024 10:25:19 GMT Cache-Control: private, max-age=86400 Cross-Origin-Opener-Policy: same-origin-allow-popups Cross-Origin-Resource-Policy: cross-origin Content-Encoding: gzip Transfer-Encoding: chunked Server: ESF X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff

	fonts.gstatic.com/s/vt323/v17/pxiKyp0ihIEF2isfFJU.woff2	216.58.207.227	200 OK	18 kB
URL GET HTTP/1.1 fonts.gstatic.com/s/vt323/v17/pxiKyp0ihIEF2isfFJU.woff2 IP 216.58.207.227:80 ASN #15169 GOOGLE Requested by http://winentrance.in/ss/tt/tt-without-data.zip File type Web Open Font Format (Version 2), TrueType, length 17668, version 1.0 Size 18 kB (17668 bytes) Hash 83f07273ba29e7554a8af1efb23d14a9 8307380e3ccd8a7843f3c7a4bf11a22134544f2a dc6a870a116251f87186b5a787702fc7bf6939f2126f66ca82e0a7142a6ba9f6 HTTP Headers `GET /s/vt323/v17/pxiKyp0ihIEF2isfFJU.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: http://winentrance.in DNT: 1 Connection: keep-alive Referer: http://fonts.googleapis.com/ Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes Cross-Origin-Resource-Policy: cross-origin Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes" Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} Timing-Allow-Origin: * Content-Length: 17668 X-Content-Type-Options: nosniff Server: sffe X-XSS-Protection: 0 Date: Thu, 09 May 2024 21:33:41 GMT Expires: Fri, 09 May 2025 21:33:41 GMT Cache-Control: public, max-age=31536000 Last-Modified: Wed, 27 Apr 2022 15:50:13 GMT Content-Type: font/woff2 Age: 46298

	winentrance.in/favicon.ico	148.66.136.66	200 OK	4.1 kB
URL GET HTTP/1.1 winentrance.in/favicon.ico IP 148.66.136.66:80 ASN #26496 AS-26496-GO-DADDY-COM-LLC Requested by http://winentrance.in/ss/tt/tt-without-data.zip File type HTML document, Unicode text, UTF-8 (with BOM) text, with very long lines (56212) Size 4.1 kB (4130 bytes) Hash 0307d59ec1cbafb2493603aa86d5728b 7c7e117dd29cf4bc6b71afc72d4f9f8330e828f0 95de4968c559aa019df199f84ba55f10776843d68afe4b1f62ec5d08419887ff HTTP Headers `GET /favicon.ico HTTP/1.1 Host: winentrance.in User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://winentrance.in/ss/tt/tt-without-data.zip Cookie: PHPSESSID=af31b099a98a7215648e60fa8b95fe6b Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Fri, 10 May 2024 10:25:19 GMT Server: Apache X-Powered-By: PHP/7.3.33 Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate Pragma: no-cache Upgrade: h2,h2c Connection: Upgrade, Keep-Alive Vary: Accept-Encoding Content-Encoding: gzip Content-Length: 4130 Keep-Alive: timeout=5 Content-Type: text/html;charset=utf-8`