Report Overview
Visitedpublic
2026-04-09 14:03:51
Submit Tags
URL
a274.outsource.dk/wp-content/exe/newnew.html?eta=3mail@slurpmail.net
Finishing URL
a274.outsource.dk/wp-content/exe/newnew.html?eta=3mail@slurpmail.net
IP / ASN
185.21.40.38
Title
Webmail Sign-in
Suspicious - Suspicious Javascript code
Detections
urlquery
2
Network Intrusion Detection
1
Threat Detection Systems
4
Host Summary
| Host | Rank | Registered | First Seen | Last Seen | Sent | Received | IP | Fingerprints |
|---|---|---|---|---|---|---|---|---|
slurpmail.net 3 alert(s) on this Host | unknown | 2022-07-06 | 2022-07-06 | 2026-04-08 | 517 B | 0 B |  0.0.0.0 | |
cdn.jsdelivr.net | 1678 | 2012-05-16 | 2012-09-30 | 2026-04-05 | 1.9 kB | 491 kB |  151.101.193.229 | |
fonts.gstatic.com | unknown | 2008-02-11 | 2014-04-02 | 2026-04-05 | 1.1 kB | 17 kB | 172.217.19.227 | |
www.google.com | 22 | 1997-09-15 | 2015-05-10 | 2026-04-05 | 458 B | 1.2 kB | 142.251.157.119 | |
fonts.googleapis.com | 313 | 2005-01-25 | 2012-05-23 | 2026-04-05 | 474 B | 4.3 kB | 142.251.38.106 | |
a274.outsource.dk 2 alert(s) on this Host | unknown | 2006-03-24 | 2026-04-09 | 2026-04-09 | 1.0 kB | 13 kB | 185.21.40.38 |     |
api.ipify.org | 8166 | 2014-01-05 | 2014-10-06 | 2026-04-06 | 447 B | 269 B | 104.26.13.205 |  |
t0.gstatic.com | unknown | 2008-02-11 | 2013-05-06 | 2026-04-03 | 523 B | 1.6 kB | 172.217.20.164 |
Plesk (Hosting panels)
Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.Bootstrap:5.3.0 (UI frameworks)
Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.jsDelivr (CDN)
JSDelivr is a free public CDN for open-source projects. It can serve web files directly from the npm registry and GitHub repositories without any configuration.Nginx (Web servers, Reverse proxies)
Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.Cloudflare (CDN)
Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.Related reports
Network Intrusion Detection Systems
Suricata /w Emerging Threats Pro
| Timestamp | Severity | Source IP | Destination IP | Alert |
|---|---|---|---|---|
| low | Client IP | 104.26.13.205 | ET INFO External IP Address Lookup Domain (ipify .org) in TLS SNI |
Threat Detection Systems
| Detection System | Indicator | Verdict | Alert |
|---|---|---|---|
| YARAhub by abuse.ch | a274.outsource.dk/wp-content/exe/newnew.html?eta=3mail@slurpmail.net | malware | Detects file containing Telegram Bot API |
| DNS4EU | slurpmail.net | malicious | Sinkholed |
| Quad9 DNS | slurpmail.net | malicious | Sinkholed |
| Hagezi Threat Feed | slurpmail.net | malicious | Sinkholed |
Telegram Bot detected (1)
URL
a274.outsource.dk/wp-content/exe/newnew.html?eta=3mail@slurpmail.net
IP / ASN
185.21.40.38
Token
8102484756:AAGHBoKBWFOwhSZA-O48KaRC3L0SJBgPKgI
Bot Overview
User ID8102484756
Usernamebx007_bot
First Nameresult.bx
Last NameN/A
Chat Info
Chat ID1236418683
Chat Typeprivate
TitleN/A
User Count2
Admins0
Pending Msgs0
JavaScript (4)
No JavaScripts
HTTP Transactions (13)
| URL | IP | Response | Size |
|---|