No Security Risks Detected
This domain appears to be safe and secure
100%
Score
Disclaimer: This assessment is based on automated analysis of publicly available information. Results are for informational purposes only. For critical applications, consult security professionals.
Scan Information
Last checked:August 15, 2025 23:27:03
Target URL:https://valhalla.nextron-systems.com/
Scan Complete
Refresh page after 10 minutes
for updated results
Page Information
Target URL
https://valhalla.nextron-systems.com/
Page Title
Valhalla YARA Rules - Valhalla
Status
Active
Host Information
Domain
valhalla.nextron-systems.com
Server
nginx
Country
Germany
IP Address
185.241.152.180
ASN Information
214401
MAINCUBES-AS
Technologies
Chart.js
JavaScript graphics
Nginx
Web servers
SSL Certificate
HTTPS Enabled
Secure
Certificate Issuer
N/A
Valid From
2025-08-14 23:27:11
Valid Until
2026-08-15 23:27:11
Subject Name
valhalla.nextron-systems.com
Performance Statistics
17
Total Requests
3
Domains
3
IP Addresses
406.61 KB
Transfer Size
Content Size502.72 KB
HTTP Headers
Connection
keep-alive
Content-Encoding
gzip
Content-Type
text/html; charset=utf-8
Date
Fri, 15 Aug 2025 23:27:11 GMT
Server
nginx
Transfer-Encoding
chunked
6 headers detected
Technology Stack Analysis
Chart.js
JavaScript graphics
Chart.js is an open-source JavaScript library that allows you to draw different types of charts by using the HTML5 canvas element.
Nginx
Web serversReverse proxies
Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.
External Links 81
Untitled Link
www.welivesecurity.com
Target URL
https://www.welivesecurity.com/en/eset-research/update-winrar-tools-now-romcom-and-others-exploiting-zero-day-vulnerability/#the-discovery-of-cve-2025-8088
Untitled Link
x.com
Target URL
https://x.com/abuse_ch/status/1953451934863520119
Untitled Link
any.run
Target URL
https://any.run/cybersecurity-blog/pylangghost-malware-analysis/
Untitled Link
www.trendmicro.com
Target URL
https://www.trendmicro.com/en_sg/research/25/d/earth-kurma-apt-campaign.html
Untitled Link
www.malwation.com
Target URL
https://www.malwation.com/blog/technical-analysis-of-a-stealth-java-loader-used-in-phishing-campaigns-targeting-turkiye
Untitled Link
github.com
Target URL
https://github.com/olafhartong/BamboozlEDR
Untitled Link
research.checkpoint.com
Target URL
https://research.checkpoint.com/2025/before-toolshell-exploring-storm-2603s-previous-ransomware-operations/
Untitled Link
wiki.chainreactors.red
Target URL
https://wiki.chainreactors.red/IoM/manual/implant/
Untitled Link
black-hat-zig.cx330.tw
Target URL
https://black-hat-zig.cx330.tw/Advanced-Malware-Techniques/Process-Injection/Mapping-Injection/remote_mapping_injection/#remotemapinject-function
Untitled Link
www.genians.co.kr
Target URL
https://www.genians.co.kr/en/blog/threat_intelligence/rokrat_shellcode_steganographic
Untitled Link
dmpdump.github.io
Target URL
https://dmpdump.github.io/posts/CobaltStrike_HK/
Untitled Link
www.virustotal.com
Target URL
https://www.virustotal.com/gui/search/%2523mal_guloader_shellcode_oct22_3/comments
Untitled Link
www.virustotal.com
Target URL
https://www.virustotal.com/gui/search/%2523susp_mal_exfil_stealer_output_characteristics_sep22_1/comments
Untitled Link
www.virustotal.com
Target URL
https://www.virustotal.com/gui/search/%2523susp_py_obfusc_berserker_indicators_dec22_1/comments
Untitled Link
www.virustotal.com
Target URL
https://www.virustotal.com/gui/search/%2523susp_bat_obfusc_apr23_2/comments
Untitled Link
www.virustotal.com
Target URL
https://www.virustotal.com/gui/search/%2523susp_encrypted_zip_suspicious_contents_jul23_1_file/comments
Untitled Link
www.virustotal.com
Target URL
https://www.virustotal.com/gui/search/%2523susp_pua_rustdesk_apr23_1/comments
Untitled Link
www.virustotal.com
Target URL
https://www.virustotal.com/gui/search/%2523susp_bat_ps1_combo_jan23_2/comments
Untitled Link
www.virustotal.com
Target URL
https://www.virustotal.com/gui/search/%2523susp_js_obfusc_feb23_2/comments
Untitled Link
www.virustotal.com
Target URL
https://www.virustotal.com/gui/search/%2523susp_wevtutil_clearlogs_sep22_1/comments
Untitled Link
