Report - syncwallet.pages.dev/

Report Overview

Submitted URL
syncwallet.pages.dev/
IP
172.66.47.71
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-17 04:34:49
Access
public
Website Title
Home | WalletConnect
Final URL
syncwallet.pages.dev/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
12

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
syncwallet.pages.dev	unknown	unknown	No data	No data	2.7 kB	260 kB	172.66.44.185
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-04-16	2.2 kB	190 kB	216.58.207.227
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-04-16	959 B	25 kB	142.250.74.106

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-04-16	medium	syncwallet.pages.dev/	Crypto/Wallet
2024-04-16	medium	syncwallet.pages.dev/	Crypto/Wallet
2024-04-16	medium	syncwallet.pages.dev/	Crypto/Wallet
2024-04-16	medium	syncwallet.pages.dev/	Crypto/Wallet
2024-04-16	medium	syncwallet.pages.dev/	Crypto/Wallet
2024-04-16	medium	syncwallet.pages.dev/	Crypto/Wallet

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (1)

	URL	Size	First Seen	Last Seen
	syncwallet.pages.dev/assets/index-BT1c28Cn.js	461 kB	2024-04-10	2024-04-17
Pretty URL syncwallet.pages.dev/assets/index-BT1c28Cn.js IP 172.66.44.185 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-10 06:24:52 Last Seen2024-04-17 06:34:56 Times Seen4 Hash d718999e3dd753c482341f9eb7887e75 803f368df68b78815dd0c36fc2432bd5c7d9c5f3 43955279a9358b73c26232d6fed5bd139b4c2210346892032143e158d22ccef2 Loading...

HTTP Transactions (12)

URL IP Response Size

syncwallet.pages.dev/assets/index-BT1c28Cn.js

172.66.44.185

200 OK

143 kB

URL GET HTTP/3
syncwallet.pages.dev/assets/index-BT1c28Cn.js
IP
172.66.44.185:443
ASN
#13335 CLOUDFLARENET

Requested by
https://syncwallet.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjectsyncwallet.pages.dev
FingerprintA1:BC:FE:69:B5:6C:A9:D4:57:8F:5B:67:F7:9C:61:CF:18:73:A8:10
ValidityTue, 16 Apr 2024 10:29:22 GMT - Mon, 15 Jul 2024 10:29:21 GMT

File type
JavaScript source, ASCII text, with very long lines (37534)
Size
143 kB (142556 bytes)
Hash
d718999e3dd753c482341f9eb7887e75
803f368df68b78815dd0c36fc2432bd5c7d9c5f3
43955279a9358b73c26232d6fed5bd139b4c2210346892032143e158d22ccef2

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /assets/index-BT1c28Cn.js HTTP/1.1
Host: syncwallet.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://syncwallet.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 17 Apr 2024 04:34:24 GMT
content-type: text/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"9572dda68ac76af2edc7f9d49bdb69fe"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wUZn%2FYnWfTVP%2Brq52HWUEkZnCv%2F%2FOn29oVn%2Bj1o4oD2r67ZS%2FpiCBvxPX1bLkrm472k2w%2B2TjS5rkD8NOinVHJu0I2u65%2B03NMzLVDC0nztNl7RjdXKmzIGnWzuhDwfbLi2JXZY45g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8759b3d43b7d92e0-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

syncwallet.pages.dev/assets/walletconnect-logo.png

172.66.44.185

200 OK

7.4 kB

URL GET HTTP/3
syncwallet.pages.dev/assets/walletconnect-logo.png
IP
172.66.44.185:443
ASN
#13335 CLOUDFLARENET

Requested by
https://syncwallet.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjectsyncwallet.pages.dev
FingerprintA1:BC:FE:69:B5:6C:A9:D4:57:8F:5B:67:F7:9C:61:CF:18:73:A8:10
ValidityTue, 16 Apr 2024 10:29:22 GMT - Mon, 15 Jul 2024 10:29:21 GMT

