Report - tg-telegram.co/

Report Overview

Submitted URL
tg-telegram.co/
IP
154.82.100.206
ASN
#399077 TERAEXCH
Submitted
2024-03-29 06:10:12
Access
public
Website Title
Telegram Messenger
Final URL
tg-telegram.co/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
96

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
tg-telegram.co	unknown	2023-03-25	2023-05-24	2024-03-14	22 kB	21 MB	154.82.100.206

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-03-28	medium	tg-telegram.co/	Telegram
2024-03-28	medium	tg-telegram.co/	Telegram
2024-03-28	medium	tg-telegram.co/	Telegram
2024-03-28	medium	tg-telegram.co/	Telegram
2024-03-28	medium	tg-telegram.co/	Telegram
2024-03-28	medium	tg-telegram.co/	Telegram
2024-03-28	medium	tg-telegram.co/	Telegram
2024-03-28	medium	tg-telegram.co/	Telegram
2024-03-28	medium	tg-telegram.co/	Telegram
2024-03-28	medium	tg-telegram.co/	Telegram
2024-03-28	medium	tg-telegram.co/	Telegram
2024-03-28	medium	tg-telegram.co/	Telegram
2024-03-28	medium	tg-telegram.co/	Telegram
2024-03-28	medium	tg-telegram.co/	Telegram
2024-03-28	medium	tg-telegram.co/	Telegram
2024-03-28	medium	tg-telegram.co/	Telegram
2024-03-28	medium	tg-telegram.co/	Telegram
2024-03-28	medium	tg-telegram.co/	Telegram
2024-03-28	medium	tg-telegram.co/	Telegram
2024-03-28	medium	tg-telegram.co/	Telegram
2024-03-28	medium	tg-telegram.co/	Telegram
2024-03-28	medium	tg-telegram.co/	Telegram
2024-03-28	medium	tg-telegram.co/	Telegram
2024-03-28	medium	tg-telegram.co/	Telegram
2024-03-28	medium	tg-telegram.co/	Telegram
2024-03-28	medium	tg-telegram.co/	Telegram
2024-03-28	medium	tg-telegram.co/	Telegram
2024-03-28	medium	tg-telegram.co/	Telegram
2024-03-28	medium	tg-telegram.co/	Telegram
2024-03-28	medium	tg-telegram.co/	Telegram
2024-03-28	medium	tg-telegram.co/	Telegram
2024-03-28	medium	tg-telegram.co/	Telegram
2024-03-28	medium	tg-telegram.co/	Telegram
2024-03-28	medium	tg-telegram.co/	Telegram
2024-03-28	medium	tg-telegram.co/	Telegram
2024-03-28	medium	tg-telegram.co/	Telegram
2024-03-28	medium	tg-telegram.co/	Telegram
2024-03-28	medium	tg-telegram.co/	Telegram
2024-03-28	medium	tg-telegram.co/	Telegram
2024-03-28	medium	tg-telegram.co/	Telegram
2024-03-28	medium	tg-telegram.co/	Telegram
2024-03-28	medium	tg-telegram.co/	Telegram
2024-03-28	medium	tg-telegram.co/	Telegram
2024-03-28	medium	tg-telegram.co/	Telegram
2024-03-28	medium	tg-telegram.co/	Telegram
2024-03-28	medium	tg-telegram.co/	Telegram
2024-03-28	medium	tg-telegram.co/	Telegram
2024-03-28	medium	tg-telegram.co/	Telegram

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (24)

	URL	Size	First Seen	Last Seen
	tg-telegram.co/js/downloadlist/t158.js	1.8 kB	2023-08-22	2024-04-26
Pretty URL tg-telegram.co/js/downloadlist/t158.js IP 154.82.100.206 ASN #399077 TERAEXCH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-22 12:02:58 Last Seen2024-04-26 05:43:44 Times Seen798 Hash 5471b90409fa565e42ba12eb5407f47e 98861c71ccf9271dbd11522c1f9cc9a07a52b193 4d8cb1071eb9746ac339793c644c5bb7b471607c9e10ddc52cefbef55199b155 Loading...

	tg-telegram.co/js/downloadlist/t109.js	1.1 kB	2023-08-22	2024-04-26
Pretty URL tg-telegram.co/js/downloadlist/t109.js IP 154.82.100.206 ASN #399077 TERAEXCH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-22 12:02:58 Last Seen2024-04-26 05:43:44 Times Seen797 Hash 08237d27309671227c0fdae0778aa361 97bf37ed683c6768f2c2ad30054610c2e0707259 a0fe39acb33ef027a796a95991f0851513cb40c76a05da7bccfe0b5b62acf723 Loading...

	tg-telegram.co/js/downloadlist/t168.js	4.6 kB	2023-10-11	2024-04-19
Pretty URL tg-telegram.co/js/downloadlist/t168.js IP 154.82.100.206 ASN #399077 TERAEXCH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-11 15:53:58 Last Seen2024-04-19 07:33:37 Times Seen470 Hash 34b8fd5e497198a6d70f87efb668ee35 bcfbe419a14aa108eddca6c96fe208f6cd544a16 3408cd96b5a919c1a85cc41d0dc11c59e86ff5e2b5cfc5cb910eee9609f5e1e0 Loading...

	tg-telegram.co/js/downloadlist/t112.js	447 B	2023-08-22	2024-04-26
Pretty URL tg-telegram.co/js/downloadlist/t112.js IP 154.82.100.206 ASN #399077 TERAEXCH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-22 12:02:59 Last Seen2024-04-26 05:43:44 Times Seen806 Hash f7a63afa6ec355ce766deed8ffa0c022 e3c6dd5b44208981a6b8de67c6cf3c8b47192090 51e6c343b8bfdaed3a028ec35d8ef7b1ae3005b29626ee5a56824fc9100cba83 Loading...

	tg-telegram.co/js/downloadlist/t118.js	2.2 kB	2023-08-22	2024-04-26
Pretty URL tg-telegram.co/js/downloadlist/t118.js IP 154.82.100.206 ASN #399077 TERAEXCH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-22 12:02:59 Last Seen2024-04-26 05:43:44 Times Seen798 Hash 0e671e3aad1ac7a29b3931b42a3c1d12 aa4b3e472d97e5152950093793dc3095a2aa7ed8 2900c9f9c76ccba46cc629b0b63cfb208bccc9fe9e14856c81590f16f0a83c80 Loading...

	tg-telegram.co/js/downloadlist/t127.js	1.1 kB	2023-08-22	2024-04-26
Pretty URL tg-telegram.co/js/downloadlist/t127.js IP 154.82.100.206 ASN #399077 TERAEXCH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-22 12:02:59 Last Seen2024-04-26 05:43:44 Times Seen800 Hash 7afa3d13ec1a7b1522b970b82cee5f3c af4fca474478a297e7beb224279b2c8e9f8906de 57e1ddd475399fe142ab60a79f8d803e1155db1e5842e11e974bfc848f73a2f1 Loading...

	tg-telegram.co/js/downloadlist/t126.js	625 B	2023-09-30	2024-04-26
Pretty URL tg-telegram.co/js/downloadlist/t126.js IP 154.82.100.206 ASN #399077 TERAEXCH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-30 01:43:59 Last Seen2024-04-26 05:43:44 Times Seen553 Hash 1d18f93402ead068f68caa3fa3d9d6f4 2f2dda71b403f2d4b926371de49720de8c6c3ac6 9e3d0e5c2f70c6a337c99df23ca98b53093175d9f562d42d46009c3abb6ca4bd Loading...

	tg-telegram.co/js/downloadlist/t110.js	4.9 kB	2023-09-22	2024-04-26
Pretty URL tg-telegram.co/js/downloadlist/t110.js IP 154.82.100.206 ASN #399077 TERAEXCH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-22 13:17:18 Last Seen2024-04-26 05:43:44 Times Seen611 Hash 9e8ac54dce89effadb3cc715caa5f92c 21ae925f6f9309e51ddeac494be72586a21e0aa5 111f892c1cec5412194f8475b9da3baf3d0f35433931e67d0f83426223f943c0 Loading...

	tg-telegram.co/js/downloadlist/t108.js	2.5 kB	2023-05-18	2024-04-26
Pretty URL tg-telegram.co/js/downloadlist/t108.js IP 154.82.100.206 ASN #399077 TERAEXCH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-18 00:58:47 Last Seen2024-04-26 05:43:43 Times Seen1179 Hash 19610ffffb5f8db346ac477b61881b9a 6c67ec85150a99971ebc6154d93abc63e68e6f3f 25cb46b283e4f73d90fa61138ad36987d098d83abfd2a4e2c0cce04b0352b106 Loading...

	tg-telegram.co/js/downloadlist/t188.js	782 B	2023-11-05	2024-04-26
Pretty URL tg-telegram.co/js/downloadlist/t188.js IP 154.82.100.206 ASN #399077 TERAEXCH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-05 09:07:12 Last Seen2024-04-26 05:43:44 Times Seen334 Hash 368211d1070c79e6a773514dbca26609 16238b82f8cb185568aa9fa8dc60883dd194d2d1 500bbd002818cf0e7c190b19e9c11f76f2c07eeb8a61f8230a92fc3b9e5115fa Loading...

	tg-telegram.co/js/downloadlist/t123.js	1.3 kB	2023-08-22	2024-04-26
Pretty URL tg-telegram.co/js/downloadlist/t123.js IP 154.82.100.206 ASN #399077 TERAEXCH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-22 12:02:59 Last Seen2024-04-26 05:43:44 Times Seen809 Hash 0fb9e618fd33a073988476434552f926 2cc2360494bebcc34e4b63da0a0b6cac8946084a 7eea03bda30f9e9ffa2b4bfc96af1b9cb2dc706d509d036610c5043edaa64163 Loading...

	tg-telegram.co/js/downloadlist/t125.js	5.0 kB	2023-12-05	2024-04-26
Pretty URL tg-telegram.co/js/downloadlist/t125.js IP 154.82.100.206 ASN #399077 TERAEXCH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-05 13:18:47 Last Seen2024-04-26 05:43:44 Times Seen216 Hash ea48da5f8eb8db6ee3432ed5eef6f379 6c51506f7299b97c54522f27d716a390f185782b 96c3c0c0e62036edd61da5e0627a4066ff06843ab64742611bfba8cf11a1f258 Loading...

