Report Overview

  1. URL

    12kbps.xyz/repo/vir/others/memz.exe

  2. IP

    185.107.56.54

    ASN

    #43350 NForce Entertainment B.V.

  3. Submitted

    2023-05-06T21:09:14Z

    Access

    public

  4. Tags

    None

  5. urlquery detections

    No alerts detected

Detections

  1. urlquery

    0

  2. Network Intrusion Detection

    4

  3. Threat Detection Systems

    0

Domain Summary

Domain Rank First Seen Last Seen
afs.googleusercontent.com (2) 12123 2013-05-06 21:11:00 2023-05-06 05:09:55
12kbps.xyz (3) unknown 2017-12-23 16:29:12 2023-05-06 17:12:12
ww1.12kbps.xyz (7) unknown 2021-02-12 03:29:23 2023-05-06 11:12:29
ocsp.pki.goog (4) 175 2018-07-01 08:43:07 2023-05-06 05:09:10
www.google.com (5) 7 2015-05-10 13:11:19 2023-05-06 11:10:07

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Severity Source IP Destination IP Alert
medium  185.107.56.54 Client IP
medium  185.107.56.54 Client IP
medium  185.107.56.54 Client IP
medium  185.107.56.54 Client IP

Threat Detection Systems

OpenPhish

No alerts detected


PhishTank

No alerts detected


Fortinet's Web Filter

No alerts detected


mnemonic secure dns

No alerts detected


Quad9 DNS

No alerts detected


ThreatFox

No alerts detected


JavaScript (5)

HTTP Transactions (21)

URL IP Response Size
12kbps.xyz/repo/vir/others/memz.exe
185.107.56.54 496
12kbps.xyz/favicon.ico
185.107.56.54 9
12kbps.xyz/repo/vir/others/memz.exe?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY4MzQxNDUzNywiaWF0IjoxNjgzNDA3MzM3LCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIydGVhazNmc2o0NmVjcWw1bzQzZmtrNGYiLCJuYmYiOjE2ODM0MDczMzcsInRzIjoxNjgzNDA3MzM3Nzc4ODA1fQ.GRukMW-cpctLNQWMgmjr0HmX2bzeAn9ym8nlh6zoNVw&sid=374e7c02-ec52-11ed-aa8c-d4712ea166bd
185.107.56.54 302 Found 11
ww1.12kbps.xyz/
199.59.243.223 200 OK 664
ww1.12kbps.xyz/js/parking.2.104.9.js
199.59.243.223 200 OK 22161
ww1.12kbps.xyz/_fd
199.59.243.223 200 OK 2024
ww1.12kbps.xyz/px.gif?ch=1&rn=0.7893176001508445
199.59.243.223 200 OK 42
ww1.12kbps.xyz/px.gif?ch=2&rn=0.7893176001508445
199.59.243.223 200 OK 42
ocsp.pki.goog/gts1c3
142.250.74.131 471
ww1.12kbps.xyz/favicon.ico
199.59.243.223 200 OK 0
www.google.com/adsense/domains/caf.js
216.58.211.4 200 OK 54248
www.google.com/afs/ads?adtest=off&psid=3113057640&pcsa=false&channel=pid-bodis-gcontrol130%2Cpid-bodis-gcontrol97%2Cpid-bodis-gcontrol321%2Cpid-bodis-gcontrol152%2Cpid-bodis-gcontrol484&client=dp-bodis30_3ph&r=m&hl=en&rpbu=http%3A%2F%2Fww1.12kbps.xyz%3Fcaf%26&max_radlink_len=50&type=3&uiopt=false&swp=as-drid-2898040491288658&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300002&format=r3&nocache=1291683407340823&num=0&output=afd_ads&domain_name=ww1.12kbps.xyz&v=3&bsl=8&pac=2&u_his=3&u_tz=0&dt=1683407340825&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1264&psh=79&frm=0&cl=528505921&uio=-&cont=rs&jsid=caf&jsv=528505921&rurl=http%3A%2F%2Fww1.12kbps.xyz%2F&adbw=master-1%3A1264
216.58.211.4 200 OK 2067
ocsp.pki.goog/gts1c3
142.250.74.131 472
ocsp.pki.goog/gts1c3
142.250.74.131 472
afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/call_to_action_arrow.svg?c=%23ffffff
142.250.74.97 200 OK 278
www.google.com/adsense/domains/caf.js
216.58.211.4 200 OK 53929
ocsp.pki.goog/gts1c3
142.250.74.131 472
ww1.12kbps.xyz/_tr
199.59.243.223 200 OK 22
www.google.com/afs/gen_204?client=dp-bodis30_3ph&output=uds_ads_only&zx=gd894rn0a3m4&aqid=7MFWZImWCZu5Y6OYhtgG&psid=3113057640&pbt=bs&adbx=290&adby=145&adbh=481&adbw=700&adbah=153%2C153%2C153&adbn=master-1&eawp=partner-dp-bodis30_3ph&errv=528505921&csala=7%7C0%7C271%7C52%7C313&lle=0&ifv=1&usr=1
216.58.211.4 204 No Content 0
www.google.com/afs/gen_204?client=dp-bodis30_3ph&output=uds_ads_only&zx=jmdvtikxky3y&aqid=7MFWZImWCZu5Y6OYhtgG&psid=3113057640&pbt=bv&adbx=290&adby=145&adbh=481&adbw=700&adbah=153%2C153%2C153&adbn=master-1&eawp=partner-dp-bodis30_3ph&errv=528505921&csala=7%7C0%7C271%7C52%7C313&lle=0&ifv=1&usr=1
216.58.211.4 204 No Content 0
afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/chevron.svg?c=%2302198b
142.250.74.97 200 OK 200