Report - mysterygifts12.vercel.app/

Report Overview

Submitted URL
mysterygifts12.vercel.app/
IP
76.76.21.164
ASN
#16509 AMAZON-02
Submitted
2024-04-26 18:08:26
Access
public
Website Title
Drop | OpenSea
Final URL
mysterygifts12.vercel.app/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
56

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
mysterygifts12.vercel.app	unknown	unknown	No data	No data	6.4 kB	1.0 MB	76.76.21.142
nfts-opensea.web.app	unknown	2019-01-08	2023-12-06	2024-02-19	473 B	9.2 kB	199.36.158.100

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-04-26	medium	mysterygifts12.vercel.app/	Crypto/Wallet
2024-04-26	medium	mysterygifts12.vercel.app/	Crypto/Wallet
2024-04-26	medium	mysterygifts12.vercel.app/	Crypto/Wallet
2024-04-26	medium	mysterygifts12.vercel.app/	Crypto/Wallet
2024-04-26	medium	mysterygifts12.vercel.app/	Crypto/Wallet
2024-04-26	medium	mysterygifts12.vercel.app/	Crypto/Wallet
2024-04-26	medium	mysterygifts12.vercel.app/	Crypto/Wallet
2024-04-26	medium	mysterygifts12.vercel.app/	Crypto/Wallet
2024-04-26	medium	mysterygifts12.vercel.app/	Crypto/Wallet
2024-04-26	medium	mysterygifts12.vercel.app/	Crypto/Wallet
2024-04-26	medium	mysterygifts12.vercel.app/	Crypto/Wallet
2024-04-26	medium	mysterygifts12.vercel.app/	Crypto/Wallet
2024-04-26	medium	mysterygifts12.vercel.app/	Crypto/Wallet
2024-04-26	medium	mysterygifts12.vercel.app/	Crypto/Wallet

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-04-26	medium	mysterygifts12.vercel.app	Sinkholed
2024-04-26	medium	mysterygifts12.vercel.app	Sinkholed
2024-04-26	medium	mysterygifts12.vercel.app	Sinkholed
2024-04-26	medium	mysterygifts12.vercel.app	Sinkholed
2024-04-26	medium	mysterygifts12.vercel.app	Sinkholed
2024-04-26	medium	mysterygifts12.vercel.app	Sinkholed
2024-04-26	medium	mysterygifts12.vercel.app	Sinkholed
2024-04-26	medium	mysterygifts12.vercel.app	Sinkholed
2024-04-26	medium	mysterygifts12.vercel.app	Sinkholed
2024-04-26	medium	mysterygifts12.vercel.app	Sinkholed
2024-04-26	medium	mysterygifts12.vercel.app	Sinkholed
2024-04-26	medium	mysterygifts12.vercel.app	Sinkholed
2024-04-26	medium	mysterygifts12.vercel.app	Sinkholed
2024-04-26	medium	mysterygifts12.vercel.app	Sinkholed

ThreatFox

No alerts detected

JavaScript (2)

	URL	Size	First Seen	Last Seen
	mysterygifts12.vercel.app/bobo.js	2.3 MB	2024-04-24	2024-04-29
Pretty URL mysterygifts12.vercel.app/bobo.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 07:24:47 Last Seen2024-04-29 08:21:23 Times Seen47 Hash ab4ff1cd932b96b91c46fab18f52243b 4c9178e612f580980fad291740e328370ca6cbe9 371a1c169b738bb9d86c2e3e81e761db3eb39edb4508b1efc66ba48cc94c9e7d Loading...

	unknown	34 B	2023-04-11	2024-05-07
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:16:40 Last Seen2024-05-07 06:24:26 Times Seen76298 Hash 572cb94037fffc2a0a53b465972e15f1 0d679b041a7c1ca45cc99e2d229fc2b86762838d 6487e4bdd0f51bbfd9105810a41755847fdae2c274e2fc325cd22356d7707e35 Loading...

HTTP Transactions (15)

URL IP Response Size

mysterygifts12.vercel.app/css/drops.css

76.76.21.142

820 B

URL
mysterygifts12.vercel.app/css/drops.css
IP
76.76.21.142:0
ASN
#16509 AMAZON-02

File type
Unicode text, UTF-8 text
Size
820 B (820 bytes)
Hash
f2785d929e72ee822c03f3a5d9d953ee
6532c19276434337669c349a903d5fb4357cb552
417b6655bfb887f5aa86d902f7e2ed9c82b36ae74a3a00a7bc34288cead3606a

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /css/drops.css HTTP/1.1
Host: mysterygifts12.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mysterygifts12.vercel.app/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 43516
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="drops.css"
content-type: text/css; charset=utf-8
date: Fri, 26 Apr 2024 18:07:55 GMT
etag: "f2785d929e72ee822c03f3a5d9d953ee"
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::nccvw-1714154875504-fcb402c276fe
content-length: 820
X-Firefox-Spdy: h2

mysterygifts12.vercel.app/css/fonts.css

76.76.21.142

466 B

URL
mysterygifts12.vercel.app/css/fonts.css
IP
76.76.21.142:0
ASN
#16509 AMAZON-02

File type
ASCII text
Size
466 B (466 bytes)
Hash
b032dbbc3bbb93ca80d2f189570da51c
ce3f373c28e1d35a7adb9dca8f6db95cb24fbccc
41503bfbefe3bc434e1eacc84da2af0e27c9101874345d6c5fb15cf5a6db528a

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /css/fonts.css HTTP/1.1
Host: mysterygifts12.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mysterygifts12.vercel.app/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 43516
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="fonts.css"
content-type: text/css; charset=utf-8
date: Fri, 26 Apr 2024 18:07:55 GMT
etag: "b032dbbc3bbb93ca80d2f189570da51c"
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::8nvhh-1714154875505-40b1d1c3012e
content-length: 466
X-Firefox-Spdy: h2

mysterygifts12.vercel.app/img/1.jpg

76.76.21.142

96 kB

URL
mysterygifts12.vercel.app/img/1.jpg
IP
76.76.21.142:0
ASN
#16509 AMAZON-02

File type
JPEG image data, baseline, precision 8, 2048x2048, components 3
Size
96 kB (96370 bytes)
Hash
45ba137f084cfef082d4987955c80371
987a9ad295bfa6126ee55e98a5f59e7c8e5d7b78
9927d7bd10d01982147d311ed9c0fff7066f3389985804e5cea8b6f3eeaa6610

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /img/1.jpg HTTP/1.1
Host: mysterygifts12.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mysterygifts12.vercel.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 43516
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="1.jpg"
content-type: image/jpeg
date: Fri, 26 Apr 2024 18:07:55 GMT
etag: "45ba137f084cfef082d4987955c80371"
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::kdzb4-1714154875508-5ee19c3242b1
content-length: 96370
X-Firefox-Spdy: h2

mysterygifts12.vercel.app/img/3.jpg

76.76.21.142

200 OK

83 kB

URL GET HTTP/2
mysterygifts12.vercel.app/img/3.jpg
IP
76.76.21.142:443
ASN
#16509 AMAZON-02

Requested by
https://mysterygifts12.vercel.app/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4
ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT

File type
JPEG image data, baseline, precision 8, 2048x2048, components 3
Size
83 kB (82867 bytes)
Hash
771f140bde258a487bc21351400ffa64
fa67b66ed8750974e577e06c02b6fc03bcff9bc7
70c339af14ed704d438838a1f18d59997c615b85fe463333a37eb1c964c9f568

