Report - pancakeswap-proclaim.com/

Report Overview

Submitted URL
pancakeswap-proclaim.com/
IP
172.67.138.48
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-26 15:59:43
Access
public
Website Title
Airdrop | PancakeSwap
Final URL
pancakeswap-proclaim.com/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
80

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
pancakeswap-proclaim.com	unknown	unknown	No data	No data	9.2 kB	2.0 MB	104.21.54.105
	unknown				419 B	0 B	0.0.0.0

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-04-26	medium	pancakeswap-proclaim.com/	Crypto/Wallet
2024-04-26	medium	pancakeswap-proclaim.com/	Crypto/Wallet
2024-04-26	medium	pancakeswap-proclaim.com/	Crypto/Wallet
2024-04-26	medium	pancakeswap-proclaim.com/	Crypto/Wallet
2024-04-26	medium	pancakeswap-proclaim.com/	Crypto/Wallet
2024-04-26	medium	pancakeswap-proclaim.com/	Crypto/Wallet
2024-04-26	medium	pancakeswap-proclaim.com/	Crypto/Wallet
2024-04-26	medium	pancakeswap-proclaim.com/	Crypto/Wallet
2024-04-26	medium	pancakeswap-proclaim.com/	Crypto/Wallet
2024-04-26	medium	pancakeswap-proclaim.com/	Crypto/Wallet
2024-04-26	medium	pancakeswap-proclaim.com/	Crypto/Wallet
2024-04-26	medium	pancakeswap-proclaim.com/	Crypto/Wallet
2024-04-26	medium	pancakeswap-proclaim.com/	Crypto/Wallet
2024-04-26	medium	pancakeswap-proclaim.com/	Crypto/Wallet
2024-04-26	medium	pancakeswap-proclaim.com/	Crypto/Wallet
2024-04-26	medium	pancakeswap-proclaim.com/	Crypto/Wallet
2024-04-26	medium	pancakeswap-proclaim.com/	Crypto/Wallet
2024-04-26	medium	pancakeswap-proclaim.com/	Crypto/Wallet
2024-04-26	medium	pancakeswap-proclaim.com/	Crypto/Wallet
2024-04-26	medium	pancakeswap-proclaim.com/	Crypto/Wallet

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-04-26	medium	pancakeswap-proclaim.com	Sinkholed
2024-04-26	medium	pancakeswap-proclaim.com	Sinkholed
2024-04-26	medium	pancakeswap-proclaim.com	Sinkholed
2024-04-26	medium	pancakeswap-proclaim.com	Sinkholed
2024-04-26	medium	pancakeswap-proclaim.com	Sinkholed
2024-04-26	medium	pancakeswap-proclaim.com	Sinkholed
2024-04-26	medium	pancakeswap-proclaim.com	Sinkholed
2024-04-26	medium	pancakeswap-proclaim.com	Sinkholed
2024-04-26	medium	pancakeswap-proclaim.com	Sinkholed
2024-04-26	medium	pancakeswap-proclaim.com	Sinkholed
2024-04-26	medium	pancakeswap-proclaim.com	Sinkholed
2024-04-26	medium	pancakeswap-proclaim.com	Sinkholed
2024-04-26	medium	pancakeswap-proclaim.com	Sinkholed
2024-04-26	medium	pancakeswap-proclaim.com	Sinkholed
2024-04-26	medium	pancakeswap-proclaim.com	Sinkholed
2024-04-26	medium	pancakeswap-proclaim.com	Sinkholed
2024-04-26	medium	pancakeswap-proclaim.com	Sinkholed
2024-04-26	medium	pancakeswap-proclaim.com	Sinkholed
2024-04-26	medium	pancakeswap-proclaim.com	Sinkholed
2024-04-26	medium	pancakeswap-proclaim.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (7)

	URL	Size	First Seen	Last Seen
	unknown	34 B	2023-04-11	2024-05-07
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:16:40 Last Seen2024-05-07 19:34:16 Times Seen76400 Hash 572cb94037fffc2a0a53b465972e15f1 0d679b041a7c1ca45cc99e2d229fc2b86762838d 6487e4bdd0f51bbfd9105810a41755847fdae2c274e2fc325cd22356d7707e35 Loading...

	pancakeswap-proclaim.com/	321 B	2024-03-09	2024-05-07
Pretty URL pancakeswap-proclaim.com/ IP 104.21.54.105 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-03-09 19:19:58 Last Seen2024-05-07 19:08:37 Times Seen51 Hash 5e78f6ff709c0e90846572f7dddf7d7c 5c15252cce40ec2a02ae07c4b945e476e4fd21ec 8925c6befddc9c4ddc0e46c4fa68126e7642c30b6e2833998baa0abc3f380733 Loading...

	pancakeswap-proclaim.com/	276 B	2024-03-09	2024-05-07
Pretty URL pancakeswap-proclaim.com/ IP 104.21.54.105 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-03-09 19:19:58 Last Seen2024-05-07 19:08:37 Times Seen51 Hash 4e23821566161a76cc91aab75d2ccc19 ef2cdd1e14b6aba55d8fd78602caf14300fb6707 315acc0ea9e407d9b3e7063d6f9c45b188e745548d85ae6c36233c5090b551f7 Loading...

