Warning! We are currently in recovery mode. The complete archive is not available.

Sample details: e0cb76b222c7aefbe858f05a2c51422d --

Hashes
MD5: e0cb76b222c7aefbe858f05a2c51422d
SHA1: 3bab1dba8866069301fa7e11b7869619081da6f9
SHA256: b52ce40e8bd19aa6050defe254a9199d90d75fe8381f2a99f0c68332bea1597a
SSDEEP: 48:/IOoKPM+JDQrYpYA1ANbmr1f9SD6XyADs8guuN+6uu+5:/doKnDuY3A41yss8RCx+5
Details
File Type: HTML
Yara Hits
Source
http://birim.org/6ee3sl2n
Strings
		<!DOCTYPE HTML>
<html lang="en-US">
<head>
  <meta charset="UTF-8" />
  <meta http-equiv="Content-Type" content="text/html; charset=UTF-8" />
  <meta name="robots" content="noindex, nofollow" />
  <meta name="viewport" content="width=device-width, initial-scale=1, maximum-scale=1" />
  <meta name="robots" content="noindex">
  <script type="text/javascript">
	window.onload = function() {
	  netrix_form();
	function netrix_form()
		delete_cookie("__nhlw");
		delete_cookie("__nhuid");
		setCookie('__nhuid', '391bf97af84d5319aaec75703e985588', 1);
		var nhuid = getCookie("__nhuid");
		if (nhuid)
			setTimeout(function(){ 
				document.getElementById("ntrx_frm").submit();
			}, 1);
	function getRndInteger(min, max) {
    	return Math.floor(Math.random() * (max - min)) + min;
	function getCookie(cname) {
	    var name = cname + "=";
	    var decodedCookie = decodeURIComponent(document.cookie);
	    var ca = decodedCookie.split(';');
	    for(var i = 0; i <ca.length; i++) {
	        var c = ca[i];
	        while (c.charAt(0) == ' ') {
	            c = c.substring(1);
	        }
	        if (c.indexOf(name) == 0) {
	            return c.substring(name.length, c.length);
	        }
	    }
	    return "";
	function setCookie(cname, cvalue, exdays) {
	    var d = new Date();
	    d.setTime(d.getTime() + (exdays*24*60*60*1000));
	    var expires = "expires="+ d.toUTCString();
	    document.cookie = cname + "=" + cvalue + ";" + expires + ";path=/";
	function delete_cookie( name ) {
	  document.cookie = name + '=; expires=Thu, 01 Jan 1970 00:00:01 GMT;';
</script>
</head>
<body>
	<img src="/ntrx/load/l.png"/>
	<form action="/ntrx/l/jslo" method="GET" accept-charset="utf-8" id="ntrx_frm">
		<input type="hidden" name="js_lo" value="21dbccea180427e30e3dce4e55ce4e56"/>
		<input type="hidden" name="js_answer" value="" id="js_answer"/>
	</form>
</body>
</html>