Report Overview
Visitedpublic
2023-11-02 14:15:14
Tags
Submit Tags
URL
uspsmail95km09t3.ddns.net/a523583c2d546e5c9192e8f205ee3492/?token=aa49c2708631d3b724a8899094cc91004b3ff174b9efbe6d6d458c901df171281b5a5e76365bec6dcd39fceb4bde132cf1531972654cb1f0e150f8af888055cb
Finishing URL
uspsmail95km09t3.ddns.net/f8c984bc0c4d6eb6817d5998d5603d08/?token=ff9014a25c7b0ca8e5ce15b47c1126b058aeb50a038a381a07a5a4ce1e3205dadeb93b9a355048f3d1c4887030339d864776701008020a7fb9e1effc32bafaef
IP / ASN
157.245.90.85
Title
USPS - Offer
Suspicious - DynDNS domain
Detections
urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0
Host Summary
| Host | Rank | Registered | First Seen | Last Seen | Sent | Received | IP | Fingerprints |
|---|---|---|---|---|---|---|---|---|
maps.googleapis.com | 33876 | 2005-01-25 | 2019-10-17 17:56:16 | 2023-11-02 13:41:57 | 902 B | 84 kB | 216.58.211.10 | |
devilsms.live 1 alert(s) on this Domain | unknown | 2021-09-16 | 2022-06-09 23:23:15 | 2023-10-23 20:43:39 | 433 B | 0 B |  0.0.0.0 | |
uspsmail95km09t3.ddns.net 9 alert(s) on this Domain | unknown | unknown | No data | No data | 6.1 kB | 40 kB | 157.245.90.85 |
Related reports
Network Intrusion Detection Systems
Suricata /w Emerging Threats Pro
| Timestamp | Severity | Source IP | Destination IP | Alert |
|---|---|---|---|---|
| medium | Client IP | Internal IP | ET POLICY DNS Query to DynDNS Domain *.ddns .net | |
| medium | Client IP | Internal IP | ET POLICY DNS Query to DynDNS Domain *.ddns .net | |
| medium | Client IP | Internal IP | ET POLICY DNS Query to DynDNS Domain *.ddns .net | |
| medium | Client IP | Internal IP | ET POLICY DNS Query to DynDNS Domain *.ddns .net | |
| medium | Client IP | Internal IP | ET POLICY DNS Query to DynDNS Domain *.ddns .net | |
| medium | Client IP | Internal IP | ET POLICY DNS Query to DynDNS Domain *.ddns .net | |
| medium | Client IP | Internal IP | ET POLICY DNS Query to DynDNS Domain *.ddns .net | |
| medium | Client IP | Internal IP | ET POLICY DNS Query to DynDNS Domain *.ddns .net | |
| medium | Client IP | Internal IP | ET POLICY DNS Query to DynDNS Domain *.ddns .net | |
| medium | Client IP | Internal IP | ET POLICY DNS Query to DynDNS Domain *.ddns .net | |
| medium | Client IP | Internal IP | ET POLICY DNS Query to DynDNS Domain *.ddns .net |
Threat Detection Systems
Public InfoSec YARA rules
No alerts detected
OpenPhish
No alerts detected
PhishTank
No alerts detected
mnemonic secure dns
No alerts detected
Quad9 DNS
| Scan Date | Severity | Indicator | Alert |
|---|---|---|---|
| 2023-11-02 | medium | devilsms.live | Sinkholed |
ThreatFox
No alerts detected
JavaScript (3)
No JavaScripts
HTTP Transactions (12)
| URL | IP | Response | Size |
|---|