	tg-telegram.co/js/downloadlist/t101.js	2.3 kB	2023-08-22	2024-04-26
Pretty URL tg-telegram.co/js/downloadlist/t101.js IP 154.82.100.206 ASN #399077 TERAEXCH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-22 12:02:59 Last Seen2024-04-26 05:43:44 Times Seen785 Hash 02087d80b01987cf992aa6c24d73020d 3359c89c9acab6ce06325fe63fb2c6b7fe9511ee 817240a7fd481deb0186a2a108cf98235d66be207c5f3ec85bb1f918257f422c Loading...

	tg-telegram.co/js/downloadlist/dev.js	392 B	2023-08-22	2024-04-26
Pretty URL tg-telegram.co/js/downloadlist/dev.js IP 154.82.100.206 ASN #399077 TERAEXCH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-22 12:02:58 Last Seen2024-04-26 05:43:44 Times Seen790 Hash 2971dd9c134ddb1e5ebfc17421409bce 80a8b5467c565d06bf1d4c9528449fd3e9e3f751 df9ef32fe813a92221dd511a3e0b42326c2fb5a2eb108e45287ae016c1019365 Loading...

	tg-telegram.co/js/downloadlist/t115.js	1.0 kB	2023-08-22	2024-04-26
Pretty URL tg-telegram.co/js/downloadlist/t115.js IP 154.82.100.206 ASN #399077 TERAEXCH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-22 12:02:59 Last Seen2024-04-26 05:43:44 Times Seen800 Hash 743d05427df4e95ab2247b2ab7ee5305 6bad00a45e8dcbb6ef587c893960085e3713492d 23c81fcc5ff70876037f4ae9ef436c0aaaf0702cc879b6c6d63b10653c30906e Loading...

	tg-telegram.co/js/redirect.js	1.4 kB	2023-05-18	2024-04-26
Pretty URL tg-telegram.co/js/redirect.js IP 154.82.100.206 ASN #399077 TERAEXCH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-18 00:58:47 Last Seen2024-04-26 05:43:44 Times Seen1155 Hash 2490e6600fce98123314f7170bb81756 e8fc4723f93c2f5527558c159998d4f864322a48 c3948e7959d9652e15a5b4ced6f078edfef982e4a37f73f2fac6d7e763d5f9ad Loading...

	tg-telegram.co/js/downloadlist/t111.js	2.1 kB	2023-08-22	2024-04-26
Pretty URL tg-telegram.co/js/downloadlist/t111.js IP 154.82.100.206 ASN #399077 TERAEXCH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-22 12:02:59 Last Seen2024-04-26 05:43:44 Times Seen798 Hash 4a7a58d9f7c286949dd871855413b756 dd9c3c33b71480f00b1b73f579812b394f3afad6 dd7f775b17c0076260d598464b4182bb20c8c4b4e72129a803fa2368007b7561 Loading...

	tg-telegram.co/js/downloadlist/t121.js	859 B	2023-08-22	2024-04-26
Pretty URL tg-telegram.co/js/downloadlist/t121.js IP 154.82.100.206 ASN #399077 TERAEXCH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-22 12:02:59 Last Seen2024-04-26 05:43:44 Times Seen799 Hash 48e1282d8f6a96f296d445c641c06d00 9d3072dd2e38c03b2fc911983da0799c1926565d ad7049fae9e9cf23c1146381b5d33f88f317b03a9d83037df5b680155182076c Loading...

	tg-telegram.co/TG_EN/index.html	252 B	2023-09-17	2024-03-29
Pretty URL tg-telegram.co/TG_EN/index.html IP 154.82.100.206 ASN #399077 TERAEXCH Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-17 01:36:37 Last Seen2024-03-29 07:10:13 Times Seen11 Hash 9aeef765e7f5252043b8b4d6ccb04fa6 4f455dadb78735255ba5d96baf9eb4d7e1004544 77dfbea618242171fe6ef13a350b7f8c17276b30170360882755f2969fe21994 Loading...

	tg-telegram.co/js/downloadlist/t888.js	3.5 kB	2023-05-18	2024-04-26
Pretty URL tg-telegram.co/js/downloadlist/t888.js IP 154.82.100.206 ASN #399077 TERAEXCH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-18 00:58:47 Last Seen2024-04-26 05:43:44 Times Seen1178 Hash f5f4169266f561dc31defb576f011271 0081b577b30cebb75724f3132e04cfa6b61be037 a9621c2d617dc70b2e069a909f47485f3725937352047a33ce2c906e31b3e52a Loading...

	tg-telegram.co/js/download.js	3.5 kB	2023-07-12	2024-04-26
Pretty URL tg-telegram.co/js/download.js IP 154.82.100.206 ASN #399077 TERAEXCH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-12 13:54:29 Last Seen2024-04-26 05:43:44 Times Seen1165 Hash 9b3fba1b3c1f07ebaa4cc0d8c627ce46 353ce9ff4ad2cf0dbddf1645425d6f6c6aa8e434 a01cfd51880bb90e4396b1df541b893dcd761de237e5409bba626c165244b2aa Loading...

	tg-telegram.co/TG_EN/Telegram%20Messenger_files/main.js	21 kB	2023-03-08	2024-04-26
Pretty URL tg-telegram.co/TG_EN/Telegram%20Messenger_files/main.js IP 154.82.100.206 ASN #399077 TERAEXCH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:42:25 Last Seen2024-04-26 05:43:44 Times Seen1748 Hash 401f247640476ab57f1562643278c690 88d3d9ce942bc4f83013a1f302fa57281c62dbd8 39a10a24888c4e0898d8c9c9ed332d88d0203c08d0f5cfbbf82c84cd9eee584f Loading...

	tg-telegram.co/js/config.js	360 B	2023-03-12	2024-04-26
Pretty URL tg-telegram.co/js/config.js IP 154.82.100.206 ASN #399077 TERAEXCH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 21:05:48 Last Seen2024-04-26 05:43:44 Times Seen1754 Hash 0f473dc8cb0eed8e543f26b9043a3fb6 56069d0c86850c8bcdef6495d213405e4a8b3f6d e9885f72beec80104d584000fea488790bd8c910793bfb3879dc85c2fc54d98b Loading...

	tg-telegram.co/js/downloadlist/t117.js	2.1 kB	2023-09-11	2024-04-26
Pretty URL tg-telegram.co/js/downloadlist/t117.js IP 154.82.100.206 ASN #399077 TERAEXCH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-11 13:49:19 Last Seen2024-04-26 05:43:44 Times Seen658 Hash 19f2305e9d91046dbb0a0aa18b8d423b 2d2cbe5a3b89a2688624a2abe17ede9e2892b918 e241fbfff68e33667c7a1b8f9a5b594f45510c5893a55a51e6c1ff291c78ba2f Loading...

HTTP Transactions (48)

URL IP Response Size

tg-telegram.co/

154.82.100.206

200 OK

476 B

URL User Request GET HTTP/2
tg-telegram.co/
IP
154.82.100.206:443
ASN
#399077 TERAEXCH

Certificate
IssuerUnizeto Technologies S.A.
Subjecttg-telegram.club
Fingerprint2D:85:83:22:07:98:CF:94:B6:38:BB:C2:FC:3E:F2:CA:F8:12:68:D3
ValiditySun, 26 Mar 2023 02:34:05 GMT - Wed, 24 Apr 2024 02:34:04 GMT

File type
HTML document, ASCII text
Size
476 B (476 bytes)
Hash
6558055141a3d97f9cca7af47ec0e453
d13ab44e7508a71c1e4e35e788b45ae7488168ce
7cbf9f187f8d0ada6bae23489672fd84fd044b935c62099ff80ba28fa7b6565f

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET / HTTP/1.1
Host: tg-telegram.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: NgxFence
date: Fri, 29 Mar 2024 06:09:46 GMT
content-type: text/html
content-length: 476
content-encoding: gzip
last-modified: Wed, 05 Apr 2023 07:53:50 GMT
etag: "ee366c29367d91:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
x-cache: DYNAMIC
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

tg-telegram.co/js/redirect.js

154.82.100.206

200 OK

700 B

URL GET HTTP/2
tg-telegram.co/js/redirect.js
IP
154.82.100.206:443
ASN
#399077 TERAEXCH

Requested by
https://tg-telegram.co/
Certificate
IssuerUnizeto Technologies S.A.
Subjecttg-telegram.club
Fingerprint2D:85:83:22:07:98:CF:94:B6:38:BB:C2:FC:3E:F2:CA:F8:12:68:D3
ValiditySun, 26 Mar 2023 02:34:05 GMT - Wed, 24 Apr 2024 02:34:04 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
700 B (700 bytes)
Hash
2490e6600fce98123314f7170bb81756
e8fc4723f93c2f5527558c159998d4f864322a48
c3948e7959d9652e15a5b4ced6f078edfef982e4a37f73f2fac6d7e763d5f9ad

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /js/redirect.js HTTP/1.1
Host: tg-telegram.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tg-telegram.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Fri, 29 Mar 2024 06:09:46 GMT
content-type: application/javascript
content-length: 700
content-encoding: gzip
last-modified: Wed, 05 Apr 2023 07:53:50 GMT
etag: "ee366c29367d91:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
x-cache: HIT
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

tg-telegram.co/TG_EN/index.html

154.82.100.206

200 OK

7.2 kB

URL GET HTTP/2
tg-telegram.co/TG_EN/index.html
IP
154.82.100.206:443
ASN
#399077 TERAEXCH

Requested by
https://tg-telegram.co/
Certificate
IssuerUnizeto Technologies S.A.
Subjecttg-telegram.club
Fingerprint2D:85:83:22:07:98:CF:94:B6:38:BB:C2:FC:3E:F2:CA:F8:12:68:D3
ValiditySun, 26 Mar 2023 02:34:05 GMT - Wed, 24 Apr 2024 02:34:04 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (3602)
Size
7.2 kB (7159 bytes)
Hash
0cf5b7cb033c80dc537e8bc7ac47410d
6bd6f59a57bfb2a1b85605fcaea935a91a41eb8e
cd4ccc2a6b7af44ef461a77ba184d99011869efade3d775525ab5411d65ef3e9

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /TG_EN/index.html HTTP/1.1
Host: tg-telegram.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tg-telegram.co/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Fri, 29 Mar 2024 06:09:47 GMT
content-type: text/html
content-length: 7159
content-encoding: gzip
last-modified: Sat, 17 Dec 2022 10:11:36 GMT
etag: "927392f2ff11d91:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
x-cache: DYNAMIC
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

tg-telegram.co/favicon.ico

154.82.100.206

404 Not Found

11 kB

URL GET HTTP/2
tg-telegram.co/favicon.ico
IP
154.82.100.206:443
ASN
#399077 TERAEXCH

Requested by
https://tg-telegram.co/
Certificate
IssuerUnizeto Technologies S.A.
Subjecttg-telegram.club
Fingerprint2D:85:83:22:07:98:CF:94:B6:38:BB:C2:FC:3E:F2:CA:F8:12:68:D3
ValiditySun, 26 Mar 2023 02:34:05 GMT - Wed, 24 Apr 2024 02:34:04 GMT

File type
HTML document, ISO-8859 text, with CRLF line terminators
Size
11 kB (11406 bytes)
Hash
d60fe6e305f836d5b942b32278a7b1a7
072d98fd864ad203e2164af8fa5942b6c623bdc8
217997338677cb4c6028849c2c69b11146e515f0bc49c01fa18a3e5f66201204

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: tg-telegram.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tg-telegram.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
server: NgxFence
date: Fri, 29 Mar 2024 06:09:47 GMT
content-type: text/html
x-powered-by: ASP.NET
x-cache: DYNAMIC
strict-transport-security: max-age=31536000; includeSubdomains; preload
content-encoding: br
X-Firefox-Spdy: h2

tg-telegram.co/TG_EN/Telegram%20Messenger_files/telegram.css

154.82.100.206

200 OK

32 kB

URL GET HTTP/2
tg-telegram.co/TG_EN/Telegram%20Messenger_files/telegram.css
IP
154.82.100.206:443
ASN
#399077 TERAEXCH

Requested by
https://tg-telegram.co/TG_EN/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttg-telegram.club
Fingerprint2D:85:83:22:07:98:CF:94:B6:38:BB:C2:FC:3E:F2:CA:F8:12:68:D3
ValiditySun, 26 Mar 2023 02:34:05 GMT - Wed, 24 Apr 2024 02:34:04 GMT

File type
ASCII text, with very long lines (1862)
Size
32 kB (32418 bytes)
Hash
742d5705a5c09fd1482e6644a2465b6b
69308c2f774f8ac9e807a1bdd3b5053b557ac62d
5bb426947db49b8cc5c64fe1dba0838268b519f7d626850490c1462d1731293c

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /TG_EN/Telegram%20Messenger_files/telegram.css HTTP/1.1
Host: tg-telegram.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tg-telegram.co/TG_EN/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Fri, 29 Mar 2024 06:09:47 GMT
content-type: text/css
content-length: 32418
content-encoding: gzip
last-modified: Sat, 24 Sep 2022 10:04:51 GMT
etag: "46e44716fdcfd81:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
x-cache: HIT
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

tg-telegram.co/file/cbc986292284a428e2.jpg

154.82.100.206

200 OK

147 kB

URL GET HTTP/2
tg-telegram.co/file/cbc986292284a428e2.jpg
IP
154.82.100.206:443
ASN
#399077 TERAEXCH

Requested by
https://tg-telegram.co/TG_EN/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttg-telegram.club
Fingerprint2D:85:83:22:07:98:CF:94:B6:38:BB:C2:FC:3E:F2:CA:F8:12:68:D3
ValiditySun, 26 Mar 2023 02:34:05 GMT - Wed, 24 Apr 2024 02:34:04 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 600x357, components 3
Size
147 kB (147023 bytes)
Hash
cee9bffa334b7617b4c695e6e00408f4
3967a9583b519497bcad6432bb5ef7ee9897b324
1a2b102a55c9f22ec06063eb2be4ee54f6ca0e21391c8b096ee9e0c08fe92d89

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /file/cbc986292284a428e2.jpg HTTP/1.1
Host: tg-telegram.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tg-telegram.co/TG_EN/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Fri, 29 Mar 2024 06:09:47 GMT
content-type: image/jpeg
content-length: 147023
last-modified: Wed, 16 Nov 2022 05:52:12 GMT
etag: "7c3bf2927ff9d81:0"
x-powered-by: ASP.NET
x-cache: HIT
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

tg-telegram.co/file/66eebb00fd46acb1ce.jpg

154.82.100.206

200 OK

171 kB

URL GET HTTP/2
tg-telegram.co/file/66eebb00fd46acb1ce.jpg
IP
154.82.100.206:443
ASN
#399077 TERAEXCH

Requested by
https://tg-telegram.co/TG_EN/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttg-telegram.club
Fingerprint2D:85:83:22:07:98:CF:94:B6:38:BB:C2:FC:3E:F2:CA:F8:12:68:D3
ValiditySun, 26 Mar 2023 02:34:05 GMT - Wed, 24 Apr 2024 02:34:04 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 600x374, components 3
Size
171 kB (171309 bytes)
Hash
98e1ad4f472359ad088f4a937ac00c32
55c5d6480be58cccc9f42456654cdd2a57489c32
adbb4d0a389cd244a73b98167b6ee4ce19f18a1c9a31e25628a618609ef0352c

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /file/66eebb00fd46acb1ce.jpg HTTP/1.1
Host: tg-telegram.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tg-telegram.co/TG_EN/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Fri, 29 Mar 2024 06:09:47 GMT
content-type: image/jpeg
content-length: 171309
last-modified: Wed, 16 Nov 2022 05:52:12 GMT
etag: "c7d8ef927ff9d81:0"
x-powered-by: ASP.NET
x-cache: HIT
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

tg-telegram.co/TG_EN/Telegram%20Messenger_files/main.js

154.82.100.206

200 OK

7.2 kB

URL GET HTTP/2
tg-telegram.co/TG_EN/Telegram%20Messenger_files/main.js
IP
154.82.100.206:443
ASN
#399077 TERAEXCH

Requested by
https://tg-telegram.co/TG_EN/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttg-telegram.club
Fingerprint2D:85:83:22:07:98:CF:94:B6:38:BB:C2:FC:3E:F2:CA:F8:12:68:D3
ValiditySun, 26 Mar 2023 02:34:05 GMT - Wed, 24 Apr 2024 02:34:04 GMT

File type
JavaScript source, ASCII text
Size
7.2 kB (7229 bytes)
Hash
401f247640476ab57f1562643278c690
88d3d9ce942bc4f83013a1f302fa57281c62dbd8
39a10a24888c4e0898d8c9c9ed332d88d0203c08d0f5cfbbf82c84cd9eee584f

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /TG_EN/Telegram%20Messenger_files/main.js HTTP/1.1
Host: tg-telegram.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tg-telegram.co/TG_EN/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Fri, 29 Mar 2024 06:09:47 GMT
content-type: application/javascript
content-length: 7229
content-encoding: gzip
last-modified: Sat, 24 Sep 2022 10:04:51 GMT
etag: "46e44716fdcfd81:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
x-cache: HIT
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

tg-telegram.co/js/download.js

154.82.100.206

200 OK

1.2 kB

URL GET HTTP/2
tg-telegram.co/js/download.js
IP
154.82.100.206:443
ASN
#399077 TERAEXCH

Requested by
https://tg-telegram.co/TG_EN/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttg-telegram.club
Fingerprint2D:85:83:22:07:98:CF:94:B6:38:BB:C2:FC:3E:F2:CA:F8:12:68:D3
ValiditySun, 26 Mar 2023 02:34:05 GMT - Wed, 24 Apr 2024 02:34:04 GMT

File type
ASCII text
Size
1.2 kB (1223 bytes)
Hash
9b3fba1b3c1f07ebaa4cc0d8c627ce46
353ce9ff4ad2cf0dbddf1645425d6f6c6aa8e434
a01cfd51880bb90e4396b1df541b893dcd761de237e5409bba626c165244b2aa

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /js/download.js HTTP/1.1
Host: tg-telegram.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tg-telegram.co/TG_EN/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Fri, 29 Mar 2024 06:09:47 GMT
content-type: application/javascript
content-length: 1223
content-encoding: gzip
last-modified: Mon, 10 Jul 2023 11:30:20 GMT
etag: "8cc4de921b3d91:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
x-cache: HIT
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

tg-telegram.co/TG_EN/img/twitter.png

154.82.100.206

200 OK

1.3 kB

URL GET HTTP/2
tg-telegram.co/TG_EN/img/twitter.png
IP
154.82.100.206:443
ASN
#399077 TERAEXCH

Requested by
https://tg-telegram.co/TG_EN/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttg-telegram.club
Fingerprint2D:85:83:22:07:98:CF:94:B6:38:BB:C2:FC:3E:F2:CA:F8:12:68:D3
ValiditySun, 26 Mar 2023 02:34:05 GMT - Wed, 24 Apr 2024 02:34:04 GMT

File type
PNG image data, 21 x 17, 8-bit/color RGBA, non-interlaced
Size
1.3 kB (1272 bytes)
Hash
1ed9bf7633f4f449c8d2df94ea0eb35f
2902ba9c2b127c74c2550298a0578d7d8da941c2
e7d23b06a4ffd600558e5443d1e32daaaf13a27cf7bb8b7cc163a92b4054aaf2

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /TG_EN/img/twitter.png HTTP/1.1
Host: tg-telegram.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tg-telegram.co/TG_EN/Telegram%20Messenger_files/telegram.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Fri, 29 Mar 2024 06:09:47 GMT
content-type: image/png
content-length: 1272
last-modified: Sat, 24 Sep 2022 10:05:32 GMT
etag: "b81d7a2efdcfd81:0"
x-powered-by: ASP.NET
x-cache: HIT
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

tg-telegram.co/TG_EN/img/SiteAndroid.jpg?2

154.82.100.206

200 OK

21 kB

URL GET HTTP/2
tg-telegram.co/TG_EN/img/SiteAndroid.jpg?2
IP
154.82.100.206:443
ASN
#399077 TERAEXCH