	pancakeswap-proclaim.com/	357 B	2024-03-09	2024-05-07
Pretty URL pancakeswap-proclaim.com/ IP 104.21.54.105 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-03-09 19:19:58 Last Seen2024-05-07 19:08:37 Times Seen53 Hash 5dc0205ac390ed310bf9a660c2c9b6ff 24df42fdd4c4ad48f676a081b3eac3457d3f6437 a00cb25f6ff1f9a3bdf6659012f2fd47e136d9e37fc23e944dbd56dda57963d1 Loading...

	pancakeswap-proclaim.com/js/settings.js	8.8 kB	2024-03-31	2024-04-27
Pretty URL pancakeswap-proclaim.com/js/settings.js IP 104.21.54.105 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-31 17:50:50 Last Seen2024-04-27 10:05:58 Times Seen11 Hash 8eeacf38480788469234ccdf8b8b6fb6 14aca6397eae338149c5df7977d6ff8e5e96259c bc474b928670c4e374b558663bd8ec1ab4930d30b49a7ebbb7676ab79cbff1de Loading...

	pancakeswap-proclaim.com/js/webchunk.js	1.4 MB	2024-03-31	2024-04-27
Pretty URL pancakeswap-proclaim.com/js/webchunk.js IP 104.21.54.105 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-31 17:50:51 Last Seen2024-04-27 10:05:58 Times Seen9 Hash fd3713168b2fef74c0061543db88e688 de7f72758d17539a0b6047fc187ddb7e68625e82 0e37c343d8d4d70984bb9c68e4a371764dec1243b65cb79490c1c9cc0cc8feb4 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 0268d5f47b5d8d26caa10fab2d17630d	1.1 MB	2024-01-08	2024-05-04
Pretty Observations First Seen2024-01-08 17:46:07 Last Seen2024-05-04 19:23:56 Times Seen299 Hash 0268d5f47b5d8d26caa10fab2d17630d 48fd4feaca25e166b5195f018d69e00eda4eca3b ff96737bddf403db1ba3ec5c3400fe449d9440115a27866d2dbb6eecca04c66e Loading...

HTTP Transactions (21)

URL IP Response Size

pancakeswap-proclaim.com/56.png

104.21.54.105

200 OK

1.2 kB

URL GET HTTP/3
pancakeswap-proclaim.com/56.png
IP
104.21.54.105:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pancakeswap-proclaim.com/
Certificate
IssuerLet's Encrypt
Subjectpancakeswap-proclaim.com
FingerprintEA:E8:E2:99:40:B9:E3:5A:69:92:62:E0:15:74:5E:6B:8A:32:56:53
ValidityFri, 26 Apr 2024 06:06:55 GMT - Thu, 25 Jul 2024 06:06:54 GMT

File type
PNG image data, 48 x 48, 8-bit colormap, non-interlaced
Size
1.2 kB (1158 bytes)
Hash
241ddcd7ff9541b1839703882d91d404
5b6ada17f54077b5e020d91af0c8ebe99b06bb88
8b7f54e9045d2beca6b4d124b97c84b9c2e84d14c709b6f3b160fae209ff08e0

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /56.png HTTP/1.1
Host: pancakeswap-proclaim.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pancakeswap-proclaim.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 15:59:17 GMT
content-type: image/png
content-length: 1158
last-modified: Fri, 26 Apr 2024 07:01:49 GMT
etag: "486-616fa7a4317fc"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Xbo64nVZW1sj1YJ%2FEtjQmNzP8eqcrT1wb2AIvIiu2MnN%2Ff7yuT65W0dxDvbwFgp8SZqL8USTJcDgcDDfLYX5YqXLPNPOCu%2FIS6XU3J%2B4W%2FktwSHgxirqIJMJ%2FT0L3XUPkCZy9g7D%2BlB6bfs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a7c7765e3456ae-OSL
alt-svc: h3=":443"; ma=86400

pancakeswap-proclaim.com/help.png

104.21.54.105

200 OK

14 kB

URL GET HTTP/3
pancakeswap-proclaim.com/help.png
IP
104.21.54.105:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pancakeswap-proclaim.com/
Certificate
IssuerLet's Encrypt
Subjectpancakeswap-proclaim.com
FingerprintEA:E8:E2:99:40:B9:E3:5A:69:92:62:E0:15:74:5E:6B:8A:32:56:53
ValidityFri, 26 Apr 2024 06:06:55 GMT - Thu, 25 Jul 2024 06:06:54 GMT

File type
PNG image data, 320 x 224, 8-bit colormap, non-interlaced
Size
14 kB (13541 bytes)
Hash
f20fe15a3893fdbb7408f92feee60384
d8c75cd09d91d3d135e8d1b71a732f0172ca1efa
46a6ecce89cf4ee636bb9b2a9e625406f268ce9739e6284e8bc6235d21cbb22f

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /help.png HTTP/1.1
Host: pancakeswap-proclaim.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pancakeswap-proclaim.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 15:59:17 GMT
content-type: image/png
content-length: 13541
last-modified: Fri, 26 Apr 2024 07:01:49 GMT
etag: "34e5-616fa7a42d97c"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dOKbo2XF9We8SZ%2F03NLlHxGnkMk5xgs4Vk%2FIBILeFvxYg0MJU6AkXXJBRtDWF3C90Yoscx49OV4l3Pm96yjM9qFU%2B%2Fvm8ZXnprT5OrFgSsw6OLChUYqTj%2Bmg%2BIAwMYsnyQZjCI3pmxuxHak%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a7c7766e3d56ae-OSL
alt-svc: h3=":443"; ma=86400

pancakeswap-proclaim.com/315e54f7f00446c443d897a492d1a7131722f17f.svg

104.21.54.105

200 OK

20 kB

URL GET HTTP/3
pancakeswap-proclaim.com/315e54f7f00446c443d897a492d1a7131722f17f.svg
IP
104.21.54.105:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pancakeswap-proclaim.com/
Certificate
IssuerLet's Encrypt
Subjectpancakeswap-proclaim.com
FingerprintEA:E8:E2:99:40:B9:E3:5A:69:92:62:E0:15:74:5E:6B:8A:32:56:53
ValidityFri, 26 Apr 2024 06:06:55 GMT - Thu, 25 Jul 2024 06:06:54 GMT

File type
SVG Scalable Vector Graphics image
Size
20 kB (19452 bytes)
Hash
d33659154ef244a4005d5c39096d00c1
315e54f7f00446c443d897a492d1a7131722f17f
ed3375ea03d6ee287ecaacffd07d42d11bca60fe7d8ce1285e0ea7cabb465a61

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /315e54f7f00446c443d897a492d1a7131722f17f.svg HTTP/1.1
Host: pancakeswap-proclaim.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pancakeswap-proclaim.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 15:59:17 GMT
content-type: image/svg+xml
last-modified: Fri, 26 Apr 2024 07:01:49 GMT
etag: W/"50-616fa7a43279c"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XSTSM1SPChAyj8g85I8V431H3rvPrLsMsNOYkLYbs7hYA4%2BVVsLPQQj%2BgDfxKBEm2kUj4or5WMTpKlaMPbP%2BY%2BuoeT8gaTfX%2FcWrsfJbHPvR79B0MSMr3HsacjhL1%2F1HcrixEupRiU5%2Bfak%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a7c7765e3656ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

pancakeswap-proclaim.com/nKKU-Go6G5tXcr5KPxWoVaF5NQ.woff2

104.21.54.105

200 OK

11 kB

URL GET HTTP/3
pancakeswap-proclaim.com/nKKU-Go6G5tXcr5KPxWoVaF5NQ.woff2
IP
104.21.54.105:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pancakeswap-proclaim.com/
Certificate
IssuerLet's Encrypt
Subjectpancakeswap-proclaim.com
FingerprintEA:E8:E2:99:40:B9:E3:5A:69:92:62:E0:15:74:5E:6B:8A:32:56:53
ValidityFri, 26 Apr 2024 06:06:55 GMT - Thu, 25 Jul 2024 06:06:54 GMT

File type
Web Open Font Format (Version 2), TrueType, length 10572, version 1.0
Size
11 kB (10572 bytes)
Hash
8a0a6eaf18306910de756b986bbef9b2
2eeca7d47e919a37d7ba91d4ecfec47da2019721
825df5cc06c5d4e5ace9ecc77ce4e06d83425e333ee13a35b0190df2e6a56d16

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /nKKU-Go6G5tXcr5KPxWoVaF5NQ.woff2 HTTP/1.1
Host: pancakeswap-proclaim.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://pancakeswap-proclaim.com/css2.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 15:59:18 GMT
content-type: font/woff2
content-length: 10572
last-modified: Fri, 26 Apr 2024 07:01:49 GMT
etag: "294c-616fa7a43085c"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=r1gwpLgWoITVKjGMCp%2B2I%2FCWbVk5SV%2FXl0HvBRcHiH9oJ0jS5nEourUTQH84ZrohJrxZ%2FhItSgd6g28BP8zjdY3PUvY7%2BhtMDqSXUfEZ2oihkv3QMptGv50RDSKoBIDJhRRNQvenMsRUEEs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a7c777dfe256ae-OSL
alt-svc: h3=":443"; ma=86400

pancakeswap-proclaim.com/nKKU-Go6G5tXcr5KPxWnVaE.woff2

104.21.54.105

200 OK

20 kB

URL GET HTTP/3
pancakeswap-proclaim.com/nKKU-Go6G5tXcr5KPxWnVaE.woff2
IP
104.21.54.105:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pancakeswap-proclaim.com/
Certificate
IssuerLet's Encrypt
Subjectpancakeswap-proclaim.com
FingerprintEA:E8:E2:99:40:B9:E3:5A:69:92:62:E0:15:74:5E:6B:8A:32:56:53
ValidityFri, 26 Apr 2024 06:06:55 GMT - Thu, 25 Jul 2024 06:06:54 GMT

