Report - inattv85.link/inat-box.html

Report Overview

Visitedpublic

2023-12-17 14:08:39

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Host Summary

Host	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
code.jquery.com	634	2005-12-10	2012-05-21 19:28:02	2023-12-17 05:57:59	419 B	31 kB	151.101.130.137
www.googletagmanager.com	75	2011-11-11	2013-05-22 04:07:37	2023-12-17 11:27:14	432 B	87 kB	142.250.74.168
github.com	1423	2007-10-09	2016-07-13 12:28:22	2023-11-19 18:34:15	555 B	3.1 kB	140.82.121.3
raw.githubusercontent.com	35802	2014-02-06	2014-03-01 08:08:08	2023-12-17 05:29:50	566 B	11 MB	185.199.111.133
inattv85.link	unknown	unknown	No data	No data	446 B	16 kB	104.21.16.98

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

File detected

URL

raw.githubusercontent.com/inatprobox/down/main/inat-box-v13-rc2.apk

IP / ASN

185.199.111.133

#54113 FASTLY

File Overview

File TypeZip archive data, at least v0.0 to extract, compression method=deflate - data

Size11 MB (11311951 bytes)

MD59c6cae30bd0dccca546a60b36c36c0eb

SHA1b004c1554c34e88e5d773b354159246c261ae04f

SHA256b42069ac7eed7d2f4ea14971325d0e4dd7730732d868eaf0606142a5894e30d8

Detections

Analyzer	Verdict	Alert
VirusTotal	suspicious	VirusTotal - Scan result 2/65

JavaScript (6)

	URL	From	Size	First Seen	Last Seen
	unknown	DomTimer	42 B	2023-10-30	2024-08-20
URL IP / ASN 0.0.0.0 #0 Introduced by DomTimer Embedded false Resource Info First Seen 2023-10-30 Last Seen 2024-08-20 Times Seen 6 Size 42 B (42 bytes) MD5 a68cfd84c615d356704ef59724d4d2fd SHA1 5b7d282ddd2d4db661e4746a3ced0cbd5317f58b SHA256 3e23a3f6169084e9de0d0adaa52b1fe3e2ce0322572ca4f67b43f72485f9f432 Format Code Loading...

	inattv85.link/inat-box.html	ScriptElement	0 B	0001-01-01	2025-08-02
URL inattv85.link/inat-box.html IP / ASN 0.0.0.0 #0 Introduced by ScriptElement Embedded true Resource Info First Seen 0001-01-01 Last Seen 2025-08-02 Times Seen 5606676 Size 0 B (0 bytes) MD5 d41d8cd98f00b204e9800998ecf8427e SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709 SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Format Code Loading...

	inattv85.link/inat-box.html	ScriptElement	0 B	0001-01-01	2025-08-02
URL inattv85.link/inat-box.html IP / ASN 0.0.0.0 #0 Introduced by ScriptElement Embedded true Resource Info First Seen 0001-01-01 Last Seen 2025-08-02 Times Seen 5606676 Size 0 B (0 bytes) MD5 d41d8cd98f00b204e9800998ecf8427e SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709 SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Format Code Loading...

	inattv85.link/inat-box.html	ScriptElement	0 B	0001-01-01	2025-08-02
URL inattv85.link/inat-box.html IP / ASN 0.0.0.0 #0 Introduced by ScriptElement Embedded true Resource Info First Seen 0001-01-01 Last Seen 2025-08-02 Times Seen 5606676 Size 0 B (0 bytes) MD5 d41d8cd98f00b204e9800998ecf8427e SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709 SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Format Code Loading...

	code.jquery.com/jquery-3.1.1.min.js	ScriptElement	87 kB	2023-03-07	2025-08-02
URL code.jquery.com/jquery-3.1.1.min.js IP / ASN 151.101.130.137 #54113 FASTLY Introduced by ScriptElement Embedded false Resource Info First Seen 2023-03-07 Last Seen 2025-08-02 Times Seen 119809 Size 87 kB (86709 bytes) MD5 e071abda8fe61194711cfc2ab99fe104 SHA1 f647a6d37dc4ca055ced3cf64bbc1f490070acba SHA256 85556761a8800d14ced8fcd41a6b8b26bf012d44a318866c0d81a62092efd9bf Format Code Loading...

	www.googletagmanager.com/gtag/js?id=G-3NBQ5KQ8MZ	ScriptElement	250 kB	2023-12-17	2023-12-17
URL www.googletagmanager.com/gtag/js?id=G-3NBQ5KQ8MZ IP / ASN 142.250.74.168 #15169 GOOGLE Introduced by ScriptElement Embedded false Resource Info First Seen 2023-12-17 Last Seen 2023-12-17 Times Seen 1 Size 250 kB (249838 bytes) MD5 4a9793ecfe28e5a63174c49c4e93e4ee SHA1 77f9ff9337e801668758cd7f944eed96cc5a42b6 SHA256 5eacd5678c57711b7318ee385ac5e9bd979fda7182e4a422b8c0af313d33a912 Format Code Loading...

