Report Overview

  1. Submitted URL

    12376.url.tudown.com/down/cszmdyrj-v1.0@278_28616.exe

  2. IP

    154.218.151.71

    ASN

    #137951 Clayer Limited

  3. Submitted

    2023-02-04 11:54:01

    Access

  4. Website Title

  5. Final URL

  6. Tags

  7. urlquery detections

    No alerts detected

Detections

  2. urlquery

    0

  3. Network Intrusion Detection

    1

  4. Threat Detection Systems

    8

Domain Summary

Domain / FQDNRankRegisteredFirst SeenLast Seen
content-signature-2.cdn.mozilla.net11522020-11-03T13:26:46Z2023-03-13T05:09:35Z
img2.baidu.com507862021-03-25T13:17:58Z2023-03-12T11:23:13Z
hm.baidu.com82542012-05-26T10:38:45Z2023-03-13T05:32:36Z
s.360.cn198142012-07-10T18:01:51Z2023-03-13T09:22:08Z
firefox.settings.services.mozilla.com8672020-06-04T22:08:41Z2023-03-13T05:09:10Z
contile.services.mozilla.com11142021-05-27T20:32:35Z2023-03-13T05:09:13Z
img-getpocket.cdn.mozilla.net16312018-06-22T01:36:00Z2023-03-13T05:09:16Z
js.passport.qihucdn.com2737952014-08-12T03:08:07Z2023-03-12T11:11:59Z
api.share.baidu.com446292013-04-25T16:45:11Z2023-03-13T05:37:01Z
s6.qhres2.com9109702022-01-25T09:18:01Z2023-03-12T11:12:00Z
r3.o.lencr.org3442020-12-02T09:52:13Z2023-03-13T05:09:07Z
push.services.mozilla.com21402014-10-24T10:27:06Z2023-03-13T05:09:14Z
t15.baidu.com330502021-01-09T17:16:17Z2023-03-12T11:23:14Z
t13.baidu.com326532021-01-09T14:57:25Z2023-03-12T11:23:14Z
push.zhanzhang.baidu.com571392015-07-22T07:44:02Z2023-03-13T05:37:01Z
s22.cnzz.com876352012-05-30T12:09:17Z2023-03-12T16:31:15Z
12376.url.tudown.comunknown2019-01-16T00:36:12Z2023-03-12T11:11:54Z
t14.baidu.com325592021-01-22T21:20:42Z2023-03-12T11:23:14Z
img0.baidu.com501262021-03-25T13:17:59Z2023-03-12T11:23:13Z
img1.baidu.com501582021-03-25T13:17:58Z2023-03-12T11:23:15Z
ocsp2.globalsign.com15442012-05-23T20:10:04Z2023-03-13T05:14:17Z

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

SeveritySource IPDestination IPAlert
mediumClient IP 192.169.69.26
ET INFO DYNAMIC_DNS HTTP Request to a *.duckdns .org Domain

Threat Detection Systems

OpenPhish

No alerts detected


PhishTank

No alerts detected


Fortinet's Web Filter
SeverityIndicatorAlert
medium12376.url.tudown.com/down/cszmdyrj-v1.0@278_28616.exeMalware
medium12376.url.tudown.com/js/orsxg5a.scriptMalware
medium12376.url.tudown.com/template/company/42xz/js/soft.jsMalware
medium12376.url.tudown.com/template/company/42xz/js/jquery.jsMalware

mnemonic secure dns

No alerts detected


Quad9 DNS

No alerts detected


ThreatFox

No alerts detected


JavaScript (13)

HTTP Transactions (124)

