Report - 132.248.97.1/miportal/alumnos/index.php

Report Overview

Visited public
2023-12-08 12:16:59
Tags
URL
132.248.97.1/miportal/alumnos/index.php
Finishing URL
132.248.97.1/miportal/alumnos/index.php
IP / ASN
132.248.97.1
#278 Universidad Nacional Autonoma de Mexico
Title
Escuela Nacional Preparatoria

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
132.248.97.1	unknown	unknown	No data	No data	5.2 kB	263 kB	132.248.97.1

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-12-08	medium	132.248.97.1	Sinkholed
2023-12-08	medium	132.248.97.1	Sinkholed
2023-12-08	medium	132.248.97.1	Sinkholed
2023-12-08	medium	132.248.97.1	Sinkholed
2023-12-08	medium	132.248.97.1	Sinkholed
2023-12-08	medium	132.248.97.1	Sinkholed
2023-12-08	medium	132.248.97.1	Sinkholed
2023-12-08	medium	132.248.97.1	Sinkholed
2023-12-08	medium	132.248.97.1	Sinkholed
2023-12-08	medium	132.248.97.1	Sinkholed
2023-12-08	medium	132.248.97.1	Sinkholed
2023-12-08	medium	132.248.97.1	Sinkholed
2023-12-08	medium	132.248.97.1	Sinkholed

ThreatFox

No alerts detected

JavaScript (3)

	URL	From	Size	First Seen	Last Seen
	132.248.97.1/miportal/alumnos/lib/js/jquery-2.1.1.min.js	ScriptElement	84 kB	2023-03-07	2025-05-09
Pretty URL 132.248.97.1/miportal/alumnos/lib/js/jquery-2.1.1.min.js IP 132.248.97.1 ASN #278 Universidad Nacional Autonoma de Mexico Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-09 07:57 Times Seen8024 Hash e40ec2161fe7993196f23c8a07346306 afb90752e0a90c24b7f724faca86c5f3d15d1178 874706b2b1311a0719b5267f7d1cf803057e367e94ae1ff7bf78c5450d30f5d4 Loading...

	132.248.97.1/miportal/alumnos/lib/bs/js/bootstrap.min.js	ScriptElement	37 kB	2023-03-07	2025-05-08
Pretty URL 132.248.97.1/miportal/alumnos/lib/bs/js/bootstrap.min.js IP 132.248.97.1 ASN #278 Universidad Nacional Autonoma de Mexico Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-08 19:52 Times Seen5502 Hash c5b5b2fa19bd66ff23211d9f844e0131 791aa054a026bddc0de92bad6cf7a1c6e73713d5 2979f9a6e32fc42c3e7406339ee9fe76b31d1b52059776a02b4a7fa6a4fd280a Loading...

	132.248.97.1/miportal/alumnos/index.php	ScriptElement	0 B	0001-01-01	2025-05-09
Pretty URL 132.248.97.1/miportal/alumnos/index.php IP 132.248.97.1 ASN #278 Universidad Nacional Autonoma de Mexico Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-05-09 08:42 Times Seen4634935 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

HTTP Transactions (13)

URL IP Response Size

132.248.97.1/miportal/alumnos/index.php

132.248.97.1

200 OK

2.3 kB

URL User Request GET HTTP/1.1
132.248.97.1/miportal/alumnos/index.php
IP
132.248.97.1:80
ASN
#278 Universidad Nacional Autonoma de Mexico

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text
Size
2.3 kB (2268 bytes)
Hash
436b58d68e425f4712d3321a01840c01
fda7efb713e4ded1ba3983eb8d0045c233eedb0b
bd2050f3e27a74b147d476bd131ed0e663fa54f1abb3f0426951bd14d6099e65

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /miportal/alumnos/index.php HTTP/1.1
Host: 132.248.97.1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 12:16:41 GMT
Server: Apache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2268
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

132.248.97.1/miportal/alumnos/lib/css/menu.css

132.248.97.1

200 OK

433 B

URL GET HTTP/1.1
132.248.97.1/miportal/alumnos/lib/css/menu.css
IP
132.248.97.1:80
ASN
#278 Universidad Nacional Autonoma de Mexico

