Warning! We are currently in recovery mode. The complete archive is not available.

Sample details: 2679df898cc15a7030c7c33b55b38472 --

Hashes
MD5: 2679df898cc15a7030c7c33b55b38472
SHA1: 9a1e55491da1ceb1286665a0242900a942cac3c7
SHA256: 1b5d5f01698e956409ab0b0250c7bf5fa5e67f7b1aab7eb85efbad33a14e0b4c
SSDEEP: 48:/IOoKyJDQrYpYA1ANbmr1f9SD6XyADs8guuN+6ulf5:/doKYDuY3A41yss8RCyf5
Details
File Type: HTML
Yara Hits
Source
http://birim.org/x5s8d
Strings
		<!DOCTYPE HTML>
<html lang="en-US">
<head>
  <meta charset="UTF-8" />
  <meta http-equiv="Content-Type" content="text/html; charset=UTF-8" />
  <meta name="robots" content="noindex, nofollow" />
  <meta name="viewport" content="width=device-width, initial-scale=1, maximum-scale=1" />
  <meta name="robots" content="noindex">
  <script type="text/javascript">
	window.onload = function() {
	  netrix_form();
	function netrix_form()
		delete_cookie("__nhlw");
		delete_cookie("__nhuid");
		setCookie('__nhuid', '539dcce5ddaf001b00c7013fdf2c2d9d', 1);
		var nhuid = getCookie("__nhuid");
		if (nhuid)
			setTimeout(function(){ 
				document.getElementById("ntrx_frm").submit();
			}, 1);
	function getRndInteger(min, max) {
    	return Math.floor(Math.random() * (max - min)) + min;
	function getCookie(cname) {
	    var name = cname + "=";
	    var decodedCookie = decodeURIComponent(document.cookie);
	    var ca = decodedCookie.split(';');
	    for(var i = 0; i <ca.length; i++) {
	        var c = ca[i];
	        while (c.charAt(0) == ' ') {
	            c = c.substring(1);
	        }
	        if (c.indexOf(name) == 0) {
	            return c.substring(name.length, c.length);
	        }
	    }
	    return "";
	function setCookie(cname, cvalue, exdays) {
	    var d = new Date();
	    d.setTime(d.getTime() + (exdays*24*60*60*1000));
	    var expires = "expires="+ d.toUTCString();
	    document.cookie = cname + "=" + cvalue + ";" + expires + ";path=/";
	function delete_cookie( name ) {
	  document.cookie = name + '=; expires=Thu, 01 Jan 1970 00:00:01 GMT;';
</script>
</head>
<body>
	<img src="/ntrx/load/l.png"/>
	<form action="/ntrx/l/jslo" method="GET" accept-charset="utf-8" id="ntrx_frm">
		<input type="hidden" name="js_lo" value="241e954632868d21edf6e7e603c2388c"/>
		<input type="hidden" name="js_answer" value="" id="js_answer"/>
	</form>
</body>
</html>