Report Overview
Visitedpublic
2025-10-06 00:25:37
Tags
Submit Tags
URL
loader.oxy.st/get/4bf09b510983ac4fc603b8d7cc4c1d60/
Finishing URL
about:privatebrowsing
IP / ASN
104.21.17.251
#13335 CLOUDFLARENET
Title
about:privatebrowsing

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
4

Host Summary

HostRankRegisteredFirst SeenLast Seen
loader.oxy.st
unknown2019-11-032022-10-192025-10-03
s1.oxy.st
unknown2019-11-032022-06-042025-10-01

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected
Threat Detection Systems
Detection SystemIndicatorVerdictAlert
YARAhub by abuse.chs1.oxy.st/get.php?cg=czozMjoiMjQ4NDVlZDAyOWNjZDNjNTg0YmU3YjA1Zjk4NTkxYjQiOw%2C%2C&n=czoxMDoibG9hZGVyLmV4ZSI7&c=czo2NDoiMjM5M2U1YTgyOGNkZGZmYjI1NjM1YTQ2MDY2NGI0Nzk1MmE5MTI2YTViYWQ4NzUxYWNhOGUxMmVlZmYwNWE2MiI7&t=1759710311malware
files - file ~tmp01925d3f.exe
DNS0 Zeroloader.oxy.stmalicious
Sinkholed
Hagezi Threat Feedloader.oxy.stmalicious
Sinkholed
ClamAVs1.oxy.st/get.php?cg=czozMjoiMjQ4NDVlZDAyOWNjZDNjNTg0YmU3YjA1Zjk4NTkxYjQiOw%2C%2C&n=czoxMDoibG9hZGVyLmV4ZSI7&c=czo2NDoiMjM5M2U1YTgyOGNkZGZmYjI1NjM1YTQ2MDY2NGI0Nzk1MmE5MTI2YTViYWQ4NzUxYWNhOGUxMmVlZmYwNWE2MiI7&t=1759710311malicious
Win.Keylogger.Lazy-10031941-0

File detected

URL
s1.oxy.st/get.php?cg=czozMjoiMjQ4NDVlZDAyOWNjZDNjNTg0YmU3YjA1Zjk4NTkxYjQiOw%2C%2C&n=czoxMDoibG9hZGVyLmV4ZSI7&c=czo2NDoiMjM5M2U1YTgyOGNkZGZmYjI1NjM1YTQ2MDY2NGI0Nzk1MmE5MTI2YTViYWQ4NzUxYWNhOGUxMmVlZmYwNWE2MiI7&t=1759710311
IP / ASN
104.21.17.251
#13335 CLOUDFLARENET
File Overview
File TypePE32 executable (GUI) Intel 80386, for MS Windows, 6 sections
Size534 kB (534528 bytes)
MD529accad3efa7fac25dce07ff71cf1808
SHA157ffba43cc6f0d9e255002451234a9fb779c717c

Detections

AnalyzerVerdictAlert
YARAhub by abuse.chmalware
files - file ~tmp01925d3f.exe
VirusTotalmalicious
VirusTotal - Scan result 57/72
ClamAVmalicious
Win.Keylogger.Lazy-10031941-0

JavaScript (0)

HTTP Transactions (2)

URLIPResponseSize