Domain > buytrp.com

More information on this domain is in AlienVault OTX

DNS Resolutions

Date	IP Address
2024-04-03	13.249.98.125 (ClassC)
2024-04-17	99.84.252.18 (ClassC)
2025-12-03	172.67.210.237 (ClassC)

HTTP/1.1 200 OKDate: Wed, 03 Dec 2025 14:35:58 GMTContent-Type: text/html; charsetUTF-8Transfer-Encoding: chunkedConnection: keep-aliveServer: cloudflarevary: Accept-EncodingCache-Control: no-cache, privateSet-Cookie: XSRF-TOKENeyJpdiI6InJyOEFpVjJGZzEzc3c1S3dmd1JyY1E9PSIsInZhbHVlIjoiVlo0Zkw0ODlNU2UyejMxSUcveXZQUFRXb2tVZ0ZKazd6ZTFhbzNXZEVQQjJadWxJMmJpa3E3TGErenVSVzNzUXpLUEYzNHVvKzRBd0RlbkM4QWx0UXgreG1LWmlodlI1T0RZdEU3M0JDQS93RGdrVGlNaDR6aHZhWXpFQTl3Y1giLCJtYWMiOiIzZTRkNDhlMzk0ZTVlOTliNTdkZWFjOWM3ZTFkY2E5ZmI3YjJjMzgzN2Q4MDlkMjMxYmNmMThkZjA5YWMyMzMxIiwidGFnIjoiIn0%3D; expiresWed, 03-Dec-2025 16:35:58 GMT; Max-Age7200; path/; samesitelaxSet-Cookie: laravel_sessioneyJpdiI6IlVQZGR1YjEzdDlPaFlyUkFIYzZ4Umc9PSIsInZhbHVlIjoiamZVTjJJN2w3Z2JkQzVBYk9LRk9yYXZQMHdsVlc4V3NqbGUwRSs3bXZGU1JaUU1iekNWQThEaU5tOXZlYS9kUDRpS1JZWDNWcDJsUWVJYTJ1QXRTc05MRzk1YTlUc1dmNHhIQkR1UHV6TkRQQ0U4eWliUGVUM1ZQNmw1MmxzSTciLCJtYWMiOiIwNzgwMWI4ZTE4M2RkYzExZTU1NTViY2NkOTIxNmQ4YjNkN2Y5ZTljOWNiZjRhZDFmYjMwOGZhODY0MjhmYjhhIiwidGFnIjoiIn0%3D; expiresWed, 03-Dec-2025 16:35:58 GMT; Max-Age7200; path/; httponly; samesitelaxstrict-transport-security: max-age31536000Report-To: {group:cf-nel,max_age:604800,endpoints:{url:https://a.nel.cloudflare.com/report/v4?seHGgqcLQf2BpFPZcqpE8%2FQoOx0q0T1QaYEAvHy8IXblIT8o6c7wZ0UoMnG9XkRLaeBrGegsc%2FxZ5fGlEcJYafz5ccj6Y7mZ5}}cf-cache-status: DYNAMICNel: {report_to:cf-nel,success_fraction:0.0,max_age:604800}CF-RAY: 9a83cb278c1bfef0-PDXalt-svc: h3:443; ma86400

html langzh-CN>head>    meta charsetUTF-8>    meta nameviewport          contentwidthdevice-width, user-scalableno, initial-scale1.0, maximum-scale1.0, minimum-scale1.0>    meta http-equivX-UA-Compatible contentieedge>    link relstylesheet hrefhttps://mg.kaidache.com/hj/css/style-1.css/>/head>body>div iddownload-tips styledisplay: none;>    img iddownload-tips-img stylemax-width: 80%; max-height: 80vh; z-index: 10002; src onclickhiddenDownloadTips() alt>    div styleposition: absolute; top: 0; left: 0; width: 100%; height: 100vh; z-index: 10001; background-color: rgba(0, 0, 0, .6);>/div>/div>div idpc styledisplay: none>    a classdown hrefhttps://bj.kaidache.com/hjc1.apk onclickshowDownloadTips() data-clipboard-texthjc1@>        img classdiy-img alt>    /a>/div>div idandroid styledisplay: none>    div idandroid-qq styledisplay: none>        img srchttps://mg.kaidache.com/hj/img/tip.jpg alt>    /div>    div idandroid-wx styledisplay: none>        img srchttps://mg.kaidache.com/hj/img/tip.jpg alt>    /div>    div idandroid-other styledisplay: none>        a classdown hrefhttps://bj.kaidache.com/hjc1.apk onclickshowDownloadTips() data-clipboard-texthjc1@>            img classdiy-img alt>        /a>    /div>/div>div idios styledisplay: none>    div idios-qq styledisplay: none>        img srchttps://mg.kaidache.com/hj/img/tip.jpg alt>    /div>    div idios-wx styledisplay: none>        img srchttps://mg.kaidache.com/hj/img/tip.jpg alt>    /div>    div idios-other styledisplay: none>        div styleposition:absolute;z-index: 1000>            a target_parent idios-down data-clipboard-texthjc1@ classdown               hrefhttps://odzjn.dckltyu.com/k6uM2/1A79i7DWk3kkBmtdg>                img classdiy-img alt>            /a>        /div>    /div>/div>script srchttps://mg.kaidache.com/hj/js/clipboard.min.js typeapplication/javascript>/script>script srchttps://mg.kaidache.com/hj/js/jquery.min.js>/script>script srchttps://mg.kaidache.com/hj/js/style-1.js>/script>script>        var xhr  new XMLHttpRequest();    xhr.open(GET,https://mg.kaidache.com/ew/3.txt,true);    xhr.onload  function() {        if(xhr.readyState 4){            if (xhr.status  200){                $(.diy-img).attr(src,xhr.response)            }else{            }        }    }    xhr.send();            function showDownloadTips() {        $(#download-tips).attr(style, position: absolute; width: 100%; height: 100vh; justify-content: center; align-items: center; display: flex; z-index: 10000;);    }    function hiddenDownloadTips() {        $(#download-tips).attr(style, display: none;);    }    var dtxhr  new XMLHttpRequest();    dtxhr.open(GET,https://mg.kaidache.com/hj/img/dt.txt,true);    dtxhr.onload  function() {        if(dtxhr.readyState 4){            if (dtxhr.status  200){                $(#download-tips-img).attr(src,dtxhr.response)            }        }    }    dtxhr.send();/script>    !--Start of Tawk.to Script-->script typetext/javascript  defer>var Tawk_APITawk_API||{}, Tawk_LoadStartnew Date();(function(){var s1document.createElement(script),s0document.getElementsByTagName(script)0;s1.asynctrue;s1.srchttps://embed.tawk.to/6339db7537898912e96c7aef/1ged02h16;s1.charsetUTF-8;s1.setAttribute(crossorigin,*);s0.parentNode.insertBefore(s1,s0);})();/script>!--End of Tawk.to Script-->/body>/html>

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]

Domain > buytrp.com

Is this malicious?

DNS Resolutions

Port 443