Report - de.catbox.moe/hmskwh.zip

Report Overview

Visited public
2025-01-11 08:27:05
Tags
URL
de.catbox.moe/hmskwh.zip
Finishing URL
catbox.moe/hmskwh.zip
IP / ASN
108.181.20.35
#40676 AS40676
Title
Catbox

Detections

urlquery

0

Network Intrusion Detection

2

Threat Detection Systems

0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
de.catbox.moe	unknown	2015-04-06	2020-09-15	2025-01-09	394 B	1.5 kB	108.181.20.35
catbox.moe	343316	2015-04-06	2015-06-24	2025-01-04	2.2 kB	123 kB	108.181.20.35

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2025-01-11 08:26:40	medium	Client IP	108.181.20.35	ETPRO INFO .moe Domain in TLS SNI
2025-01-11 08:26:41	medium	Client IP	108.181.20.35	ETPRO INFO .moe Domain in TLS SNI

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (0)

HTTP Transactions (6)

	URL	IP	Response	Size
	de.catbox.moe/hmskwh.zip	108.181.20.35	301 Moved Permanently	162 B
URL User Request GET HTTP/1.1 de.catbox.moe/hmskwh.zip IP 108.181.20.35:80 ASN #40676 AS40676 File type HTML document, ASCII text, with CRLF line terminators Size 162 B (162 bytes) Hash 4f8e702cc244ec5d4de32740c0ecbd97 3adb1f02d5b6054de0046e367c1d687b6cdf7aff 9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a HTTP Headers `GET /hmskwh.zip HTTP/1.1 Host: de.catbox.moe User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 301 Moved Permanently Server: nginx Date: Sat, 11 Jan 2025 08:26:41 GMT Content-Type: text/html Content-Length: 162 Connection: keep-alive Location: https://catbox.moe/hmskwh.zip Strict-Transport-Security: max-age=31536000; includeSubDomains; preload X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block X-Frame-Options: DENY Content-Security-Policy: default-src 'self'; img-src 'self' https://quickchart.io https://files.catbox.moe; media-src 'self' https://files.catbox.moe; style-src 'self' 'unsafe-inline'; script-src https://www.google.com https://www.gstatic.com 'self' 'unsafe-inline'; frame-src https://www.google.com; Referrer-Policy: same-origin Permissions-Policy: accelerometer=(),ambient-light-sensor=(),autoplay=(),battery=(),camera=(),display-capture=(),document-domain=(),encrypted-media=(),execution-while-not-rendered=(),execution-while-out-of-viewport=(),fullscreen=(),gamepad=(),geolocation=(),gyroscope=(),hid=(),identity-credentials-get=(),idle-detection=(),local-fonts=(),magnetometer=(),microphone=(),midi=(),otp-credentials=(),payment=(),picture-in-picture=(),publickey-credentials-create=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),speaker-selection=(),storage-access=(),usb=(),web-share=(),xr-spatial-tracking=()

	catbox.moe/pictures/404.png	108.181.20.35	200 OK	111 kB
URL GET HTTP/2 catbox.moe/pictures/404.png IP 108.181.20.35:443 ASN #40676 AS40676 Requested by https://catbox.moe/hmskwh.zip Certificate IssuerLet's Encrypt Subjectcatbox.moe Fingerprint77:74:D8:7D:C1:10:2D:04:86:7C:24:2A:52:40:A6:FB:A4:73:DE:A8 ValidityFri, 22 Nov 2024 23:56:02 GMT - Thu, 20 Feb 2025 23:56:01 GMT File type PNG image data, 483 x 585, 8-bit/color RGBA, non-interlaced Size 111 kB (110971 bytes) Hash 9b3d62858577f1e5cc3bcf76dce23799 21ee4be2f9d363dbffa87843690cb877f35f3b69 0b59241be1dd37a6d2f07bf7ab641107d8c3aef6006c47112136acae57b1602a HTTP Headers `GET /pictures/404.png HTTP/1.1 Host: catbox.moe User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://catbox.moe/hmskwh.zip Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK server: nginx date: Sat, 11 Jan 2025 08:26:41 GMT content-type: image/png content-length: 110971 last-modified: Fri, 17 Mar 2017 10:18:51 GMT etag: "58cbb80b-1b17b" strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff x-xss-protection: 1; mode=block x-frame-options: DENY content-security-policy: default-src 'self'; img-src 'self' https://quickchart.io https://files.catbox.moe; media-src 'self' https://files.catbox.moe; style-src 'self' 'unsafe-inline'; script-src https://www.google.com https://www.gstatic.com 'self' 'unsafe-inline'; frame-src https://www.google.com; referrer-policy: same-origin permissions-policy: accelerometer=(),ambient-light-sensor=(),autoplay=(),battery=(),camera=(),display-capture=(),document-domain=(),encrypted-media=(),execution-while-not-rendered=(),execution-while-out-of-viewport=(),fullscreen=(),gamepad=(),geolocation=(),gyroscope=(),hid=(),identity-credentials-get=(),idle-detection=(),local-fonts=(),magnetometer=(),microphone=(),midi=(),otp-credentials=(),payment=(),picture-in-picture=(),publickey-credentials-create=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),speaker-selection=(),storage-access=(),usb=(),web-share=(),xr-spatial-tracking=() accept-ranges: bytes X-Firefox-Spdy: h2

