Report - adelexx.org/webpanel/Panel/login.php/

Report Overview

Visited public
2025-05-11 13:19:41
Tags
Submit Tags
URL
adelexx.org/webpanel/Panel/login.php/
Finishing URL
adelexx.org/webpanel/Panel/login.php/
IP / ASN
172.104.149.86
#63949 Akamai Connected Cloud
Title
adelexx.org

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
adelexx.org	unknown	2025-03-17	2025-05-11	2025-05-11	1.9 kB	31 kB	172.104.251.198
www.google.com	7	1997-09-15	2015-05-10	2025-05-07	438 B	144 kB	142.250.74.68

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2025-05-11	medium	adelexx.org	Sinkholed
2025-05-11	medium	adelexx.org	Sinkholed
2025-05-11	medium	adelexx.org	Sinkholed
2025-05-11	medium	adelexx.org	Sinkholed

ThreatFox

No alerts detected

JavaScript (2)

	URL	From	Size	First Seen	Last Seen
	adelexx.org/_static/deliver.js?nonce=3498571	ScriptElement	26 kB	2025-04-28	2025-05-15
Pretty URL adelexx.org/_static/deliver.js?nonce=3498571 IP 172.104.251.198 ASN #63949 Akamai Connected Cloud Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-28 17:43 Last Seen2025-05-15 13:01 Times Seen33 Hash e88db5a595908543019e5c60b5584c9a 1ede61696f18d09dbb4b1f8a68fb42dc07533f2d 565a4ffddb2d710120a63dd41397541bd8b3af72a01d71d70c7b5830bee58ceb Loading...

	www.google.com/adsense/domains/caf.js?abp=1&abpgo=true	ScriptElement	143 kB	2025-05-09	2025-05-13
Pretty URL www.google.com/adsense/domains/caf.js?abp=1&abpgo=true IP 142.250.74.68 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2025-05-09 12:21 Last Seen2025-05-13 15:00 Times Seen571 Hash 3304efd24dfa8c4c7ce40f3de600b4e9 03123332d63cb05c2e839167db15d213579b351d 0c52f00df6667982d053daab715ab61912b336347026c51bfb3afd401213a787 Loading...

HTTP Transactions (5)

URL IP Response Size

GET adelexx.org/_static/deliver.js?nonce=3498571

172.104.251.198

200 OK

26 kB

URL GET
adelexx.org/_static/deliver.js?nonce=3498571
IP
172.104.251.198:443
ASN
#63949 Akamai Connected Cloud

Requested by
https://adelexx.org/webpanel/Panel/login.php/
Certificate
IssuerLet's Encrypt
Subjectadelexx.org
Fingerprint92:8D:3F:23:E5:2F:4F:2F:95:48:80:9D:22:BF:D3:14:41:D1:72:81
ValidityMon, 17 Mar 2025 10:23:03 GMT - Sun, 15 Jun 2025 10:23:02 GMT

File type
C++ source, ASCII text
Size
26 kB (25730 bytes)
Hash
e88db5a595908543019e5c60b5584c9a
1ede61696f18d09dbb4b1f8a68fb42dc07533f2d
565a4ffddb2d710120a63dd41397541bd8b3af72a01d71d70c7b5830bee58ceb

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_static/deliver.js?nonce=3498571 HTTP/1.1
Host: adelexx.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://adelexx.org/webpanel/Panel/login.php/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: openresty/1.27.1.2
date: Sun, 11 May 2025 13:19:09 GMT
content-type: application/javascript
last-modified: Mon, 28 Apr 2025 15:32:27 GMT
vary: Accept-Encoding
etag: W/"680f9f8b-6482"
strict-transport-security: max-age=0; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2

GET adelexx.org/apple-touch-icon.png

172.104.251.198

404 Not Found

159 B

URL GET
adelexx.org/apple-touch-icon.png
IP
172.104.251.198:443
ASN
#63949 Akamai Connected Cloud

Requested by
https://adelexx.org/webpanel/Panel/login.php/
Certificate
IssuerLet's Encrypt
Subjectadelexx.org
Fingerprint92:8D:3F:23:E5:2F:4F:2F:95:48:80:9D:22:BF:D3:14:41:D1:72:81
ValidityMon, 17 Mar 2025 10:23:03 GMT - Sun, 15 Jun 2025 10:23:02 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
159 B (159 bytes)
Hash
1620e905665c273e91a8cb2a00df1509
e0ea169369ad349affad0f6d41987a73fea0280f
5a41c6b1c3d5061adbd15744312c919ee4a639abc0572a2927b06838bec1a6ed

