Report - app-airtm-sesion.com

Report Overview

Visitedpublic

2026-03-23 09:01:08

Tags

Submit Tags

URL

app-airtm-sesion.com

Finishing URL

app-airtm-sesion.com/

IP / ASN

United States

64.29.17.65

#16509 AMAZON-02

Title

Airtm - Inicio de sesión

Suspicious - Suspicious Javascript code

Detections

urlquery

2

Network Intrusion Detection

2

Threat Detection Systems

2

Host Summary

Host	Rank	Registered	First Seen	Last Seen	Sent	Received	IP	Fingerprints
app-airtm-sesion.com	unknown	unknown	No data	No data	11 kB	798 kB	64.29.17.65
api.telegram.org	206724	2003-12-15	2015-06-25	2026-03-20	1.2 kB	745 B	149.154.166.110
hebbkx1anhila5yf.public.blob.vercel-storage.com	1934469	2023-02-27	2023-10-09	2026-03-17	542 B	7.2 kB	13.49.54.242

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2026-03-23 09:00:48	low	Client IP	149.154.166.110	ET HUNTING Observed Telegram API Domain (api .telegram .org in TLS SNI)
2026-03-23 09:00:48	low	Client IP	149.154.166.110	ET HUNTING Observed Telegram API Domain (api .telegram .org in TLS SNI)

Threat Detection Systems

Detection System	Indicator	Verdict	Alert
YARAhub by abuse.ch	app-airtm-sesion.com/_next/static/chunks/2e57af8c430c3038.js	malware	Detects file containing Telegram Bot API
DNS4EU	app-airtm-sesion.com	malicious	Sinkholed

JavaScript (18)

HTTP Transactions (27)

	URL	IP	Response	Size