Report - www.resgate-seu-valor.com/Indeniza%20funil%20novo.zip

Report Overview

Visitedpublic

2025-04-11 15:22:32

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Host Summary

Host	Rank	Registered	First Seen	Last Seen	Sent	Received	IP	Fingerprints
www.resgate-seu-valor.com	unknown	2025-04-06	2025-04-11	2025-04-11	2.6 kB	9.5 MB	176.123.0.55

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2025-04-11	medium	resgate-seu-valor.com	Sinkholed
2025-04-11	medium	resgate-seu-valor.com	Sinkholed
2025-04-11	medium	resgate-seu-valor.com	Sinkholed
2025-04-11	medium	resgate-seu-valor.com	Sinkholed

ThreatFox

No alerts detected

File detected

URL

www.resgate-seu-valor.com/Indeniza%20funil%20novo.zip

IP / ASN

176.123.0.55

#200019 Alexhost Srl

File Overview

File TypeZip archive data, at least v2.0 to extract, compression method=store

Size9.5 MB (9521524 bytes)

MD55c2970203a370dc504aee7787b656352

SHA1902fb6552b7ed4411ead9d1e8bfe9dbe76259bb1

SHA256d25d46106eae7a6a450e9bbaff7adf8f7ba8d9c4c762f1a30f5286cc75770686

Archive (199)

Modified	Filename	Size	MD5	File type
2025-04-06 17:23	consulta.php	762 B	9f93afdb8c53c12b92b9a23d75105c06	PHP script, Unicode text, UTF-8 text, with CRLF line terminators
2025-04-06 17:23	e-swiper.min.css	10 kB	f9a4d42bf66491dd2e49cd5a425bfc4e	ASCII text, with very long lines (10260), with no line terminators
2025-04-06 17:23	frontend.min.css	61 kB	583ab1e5fac609c0b04d9aa94abcc0be	ASCII text, with very long lines (60535)
2025-04-06 17:23	main.min.css	43 kB	dfe6c91b3c5f1f370907a188e004063e	ASCII text, with very long lines (40957)
2025-04-06 17:23	post-111.css	9.4 kB	1017563f6d335c8d1fd3c3c596c6c0d2	ASCII text, with very long lines (9391), with no line terminators
2025-04-06 17:23	post-6.css	1.1 kB	95873b7936cfcd4d83d7683a7b385ccf	ASCII text, with very long lines (1107), with no line terminators
2025-04-06 17:23	swiper.min.css	16 kB	a2431bc290cf34e330e11ec4cfce1247	ASCII text, with very long lines (16214)
2025-04-06 17:23	widget-heading.min.css	600 B	59e167de412257fd98c73f2ff8915a03	ASCII text, with very long lines (560)
2025-04-06 17:23	widget-image.min.css	254 B	d5a6efd3ca21b342a77218c357a8bcae	ASCII text
2025-04-06 17:23	widget-spacer.min.css	1.4 kB	5aec5c30cc0a2ceb9996d977ad394aa4	ASCII text, with very long lines (1324)
2025-04-06 17:23	canal-gov-300x138.png	15 kB	0be79e387c93d9a5738bd9f84d8916f3	PNG image data, 300 x 138, 8-bit/color RGBA, non-interlaced
2025-04-06 17:23	canal-gov.png	40 kB	6f5244a24d8c7db55a3b29277cc90651	PNG image data, 640 x 294, 8-bit/color RGBA, non-interlaced
2025-04-06 17:23	federal-1024x457.png	46 kB	511e12e821482c999a87c57e1a20a523	PNG image data, 1024 x 457, 8-bit/color RGBA, non-interlaced
2025-04-06 17:23	federal-1536x686.png	73 kB	4734a6286d9cdc76a1251b85ae2b49e7	PNG image data, 1536 x 686, 8-bit/color RGBA, non-interlaced
2025-04-06 17:23	federal-2048x915.png	102 kB	7bfcf5e075878ff890dae0fef677588c	PNG image data, 2048 x 915, 8-bit/color RGBA, non-interlaced
2025-04-06 17:23	federal-300x134.png	13 kB	c0161a2aa914c8dbe69e7abeb0d511b8	PNG image data, 300 x 134, 8-bit/color RGBA, non-interlaced
2025-04-06 17:23	federal-768x343.png	34 kB	0ab7315c62add7ea055bae9b44a09f55	PNG image data, 768 x 343, 8-bit/color RGBA, non-interlaced
2025-04-06 17:23	federal.png	229 kB	c614937d8536049adf2479d5879eab84	PNG image data, 4096 x 1829, 8-bit/color RGBA, non-interlaced
2025-04-06 17:23	index.html	6.3 kB	cb823ff3c967fbfbafaba8adace99827	HTML document, Unicode text, UTF-8 text
2025-04-06 17:23	database.sqlite	12 kB	439d155718e363be36763bfba799dee3	SQLite 3.x database, last written using SQLite version 3039002, file counter 3, database pages 3, cookie 0x1, schema 4, UTF-8, version-valid-for 3
2025-04-06 17:23	govbr-logo-large.png	1.0 kB	12a33fe717f4eefc02c3ef09dcc23feb	PNG image data, 111 x 40, 8-bit colormap, non-interlaced
2025-04-06 17:23	index.html	32 kB	13d29ce8faaeb53081b680c9bd4373dd	HTML document, Unicode text, UTF-8 text, with very long lines (372)
2025-04-06 17:23	utmify-2025-03-11.log	1.9 MB	ff735fb486b704b3cd068d4c881c542e	Unicode text, UTF-8 text, with very long lines (1461)
2025-04-06 17:23	utmify-2025-03-12.log	8.8 MB	730d9cee950ce562ad151c14169a03e3	Unicode text, UTF-8 text, with very long lines (1468)
2025-04-06 17:23	utmify-2025-03-13.log	40 kB	ce549cbb1afd116a9cb1e30ba373fedd	Unicode text, UTF-8 text, with very long lines (1521)
2025-04-06 17:23	utmify-pendente-2025-03-11.log	4.9 MB	64a21498932aff3f7478430a0e4ef9d6	Unicode text, UTF-8 text, with very long lines (1402)
2025-04-06 17:23	utmify-pendente-2025-03-12.log	20 MB	cd7b247ed129bfd2fdf50829a481fc84	Unicode text, UTF-8 text, with very long lines (1397)
2025-04-06 17:23	utmify-pendente-2025-03-13.log	52 kB	f70f8e41a6acfaff037a6e25daf649b2	Unicode text, UTF-8 text, with very long lines (1453)
2025-04-06 17:23	pagamento-concluido.html	14 kB	73fd267325311dd5b640567ed50bb84c	HTML document, Unicode text, UTF-8 text
2025-04-06 17:23	pagamento.php	4.7 kB	42521d4200aa5501524578780920ae84	PHP script, Unicode text, UTF-8 text
2025-04-06 17:23	utmify-pendente.php	4.9 kB	4c7a33965e867d789f905c42bb487d01	PHP script, Unicode text, UTF-8 text
2025-04-06 17:23	utmify.php	5.3 kB	da13b4075fa1a84724653781775a651e	PHP script, Unicode text, UTF-8 text, with CRLF line terminators
2025-04-06 17:23	verificar.php	2.3 kB	a46d5543696a534641f579d722518f42	PHP script, Unicode text, UTF-8 text
2025-04-06 17:23	webhook.php	8.7 kB	6e15fa95c3231c842a34b4fbb07d0616	PHP script, Unicode text, UTF-8 text
2025-04-06 17:23	govbr-logo-large.png	1.0 kB	12a33fe717f4eefc02c3ef09dcc23feb	PNG image data, 111 x 40, 8-bit colormap, non-interlaced
2025-04-06 17:23	index.html	19 kB	2de6ac1f4f470c857afe636c4a08f3a6	HTML document, Unicode text, UTF-8 text, with CRLF line terminators
2025-04-06 17:23	utmify-2025-03-11.log	990 kB	4529d754416764b8d646d7fde79a82ed	Unicode text, UTF-8 text, with very long lines (1390)
2025-04-06 17:23	utmify-2025-03-12.log	135 kB	60b164729221aa3d9ae14d0294dadf5a	Unicode text, UTF-8 text, with very long lines (1390)
2025-04-06 17:23	utmify-pendente-2025-03-11.log	1.4 MB	886a4ed75388f813a9acbef5516a090c	Unicode text, UTF-8 text, with very long lines (1415)
