Report Overview
Visitedpublic
2025-06-19 10:54:55
Submit Tags
URL
loginmicrosoftcommon365auth1jw5s8.lmwqztv.es/EOCnH4vVhl@sT/
Finishing URL
loginmicrosoftcommon365auth1jw5s8.lmwqztv.es/EOCnH4vVhl@sT/
IP / ASN
104.21.17.95
Title
Waking Things Up Now
Suspicious - Anti-debugging code
Phishing - Tycoon Phishing Kit
Detections
urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0
Host Summary
| Host | Rank | Registered | First Seen | Last Seen | Sent | Received | IP | Fingerprints |
|---|---|---|---|---|---|---|---|---|
gcbgm.igzyhagplqy.es | unknown | unknown | 2025-06-19 | 2025-06-19 | 509 B | 586 B | 172.67.150.13 | |
loginmicrosoftcommon365auth1jw5s8.lmwqztv.es 41 alert(s) on this Host | unknown | unknown | 2025-06-19 | 2025-06-19 | 14 kB | 282 kB | 104.21.17.95 | |
5uril4.kzvjz.es | unknown | unknown | 2025-06-19 | 2025-06-19 | 499 B | 576 B | 188.114.97.1 | |
4kmkr.igzyhagplqy.es | unknown | unknown | 2025-06-19 | 2025-06-19 | 504 B | 580 B | 172.67.150.13 | |
developers.cloudflare.com | 592034 | 2009-02-17 | 2012-09-07 | 2025-06-15 | 1.8 kB | 4.5 kB | 104.16.4.189 | |
cdnjs.cloudflare.com | 235 | 2009-02-17 | 2012-05-23 | 2025-06-18 | 3.4 kB | 346 kB | 104.17.25.14 | |
challenges.cloudflare.com | unknown | 2009-02-17 | 2021-10-20 | 2025-06-18 | 6.8 kB | 690 kB | 104.18.94.41 | |
code.jquery.com | 634 | 2005-12-10 | 2012-05-21 | 2025-06-18 | 3.2 kB | 631 kB |  151.101.66.137 | |
l5fw.igzyhagplqy.es | unknown | unknown | 2025-06-19 | 2025-06-19 | 504 B | 568 B | 172.67.150.13 | |
5i2ig.onkttyhqjycn.es | unknown | unknown | 2025-06-19 | 2025-06-19 | 508 B | 578 B | 104.21.13.254 | |
w5f5i.onkttyhqjycn.es | unknown | unknown | 2025-06-19 | 2025-06-19 | 506 B | 576 B | 104.21.13.254 |
Related reports
Network Intrusion Detection Systems
Suricata /w Emerging Threats Pro
No alerts detected
Threat Detection Systems
Public InfoSec YARA rules
No alerts detected
OpenPhish
| Scan Date | Severity | Indicator | Alert |
|---|---|---|---|
| 2025-06-19 | medium | loginmicrosoftcommon365auth1jw5s8.lmwqztv.es/EOCnH4vVhl@sT/ | Generic/Spear Phishing |
| 2025-06-19 | medium | loginmicrosoftcommon365auth1jw5s8.lmwqztv.es/EOCnH4vVhl@sT/ | Generic/Spear Phishing |
| 2025-06-19 | medium | loginmicrosoftcommon365auth1jw5s8.lmwqztv.es/EOCnH4vVhl@sT/ | Generic/Spear Phishing |
| 2025-06-19 | medium | loginmicrosoftcommon365auth1jw5s8.lmwqztv.es/EOCnH4vVhl@sT/ | Generic/Spear Phishing |
| 2025-06-19 | medium | loginmicrosoftcommon365auth1jw5s8.lmwqztv.es/EOCnH4vVhl@sT/ | Generic/Spear Phishing |
| 2025-06-19 | medium | loginmicrosoftcommon365auth1jw5s8.lmwqztv.es/EOCnH4vVhl@sT/ | Generic/Spear Phishing |
| 2025-06-19 | medium | loginmicrosoftcommon365auth1jw5s8.lmwqztv.es/EOCnH4vVhl@sT/ | Generic/Spear Phishing |
| 2025-06-19 | medium | loginmicrosoftcommon365auth1jw5s8.lmwqztv.es/EOCnH4vVhl@sT/ | Generic/Spear Phishing |
| 2025-06-19 | medium | loginmicrosoftcommon365auth1jw5s8.lmwqztv.es/EOCnH4vVhl@sT/ | Generic/Spear Phishing |
PhishTank
No alerts detected
Quad9 DNS
No alerts detected
ThreatFox
No alerts detected
JavaScript (78)
No JavaScripts
HTTP Transactions (60)
| URL | IP | Response | Size |
|---|