Report Overview
Visitedpublic
2026-02-14 17:06:08
Submit Tags
URL
ecos.login-app-secure.com
Finishing URL
ecos.login-app-secure.com/
IP / ASN
194.36.191.196
Title
Update Withdrawal Address | Customer Portal
Suspicious - Suspicious Javascript code
Detections
urlquery
2
Network Intrusion Detection
0
Threat Detection Systems
4
Host Summary
| Host | Rank | Registered | First Seen | Last Seen | Sent | Received | IP | Fingerprints |
|---|---|---|---|---|---|---|---|---|
cdn.tailwindcss.com | 117330 | 2017-07-20 | 2018-07-09 | 2026-02-09 | 842 B | 816 kB |  104.26.2.143 |   |
fonts.googleapis.com | 313 | 2005-01-25 | 2012-05-23 | 2026-02-08 | 488 B | 13 kB |  172.217.20.170 | |
app.uniswap.org | 119835 | 2018-11-26 | 2020-07-01 | 2026-02-08 | 446 B | 30 kB | 172.66.0.225 | |
ecos.login-app-secure.com 8 alert(s) on this Host | unknown | 2026-02-06 | 2026-02-14 | 2026-02-14 | 2.7 kB | 123 kB | 194.36.191.196 |    |
fonts.gstatic.com | unknown | 2008-02-11 | 2014-04-02 | 2026-02-08 | 2.3 kB | 198 kB | 216.58.207.227 | |
walletconnect.network | 575071 | 2018-06-20 | 2024-09-17 | 2026-02-14 | 466 B | 12 kB | 172.66.175.193 | |
play-lh.googleusercontent.com | 3758 | 2008-11-17 | 2019-09-30 | 2026-02-11 | 5.1 kB | 374 kB | 142.251.143.150 | |
unpkg.com | 1093 | 2016-01-06 | 2016-01-07 | 2026-02-08 | 866 B | 778 kB | 104.18.0.22 |  |
files.carrotquest.app | 3302419 | 2020-02-11 | 2020-06-06 | 2026-02-11 | 1.9 kB | 24 kB |  5.101.37.37 |   |
fonts.cdnfonts.com | 50661 | 2018-10-03 | 2020-06-10 | 2026-02-11 | 441 B | 607 B | 172.67.184.158 | |
ecos.am 2 alert(s) on this Host | 499499 | 2021-06-09 | 2019-01-13 | 2025-08-21 | 435 B | 7.4 kB | 104.26.9.2 |  |
cryptologos.cc | 572515 | 2019-04-13 | 2019-08-22 | 2026-02-08 | 4.7 kB | 1.2 MB | 104.21.92.70 |  |
Vercel (PaaS)
Vercel is a cloud platform for static frontends and serverless functions.Cloudflare (CDN)
Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.Tailwind CSS (UI frameworks)
Tailwind is a utility-first CSS framework.Unpkg (CDN)
Unpkg is a content delivery network for everything on npm.LiteSpeed (Web servers)
LiteSpeed is a high-scalability web server.Fly.io (PaaS)
Fly is a platform for running full stack apps and databases.Nginx (Web servers, Reverse proxies)
Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.Amazon Web Services (PaaS)
Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.Envoy (Reverse proxies)
Envoy is an open-source edge and service proxy, designed for cloud-native applications.LiteSpeed Cache (Caching, WordPress plugins)
LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.Litespeed Cache (Caching, WordPress plugins)
LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.Related reports
Threat Detection Systems
| Detection System | Indicator | Verdict | Alert |
|---|---|---|---|
| YARAhub by abuse.ch | ecos.login-app-secure.com/ | malware | Detects file containing Telegram Bot API |
| DNS4EU | ecos.login-app-secure.com | malicious | Sinkholed |
| DNS4EU | ecos.am | malicious | Sinkholed |
| Hagezi Threat Feed | ecos.am | malicious | Sinkholed |
Telegram Bot detected (1)
URL
ecos.login-app-secure.com/
IP / ASN
194.36.191.196
Token
7847099945:AAEGU-1wpdpmjECLqdU0F7TQergP2S60ccQ
Bot Overview
User ID7847099945
Usernameklimara009_bot
First Nameklimara009
Last NameN/A
Chat Info
Chat ID8176886401
Chat Typeprivate
TitleN/A
User Count2
Admins0
Pending Msgs0
JavaScript (4)
No JavaScripts
HTTP Transactions (43)
| URL | IP | Response | Size |
|---|