Report - qrcodedynamic.com/xwp811d/

Report Overview

Visitedpublic

2025-12-17 05:25:51

Tags

Submit Tags

URL

qrcodedynamic.com/xwp811d/

Finishing URL

6ee8d66c-a808-467b-a731-1ef0508f5854-00-2zmlz0y74uzvx.picard.replit.dev/offx/?client_id=387w7ubebu2j7woyuehiu7ouoneti3bet7i8iqoo8aaih8aiwyfna8adw2knn8p7o7uepu7okn7ujuisufh8isuptojupnuihesqusu8ka8a7oateoe7uhtwetauhotfjaoosnnt8oueoesw8rffiaubr8ksewj2djlsdnsnwuu2rbwdd8hihirquhn8e2ew38syeibsqfe&key=470&payId=737914

IP / ASN

104.26.15.211

#13335 CLOUDFLARENET

Title

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Host Summary

Host	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
6ee8d66c-a808-467b-a731-1ef0508f5854-00-2zmlz0y74uzvx.picard.replit.dev	unknown	2021-01-26	2025-12-17	2025-12-17	5.0 kB	340 kB	35.226.206.236
qrcodedynamic.com	2250189	2022-05-24	2015-05-30	2025-12-12	494 B	7.1 kB	104.26.14.211
aadcdn.msftauth.net	5262	2018-10-25	2018-11-19	2025-12-15	1.1 kB	4.5 kB	23.36.79.136

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2025-12-17 05:25:29	medium	172.18.0.21	35.226.206.236	ET INFO Observed replit Domain (replit .dev in TLS SNI)
2025-12-17 05:25:29	medium	172.18.0.21	35.226.206.236	ET INFO Observed replit Domain (replit .dev in TLS SNI)
2025-12-17 05:25:29	medium	172.18.0.21	35.226.206.236	ET INFO Observed replit Domain (replit .dev in TLS SNI)
2025-12-17 05:25:30	medium	172.18.0.21	35.226.206.236	ET INFO Observed replit Domain (replit .dev in TLS SNI)

Threat Detection Systems

Detection System	Indicator	Verdict	Alert
DNS4EU	qrcodedynamic.com	malicious	Sinkholed
Quad9 DNS	qrcodedynamic.com	malicious	Sinkholed

JavaScript (2)

HTTP Transactions (10)

	URL	IP	Response	Size