2025-04-06 17:23	utmify-pendente-2025-03-12.log	5.9 MB	c480ec2c4e4fbf2b52796d7688959c4f	Unicode text, UTF-8 text, with very long lines (1412)
2025-04-06 17:23	utmify-pendente-2025-03-13.log	28 kB	8558cf6f8df2771cdf4f764e88e59b73	Unicode text, UTF-8 text, with very long lines (1410)
2025-04-06 17:23	pagamento.php	3.9 kB	ce0b4b8769ba5412960acebf77e5f328	PHP script, Unicode text, UTF-8 text, with CRLF line terminators
2025-04-06 17:23	utmify-pendente.php	4.9 kB	4c7a33965e867d789f905c42bb487d01	PHP script, Unicode text, UTF-8 text
2025-04-06 17:23	utmify.php	5.3 kB	da13b4075fa1a84724653781775a651e	PHP script, Unicode text, UTF-8 text, with CRLF line terminators
2025-04-06 17:23	verificar.php	2.3 kB	a46d5543696a534641f579d722518f42	PHP script, Unicode text, UTF-8 text
2025-04-06 17:23	govbr-logo-large.png	1.0 kB	12a33fe717f4eefc02c3ef09dcc23feb	PNG image data, 111 x 40, 8-bit colormap, non-interlaced
2025-04-06 17:23	index.html	19 kB	3d72ac798b34da1c9cb1ba6bb997bfe2	HTML document, Unicode text, UTF-8 text, with CRLF line terminators
2025-04-06 17:23	utmify-2025-03-11.log	990 kB	4529d754416764b8d646d7fde79a82ed	Unicode text, UTF-8 text, with very long lines (1390)
2025-04-06 17:23	utmify-2025-03-12.log	135 kB	60b164729221aa3d9ae14d0294dadf5a	Unicode text, UTF-8 text, with very long lines (1390)
2025-04-06 17:23	utmify-pendente-2025-03-11.log	1.4 MB	886a4ed75388f813a9acbef5516a090c	Unicode text, UTF-8 text, with very long lines (1415)
2025-04-06 17:23	utmify-pendente-2025-03-12.log	5.9 MB	c480ec2c4e4fbf2b52796d7688959c4f	Unicode text, UTF-8 text, with very long lines (1412)
2025-04-06 17:23	utmify-pendente-2025-03-13.log	28 kB	8558cf6f8df2771cdf4f764e88e59b73	Unicode text, UTF-8 text, with very long lines (1410)
2025-04-06 17:23	pagamento.php	4.9 kB	5bb97fa95ff8ab59ed908e9618e3bdc9	PHP script, Unicode text, UTF-8 text, with CRLF line terminators
2025-04-06 17:23	utmify-pendente.php	4.9 kB	4c7a33965e867d789f905c42bb487d01	PHP script, Unicode text, UTF-8 text
2025-04-06 17:23	utmify.php	5.3 kB	da13b4075fa1a84724653781775a651e	PHP script, Unicode text, UTF-8 text, with CRLF line terminators
2025-04-06 17:23	verificar.php	2.3 kB	a46d5543696a534641f579d722518f42	PHP script, Unicode text, UTF-8 text
2025-04-06 17:23	consulta.php	1.6 kB	8427518bdb9e91b72f8182f659df92a4	PHP script, Unicode text, UTF-8 text
2025-04-06 17:23	all.min.css	59 kB	7d38427ce5a368009160eca36756df5d	ASCII text, with very long lines (59065)
2025-04-06 17:23	frontend-lite.min.css	11 kB	a161deb0ec1b010bf6b0b2a4bc192a5f	ASCII text, with very long lines (11009)
2025-04-06 17:23	frontend-lite.min_1.css	119 kB	06be0b21dc152604b174d6ff7688d568	ASCII text, with very long lines (65496)
2025-04-06 17:23	global.css	40 kB	c448c7de39163261edcc869a7fedade2	ASCII text, with very long lines (15296)
2025-04-06 17:23	header-footer.min.css	7.3 kB	4f6608672aae4899d264369dd0c580d9	Unicode text, UTF-8 text, with very long lines (7323), with no line terminators
2025-04-06 17:23	post-477.css	3.9 kB	9cd4973e6a3c426dae4628168ffd5189	ASCII text, with very long lines (3881), with no line terminators
2025-04-06 17:23	post-6.css	1.2 kB	c883c362f67e5e84bb7bb8714051ecb6	ASCII text, with very long lines (1230), with no line terminators
2025-04-06 17:23	style.min.css	5.8 kB	5be56bc9e617084e1cbb84c994912fc3	ASCII text, with very long lines (5756), with no line terminators
2025-04-06 17:23	swiper.min.css	16 kB	a2431bc290cf34e330e11ec4cfce1247	ASCII text, with very long lines (16214)
2025-04-06 17:23	theme.min.css	5.1 kB	08fae0e9f8ce7e1cc244d6957a0fc71c	Unicode text, UTF-8 text, with very long lines (5127), with no line terminators
2025-04-06 17:23	fa-brands-400.eot	134 kB	592643a83b8541edc52063d84c468700	Embedded OpenType (EOT), Font Awesome 5 Brands Regular family
2025-04-06 17:23	fa-brands-400.ttf	134 kB	513aa607d398efaccc559916c3431403	TrueType Font data, 13 tables, 1st "FFTM", 28 names, Macintosh
2025-04-06 17:23	fa-brands-400.woff	90 kB	1a575a4138e5f366474f0e7c5bd614a5	Web Open Font Format, TrueType, length 89988, version 331.-31196
2025-04-06 17:23	fa-brands-400.woff2	77 kB	ed311c7a0ade9a75bb3ebf5a7670f31d	Web Open Font Format (Version 2), TrueType, length 76736, version 331.-31196
2025-04-06 17:23	fa-regular-400.eot	34 kB	b0e2db3b634d1bc3928e127458d993d8	Embedded OpenType (EOT), Font Awesome 5 Free Regular family
2025-04-06 17:23	fa-regular-400.ttf	34 kB	766913e6c0088ab8c9f73e18b4127bc4	TrueType Font data, 13 tables, 1st "FFTM", 28 names, Macintosh
2025-04-06 17:23	fa-regular-400.woff	16 kB	d1d7e3b4c219fde0f7376c6facfd7149	Web Open Font Format, TrueType, length 16276, version 331.-31196
2025-04-06 17:23	fa-regular-400.woff2	13 kB	b91d376b8d7646d671cd820950d5f7f1	Web Open Font Format (Version 2), TrueType, length 13224, version 331.-31196
2025-04-06 17:23	fa-solid-900.eot	203 kB	0c6bfc668a72935760178f91327aed3a	Embedded OpenType (EOT), Font Awesome 5 Free Solid family
2025-04-06 17:23	fa-solid-900.ttf	203 kB	b9625119ce4300f0ef890a8f3234c773	TrueType Font data, 13 tables, 1st "FFTM", 28 names, Macintosh
2025-04-06 17:23	fa-solid-900.woff	102 kB	d745348d289b149026921f197929a893	Web Open Font Format, TrueType, length 101648, version 331.-31196
