Report Overview
Visitedpublic
2025-08-08 12:39:18
Submit Tags
URL
codruta.info/wp-includes/sitemaps/oxjvstg/mbkqdcu/1duwmes/fatt/fattura.html
Finishing URL
codruta.info/wp-includes/sitemaps/oxjvstg/mbkqdcu/1duwmes/fatt/fattura.html
IP / ASN
77.81.24.47
Title
codruta.info/wp-includes/sitemaps/oxjvstg/mbkqdcu/1duwmes/fatt/fattura.html
Phishing - Generic phishing
Suspicious - Suspicious Javascript code
Detections
urlquery
3
Network Intrusion Detection
1
Threat Detection Systems
3
Host Summary
| Host | Rank | Registered | First Seen | Last Seen | Sent | Received | IP | Fingerprints |
|---|---|---|---|---|---|---|---|---|
ajax.googleapis.com | 12905 | 2005-01-25 | 2012-05-22 | 2025-08-06 | 858 B | 173 kB |  142.250.74.170 | |
www.google.com | 7 | 1997-09-15 | 2015-05-10 | 2025-08-06 | 882 B | 624 B | 142.250.74.68 | |
fonts.googleapis.com | 8877 | 2005-01-25 | 2012-05-23 | 2025-08-06 | 446 B | 2.0 kB | 142.250.178.106 | |
ka-f.fontawesome.com | 3598 | 2012-10-18 | 2019-12-17 | 2025-08-01 | 1.5 kB | 168 kB |  172.67.139.119 |    |
kit.fontawesome.com | 1868 | 2012-10-18 | 2019-03-29 | 2025-08-06 | 433 B | 16 kB | 172.64.147.188 | |
codruta.info 5 alert(s) on this Host | unknown | unknown | 2013-09-04 | 2023-04-15 | 531 B | 254 kB | 77.81.24.47 |            |
stackpath.bootstrapcdn.com | 2467 | 2012-05-25 | 2018-04-05 | 2025-08-06 | 435 B | 52 kB | 104.18.10.207 | |
image.thum.io | 282725 | 2016-02-04 | 2017-02-03 | 2025-08-05 | 430 B | 101 B | 54.205.142.59 | |
code.jquery.com | 634 | 2005-12-10 | 2012-05-21 | 2025-08-06 | 1.3 kB | 430 kB | 151.101.66.137 |   |
maxcdn.bootstrapcdn.com | 724 | 2012-05-25 | 2014-06-18 | 2025-08-06 | 459 B | 50 kB | 104.18.11.207 | |
cdnjs.cloudflare.com | 235 | 2009-02-17 | 2012-05-23 | 2025-08-06 | 894 B | 36 kB | 104.17.25.14 | |
Amazon CloudFront (CDN)
Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.Amazon Web Services (PaaS)
Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.Cloudflare (CDN)
Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.Popper:1.12.9 (Miscellaneous)
Popper is a positioning engine, its purpose is to calculate the position of an element to make it possible to position it near a given reference element.OpenSSL:1.0.2k (Web server extensions)
OpenSSL is a software library for applications that secure communications over computer networks against eavesdropping or need to identify the party at the other end.jQuery CDN (CDN)
jQuery CDN is a way to include jQuery in your website without actually downloading and keeping it your website's folder.Apache HTTP Server:2.4.62 (Web servers)
Apache is a free and open-source cross-platform web server software.Google Hosted Libraries (CDN)
Google Hosted Libraries is a stable, reliable, high-speed, globally available content distribution network for the most popular, open-source JavaScript libraries.UNIX (Operating systems)
Unix is a family of multitasking, multiuser computer operating systems.Bootstrap:4.0.0 (UI frameworks)
Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.BootstrapCDN:4.0.0 (CDN)
BootstrapCDN is a powerful and reliable Content Delivery Network (CDN) that delivers static resources, including CSS, JavaScript, and font files, for the widely-used Bootstrap framework. By leveraging multiple server locations worldwide, BootstrapCDN accelerates website loading times, ensuring a smooth and visually appealing user experience. Additionally, it ensures website compatibility with various devices and browsers. The service reduces bandwidth usage and server load, improving web performance for developers and end-users alike.Axios:0.20.0 (JavaScript libraries)
Promise based HTTP client for the browser and node.jsjQuery:2.2.4 (JavaScript libraries)
jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.Font Awesome (Font scripts)
Font Awesome is a font and icon toolkit based on CSS and Less.cdnjs (CDN)
cdnjs is a free distributed JS library delivery service.Nginx (Web servers, Reverse proxies)
Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.Varnish (Caching)
Varnish is a reverse caching proxy.Related reports
Network Intrusion Detection Systems
Suricata /w Emerging Threats Pro
| Timestamp | Severity | Source IP | Destination IP | Alert |
|---|---|---|---|---|
| low | 172.18.0.23 | 54.205.142.59 | ET INFO Observed Commonly Actor Abused Domain (image .thum .io in TLS SNI) |
Threat Detection Systems
| Detection System | Indicator | Verdict | Alert |
|---|---|---|---|
| YARAhub by abuse.ch | codruta.info/wp-includes/sitemaps/oxjvstg/mbkqdcu/1duwmes/fatt/fattura.html | malware | Detects file containing Telegram Bot API |
| Quad9 DNS | codruta.info | malicious | Sinkholed |
| PhishTank | codruta.info/wp-includes/sitemaps/oxjvstg/mbkqdcu/1duwmes/fatt/fattura.html | phishing | Phishing - Other |
Telegram Bot detected (1)
URL
codruta.info/wp-includes/sitemaps/oxjvstg/mbkqdcu/1duwmes/fatt/fattura.html
IP / ASN
77.81.24.47
Token
7563969871:AAGBxLJZE-DmiLnfxtUFD1MrKl2IdZwlvsI
Bot Overview
User ID7563969871
UsernameBbbrusjsbot
First NameDropshit
Last NameN/A
Chat Info
Chat ID6117163344
Chat Typeprivate
TitleN/A
User Count2
Admins0
Pending Msgs0
JavaScript (12)
No JavaScripts
HTTP Transactions (18)
| URL | IP | Response | Size |
|---|