Report - curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev/?yeGHUGFDsertyuikljbvcdfghj

Report Overview

Submitted URL
curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev/?yeGHUGFDsertyuikljbvcdfghj_docx=yangj@slurpmail.net
IP
172.66.44.172
ASN
#13335 CLOUDFLARENET
Submitted
2024-05-08 13:02:20
Access
public
Website Title
Slurpmail.net
Final URL
curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev/?yeGHUGFDsertyuikljbvcdfghj_docx=yangj@slurpmail.net
Tags
phishing
urlquery detections
Phishing - Generic phishing

Detections

urlquery
3
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev	unknown	unknown	No data	No data	3.4 kB	214 kB	172.66.44.172
logo.clearbit.com	27344	2003-07-04	2015-06-30	2024-05-07	473 B	489 B	143.204.55.15
image.thum.io	282725	2016-02-04	2017-02-03	2024-04-17	501 B	7.0 kB	54.236.121.161

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (3)

	URL	Size	First Seen	Last Seen
	curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev/static/js/main.bc950d7d.js	145 kB	2024-05-07	2024-05-14
Pretty URL curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev/static/js/main.bc950d7d.js IP 172.66.44.172 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-07 16:02:14 Last Seen2024-05-14 23:07:32 Times Seen40 Hash 776068de637a801c6d5af6429739e997 ef812bddf7839de3fb9e5dc0662dbd258fced896 6b086c84005bde893ebc64acf134cc56de4111bf05dde15a5100693068f1e9c3 Loading...

	curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev/static/js/8.83d209ba.chunk.js	3.9 kB	2024-05-07	2024-05-14
Pretty URL curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev/static/js/8.83d209ba.chunk.js IP 172.66.44.172 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-07 16:02:14 Last Seen2024-05-14 23:07:32 Times Seen25 Hash dd34cea3295327355deec705f3ff10ca 6ea780cf48616646ef2ba6067edf73c02c56f1be edd2e6da9994d5576fd02bec0cca007edd629a95b59a0fe0ec94701b724e2ce6 Loading...

	curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev/static/js/876.3d0303f4.chunk.js	90 kB	2024-05-07	2024-05-14
Pretty URL curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev/static/js/876.3d0303f4.chunk.js IP 172.66.44.172 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-07 16:02:14 Last Seen2024-05-14 23:07:32 Times Seen40 Hash 8d69d76d3db6ec58294de54a89d4cb83 df7afa2e4ecf34f8bececb2378fbbf734d709c7c 0df54c65eb19f14619100e7f92f3fb54d9ee1bb529dad106b2c292c1c15f86ee Loading...

HTTP Transactions (8)

URL IP Response Size

curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev/static/css/8.9bc90ec6.chunk.css

172.66.44.172

200 OK

1.4 kB

URL GET HTTP/3
curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev/static/css/8.9bc90ec6.chunk.css
IP
172.66.44.172:443
ASN
#13335 CLOUDFLARENET

Requested by
https://curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev/?yeGHUGFDsertyuikljbvcdfghj_docx=yangj@slurpmail.net
Certificate
IssuerGoogle Trust Services LLC
Subjectcurly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev
FingerprintAE:2A:F3:B0:FD:B5:19:36:79:64:46:B9:F5:CB:81:5E:6E:03:C9:38
ValidityMon, 06 May 2024 13:58:56 GMT - Sun, 04 Aug 2024 13:58:55 GMT

File type
ASCII text, with very long lines (2243)
Size
1.4 kB (1422 bytes)
Hash
04a86ac7f5dfa5514c7dfd9b04a52c64
444416490ff3c398dec62356e5d7065c576b889f
516185bd567f82c5b5d8281e601de112c40a01fb63f15db6bc3ca25aa3f01cec

