Report - jupita.top/_bahamas_delta/zone/de01c1d48db6c321c637457113ed80d5/login.php

Report Overview

Submitted URL
jupita.top/_bahamas_delta/zone/de01c1d48db6c321c637457113ed80d5/login.php
IP
104.21.23.6
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-25 19:33:38
Access
public
Website Title
jupita.top/_bahamas_delta/zone/de01c1d48db6c321c637457113ed80d5/login.php
Final URL
jupita.top/_bahamas_delta/zone/de01c1d48db6c321c637457113ed80d5/login.php
Tags
phishing microsoft outlook
urlquery detections
Phishing - Microsoft Outlook

Detections

urlquery
2
Network Intrusion Detection
0
Threat Detection Systems
10

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
challenges.cloudflare.com	unknown	2009-02-17	2021-10-20	2024-04-25	9.2 kB	863 kB	104.17.2.184
ajax.googleapis.com	12905	2005-01-25	2013-08-16	2024-04-25	425 B	32 kB	142.250.74.74
jupita.top	unknown	2024-02-10	2024-02-12	2024-02-13	2.4 kB	13 kB	172.67.208.46
aus5.mozilla.org	2548	1998-01-24	2015-10-27	2024-04-24	512 B	1.2 kB	35.244.181.201

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-04-25	medium	jupita.top	Sinkholed
2024-04-25	medium	jupita.top	Sinkholed
2024-04-25	medium	jupita.top	Sinkholed
2024-04-25	medium	jupita.top	Sinkholed
2024-04-25	medium	jupita.top	Sinkholed

ThreatFox

No alerts detected

JavaScript (48)

	URL	Size	First Seen	Last Seen
	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=87a0c3c98a65b50f	433 kB	2024-04-25	2024-04-25
Pretty URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=87a0c3c98a65b50f IP 104.17.2.184 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-25 21:33:39 Last Seen2024-04-25 21:33:41 Times Seen2 Hash 3ad63b49bf9667e2c47f618f9e1a7b1a 80886adfd83871fc53ce14fd8d73a8936415dc39 fdb684dc128276c0247210f3dad514799af8d0e774788258cbfb4bd67db2edcd Loading...

	jupita.top/_bahamas_delta/zone/de01c1d48db6c321c637457113ed80d5/login.php	202 B	2023-05-05	2024-05-01
Pretty URL jupita.top/_bahamas_delta/zone/de01c1d48db6c321c637457113ed80d5/login.php IP 172.67.208.46 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-05 20:07:55 Last Seen2024-05-01 11:06:01 Times Seen498 Hash 8cb487d4459c7a6cd9d6f2d45900c628 d35cc3c00025613a8772575e3daa962b633ea2ec 977d0b37baf294b277f8469a4178563b7b21bd289d9df105b5a37a025bfd4d87 Loading...

	jupita.top/_bahamas_delta/zone/de01c1d48db6c321c637457113ed80d5/login.php	1.1 kB	2024-04-25	2024-04-25
Pretty URL jupita.top/_bahamas_delta/zone/de01c1d48db6c321c637457113ed80d5/login.php IP 172.67.208.46 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-25 21:33:39 Last Seen2024-04-25 21:33:39 Times Seen1 Hash c73ad56ca1b88fb07b066ef8c2044a7f fde7c9907545605907b1773e4378759f3417b3f0 72f1a93f05fa97dfa089b4d75bd659ee4520d28c69d35be9135da26a1d96a87c Loading...

	challenges.cloudflare.com/turnstile/v0/api.js	43 kB	2024-04-25	2024-05-05
Pretty URL challenges.cloudflare.com/turnstile/v0/api.js IP 104.17.2.184 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-25 19:17:04 Last Seen2024-05-05 04:40:06 Times Seen2248 Hash 65b0a652c40c95d12c4ddb3b4567c1ea c654efa19d01d6553ed4e0f500d350011e023ad1 c6b5cd0b65ebbb519dd845ba2979b40e58b056ca2c90f67a8bfea871d39615a7 Loading...

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv1/42BoqtBW7FWf6hi/oj7n4/0x4AAAAAAAXjXiXiV7KvBpAv/auto/normal	3.6 kB	2024-04-25	2024-04-25
Pretty URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv1/42BoqtBW7FWf6hi/oj7n4/0x4AAAAAAAXjXiXiV7KvBpAv/auto/normal IP 104.17.2.184 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-25 21:33:40 Last Seen2024-04-25 21:33:40 Times Seen1 Hash 45713124ab0c1690fc0d2857efa59e20 5e49c399a6a803f9542697adc727bf1ad8eda38a 57c83e5ddc631fe570f8d8aa5305a08f643bdff1ba662348f8a82e066e0399b3 Loading...

	ajax.googleapis.com/ajax/libs/jquery/3.6.3/jquery.min.js	90 kB	2023-03-10	2024-05-05
Pretty URL ajax.googleapis.com/ajax/libs/jquery/3.6.3/jquery.min.js IP 142.250.74.74 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 04:24:46 Last Seen2024-05-05 06:09:43 Times Seen17605 Hash cf2fbbf84281d9ecbffb4993203d543b 832a6a4e86daf38b1975d705c5de5d9e5f5844bc a6f3f0faea4b3d48e03176341bef0ed3151ffbf226d4c6635f1c6039c0500575 Loading...

	jupita.top/cdn-cgi/challenge-platform/scripts/jsd/main.js	7.8 kB	2024-04-25	2024-04-25
Pretty URL jupita.top/cdn-cgi/challenge-platform/scripts/jsd/main.js IP 172.67.208.46 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-25 21:33:40 Last Seen2024-04-25 21:33:41 Times Seen2 Hash 1dfb37a1340dd505ae79585a6d3863b4 7b782b051f19836cf4461220fd0f91253f8e23f9 8e1b1f8aded24f19c094620350b1811f0b8029cd7236415a36bb55f6d0de15c9 Loading...

	unknown	247 B	2024-04-25	2024-04-25
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-25 21:33:40 Last Seen2024-04-25 21:33:40 Times Seen1 Hash 7123e8a833d85f85cdf3ac6902a9e1ed 23186ec65919592bdcd738711ad0b03dc7f8ba79 4de5f06543973864f5526d795ee523728060b08705f4c21b32e06c7deb069fb9 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 10a4ea8247f7a6556702c0096866a7ae	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 21:33:40 Last Seen2024-04-25 21:33:40 Times Seen1 Hash 10a4ea8247f7a6556702c0096866a7ae a8f1e66dea049764a03775794c9641a87745ded6 db63cdeb23310e18cc37cb276d8fc547ed9b1bdb8585a56e3ce0f4ea6d652f1d Loading...

	#2 Eval - 1669b3636126fe5495f8683e2cd6f3a7	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 21:33:40 Last Seen2024-04-25 21:33:40 Times Seen1 Hash 1669b3636126fe5495f8683e2cd6f3a7 c9fd738655bc62f011127a1f7374dba561bb1bae 9af9ffef3a01b88122d85ae80cb6684a990d76cd8cde7ef4a36d7bce9729ff82 Loading...

	#3 Eval - 9e925e9341b490bfd3b4c4ca3b0c1ef2	4 B	2023-03-07	2024-05-05
Pretty Observations First Seen2023-03-07 01:03:43 Last Seen2024-05-05 12:40:20 Times Seen351498 Hash 9e925e9341b490bfd3b4c4ca3b0c1ef2 c2543fff3bfa6f144c2f06a7de6cd10c0b650cae 1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408 Loading...

	#4 Eval - 27151183bd2675f77ffbefe19ae0ff80	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 21:33:40 Last Seen2024-04-25 21:33:40 Times Seen1 Hash 27151183bd2675f77ffbefe19ae0ff80 0d779037ce5ee9c93d17f9221f26afd0805b0f87 bfce70d92c668bbbc43f68beef78faa64abec6ee4390d29a98fb0ada1f0a2597 Loading...

	#5 Eval - dd5a8dc0f2ae6592173c4421fa277882	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 21:33:40 Last Seen2024-04-25 21:33:40 Times Seen1 Hash dd5a8dc0f2ae6592173c4421fa277882 0aee23cef2074a92b1fa5961c1204d433e89b18e 1c2dd7ae853a9a104b48f26577a9f39c824331ea51de1cb7af4ab4fa2210708a Loading...

	#6 Eval - 3f4c7da883d7156b86dd9862c6770bba	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 21:33:40 Last Seen2024-04-25 21:33:40 Times Seen1 Hash 3f4c7da883d7156b86dd9862c6770bba 7556a6e05e5726c0220db17abc8bda7b1a6742ed cada95873daf5428acff4de568aed5aa20c5d23c2603773ee7bbf976681a194e Loading...

	#7 Eval - f51dc30baccd99574475a97155e81f10	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 21:33:40 Last Seen2024-04-25 21:33:40 Times Seen1 Hash f51dc30baccd99574475a97155e81f10 3ea20390cb4b8c5b4b781cbd13a737dbe5ffbac9 ada47a09a767b1a019146e8ecf6431ec0c23fcbd09669be583d459c938ef6c62 Loading...

	#8 Eval - 855d09d98173db3d6cca16de26154c0a	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 21:33:40 Last Seen2024-04-25 21:33:40 Times Seen1 Hash 855d09d98173db3d6cca16de26154c0a 49fde89911eb190887be918ffc9e6ba623069095 9a111c9ce258feb6ba20fad597dd9b91bce1149973d2ab19320498c82c491535 Loading...

	#9 Eval - 83b7aacf899cda3f5a5fdda9ab890fb6	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 21:33:40 Last Seen2024-04-25 21:33:40 Times Seen1 Hash 83b7aacf899cda3f5a5fdda9ab890fb6 1d3818e300bb31155dd605203ae4035e2025d7e0 77ba8470de270d191d9c46d022753c0fc7fb68c9942402033552a036f08c3208 Loading...

	#10 Eval - 9c83d3fc7e93573457dca7775685eda0	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 21:33:40 Last Seen2024-04-25 21:33:40 Times Seen1 Hash 9c83d3fc7e93573457dca7775685eda0 d4873a287e5d76188253661ecd77113f96596411 e68c3ce065d6e502879d148987d1e8fcd856508b52eb3506698c34adb59f00c8 Loading...

	#11 Eval - 74071caa5c8de8155e7ce9d189e9f187	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 21:33:40 Last Seen2024-04-25 21:33:40 Times Seen1 Hash 74071caa5c8de8155e7ce9d189e9f187 9d417d8fa498788f81f379e58c577e7a25ca56ec fe3cdacb6059623d69e13939d4deff586e3f29d83c00ba4ec03222750630a541 Loading...

	#12 Eval - 3055924e3fe548a58f34ea89d5b1b00c	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 21:33:40 Last Seen2024-04-25 21:33:40 Times Seen1 Hash 3055924e3fe548a58f34ea89d5b1b00c fc711b552dc8969f3fdec87e8d5e3ee1d5b4c38b 9502ae7bd7510eb63c14fc47838e8ac7a1ff195140f5331de892092e56dd7bba Loading...

	#13 Eval - 898b408e52e39bcbb16178ea9a36f438	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 21:33:40 Last Seen2024-04-25 21:33:40 Times Seen1 Hash 898b408e52e39bcbb16178ea9a36f438 bc3b557d46f2b936ff4ee5a6862f7e671bfc40ef 30260063692ed2f32c0f1c30ef3fd4007c4e9930977c12c2c5706d6bd3923468 Loading...

	#14 Eval - 96fdd6a012dfed0e8387491ddb25ae73	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 21:33:40 Last Seen2024-04-25 21:33:40 Times Seen1 Hash 96fdd6a012dfed0e8387491ddb25ae73 9847980ef724acc460fa23c22d067e7789ed22bb dc701cbbc3da3473fda4a71891c886cdae7e62471340ddfd8d06b869286a11c3 Loading...

	#15 Eval - 1552a8396aeae1c1f82df119d861ca2e	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 21:33:40 Last Seen2024-04-25 21:33:40 Times Seen1 Hash 1552a8396aeae1c1f82df119d861ca2e 92e43bbfbea2cd95350af75db00433b74a688334 2f1b7715c633c2ba1cdf309b2a6d346ea5d48efa152af2c11be1c21550f31d1e Loading...

	#16 Eval - b557257706ef03906ea59dedaaf7deb6	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 21:33:40 Last Seen2024-04-25 21:33:40 Times Seen1 Hash b557257706ef03906ea59dedaaf7deb6 7bb7fe3dcee2e771c005f56291aee3d0658e2855 afdf8d4757ce3bf2e7371f57f81b4e45d64c5f677d4c461f5c40573947dd7140 Loading...

	#17 Eval - 98c61d2366a18e9004850b1d150193a4	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 21:33:40 Last Seen2024-04-25 21:33:40 Times Seen1 Hash 98c61d2366a18e9004850b1d150193a4 8377af3468abf46ceb651697162d56e14e19089d 11014f0059b3a30d752f3b38487c62cb93ca9f538320be47148dca3a50011a55 Loading...

	#18 Eval - 31ca590b9796484fa59d2d7ca6490a29	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 21:33:40 Last Seen2024-04-25 21:33:40 Times Seen1 Hash 31ca590b9796484fa59d2d7ca6490a29 c5ea23f697a7d2e75c2cc700fa79215ac5c99abc 9bdab7b87aaf1e492ef5e36660d8384ab04df1db110127a5460c367387257dfa Loading...

	#19 Eval - 8f9a9f959ebce5552cf5a35d18a3c3a2	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 21:33:40 Last Seen2024-04-25 21:33:40 Times Seen1 Hash 8f9a9f959ebce5552cf5a35d18a3c3a2 30425eca70d67a6b1afdaefd8bbfa67ce7218b50 8edaa1eb641ed0de12e59dcb9d4dad713279da4aec507812eb19ac9dd4442723 Loading...

	#20 Eval - 042cdc90f92ad3ad80e9aee7256f74e7	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 21:33:40 Last Seen2024-04-25 21:33:40 Times Seen1 Hash 042cdc90f92ad3ad80e9aee7256f74e7 9b804a45e4f1e2e990bb5c02b281180a2f601d8c 0b19499b9dfa6315e672112ff04289b95499742885b3ee48766d308e0278eb7d Loading...

	#21 Eval - a9767081e9f33795c3822831f01461a8	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 21:33:40 Last Seen2024-04-25 21:33:40 Times Seen1 Hash a9767081e9f33795c3822831f01461a8 abbd3484678ffbd441c5fd76c590abfaa4abd077 8425c3d89046e113e9a06c1267a35a38e7116f170ec3b9605f84fd16541e6e34 Loading...

