Report - wages-abu-tablet-wages.trycloudflare.com/login.html.php

Report Overview

Submitted URL
wages-abu-tablet-wages.trycloudflare.com/login.html.php
IP
104.16.230.132
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-16 19:57:56
Access
public
Website Title
Instagram
Final URL
wages-abu-tablet-wages.trycloudflare.com/login.html.php
Tags
instagram meta social phishing
urlquery detections
Phishing - Instagram

Detections

urlquery
12
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
wages-abu-tablet-wages.trycloudflare.com	unknown	unknown	No data	No data	5.5 kB	793 kB	104.16.231.132

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (3)

	URL	Size	First Seen	Last Seen
	wages-abu-tablet-wages.trycloudflare.com/login.html.php	317 B	2023-03-07	2024-04-28
Pretty URL wages-abu-tablet-wages.trycloudflare.com/login.html.php IP 104.16.231.132 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:27:25 Last Seen2024-04-28 06:29:02 Times Seen119 Hash 24b0cee4b63f73c36c0181b6db378df9 0dd5d49c37bcc93e1474853e74bb5b6b1efa4655 9da74ef885135e4f2142ae667363df040c2777a7b93c919e718ad145f3079a24 Loading...

	wages-abu-tablet-wages.trycloudflare.com/login.html.php	1.3 kB	2023-03-07	2024-04-28
Pretty URL wages-abu-tablet-wages.trycloudflare.com/login.html.php IP 104.16.231.132 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:27:25 Last Seen2024-04-28 06:29:02 Times Seen119 Hash f4704ef77f7efbdead801494acc40048 a1d3cedd815d7150e25c6ddccc90eda68dd817d0 4574d579b4b48e9bb11d5ca55f97fa591d35e47fabbc346b2a1fc80611b0bf5b Loading...

	wages-abu-tablet-wages.trycloudflare.com/login.html.php	160 B	2023-03-07	2024-04-28
Pretty URL wages-abu-tablet-wages.trycloudflare.com/login.html.php IP 104.16.231.132 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:27:25 Last Seen2024-04-28 06:29:02 Times Seen119 Hash a011140f66066c323668a56eb5c9d15e d40937e8d51f280ae0e495c2d7b7ac3128beabb9 7f07089bb4d2ba74048673702471d9b58896f8342976c4e77ee34f0569a6fa27 Loading...

HTTP Transactions (11)

URL IP Response Size

wages-abu-tablet-wages.trycloudflare.com/screenshot3.jpg

104.16.231.132

200 OK

24 kB

URL GET HTTP/2
wages-abu-tablet-wages.trycloudflare.com/screenshot3.jpg
IP
104.16.231.132:443
ASN
#13335 CLOUDFLARENET

Requested by
https://wages-abu-tablet-wages.trycloudflare.com/login.html.php
Certificate
IssuerLet's Encrypt
Subjecttrycloudflare.com
Fingerprint26:05:9A:89:F8:1B:AA:DF:7C:3E:07:C2:4F:C2:B9:A9:73:32:CC:D0
ValidityThu, 28 Mar 2024 01:47:53 GMT - Wed, 26 Jun 2024 01:47:52 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 240x427, components 3
Size
24 kB (24052 bytes)
Hash
629d23a3c7b24459b2584bddb8a4a8e5
302e54effe6f4118a9cf003aef81b91e9ee62547
acd9e915679087545562b678b5f1ed295c0c9a06f19025a0d699e7dc8099640a

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Instagram

HTTP Headers

GET /screenshot3.jpg HTTP/1.1
Host: wages-abu-tablet-wages.trycloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://wages-abu-tablet-wages.trycloudflare.com/login.html.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 16 Apr 2024 19:57:32 GMT
content-type: image/jpeg
content-length: 24052
cf-ray: 8756beb26d4a5691-OSL
cf-cache-status: DYNAMIC
vary: Accept-Encoding
server: cloudflare
X-Firefox-Spdy: h2

wages-abu-tablet-wages.trycloudflare.com/screenshot4.jpg

104.16.231.132

200 OK

26 kB

URL GET HTTP/2
wages-abu-tablet-wages.trycloudflare.com/screenshot4.jpg
IP
104.16.231.132:443
ASN
#13335 CLOUDFLARENET