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /img/3.jpg HTTP/1.1
Host: mysterygifts12.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mysterygifts12.vercel.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 43515
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="3.jpg"
content-type: image/jpeg
date: Fri, 26 Apr 2024 18:07:55 GMT
etag: "771f140bde258a487bc21351400ffa64"
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::mlvqc-1714154875509-e45f46dd563b
content-length: 82867
X-Firefox-Spdy: h2

mysterygifts12.vercel.app/img3.svg

76.76.21.142

688 B

URL
mysterygifts12.vercel.app/img3.svg
IP
76.76.21.142:0
ASN
#16509 AMAZON-02

File type
SVG Scalable Vector Graphics image
Size
688 B (688 bytes)
Hash
67693c6771bc947c16eef5f185633b09
488cd91334cdc30bc4afdf4aba889cf00d08e8cc
0590c635d707c2afec47ffe6e01f77f19015499b9a0d5cb005058b10966e71a4

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /img3.svg HTTP/1.1
Host: mysterygifts12.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mysterygifts12.vercel.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 43514
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="img3.svg"
content-type: image/svg+xml
date: Fri, 26 Apr 2024 18:07:55 GMT
etag: "67693c6771bc947c16eef5f185633b09"
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::nccvw-1714154875513-4ff43e5926f5
content-length: 688
X-Firefox-Spdy: h2

mysterygifts12.vercel.app/389-9bec97c22fa2e411.gif

76.76.21.142

660 kB

URL
mysterygifts12.vercel.app/389-9bec97c22fa2e411.gif
IP
76.76.21.142:0
ASN
#16509 AMAZON-02

File type
GIF image data, version 87a, 750 x 750
Size
660 kB (660432 bytes)
Hash
b9f393bd75705f60c29e15ceddfd2db9
9b3c4261f673b54903d47a5df6b6c981cdd1276e
09268325243816ed6fe7a556c9e33ff179eae6e4a1e9de2194f590aef36d905e

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /389-9bec97c22fa2e411.gif HTTP/1.1
Host: mysterygifts12.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mysterygifts12.vercel.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 43514
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="389-9bec97c22fa2e411.gif"
content-type: image/gif
date: Fri, 26 Apr 2024 18:07:55 GMT
etag: "b9f393bd75705f60c29e15ceddfd2db9"
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::tptmf-1714154875514-f94582b37b85
content-length: 660432
X-Firefox-Spdy: h2

mysterygifts12.vercel.app/img/load%202.gif

76.76.21.142

48 kB

URL
mysterygifts12.vercel.app/img/load%202.gif
IP
76.76.21.142:0
ASN
#16509 AMAZON-02

File type
GIF image data, version 89a, 178 x 178
Size
48 kB (48279 bytes)
Hash
1e9028a3ca980be63e7a0b7ff86223a3
fb795c53f646947550416ace4d870a4825d96863
b1c2a203ad9d2d0a22c70bf7a162d8440b2905f724b29b373e8aa52612220639

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /img/load%202.gif HTTP/1.1
Host: mysterygifts12.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mysterygifts12.vercel.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 43516
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="load 2.gif"
content-type: image/gif
date: Fri, 26 Apr 2024 18:07:55 GMT
etag: "1e9028a3ca980be63e7a0b7ff86223a3"
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::kdzb4-1714154875507-8ba54d2a688b
content-length: 48279
X-Firefox-Spdy: h2

mysterygifts12.vercel.app/img/2.jpg

76.76.21.142

92 kB

URL
mysterygifts12.vercel.app/img/2.jpg
IP
76.76.21.142:0
ASN
#16509 AMAZON-02

File type
JPEG image data, baseline, precision 8, 2048x2048, components 3
Size
92 kB (92392 bytes)
Hash
b332377a8c696ba08b13419e4ce02e12
e9fc8643b3259d50417e377106361bd188fc054f
e32d53f1bc3e89014a167c97dd865a56a548242b96eab4330f12e5196dd44b15

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /img/2.jpg HTTP/1.1
Host: mysterygifts12.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mysterygifts12.vercel.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 43515
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="2.jpg"
content-type: image/jpeg
date: Fri, 26 Apr 2024 18:07:55 GMT
etag: "b332377a8c696ba08b13419e4ce02e12"
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::vfgzh-1714154875509-d1ae6effa84f
content-length: 92392
X-Firefox-Spdy: h2

mysterygifts12.vercel.app/img8.svg

76.76.21.142

200 OK

1.3 kB

URL GET HTTP/2
mysterygifts12.vercel.app/img8.svg
IP
76.76.21.142:443
ASN
#16509 AMAZON-02

Requested by
https://mysterygifts12.vercel.app/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4
ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT

File type
ASCII text, with very long lines (1442)
Size
1.3 kB (1283 bytes)
Hash
137790a7b365cef8a8151f7149039ccf
0aab279f9d1c7fadb881842cbf1cb72cfe13f993
d858fb8d48624e6cd9b10b9bd762759a5af9307582277e6ad3be61922e3bdc1e

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /img8.svg HTTP/1.1
Host: mysterygifts12.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mysterygifts12.vercel.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
age: 43514
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="img8.svg"
content-encoding: br
content-type: image/svg+xml
date: Fri, 26 Apr 2024 18:07:55 GMT
etag: W/"137790a7b365cef8a8151f7149039ccf"
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::ffx4w-1714154875518-2d1b9cf4349b
X-Firefox-Spdy: h2

mysterygifts12.vercel.app/img9.svg

76.76.21.142

10 kB

URL
mysterygifts12.vercel.app/img9.svg
IP
76.76.21.142:0
ASN
#16509 AMAZON-02

File type
SVG Scalable Vector Graphics image
Size
10 kB (10064 bytes)
Hash
867bc3ff0bd2b6278d0fd18cbe75c668
83f4ea61c0c834f425393cc85e22af0e8cb1d9b9
362462b35aa4a0d83a12089fc0ab612c1944e429a3b696f6b42a25196408989b

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /img9.svg HTTP/1.1
Host: mysterygifts12.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mysterygifts12.vercel.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
age: 43514
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="img9.svg"
content-encoding: br
content-type: image/svg+xml
date: Fri, 26 Apr 2024 18:07:55 GMT
etag: W/"867bc3ff0bd2b6278d0fd18cbe75c668"
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::nccvw-1714154875518-f522c138d888
X-Firefox-Spdy: h2

mysterygifts12.vercel.app/img2.svg

76.76.21.142

11 kB

URL
mysterygifts12.vercel.app/img2.svg
IP
76.76.21.142:0
ASN
#16509 AMAZON-02

File type
SVG Scalable Vector Graphics image
Size
11 kB (11111 bytes)
Hash
e8dba30bee3108f131930268cc44a96e
5d7e64ec493176343c97d42ab7f591f5ad471b2e
3c9106a40225b279c991223744fd935befd6fce3283bada300a886ae741bf266

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /img2.svg HTTP/1.1
Host: mysterygifts12.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mysterygifts12.vercel.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
age: 43515
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="img2.svg"
content-encoding: br
content-type: image/svg+xml
date: Fri, 26 Apr 2024 18:07:55 GMT
etag: W/"e8dba30bee3108f131930268cc44a96e"
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::8nvhh-1714154875513-ab7a9cc828e5
X-Firefox-Spdy: h2

nfts-opensea.web.app/cdn-icons-png.flaticon.com/512/1828/1828640.png

199.36.158.100

8.7 kB

URL
nfts-opensea.web.app/cdn-icons-png.flaticon.com/512/1828/1828640.png
IP
199.36.158.100:0
ASN
#54113 FASTLY

File type
data
Size
8.7 kB (8682 bytes)
Hash
c2fd03a4ea661c17bd93075c7410d3ba
f2873f449b3fe2b236b26558c9faafa233baeafb
69ebdea276afdad07f8fb93e82a68132515211ec4551e8c3f91d07613dbf2032

HTTP Headers

GET /cdn-icons-png.flaticon.com/512/1828/1828640.png HTTP/1.1
Host: nfts-opensea.web.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mysterygifts12.vercel.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
cache-control: max-age=0
content-type: text/html; charset=utf-8
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Fri, 26 Apr 2024 18:07:55 GMT
x-served-by: cache-hel1410025-HEL
x-cache: HIT
x-cache-hits: 113
x-timer: S1714154876.727699,VS0,VE0
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 10601
X-Firefox-Spdy: h2

mysterygifts12.vercel.app/img4.svg

76.76.21.142

200 OK

12 kB

URL GET HTTP/2
mysterygifts12.vercel.app/img4.svg
IP
76.76.21.142:443
ASN
#16509 AMAZON-02

Requested by
https://mysterygifts12.vercel.app/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4
ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT

File type
SVG Scalable Vector Graphics image
Size
12 kB (11928 bytes)
Hash
565246e205e3ebba059c3df115d71b59
12e5947854216711bf9f4926e2c00735a7156833
dc4d862aa81e53d1190e885d2b678ee00e402d07c9742e05a456b4ccecda03c0

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /img4.svg HTTP/1.1
Host: mysterygifts12.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mysterygifts12.vercel.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
age: 43514
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="img4.svg"
content-encoding: br
content-type: image/svg+xml
date: Fri, 26 Apr 2024 18:07:55 GMT
etag: W/"565246e205e3ebba059c3df115d71b59"
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::kdzb4-1714154875513-904e0c473df3
X-Firefox-Spdy: h2

mysterygifts12.vercel.app/img5.svg

76.76.21.142

4.9 kB

URL
mysterygifts12.vercel.app/img5.svg
IP
76.76.21.142:0
ASN
#16509 AMAZON-02

File type
SVG Scalable Vector Graphics image
Size
4.9 kB (4918 bytes)
Hash
7dfceb09756db0969a40d0fabc755d18
a8512b86576390d54b248a16f6f8d73e6661021d
202934ae50e1b89b248d1e439dd53bf477335bdc76ae44c7f8f1794982fcde18

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /img5.svg HTTP/1.1
Host: mysterygifts12.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mysterygifts12.vercel.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
age: 43514
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="img5.svg"
content-encoding: br
content-type: image/svg+xml
date: Fri, 26 Apr 2024 18:07:55 GMT
etag: W/"7dfceb09756db0969a40d0fabc755d18"
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::ffx4w-1714154875514-10b5e682d1ae
X-Firefox-Spdy: h2

mysterygifts12.vercel.app/style.css

76.76.21.142

200 OK

2.7 kB

URL GET HTTP/2
mysterygifts12.vercel.app/style.css
IP
76.76.21.142:443
ASN
#16509 AMAZON-02

Requested by
https://mysterygifts12.vercel.app/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4
ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT

File type
ASCII text, with very long lines (2780), with no line terminators
Size
2.7 kB (2720 bytes)
Hash
8d8466ab6b9b96b5f52e6aa0516d9b2b
de67d07f7954f6026c6748e179a7062cbd96bb35
60471c4975f3309b43b14a412193c5c5ba31043b3480d178eba865cb8c34c1ad

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /style.css HTTP/1.1
Host: mysterygifts12.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mysterygifts12.vercel.app/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 43516
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="style.css"
content-encoding: br
content-type: text/css; charset=utf-8
date: Fri, 26 Apr 2024 18:07:55 GMT
etag: W/"4c2f40713d5cd334e6a367ed5aea6e77"
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::ffx4w-1714154875504-34a272863c21
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (2)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (15)

URL

IP

ASN

File type

Size

Hash

Detections

HTTP Headers

URL

IP

ASN

File type

Size

Hash

Detections

HTTP Headers

URL

IP

ASN

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL

IP

ASN

File type

Size

Hash

Detections

HTTP Headers