Report - trojansol-fix.pages.dev/

Report Overview

Submitted URL
trojansol-fix.pages.dev/
IP
188.114.96.1
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-24 16:40:00
Access
public
Website Title
TELEGRAM BOT DECENTRALIZED DATABASE
Final URL
trojansol-fix.pages.dev/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
32

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
cdn.jsdelivr.net	439	2012-05-16	2012-09-30	2024-04-24	2.0 kB	88 kB	151.101.1.229
trojansol-fix.pages.dev	unknown	unknown	No data	No data	3.8 kB	5.5 MB	188.114.97.1

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-04-24	medium	trojansol-fix.pages.dev/	Telegram
2024-04-24	medium	trojansol-fix.pages.dev/	Telegram
2024-04-24	medium	trojansol-fix.pages.dev/	Telegram
2024-04-24	medium	trojansol-fix.pages.dev/	Telegram
2024-04-24	medium	trojansol-fix.pages.dev/	Telegram
2024-04-24	medium	trojansol-fix.pages.dev/	Telegram
2024-04-24	medium	trojansol-fix.pages.dev/	Telegram
2024-04-24	medium	trojansol-fix.pages.dev/	Telegram

PhishTank

Scan Date	Severity	Indicator	Alert
2024-04-24	medium	trojansol-fix.pages.dev/assets/Telegram_2019_Logo.svg.webp	Other
2024-04-24	medium	trojansol-fix.pages.dev/assets/image_processing20210405-32501-doifx3.gif	Other
2024-04-24	medium	trojansol-fix.pages.dev/assets/telegram_d.gif	Other
2024-04-24	medium	trojansol-fix.pages.dev/assets/font-roboto.css	Other
2024-04-24	medium	trojansol-fix.pages.dev/assets/telegram.css	Other
2024-04-24	medium	trojansol-fix.pages.dev/favicon.ico	Other
2024-04-24	medium	trojansol-fix.pages.dev/assets/pattern.svg	Other
2024-04-24	medium	trojansol-fix.pages.dev/	Other

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (3)

	URL	Size	First Seen	Last Seen
	cdn.jsdelivr.net/npm/bootstrap@5.3.2/dist/js/bootstrap.bundle.min.js	81 kB	2023-09-18	2024-05-05
Pretty URL cdn.jsdelivr.net/npm/bootstrap@5.3.2/dist/js/bootstrap.bundle.min.js IP 151.101.1.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-18 01:21:14 Last Seen2024-05-05 20:20:47 Times Seen2811 Hash 6baf57f25796c332144ed58a2a0cd9ee f7fd0f3dc84b2cf93bf81e832505a673f354e0a3 82f64f62bb03c1bc1824b0f9c9e05f70dba33e146818e63cdf5c306c8cf3dedd Loading...

	cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js	20 kB	2023-05-30	2024-05-03
Pretty URL cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js IP 151.101.1.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-30 11:24:05 Last Seen2024-05-03 17:30:07 Times Seen935 Hash 31032b08bd8e72220462d3f54f8bd69a 871d6ef1070bd363ea390e0c8c384e47dce7f389 c212f4b505a86352aed62b24a8f16f999f821ecbe6456c7f3c8a04bc87968782 Loading...

	cdn.jsdelivr.net/npm/bootstrap@5.3.2/dist/js/bootstrap.min.js	61 kB	2023-09-22	2024-05-05
Pretty URL cdn.jsdelivr.net/npm/bootstrap@5.3.2/dist/js/bootstrap.min.js IP 151.101.1.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-22 01:14:35 Last Seen2024-05-05 19:57:41 Times Seen182 Hash f63dfbdcc649f13af4791a90e51f7907 b3cacef9fccfa42aaebd61f046f2123eca598973 60c6bec0033a424572cfdf7da1d5fb94f4719286006a7f2cb9e76ee24d99babf Loading...

HTTP Transactions (12)

URL IP Response Size

cdn.jsdelivr.net/npm/bootstrap@5.3.2/dist/css/bootstrap.min.css

151.101.1.229

200 OK

35 kB

URL GET HTTP/2
cdn.jsdelivr.net/npm/bootstrap@5.3.2/dist/css/bootstrap.min.css
IP
151.101.1.229:443
ASN
#54113 FASTLY

Requested by
https://trojansol-fix.pages.dev/
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT

File type
Unicode text, UTF-8 text, with very long lines (65342)
Size
35 kB (34902 bytes)
Hash
cd822b7fd22c8a95a68470c795adea69
1f139981b9b47a766efa0a61bb78ada351f16c4b
3017df4a76db5f01c2b99b603d88b03106df13bcfe18e67b7c13c2341d3a67df

HTTP Headers

GET /npm/bootstrap@5.3.2/dist/css/bootstrap.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://trojansol-fix.pages.dev/
Origin: https://trojansol-fix.pages.dev
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 5.3.2
x-jsd-version-type: version
etag: W/"38df4-HxOZgbm0enZu+gphu3ito1HxbEs"
content-encoding: br
accept-ranges: bytes
date: Wed, 24 Apr 2024 16:39:34 GMT
age: 5097903
x-served-by: cache-fra-etou8220083-FRA, cache-hel1410032-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 34902
X-Firefox-Spdy: h2

cdn.jsdelivr.net/npm/bootstrap@5.3.2/dist/js/bootstrap.bundle.min.js

151.101.1.229

200 OK

25 kB

URL GET HTTP/2
cdn.jsdelivr.net/npm/bootstrap@5.3.2/dist/js/bootstrap.bundle.min.js
IP
151.101.1.229:443
ASN
#54113 FASTLY

Requested by
https://trojansol-fix.pages.dev/
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT

File type
JavaScript source, ASCII text, with very long lines (65299)
Size
25 kB (25109 bytes)
Hash
6baf57f25796c332144ed58a2a0cd9ee
f7fd0f3dc84b2cf93bf81e832505a673f354e0a3
82f64f62bb03c1bc1824b0f9c9e05f70dba33e146818e63cdf5c306c8cf3dedd

HTTP Headers

GET /npm/bootstrap@5.3.2/dist/js/bootstrap.bundle.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://trojansol-fix.pages.dev/
Origin: https://trojansol-fix.pages.dev
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 5.3.2
x-jsd-version-type: version
etag: W/"13b17-9/0PPchLLPk7+B6DJQWmc/NU4KM"
content-encoding: br
accept-ranges: bytes
date: Wed, 24 Apr 2024 16:39:34 GMT
age: 1446907
x-served-by: cache-fra-etou8220085-FRA, cache-hel1410032-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 25109
X-Firefox-Spdy: h2

cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js

151.101.1.229

200 OK

7.7 kB

URL GET HTTP/2
cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js
IP
151.101.1.229:443
ASN
#54113 FASTLY

Requested by
https://trojansol-fix.pages.dev/
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT

File type
JavaScript source, ASCII text, with very long lines (20033)
Size
7.7 kB (7651 bytes)
Hash
31032b08bd8e72220462d3f54f8bd69a
871d6ef1070bd363ea390e0c8c384e47dce7f389
c212f4b505a86352aed62b24a8f16f999f821ecbe6456c7f3c8a04bc87968782

HTTP Headers

GET /npm/@popperjs/core@2.11.8/dist/umd/popper.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://trojansol-fix.pages.dev/
Origin: https://trojansol-fix.pages.dev
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 2.11.8
x-jsd-version-type: version
etag: W/"4e9a-hx1u8QcL02PqOQ4MjDhOR9zn84k"
content-encoding: br
accept-ranges: bytes
date: Wed, 24 Apr 2024 16:39:34 GMT
age: 9133991
x-served-by: cache-fra-eddf8230047-FRA, cache-hel1410032-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 7651
X-Firefox-Spdy: h2

cdn.jsdelivr.net/npm/bootstrap@5.3.2/dist/js/bootstrap.min.js

151.101.1.229

200 OK

18 kB

URL GET HTTP/2
cdn.jsdelivr.net/npm/bootstrap@5.3.2/dist/js/bootstrap.min.js
IP
151.101.1.229:443
ASN
#54113 FASTLY

Requested by
https://trojansol-fix.pages.dev/
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT

File type
JavaScript source, ASCII text, with very long lines (60298)
Size
18 kB (17719 bytes)
Hash
f63dfbdcc649f13af4791a90e51f7907
b3cacef9fccfa42aaebd61f046f2123eca598973
60c6bec0033a424572cfdf7da1d5fb94f4719286006a7f2cb9e76ee24d99babf