	#22 Eval - 7fb56934dc50591063acee7ae3aa6dac	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 21:33:40 Last Seen2024-04-25 21:33:40 Times Seen1 Hash 7fb56934dc50591063acee7ae3aa6dac 05330e03df2522905e992b2648bbc50a5d3ba644 f9d67b3b5a5b3cf8c8c75f53d978365f7a9be4473de1140c823bc7d5e2a7ee6c Loading...

	#23 Eval - b64f3c7efb6b5e1ee3f43cd6ade924ad	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 21:33:40 Last Seen2024-04-25 21:33:40 Times Seen1 Hash b64f3c7efb6b5e1ee3f43cd6ade924ad 10d6fb2d37ba581aaed82f0cad4844a97f4620c7 0a87390f692af88da7bb46fa7bf989fc5e697349b31613321c13f4c056d933e4 Loading...

	#24 Eval - 74690b393b9bb18b10fe1db1c5468673	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 21:33:40 Last Seen2024-04-25 21:33:40 Times Seen1 Hash 74690b393b9bb18b10fe1db1c5468673 cc5f2d06598142df5448109e9847d76579e6d82b 1c2e148d73512ffffc0e95125a30b3ccc0f73a437ba8a5f31a92f9f145543322 Loading...

	#25 Eval - e13911a3e3892d9d69b7de05d99a3d6c	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 21:33:40 Last Seen2024-04-25 21:33:40 Times Seen1 Hash e13911a3e3892d9d69b7de05d99a3d6c 49a9298f9361ee0b9d79c3bfd0a902c66e046adc 97c98ebb06a82177225b133a690db1c0f2719f0622016dc4cd3f87b21de44100 Loading...

	#26 Eval - 27378745a3a1260eeb8d2c7ac4498773	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 21:33:40 Last Seen2024-04-25 21:33:40 Times Seen1 Hash 27378745a3a1260eeb8d2c7ac4498773 43e935d3164bd05d99f64fd753f38000a99d5bf0 557509df2b6fae045e3f6fa4cac79ff25bdf3e95ade222185000a08890a9d029 Loading...

	#27 Eval - d0901eb133735030554e0a2bfb89f3b7	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 21:33:41 Last Seen2024-04-25 21:33:41 Times Seen1 Hash d0901eb133735030554e0a2bfb89f3b7 95756931dcc8b86d8394fe8d21cf954fbab513c8 d8ddca6823015aa5966a046c4f2d234f2bea51b2704d679490e135acfe20ad69 Loading...

	#28 Eval - 1a8b5b7e3989b6c073055872b9f45972	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 21:33:41 Last Seen2024-04-25 21:33:41 Times Seen1 Hash 1a8b5b7e3989b6c073055872b9f45972 76dfa7d2df3c5d1695c4a5f51c55c2b0dd3bb275 88f994036d9874004a38e876038e3a8e7024331be7a41d6be00fced0391113c3 Loading...

	#29 Eval - 2e1464ee63a0d2111c23e9ccbd203006	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 21:33:41 Last Seen2024-04-25 21:33:41 Times Seen1 Hash 2e1464ee63a0d2111c23e9ccbd203006 e785683e8735c48980e546e5722129c8d23d8821 0a7b91d2e6c7f88050e650ea4f0349973fdde17a84294a0f2929f06b912e8861 Loading...

	#30 Eval - eb17c63ad7be8d6bf0b62f42f2cc29bc	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 21:33:41 Last Seen2024-04-25 21:33:41 Times Seen1 Hash eb17c63ad7be8d6bf0b62f42f2cc29bc 81fa797ec5e2eaf40b4fa9cb421028ba0a625ddf 9c0678ff927d2067560b4fe5c0a8e5e5df9ca4b4a1c2300180a41987bc88a09d Loading...

	#31 Eval - a87afb815e425a685d527e98274457ce	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 21:33:41 Last Seen2024-04-25 21:33:41 Times Seen1 Hash a87afb815e425a685d527e98274457ce e8aa0973c3e4e28b8fbf1118fdcc7cf182d0a680 3274cc2bbaf0b742e8bcf4795a91d879f0f271ca5cf42b597cfab0d28f7075c1 Loading...

	#32 Eval - 289e4504bfbcb46698a92f5da63e0a2d	62 B	2024-04-25	2024-05-05
Pretty Observations First Seen2024-04-25 19:17:05 Last Seen2024-05-05 12:40:21 Times Seen1044 Hash 289e4504bfbcb46698a92f5da63e0a2d a6dcf5b386a04b545d7e94c553c5947d8e95ec2b 3c82ba90261822f61f18c06c5f5efe8f16d31b2486e7dcf16e8c5be62809b917 Loading...

	#33 Eval - 619812af23c40432735289700b367b53	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 21:33:41 Last Seen2024-04-25 21:33:41 Times Seen1 Hash 619812af23c40432735289700b367b53 90db55993370fd3a323cc340e72a96ab48e50335 11731d688b1191a62eca43b881839d05df1a4a71c695fdf0942ab8a4cf67e985 Loading...

	#34 Eval - 025ec131826cc0b157480ee50deb54ad	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 21:33:41 Last Seen2024-04-25 21:33:41 Times Seen1 Hash 025ec131826cc0b157480ee50deb54ad 80b6e7fb08ee7901836d05f3d183b7dd51203947 0cbd38de8f64e6109f4ac026f513186ea694345fe052394f9b2dd281f37271ce Loading...

	#35 Eval - 66a820290112f273842330e2ee0cf8a6	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 21:33:41 Last Seen2024-04-25 21:33:41 Times Seen1 Hash 66a820290112f273842330e2ee0cf8a6 6c76931ca9be5e820ab4c09a532f803d3348c27f 91a54df793e01eb65b6e895e225028f59fab14df761e6da7ba4f7396fd30b705 Loading...

	#36 Eval - 2078f3b08cc87d9ded50197f31393a20	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 21:33:41 Last Seen2024-04-25 21:33:41 Times Seen1 Hash 2078f3b08cc87d9ded50197f31393a20 2699e6c8fbc070f1d882335a00212f3af373b7a0 dac4dceb8158ee87d94e0314098e709171685a3202d4c09112f58c367f198dc8 Loading...

	#37 Eval - 76433630299f68c53b0bc0f413ed4e2f	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 21:33:41 Last Seen2024-04-25 21:33:41 Times Seen1 Hash 76433630299f68c53b0bc0f413ed4e2f de1afc9df3b8cc7e34b14b29819f28d5decea282 eff155a9f0c82aa86af77fa2cf5b2a87832f954110b36a01b0bcbaef226fd97f Loading...

	#38 Eval - 0bcf19d4b51d6aecc2ec8ba2c17d35dc	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 21:33:41 Last Seen2024-04-25 21:33:41 Times Seen1 Hash 0bcf19d4b51d6aecc2ec8ba2c17d35dc 7255343d5fa5e1313a8ad0e5375dcbc5dbe8c7ba db095ea8b4564e3be027545dbaab08258b2d181d45497843242ecba65559e47e Loading...

	#39 Eval - 6c380ab6682fdb0ac5e4f52f758182f7	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 21:33:41 Last Seen2024-04-25 21:33:41 Times Seen1 Hash 6c380ab6682fdb0ac5e4f52f758182f7 e5861d2c81079c0fb928fa3e59f16b379b8b3207 82ac6f8e81e190a13514b0f2d6b3d65315dd7c9ccb8a945f98b39e55a4fb39b5 Loading...

	#40 Eval - 5ba55f630ebf29c724445c4cb777d4cd	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 21:33:41 Last Seen2024-04-25 21:33:41 Times Seen1 Hash 5ba55f630ebf29c724445c4cb777d4cd c3233d05fa3d0449e599bcbd0d0223be1d6dfdfb 285a638bfadf9b759a248525d0e1633af3e6a1328f95f1c55a4357cbac7a7902 Loading...

HTTP Transactions (21)

URL IP Response Size

challenges.cloudflare.com/turnstile/v0/api.js

104.17.2.184

302 Found

0 B

URL GET HTTP/2
challenges.cloudflare.com/turnstile/v0/api.js
IP
104.17.2.184:443
ASN
#13335 CLOUDFLARENET

Requested by
https://jupita.top/_bahamas_delta/zone/de01c1d48db6c321c637457113ed80d5/login.php
Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /turnstile/v0/api.js HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jupita.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Thu, 25 Apr 2024 19:33:13 GMT
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
location: /turnstile/v0/g/d0ff3ebede6b/api.js
cache-control: max-age=300, public
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a0c378f818b521-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ajax.googleapis.com/ajax/libs/jquery/3.6.3/jquery.min.js

142.250.74.74

200 OK

31 kB

URL GET HTTP/2
ajax.googleapis.com/ajax/libs/jquery/3.6.3/jquery.min.js
IP
142.250.74.74:443
ASN
#15169 GOOGLE

Requested by
https://jupita.top/_bahamas_delta/zone/de01c1d48db6c321c637457113ed80d5/login.php
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT

File type
JavaScript source, ASCII text, with very long lines (65447)
Size
31 kB (31191 bytes)
Hash
cf2fbbf84281d9ecbffb4993203d543b
832a6a4e86daf38b1975d705c5de5d9e5f5844bc
a6f3f0faea4b3d48e03176341bef0ed3151ffbf226d4c6635f1c6039c0500575

HTTP Headers

GET /ajax/libs/jquery/3.6.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jupita.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 31191
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 20 Apr 2024 06:26:29 GMT
expires: Sun, 20 Apr 2025 06:26:29 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Wed, 11 Jan 2023 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 479204
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

jupita.top/cdn-cgi/challenge-platform/scripts/jsd/main.js

172.67.208.46

302 Found

0 B

URL GET HTTP/3
jupita.top/cdn-cgi/challenge-platform/scripts/jsd/main.js
IP
172.67.208.46:443
ASN
#13335 CLOUDFLARENET

Requested by
https://jupita.top/_bahamas_delta/zone/de01c1d48db6c321c637457113ed80d5/login.php
Certificate
IssuerLet's Encrypt
Subjectjupita.top
Fingerprint9E:5B:A3:A8:86:17:B2:D3:02:73:C1:56:80:93:96:CC:EA:89:5C:6D
ValidityThu, 18 Apr 2024 20:57:05 GMT - Wed, 17 Jul 2024 20:57:04 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: jupita.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 302 Found
date: Thu, 25 Apr 2024 19:33:14 GMT
content-length: 0
cache-control: max-age=300, public
location: /cdn-cgi/challenge-platform/h/g/scripts/jsd/d0ff3ebede6b/main.js
access-control-allow-origin: *
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rpq%2BCcMvHJ76m7bKB0vUXIUsStqtyFktaMufPFehO6bOfPds0p5eKJO3DY0EKvfq1jERGujQXOMmRL6q1OK0bLtD%2BrG5k7K19EvjV%2FfaFJ11aQVtlfxWvPc2IBQH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a0c37a9fd6568a-OSL
alt-svc: h3=":443"; ma=86400

jupita.top/favicon.ico

172.67.208.46

404 Not Found

287 B

URL GET HTTP/3
jupita.top/favicon.ico
IP
172.67.208.46:443
ASN
#13335 CLOUDFLARENET

Requested by
https://jupita.top/_bahamas_delta/zone/de01c1d48db6c321c637457113ed80d5/login.php
Certificate
IssuerLet's Encrypt
Subjectjupita.top
Fingerprint9E:5B:A3:A8:86:17:B2:D3:02:73:C1:56:80:93:96:CC:EA:89:5C:6D
ValidityThu, 18 Apr 2024 20:57:05 GMT - Wed, 17 Jul 2024 20:57:04 GMT

File type
HTML document, ASCII text
Size
287 B (287 bytes)
Hash
336b10694f889d359b2aaccbbcae36a8
b8e9d5f62ef91d64b4bcd37492dd4d94212a1586
a2ef48ed6bc56e45d7cd63bae1dfe95fbf73a6be69562206e668224ec2b5170c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: jupita.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jupita.top/_bahamas_delta/zone/de01c1d48db6c321c637457113ed80d5/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
date: Thu, 25 Apr 2024 19:33:14 GMT
content-type: text/html; charset=iso-8859-1
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uq0TdyYLAZIrIk04oplfML6Wj%2FAlIOp%2BDG6Hbe%2Bx%2FYa6ntjeY%2BmGL8RB1y6H7QHWNRtJqdu7SpnRt29evWNEZeVgLSNPR%2Bk45OWLzCLbFzI2Rt7YCE8vos%2BLxuZD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a0c37a9fcd568a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

jupita.top/cdn-cgi/challenge-platform/h/g/jsd/r/87a0c3747f32b503

172.67.208.46

200 OK

0 B

URL POST HTTP/3
jupita.top/cdn-cgi/challenge-platform/h/g/jsd/r/87a0c3747f32b503
IP
172.67.208.46:443
ASN
#13335 CLOUDFLARENET

Requested by
https://jupita.top/_bahamas_delta/zone/de01c1d48db6c321c637457113ed80d5/login.php
Certificate
IssuerLet's Encrypt
Subjectjupita.top
Fingerprint9E:5B:A3:A8:86:17:B2:D3:02:73:C1:56:80:93:96:CC:EA:89:5C:6D
ValidityThu, 18 Apr 2024 20:57:05 GMT - Wed, 17 Jul 2024 20:57:04 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /cdn-cgi/challenge-platform/h/g/jsd/r/87a0c3747f32b503 HTTP/1.1
Host: jupita.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12227
Origin: https://jupita.top
DNT: 1
Connection: keep-alive
Referer: https://jupita.top/_bahamas_delta/zone/de01c1d48db6c321c637457113ed80d5/login.php
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 25 Apr 2024 19:33:14 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
set-cookie: cf_clearance=I7bLNfUbaiD2zt4_RQ09i1oEgEGyIixuelL7qxOpa4Y-1714073594-1.0.1.1-d1rSQC8akYeauWpdT4LLsHlo01IPx2pEXE2fcjBniQ0nUSgK9zubPMUkNKBlgR.YV4WZgvQkQKAUKEoqT.brTQ; path=/; expires=Fri, 25-Apr-25 19:33:14 GMT; domain=.jupita.top; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=j3gK90vPHvHYBs2dUWYpf3fzS9syi8Fybr5RYsScAkXE4vbSns17UnV3ZIgcOmxXiz9nlv8SXcbrTTOkfhZ%2B4YAXPOYWr65uHF5RRLIcY140A0vE7NaOAfpgh8iG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a0c37c49e0568a-OSL
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/831664163:1714072618:mgIcuFBF4JdgOV6kBbAp-UEiC8XhJsZlIze3tUxOoEY/87a0c37aceeeb50f/85c76ac25f3156e