URLIPResponseSize
r3.o.lencr.org/
23.33.119.27200 OK503 B
r3.o.lencr.org/
23.33.119.27200 OK503 B
r3.o.lencr.org/
23.33.119.27200 OK503 B
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK939 B
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK5.3 kB
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK12 B
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK329 B
r3.o.lencr.org/
23.33.119.27200 OK503 B
12376.url.tudown.com/down/cszmdyrj-v1.0@278_28616.exe
154.218.151.71200 OK6.5 kB
push.services.mozilla.com/
35.161.100.71101 Switching Protocols0 B
12376.url.tudown.com/template/company/42xz/css/common.css
154.218.151.71200 OK1.9 kB
12376.url.tudown.com/js/orsxg5a.script
154.218.151.71200 OK531 B
12376.url.tudown.com/template/company/42xz/css/soft.css
154.218.151.71200 OK6.6 kB
12376.url.tudown.com/template/company/42xz/js/soft.js
154.218.151.71200 OK3.6 kB
12376.url.tudown.com/uploads/images/477746.jpg
154.218.151.71301 Moved Permanently0 B
12376.url.tudown.com/uploads/images/69476.jpg
154.218.151.71301 Moved Permanently0 B
12376.url.tudown.com/uploads/images/128441.jpg
154.218.151.71301 Moved Permanently0 B
12376.url.tudown.com/template/company/42xz/images/tab_line.png
154.218.151.71200 OK1.2 kB
12376.url.tudown.com/uploads/images/206881.jpg
154.218.151.71301 Moved Permanently0 B
12376.url.tudown.com/uploads/images/logo.png?n=5gmlfzm7r3tlrl7fxcbonfnq42hkp2fox3s2jb7ft646rlvn4ww2nzvaue&w=250
154.218.151.71200 OK3.9 kB
12376.url.tudown.com/template/company/42xz/images/dian1.png
154.218.151.71200 OK1.1 kB
r3.o.lencr.org/
23.33.119.27200 OK503 B
r3.o.lencr.org/
23.33.119.27200 OK503 B
r3.o.lencr.org/
23.33.119.27200 OK503 B
r3.o.lencr.org/
23.33.119.27200 OK503 B
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c030376-7935-4601-969c-86a91f4f5e85.jpeg
34.120.237.76200 OK7.2 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg
34.120.237.76200 OK8.5 kB
r3.o.lencr.org/
23.33.119.27200 OK503 B
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ec84086-8ac2-4887-bc81-86003255ab99.jpeg
34.120.237.76200 OK5.2 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2a517af0-06bb-4ad2-b66e-3627ca6b60a3.jpeg
34.120.237.76200 OK9.7 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
34.120.237.76200 OK12 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcae6042d-d677-4e39-b4e4-858988eb847b.jpeg
34.120.237.76200 OK9.1 kB
12376.url.tudown.com/template/company/42xz/js/jquery.js
154.218.151.71200 OK46 kB
t14.baidu.com/it/u=1838941643,957432802&fm=224&app=112&f=JPEG?w=500&h=500
185.10.104.124200 OK42 kB
t14.baidu.com/it/u=908038505,1032752128&fm=224&app=112&f=JPEG?w=500&h=500
185.10.104.124200 OK60 kB
12376.url.tudown.com/uploads/images/195388.jpg
154.218.151.71301 Moved Permanently0 B
12376.url.tudown.com/uploads/images/179621.jpg
154.218.151.71301 Moved Permanently0 B
12376.url.tudown.com/uploads/images/47840.jpg
154.218.151.71301 Moved Permanently0 B
12376.url.tudown.com/uploads/images/28261.jpg
154.218.151.71301 Moved Permanently0 B
12376.url.tudown.com/uploads/images/959387.jpg
154.218.151.71301 Moved Permanently0 B
12376.url.tudown.com/uploads/images/451278.jpg
154.218.151.71301 Moved Permanently0 B
12376.url.tudown.com/uploads/images/272104.jpg
154.218.151.71301 Moved Permanently0 B
12376.url.tudown.com/uploads/images/797085.jpg
154.218.151.71301 Moved Permanently0 B
12376.url.tudown.com/uploads/images/859918.jpg
154.218.151.71301 Moved Permanently0 B
12376.url.tudown.com/uploads/images/492906.jpg
154.218.151.71301 Moved Permanently0 B
12376.url.tudown.com/uploads/images/809070.jpg
154.218.151.71301 Moved Permanently0 B
img2.baidu.com/it/u=3081780896,2719685547&fm=253&app=120&f=JPEG?w=1280&h=800
183.134.239.1200 OK89 kB
img0.baidu.com/it/u=3310195540,1263575997&fm=253&fmt=auto&app=138&f=JPEG?w=750&h=500
36.99.50.35200 OK20 kB
t14.baidu.com/it/u=315753141,2478969794&fm=224&app=112&f=JPEG?w=500&h=500
185.10.104.124200 OK63 kB
t14.baidu.com/it/u=1744832350,1255582713&fm=224&app=112&f=JPEG?w=500&h=500
185.10.104.124200 OK48 kB
12376.url.tudown.com/uploads/images/910783.jpg
154.218.151.71301 Moved Permanently0 B
t15.baidu.com/it/u=190584701,3964397965&fm=224&app=112&f=JPEG?w=350&h=350
185.10.104.124200 OK25 kB
t13.baidu.com/it/u=3322228878,3116350625&fm=224&app=112&f=JPEG?w=484&h=500
185.10.104.124200 OK13 kB
12376.url.tudown.com/uploads/images/262383.jpg
154.218.151.71301 Moved Permanently0 B
12376.url.tudown.com/uploads/images/788516.jpg
154.218.151.71301 Moved Permanently0 B
12376.url.tudown.com/uploads/images/306589.jpg
154.218.151.71301 Moved Permanently0 B
12376.url.tudown.com/uploads/images/161303.jpg
154.218.151.71301 Moved Permanently0 B
12376.url.tudown.com/uploads/images/508481.jpg
154.218.151.71301 Moved Permanently0 B
img0.baidu.com/it/u=2272406783,1529638526&fm=253&fmt=auto&app=138&f=JPEG?w=446&h=645
36.99.50.35200 OK70 kB
12376.url.tudown.com/uploads/images/593374.jpg
154.218.151.71301 Moved Permanently0 B
img0.baidu.com/it/u=2972579496,3186569706&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=505
36.99.50.35200 OK21 kB
img0.baidu.com/it/u=838643461,1673757458&fm=253&fmt=auto?w=92&h=69
36.99.50.35200 OK6.2 kB
12376.url.tudown.com/template/company/42xz/images/dian2.png
154.218.151.71200 OK1.1 kB
12376.url.tudown.com/uploads/images/99103.jpg
154.218.151.71301 Moved Permanently0 B
12376.url.tudown.com/uploads/images/685182.jpg
154.218.151.71301 Moved Permanently0 B
12376.url.tudown.com/uploads/images/705440.jpg
154.218.151.71301 Moved Permanently0 B
img1.baidu.com/it/u=2251868659,3974194909&fm=253&fmt=auto&app=138&f=JPEG?w=522&h=500
36.99.50.35200 OK14 kB
12376.url.tudown.com/uploads/images/933206.jpg
154.218.151.71301 Moved Permanently0 B
img2.baidu.com/it/u=869611468,2044692533&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=500
36.99.50.35200 OK18 kB
img2.baidu.com/it/u=32288669,1487455851&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=500
36.99.50.35200 OK23 kB
hm.baidu.com/hm.js?dd9836db2e433f487a0aa434b7b3deb7
103.235.46.191200 OK11 kB
t14.baidu.com/it/u=2247878018,518343743&fm=224&app=112&f=JPEG?w=350&h=350
185.10.104.124200 OK8.9 kB
img2.baidu.com/it/u=3959725375,3313888631&fm=253&app=120&f=JPEG?w=1422&h=800
183.134.239.1200 OK183 kB
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.20.226200 OK1.5 kB
img1.baidu.com/it/u=1268906902,778031885&fm=253&fmt=auto&app=138&f=JPG?w=500&h=1084
36.99.50.35200 OK65 kB
push.zhanzhang.baidu.com/push.js
182.61.201.94200 OK227 B
12376.url.tudown.com/uploads/images/253999.jpg
154.218.151.71301 Moved Permanently0 B
12376.url.tudown.com/uploads/images/597130.jpg
154.218.151.71301 Moved Permanently0 B
12376.url.tudown.com/uploads/images/11379.jpg
154.218.151.71301 Moved Permanently0 B
img1.baidu.com/it/u=127871529,225979155&fm=253&fmt=auto?w=1280&h=800
36.99.50.35200 OK121 kB
12376.url.tudown.com/uploads/images/811115.jpg
154.218.151.71301 Moved Permanently0 B
12376.url.tudown.com/uploads/images/732939.jpg
154.218.151.71301 Moved Permanently0 B
img2.baidu.com/it/u=519815709,3255573034&fm=253&fmt=auto&app=138&f=JPEG?w=224&h=316
36.99.50.35200 OK13 kB
12376.url.tudown.com/uploads/images/79410.jpg
154.218.151.71301 Moved Permanently0 B
img0.baidu.com/it/u=1639438475,1882197635&fm=253&fmt=auto&app=138&f=JPEG?w=281&h=500
36.99.50.35200 OK18 kB
t14.baidu.com/it/u=2577836852,1200469003&fm=224&app=112&f=JPEG?w=500&h=500
185.10.104.124200 OK25 kB
img0.baidu.com/it/u=2992948711,447729903&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=332
36.99.50.35200 OK31 kB
img1.baidu.com/it/u=2173673234,2380392281&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=635
36.99.50.35200 OK29 kB
img0.baidu.com/it/u=1500249121,2745716627&fm=253&fmt=auto&app=138&f=GIF?w=160&h=120
36.99.50.35200 OK14 kB
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1830984283&si=dd9836db2e433f487a0aa434b7b3deb7&v=1.3.0&lv=1&sn=43859&r=0&ww=1280&u=http%3A%2F%2F12376.url.tudown.com%2Fdown%2Fcszmdyrj-v1.0%40278_28616.exe&tt=%E8%A1%97%E6%9C%BA%E9%87%91%E8%9F%BE%E6%8D%95%E9%B1%BC%E5%AE%98%E7%BD%91(%E4%B8%AD%E5%9B%BD)%E5%AE%98%E6%96%B9%E7%BD%91%E7%AB%99%2F%E6%89%8B%E6%9C%BA%E6%9C%80%E6%96%B0%E7%89%88%E4%B8%8B%E8%BD%BD
103.235.46.191200 OK43 B
t15.baidu.com/it/u=12062494,947302549&fm=224&app=112&f=JPEG?w=500&h=500
185.10.104.124200 OK54 kB
s22.cnzz.com/z_stat.php?id=1275003130&web_id=1275003130
180.97.251.250200 OK20 B
12376.url.tudown.com/uploads/images/759676.jpg
154.218.151.71301 Moved Permanently0 B
img2.baidu.com/it/u=2917169226,3214617518&fm=253&fmt=auto&app=138&f=JPEG?w=401&h=500
36.99.50.35200 OK13 kB
img1.baidu.com/it/u=814631857,2793334859&fm=253&app=120&f=JPEG?w=800&h=1280
49.79.225.35200 OK130 kB
img2.baidu.com/it/u=3559670237,3663502196&fm=253&fmt=auto&app=138&f=JPEG?w=800&h=500
36.99.50.35200 OK41 kB
img1.baidu.com/it/u=888592366,3557183999&fm=253&fmt=auto&app=138&f=JPEG?w=667&h=500
36.99.50.35200 OK37 kB
12376.url.tudown.com/uploads/images/34625.jpg
154.218.151.71301 Moved Permanently0 B
12376.url.tudown.com/uploads/images/26999.jpg
154.218.151.71301 Moved Permanently0 B
12376.url.tudown.com/uploads/images/221237.jpg
154.218.151.71301 Moved Permanently0 B
12376.url.tudown.com/uploads/images/141976.jpg
154.218.151.71301 Moved Permanently0 B
12376.url.tudown.com/uploads/images/810018.jpg
154.218.151.71301 Moved Permanently0 B
t13.baidu.com/it/u=978985026,6018069&fm=224&app=112&f=JPEG?w=500&h=500
185.10.104.124200 OK47 kB
12376.url.tudown.com/uploads/images/277348.jpg
154.218.151.71301 Moved Permanently0 B
img1.baidu.com/it/u=2469407609,1331297943&fm=253&app=120&f=JPEG?w=1280&h=800
49.79.225.35200 OK110 kB
t14.baidu.com/it/u=46448023,4054105294&fm=224&app=112&f=PNG?w=500&h=500
185.10.104.124200 OK196 kB
img0.baidu.com/it/u=3617529929,2710815027&fm=253&fmt=auto&app=138&f=PNG?w=229&h=499
36.99.50.35200 OK13 kB
img2.baidu.com/it/u=1961932304,1767046630&fm=253&fmt=auto&app=138&f=JPEG?w=769&h=500
36.99.50.35200 OK42 kB
t14.baidu.com/it/u=3726913625,88149401&fm=224&app=112&f=JPEG?w=500&h=500
185.10.104.124200 OK29 kB
12376.url.tudown.com/uploads/images/196726.jpg
154.218.151.71301 Moved Permanently0 B
12376.url.tudown.com/uploads/images/175926.jpg
154.218.151.71301 Moved Permanently0 B
12376.url.tudown.com/uploads/images/918586.jpg
154.218.151.71301 Moved Permanently0 B
img0.baidu.com/it/u=1843901330,3807841324&fm=253&app=120&f=JPEG?w=1280&h=800
36.99.50.35200 OK139 kB
api.share.baidu.com/s.gif?l=http://12376.url.tudown.com/down/cszmdyrj-v1.0@278_28616.exe
180.101.212.103200 OK0 B
img2.baidu.com/it/u=2804370413,2977445816&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=888
36.99.50.35200 OK51 kB
img0.baidu.com/it/u=2900397427,2165033643&fm=253&app=120&f=JPEG?w=1280&h=800
36.99.50.35200 OK88 kB
img2.baidu.com/it/u=946290660,1722004426&fm=253&fmt=auto&app=120&f=JPEG?w=500&h=889
36.99.50.35200 OK42 kB
img0.baidu.com/it/u=1944925917,794003696&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=583
36.99.50.35200 OK20 kB
img0.baidu.com/it/u=73864632,2597310&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=740
36.99.50.35200 OK42 kB
img1.baidu.com/it/u=3469286897,2535966638&fm=253&app=120&f=JPEG?w=1422&h=800
49.79.225.35200 OK314 kB
js.passport.qihucdn.com/11.0.1.js?d10ea2610e3a9b90fa9990ffc6bf559d
101.198.192.8200 OK117 B
s6.qhres2.com/static/ab77b6ea7f3fbf79.js
54.230.111.11200 OK478 B
12376.url.tudown.com/favicon.ico
154.218.151.71200 OK0 B
s.360.cn/so/zz.gif?url=http%3A%2F%2F12376.url.tudown.com%2Fdown%2Fcszmdyrj-v1.0%40278_28616.exe&sid=d10ea2610e3a9b90fa9990ffc6bf559d&token=de1x0ee.a621661802e_38a792b@900.
171.8.167.90200 OK0 B