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /apple-touch-icon.png HTTP/1.1
Host: adelexx.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://adelexx.org/webpanel/Panel/login.php/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
server: openresty/1.27.1.2
date: Sun, 11 May 2025 13:19:09 GMT
content-type: text/html
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2

POST adelexx.org/_d

172.104.251.198

200 OK

817 B

URL POST
adelexx.org/_d
IP
172.104.251.198:443
ASN
#63949 Akamai Connected Cloud

Requested by
https://adelexx.org/webpanel/Panel/login.php/
Certificate
IssuerLet's Encrypt
Subjectadelexx.org
Fingerprint92:8D:3F:23:E5:2F:4F:2F:95:48:80:9D:22:BF:D3:14:41:D1:72:81
ValidityMon, 17 Mar 2025 10:23:03 GMT - Sun, 15 Jun 2025 10:23:02 GMT

File type
JSON text data
Size
817 B (817 bytes)
Hash
76a893aba5489dfc02756791ef670e55
3d86744928b9927252c9e37757193dc2c576d069
18282a449b781a784d88185915884592c15a2c8b9ceaaf591d84fd790a6c93fd

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /_d HTTP/1.1
Host: adelexx.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://adelexx.org/webpanel/Panel/login.php/
Content-Type: application/json
Content-Length: 333
Origin: https://adelexx.org
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: openresty/1.27.1.2
date: Sun, 11 May 2025 13:19:10 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
set-cookie: session_id=ad45fa96212aa265d8f8ec8fededffd7; Max-Age=86400; Path=/; HttpOnly; SameSite=Lax
strict-transport-security: max-age=0; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2

GET www.google.com/adsense/domains/caf.js?abp=1&abpgo=true

142.250.74.68

200 OK

143 kB

URL GET
www.google.com/adsense/domains/caf.js?abp=1&abpgo=true
IP
142.250.74.68:443
ASN
#15169 GOOGLE

Requested by
https://adelexx.org/webpanel/Panel/login.php/
Certificate
IssuerGoogle Trust Services
Subjectwww.google.com
FingerprintC0:9B:21:A5:10:36:7E:DC:25:8D:0B:AB:4B:D9:D7:AD:92:06:96:49
ValidityMon, 21 Apr 2025 08:42:35 GMT - Mon, 14 Jul 2025 08:42:34 GMT

File type
JavaScript source, ASCII text, with very long lines (1839)
Size
143 kB (143318 bytes)
Hash
3304efd24dfa8c4c7ce40f3de600b4e9
03123332d63cb05c2e839167db15d213579b351d
0c52f00df6667982d053daab715ab61912b336347026c51bfb3afd401213a787

HTTP Headers

GET /adsense/domains/caf.js?abp=1&abpgo=true HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://adelexx.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-afs-ui"
report-to: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]}
date: Sun, 11 May 2025 13:19:10 GMT
expires: Sun, 11 May 2025 13:19:10 GMT
cache-control: private, max-age=3600
etag: "4995297505324853359"
x-content-type-options: nosniff
link: <https://syndicatedsearch.goog>; rel="preconnect"
content-encoding: gzip
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET adelexx.org/webpanel/Panel/login.php/

172.104.251.198

200 OK

3.3 kB

URL User Request GET
adelexx.org/webpanel/Panel/login.php/
IP
172.104.251.198:443
ASN
#63949 Akamai Connected Cloud

Certificate
IssuerLet's Encrypt
Subjectadelexx.org
Fingerprint92:8D:3F:23:E5:2F:4F:2F:95:48:80:9D:22:BF:D3:14:41:D1:72:81
ValidityMon, 17 Mar 2025 10:23:03 GMT - Sun, 15 Jun 2025 10:23:02 GMT

File type
HTML document, ASCII text
Size
3.3 kB (3268 bytes)
Hash
da49758d56a0aa39f1de5d8402f3d6c0
dee48c63504c7c66694cdbc5e6a41e04c09baf0e
afdaa96dfe6aa45c1989cffe4c130841142121168ae32dba1faff90eaefae9f5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /webpanel/Panel/login.php/ HTTP/1.1
Host: adelexx.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: openresty/1.27.1.2
date: Sun, 11 May 2025 13:19:09 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (2)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (5)

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL POST

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL User Request GET

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers