Warning! We are currently in recovery mode. The complete archive is not available.

Sample details: 372c3a3e7abcd54c1f85118b48e7a655 --

Hashes
MD5: 372c3a3e7abcd54c1f85118b48e7a655
SHA1: 2057f10287fb6aa25e19965897ec5a29f00a4e67
SHA256: 2007659f0ccfe18b45d0712e8a7d9c6b8123425990b0adb41bf2a9801062d3d8
SSDEEP: 48:/IOoK1JDQrYpYA1ANbmr1f9SD6XyADs8guuN+6uAR15:/doKvDuY3A41yss8RCX5
Details
File Type: HTML
Yara Hits
Source
http://birim.org/erg7cbr
Strings
		<!DOCTYPE HTML>
<html lang="en-US">
<head>
  <meta charset="UTF-8" />
  <meta http-equiv="Content-Type" content="text/html; charset=UTF-8" />
  <meta name="robots" content="noindex, nofollow" />
  <meta name="viewport" content="width=device-width, initial-scale=1, maximum-scale=1" />
  <meta name="robots" content="noindex">
  <script type="text/javascript">
	window.onload = function() {
	  netrix_form();
	function netrix_form()
		delete_cookie("__nhlw");
		delete_cookie("__nhuid");
		setCookie('__nhuid', '23de837572b72e864f96eb4272dd00cb', 1);
		var nhuid = getCookie("__nhuid");
		if (nhuid)
			setTimeout(function(){ 
				document.getElementById("ntrx_frm").submit();
			}, 1);
	function getRndInteger(min, max) {
    	return Math.floor(Math.random() * (max - min)) + min;
	function getCookie(cname) {
	    var name = cname + "=";
	    var decodedCookie = decodeURIComponent(document.cookie);
	    var ca = decodedCookie.split(';');
	    for(var i = 0; i <ca.length; i++) {
	        var c = ca[i];
	        while (c.charAt(0) == ' ') {
	            c = c.substring(1);
	        }
	        if (c.indexOf(name) == 0) {
	            return c.substring(name.length, c.length);
	        }
	    }
	    return "";
	function setCookie(cname, cvalue, exdays) {
	    var d = new Date();
	    d.setTime(d.getTime() + (exdays*24*60*60*1000));
	    var expires = "expires="+ d.toUTCString();
	    document.cookie = cname + "=" + cvalue + ";" + expires + ";path=/";
	function delete_cookie( name ) {
	  document.cookie = name + '=; expires=Thu, 01 Jan 1970 00:00:01 GMT;';
</script>
</head>
<body>
	<img src="/ntrx/load/l.png"/>
	<form action="/ntrx/l/jslo" method="GET" accept-charset="utf-8" id="ntrx_frm">
		<input type="hidden" name="js_lo" value="8b81e50005f46900e13e9f07c3945167"/>
		<input type="hidden" name="js_answer" value="" id="js_answer"/>
	</form>
</body>
</html>