URL User Request GET HTTP/1.1IP185.196.9.34:80 ASN#42624 Simple Carrier LLC
File typeASCII text, with CRLF line terminators Hashe8db378e38ba850a860ab40b3f66de20 34effc1e68ed818cf461afa43c88069a4901a3fe 699afb3e975e595670d1c795d31eb164b529b6cffd4a58c6c0557c0241a8b643
Analyzer | Verdict | Alert | ThreatFox | malicious | Mirai | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
NIDS | Severity | Alert | suricata | high | URLhaus Known malware download URL detected (2816413) |
GET /g HTTP/1.1
Host: packetinfo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Length: 1708
Content-Type: text/plain; charset=utf-8
Last-Modified: Sun, 07 Apr 2024 22:01:57 GMT
Date: Sat, 20 Apr 2024 12:43:10 GMT
|
| packetinfo.com/favicon.ico | 185.196.9.34 | 404 Not Found | 19 B |
URL GET HTTP/1.1packetinfo.com/favicon.ico IP185.196.9.34:80 ASN#42624 Simple Carrier LLC
Hash595e88012a6521aae3e12cbebe76eb9e da3968197e7bf67aa45a77515b52ba2710c5fc34 b16e15764b8bc06c5c3f9f19bc8b99fa48e7894aa5a6ccdad65da49bbf564793
Analyzer | Verdict | Alert | ThreatFox | malicious | Mirai | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: packetinfo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://packetinfo.com/g
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Content-Type: text/plain; charset=utf-8
X-Content-Type-Options: nosniff
Date: Sat, 20 Apr 2024 12:43:10 GMT
Content-Length: 19
|