	catbox.moe/bgs/texture3.png	108.181.20.35	200 OK	196 B
URL GET HTTP/2 catbox.moe/bgs/texture3.png IP 108.181.20.35:443 ASN #40676 AS40676 Requested by https://catbox.moe/hmskwh.zip Certificate IssuerLet's Encrypt Subjectcatbox.moe Fingerprint77:74:D8:7D:C1:10:2D:04:86:7C:24:2A:52:40:A6:FB:A4:73:DE:A8 ValidityFri, 22 Nov 2024 23:56:02 GMT - Thu, 20 Feb 2025 23:56:01 GMT File type PNG image data, 100 x 100, 8-bit colormap, non-interlaced Size 196 B (196 bytes) Hash 8cd5cd7e9b9dcd00d5bfd00ede48f696 75089af531ba72e1007179d497e61c0b67cfa8cd c2f096a9615af70e5176c70718de19e1efa7fc15d2492ceccf16712cac1e3b98 HTTP Headers `GET /bgs/texture3.png HTTP/1.1 Host: catbox.moe User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://catbox.moe/hmskwh.zip Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK server: nginx date: Sat, 11 Jan 2025 08:26:41 GMT content-type: image/png content-length: 196 last-modified: Fri, 26 Oct 2012 21:50:22 GMT etag: "508b059e-c4" strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff x-xss-protection: 1; mode=block x-frame-options: DENY content-security-policy: default-src 'self'; img-src 'self' https://quickchart.io https://files.catbox.moe; media-src 'self' https://files.catbox.moe; style-src 'self' 'unsafe-inline'; script-src https://www.google.com https://www.gstatic.com 'self' 'unsafe-inline'; frame-src https://www.google.com; referrer-policy: same-origin permissions-policy: accelerometer=(),ambient-light-sensor=(),autoplay=(),battery=(),camera=(),display-capture=(),document-domain=(),encrypted-media=(),execution-while-not-rendered=(),execution-while-out-of-viewport=(),fullscreen=(),gamepad=(),geolocation=(),gyroscope=(),hid=(),identity-credentials-get=(),idle-detection=(),local-fonts=(),magnetometer=(),microphone=(),midi=(),otp-credentials=(),payment=(),picture-in-picture=(),publickey-credentials-create=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),speaker-selection=(),storage-access=(),usb=(),web-share=(),xr-spatial-tracking=() accept-ranges: bytes X-Firefox-Spdy: h2

	catbox.moe/bgs/texture8.png	108.181.20.35	200 OK	133 B
URL GET HTTP/2 catbox.moe/bgs/texture8.png IP 108.181.20.35:443 ASN #40676 AS40676 Requested by https://catbox.moe/hmskwh.zip Certificate IssuerLet's Encrypt Subjectcatbox.moe Fingerprint77:74:D8:7D:C1:10:2D:04:86:7C:24:2A:52:40:A6:FB:A4:73:DE:A8 ValidityFri, 22 Nov 2024 23:56:02 GMT - Thu, 20 Feb 2025 23:56:01 GMT File type PNG image data, 8 x 8, 8-bit colormap, non-interlaced Size 133 B (133 bytes) Hash d4118dfd61e1751317419d66ea15e433 973f354d204a9455f95a1af5790f25723847db92 633c89d8a4d0cd7ad2ff032d87d33f33e8f14e48641926de70cf9187bd14bdad HTTP Headers `GET /bgs/texture8.png HTTP/1.1 Host: catbox.moe User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://catbox.moe/hmskwh.zip Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK server: nginx date: Sat, 11 Jan 2025 08:26:41 GMT content-type: image/png content-length: 133 last-modified: Fri, 15 Jun 2012 04:19:04 GMT etag: "4fdab7b8-85" strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff x-xss-protection: 1; mode=block x-frame-options: DENY content-security-policy: default-src 'self'; img-src 'self' https://quickchart.io https://files.catbox.moe; media-src 'self' https://files.catbox.moe; style-src 'self' 'unsafe-inline'; script-src https://www.google.com https://www.gstatic.com 'self' 'unsafe-inline'; frame-src https://www.google.com; referrer-policy: same-origin permissions-policy: accelerometer=(),ambient-light-sensor=(),autoplay=(),battery=(),camera=(),display-capture=(),document-domain=(),encrypted-media=(),execution-while-not-rendered=(),execution-while-out-of-viewport=(),fullscreen=(),gamepad=(),geolocation=(),gyroscope=(),hid=(),identity-credentials-get=(),idle-detection=(),local-fonts=(),magnetometer=(),microphone=(),midi=(),otp-credentials=(),payment=(),picture-in-picture=(),publickey-credentials-create=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),speaker-selection=(),storage-access=(),usb=(),web-share=(),xr-spatial-tracking=() accept-ranges: bytes X-Firefox-Spdy: h2

	catbox.moe/pictures/favicon.ico	108.181.20.35	200 OK	5.4 kB
URL GET HTTP/2 catbox.moe/pictures/favicon.ico IP 108.181.20.35:443 ASN #40676 AS40676 Requested by https://catbox.moe/hmskwh.zip Certificate IssuerLet's Encrypt Subjectcatbox.moe Fingerprint77:74:D8:7D:C1:10:2D:04:86:7C:24:2A:52:40:A6:FB:A4:73:DE:A8 ValidityFri, 22 Nov 2024 23:56:02 GMT - Thu, 20 Feb 2025 23:56:01 GMT File type MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel Size 5.4 kB (5430 bytes) Hash 6c5064b85ac0ca9ca7176983f4e1ccc7 35e2af3b324604e6fd92460cae86265352574f5f 6d6267ff22032bdca0f0363f159f5dd485271b8c60bd4635ed13926666f62627 HTTP Headers `GET /pictures/favicon.ico HTTP/1.1 Host: catbox.moe User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://catbox.moe/hmskwh.zip Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK server: nginx date: Sat, 11 Jan 2025 08:26:41 GMT content-type: image/x-icon content-length: 5430 last-modified: Sat, 20 Jun 2015 06:06:00 GMT etag: "558502c8-1536" strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff x-xss-protection: 1; mode=block x-frame-options: DENY content-security-policy: default-src 'self'; img-src 'self' https://quickchart.io https://files.catbox.moe; media-src 'self' https://files.catbox.moe; style-src 'self' 'unsafe-inline'; script-src https://www.google.com https://www.gstatic.com 'self' 'unsafe-inline'; frame-src https://www.google.com; referrer-policy: same-origin permissions-policy: accelerometer=(),ambient-light-sensor=(),autoplay=(),battery=(),camera=(),display-capture=(),document-domain=(),encrypted-media=(),execution-while-not-rendered=(),execution-while-out-of-viewport=(),fullscreen=(),gamepad=(),geolocation=(),gyroscope=(),hid=(),identity-credentials-get=(),idle-detection=(),local-fonts=(),magnetometer=(),microphone=(),midi=(),otp-credentials=(),payment=(),picture-in-picture=(),publickey-credentials-create=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),speaker-selection=(),storage-access=(),usb=(),web-share=(),xr-spatial-tracking=() accept-ranges: bytes X-Firefox-Spdy: h2

	catbox.moe/hmskwh.zip	108.181.20.35	404 Not Found	747 B
URL User Request GET HTTP/2 catbox.moe/hmskwh.zip IP 108.181.20.35:443 ASN #40676 AS40676 Certificate IssuerLet's Encrypt Subjectcatbox.moe Fingerprint77:74:D8:7D:C1:10:2D:04:86:7C:24:2A:52:40:A6:FB:A4:73:DE:A8 ValidityFri, 22 Nov 2024 23:56:02 GMT - Thu, 20 Feb 2025 23:56:01 GMT File type HTML document, ASCII text, with very long lines (832), with no line terminators Size 747 B (747 bytes) Hash 34f90c1f9028b940533b34cf95e0d458 083a92b308e121181b4f01e66fc1eafd096b85d8 077331ef0896a436eba1571dbf698bfcf0ccebf753e92c6dcdbbe674439940f6 HTTP Headers `GET /hmskwh.zip HTTP/1.1 Host: catbox.moe User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 404 Not Found server: nginx date: Sat, 11 Jan 2025 08:26:41 GMT content-type: text/html vary: Accept-Encoding etag: W/"57d26e7a-2eb" content-security-policy: default-src 'self'; img-src 'self' https://quickchart.io https://files.catbox.moe; media-src 'self' https://files.catbox.moe; style-src 'self' 'unsafe-inline'; script-src https://www.google.com https://www.gstatic.com 'self' 'unsafe-inline'; frame-src https://www.google.com; content-encoding: gzip X-Firefox-Spdy: h2`