www.virustotal.com
Target URL
https://www.virustotal.com/gui/search/%2523susp_cryptbase_pe_info_not_cryptbase_feb23/comments
Untitled Link
www.virustotal.com
Target URL
https://www.virustotal.com/gui/search/%2523susp_obfusc_py_loader_jun23_1/comments
Untitled Link
www.virustotal.com
Target URL
https://www.virustotal.com/gui/search/%2523susp_webshell_obfusc_indicators_aug22_1/comments
Untitled Link
www.virustotal.com
Target URL
https://www.virustotal.com/gui/search/%2523susp_url_split_jun23/comments
Untitled Link
www.virustotal.com
Target URL
https://www.virustotal.com/gui/search/%2523susp_obfusc_js_atob_anomalies_feb23/comments
Untitled Link
www.virustotal.com
Target URL
https://www.virustotal.com/gui/search/%2523pua_ruskdesk_remote_desktop_jun23_1/comments
Untitled Link
www.virustotal.com
Target URL
https://www.virustotal.com/gui/search/%2523susp_js_redirector_mar23/comments
Untitled Link
www.virustotal.com
Target URL
https://www.virustotal.com/gui/search/%2523susp_js_executing_powershell_apr23/comments
Untitled Link
www.virustotal.com
Target URL
https://www.virustotal.com/gui/search/%2523susp_py_reverse_shell_indicators_jan23_1/comments
Untitled Link
www.virustotal.com
Target URL
https://www.virustotal.com/gui/search/%2523susp_obfusc_js_execute_base64_mar23/comments
Untitled Link
www.virustotal.com
Target URL
https://www.virustotal.com/gui/search/%2523susp_encoded_registry_key_paths_sep22_1/comments
Untitled Link
www.virustotal.com
Target URL
https://www.virustotal.com/gui/search/%2523susp_pe_ok_ru_url_jun23/comments
Untitled Link
www.virustotal.com
Target URL
https://www.virustotal.com/gui/search/%2523hktl_clash_tunneling_tool_aug22_2/comments
Untitled Link
www.virustotal.com
Target URL
https://www.virustotal.com/gui/search/%2523susp_py_obfusc_hyperion_aug22_1/comments
Untitled Link
www.virustotal.com
Target URL
https://www.virustotal.com/gui/search/%2523susp_bat_obfusc_apr23_1/comments
Untitled Link
www.virustotal.com
Target URL
https://www.virustotal.com/gui/search/%2523susp_ransom_note_aug22/comments
Untitled Link
www.virustotal.com
Target URL
https://www.virustotal.com/gui/search/%2523susp_obfusc_js_atob_anomalies_feb23_2/comments
Untitled Link
www.virustotal.com
Target URL
https://www.virustotal.com/gui/search/%2523susp_bat_ps1_contents_jan23_1/comments
Untitled Link
www.virustotal.com
Target URL
https://www.virustotal.com/gui/search/%2523susp_obfusc_ps1_formatstrings_dec22_1/comments
Untitled Link
www.virustotal.com
Target URL
https://www.virustotal.com/gui/search/%2523susp_bat_obfusc_apr23_4/comments
Untitled Link
www.virustotal.com
Target URL
https://www.virustotal.com/gui/search/%2523susp_obfusc_bat_dec22_1/comments
Untitled Link
www.virustotal.com
Target URL
https://www.virustotal.com/gui/file/2b3c365694ef19933cf4c2514f2a461c2f1c241d48a3a2768ea568ddc9b29b87/detection
Untitled Link
www.virustotal.com
Target URL
https://www.virustotal.com/gui/file/6cfec7b265bc072435979706bb11ca3d553feac1d2a36e37d436d150e6c5ca94/detection
Untitled Link
www.virustotal.com
Target URL
https://www.virustotal.com/gui/file/e801ebde53b00885bd9060ce03cd74c6c0194c7ef0a22708fcb955a30145581d/detection
Untitled Link
www.virustotal.com
Target URL
https://www.virustotal.com/gui/file/b70245ff6e3e2ea5e4fdce8fb9de8b14830141402f381ab907b64c4771ce43c9/detection
Untitled Link
www.virustotal.com
Target URL
https://www.virustotal.com/gui/file/97f621f04da1861f97fdaccdbab34dc80342509881ad9f64a4b2b46c173bb7f1/detection
Untitled Link
www.virustotal.com
Target URL
https://www.virustotal.com/gui/file/24fa8468636d7cd3ed31a4c9f301e5d671170727ffcf3b775721b42fab5bd060/detection
Untitled Link
www.virustotal.com
Target URL
https://www.virustotal.com/gui/file/5b0ead611000bc9ebc74f73a58e0ce02255b9ddb3443d69aabfa9a9bf91a0573/detection
Untitled Link
www.virustotal.com
Target URL
https://www.virustotal.com/gui/file/ecd0b736002bce82d025007ff0d72d60b92d30779bf4c05c0d637b5999b968a2/detection
Untitled Link
www.virustotal.com
Target URL
https://www.virustotal.com/gui/file/b3063bcabd46e9fc5d37950a27b617520abaed0f45e559b9fba285f7bddb09c2/detection
Untitled Link
www.virustotal.com
Target URL
https://www.virustotal.com/gui/file/223d3f942cc6c31de093dc4f9e171d0758b221b587e92a694c4c5795458b1054/detection
Untitled Link
www.virustotal.com
Target URL
https://www.virustotal.com/gui/file/daf55385db571916cc4ae336cea25089f2fba7732af61f2509d5687777ba49e2/detection
Untitled Link
www.virustotal.com
Target URL
https://www.virustotal.com/gui/file/869ff54dfe86ebf230ca1e3872224e1cb7165cf694027d3c89a6111c91060843/detection
Untitled Link
www.virustotal.com
Target URL
https://www.virustotal.com/gui/file/f9dc7495194503c49462010cf4489f88365ddb22e019eb6bbfd20ca9d6f00993/detection
Untitled Link
blog.talosintelligence.com
Target URL
https://blog.talosintelligence.com/talos-ir-ransomware-engagements-and-the-significance-of-timeliness-in-incident-response/
Untitled Link
www.huntress.com
Target URL
https://www.huntress.com/blog/the-unwanted-guest
Untitled Link
unit42.paloaltonetworks.com
Target URL
https://unit42.paloaltonetworks.com/microsoft-sharepoint-cve-2025-49704-cve-2025-49706-cve-2025-53770/
Untitled Link
vipre.com
Target URL
https://vipre.com/blog/svg-phishing-attacks-the-new-trick-in-the-cybercriminals-playbook/
Untitled Link
research.eye.security
Target URL
https://research.eye.security/sharepoint-under-siege/
Untitled Link
www.linkedin.com
Target URL
https://www.linkedin.com/posts/mauricefielenbach_sharepoint-incidentresponse-windowssecurity-activity-7352653907363303425-bL2f
Untitled Link
thedfirreport.com
Target URL
https://thedfirreport.com/2023/10/30/netsupport-intrusion-results-in-domain-compromise/
Untitled Link
research.splunk.com
Target URL
https://research.splunk.com/endpoint/395ed5fe-ad13-4366-9405-a228427bdd91/
Untitled Link
learn.microsoft.com
Target URL
https://learn.microsoft.com/en-us/powershell/module/defender/set-mppreference
Untitled Link
learn.microsoft.com
Target URL
https://learn.microsoft.com/de-de/sysinternals/downloads/adexplorer
Untitled Link
github.com
Target URL
https://github.com/TheRavenFile/HOSTNAMES
Untitled Link
research.splunk.com
Target URL
https://research.splunk.com/endpoint/76406a0f-f5e0-4167-8e1f-337fdc0f1b0c/
Untitled Link
x.com
Target URL
https://x.com/russianpanda9xx/status/1940831134759506029
Untitled Link
labs.yarix.com
Target URL
https://labs.yarix.com/2025/06/doppelganger-an-advanced-lsass-dumper-with-process-cloning/
Untitled Link
github.com
Target URL
https://github.com/vari-sh/RedTeamGrimoire/tree/b5e7635d34db6e1f0398d8847e8f293186e947c5/HollowReaper
Untitled Link
mrd0x.com
Target URL
https://mrd0x.com/filefix-clickfix-alternative/
Untitled Link
cve.mitre.org
Target URL
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-49144
Untitled Link
www.synacktiv.com
Target URL
https://www.synacktiv.com/publications/ntlm-reflection-is-dead-long-live-ntlm-reflection-an-in-depth-analysis-of-cve-2025
Untitled Link
googleprojectzero.blogspot.com
Target URL
https://googleprojectzero.blogspot.com/2021/10/using-kerberos-for-authentication-relay.html
Untitled Link
dfir.ch
Target URL
https://dfir.ch/posts/search-ms_protocol_handler/
Untitled Link
x.com
Target URL
https://x.com/Wietze/status/1932030614418424131
https://docs.tenable.com/nessus/Content/CredentialedChecksOnWindows.htm
docs.tenable.com
Target URL
https://docs.tenable.com/nessus/Content/CredentialedChecksOnWindows.htm
91990
www.tenable.com
Target URL
https://www.tenable.com/plugins/nessus/91990
https://de.tenable.com/blog/threat-hunting-with-yara-and-nessus
de.tenable.com
Target URL
https://de.tenable.com/blog/threat-hunting-with-yara-and-nessus
https://github.com/carbonblack/cb-yara-connector
github.com
Target URL
https://github.com/carbonblack/cb-yara-connector
https://www.fireeye.com/blog/products-and-services/2018/12/detect-and-block-email-threats-with-custom-yara-rules.html
www.fireeye.com
Target URL
https://www.fireeye.com/blog/products-and-services/2018/12/detect-and-block-email-threats-with-custom-yara-rules.html
THOR
www.nextron-systems.com
Target URL
https://www.nextron-systems.com/thor/
Requested Domains 3
fonts.googleapis.com
Unknown Type
No category information available
fonts.gstatic.com
Unknown Type
No category information available
valhalla.nextron-systems.com
Subdomain
No category information available