Report - as-usps.top/

Report Overview

Submitted URL
as-usps.top/
IP
45.92.195.140
ASN
#29802 HVC-AS
Submitted
2024-05-09 02:17:17
Access
public
Website Title
*
Final URL
as-usps.top/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
36

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
as-usps.top	unknown	2022-09-20	2022-09-21	2023-03-24	8.1 kB	1.5 MB	45.92.195.140

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-05-09	medium	as-usps.top	Sinkholed
2024-05-09	medium	as-usps.top	Sinkholed
2024-05-09	medium	as-usps.top	Sinkholed
2024-05-09	medium	as-usps.top	Sinkholed
2024-05-09	medium	as-usps.top	Sinkholed
2024-05-09	medium	as-usps.top	Sinkholed
2024-05-09	medium	as-usps.top	Sinkholed
2024-05-09	medium	as-usps.top	Sinkholed
2024-05-09	medium	as-usps.top	Sinkholed
2024-05-09	medium	as-usps.top	Sinkholed
2024-05-09	medium	as-usps.top	Sinkholed
2024-05-09	medium	as-usps.top	Sinkholed
2024-05-09	medium	as-usps.top	Sinkholed
2024-05-09	medium	as-usps.top	Sinkholed
2024-05-09	medium	as-usps.top	Sinkholed
2024-05-09	medium	as-usps.top	Sinkholed
2024-05-09	medium	as-usps.top	Sinkholed
2024-05-09	medium	as-usps.top	Sinkholed

ThreatFox

No alerts detected

JavaScript (3)

	URL	Size	First Seen	Last Seen
	as-usps.top/public/fp.min.js	34 kB	2023-04-06	2024-05-16
Pretty URL as-usps.top/public/fp.min.js IP 45.92.195.140 ASN #29802 HVC-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-06 00:04:03 Last Seen2024-05-16 20:48:43 Times Seen15 Hash 7cc4bad3597064bb93b2c7f11998e62d d1d4f8bdb440bdd6bd6513a21d8535a6d8c55923 974c5556d6cedf264b5fb3e9661a33c1a00b22445f4547d23b91d5f641ebb2d2 Loading...

	as-usps.top/public/Information/jquery-2.1.3.min.js	84 kB	2023-03-07	2024-05-20
Pretty URL as-usps.top/public/Information/jquery-2.1.3.min.js IP 45.92.195.140 ASN #29802 HVC-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-05-20 02:02:43 Times Seen14642 Hash 32015dd42e9582a80a84736f5d9a44d7 41b4bfbaa96be6d1440db6e78004ade1c134e276 8af93bd675e1cfd9ecc850e862819fdac6e3ad1f5d761f970e409c7d9c63bdc3 Loading...

	as-usps.top/	894 B	2024-05-09	2024-05-09
Pretty URL as-usps.top/ IP 45.92.195.140 ASN #29802 HVC-AS Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-09 04:17:18 Last Seen2024-05-09 04:17:18 Times Seen1 Hash 6366f820b8885a806730bcbc530cdf4d 7c7e27d39fcac4e4843b53e1a9ad8803a05f7d92 7820e8064f2df589010dde2efba5c1d34d81528a3a743e9b0f70fb8ac7d606c2 Loading...

HTTP Transactions (18)

URL IP Response Size

as-usps.top/public/Index/hamburger.svg

45.92.195.140

200 OK

546 B

URL GET HTTP/2
as-usps.top/public/Index/hamburger.svg
IP
45.92.195.140:443
ASN
#29802 HVC-AS

Requested by
https://as-usps.top/
Certificate
IssuerLet's Encrypt
Subjectwww.as-usps.top
FingerprintDA:01:33:44:24:F1:A2:F8:75:00:77:3A:6E:8D:3A:F6:14:26:AC:B0
ValidityTue, 26 Mar 2024 14:29:06 GMT - Mon, 24 Jun 2024 14:29:05 GMT

File type
SVG Scalable Vector Graphics image
Size
546 B (546 bytes)
Hash
37c94e8de8729be2b0b9833bafa28f3b
c675396f6d65666dd6047b6e92cbd5429556dbac
b95f434286744e3dbaf5bc56f41d4ce2640da3038461502f7ac243a5931e9435