HTTP Headers

GET /static/css/8.9bc90ec6.chunk.css HTTP/1.1
Host: curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev/?yeGHUGFDsertyuikljbvcdfghj_docx=yangj@slurpmail.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 13:01:55 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"4824f6f312c6fd4a6fcbc577b1da4e04"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=eNlkUkpG4V7tAGf%2FtWvgzQm3wb0A3XX9RDAH3KMAu93%2Bs1LqNkblFwLxBVC4s1RMN%2FXm1VqeKly%2FrGMjezVKDYc2IbTqC3T2p1FYGXMzr%2FdAG%2B12uuD1tQEidPvb2KdyuSWlzOdhtvLpPLEUFG6yYwpKk%2F%2FrPF8L1hZUBpPe%2BW%2BfwxbqGXMXDgo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8809a4259c83568e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev/static/js/8.83d209ba.chunk.js

172.66.44.172

200 OK

8.0 kB

URL GET HTTP/3
curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev/static/js/8.83d209ba.chunk.js
IP
172.66.44.172:443
ASN
#13335 CLOUDFLARENET

Requested by
https://curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev/?yeGHUGFDsertyuikljbvcdfghj_docx=yangj@slurpmail.net
Certificate
IssuerGoogle Trust Services LLC
Subjectcurly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev
FingerprintAE:2A:F3:B0:FD:B5:19:36:79:64:46:B9:F5:CB:81:5E:6E:03:C9:38
ValidityMon, 06 May 2024 13:58:56 GMT - Sun, 04 Aug 2024 13:58:55 GMT

File type
JavaScript source, ASCII text, with very long lines (3851)
Size
8.0 kB (7955 bytes)
Hash
dd34cea3295327355deec705f3ff10ca
6ea780cf48616646ef2ba6067edf73c02c56f1be
edd2e6da9994d5576fd02bec0cca007edd629a95b59a0fe0ec94701b724e2ce6

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Generic phishing

HTTP Headers

GET /static/js/8.83d209ba.chunk.js HTTP/1.1
Host: curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev/?yeGHUGFDsertyuikljbvcdfghj_docx=yangj@slurpmail.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 13:01:55 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"45eae5e23b04c772c1d7d06e2cb81200"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bFuYpiDukJOpASWXF27VL3f9JCbaJ0KbZFw2V%2F2f%2BFBfgFxFTtGvzBIoByFfeo5C9uBFj6WVW%2FNjz%2BFFfSKPuYIbgO6OmqRO4Q6AhGAmwWGT1W5HZl2FzKnpb3CMyIGdiYVMEmkvDlUja%2BrnWbqo3THMe%2FzYn8EDCr0mYLmZkdVVPuihHNzx%2F4w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8809a4259c89568e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev/static/js/876.3d0303f4.chunk.js

172.66.44.172

200 OK

40 kB

URL GET HTTP/3
curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev/static/js/876.3d0303f4.chunk.js
IP
172.66.44.172:443
ASN
#13335 CLOUDFLARENET

Requested by
https://curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev/?yeGHUGFDsertyuikljbvcdfghj_docx=yangj@slurpmail.net
Certificate
IssuerGoogle Trust Services LLC
Subjectcurly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev
FingerprintAE:2A:F3:B0:FD:B5:19:36:79:64:46:B9:F5:CB:81:5E:6E:03:C9:38
ValidityMon, 06 May 2024 13:58:56 GMT - Sun, 04 Aug 2024 13:58:55 GMT

File type
JavaScript source, ASCII text, with very long lines (65460)
Size
40 kB (39514 bytes)
Hash
8d69d76d3db6ec58294de54a89d4cb83
df7afa2e4ecf34f8bececb2378fbbf734d709c7c
0df54c65eb19f14619100e7f92f3fb54d9ee1bb529dad106b2c292c1c15f86ee

HTTP Headers

GET /static/js/876.3d0303f4.chunk.js HTTP/1.1
Host: curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev/?yeGHUGFDsertyuikljbvcdfghj_docx=yangj@slurpmail.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 13:01:55 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"fda59883d3f7a95f1868bc4a939b4a99"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ox%2FpHuEbvIR8mqyMts23oJ2rgLMP601p16ShGxW5qV96bZi4C%2FEMBHDVSbmDNPLr7yIIugKdhZ3X%2FfHdU7Pq0ItnUmRjqa6IJmVk6TMERZ5xmduwGEZfMT9YOT9x7r4nY9ZhPpL82StD5UPS0GziYsoq21eXsFUzTvYtoFVHBAnDnt36kBxNUn4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8809a4259c80568e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

logo.clearbit.com/https://slurpmail.net

143.204.55.15

1 B

URL GET
logo.clearbit.com/https://slurpmail.net
IP
143.204.55.15:0
ASN
#16509 AMAZON-02

