Overview

URL kujitjsyxt.casino-luck.us.org/CasinoTitan_En.exe
IP52.33.196.199
ASN
Location United States
Report completed2017-11-08 04:23:10 CET
StatusLoading report..
urlQuery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2017-11-08 2 kujitjsyxt.casino-luck.us.org/CasinoTitan_En.exe Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 52.33.196.199

Date UQ / IDS / BL URL IP
2018-09-25 21:32:31 +0200
0 - 0 - 1 zhifubaobhu.wpldbio.cn.com/signin.php 52.33.196.199
2018-09-25 20:53:10 +0200
0 - 0 - 1 dayulaile.jxpt.cn.com/ 52.33.196.199
2018-09-24 12:59:48 +0200
0 - 0 - 1 iyke.darkbastard.com.de/panel/admin.php 52.33.196.199
2018-09-02 13:52:47 +0200
0 - 0 - 1 zfb.rwytu.cn.com/hao123/AOBAO/NEWOK/505.asp 52.33.196.199
2018-08-23 15:49:02 +0200
0 - 0 - 0 timemachine2.atos.uk.net 52.33.196.199
2018-08-21 14:55:46 +0200
0 - 0 - 0 toyot9-forklifts.com.com 52.33.196.199
2018-08-18 21:02:31 +0200
0 - 0 - 1 zzzss127.hyvpqgc.cn.com/ 52.33.196.199
2018-08-15 12:40:06 +0200
0 - 0 - 1 achakeybase.com.de/ 52.33.196.199
2018-08-15 08:25:07 +0200
0 - 0 - 1 achakeybase.com.de/dollar/fre.php 52.33.196.199
2018-08-15 08:25:01 +0200
0 - 0 - 1 achakeybase.com.de/five/fre.php 52.33.196.199

Last 10 reports on ASN:

Date UQ / IDS / BL URL IP
2018-09-26 13:26:53 +0200
0 - 0 - 2 blog.51cto.com/attachment/201203/4594712_1332 (...) 59.110.244.199
2018-09-26 13:26:50 +0200
0 - 2 - 0 xn--metalurgicapea-2nb.es/ 51.68.186.22
2018-09-26 13:25:00 +0200
0 - 0 - 5 digi.coinup.org/no 52.178.105.179
2018-09-26 13:24:47 +0200
0 - 0 - 0 jeffmerkely.com/link/334279915ecb436ecd4bd9f4 (...) 185.250.117.92
2018-09-26 13:20:57 +0200
0 - 1 - 5 www.spycamera-indelhi.com/catalog/product_com (...) 148.66.153.10
2018-09-26 13:20:43 +0200
0 - 0 - 1 22189.xc.cangpie.com/ 139.224.39.0
2018-09-26 13:19:06 +0200
0 - 0 - 0 faranswerstagepicture6b4n2n.com 185.205.209.27
2018-09-26 13:17:41 +0200
0 - 0 - 0 get.s-onetag.com 143.204.48.175
2018-09-26 13:17:03 +0200
0 - 0 - 0 www.hanstrackr.com 52.30.103.119
2018-09-26 13:16:11 +0200
0 - 0 - 1 tjds.jia-si.cn/statistics/install?code=VUlELG (...) 117.50.3.236

No other reports on domain: casino-luck.us.org



JavaScript

Executed Scripts (0)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (1)


Request Response
                                        
                                            GET /CasinoTitan_En.exe HTTP/1.1 
Host: kujitjsyxt.casino-luck.us.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         0.0.0.0
                                        


--- Additional Info ---

Alerts:
  Blacklists:
    - fortinet: Malware