104.17.2.184

105 kB

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/831664163:1714072618:mgIcuFBF4JdgOV6kBbAp-UEiC8XhJsZlIze3tUxOoEY/87a0c37aceeeb50f/85c76ac25f3156e
IP
104.17.2.184:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
105 kB (104715 bytes)
Hash
550e230dcd13c7560d0e374e9aec4d6f
c90b637aeda1d493b392515d06e2ee2a293505dc
89d9329c1d71587025d7d51bae099cb1b404c5566fafd74f9a9190e4f4379014

HTTP Headers

POST /cdn-cgi/challenge-platform/h/g/flow/ov1/831664163:1714072618:mgIcuFBF4JdgOV6kBbAp-UEiC8XhJsZlIze3tUxOoEY/87a0c37aceeeb50f/85c76ac25f3156e HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/oj7n4/0x4AAAAAAAXjXiXiV7KvBpAv/auto/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: 85c76ac25f3156e
Content-Length: 2609
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 25 Apr 2024 19:33:14 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: bdIfaOSrMlhKdVo1cK52bxtg7/U9vSMOlt6rgSOJsuDcnixlbXHSCMQ41KcQf6VX63VEZ0+g2TlillOqKAQ/bh6VJ/9BiJyRqdxpQJtHJnQsKdPiLQGcj7yqvzR8MeRmMeufDcwbRtjTHtOJBToiPPrDMHGgrZdjLtUNDwUgtuYlWGO3inojiw4eSb+KejGQ1IIMaZol8tYjC3SaPbkc5GDiNh67/QOllU6y1AfasiR6fc9Wr6CCVa+b8hi2dNswZUndrCg8T9Bsy2AGPwPbmLVvX4/hhJDXe9HlCpqmYOy16BmHKKnqqPXSaLD1CQaqerqID3iQIvoZilT1ZMjVvBxBjPX0v2LRFW7Htfq77e/5rxXSNegPj1a1WvQydg19M1N8wAndqG79lp1rDEsnfnopTdv0ukZlsFj8tBh+YwE=$f5Mxua3LyMPaW72hTHGD6w==
vary: accept-encoding
server: cloudflare
cf-ray: 87a0c37e3b34b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/pat/87a0c37aceeeb50f/1714073594615/f138da0d87f8886f260b7766d946ec1c14ae5da2ea91015f9a994bcf167433da/Vy0mMw4eEeljjip

104.17.2.184

1 B

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/pat/87a0c37aceeeb50f/1714073594615/f138da0d87f8886f260b7766d946ec1c14ae5da2ea91015f9a994bcf167433da/Vy0mMw4eEeljjip
IP
104.17.2.184:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
ff44570aca8241914870afbc310cdb85
58668e7669fd564d99db5d581fcdb6a5618440b5
6da43b944e494e885e69af021f93c6d9331c78aa228084711429160a5bbd15b5

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/pat/87a0c37aceeeb50f/1714073594615/f138da0d87f8886f260b7766d946ec1c14ae5da2ea91015f9a994bcf167433da/Vy0mMw4eEeljjip HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/oj7n4/0x4AAAAAAAXjXiXiV7KvBpAv/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 401 Unauthorized
date: Thu, 25 Apr 2024 19:33:16 GMT
content-type: text/plain; charset=UTF-8
content-length: 1
www-authenticate: PrivateToken challenge="AAIAGXBhdC1pc3N1ZXIuY2xvdWRmbGFyZS5jb20g8TjaDYf4iG8mC3dm2UbsHBSuXaLqkQFfmplLzxZ0M9oAGWNoYWxsZW5nZXMuY2xvdWRmbGFyZS5jb20=", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEApc5PUXcXSrXwpeNe3kT6EaAJPDsPBMfFZc7M608yW3JV6YSHiGBLoFiLtNHD3Yj8UsOtWbQeFa2uvS_dYz5MBsoSW4-RbOY-WCB2aGEB-eoRbXl4lJRl0UNGi00lNBgNTil_mTTSNV3ssSkmSY8kwM-5GqBNfJ2kmJPKo02MWiXn1pwc4YXbeATUrYDRvvXUXYZrgaarjDyvHFhnYpD3mqr5qOj_TS_1SCUZ0HIp8ywDX06Xc59cKjzFHEUzD3gWutoK4apMxNt9bWWxcH3D_UL1a1llCxh-knMwTxgvRXS-XHap_ymO2zCuAPNgo1SDCTl4lTQZbVX7VvpDZwMaiQIDAQAB", max-age=20, PrivateToken challenge="AAIALHBwLWlzc3Vlci1wcm9kdWN0aW9uLnJlc2VhcmNoLmNsb3VkZmxhcmUuY29tIPE42g2H-IhvJgt3ZtlG7BwUrl2i6pEBX5qZS88WdDPaABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEA1FEYykHcK8H9rb_u0aFz3CmWgYloQw4YhedoEOAjJ0vy2Axa4f9UG9Dzs4uXS34_h8l6MDo2nRCvLI9lvebilMnTjCn-6D77bewqYxJKUFZW1z2jBIdu03TrETczfEg7kxgKtJE9NXGDjYJcF_iMgzgNA0PEAVM89tUYXXlFy4cUAGlqU2mPpIEOxm5ARsXC-zlLK60fkJ4cOsZRkZa6EExdhmgdwQ0fEJuSOHrBO_-zJn4hUP8q9g4yqkxW2UrfJgD07F4HaHGBEiei06sGDvH2NEPvswEl5dTGxutNrxlU7W24iYhNa2nhjlc53nNb0mKtszv-czVE9UhXyJ7-RQIDAQAB", max-age=20
server: cloudflare
cf-ray: 87a0c388bec5b50f-OSL
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/i/87a0c37aceeeb50f/1714073594619/k36FOwOuRhNe4KA

104.17.2.184

61 B

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/i/87a0c37aceeeb50f/1714073594619/k36FOwOuRhNe4KA
IP
104.17.2.184:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
PNG image data, 72 x 27, 8-bit/color RGB, non-interlaced
Size
61 B (61 bytes)
Hash
3d60bfbccfad1e3044fd4e4e4a58ac5f
f2d0ab883f9f971bed36167678a5e61327cd29ce
6067fce3038a452dd54731c3a1dea26afcda58493080a4002bcf2c19e3e8d710

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/i/87a0c37aceeeb50f/1714073594619/k36FOwOuRhNe4KA HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/oj7n4/0x4AAAAAAAXjXiXiV7KvBpAv/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 25 Apr 2024 19:33:16 GMT
content-type: image/png
content-length: 61
server: cloudflare
cf-ray: 87a0c3895f78b50f-OSL
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/831664163:1714072618:mgIcuFBF4JdgOV6kBbAp-UEiC8XhJsZlIze3tUxOoEY/87a0c37aceeeb50f/85c76ac25f3156e

104.17.2.184

7.4 kB

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/831664163:1714072618:mgIcuFBF4JdgOV6kBbAp-UEiC8XhJsZlIze3tUxOoEY/87a0c37aceeeb50f/85c76ac25f3156e
IP
104.17.2.184:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
ASCII text, with very long lines (960), with no line terminators
Size
7.4 kB (7419 bytes)
Hash
bca4983065105904d30b0b0b27fa3ab4
4c75af4cb305f9f5a7e5499ae87a9ff96d8a6fba
a565d188d9e356aa3cfb6ef24a21d0624a4bc2ac2a2e7c99bda0cea932dcea0b

HTTP Headers

POST /cdn-cgi/challenge-platform/h/g/flow/ov1/831664163:1714072618:mgIcuFBF4JdgOV6kBbAp-UEiC8XhJsZlIze3tUxOoEY/87a0c37aceeeb50f/85c76ac25f3156e HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/oj7n4/0x4AAAAAAAXjXiXiV7KvBpAv/auto/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: 85c76ac25f3156e
Content-Length: 27273
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 25 Apr 2024 19:33:16 GMT
content-type: text/html; charset=UTF-8
cf-chl-out: 06QDPo3X4GEN+fJxBZElljz//EMf8YSA3vHAZPByyWQ5029a0ULBBBAYiy+p7xE1KRjrI2Gfd18nk0o4ynZFKgzetZtcFAgPT9PON3XAjTo=$SP0J28rgAqfZUkgoLRealw==
cf-chl-out-s: Jp3BNLBD2HgT/rQtsoMh3g==$1jBTkJw71nz8/KINz1B/QA==
vary: accept-encoding
server: cloudflare
cf-ray: 87a0c38aa8f9b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D

104.17.2.184

200 OK

61 B

URL GET HTTP/3
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D
IP
104.17.2.184:443
ASN
#13335 CLOUDFLARENET

Requested by
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv1/42BoqtBW7FWf6hi/oj7n4/0x4AAAAAAAXjXiXiV7KvBpAv/auto/normal
Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
PNG image data, 2 x 2, 8-bit/color RGB, non-interlaced
Size
61 B (61 bytes)
Hash
9246cca8fc3c00f50035f28e9f6b7f7d
3aa538440f70873b574f40cd793060f53ec17a5d
c07d7d29e3c20fa6ca4c5d20663688d52bad13e129ad82ce06b80eb187d9dc84

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv1/42BoqtBW7FWf6hi/oj7n4/0x4AAAAAAAXjXiXiV7KvBpAv/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 25 Apr 2024 19:33:26 GMT
content-type: image/png
content-length: 61
cache-control: max-age=2629800, public
server: cloudflare
cf-ray: 87a0c3c9caf6b50f-OSL
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/pat/87a0c3c98a65b50f/1714073606994/daedb92af8ec61b0a947b21b671b0aeb4e76e8187f9f2588cdc93484a30a9bc5/GPYVk9ZkTPovyOT

104.17.2.184

401 Unauthorized

1 B

URL GET HTTP/3
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/pat/87a0c3c98a65b50f/1714073606994/daedb92af8ec61b0a947b21b671b0aeb4e76e8187f9f2588cdc93484a30a9bc5/GPYVk9ZkTPovyOT
IP
104.17.2.184:443
ASN
#13335 CLOUDFLARENET

Requested by
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv1/42BoqtBW7FWf6hi/oj7n4/0x4AAAAAAAXjXiXiV7KvBpAv/auto/normal
Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
ff44570aca8241914870afbc310cdb85
58668e7669fd564d99db5d581fcdb6a5618440b5
6da43b944e494e885e69af021f93c6d9331c78aa228084711429160a5bbd15b5

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/pat/87a0c3c98a65b50f/1714073606994/daedb92af8ec61b0a947b21b671b0aeb4e76e8187f9f2588cdc93484a30a9bc5/GPYVk9ZkTPovyOT HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv1/42BoqtBW7FWf6hi/oj7n4/0x4AAAAAAAXjXiXiV7KvBpAv/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 401 Unauthorized
date: Thu, 25 Apr 2024 19:33:27 GMT
content-type: text/plain; charset=UTF-8
content-length: 1
www-authenticate: PrivateToken challenge="AAIAGXBhdC1pc3N1ZXIuY2xvdWRmbGFyZS5jb20g2u25KvjsYbCpR7IbZxsK60526Bh_nyWIzck0hKMKm8UAGWNoYWxsZW5nZXMuY2xvdWRmbGFyZS5jb20=", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEApc5PUXcXSrXwpeNe3kT6EaAJPDsPBMfFZc7M608yW3JV6YSHiGBLoFiLtNHD3Yj8UsOtWbQeFa2uvS_dYz5MBsoSW4-RbOY-WCB2aGEB-eoRbXl4lJRl0UNGi00lNBgNTil_mTTSNV3ssSkmSY8kwM-5GqBNfJ2kmJPKo02MWiXn1pwc4YXbeATUrYDRvvXUXYZrgaarjDyvHFhnYpD3mqr5qOj_TS_1SCUZ0HIp8ywDX06Xc59cKjzFHEUzD3gWutoK4apMxNt9bWWxcH3D_UL1a1llCxh-knMwTxgvRXS-XHap_ymO2zCuAPNgo1SDCTl4lTQZbVX7VvpDZwMaiQIDAQAB", max-age=20, PrivateToken challenge="AAIALHBwLWlzc3Vlci1wcm9kdWN0aW9uLnJlc2VhcmNoLmNsb3VkZmxhcmUuY29tINrtuSr47GGwqUeyG2cbCutOdugYf58liM3JNISjCpvFABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEA1FEYykHcK8H9rb_u0aFz3CmWgYloQw4YhedoEOAjJ0vy2Axa4f9UG9Dzs4uXS34_h8l6MDo2nRCvLI9lvebilMnTjCn-6D77bewqYxJKUFZW1z2jBIdu03TrETczfEg7kxgKtJE9NXGDjYJcF_iMgzgNA0PEAVM89tUYXXlFy4cUAGlqU2mPpIEOxm5ARsXC-zlLK60fkJ4cOsZRkZa6EExdhmgdwQ0fEJuSOHrBO_-zJn4hUP8q9g4yqkxW2UrfJgD07F4HaHGBEiei06sGDvH2NEPvswEl5dTGxutNrxlU7W24iYhNa2nhjlc53nNb0mKtszv-czVE9UhXyJ7-RQIDAQAB", max-age=20
server: cloudflare
cf-ray: 87a0c3d14d29b50f-OSL
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/i/87a0c3c98a65b50f/1714073606995/JZ7xmYKiBA6EcLe

104.17.2.184

200 OK

61 B

URL GET HTTP/3
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/i/87a0c3c98a65b50f/1714073606995/JZ7xmYKiBA6EcLe
IP
104.17.2.184:443
ASN
#13335 CLOUDFLARENET

Requested by
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv1/42BoqtBW7FWf6hi/oj7n4/0x4AAAAAAAXjXiXiV7KvBpAv/auto/normal
Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
PNG image data, 10 x 5, 8-bit/color RGB, non-interlaced
Size
61 B (61 bytes)
Hash
79ffbbb469ced8f5ca66595855953962
35dcb289ac52331856ea5197b2d6b7c55bd2ebfa
b1007a47ea0a8ab848b49b5354f014108ec0a80ac1535f2b796993c3fe1b8137

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/i/87a0c3c98a65b50f/1714073606995/JZ7xmYKiBA6EcLe HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv1/42BoqtBW7FWf6hi/oj7n4/0x4AAAAAAAXjXiXiV7KvBpAv/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 25 Apr 2024 19:33:27 GMT
content-type: image/png
content-length: 61
server: cloudflare
cf-ray: 87a0c3d16d70b50f-OSL
alt-svc: h3=":443"; ma=86400

aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml

35.244.181.201

444 B

URL
aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml
IP
35.244.181.201:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
XML 1.0 document, ASCII text, with very long lines (332)
Size
444 B (444 bytes)
Hash
3b324dec137a87ef7e24a30a65b13dd0
c0faa95b2f1018e264b3a14aaf50d1003e6c27b3
6cd0b591d9239fc8564627e92a804fc261951b1cbaf5fa58a8ada3cc13f51463

HTTP Headers

GET /update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml HTTP/1.1
Host: aus5.mozilla.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: no-cache
Pragma: no-cache
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
rule-id: unknown
rule-data-version: unknown
content-signature: x5u=https://content-signature-2.cdn.mozilla.net/chains/aus.content-signature.mozilla.org-2024-06-09-11-51-10.chain; p384ecdsa=HNGKwXTNtQNQOXxhaE34eAz0SOP_fwyb11pV0YkCtjopsNshlAbRs4EmGl1O9ES-5-R8IO0HPu2njHPs9YK0E2TJXUluI4atoyfk60REMoQigdAbECP9Qgw5AACXbLGr
strict-transport-security: max-age=31536000;
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'
x-proxy-cache-status: MISS
content-encoding: gzip
via: 1.1 google
date: Thu, 25 Apr 2024 19:32:57 GMT
content-type: text/xml; charset=utf-8
vary: Accept-Encoding
content-length: 444
age: 35
cache-control: public,max-age=90
alt-svc: clear
X-Firefox-Spdy: h2

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/697102180:1714072671:i1BX_s_Tg-BGZa61ZS_dRZm7eJYHQfjK2nwiMck4RMo/87a0c3c98a65b50f/50b33df24bc5e06

104.17.2.184

200 OK

104 kB

URL POST HTTP/3
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/697102180:1714072671:i1BX_s_Tg-BGZa61ZS_dRZm7eJYHQfjK2nwiMck4RMo/87a0c3c98a65b50f/50b33df24bc5e06
IP
104.17.2.184:443
ASN
#13335 CLOUDFLARENET

Requested by
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv1/42BoqtBW7FWf6hi/oj7n4/0x4AAAAAAAXjXiXiV7KvBpAv/auto/normal
Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
104 kB (104300 bytes)
Hash
c6749156a903076b79b53f454ba1c370
6d172230944ca3916ea1c8735d63f2df37b576aa
a95af1a146306f19800c1478167bdd626448f4037001988380b99574721f1430

HTTP Headers

POST /cdn-cgi/challenge-platform/h/g/flow/ov1/697102180:1714072671:i1BX_s_Tg-BGZa61ZS_dRZm7eJYHQfjK2nwiMck4RMo/87a0c3c98a65b50f/50b33df24bc5e06 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv1/42BoqtBW7FWf6hi/oj7n4/0x4AAAAAAAXjXiXiV7KvBpAv/auto/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: 50b33df24bc5e06
Content-Length: 2667
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 19:33:27 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: e2mV17pEd12kc08XPZz18nGT8aR3SVVkka9cKWkmW4SjtZcyqCaBohcHLijeUNrCK3HyjkDaxHBu1mtqo0qamCpbatIPZRo9Pc/gw+TV1VEJFXNhbH9qkz4mPIssEkO1nf45oFFMKedpb3KkogkRqtfHth8nWf5sX+AlvQVMbh43BR+qAmus/1GH2VNIXUw2qBG6U8eEVn0pOzwC/bbBOy/fcTY8Ix3V5Cd8wjoASV3RmuA7kV9GcR5PL9JDk8YLPGBvCO/ewRRO1xHdPum0l64ZY7RIQllYVfl9SzKrnVolk7x/d56DrZ0QKA0xIWeJulK2A4Qays88Nyj5kNRf3ba+WhJZ7ddPfvcxgeQh2CVeBcKqH9PFUsCkeOMrDzpp5Lp2zOdLHCOPJzRxJ2jgtRkSww9pZ4laRQQCHV30aVs=$uDkKAvIcEZr6jQW6RNTrcg==
vary: accept-encoding
server: cloudflare
cf-ray: 87a0c3cb9d4fb50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

jupita.top/cdn-cgi/challenge-platform/h/g/scripts/jsd/d0ff3ebede6b/main.js

172.67.208.46

200 OK

7.8 kB

URL GET HTTP/3
jupita.top/cdn-cgi/challenge-platform/h/g/scripts/jsd/d0ff3ebede6b/main.js
IP
172.67.208.46:443
ASN
#13335 CLOUDFLARENET

Requested by
https://jupita.top/_bahamas_delta/zone/de01c1d48db6c321c637457113ed80d5/login.php
Certificate
IssuerLet's Encrypt
Subjectjupita.top
Fingerprint9E:5B:A3:A8:86:17:B2:D3:02:73:C1:56:80:93:96:CC:EA:89:5C:6D
ValidityThu, 18 Apr 2024 20:57:05 GMT - Wed, 17 Jul 2024 20:57:04 GMT

File type
JavaScript source, ASCII text, with very long lines (7836), with no line terminators
Size
7.8 kB (7836 bytes)
Hash
1dfb37a1340dd505ae79585a6d3863b4
7b782b051f19836cf4461220fd0f91253f8e23f9
8e1b1f8aded24f19c094620350b1811f0b8029cd7236415a36bb55f6d0de15c9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/scripts/jsd/d0ff3ebede6b/main.js HTTP/1.1
Host: jupita.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 19:33:14 GMT
content-type: application/javascript; charset=UTF-8
cache-control: max-age=14400, public
content-encoding: br
vary: accept-encoding
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YW6DCvtctgpC6DZwdtoYUl1MlcJTCGgRjSaB2USGb0tdwKtkUOyZK9%2FQl0fzjTMqP3z9mI3pWS6c%2Bu1KjVoi3b6%2BVm18C%2Ff4lluihtnsQ5syi987mPFLtr6Q7hxt"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a0c37ad81f568a-OSL
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv1/42BoqtBW7FWf6hi/oj7n4/0x4AAAAAAAXjXiXiV7KvBpAv/auto/normal

104.17.2.184

200 OK

80 kB

URL GET HTTP/3
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv1/42BoqtBW7FWf6hi/oj7n4/0x4AAAAAAAXjXiXiV7KvBpAv/auto/normal
IP
104.17.2.184:443
ASN
#13335 CLOUDFLARENET

Requested by
https://jupita.top/_bahamas_delta/zone/de01c1d48db6c321c637457113ed80d5/login.php
Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
HTML document, ASCII text, with very long lines (41702)
Size
80 kB (80070 bytes)
Hash
3e96cf5d9d15df348a916884aa5459c5
3a55e866197dc4c6f30992dcba07db575394514f
47ebbdd9bf06cc80647fafa8c91a4ddeb6eea93978c689d63bf2a6a139b94f10

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv1/42BoqtBW7FWf6hi/oj7n4/0x4AAAAAAAXjXiXiV7KvBpAv/auto/normal HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jupita.top/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 19:33:26 GMT
content-type: text/html; charset=UTF-8
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
content-security-policy: frame-src https://challenges.cloudflare.com/ blob:; base-uri 'self'
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
origin-agent-cluster: ?1
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
document-policy: js-profiling
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
vary: accept-encoding
server: cloudflare
cf-ray: 87a0c3c98a65b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=87a0c3c98a65b50f

104.17.2.184

200 OK

433 kB

URL GET HTTP/3
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=87a0c3c98a65b50f
IP
104.17.2.184:443
ASN
#13335 CLOUDFLARENET

Requested by
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv1/42BoqtBW7FWf6hi/oj7n4/0x4AAAAAAAXjXiXiV7KvBpAv/auto/normal
Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
433 kB (433218 bytes)
Hash
3ad63b49bf9667e2c47f618f9e1a7b1a
80886adfd83871fc53ce14fd8d73a8936415dc39
fdb684dc128276c0247210f3dad514799af8d0e774788258cbfb4bd67db2edcd

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=87a0c3c98a65b50f HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv1/42BoqtBW7FWf6hi/oj7n4/0x4AAAAAAAXjXiXiV7KvBpAv/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 19:33:26 GMT
content-type: application/javascript; charset=UTF-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
vary: accept-encoding
server: cloudflare
cf-ray: 87a0c3c9dafeb50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/oj7n4/0x4AAAAAAAXjXiXiV7KvBpAv/auto/normal

104.17.2.184

200 OK

80 kB

URL GET HTTP/3
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/oj7n4/0x4AAAAAAAXjXiXiV7KvBpAv/auto/normal
IP
104.17.2.184:443
ASN
#13335 CLOUDFLARENET

Requested by
https://jupita.top/_bahamas_delta/zone/de01c1d48db6c321c637457113ed80d5/login.php
Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
HTML document, ASCII text, with very long lines (41702)
Size
80 kB (80050 bytes)
Hash
3caa76271796005f0d0b05f53c789ed1
b5ad04ed72af3bb60573c8004ee256e508825ade
1c410b5c75dc3ea59775bef1dc7ea1793bc0ff10c763adfab89fadae4a356640

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/oj7n4/0x4AAAAAAAXjXiXiV7KvBpAv/auto/normal HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jupita.top/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 19:33:14 GMT
content-type: text/html; charset=UTF-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
referrer-policy: same-origin
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
cross-origin-opener-policy: same-origin
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
document-policy: js-profiling
origin-agent-cluster: ?1
content-security-policy: frame-src https://challenges.cloudflare.com/ blob:; base-uri 'self'
vary: accept-encoding
server: cloudflare
cf-ray: 87a0c37aceeeb50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/697102180:1714072671:i1BX_s_Tg-BGZa61ZS_dRZm7eJYHQfjK2nwiMck4RMo/87a0c3c98a65b50f/50b33df24bc5e06

104.17.2.184

200 OK

960 B

URL POST HTTP/3
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/697102180:1714072671:i1BX_s_Tg-BGZa61ZS_dRZm7eJYHQfjK2nwiMck4RMo/87a0c3c98a65b50f/50b33df24bc5e06
IP
104.17.2.184:443
ASN
#13335 CLOUDFLARENET

Requested by
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv1/42BoqtBW7FWf6hi/oj7n4/0x4AAAAAAAXjXiXiV7KvBpAv/auto/normal
Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
ASCII text, with very long lines (960), with no line terminators
Size
960 B (960 bytes)
Hash
c2e626c38a2f22f24f56bbcce94042e6
dcc2f3f60978727405a99114d447ca34aeb8f403
fcef9548d0e434290ef087f8726140bf92dd600890addbcfa5e8be346a7376c0

HTTP Headers

POST /cdn-cgi/challenge-platform/h/g/flow/ov1/697102180:1714072671:i1BX_s_Tg-BGZa61ZS_dRZm7eJYHQfjK2nwiMck4RMo/87a0c3c98a65b50f/50b33df24bc5e06 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv1/42BoqtBW7FWf6hi/oj7n4/0x4AAAAAAAXjXiXiV7KvBpAv/auto/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: 50b33df24bc5e06
Content-Length: 27469
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 19:33:28 GMT
content-type: text/html; charset=UTF-8
cf-chl-out-s: K/w3ceSWokGzkV7SX5I02w==$wkWrVwOhRVXOhKrEXQCQOg==
cf-chl-out: jx/TE9aAZLhuVXBRJqZqVPkzCWVIxLvKh+ozot065qcVfYJ+YeHDs3dUdLraeuiHFwEMD2y4WQHxzuSiRw38QP+/G+dXR42QzgHin+gBv2I=$ASR10pK0wma5jsGZ7jUEtA==
vary: accept-encoding
server: cloudflare
cf-ray: 87a0c3d61b59b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

jupita.top/_bahamas_delta/zone/de01c1d48db6c321c637457113ed80d5/login.php

172.67.208.46

200 OK

2.0 kB

URL User Request GET HTTP/2
jupita.top/_bahamas_delta/zone/de01c1d48db6c321c637457113ed80d5/login.php
IP
172.67.208.46:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerLet's Encrypt
Subjectjupita.top
Fingerprint9E:5B:A3:A8:86:17:B2:D3:02:73:C1:56:80:93:96:CC:EA:89:5C:6D
ValidityThu, 18 Apr 2024 20:57:05 GMT - Wed, 17 Jul 2024 20:57:04 GMT

File type
HTML document, ASCII text, with very long lines (2062), with no line terminators
Size
2.0 kB (2034 bytes)
Hash
cb8b65f5a75da653b0122a7de00e03c9
f07c51e70f874aecf780e01b40fba9cf91be76e5
0e8fc93c241f1710cc749e40b8ea289b8f0964c25eb804fd978b2ca2157ec35c

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Microsoft Outlook
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_bahamas_delta/zone/de01c1d48db6c321c637457113ed80d5/login.php HTTP/1.1
Host: jupita.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 25 Apr 2024 19:33:13 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.30
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ErU4jTvcykvtopi%2Bx3xWARxwXzBfGpzcPiCaCT%2BjbPZxkrsGW6PWEjRX6Johr78LFgS4ASPC1NIwPQ4rudStklT8a3s3Rk1v5Tc3%2BCrg%2Fmjihi5MD%2Fu3KNf%2BWUjG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a0c3747f32b503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

challenges.cloudflare.com/turnstile/v0/g/d0ff3ebede6b/api.js

104.17.2.184

200 OK

43 kB

URL GET HTTP/3
challenges.cloudflare.com/turnstile/v0/g/d0ff3ebede6b/api.js
IP
104.17.2.184:443
ASN
#13335 CLOUDFLARENET

Requested by
https://jupita.top/_bahamas_delta/zone/de01c1d48db6c321c637457113ed80d5/login.php
Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (42565)
Size
43 kB (42566 bytes)
Hash
65b0a652c40c95d12c4ddb3b4567c1ea
c654efa19d01d6553ed4e0f500d350011e023ad1
c6b5cd0b65ebbb519dd845ba2979b40e58b056ca2c90f67a8bfea871d39615a7

HTTP Headers

GET /turnstile/v0/g/d0ff3ebede6b/api.js HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jupita.top/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 19:33:13 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: max-age=31536000
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a0c379bd7ab50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (48)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Observations