Report Overview
Domain Summary
Domain / FQDN | Rank | Registered | First Seen | Last Seen | Sent | Received | IP |
---|---|---|---|---|---|---|---|
pop.tg | unknown | unknown | 2021-04-23 | 2023-04-15 | 466 B | 1.3 kB | 104.21.15.201 |
107.173.4.2 | unknown | unknown | 2023-07-31 | 2024-03-05 | 500 B | 74 kB | 107.173.4.2 |
Related reports
Network Intrusion Detection Systems
Suricata /w Emerging Threats Pro
Timestamp | Severity | Source IP | Destination IP | Alert |
---|---|---|---|---|
2024-04-19 13:49:52 | medium | Client IP | 107.173.4.2 |
Threat Detection Systems
Public InfoSec YARA rules
Scan Date | Severity | Indicator | Alert |
---|---|---|---|
2024-04-19 | medium | 107.173.4.2/xampp/CBG/mekissedherwithentirethingstounderstandhowmuchimportnatforthisnewthingstogetinline___wecantgetitbacktome.doc | Detects RTF documents with non-standard version and embedding one of the object mostly observed in exploit (e.g. CVE-2017-11882) documents. |
OpenPhish
No alerts detected
PhishTank
No alerts detected
mnemonic secure dns
No alerts detected
Quad9 DNS
Scan Date | Severity | Indicator | Alert |
---|---|---|---|
2024-04-19 | medium | pop.tg | Sinkholed |
2024-04-19 | medium | 107.173.4.2 | Sinkholed |
ThreatFox
No alerts detected
Files detected
URL
107.173.4.2/xampp/CBG/mekissedherwithentirethingstounderstandhowmuchimportnatforthisnewthingstogetinline___wecantgetitbacktome.doc
IP
107.173.4.2
ASN
#36352 AS-COLOCROSSING
File type
Rich Text Format data, version 1
Size
74 kB (73766 bytes)
Hash
09d8761f8ed4527ef4b905b6c12c5f82
f787bdc4ae2080d53cfcdba7e2ddf656719a5d77
Detections
Analyzer | Verdict | Alert |
---|---|---|
Public Nextron YARA rules | malware | Detects RTF documents with non-standard version and embedding one of the object mostly observed in exploit (e.g. CVE-2017-11882) documents. |
JavaScript (0)
HTTP Transactions (2)
URL | IP | Response | Size | ||||||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
pop.tg/c45ex | 104.21.15.201 | 302 Found | 591 B | ||||||||||||||||
Detections
HTTP Headers
| |||||||||||||||||||
107.173.4.2/xampp/CBG/mekissedherwithentirethingstounderstandhowmuchimportnatforthisnewthingstogetinline___wecantgetitbacktome.doc | 107.173.4.2 | 200 OK | 74 kB | ||||||||||||||||
Detections
HTTP Headers
| |||||||||||||||||||