HTTP Transactions (5)

URL IP Response Size

GET code.jquery.com/jquery-3.1.1.min.js

151.101.130.137

200 OK

30 kB

URL

code.jquery.com/jquery-3.1.1.min.js

IP / ASN

151.101.130.137

#54113 FASTLY

Requested byhttps://inattv85.link/inat-box.html

Resource Info

File typeASCII text, with very long lines (32030)

First Seen2023-03-07

Last Seen2025-08-02

Times Seen119809

Size30 kB (30070 bytes)

MD5e071abda8fe61194711cfc2ab99fe104

SHA1f647a6d37dc4ca055ced3cf64bbc1f490070acba

SHA25685556761a8800d14ced8fcd41a6b8b26bf012d44a318866c0d81a62092efd9bf

Certificate Info

IssuerSectigo Limited

Subject*.jquery.com

FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D

ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT

HTTP Headers

GET /jquery-3.1.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://inattv85.link/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-152b5"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 17 Dec 2023 14:08:13 GMT
age: 8021493
x-served-by: cache-lga21947-LGA, cache-hel1410020-HEL
x-cache: HIT, HIT
x-cache-hits: 118, 158411
x-timer: S1702822094.755547,VS0,VE0
vary: Accept-Encoding
content-length: 30070
X-Firefox-Spdy: h2

GET www.googletagmanager.com/gtag/js?id=G-3NBQ5KQ8MZ

142.250.74.168

200 OK

86 kB

URL

www.googletagmanager.com/gtag/js?id=G-3NBQ5KQ8MZ

IP / ASN

142.250.74.168

#15169 GOOGLE

Requested byhttps://inattv85.link/inat-box.html

Resource Info

File typeASCII text, with very long lines (3034)

First Seen2023-12-17

Last Seen2023-12-17

Times Seen1

Size86 kB (86186 bytes)

MD54a9793ecfe28e5a63174c49c4e93e4ee

SHA177f9ff9337e801668758cd7f944eed96cc5a42b6

SHA2565eacd5678c57711b7318ee385ac5e9bd979fda7182e4a422b8c0af313d33a912

Certificate Info

IssuerGoogle Trust Services LLC

Subject*.google-analytics.com

FingerprintC1:58:7C:BF:5A:61:79:08:CB:C2:00:63:60:07:86:BD:EA:0A:45:8A

ValidityMon, 20 Nov 2023 08:02:50 GMT - Mon, 12 Feb 2024 08:02:49 GMT

HTTP Headers

GET /gtag/js?id=G-3NBQ5KQ8MZ HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://inattv85.link/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 17 Dec 2023 14:08:13 GMT
expires: Sun, 17 Dec 2023 14:08:13 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 86186
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET github.com/inatprobox/down/raw/main/inat-box-v13-rc2.apk

140.82.121.3

302 Found

0 B

URL

github.com/inatprobox/down/raw/main/inat-box-v13-rc2.apk

IP / ASN

140.82.121.3

#36459 GITHUB

Requested byN/A

Resource Info

File typeN/A

First Seen0001-01-01

Last Seen2025-08-02

Times Seen5606676

Size0 B (0 bytes)

MD5d41d8cd98f00b204e9800998ecf8427e

SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Certificate Info

IssuerDigiCert Inc

Subjectgithub.com

FingerprintA3:B5:9E:5F:E8:84:EE:1F:34:D9:8E:EF:85:8E:3F:B6:62:AC:10:4A

ValidityTue, 14 Feb 2023 00:00:00 GMT - Thu, 14 Mar 2024 23:59:59 GMT

HTTP Headers

GET /inatprobox/down/raw/main/inat-box-v13-rc2.apk HTTP/1.1
Host: github.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://inattv85.link/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
server: GitHub.com
date: Sun, 17 Dec 2023 14:08:19 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
access-control-allow-origin: https://render.githubusercontent.com
location: https://raw.githubusercontent.com/inatprobox/down/main/inat-box-v13-rc2.apk
cache-control: no-cache
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com cdn.optimizely.com logx.optimizely.com/v1/events api.githubcopilot.com objects-origin.githubusercontent.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com support.github.com; img-src 'self' data: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ gist.github.com/assets-cdn/worker/
content-length: 0
x-github-request-id: 98D8:1A23DA:15CD4B7F:1614B3FF:657F00D2
X-Firefox-Spdy: h2

GET raw.githubusercontent.com/inatprobox/down/main/inat-box-v13-rc2.apk

185.199.111.133

200 OK

11 MB

URL

raw.githubusercontent.com/inatprobox/down/main/inat-box-v13-rc2.apk

IP / ASN

185.199.111.133

#54113 FASTLY

Requested byN/A

Resource Info

File typeZip archive data, at least v0.0 to extract, compression method=deflate - data

First Seen2023-10-30

Last Seen2024-12-21

Times Seen12

Size11 MB (11311951 bytes)

MD59c6cae30bd0dccca546a60b36c36c0eb

SHA1b004c1554c34e88e5d773b354159246c261ae04f

SHA256b42069ac7eed7d2f4ea14971325d0e4dd7730732d868eaf0606142a5894e30d8

Certificate Info

IssuerDigiCert Inc

Subject*.github.io

FingerprintA1:46:14:C7:2A:1D:52:79:F6:AA:2B:B2:C5:0A:3B:D3:F5:02:06:75

ValidityTue, 21 Feb 2023 00:00:00 GMT - Wed, 20 Mar 2024 23:59:59 GMT

Detections

Analyzer	Verdict	Alert
VirusTotal	suspicious	VirusTotal - Scan result 2/65

HTTP Headers

GET /inatprobox/down/main/inat-box-v13-rc2.apk HTTP/1.1
Host: raw.githubusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://inattv85.link/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: max-age=300
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; sandbox
content-type: application/octet-stream
etag: W/"4d6e6f32389df394983be6f02518acb57bb00a8a71c42bbf64fb952519d9c179"
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: deny
x-xss-protection: 1; mode=block
x-github-request-id: 8D96:2A7AAD:B1268C:B9C962:657F00D3
accept-ranges: bytes
date: Sun, 17 Dec 2023 14:08:19 GMT
via: 1.1 varnish
x-served-by: cache-hel1410032-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1702822099.270900,VS0,VE717
vary: Authorization,Accept-Encoding,Origin
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-fastly-request-id: e391be0d331fdde3d3775ba712b7fd15c23494de
expires: Sun, 17 Dec 2023 14:13:19 GMT
source-age: 1
content-length: 11311951
X-Firefox-Spdy: h2

GET inattv85.link/favicon.ico

104.21.16.98

200 OK

15 kB

URL

inattv85.link/favicon.ico

IP / ASN

104.21.16.98

#13335 CLOUDFLARENET

Requested byhttps://inattv85.link/inat-box.html

Resource Info

File typeMS Windows icon resource - 3 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel - data

First Seen2023-10-30

Last Seen2024-08-20

Times Seen6

Size15 kB (15086 bytes)

MD54391a3cb7adfbc2839f67e4f44346f1c

SHA11fe899e3dfdff850b0e087365e026ab6f0091d42

SHA2565faf4d19cadb751c004a10428efef59a01389b55e5ae17d4d778a0ffdc5ed4df

Certificate Info

IssuerGoogle Trust Services LLC

Subjectinattv85.link

Fingerprint82:7D:25:3E:DB:15:AB:BE:F1:A8:96:56:24:BA:01:AF:04:CD:82:00

ValidityFri, 15 Dec 2023 14:01:47 GMT - Thu, 14 Mar 2024 14:01:46 GMT

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: inattv85.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://inattv85.link/inat-box.html
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 17 Dec 2023 14:08:13 GMT
content-type: image/x-icon
cache-control: public, max-age=604800
expires: Fri, 22 Dec 2023 16:12:57 GMT
last-modified: Fri, 15 Dec 2023 14:55:52 GMT
vary: User-Agent, Accept-Encoding
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
cf-cache-status: HIT
age: 165316
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oSIr%2FmblipsqZnDToKbbvHzXvBHFrrkWrA8P9%2B%2B6NrOM2YHJZ2U%2B6sWxRwXC7KluvUarcOdIr60MQNNYbdDheyHxDtWaZeRnNBemwJE5W5P8epV5Jv7Vlnt0BDwml%2FXn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 836fbca73c48712b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400