Report Overview
Submitted URL
shop.wanderlust-webdesign.com/wp-content/uploads/2024/03/wanderlust-nave-1.zip
IP
188.114.97.1
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-23 10:07:33
Access
public
Website Title
about:privatebrowsing
Final URL
about:privatebrowsing
Tags
urlquery detections
No alerts detected
Detections
urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
1
Domain Summary
Domain / FQDN | Rank | Registered | First Seen | Last Seen | Sent | Received | IP |
---|---|---|---|---|---|---|---|
shop.wanderlust-webdesign.com | unknown | 2013-08-20 | 2015-03-18 | 2023-12-25 | 532 B | 22 kB | 188.114.97.1 |
Related reports
Network Intrusion Detection Systems
Suricata /w Emerging Threats Pro
Threat Detection Systems
Public InfoSec YARA rules
No alerts detected
Files detected
URL
shop.wanderlust-webdesign.com/wp-content/uploads/2024/03/wanderlust-nave-1.zip
IP
188.114.97.1
ASN
#13335 CLOUDFLARENET
File type
Zip archive data, at least v1.0 to extract, compression method=store
Size
21 kB (21396 bytes)
Hash
581c51b41f92024761c1a6c449e423ff
05e1d6bdf27a30ba84b147d7aaea2b562ca35470
Archive (2)
Filename | Md5 | File type | |||
---|---|---|---|---|---|
nave-woocommerce.png | 8c1be4322ba4fb403edc0bf5beff8332 | PNG image data, 600 x 600, 8-bit/color RGBA, non-interlaced | |||
wanderlust-nave.php | 3516cf5960493c5f68922e0b71fed929
| PHP script, Unicode text, UTF-8 text, with very long lines (4350) |
Detections
Analyzer | Verdict | Alert |
---|---|---|
Public Nextron YARA rules | malware | PHP webshell obfuscated by encoding of mixed hex and dec |
JavaScript (0)
HTTP Transactions (1)
URL | IP | Response | Size | |
---|---|---|---|---|
shop.wanderlust-webdesign.com/wp-content/uploads/2024/03/wanderlust-nave-1.zip | 188.114.97.1 | 200 OK | 21 kB | |
HTTP Headers
| ||||