Report Overview
Visitedpublic
2025-12-07 22:30:05
Tags
Submit Tags
URL
t-mobile.xchty.icu/?qr=tv5wn5
Finishing URL
t-mobile.xchty.icu/?qr=tv5wn5
IP / ASN
172.67.207.19
Title
T-Mobile Tuesdays - Get Free Stuff & Great Deals | T-Mobile
Detections
urlquery
0
Network Intrusion Detection
1
Threat Detection Systems
2
Host Summary
| Host | Rank | Registered | First Seen | Last Seen | Sent | Received | IP | Fingerprints |
|---|---|---|---|---|---|---|---|---|
t-mobile.xchty.icu 50 alert(s) on this Host | unknown | 2025-12-04 | 2025-12-07 | 2025-12-07 | 11 kB | 1.9 MB | 104.21.37.101 |  |
ipapi.co | 7936 | 2016-04-19 | 2017-01-31 | 2025-12-01 | 429 B | 2.5 kB | 104.26.8.44 | |
Cloudflare (CDN)
Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.Related reports
Network Intrusion Detection Systems
Suricata /w Emerging Threats Pro
| Timestamp | Severity | Source IP | Destination IP | Alert |
|---|---|---|---|---|
| medium | 172.18.0.10 | 104.21.37.101 | ET INFO Suspicious Domain (*.icu) in TLS SNI |
Threat Detection Systems
| Detection System | Indicator | Verdict | Alert |
|---|---|---|---|
| Cloudflare DNS | t-mobile.xchty.icu | malicious | Sinkholed |
| DNS4EU | t-mobile.xchty.icu | malicious | Sinkholed |
JavaScript (18)
| HASH | FROM | Size | First Seen | Last Seen | |
|---|---|---|---|---|---|
| f972fe0078a066268845a39bebc41ccc | DocumentWrite | 112 kB | 2025-11-01 | 2026-01-07 | |
Introduced by DocumentWrite First Seen 2025-11-01 Last Seen 2026-01-07 Times Seen 526 Size 112 kB (111871 bytes) MD5 f972fe0078a066268845a39bebc41ccc SHA1 6ded1571ddba532aef56867d8a8968d5c8be3765 Loading... | |||||
HTTP Transactions (26)
| URL | IP | Response | Size |
|---|