| cdnjs.cloudflare.com/ajax/libs/font-awesome/4.3.0/css/font-awesome.min.css | 104.17.25.14 | 200 OK | 4.4 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/font-awesome/4.3.0/css/font-awesome.min.css IP104.17.25.14:443
Requested byhttps://notifyhubss.net/4419d5733u64c64888l9223d5belafc887d0.html__;!!OepYZ6Q!6a0JnRhFyhQfncK-LhrwBwz4hNh8MS_qxKKgAFDPEKMOCOgQxgYx7CnrvR6bIX3SIR-AMI9IhS0nwyds8fRelwKk4eFibA_/ CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeASCII text, with very long lines (23577) Hash04425bbdc6243fc6e54bf8984fe50330 8c15c6bd82c71e9ef1bb11cf24e502fe07518ac5 541ac58217a8ade1a5e292a65a0661dc9db7a49ae13654943817a4fbc6761afd
GET /ajax/libs/font-awesome/4.3.0/css/font-awesome.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://notifyhubss.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 16:17:16 GMT
content-type: text/css; charset=utf-8
content-length: 4364
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "65993750-110c"
last-modified: Sat, 06 Jan 2024 12:19:44 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 772179
expires: Tue, 15 Apr 2025 16:17:16 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=x7O1AMRuen8N2inefVBPXQ1MOzumTYvCMUv%2FhMW3HkSTBE0rn5Ed7S%2FuMwsotWVcz51zLFHPVAOsAQLOEcFnyOTiK0ALZLd7Y8XuydDByccIDIGhsEbDms96nUySe097wqDo1PFY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 879fa46e0955b521-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/jquery/2.1.3/jquery.min.js | 104.17.25.14 | 200 OK | 27 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/jquery/2.1.3/jquery.min.js IP104.17.25.14:443
Requested byhttps://notifyhubss.net/4419d5733u64c64888l9223d5belafc887d0.html__;!!OepYZ6Q!6a0JnRhFyhQfncK-LhrwBwz4hNh8MS_qxKKgAFDPEKMOCOgQxgYx7CnrvR6bIX3SIR-AMI9IhS0nwyds8fRelwKk4eFibA_/ CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (32180) Hash7f9fb969ce353c5d77707836391eb28d 62c4042e9ebc691a5372d653b424512a561d1670 2051d61446d4dbffb03727031022a08c84528ab44d203a7669c101e5fbdd5515
GET /ajax/libs/jquery/2.1.3/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://notifyhubss.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 16:17:16 GMT
content-type: application/javascript; charset=utf-8
content-length: 26660
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-14983"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 863136
expires: Tue, 15 Apr 2025 16:17:16 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vegzLBkMHWZmqp9Xh1%2BTwYPtZHFWQB42JfwQJJBkbxZ23n%2Bfi92o1jlftTdxFy%2F8%2F3tHyFwuv7FI6w8OpHlQA1zA%2B4wXhlEmsouS8SFR0jM1j2qqCLS%2FJEDReE1G116zJD58jQRm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 879fa46e195bb521-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| lp.cybeready.net/Forms/MS-online/microsoft_logo.png | 104.26.9.233 | 200 OK | 653 B |
URL GET HTTP/2lp.cybeready.net/Forms/MS-online/microsoft_logo.png IP104.26.9.233:443
Requested byhttps://notifyhubss.net/4419d5733u64c64888l9223d5belafc887d0.html__;!!OepYZ6Q!6a0JnRhFyhQfncK-LhrwBwz4hNh8MS_qxKKgAFDPEKMOCOgQxgYx7CnrvR6bIX3SIR-AMI9IhS0nwyds8fRelwKk4eFibA_/ CertificateIssuerLet's Encrypt Subjectcybeready.net FingerprintBB:28:14:F8:09:02:DF:1E:F0:B6:74:8B:09:67:6A:55:A6:0D:A0:38 ValidityTue, 16 Apr 2024 23:13:46 GMT - Mon, 15 Jul 2024 23:13:45 GMT