File type
PNG image data, 1000 x 692, 8-bit colormap, non-interlaced
Size
7.4 kB (7384 bytes)
Hash
51963073365635c69c2689018549d577
4bd3b3043b8f3aaf2b4b052bf4bbffd7d3b94dbf
efed89ef5626c73397ca36721c00ece816ccf17e94508cc26572fd8db1e0127d

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /assets/walletconnect-logo.png HTTP/1.1
Host: syncwallet.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://syncwallet.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 17 Apr 2024 04:34:27 GMT
content-type: image/png
content-length: 7384
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "2951bc0e7940fe6f12a1b517c2895dd8"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KDc87Z5fBPQcp8Djn5h5QuTqH%2B4LgMoKmuSIADsavJiXM8YxLGLAViKQP14QYboDH%2BIkmbqD6dUMEG0FGw6mHM9VPRsClEoTsUYQRtvDarUPSshhgzKtkdB%2FiZnLOA9P%2B51lANOH1w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8759b3ea1baa92e0-CPH
alt-svc: h3=":443"; ma=86400

syncwallet.pages.dev/assets/web3.png

172.66.44.185

200 OK

77 kB

URL GET HTTP/3
syncwallet.pages.dev/assets/web3.png
IP
172.66.44.185:443
ASN
#13335 CLOUDFLARENET

Requested by
https://syncwallet.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjectsyncwallet.pages.dev
FingerprintA1:BC:FE:69:B5:6C:A9:D4:57:8F:5B:67:F7:9C:61:CF:18:73:A8:10
ValidityTue, 16 Apr 2024 10:29:22 GMT - Mon, 15 Jul 2024 10:29:21 GMT

File type
PNG image data, 770 x 1557, 8-bit/color RGBA, non-interlaced
Size
77 kB (76615 bytes)
Hash
7218c3cbc686f84d8ddb0198eda8afb9
960923ac35f0281397cea2beae56dacae84a0e64
623ff0e25b401ffde150160ad5ba27fd70d0598a5f155770b8fd6028df9b3db9

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /assets/web3.png HTTP/1.1
Host: syncwallet.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://syncwallet.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 17 Apr 2024 04:34:27 GMT
content-type: image/png
content-length: 76615
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "4419b207ba292f9484895f8ad31c158c"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QC%2B7jNQOixYrFhKZfiOSZeCI%2BqN9w8scy2AC6QvmpiiMEw71%2FzxUdJ9iyvb0cduQrYcYRLcLqgpG6dTWTTLKqE%2FF%2Fa1SUyRh5aphijPiZGuxxrM8cnD8b4lqxqMRnTvpyltc0fohVA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8759b3ea5bcd92e0-CPH
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2

216.58.207.227

200 OK

47 kB

URL GET HTTP/2
fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://syncwallet.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9
ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT

File type
Web Open Font Format (Version 2), TrueType, length 46704, version 1.0
Size
47 kB (46704 bytes)
Hash
30a274cd01b6eeb0b082c918b0697f1e
393311bde26b99a4ad935fa55bad1dce7994388b
88df0b5a7bc397dbc13a26bb8b3742cc62cd1c9b0dded57da7832416d6f52f42

HTTP Headers

GET /s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://syncwallet.pages.dev
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46704
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 07:14:19 GMT
expires: Wed, 16 Apr 2025 07:14:19 GMT
cache-control: public, max-age=31536000
age: 76808
last-modified: Wed, 13 Sep 2023 23:49:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2

216.58.207.227

200 OK

47 kB

URL GET HTTP/2
fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://syncwallet.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9
ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT

File type
Web Open Font Format (Version 2), TrueType, length 46704, version 1.0
Size
47 kB (46704 bytes)
Hash
30a274cd01b6eeb0b082c918b0697f1e
393311bde26b99a4ad935fa55bad1dce7994388b
88df0b5a7bc397dbc13a26bb8b3742cc62cd1c9b0dded57da7832416d6f52f42

HTTP Headers

GET /s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://syncwallet.pages.dev
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46704
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 07:14:19 GMT
expires: Wed, 16 Apr 2025 07:14:19 GMT
cache-control: public, max-age=31536000
age: 76808
last-modified: Wed, 13 Sep 2023 23:49:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2

216.58.207.227

200 OK

47 kB

URL GET HTTP/2
fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://syncwallet.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9
ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT

File type
Web Open Font Format (Version 2), TrueType, length 46704, version 1.0
Size
47 kB (46704 bytes)
Hash
30a274cd01b6eeb0b082c918b0697f1e
393311bde26b99a4ad935fa55bad1dce7994388b
88df0b5a7bc397dbc13a26bb8b3742cc62cd1c9b0dded57da7832416d6f52f42

HTTP Headers

GET /s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://syncwallet.pages.dev
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46704
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 07:14:19 GMT
expires: Wed, 16 Apr 2025 07:14:19 GMT
cache-control: public, max-age=31536000
age: 76808
last-modified: Wed, 13 Sep 2023 23:49:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2

216.58.207.227

200 OK

47 kB

URL GET HTTP/2
fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://syncwallet.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9
ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT

File type
Web Open Font Format (Version 2), TrueType, length 46704, version 1.0
Size
47 kB (46704 bytes)
Hash
30a274cd01b6eeb0b082c918b0697f1e
393311bde26b99a4ad935fa55bad1dce7994388b
88df0b5a7bc397dbc13a26bb8b3742cc62cd1c9b0dded57da7832416d6f52f42

HTTP Headers

GET /s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://syncwallet.pages.dev
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46704
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 07:14:19 GMT
expires: Wed, 16 Apr 2025 07:14:19 GMT
cache-control: public, max-age=31536000
age: 76808
last-modified: Wed, 13 Sep 2023 23:49:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

syncwallet.pages.dev/assets/index-ByGBd2yH.css

172.66.44.185

200 OK

27 kB

URL GET HTTP/3
syncwallet.pages.dev/assets/index-ByGBd2yH.css
IP
172.66.44.185:443
ASN
#13335 CLOUDFLARENET

Requested by
https://syncwallet.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjectsyncwallet.pages.dev
FingerprintA1:BC:FE:69:B5:6C:A9:D4:57:8F:5B:67:F7:9C:61:CF:18:73:A8:10
ValidityTue, 16 Apr 2024 10:29:22 GMT - Mon, 15 Jul 2024 10:29:21 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
27 kB (27002 bytes)
Hash
6432e6f9c5a1ad93be91c2d0a9b9edbf
e7415b869a1bbebe32f1e8d7221917ad00b22849
86b180eecceff3f5a7fd9d20380cc60e08089d76dc62009829541d33ba688ccf

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /assets/index-ByGBd2yH.css HTTP/1.1
Host: syncwallet.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://syncwallet.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 17 Apr 2024 04:34:24 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"99203d595aebf1fde989236670b2c89f"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1W2mvV0gYqWfimkRNLun3E0lksqK3HVaxK1iMFOPKvrlU5jeTEybHqUsDwjS5yN%2BE%2Fy1xaW6N13H1T9Y9K7e45JoBlom4lXhq3qmRrDY%2B8k2LU02LcAYZdpg0Wi%2BJkHxvwVmef85TQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8759b3d43b7f92e0-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.googleapis.com/css2?family=Outfit:wght@300;400;500;600;700;800&display=swap

142.250.74.106

200 OK

4.6 kB

URL GET HTTP/2
fonts.googleapis.com/css2?family=Outfit:wght@300;400;500;600;700;800&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://syncwallet.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E
ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT

File type
ASCII text, with very long lines (4752), with no line terminators
Size
4.6 kB (4644 bytes)
Hash
b4507781497cdadba41c513efe01a956
0b9e2614c710d36eec8b51396eccdfce8674b99d
66dcfbf942d48ae86fe4e38f4baa1012fba71ce5cfdabea6187ef973dd6d2d61

HTTP Headers

GET /css2?family=Outfit:wght@300;400;500;600;700;800&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://syncwallet.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 17 Apr 2024 04:34:24 GMT
date: Wed, 17 Apr 2024 04:34:24 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

syncwallet.pages.dev/

172.66.44.185

200 OK

1.1 kB

URL User Request GET HTTP/2
syncwallet.pages.dev/
IP
172.66.44.185:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectsyncwallet.pages.dev
FingerprintA1:BC:FE:69:B5:6C:A9:D4:57:8F:5B:67:F7:9C:61:CF:18:73:A8:10
ValidityTue, 16 Apr 2024 10:29:22 GMT - Mon, 15 Jul 2024 10:29:21 GMT

File type
HTML document, ASCII text, with very long lines (1222), with no line terminators
Size
1.1 kB (1131 bytes)
Hash
53840809cfe653c428da1ab50a72f20a
0345d6d29f3223f4860c6c5f26bd0e176fcc18e9
083a0b1b5dc10bf92efb3084542da7edb8a3337cdf9a6d3cfb1867e493cc6b7e

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET / HTTP/1.1
Host: syncwallet.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 17 Apr 2024 04:34:23 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"9b14311e8a730d15e8b41628a7260d19"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=r0xT99C2757%2FKCDTWYxWNdaGRWUcQsh0MDwnAfk2l2Nu35p5AwG0%2FdHrjzJ18HYIqYZZHomoZZOlhlbsRvqbeljYK5EwU2z85OeFOlsh%2Fj5cOMYI558jhctOmhIjIGJPTIOmHoK%2B3g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8759b3d2ba0e1d12-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Inter:wght@100;200;300;400;500;600;700;800&display=swap

142.250.74.106

200 OK

19 kB

URL GET HTTP/2
fonts.googleapis.com/css2?family=Inter:wght@100;200;300;400;500;600;700;800&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://syncwallet.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E
ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT

File type
ASCII text
Size
19 kB (19312 bytes)
Hash
82c810261da4f7bb78d00c31639b5ec5
d9e3d6a47a34d8d11f7add546d5d98cdc0b7f7a6
2b93c3634b8f1e2ff50c89da2fa81d1afe681be8019e728cd02bd28ce90aee1c

HTTP Headers

GET /css2?family=Inter:wght@100;200;300;400;500;600;700;800&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://syncwallet.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 17 Apr 2024 04:34:24 GMT
date: Wed, 17 Apr 2024 04:34:24 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

syncwallet.pages.dev/assets/logo.svg

172.66.44.185

200 OK

1.2 kB

URL GET HTTP/3
syncwallet.pages.dev/assets/logo.svg
IP
172.66.44.185:443
ASN
#13335 CLOUDFLARENET

Requested by
https://syncwallet.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjectsyncwallet.pages.dev
FingerprintA1:BC:FE:69:B5:6C:A9:D4:57:8F:5B:67:F7:9C:61:CF:18:73:A8:10
ValidityTue, 16 Apr 2024 10:29:22 GMT - Mon, 15 Jul 2024 10:29:21 GMT

File type
SVG Scalable Vector Graphics image
Size
1.2 kB (1187 bytes)
Hash
deaca59dc41db73823ba9e0fd050393c
50eada440078038ddf1be4a34c27e7544e604981
943ecc3ac1843ec023835418153a45d09276e9e58ae3e256b5fa02c654b50555

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /assets/logo.svg HTTP/1.1
Host: syncwallet.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://syncwallet.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 04:34:24 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"3f098ab49ea055e8e30a425854056605"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mGEAo99y4cphUz4OSeSXafev7cwdRgdz4LNLluKw3eU9JQsYQ9BCjTT3Arlzmk1UREqKpjCzAkVn3OKmqKgiyvY%2BICo3TPWpGwvnGD6V0Cz%2FMG5V7QuWkQR9YCZC2%2BkNiMvIQj34%2BA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8759b3d73dfe92e0-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (1)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (12)

URL GET HTTP/3

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/3

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/3

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size