Report Overview
URL
studyscavengeradmin.com/Out.aspx?t=u&f=ss&s=4b696803-eaa8-4269-afc7-5e73d22c2b59&url=https://aa.landwied.site/b6634fbb1cb945a68920314c27821ef2/?Mm9mM=cqE2a
Finishing URL
mc.landwied.site/?Mm9mM=cqE2a&vC9GbQY=ab9f628e714c4360ba6add0c69b2ee0d
IP / ASN
160.153.0.77
Title
Sign in to your account
Phishing - Microsoft
Phishing - Microsoft Outlook
Phishing - EvilProxy Phishing Kit
Detections
urlquery
4
Network Intrusion Detection
0
Threat Detection Systems
4
Host Summary
| Host | Rank | Registered | First Seen | Last Seen | Sent | Received | IP | Fingerprints |
|---|---|---|---|---|---|---|---|---|
studyscavengeradmin.com | 1356113 | 2018-08-31 | 2019-02-25 | 2025-04-17 | 623 B | 410 kB | 160.153.0.77 |   |
aa.landwied.site 4 alert(s) on this Host | unknown | 2025-10-10 | 2025-10-13 | 2025-10-13 | 1.2 kB | 639 kB |  128.199.23.79 |  |
46dfeb20f7c247ceb4684c647ec32a69.landwied.site 2 alert(s) on this Host | unknown | 2025-10-10 | 2025-10-13 | 2025-10-13 | 620 B | 1.6 kB | 128.199.23.79 | |
mc.landwied.site 8 alert(s) on this Host | unknown | 2025-10-10 | 2025-10-13 | 2025-10-13 | 1.3 kB | 231 kB | 128.199.23.79 | |
5c9cda11d0834372bd155c85b7c418b0.landwied.site 26 alert(s) on this Host | unknown | 2025-10-10 | 2025-10-13 | 2025-10-13 | 5.1 kB | 1.4 MB | 128.199.23.79 | |
Cloudflare (CDN)
Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.Microsoft ASP.NET:4.0.30319 (Web frameworks)
ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.Nginx (Web servers, Reverse proxies)
Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.Related reports
Network Intrusion Detection Systems
Suricata /w Emerging Threats Pro
No alerts detected
Threat Detection Systems
| Detection System | Indicator | Verdict | Alert |
|---|---|---|---|
| DNS0 Zero | mc.landwied.site | malicious | Sinkholed |
| DNS0 Zero | 5c9cda11d0834372bd155c85b7c418b0.landwied.site | malicious | Sinkholed |
| DNS0 Zero | aa.landwied.site | malicious | Sinkholed |
| DNS0 Zero | 46dfeb20f7c247ceb4684c647ec32a69.landwied.site | malicious | Sinkholed |
JavaScript (174)
No JavaScripts
HTTP Transactions (15)
| URL | IP | Response | Size |
|---|