Requested by
https://tg-telegram.co/TG_EN/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttg-telegram.club
Fingerprint2D:85:83:22:07:98:CF:94:B6:38:BB:C2:FC:3E:F2:CA:F8:12:68:D3
ValiditySun, 26 Mar 2023 02:34:05 GMT - Wed, 24 Apr 2024 02:34:04 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 290x270, components 3
Size
21 kB (21090 bytes)
Hash
f5eb8dcf9b18f19053034101e920574e
9513c6c5e39669ad27132d470008955dbaae61f0
15a94720d72ed1727fb281ed4af914e17cd8166bb18f5a8484f32f9faff4f365

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /TG_EN/img/SiteAndroid.jpg?2 HTTP/1.1
Host: tg-telegram.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tg-telegram.co/TG_EN/Telegram%20Messenger_files/telegram.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Fri, 29 Mar 2024 06:09:47 GMT
content-type: image/jpeg
content-length: 21090
last-modified: Sat, 24 Sep 2022 10:05:32 GMT
etag: "2cc86f2efdcfd81:0"
x-powered-by: ASP.NET
x-cache: HIT
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

tg-telegram.co/TG_EN/img/SiteiOS.jpg?2

154.82.100.206

200 OK

31 kB

URL GET HTTP/2
tg-telegram.co/TG_EN/img/SiteiOS.jpg?2
IP
154.82.100.206:443
ASN
#399077 TERAEXCH

Requested by
https://tg-telegram.co/TG_EN/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttg-telegram.club
Fingerprint2D:85:83:22:07:98:CF:94:B6:38:BB:C2:FC:3E:F2:CA:F8:12:68:D3
ValiditySun, 26 Mar 2023 02:34:05 GMT - Wed, 24 Apr 2024 02:34:04 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 442x270, components 3
Size
31 kB (31305 bytes)
Hash
89486a05599a1cfd549f8fb2d70e7d73
24867697525df19b88e79d75ff32384eba57b321
5a2c666b6e4f30ff921353cd9a3eccc09b9314c5c5ab11e1a3928936e497b2dc

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /TG_EN/img/SiteiOS.jpg?2 HTTP/1.1
Host: tg-telegram.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tg-telegram.co/TG_EN/Telegram%20Messenger_files/telegram.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Fri, 29 Mar 2024 06:09:47 GMT
content-type: image/jpeg
content-length: 31305
last-modified: Sat, 24 Sep 2022 10:05:32 GMT
etag: "9d1f722efdcfd81:0"
x-powered-by: ASP.NET
x-cache: HIT
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

tg-telegram.co/TG_EN/img/SiteDesktop.jpg?2

154.82.100.206

200 OK

98 kB

URL GET HTTP/2
tg-telegram.co/TG_EN/img/SiteDesktop.jpg?2
IP
154.82.100.206:443
ASN
#399077 TERAEXCH

Requested by
https://tg-telegram.co/TG_EN/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttg-telegram.club
Fingerprint2D:85:83:22:07:98:CF:94:B6:38:BB:C2:FC:3E:F2:CA:F8:12:68:D3
ValiditySun, 26 Mar 2023 02:34:05 GMT - Wed, 24 Apr 2024 02:34:04 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1246x260, components 3
Size
98 kB (97628 bytes)
Hash
fa44f18971e0750249cbcf34f66ae11a
0b4017cad011b2ef346094e1c37abb912fa9b7d7
9d47030d555e1765171c05b57ed755744d6051364674efbd99a98df9ec7fa9cd

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /TG_EN/img/SiteDesktop.jpg?2 HTTP/1.1
Host: tg-telegram.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tg-telegram.co/TG_EN/Telegram%20Messenger_files/telegram.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Fri, 29 Mar 2024 06:09:47 GMT
content-type: image/jpeg
content-length: 97628
last-modified: Sat, 24 Sep 2022 10:05:32 GMT
etag: "47b702efdcfd81:0"
x-powered-by: ASP.NET
x-cache: HIT
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

tg-telegram.co/js/config.js

154.82.100.206

200 OK

251 kB

URL GET HTTP/2
tg-telegram.co/js/config.js
IP
154.82.100.206:443
ASN
#399077 TERAEXCH

Requested by
https://tg-telegram.co/TG_EN/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttg-telegram.club
Fingerprint2D:85:83:22:07:98:CF:94:B6:38:BB:C2:FC:3E:F2:CA:F8:12:68:D3
ValiditySun, 26 Mar 2023 02:34:05 GMT - Wed, 24 Apr 2024 02:34:04 GMT

File type
ASCII text
Size
251 kB (251012 bytes)
Hash
0f473dc8cb0eed8e543f26b9043a3fb6
56069d0c86850c8bcdef6495d213405e4a8b3f6d
e9885f72beec80104d584000fea488790bd8c910793bfb3879dc85c2fc54d98b

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /js/config.js HTTP/1.1
Host: tg-telegram.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tg-telegram.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Fri, 29 Mar 2024 06:09:46 GMT
content-type: application/javascript
last-modified: Thu, 17 Nov 2022 09:32:07 GMT
etag: W/"eef157667fad81:0"
x-powered-by: ASP.NET
x-cache: HIT
strict-transport-security: max-age=31536000; includeSubdomains; preload
content-encoding: br
X-Firefox-Spdy: h2

tg-telegram.co/TG_EN/img/t_main_iOS_demo.mp4

154.82.100.206

206 Partial Content

245 kB

URL GET HTTP/2
tg-telegram.co/TG_EN/img/t_main_iOS_demo.mp4
IP
154.82.100.206:443
ASN
#399077 TERAEXCH

Requested by
https://tg-telegram.co/TG_EN/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttg-telegram.club
Fingerprint2D:85:83:22:07:98:CF:94:B6:38:BB:C2:FC:3E:F2:CA:F8:12:68:D3
ValiditySun, 26 Mar 2023 02:34:05 GMT - Wed, 24 Apr 2024 02:34:04 GMT

File type
ISO Media, MP4 v2 [ISO 14496-14]
Size
245 kB (244748 bytes)
Hash
91daa37e09df8b688f7832e7d6d80aa6
fc59e29275e98dd5dce1efc9b982ec1ba5ad4276
eaf99fdddbab6953d53df2a7e81b5275e90e221e0a7ebd3d99f42cf4b6aba6d2

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /TG_EN/img/t_main_iOS_demo.mp4 HTTP/1.1
Host: tg-telegram.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://tg-telegram.co/TG_EN/index.html
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 206 Partial Content
server: NgxFence
date: Fri, 29 Mar 2024 06:09:47 GMT
content-type: video/mp4
content-length: 244748
last-modified: Sat, 24 Sep 2022 10:05:32 GMT
etag: "5055752efdcfd81:0"
x-powered-by: ASP.NET
x-cache: HIT
strict-transport-security: max-age=31536000; includeSubdomains; preload
content-range: bytes 0-244747/244748
X-Firefox-Spdy: h2

tg-telegram.co/file/sticker8.gif

154.82.100.206

200 OK

1.4 MB

URL GET HTTP/2
tg-telegram.co/file/sticker8.gif
IP
154.82.100.206:443
ASN
#399077 TERAEXCH

Requested by
https://tg-telegram.co/TG_EN/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttg-telegram.club
Fingerprint2D:85:83:22:07:98:CF:94:B6:38:BB:C2:FC:3E:F2:CA:F8:12:68:D3
ValiditySun, 26 Mar 2023 02:34:05 GMT - Wed, 24 Apr 2024 02:34:04 GMT

File type
GIF image data, version 89a, 498 x 498
Size
1.4 MB (1448066 bytes)
Hash
29def2321a6f7ad3a6077e29a35f512e
6188beaff24e5082a89e338185f2ceb3b8781658
cbf92873c514d288e3a34b430ce83152ee8129a12099e0dc6d129b760fd664a1

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /file/sticker8.gif HTTP/1.1
Host: tg-telegram.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tg-telegram.co/TG_EN/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Fri, 29 Mar 2024 06:09:47 GMT
content-type: image/gif
content-length: 1448066
last-modified: Sat, 24 Sep 2022 10:13:56 GMT
etag: "a813345bfecfd81:0"
x-powered-by: ASP.NET
x-cache: HIT
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

tg-telegram.co/file/sticker6.gif

154.82.100.206

200 OK

1.6 MB

URL GET HTTP/2
tg-telegram.co/file/sticker6.gif
IP
154.82.100.206:443
ASN
#399077 TERAEXCH

Requested by
https://tg-telegram.co/TG_EN/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttg-telegram.club
Fingerprint2D:85:83:22:07:98:CF:94:B6:38:BB:C2:FC:3E:F2:CA:F8:12:68:D3
ValiditySun, 26 Mar 2023 02:34:05 GMT - Wed, 24 Apr 2024 02:34:04 GMT

File type
GIF image data, version 89a, 498 x 498
Size
1.6 MB (1633679 bytes)
Hash
90d78203f6dbe758cb285c747db2d2aa
30a07e93e27903e0e2e1221c8d384c9dff28f200
9350cb69c19115dd78c16a9fd9cb0ed17a8d63a53035c6eb56dd558b51f1583e

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /file/sticker6.gif HTTP/1.1
Host: tg-telegram.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tg-telegram.co/TG_EN/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Fri, 29 Mar 2024 06:09:47 GMT
content-type: image/gif
content-length: 1633679
last-modified: Sat, 24 Sep 2022 10:13:56 GMT
etag: "bb1315bfecfd81:0"
x-powered-by: ASP.NET
x-cache: HIT
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

tg-telegram.co/file/sticker9.gif

154.82.100.206

200 OK

1.6 MB

URL GET HTTP/2
tg-telegram.co/file/sticker9.gif
IP
154.82.100.206:443
ASN
#399077 TERAEXCH

Requested by
https://tg-telegram.co/TG_EN/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttg-telegram.club
Fingerprint2D:85:83:22:07:98:CF:94:B6:38:BB:C2:FC:3E:F2:CA:F8:12:68:D3
ValiditySun, 26 Mar 2023 02:34:05 GMT - Wed, 24 Apr 2024 02:34:04 GMT

File type
GIF image data, version 89a, 498 x 498
Size
1.6 MB (1608613 bytes)
Hash
e076bf84e92638004edc6d39a304af7a
7f41cea8f79dfdd13fb9155b8f21ad18528523d9
ca404a2da704da10fdb161e14eefc4d72cdc332eadc08254c2108ede11329275

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /file/sticker9.gif HTTP/1.1
Host: tg-telegram.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tg-telegram.co/TG_EN/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Fri, 29 Mar 2024 06:09:47 GMT
content-type: image/gif
content-length: 1608613
last-modified: Sat, 24 Sep 2022 10:13:56 GMT
etag: "a813345bfecfd81:0"
x-powered-by: ASP.NET
x-cache: HIT
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

tg-telegram.co/js/downloadlist/dev.js

154.82.100.206

200 OK

332 B

URL GET HTTP/2
tg-telegram.co/js/downloadlist/dev.js
IP
154.82.100.206:443
ASN
#399077 TERAEXCH

Requested by
https://tg-telegram.co/TG_EN/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttg-telegram.club
Fingerprint2D:85:83:22:07:98:CF:94:B6:38:BB:C2:FC:3E:F2:CA:F8:12:68:D3
ValiditySun, 26 Mar 2023 02:34:05 GMT - Wed, 24 Apr 2024 02:34:04 GMT

File type
ASCII text
Size
332 B (332 bytes)
Hash
2971dd9c134ddb1e5ebfc17421409bce
80a8b5467c565d06bf1d4c9528449fd3e9e3f751
df9ef32fe813a92221dd511a3e0b42326c2fb5a2eb108e45287ae016c1019365

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /js/downloadlist/dev.js HTTP/1.1
Host: tg-telegram.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tg-telegram.co/TG_EN/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Fri, 29 Mar 2024 06:09:49 GMT
content-type: application/javascript
content-length: 332
content-encoding: gzip
last-modified: Tue, 22 Aug 2023 07:37:33 GMT
etag: "c7bfbc83cbd4d91:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
x-cache: HIT
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

tg-telegram.co/TG_EN/img/t_logo_sprite.svg

154.82.100.206

200 OK

7.0 kB

URL GET HTTP/2
tg-telegram.co/TG_EN/img/t_logo_sprite.svg
IP
154.82.100.206:443
ASN
#399077 TERAEXCH

Requested by
https://tg-telegram.co/TG_EN/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttg-telegram.club
Fingerprint2D:85:83:22:07:98:CF:94:B6:38:BB:C2:FC:3E:F2:CA:F8:12:68:D3
ValiditySun, 26 Mar 2023 02:34:05 GMT - Wed, 24 Apr 2024 02:34:04 GMT

File type
SVG Scalable Vector Graphics image
Size
7.0 kB (6979 bytes)
Hash
e75f7f8ac71782dda40464528a4f619b
1294a00a625b50ff7c3eb3119a71d49399c9ac29
832fbefd7a4fe8f651058597d9f1910883d1cbd56d0ceb343e7d6170aeecf982

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /TG_EN/img/t_logo_sprite.svg HTTP/1.1
Host: tg-telegram.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tg-telegram.co/TG_EN/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Fri, 29 Mar 2024 06:09:47 GMT
content-type: image/svg+xml
last-modified: Sat, 24 Sep 2022 10:05:32 GMT
etag: W/"fb82742efdcfd81:0"
x-powered-by: ASP.NET
x-cache: HIT
strict-transport-security: max-age=31536000; includeSubdomains; preload
content-encoding: br
X-Firefox-Spdy: h2

tg-telegram.co/js/downloadlist/t108.js

154.82.100.206

200 OK

608 B

URL GET HTTP/2
tg-telegram.co/js/downloadlist/t108.js
IP
154.82.100.206:443
ASN
#399077 TERAEXCH

Requested by
https://tg-telegram.co/TG_EN/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttg-telegram.club
Fingerprint2D:85:83:22:07:98:CF:94:B6:38:BB:C2:FC:3E:F2:CA:F8:12:68:D3
ValiditySun, 26 Mar 2023 02:34:05 GMT - Wed, 24 Apr 2024 02:34:04 GMT

File type
ASCII text
Size
608 B (608 bytes)
Hash
19610ffffb5f8db346ac477b61881b9a
6c67ec85150a99971ebc6154d93abc63e68e6f3f
25cb46b283e4f73d90fa61138ad36987d098d83abfd2a4e2c0cce04b0352b106

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /js/downloadlist/t108.js HTTP/1.1
Host: tg-telegram.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tg-telegram.co/TG_EN/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Fri, 29 Mar 2024 06:09:49 GMT
content-type: application/javascript
content-length: 608
content-encoding: gzip
last-modified: Mon, 10 Apr 2023 11:49:04 GMT
etag: "2a514673a26bd91:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
x-cache: HIT
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

tg-telegram.co/TG_EN/img/SiteIconAndroid.svg

154.82.100.206

200 OK

1.5 kB

URL GET HTTP/2
tg-telegram.co/TG_EN/img/SiteIconAndroid.svg
IP
154.82.100.206:443
ASN
#399077 TERAEXCH

Requested by
https://tg-telegram.co/TG_EN/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttg-telegram.club
Fingerprint2D:85:83:22:07:98:CF:94:B6:38:BB:C2:FC:3E:F2:CA:F8:12:68:D3
ValiditySun, 26 Mar 2023 02:34:05 GMT - Wed, 24 Apr 2024 02:34:04 GMT

File type
SVG Scalable Vector Graphics image
Size
1.5 kB (1456 bytes)
Hash
4adc034f937b41471daaea71e64a727d
6b5c52d2a35704410262b70296a14d6a4331929d
3399887fac9f9b581a8c81860c56fca807c0ed6876307a12c54e0161aa4721db

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /TG_EN/img/SiteIconAndroid.svg HTTP/1.1
Host: tg-telegram.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tg-telegram.co/TG_EN/Telegram%20Messenger_files/telegram.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Fri, 29 Mar 2024 06:09:47 GMT
content-type: image/svg+xml
last-modified: Sat, 24 Sep 2022 10:05:32 GMT
etag: W/"47b702efdcfd81:0"
x-powered-by: ASP.NET
x-cache: HIT
strict-transport-security: max-age=31536000; includeSubdomains; preload
content-encoding: br
X-Firefox-Spdy: h2

tg-telegram.co/js/downloadlist/t188.js

154.82.100.206

200 OK

407 B

URL GET HTTP/2
tg-telegram.co/js/downloadlist/t188.js
IP
154.82.100.206:443
ASN
#399077 TERAEXCH

Requested by
https://tg-telegram.co/TG_EN/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttg-telegram.club
Fingerprint2D:85:83:22:07:98:CF:94:B6:38:BB:C2:FC:3E:F2:CA:F8:12:68:D3
ValiditySun, 26 Mar 2023 02:34:05 GMT - Wed, 24 Apr 2024 02:34:04 GMT

File type
ASCII text
Size
407 B (407 bytes)
Hash
368211d1070c79e6a773514dbca26609
16238b82f8cb185568aa9fa8dc60883dd194d2d1
500bbd002818cf0e7c190b19e9c11f76f2c07eeb8a61f8230a92fc3b9e5115fa

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /js/downloadlist/t188.js HTTP/1.1
Host: tg-telegram.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tg-telegram.co/TG_EN/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Fri, 29 Mar 2024 06:09:49 GMT
content-type: application/javascript
content-length: 407
content-encoding: gzip
last-modified: Sun, 05 Nov 2023 06:18:40 GMT
etag: "3bda73ebaffda1:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
x-cache: HIT
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

tg-telegram.co/js/downloadlist/t888.js

154.82.100.206

200 OK

673 B

URL GET HTTP/2
tg-telegram.co/js/downloadlist/t888.js
IP
154.82.100.206:443
ASN
#399077 TERAEXCH

Requested by
https://tg-telegram.co/TG_EN/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttg-telegram.club
Fingerprint2D:85:83:22:07:98:CF:94:B6:38:BB:C2:FC:3E:F2:CA:F8:12:68:D3
ValiditySun, 26 Mar 2023 02:34:05 GMT - Wed, 24 Apr 2024 02:34:04 GMT

File type
ASCII text
Size
673 B (673 bytes)
Hash
f5f4169266f561dc31defb576f011271
0081b577b30cebb75724f3132e04cfa6b61be037
a9621c2d617dc70b2e069a909f47485f3725937352047a33ce2c906e31b3e52a

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /js/downloadlist/t888.js HTTP/1.1
Host: tg-telegram.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tg-telegram.co/TG_EN/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Fri, 29 Mar 2024 06:09:49 GMT
content-type: application/javascript
content-length: 673
content-encoding: gzip
last-modified: Mon, 10 Apr 2023 05:51:57 GMT
etag: "17e1bb8f706bd91:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
x-cache: HIT
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

tg-telegram.co/js/downloadlist/t110.js

154.82.100.206

200 OK

1.0 kB

URL GET HTTP/2
tg-telegram.co/js/downloadlist/t110.js
IP
154.82.100.206:443
ASN
#399077 TERAEXCH

Requested by
https://tg-telegram.co/TG_EN/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttg-telegram.club
Fingerprint2D:85:83:22:07:98:CF:94:B6:38:BB:C2:FC:3E:F2:CA:F8:12:68:D3
ValiditySun, 26 Mar 2023 02:34:05 GMT - Wed, 24 Apr 2024 02:34:04 GMT

File type
ASCII text
Size
1.0 kB (1018 bytes)
Hash
9e8ac54dce89effadb3cc715caa5f92c
21ae925f6f9309e51ddeac494be72586a21e0aa5
111f892c1cec5412194f8475b9da3baf3d0f35433931e67d0f83426223f943c0

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /js/downloadlist/t110.js HTTP/1.1
Host: tg-telegram.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tg-telegram.co/TG_EN/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Fri, 29 Mar 2024 06:09:49 GMT
content-type: application/javascript
content-length: 1018
content-encoding: gzip
last-modified: Fri, 22 Sep 2023 04:34:36 GMT
etag: "c598217eedd91:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
x-cache: HIT
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

tg-telegram.co/js/downloadlist/t111.js

154.82.100.206

200 OK

616 B

URL GET HTTP/2
tg-telegram.co/js/downloadlist/t111.js
IP
154.82.100.206:443
ASN
#399077 TERAEXCH

