Report - kioskotg.servebeer.com/

Report Overview

Visited public
2024-06-11 20:35:49
Tags
dyndns
URL
kioskotg.servebeer.com/
Finishing URL
kioskotg.servebeer.com/
IP / ASN
189.206.165.236
#11172 Alestra, S. de R.L. de C.V.
Title
The page you were looking for doesn't exist (404)
Suspicious - DynDNS domain

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
kioskotg.servebeer.com	unknown	unknown	No data	No data	1.4 kB	95 kB	189.206.165.236

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2024-06-11 20:35:28	medium	Client IP	189.206.165.236	ET INFO DYNAMIC_DNS HTTP Request to a *.servebeer .com Domain
2024-06-11 20:35:28	medium	Client IP	189.206.165.236	ET INFO DYNAMIC_DNS HTTP Request to a *.servebeer .com Domain
2024-06-11 20:35:28	medium	Client IP	189.206.165.236	ET INFO DYNAMIC_DNS HTTP Request to a *.servebeer .com Domain
2024-06-11 20:35:29	medium	Client IP	189.206.165.236	ET INFO DYNAMIC_DNS HTTP Request to a *.servebeer .com Domain

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (0)

HTTP Transactions (4)

URL IP Response Size

kioskotg.servebeer.com/

189.206.165.236

200 OK

997 B

URL User Request GET HTTP/1.1
kioskotg.servebeer.com/
IP
189.206.165.236:80
ASN
#11172 Alestra, S. de R.L. de C.V.

File type
HTML document, ASCII text, with CRLF line terminators
Size
997 B (997 bytes)
Hash
75bc296421a94b622ac2347e08fa1c22
ccfeb7386c1d07c37a3865fd82284f1a4ccb3d41
93203a3adc988584f393a12f10ac5adeb4932e2f68d24d4951cb6806799507a6

Detections

Analyzer	Verdict	Alert
urlquery	suspicious	Suspicious - DynDNS domain

NIDS	Severity	Alert
suricata	medium	ET INFO DYNAMIC_DNS HTTP Request to a *.servebeer .com Domain
suricata	medium	ET INFO DYNAMIC_DNS HTTP Request to a *.servebeer .com Domain

HTTP Headers

GET / HTTP/1.1
Host: kioskotg.servebeer.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 11 Jun 2024 20:29:17 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Tue, 18 Jul 2023 20:56:53 GMT
ETag: "9cb-600c9279d4803-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 997
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html

kioskotg.servebeer.com/

189.206.165.236

200 OK

997 B

URL User Request GET HTTP/1.1
kioskotg.servebeer.com/
IP
189.206.165.236:80
ASN
#11172 Alestra, S. de R.L. de C.V.

File type
HTML document, ASCII text, with CRLF line terminators
Size
997 B (997 bytes)
Hash
75bc296421a94b622ac2347e08fa1c22
ccfeb7386c1d07c37a3865fd82284f1a4ccb3d41
93203a3adc988584f393a12f10ac5adeb4932e2f68d24d4951cb6806799507a6

Detections

Analyzer	Verdict	Alert
urlquery	suspicious	Suspicious - DynDNS domain

NIDS	Severity	Alert
suricata	medium	ET INFO DYNAMIC_DNS HTTP Request to a *.servebeer .com Domain
suricata	medium	ET INFO DYNAMIC_DNS HTTP Request to a *.servebeer .com Domain

HTTP Headers

GET / HTTP/1.1
Host: kioskotg.servebeer.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 11 Jun 2024 20:29:17 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Tue, 18 Jul 2023 20:56:53 GMT
ETag: "9cb-600c9279d4803-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 997
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html

kioskotg.servebeer.com/favicon.ico

189.206.165.236

404 Not Found

296 B

URL GET HTTP/1.1
kioskotg.servebeer.com/favicon.ico
IP
189.206.165.236:80
ASN
#11172 Alestra, S. de R.L. de C.V.

Requested by
http://kioskotg.servebeer.com/

File type
HTML document, ASCII text
Size
296 B (296 bytes)
Hash
dc11f5175388a15ae0482e53f8160100
9d8d74c027d1eb3d20ced68a063f074e59e82ede
b7a0def4a17a8dfa50eb7432121bb2db0db54ff0b4dfd196342796090de13bc4

Detections

Analyzer	Verdict	Alert
urlquery	suspicious	Suspicious - DynDNS domain

NIDS	Severity	Alert
suricata	medium	ET INFO DYNAMIC_DNS HTTP Request to a *.servebeer .com Domain

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: kioskotg.servebeer.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://kioskotg.servebeer.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Tue, 11 Jun 2024 20:29:18 GMT
Server: Apache/2.4.7 (Ubuntu)
Content-Length: 296
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

kioskotg.servebeer.com/404-full.svg

189.206.165.236

200 OK

92 kB

URL GET HTTP/1.1
kioskotg.servebeer.com/404-full.svg
IP
189.206.165.236:80
ASN
#11172 Alestra, S. de R.L. de C.V.

Requested by
http://kioskotg.servebeer.com/

File type
SVG Scalable Vector Graphics image
Size
92 kB (91933 bytes)
Hash
9ed0fa8cc28fc2d30d2735edf90497ef
0bd700914331cf042c2a8d336220754d463da6ff
6ae7dda0fb177a304d5f19f28d0005fe56e40a3d3be5e3d4c86b24836ddd080e

Detections

Analyzer	Verdict	Alert
urlquery	suspicious	Suspicious - DynDNS domain

NIDS	Severity	Alert
suricata	medium	ET INFO DYNAMIC_DNS HTTP Request to a *.servebeer .com Domain

HTTP Headers

GET /404-full.svg HTTP/1.1
Host: kioskotg.servebeer.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://kioskotg.servebeer.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 11 Jun 2024 20:29:18 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Tue, 18 Jul 2023 20:50:38 GMT
ETag: "1671d-600c9114186c1"
Accept-Ranges: bytes
Content-Length: 91933
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/svg+xml

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (0)

HTTP Transactions (4)

URL User Request GET HTTP/1.1

IP

ASN

File type

Size

Hash

Detections

HTTP Headers

URL User Request GET HTTP/1.1

IP

ASN

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/1.1

IP

ASN

Requested by

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/1.1

IP

ASN

Requested by

File type

Size

Hash

Detections

HTTP Headers