HTTP Headers

GET /npm/bootstrap@5.3.2/dist/js/bootstrap.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://trojansol-fix.pages.dev/
Origin: https://trojansol-fix.pages.dev
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 5.3.2
x-jsd-version-type: version
etag: W/"eca1-s8rO+fzPpCquvWHwRvISPspZiXM"
content-encoding: br
accept-ranges: bytes
date: Wed, 24 Apr 2024 16:39:34 GMT
age: 14553573
x-served-by: cache-fra-eddf8230044-FRA, cache-hel1410032-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 17719
X-Firefox-Spdy: h2

trojansol-fix.pages.dev/assets/Telegram_2019_Logo.svg.webp

188.114.97.1

200 OK

22 kB

URL GET HTTP/3
trojansol-fix.pages.dev/assets/Telegram_2019_Logo.svg.webp
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://trojansol-fix.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjecttrojansol-fix.pages.dev
Fingerprint5E:AF:0F:89:51:F0:46:D1:9D:7F:AE:90:FE:EB:BF:21:22:D4:11:2E
ValidityTue, 23 Apr 2024 20:41:09 GMT - Mon, 22 Jul 2024 20:41:08 GMT

File type
RIFF (little-endian) data, Web/P image
Size
22 kB (22378 bytes)
Hash
d00383cc1dfb8bbdb5032231fac92dda
c0e3237bba54aef7efdb6656da3d2a82b1089a78
98142decf694e1d7a868be758d902b85f29c3052351692ce3bd52f2e1e803f4f

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram
PhishTank	phishing	Other

HTTP Headers

GET /assets/Telegram_2019_Logo.svg.webp HTTP/1.1
Host: trojansol-fix.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://trojansol-fix.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 16:39:34 GMT
content-type: image/webp
content-length: 22378
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "a2bf01f0eaf3e784d8ef9b47729d4ca8"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1DLJ%2FZiWqJRKNwPuLN6iAplGqLfUlwf9QCGzOwFh%2F%2BO%2BMgnBww%2FRVSvL0qp6hGUOu5Lr%2B9fvs6ggBnTIJSK3wQOdC8DqF3g0lBDHI32pYpVZMbt6ObCajoGiErvz8bvws8hv9Qmmua9vSA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879787baaaffb4f4-OSL
alt-svc: h3=":443"; ma=86400

trojansol-fix.pages.dev/assets/image_processing20210405-32501-doifx3.gif

188.114.97.1

200 OK

788 kB

URL GET HTTP/3
trojansol-fix.pages.dev/assets/image_processing20210405-32501-doifx3.gif
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://trojansol-fix.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjecttrojansol-fix.pages.dev
Fingerprint5E:AF:0F:89:51:F0:46:D1:9D:7F:AE:90:FE:EB:BF:21:22:D4:11:2E
ValidityTue, 23 Apr 2024 20:41:09 GMT - Mon, 22 Jul 2024 20:41:08 GMT

File type
GIF image data, version 89a, 800 x 600
Size
788 kB (788161 bytes)
Hash
b32304d81324ff9d8bb4474d2ab7496c
3ebf763e2a9995999322244346c3b34d73bb10cc
9c0296dec53f5a9a0a12f4a94a49e474e9e5d4385eaed4e972cc0093c283c247

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram
PhishTank	phishing	Other

HTTP Headers

GET /assets/image_processing20210405-32501-doifx3.gif HTTP/1.1
Host: trojansol-fix.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://trojansol-fix.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 16:39:35 GMT
content-type: image/gif
content-length: 788161
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "97e4d3a647fb766083d6d1abd8641aba"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZJXVIaV%2FyRBmsSzGLoe3u24tR%2Fai7odKrWFECOIxOGpRubwutd6GarhB%2Bz2LyzG8ubgakzgDXmpqypNWFMzOO6JMF3jW0LuHgLuaaabu4rmHigXdWdFBveWziFxGUAqdXMiECReZM5F%2BzA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879787bc4e9bb4f4-OSL
alt-svc: h3=":443"; ma=86400

trojansol-fix.pages.dev/assets/telegram_d.gif

188.114.97.1

200 OK

4.5 MB

URL GET HTTP/3
trojansol-fix.pages.dev/assets/telegram_d.gif
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://trojansol-fix.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjecttrojansol-fix.pages.dev
Fingerprint5E:AF:0F:89:51:F0:46:D1:9D:7F:AE:90:FE:EB:BF:21:22:D4:11:2E
ValidityTue, 23 Apr 2024 20:41:09 GMT - Mon, 22 Jul 2024 20:41:08 GMT

File type
GIF image data, version 89a, 800 x 600
Size
4.5 MB (4534082 bytes)
Hash
19421ae619d3461528bac553b4bf8674
7ebaa109336c9a8fc09c046f6ad89c6cd09f42a2
6944e8962f27f32ea21c849d36a3fecc9f316400badc4ce7b1a112498e159050

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram
PhishTank	phishing	Other

HTTP Headers

GET /assets/telegram_d.gif HTTP/1.1
Host: trojansol-fix.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://trojansol-fix.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 16:39:35 GMT
content-type: image/gif
content-length: 4534082
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "ca46a1e8ec8f9e1318a643f3ab1f6420"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8zV2QKPHF0c%2FZP8kTf455KdqFi%2BmHxaIOYpAH5Wdo65YGNlIYv7bVmQcKy74tDEtP95dZ9pB3mE%2BAIfrgVCMO5rj4DMP3zc7dItF0iG3VCvyvdXojL1emfOvFw%2BdGesmDAz5PG1GTosgJQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879787bc4e9eb4f4-OSL
alt-svc: h3=":443"; ma=86400

trojansol-fix.pages.dev/assets/font-roboto.css

188.114.97.1

200 OK

1.2 kB

URL GET HTTP/3
trojansol-fix.pages.dev/assets/font-roboto.css
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://trojansol-fix.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjecttrojansol-fix.pages.dev
Fingerprint5E:AF:0F:89:51:F0:46:D1:9D:7F:AE:90:FE:EB:BF:21:22:D4:11:2E
ValidityTue, 23 Apr 2024 20:41:09 GMT - Mon, 22 Jul 2024 20:41:08 GMT

File type
ASCII text
Size
1.2 kB (1151 bytes)
Hash
c706681409217a14a24c7e2deb8cf423
08b443fe5bc6a223a9de08fb56282365b1d13857
84b97b3fa8847b64c6d3833561e4b3146530577171e85ad226578a087db70974

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram
PhishTank	phishing	Other

HTTP Headers

GET /assets/font-roboto.css HTTP/1.1
Host: trojansol-fix.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://trojansol-fix.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 16:39:34 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"05e8b5fe4c54287534cb04fad768c36e"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SGCamRAYMud0WxvLdkKQNoZJ0KT99zJihwow1p%2B0Akq%2BZr4Vi%2FHAjXVq%2BUpinOk1L7934Eiglj23AVNbhp2B3Fex9UxY2o5Or7xtMEYvWSIcDJkOcnXDbyj%2BifiZiiHFq2pFA6QX%2BWgp8A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879787baaafab4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

trojansol-fix.pages.dev/assets/telegram.css

188.114.97.1

200 OK

1.3 kB

URL GET HTTP/3
trojansol-fix.pages.dev/assets/telegram.css
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://trojansol-fix.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjecttrojansol-fix.pages.dev
Fingerprint5E:AF:0F:89:51:F0:46:D1:9D:7F:AE:90:FE:EB:BF:21:22:D4:11:2E
ValidityTue, 23 Apr 2024 20:41:09 GMT - Mon, 22 Jul 2024 20:41:08 GMT

File type
ASCII text
Size
1.3 kB (1265 bytes)
Hash
07873e5e1848ece99b35b837e2cbe0c2
2c9dbacc3d11ae53669d702f32f10a43f56786c0
a291584f76e2db68287af29a47491e3a0409655bedb46f191fef7a8eec7eda3d

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram
PhishTank	phishing	Other

HTTP Headers

GET /assets/telegram.css HTTP/1.1
Host: trojansol-fix.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://trojansol-fix.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 16:39:34 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"aab5e5d248ac209ea1a1ab5c41d69ebe"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=opGXvoErkp2CPSKQR63MlbpJXIy2qos6G8dRWwP7ZYRUkFaqJzovVh7%2FQpurMZcf3SB8cVSQZvhBX2U6iQR8r5%2Byi%2B5miEo35lw1PJssWbHkLLIOxyubVqWcqnwXraosn6plwQ8jkhujqw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879787baaafcb4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

trojansol-fix.pages.dev/favicon.ico

188.114.97.1

200 OK

7.8 kB

URL GET HTTP/3
trojansol-fix.pages.dev/favicon.ico
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://trojansol-fix.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjecttrojansol-fix.pages.dev
Fingerprint5E:AF:0F:89:51:F0:46:D1:9D:7F:AE:90:FE:EB:BF:21:22:D4:11:2E
ValidityTue, 23 Apr 2024 20:41:09 GMT - Mon, 22 Jul 2024 20:41:08 GMT

File type
HTML document, ASCII text, with very long lines (3442)
Size
7.8 kB (7792 bytes)
Hash
89f3a8ef10de8a4cfefd9c60d2d9af73
2238b1ceece264f41ede77d72fafc285ee76001a
4aedf2717bd7902e425ca7264759e162f0f2f517c82358d80be88679ba47d559

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram
PhishTank	phishing	Other

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: trojansol-fix.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://trojansol-fix.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 16:39:35 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"d794ebdc01d1b4455622b6467d71595f"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sfyLx6Rtvwcj%2BCyQc6%2FAl6CB8FCQWnKf1mhR8DHEuex2o9ejv7OCD%2BwAid52nbBDeGInS9E3Q2G3XurR%2FkwpSDYmTeOMRis5GNu4YG8Hf6lTdnCUrBsFBOd3J7aJO6xcw4ra6M9XjKfLCQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879787bdc857b4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

trojansol-fix.pages.dev/assets/pattern.svg

188.114.97.1

200 OK

79 kB

URL GET HTTP/3
trojansol-fix.pages.dev/assets/pattern.svg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://trojansol-fix.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjecttrojansol-fix.pages.dev
Fingerprint5E:AF:0F:89:51:F0:46:D1:9D:7F:AE:90:FE:EB:BF:21:22:D4:11:2E
ValidityTue, 23 Apr 2024 20:41:09 GMT - Mon, 22 Jul 2024 20:41:08 GMT

File type
SVG Scalable Vector Graphics image
Size
79 kB (79020 bytes)
Hash
d0c22c6a97023d85ba6e644a41c44a5d
4284efb616c182da4450c123174ce0e81a322845
118add53487c02aaf5b5ab9f69380fa06717deb10492e14aaa487e3c62806ad4

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram
PhishTank	phishing	Other

HTTP Headers

GET /assets/pattern.svg HTTP/1.1
Host: trojansol-fix.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://trojansol-fix.pages.dev/assets/telegram.css
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 16:39:35 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"234367be23190ecf425d06cfae608b42"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NPl50Cb2whc8fxU7my5CQHX59UaKXxXlJi3%2FwMX%2Bcf9vImOVMEHOSYRu5WSWfMvybRMe7n8QsxWy3fj0FdSWJUnRJFMs4TjBc%2BBuA0ZvqyfNghYYqrv%2Bx8oi%2Bwj9vte25ntJ9zFTfdb1Aw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879787bc4e98b4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

trojansol-fix.pages.dev/

188.114.97.1

200 OK

12 kB

URL User Request GET HTTP/2
trojansol-fix.pages.dev/
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjecttrojansol-fix.pages.dev
Fingerprint5E:AF:0F:89:51:F0:46:D1:9D:7F:AE:90:FE:EB:BF:21:22:D4:11:2E
ValidityTue, 23 Apr 2024 20:41:09 GMT - Mon, 22 Jul 2024 20:41:08 GMT

File type
HTML document, ASCII text, with very long lines (3442)
Size
12 kB (11457 bytes)
Hash
89f3a8ef10de8a4cfefd9c60d2d9af73
2238b1ceece264f41ede77d72fafc285ee76001a
4aedf2717bd7902e425ca7264759e162f0f2f517c82358d80be88679ba47d559

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram
PhishTank	phishing	Other

HTTP Headers

GET / HTTP/1.1
Host: trojansol-fix.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 24 Apr 2024 16:39:34 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"d794ebdc01d1b4455622b6467d71595f"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FHHfJ8wPBfHMquvovAikkGqGMNlpscnH%2F2D%2Ba2EnkbZw9%2BYzMPJpvn0FYkZ1ihTos1ZWcPcRXpDPvDRxBEMoSeak7FqvNOckBocuEvvOr8KGd2ZzPiRb41anYDVcV2dDxR4U0NmmmRG%2Fdg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879787b86a71569b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (3)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (12)

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate