Report - huntington-signon.com/huntington.zip

Report Overview

Visitedpublic

2025-04-26 07:51:45

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Host Summary

Host	Rank	Registered	First Seen	Last Seen	Sent	Received	IP	Fingerprints
huntington-signon.com	unknown	unknown	No data	No data	504 B	1.1 MB	104.21.52.27

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

File detected

URL

huntington-signon.com/huntington.zip

IP / ASN

104.21.52.27

#13335 CLOUDFLARENET

File Overview

File TypeZip archive data, at least v1.0 to extract, compression method=store

Size1.1 MB (1084312 bytes)

MD57c17c04aa5b0c58042e0ee8b70ddccfa

SHA1e4f5d9cf6fe9b875253794aa1f96f264daba992d

SHA25692e2a366e2c9c26ee4f723387e63debd98765a028abd306b34e3e6031623b6c9

Archive (45)

Modified	Filename	Size	MD5	File type
2024-03-28 20:55	tlgrm.php	641 B	4acc2eb02dd1a9c003f208f19534acce	PHP script, ASCII text, with CRLF line terminators
2025-03-27 23:35	sms-error.php	80 kB	fa4669c507fc45ad95e819460fbb8b51	PHP script, Unicode text, UTF-8 text, with very long lines (2080), with CRLF line terminators
2023-11-25 23:39	step3.php	712 B	08a6361414f6c0c0277a2bdb0753467f	PHP script, ASCII text, with CRLF line terminators
2025-03-27 23:40	load1.php	16 kB	4b8c601097b01a9f317c652fa8808f1a	HTML document, ASCII text, with very long lines (553), with CRLF line terminators
2023-03-07 02:06	oo_icon_retina_black.gif	217 B	756ea9671899d785a86de4dcc11af817	PNG image data, 18 x 18, 8-bit grayscale, non-interlaced
2023-03-07 02:06	toolkit.min.css	389 kB	86b97e954149f51ed909a4d636018ea1	ASCII text, with very long lines (65536), with no line terminators
2023-03-07 02:06	f(2).txt	2.7 kB	9df501c96f2bd3cb13a765ee0c5b4321	JavaScript source, ASCII text, with very long lines (2693), with no line terminators
2023-03-07 02:06	EHL_Black_HouseOnly.svg	764 B	842c50db22ce317c9fdd556a89a56ed7	Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
2023-03-07 02:06	serverComponent.php	317 B	62bbaf2eb6b613c37862864bb434bd5b	ASCII text, with very long lines (316)
2023-03-07 02:06	logo-honeycomb.svg	862 B	d2196bd473b3068bf6a2039572174d75	HTML document, Unicode text, UTF-8 (with BOM) text, with very long lines (859), with no line terminators
2023-03-07 02:06	f(3).txt	2.7 kB	21f3a49afae6f5b90b6d2a1f3e57195a	JavaScript source, ASCII text, with very long lines (2691), with no line terminators
2023-03-07 02:07	activityi.html	645 B	80404f110ce27c66ad2bf019514cdaed	HTML document, ASCII text, with very long lines (335)
2023-03-07 02:06	site-survey.min.css	4.4 kB	b7d2a4622e5ba8af4ae30cd30c8938c1	ASCII text, with very long lines (4339)
2023-03-07 02:06	f(1).txt	2.7 kB	dfc328e5eb3a0a82dfb2ac302fe43733	JavaScript source, ASCII text, with very long lines (2693), with no line terminators
2023-03-07 02:06	f.txt	2.9 kB	c7ade6b8ed6465da051f963cc7364adc	JavaScript source, ASCII text, with very long lines (2891), with no line terminators
2023-03-07 02:07	trk.html	373 B	1aec3b717d63dfa9ccf869ecef0a8535	HTML document, ASCII text
2023-03-07 02:07	nuanceChat.html	1.2 kB	679810961bf56b6b17b3a39126aaaaea	HTML document, Unicode text, UTF-8 text, with very long lines (668)
2023-03-07 02:07	up.html	373 B	87b67f255d0bc00df03926fc5471c872	HTML document, ASCII text
2023-03-07 02:06	lockup.svg	4.0 kB	0e065e04a552548c4cedeee81d6411cd	HTML document, Unicode text, UTF-8 (with BOM) text, with very long lines (3955), with CRLF line terminators
2023-03-07 02:07	activityi(1).html	637 B	2f5d884439bb062be8fbeb87a0b7c003	HTML document, ASCII text, with very long lines (327)
2023-03-07 02:07	postToServer.min.html	21 kB	3cf88e288cb03436c28437210245efcf	HTML document, ASCII text, with very long lines (807)
2023-03-07 02:06	f(4).txt	2.7 kB	63fd9a2fb06b878830f9a4e11d603b3d	JavaScript source, ASCII text, with very long lines (2691), with no line terminators
2022-12-18 03:52	a.htm	108 B	67c58a38087e1a243fd14984f663b520	HTML document, ASCII text, with CRLF line terminators
2022-12-18 03:52	styles__ltr.css	53 kB	3624830e05cb492b2f52e5c009a1b51e	ASCII text, with very long lines (52913), with no line terminators
2022-01-20 14:07	success.gif	38 kB	7cb43d464e9f61dcd1c3c66b57063897	GIF image data, version 89a, 205 x 206
2022-12-18 03:52	styles.8eaa6cd177fe254e8c17.css	2.0 kB	37f748ffdaa775ef9e6da6555b52ee99	ASCII text, with very long lines (308)
2022-12-18 03:52	styles.389f5cd15ebac064442c.css	100 kB	34a698e47f9137e47631e2cc10b38224	ASCII text, with very long lines (17892)
2022-12-18 03:52	a.htm	108 B	67c58a38087e1a243fd14984f663b520	HTML document, ASCII text, with CRLF line terminators
2022-12-18 03:52	styles.50ce7c9d3ff9a6e79659.css	395 B	55a8f7412473b7ef60a431908e754ab1	ASCII text, with very long lines (361)
2022-12-18 03:52	styles.32da1000a26eaca7aba9.css	2.7 kB	efa752628da2294ee83da9f3562d1030	ASCII text, with very long lines (412)
2022-12-15 13:18	application.css	283 kB	efe03fdcb9517ba837578c8625697e58	Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
2022-12-15 13:18	core.css	339 kB	1bb04debf7ab8e9ffe6210e6177b970c	ASCII text, with very long lines (65536), with no line terminators
2022-12-06 00:28	main.css	2.3 kB	99eb097ce1e38b860e471a7ef3e55346	assembler source, ASCII text, with CRLF line terminators
2022-12-18 03:52	32410.00e5d2635b009abcc2ea.js	2.8 MB	0406c29f43fe7c516c7b890fab61c30a	JavaScript source, Unicode text, UTF-8 text, with very long lines (65441)
2022-12-15 13:18	cds.css	47 kB	ed58a16b1e6e8b916c8a8b36666fe918	ASCII text, with very long lines (47171), with no line terminators
2022-12-15 13:27	two.png	4.2 kB	54ee514de8d006174c39d75746b03f68	PNG image data, 400 x 670, 8-bit colormap, non-interlaced
2022-12-15 13:18	jquery-min.js	98 kB	8635a58b1cbd6d9e408a3d1aec412f83	JavaScript source, ASCII text, with very long lines (32769), with CRLF line terminators
2022-07-18 09:18	valid.png	3.3 kB	d784387d2e3a1e448d3306307f9278c8	PNG image data, 225 x 225, 8-bit colormap, non-interlaced
2022-12-18 03:52	anchor.htm	44 kB	84c08dd0bcc64e00d49a010fd0ae77fb	HTML document, ASCII text, with very long lines (35072), with CRLF line terminators
2025-03-27 23:35	sms.php	87 kB	1add559cd32be6f110ec649798e51d25	PHP script, Unicode text, UTF-8 text, with very long lines (6685), with CRLF line terminators
2025-03-25 18:52	load2.php	16 kB	b4283d2ec2c85c088a05bb6767dc947e	HTML document, ASCII text, with very long lines (553), with CRLF line terminators
2023-12-17 00:47	thanks.php	10 kB	118708e897fbc92eb78fc42c0d6a3379	HTML document, ASCII text, with very long lines (4271), with CRLF line terminators
2023-12-16 23:26	step1.php	810 B	18c542cce5cd0eb9df1074afdb1e98e9	PHP script, ASCII text, with CRLF line terminators
2025-03-16 20:54	index.php	179 kB	6f277970fb7e17e6a46c4da671129ecc	HTML document, Unicode text, UTF-8 text, with very long lines (5015), with CRLF line terminators
2023-07-31 03:13	step2.php	720 B	c884d18717346e2186564e4ce06b0946	PHP script, ASCII text, with CRLF line terminators

Detections

Analyzer	Verdict	Alert
YARAhub by abuse.ch	malware	Detects file containing Telegram Bot API
YARAhub by abuse.ch	malware	Detects file containing Telegram Bot API
YARAhub by abuse.ch	malware	Detects file containing Telegram Bot API
VirusTotal	suspicious	VirusTotal - Scan result 7/65

JavaScript (0)

HTTP Transactions (1)

	URL	IP	Response	Size