Report - microsrcft.com/route/6fc72a14c2a209f100c0297052ef7fb29e633540/

Report Overview

Submitted URL
microsrcft.com/route/6fc72a14c2a209f100c0297052ef7fb29e633540/
IP
64.191.166.198
ASN
#13776 QX-NET-ASN-1
Submitted
2024-04-25 22:53:26
Access
public
Website Title
microsrcft.com/route/6fc72a14c2a209f100c0297052ef7fb29e633540/
Final URL
microsrcft.com/route/6fc72a14c2a209f100c0297052ef7fb29e633540/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
4

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
microsrcft.com	unknown	2022-01-14	2022-01-14	2024-02-05	984 B	3.1 kB	64.191.166.198

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-04-25	medium	microsrcft.com	Sinkholed
2024-04-25	medium	microsrcft.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (0)

HTTP Transactions (2)

URL IP Response Size

microsrcft.com/route/6fc72a14c2a209f100c0297052ef7fb29e633540/

64.191.166.198

200 OK

46 B

URL User Request GET HTTP/1.1
microsrcft.com/route/6fc72a14c2a209f100c0297052ef7fb29e633540/
IP
64.191.166.198:443
ASN
#13776 QX-NET-ASN-1

Certificate
IssuerLet's Encrypt
Subjectmicrosrcft.com
FingerprintBE:8B:FF:16:F5:22:6B:84:DE:0A:70:DB:D8:CC:CD:DB:12:BF:29:B7
ValidityFri, 01 Mar 2024 04:10:57 GMT - Thu, 30 May 2024 04:10:56 GMT

File type
JSON text data
Size
46 B (46 bytes)
Hash
7f9c220dc9cb9496e2088e53e1af2368
5642b92c6adee339838e2b9bb012138db4ed4902
6343dde812a088322ce7830569bcfcc21603d8c916e796dff263b1ac151bdb7e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /route/6fc72a14c2a209f100c0297052ef7fb29e633540/ HTTP/1.1
Host: microsrcft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 22:53:01 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Length: 46
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

microsrcft.com/favicon.ico

64.191.166.198

200 OK

2.5 kB

URL GET HTTP/1.1
microsrcft.com/favicon.ico
IP
64.191.166.198:443
ASN
#13776 QX-NET-ASN-1

Requested by
https://microsrcft.com/route/6fc72a14c2a209f100c0297052ef7fb29e633540/
Certificate
IssuerLet's Encrypt
Subjectmicrosrcft.com
FingerprintBE:8B:FF:16:F5:22:6B:84:DE:0A:70:DB:D8:CC:CD:DB:12:BF:29:B7
ValidityFri, 01 Mar 2024 04:10:57 GMT - Thu, 30 May 2024 04:10:56 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
2.5 kB (2525 bytes)
Hash
f264fb0cdb91812a2f7008a49889c623
1f167243939d8ebda9584a85cdd744bad0e451e2
217a47eed4b16b1c6943e2ed5e4f721115368d8a333568327e14e23e3596a69c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: microsrcft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://microsrcft.com/route/6fc72a14c2a209f100c0297052ef7fb29e633540/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 22:53:03 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Host
Content-Length: 2525
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (0)

HTTP Transactions (2)

URL User Request GET HTTP/1.1

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/1.1

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers