Report - marketing.multiplica.com/click.html?x=a62e&lc=Wgd&mc=J&s=Nfe&u=i&z=HNYhAe0&

Report Overview

Submitted URL
marketing.multiplica.com/click.html?x=a62e&lc=Wgd&mc=J&s=Nfe&u=i&z=HNYhAe0&
IP
104.160.73.162
ASN
#46469 GETRESPONSE-IMPLIX
Submitted
2024-04-17 10:59:58
Access
public
Website Title
Google Drive - Can't download file
Final URL
drive.usercontent.google.com/download?id=1kMA7DNmmNb66OqORpUFahfw24l9xCdjQ&export=download
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
marketing.multiplica.com	unknown	unknown	No data	No data	529 B	1.4 kB	104.160.73.162
drive.usercontent.google.com	unknown	1997-09-15	2023-07-20	2024-04-16	613 B	3.8 kB	216.58.207.193
ssl.gstatic.com	unknown	2008-02-11	2012-05-23	2024-04-16	465 B	2.4 kB	142.250.74.163
drive.google.com	321	1997-09-15	2012-10-03	2024-04-16	597 B	3.3 kB	142.250.74.142

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (0)

HTTP Transactions (4)

	URL	IP	Response	Size
	marketing.multiplica.com/click.html?x=a62e&lc=Wgd&mc=J&s=Nfe&u=i&z=HNYhAe0&	104.160.73.162	302 Found	0 B
URL User Request GET HTTP/2 marketing.multiplica.com/click.html?x=a62e&lc=Wgd&mc=J&s=Nfe&u=i&z=HNYhAe0& IP 104.160.73.162:443 ASN #46469 GETRESPONSE-IMPLIX Certificate IssuerLet's Encrypt Subjectmarketing.multiplica.com FingerprintF6:5B:23:A7:68:A6:A3:EF:1C:78:D9:AD:42:D1:05:0B:67:B5:6F:F7 ValidityWed, 03 Apr 2024 18:53:38 GMT - Tue, 02 Jul 2024 18:53:37 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /click.html?x=a62e&lc=Wgd&mc=J&s=Nfe&u=i&z=HNYhAe0& HTTP/1.1 Host: marketing.multiplica.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 302 Found date: Wed, 17 Apr 2024 10:59:34 GMT content-type: text/html; charset=UTF-8 strict-transport-security: max-age=63072000; includeSubdomains content-security-policy: frame-ancestors 'self' https://.getresponse.com x-content-type-options: nosniff referrer-policy: strict-origin-when-cross-origin feature-policy: accelerometer ; ambient-light-sensor ; autoplay ; camera ; encrypted-media ; fullscreen ; geolocation ; gyroscope ; magnetometer ; microphone ; midi ; payment ; picture-in-picture ; speaker ; sync-xhr ; usb ; vr set-cookie: tms=a%3A1%3A%7Bi%3A0%3Ba%3A6%3A%7Bi%3A0%3Bs%3A2%3A%22pI%22%3Bi%3A1%3Bs%3A2%3A%22Ra%22%3Bi%3A2%3Bs%3A3%3A%22Nfe%22%3Bi%3A3%3Bs%3A4%3A%22a62e%22%3Bi%3A4%3Bs%3A3%3A%22Wgd%22%3Bi%3A5%3Bs%3A1%3A%22i%22%3B%7D%7D; expires=Thu, 17 Apr 2025 00:00:00 GMT; Max-Age=31496426; path=/; domain=marketing.multiplica.com tmc=a%3A1%3A%7Bi%3A0%3Ba%3A4%3A%7Bi%3A0%3Bs%3A2%3A%22pI%22%3Bi%3A1%3Bs%3A3%3A%22Nfe%22%3Bi%3A2%3Bs%3A3%3A%22Wgd%22%3Bi%3A3%3Bs%3A4%3A%22a62e%22%3B%7D%7D; expires=Thu, 17 Apr 2025 00:00:00 GMT; Max-Age=31496426; path=/; domain=marketing.multiplica.com xsid=a62e_Nfe; expires=Thu, 17 Apr 2025 00:00:00 GMT; Max-Age=31496426; path=/; domain=marketing.multiplica.com; secure; HttpOnly; SameSite=None location: https://drive.google.com/uc?export=download&id=1kMA7DNmmNb66OqORpUFahfw24l9xCdjQ X-Firefox-Spdy: h2

