Report Overview
URL
h.countryestate.au
Finishing URL
office.cukaibo.ru.com/g68xzsi5o1golve?b8f370f437c5f6f-02ddd7d0ad6dc8426ba550a599cc2d8/
IP / ASN
43.250.142.126
Title
Phishing - Microsoft
Phishing - Tycoon Phishing Kit
Detections
urlquery
3
Network Intrusion Detection
0
Threat Detection Systems
2
Host Summary
| Host | Rank | Registered | First Seen | Last Seen | Sent | Received | IP | Fingerprints |
|---|---|---|---|---|---|---|---|---|
cdn.jsdelivr.net | 1678 | 2012-05-16 | 2012-09-30 | 2026-02-22 | 446 B | 90 kB |  151.101.129.229 | |
h.countryestate.au | unknown | unknown | 2026-02-27 | 2026-02-27 | 1.7 kB | 8.4 kB | 43.250.142.126 |   |
india.steyu.best 1 alert(s) on this Host | unknown | 2026-02-10 | 2026-02-27 | 2026-02-27 | 461 B | 576 B |  172.67.207.124 |  |
api.ipbase.com | 826315 | 2003-09-14 | 2022-04-28 | 2026-02-27 | 495 B | 1.2 kB | 104.21.85.189 | |
office.cukaibo.ru.com 85 alert(s) on this Host | unknown | 2025-09-18 | 2026-02-27 | 2026-02-27 | 32 kB | 1.4 MB | 172.67.206.150 | |
cdnjs.cloudflare.com | 1222 | 2009-02-17 | 2012-05-23 | 2026-02-22 | 457 B | 62 kB | 104.17.25.14 | |
LiteSpeed (Web servers)
LiteSpeed is a high-scalability web server.PHP:7.4.33 (Programming languages)
PHP is a general-purpose scripting language used for web development.Cloudflare (CDN)
Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.Related reports
Threat Detection Systems
| Detection System | Indicator | Verdict | Alert |
|---|---|---|---|
| Hagezi Threat Feed | office.cukaibo.ru.com | malicious | Sinkholed |
| DNS4EU | office.cukaibo.ru.com | malicious | Sinkholed |
JavaScript (26)
| HASH | FROM | Size | First Seen | Last Seen | |
|---|---|---|---|---|---|
| f8edd6a5ef6de7afe89d39d387675f03 | DocumentWrite | 524 kB | 2026-02-27 | 2026-02-27 | |
Introduced by DocumentWrite First Seen 2026-02-27 Last Seen 2026-02-27 Times Seen 1 Size 524 kB (523534 bytes) MD5 f8edd6a5ef6de7afe89d39d387675f03 SHA1 3b1d9fb13dcc16b1d05ba1a6334aaec71e870e72 Loading... | |||||
| ff4369f7a0143bbafab8f569904aa3ba | DocumentWrite | 289 kB | 2026-02-27 | 2026-02-27 | |
Introduced by DocumentWrite First Seen 2026-02-27 Last Seen 2026-02-27 Times Seen 1 Size 289 kB (288587 bytes) MD5 ff4369f7a0143bbafab8f569904aa3ba SHA1 bb5e88c034ed27afa3976587ecac9bd8585fcfaf Loading... | |||||
| 7fa94dd2b1f45c011802c6956835a8fb | DocumentWrite | 48 kB | 2026-02-27 | 2026-02-27 | |
Introduced by DocumentWrite First Seen 2026-02-27 Last Seen 2026-02-27 Times Seen 1 Size 48 kB (48401 bytes) MD5 7fa94dd2b1f45c011802c6956835a8fb SHA1 05742fb6046cd55a8643a46aee0a3185aba7f946 Loading... | |||||
| 4cae6017aefc4ad690811ae175700a93 | DocumentWrite | 4.7 kB | 2026-02-27 | 2026-02-27 | |
Introduced by DocumentWrite First Seen 2026-02-27 Last Seen 2026-02-27 Times Seen 1 Size 4.7 kB (4672 bytes) MD5 4cae6017aefc4ad690811ae175700a93 SHA1 8d313b9ce8718895e9a43612ba23e27627c6f588 Loading... | |||||
HTTP Transactions (32)
| URL | IP | Response | Size |
|---|