查看: 2911|回复: 5
收起左侧

[已鉴定] FakeTG

[复制链接]
hsks
发表于 2023-8-31 23:23:27 | 显示全部楼层 |阅读模式
hxxp://telgegarm.com

你下载速度还能再慢点吗

anxiety520
发表于 2023-9-1 19:32:09 | 显示全部楼层
本帖最后由 anxiety520 于 2023-9-1 19:35 编辑

VT2/90


opentip分析
  1. Report
  2. Report for web address
  3. http://telgegarm.com/
  4. Good
  5. Overview
  6. IPv4 count        ≈ 1
  7. Files count        —
  8. Created       
  9. 25 Aug, 2023
  10. 05:00
  11. Expires       
  12. 25 Aug, 2024
  13. 05:00
  14. Domain        telgegarm.com
  15. Registration organization        Whoisprotection.cc
  16. Registrar name        WEBCC
  17. Categories       
  18. General
  19. WHOIS
  20. Domain name        telgegarm.com
  21. Domain status       
  22. ok https://icann.org/epp#ok

  23. Created        25 Aug, 2023
  24. Updated        25 Aug, 2023
  25. Paid until        25 Aug, 2024
  26. Registrar info        WEBCC
  27. IANA ID        460
  28. Email        compliance_abuse@webnic.cc
  29. Name servers        ns1.hndnsv1.com, ns2.hndnsv1.com
  30. Contact        Name        Organization        Address        Phone/Fax        Email
  31. Registrant info        Domain Admin        Whoisprotection.cc        L4-E-2, Level 4, Enterprise 4, Technology Park Malaysia, Bukit Jalil        +60.389966788/+603.89966788        reg_20759987@whoisprotection.cc
  32. Admin info        Domain Admin        Whoisprotection.cc        L4-E-2, Level 4, Enterprise 4, Technology Park Malaysia, Bukit Jalil        +60.389966788/+603.89966788        adm_20759987@whoisprotection.cc
  33. Tech info        Domain Admin        Whoisprotection.cc        L4-E-2, Level 4, Enterprise 4, Technology Park Malaysia, Bukit Jalil        +60.389966788/+603.89966788        tec_20759987@whoisprotection.cc
  34. Detection names
  35. No data found
  36. Dynamic analysis summary
  37. Last scan performed on 1 Sep, 2023 19:30 with an anti-virus databases updated on 1 Sep, 2023 09:34

  38. Detects
  39. 0
  40. Total
  41. Malware
  42. 0
  43. Adware and other
  44. 0
  45. Connected host IP
  46. 1
  47. Total
  48. Dangerous
  49. 0
  50. Adware and other
  51. 0
  52. Good
  53. 0
  54. Not categorized
  55. 1
  56. Extracted files
  57. 0
  58. Total
  59. Malware
  60. 0
  61. Adware and other
  62. 0
  63. Clean
  64. 0
  65. Not categorized
  66. 0
  67. Network activities
  68. 613
  69. Total
  70. Dangerous
  71. 0
  72. Adware and other
  73. 0
  74. Good
  75. 613
  76. Not categorized
  77. 0
  78. Dynamic analysis detects
  79. No data found
  80. Triggered network rules
  81. No data found
  82. Connected hosts
  83. Status        IP        ASN        Resolved from domain
  84. Not categorized
  85. 45.207.11.110
  86. 140227        45.207.11.110
  87. HTTP(S) requests
  88. Status        Scheme        URL        IP        Request        Response
  89. Good
  90. https        telgegarm.com/imgs/9.gif       
  91. 45.207.11.110
  92. Method        GET
  93. Request body        —
  94. Code        —
  95. Response body        —
  96. Status        —
  97. Detection names        —
  98. Good
  99. https        telgegarm.com/imgs/7.gif       
  100. 45.207.11.110
  101. Method        GET
  102. Request body        —
  103. Code        206
  104. Response body        d41d8cd98f00b204e9800998ecf8427e
  105. Status        —
  106. Detection names        —
  107. Good
  108. https        telgegarm.com/imgs/8.gif       
  109. 45.207.11.110
  110. Method        GET
  111. Request body        —
  112. Code        —
  113. Response body        —
  114. Status        —
  115. Detection names        —
  116. Good
  117. https        telgegarm.com/imgs/6.gif       
  118. 45.207.11.110
  119. Method        GET
  120. Request body        —
  121. Code        —
  122. Response body        —
  123. Status        —
  124. Detection names        —
  125. Good
  126. https        telgegarm.com/imgs/5.gif       
  127. 45.207.11.110
  128. Method        GET
  129. Request body        —
  130. Code        206
  131. Response body        4b3201d1dcd4296a4e605365589b7803
  132. Status        —
  133. Detection names        —
  134. Good
  135. https        telgegarm.com/imgs/4.gif       
  136. 45.207.11.110
  137. Method        GET
  138. Request body        —
  139. Code        206
  140. Response body        c2b99a976313f966f54cec722e9e7765
  141. Status        —
  142. Detection names        —
  143. Good
  144. https        telgegarm.com/imgs/3.gif       
  145. 45.207.11.110
  146. Method        GET
  147. Request body        —
  148. Code        206
  149. Response body        ad88b6659e3846f2d03e3eaf5d880cd6
  150. Status        —
  151. Detection names        —
  152. Good
  153. https        telgegarm.com/imgs/2.gif       
  154. 45.207.11.110
  155. Method        GET
  156. Request body        —
  157. Code        206
  158. Response body        59bdc571777f8131678cca1c5f05276f
  159. Status        —
  160. Detection names        —
  161. Good
  162. https        telgegarm.com/imgs/1.gif       
  163. 45.207.11.110
  164. Method        GET
  165. Request body        —
  166. Code        206
  167. Response body        2b03893dc4a2cc3c59dfba8d48ed6f33
  168. Status        —
  169. Detection names        —
  170. Good
  171. https        telgegarm.com/imgs/8.gif       
  172. 45.207.11.110
  173. Method        GET
  174. Request body        —
  175. Code        206
  176. Response body        35c664843f5184dac22e9843165cc662
  177. Status        —
  178. Detection names        —
复制代码

aikafans
发表于 2023-9-7 17:50:18 | 显示全部楼层
eset
Snipaste_2023-09-07_17-49-43.jpg
54ss
发表于 2023-9-8 08:20:08 | 显示全部楼层
Web Protection by
Bitdefender
Phishing page blocked for your protection
ht tp://telgegarm.com/
Phishing pages attempt to obtain sensitive information such as login credentials or credit card details by disguising as trustworthy entities. The stolen data can be then used for financial gain.
Im_Zeus
发表于 2023-9-25 22:24:37 | 显示全部楼层
诺顿拦截
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2024-12-16 14:54 , Processed in 0.129553 second(s), 19 queries .

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表