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /public/Index/hamburger.svg HTTP/1.1
Host: as-usps.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://as-usps.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 09 May 2024 02:16:53 GMT
content-type: image/svg+xml
content-length: 546
last-modified: Sat, 17 Jun 2023 12:33:06 GMT
etag: "648da802-222"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

as-usps.top/public/Index/logo_mobile.svg

45.92.195.140

200 OK

2.1 kB

URL GET HTTP/2
as-usps.top/public/Index/logo_mobile.svg
IP
45.92.195.140:443
ASN
#29802 HVC-AS

Requested by
https://as-usps.top/
Certificate
IssuerLet's Encrypt
Subjectwww.as-usps.top
FingerprintDA:01:33:44:24:F1:A2:F8:75:00:77:3A:6E:8D:3A:F6:14:26:AC:B0
ValidityTue, 26 Mar 2024 14:29:06 GMT - Mon, 24 Jun 2024 14:29:05 GMT

File type
SVG Scalable Vector Graphics image
Size
2.1 kB (2060 bytes)
Hash
f8ad388b3e39b860c97de0029ae98a21
9b032ef4ef4100dda1ba44be4836e6956b11387c
9685d6241f41ac71741d0ee9b242779f640cd3b1e64bb9bbcfb8798c5be503b2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /public/Index/logo_mobile.svg HTTP/1.1
Host: as-usps.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://as-usps.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 09 May 2024 02:16:53 GMT
content-type: image/svg+xml
content-length: 2060
last-modified: Sat, 17 Jun 2023 12:36:04 GMT
etag: "648da8b4-80c"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

as-usps.top/public/Index/search.svg

45.92.195.140

200 OK

1.5 kB

URL GET HTTP/2
as-usps.top/public/Index/search.svg
IP
45.92.195.140:443
ASN
#29802 HVC-AS

Requested by
https://as-usps.top/
Certificate
IssuerLet's Encrypt
Subjectwww.as-usps.top
FingerprintDA:01:33:44:24:F1:A2:F8:75:00:77:3A:6E:8D:3A:F6:14:26:AC:B0
ValidityTue, 26 Mar 2024 14:29:06 GMT - Mon, 24 Jun 2024 14:29:05 GMT

File type
SVG Scalable Vector Graphics image
Size
1.5 kB (1465 bytes)
Hash
ace472e478185d5f5ecd18c7d821eff7
c4c97892e41d3dd838912c42fd7a7b212f671d1b
c8b13b10e28b6b420151db578831a416b7c1805d7672eeb57e69dc697fda1e27

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /public/Index/search.svg HTTP/1.1
Host: as-usps.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://as-usps.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 09 May 2024 02:16:53 GMT
content-type: image/svg+xml
content-length: 1465
last-modified: Sat, 17 Jun 2023 12:38:42 GMT
etag: "648da952-5b9"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

as-usps.top/public/Index/footer-logo.png

45.92.195.140

200 OK

5.4 kB

URL GET HTTP/2
as-usps.top/public/Index/footer-logo.png
IP
45.92.195.140:443
ASN
#29802 HVC-AS

Requested by
https://as-usps.top/
Certificate
IssuerLet's Encrypt
Subjectwww.as-usps.top
FingerprintDA:01:33:44:24:F1:A2:F8:75:00:77:3A:6E:8D:3A:F6:14:26:AC:B0
ValidityTue, 26 Mar 2024 14:29:06 GMT - Mon, 24 Jun 2024 14:29:05 GMT

File type
PNG image data, 221 x 27, 8-bit/color RGBA, non-interlaced
Size
5.4 kB (5390 bytes)
Hash
ccd62119eaa0e3697f60599487c51ad5
8e44d3123b4ce2005c76a2b8dcf7870058d2a82d
1cc43a97be92fddf0fe4244858f5337c80a8d350cd0afcd0c4d2004d3fded0ab

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /public/Index/footer-logo.png HTTP/1.1
Host: as-usps.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://as-usps.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 09 May 2024 02:16:53 GMT
content-type: image/png
content-length: 5390
last-modified: Sat, 17 Jun 2023 13:10:02 GMT
etag: "648db0aa-150e"
expires: Sat, 08 Jun 2024 02:16:53 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

as-usps.top/public/Index/social-facebook_1.png

45.92.195.140

200 OK

1.9 kB

URL GET HTTP/2
as-usps.top/public/Index/social-facebook_1.png
IP
45.92.195.140:443
ASN
#29802 HVC-AS

Requested by
https://as-usps.top/
Certificate
IssuerLet's Encrypt
Subjectwww.as-usps.top
FingerprintDA:01:33:44:24:F1:A2:F8:75:00:77:3A:6E:8D:3A:F6:14:26:AC:B0
ValidityTue, 26 Mar 2024 14:29:06 GMT - Mon, 24 Jun 2024 14:29:05 GMT

File type
PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced
Size
1.9 kB (1873 bytes)
Hash
5d1fed200f7befa569074a293cf2abed
11bacbc9debe99986d9a6e974e9a819aaa74be29
9d0ef8aa34abec770b6a9fb4358842a29413d08c0d1e4b74f5c4c31ab477c14c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /public/Index/social-facebook_1.png HTTP/1.1
Host: as-usps.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://as-usps.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 09 May 2024 02:16:53 GMT
content-type: image/png
content-length: 1873
last-modified: Sat, 17 Jun 2023 13:30:30 GMT
etag: "648db576-751"
expires: Sat, 08 Jun 2024 02:16:53 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

as-usps.top/public/Index/social-twitter_2.png

45.92.195.140

200 OK

1.8 kB

URL GET HTTP/2
as-usps.top/public/Index/social-twitter_2.png
IP
45.92.195.140:443
ASN
#29802 HVC-AS

Requested by
https://as-usps.top/
Certificate
IssuerLet's Encrypt
Subjectwww.as-usps.top
FingerprintDA:01:33:44:24:F1:A2:F8:75:00:77:3A:6E:8D:3A:F6:14:26:AC:B0
ValidityTue, 26 Mar 2024 14:29:06 GMT - Mon, 24 Jun 2024 14:29:05 GMT

File type
PNG image data, 50 x 48, 8-bit/color RGBA, non-interlaced
Size
1.8 kB (1842 bytes)
Hash
4f6b06552f2054fecb5a3ab3956d7a79
c1257b76200738ad53147be110920f84efd479b3
248385895aacd78d7a7b045cd5109103c2f849bbaef9cff5980d59823a620c91

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /public/Index/social-twitter_2.png HTTP/1.1
Host: as-usps.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://as-usps.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 09 May 2024 02:16:53 GMT
content-type: image/png
content-length: 1842
last-modified: Sat, 17 Jun 2023 13:32:14 GMT
etag: "648db5de-732"
expires: Sat, 08 Jun 2024 02:16:53 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

as-usps.top/public/Index/social-pinterest_6.png

45.92.195.140

200 OK

2.3 kB

URL GET HTTP/2
as-usps.top/public/Index/social-pinterest_6.png
IP
45.92.195.140:443
ASN
#29802 HVC-AS

Requested by
https://as-usps.top/
Certificate
IssuerLet's Encrypt
Subjectwww.as-usps.top
FingerprintDA:01:33:44:24:F1:A2:F8:75:00:77:3A:6E:8D:3A:F6:14:26:AC:B0
ValidityTue, 26 Mar 2024 14:29:06 GMT - Mon, 24 Jun 2024 14:29:05 GMT

File type
PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced
Size
2.3 kB (2325 bytes)
Hash
010bf7d7901ccaa3905cfe4b7c1cb50d
9c174f76a3ed50a173637d44793d6bc15a818112
67d664b844fdba0588665c6f1986b25fcb6d99e5122a455c36da8622f1eaab62

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /public/Index/social-pinterest_6.png HTTP/1.1
Host: as-usps.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://as-usps.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 09 May 2024 02:16:53 GMT
content-type: image/png
content-length: 2325
last-modified: Sat, 17 Jun 2023 13:32:12 GMT
etag: "648db5dc-915"
expires: Sat, 08 Jun 2024 02:16:53 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

as-usps.top/public/Index/social-youtube_3.png

45.92.195.140

200 OK

2.5 kB

URL GET HTTP/2
as-usps.top/public/Index/social-youtube_3.png
IP
45.92.195.140:443
ASN
#29802 HVC-AS

Requested by
https://as-usps.top/
Certificate
IssuerLet's Encrypt
Subjectwww.as-usps.top
FingerprintDA:01:33:44:24:F1:A2:F8:75:00:77:3A:6E:8D:3A:F6:14:26:AC:B0
ValidityTue, 26 Mar 2024 14:29:06 GMT - Mon, 24 Jun 2024 14:29:05 GMT

