Report - 142.93.195.228/8UsA.sh

Report Overview

Submitted URL
142.93.195.228/8UsA.sh
IP
142.93.195.228
ASN
#14061 DIGITALOCEAN-ASN
Submitted
2023-06-07 00:50:28
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
16

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
142.93.195.228	unknown	unknown	2019-01-29	2023-05-12	3.1 kB	33 kB	142.93.195.228

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator
2023-06-07	medium	142.93.195.228
2023-06-07	medium	142.93.195.228
2023-06-07	medium	142.93.195.228
2023-06-07	medium	142.93.195.228
2023-06-07	medium	142.93.195.228
2023-06-07	medium	142.93.195.228
2023-06-07	medium	142.93.195.228
2023-06-07	medium	142.93.195.228

ThreatFox

No alerts detected

JavaScript (5)

	URL	Size	First Seen	Last Seen
	142.93.195.228/8UsA.sh	2.0 kB	2023-06-07	2023-06-08
Pretty URL 142.93.195.228/8UsA.sh IP 142.93.195.228 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-07 02:50:34 Last Seen2023-06-08 21:35:48 Times Seen2 Hash a0070572ad9c62dac56bd60cb5be923a a657a81381d749ac92e4cc1a7bb200ecad49484f 45a015ae6ada93fd8e373e77cf00b444f0fba26667a7d7a8c83e270e27aac955 Loading...

	142.93.195.228/wp-content/themes/astra/assets/js/minified/style.min.js?ver=1.5.5	9.0 kB	2023-03-07	2024-02-16
Pretty URL 142.93.195.228/wp-content/themes/astra/assets/js/minified/style.min.js?ver=1.5.5 IP 142.93.195.228 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:43:29 Last Seen2024-02-16 14:49:11 Times Seen129 Hash ad86d2d44113f461575a167feeca4673 c22e843ff265840c14490e969d96eb5217567805 b6cd64d1bac80d051ffad4b39f86eb747b83d664e0ed5b60cd70414555a006af Loading...

	142.93.195.228/wp-includes/js/wp-embed.min.js?ver=4.9.23	1.4 kB	2023-05-16	2024-04-25
Pretty URL 142.93.195.228/wp-includes/js/wp-embed.min.js?ver=4.9.23 IP 142.93.195.228 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-16 22:20:04 Last Seen2024-04-25 10:00:13 Times Seen11124 Hash 43928880ff5ebadcd513755b011732cd d0fdb17db490123ed700c2caa5d2d764794cb6d5 37c5f58f12814dd0ecc28f15b7765c6bcd31a9479d330b4ef896e140bf89dc38 Loading...

	142.93.195.228/wp-includes/js/wp-emoji-release.min.js?ver=4.9.23	12 kB	2023-03-07	2024-04-25
Pretty URL 142.93.195.228/wp-includes/js/wp-emoji-release.min.js?ver=4.9.23 IP 142.93.195.228 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:46 Last Seen2024-04-25 00:00:12 Times Seen6774 Hash fe0575b66568074463f12485d90f6d4c aeedd9ab3b7874e63f647042963cb1301a38b391 647a6b36f3fd1f21bae171270111096b4613c23a47e6621628a51bae9c82b0b7 Loading...

	142.93.195.228/8UsA.sh	73 B	2023-03-07	2024-04-22
Pretty URL 142.93.195.228/8UsA.sh IP 142.93.195.228 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 16:59:50 Last Seen2024-04-22 16:48:45 Times Seen60 Hash 9bcbe45c91bb6ff1b8c2901775b028c9 37ba1a738c09cd3ca16fc587af8d5abb0a4b0f03 920bd36af55a5a7b2437663879afccae4f91e30a64583598f035c22a9bf999e1 Loading...

HTTP Transactions (8)

URL IP Response Size

142.93.195.228/8UsA.sh

142.93.195.228

4.9 kB

URL User Request GET
142.93.195.228/8UsA.sh
IP
142.93.195.228:0
ASN
#14061 DIGITALOCEAN-ASN

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (7360)
Size
4.9 kB (4922 bytes)
Hash
87a75d2ef2aced235c04203fb4e83eaf
4ae247e208980dfd26a5f6dd55c0d51c62adab29
71ab1721c3c31a89e07ea5d337448413e82733400eee52cb2f0e439c6f279531

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /8UsA.sh HTTP/1.1
Host: 142.93.195.228
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Server: nginx
Date: Wed, 07 Jun 2023 00:50:10 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <http://142.93.195.228/wp-json/>; rel="https://api.w.org/"
Content-Encoding: gzip

142.93.195.228/wp-content/themes/astra/assets/css/minified/menu-animation.min.css?ver=1.5.5

142.93.195.228

200 OK

377 B

URL GET HTTP/1.1
142.93.195.228/wp-content/themes/astra/assets/css/minified/menu-animation.min.css?ver=1.5.5
IP
142.93.195.228:80
ASN
#14061 DIGITALOCEAN-ASN

Requested by
http://142.93.195.228/8UsA.sh

File type
ASCII text, with very long lines (3936), with no line terminators
Size
377 B (377 bytes)
Hash
cb78f38962003acd8e2788af4e085ebc
bf18dad26eaeaa8e3a18d17b2555b30da8c0a1c7
69a270b8516b01e9d59ed94b7fc69503eb08a475e81fc87f582c690851dee3cd

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/astra/assets/css/minified/menu-animation.min.css?ver=1.5.5 HTTP/1.1
Host: 142.93.195.228
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://142.93.195.228/8UsA.sh
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Jun 2023 00:50:10 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 08 Nov 2018 17:11:49 GMT
ETag: W/"f60-57a2a548d282a"
Content-Encoding: gzip

142.93.195.228/wp-content/themes/astra/assets/css/minified/style.min.css?ver=1.5.5

142.93.195.228

200 OK

15 kB

URL GET HTTP/1.1
142.93.195.228/wp-content/themes/astra/assets/css/minified/style.min.css?ver=1.5.5
IP
142.93.195.228:80
ASN
#14061 DIGITALOCEAN-ASN

Requested by
http://142.93.195.228/8UsA.sh

File type
ASCII text, with very long lines (62976)
Size
15 kB (14819 bytes)
Hash
7a96302b0035c63565dd20a69919835d
8bf1a92b79c65153a79453780cf0b68b5fc0f39f
a39786c25515c76c114a7cbe1d50ee722d89d2c696bfdaff838b0d40f8cfc3a3

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/astra/assets/css/minified/style.min.css?ver=1.5.5 HTTP/1.1
Host: 142.93.195.228
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://142.93.195.228/8UsA.sh
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Jun 2023 00:50:10 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 08 Nov 2018 17:11:49 GMT
ETag: W/"1710c-57a2a548d282a"
Content-Encoding: gzip

142.93.195.228/wp-content/themes/astra/assets/js/minified/style.min.js?ver=1.5.5

142.93.195.228

200 OK

2.7 kB

URL GET HTTP/1.1
142.93.195.228/wp-content/themes/astra/assets/js/minified/style.min.js?ver=1.5.5
IP
142.93.195.228:80
ASN
#14061 DIGITALOCEAN-ASN

Requested by
http://142.93.195.228/8UsA.sh

File type
ASCII text, with very long lines (9027), with no line terminators
Size
2.7 kB (2675 bytes)
Hash
ad86d2d44113f461575a167feeca4673
c22e843ff265840c14490e969d96eb5217567805
b6cd64d1bac80d051ffad4b39f86eb747b83d664e0ed5b60cd70414555a006af

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/astra/assets/js/minified/style.min.js?ver=1.5.5 HTTP/1.1
Host: 142.93.195.228
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://142.93.195.228/8UsA.sh
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Jun 2023 00:50:10 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 08 Nov 2018 17:11:49 GMT
ETag: W/"2343-57a2a548d08ea"
Content-Encoding: gzip

142.93.195.228/wp-includes/js/wp-embed.min.js?ver=4.9.23

142.93.195.228

200 OK

777 B

URL GET HTTP/1.1
142.93.195.228/wp-includes/js/wp-embed.min.js?ver=4.9.23
IP
142.93.195.228:80
ASN
#14061 DIGITALOCEAN-ASN

Requested by
http://142.93.195.228/8UsA.sh

File type
ASCII text, with very long lines (1443), with no line terminators
Size
777 B (777 bytes)
Hash
43928880ff5ebadcd513755b011732cd
d0fdb17db490123ed700c2caa5d2d764794cb6d5
37c5f58f12814dd0ecc28f15b7765c6bcd31a9479d330b4ef896e140bf89dc38

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/wp-embed.min.js?ver=4.9.23 HTTP/1.1
Host: 142.93.195.228
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://142.93.195.228/8UsA.sh
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Jun 2023 00:50:10 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 17 May 2023 04:36:55 GMT
ETag: W/"5a3-5fbdc3cd29526"
Content-Encoding: gzip

142.93.195.228/wp-includes/js/wp-emoji-release.min.js?ver=4.9.23

142.93.195.228

200 OK

4.3 kB

URL GET HTTP/1.1
142.93.195.228/wp-includes/js/wp-emoji-release.min.js?ver=4.9.23
IP
142.93.195.228:80
ASN
#14061 DIGITALOCEAN-ASN

Requested by
http://142.93.195.228/8UsA.sh

File type
ASCII text, with very long lines (9063)
Size
4.3 kB (4347 bytes)
Hash
fe0575b66568074463f12485d90f6d4c
aeedd9ab3b7874e63f647042963cb1301a38b391
647a6b36f3fd1f21bae171270111096b4613c23a47e6621628a51bae9c82b0b7

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=4.9.23 HTTP/1.1
Host: 142.93.195.228
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://142.93.195.228/8UsA.sh
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Jun 2023 00:50:10 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 15 Apr 2021 04:57:42 GMT
ETag: W/"2ea7-5bffbb40ff091"
Content-Encoding: gzip

142.93.195.228/wp-content/themes/astra/assets/fonts/astra.woff

142.93.195.228

200 OK

3.3 kB

URL GET HTTP/1.1
142.93.195.228/wp-content/themes/astra/assets/fonts/astra.woff
IP
142.93.195.228:80
ASN
#14061 DIGITALOCEAN-ASN

Requested by
http://142.93.195.228/8UsA.sh

File type
Web Open Font Format, TrueType, length 3304, version 1.0\012- data
Size
3.3 kB (3304 bytes)
Hash
bfe0ed8503c926d68f58ed0408dfe0d0
0346d02d96ff7d2a0278bc10f4dfdf365c80eac3
ec7ef7aa5fd1e019f1c26193e95e46d481d4983673936a9dda086705ada6e3d5

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/astra/assets/fonts/astra.woff HTTP/1.1
Host: 142.93.195.228
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: http://142.93.195.228/8UsA.sh
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Jun 2023 00:50:10 GMT
Content-Type: font/woff
Content-Length: 3304
Connection: keep-alive
Last-Modified: Thu, 08 Nov 2018 17:11:49 GMT
ETag: "ce8-57a2a548d08ea"
Accept-Ranges: bytes

142.93.195.228/favicon.ico

142.93.195.228

200 OK

0 B

URL GET HTTP/1.1
142.93.195.228/favicon.ico
IP
142.93.195.228:80
ASN
#14061 DIGITALOCEAN-ASN

Requested by
http://142.93.195.228/8UsA.sh

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: 142.93.195.228
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://142.93.195.228/8UsA.sh
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Jun 2023 00:50:10 GMT
Content-Type: image/vnd.microsoft.icon
Content-Length: 0
Connection: keep-alive

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (5)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (8)

URL User Request GET

IP

ASN

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/1.1

IP

ASN

Requested by

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/1.1