Report - sasa.proteccs.de/

Report Overview

Submitted URL
sasa.proteccs.de/
IP
81.169.145.152
ASN
#6724 Strato AG
Submitted
2024-04-18 07:23:48
Access
public
Website Title
hizmeto.com/wp-content/uploads/-/PostbankV3/
Final URL
hizmeto.com/wp-content/uploads/-/PostbankV3/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
1
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
sasa.proteccs.de	unknown	unknown	2022-09-26	2022-09-26	387 B	545 B	81.169.145.152
hizmeto.com	unknown	unknown	No data	No data	498 B	1.1 kB	167.172.184.40

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2024-04-18 07:23:22	medium	81.169.145.152	Client IP	ET INFO TLS Handshake Failure

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (0)

HTTP Transactions (2)

	URL	IP	Response	Size
	sasa.proteccs.de/	81.169.145.152		260 B
URL User Request GET sasa.proteccs.de/ IP 81.169.145.152:0 ASN #6724 Strato AG File type HTML document, ASCII text Size 260 B (260 bytes) Hash 9c56ba4ac837f61f4bbfc20c658ac487 d43bfaaa6b864a1d139c7d4de1ec45c86f1f823b 86e9b7aa0a641bfee34fd27925595def962cc5a8cc5a06e8cc5514e94c2a4bc4 HTTP Headers `GET / HTTP/1.1 Host: sasa.proteccs.de User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 301 Moved Permanently Date: Thu, 18 Apr 2024 07:23:22 GMT Server: Apache/2.4.59 (Unix) Location: https://hizmeto.com/wp-content/uploads/-/PostbankV3/ Content-Length: 260 Keep-Alive: timeout=3, max=100 Connection: Keep-Alive Content-Type: text/html; charset=iso-8859-1`

	hizmeto.com/wp-content/uploads/-/PostbankV3/	167.172.184.40	404 Not Found	109 B
URL User Request GET HTTP/1.1 hizmeto.com/wp-content/uploads/-/PostbankV3/ IP 167.172.184.40:443 ASN #14061 DIGITALOCEAN-ASN Certificate IssuerLet's Encrypt Subjectapi.hizmeto.com Fingerprint37:B4:E8:13:77:80:B1:9A:7B:EC:BA:F0:9A:77:96:16:4D:4D:9C:AD ValidityWed, 21 Feb 2024 08:18:25 GMT - Tue, 21 May 2024 08:18:24 GMT File type JSON text data Size 109 B (109 bytes) Hash 5128eb30184ae7558afa5496d6468cce df82651d557db9c5238c36096ae5da4b05d1fc92 080df956651bfe08e0f0627e339ffe0aa6ca38e631031ef288b0ef885f8da113 HTTP Headers `GET /wp-content/uploads/-/PostbankV3/ HTTP/1.1 Host: hizmeto.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 404 Not Found Server: nginx/1.24.0 (Ubuntu) Date: Thu, 18 Apr 2024 07:23:24 GMT Content-Type: application/json; charset=utf-8 Transfer-Encoding: chunked Connection: keep-alive Content-Security-Policy: default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self';img-src 'self' data:;object-src 'none';script-src 'self';script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests Cross-Origin-Opener-Policy: same-origin Origin-Agent-Cluster: ?1 Referrer-Policy: no-referrer Strict-Transport-Security: max-age=15552000; includeSubDomains X-Content-Type-Options: nosniff X-DNS-Prefetch-Control: off X-Download-Options: noopen X-Frame-Options: SAMEORIGIN X-Permitted-Cross-Domain-Policies: none X-XSS-Protection: 0 Vary: Origin, Accept-Encoding Access-Control-Allow-Credentials: true ETag: W/"5f-34JlHVV9ucUjjDYJauXaSwXR/JI" Content-Encoding: gzip