File type
Web Open Font Format (Version 2), TrueType, length 19572, version 1.0
Size
20 kB (19572 bytes)
Hash
24ad3fea714cb5e100aa16f832531bf3
a5475cd37afb39fc2472ef8391a4a3fd900122eb
7196c3002f08704f9f99de95b6357969a512eaa9a766eee693921dce72927cea

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /nKKU-Go6G5tXcr5KPxWnVaE.woff2 HTTP/1.1
Host: pancakeswap-proclaim.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://pancakeswap-proclaim.com/css2.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 15:59:18 GMT
content-type: font/woff2
content-length: 19572
last-modified: Fri, 26 Apr 2024 07:01:49 GMT
etag: "4c74-616fa7a42c9dc"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kz%2BbfGBR7LSoGQJ%2BuIfU57ua0rYiVoXhy4yxjlSXnfI%2FxD8E3oiQ0zT30scasTgml%2BsKAaE9J%2FV0sEp8pIV7w3aJdioJJFySi%2BXWzExXs7gj1ZbXvr%2FSZDNrQb3VJzr3gG1Q4lQB2TqCiZU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a7c777bfc356ae-OSL
alt-svc: h3=":443"; ma=86400

pancakeswap-proclaim.com/nKKU-Go6G5tXcr5KPxWpVaF5NQ.woff2

104.21.54.105

200 OK

20 kB

URL GET HTTP/3
pancakeswap-proclaim.com/nKKU-Go6G5tXcr5KPxWpVaF5NQ.woff2
IP
104.21.54.105:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pancakeswap-proclaim.com/
Certificate
IssuerLet's Encrypt
Subjectpancakeswap-proclaim.com
FingerprintEA:E8:E2:99:40:B9:E3:5A:69:92:62:E0:15:74:5E:6B:8A:32:56:53
ValidityFri, 26 Apr 2024 06:06:55 GMT - Thu, 25 Jul 2024 06:06:54 GMT

File type
Web Open Font Format (Version 2), TrueType, length 19636, version 1.0
Size
20 kB (19636 bytes)
Hash
22aeb837a470326fe42ab217a37cea2a
46a4d8b6f9fc8f7bd2471be93a63fed40126e415
ae193f732cb0b2f333c561c7fb758f3a83e841a79da350e7030c492d3446fea9

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /nKKU-Go6G5tXcr5KPxWpVaF5NQ.woff2 HTTP/1.1
Host: pancakeswap-proclaim.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://pancakeswap-proclaim.com/css2.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 15:59:18 GMT
content-type: font/woff2
content-length: 19636
last-modified: Fri, 26 Apr 2024 07:01:49 GMT
etag: "4cb4-616fa7a43373c"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gKnOwYk0gZvuglSj9dgnXJaLHl5725xd1UlRj%2BLOTtk1zT6mDeZ%2FkN%2FbHvIwI53mxWKzVxjtFUOIPer8Wgh3%2FstH2Hz1jgl0OKse8%2BEIcTyXuY95vb9fHEb4XXf5BdQC6SbDGzPbhD%2BqlsY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a7c777f81b56ae-OSL
alt-svc: h3=":443"; ma=86400

pancakeswap-proclaim.com/1.png

104.21.54.105

200 OK

1.2 kB

URL GET HTTP/3
pancakeswap-proclaim.com/1.png
IP
104.21.54.105:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pancakeswap-proclaim.com/
Certificate
IssuerLet's Encrypt
Subjectpancakeswap-proclaim.com
FingerprintEA:E8:E2:99:40:B9:E3:5A:69:92:62:E0:15:74:5E:6B:8A:32:56:53
ValidityFri, 26 Apr 2024 06:06:55 GMT - Thu, 25 Jul 2024 06:06:54 GMT

File type
PNG image data, 48 x 48, 8-bit colormap, non-interlaced
Size
1.2 kB (1179 bytes)
Hash
236ecd183d696e37d949d8cf70a2bbd5
8eaa89051b171e1a35e226ca5d2eba058f7a6253
4540f0e53f6ed66e0dea773269c2b0d5698ebb1f7025cafe2358d6b78ac421d6

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /1.png HTTP/1.1
Host: pancakeswap-proclaim.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pancakeswap-proclaim.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 15:59:18 GMT
content-type: image/png
content-length: 1179
last-modified: Fri, 26 Apr 2024 07:01:49 GMT
etag: "49b-616fa7a42d97c"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TJ%2B4CqMJUzbpEim0BtxW%2B%2B%2FT1NkEbKvOV9F%2FxNFgLAJDdwklWhCQLIwsr0f7L3gRH%2BCLZ9Yt7qs%2BG6OO7LEgaZBlBrGMaPBhRQKrxXFP5xViGYUknzy49RB9H2OC7nU1xVq5uJ8vpbrqiVg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a7c778186056ae-OSL
alt-svc: h3=":443"; ma=86400

pancakeswap-proclaim.com/apt.png

104.21.54.105

200 OK

808 B

URL GET HTTP/3
pancakeswap-proclaim.com/apt.png
IP
104.21.54.105:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pancakeswap-proclaim.com/
Certificate
IssuerLet's Encrypt
Subjectpancakeswap-proclaim.com
FingerprintEA:E8:E2:99:40:B9:E3:5A:69:92:62:E0:15:74:5E:6B:8A:32:56:53
ValidityFri, 26 Apr 2024 06:06:55 GMT - Thu, 25 Jul 2024 06:06:54 GMT

File type
PNG image data, 72 x 72, 8-bit colormap, non-interlaced
Size
808 B (808 bytes)
Hash
74168d688d61e90d33aa8c00dbc38d76
9dba71d2bd1ae649f81a36a966faad7049cf705a
260092dadbeeabbf5bc49e2cec9342dcdc2e0a561d9dc24cb290eab6021ec7b4

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /apt.png HTTP/1.1
Host: pancakeswap-proclaim.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pancakeswap-proclaim.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 15:59:18 GMT
content-type: image/png
content-length: 808
last-modified: Fri, 26 Apr 2024 07:01:49 GMT
etag: "328-616fa7a43373c"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=u4vE7qT5xBcwSz5heKFrPkQXu5Jh%2BbpEe5Mw7KBIUQO77W5fjxd7C9uifjP2FbOYcpuT3Vs7SE9Gedotv71u7BkaujKG01dX6AOumzzlELN9EW6%2BaV7uEMhUXjNLJCtPp1A2%2FIkGjRo8yLU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a7c778286f56ae-OSL
alt-svc: h3=":443"; ma=86400

pancakeswap-proclaim.com/js/webchunk.js

104.21.54.105

200 OK

1.1 MB

URL GET HTTP/3
pancakeswap-proclaim.com/js/webchunk.js
IP
104.21.54.105:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pancakeswap-proclaim.com/
Certificate
IssuerLet's Encrypt
Subjectpancakeswap-proclaim.com
FingerprintEA:E8:E2:99:40:B9:E3:5A:69:92:62:E0:15:74:5E:6B:8A:32:56:53
ValidityFri, 26 Apr 2024 06:06:55 GMT - Thu, 25 Jul 2024 06:06:54 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
1.1 MB (1074236 bytes)
Hash
fd3713168b2fef74c0061543db88e688
de7f72758d17539a0b6047fc187ddb7e68625e82
0e37c343d8d4d70984bb9c68e4a371764dec1243b65cb79490c1c9cc0cc8feb4

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/webchunk.js HTTP/1.1
Host: pancakeswap-proclaim.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pancakeswap-proclaim.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 15:59:18 GMT
content-type: text/javascript
last-modified: Fri, 26 Apr 2024 07:01:49 GMT
etag: W/"158ac2-616fa7a43b43c-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bZ4lJq0wfirV2J5%2F6fRsxJ8yQMk0RS6rSHy5aT8ItKSAT9%2BdNmJvru1NFyqU3wn2YwuseMyMtH6yVR7AwUoL3qC2o3gaJQD%2FiMEQaYMitWs1b4%2BL61GdBBOBsu8yobdIWJZ1UBHYv2Brl%2FY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a7c7766e4056ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

pancakeswap-proclaim.com/farmV3MigrationBunny.html

104.21.54.105

200 OK

53 kB

URL GET HTTP/3
pancakeswap-proclaim.com/farmV3MigrationBunny.html
IP
104.21.54.105:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pancakeswap-proclaim.com/
Certificate
IssuerLet's Encrypt
Subjectpancakeswap-proclaim.com
FingerprintEA:E8:E2:99:40:B9:E3:5A:69:92:62:E0:15:74:5E:6B:8A:32:56:53
ValidityFri, 26 Apr 2024 06:06:55 GMT - Thu, 25 Jul 2024 06:06:54 GMT

File type
data
Size
53 kB (53134 bytes)
Hash
d05046f9c56b0138ef296ada1ab61bc8
90dc98c17cb6e88c1752beabc6110984cd4a912a
b507edaed5ca38ca662628fe7c8f41dc0d0304c224e38cd71b7162b803663d92

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /farmV3MigrationBunny.html HTTP/1.1
Host: pancakeswap-proclaim.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pancakeswap-proclaim.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 15:59:17 GMT
content-type: text/html
last-modified: Fri, 26 Apr 2024 07:01:49 GMT
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jfEvkUnHmuBy5%2FA4qL%2Bjj0tdVB9toeOh53PI0O0%2FZEMn%2BgE%2BaYsv21Z4p6IzNP5R5oKN09QYDLQtCF%2F6i3S%2F6ByTyIKCHuQ4yB17vbvFBPYs7tkgBh4kipess5%2BKB4YSFnoaf3ew%2B12m7%2FU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a7c7766e3956ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

pancakeswap-proclaim.com/1101.html

104.21.54.105

200 OK

86 kB

URL GET HTTP/3
pancakeswap-proclaim.com/1101.html
IP
104.21.54.105:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pancakeswap-proclaim.com/
Certificate
IssuerLet's Encrypt
Subjectpancakeswap-proclaim.com
FingerprintEA:E8:E2:99:40:B9:E3:5A:69:92:62:E0:15:74:5E:6B:8A:32:56:53
ValidityFri, 26 Apr 2024 06:06:55 GMT - Thu, 25 Jul 2024 06:06:54 GMT

File type
data
Size
86 kB (86383 bytes)
Hash
04c5af7433fb8e4207c8f568beefbc5a
4c233da8f28aefd44ee8068fe19efe9c2424a1d3
3eaf8f6089fb0963b4e8855d6150c4a277c3ca8031e129950041485172387ce1

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /1101.html HTTP/1.1
Host: pancakeswap-proclaim.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pancakeswap-proclaim.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 15:59:18 GMT
content-type: text/html
last-modified: Fri, 26 Apr 2024 07:01:49 GMT
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PEom2Oq4qEqhWJOa4rBXMyqWBoDQKPuoxVpvBiBgSMnlfQXHn7N05fW9Qd6UufTwK0Jq%2BF%2Byc80q5uYd9wR57M4l2hbwKTQz9YaFMNiczwSjSceBa0vQdbTFKhJwHUSXuHRa5wrkEEDjUrw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a7c778186156ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

pancakeswap-proclaim.com/42161.html

104.21.54.105

200 OK

2.7 kB

URL GET HTTP/3
pancakeswap-proclaim.com/42161.html
IP
104.21.54.105:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pancakeswap-proclaim.com/
Certificate
IssuerLet's Encrypt
Subjectpancakeswap-proclaim.com
FingerprintEA:E8:E2:99:40:B9:E3:5A:69:92:62:E0:15:74:5E:6B:8A:32:56:53
ValidityFri, 26 Apr 2024 06:06:55 GMT - Thu, 25 Jul 2024 06:06:54 GMT

File type
data
Size
2.7 kB (2715 bytes)
Hash
5bc681eea8572c761adbad1bc92394e1
50e5ccf4a7cc7f2d32b0c47b43f9952cadbb9e34
50e774ba5258ef83edb7fe2675afbda25fbb9255ef4a37546afab5170f82219a

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /42161.html HTTP/1.1
Host: pancakeswap-proclaim.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pancakeswap-proclaim.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 15:59:18 GMT
content-type: text/html
last-modified: Fri, 26 Apr 2024 07:01:49 GMT
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=oHqoBZfHU8gDZqYBSBOxxGCJztEEIxEz6cXsGUbvSrsgl6l%2FhCvU5grGGr8sOzBquJaPGiK%2B44fJ0uoNEkR1HlSlvHdshBtrSS1uuo5XYIdZThbuxXAREUC%2BhrVGk5xOXnxjWtBhJtz%2BcV4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a7c778286456ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

pancakeswap-proclaim.com/8453.html

104.21.54.105

200 OK

5.6 kB

URL GET HTTP/3
pancakeswap-proclaim.com/8453.html
IP
104.21.54.105:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pancakeswap-proclaim.com/
Certificate
IssuerLet's Encrypt
Subjectpancakeswap-proclaim.com
FingerprintEA:E8:E2:99:40:B9:E3:5A:69:92:62:E0:15:74:5E:6B:8A:32:56:53
ValidityFri, 26 Apr 2024 06:06:55 GMT - Thu, 25 Jul 2024 06:06:54 GMT

File type
data
Size
5.6 kB (5645 bytes)
Hash
250732553e526ed602c4c7a65dc7baec
b7f2668ea240cf636c400502d25bfc1f9b3bec37
3d3ba36462f58490a45701e99d7765cdc0771cad88d1f8da0162cc74b081eb20

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /8453.html HTTP/1.1
Host: pancakeswap-proclaim.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pancakeswap-proclaim.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 15:59:18 GMT
content-type: text/html
last-modified: Fri, 26 Apr 2024 07:01:49 GMT
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dKYcVIOnJcbYbPdYXO4TTIO2zm8EQEfRkuojmEZnq9XqQEIkm1g%2F2dXkZ6pB9%2FADOeVxOC2a4KoKCbCWiPjCSFmHRFaD3AmETvQXn9Tn4pA50BcpghyPMUzvM8U2f97nenK1K6IQr4aoJeE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a7c778286e56ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

pancakeswap-proclaim.com/css2.css

104.21.54.105

200 OK

2.6 kB

URL GET HTTP/3
pancakeswap-proclaim.com/css2.css
IP
104.21.54.105:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pancakeswap-proclaim.com/
Certificate
IssuerLet's Encrypt
Subjectpancakeswap-proclaim.com
FingerprintEA:E8:E2:99:40:B9:E3:5A:69:92:62:E0:15:74:5E:6B:8A:32:56:53
ValidityFri, 26 Apr 2024 06:06:55 GMT - Thu, 25 Jul 2024 06:06:54 GMT

File type
ASCII text, with very long lines (2650), with no line terminators
Size
2.6 kB (2562 bytes)
Hash
e501c18960e228f06d161c2950ada327
3c72e6070e5b806a3eb4611db6a794f42127d3a6
3cada33c80d32da23ad8fde25162649cee381b461c2f76cc0e3b943880f1ba6c

