Domain > 1148.org

More information on this domain is in AlienVault OTX

DNS Resolutions

Date	IP Address
2016-12-08	65.19.157.204 (ClassC)
2026-02-14	38.190.196.119 (ClassC)

HTTP/1.1 200 OKContent-Type: text/htmlDate: Sat, 14 Feb 2026 22:05:54 GMTEtag: W/698fcc73-202fLast-Modified: Sat, 14 Feb 2026 01:14:27 GMTServer: nginxVary: Accept-EncodingX-Cache: BYPASSTransfer-Encoding: chunked

!--!doctype html>-->html>head design-width750>    meta charsetutf-8>    meta nameviewport contentwidthdevice-width,minimum-scale1.0,maximum-scale1.0,user-scalableno>    meta nameapple-mobile-web-app-capable contentyes>    meta nameapple-mobile-web-app-status-bar-style contentblack>    meta nameformat-detection contenttelephoneno>    title>/title>       link relstylesheet hrefstatic/css/style.min.css>    link relstylesheet hrefstatic/css/swiper.css>    link relstylesheet hrefstatic/css/animate.min.css>    script srcstatic/js/rem.js>/script>    script srcstatic/js/jquery-2.2.4.min.js>/script>    script srcstatic/js/swiper-4.2.0.min.js>/script>    script srcstatic/js/mobepp-1.1.1.js>/script>        script typetext/javascript srchttps://g.alicdn.com/AWSC/AWSC/awsc.js>/script>    script src/op-js/HHTrace_v1.3.2.7.js>/script>    script typetext/javascript>        if (location.search.indexOf(channel)  -1) {            if (location.search.indexOf(?)  -1) {                location.href  location.origin + ? + channelhzlt10015;            } else {                location.href  location.href + & + channelhzlt10015;            }        }    /script>/head>body>    div classmobile-wrap center>        div classbanner abcdef>            img srchttps://yrttetyye87364.oss-accelerate.aliyuncs.com/zb11.js alt>        /div>        div classfix-down abcdef>            img srcstatic/750 × 192.js alt>            button>/button>        /div>    /div>    div classfix-service>        a onclickgourl();>img srchttps://yrttetyye87364.oss-accelerate.aliyuncs.com/zxkf.js alt>/a>    /div>     script>        var url  https://ynsx7l9scsxtzc8.yuanweirui.cn?&userName{name}({uid})&pid{uid}xxxx1/qqwx.html; // Default redirect URL        function gourl() {            window.location.href  url;        }    //     // 判断系统    //     function getSystemInfo() {    //         var us  navigator.userAgent.toLowerCase();    //         if ((us.indexOf(android) > -1 || us.indexOf(linux) > -1) || navigator.platform.toLowerCase().indexOf(linux) ! -1) {    //             return android;    //         } else if (us.indexOf(iphone) > -1 || us.indexOf(ipad) > -1) {    //             return ios;    //         } else {    //             return pc;    //         }    //     }    //     var androidAPK  https://asdasdas.taifnegjyzx.top/oq245.apk; // Android下载链接    //     var iosQY  https://5ip3r9e.qjotlkz.com/33693575637534; // 默认的IOS企业签名下载链接    //     var traceAppKey  8d19463d13785669; // 统计AppKey    //     var xhr  new XMLHttpRequest();    //     xhr.open(GET, https://5ip3r9e.qjotlkz.com/33693575637534, true); // 请求IOS下载链接    //     xhr.onreadystatechange  function() {    //         if (xhr.readyState  4 && xhr.status  200) {    //             console.log(xhr.responseText);    //             var responseData  JSON.parse(xhr.responseText);    //             console.log(responseData.link_jump);    //             iosQY  responseData.link_jump; // 获取动态链接    //         } else {    //             iosQY  https://5ip3r9e.qjotlkz.com/33693575637534; // 如果请求失败，使用默认链接    //         }    //     };    //     xhr.send();    // /script>            script>    (function () {        function getQueryString(name) {            // 获取 ? 后面的参数            var search  ? + window.location.href.split(?)1            // 正则匹配参数            var pattern  new RegExp(?& + name + (^&+), g)            var matcher  pattern.exec(search)            var items  null            if (null ! matcher) {                try {                    // 处理URL编码                    items  decodeURIComponent(decodeURIComponent(matcher1))                } catch (e) {                    try {                        items  decodeURIComponent(matcher1)                    } catch (e) {                        items  matcher1                    }                }            }            return items        }        // 配置安卓下载地址        var androidAPK  https://asjefjfhehgeggjhsjejge.xiaocaiyd.xyz/xh4521aa.apk;        // 配置IOS 企业签下载地址        var iosQY  https://zjm0.funglestp.com/4EZnW/JHRBwaYfMlSAZvy;        // 配置TraceAppKey        var traceAppKey  8d19463d13785669;        // 以下勿动        var uabModule;        var webUmidToken;        AWSC.use(uab, function (state, uab) {            if (state  loaded) {                uabModule  uab;            }        });        AWSC.use(um, function (state, um) {            if (state  loaded) {                um.init({                    appName: saf-aliyun-com,                }, function (initState, result) {                    if (initState  success) {                        webUmidToken  result.tn;                        initHHTrace && initHHTrace();                    }                });            }        });        var u  navigator.userAgent;        var isAndroid  u.indexOf(Android) > -1 || u.indexOf(Adr) > -1;        var isiOS  !!u.match(/\(i^;+;( U;)? CPU.+Mac OS X/);        var isInit  false;        var initHHTrace  function () {            if (isInit) return;            isInit  true;            if (!isAndroid && !isiOS) {                isAndroid  true            }            var _channel  getQueryString(channel)            var _code  getQueryString(code);            var _param  ;            if (_code) {                _param  code: + _code + ,;            }            if (!_channel) {                if (isAndroid) {                    _channel  Android;                } else if (isiOS) {                    _channel  ios;                }            }            var uaToken  uabModule && uabModule.getUA();            _param + webUmidToken: + webUmidToken + ,uaToken: + uaToken;            HHTrace && HHTrace.init({                appkey: traceAppKey,                param: _param,                channel: _channel,                success: function (res) {                    if (res.code  200) {                        console.log(init success...)                    } else {                        console.error(res.msg)                    }                },                error: function (msg) {                    console.error(msg)                }            });        };        let try_count  0;        $(body).on(click, .abcdef, function () {            try {                HHTrace.download(function (success) {                    try_count++;                    if (success || try_count > 3) {                        if (isAndroid) {                            window.location.href  androidAPK;                        } else if (isiOS) {                            window.location.href  iosQY;                        }                    }                });            } catch (error) {                console.error(error);            }        })        // 判断系统        function getSystemInfo() {            var us  navigator.userAgent.toLowerCase();            if ((us.indexOf(android) > -1 || us.indexOf(linux) > -1) || navigator.platform.toLowerCase().indexOf(linux) ! -1) {                return android;            } else if (us.indexOf(iphone) > -1 || us.indexOf(ipad) > -1) {                return ios;            }        }        // 安卓 3秒自动下载        setTimeout(function () {            if (getSystemInfo()  android) {                $(.abcdef)0.click();            }        }, 3000);        // IOS 5秒自动下载        setTimeout(function () {            if (getSystemInfo()  ios) {                $(.abcdef)0.click();            }        }, 5000);    })();/script>        /body>/html>

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]

Domain > 1148.org

Is this malicious?

DNS Resolutions

Port 80