	drive.usercontent.google.com/download?id=1kMA7DNmmNb66OqORpUFahfw24l9xCdjQ&export=download	216.58.207.193	200 OK	1.8 kB
URL User Request GET HTTP/2 drive.usercontent.google.com/download?id=1kMA7DNmmNb66OqORpUFahfw24l9xCdjQ&export=download IP 216.58.207.193:443 ASN #15169 GOOGLE Certificate IssuerGoogle Trust Services LLC Subject.usercontent.google.com FingerprintAF:CB:68:A0:F0:4E:05:26:7C:36:5E:B6:82:B4:4B:0A:74:F6:97:1B ValidityMon, 04 Mar 2024 07:18:04 GMT - Mon, 27 May 2024 07:18:03 GMT File type HTML document, ASCII text, with very long lines (1784), with no line terminators Size 1.8 kB (1784 bytes) Hash da424e2541801a3df0c4a01d627e081f 8ed8c9977baff8c1d656b74280f6baac87637dd3 d11569dc281419bdd78f72d8b7cf9bc92faab9e1c85d518ffb562b93152945c5 HTTP Headers GET /download?id=1kMA7DNmmNb66OqORpUFahfw24l9xCdjQ&export=download HTTP/1.1 Host: drive.usercontent.google.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK x-guploader-uploadid: ABPtcPonc5KG3CsRUdEqcBe2SCepQ3P2xvCt7UIO3-OWTJ3X0SLC4yyoorKsVIh5jC90eJHEmAg content-type: text/html; charset=utf-8 vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site cache-control: no-cache, no-store, max-age=0, must-revalidate pragma: no-cache expires: Mon, 01 Jan 1990 00:00:00 GMT date: Wed, 17 Apr 2024 10:59:34 GMT p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info." cross-origin-opener-policy: same-origin content-security-policy: require-trusted-types-for 'script';report-uri /_/DriveUntrustedContentHttp/cspreport, script-src 'nonce-A8tcounbcFYv_NG9GCPuEQ' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/DriveUntrustedContentHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/DriveUntrustedContentHttp/cspreport/allowlist, sandbox allow-scripts permissions-policy: ch-ua-arch=, ch-ua-bitness=, ch-ua-full-version=, ch-ua-full-version-list=, ch-ua-model=, ch-ua-wow64=, ch-ua-form-factor=, ch-ua-platform=, ch-ua-platform-version= cross-origin-resource-policy: same-site accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version reporting-endpoints: default="/_/DriveUntrustedContentHttp/web-reports?context=eJzj0tDikmJw0pBisN47ndUeiJ3SZ7CGAPHqn-dY1wPx4rDzrCuAWIiHY9r1fxvYBCZ8mbycCQAKERV3" content-length: 1784 server: UploadServer set-cookie: NID=513=naBUc3eX5xHi3YhZtUyk7lCRIQGhE2NMOJYazljylA0xg2pM85_N6FGEFP5IIddcXm6B2KD11SbUGt6r8CQPmzsquEnKybwwVyGG1S7JkySOXRYCFpSjXOnn2J_k_3TtcR8iLCBeBkADctSdaP0efjzUgVexxufPQz8eSMjH3Q0; expires=Thu, 17-Oct-2024 10:59:34 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ssl.gstatic.com/docs/doclist/images/drive_2022q3_32dp.png	142.250.74.163	200 OK	1.6 kB
URL GET HTTP/2 ssl.gstatic.com/docs/doclist/images/drive_2022q3_32dp.png IP 142.250.74.163:443 ASN #15169 GOOGLE Requested by moz-nullprincipal:{bb708f15-0003-4157-8b23-211a207aece7}?https://drive.usercontent.google.com Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced Size 1.6 kB (1594 bytes) Hash c66f20f2e39eb2f6a0a4cdbe0d955e5f 575ef086ce461e0ef83662e3acb3c1a789ebb0a8 2ab9cd0ffdddf7bf060620ae328fe626bfa2c004739adedb74ec894faf9bee31 HTTP Headers `GET /docs/doclist/images/drive_2022q3_32dp.png HTTP/1.1 Host: ssl.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://drive.usercontent.google.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK accept-ranges: bytes content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/docs cross-origin-resource-policy: cross-origin cross-origin-opener-policy-report-only: same-origin; report-to="docs" report-to: {"group":"docs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/docs"}]} content-length: 1594 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Tue, 16 Apr 2024 00:23:17 GMT expires: Wed, 16 Apr 2025 00:23:17 GMT cache-control: public, max-age=31536000 age: 124578 last-modified: Thu, 20 Jul 2023 22:48:00 GMT content-type: image/png vary: Origin alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	drive.google.com/uc?export=download&id=1kMA7DNmmNb66OqORpUFahfw24l9xCdjQ	142.250.74.142	303 See Other	1.8 kB
URL User Request GET HTTP/2 drive.google.com/uc?export=download&id=1kMA7DNmmNb66OqORpUFahfw24l9xCdjQ IP 142.250.74.142:443 ASN #15169 GOOGLE Certificate IssuerGoogle Trust Services LLC Subject.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT File type Size 1.8 kB (1784 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /uc?export=download&id=1kMA7DNmmNb66OqORpUFahfw24l9xCdjQ HTTP/1.1 Host: drive.google.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 303 See Other content-type: application/binary cache-control: no-cache, no-store, max-age=0, must-revalidate pragma: no-cache expires: Mon, 01 Jan 1990 00:00:00 GMT date: Wed, 17 Apr 2024 10:59:34 GMT location: https://drive.usercontent.google.com/download?id=1kMA7DNmmNb66OqORpUFahfw24l9xCdjQ&export=download strict-transport-security: max-age=31536000 accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version content-security-policy: script-src 'nonce-SLiJzqotcPzdIpj7Cs3dkg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/DriveUntrustedContentHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/DriveUntrustedContentHttp/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/DriveUntrustedContentHttp/cspreport permissions-policy: ch-ua-arch=, ch-ua-bitness=, ch-ua-full-version=, ch-ua-full-version-list=, ch-ua-model=, ch-ua-wow64=, ch-ua-form-factor=, ch-ua-platform=, ch-ua-platform-version= cross-origin-opener-policy: same-origin server: ESF content-length: 0 x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2