Report Overview
Visitedpublic
2023-12-03 00:17:18
Tags
Submit Tags
URL
whjfkhuifggzfyueg88.icu/
Finishing URL
whjfkhuifggzfyueg88.icu/
IP / ASN
202.95.8.148
Title
WhatsApp
Detections
urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0
Host Summary
| Host | Rank | Registered | First Seen | Last Seen | Sent | Received | IP | Fingerprints |
|---|---|---|---|---|---|---|---|---|
ia.51.la | 59607 | 2005-01-17 | 2017-10-31 09:01:51 | 2023-12-02 05:12:11 | 586 B | 433 B |  47.246.44.225 | |
whjfkhuifggzfyueg88.icu 3 alert(s) on this Domain | unknown | unknown | No data | No data | 5.3 kB | 147 kB | 202.95.8.148 | |
js.users.51.la | 53024 | 2005-01-17 | 2012-05-30 17:10:11 | 2023-12-02 05:12:09 | 338 B | 3.1 kB |  203.107.86.226 | |
web.whatsapp.com | 2039 | 2008-09-04 | 2014-12-15 18:00:45 | 2023-11-25 19:53:16 | 930 B | 9.6 kB | 31.13.72.52 |
Related reports
Network Intrusion Detection Systems
Suricata /w Emerging Threats Pro
| Timestamp | Severity | Source IP | Destination IP | Alert |
|---|---|---|---|---|
| medium | Client IP | Internal IP | ET INFO DNS Query for Suspicious .icu Domain | |
| low | 202.95.8.148 | Client IP | ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M1 | |
| low | 202.95.8.148 | Client IP | ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M2 | |
| low | 202.95.8.148 | Client IP | ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M3 |
Threat Detection Systems
Public InfoSec YARA rules
No alerts detected
OpenPhish
No alerts detected
PhishTank
No alerts detected
mnemonic secure dns
No alerts detected
Quad9 DNS
No alerts detected
ThreatFox
No alerts detected
JavaScript (4)
| HASH | FROM | Size | First Seen | Last Seen | |
|---|---|---|---|---|---|
| 413cf222f000a08068f9941a35ed5462 | DocumentWrite | 258 B | 2023-10-19 | 2024-08-21 | |
Introduced by DocumentWrite First Seen 2023-10-19 Last Seen 2024-08-21 Times Seen 39 Size 258 B (258 bytes) MD5 413cf222f000a08068f9941a35ed5462 SHA1 7d193f6288467dd6771fea5e934493dd26478ed3 Loading... | |||||
HTTP Transactions (15)
| URL | IP | Response | Size |
|---|