Requested by
https://curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev/?yeGHUGFDsertyuikljbvcdfghj_docx=yangj@slurpmail.net

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
68b329da9893e34099c7d8ad5cb9c940
adc83b19e793491b1c6ea0fd8b46cd9f32e592fc
01ba4719c80b6fe911b091a7c05124b64eeece964e09c058ef8f9805daca546b

HTTP Headers

GET /https://slurpmail.net HTTP/1.1
Host: logo.clearbit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
content-type: text/plain; charset=utf-8
content-length: 1
date: Wed, 08 May 2024 13:01:59 GMT
x-envoy-response-flags: -
server: Clearbit
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-cache: Error from cloudfront
via: 1.1 2afd697fc5d0058ea30d6c4b939e714c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 7CBxFAovxOPsKrmVv_AVytzsJ7QkqW9RA-wh67IijmfNELtL3EP7Ew==
X-Firefox-Spdy: h2

curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev/static/js/main.bc950d7d.js

172.66.44.172

200 OK

145 kB

URL GET HTTP/3
curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev/static/js/main.bc950d7d.js
IP
172.66.44.172:443
ASN
#13335 CLOUDFLARENET

Requested by
https://curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev/?yeGHUGFDsertyuikljbvcdfghj_docx=yangj@slurpmail.net
Certificate
IssuerGoogle Trust Services LLC
Subjectcurly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev
FingerprintAE:2A:F3:B0:FD:B5:19:36:79:64:46:B9:F5:CB:81:5E:6E:03:C9:38
ValidityMon, 06 May 2024 13:58:56 GMT - Sun, 04 Aug 2024 13:58:55 GMT

File type
JavaScript source, ASCII text, with very long lines (65465)
Size
145 kB (145127 bytes)
Hash
776068de637a801c6d5af6429739e997
ef812bddf7839de3fb9e5dc0662dbd258fced896
6b086c84005bde893ebc64acf134cc56de4111bf05dde15a5100693068f1e9c3

HTTP Headers

GET /static/js/main.bc950d7d.js HTTP/1.1
Host: curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev/?yeGHUGFDsertyuikljbvcdfghj_docx=yangj@slurpmail.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 13:01:55 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"cb08adaf46744537ecf8b4013044284e"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gC%2BLw%2BVjmdTu%2BcDkjM%2F%2F%2F21MkqXsRXtYBydl2frezpHibZLdZdJfHZNG6mhwaxTFeH%2B2zt6U6PR%2Far0jxtemtdO8Nww8yrC%2FvVtsNhK1BLRmlQPSBqm12KlxOuT3PyXO6QUM5kYHRGPFQXSoWYen6ZmDD9MbjLyjTVeW10rmALqy%2BxXzzIvOXPU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8809a424cb67568e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

image.thum.io/get/auth/70387-kkkkkkkkk/https://www.slurpmail.net/

54.236.121.161

403 Forbidden

6.7 kB

URL GET HTTP/2
image.thum.io/get/auth/70387-kkkkkkkkk/https://www.slurpmail.net/
IP
54.236.121.161:443
ASN
#14618 AMAZON-AES

Requested by
https://curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev/?yeGHUGFDsertyuikljbvcdfghj_docx=yangj@slurpmail.net
Certificate
IssuerAmazon
Subject*.thum.io
Fingerprint07:A3:2D:21:8F:4E:98:41:CF:71:06:8A:8A:92:CF:EA:7F:05:ED:03
ValiditySun, 24 Sep 2023 00:00:00 GMT - Tue, 22 Oct 2024 23:59:59 GMT

File type
PNG image data, 600 x 600, 8-bit/color RGBA, non-interlaced
Size
6.7 kB (6734 bytes)
Hash
8fe9cbc873302a9824b3ed6ac27e109b
fa52d7843c028832691bcd8b2ca227607bf0d168
6ce6052e87ed4950dfa40ed8ce4d767b480027fc4572f2d640e2f41011c228cb