File typePNG image data, 100 x 22, 8-bit colormap, non-interlaced Hash366222d8d10fa25f28a5c4b8c738a887 d64ae75cb36ee9bca1076b259ee3e8dc1f3fa09c 3f58f0f3a9d3cad69e0d008d752af773b81a2d29f92c855b796dc2cc3a8813f9
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Microsoft |
GET /Forms/MS-online/microsoft_logo.png HTTP/1.1
Host: lp.cybeready.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://notifyhubss.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 16:17:16 GMT
content-type: image/png
content-length: 653
cf-bgj: imgq:100,h2pri
cf-polished: origSize=1040
etag: "e4b675007dc6492ee590131d1f7dfbb3"
last-modified: Mon, 09 May 2016 08:37:44 GMT
x-amz-id-2: nuwL9vgbG/ekq/RxW2LQEr28j8DSzrvH3FxL7wr6F8zpO6fbKuJvzN8J9lBR0tO5f31McrZ1/vA=
x-amz-request-id: VTGQNQ6R8VGQHTMD
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WkUsAdItQHVsj%2BvqbATxuRtPq%2BvtK7gBZNmphDQB%2FXnQhjPQv92o7go3EE4AHVMziKaWt7tDpu%2BIrMJ0Sqz54VqbwXXwyV0%2B3w9j2ih2QPhSGDi%2BwNMS8nDDvyVGGn%2BZUuY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879fa46eed4356b4-OSL
X-Firefox-Spdy: h2
|
|
| lp.cybeready.net/Forms/MS-online/bannerlogo.png | 104.26.9.233 | 200 OK | 1.0 kB |
URL GET HTTP/2lp.cybeready.net/Forms/MS-online/bannerlogo.png IP104.26.9.233:443
Requested byhttps://notifyhubss.net/4419d5733u64c64888l9223d5belafc887d0.html__;!!OepYZ6Q!6a0JnRhFyhQfncK-LhrwBwz4hNh8MS_qxKKgAFDPEKMOCOgQxgYx7CnrvR6bIX3SIR-AMI9IhS0nwyds8fRelwKk4eFibA_/ CertificateIssuerLet's Encrypt Subjectcybeready.net FingerprintBB:28:14:F8:09:02:DF:1E:F0:B6:74:8B:09:67:6A:55:A6:0D:A0:38 ValidityTue, 16 Apr 2024 23:13:46 GMT - Mon, 15 Jul 2024 23:13:45 GMT
File typePNG image data, 159 x 35, 8-bit colormap, non-interlaced Hash24bfcce4b67e345caac4ce3849b26d5d fd6b6d847ade5480f290cbce319cdee74016d859 de8d43f95c8743f71d53a6ca3d5dc0b3d2c29e96b7c565e52cf5a86c416c2400
GET /Forms/MS-online/bannerlogo.png HTTP/1.1
Host: lp.cybeready.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://notifyhubss.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 16:17:16 GMT
content-type: image/png
content-length: 1024
cf-bgj: imgq:100,h2pri
cf-polished: origSize=4585
etag: "9f09a27d4f69b3557c7433574a29d726"
last-modified: Mon, 09 May 2016 08:37:46 GMT
x-amz-id-2: oyREWeQpA7ftqsQ93j0SqJILSposezh8Gx8VKDj4nQorPklo2baX903qbosTcstbY/EGKBy4xcg=
x-amz-request-id: VG7FS237CKAWP6CE
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gzY46k3NI9O2he6A6Btw6Dgtj8coQa3DR9slS8QHRDWPZy8RYJDL%2BuuR3pFlYEnyjS4dlEveeHOpUOFOLnoLLERf8OkVbLvPSB4PNgrw5zw81iQRILrOUrR22PZh7armIoo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879fa46eed4256b4-OSL
X-Firefox-Spdy: h2
|
|
| notifyhubss.net/cdn-cgi/challenge-platform/scripts/jsd/main.js | 172.67.72.147 | 302 Found | 0 B |
URL GET HTTP/2notifyhubss.net/cdn-cgi/challenge-platform/scripts/jsd/main.js IP172.67.72.147:443
Requested byhttps://notifyhubss.net/4419d5733u64c64888l9223d5belafc887d0.html__;!!OepYZ6Q!6a0JnRhFyhQfncK-LhrwBwz4hNh8MS_qxKKgAFDPEKMOCOgQxgYx7CnrvR6bIX3SIR-AMI9IhS0nwyds8fRelwKk4eFibA_/ CertificateIssuerLet's Encrypt Subjectnotifyhubss.net Fingerprint15:15:D9:8E:39:C7:06:EB:3E:95:E9:60:79:C1:C8:71:91:A7:DF:07 ValiditySat, 06 Apr 2024 23:22:32 GMT - Fri, 05 Jul 2024 23:22:31 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: notifyhubss.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
date: Thu, 25 Apr 2024 16:17:16 GMT
content-length: 0
location: /cdn-cgi/challenge-platform/h/b/scripts/jsd/471dc2adc340/main.js
access-control-allow-origin: *
cache-control: max-age=300, public
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=J%2ByH1Rsf1Y8GGTdnaNh133s%2FScNFovikEH1%2F2XpQ1GBg3fG3r1Ak6zL1tEnrO46R0W8X%2FnHLPIoD28SfCW3Ym4C8wdtHEtdqDE%2FsDOoc7sR0gnUB2uYxUoiCInvCKwLN4A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879fa470d9d11bfa-OSL
X-Firefox-Spdy: h2
|
|
| lp.cybeready.net/Forms/MS-online/heroillustration.jpg | 104.26.9.233 | 200 OK | 197 kB |
URL GET HTTP/2lp.cybeready.net/Forms/MS-online/heroillustration.jpg IP104.26.9.233:443
Requested byhttps://notifyhubss.net/4419d5733u64c64888l9223d5belafc887d0.html__;!!OepYZ6Q!6a0JnRhFyhQfncK-LhrwBwz4hNh8MS_qxKKgAFDPEKMOCOgQxgYx7CnrvR6bIX3SIR-AMI9IhS0nwyds8fRelwKk4eFibA_/ CertificateIssuerLet's Encrypt Subjectcybeready.net FingerprintBB:28:14:F8:09:02:DF:1E:F0:B6:74:8B:09:67:6A:55:A6:0D:A0:38 ValidityTue, 16 Apr 2024 23:13:46 GMT - Mon, 15 Jul 2024 23:13:45 GMT
File typeJPEG image data, progressive, precision 8, 1420x1080, components 3 Size197 kB (196768 bytes) Hash65a2cb0d1e14633606d9d0cdda66bf39 1653696f5d951a6046008160a7c2dda9c27ce6f2 7d07ffc8f9e7620f82bbc8d3930ebf428f185d6d3f8cde05580ecb3530c5bbea
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Microsoft |
GET /Forms/MS-online/heroillustration.jpg HTTP/1.1
Host: lp.cybeready.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lp.cybeready.net/Forms/MS-online/index.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 16:17:17 GMT
content-type: image/jpeg
content-length: 196768
cf-bgj: imgq:100,h2pri
cf-polished: origSize=203294
etag: "65283b123eb235e6176ae98c02ac5b1c"
last-modified: Mon, 09 May 2016 08:37:52 GMT
x-amz-id-2: XG3+6C9mqc3QcWizhIvx4fgfZaJzRbXK2qXbN+jym50NzlPI2d9NhQOYshDZoileB+HtasAm91Y=
x-amz-request-id: T2K22ZSAQK4N2D6J
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=M%2BbYXEEFCervIto5tQGctcVsgHrUDgEfSMQzU%2FXwyWu4UK8brinsZzaVVPAfX7rzs2%2FYede9voEklFD9X%2F4C16eeIh0JzzDodDyyAFG7FbjFdyZtQfgleZCK2HS3TkDcXHY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879fa4709f3456b4-OSL
X-Firefox-Spdy: h2
|
|
| notifyhubss.net/cdn-cgi/challenge-platform/h/b/jsd/r/879fa46a7db41bfa | 172.67.72.147 | 200 OK | 0 B |
URL POST HTTP/2notifyhubss.net/cdn-cgi/challenge-platform/h/b/jsd/r/879fa46a7db41bfa IP172.67.72.147:443
Requested byhttps://notifyhubss.net/4419d5733u64c64888l9223d5belafc887d0.html__;!!OepYZ6Q!6a0JnRhFyhQfncK-LhrwBwz4hNh8MS_qxKKgAFDPEKMOCOgQxgYx7CnrvR6bIX3SIR-AMI9IhS0nwyds8fRelwKk4eFibA_/ CertificateIssuerLet's Encrypt Subjectnotifyhubss.net Fingerprint15:15:D9:8E:39:C7:06:EB:3E:95:E9:60:79:C1:C8:71:91:A7:DF:07 ValiditySat, 06 Apr 2024 23:22:32 GMT - Fri, 05 Jul 2024 23:22:31 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /cdn-cgi/challenge-platform/h/b/jsd/r/879fa46a7db41bfa HTTP/1.1
Host: notifyhubss.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12424
Origin: https://notifyhubss.net
DNT: 1
Connection: keep-alive
