Report Overview
Domain Summary
Domain / FQDN | Rank | Registered | First Seen | Last Seen | Sent | Received | IP |
---|---|---|---|---|---|---|---|
unknown | 405 B | 10 MB | 58.222.59.11 |
Related reports
Network Intrusion Detection Systems
Suricata /w Emerging Threats Pro
Timestamp | Severity | Source IP | Destination IP | Alert |
---|---|---|---|---|
2024-04-25 20:02:52 | high | 58.222.59.11 | Client IP |
Threat Detection Systems
Public InfoSec YARA rules
Scan Date | Severity | Indicator | Alert |
---|---|---|---|
2024-04-25 | medium | xiazai.073311.com:88/onekey2023.exe | Identifies compiled AutoIT script (as EXE). |
OpenPhish
No alerts detected
PhishTank
No alerts detected
mnemonic secure dns
No alerts detected
Quad9 DNS
No alerts detected
ThreatFox
No alerts detected
Files detected
URL
xiazai.073311.com:88/onekey2023.exe
IP
58.222.59.11
ASN
#4134 Chinanet
File type
PE32 executable (GUI) Intel 80386, for MS Windows, 5 sections
Size
10 MB (10021284 bytes)
Hash
9b0dfa036851519ef882eb8a8bc0e947
33c1f906c2d49c5891e84d02e7eca698f49bb1f4
Detections
Analyzer | Verdict | Alert |
---|---|---|
Public InfoSec YARA rules | malware | Identifies compiled AutoIT script (as EXE). |
VirusTotal | malicious |
JavaScript (0)
No Javascripts found
No Javascripts found
No Javascripts found
HTTP Transactions (1)
URL | IP | Response | Size | ||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|
xiazai.073311.com:88/onekey2023.exe | 58.222.59.11 | 200 OK | 10 MB | ||||||||||
Detections
HTTP Headers
| |||||||||||||