Report - tz.wx-gujdtq3.com/app/register.php?site_id=2228&topId=1193503

Report Overview

Visitedpublic

2025-10-26 23:28:15

Tags

Submit Tags

URL

tz.wx-gujdtq3.com/app/register.php?site_id=2228&topId=1193503

Finishing URL

dmg16.jkchdu.com/register?openid=057d92539c074c4849d3136a737c6d79&sign=bd1d6346ab50dc46488537dcf90ea4cc&topId=1193503

IP / ASN

Singapore

8.214.162.128

#134963 Alibaba Cloud Singapore Private Limited

Title

大满贯

Detections

urlquery

0

Network Intrusion Detection

1

Threat Detection Systems

1

Host Summary

Host	Rank	Registered	First Seen	Last Seen	Sent	Received	IP	Fingerprints
api.kmhcgj.com	unknown	2024-08-29	2025-09-08	2025-10-21	5.3 kB	8.0 kB	157.185.128.147
tz.wx-gujdtq3.com	unknown	2025-04-03	2025-04-11	2025-10-21	529 B	428 B	8.214.162.128
dmgapi.jxgaozewl.com	unknown	2024-08-29	2025-05-15	2025-10-21	5.3 kB	7.9 kB	157.185.128.147
ir-sdk.dun.163.com	384622	1997-09-15	2023-07-19	2025-10-21	916 B	1.1 kB	47.245.158.179
cstaticdun.126.net	474446	1998-02-28	2017-06-21	2025-10-20	1.2 kB	769 kB	47.246.50.195
ws.1ugqib.com	unknown	2024-09-09	2024-10-07	2025-10-21	2.2 kB	552 B	18.162.240.158
c.dun.163.com	567732	1997-09-15	2018-06-27	2025-10-20	1.6 kB	1.7 kB	8.211.22.79
line.hrqhq.com	unknown	2023-01-23	2024-09-16	2025-10-25	452 B	1.6 kB	8.214.162.128
dmgapi.kmhcgj.com	unknown	2024-08-29	2025-05-19	2025-10-21	5.8 kB	12 kB	217.198.191.72
dmg16.jkchdu.com	unknown	2024-12-11	2025-10-05	2025-10-21	10 kB	5.0 MB	163.171.134.109

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2025-10-26 23:27:57	low	172.18.0.27	74.125.250.129	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)

Threat Detection Systems

Detection System	Indicator	Verdict	Alert
Nextron YARA rules	cstaticdun.126.net/2.28.5/core-optimi.m25b40.v2.28.5.min.js?v=2935868	malware	Unique code from Jetriz, Swid & Jeniva of the Tetris framework

JavaScript (29)

HTTP Transactions (69)

	URL	IP	Response	Size