HTTP Headers

GET /get/auth/70387-kkkkkkkkk/https://www.slurpmail.net/ HTTP/1.1
Host: image.thum.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 403 Forbidden
date: Wed, 08 May 2024 13:02:00 GMT
content-type: image/png
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
X-Firefox-Spdy: h2

curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev/?yeGHUGFDsertyuikljbvcdfghj_docx=yangj@slurpmail.net

172.66.44.172

200 OK

14 kB

URL User Request GET HTTP/2
curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev/?yeGHUGFDsertyuikljbvcdfghj_docx=yangj@slurpmail.net
IP
172.66.44.172:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectcurly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev
FingerprintAE:2A:F3:B0:FD:B5:19:36:79:64:46:B9:F5:CB:81:5E:6E:03:C9:38
ValidityMon, 06 May 2024 13:58:56 GMT - Sun, 04 Aug 2024 13:58:55 GMT

File type
HTML document, ASCII text, with very long lines (14268), with no line terminators
Size
14 kB (14268 bytes)
Hash
8d36124171c1eb502cbfffdbffa7286a
0ec006bbd4cbd44c421ec064431f21ad0c471cee
a90530ad58fff240157c928b80dce317e7d54971f8f05a2eb9e4ead9cb2cffad

HTTP Headers

GET /?yeGHUGFDsertyuikljbvcdfghj_docx=yangj@slurpmail.net HTTP/1.1
Host: curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 08 May 2024 13:01:55 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"8087bccf0080c66c7d2a3d5042fb4215"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4b9S%2Fae9r9lWPJaRHw9XBGKEV0PpMJudrcrDwCZuSqP6cB3kAge4Ka4X53u0dX%2F3naRsk5EEx4i6%2F09TePORE5A2KmcTcN%2BJZtPG5ievFO9KHvTbTlRNgS1fsZ41Gl5bgH6QKy1fjwh1VWg6ekkMls7chbOy3wFYTiJsMFEQbufSKaRe9Ccp4UU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8809a422bd5c569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev/static/css/main.1319e149.css

172.66.44.172

200 OK

991 B

URL GET HTTP/3
curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev/static/css/main.1319e149.css
IP
172.66.44.172:443
ASN
#13335 CLOUDFLARENET

Requested by
https://curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev/?yeGHUGFDsertyuikljbvcdfghj_docx=yangj@slurpmail.net
Certificate
IssuerGoogle Trust Services LLC
Subjectcurly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev
FingerprintAE:2A:F3:B0:FD:B5:19:36:79:64:46:B9:F5:CB:81:5E:6E:03:C9:38
ValidityMon, 06 May 2024 13:58:56 GMT - Sun, 04 Aug 2024 13:58:55 GMT

File type
ASCII text, with very long lines (992), with no line terminators
Size
991 B (991 bytes)
Hash
0c81e65e74df2a111d09520fd2ae5e08
eb062c60d2915b60e8c2b64b0652fc75175da66f
6e50c46ad01a28a96cfe33f60a8b16bca15d47b7b9823458d484daee51e164cf

HTTP Headers

GET /static/css/main.1319e149.css HTTP/1.1
Host: curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev/?yeGHUGFDsertyuikljbvcdfghj_docx=yangj@slurpmail.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 13:01:55 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"6cff9e6e6fee35c25d8db7f515227944"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kFA%2FwW3aLFVFAfJW8i9nVZyGgpajiVLLrujTo%2BmucsjB9tziQEebq0eyRMqUJeIc0T1GcnK5cUjMedk%2BZY9e%2BRSrqdbrDCkLgeVZ95HSi9J8EWlP6XbeoSM7pfQS68%2BGBFiejviIey%2BJ3zMbzIE9etCc4DHfb1Fhf44B%2BjgWSgVpd%2F7G1aHF4vg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8809a424cb68568e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (3)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (8)

URL GET HTTP/3

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/3

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/3

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET

IP

ASN

Requested by