Report - shipsy.intercom-clicks.com/via/e?ob=HQdT2M8dNOV4CNV3OQACD0pAZ5oxFR1TdMmucpqV/AFQ0WmlZIjiJ47xo+rZMfJ9&h=59aea087012827fef8bdd43d93f49fff8520bdee-ntvhrj4m_122802700259148&l=6f643ca8315d08fb9339a9e67ad9e74d3cfe05fe-87072877

Report Overview

Visitedpublic

2023-11-12 13:29:58

Tags

Submit Tags

URL

shipsy.intercom-clicks.com/via/e?ob=HQdT2M8dNOV4CNV3OQACD0pAZ5oxFR1TdMmucpqV/AFQ0WmlZIjiJ47xo+rZMfJ9&h=59aea087012827fef8bdd43d93f49fff8520bdee-ntvhrj4m_122802700259148&l=6f643ca8315d08fb9339a9e67ad9e74d3cfe05fe-87072877

Finishing URL

dx5enzgi.dreamwp.com/id/home/info.php

IP / ASN

143.204.55.80

#16509 AMAZON-02

Title

Global Logistics - International Shipping | DHL Home

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Host Summary

Host	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
dx5enzgi.dreamwp.com	unknown	2016-06-23	2023-11-10 05:48:04	2023-11-10 20:04:16	11 kB	1.5 MB	176.74.24.122
www.dhl.com	40018	1989-05-25	2012-07-02 18:21:37	2023-11-12 10:01:03	14 kB	692 kB	96.6.17.154
shipsy.intercom-clicks.com	unknown	2019-09-20	2023-11-10 07:45:11	2023-11-12 13:14:36	676 B	4.8 kB	143.204.55.52

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-11-12 13:29:39	low	Client IP	Internal IP	ET INFO Commonly Abused WordPress Application Related Domain in DNS Lookup (dreamwp .com)
2023-11-12 13:29:39	low	Client IP	Internal IP	ET INFO Commonly Abused WordPress Application Related Domain in DNS Lookup (dreamwp .com)

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (2)

HTTP Transactions (48)

	URL	IP	Response	Size