Report - top.myzukrainy.net/

Report Overview

Visited public
2023-12-29 21:53:45
Tags
Submit Tags
URL
top.myzukrainy.net/
Finishing URL
top.myzukrainy.net/
IP / ASN
185.156.42.53
#196645 Ltd Hostpro Lab
Title
Ми з України

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
top.myzukrainy.net	unknown	unknown	No data	No data	485 B	42 kB	185.156.42.53
www.googletagmanager.com	75	2011-11-11	2013-05-22 04:07:37	2023-12-29 09:07:50	875 B	152 kB	142.250.74.168
myzukrainy.net	unknown	unknown	2022-08-17 20:21:39	2022-12-12 12:47:48	20 kB	1.3 MB	185.156.42.53

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-12-29	medium	myzukrainy.net	Sinkholed
2023-12-29	medium	myzukrainy.net	Sinkholed
2023-12-29	medium	myzukrainy.net	Sinkholed
2023-12-29	medium	myzukrainy.net	Sinkholed
2023-12-29	medium	myzukrainy.net	Sinkholed
2023-12-29	medium	myzukrainy.net	Sinkholed
2023-12-29	medium	myzukrainy.net	Sinkholed
2023-12-29	medium	myzukrainy.net	Sinkholed
2023-12-29	medium	myzukrainy.net	Sinkholed
2023-12-29	medium	myzukrainy.net	Sinkholed
2023-12-29	medium	myzukrainy.net	Sinkholed
2023-12-29	medium	myzukrainy.net	Sinkholed
2023-12-29	medium	myzukrainy.net	Sinkholed
2023-12-29	medium	myzukrainy.net	Sinkholed
2023-12-29	medium	myzukrainy.net	Sinkholed
2023-12-29	medium	myzukrainy.net	Sinkholed
2023-12-29	medium	myzukrainy.net	Sinkholed
2023-12-29	medium	myzukrainy.net	Sinkholed
2023-12-29	medium	myzukrainy.net	Sinkholed
2023-12-29	medium	myzukrainy.net	Sinkholed
2023-12-29	medium	myzukrainy.net	Sinkholed
2023-12-29	medium	myzukrainy.net	Sinkholed
2023-12-29	medium	myzukrainy.net	Sinkholed
2023-12-29	medium	myzukrainy.net	Sinkholed
2023-12-29	medium	myzukrainy.net	Sinkholed
2023-12-29	medium	myzukrainy.net	Sinkholed
2023-12-29	medium	myzukrainy.net	Sinkholed
2023-12-29	medium	myzukrainy.net	Sinkholed
2023-12-29	medium	myzukrainy.net	Sinkholed
2023-12-29	medium	myzukrainy.net	Sinkholed
2023-12-29	medium	myzukrainy.net	Sinkholed
2023-12-29	medium	myzukrainy.net	Sinkholed
2023-12-29	medium	myzukrainy.net	Sinkholed
2023-12-29	medium	myzukrainy.net	Sinkholed
2023-12-29	medium	myzukrainy.net	Sinkholed
2023-12-29	medium	myzukrainy.net	Sinkholed
2023-12-29	medium	myzukrainy.net	Sinkholed
2023-12-29	medium	myzukrainy.net	Sinkholed
2023-12-29	medium	myzukrainy.net	Sinkholed

ThreatFox

No alerts detected

JavaScript (16)

	URL	From	Size	First Seen	Last Seen
	top.myzukrainy.net/	ScriptElement	3.2 kB	2024-08-20	2024-08-20
Pretty URL top.myzukrainy.net/ IP 185.156.42.53 ASN #196645 Ltd Hostpro Lab Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 14:37 Last Seen2024-08-20 14:37 Times Seen1 Hash 7062d2139756f149e75ae8884814a59b eaee795e34a011673c597f5d353c891a7175e345 5c8354a0439cff13ec0abb6b2799d4ed25bd12b2671ca4762f120fd17369e2a8 Loading...

	myzukrainy.net/wp-includes/js/jquery/jquery.min.js?ver=3.7.0	ScriptElement	88 kB	2023-11-03	2025-07-05
Pretty URL myzukrainy.net/wp-includes/js/jquery/jquery.min.js?ver=3.7.0 IP 185.156.42.53 ASN #196645 Ltd Hostpro Lab Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-03 09:26 Last Seen2025-07-05 04:02 Times Seen132099 Hash 826eb77e86b02ab7724fe3d0141ff87c 79cd3587d565afe290076a8d36c31c305a573d18 cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf Loading...

	myzukrainy.net/wp-content/themes/colormag/js/navigation.min.js?ver=2.1.8	ScriptElement	1.6 kB	2023-03-07	2025-07-02
Pretty URL myzukrainy.net/wp-content/themes/colormag/js/navigation.min.js?ver=2.1.8 IP 185.156.42.53 ASN #196645 Ltd Hostpro Lab Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04 Last Seen2025-07-02 16:06 Times Seen155 Hash 9bb51bfce5c3adf7131480f2dce72224 95199bf629fbf044d37388172525281697ac5952 5b84335d42b38d3122349f53b20dd6a5cb0f45d1e45e5683fd572bcdda8c04a2 Loading...

	myzukrainy.net/wp-content/themes/colormag/js/fitvids/jquery.fitvids.min.js?ver=2.1.8	ScriptElement	1.8 kB	2023-03-07	2025-07-02
Pretty URL myzukrainy.net/wp-content/themes/colormag/js/fitvids/jquery.fitvids.min.js?ver=2.1.8 IP 185.156.42.53 ASN #196645 Ltd Hostpro Lab Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04 Last Seen2025-07-02 16:06 Times Seen153 Hash 7db023435c6f3a6de71502760337a7c6 ba79e4445507d934e6be6905e67bd994a87f2332 8994924c0f3ab4474ee0a7c04417ad84933c4467cc9192fcb60b9774f15f5990 Loading...

	myzukrainy.net/wp-content/themes/colormag/js/colormag-custom.min.js?ver=2.1.8	ScriptElement	3.0 kB	2023-03-08	2025-07-02
Pretty URL myzukrainy.net/wp-content/themes/colormag/js/colormag-custom.min.js?ver=2.1.8 IP 185.156.42.53 ASN #196645 Ltd Hostpro Lab Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:47 Last Seen2025-07-02 16:06 Times Seen80 Hash 5f8687f238134479052763db1c08af7e 40df2fb06dc772a9ea86a5e706f43c858efea3e5 aeef31c70dd1e009fba6965ac0510518bc1fc7c99323dc712b204e9dc74d747f Loading...

	top.myzukrainy.net/	ScriptElement	298 B	2024-08-20	2024-08-20
Pretty URL top.myzukrainy.net/ IP 185.156.42.53 ASN #196645 Ltd Hostpro Lab Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 14:37 Last Seen2024-08-20 14:37 Times Seen1 Hash 717b31c8bab645e6e356ea39afd9571a 5c62b139865093b0f31a7b267ffe43f43131c5bb b107f07dbcf8d69285916fadd1d1f88bae6cf4aeefe26ce8ad7013916a06bfae Loading...

	top.myzukrainy.net/sandbox%20eval%20code		147 B	2023-04-11	2025-07-05
Pretty URL top.myzukrainy.net/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-07-05 04:04 Times Seen391131 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	myzukrainy.net/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1	ScriptElement	14 kB	2023-05-09	2025-07-05
Pretty URL myzukrainy.net/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 IP 185.156.42.53 ASN #196645 Ltd Hostpro Lab Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-09 19:21 Last Seen2025-07-05 04:02 Times Seen140555 Hash 9ffeb32e2d9efbf8f70caabded242267 3ad0c10e501ac2a9bfa18f9cd7e700219b378738 5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89 Loading...

	top.myzukrainy.net/	ScriptElement	388 B	2024-08-20	2024-08-20
Pretty URL top.myzukrainy.net/ IP 185.156.42.53 ASN #196645 Ltd Hostpro Lab Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 14:37 Last Seen2024-08-20 14:37 Times Seen1 Hash f80aae2bc894ad4eefa9c9eae9262e03 1c00169fa85dd40ef49183bede7c19fe83689318 8984f44914b925176026b7eb979c3ab8b053068e9f8cd1214e5732b60766768e Loading...

	myzukrainy.net/wp-content/themes/colormag/js/skip-link-focus-fix.min.js?ver=2.1.8	ScriptElement	325 B	2023-03-07	2025-07-04
Pretty URL myzukrainy.net/wp-content/themes/colormag/js/skip-link-focus-fix.min.js?ver=2.1.8 IP 185.156.42.53 ASN #196645 Ltd Hostpro Lab Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:19 Last Seen2025-07-04 20:56 Times Seen2386 Hash 06f019a6ff09db6b297570940eec1d5d 872efe186950ce534aad341e7030fe24f7c672dc 53f829ae556bf7011727483015d83a98bcdb4b5796eecb728827c1282c971536 Loading...

	www.googletagmanager.com/gtag/js?id=UA-86502321-1	ScriptElement	178 kB	2024-08-20	2024-08-20
Pretty URL www.googletagmanager.com/gtag/js?id=UA-86502321-1 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-20 14:37 Last Seen2024-08-20 14:37 Times Seen1 Hash d1c78844beb74878e19780d48980a4bf 52ab0064a9ff7b2645ddc4fcbe55314230c350b6 ca1022f53a51f41e07db18ab965f5aff90bb1123ec26cb39c59221df9804bcfb Loading...

	myzukrainy.net/wp-content/themes/colormag/js/jquery.bxslider.min.js?ver=2.1.8	ScriptElement	24 kB	2023-03-07	2025-07-02
Pretty URL myzukrainy.net/wp-content/themes/colormag/js/jquery.bxslider.min.js?ver=2.1.8 IP 185.156.42.53 ASN #196645 Ltd Hostpro Lab Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04 Last Seen2025-07-02 16:06 Times Seen155 Hash e41f2a4b95a648db78703b837706d18f ab706ee38566accffda0511b9144a0c7108d4deb 0157d11106d6b70289099fd1ce1f7bea3a9dfbb46cee3994edb07ce765bb92fc Loading...

	myzukrainy.net/wp-content/themes/colormag/js/sticky/jquery.sticky.min.js?ver=2.1.8	ScriptElement	4.2 kB	2023-03-07	2025-07-02
Pretty URL myzukrainy.net/wp-content/themes/colormag/js/sticky/jquery.sticky.min.js?ver=2.1.8 IP 185.156.42.53 ASN #196645 Ltd Hostpro Lab Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05 Last Seen2025-07-02 16:06 Times Seen92 Hash c0c1278d7d95029ab72cd52243fd2be4 fc20db8cd50a6bd5076aae39905b553637e1b024 f9f94cc2cf984a2a8df89c1250c04396bc950e577b4143d5539ca88fb46de91b Loading...

	www.google-analytics.com/analytics.js	ScriptElement	4.7 kB	2023-04-11	2025-07-05
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-07-05 04:04 Times Seen390650 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	top.myzukrainy.net/	ScriptElement	74 kB	2024-08-20	2024-08-20
Pretty URL top.myzukrainy.net/ IP 185.156.42.53 ASN #196645 Ltd Hostpro Lab Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 14:37 Last Seen2024-08-20 14:37 Times Seen1 Hash 8925d529a804fc0655f7b081dbb5a5b0 5139368e4b7929fa4a0e3d4309f39cb23b2cf988 597c04fc42c5f677bde65e1a54f369a60079e6609312ec3cc1ae791f2337da07 Loading...

	www.googletagmanager.com/gtag/js?id=G-TK3Z8SJR3E	ScriptElement	250 kB	2024-08-20	2024-08-20
Pretty URL www.googletagmanager.com/gtag/js?id=G-TK3Z8SJR3E IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-20 14:37 Last Seen2024-08-20 14:37 Times Seen1 Hash e1d5349dabd587b4aded0b313bc81c7c 024f790bf91fe6771347fbf5dc0ea633683279cc f61b99e0f5cedb4a9b59bbc618169c2761cfb0bb45570956a0cd1a4b6c9777ee Loading...

HTTP Transactions (41)

URL IP Response Size

GET top.myzukrainy.net/

185.156.42.53

200 OK

42 kB

URL User Request GET HTTP/2
top.myzukrainy.net/
IP
185.156.42.53:443
ASN
#196645 Ltd Hostpro Lab

Certificate
IssuerLet's Encrypt
Subject24tv.myzukrainy.net
Fingerprint5F:81:E1:CA:FD:D4:CD:EE:9F:48:1B:F0:58:AB:20:AE:59:04:7F:4E
ValiditySat, 18 Nov 2023 21:15:02 GMT - Fri, 16 Feb 2024 21:15:01 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (9462)
Size
42 kB (42105 bytes)
Hash
02d56725ba939caefcfcfe6eed21c241
ded661c2a8a6afa80eb69ab80bd74b7837af5ddc
d231e4cf76c688faa59584ca172143f8dbdc1c9e65bff9e24902af1589629397

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: top.myzukrainy.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 29 Dec 2023 21:53:18 GMT
content-type: text/html; charset=UTF-8
content-length: 42105
last-modified: Tue, 19 Sep 2023 15:00:46 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
X-Firefox-Spdy: h2

GET www.googletagmanager.com/gtag/js?id=UA-86502321-1

142.250.74.168

200 OK

65 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=UA-86502321-1
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://top.myzukrainy.net/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintC1:58:7C:BF:5A:61:79:08:CB:C2:00:63:60:07:86:BD:EA:0A:45:8A
ValidityMon, 20 Nov 2023 08:02:50 GMT - Mon, 12 Feb 2024 08:02:49 GMT

File type
ASCII text, with very long lines (3026)
Size
65 kB (64923 bytes)
Hash
d1c78844beb74878e19780d48980a4bf
52ab0064a9ff7b2645ddc4fcbe55314230c350b6
ca1022f53a51f41e07db18ab965f5aff90bb1123ec26cb39c59221df9804bcfb

HTTP Headers

GET /gtag/js?id=UA-86502321-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://top.myzukrainy.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 29 Dec 2023 21:53:18 GMT
expires: Fri, 29 Dec 2023 21:53:18 GMT
cache-control: private, max-age=900
last-modified: Fri, 29 Dec 2023 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 64923
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET www.googletagmanager.com/gtag/js?id=G-TK3Z8SJR3E

142.250.74.168

200 OK

86 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=G-TK3Z8SJR3E
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://top.myzukrainy.net/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintC1:58:7C:BF:5A:61:79:08:CB:C2:00:63:60:07:86:BD:EA:0A:45:8A
ValidityMon, 20 Nov 2023 08:02:50 GMT - Mon, 12 Feb 2024 08:02:49 GMT

File type
ASCII text, with very long lines (3034)
Size
86 kB (86184 bytes)
Hash
e1d5349dabd587b4aded0b313bc81c7c
024f790bf91fe6771347fbf5dc0ea633683279cc
f61b99e0f5cedb4a9b59bbc618169c2761cfb0bb45570956a0cd1a4b6c9777ee

HTTP Headers

GET /gtag/js?id=G-TK3Z8SJR3E HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://top.myzukrainy.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 29 Dec 2023 21:53:18 GMT
expires: Fri, 29 Dec 2023 21:53:18 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 86184
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET myzukrainy.net/wp-content/themes/colormag/js/skip-link-focus-fix.min.js?ver=2.1.8

185.156.42.53

200 OK

242 B

URL GET HTTP/2
myzukrainy.net/wp-content/themes/colormag/js/skip-link-focus-fix.min.js?ver=2.1.8
IP
185.156.42.53:443
ASN
#196645 Ltd Hostpro Lab

Requested by
https://top.myzukrainy.net/
Certificate
IssuerLet's Encrypt
Subject24tv.myzukrainy.net
Fingerprint5F:81:E1:CA:FD:D4:CD:EE:9F:48:1B:F0:58:AB:20:AE:59:04:7F:4E
ValiditySat, 18 Nov 2023 21:15:02 GMT - Fri, 16 Feb 2024 21:15:01 GMT

File type
ASCII text, with very long lines (325), with no line terminators
Size
242 B (242 bytes)
Hash
06f019a6ff09db6b297570940eec1d5d
872efe186950ce534aad341e7030fe24f7c672dc
53f829ae556bf7011727483015d83a98bcdb4b5796eecb728827c1282c971536

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/colormag/js/skip-link-focus-fix.min.js?ver=2.1.8 HTTP/1.1
Host: myzukrainy.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://top.myzukrainy.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 29 Dec 2023 21:53:18 GMT
content-type: application/javascript
content-length: 242
x-accel-version: 0.01
last-modified: Sat, 06 May 2023 19:51:25 GMT
etag: "145-5fb0bbb0e0f3d-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
X-Firefox-Spdy: h2

GET myzukrainy.net/wp-content/uploads/2023/09/%D0%B4%D1%96%D0%B4%D0%BE-%D0%BA%D0%BE%D0%BD%D1%82%D1%80%D0%BE%D0%BB%D1%8C-800x445-1.jpg

185.156.42.53

200 OK

43 kB

URL GET HTTP/2
myzukrainy.net/wp-content/uploads/2023/09/%D0%B4%D1%96%D0%B4%D0%BE-%D0%BA%D0%BE%D0%BD%D1%82%D1%80%D0%BE%D0%BB%D1%8C-800x445-1.jpg
IP
185.156.42.53:443
ASN
#196645 Ltd Hostpro Lab

Requested by
https://top.myzukrainy.net/
Certificate
IssuerLet's Encrypt
Subject24tv.myzukrainy.net
Fingerprint5F:81:E1:CA:FD:D4:CD:EE:9F:48:1B:F0:58:AB:20:AE:59:04:7F:4E
ValiditySat, 18 Nov 2023 21:15:02 GMT - Fri, 16 Feb 2024 21:15:01 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 800x445, components 3
Size
43 kB (43203 bytes)
Hash
b42578e7bc3ed9f3679d537d8aea7757
a69f8e0479b2d8271b5788c21746cb3871645217
829919fa27ad15665fc5fe9b94a3aae7ca2d40f4331fa3cf07617d5f13b4dbca

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2023/09/%D0%B4%D1%96%D0%B4%D0%BE-%D0%BA%D0%BE%D0%BD%D1%82%D1%80%D0%BE%D0%BB%D1%8C-800x445-1.jpg HTTP/1.1
Host: myzukrainy.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://top.myzukrainy.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 29 Dec 2023 21:53:18 GMT
content-type: image/jpeg
content-length: 43203
last-modified: Tue, 19 Sep 2023 14:44:52 GMT
etag: "6509b3e4-a8c3"
accept-ranges: bytes
X-Firefox-Spdy: h2

GET myzukrainy.net/wp-content/uploads/2023/09/%D0%B4%D1%96%D0%B4%D0%BE-%D0%BA%D0%BE%D0%BD%D1%82%D1%80%D0%BE%D0%BB%D1%8C-800x445-1-768x427.jpg

185.156.42.53

200 OK

39 kB

URL GET HTTP/2
myzukrainy.net/wp-content/uploads/2023/09/%D0%B4%D1%96%D0%B4%D0%BE-%D0%BA%D0%BE%D0%BD%D1%82%D1%80%D0%BE%D0%BB%D1%8C-800x445-1-768x427.jpg
IP
185.156.42.53:443
ASN
#196645 Ltd Hostpro Lab

Requested by
https://top.myzukrainy.net/
Certificate
IssuerLet's Encrypt
Subject24tv.myzukrainy.net
Fingerprint5F:81:E1:CA:FD:D4:CD:EE:9F:48:1B:F0:58:AB:20:AE:59:04:7F:4E
ValiditySat, 18 Nov 2023 21:15:02 GMT - Fri, 16 Feb 2024 21:15:01 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 768x427, components 3
Size
39 kB (39187 bytes)
Hash
6b59fdb7f5391fa0e34621e8d7bb2fd4
0ece0db312d07b15dbb3bddcfef871245915372e
fdaff8a49899ea81727d8dabfe450f824dd435170cabd7004094b8b8bcf5503f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2023/09/%D0%B4%D1%96%D0%B4%D0%BE-%D0%BA%D0%BE%D0%BD%D1%82%D1%80%D0%BE%D0%BB%D1%8C-800x445-1-768x427.jpg HTTP/1.1
Host: myzukrainy.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://top.myzukrainy.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 29 Dec 2023 21:53:18 GMT
content-type: image/jpeg
content-length: 39187
last-modified: Tue, 19 Sep 2023 14:44:52 GMT
etag: "6509b3e4-9913"
accept-ranges: bytes
X-Firefox-Spdy: h2

GET myzukrainy.net/wp-content/uploads/2023/09/Screenshot_2023-09-19-12-50-23-34_40deb401b9ffe8e1df2f1cc5ba480b12-768x526.jpg

185.156.42.53

200 OK

56 kB

URL GET HTTP/2
myzukrainy.net/wp-content/uploads/2023/09/Screenshot_2023-09-19-12-50-23-34_40deb401b9ffe8e1df2f1cc5ba480b12-768x526.jpg
IP
185.156.42.53:443
ASN
#196645 Ltd Hostpro Lab

Requested by
https://top.myzukrainy.net/
Certificate
IssuerLet's Encrypt
Subject24tv.myzukrainy.net
Fingerprint5F:81:E1:CA:FD:D4:CD:EE:9F:48:1B:F0:58:AB:20:AE:59:04:7F:4E
ValiditySat, 18 Nov 2023 21:15:02 GMT - Fri, 16 Feb 2024 21:15:01 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 768x526, components 3
Size
56 kB (55478 bytes)
Hash
023a59625176907e88618e1863aeb7c6
af10116a9cd318031f49486102d5e62b2f7e0762
25b22399728e1d9ec24a09582f7bdfde4faae00506b801088d49d6d13d0f3fff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2023/09/Screenshot_2023-09-19-12-50-23-34_40deb401b9ffe8e1df2f1cc5ba480b12-768x526.jpg HTTP/1.1
Host: myzukrainy.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://top.myzukrainy.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 29 Dec 2023 21:53:18 GMT
content-type: image/jpeg
content-length: 55478
last-modified: Tue, 19 Sep 2023 09:52:18 GMT
etag: "65096f52-d8b6"
accept-ranges: bytes
X-Firefox-Spdy: h2

GET myzukrainy.net/wp-content/uploads/2023/09/%D0%BF%D0%BE%D0%BB%D1%8B%D0%BB%D0%B8%D0%BC%D0%BE-%D1%83%D0%BA%D1%80%D0%B0%D1%8A%D0%BD%D1%83-800x445-1.jpg

185.156.42.53

200 OK

50 kB

URL GET HTTP/2
myzukrainy.net/wp-content/uploads/2023/09/%D0%BF%D0%BE%D0%BB%D1%8B%D0%BB%D0%B8%D0%BC%D0%BE-%D1%83%D0%BA%D1%80%D0%B0%D1%8A%D0%BD%D1%83-800x445-1.jpg
IP
185.156.42.53:443
ASN
#196645 Ltd Hostpro Lab

Requested by
https://top.myzukrainy.net/
Certificate
IssuerLet's Encrypt
Subject24tv.myzukrainy.net
Fingerprint5F:81:E1:CA:FD:D4:CD:EE:9F:48:1B:F0:58:AB:20:AE:59:04:7F:4E
ValiditySat, 18 Nov 2023 21:15:02 GMT - Fri, 16 Feb 2024 21:15:01 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 800x445, components 3
Size
50 kB (49887 bytes)
Hash
6e106742c97dd1c34364a3a46a411902
a2812a70f8a0262d8c16dd8279d53a4e33775ccd
75ecb570104e26b0af8b443e3a75fa2a50a6c091ebd3ea3ed481223f5275d744

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2023/09/%D0%BF%D0%BE%D0%BB%D1%8B%D0%BB%D0%B8%D0%BC%D0%BE-%D1%83%D0%BA%D1%80%D0%B0%D1%8A%D0%BD%D1%83-800x445-1.jpg HTTP/1.1
Host: myzukrainy.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://top.myzukrainy.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 29 Dec 2023 21:53:18 GMT
content-type: image/jpeg
content-length: 49887
last-modified: Tue, 19 Sep 2023 14:58:04 GMT
etag: "6509b6fc-c2df"
accept-ranges: bytes
X-Firefox-Spdy: h2

GET myzukrainy.net/wp-content/uploads/2023/02/1000_545_1574-390x205.jpg

185.156.42.53

200 OK

12 kB

URL GET HTTP/2
myzukrainy.net/wp-content/uploads/2023/02/1000_545_1574-390x205.jpg
IP
185.156.42.53:443
ASN
#196645 Ltd Hostpro Lab

Requested by
https://top.myzukrainy.net/
Certificate
IssuerLet's Encrypt
Subject24tv.myzukrainy.net
Fingerprint5F:81:E1:CA:FD:D4:CD:EE:9F:48:1B:F0:58:AB:20:AE:59:04:7F:4E
ValiditySat, 18 Nov 2023 21:15:02 GMT - Fri, 16 Feb 2024 21:15:01 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 390x205, components 3
Size
12 kB (12049 bytes)
Hash
71061f94f6a1fbc808f31c9d1a740c9a
0903831edc9f43de822de36adc9b6e4d05ea55ae
209c0d90c5b71c6f2470ba7f2ca30b2edfef754aacbb3ac8b17f2a753b1730a7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2023/02/1000_545_1574-390x205.jpg HTTP/1.1
Host: myzukrainy.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://top.myzukrainy.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 29 Dec 2023 21:53:18 GMT
content-type: image/jpeg
content-length: 12049
last-modified: Tue, 14 Feb 2023 18:00:49 GMT
etag: "63ebcc51-2f11"
accept-ranges: bytes
X-Firefox-Spdy: h2

GET myzukrainy.net/wp-content/uploads/2023/04/%D1%88%D0%B0%D1%85-%D1%96-%D0%BC%D0%B0%D1%82-130x90.jpg

185.156.42.53

200 OK

3.5 kB

URL GET HTTP/2
myzukrainy.net/wp-content/uploads/2023/04/%D1%88%D0%B0%D1%85-%D1%96-%D0%BC%D0%B0%D1%82-130x90.jpg
IP
185.156.42.53:443
ASN
#196645 Ltd Hostpro Lab

Requested by
https://top.myzukrainy.net/
Certificate
IssuerLet's Encrypt
Subject24tv.myzukrainy.net
Fingerprint5F:81:E1:CA:FD:D4:CD:EE:9F:48:1B:F0:58:AB:20:AE:59:04:7F:4E
ValiditySat, 18 Nov 2023 21:15:02 GMT - Fri, 16 Feb 2024 21:15:01 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 130x90, components 3
Size
3.5 kB (3524 bytes)
Hash
8e80a8c6125fce14940a177a9468e114
2ea5c8fbb47615d72403a3f60ac6a020e9f6eede
036e74572571d49f0b84825e25e9c46c89f975d95c30cff00504a0047a7397eb

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2023/04/%D1%88%D0%B0%D1%85-%D1%96-%D0%BC%D0%B0%D1%82-130x90.jpg HTTP/1.1
Host: myzukrainy.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://top.myzukrainy.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 29 Dec 2023 21:53:18 GMT
content-type: image/jpeg
content-length: 3524
last-modified: Wed, 13 Sep 2023 13:47:35 GMT
etag: "6501bd77-dc4"
accept-ranges: bytes
X-Firefox-Spdy: h2

GET myzukrainy.net/wp-content/uploads/2023/05/ae42cca3bd5d06794e3f82d170a03ac2-130x90.jpeg

185.156.42.53

200 OK

3.9 kB

URL GET HTTP/2
myzukrainy.net/wp-content/uploads/2023/05/ae42cca3bd5d06794e3f82d170a03ac2-130x90.jpeg
IP
185.156.42.53:443
ASN
#196645 Ltd Hostpro Lab

Requested by
https://top.myzukrainy.net/
Certificate
IssuerLet's Encrypt
Subject24tv.myzukrainy.net
Fingerprint5F:81:E1:CA:FD:D4:CD:EE:9F:48:1B:F0:58:AB:20:AE:59:04:7F:4E
ValiditySat, 18 Nov 2023 21:15:02 GMT - Fri, 16 Feb 2024 21:15:01 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 130x90, components 3
Size
3.9 kB (3944 bytes)
Hash
942a5fedab9e2ad854d4621d793e0f73
348f04c08599ddf7103b8e9e8eb1a86505aadb46
3c30e2033460f18a8a9ddda86d3963f25a93e2755a58c035e9088247acf98db9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2023/05/ae42cca3bd5d06794e3f82d170a03ac2-130x90.jpeg HTTP/1.1
Host: myzukrainy.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://top.myzukrainy.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 29 Dec 2023 21:53:18 GMT
content-type: image/jpeg
content-length: 3944
last-modified: Mon, 08 May 2023 15:05:02 GMT
etag: "64590f9e-f68"
accept-ranges: bytes
X-Firefox-Spdy: h2

GET myzukrainy.net/wp-content/uploads/2022/10/Screenshot_2022-10-28-21-26-45-33_40deb401b9ffe8e1df2f1cc5ba480b12-130x90.jpg

185.156.42.53

200 OK

6.0 kB

URL GET HTTP/2
myzukrainy.net/wp-content/uploads/2022/10/Screenshot_2022-10-28-21-26-45-33_40deb401b9ffe8e1df2f1cc5ba480b12-130x90.jpg
IP
185.156.42.53:443
ASN
#196645 Ltd Hostpro Lab

Requested by
https://top.myzukrainy.net/
Certificate
IssuerLet's Encrypt
Subject24tv.myzukrainy.net
Fingerprint5F:81:E1:CA:FD:D4:CD:EE:9F:48:1B:F0:58:AB:20:AE:59:04:7F:4E
ValiditySat, 18 Nov 2023 21:15:02 GMT - Fri, 16 Feb 2024 21:15:01 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 130x90, components 3
Size
6.0 kB (5980 bytes)
Hash
49978428c883f4540e4070565d800d30
1b5d3784a8ec358cb7cea7736be667a1a28fbc1f
43972225157c23de45219135fbbfc8c2aff301b5c5418b97319c8f37c24bd45e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/10/Screenshot_2022-10-28-21-26-45-33_40deb401b9ffe8e1df2f1cc5ba480b12-130x90.jpg HTTP/1.1
Host: myzukrainy.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://top.myzukrainy.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 29 Dec 2023 21:53:18 GMT
content-type: image/jpeg
content-length: 5980
last-modified: Fri, 28 Oct 2022 18:26:58 GMT
etag: "635c1ef2-175c"
accept-ranges: bytes
X-Firefox-Spdy: h2

GET myzukrainy.net/wp-content/uploads/2023/08/Screenshot_2023-08-08-09-25-48-03_40deb401b9ffe8e1df2f1cc5ba480b12-390x205.jpg

185.156.42.53

200 OK

14 kB

URL GET HTTP/2
myzukrainy.net/wp-content/uploads/2023/08/Screenshot_2023-08-08-09-25-48-03_40deb401b9ffe8e1df2f1cc5ba480b12-390x205.jpg
IP
185.156.42.53:443
ASN
#196645 Ltd Hostpro Lab

Requested by
https://top.myzukrainy.net/
Certificate
IssuerLet's Encrypt
Subject24tv.myzukrainy.net
Fingerprint5F:81:E1:CA:FD:D4:CD:EE:9F:48:1B:F0:58:AB:20:AE:59:04:7F:4E
ValiditySat, 18 Nov 2023 21:15:02 GMT - Fri, 16 Feb 2024 21:15:01 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 390x205, components 3
Size
14 kB (13924 bytes)
Hash
64afb3a0fb60a9a541c454ce7df1ccd6
34fecb499ab00b80c0cb5999a3af7c102bf1c8c5
dd5b09dc2b068f6175bad303cdb3ddb355542c3becd7ba34237cdabbd6049f3a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2023/08/Screenshot_2023-08-08-09-25-48-03_40deb401b9ffe8e1df2f1cc5ba480b12-390x205.jpg HTTP/1.1
Host: myzukrainy.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://top.myzukrainy.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 29 Dec 2023 21:53:18 GMT
content-type: image/jpeg
content-length: 13924
last-modified: Tue, 08 Aug 2023 06:29:42 GMT
etag: "64d1e0d6-3664"
accept-ranges: bytes
X-Firefox-Spdy: h2

GET myzukrainy.net/wp-content/uploads/2022/10/Screenshot_2022-10-21-20-10-51-17_40deb401b9ffe8e1df2f1cc5ba480b12-390x205.jpg

185.156.42.53

200 OK

24 kB

URL GET HTTP/2
myzukrainy.net/wp-content/uploads/2022/10/Screenshot_2022-10-21-20-10-51-17_40deb401b9ffe8e1df2f1cc5ba480b12-390x205.jpg
IP
185.156.42.53:443
ASN
#196645 Ltd Hostpro Lab

Requested by
https://top.myzukrainy.net/
Certificate
IssuerLet's Encrypt
Subject24tv.myzukrainy.net
Fingerprint5F:81:E1:CA:FD:D4:CD:EE:9F:48:1B:F0:58:AB:20:AE:59:04:7F:4E
ValiditySat, 18 Nov 2023 21:15:02 GMT - Fri, 16 Feb 2024 21:15:01 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 390x205, components 3
Size
24 kB (24460 bytes)
Hash
fd16191c4d34d8b8023564fddc75b43c
ad37898d28bfc5e32b50e6e02bb67b90cfc5e4cc
c0532049dc486316453b1120e5cb116aaf8bc85393cc65cc5aa19ad86bf74dda

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/10/Screenshot_2022-10-21-20-10-51-17_40deb401b9ffe8e1df2f1cc5ba480b12-390x205.jpg HTTP/1.1
Host: myzukrainy.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://top.myzukrainy.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 29 Dec 2023 21:53:18 GMT
content-type: image/jpeg
content-length: 24460
last-modified: Fri, 21 Oct 2022 17:16:28 GMT
etag: "6352d3ec-5f8c"
accept-ranges: bytes
X-Firefox-Spdy: h2

GET myzukrainy.net/wp-content/uploads/2023/05/%D1%80%D0%BE%D1%81%D1%8B%D0%B7%D1%82%D0%B2%D1%80%D0%B0%D0%B2-130x90.jpg

185.156.42.53

200 OK

5.0 kB

URL GET HTTP/2
myzukrainy.net/wp-content/uploads/2023/05/%D1%80%D0%BE%D1%81%D1%8B%D0%B7%D1%82%D0%B2%D1%80%D0%B0%D0%B2-130x90.jpg
IP
185.156.42.53:443
ASN
#196645 Ltd Hostpro Lab

Requested by
https://top.myzukrainy.net/
Certificate
IssuerLet's Encrypt
Subject24tv.myzukrainy.net
Fingerprint5F:81:E1:CA:FD:D4:CD:EE:9F:48:1B:F0:58:AB:20:AE:59:04:7F:4E
ValiditySat, 18 Nov 2023 21:15:02 GMT - Fri, 16 Feb 2024 21:15:01 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 130x90, components 3
Size
5.0 kB (4964 bytes)
Hash
52a16c7130b61f29c1c27d1e007318a5
03024d9afb9fde98c724147ce1b9cd74cdfc620e
05e5363ae537c9066415f167793e0c30875e69becd5636f56b1587785a566b91

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2023/05/%D1%80%D0%BE%D1%81%D1%8B%D0%B7%D1%82%D0%B2%D1%80%D0%B0%D0%B2-130x90.jpg HTTP/1.1
Host: myzukrainy.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://top.myzukrainy.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 29 Dec 2023 21:53:18 GMT
content-type: image/jpeg
content-length: 4964
last-modified: Wed, 13 Sep 2023 10:13:43 GMT
etag: "65018b57-1364"
accept-ranges: bytes
X-Firefox-Spdy: h2

GET myzukrainy.net/wp-content/uploads/2022/10/Screenshot_2022-10-20-22-07-33-21_40deb401b9ffe8e1df2f1cc5ba480b12-130x90.jpg

185.156.42.53

200 OK

4.0 kB

URL GET HTTP/2
myzukrainy.net/wp-content/uploads/2022/10/Screenshot_2022-10-20-22-07-33-21_40deb401b9ffe8e1df2f1cc5ba480b12-130x90.jpg
IP
185.156.42.53:443
ASN
#196645 Ltd Hostpro Lab

Requested by
https://top.myzukrainy.net/
Certificate
IssuerLet's Encrypt
Subject24tv.myzukrainy.net
Fingerprint5F:81:E1:CA:FD:D4:CD:EE:9F:48:1B:F0:58:AB:20:AE:59:04:7F:4E
ValiditySat, 18 Nov 2023 21:15:02 GMT - Fri, 16 Feb 2024 21:15:01 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 130x90, components 3
Size
4.0 kB (3971 bytes)
Hash
4d4cb05d8ca8b4709a000c40b49999b7
6233dff66682240e938597506b517c68e393b337
3a546f51876cfe98c65e3c38d2f747f9bf68f3b86fb20e7e04b4f157c096f8f6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/10/Screenshot_2022-10-20-22-07-33-21_40deb401b9ffe8e1df2f1cc5ba480b12-130x90.jpg HTTP/1.1
Host: myzukrainy.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://top.myzukrainy.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 29 Dec 2023 21:53:18 GMT
content-type: image/jpeg
content-length: 3971
last-modified: Thu, 20 Oct 2022 19:09:13 GMT
etag: "63519cd9-f83"
accept-ranges: bytes
X-Firefox-Spdy: h2

GET myzukrainy.net/wp-content/uploads/2022/10/adfsgfjmh-130x90.jpg

185.156.42.53

200 OK

3.1 kB

URL GET HTTP/2
myzukrainy.net/wp-content/uploads/2022/10/adfsgfjmh-130x90.jpg
IP
185.156.42.53:443
ASN
#196645 Ltd Hostpro Lab