Requested by
https://tg-telegram.co/TG_EN/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttg-telegram.club
Fingerprint2D:85:83:22:07:98:CF:94:B6:38:BB:C2:FC:3E:F2:CA:F8:12:68:D3
ValiditySun, 26 Mar 2023 02:34:05 GMT - Wed, 24 Apr 2024 02:34:04 GMT

File type
ASCII text
Size
616 B (616 bytes)
Hash
4a7a58d9f7c286949dd871855413b756
dd9c3c33b71480f00b1b73f579812b394f3afad6
dd7f775b17c0076260d598464b4182bb20c8c4b4e72129a803fa2368007b7561

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /js/downloadlist/t111.js HTTP/1.1
Host: tg-telegram.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tg-telegram.co/TG_EN/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Fri, 29 Mar 2024 06:09:49 GMT
content-type: application/javascript
content-length: 616
content-encoding: gzip
last-modified: Tue, 22 Aug 2023 07:36:40 GMT
etag: "9d33e463cbd4d91:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
x-cache: HIT
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

tg-telegram.co/js/downloadlist/t112.js

154.82.100.206

200 OK

344 B

URL GET HTTP/2
tg-telegram.co/js/downloadlist/t112.js
IP
154.82.100.206:443
ASN
#399077 TERAEXCH

Requested by
https://tg-telegram.co/TG_EN/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttg-telegram.club
Fingerprint2D:85:83:22:07:98:CF:94:B6:38:BB:C2:FC:3E:F2:CA:F8:12:68:D3
ValiditySun, 26 Mar 2023 02:34:05 GMT - Wed, 24 Apr 2024 02:34:04 GMT

File type
ASCII text
Size
344 B (344 bytes)
Hash
f7a63afa6ec355ce766deed8ffa0c022
e3c6dd5b44208981a6b8de67c6cf3c8b47192090
51e6c343b8bfdaed3a028ec35d8ef7b1ae3005b29626ee5a56824fc9100cba83

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /js/downloadlist/t112.js HTTP/1.1
Host: tg-telegram.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tg-telegram.co/TG_EN/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Fri, 29 Mar 2024 06:09:49 GMT
content-type: application/javascript
content-length: 344
content-encoding: gzip
last-modified: Tue, 22 Aug 2023 07:36:40 GMT
etag: "9d33e463cbd4d91:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
x-cache: HIT
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

tg-telegram.co/js/downloadlist/t117.js

154.82.100.206

200 OK

608 B

URL GET HTTP/2
tg-telegram.co/js/downloadlist/t117.js
IP
154.82.100.206:443
ASN
#399077 TERAEXCH

Requested by
https://tg-telegram.co/TG_EN/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttg-telegram.club
Fingerprint2D:85:83:22:07:98:CF:94:B6:38:BB:C2:FC:3E:F2:CA:F8:12:68:D3
ValiditySun, 26 Mar 2023 02:34:05 GMT - Wed, 24 Apr 2024 02:34:04 GMT

File type
ASCII text
Size
608 B (608 bytes)
Hash
19f2305e9d91046dbb0a0aa18b8d423b
2d2cbe5a3b89a2688624a2abe17ede9e2892b918
e241fbfff68e33667c7a1b8f9a5b594f45510c5893a55a51e6c1ff291c78ba2f

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /js/downloadlist/t117.js HTTP/1.1
Host: tg-telegram.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tg-telegram.co/TG_EN/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Fri, 29 Mar 2024 06:09:49 GMT
content-type: application/javascript
content-length: 608
content-encoding: gzip
last-modified: Mon, 11 Sep 2023 07:02:24 GMT
etag: "ad6286ea7de4d91:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
x-cache: HIT
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

tg-telegram.co/js/downloadlist/t118.js

154.82.100.206

200 OK

501 B

URL GET HTTP/2
tg-telegram.co/js/downloadlist/t118.js
IP
154.82.100.206:443
ASN
#399077 TERAEXCH

Requested by
https://tg-telegram.co/TG_EN/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttg-telegram.club
Fingerprint2D:85:83:22:07:98:CF:94:B6:38:BB:C2:FC:3E:F2:CA:F8:12:68:D3
ValiditySun, 26 Mar 2023 02:34:05 GMT - Wed, 24 Apr 2024 02:34:04 GMT

File type
ASCII text
Size
501 B (501 bytes)
Hash
0e671e3aad1ac7a29b3931b42a3c1d12
aa4b3e472d97e5152950093793dc3095a2aa7ed8
2900c9f9c76ccba46cc629b0b63cfb208bccc9fe9e14856c81590f16f0a83c80

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /js/downloadlist/t118.js HTTP/1.1
Host: tg-telegram.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tg-telegram.co/TG_EN/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Fri, 29 Mar 2024 06:09:49 GMT
content-type: application/javascript
content-length: 501
content-encoding: gzip
last-modified: Tue, 22 Aug 2023 07:36:40 GMT
etag: "ed96e663cbd4d91:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
x-cache: HIT
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

tg-telegram.co/js/downloadlist/t158.js

154.82.100.206

200 OK

446 B

URL GET HTTP/2
tg-telegram.co/js/downloadlist/t158.js
IP
154.82.100.206:443
ASN
#399077 TERAEXCH

Requested by
https://tg-telegram.co/TG_EN/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttg-telegram.club
Fingerprint2D:85:83:22:07:98:CF:94:B6:38:BB:C2:FC:3E:F2:CA:F8:12:68:D3
ValiditySun, 26 Mar 2023 02:34:05 GMT - Wed, 24 Apr 2024 02:34:04 GMT

File type
ASCII text
Size
446 B (446 bytes)
Hash
5471b90409fa565e42ba12eb5407f47e
98861c71ccf9271dbd11522c1f9cc9a07a52b193
4d8cb1071eb9746ac339793c644c5bb7b471607c9e10ddc52cefbef55199b155

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /js/downloadlist/t158.js HTTP/1.1
Host: tg-telegram.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tg-telegram.co/TG_EN/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Fri, 29 Mar 2024 06:09:49 GMT
content-type: application/javascript
content-length: 446
content-encoding: gzip
last-modified: Tue, 22 Aug 2023 07:36:40 GMT
etag: "ed96e663cbd4d91:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
x-cache: HIT
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

tg-telegram.co/js/downloadlist/t109.js

154.82.100.206

200 OK

418 B

URL GET HTTP/2
tg-telegram.co/js/downloadlist/t109.js
IP
154.82.100.206:443
ASN
#399077 TERAEXCH

Requested by
https://tg-telegram.co/TG_EN/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttg-telegram.club
Fingerprint2D:85:83:22:07:98:CF:94:B6:38:BB:C2:FC:3E:F2:CA:F8:12:68:D3
ValiditySun, 26 Mar 2023 02:34:05 GMT - Wed, 24 Apr 2024 02:34:04 GMT

File type
ASCII text
Size
418 B (418 bytes)
Hash
08237d27309671227c0fdae0778aa361
97bf37ed683c6768f2c2ad30054610c2e0707259
a0fe39acb33ef027a796a95991f0851513cb40c76a05da7bccfe0b5b62acf723

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /js/downloadlist/t109.js HTTP/1.1
Host: tg-telegram.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tg-telegram.co/TG_EN/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Fri, 29 Mar 2024 06:09:49 GMT
content-type: application/javascript
content-length: 418
content-encoding: gzip
last-modified: Tue, 22 Aug 2023 07:36:40 GMT
etag: "9d33e463cbd4d91:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
x-cache: HIT
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

tg-telegram.co/js/downloadlist/t115.js

154.82.100.206

200 OK

399 B

URL GET HTTP/2
tg-telegram.co/js/downloadlist/t115.js
IP
154.82.100.206:443
ASN
#399077 TERAEXCH

Requested by
https://tg-telegram.co/TG_EN/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttg-telegram.club
Fingerprint2D:85:83:22:07:98:CF:94:B6:38:BB:C2:FC:3E:F2:CA:F8:12:68:D3
ValiditySun, 26 Mar 2023 02:34:05 GMT - Wed, 24 Apr 2024 02:34:04 GMT

File type
ASCII text
Size
399 B (399 bytes)
Hash
743d05427df4e95ab2247b2ab7ee5305
6bad00a45e8dcbb6ef587c893960085e3713492d
23c81fcc5ff70876037f4ae9ef436c0aaaf0702cc879b6c6d63b10653c30906e

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /js/downloadlist/t115.js HTTP/1.1
Host: tg-telegram.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tg-telegram.co/TG_EN/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Fri, 29 Mar 2024 06:09:49 GMT
content-type: application/javascript
content-length: 399
content-encoding: gzip
last-modified: Tue, 22 Aug 2023 07:36:40 GMT
etag: "9d33e463cbd4d91:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
x-cache: HIT
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

tg-telegram.co/js/downloadlist/t121.js

154.82.100.206

200 OK

396 B

URL GET HTTP/2
tg-telegram.co/js/downloadlist/t121.js
IP
154.82.100.206:443
ASN
#399077 TERAEXCH

Requested by
https://tg-telegram.co/TG_EN/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttg-telegram.club
Fingerprint2D:85:83:22:07:98:CF:94:B6:38:BB:C2:FC:3E:F2:CA:F8:12:68:D3
ValiditySun, 26 Mar 2023 02:34:05 GMT - Wed, 24 Apr 2024 02:34:04 GMT

File type
ASCII text, with CRLF line terminators
Size
396 B (396 bytes)
Hash
48e1282d8f6a96f296d445c641c06d00
9d3072dd2e38c03b2fc911983da0799c1926565d
ad7049fae9e9cf23c1146381b5d33f88f317b03a9d83037df5b680155182076c

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /js/downloadlist/t121.js HTTP/1.1
Host: tg-telegram.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tg-telegram.co/TG_EN/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Fri, 29 Mar 2024 06:09:49 GMT
content-type: application/javascript
content-length: 396
content-encoding: gzip
last-modified: Tue, 22 Aug 2023 07:36:40 GMT
etag: "ed96e663cbd4d91:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
x-cache: HIT
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

tg-telegram.co/js/downloadlist/t123.js

154.82.100.206

200 OK

456 B

URL GET HTTP/2
tg-telegram.co/js/downloadlist/t123.js
IP
154.82.100.206:443
ASN
#399077 TERAEXCH

