Report Overview
Visitedpublic
2025-10-09 09:52:49
Tags
Submit Tags
URL
sber.cdek.yandex.pay.kwid9.jokermerah.top/
Finishing URL
ww7.jokermerah.top/?usid=103&utid=936e97fedf1a17f822da0fac26a55f01
IP / ASN
172.237.146.8
Title
jokermerah.top
Detections
urlquery
0
Network Intrusion Detection
1
Threat Detection Systems
3
Host Summary
| Host | Rank | Registered | First Seen | Last Seen | Sent | Received | IP | Fingerprints |
|---|---|---|---|---|---|---|---|---|
parking3.parklogic.com | 497061 | 2007-02-28 | 2023-05-10 | 2025-10-05 | 1.6 kB | 51 kB | 172.232.7.47 | |
sber.cdek.yandex.pay.kwid9.jokermerah.top 8 alert(s) on this Host | unknown | 2025-02-26 | 2025-10-09 | 2025-10-09 | 1.3 kB | 5.4 kB | 172.237.146.8 | |
router.parklogic.com | 346495 | 2007-02-28 | 2025-03-19 | 2025-10-05 | 550 B | 219 B | 172.234.216.100 | |
ww7.jokermerah.top 3 alert(s) on this Host | unknown | 2025-02-26 | 2025-03-08 | 2025-08-31 | 1.8 kB | 47 kB | 199.59.243.228 |
Related reports
Network Intrusion Detection Systems
Suricata /w Emerging Threats Pro
| Timestamp | Severity | Source IP | Destination IP | Alert |
|---|---|---|---|---|
| medium |  172.18.0.17 | 172.237.146.8 | ET INFO HTTP Request to a *.top domain |
Threat Detection Systems
| Detection System | Indicator | Verdict | Alert |
|---|---|---|---|
| DNS0 Zero | sber.cdek.yandex.pay.kwid9.jokermerah.top | malicious | Sinkholed |
| CIRA Canadian Shield DNS | sber.cdek.yandex.pay.kwid9.jokermerah.top | malicious | Sinkholed |
| DNS0 Zero | ww7.jokermerah.top | malicious | Sinkholed |
JavaScript (6)
| HASH | FROM | Size | First Seen | Last Seen | |
|---|---|---|---|---|---|
| 0a898df5f924e0c78be4385eac7becf1 | DocumentWrite | 184 B | 2025-03-08 | 2025-12-07 | |
Introduced by DocumentWrite First Seen 2025-03-08 Last Seen 2025-12-07 Times Seen 6 Size 184 B (184 bytes) MD5 0a898df5f924e0c78be4385eac7becf1 SHA1 0bc1c0e8c1e0a2fd87815211d0953c7966e580c4 Loading... | |||||
HTTP Transactions (10)
| URL | IP | Response | Size |
|---|