Report - smg.city/bud

Report Overview

Visitedpublic

2023-12-02 13:11:16

Tags

apple phishing dyndns

Submit Tags

URL

smg.city/bud

Finishing URL

strksmnge-pmblianspasea.dynnamn.ru/account/?view=login&appIdKey=a964943ec381744&country=NO

IP / ASN

Indonesia

103.101.52.69

#136843 Dinas Komunikasi dan Informatika Pemerintah Kota Semarang

Title

Manage your Apple ID - Apple

Phishing - Apple

Suspicious - DynDNS domain

Detections

urlquery

0

Network Intrusion Detection

0

Threat Detection Systems

0

Host Summary

Host	Rank	Registered	First Seen	Last Seen	Sent	Received	IP	Fingerprints
smg.city	unknown	2019-07-31	2019-07-31 11:46:06	2023-11-30 06:02:14	478 B	262 B	103.101.52.69
strksmnge-pmblianspasea.dynnamn.ru	unknown	2019-09-16	2023-12-01 12:07:23	2023-12-01 12:07:23	11 kB	1.6 MB	162.214.98.92

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-12-02 13:11:04	low	Client IP	Internal IP	ET INFO DYNAMIC_DNS Query to dynnamn .ru Domain
2023-12-02 13:11:04	low	Client IP	Internal IP	ET INFO DYNAMIC_DNS Query to dynnamn .ru Domain
2023-12-02 13:11:05	low	Client IP	Internal IP	ET INFO DYNAMIC_DNS Query to dynnamn .ru Domain
2023-12-02 13:11:06	low	Client IP	Internal IP	ET INFO DYNAMIC_DNS Query to dynnamn .ru Domain
2023-12-02 13:11:06	low	Client IP	Internal IP	ET INFO DYNAMIC_DNS Query to dynnamn .ru Domain
2023-12-02 13:11:06	low	Client IP	Internal IP	ET INFO DYNAMIC_DNS Query to dynnamn .ru Domain
2023-12-02 13:11:06	low	Client IP	Internal IP	ET INFO DYNAMIC_DNS Query to dynnamn .ru Domain
2023-12-02 13:11:06	low	Client IP	Internal IP	ET INFO DYNAMIC_DNS Query to dynnamn .ru Domain
2023-12-02 13:11:06	low	Client IP	Internal IP	ET INFO DYNAMIC_DNS Query to dynnamn .ru Domain
2023-12-02 13:11:07	low	Client IP	Internal IP	ET INFO DYNAMIC_DNS Query to dynnamn .ru Domain
2023-12-02 13:11:07	low	Client IP	Internal IP	ET INFO DYNAMIC_DNS Query to dynnamn .ru Domain
2023-12-02 13:11:07	low	Client IP	Internal IP	ET INFO DYNAMIC_DNS Query to dynnamn .ru Domain
2023-12-02 13:11:07	low	Client IP	Internal IP	ET INFO DYNAMIC_DNS Query to dynnamn .ru Domain
2023-12-02 13:11:07	low	Client IP	Internal IP	ET INFO DYNAMIC_DNS Query to dynnamn .ru Domain
2023-12-02 13:11:07	low	Client IP	Internal IP	ET INFO DYNAMIC_DNS Query to dynnamn .ru Domain
2023-12-02 13:11:08	low	Client IP	Internal IP	ET INFO DYNAMIC_DNS Query to dynnamn .ru Domain

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-12-02	medium	dynnamn.ru	Sinkholed
2023-12-02	medium	dynnamn.ru	Sinkholed
2023-12-02	medium	dynnamn.ru	Sinkholed
2023-12-02	medium	dynnamn.ru	Sinkholed
2023-12-02	medium	dynnamn.ru	Sinkholed
2023-12-02	medium	dynnamn.ru	Sinkholed
2023-12-02	medium	dynnamn.ru	Sinkholed
2023-12-02	medium	dynnamn.ru	Sinkholed
2023-12-02	medium	dynnamn.ru	Sinkholed
2023-12-02	medium	dynnamn.ru	Sinkholed
2023-12-02	medium	dynnamn.ru	Sinkholed
2023-12-02	medium	dynnamn.ru	Sinkholed
2023-12-02	medium	dynnamn.ru	Sinkholed
2023-12-02	medium	dynnamn.ru	Sinkholed
2023-12-02	medium	dynnamn.ru	Sinkholed
2023-12-02	medium	dynnamn.ru	Sinkholed
2023-12-02	medium	dynnamn.ru	Sinkholed
2023-12-02	medium	dynnamn.ru	Sinkholed
2023-12-02	medium	dynnamn.ru	Sinkholed

ThreatFox

No alerts detected

JavaScript (4)

HTTP Transactions (20)

	URL	IP	Response	Size