Report - elliert.github.io/dznl/xdevk.png

Report Overview

Visited public
2023-12-07 16:23:45
Tags
URL
elliert.github.io/dznl/xdevk.png
Finishing URL
elliert.github.io/dznl/xdevk.png
IP / ASN
185.199.110.153
#54113 FASTLY
Title
xdevk.png (PNG Image)

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
elliert.github.io	unknown	2013-03-08	2022-09-23 13:56:05	2023-12-05 06:59:05	965 B	192 kB	185.199.109.153

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

Files detected

URL
elliert.github.io/dznl/xdevk.png
IP
185.199.109.153
ASN
#54113 FASTLY

File type
Zip archive data, at least v2.0 to extract, compression method=deflate\012- data
Size
186 kB (186033 bytes)
Hash
677df6ccd0d4dde193ce9473dcd444aa
011eeec7f86c98f3bebf8c3e525ecc763519a18d
cdd00a0e86914bb7b6bd6294641ffcb141269e9d322105b32cbb7ec46573962c

Detections

Analyzer	Verdict	Alert
VirusTotal	malicious	VirusTotal - Scan result 26/64

JavaScript (0)

HTTP Transactions (2)

URL IP Response Size

elliert.github.io/dznl/xdevk.png

185.199.109.153

200 OK

186 kB

URL User Request GET HTTP/2
elliert.github.io/dznl/xdevk.png
IP
185.199.109.153:443
ASN
#54113 FASTLY

Certificate
IssuerDigiCert Inc
Subject*.github.io
FingerprintA1:46:14:C7:2A:1D:52:79:F6:AA:2B:B2:C5:0A:3B:D3:F5:02:06:75
ValidityTue, 21 Feb 2023 00:00:00 GMT - Wed, 20 Mar 2024 23:59:59 GMT

File type
Zip archive data, at least v2.0 to extract, compression method=deflate\012- data
Size
186 kB (186033 bytes)
Hash
677df6ccd0d4dde193ce9473dcd444aa
011eeec7f86c98f3bebf8c3e525ecc763519a18d
cdd00a0e86914bb7b6bd6294641ffcb141269e9d322105b32cbb7ec46573962c

Detections

Analyzer	Verdict	Alert
VirusTotal	malicious	VirusTotal - Scan result 26/64

HTTP Headers

GET /dznl/xdevk.png HTTP/1.1
Host: elliert.github.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: GitHub.com
content-type: image/png
permissions-policy: interest-cohort=()
last-modified: Fri, 23 Sep 2022 08:54:32 GMT
access-control-allow-origin: *
strict-transport-security: max-age=31556952
etag: "632d7448-2d6b1"
expires: Thu, 07 Dec 2023 16:33:27 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 983C:C8F2:1C6302B:1CDA3CA:6571F17F
accept-ranges: bytes
date: Thu, 07 Dec 2023 16:23:27 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1654-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1701966208.630608,VS0,VE186
vary: Accept-Encoding
x-fastly-request-id: d729361b2d8f6e79fe9658c693c18b4d03728627
content-length: 186033
X-Firefox-Spdy: h2

elliert.github.io/favicon.ico

185.199.109.153

404 Not Found

5.1 kB

URL GET HTTP/2
elliert.github.io/favicon.ico
IP
185.199.109.153:443
ASN
#54113 FASTLY

Requested by
https://elliert.github.io/dznl/xdevk.png
Certificate
IssuerDigiCert Inc
Subject*.github.io
FingerprintA1:46:14:C7:2A:1D:52:79:F6:AA:2B:B2:C5:0A:3B:D3:F5:02:06:75
ValidityTue, 21 Feb 2023 00:00:00 GMT - Wed, 20 Mar 2024 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (3909)
Size
5.1 kB (5142 bytes)
Hash
1eb970ce5a18bec7165f016df8238566
9efd1514af80fe14db4ed28e9bc53975b9ee089c
70d613e3acfba24fd2876fcbacaf639e1e111ef4d54baf70761c47673f37d6a3

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: elliert.github.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://elliert.github.io/dznl/xdevk.png
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
server: GitHub.com
content-type: text/html; charset=utf-8
permissions-policy: interest-cohort=()
etag: W/"6552848a-239b"
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; img-src data:; connect-src 'self'
content-encoding: gzip
x-github-request-id: FB28:18124:149DAD:14F4CF:6571F17F
accept-ranges: bytes
date: Thu, 07 Dec 2023 16:23:28 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1654-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1701966209.850939,VS0,VE120
vary: Accept-Encoding
x-fastly-request-id: d7d0a94412e751b67976745cc5f6ed228bbf301b
content-length: 5142
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

Files detected

URL

IP

ASN

File type

Size

Hash

Detections

JavaScript (0)

HTTP Transactions (2)

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers