Report Overview
Visitedpublic
2025-09-05 15:10:12
Tags
Submit Tags
URL
shiny-entremet-c46885.netlify.app/?email=*@
Finishing URL
shiny-entremet-c46885.netlify.app/?email=*@
IP / ASN
35.157.26.135
Title
shiny-entremet-c46885.netlify.app/?email=*@
Suspicious - Suspicious Javascript code
Detections
urlquery
2
Network Intrusion Detection
1
Threat Detection Systems
1
Host Summary
| Host | Rank | Registered | First Seen | Last Seen | Sent | Received | IP | Fingerprints |
|---|---|---|---|---|---|---|---|---|
shiny-entremet-c46885.netlify.app | unknown | 2018-05-08 | 2025-09-05 | 2025-09-05 | 511 B | 14 kB | 35.157.26.135 |  |
Netlify (PaaS, CDN)
Netlify providers hosting and server-less backend services for web applications and static websites.Related reports
Network Intrusion Detection Systems
Suricata /w Emerging Threats Pro
| Timestamp | Severity | Source IP | Destination IP | Alert |
|---|---|---|---|---|
| medium | Client IP | 35.157.26.135 | ET HUNTING Suspicious Netlify Hosted TLS SNI Request - Possible Phishing Landing |
Threat Detection Systems
| Detection System | Indicator | Verdict | Alert |
|---|---|---|---|
| YARAhub by abuse.ch | javascript.write.md5:e5c998f5bb50f2b616c594433944e4f0 | malware | Detects file containing Telegram Bot API |
Telegram Bot detected (1)
Token
7669179136:AAHpqhg-e1Npbi6XzijGjLEpSZ23kNST0mw
Bot Overview
User ID7669179136
UsernameFresh101101_bot
First NameFresh Result
Last NameN/A
Chat Info
Chat ID7134451270
Chat Typeprivate
TitleN/A
User Count2
Admins0
Pending Msgs0
JavaScript (3)
| HASH | FROM | Size | First Seen | Last Seen | |||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
| e5c998f5bb50f2b616c594433944e4f0 | DocumentWrite | 9.7 kB | 2025-05-29 | 2025-09-09 | |||||||
Introduced by DocumentWrite First Seen 2025-05-29 Last Seen 2025-09-09 Times Seen 107 Size 9.7 kB (9706 bytes) MD5 e5c998f5bb50f2b616c594433944e4f0 SHA1 ee493a790217f3e34b678819ab46db2ee4d7b16b Detections
Loading... | |||||||||||
HTTP Transactions (1)
| URL | IP | Response | Size |
|---|