Report Overview
Submitted URL
teishin.org/tmp/errorreport/f3aed849bd5d-focus-human-rights-concerns-bind-us-s-korea-with-japan-over-abductions.zip
IP
136.0.16.80
ASN
#18779 EGIHOSTING
Submitted
2024-04-16 13:49:23
Access
public
Website Title
about:privatebrowsing
Final URL
about:privatebrowsing
Tags
urlquery detections
No alerts detected
Detections
urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
13
Domain Summary
Domain / FQDN | Rank | Registered | First Seen | Last Seen | Sent | Received | IP |
---|---|---|---|---|---|---|---|
teishin.org | unknown | 2005-11-08 | 2016-05-22 | 2024-04-16 | 569 B | 1.3 kB | 136.0.16.80 |
Related reports
Network Intrusion Detection Systems
Suricata /w Emerging Threats Pro
Threat Detection Systems
Public InfoSec YARA rules
Scan Date | Severity | Indicator | Alert |
---|---|---|---|
2024-04-16 | medium | teishin.org/tmp/errorreport/f3aed849bd5d-focus-human-rights-concerns-bind-us-s-korea-with-japan-over-abductions.zip | Detects suspicious tiny ZIP files with phishing attachment characteristics |
2024-04-16 | medium | teishin.org/tmp/errorreport/f3aed849bd5d-focus-human-rights-concerns-bind-us-s-korea-with-japan-over-abductions.zip | Detects suspicius tiny ZIP files with malicious lnk files |
OpenPhish
No alerts detected
PhishTank
No alerts detected
mnemonic secure dns
Scan Date | Severity | Indicator | Alert |
---|---|---|---|
2024-04-16 | medium | teishin.org | Sinkholed |
Quad9 DNS
Scan Date | Severity | Indicator | Alert |
---|---|---|---|
2024-04-16 | medium | teishin.org | Sinkholed |
ThreatFox
No alerts detected
Files detected
URL
teishin.org/tmp/errorreport/f3aed849bd5d-focus-human-rights-concerns-bind-us-s-korea-with-japan-over-abductions.zip
IP
136.0.16.80
ASN
#18779 EGIHOSTING
File type
Zip archive data, at least v2.0 to extract, compression method=deflate
Size
1.0 kB (1034 bytes)
Hash
d75aa4bbdddedf2c2e698c6f2f6a0ede
4154fb8167cf5728a66b55ec07d272338dbf2360
Archive (1)
Filename | Md5 | File type | ||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
f3aed849bd5d-focus-human-rights-concerns-bind-us-s-korea-with-japan-over-abductions.lnk | e6f485b34e7db6f6f1b3fc05f9bff3d5
| MS Windows shortcut, Item id list present, Points to a file or directory, Has command line arguments, Icon number=50, Archive, ctime=Sat Nov 20 21:29:12 2010, mtime=Sat Nov 20 21:29:12 2010, atime=Sat Nov 20 21:29:12 2010, length=302592, window=hidenormalshowminimized |
Detections
Analyzer | Verdict | Alert |
---|---|---|
Public Nextron YARA rules | malware | Detects a suspicious LNK file |
Public InfoSec YARA rules | malware | Identifies executable artefacts in shortcut (LNK) files. |
Public InfoSec YARA rules | malware | Identifies execution artefacts in shortcut (LNK) files. |
Public InfoSec YARA rules | malware | Identifies download artefacts in shortcut (LNK) files. |
Public Nextron YARA rules | malware | Detects suspicious tiny ZIP files with phishing attachment characteristics |
YARAhub by abuse.ch | malware | Detects suspicius tiny ZIP files with malicious lnk files |
VirusTotal | malicious |
JavaScript (0)
HTTP Transactions (1)
URL | IP | Response | Size | |||||||||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
teishin.org/tmp/errorreport/f3aed849bd5d-focus-human-rights-concerns-bind-us-s-korea-with-japan-over-abductions.zip | 136.0.16.80 | 200 OK | 1.0 kB | |||||||||||||||||||
Detections
HTTP Headers
| ||||||||||||||||||||||