Report Overview
Visitedpublic
2025-12-16 07:22:40
Tags
Submit Tags
URL
t-mobile.sjuak.icu/pay/b_info.html
Finishing URL
t-mobile.sjuak.icu/pay/a_index.html
IP / ASN
172.67.140.224
Title
T-Mobile Tuesdays - Get Free Stuff & Great Deals | T-Mobile
Detections
urlquery
0
Network Intrusion Detection
2
Threat Detection Systems
5
Host Summary
| Host | Rank | Registered | First Seen | Last Seen | Sent | Received | IP | Fingerprints |
|---|---|---|---|---|---|---|---|---|
t-mobile.sjuak.icu 112 alert(s) on this Host | unknown | 2025-12-14 | 2025-12-16 | 2025-12-16 | 12 kB | 2.2 MB | 104.21.94.229 |      |
ipinfo.io | 1327 | 2013-04-23 | 2013-12-16 | 2025-12-15 | 429 B | 650 B |  34.117.59.81 |   |
Cloudflare (CDN)
Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.Alpine.js (JavaScript frameworks)
Vue.js (JavaScript frameworks)
Vue.js is an open-source model–view–viewmodel JavaScript framework for building user interfaces and single-page applications.Adobe Experience Manager (CMS)
Adobe Experience Manager (AEM) is a content management solution for building websites, mobile apps and forms.Java (Programming languages)
Java is a class-based, object-oriented programming language that is designed to have as few implementation dependencies as possible.Google Cloud (IaaS)
Google Cloud is a suite of cloud computing services.Google Cloud CDN (CDN)
Cloud CDN uses Google's global edge network to serve content closer to users.Related reports
Network Intrusion Detection Systems
Suricata /w Emerging Threats Pro
| Timestamp | Severity | Source IP | Destination IP | Alert |
|---|---|---|---|---|
| medium | 172.18.0.14 | 104.21.94.229 | ET INFO Suspicious Domain (*.icu) in TLS SNI | |
| medium | 172.18.0.14 | 34.117.59.81 | ET POLICY Possible External IP Lookup Domain Observed in SNI (ipinfo. io) |
Threat Detection Systems
| Detection System | Indicator | Verdict | Alert |
|---|---|---|---|
| OpenPhish | t-mobile.sjuak.icu | phishing | Phishing - Deutsche Telekom |
| OpenDNS | t-mobile.sjuak.icu | phishing | Phishing Block |
| Hagezi Threat Feed | t-mobile.sjuak.icu | malicious | Sinkholed |
| DNS0 Zero | t-mobile.sjuak.icu | malicious | Sinkholed |
| OpenPhish | t-mobile.sjuak.icu/pay/b_info.html | phishing | Phishing - Deutsche Telekom |
JavaScript (20)
No JavaScripts
HTTP Transactions (29)
| URL | IP | Response | Size |
|---|