Report - queue.beryx.com.de/fvqvug@ztdsinv/$*@*

Report Overview

Visitedpublic

2025-10-15 23:40:30

Tags

microsoft phishing tycoon aitm

Submit Tags

URL

queue.beryx.com.de/fvqvug@ztdsinv/$*@*

Finishing URL

queue.beryx.com.de/djbkxoz7ggxww2?db2f1859353d-4da95a511fadf422c37c43c38bea/

IP / ASN

104.21.61.82

#13335 CLOUDFLARENET

Title

Phishing - Microsoft

Phishing - Tycoon Phishing Kit

Detections

urlquery

3

Network Intrusion Detection

0

Threat Detection Systems

3

Host Summary

Host	Rank	Registered	First Seen	Last Seen	Sent	Received	IP	Fingerprints
ipwhois.app	48917	2020-06-10	2020-06-10	2025-10-13	483 B	1.3 kB	185.93.2.245
apartment.wosto.info	unknown	unknown	2025-10-15	2025-10-15	455 B	576 B	188.114.97.1
queue.beryx.com.de	unknown	unknown	2025-10-15	2025-10-15	34 kB	3.0 MB	104.21.61.82
ajax.aspnetcdn.com	21241	2010-10-12	2012-05-24	2025-10-12	441 B	90 kB	23.36.77.49
cloudmasonry.com	7208019	2016-09-11	2020-02-05	2025-10-14	946 B	752 B	192.124.249.161
addins.verityrms.com	unknown	2021-10-13	2023-07-08	2025-10-14	451 B	5.2 kB	18.211.247.164
res-1.cdn.office.net	990	1994-11-14	2020-12-08	2025-10-13	485 B	26 kB	23.36.76.120
cdnjs.cloudflare.com	1222	2009-02-17	2012-05-23	2025-10-12	454 B	62 kB	104.17.25.14

Related reports

Threat Detection Systems

Detection System	Indicator	Verdict	Alert
Quad9 DNS	queue.beryx.com.de	malicious	Sinkholed
DNS0 Zero	apartment.wosto.info	malicious	Sinkholed
DNS4EU	apartment.wosto.info	malicious	Sinkholed

JavaScript (32)

	HASH	FROM	Size	First Seen	Last Seen
	515f1441756cfec18a184b4d1ca1946e	DocumentWrite	56 kB	2025-10-15	2025-10-15
Introduced by DocumentWrite First Seen 2025-10-15 Last Seen 2025-10-15 Times Seen 1 Size 56 kB (56170 bytes) MD5 515f1441756cfec18a184b4d1ca1946e SHA1 8520678a284192d812d5a43f402945d7cdcfbc71 SHA256 6f550c35442d7633ab14fff8f2cb054187f4eab06d7feb97f9d7954732a6618e Format Code Loading...

	a420138b127467a2f912d109492133fd	DocumentWrite	4.7 kB	2025-10-15	2025-10-15
Introduced by DocumentWrite First Seen 2025-10-15 Last Seen 2025-10-15 Times Seen 1 Size 4.7 kB (4675 bytes) MD5 a420138b127467a2f912d109492133fd SHA1 76c89ec23542aa78104f5d4a375a6b5a9cabb2b1 SHA256 0aa4d5e89a8ce42c281a8053242089ef09e53ed66a01bd4f7cd2b17b8676ba2e Format Code Loading...

	b0f9171f172bbda2e2afadcc8e20f567	DocumentWrite	1.9 MB	2025-10-15	2025-10-15
Introduced by DocumentWrite First Seen 2025-10-15 Last Seen 2025-10-15 Times Seen 1 Size 1.9 MB (1926917 bytes) MD5 b0f9171f172bbda2e2afadcc8e20f567 SHA1 15e380e6c88c576de15c3656ebaa18998979f352 SHA256 3d58ab219ef3826f00de263dd75917418a941cc2ac9ceb83c784c44d8401635b Format Code Loading...

	3938eb87388dd49a48b33d72654d6a17	DocumentWrite	1.1 MB	2025-10-15	2025-10-15
Introduced by DocumentWrite First Seen 2025-10-15 Last Seen 2025-10-15 Times Seen 1 Size 1.1 MB (1073668 bytes) MD5 3938eb87388dd49a48b33d72654d6a17 SHA1 caf2e456a4ee5c0bb0b2dae9c2cf2d5990a7d245 SHA256 4a1c6875ed131a90bdc08e1e9a1d73421c421be36e6f20f122668dcbac81b23d Format Code Loading...

HTTP Transactions (35)

	URL	IP	Response	Size