Requested by
https://tg-telegram.co/TG_EN/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttg-telegram.club
Fingerprint2D:85:83:22:07:98:CF:94:B6:38:BB:C2:FC:3E:F2:CA:F8:12:68:D3
ValiditySun, 26 Mar 2023 02:34:05 GMT - Wed, 24 Apr 2024 02:34:04 GMT

File type
ASCII text, with CRLF line terminators
Size
456 B (456 bytes)
Hash
0fb9e618fd33a073988476434552f926
2cc2360494bebcc34e4b63da0a0b6cac8946084a
7eea03bda30f9e9ffa2b4bfc96af1b9cb2dc706d509d036610c5043edaa64163

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /js/downloadlist/t123.js HTTP/1.1
Host: tg-telegram.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tg-telegram.co/TG_EN/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Fri, 29 Mar 2024 06:09:49 GMT
content-type: application/javascript
content-length: 456
content-encoding: gzip
last-modified: Tue, 22 Aug 2023 07:36:40 GMT
etag: "ed96e663cbd4d91:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
x-cache: HIT
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

tg-telegram.co/js/downloadlist/t125.js

154.82.100.206

200 OK

1.1 kB

URL GET HTTP/2
tg-telegram.co/js/downloadlist/t125.js
IP
154.82.100.206:443
ASN
#399077 TERAEXCH

Requested by
https://tg-telegram.co/TG_EN/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttg-telegram.club
Fingerprint2D:85:83:22:07:98:CF:94:B6:38:BB:C2:FC:3E:F2:CA:F8:12:68:D3
ValiditySun, 26 Mar 2023 02:34:05 GMT - Wed, 24 Apr 2024 02:34:04 GMT

File type
ASCII text, with CRLF line terminators
Size
1.1 kB (1143 bytes)
Hash
ea48da5f8eb8db6ee3432ed5eef6f379
6c51506f7299b97c54522f27d716a390f185782b
96c3c0c0e62036edd61da5e0627a4066ff06843ab64742611bfba8cf11a1f258

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /js/downloadlist/t125.js HTTP/1.1
Host: tg-telegram.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tg-telegram.co/TG_EN/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Fri, 29 Mar 2024 06:09:49 GMT
content-type: application/javascript
content-length: 1143
content-encoding: gzip
last-modified: Fri, 01 Dec 2023 10:23:08 GMT
etag: "25e82c614024da1:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
x-cache: HIT
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

tg-telegram.co/js/downloadlist/t127.js

154.82.100.206

200 OK

411 B

URL GET HTTP/2
tg-telegram.co/js/downloadlist/t127.js
IP
154.82.100.206:443
ASN
#399077 TERAEXCH

Requested by
https://tg-telegram.co/TG_EN/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttg-telegram.club
Fingerprint2D:85:83:22:07:98:CF:94:B6:38:BB:C2:FC:3E:F2:CA:F8:12:68:D3
ValiditySun, 26 Mar 2023 02:34:05 GMT - Wed, 24 Apr 2024 02:34:04 GMT

File type
ASCII text
Size
411 B (411 bytes)
Hash
7afa3d13ec1a7b1522b970b82cee5f3c
af4fca474478a297e7beb224279b2c8e9f8906de
57e1ddd475399fe142ab60a79f8d803e1155db1e5842e11e974bfc848f73a2f1

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /js/downloadlist/t127.js HTTP/1.1
Host: tg-telegram.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tg-telegram.co/TG_EN/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Fri, 29 Mar 2024 06:09:49 GMT
content-type: application/javascript
content-length: 411
content-encoding: gzip
last-modified: Tue, 22 Aug 2023 06:43:57 GMT
etag: "eb76ef6c4d4d91:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
x-cache: HIT
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

tg-telegram.co/js/downloadlist/t126.js

154.82.100.206

200 OK

368 B

URL GET HTTP/2
tg-telegram.co/js/downloadlist/t126.js
IP
154.82.100.206:443
ASN
#399077 TERAEXCH

Requested by
https://tg-telegram.co/TG_EN/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttg-telegram.club
Fingerprint2D:85:83:22:07:98:CF:94:B6:38:BB:C2:FC:3E:F2:CA:F8:12:68:D3
ValiditySun, 26 Mar 2023 02:34:05 GMT - Wed, 24 Apr 2024 02:34:04 GMT

File type
ASCII text
Size
368 B (368 bytes)
Hash
1d18f93402ead068f68caa3fa3d9d6f4
2f2dda71b403f2d4b926371de49720de8c6c3ac6
9e3d0e5c2f70c6a337c99df23ca98b53093175d9f562d42d46009c3abb6ca4bd

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /js/downloadlist/t126.js HTTP/1.1
Host: tg-telegram.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tg-telegram.co/TG_EN/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Fri, 29 Mar 2024 06:09:49 GMT
content-type: application/javascript
content-length: 368
content-encoding: gzip
last-modified: Fri, 29 Sep 2023 08:59:51 GMT
etag: "8a2bcb4eb3f2d91:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
x-cache: HIT
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

tg-telegram.co/file/sticker4.gif

154.82.100.206

200 OK

2.1 MB

URL GET HTTP/2
tg-telegram.co/file/sticker4.gif
IP
154.82.100.206:443
ASN
#399077 TERAEXCH

Requested by
https://tg-telegram.co/TG_EN/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttg-telegram.club
Fingerprint2D:85:83:22:07:98:CF:94:B6:38:BB:C2:FC:3E:F2:CA:F8:12:68:D3
ValiditySun, 26 Mar 2023 02:34:05 GMT - Wed, 24 Apr 2024 02:34:04 GMT

File type
GIF image data, version 89a, 498 x 498
Size
2.1 MB (2129042 bytes)
Hash
46d011eb60e15422db94232e0de01d02
8607ccf9a131cd73de61f8007932c976a6fd0f4a
3222297291e5f481e7c1f37769b8a3ee3fe41a071cce77eca1d20b5b62cca480

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /file/sticker4.gif HTTP/1.1
Host: tg-telegram.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tg-telegram.co/TG_EN/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Fri, 29 Mar 2024 06:09:47 GMT
content-type: image/gif
content-length: 2129042
last-modified: Sat, 24 Sep 2022 10:13:56 GMT
etag: "8c4d2f5bfecfd81:0"
x-powered-by: ASP.NET
x-cache: HIT
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

tg-telegram.co/file/sticker5.gif

154.82.100.206

200 OK

2.2 MB

URL GET HTTP/2
tg-telegram.co/file/sticker5.gif
IP
154.82.100.206:443
ASN
#399077 TERAEXCH

Requested by
https://tg-telegram.co/TG_EN/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttg-telegram.club
Fingerprint2D:85:83:22:07:98:CF:94:B6:38:BB:C2:FC:3E:F2:CA:F8:12:68:D3
ValiditySun, 26 Mar 2023 02:34:05 GMT - Wed, 24 Apr 2024 02:34:04 GMT

File type
GIF image data, version 89a, 498 x 498
Size
2.2 MB (2230056 bytes)
Hash
e7cb6a79676d432e60a249f42b65215c
2f10f14ea219080f969e03a2762a351c4ea7bb59
a81216807aed1bb94625e173069bd37c89b6870bac23c99fd5ab2ac2d1d90761

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /file/sticker5.gif HTTP/1.1
Host: tg-telegram.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tg-telegram.co/TG_EN/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Fri, 29 Mar 2024 06:09:47 GMT
content-type: image/gif
content-length: 2230056
last-modified: Sat, 24 Sep 2022 10:13:56 GMT
etag: "8c4d2f5bfecfd81:0"
x-powered-by: ASP.NET
x-cache: HIT
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

tg-telegram.co/file/sticker7.gif

154.82.100.206

200 OK

2.3 MB

URL GET HTTP/2
tg-telegram.co/file/sticker7.gif
IP
154.82.100.206:443
ASN
#399077 TERAEXCH

Requested by
https://tg-telegram.co/TG_EN/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttg-telegram.club
Fingerprint2D:85:83:22:07:98:CF:94:B6:38:BB:C2:FC:3E:F2:CA:F8:12:68:D3
ValiditySun, 26 Mar 2023 02:34:05 GMT - Wed, 24 Apr 2024 02:34:04 GMT

File type
GIF image data, version 89a, 498 x 498
Size
2.3 MB (2291648 bytes)
Hash
f304941989933ebde052c67f8dbbe1dc
a4c9ac7d35fddc93be378e6fcbbbc33626784156
593c142274eb8be45df71640c8f87b7404917dfc84e1b1a8ea07e54934ceea39

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /file/sticker7.gif HTTP/1.1
Host: tg-telegram.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tg-telegram.co/TG_EN/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Fri, 29 Mar 2024 06:09:47 GMT
content-type: image/gif
content-length: 2291648
last-modified: Sat, 24 Sep 2022 10:13:56 GMT
etag: "a813345bfecfd81:0"
x-powered-by: ASP.NET
x-cache: HIT
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

tg-telegram.co/file/sticker2.gif

154.82.100.206

200 OK

2.6 MB

URL GET HTTP/2
tg-telegram.co/file/sticker2.gif
IP
154.82.100.206:443
ASN
#399077 TERAEXCH

Requested by
https://tg-telegram.co/TG_EN/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttg-telegram.club
Fingerprint2D:85:83:22:07:98:CF:94:B6:38:BB:C2:FC:3E:F2:CA:F8:12:68:D3
ValiditySun, 26 Mar 2023 02:34:05 GMT - Wed, 24 Apr 2024 02:34:04 GMT

File type
GIF image data, version 89a, 498 x 498
Size
2.6 MB (2634088 bytes)
Hash
ce64aa8ea574000e2fa916011f5083bf
2345f4575df638b2802a259612c77f915276f22f
96e6d87147c464f7c4cccea2c1e63d3504a9daeee4478d37c2a8b17af1451ff1

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /file/sticker2.gif HTTP/1.1
Host: tg-telegram.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tg-telegram.co/TG_EN/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Fri, 29 Mar 2024 06:09:47 GMT
content-type: image/gif
content-length: 2634088
last-modified: Sat, 24 Sep 2022 10:13:56 GMT
etag: "a5ea2c5bfecfd81:0"
x-powered-by: ASP.NET
x-cache: HIT
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

tg-telegram.co/TG_EN/file/sticker.gif

154.82.100.206

200 OK

2.7 MB

URL GET HTTP/2
tg-telegram.co/TG_EN/file/sticker.gif
IP
154.82.100.206:443
ASN
#399077 TERAEXCH

Requested by
https://tg-telegram.co/TG_EN/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttg-telegram.club
Fingerprint2D:85:83:22:07:98:CF:94:B6:38:BB:C2:FC:3E:F2:CA:F8:12:68:D3
ValiditySun, 26 Mar 2023 02:34:05 GMT - Wed, 24 Apr 2024 02:34:04 GMT

File type
GIF image data, version 89a, 498 x 498
Size
2.7 MB (2651541 bytes)
Hash
cead1bcbbeae7232101f2fd6449f2c4e
de369dc607216b78a33a8b5294e21604807101f9
ed2be81c06756382bda1ec14a9bb6d068cfefffced3bb25cdf6cdaa28d738e45

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /TG_EN/file/sticker.gif HTTP/1.1
Host: tg-telegram.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tg-telegram.co/TG_EN/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Fri, 29 Mar 2024 06:09:47 GMT
content-type: image/gif
content-length: 2651541
last-modified: Sat, 24 Sep 2022 10:05:29 GMT
etag: "82eba2dfdcfd81:0"
x-powered-by: ASP.NET
x-cache: HIT
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

tg-telegram.co/file/sticker3.gif

154.82.100.206

200 OK

2.7 MB

URL GET HTTP/2
tg-telegram.co/file/sticker3.gif
IP
154.82.100.206:443
ASN
#399077 TERAEXCH

Requested by
https://tg-telegram.co/TG_EN/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttg-telegram.club
Fingerprint2D:85:83:22:07:98:CF:94:B6:38:BB:C2:FC:3E:F2:CA:F8:12:68:D3
ValiditySun, 26 Mar 2023 02:34:05 GMT - Wed, 24 Apr 2024 02:34:04 GMT

File type
GIF image data, version 89a, 498 x 498
Size
2.7 MB (2712732 bytes)
Hash
d432e3b111d1dd0e72a65242121b92cc
ea2dd798824bb2cde299eee30083faaaf48fd1e4
990947e7c5a4fb3984ff63a0f386688a7a1a3efc3600ba39a05ca1f218b22feb

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /file/sticker3.gif HTTP/1.1
Host: tg-telegram.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tg-telegram.co/TG_EN/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Fri, 29 Mar 2024 06:09:47 GMT
content-type: image/gif
content-length: 2712732
last-modified: Sat, 24 Sep 2022 10:13:56 GMT
etag: "a5ea2c5bfecfd81:0"
x-powered-by: ASP.NET
x-cache: HIT
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

tg-telegram.co/TG_EN/Telegram%20Messenger_files/bootstrap.min.css

154.82.100.206

200 OK

42 kB

URL GET HTTP/2
tg-telegram.co/TG_EN/Telegram%20Messenger_files/bootstrap.min.css
IP
154.82.100.206:443
ASN
#399077 TERAEXCH

Requested by
https://tg-telegram.co/TG_EN/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttg-telegram.club
Fingerprint2D:85:83:22:07:98:CF:94:B6:38:BB:C2:FC:3E:F2:CA:F8:12:68:D3
ValiditySun, 26 Mar 2023 02:34:05 GMT - Wed, 24 Apr 2024 02:34:04 GMT

File type
ASCII text, with very long lines (42164)
Size
42 kB (42523 bytes)
Hash
c2656e265ef58a9cc9f4b70b15da5fb9
85c5ebdb89d4574d72688c2650d4b84b9b09770a
f1d083ffaa644c708f11db29707aa57c19246e6d32643b03fee3f82c17b224b3

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /TG_EN/Telegram%20Messenger_files/bootstrap.min.css HTTP/1.1
Host: tg-telegram.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tg-telegram.co/TG_EN/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: NgxFence
date: Fri, 29 Mar 2024 06:09:47 GMT
content-type: text/css
content-length: 10876
content-encoding: gzip
last-modified: Sat, 24 Sep 2022 10:04:51 GMT
etag: "46e44716fdcfd81:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
x-cache: HIT
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

tg-telegram.co/TG_EN/img/t_main_Android_demo.mp4

154.82.100.206

206 Partial Content

251 kB

URL GET HTTP/2
tg-telegram.co/TG_EN/img/t_main_Android_demo.mp4
IP
154.82.100.206:443
ASN
#399077 TERAEXCH

Requested by
https://tg-telegram.co/TG_EN/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttg-telegram.club
Fingerprint2D:85:83:22:07:98:CF:94:B6:38:BB:C2:FC:3E:F2:CA:F8:12:68:D3
ValiditySun, 26 Mar 2023 02:34:05 GMT - Wed, 24 Apr 2024 02:34:04 GMT

File type
ISO Media, MP4 v2 [ISO 14496-14]
Size
251 kB (250838 bytes)
Hash
36bebc24f7516d37cbfbb4ee2aedf6f6
c40bb63cbe7c48f67faf8db89240fd60f912e1ce
03b2ae439d25e00e297b01942883f4ef8a6a5c87e01dd0faec6f1eef24b92816

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /TG_EN/img/t_main_Android_demo.mp4 HTTP/1.1
Host: tg-telegram.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://tg-telegram.co/TG_EN/index.html
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 206 Partial Content
server: NgxFence
date: Fri, 29 Mar 2024 06:09:47 GMT
content-type: video/mp4
content-length: 250838
last-modified: Sat, 24 Sep 2022 10:05:32 GMT
etag: "5055752efdcfd81:0"
x-powered-by: ASP.NET
x-cache: HIT
strict-transport-security: max-age=31536000; includeSubdomains; preload
content-range: bytes 0-250837/250838
X-Firefox-Spdy: h2

tg-telegram.co/TG_EN/img/SiteIconApple.svg

154.82.100.206

200 OK

443 B

URL GET HTTP/2
tg-telegram.co/TG_EN/img/SiteIconApple.svg
IP
154.82.100.206:443
ASN
#399077 TERAEXCH

Requested by
https://tg-telegram.co/TG_EN/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttg-telegram.club
Fingerprint2D:85:83:22:07:98:CF:94:B6:38:BB:C2:FC:3E:F2:CA:F8:12:68:D3
ValiditySun, 26 Mar 2023 02:34:05 GMT - Wed, 24 Apr 2024 02:34:04 GMT

File type
SVG Scalable Vector Graphics image
Size
443 B (443 bytes)
Hash
b0bd9d05008808e2fb081716c35d1e09
b1da366b45b2a88fe41b960c52bd013208cf4ee5
4e2e3090121394e28ee59c238ffd4da4e3956eaad206f6999695c2f539a4d516

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /TG_EN/img/SiteIconApple.svg HTTP/1.1
Host: tg-telegram.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tg-telegram.co/TG_EN/Telegram%20Messenger_files/telegram.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: NgxFence
date: Fri, 29 Mar 2024 06:09:47 GMT
content-type: image/svg+xml
last-modified: Sat, 24 Sep 2022 10:05:32 GMT
etag: W/"47b702efdcfd81:0"
x-powered-by: ASP.NET
x-cache: HIT
strict-transport-security: max-age=31536000; includeSubdomains; preload
content-encoding: br
X-Firefox-Spdy: h2

tg-telegram.co/js/downloadlist/t168.js

154.82.100.206

200 OK

4.6 kB

URL GET HTTP/2
tg-telegram.co/js/downloadlist/t168.js
IP
154.82.100.206:443
ASN
#399077 TERAEXCH

Requested by
https://tg-telegram.co/TG_EN/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttg-telegram.club
Fingerprint2D:85:83:22:07:98:CF:94:B6:38:BB:C2:FC:3E:F2:CA:F8:12:68:D3
ValiditySun, 26 Mar 2023 02:34:05 GMT - Wed, 24 Apr 2024 02:34:04 GMT

File type
ASCII text, with very long lines (5009), with no line terminators
Size
4.6 kB (4590 bytes)
Hash
be710d90d09dd74859a4b06f10762b89
ebf13fab2eb5f3efb77c6e08cad4e81194e07c4a
c01a11a5684f67add037b54beaa4e25a130ef2f0c84fc3e3d966f4bfd209b2bd

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /js/downloadlist/t168.js HTTP/1.1
Host: tg-telegram.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tg-telegram.co/TG_EN/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: NgxFence
date: Fri, 29 Mar 2024 06:09:49 GMT
content-type: application/javascript
content-length: 1015
content-encoding: gzip
last-modified: Mon, 09 Oct 2023 04:04:54 GMT
etag: "722968c265fad91:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
x-cache: HIT
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

tg-telegram.co/js/downloadlist/t101.js

154.82.100.206

200 OK

2.3 kB

URL GET HTTP/2
tg-telegram.co/js/downloadlist/t101.js
IP
154.82.100.206:443
ASN
#399077 TERAEXCH

Requested by
https://tg-telegram.co/TG_EN/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttg-telegram.club
Fingerprint2D:85:83:22:07:98:CF:94:B6:38:BB:C2:FC:3E:F2:CA:F8:12:68:D3
ValiditySun, 26 Mar 2023 02:34:05 GMT - Wed, 24 Apr 2024 02:34:04 GMT

File type
ASCII text, with very long lines (2512), with no line terminators
Size
2.3 kB (2301 bytes)
Hash
5fb75f97fc8a1f4394103249473ac208
a80866d338866e1f410bfa86be724d8679245820
946c3528a33e144974c348e37d851edd2b96b7f15ef00c76cadb55dcd4237d1c

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /js/downloadlist/t101.js HTTP/1.1
Host: tg-telegram.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tg-telegram.co/TG_EN/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: NgxFence
date: Fri, 29 Mar 2024 06:09:49 GMT
content-type: application/javascript
content-length: 526
content-encoding: gzip
last-modified: Tue, 22 Aug 2023 07:36:40 GMT
etag: "9d33e463cbd4d91:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
x-cache: HIT
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (24)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML