Report Overview

  1. Submitted URL

    12kbps.xyz/repo/vir/others/memz.exe

  2. IP

    185.107.56.54

    ASN

    #43350 NForce Entertainment B.V.

  3. Submitted

    2023-05-06 21:09:14

    Access

    public

  4. Website Title

  5. Final URL

  6. Tags

  7. urlquery detections

    No alerts detected

Detections

  1. urlquery

    0

  2. Network Intrusion Detection

    4

  3. Threat Detection Systems

    0

Domain Summary

Domain / FQDNRankRegisteredFirst SeenLast Seen
afs.googleusercontent.com121232008-11-172013-05-062023-05-06
12kbps.xyzunknown2019-05-302017-12-232023-05-06
ww1.12kbps.xyzunknown2019-05-302021-02-122023-05-06
ocsp.pki.goog1752016-06-132018-07-012023-05-06
www.google.com71997-09-152015-05-102023-05-06

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

SeveritySource IPDestination IPAlert
medium 185.107.56.54Client IP
medium 185.107.56.54Client IP
medium 185.107.56.54Client IP
medium 185.107.56.54Client IP

Threat Detection Systems

OpenPhish

No alerts detected


PhishTank

No alerts detected


Fortinet's Web Filter

No alerts detected


mnemonic secure dns

No alerts detected


Quad9 DNS

No alerts detected


ThreatFox

No alerts detected


JavaScript (5)

HTTP Transactions (21)

URLIPResponseSize
12kbps.xyz/repo/vir/others/memz.exe
185.107.56.54 496 B
12kbps.xyz/favicon.ico
185.107.56.54 9 B
12kbps.xyz/repo/vir/others/memz.exe?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY4MzQxNDUzNywiaWF0IjoxNjgzNDA3MzM3LCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIydGVhazNmc2o0NmVjcWw1bzQzZmtrNGYiLCJuYmYiOjE2ODM0MDczMzcsInRzIjoxNjgzNDA3MzM3Nzc4ODA1fQ.GRukMW-cpctLNQWMgmjr0HmX2bzeAn9ym8nlh6zoNVw&sid=374e7c02-ec52-11ed-aa8c-d4712ea166bd
185.107.56.54302 Found11 B
ww1.12kbps.xyz/
199.59.243.223200 OK664 B
ww1.12kbps.xyz/js/parking.2.104.9.js
199.59.243.223200 OK22 kB
ww1.12kbps.xyz/_fd
199.59.243.223200 OK2.0 kB
ww1.12kbps.xyz/px.gif?ch=1&rn=0.7893176001508445
199.59.243.223200 OK42 B
ww1.12kbps.xyz/px.gif?ch=2&rn=0.7893176001508445
199.59.243.223200 OK42 B
ocsp.pki.goog/gts1c3
142.250.74.131 471 B
ww1.12kbps.xyz/favicon.ico
199.59.243.223200 OK0 B
www.google.com/adsense/domains/caf.js
216.58.211.4200 OK54 kB
www.google.com/afs/ads?adtest=off&psid=3113057640&pcsa=false&channel=pid-bodis-gcontrol130%2Cpid-bodis-gcontrol97%2Cpid-bodis-gcontrol321%2Cpid-bodis-gcontrol152%2Cpid-bodis-gcontrol484&client=dp-bodis30_3ph&r=m&hl=en&rpbu=http%3A%2F%2Fww1.12kbps.xyz%3Fcaf%26&max_radlink_len=50&type=3&uiopt=false&swp=as-drid-2898040491288658&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300002&format=r3&nocache=1291683407340823&num=0&output=afd_ads&domain_name=ww1.12kbps.xyz&v=3&bsl=8&pac=2&u_his=3&u_tz=0&dt=1683407340825&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1264&psh=79&frm=0&cl=528505921&uio=-&cont=rs&jsid=caf&jsv=528505921&rurl=http%3A%2F%2Fww1.12kbps.xyz%2F&adbw=master-1%3A1264
216.58.211.4200 OK2.1 kB
ocsp.pki.goog/gts1c3
142.250.74.131 472 B
ocsp.pki.goog/gts1c3
142.250.74.131 472 B
afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/call_to_action_arrow.svg?c=%23ffffff
142.250.74.97200 OK278 B
www.google.com/adsense/domains/caf.js
216.58.211.4200 OK54 kB
ocsp.pki.goog/gts1c3
142.250.74.131 472 B
ww1.12kbps.xyz/_tr
199.59.243.223200 OK22 B
www.google.com/afs/gen_204?client=dp-bodis30_3ph&output=uds_ads_only&zx=gd894rn0a3m4&aqid=7MFWZImWCZu5Y6OYhtgG&psid=3113057640&pbt=bs&adbx=290&adby=145&adbh=481&adbw=700&adbah=153%2C153%2C153&adbn=master-1&eawp=partner-dp-bodis30_3ph&errv=528505921&csala=7%7C0%7C271%7C52%7C313&lle=0&ifv=1&usr=1
216.58.211.4204 No Content0 B
www.google.com/afs/gen_204?client=dp-bodis30_3ph&output=uds_ads_only&zx=jmdvtikxky3y&aqid=7MFWZImWCZu5Y6OYhtgG&psid=3113057640&pbt=bv&adbx=290&adby=145&adbh=481&adbw=700&adbah=153%2C153%2C153&adbn=master-1&eawp=partner-dp-bodis30_3ph&errv=528505921&csala=7%7C0%7C271%7C52%7C313&lle=0&ifv=1&usr=1
216.58.211.4204 No Content0 B
afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/chevron.svg?c=%2302198b
142.250.74.97200 OK200 B