Requested by
http://132.248.97.1/miportal/alumnos/index.php

File type
ASCII text
Size
433 B (433 bytes)
Hash
4097d34d65fc5b49b9de1fd1e01c69ee
74cba073203bbf751d4430273a416f663266cdb1
4ba9daf8fa20cf5267740f2a4caa16f3847ba71611c132a6fb62918fe4590e12

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /miportal/alumnos/lib/css/menu.css HTTP/1.1
Host: 132.248.97.1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://132.248.97.1/miportal/alumnos/index.php
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 12:16:42 GMT
Server: Apache
Last-Modified: Wed, 18 Sep 2019 19:58:16 GMT
ETag: "403-592d941f9c600-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 433
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

132.248.97.1/miportal/alumnos/lib/fa/css/font-awesome.min.css

132.248.97.1

200 OK

7.1 kB

URL GET HTTP/1.1
132.248.97.1/miportal/alumnos/lib/fa/css/font-awesome.min.css
IP
132.248.97.1:80
ASN
#278 Universidad Nacional Autonoma de Mexico

Requested by
http://132.248.97.1/miportal/alumnos/index.php

File type
ASCII text, with very long lines (30837)
Size
7.1 kB (7053 bytes)
Hash
269550530cc127b6aa5a35925a7de6ce
512c7d79033e3028a9be61b540cf1a6870c896f8
799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /miportal/alumnos/lib/fa/css/font-awesome.min.css HTTP/1.1
Host: 132.248.97.1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://132.248.97.1/miportal/alumnos/index.php
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 12:16:42 GMT
Server: Apache
Last-Modified: Wed, 18 Sep 2019 19:58:20 GMT
ETag: "7918-592d94236cf00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7053
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

132.248.97.1/miportal/alumnos/lib/bs/js/bootstrap.min.js

132.248.97.1

200 OK

9.8 kB

URL GET HTTP/1.1
132.248.97.1/miportal/alumnos/lib/bs/js/bootstrap.min.js
IP
132.248.97.1:80
ASN
#278 Universidad Nacional Autonoma de Mexico

Requested by
http://132.248.97.1/miportal/alumnos/index.php

File type
ASCII text, with very long lines (32003)
Size
9.8 kB (9765 bytes)
Hash
c5b5b2fa19bd66ff23211d9f844e0131
791aa054a026bddc0de92bad6cf7a1c6e73713d5
2979f9a6e32fc42c3e7406339ee9fe76b31d1b52059776a02b4a7fa6a4fd280a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /miportal/alumnos/lib/bs/js/bootstrap.min.js HTTP/1.1
Host: 132.248.97.1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://132.248.97.1/miportal/alumnos/index.php
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 12:16:42 GMT
Server: Apache
Last-Modified: Wed, 18 Sep 2019 19:58:19 GMT
ETag: "9004-592d942278cc0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 9765
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript

132.248.97.1/miportal/alumnos/lib/css/estilo.css

132.248.97.1

200 OK

1.4 kB

URL GET HTTP/1.1
132.248.97.1/miportal/alumnos/lib/css/estilo.css
IP
132.248.97.1:80
ASN
#278 Universidad Nacional Autonoma de Mexico

Requested by
http://132.248.97.1/miportal/alumnos/index.php

File type
ASCII text
Size
1.4 kB (1415 bytes)
Hash
9387012dfe5795c11786bda273dc0901
c397b35d57c0842e51e9a6264a1cdc1530381b99
165d8e1f373adab070930257452d91560a873c5e1afcec5cd1af1a6572035c32

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /miportal/alumnos/lib/css/estilo.css HTTP/1.1
Host: 132.248.97.1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://132.248.97.1/miportal/alumnos/index.php
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 12:16:42 GMT
Server: Apache
Last-Modified: Wed, 18 Sep 2019 19:58:16 GMT
ETag: "13ce-592d941f9c600-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1415
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

132.248.97.1/miportal/alumnos/lib/js/jquery-2.1.1.min.js

132.248.97.1

200 OK

30 kB

URL GET HTTP/1.1
132.248.97.1/miportal/alumnos/lib/js/jquery-2.1.1.min.js
IP
132.248.97.1:80
ASN
#278 Universidad Nacional Autonoma de Mexico

Requested by
http://132.248.97.1/miportal/alumnos/index.php

File type
ASCII text, with very long lines (32061)
Size
30 kB (29497 bytes)
Hash
e40ec2161fe7993196f23c8a07346306
afb90752e0a90c24b7f724faca86c5f3d15d1178
874706b2b1311a0719b5267f7d1cf803057e367e94ae1ff7bf78c5450d30f5d4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /miportal/alumnos/lib/js/jquery-2.1.1.min.js HTTP/1.1
Host: 132.248.97.1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://132.248.97.1/miportal/alumnos/index.php
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 12:16:42 GMT
Server: Apache
Last-Modified: Wed, 18 Sep 2019 19:58:17 GMT
ETag: "14915-592d942090840-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 29497
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript

132.248.97.1/miportal/alumnos/lib/bs/css/bootstrap.min.css

132.248.97.1

200 OK

20 kB

URL GET HTTP/1.1
132.248.97.1/miportal/alumnos/lib/bs/css/bootstrap.min.css
IP
132.248.97.1:80
ASN
#278 Universidad Nacional Autonoma de Mexico

Requested by
http://132.248.97.1/miportal/alumnos/index.php

File type
ASCII text, with very long lines (65371)
Size
20 kB (19751 bytes)
Hash
2f624089c65f12185e79925bc5a7fc42
8eb176c70b9cfa6871b76d6dc98fb526e7e9b3de
eece6e0c65b7007ab0eb1b4998d36dafe381449525824349128efc3f86f4c91c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /miportal/alumnos/lib/bs/css/bootstrap.min.css HTTP/1.1
Host: 132.248.97.1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://132.248.97.1/miportal/alumnos/index.php
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 12:16:42 GMT
Server: Apache
Last-Modified: Wed, 18 Sep 2019 19:58:19 GMT
ETag: "1d9ac-592d942278cc0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 19751
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

132.248.97.1/miportal/alumnos/img/page.png

132.248.97.1

200 OK

26 kB

URL GET HTTP/1.1
132.248.97.1/miportal/alumnos/img/page.png
IP
132.248.97.1:80
ASN
#278 Universidad Nacional Autonoma de Mexico

Requested by
http://132.248.97.1/miportal/alumnos/index.php

File type
PNG image data, 182 x 181, 8-bit/color RGBA, non-interlaced\012- data
Size
26 kB (26372 bytes)
Hash
7df983f4214efa24d179283b66fbb253
f5e5caefb7904449a8125a5b4c3a020e40242a4b
1984ef5a0b7a21dfb6441509bc6f246df35ae16d0b7d1588ac6ae5036a18f13a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /miportal/alumnos/img/page.png HTTP/1.1
Host: 132.248.97.1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://132.248.97.1/miportal/alumnos/lib/css/estilo.css
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 12:16:42 GMT
Server: Apache
Last-Modified: Wed, 18 Sep 2019 19:56:57 GMT
ETag: "6704-592d93d445440"
Accept-Ranges: bytes
Content-Length: 26372
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png

132.248.97.1/miportal/alumnos/img/encabezado_unam.gif

132.248.97.1

200 OK

16 kB

URL GET HTTP/1.1
132.248.97.1/miportal/alumnos/img/encabezado_unam.gif
IP
132.248.97.1:80
ASN
#278 Universidad Nacional Autonoma de Mexico

Requested by
http://132.248.97.1/miportal/alumnos/index.php

File type
GIF image data, version 89a, 490 x 103\012- data
Size
16 kB (16255 bytes)
Hash
bb0defcc8b324e1073ab8bcd5c81b754
9d98c35a0aab8d77f7aa4a43d86096bbfb2b5ea3
6094f9c34d5a28980e4ce246e6857799ee0791131ee21a17d2582e6551726934

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /miportal/alumnos/img/encabezado_unam.gif HTTP/1.1
Host: 132.248.97.1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://132.248.97.1/miportal/alumnos/index.php
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 12:16:42 GMT
Server: Apache
Last-Modified: Wed, 18 Sep 2019 19:56:57 GMT
ETag: "3f7f-592d93d445440"
Accept-Ranges: bytes
Content-Length: 16255
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/gif

132.248.97.1/miportal/alumnos/img/imagen_unam.jpg

132.248.97.1

200 OK

34 kB

URL GET HTTP/1.1
132.248.97.1/miportal/alumnos/img/imagen_unam.jpg
IP
132.248.97.1:80
ASN
#278 Universidad Nacional Autonoma de Mexico

Requested by
http://132.248.97.1/miportal/alumnos/index.php

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=103, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=560], baseline, precision 8, 490x103, components 3\012- data
Size
34 kB (33864 bytes)
Hash
0ea4b9c89bdc22ea77b0cc97874357b1
86c568cf5160280d5b2f90afbf18c10a9b64d486
71e46535bb8645e1ab9055f61b1364305ea75e78e9dd9f174efc519b0a72fd8e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /miportal/alumnos/img/imagen_unam.jpg HTTP/1.1
Host: 132.248.97.1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://132.248.97.1/miportal/alumnos/index.php
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 12:16:42 GMT
Server: Apache
Last-Modified: Wed, 18 Sep 2019 19:56:57 GMT
ETag: "8448-592d93d445440"
Accept-Ranges: bytes
Content-Length: 33864
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/jpeg

132.248.97.1/miportal/alumnos/img/titulo_institucion.jpg

132.248.97.1

200 OK

35 kB

URL GET HTTP/1.1
132.248.97.1/miportal/alumnos/img/titulo_institucion.jpg
IP
132.248.97.1:80
ASN
#278 Universidad Nacional Autonoma de Mexico

Requested by
http://132.248.97.1/miportal/alumnos/index.php

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS5.1 Windows, datetime=2012:01:13 14:58:19], baseline, precision 8, 980x61, components 3\012- data
Size
35 kB (34978 bytes)
Hash
aa07dbfa416aef7fc86c9d2b3138e930
70e88856d5d48451c88c5d3580bfa4980acbcae6
db0a5011e96c20b67c1eda3f580bb8cd8c6b72a03c36d39ac14ad10cbf652462

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /miportal/alumnos/img/titulo_institucion.jpg HTTP/1.1
Host: 132.248.97.1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://132.248.97.1/miportal/alumnos/index.php
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 12:16:42 GMT
Server: Apache
Last-Modified: Wed, 18 Sep 2019 19:56:57 GMT
ETag: "88a2-592d93d445440"
Accept-Ranges: bytes
Content-Length: 34978
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/jpeg

132.248.97.1/miportal/alumnos/lib/fa/fonts/fontawesome-webfont.woff2?v=4.7.0

132.248.97.1

200 OK

77 kB

URL GET HTTP/1.1
132.248.97.1/miportal/alumnos/lib/fa/fonts/fontawesome-webfont.woff2?v=4.7.0
IP
132.248.97.1:80
ASN
#278 Universidad Nacional Autonoma de Mexico

Requested by
http://132.248.97.1/miportal/alumnos/index.php

File type
Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Size
77 kB (77160 bytes)
Hash
af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /miportal/alumnos/lib/fa/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: 132.248.97.1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: http://132.248.97.1/miportal/alumnos/lib/fa/css/font-awesome.min.css
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 12:16:42 GMT
Server: Apache
Last-Modified: Wed, 18 Sep 2019 19:58:21 GMT
ETag: "12d68-592d942461140"
Accept-Ranges: bytes
Content-Length: 77160
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive

132.248.97.1/miportal/alumnos/imgfavicon.ico

132.248.97.1

404 Not Found

196 B

URL GET HTTP/1.1
132.248.97.1/miportal/alumnos/imgfavicon.ico
IP
132.248.97.1:80
ASN
#278 Universidad Nacional Autonoma de Mexico

Requested by
http://132.248.97.1/miportal/alumnos/index.php

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
196 B (196 bytes)
Hash
62962daa1b19bbcc2db10b7bfd531ea6
d64bae91091eda6a7532ebec06aa70893b79e1f8
80c3fe2ae1062abf56456f52518bd670f9ec3917b7f85e152b347ac6b6faf880

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /miportal/alumnos/imgfavicon.ico HTTP/1.1
Host: 132.248.97.1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://132.248.97.1/miportal/alumnos/index.php
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 08 Dec 2023 12:16:43 GMT
Server: Apache
Content-Length: 196
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (3)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (13)

URL User Request GET HTTP/1.1

IP

ASN

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/1.1

IP

ASN

Requested by

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/1.1

IP

ASN

Requested by

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/1.1

IP

ASN

Requested by

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/1.1

IP

ASN

Requested by

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/1.1