File type
PNG image data, 50 x 35, 8-bit/color RGBA, non-interlaced
Size
2.5 kB (2461 bytes)
Hash
e38ff6af4b8ff088fcb2dc92410b759b
529c88413dbc330fa05a0629b2084ca7931f453e
c2b609bbc0ed5b17740df6ab378bfcbe068e3b08d85e85b2d9dfbe6dd3c6be95

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /public/Index/social-youtube_3.png HTTP/1.1
Host: as-usps.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://as-usps.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 09 May 2024 02:16:53 GMT
content-type: image/png
content-length: 2461
last-modified: Sat, 17 Jun 2023 13:32:16 GMT
etag: "648db5e0-99d"
expires: Sat, 08 Jun 2024 02:16:53 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

as-usps.top/public/Index/font/iconfont.woff2?t=1675500190595

45.92.195.140

200 OK

2.5 kB

URL GET HTTP/2
as-usps.top/public/Index/font/iconfont.woff2?t=1675500190595
IP
45.92.195.140:443
ASN
#29802 HVC-AS

Requested by
https://as-usps.top/
Certificate
IssuerLet's Encrypt
Subjectwww.as-usps.top
FingerprintDA:01:33:44:24:F1:A2:F8:75:00:77:3A:6E:8D:3A:F6:14:26:AC:B0
ValidityTue, 26 Mar 2024 14:29:06 GMT - Mon, 24 Jun 2024 14:29:05 GMT

File type
Web Open Font Format (Version 2), TrueType, length 2472, version 1.0
Size
2.5 kB (2472 bytes)
Hash
7d63c0abf611a312d1fa417e1ad565ee
c1d9a819bfabdee17f61f839881e35f424d27789
274f49413e4e9e8d824040c60f5d7173350159a3eb21545a5f95b09098190fee

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /public/Index/font/iconfont.woff2?t=1675500190595 HTTP/1.1
Host: as-usps.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://as-usps.top/public/Index/correos-ui-kit.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 09 May 2024 02:16:53 GMT
content-type: font/woff2
content-length: 2472
last-modified: Thu, 06 Apr 2023 01:01:58 GMT
etag: "642e1a06-9a8"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

as-usps.top/public/Index/font/iconfont.woff2?t=1675512380322

45.92.195.140

200 OK

2.5 kB

URL GET HTTP/2
as-usps.top/public/Index/font/iconfont.woff2?t=1675512380322
IP
45.92.195.140:443
ASN
#29802 HVC-AS

Requested by
https://as-usps.top/
Certificate
IssuerLet's Encrypt
Subjectwww.as-usps.top
FingerprintDA:01:33:44:24:F1:A2:F8:75:00:77:3A:6E:8D:3A:F6:14:26:AC:B0
ValidityTue, 26 Mar 2024 14:29:06 GMT - Mon, 24 Jun 2024 14:29:05 GMT

File type
Web Open Font Format (Version 2), TrueType, length 2472, version 1.0
Size
2.5 kB (2472 bytes)
Hash
7d63c0abf611a312d1fa417e1ad565ee
c1d9a819bfabdee17f61f839881e35f424d27789
274f49413e4e9e8d824040c60f5d7173350159a3eb21545a5f95b09098190fee

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /public/Index/font/iconfont.woff2?t=1675512380322 HTTP/1.1
Host: as-usps.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://as-usps.top/public/Index/iconfont.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 09 May 2024 02:16:54 GMT
content-type: font/woff2
content-length: 2472
last-modified: Thu, 06 Apr 2023 01:01:58 GMT
etag: "642e1a06-9a8"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

as-usps.top/favicon.ico

45.92.195.140

404 Not Found

11 kB

URL GET HTTP/2
as-usps.top/favicon.ico
IP
45.92.195.140:443
ASN
#29802 HVC-AS

Requested by
https://as-usps.top/
Certificate
IssuerLet's Encrypt
Subjectwww.as-usps.top
FingerprintDA:01:33:44:24:F1:A2:F8:75:00:77:3A:6E:8D:3A:F6:14:26:AC:B0
ValidityTue, 26 Mar 2024 14:29:06 GMT - Mon, 24 Jun 2024 14:29:05 GMT

File type
gzip compressed data, from Unix
Size
11 kB (10815 bytes)
Hash
ac36d4df271fbbf02ffb47f8148aebd1
131bb60a9212aa4d89ecd3a8565cf6ad742630ae
377e77e1320594e83a73d4da086d3f70fd1ec131f1fb58bf277f93fdb836242a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: as-usps.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://as-usps.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
server: nginx
date: Thu, 09 May 2024 02:16:54 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, DELETE
access-control-allow-headers: x-requested-with, Referer,content-type,token,DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type, Accept-Language, Origin, Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2

as-usps.top/public/Index/correos-ui-kit.css

45.92.195.140

200 OK

142 kB

URL GET HTTP/2
as-usps.top/public/Index/correos-ui-kit.css
IP
45.92.195.140:443
ASN
#29802 HVC-AS

Requested by
https://as-usps.top/
Certificate
IssuerLet's Encrypt
Subjectwww.as-usps.top
FingerprintDA:01:33:44:24:F1:A2:F8:75:00:77:3A:6E:8D:3A:F6:14:26:AC:B0
ValidityTue, 26 Mar 2024 14:29:06 GMT - Mon, 24 Jun 2024 14:29:05 GMT

File type

Size
142 kB (141973 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /public/Index/correos-ui-kit.css HTTP/1.1
Host: as-usps.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://as-usps.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 09 May 2024 02:16:53 GMT
content-type: text/css
last-modified: Sat, 15 Apr 2023 16:54:04 GMT
vary: Accept-Encoding
etag: W/"643ad6ac-22a95"
expires: Thu, 09 May 2024 14:16:53 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

as-usps.top/public/fp.min.js

45.92.195.140

200 OK

34 kB

URL GET HTTP/2
as-usps.top/public/fp.min.js
IP
45.92.195.140:443
ASN
#29802 HVC-AS

Requested by
https://as-usps.top/
Certificate
IssuerLet's Encrypt
Subjectwww.as-usps.top
FingerprintDA:01:33:44:24:F1:A2:F8:75:00:77:3A:6E:8D:3A:F6:14:26:AC:B0
ValidityTue, 26 Mar 2024 14:29:06 GMT - Mon, 24 Jun 2024 14:29:05 GMT

File type

Size
34 kB (34484 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /public/fp.min.js HTTP/1.1
Host: as-usps.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://as-usps.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 09 May 2024 02:16:53 GMT
content-type: application/javascript
last-modified: Thu, 06 Apr 2023 09:45:42 GMT
vary: Accept-Encoding
etag: W/"642e94c6-86b4"
expires: Thu, 09 May 2024 14:16:53 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

as-usps.top/public/Information/jquery-2.1.3.min.js

45.92.195.140

200 OK

84 kB

URL GET HTTP/2
as-usps.top/public/Information/jquery-2.1.3.min.js
IP
45.92.195.140:443
ASN
#29802 HVC-AS

Requested by
https://as-usps.top/
Certificate
IssuerLet's Encrypt
Subjectwww.as-usps.top
FingerprintDA:01:33:44:24:F1:A2:F8:75:00:77:3A:6E:8D:3A:F6:14:26:AC:B0
ValidityTue, 26 Mar 2024 14:29:06 GMT - Mon, 24 Jun 2024 14:29:05 GMT

File type
JavaScript source, ASCII text, with very long lines (32180)
Size
84 kB (84320 bytes)
Hash
32015dd42e9582a80a84736f5d9a44d7
41b4bfbaa96be6d1440db6e78004ade1c134e276
8af93bd675e1cfd9ecc850e862819fdac6e3ad1f5d761f970e409c7d9c63bdc3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /public/Information/jquery-2.1.3.min.js HTTP/1.1
Host: as-usps.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://as-usps.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 09 May 2024 02:16:53 GMT
content-type: application/javascript
last-modified: Thu, 06 Apr 2023 01:01:50 GMT
vary: Accept-Encoding
etag: W/"642e19fe-14960"
expires: Thu, 09 May 2024 14:16:53 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

as-usps.top/public/Index/clientlib-base.min.7d250654d6a4ba422176cd385b93bb36.css

45.92.195.140

200 OK

5.2 kB

URL GET HTTP/2
as-usps.top/public/Index/clientlib-base.min.7d250654d6a4ba422176cd385b93bb36.css
IP
45.92.195.140:443
ASN
#29802 HVC-AS

Requested by
https://as-usps.top/
Certificate
IssuerLet's Encrypt
Subjectwww.as-usps.top
FingerprintDA:01:33:44:24:F1:A2:F8:75:00:77:3A:6E:8D:3A:F6:14:26:AC:B0
ValidityTue, 26 Mar 2024 14:29:06 GMT - Mon, 24 Jun 2024 14:29:05 GMT