Requested by
https://wages-abu-tablet-wages.trycloudflare.com/login.html.php
Certificate
IssuerLet's Encrypt
Subjecttrycloudflare.com
Fingerprint26:05:9A:89:F8:1B:AA:DF:7C:3E:07:C2:4F:C2:B9:A9:73:32:CC:D0
ValidityThu, 28 Mar 2024 01:47:53 GMT - Wed, 26 Jun 2024 01:47:52 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 240x427, components 3
Size
26 kB (26442 bytes)
Hash
001bc33056c10fdbbdb1db41009b57e1
ba9c9ec52cb05c909c1c9fc2fba64f981aff65b4
05dbf03a18c2dc87edc2c5a5dfe083a5e5a1cded370ddcb66810372433f5dcb5

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Instagram

HTTP Headers

GET /screenshot4.jpg HTTP/1.1
Host: wages-abu-tablet-wages.trycloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://wages-abu-tablet-wages.trycloudflare.com/login.html.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 16 Apr 2024 19:57:32 GMT
content-type: image/jpeg
content-length: 26442
cf-ray: 8756beb26d535691-OSL
cf-cache-status: DYNAMIC
vary: Accept-Encoding
server: cloudflare
X-Firefox-Spdy: h2

wages-abu-tablet-wages.trycloudflare.com/screenshot5.jpg

104.16.231.132

200 OK

35 kB

URL GET HTTP/2
wages-abu-tablet-wages.trycloudflare.com/screenshot5.jpg
IP
104.16.231.132:443
ASN
#13335 CLOUDFLARENET

Requested by
https://wages-abu-tablet-wages.trycloudflare.com/login.html.php
Certificate
IssuerLet's Encrypt
Subjecttrycloudflare.com
Fingerprint26:05:9A:89:F8:1B:AA:DF:7C:3E:07:C2:4F:C2:B9:A9:73:32:CC:D0
ValidityThu, 28 Mar 2024 01:47:53 GMT - Wed, 26 Jun 2024 01:47:52 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 240x427, components 3
Size
35 kB (35056 bytes)
Hash
f5ae123ab1e24e72615bea84fc7b4845
40251760c3fc66529bfee516450952f3e174a2f4
9a82dc4aa881a8a4cb0c24f9ecf1357b0fb6faf6bf88ee9e791360ddae796bf8

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Instagram

HTTP Headers

GET /screenshot5.jpg HTTP/1.1
Host: wages-abu-tablet-wages.trycloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://wages-abu-tablet-wages.trycloudflare.com/login.html.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 16 Apr 2024 19:57:32 GMT
content-type: image/jpeg
content-length: 35056
cf-ray: 8756beb26d545691-OSL
cf-cache-status: DYNAMIC
vary: Accept-Encoding
server: cloudflare
X-Firefox-Spdy: h2

wages-abu-tablet-wages.trycloudflare.com/screenshot1.jpg

104.16.231.132

200 OK

42 kB

URL GET HTTP/2
wages-abu-tablet-wages.trycloudflare.com/screenshot1.jpg
IP
104.16.231.132:443
ASN
#13335 CLOUDFLARENET

Requested by
https://wages-abu-tablet-wages.trycloudflare.com/login.html.php
Certificate
IssuerLet's Encrypt
Subjecttrycloudflare.com
Fingerprint26:05:9A:89:F8:1B:AA:DF:7C:3E:07:C2:4F:C2:B9:A9:73:32:CC:D0
ValidityThu, 28 Mar 2024 01:47:53 GMT - Wed, 26 Jun 2024 01:47:52 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 240x427, components 3
Size
42 kB (42261 bytes)
Hash
aafd8c6b005d7d971fad0012daa374d3
7904a4ed6dca3e1b8e328daaaff786261b149091
f40b99969d93b3c44b5d24fb31b2b32cb25ab00670349046f497053a75a7228b

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Instagram

HTTP Headers

GET /screenshot1.jpg HTTP/1.1
Host: wages-abu-tablet-wages.trycloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://wages-abu-tablet-wages.trycloudflare.com/login.html.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 16 Apr 2024 19:57:32 GMT
content-type: image/jpeg
content-length: 42261
cf-ray: 8756beb26d3f5691-OSL
cf-cache-status: DYNAMIC
vary: Accept-Encoding
server: cloudflare
X-Firefox-Spdy: h2

wages-abu-tablet-wages.trycloudflare.com/screenshot2.jpg

104.16.231.132

200 OK

32 kB

URL GET HTTP/2
wages-abu-tablet-wages.trycloudflare.com/screenshot2.jpg
IP
104.16.231.132:443
ASN
#13335 CLOUDFLARENET

Requested by
https://wages-abu-tablet-wages.trycloudflare.com/login.html.php
Certificate
IssuerLet's Encrypt
Subjecttrycloudflare.com
Fingerprint26:05:9A:89:F8:1B:AA:DF:7C:3E:07:C2:4F:C2:B9:A9:73:32:CC:D0
ValidityThu, 28 Mar 2024 01:47:53 GMT - Wed, 26 Jun 2024 01:47:52 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 240x427, components 3
Size
32 kB (32106 bytes)
Hash
2d9d7248af43c6a4405960bfb0254d48
d3b577667185d3abe12f2055addbde4e86607619
00a774313f1c87d2c40eae36529736eead9ce35345a82b814c718202bcf84f2d

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Instagram

HTTP Headers

GET /screenshot2.jpg HTTP/1.1
Host: wages-abu-tablet-wages.trycloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://wages-abu-tablet-wages.trycloudflare.com/login.html.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 16 Apr 2024 19:57:32 GMT
content-type: image/jpeg
content-length: 32106
cf-ray: 8756beb26d455691-OSL
cf-cache-status: DYNAMIC
vary: Accept-Encoding
server: cloudflare
X-Firefox-Spdy: h2

wages-abu-tablet-wages.trycloudflare.com/sprite_core_32f0a4f27407.png

104.16.231.132

404 Not Found

62 kB

URL GET HTTP/2
wages-abu-tablet-wages.trycloudflare.com/sprite_core_32f0a4f27407.png
IP
104.16.231.132:443
ASN
#13335 CLOUDFLARENET

Requested by
https://wages-abu-tablet-wages.trycloudflare.com/login.html.php
Certificate
IssuerLet's Encrypt
Subjecttrycloudflare.com
Fingerprint26:05:9A:89:F8:1B:AA:DF:7C:3E:07:C2:4F:C2:B9:A9:73:32:CC:D0
ValidityThu, 28 Mar 2024 01:47:53 GMT - Wed, 26 Jun 2024 01:47:52 GMT

File type
gzip compressed data, from Unix
Size
62 kB (62008 bytes)
Hash
ad4794cfbb7ec00317bffb00669b79bb
69a4b8b56c2da67bf6078175db172cea4a8e1c64
af005f4cbd5cbc834ba621e225941969dd2f9f06fdb409363868fae4f3bf900f

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Instagram

HTTP Headers

GET /sprite_core_32f0a4f27407.png HTTP/1.1
Host: wages-abu-tablet-wages.trycloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://wages-abu-tablet-wages.trycloudflare.com/login.html.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
date: Tue, 16 Apr 2024 19:57:32 GMT
content-type: text/html; charset=UTF-8
cf-ray: 8756beb2fe4d5691-OSL
cf-cache-status: DYNAMIC
vary: Accept-Encoding
server: cloudflare
content-encoding: gzip
X-Firefox-Spdy: h2

wages-abu-tablet-wages.trycloudflare.com/favicon.png

104.16.231.132

404 Not Found

544 B

URL GET HTTP/2
wages-abu-tablet-wages.trycloudflare.com/favicon.png
IP
104.16.231.132:443
ASN
#13335 CLOUDFLARENET

Requested by
https://wages-abu-tablet-wages.trycloudflare.com/login.html.php
Certificate
IssuerLet's Encrypt
Subjecttrycloudflare.com
Fingerprint26:05:9A:89:F8:1B:AA:DF:7C:3E:07:C2:4F:C2:B9:A9:73:32:CC:D0
ValidityThu, 28 Mar 2024 01:47:53 GMT - Wed, 26 Jun 2024 01:47:52 GMT

File type
HTML document, ASCII text, with very long lines (552), with no line terminators
Size
544 B (544 bytes)
Hash
f39e1e2ddfedcb1368c5fd12364f4b19
051dc4e09c4edf18a2883fbc5ff2a4f6f385cfdd
f1c5fff0033da006271baa051915f247c6f673cfd50eb51f54d6369a61cf6553

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Instagram

HTTP Headers

GET /favicon.png HTTP/1.1
Host: wages-abu-tablet-wages.trycloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://wages-abu-tablet-wages.trycloudflare.com/login.html.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
date: Tue, 16 Apr 2024 19:57:32 GMT
content-type: text/html; charset=UTF-8
cf-ray: 8756beb40fc05691-OSL
cf-cache-status: DYNAMIC
vary: Accept-Encoding
server: cloudflare
content-encoding: gzip
X-Firefox-Spdy: h2

wages-abu-tablet-wages.trycloudflare.com/login.html.php

104.16.231.132

200 OK

566 kB

URL User Request GET HTTP/2
wages-abu-tablet-wages.trycloudflare.com/login.html.php
IP
104.16.231.132:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerLet's Encrypt
Subjecttrycloudflare.com
Fingerprint26:05:9A:89:F8:1B:AA:DF:7C:3E:07:C2:4F:C2:B9:A9:73:32:CC:D0
ValidityThu, 28 Mar 2024 01:47:53 GMT - Wed, 26 Jun 2024 01:47:52 GMT

File type

Size
566 kB (565979 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Instagram

HTTP Headers

GET /login.html.php HTTP/1.1
Host: wages-abu-tablet-wages.trycloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 16 Apr 2024 19:57:31 GMT
content-type: text/html; charset=UTF-8
cf-ray: 8756beae7ecc5691-OSL
cf-cache-status: DYNAMIC
x-powered-by: PHP/8.1.2-1ubuntu2.15
vary: Accept-Encoding
server: cloudflare
content-encoding: gzip
X-Firefox-Spdy: h2

wages-abu-tablet-wages.trycloudflare.com/badge_ios_english-en.png

104.16.231.132

404 Not Found

557 B

URL GET HTTP/2
wages-abu-tablet-wages.trycloudflare.com/badge_ios_english-en.png
IP
104.16.231.132:443
ASN
#13335 CLOUDFLARENET

Requested by
https://wages-abu-tablet-wages.trycloudflare.com/login.html.php
Certificate
IssuerLet's Encrypt
Subjecttrycloudflare.com
Fingerprint26:05:9A:89:F8:1B:AA:DF:7C:3E:07:C2:4F:C2:B9:A9:73:32:CC:D0
ValidityThu, 28 Mar 2024 01:47:53 GMT - Wed, 26 Jun 2024 01:47:52 GMT

File type
HTML document, ASCII text, with very long lines (565), with no line terminators
Size
557 B (557 bytes)
Hash
117d5e6d8f19e6b5aec69ba21ff717a2
1b0bd82614393346e21f329bc659cfb91e1c079e
85053c00b429df0b53302ec71e1822ee3b67b12dfc8c3aa47f4aa317707af49d

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Instagram

HTTP Headers

GET /badge_ios_english-en.png HTTP/1.1
Host: wages-abu-tablet-wages.trycloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://wages-abu-tablet-wages.trycloudflare.com/login.html.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
date: Tue, 16 Apr 2024 19:57:32 GMT
content-type: text/html; charset=UTF-8
cf-ray: 8756beb26d555691-OSL
cf-cache-status: DYNAMIC
vary: Accept-Encoding
server: cloudflare
content-encoding: gzip
X-Firefox-Spdy: h2

wages-abu-tablet-wages.trycloudflare.com/badge_android_english-en.png

104.16.231.132

404 Not Found

561 B

URL GET HTTP/2
wages-abu-tablet-wages.trycloudflare.com/badge_android_english-en.png
IP
104.16.231.132:443
ASN
#13335 CLOUDFLARENET

Requested by
https://wages-abu-tablet-wages.trycloudflare.com/login.html.php
Certificate
IssuerLet's Encrypt
Subjecttrycloudflare.com
Fingerprint26:05:9A:89:F8:1B:AA:DF:7C:3E:07:C2:4F:C2:B9:A9:73:32:CC:D0
ValidityThu, 28 Mar 2024 01:47:53 GMT - Wed, 26 Jun 2024 01:47:52 GMT

File type
HTML document, ASCII text, with very long lines (569), with no line terminators
Size
561 B (561 bytes)
Hash
54441401959284d12fe1d524fd5c2fe1
c86ea19d7e3b5485573295312929270ab49ba663
6c5097ef7fe22c6ff69f5b979a29985c34c73cbf9e4f895dda44d0efc77ba624

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Instagram

HTTP Headers

GET /badge_android_english-en.png HTTP/1.1
Host: wages-abu-tablet-wages.trycloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://wages-abu-tablet-wages.trycloudflare.com/login.html.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
date: Tue, 16 Apr 2024 19:57:32 GMT
content-type: text/html; charset=UTF-8
cf-ray: 8756beb26d575691-OSL
cf-cache-status: DYNAMIC
vary: Accept-Encoding
server: cloudflare
content-encoding: gzip
X-Firefox-Spdy: h2

wages-abu-tablet-wages.trycloudflare.com/home-phones.png

104.16.231.132

404 Not Found

548 B

URL GET HTTP/2
wages-abu-tablet-wages.trycloudflare.com/home-phones.png
IP
104.16.231.132:443
ASN
#13335 CLOUDFLARENET

Requested by
https://wages-abu-tablet-wages.trycloudflare.com/login.html.php
Certificate
IssuerLet's Encrypt
Subjecttrycloudflare.com
Fingerprint26:05:9A:89:F8:1B:AA:DF:7C:3E:07:C2:4F:C2:B9:A9:73:32:CC:D0
ValidityThu, 28 Mar 2024 01:47:53 GMT - Wed, 26 Jun 2024 01:47:52 GMT

File type
HTML document, ASCII text, with very long lines (556), with no line terminators
Size
548 B (548 bytes)
Hash
e53d15f632374c4884af20c9efffd19f
3c5ebb327eb05ee9489f036b2dfe8603d9d94497
f504879b8ee26ca1dd06431d1c2a8118c947bc2201aa7d73c2d034c0c259c265

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Instagram

HTTP Headers

GET /home-phones.png HTTP/1.1
Host: wages-abu-tablet-wages.trycloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://wages-abu-tablet-wages.trycloudflare.com/login.html.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
date: Tue, 16 Apr 2024 19:57:32 GMT
content-type: text/html; charset=UTF-8
cf-ray: 8756beb2fe465691-OSL
cf-cache-status: DYNAMIC
vary: Accept-Encoding
server: cloudflare
content-encoding: gzip
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (3)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (11)

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/2

IP