2025-04-06 17:23	fa-solid-900.woff2	78 kB	d824df7eb2e268626a2dd9a6a741ac4e	Web Open Font Format (Version 2), TrueType, length 78268, version 331.-31196
2025-04-06 17:23	00000-1024x256.png	76 kB	04be7e3065bfe8cf955418bd1e300a3f	PNG image data, 1024 x 256, 8-bit/color RGBA, non-interlaced
2025-04-06 17:23	00000-1536x383.png	131 kB	45795b6ea15a97df83c2eedb05075eb3	PNG image data, 1536 x 383, 8-bit/color RGBA, non-interlaced
2025-04-06 17:23	00000-2048x511.png	192 kB	404eb308fbb426f485fa0b2eac6f631e	PNG image data, 2048 x 511, 8-bit/color RGBA, non-interlaced
2025-04-06 17:23	00000-300x75.png	15 kB	f144f91b8aacc92faf724614d972850b	PNG image data, 300 x 75, 8-bit/color RGBA, non-interlaced
2025-04-06 17:23	00000-768x192.png	52 kB	ee5b155f6d2358515f37a6d586dbf4bb	PNG image data, 768 x 192, 8-bit/color RGBA, non-interlaced
2025-04-06 17:23	01.png	2.7 kB	2258d776ba4a49e06cacb3a8bc8e92a4	PNG image data, 169 x 119, 8-bit/color RGBA, non-interlaced
2025-04-06 17:23	fa-brands-400.svg	748 kB	1d5619cd804367cefe6da2d79289218a	SVG Scalable Vector Graphics image
2025-04-06 17:23	fa-regular-400.svg	145 kB	c5d109be8edd3de0f60eb472bd9ef691	SVG Scalable Vector Graphics image
2025-04-06 17:23	fa-solid-900.svg	919 kB	37bc7099f6f1ba80236164f22e905837	SVG Scalable Vector Graphics image
2025-04-06 17:23	optimized_image.webp	48 kB	9425bd904886cb38a96bfb5cee310117	RIFF (little-endian) data, Web/P image
2025-04-06 17:23	index.html	7.1 kB	b45d38c81fb62283abc5cd8d2a14fe00	HTML document, Unicode text, UTF-8 text
2025-04-06 17:23	consulta.php	733 B	ca60b4ea011556e18458b827c3a47a4c	PHP script, Unicode text, UTF-8 text
2025-04-06 17:23	all.min.css	59 kB	7d38427ce5a368009160eca36756df5d	ASCII text, with very long lines (59065)
2025-04-06 17:23	frontend-lite.min.css	11 kB	a161deb0ec1b010bf6b0b2a4bc192a5f	ASCII text, with very long lines (11009)
2025-04-06 17:23	frontend-lite.min_1.css	119 kB	06be0b21dc152604b174d6ff7688d568	ASCII text, with very long lines (65496)
2025-04-06 17:23	global.css	40 kB	c448c7de39163261edcc869a7fedade2	ASCII text, with very long lines (15296)
2025-04-06 17:23	header-footer.min.css	7.3 kB	4f6608672aae4899d264369dd0c580d9	Unicode text, UTF-8 text, with very long lines (7323), with no line terminators
2025-04-06 17:23	plyr.css	33 kB	411acf0fd5fe4d42c580db72f82077fd	Unicode text, UTF-8 text, with very long lines (32562), with no line terminators
2025-04-06 17:23	post-483.css	3.2 kB	f80230b1f3f89d9174e785ff2d42a12a	ASCII text, with very long lines (3171), with no line terminators
2025-04-06 17:23	post-6.css	1.2 kB	c883c362f67e5e84bb7bb8714051ecb6	ASCII text, with very long lines (1230), with no line terminators
2025-04-06 17:23	style.min.css	5.8 kB	5be56bc9e617084e1cbb84c994912fc3	ASCII text, with very long lines (5756), with no line terminators
2025-04-06 17:23	swiper.min.css	16 kB	a2431bc290cf34e330e11ec4cfce1247	ASCII text, with very long lines (16214)
2025-04-06 17:23	theme.min.css	5.1 kB	08fae0e9f8ce7e1cc244d6957a0fc71c	Unicode text, UTF-8 text, with very long lines (5127), with no line terminators
2025-04-06 17:23	fa-brands-400.eot	134 kB	592643a83b8541edc52063d84c468700	Embedded OpenType (EOT), Font Awesome 5 Brands Regular family
2025-04-06 17:23	fa-brands-400.ttf	134 kB	513aa607d398efaccc559916c3431403	TrueType Font data, 13 tables, 1st "FFTM", 28 names, Macintosh
2025-04-06 17:23	fa-brands-400.woff	90 kB	1a575a4138e5f366474f0e7c5bd614a5	Web Open Font Format, TrueType, length 89988, version 331.-31196
2025-04-06 17:23	fa-brands-400.woff2	77 kB	ed311c7a0ade9a75bb3ebf5a7670f31d	Web Open Font Format (Version 2), TrueType, length 76736, version 331.-31196
2025-04-06 17:23	fa-regular-400.eot	34 kB	b0e2db3b634d1bc3928e127458d993d8	Embedded OpenType (EOT), Font Awesome 5 Free Regular family
2025-04-06 17:23	fa-regular-400.ttf	34 kB	766913e6c0088ab8c9f73e18b4127bc4	TrueType Font data, 13 tables, 1st "FFTM", 28 names, Macintosh
2025-04-06 17:23	fa-regular-400.woff	16 kB	d1d7e3b4c219fde0f7376c6facfd7149	Web Open Font Format, TrueType, length 16276, version 331.-31196
2025-04-06 17:23	fa-regular-400.woff2	13 kB	b91d376b8d7646d671cd820950d5f7f1	Web Open Font Format (Version 2), TrueType, length 13224, version 331.-31196
2025-04-06 17:23	fa-solid-900.eot	203 kB	0c6bfc668a72935760178f91327aed3a	Embedded OpenType (EOT), Font Awesome 5 Free Solid family
2025-04-06 17:23	fa-solid-900.ttf	203 kB	b9625119ce4300f0ef890a8f3234c773	TrueType Font data, 13 tables, 1st "FFTM", 28 names, Macintosh
2025-04-06 17:23	fa-solid-900.woff	102 kB	d745348d289b149026921f197929a893	Web Open Font Format, TrueType, length 101648, version 331.-31196
2025-04-06 17:23	fa-solid-900.woff2	78 kB	d824df7eb2e268626a2dd9a6a741ac4e	Web Open Font Format (Version 2), TrueType, length 78268, version 331.-31196
2025-04-06 17:23	00000-1024x256.png	76 kB	04be7e3065bfe8cf955418bd1e300a3f	PNG image data, 1024 x 256, 8-bit/color RGBA, non-interlaced
2025-04-06 17:23	00000-1536x383.png	131 kB	45795b6ea15a97df83c2eedb05075eb3	PNG image data, 1536 x 383, 8-bit/color RGBA, non-interlaced
2025-04-06 17:23	00000-2048x511.png	192 kB	404eb308fbb426f485fa0b2eac6f631e	PNG image data, 2048 x 511, 8-bit/color RGBA, non-interlaced
2025-04-06 17:23	00000-300x75.png	15 kB	f144f91b8aacc92faf724614d972850b	PNG image data, 300 x 75, 8-bit/color RGBA, non-interlaced
2025-04-06 17:23	00000-768x192.png	52 kB	ee5b155f6d2358515f37a6d586dbf4bb	PNG image data, 768 x 192, 8-bit/color RGBA, non-interlaced
2025-04-06 17:23	01.png	2.7 kB	2258d776ba4a49e06cacb3a8bc8e92a4	PNG image data, 169 x 119, 8-bit/color RGBA, non-interlaced
2025-04-06 17:23	02.png	4.0 kB	6d0bb566b510c14c6ae7563a70d6240d	PNG image data, 147 x 181, 8-bit/color RGBA, non-interlaced
2025-04-06 17:23	03.png	6.7 kB	5ac2ed2c7a2386d96b2663e329eb9a76	PNG image data, 181 x 181, 8-bit/color RGBA, non-interlaced
2025-04-06 17:23	04.png	5.8 kB	984fba4ae974f80afaa290ae349d89da	PNG image data, 163 x 163, 8-bit/color RGBA, non-interlaced
2025-04-06 17:23	05.png	5.6 kB	e807486125c1b8a1c29ddcad5369dcc8	PNG image data, 172 x 175, 8-bit/color RGBA, non-interlaced
2025-04-06 17:23	fa-brands-400.svg	748 kB	1d5619cd804367cefe6da2d79289218a	SVG Scalable Vector Graphics image
2025-04-06 17:23	fa-regular-400.svg	145 kB	c5d109be8edd3de0f60eb472bd9ef691	SVG Scalable Vector Graphics image
2025-04-06 17:23	fa-solid-900.svg	919 kB	37bc7099f6f1ba80236164f22e905837	SVG Scalable Vector Graphics image
2025-04-06 17:23	index.html	9.2 kB	f64d590639b2161b68f8e2d6d50f660d	HTML document, Unicode text, UTF-8 text, with very long lines (461)
2025-04-06 17:23	database.sqlite	12 kB	439d155718e363be36763bfba799dee3	SQLite 3.x database, last written using SQLite version 3039002, file counter 3, database pages 3, cookie 0x1, schema 4, UTF-8, version-valid-for 3
2025-04-06 17:23	govbr-logo-large.png	1.0 kB	12a33fe717f4eefc02c3ef09dcc23feb	PNG image data, 111 x 40, 8-bit colormap, non-interlaced
2025-04-06 17:23	index.html	32 kB	4c8c12f847ffb242410da3a767ac705c	HTML document, Unicode text, UTF-8 text, with very long lines (372)
2025-04-06 17:23	utmify-2025-03-11.log	1.9 MB	ff735fb486b704b3cd068d4c881c542e	Unicode text, UTF-8 text, with very long lines (1461)
2025-04-06 17:23	utmify-2025-03-12.log	8.8 MB	730d9cee950ce562ad151c14169a03e3	Unicode text, UTF-8 text, with very long lines (1468)
2025-04-06 17:23	utmify-2025-03-13.log	40 kB	ce549cbb1afd116a9cb1e30ba373fedd	Unicode text, UTF-8 text, with very long lines (1521)
2025-04-06 17:23	utmify-pendente-2025-03-11.log	4.9 MB	64a21498932aff3f7478430a0e4ef9d6	Unicode text, UTF-8 text, with very long lines (1402)
2025-04-06 17:23	utmify-pendente-2025-03-12.log	20 MB	cd7b247ed129bfd2fdf50829a481fc84	Unicode text, UTF-8 text, with very long lines (1397)
2025-04-06 17:23	utmify-pendente-2025-03-13.log	52 kB	f70f8e41a6acfaff037a6e25daf649b2	Unicode text, UTF-8 text, with very long lines (1453)
2025-04-06 17:23	pagamento-concluido.html	14 kB	4cd1b06db091c797e4424bbfc7692e58	HTML document, Unicode text, UTF-8 text
2025-04-06 17:23	pagamento.php	4.7 kB	67e1300050b58a2c579d983fdf812676	PHP script, Unicode text, UTF-8 text
2025-04-06 17:23	utmify-pendente.php	4.9 kB	4c7a33965e867d789f905c42bb487d01	PHP script, Unicode text, UTF-8 text
2025-04-06 17:23	utmify.php	5.3 kB	da13b4075fa1a84724653781775a651e	PHP script, Unicode text, UTF-8 text, with CRLF line terminators
2025-04-06 17:23	verificar.php	2.3 kB	a46d5543696a534641f579d722518f42	PHP script, Unicode text, UTF-8 text
2025-04-06 17:23	webhook.php	8.7 kB	6e15fa95c3231c842a34b4fbb07d0616	PHP script, Unicode text, UTF-8 text
2025-04-06 17:23	govbr-logo-large.png	1.0 kB	12a33fe717f4eefc02c3ef09dcc23feb	PNG image data, 111 x 40, 8-bit colormap, non-interlaced
2025-04-06 17:23	index.html	19 kB	3d72ac798b34da1c9cb1ba6bb997bfe2	HTML document, Unicode text, UTF-8 text, with CRLF line terminators
2025-04-06 17:23	utmify-2025-03-11.log	990 kB	4529d754416764b8d646d7fde79a82ed	Unicode text, UTF-8 text, with very long lines (1390)
2025-04-06 17:23	utmify-2025-03-12.log	135 kB	60b164729221aa3d9ae14d0294dadf5a	Unicode text, UTF-8 text, with very long lines (1390)
2025-04-06 17:23	utmify-pendente-2025-03-11.log	1.4 MB	886a4ed75388f813a9acbef5516a090c	Unicode text, UTF-8 text, with very long lines (1415)
2025-04-06 17:23	utmify-pendente-2025-03-12.log	5.9 MB	c480ec2c4e4fbf2b52796d7688959c4f	Unicode text, UTF-8 text, with very long lines (1412)
2025-04-06 17:23	utmify-pendente-2025-03-13.log	28 kB	8558cf6f8df2771cdf4f764e88e59b73	Unicode text, UTF-8 text, with very long lines (1410)
2025-04-06 17:23	pagamento.php	4.9 kB	240b64e42988de818e19683aefe37792	PHP script, Unicode text, UTF-8 text, with CRLF line terminators
2025-04-06 17:23	utmify-pendente.php	4.9 kB	4c7a33965e867d789f905c42bb487d01	PHP script, Unicode text, UTF-8 text
2025-04-06 17:23	utmify.php	5.3 kB	da13b4075fa1a84724653781775a651e	PHP script, Unicode text, UTF-8 text, with CRLF line terminators
2025-04-06 17:23	verificar.php	2.3 kB	a46d5543696a534641f579d722518f42	PHP script, Unicode text, UTF-8 text
2025-04-06 17:23	fonts.css	590 B	74e42639c0f024d605c0fb07b8ef0590	ASCII text, with CRLF line terminators
2025-04-06 17:23	products.css	9.9 kB	7d88f6578badaf923e57603dcfc8c35d	assembler source, Unicode text, UTF-8 text, with CRLF line terminators
2025-04-06 17:23	styles.css	3.5 kB	0f2b2283b9ecb1b95aa912bd6e92cfd2	Unicode text, UTF-8 text, with CRLF line terminators
2025-04-06 17:23	GellixBlack.otf	94 kB	c7e30e1443645f6c8cf2a95a217f6847	OpenType font data
2025-04-06 17:23	GellixBold.otf	95 kB	65d6edf4f32b4ca8dad7123853713dc2	OpenType font data
2025-04-06 17:23	GellixMedium.otf	93 kB	d2ae2ca9aecbd829cc1d970af9d63882	OpenType font data
2025-04-06 17:23	GellixRegular.otf	92 kB	75cf88b8e12ab706753be93032d6685b	OpenType font data
2025-04-06 17:23	GellixSemiBold.otf	94 kB	fb4fc815167e79a8600e3bd2ecb3d651	OpenType font data
2025-04-06 17:23	logo-jadlog.png	7.2 kB	22352e3943faaf22b3296316a00618ef	PNG image data, 543 x 197, 8-bit colormap, non-interlaced
2025-04-07 11:27	index.html	11 kB	8e9e5fcf6914009c4e1a7c5d3d362299	HTML document, Unicode text, UTF-8 text
2025-04-06 17:23	fbevents.js	245 kB	f547d747e9e60d71aa3807ddc2850e00	JavaScript source, ASCII text, with very long lines (9330)
2025-04-06 17:23	latest.js	14 kB	ed70b0802b8918cea31874f294d70eab	JavaScript source, Unicode text, UTF-8 text, with very long lines (13595), with no line terminators
2025-04-06 17:23	scripts.js	1.5 kB	76678f788c18a8cecbce8325315875d3	JavaScript source, ASCII text, with very long lines (1481), with no line terminators
2025-04-06 17:23	failed.gif	40 kB	73229efc142af4b2a9d07fd6cf7b5004	GIF image data, version 89a, 150 x 150
2025-04-06 17:23	logo-jadlog.png	7.2 kB	22352e3943faaf22b3296316a00618ef	PNG image data, 543 x 197, 8-bit colormap, non-interlaced
2025-04-06 17:23	success.gif	43 kB	3e576828dd6358eccc1ca2f55143d31d	GIF image data, version 89a, 150 x 150
2025-04-06 17:23	success.png	1.8 kB	362a99a628c77762901e43e76950a20a	PNG image data, 80 x 80, 8-bit colormap, non-interlaced
2025-04-06 17:23	index.html	10 kB	48d2c20eb872baaf527c9e9404b9fb38	HTML document, Unicode text, UTF-8 text
2025-04-06 17:23	failed.gif	40 kB	73229efc142af4b2a9d07fd6cf7b5004	GIF image data, version 89a, 150 x 150
2025-04-06 17:23	logo-jadlog.png	7.2 kB	22352e3943faaf22b3296316a00618ef	PNG image data, 543 x 197, 8-bit colormap, non-interlaced
2025-04-06 17:23	success.gif	43 kB	3e576828dd6358eccc1ca2f55143d31d	GIF image data, version 89a, 150 x 150
2025-04-06 17:23	success.png	1.8 kB	362a99a628c77762901e43e76950a20a	PNG image data, 80 x 80, 8-bit colormap, non-interlaced
2025-04-06 17:23	index.html	12 kB	1b08324fa1fcfcc47ff411b0add6f3ec	HTML document, Unicode text, UTF-8 text
2025-04-06 17:23	failed.gif	40 kB	73229efc142af4b2a9d07fd6cf7b5004	GIF image data, version 89a, 150 x 150
2025-04-06 17:23	logo-jadlog.png	7.2 kB	22352e3943faaf22b3296316a00618ef	PNG image data, 543 x 197, 8-bit colormap, non-interlaced
2025-04-06 17:23	success.gif	43 kB	3e576828dd6358eccc1ca2f55143d31d	GIF image data, version 89a, 150 x 150
2025-04-06 17:23	success.png	1.8 kB	362a99a628c77762901e43e76950a20a	PNG image data, 80 x 80, 8-bit colormap, non-interlaced
2025-04-06 17:23	index.html	15 kB	8d9e320c36823c4676e1b66278b0660d	HTML document, Unicode text, UTF-8 text
2025-04-06 17:23	failed.gif	40 kB	73229efc142af4b2a9d07fd6cf7b5004	GIF image data, version 89a, 150 x 150
2025-04-06 17:23	logo-jadlog.png	7.2 kB	22352e3943faaf22b3296316a00618ef	PNG image data, 543 x 197, 8-bit colormap, non-interlaced
2025-04-06 17:23	success.gif	43 kB	3e576828dd6358eccc1ca2f55143d31d	GIF image data, version 89a, 150 x 150
2025-04-06 17:23	success.png	1.8 kB	362a99a628c77762901e43e76950a20a	PNG image data, 80 x 80, 8-bit colormap, non-interlaced
2025-04-06 17:23	index.html	14 kB	a9f5e8594eb34f48cbc101072a7f6502	HTML document, Unicode text, UTF-8 text
2025-04-06 17:23	base.css	1.1 kB	3a17bc0effc397a1d2075ea5eae88d2b	ASCII text, with CRLF line terminators
2025-04-06 17:23	fonts.css	590 B	74e42639c0f024d605c0fb07b8ef0590	ASCII text, with CRLF line terminators
2025-04-06 17:23	products.css	9.9 kB	7d88f6578badaf923e57603dcfc8c35d	assembler source, Unicode text, UTF-8 text, with CRLF line terminators
2025-04-06 17:23	styles.css	4.8 kB	77ab266419a1aefc9667d2b09ccf32f2	ASCII text, with CRLF line terminators
2025-04-06 17:23	failed.gif	40 kB	73229efc142af4b2a9d07fd6cf7b5004	GIF image data, version 89a, 150 x 150
2025-04-06 17:23	logo-jadlog.png	7.2 kB	22352e3943faaf22b3296316a00618ef	PNG image data, 543 x 197, 8-bit colormap, non-interlaced
2025-04-06 17:23	success.gif	43 kB	3e576828dd6358eccc1ca2f55143d31d	GIF image data, version 89a, 150 x 150
2025-04-06 17:23	success.png	1.8 kB	362a99a628c77762901e43e76950a20a	PNG image data, 80 x 80, 8-bit colormap, non-interlaced
2025-04-07 11:18	index.html	6.6 kB	8b2d50fb536aead282dedff4dbeb87ca	HTML document, Unicode text, UTF-8 text
2025-04-06 17:23	fbevents.js	245 kB	f547d747e9e60d71aa3807ddc2850e00	JavaScript source, ASCII text, with very long lines (9330)
2025-04-06 17:23	latest.js	14 kB	ed70b0802b8918cea31874f294d70eab	JavaScript source, Unicode text, UTF-8 text, with very long lines (13595), with no line terminators
2025-04-06 17:23	scripts.js	2.2 kB	926559a0afd089c0a434d962c679ecfb	JavaScript source, ASCII text, with very long lines (2212), with no line terminators

JavaScript (2)

	URL	From	Size	First Seen	Last Seen
	www.resgate-seu-valor.com/Indeniza%20funil%20novo.zip	ScriptElement	126 B	2025-03-04	2025-07-28
URL www.resgate-seu-valor.com/Indeniza%20funil%20novo.zip IP / ASN 176.123.0.55 #200019 Alexhost Srl Introduced by ScriptElement Embedded true Resource Info First Seen 2025-03-04 Last Seen 2025-07-28 Times Seen 803 Size 126 B (126 bytes) MD5 90fe66619e01476b1a43b71c708ceb36 SHA1 707260ad8a9cad1cd690709e9ea3eaa6f98a6124 SHA256 ec10f2e77e4dbca8c2107c3299cb7cbc46580b9d5696927cf6b2068b0b4f47f1 Format Code Loading...

	www.resgate-seu-valor.com/Indeniza%20funil%20novo.zip	ScriptElement	3.6 kB	2025-04-11	2025-04-11
URL www.resgate-seu-valor.com/Indeniza%20funil%20novo.zip IP / ASN 176.123.0.55 #200019 Alexhost Srl Introduced by ScriptElement Embedded true Resource Info First Seen 2025-04-11 Last Seen 2025-04-11 Times Seen 1 Size 3.6 kB (3560 bytes) MD5 b8bc2154756e30cb8a05725fa08fea8e SHA1 9e657ca01c8b8589ad3234644910a62795d8e44d SHA256 852973fe94bfa9ea1afaab6113369c2bbf902633391d527cf8095a6ab1b9c298 Format Code Loading...

HTTP Transactions (4)

URL IP Response Size

GET www.resgate-seu-valor.com/Indeniza%20funil%20novo.zip

176.123.0.55

200 OK

11 kB

URL

www.resgate-seu-valor.com/Indeniza%20funil%20novo.zip

IP / ASN

176.123.0.55

#200019 Alexhost Srl

Requested byN/A

Resource Info

File typeHTML document, ASCII text, with very long lines (3556)

First Seen2025-04-11

Last Seen2025-04-11

Times Seen1

Size11 kB (10879 bytes)

MD54351f4347eb31b6e8fa9c3e8dbff6916

SHA1840c66892d0f3371505fc2f4bb8e101244ffbd9c

SHA256a1b959824322bb44f2eb4c968891fa0f130662504c1cb96379b797ff3610cfe1

Certificate Info

IssuerLet's Encrypt

Subjectresgate-seu-valor.com

Fingerprint67:D9:13:34:B9:54:7D:10:DF:58:CF:92:B0:8B:FF:4B:9E:16:B9:D2

ValiditySun, 06 Apr 2025 19:04:55 GMT - Sat, 05 Jul 2025 19:04:54 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /Indeniza%20funil%20novo.zip HTTP/1.1
Host: www.resgate-seu-valor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: openresty/1.27.1.1
date: Fri, 11 Apr 2025 15:22:00 GMT
content-length: 10879
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
cf-edge-cache: no-cache
X-Firefox-Spdy: h2

GET www.resgate-seu-valor.com/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10119268&pdata=https%253A%252F%252Fwww.resgate-seu-valor.com%252FIndeniza%252520funil%252520novo.zip&id=7fa3b767c460b54a2be4d49030b349c7&ts=1744384920

176.123.0.55

302 Found

0 B

URL

www.resgate-seu-valor.com/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10119268&pdata=https%253A%252F%252Fwww.resgate-seu-valor.com%252FIndeniza%252520funil%252520novo.zip&id=7fa3b767c460b54a2be4d49030b349c7&ts=1744384920

IP / ASN

176.123.0.55

#200019 Alexhost Srl

Requested byN/A

Resource Info

File typeN/A

First Seen0001-01-01

Last Seen2025-08-03

Times Seen5616662

Size0 B (0 bytes)

MD5d41d8cd98f00b204e9800998ecf8427e

SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Certificate Info

IssuerLet's Encrypt

Subjectresgate-seu-valor.com

Fingerprint67:D9:13:34:B9:54:7D:10:DF:58:CF:92:B0:8B:FF:4B:9E:16:B9:D2

ValiditySun, 06 Apr 2025 19:04:55 GMT - Sat, 05 Jul 2025 19:04:54 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=10119268&pdata=https%253A%252F%252Fwww.resgate-seu-valor.com%252FIndeniza%252520funil%252520novo.zip&id=7fa3b767c460b54a2be4d49030b349c7&ts=1744384920 HTTP/1.1
Host: www.resgate-seu-valor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.resgate-seu-valor.com/Indeniza%20funil%20novo.zip
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
server: openresty/1.27.1.1
date: Fri, 11 Apr 2025 15:22:02 GMT
content-length: 0
location: https://www.resgate-seu-valor.com/Indeniza%20funil%20novo.zip
set-cookie: wssplashchk=524592569a3b4347d76abbe42d14eec9ff5cfb19.1744388522.1; Path=/; Domain=www.resgate-seu-valor.com; Max-Age=3600; HttpOnly; SameSite=Lax
X-Firefox-Spdy: h2

GET www.resgate-seu-valor.com/Indeniza%20funil%20novo.zip

0.0.0.0

0 B

URL

www.resgate-seu-valor.com/Indeniza%20funil%20novo.zip

IP / ASN

0.0.0.0

Requested byN/A

Resource Info

File typeN/A

First Seen0001-01-01

Last Seen2025-08-03

Times Seen5616662

Size0 B (0 bytes)

MD5d41d8cd98f00b204e9800998ecf8427e

SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Certificate Info

IssuerLet's Encrypt

Subjectresgate-seu-valor.com

Fingerprint67:D9:13:34:B9:54:7D:10:DF:58:CF:92:B0:8B:FF:4B:9E:16:B9:D2

ValiditySun, 06 Apr 2025 19:04:55 GMT - Sat, 05 Jul 2025 19:04:54 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /Indeniza%20funil%20novo.zip HTTP/1.1
Host: www.resgate-seu-valor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.resgate-seu-valor.com/Indeniza%20funil%20novo.zip
DNT: 1
Connection: keep-alive
Cookie: wssplashchk=524592569a3b4347d76abbe42d14eec9ff5cfb19.1744388522.1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

GET www.resgate-seu-valor.com/Indeniza%20funil%20novo.zip

176.123.0.55

200 OK

9.5 MB

URL

www.resgate-seu-valor.com/Indeniza%20funil%20novo.zip

IP / ASN

176.123.0.55

#200019 Alexhost Srl

Requested byN/A

Resource Info

File typeZip archive data, at least v2.0 to extract, compression method=store

First Seen2025-04-11

Last Seen2025-04-11

Times Seen2

Size9.5 MB (9521524 bytes)

MD55c2970203a370dc504aee7787b656352

SHA1902fb6552b7ed4411ead9d1e8bfe9dbe76259bb1

SHA256d25d46106eae7a6a450e9bbaff7adf8f7ba8d9c4c762f1a30f5286cc75770686

Certificate Info

IssuerLet's Encrypt

Subjectresgate-seu-valor.com

Fingerprint67:D9:13:34:B9:54:7D:10:DF:58:CF:92:B0:8B:FF:4B:9E:16:B9:D2

ValiditySun, 06 Apr 2025 19:04:55 GMT - Sat, 05 Jul 2025 19:04:54 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /Indeniza%20funil%20novo.zip HTTP/1.1
Host: www.resgate-seu-valor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: wssplashchk=524592569a3b4347d76abbe42d14eec9ff5cfb19.1744388522.1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 11 Apr 2025 15:22:03 GMT
content-type: application/zip
content-length: 9521524
server: nginx
last-modified: Mon, 07 Apr 2025 14:35:35 GMT
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: UPDATING
x-server-powered-by: Engintron
accept-ranges: bytes
X-Firefox-Spdy: h2