File type
ASCII text, with very long lines (5245), with no line terminators
Size
5.2 kB (5206 bytes)
Hash
3a460b2f035aef7b00bb5045630052ab
1c65a53c2946731f208c147d46be4f923c786dfd
e752585b3e0b528557fb731fb2d0dbb184819b7292e1eefab1d7f805de1a8778

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /public/Index/clientlib-base.min.7d250654d6a4ba422176cd385b93bb36.css HTTP/1.1
Host: as-usps.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://as-usps.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 09 May 2024 02:16:53 GMT
content-type: text/css
last-modified: Tue, 04 Apr 2023 13:16:08 GMT
vary: Accept-Encoding
etag: W/"642c2318-1456"
expires: Thu, 09 May 2024 14:16:53 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

as-usps.top/public/Index/clientlib-react.min.43091e600ff5d0e3d65a5590bfe00a1d.css

45.92.195.140

200 OK

552 kB

URL GET HTTP/2
as-usps.top/public/Index/clientlib-react.min.43091e600ff5d0e3d65a5590bfe00a1d.css
IP
45.92.195.140:443
ASN
#29802 HVC-AS

Requested by
https://as-usps.top/
Certificate
IssuerLet's Encrypt
Subjectwww.as-usps.top
FingerprintDA:01:33:44:24:F1:A2:F8:75:00:77:3A:6E:8D:3A:F6:14:26:AC:B0
ValidityTue, 26 Mar 2024 14:29:06 GMT - Mon, 24 Jun 2024 14:29:05 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
552 kB (551819 bytes)
Hash
d3c458dbcc5ff3d03959ed145ea37aeb
ed68467797d2b5747af8fa2910577c17bc147f72
58bcae8b281d77f2a37041c0d8f6a6eaa15d046d67e0793e2d5a2e23ae427c21

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /public/Index/clientlib-react.min.43091e600ff5d0e3d65a5590bfe00a1d.css HTTP/1.1
Host: as-usps.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://as-usps.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 09 May 2024 02:16:53 GMT
content-type: text/css
last-modified: Sat, 15 Apr 2023 16:54:04 GMT
vary: Accept-Encoding
etag: W/"643ad6ac-86b8b"
expires: Thu, 09 May 2024 14:16:53 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

as-usps.top/

45.92.195.140

200 OK

659 kB

URL User Request GET HTTP/2
as-usps.top/
IP
45.92.195.140:443
ASN
#29802 HVC-AS

Certificate
IssuerLet's Encrypt
Subjectwww.as-usps.top
FingerprintDA:01:33:44:24:F1:A2:F8:75:00:77:3A:6E:8D:3A:F6:14:26:AC:B0
ValidityTue, 26 Mar 2024 14:29:06 GMT - Mon, 24 Jun 2024 14:29:05 GMT

File type

Size
659 kB (658797 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: as-usps.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 09 May 2024 02:16:52 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, DELETE
access-control-allow-headers: x-requested-with, Referer,content-type,token,DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type, Accept-Language, Origin, Accept-Encoding
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

as-usps.top/public/Index/iconfont.css

45.92.195.140

200 OK

1.1 kB

URL GET HTTP/2
as-usps.top/public/Index/iconfont.css
IP
45.92.195.140:443
ASN
#29802 HVC-AS

Requested by
https://as-usps.top/
Certificate
IssuerLet's Encrypt
Subjectwww.as-usps.top
FingerprintDA:01:33:44:24:F1:A2:F8:75:00:77:3A:6E:8D:3A:F6:14:26:AC:B0
ValidityTue, 26 Mar 2024 14:29:06 GMT - Mon, 24 Jun 2024 14:29:05 GMT

File type
ASCII text, with very long lines (1239), with no line terminators
Size
1.1 kB (1122 bytes)
Hash
09616ae58d47ba65915bea06dbc5fe1b
87915272ffc9b72d3778962e68094ffe372844bb
397c18aa458bb4d43eb0a37184ea9bbb261fa0df93808284365600a2df34202b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /public/Index/iconfont.css HTTP/1.1
Host: as-usps.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://as-usps.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 09 May 2024 02:16:53 GMT
content-type: text/css
last-modified: Thu, 06 Apr 2023 09:40:46 GMT
vary: Accept-Encoding
etag: W/"642e939e-462"
expires: Thu, 09 May 2024 14:16:53 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (3)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (18)

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/2

IP