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /css2.css HTTP/1.1
Host: pancakeswap-proclaim.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pancakeswap-proclaim.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 15:59:17 GMT
content-type: text/css
last-modified: Fri, 26 Apr 2024 07:01:49 GMT
etag: W/"a02-616fa7a4317fc-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Lymx7g8T9pL3E9iesHL%2FnLJAg958H0rH6y7dlm2sdXinQ2ZJkFDCa6daZRKnsFcPPmNeGzsIf4KUzQJw8C03gv8p6gB%2BD75ppfLDgFlVZSL5TR4bA%2FUCvDnCBEjCRdpDdh0xAKuf%2FYNU6kA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a7c7765e2856ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

pancakeswap-proclaim.com/

104.21.54.105

200 OK

666 kB

URL User Request GET HTTP/2
pancakeswap-proclaim.com/
IP
104.21.54.105:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerLet's Encrypt
Subjectpancakeswap-proclaim.com
FingerprintEA:E8:E2:99:40:B9:E3:5A:69:92:62:E0:15:74:5E:6B:8A:32:56:53
ValidityFri, 26 Apr 2024 06:06:55 GMT - Thu, 25 Jul 2024 06:06:54 GMT

File type

Size
666 kB (666377 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: pancakeswap-proclaim.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 26 Apr 2024 15:59:17 GMT
content-type: text/html
last-modified: Fri, 26 Apr 2024 07:01:49 GMT
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=h1D1R3yUORqP0%2FhtUna8FmFM2zEjnmgFf91TgoSUqqVbtTzlrBwSjlktIJ3SvPw6nCwbV2VQqFiLBbM0GUkJpGqFGAlG2cEKraFt8w1D2larcF%2BDH%2BOcObPxjDTDtI6HN5wJmfs5Km%2FvRtE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a7c7699fb1b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

pancakeswap-proclaim.com/59144.html

104.21.54.105

200 OK

4.0 kB

URL GET HTTP/3
pancakeswap-proclaim.com/59144.html
IP
104.21.54.105:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pancakeswap-proclaim.com/
Certificate
IssuerLet's Encrypt
Subjectpancakeswap-proclaim.com
FingerprintEA:E8:E2:99:40:B9:E3:5A:69:92:62:E0:15:74:5E:6B:8A:32:56:53
ValidityFri, 26 Apr 2024 06:06:55 GMT - Thu, 25 Jul 2024 06:06:54 GMT

File type
data
Size
4.0 kB (4007 bytes)
Hash
2d4209504ce742d466b34e37ec6623a3
db87110170b2806bdb6b82bea5fa852ec9736a04
64a243165ac954fad1c06b46066f3cde1b824510ac6b387d497089a542dc88a6

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /59144.html HTTP/1.1
Host: pancakeswap-proclaim.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pancakeswap-proclaim.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 15:59:18 GMT
content-type: text/html
last-modified: Fri, 26 Apr 2024 07:01:49 GMT
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EicT%2Fcixb8EkJygIB9pqxnL%2Bp1zQVgx0Ff38%2BAdhqEJBVvXwopF6DXXG%2BCt20EyjbTrnZ8tKUwgjKyj2U%2Bx3A7qZgfEBiFg8mathkMqQWBPXr18KremYGQeWIx8AUkJqyj1qziqWnlGM7ms%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a7c778286756ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

pancakeswap-proclaim.com/js/settings.js

104.21.54.105

200 OK

8.8 kB

URL GET HTTP/3
pancakeswap-proclaim.com/js/settings.js
IP
104.21.54.105:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pancakeswap-proclaim.com/
Certificate
IssuerLet's Encrypt
Subjectpancakeswap-proclaim.com
FingerprintEA:E8:E2:99:40:B9:E3:5A:69:92:62:E0:15:74:5E:6B:8A:32:56:53
ValidityFri, 26 Apr 2024 06:06:55 GMT - Thu, 25 Jul 2024 06:06:54 GMT

File type
ASCII text, with very long lines (9115), with no line terminators
Size
8.8 kB (8755 bytes)
Hash
dd5fe936d0c802d18c47ccfd990f4ff6
9b73e789fb1a9012123d83b7eced7642d9656620
d33b0debcfa13c61fb156937752811aadf17fa54281af1dc63d0a6a45f984b5b

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/settings.js HTTP/1.1
Host: pancakeswap-proclaim.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pancakeswap-proclaim.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 15:59:17 GMT
content-type: text/javascript
last-modified: Fri, 26 Apr 2024 07:01:49 GMT
etag: W/"2233-616fa7a43373c-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=92%2FGIe%2F%2Fw7MQrduBvLI7TiXRZBE%2BTAYYFgsMYSRLCFXAZ%2BNEbOPBH6eX6SB3LzTPh5FpNte5q4aQxvuVyNxy3kEac1c%2FTyzXKQx%2FhQFKIAK4zl83bkFCmg%2BUiDxGqv3giGksNGcmCUjI1dg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a7c7766e3e56ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

pancakeswap-proclaim.com/nKKZ-Go6G5tXcraVGwA.woff2

104.21.54.105

200 OK

19 kB

URL GET HTTP/3
pancakeswap-proclaim.com/nKKZ-Go6G5tXcraVGwA.woff2
IP
104.21.54.105:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pancakeswap-proclaim.com/
Certificate
IssuerLet's Encrypt
Subjectpancakeswap-proclaim.com
FingerprintEA:E8:E2:99:40:B9:E3:5A:69:92:62:E0:15:74:5E:6B:8A:32:56:53
ValidityFri, 26 Apr 2024 06:06:55 GMT - Thu, 25 Jul 2024 06:06:54 GMT

File type
Web Open Font Format (Version 2), TrueType, length 19388, version 1.0
Size
19 kB (19388 bytes)
Hash
f816f16f297c801aaf01ff43c9fcd563
2e9e2c80bc5aa5f01f75cd486baa1769f53dea5e
ae7b918efe7cd287651e014ed269c923e1a925c8eee1a474ad11184f04659d3e

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /nKKZ-Go6G5tXcraVGwA.woff2 HTTP/1.1
Host: pancakeswap-proclaim.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://pancakeswap-proclaim.com/css2.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 15:59:18 GMT
content-type: font/woff2
content-length: 19388
last-modified: Fri, 26 Apr 2024 07:01:49 GMT
etag: "4bbc-616fa7a43279c"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OnTIfTWye%2BMi46n9yDh7dTTo%2BQLrGdenRkavY%2FP0s%2BzP8YqsDrJ9tSn7Z4rOa9lIG%2F1rLY1tj8mEqAFVbWSfI8WrebKvpMMTRJFfpmyfAOKXdxN0H8dl%2FKWxZjOgdoxsL8FtQeNgBP8Xziw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a7c777afbd56ae-OSL
alt-svc: h3=":443"; ma=86400

pancakeswap-proclaim.com/324.html

104.21.54.105

200 OK

738 B

URL GET HTTP/3
pancakeswap-proclaim.com/324.html
IP
104.21.54.105:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pancakeswap-proclaim.com/
Certificate
IssuerLet's Encrypt
Subjectpancakeswap-proclaim.com
FingerprintEA:E8:E2:99:40:B9:E3:5A:69:92:62:E0:15:74:5E:6B:8A:32:56:53
ValidityFri, 26 Apr 2024 06:06:55 GMT - Thu, 25 Jul 2024 06:06:54 GMT

File type
data
Size
738 B (738 bytes)
Hash
4ec8dea56d0063bb5ea58378c97478e1
e924bc34a6b3acf4b912cc9c7cac780dc832891a
9d75ec3927a060a068f776459efc1c0da95a62a2fdcc403279690cf85b4914de

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /324.html HTTP/1.1
Host: pancakeswap-proclaim.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pancakeswap-proclaim.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 15:59:18 GMT
content-type: text/html
last-modified: Fri, 26 Apr 2024 07:01:49 GMT
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=C%2FvdJZAo40xuAX9Lg9IMQ4fgYRpBtlHNu0uTjgDVPwjCVSsyHv1ZAA9rTyzCOG8LYPhUZpix74xBmhJKbnGuCDZtgZPPmoDyXXpf8YQK6lsiHpcY2zdeu%2Bz6HhT%2BJRRNrFBYYXdbdVU1fyA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a7c778286356ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

localhost:3000/pancakeswapairdrop-event.finance/logo.html

0.0.0.0

0 B

URL GET
localhost:3000/pancakeswapairdrop-event.finance/logo.html
IP
0.0.0.0:0
ASN
#0

Requested by
https://pancakeswap-proclaim.com/

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pancakeswapairdrop-event.finance/logo.html HTTP/1.1
Host: localhost:3000
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

pancakeswap-proclaim.com/7186.png

104.21.54.105

200 OK

20 kB

URL GET HTTP/3
pancakeswap-proclaim.com/7186.png
IP
104.21.54.105:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pancakeswap-proclaim.com/
Certificate
IssuerLet's Encrypt
Subjectpancakeswap-proclaim.com
FingerprintEA:E8:E2:99:40:B9:E3:5A:69:92:62:E0:15:74:5E:6B:8A:32:56:53
ValidityFri, 26 Apr 2024 06:06:55 GMT - Thu, 25 Jul 2024 06:06:54 GMT

File type
PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced
Size
20 kB (19512 bytes)
Hash
bcc5271f9dea2e11df6ec3772b2e55d1
f23595f0bcbfb92e60086b7876184c0d67adf2f8
1fa09467bae3d0f40a53f0e60775ba8a6d04807e450b6c66255c9f8a3b9b51a8

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /7186.png HTTP/1.1
Host: pancakeswap-proclaim.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pancakeswap-proclaim.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 15:59:18 GMT
content-type: image/png
content-length: 19512
last-modified: Fri, 26 Apr 2024 07:01:49 GMT
etag: "4c38-616fa7a4317fc"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5903
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Pw3mALNQUdFU9yL5esDhnENIEYwMeMX7113CUjjzBoDJs0atdr6HT3p4fo90crnpw%2FPwD86JrsV8CwYZHNojlqcDaNB1p8tNH6Z3qZ8IaRNHctOscpzzguDA4bI0zbFiQJLLyNzRouafLn4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a7c77f28c056ae-OSL
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (7)

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Observations

Hash

HTTP Transactions (21)

URL GET HTTP/3

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/3

IP