Referer: https://notifyhubss.net/4419d5733u64c64888l9223d5belafc887d0.html__;!!OepYZ6Q!6a0JnRhFyhQfncK-LhrwBwz4hNh8MS_qxKKgAFDPEKMOCOgQxgYx7CnrvR6bIX3SIR-AMI9IhS0nwyds8fRelwKk4eFibA_/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 16:17:17 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
set-cookie: cf_clearance=KxXpS.WYSElvIpzojCkmn9tFoLEujcdSsLApzy70_ko-1714061837-1.0.1.1-MqKnY2IR896uRdQ3ficf56ZWk27L3WgjkZrxo2JjvMJZfXNEOF5_ZhYlTeWbhSeQcMDY7n0rVT2O57JWuP6ycA; path=/; expires=Fri, 25-Apr-25 16:17:17 GMT; domain=.notifyhubss.net; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=z1Pc8sRVdgdju8mAoxfWds0psg6nBuw7LmajMoPrpc0ONfU8IDi5piS6nhMqd2c1ZqdMYQwE5%2BVcNzQhyBVkMYAwtD5pncewEY5tIsKyYkQDQ7Tc0fc8r279OOAU7o0w7Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879fa4720ab21bfa-OSL
X-Firefox-Spdy: h2
|
|
| notifyhubss.net/4419d5733u64c64888l9223d5belafc887d0.html__;!!OepYZ6Q!6a0JnRhFyhQfncK-LhrwBwz4hNh8MS_qxKKgAFDPEKMOCOgQxgYx7CnrvR6bIX3SIR-AMI9IhS0nwyds8fRelwKk4eFibA_/ | 172.67.72.147 | 200 OK | 0 B |
URL POST HTTP/2notifyhubss.net/4419d5733u64c64888l9223d5belafc887d0.html__;!!OepYZ6Q!6a0JnRhFyhQfncK-LhrwBwz4hNh8MS_qxKKgAFDPEKMOCOgQxgYx7CnrvR6bIX3SIR-AMI9IhS0nwyds8fRelwKk4eFibA_/ IP172.67.72.147:443
Requested byhttps://notifyhubss.net/4419d5733u64c64888l9223d5belafc887d0.html__;!!OepYZ6Q!6a0JnRhFyhQfncK-LhrwBwz4hNh8MS_qxKKgAFDPEKMOCOgQxgYx7CnrvR6bIX3SIR-AMI9IhS0nwyds8fRelwKk4eFibA_/ CertificateIssuerLet's Encrypt Subjectnotifyhubss.net Fingerprint15:15:D9:8E:39:C7:06:EB:3E:95:E9:60:79:C1:C8:71:91:A7:DF:07 ValiditySat, 06 Apr 2024 23:22:32 GMT - Fri, 05 Jul 2024 23:22:31 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | Outlook | Quad9 DNS | malicious | Sinkholed |
POST /4419d5733u64c64888l9223d5belafc887d0.html__;!!OepYZ6Q!6a0JnRhFyhQfncK-LhrwBwz4hNh8MS_qxKKgAFDPEKMOCOgQxgYx7CnrvR6bIX3SIR-AMI9IhS0nwyds8fRelwKk4eFibA_/ HTTP/1.1
Host: notifyhubss.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: json
X-Requested-With: XMLHttpRequest
Content-Length: 65
Origin: https://notifyhubss.net
DNT: 1
Connection: keep-alive
Referer: https://notifyhubss.net/4419d5733u64c64888l9223d5belafc887d0.html__;!!OepYZ6Q!6a0JnRhFyhQfncK-LhrwBwz4hNh8MS_qxKKgAFDPEKMOCOgQxgYx7CnrvR6bIX3SIR-AMI9IhS0nwyds8fRelwKk4eFibA_/
Cookie: requestid=8de558581638f5834dc4a7ea07f682d9
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 16:17:17 GMT
content-type: application/octet-stream
content-length: 0
set-cookie: requestid=95e166527ffdcfd9726336874688c97d
requestid=d6125477fc65bebce3d46e8ee8a329ba
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qMG3Z0xrQa3k0GLXzmkRIrI5dxWDm6Ltr3zMC1sZtvm5rSt51WPYrlzb5fE6Kw36H0XgKr1GH%2BdXVBOfjTjk%2BPxebO08gLlr4jpOH8OH%2FsuydpMZc6vWNSzpWXI91ue2vQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879fa4721ac21bfa-OSL
X-Firefox-Spdy: h2
|
|
| lp.cybeready.net/Forms/MS-online/index.css | 104.26.9.233 | 200 OK | 7.7 kB |
URL GET HTTP/2lp.cybeready.net/Forms/MS-online/index.css IP104.26.9.233:443
Requested byhttps://notifyhubss.net/4419d5733u64c64888l9223d5belafc887d0.html__;!!OepYZ6Q!6a0JnRhFyhQfncK-LhrwBwz4hNh8MS_qxKKgAFDPEKMOCOgQxgYx7CnrvR6bIX3SIR-AMI9IhS0nwyds8fRelwKk4eFibA_/ CertificateIssuerLet's Encrypt Subjectcybeready.net FingerprintBB:28:14:F8:09:02:DF:1E:F0:B6:74:8B:09:67:6A:55:A6:0D:A0:38 ValidityTue, 16 Apr 2024 23:13:46 GMT - Mon, 15 Jul 2024 23:13:45 GMT
File typeASCII text, with very long lines (2426), with no line terminators Hash8a755011320e63395ea79047f1b5073c cdf05a68a5c6fe1c2566f63f92c3997f7352ab6f bd5d2516f5c4a874a8f3d1c03b60ce1c33854626f0bb98ef55e56dda4e46db56
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Microsoft |
GET /Forms/MS-online/index.css HTTP/1.1
Host: lp.cybeready.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://notifyhubss.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 16:17:16 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=3105
etag: W/"f381725154f2d810562dc42f32c6bee2"
last-modified: Mon, 09 May 2016 08:37:42 GMT
x-amz-id-2: vNTVwsgZ/ssYJbpp0SHi+ulC+ZofQkDC16C0QRIkFdu6XYefnXiQtiQWaxwW73EmLrcrcRkjwY4=
x-amz-request-id: VG74JFR04HJXXY4Y
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lFrZmMmluNXATUzjGwFwcWSBaG93FB6QjHQQs87k5H8lUnD9pVBNbjAbw3aIXAsb%2BGJsJtm2Y6FmELZGCqZ85cyScEcYVJV7%2BDU5UrTz4KLPJUuw79NfV0u5%2BlyuGpW8inY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879fa46eed4656b4-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| notifyhubss.net/4419d5733u64c64888l9223d5belafc887d0.html__;!!OepYZ6Q!6a0JnRhFyhQfncK-LhrwBwz4hNh8MS_qxKKgAFDPEKMOCOgQxgYx7CnrvR6bIX3SIR-AMI9IhS0nwyds8fRelwKk4eFibA_/ | 172.67.72.147 | 200 OK | 11 kB |
URL POST HTTP/2notifyhubss.net/4419d5733u64c64888l9223d5belafc887d0.html__;!!OepYZ6Q!6a0JnRhFyhQfncK-LhrwBwz4hNh8MS_qxKKgAFDPEKMOCOgQxgYx7CnrvR6bIX3SIR-AMI9IhS0nwyds8fRelwKk4eFibA_/ IP172.67.72.147:443
Requested byhttps://notifyhubss.net/4419d5733u64c64888l9223d5belafc887d0.html__;!!OepYZ6Q!6a0JnRhFyhQfncK-LhrwBwz4hNh8MS_qxKKgAFDPEKMOCOgQxgYx7CnrvR6bIX3SIR-AMI9IhS0nwyds8fRelwKk4eFibA_/ CertificateIssuerLet's Encrypt Subjectnotifyhubss.net Fingerprint15:15:D9:8E:39:C7:06:EB:3E:95:E9:60:79:C1:C8:71:91:A7:DF:07 ValiditySat, 06 Apr 2024 23:22:32 GMT - Fri, 05 Jul 2024 23:22:31 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (1125) Hash85822a9663954b705e4077ca36ffdee6 75675bf4c106d3c344a27e25205c604b79b76ef5 3b8400bfab47e7d84c3e2df0d639ccd27d28c40963a96e6fddbc20b20a527e2e
Analyzer | Verdict | Alert | OpenPhish | phishing | Outlook | Quad9 DNS | malicious | Sinkholed |
GET /4419d5733u64c64888l9223d5belafc887d0.html__;!!OepYZ6Q!6a0JnRhFyhQfncK-LhrwBwz4hNh8MS_qxKKgAFDPEKMOCOgQxgYx7CnrvR6bIX3SIR-AMI9IhS0nwyds8fRelwKk4eFibA_/ HTTP/1.1
Host: notifyhubss.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 16:17:16 GMT
content-type: text/html
x-amz-expiration: expiry-date="Mon, 20 May 2024 00:00:00 GMT", rule-id="DeleteAfter30Days"
x-amz-server-side-encryption: AES256
x-amz-version-id: rMsph8yKLdEeRKFwd07sFxm7rn_UNBFY
set-cookie: requestid=8de558581638f5834dc4a7ea07f682d9
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VSSb9sOx0lrNvqKONIJ1dHdjp2cGJMmumjYuTrBKn6BCkagbAYVqSuGWdKVmgtwH0gmuHBMHkDn1pKq6EkxSB%2F5L%2FwT9YKmg1%2BEP1bw7tastEDzA84w5xg3k%2BNrQ8V%2FCbA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879fa46a7db41bfa-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| lp.cybeready.net/Forms/MS-online/sanitize.css | 104.26.9.233 | 200 OK | 10 kB |
URL GET HTTP/2lp.cybeready.net/Forms/MS-online/sanitize.css IP104.26.9.233:443
Requested byhttps://notifyhubss.net/4419d5733u64c64888l9223d5belafc887d0.html__;!!OepYZ6Q!6a0JnRhFyhQfncK-LhrwBwz4hNh8MS_qxKKgAFDPEKMOCOgQxgYx7CnrvR6bIX3SIR-AMI9IhS0nwyds8fRelwKk4eFibA_/ CertificateIssuerLet's Encrypt Subjectcybeready.net FingerprintBB:28:14:F8:09:02:DF:1E:F0:B6:74:8B:09:67:6A:55:A6:0D:A0:38 ValidityTue, 16 Apr 2024 23:13:46 GMT - Mon, 15 Jul 2024 23:13:45 GMT
File typeASCII text, with very long lines (526), with no line terminators Hash2675cf7988f6a7a71b241bb7dbe69dec 7900859c6bf14e7c3a72db9bd4a9e49901f78173 4e9b51d07ce50cf3d2e065c34ba5f30d95d75227cd7642ae8d262d6772867e61
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Microsoft |
GET /Forms/MS-online/sanitize.css HTTP/1.1
Host: lp.cybeready.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://notifyhubss.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 16:17:16 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=1014
etag: W/"61d79c3e015865ed0bca45e77eeac723"
last-modified: Mon, 09 May 2016 08:37:44 GMT
x-amz-id-2: HtxRyFtarpcGrcBTbmx/RAbYILShVqV/HXqBpX/hmjs8rUubW99GKMVr+ffagH9uRbjSEX3c1aQ=
x-amz-request-id: 53P3SQSENC68HHA9
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zPHV7Rx5XoxYGMtXx33UdEEjr9rbzMrWkJ69bRHYdGAeVbrK2t%2BMVEkJs%2BKt7iKBs2%2FqtDex84J9QcPCGVSVDu%2FNeJkpE2c5lLsPK4gk1Js%2B1PZKuifo%2FXCZRXo0B5YsY5M%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879fa46eed4156b4-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| notifyhubss.net/4419d5733u64c64888l9223d5belafc887d0.html__;!!OepYZ6Q!6a0JnRhFyhQfncK-LhrwBwz4hNh8MS_qxKKgAFDPEKMOCOgQxgYx7CnrvR6bIX3SIR-AMI9IhS0nwyds8fRelwKk4eFibA_/ | 172.67.72.147 | 200 OK | 0 B |
URL POST HTTP/2notifyhubss.net/4419d5733u64c64888l9223d5belafc887d0.html__;!!OepYZ6Q!6a0JnRhFyhQfncK-LhrwBwz4hNh8MS_qxKKgAFDPEKMOCOgQxgYx7CnrvR6bIX3SIR-AMI9IhS0nwyds8fRelwKk4eFibA_/ IP172.67.72.147:443
Requested byhttps://notifyhubss.net/4419d5733u64c64888l9223d5belafc887d0.html__;!!OepYZ6Q!6a0JnRhFyhQfncK-LhrwBwz4hNh8MS_qxKKgAFDPEKMOCOgQxgYx7CnrvR6bIX3SIR-AMI9IhS0nwyds8fRelwKk4eFibA_/ CertificateIssuerLet's Encrypt Subjectnotifyhubss.net Fingerprint15:15:D9:8E:39:C7:06:EB:3E:95:E9:60:79:C1:C8:71:91:A7:DF:07 ValiditySat, 06 Apr 2024 23:22:32 GMT - Fri, 05 Jul 2024 23:22:31 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | Outlook | Quad9 DNS | malicious | Sinkholed |
POST /4419d5733u64c64888l9223d5belafc887d0.html__;!!OepYZ6Q!6a0JnRhFyhQfncK-LhrwBwz4hNh8MS_qxKKgAFDPEKMOCOgQxgYx7CnrvR6bIX3SIR-AMI9IhS0nwyds8fRelwKk4eFibA_/ HTTP/1.1
Host: notifyhubss.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: json
X-Requested-With: XMLHttpRequest
Content-Length: 109
Origin: https://notifyhubss.net
DNT: 1
Connection: keep-alive
Referer: https://notifyhubss.net/4419d5733u64c64888l9223d5belafc887d0.html__;!!OepYZ6Q!6a0JnRhFyhQfncK-LhrwBwz4hNh8MS_qxKKgAFDPEKMOCOgQxgYx7CnrvR6bIX3SIR-AMI9IhS0nwyds8fRelwKk4eFibA_/
Cookie: requestid=d6125477fc65bebce3d46e8ee8a329ba; cf_clearance=KxXpS.WYSElvIpzojCkmn9tFoLEujcdSsLApzy70_ko-1714061837-1.0.1.1-MqKnY2IR896uRdQ3ficf56ZWk27L3WgjkZrxo2JjvMJZfXNEOF5_ZhYlTeWbhSeQcMDY7n0rVT2O57JWuP6ycA
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 16:17:39 GMT
content-type: application/octet-stream
content-length: 0
set-cookie: requestid=da10950fa51c63bf56ad56d0c9e7eb15
requestid=1f2896ce0072ad3acc5cc071fccd9994
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nDh%2BhcgD%2Bu5QboJ78oNT6M8XTbEZFs7o8%2Ffd0KMtFO7JA4%2FyGMDUBek22Lac27wE6lJOB%2FlYqv0FCPr0yYIA%2BP16vqHvu%2BNViLuPdRERLtcCpaJdXT1KQwXElgoF0XStrA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879fa4fcfb971bfa-OSL
X-Firefox-Spdy: h2
|
|
| notifyhubss.net/cdn-cgi/challenge-platform/h/b/scripts/jsd/471dc2adc340/main.js | 172.67.72.147 | 200 OK | 7.8 kB |
URL GET HTTP/2notifyhubss.net/cdn-cgi/challenge-platform/h/b/scripts/jsd/471dc2adc340/main.js IP172.67.72.147:443
Requested byhttps://notifyhubss.net/4419d5733u64c64888l9223d5belafc887d0.html__;!!OepYZ6Q!6a0JnRhFyhQfncK-LhrwBwz4hNh8MS_qxKKgAFDPEKMOCOgQxgYx7CnrvR6bIX3SIR-AMI9IhS0nwyds8fRelwKk4eFibA_/ CertificateIssuerLet's Encrypt Subjectnotifyhubss.net Fingerprint15:15:D9:8E:39:C7:06:EB:3E:95:E9:60:79:C1:C8:71:91:A7:DF:07 ValiditySat, 06 Apr 2024 23:22:32 GMT - Fri, 05 Jul 2024 23:22:31 GMT
File typeJavaScript source, ASCII text, with very long lines (7847), with no line terminators Hashe01065cedc3039447a731a0141bf16f4 4095c9ecc1034625fec33eab0d1d3d345a8881db 3f142dd05ef09fe9d4ec847bbb278d113e51172b8f7126cd1a506496b57258fd
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /cdn-cgi/challenge-platform/h/b/scripts/jsd/471dc2adc340/main.js HTTP/1.1
Host: notifyhubss.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 16:17:16 GMT
content-type: application/javascript; charset=UTF-8
cache-control: max-age=14400, public
vary: accept-encoding
x-content-type-options: nosniff
content-encoding: br
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HDesJRKchauBbrPuQ1PUQU0aXpezb2MK4nKk9XFhMm5Acd6GwQ4cMj3kobYIxMeL91JB5vPK5LvkZZ%2B6se4icishWBqS7gks7DM2or%2F%2FMfzXzFWzNllD7LcIlquecCnK7w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879fa47109ec1bfa-OSL
X-Firefox-Spdy: h2
|
|
| lp.cybeready.net/Forms/MS-online/favicon.ico | 0.0.0.0 | | 0 B |
URL GET lp.cybeready.net/Forms/MS-online/favicon.ico IP0.0.0.0:0
Requested byhttps://notifyhubss.net/4419d5733u64c64888l9223d5belafc887d0.html__;!!OepYZ6Q!6a0JnRhFyhQfncK-LhrwBwz4hNh8MS_qxKKgAFDPEKMOCOgQxgYx7CnrvR6bIX3SIR-AMI9IhS0nwyds8fRelwKk4eFibA_/ CertificateIssuerLet's Encrypt Subjectcybeready.net FingerprintBB:28:14:F8:09:02:DF:1E:F0:B6:74:8B:09:67:6A:55:A6:0D:A0:38 ValidityTue, 16 Apr 2024 23:13:46 GMT - Mon, 15 Jul 2024 23:13:45 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /Forms/MS-online/favicon.ico HTTP/1.1
Host: lp.cybeready.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://notifyhubss.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 16:17:17 GMT
content-type: image/x-icon
x-amz-id-2: 6INuEGBZE9oJXJPNfkMWFQpfrRs9jtzvoDFiiiK62HrjxfzS3ZnRb6xYEQaIn7RVI1dJidVwvKk=
x-amz-request-id: Q8KWSW825386B3NQ
last-modified: Mon, 09 May 2016 08:37:47 GMT
etag: W/"12e3dac858061d088023b2bd48e2fa96"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ru%2B6Qmtsr4RlYWMeEWTE2mFd0QezSfT4e3LophXZSUg72jxARY7x1NDTl%2BtxvAC6MdIEFP05swSL%2BT6qrxqG55RwrAz6LM0kl7fHhYUM06Xh9e8IkB4PEgVZlzc7rGT90mg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879fa4716fd456b4-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| lp.cybeready.net/Forms/MS-online/validator.js | 104.26.9.233 | 200 OK | 1.1 kB |
URL GET HTTP/2lp.cybeready.net/Forms/MS-online/validator.js IP104.26.9.233:443
Requested byhttps://notifyhubss.net/4419d5733u64c64888l9223d5belafc887d0.html__;!!OepYZ6Q!6a0JnRhFyhQfncK-LhrwBwz4hNh8MS_qxKKgAFDPEKMOCOgQxgYx7CnrvR6bIX3SIR-AMI9IhS0nwyds8fRelwKk4eFibA_/ CertificateIssuerLet's Encrypt Subjectcybeready.net FingerprintBB:28:14:F8:09:02:DF:1E:F0:B6:74:8B:09:67:6A:55:A6:0D:A0:38 ValidityTue, 16 Apr 2024 23:13:46 GMT - Mon, 15 Jul 2024 23:13:45 GMT
File typeASCII text, with very long lines (1158), with no line terminators Hash739cde09074e2d13657b46670db603ff a3a8a20ccd8af534d0693fa9984ad57e9fb7d0d3 ab0eab4eb25b68afc38087d490df3e23b0e902130a9ae4326a6901b045a32d8b
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Microsoft |
GET /Forms/MS-online/validator.js HTTP/1.1
Host: lp.cybeready.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://notifyhubss.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 16:17:16 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=1569
etag: W/"844cb6b1728575eb4bc8bc531bb5a4f3"
last-modified: Mon, 09 May 2016 10:28:26 GMT
x-amz-id-2: zAeZmrBbHpjB2Wch38Za3vj7dfDT5GX963N6ddI2jLmyLq53vqs88+NFo+f5yk9sg6Oytuj+nrQ=
x-amz-request-id: B1C0XJZFX1GTCBRJ
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3XHLu6m2bAGyla3CHpa7Nm1LoLcPMiG3iTnLyjAjzmYkO4OMPt%2BX4FqAtM8HjW6U7fMsHrmAWH%2Fiq0sJlQO1LP9ayG3jlawvcZoUUDJa3KSF8teEbV2RnTBwMNuy29TFVIY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879fa46eed4456b4-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| lp.cybeready.net/common/landing-page.js | 104.26.9.233 | 200 OK | 4.0 kB |
URL GET HTTP/2lp.cybeready.net/common/landing-page.js IP104.26.9.233:443
Requested byhttps://notifyhubss.net/4419d5733u64c64888l9223d5belafc887d0.html__;!!OepYZ6Q!6a0JnRhFyhQfncK-LhrwBwz4hNh8MS_qxKKgAFDPEKMOCOgQxgYx7CnrvR6bIX3SIR-AMI9IhS0nwyds8fRelwKk4eFibA_/ CertificateIssuerLet's Encrypt Subjectcybeready.net FingerprintBB:28:14:F8:09:02:DF:1E:F0:B6:74:8B:09:67:6A:55:A6:0D:A0:38 ValidityTue, 16 Apr 2024 23:13:46 GMT - Mon, 15 Jul 2024 23:13:45 GMT
File typeJavaScript source, ASCII text, with very long lines (4058), with no line terminators Hash31c9d5c1c040c6f1d6e924471ce8179b 051fbd8b0dd9cc8567fcb71fedf2726d0c7cb321 13935b3ce2cace0bb7bd02421279995e5a519bc5622c494ee1536a1ef880f670
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Microsoft |
GET /common/landing-page.js HTTP/1.1
Host: lp.cybeready.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://notifyhubss.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 16:17:16 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=7666
etag: W/"dc85792ec27e1c3bf02af986d07c81eb"
last-modified: Thu, 19 Nov 2015 18:47:02 GMT
x-amz-id-2: z8RsqbBiz1nWYtfNZb1HCsklBEOD8IM7WIC09NRnrI1IXGsWrJYoWs/x8VuE967G4EdDqZTcWR4=
x-amz-request-id: BGDVSRCCTTP72NXR
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ImMk9xvNCbuZ4sZUJg1%2F8jPAZiJu%2BdGe%2B5eGHo4Z71PLYgfCj4i2L9Jsb5qdINKuYTvnOE7%2B148v8L1LkObCjJdNa%2F5TjxUoueVWyueap0Tha3yXterO%2F8tuNjMqvvEbAd4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879fa46eed4856b4-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|