Report Overview
Submitted URL
passchoolofmotoring.co.uk/wp-content/uploads/2023/rshMicro365.zip
IP
18.133.87.128
ASN
#16509 AMAZON-02
Submitted
2024-05-10 08:30:32
Access
public
Website Title
about:privatebrowsing
Final URL
about:privatebrowsing
Tags
urlquery detections
No alerts detected
Detections
urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
3
Domain Summary
Domain / FQDN | Rank | Registered | First Seen | Last Seen | Sent | Received | IP |
---|---|---|---|---|---|---|---|
passchoolofmotoring.co.uk | unknown | unknown | 2015-08-12 | 2023-06-06 | 519 B | 525 kB | 18.133.87.128 |
Related reports
Network Intrusion Detection Systems
Suricata /w Emerging Threats Pro
Threat Detection Systems
Public InfoSec YARA rules
Scan Date | Severity | Indicator | Alert |
---|---|---|---|
2024-05-10 | medium | passchoolofmotoring.co.uk/wp-content/uploads/2023/rshMicro365.zip | Phishing Kit impersonating OneDrive |
OpenPhish
No alerts detected
PhishTank
No alerts detected
mnemonic secure dns
No alerts detected
Quad9 DNS
No alerts detected
ThreatFox
No alerts detected
Files detected
URL
passchoolofmotoring.co.uk/wp-content/uploads/2023/rshMicro365.zip
IP
18.133.87.128
ASN
#16509 AMAZON-02
File type
Zip archive data, at least v1.0 to extract, compression method=store
Size
525 kB (524695 bytes)
Hash
5155bfa3ce2e45bcb47e48023f71e5f7
7b54b823599e097bdc8a25b461b7b3aad83bbbb8
Archive (4)
Filename | Md5 | File type |
---|---|---|
1.html | 49129e6a1375c8c1e470941bc41a54a6 | HTML document, ASCII text, with no line terminators |
1.png | c7f488705c8708b654074fc4b9dab1f9 | PNG image data, 3351 x 1679, 8-bit/color RGBA, non-interlaced |
index.html | f1b8bc941fb2692134c3afb1603b4ade | exported SGML document, ASCII text, with very long lines (58749), with CRLF line terminators |
next.php | cd26d431b7a6a67d5a387ed756924ec2 | PHP script, ASCII text, with very long lines (3590) |
Detections
Analyzer | Verdict | Alert |
---|---|---|
Phishing Kit YARA rules | phishing | Phishing Kit impersonating OneDrive |
VirusTotal | malicious |
JavaScript (0)
HTTP Transactions (1)
URL | IP | Response | Size | ||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|
passchoolofmotoring.co.uk/wp-content/uploads/2023/rshMicro365.zip | 18.133.87.128 | 200 OK | 525 kB | ||||||||||
Detections
HTTP Headers
| |||||||||||||