Report - api.grabtrust.icu/?qr=cp&zqs=ccf917b32f2319d477cdf24df01c5928

Report Overview

Visitedpublic

2025-12-23 13:12:51

Tags

Submit Tags

URL

api.grabtrust.icu/?qr=cp&zqs=ccf917b32f2319d477cdf24df01c5928

Finishing URL

api.grabtrust.icu/?qr=cp&zqs=ccf917b32f2319d477cdf24df01c5928

IP / ASN

104.21.85.204

#13335 CLOUDFLARENET

Title

api.grabtrust.icu/?qr=cp&zqs=ccf917b32f2319d477cdf24df01c5928

urlquery

Network Intrusion Detection

Threat Detection Systems

Host Summary

Host	Rank	Registered	First Seen	Last Seen	Sent	Received	IP	Fingerprints
api.grabtrust.icu	unknown	2025-10-11	2025-11-28	2025-12-23	1.1 kB	1.5 kB	188.114.97.1

Timestamp	Severity	Source IP	Destination IP	Alert
2025-12-23 13:12:28	medium	172.18.0.24	188.114.97.1	ET INFO Suspicious Domain (*.icu) in TLS SNI

Threat Detection Systems

Detection System	Indicator	Verdict	Alert
DigiCert UltraDNS	api.grabtrust.icu	malicious	Sinkholed
Quad9 DNS	api.grabtrust.icu	malicious	Sinkholed
Hagezi Threat Feed	api.grabtrust.icu	malicious	Sinkholed
DNS4EU	api.grabtrust.icu	malicious	Sinkholed
Cloudflare DNS	api.grabtrust.icu	malicious	Sinkholed

	URL	IP	Response	Size