Requested by
https://top.myzukrainy.net/
Certificate
IssuerLet's Encrypt
Subject24tv.myzukrainy.net
Fingerprint5F:81:E1:CA:FD:D4:CD:EE:9F:48:1B:F0:58:AB:20:AE:59:04:7F:4E
ValiditySat, 18 Nov 2023 21:15:02 GMT - Fri, 16 Feb 2024 21:15:01 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 130x90, components 3
Size
3.1 kB (3053 bytes)
Hash
30933ed43521174be3b40042edc933b8
460a16d67b51304bfd41b327b48a8993b1cda0e1
691933db1eeccceb3d4118d6d369aac0f4a5ae44292e9657e78fec4d9fb6eb7e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/10/adfsgfjmh-130x90.jpg HTTP/1.1
Host: myzukrainy.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://top.myzukrainy.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 29 Dec 2023 21:53:18 GMT
content-type: image/jpeg
content-length: 3053
last-modified: Mon, 31 Oct 2022 17:05:54 GMT
etag: "63600072-bed"
accept-ranges: bytes
X-Firefox-Spdy: h2

GET myzukrainy.net/wp-content/uploads/2023/07/Screenshot_2023-07-26-12-10-58-71_40deb401b9ffe8e1df2f1cc5ba480b12-130x90.jpg

185.156.42.53

200 OK

3.3 kB

URL GET HTTP/2
myzukrainy.net/wp-content/uploads/2023/07/Screenshot_2023-07-26-12-10-58-71_40deb401b9ffe8e1df2f1cc5ba480b12-130x90.jpg
IP
185.156.42.53:443
ASN
#196645 Ltd Hostpro Lab

Requested by
https://top.myzukrainy.net/
Certificate
IssuerLet's Encrypt
Subject24tv.myzukrainy.net
Fingerprint5F:81:E1:CA:FD:D4:CD:EE:9F:48:1B:F0:58:AB:20:AE:59:04:7F:4E
ValiditySat, 18 Nov 2023 21:15:02 GMT - Fri, 16 Feb 2024 21:15:01 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 130x90, components 3
Size
3.3 kB (3346 bytes)
Hash
cc0a818b57d310e7d54042e9e7804c88
e0a31b47a5dc3b3431520d07a165a077bc1296f9
f072c6b58966c390bc8fcb596be23372c88061a944b61259df12ffdb660f7965

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2023/07/Screenshot_2023-07-26-12-10-58-71_40deb401b9ffe8e1df2f1cc5ba480b12-130x90.jpg HTTP/1.1
Host: myzukrainy.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://top.myzukrainy.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 29 Dec 2023 21:53:18 GMT
content-type: image/jpeg
content-length: 3346
last-modified: Wed, 26 Jul 2023 09:11:10 GMT
etag: "64c0e32e-d12"
accept-ranges: bytes
X-Firefox-Spdy: h2

GET myzukrainy.net/wp-content/uploads/2023/07/Screenshot_2023-07-27-09-54-05-98_40deb401b9ffe8e1df2f1cc5ba480b12-130x90.jpg

185.156.42.53

200 OK

4.5 kB

URL GET HTTP/2
myzukrainy.net/wp-content/uploads/2023/07/Screenshot_2023-07-27-09-54-05-98_40deb401b9ffe8e1df2f1cc5ba480b12-130x90.jpg
IP
185.156.42.53:443
ASN
#196645 Ltd Hostpro Lab

Requested by
https://top.myzukrainy.net/
Certificate
IssuerLet's Encrypt
Subject24tv.myzukrainy.net
Fingerprint5F:81:E1:CA:FD:D4:CD:EE:9F:48:1B:F0:58:AB:20:AE:59:04:7F:4E
ValiditySat, 18 Nov 2023 21:15:02 GMT - Fri, 16 Feb 2024 21:15:01 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 130x90, components 3
Size
4.5 kB (4513 bytes)
Hash
cace3685c61568b8e31d7b7edd96f643
a097c67faffaf96e9f9e2a5a7a29229a3a92df77
87b243f9858ea1d5acc32a902894328f9783a943cdae2940908400d746568379

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2023/07/Screenshot_2023-07-27-09-54-05-98_40deb401b9ffe8e1df2f1cc5ba480b12-130x90.jpg HTTP/1.1
Host: myzukrainy.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://top.myzukrainy.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 29 Dec 2023 21:53:18 GMT
content-type: image/jpeg
content-length: 4513
last-modified: Thu, 27 Jul 2023 06:54:31 GMT
etag: "64c214a7-11a1"
accept-ranges: bytes
X-Firefox-Spdy: h2

GET myzukrainy.net/wp-content/uploads/2022/12/Screenshot_2022-12-03-14-00-01-14_40deb401b9ffe8e1df2f1cc5ba480b12-130x90.jpg

185.156.42.53

200 OK

4.3 kB

URL GET HTTP/2
myzukrainy.net/wp-content/uploads/2022/12/Screenshot_2022-12-03-14-00-01-14_40deb401b9ffe8e1df2f1cc5ba480b12-130x90.jpg
IP
185.156.42.53:443
ASN
#196645 Ltd Hostpro Lab

Requested by
https://top.myzukrainy.net/
Certificate
IssuerLet's Encrypt
Subject24tv.myzukrainy.net
Fingerprint5F:81:E1:CA:FD:D4:CD:EE:9F:48:1B:F0:58:AB:20:AE:59:04:7F:4E
ValiditySat, 18 Nov 2023 21:15:02 GMT - Fri, 16 Feb 2024 21:15:01 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 130x90, components 3
Size
4.3 kB (4325 bytes)
Hash
96173dfd581ce91672922f78e2bb6c55
3f20522459b42dc3f57dbbe4409837fb4c3d08a0
99cf33c5bb4e1a88b89d0e8599685bd9f43ebc0a0c70e0492d570528087ca8ad

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/12/Screenshot_2022-12-03-14-00-01-14_40deb401b9ffe8e1df2f1cc5ba480b12-130x90.jpg HTTP/1.1
Host: myzukrainy.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://top.myzukrainy.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 29 Dec 2023 21:53:18 GMT
content-type: image/jpeg
content-length: 4325
last-modified: Sat, 03 Dec 2022 12:00:08 GMT
etag: "638b3a48-10e5"
accept-ranges: bytes
X-Firefox-Spdy: h2

GET myzukrainy.net/wp-content/uploads/2023/09/Screenshot_2023-09-19-11-25-48-74_40deb401b9ffe8e1df2f1cc5ba480b12-768x442.jpg

185.156.42.53

200 OK

42 kB

URL GET HTTP/2
myzukrainy.net/wp-content/uploads/2023/09/Screenshot_2023-09-19-11-25-48-74_40deb401b9ffe8e1df2f1cc5ba480b12-768x442.jpg
IP
185.156.42.53:443
ASN
#196645 Ltd Hostpro Lab

Requested by
https://top.myzukrainy.net/
Certificate
IssuerLet's Encrypt
Subject24tv.myzukrainy.net
Fingerprint5F:81:E1:CA:FD:D4:CD:EE:9F:48:1B:F0:58:AB:20:AE:59:04:7F:4E
ValiditySat, 18 Nov 2023 21:15:02 GMT - Fri, 16 Feb 2024 21:15:01 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 768x442, components 3
Size
42 kB (41811 bytes)
Hash
9c08e2afc39b04cbf8b0894a4bcd0283
6bc781655f12070ff71e80a890fdd94ccf9e0a11
eabf559c988c2cec26df489c8e131a0f8c842d2b43ed224549da3e02dbce70d9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2023/09/Screenshot_2023-09-19-11-25-48-74_40deb401b9ffe8e1df2f1cc5ba480b12-768x442.jpg HTTP/1.1
Host: myzukrainy.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://top.myzukrainy.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 29 Dec 2023 21:53:18 GMT
content-type: image/jpeg
content-length: 41811
last-modified: Tue, 19 Sep 2023 08:29:02 GMT
etag: "65095bce-a353"
accept-ranges: bytes
X-Firefox-Spdy: h2

GET myzukrainy.net/wp-content/uploads/2023/07/Screenshot_2023-07-27-07-42-11-31_40deb401b9ffe8e1df2f1cc5ba480b12-130x90.jpg

185.156.42.53

200 OK

3.9 kB

URL GET HTTP/2
myzukrainy.net/wp-content/uploads/2023/07/Screenshot_2023-07-27-07-42-11-31_40deb401b9ffe8e1df2f1cc5ba480b12-130x90.jpg
IP
185.156.42.53:443
ASN
#196645 Ltd Hostpro Lab

Requested by
https://top.myzukrainy.net/
Certificate
IssuerLet's Encrypt
Subject24tv.myzukrainy.net
Fingerprint5F:81:E1:CA:FD:D4:CD:EE:9F:48:1B:F0:58:AB:20:AE:59:04:7F:4E
ValiditySat, 18 Nov 2023 21:15:02 GMT - Fri, 16 Feb 2024 21:15:01 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 130x90, components 3
Size
3.9 kB (3922 bytes)
Hash
de6c84ba1708f52e8dfbc1b071dabd30
f87e2971c86db07da7e7dfbc6068d3b45d84f717
7d617229317ce670735e189e110084a4c4e013de0aa989fb9beac36ecb6e5924

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2023/07/Screenshot_2023-07-27-07-42-11-31_40deb401b9ffe8e1df2f1cc5ba480b12-130x90.jpg HTTP/1.1
Host: myzukrainy.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://top.myzukrainy.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 29 Dec 2023 21:53:18 GMT
content-type: image/jpeg
content-length: 3922
last-modified: Thu, 27 Jul 2023 04:42:28 GMT
etag: "64c1f5b4-f52"
accept-ranges: bytes
X-Firefox-Spdy: h2

GET myzukrainy.net/wp-content/uploads/2023/09/%D0%BF%D0%BE%D0%BB%D1%8B%D0%BB%D0%B8%D0%BC%D0%BE-%D1%83%D0%BA%D1%80%D0%B0%D1%8A%D0%BD%D1%83-800x445-1-392x272.jpg

185.156.42.53

200 OK

21 kB

URL GET HTTP/2
myzukrainy.net/wp-content/uploads/2023/09/%D0%BF%D0%BE%D0%BB%D1%8B%D0%BB%D0%B8%D0%BC%D0%BE-%D1%83%D0%BA%D1%80%D0%B0%D1%8A%D0%BD%D1%83-800x445-1-392x272.jpg
IP
185.156.42.53:443
ASN
#196645 Ltd Hostpro Lab

Requested by
https://top.myzukrainy.net/
Certificate
IssuerLet's Encrypt
Subject24tv.myzukrainy.net
Fingerprint5F:81:E1:CA:FD:D4:CD:EE:9F:48:1B:F0:58:AB:20:AE:59:04:7F:4E
ValiditySat, 18 Nov 2023 21:15:02 GMT - Fri, 16 Feb 2024 21:15:01 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 392x272, components 3
Size
21 kB (21102 bytes)
Hash
4b83474055fa22bfec4f3920fc76f063
3e974c5842b007d0e2d0b9dcd6fd3473942da841
52f5f59ae24369d7ce78a0773a726b57a5531e32a1a5cfff231ef0d25c7456d2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2023/09/%D0%BF%D0%BE%D0%BB%D1%8B%D0%BB%D0%B8%D0%BC%D0%BE-%D1%83%D0%BA%D1%80%D0%B0%D1%8A%D0%BD%D1%83-800x445-1-392x272.jpg HTTP/1.1
Host: myzukrainy.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://top.myzukrainy.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 29 Dec 2023 21:53:18 GMT
content-type: image/jpeg
content-length: 21102
last-modified: Tue, 19 Sep 2023 14:58:04 GMT
etag: "6509b6fc-526e"
accept-ranges: bytes
X-Firefox-Spdy: h2

GET myzukrainy.net/wp-content/themes/colormag/assets/fonts/OpenSans-VariableFont.woff

185.156.42.53

200 OK

80 kB

URL GET HTTP/2
myzukrainy.net/wp-content/themes/colormag/assets/fonts/OpenSans-VariableFont.woff
IP
185.156.42.53:443
ASN
#196645 Ltd Hostpro Lab

Requested by
https://top.myzukrainy.net/
Certificate
IssuerLet's Encrypt
Subject24tv.myzukrainy.net
Fingerprint5F:81:E1:CA:FD:D4:CD:EE:9F:48:1B:F0:58:AB:20:AE:59:04:7F:4E
ValiditySat, 18 Nov 2023 21:15:02 GMT - Fri, 16 Feb 2024 21:15:01 GMT

File type
Web Open Font Format, TrueType, length 80196, version 3.0
Size
80 kB (80196 bytes)
Hash
8d5902c75e6f6373b10b9a5aaad64821
cf35548f4f6a03fc63544a78703e61e00fae45a9
01860d2273448228ae1e9f7b7150e82bdcf98896938cccd44815f4c1c856204c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/colormag/assets/fonts/OpenSans-VariableFont.woff HTTP/1.1
Host: myzukrainy.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://top.myzukrainy.net
DNT: 1
Connection: keep-alive
Referer: https://myzukrainy.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 29 Dec 2023 21:53:19 GMT
content-type: application/x-font-woff
content-length: 80196
last-modified: Sat, 06 May 2023 19:51:24 GMT
etag: "6456afbc-13944"
accept-ranges: bytes
X-Firefox-Spdy: h2

GET myzukrainy.net/wp-content/themes/colormag/assets/fonts/OpenSans-Regular.woff

185.156.42.53

200 OK

80 kB

URL GET HTTP/2
myzukrainy.net/wp-content/themes/colormag/assets/fonts/OpenSans-Regular.woff
IP
185.156.42.53:443
ASN
#196645 Ltd Hostpro Lab

Requested by
https://top.myzukrainy.net/
Certificate
IssuerLet's Encrypt
Subject24tv.myzukrainy.net
Fingerprint5F:81:E1:CA:FD:D4:CD:EE:9F:48:1B:F0:58:AB:20:AE:59:04:7F:4E
ValiditySat, 18 Nov 2023 21:15:02 GMT - Fri, 16 Feb 2024 21:15:01 GMT

File type
Web Open Font Format, TrueType, length 80280, version 3.0
Size
80 kB (80280 bytes)
Hash
dec1ef467e5034d2562db22cf413034a
63eecb1133924bb8ec787a509a1e9e9afe8fb5bc
543ceb846af6fbfff9fc58f1e53994f3f191116c51ca95de3ce75d675c50ea66

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/colormag/assets/fonts/OpenSans-Regular.woff HTTP/1.1
Host: myzukrainy.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://top.myzukrainy.net
DNT: 1
Connection: keep-alive
Referer: https://myzukrainy.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 29 Dec 2023 21:53:19 GMT
content-type: application/x-font-woff
content-length: 80280
last-modified: Sat, 06 May 2023 19:51:24 GMT
etag: "6456afbc-13998"
accept-ranges: bytes
X-Firefox-Spdy: h2

GET myzukrainy.net/wp-content/themes/colormag/assets/fonts/OpenSans-Bold.woff

185.156.42.53

200 OK

78 kB

URL GET HTTP/2
myzukrainy.net/wp-content/themes/colormag/assets/fonts/OpenSans-Bold.woff
IP
185.156.42.53:443
ASN
#196645 Ltd Hostpro Lab

Requested by
https://top.myzukrainy.net/
Certificate
IssuerLet's Encrypt
Subject24tv.myzukrainy.net
Fingerprint5F:81:E1:CA:FD:D4:CD:EE:9F:48:1B:F0:58:AB:20:AE:59:04:7F:4E
ValiditySat, 18 Nov 2023 21:15:02 GMT - Fri, 16 Feb 2024 21:15:01 GMT

File type
Web Open Font Format, TrueType, length 78156, version 3.0
Size
78 kB (78156 bytes)
Hash
1a592f9655ac68db7ba196134e938d74
8edc1a005636480304808fd9393c49ecae3d7e23
a1434cb9eee1f618cfa38f76759c919e606679bb2beb2cadd62964361c43a741

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/colormag/assets/fonts/OpenSans-Bold.woff HTTP/1.1
Host: myzukrainy.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://top.myzukrainy.net
DNT: 1
Connection: keep-alive
Referer: https://myzukrainy.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 29 Dec 2023 21:53:19 GMT
content-type: application/x-font-woff
content-length: 78156
last-modified: Sat, 06 May 2023 19:51:24 GMT
etag: "6456afbc-1314c"
accept-ranges: bytes
X-Firefox-Spdy: h2

GET myzukrainy.net/wp-content/themes/colormag/fontawesome/fonts/fontawesome-webfont.woff2?v=4.7.0

185.156.42.53

200 OK

77 kB

URL GET HTTP/2
myzukrainy.net/wp-content/themes/colormag/fontawesome/fonts/fontawesome-webfont.woff2?v=4.7.0
IP
185.156.42.53:443
ASN
#196645 Ltd Hostpro Lab

Requested by
https://top.myzukrainy.net/
Certificate
IssuerLet's Encrypt
Subject24tv.myzukrainy.net
Fingerprint5F:81:E1:CA:FD:D4:CD:EE:9F:48:1B:F0:58:AB:20:AE:59:04:7F:4E
ValiditySat, 18 Nov 2023 21:15:02 GMT - Fri, 16 Feb 2024 21:15:01 GMT

File type
Web Open Font Format (Version 2), TrueType, length 77160, version 4.459
Size
77 kB (77160 bytes)
Hash
af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/colormag/fontawesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: myzukrainy.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://top.myzukrainy.net
DNT: 1
Connection: keep-alive
Referer: https://myzukrainy.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 29 Dec 2023 21:53:19 GMT
content-type: font/woff2
content-length: 77160
last-modified: Sat, 06 May 2023 19:51:24 GMT
etag: "6456afbc-12d68"
accept-ranges: bytes
X-Firefox-Spdy: h2

GET myzukrainy.net/wp-content/uploads/2022/08/cropped-4%D0%BA5-192x192.jpg

185.156.42.53

200 OK

12 kB

URL GET HTTP/2
myzukrainy.net/wp-content/uploads/2022/08/cropped-4%D0%BA5-192x192.jpg
IP
185.156.42.53:443
ASN
#196645 Ltd Hostpro Lab

Requested by
https://top.myzukrainy.net/
Certificate
IssuerLet's Encrypt
Subject24tv.myzukrainy.net
Fingerprint5F:81:E1:CA:FD:D4:CD:EE:9F:48:1B:F0:58:AB:20:AE:59:04:7F:4E
ValiditySat, 18 Nov 2023 21:15:02 GMT - Fri, 16 Feb 2024 21:15:01 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 192x192, components 3
Size
12 kB (11805 bytes)
Hash
e751d353f41b6e5b672212ae7f7350b3
f17a6b3195ef6e96957954710077695a7546727c
32f6a59b2d49a49d44e57ddaa20e2acbbff74b4f09a1737fc207720f92209c57

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/08/cropped-4%D0%BA5-192x192.jpg HTTP/1.1
Host: myzukrainy.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://top.myzukrainy.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 29 Dec 2023 21:53:19 GMT
content-type: image/jpeg
content-length: 11805
last-modified: Thu, 18 Aug 2022 16:51:13 GMT
etag: "62fe6e01-2e1d"
accept-ranges: bytes
X-Firefox-Spdy: h2

GET myzukrainy.net/wp-content/uploads/2022/08/cropped-4%D0%BA5-32x32.jpg

185.156.42.53

200 OK

1.2 kB

URL GET HTTP/2
myzukrainy.net/wp-content/uploads/2022/08/cropped-4%D0%BA5-32x32.jpg
IP
185.156.42.53:443
ASN
#196645 Ltd Hostpro Lab

Requested by
https://top.myzukrainy.net/
Certificate
IssuerLet's Encrypt
Subject24tv.myzukrainy.net
Fingerprint5F:81:E1:CA:FD:D4:CD:EE:9F:48:1B:F0:58:AB:20:AE:59:04:7F:4E
ValiditySat, 18 Nov 2023 21:15:02 GMT - Fri, 16 Feb 2024 21:15:01 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 32x32, components 3
Size
1.2 kB (1171 bytes)
Hash
d7c6b80c3033987990ab298c9d22ceaa
82b684445c83e2514d033968f63ad79afe30dc45
4fe473a7551ebd30cc8cca6d42d4cec88308ee69f10aa7b6f9d8f754733ffe5b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/08/cropped-4%D0%BA5-32x32.jpg HTTP/1.1
Host: myzukrainy.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://top.myzukrainy.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 29 Dec 2023 21:53:19 GMT
content-type: image/jpeg
content-length: 1171
last-modified: Thu, 18 Aug 2022 16:51:13 GMT
etag: "62fe6e01-493"
accept-ranges: bytes
X-Firefox-Spdy: h2

GET myzukrainy.net/wp-content/themes/colormag/fontawesome/fonts/fontawesome-webfont.woff?v=4.7.0

185.156.42.53

200 OK

98 kB

URL GET HTTP/2
myzukrainy.net/wp-content/themes/colormag/fontawesome/fonts/fontawesome-webfont.woff?v=4.7.0
IP
185.156.42.53:443
ASN
#196645 Ltd Hostpro Lab

Requested by
https://top.myzukrainy.net/
Certificate
IssuerLet's Encrypt
Subject24tv.myzukrainy.net
Fingerprint5F:81:E1:CA:FD:D4:CD:EE:9F:48:1B:F0:58:AB:20:AE:59:04:7F:4E
ValiditySat, 18 Nov 2023 21:15:02 GMT - Fri, 16 Feb 2024 21:15:01 GMT

File type
Web Open Font Format, TrueType, length 98024, version 4.7
Size
98 kB (98024 bytes)
Hash
fee66e712a8a08eef5805a46892932ad
28b782240b3e76db824e12c02754a9731a167527
ba0c59deb5450f5cb41b3f93609ee2d0d995415877ddfa223e8a8a7533474f07

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/colormag/fontawesome/fonts/fontawesome-webfont.woff?v=4.7.0 HTTP/1.1
Host: myzukrainy.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://top.myzukrainy.net
DNT: 1
Connection: keep-alive
Referer: https://myzukrainy.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 29 Dec 2023 21:53:19 GMT
content-type: application/x-font-woff
content-length: 98024
last-modified: Sat, 06 May 2023 19:51:24 GMT
etag: "6456afbc-17ee8"
accept-ranges: bytes
X-Firefox-Spdy: h2

GET myzukrainy.net/wp-content/themes/colormag/fontawesome/fonts/fontawesome-webfont.ttf?v=4.7.0

185.156.42.53

200 OK

166 kB

URL GET HTTP/2
myzukrainy.net/wp-content/themes/colormag/fontawesome/fonts/fontawesome-webfont.ttf?v=4.7.0
IP
185.156.42.53:443
ASN
#196645 Ltd Hostpro Lab

Requested by
https://top.myzukrainy.net/
Certificate
IssuerLet's Encrypt
Subject24tv.myzukrainy.net
Fingerprint5F:81:E1:CA:FD:D4:CD:EE:9F:48:1B:F0:58:AB:20:AE:59:04:7F:4E
ValiditySat, 18 Nov 2023 21:15:02 GMT - Fri, 16 Feb 2024 21:15:01 GMT

File type
TrueType Font data, 13 tables, 1st "FFTM", 24 names, Macintosh
Size
166 kB (165548 bytes)
Hash
b06871f281fee6b241d60582ae9369b9
13b1eab65a983c7a73bc7997c479d66943f7c6cb
aa58f33f239a0fb02f5c7a6c45c043d7a9ac9a093335806694ecd6d4edc0d6a8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/colormag/fontawesome/fonts/fontawesome-webfont.ttf?v=4.7.0 HTTP/1.1
Host: myzukrainy.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://top.myzukrainy.net
DNT: 1
Connection: keep-alive
Referer: https://myzukrainy.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 29 Dec 2023 21:53:19 GMT
content-type: application/x-font-ttf
content-length: 165548
last-modified: Sat, 06 May 2023 19:51:24 GMT
etag: "6456afbc-286ac"
accept-ranges: bytes
X-Firefox-Spdy: h2

GET myzukrainy.net/wp-content/themes/colormag/fontawesome/css/font-awesome.min.css?ver=2.1.8

185.156.42.53

200 OK

31 kB

URL GET HTTP/2
myzukrainy.net/wp-content/themes/colormag/fontawesome/css/font-awesome.min.css?ver=2.1.8
IP
185.156.42.53:443
ASN
#196645 Ltd Hostpro Lab

Requested by
https://top.myzukrainy.net/
Certificate
IssuerLet's Encrypt
Subject24tv.myzukrainy.net
Fingerprint5F:81:E1:CA:FD:D4:CD:EE:9F:48:1B:F0:58:AB:20:AE:59:04:7F:4E
ValiditySat, 18 Nov 2023 21:15:02 GMT - Fri, 16 Feb 2024 21:15:01 GMT

File type
ASCII text, with very long lines (30837), with CRLF line terminators
Size
31 kB (31004 bytes)
Hash
a0e784c4ca94c271b0338dfb02055be6
88af80502c44cd52ca81ffe7dc7276b7eccb06cf
820e169ce24824066d9973fd4b6561aae9dcd6dbef6435da905d5a1d6482997c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/colormag/fontawesome/css/font-awesome.min.css?ver=2.1.8 HTTP/1.1
Host: myzukrainy.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://top.myzukrainy.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 29 Dec 2023 21:53:18 GMT
content-type: text/css
last-modified: Sat, 06 May 2023 19:51:24 GMT
vary: Accept-Encoding
etag: W/"6456afbc-791c"
content-encoding: gzip
X-Firefox-Spdy: h2

GET myzukrainy.net/wp-content/themes/colormag/js/navigation.min.js?ver=2.1.8

185.156.42.53

200 OK

1.6 kB

URL GET HTTP/2
myzukrainy.net/wp-content/themes/colormag/js/navigation.min.js?ver=2.1.8
IP
185.156.42.53:443
ASN
#196645 Ltd Hostpro Lab

Requested by
https://top.myzukrainy.net/
Certificate
IssuerLet's Encrypt
Subject24tv.myzukrainy.net
Fingerprint5F:81:E1:CA:FD:D4:CD:EE:9F:48:1B:F0:58:AB:20:AE:59:04:7F:4E
ValiditySat, 18 Nov 2023 21:15:02 GMT - Fri, 16 Feb 2024 21:15:01 GMT

File type
ASCII text, with very long lines (1643), with no line terminators
Size
1.6 kB (1567 bytes)
Hash
74549df113f367a405d9a329adf566d6
83a122ad347796a92274ec403475cc7977c5c5d3
73eae0b95e1796fe56b1a96bbd41e53fc8fbcd7b65cbbf99143c8739fff88b4a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/colormag/js/navigation.min.js?ver=2.1.8 HTTP/1.1
Host: myzukrainy.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://top.myzukrainy.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 29 Dec 2023 21:53:18 GMT
content-type: application/javascript
last-modified: Sat, 06 May 2023 19:51:25 GMT
vary: Accept-Encoding
etag: W/"6456afbd-61f"
content-encoding: gzip
X-Firefox-Spdy: h2

GET myzukrainy.net/wp-content/themes/colormag/style.css?ver=2.1.8

185.156.42.53

200 OK

104 kB

URL GET HTTP/2
myzukrainy.net/wp-content/themes/colormag/style.css?ver=2.1.8
IP
185.156.42.53:443
ASN
#196645 Ltd Hostpro Lab

Requested by
https://top.myzukrainy.net/
Certificate
IssuerLet's Encrypt
Subject24tv.myzukrainy.net
Fingerprint5F:81:E1:CA:FD:D4:CD:EE:9F:48:1B:F0:58:AB:20:AE:59:04:7F:4E
ValiditySat, 18 Nov 2023 21:15:02 GMT - Fri, 16 Feb 2024 21:15:01 GMT

File type

Size
104 kB (104063 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/colormag/style.css?ver=2.1.8 HTTP/1.1
Host: myzukrainy.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://top.myzukrainy.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 29 Dec 2023 21:53:18 GMT
content-type: text/css
last-modified: Sat, 06 May 2023 19:51:25 GMT
vary: Accept-Encoding
etag: W/"6456afbd-1967f"
content-encoding: gzip
X-Firefox-Spdy: h2

GET myzukrainy.net/wp-content/themes/colormag/js/jquery.bxslider.min.js?ver=2.1.8

185.156.42.53

200 OK

24 kB

URL GET HTTP/2
myzukrainy.net/wp-content/themes/colormag/js/jquery.bxslider.min.js?ver=2.1.8
IP
185.156.42.53:443
ASN
#196645 Ltd Hostpro Lab

Requested by
https://top.myzukrainy.net/
Certificate
IssuerLet's Encrypt
Subject24tv.myzukrainy.net
Fingerprint5F:81:E1:CA:FD:D4:CD:EE:9F:48:1B:F0:58:AB:20:AE:59:04:7F:4E
ValiditySat, 18 Nov 2023 21:15:02 GMT - Fri, 16 Feb 2024 21:15:01 GMT

File type
HTML document, ASCII text, with very long lines (23954), with no line terminators
Size
24 kB (23954 bytes)
Hash
e41f2a4b95a648db78703b837706d18f
ab706ee38566accffda0511b9144a0c7108d4deb
0157d11106d6b70289099fd1ce1f7bea3a9dfbb46cee3994edb07ce765bb92fc

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/colormag/js/jquery.bxslider.min.js?ver=2.1.8 HTTP/1.1
Host: myzukrainy.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://top.myzukrainy.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 29 Dec 2023 21:53:18 GMT
content-type: application/javascript
last-modified: Sat, 06 May 2023 19:51:25 GMT
vary: Accept-Encoding
etag: W/"6456afbd-5d92"
content-encoding: gzip
X-Firefox-Spdy: h2

GET myzukrainy.net/wp-content/themes/colormag/js/colormag-custom.min.js?ver=2.1.8

185.156.42.53

200 OK

3.0 kB

URL GET HTTP/2
myzukrainy.net/wp-content/themes/colormag/js/colormag-custom.min.js?ver=2.1.8
IP
185.156.42.53:443
ASN
#196645 Ltd Hostpro Lab

Requested by
https://top.myzukrainy.net/
Certificate
IssuerLet's Encrypt
Subject24tv.myzukrainy.net
Fingerprint5F:81:E1:CA:FD:D4:CD:EE:9F:48:1B:F0:58:AB:20:AE:59:04:7F:4E
ValiditySat, 18 Nov 2023 21:15:02 GMT - Fri, 16 Feb 2024 21:15:01 GMT

File type
ASCII text, with very long lines (3182), with no line terminators
Size
3.0 kB (3042 bytes)
Hash
7e0563bbf4ed423ba763badffec15279
8d3745465f98617b7f92a372a24d6896faad0eee
80dc38ccee9d801b5cd41d5566897c838ab63094a81fe3af476fc33869f02813

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/colormag/js/colormag-custom.min.js?ver=2.1.8 HTTP/1.1
Host: myzukrainy.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://top.myzukrainy.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 29 Dec 2023 21:53:18 GMT
content-type: application/javascript
last-modified: Sat, 06 May 2023 19:51:25 GMT
vary: Accept-Encoding
etag: W/"6456afbd-be2"
content-encoding: gzip
X-Firefox-Spdy: h2

GET myzukrainy.net/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1

185.156.42.53

200 OK

14 kB

URL GET HTTP/2
myzukrainy.net/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1
IP
185.156.42.53:443
ASN
#196645 Ltd Hostpro Lab

Requested by
https://top.myzukrainy.net/
Certificate
IssuerLet's Encrypt
Subject24tv.myzukrainy.net
Fingerprint5F:81:E1:CA:FD:D4:CD:EE:9F:48:1B:F0:58:AB:20:AE:59:04:7F:4E
ValiditySat, 18 Nov 2023 21:15:02 GMT - Fri, 16 Feb 2024 21:15:01 GMT

File type
ASCII text, with very long lines (13479)
Size
14 kB (13577 bytes)
Hash
9ffeb32e2d9efbf8f70caabded242267
3ad0c10e501ac2a9bfa18f9cd7e700219b378738
5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 HTTP/1.1
Host: myzukrainy.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://top.myzukrainy.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 29 Dec 2023 21:53:18 GMT
content-type: application/javascript
last-modified: Wed, 09 Aug 2023 06:49:53 GMT
vary: Accept-Encoding
etag: W/"64d33711-3509"
content-encoding: gzip
X-Firefox-Spdy: h2

GET myzukrainy.net/wp-content/themes/colormag/js/fitvids/jquery.fitvids.min.js?ver=2.1.8

185.156.42.53

200 OK

1.8 kB

URL GET HTTP/2
myzukrainy.net/wp-content/themes/colormag/js/fitvids/jquery.fitvids.min.js?ver=2.1.8
IP
185.156.42.53:443
ASN
#196645 Ltd Hostpro Lab

Requested by
https://top.myzukrainy.net/
Certificate
IssuerLet's Encrypt
Subject24tv.myzukrainy.net
Fingerprint5F:81:E1:CA:FD:D4:CD:EE:9F:48:1B:F0:58:AB:20:AE:59:04:7F:4E
ValiditySat, 18 Nov 2023 21:15:02 GMT - Fri, 16 Feb 2024 21:15:01 GMT

File type
HTML document, ASCII text, with very long lines (1834), with no line terminators
Size
1.8 kB (1754 bytes)
Hash
0c92184c6220b5bf0c92190532aa6876
bad24aa92bf9bdf1955558b3f22e8a8698a139c3
1c9b71ee3d5f06784193d7e8e406e9189f38b8920df4f2f0705a02ac42998bce

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/colormag/js/fitvids/jquery.fitvids.min.js?ver=2.1.8 HTTP/1.1
Host: myzukrainy.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://top.myzukrainy.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 29 Dec 2023 21:53:18 GMT
content-type: application/javascript
last-modified: Sat, 06 May 2023 19:51:25 GMT
vary: Accept-Encoding
etag: W/"6456afbd-6da"
content-encoding: gzip
X-Firefox-Spdy: h2

GET myzukrainy.net/wp-includes/js/jquery/jquery.min.js?ver=3.7.0

185.156.42.53

200 OK

88 kB

URL GET HTTP/2
myzukrainy.net/wp-includes/js/jquery/jquery.min.js?ver=3.7.0
IP
185.156.42.53:443
ASN
#196645 Ltd Hostpro Lab

Requested by
https://top.myzukrainy.net/
Certificate
IssuerLet's Encrypt
Subject24tv.myzukrainy.net
Fingerprint5F:81:E1:CA:FD:D4:CD:EE:9F:48:1B:F0:58:AB:20:AE:59:04:7F:4E
ValiditySat, 18 Nov 2023 21:15:02 GMT - Fri, 16 Feb 2024 21:15:01 GMT

File type
ASCII text, with very long lines (65447)
Size
88 kB (87553 bytes)
Hash
826eb77e86b02ab7724fe3d0141ff87c
79cd3587d565afe290076a8d36c31c305a573d18
cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.7.0 HTTP/1.1
Host: myzukrainy.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://top.myzukrainy.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 29 Dec 2023 21:53:18 GMT
content-type: application/javascript
last-modified: Wed, 08 Nov 2023 06:50:08 GMT
vary: Accept-Encoding
etag: W/"654b2fa0-15601"
content-encoding: gzip
X-Firefox-Spdy: h2

GET myzukrainy.net/wp-content/themes/colormag/js/sticky/jquery.sticky.min.js?ver=2.1.8

185.156.42.53

200 OK

4.2 kB

URL GET HTTP/2
myzukrainy.net/wp-content/themes/colormag/js/sticky/jquery.sticky.min.js?ver=2.1.8
IP
185.156.42.53:443
ASN
#196645 Ltd Hostpro Lab

Requested by
https://top.myzukrainy.net/
Certificate
IssuerLet's Encrypt
Subject24tv.myzukrainy.net
Fingerprint5F:81:E1:CA:FD:D4:CD:EE:9F:48:1B:F0:58:AB:20:AE:59:04:7F:4E
ValiditySat, 18 Nov 2023 21:15:02 GMT - Fri, 16 Feb 2024 21:15:01 GMT

File type
ASCII text, with very long lines (4371), with no line terminators
Size
4.2 kB (4231 bytes)
Hash
e71f8974c1e73d97d52a956c9173a6a0
cba74b83a74a0b1ed83904be642340dd74aa06dd
0ed4e3a34392d85ee6288e5e9eeb2accd5566d7e7b97294996f59042d5727d58

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/colormag/js/sticky/jquery.sticky.min.js?ver=2.1.8 HTTP/1.1
Host: myzukrainy.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://top.myzukrainy.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 29 Dec 2023 21:53:18 GMT
content-type: application/javascript
last-modified: Sat, 06 May 2023 19:51:25 GMT
vary: Accept-Encoding
etag: W/"6456afbd-1087"
content-encoding: gzip
X-Firefox-Spdy: h2

GET myzukrainy.net/wp-includes/css/dist/block-library/style.min.css?ver=6.3.1

185.156.42.53

200 OK

110 kB

URL GET HTTP/2
myzukrainy.net/wp-includes/css/dist/block-library/style.min.css?ver=6.3.1
IP
185.156.42.53:443
ASN
#196645 Ltd Hostpro Lab

Requested by
https://top.myzukrainy.net/
Certificate
IssuerLet's Encrypt
Subject24tv.myzukrainy.net
Fingerprint5F:81:E1:CA:FD:D4:CD:EE:9F:48:1B:F0:58:AB:20:AE:59:04:7F:4E
ValiditySat, 18 Nov 2023 21:15:02 GMT - Fri, 16 Feb 2024 21:15:01 GMT

File type

Size
110 kB (110035 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=6.3.1 HTTP/1.1
Host: myzukrainy.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://top.myzukrainy.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 29 Dec 2023 21:53:18 GMT
content-type: text/css
last-modified: Wed, 08 Nov 2023 06:50:08 GMT
vary: Accept-Encoding
etag: W/"654b2fa0-1add3"
content-encoding: gzip
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (16)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by