Report - zoro-keys.freeddns.org/keys/e4/key.txt

Report Overview

Visited public
2023-11-17 18:17:42
Tags
URL
zoro-keys.freeddns.org/keys/e4/key.txt
Finishing URL
zoro-keys.freeddns.org/keys/e4/key.txt
IP / ASN
159.223.50.247
#14061 DIGITALOCEAN-ASN
Title
zoro-keys.freeddns.org/keys/e4/key.txt

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
zoro-keys.freeddns.org	unknown	2015-04-13	2023-11-14 06:11:15	2023-11-14 06:11:15	782 B	593 B	159.223.50.247

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-11-17 18:17:26	medium	Client IP	Internal IP	ET INFO DYNAMIC_DNS Query to a *.freeddns .org Domain
2023-11-17 18:17:26	medium	Client IP	Internal IP	ET INFO DYNAMIC_DNS Query to a *.freeddns .org Domain
2023-11-17 18:17:26	medium	Client IP	Internal IP	ET INFO DYNAMIC_DNS Query to a *.freeddns .org Domain
2023-11-17 18:17:26	medium	Client IP	Internal IP	ET INFO DYNAMIC_DNS Query to a *.freeddns .org Domain
2023-11-17 18:17:27	medium	Client IP	159.223.50.247	ET INFO DYNAMIC_DNS HTTP Request to a *.freeddns .org Domain
2023-11-17 18:17:27	medium	Client IP	Internal IP	ET INFO DYNAMIC_DNS Query to a *.freeddns .org Domain
2023-11-17 18:17:27	medium	Client IP	159.223.50.247	ET INFO DYNAMIC_DNS HTTP Request to a *.freeddns .org Domain

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (0)

HTTP Transactions (2)

URL IP Response Size

zoro-keys.freeddns.org/keys/e4/key.txt

159.223.50.247

200 OK

33 B

URL User Request GET HTTP/1.1
zoro-keys.freeddns.org/keys/e4/key.txt
IP
159.223.50.247:80
ASN
#14061 DIGITALOCEAN-ASN

File type
JSON data\012- , ASCII text, with no line terminators
Size
33 B (33 bytes)
Hash
0df46aaa2500e2289de3ecf3e712f828
11823bfaa970ce2dd6b1ae019d97caf6a6d3ae00
8b6095c614543e7b8e490c7d08fb7dab79386342e0498718a4f90386f01f517e

Detections

NIDS	Severity	Alert
suricata	medium	ET INFO DYNAMIC_DNS HTTP Request to a *.freeddns .org Domain

HTTP Headers

GET /keys/e4/key.txt HTTP/1.1
Host: zoro-keys.freeddns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.22.0 (Ubuntu)
Date: Fri, 17 Nov 2023 18:17:25 GMT
Content-Type: text/plain
Content-Length: 33
Last-Modified: Fri, 17 Nov 2023 18:17:24 GMT
Connection: keep-alive
ETag: "6557ae34-21"
Accept-Ranges: bytes

zoro-keys.freeddns.org/favicon.ico

159.223.50.247

404 Not Found

123 B

URL GET HTTP/1.1
zoro-keys.freeddns.org/favicon.ico
IP
159.223.50.247:80
ASN
#14061 DIGITALOCEAN-ASN

Requested by
http://zoro-keys.freeddns.org/keys/e4/key.txt

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
123 B (123 bytes)
Hash
d7abf2f691acc6343cc3b93dab10e6e0
97affbd99f02e1357e2234d1869fe0869023f638
0dd1e08e15d0930c900eb50cce3c325722a16884124ecf59b06b2eccdf9e85d2

Detections

NIDS	Severity	Alert
suricata	medium	ET INFO DYNAMIC_DNS HTTP Request to a *.freeddns .org Domain

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: zoro-keys.freeddns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://zoro-keys.freeddns.org/keys/e4/key.txt
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Server: nginx/1.22.0 (Ubuntu)
Date: Fri, 17 Nov 2023 18:17:26 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: gzip

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (0)

HTTP Transactions (2)

URL User Request GET HTTP/1.1

IP

ASN

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/1.1

IP

ASN

Requested by

File type

Size

Hash

Detections

HTTP Headers