| cbe240a9.veryadversiting6685.pages.dev/css/bootstrap/bootstrap.min.css | 172.66.47.141 | 200 OK | 64 kB |
URL GET HTTP/3cbe240a9.veryadversiting6685.pages.dev/css/bootstrap/bootstrap.min.css IP172.66.47.141:443
Requested byhttps://cbe240a9.veryadversiting6685.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectveryadversiting6685.pages.dev Fingerprint94:13:F7:8D:1F:12:4A:1A:AA:0C:BD:37:FB:38:41:29:4C:50:7F:FC ValiditySat, 20 Apr 2024 06:49:43 GMT - Fri, 19 Jul 2024 06:49:42 GMT
File typeUnicode text, UTF-8 text, with very long lines (65306) Hashe451b87914db6243b6afa3c5e484ec16 396f51b333ff6f0926f6e67ad6e6c9c69bea7b31 cfc391e34328c09f0680ae8ff3d63e86224ae7e71c973147ccb84540b2fdd9b8
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /css/bootstrap/bootstrap.min.css HTTP/1.1
Host: cbe240a9.veryadversiting6685.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cbe240a9.veryadversiting6685.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:36:23 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"4c5d83eb6adf727e3094733542e0c4a5"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jRkqhlhG53hyX%2FNzaTJhJ3jlDaDtSm2Aa9Cb5xycBxshrhcZknADCLDKswotwG1XzkcVCUERclF6Fc1pRSiRqasT4dPbzqeUmstHB1wS3kZVtFx%2BTE8CcHvDHlgvSMlTPQzNkk71gjlVR0hNsh6vkfp7IlixQPBfmw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793645bbc561c0a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| cbe240a9.veryadversiting6685.pages.dev/_framework/Microsoft.AspNetCore.Components.dll | 172.66.47.141 | 200 OK | 148 kB |
URL GET HTTP/3cbe240a9.veryadversiting6685.pages.dev/_framework/Microsoft.AspNetCore.Components.dll IP172.66.47.141:443
Requested byhttps://cbe240a9.veryadversiting6685.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectveryadversiting6685.pages.dev Fingerprint94:13:F7:8D:1F:12:4A:1A:AA:0C:BD:37:FB:38:41:29:4C:50:7F:FC ValiditySat, 20 Apr 2024 06:49:43 GMT - Fri, 19 Jul 2024 06:49:42 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Size148 kB (147968 bytes) Hash6e011bbe45d60eeb6e0ea5a5d107f184 85c499cf03a4cf48b1e281fe54af037c555f0c1c 76062fefd79f9ae9adc9c9fd1f9cb915fb8a86ca7235a3c90a8b2384a2656753
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/Microsoft.AspNetCore.Components.dll HTTP/1.1
Host: cbe240a9.veryadversiting6685.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cbe240a9.veryadversiting6685.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:36:23 GMT
content-type: application/x-msdownload
content-length: 147968
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "cd80dc7a8d6db3bdc5d2580a7394b9f6"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RcxHDN5kbCWXghrXxpuihZ7dOxF5QKr59MilB1DpEbQUPbg%2FaQKtJVkD527pdgl3JB25liHHofjTkwSNnoSJ52bhQ%2FBLfGZQCesNPYBnghYdULgPL7PmZ6NGTMVoKw3Rnjkwx3NWxzUZ8P%2B9ARncOGFjHXolf%2Bf%2FWg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793645dbd141c0a-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cbe240a9.veryadversiting6685.pages.dev/_framework/MetaWebAssembly.dll | 172.66.47.141 | 200 OK | 125 kB |
URL GET HTTP/3cbe240a9.veryadversiting6685.pages.dev/_framework/MetaWebAssembly.dll IP172.66.47.141:443
Requested byhttps://cbe240a9.veryadversiting6685.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectveryadversiting6685.pages.dev Fingerprint94:13:F7:8D:1F:12:4A:1A:AA:0C:BD:37:FB:38:41:29:4C:50:7F:FC ValiditySat, 20 Apr 2024 06:49:43 GMT - Fri, 19 Jul 2024 06:49:42 GMT
File typePE32 executable (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Size125 kB (124928 bytes) Hasheff1bd022b62d08a3c704340552af01e 8066d3aad645e4ee34ad0e3894634a64f82e5657 5fc665912b75fc6e75148e502364e7cddd9477db8e280613b94842fc1a27d4b6
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/MetaWebAssembly.dll HTTP/1.1
Host: cbe240a9.veryadversiting6685.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cbe240a9.veryadversiting6685.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:36:23 GMT
content-type: application/x-msdownload
content-length: 124928
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "5cd185238219510255880d5660f23eba"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wkfa890eSaarNDfHhGF4IoQCd%2F0aI5JzFlcpAsPcucmwcNbJ1ojMUHL4L1lUBuKbpFc1%2Fxp6fB5RNrtgwu22nZfZ6fvpDYRzchMvsU2hdAj6IQjQbFgGQ5th7fJDVMAHaf6je8M8v6yrxzCca%2Be1S30qO07LOBRX%2FQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793645dad131c0a-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cbe240a9.veryadversiting6685.pages.dev/_framework/Microsoft.AspNetCore.Components.Web.dll | 172.66.47.141 | 200 OK | 55 kB |
URL GET HTTP/3cbe240a9.veryadversiting6685.pages.dev/_framework/Microsoft.AspNetCore.Components.Web.dll IP172.66.47.141:443
Requested byhttps://cbe240a9.veryadversiting6685.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectveryadversiting6685.pages.dev Fingerprint94:13:F7:8D:1F:12:4A:1A:AA:0C:BD:37:FB:38:41:29:4C:50:7F:FC ValiditySat, 20 Apr 2024 06:49:43 GMT - Fri, 19 Jul 2024 06:49:42 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hasha56ba53b5aefe899cf5cb652b5d4c389 624fafcda529998949e47b7330a236f902aa16a1 157c75ce9146876a7d51af4c33409c0075d4154d4ef6e5aa44c0d0444be6814c
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/Microsoft.AspNetCore.Components.Web.dll HTTP/1.1
Host: cbe240a9.veryadversiting6685.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cbe240a9.veryadversiting6685.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:36:23 GMT
content-type: application/x-msdownload
content-length: 55296
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "eeadfd5293ca0e5d32a43b1dd7b859c7"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zd43AmmrFgfP6U4qFn0wgrfnsDSHPzVo4NJgkQ%2Bqtent8tKllgbtpkW6V4uIGD%2B6QKIketmtsNrLzysQSch%2BYR8csPzeOi%2BQSsWG45BD81GB%2BDrCN5yQaCxySIaLRzb00eO%2B7Dtarbak7TbAkFUwmvkTr6LejXAwIg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793645dbd221c0a-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cbe240a9.veryadversiting6685.pages.dev/_framework/Microsoft.AspNetCore.Components.Forms.dll | 172.66.47.141 | 200 OK | 15 kB |
URL GET HTTP/3cbe240a9.veryadversiting6685.pages.dev/_framework/Microsoft.AspNetCore.Components.Forms.dll IP172.66.47.141:443
Requested byhttps://cbe240a9.veryadversiting6685.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectveryadversiting6685.pages.dev Fingerprint94:13:F7:8D:1F:12:4A:1A:AA:0C:BD:37:FB:38:41:29:4C:50:7F:FC ValiditySat, 20 Apr 2024 06:49:43 GMT - Fri, 19 Jul 2024 06:49:42 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hash609234f45d0d7be3951094b41b425ef8 8876d4da1ca1716e62177f1e69f030b05caff1a6 27946301a85fb9273deb3f2329d056954fa3393f17bdcfe6de832456951baa03
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/Microsoft.AspNetCore.Components.Forms.dll HTTP/1.1
Host: cbe240a9.veryadversiting6685.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cbe240a9.veryadversiting6685.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:36:23 GMT
content-type: application/x-msdownload
content-length: 14848
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "d25c9d7b4317937d61a48cdb55cb8ec4"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VUbCLV3fSfEvfXy5V8wbYNcfm7NYb4YXcIQu2I9VrqvepbWBbQVNKJ2oZlIGr9jDnSZgHY7QW9Zrix6qU8W2XiiD7EGN%2Be%2F4t0l69KEA3Yhk6pk7NhHhRxZwApeS%2Bzbl8tvyvSmByW3ksNAY%2BdAX5t7txNGa3kxjCw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793645dbd1e1c0a-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cbe240a9.veryadversiting6685.pages.dev/_framework/Microsoft.CSharp.dll | 172.66.47.141 | 200 OK | 223 kB |
URL GET HTTP/3cbe240a9.veryadversiting6685.pages.dev/_framework/Microsoft.CSharp.dll IP172.66.47.141:443
Requested byhttps://cbe240a9.veryadversiting6685.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectveryadversiting6685.pages.dev Fingerprint94:13:F7:8D:1F:12:4A:1A:AA:0C:BD:37:FB:38:41:29:4C:50:7F:FC ValiditySat, 20 Apr 2024 06:49:43 GMT - Fri, 19 Jul 2024 06:49:42 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Size223 kB (223232 bytes) Hash85829bbbdcffb15a40b8062d33c3bdaf a53528352acc5a50df89982f02a1e7a62fdd67eb 061d453bf65c57be1b303be2a3abba1a4df11eab492ee138b10be0495e4ac826
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/Microsoft.CSharp.dll HTTP/1.1
Host: cbe240a9.veryadversiting6685.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cbe240a9.veryadversiting6685.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:36:23 GMT
content-type: application/x-msdownload
content-length: 223232
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "b445c52efd69cffec668054219ade0cf"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PpifZVGV3JMdl9FNw1l1Ew%2FnXFLHSdHpI4e1j6bYP%2Bm1yjIIaCWLUIlieS%2BFZBxrbvPikdBEYgp0Z8HoBSQoH7acHqOfExc5EfSK4JZr25WscJq9DivwXLt8h6QPyBp3FJbrQ8S5DbsM5LUACSGnFEQOpBT%2BfMhZKQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793645dcd251c0a-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cbe240a9.veryadversiting6685.pages.dev/_framework/Microsoft.Extensions.Configuration.Abstractions.dll | 172.66.47.141 | 200 OK | 6.1 kB |
URL GET HTTP/3cbe240a9.veryadversiting6685.pages.dev/_framework/Microsoft.Extensions.Configuration.Abstractions.dll IP172.66.47.141:443
Requested byhttps://cbe240a9.veryadversiting6685.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectveryadversiting6685.pages.dev Fingerprint94:13:F7:8D:1F:12:4A:1A:AA:0C:BD:37:FB:38:41:29:4C:50:7F:FC ValiditySat, 20 Apr 2024 06:49:43 GMT - Fri, 19 Jul 2024 06:49:42 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hash6859d10b1fdadfab68f826076cb5edc2 a9e9a51ce2cabdf6f3a4df5d2cedf31916d6d2e9 5ff7f87c397672e2115de58784afdfd94a906c58a80fe454e1ae02121d33aeb4
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/Microsoft.Extensions.Configuration.Abstractions.dll HTTP/1.1
Host: cbe240a9.veryadversiting6685.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cbe240a9.veryadversiting6685.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:36:23 GMT
content-type: application/x-msdownload
content-length: 6144
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "5b17333d734fffed0d7de8a89dd46d87"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tnd%2BZvKqF%2Bznkhbpa4rEc9LQysx9Hbw20xPKLCZo%2FdTyDuMHbqaSoYB1mnm83s2fi9mok%2Fjq7maPqEqURN4T5MkFQMOV2g5CQXNh8aRX6l78cjBFbfiwA7uwcN4lyRWOjRFwWpFgqexN5J6IQjtwskyehMxrfnuTGQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793645dcd261c0a-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cbe240a9.veryadversiting6685.pages.dev/_framework/Microsoft.Extensions.Configuration.dll | 172.66.47.141 | 200 OK | 6.7 kB |
URL GET HTTP/3cbe240a9.veryadversiting6685.pages.dev/_framework/Microsoft.Extensions.Configuration.dll IP172.66.47.141:443
Requested byhttps://cbe240a9.veryadversiting6685.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectveryadversiting6685.pages.dev Fingerprint94:13:F7:8D:1F:12:4A:1A:AA:0C:BD:37:FB:38:41:29:4C:50:7F:FC ValiditySat, 20 Apr 2024 06:49:43 GMT - Fri, 19 Jul 2024 06:49:42 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hash8c3f1d432b91442d973bc34d389c5fe1 7ddbbcb5337632ccccdb43372cdba8f0c3e96a99 0c138a48fae23f6243c556db5ab2d7c83dcae3fc7744189f3415a4fead48dfd3
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/Microsoft.Extensions.Configuration.dll HTTP/1.1
Host: cbe240a9.veryadversiting6685.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cbe240a9.veryadversiting6685.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:36:23 GMT
content-type: application/x-msdownload
content-length: 6656
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "b9776d6e16ef5eaddbdea55374a16cf9"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RQkLh9H%2BJmtROrOlngHweERaBxLzGd0%2BN5cKRGkjRIjd3drE4EtNtFZ81z50rH20HYuxdbwmkYFHh8oEsxGdBKWjHOwJytIRVG%2B47WSW5MAT8n190sSM%2F9uobbdMG4glm0civDbiIZs%2FWPuq9mWTev6OTKQS1mXuTw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793645dcd271c0a-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cbe240a9.veryadversiting6685.pages.dev/_framework/Microsoft.Extensions.Configuration.Json.dll | 172.66.47.141 | 200 OK | 7.7 kB |
URL GET HTTP/3cbe240a9.veryadversiting6685.pages.dev/_framework/Microsoft.Extensions.Configuration.Json.dll IP172.66.47.141:443
Requested byhttps://cbe240a9.veryadversiting6685.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectveryadversiting6685.pages.dev Fingerprint94:13:F7:8D:1F:12:4A:1A:AA:0C:BD:37:FB:38:41:29:4C:50:7F:FC ValiditySat, 20 Apr 2024 06:49:43 GMT - Fri, 19 Jul 2024 06:49:42 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hashaba9b687121af87805c7a0100214d543 3152d0713945e606ad3f7f8b327f0165fe10b79b 43902a267780d93667cc2d08633071ea3fed1d185601e31ba47dc1b15eca8168
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/Microsoft.Extensions.Configuration.Json.dll HTTP/1.1
Host: cbe240a9.veryadversiting6685.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cbe240a9.veryadversiting6685.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:36:23 GMT
content-type: application/x-msdownload
content-length: 7680
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "746694dd3b33c18b32ad6415b8293a17"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hr5OxD1OulvU2XaEt6iXPJll3077zDlliaVHNTfY%2F54NQ%2FshN9kV4IFUZe1VL%2BrX3fNQf4djTohQSWaForuf%2FQD3C4hx%2F2vfZUMQF4VLgmlAOdxqI7QBhphsbaF5Wp%2Fr978BvBz5b%2F%2FoJyyg758MvEEeGcoM92OwoQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793645dcd2a1c0a-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cbe240a9.veryadversiting6685.pages.dev/_framework/Microsoft.Extensions.DependencyInjection.Abstractions.dll | 172.66.47.141 | 200 OK | 13 kB |
URL GET HTTP/3cbe240a9.veryadversiting6685.pages.dev/_framework/Microsoft.Extensions.DependencyInjection.Abstractions.dll IP172.66.47.141:443
Requested byhttps://cbe240a9.veryadversiting6685.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectveryadversiting6685.pages.dev Fingerprint94:13:F7:8D:1F:12:4A:1A:AA:0C:BD:37:FB:38:41:29:4C:50:7F:FC ValiditySat, 20 Apr 2024 06:49:43 GMT - Fri, 19 Jul 2024 06:49:42 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hashea6ae3c811260f75fea161711d60eeb7 3114f3f09f14299f8efce58b43ee3d07d7210b72 4c763c6d926614c6a85b881b941e09095145a03c5c824b23099c3bd7e8a55be3
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/Microsoft.Extensions.DependencyInjection.Abstractions.dll HTTP/1.1
Host: cbe240a9.veryadversiting6685.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cbe240a9.veryadversiting6685.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:36:23 GMT
content-type: application/x-msdownload
content-length: 12800
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "b58944522c4113ace84f254589970a63"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Kw0QOe%2FQMSI0Ap1uVzv3HPIWka4fWSm3aEjfMCxl7X1%2FvWeVeEWyO%2FYjzeCQSWsxTW4wifH9144RDO8VquXS38zQHKlrPL7L9KM%2FvrAMxV7QAXieseDpwZmdu93mKUyGW3tt1%2BtDfZ0%2F8rg9q6PyUUbeB4fcwee2Rw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793645dcd2c1c0a-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cbe240a9.veryadversiting6685.pages.dev/_framework/Microsoft.Extensions.DependencyInjection.dll | 172.66.47.141 | 200 OK | 36 kB |
URL GET HTTP/3cbe240a9.veryadversiting6685.pages.dev/_framework/Microsoft.Extensions.DependencyInjection.dll IP172.66.47.141:443
Requested byhttps://cbe240a9.veryadversiting6685.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectveryadversiting6685.pages.dev Fingerprint94:13:F7:8D:1F:12:4A:1A:AA:0C:BD:37:FB:38:41:29:4C:50:7F:FC ValiditySat, 20 Apr 2024 06:49:43 GMT - Fri, 19 Jul 2024 06:49:42 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hash15a1d4641e9ad33a238e1becd82215d7 cf60e37a5765c66374266adc4d20098dcb1321ea aa2d2413bae9d2476c36a74be83c8f6447a29a3506bdc2d3e225905f462746eb
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/Microsoft.Extensions.DependencyInjection.dll HTTP/1.1
Host: cbe240a9.veryadversiting6685.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cbe240a9.veryadversiting6685.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:36:23 GMT
content-type: application/x-msdownload
content-length: 35840
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "e194b4172578d6f5f2acf7eb2b9542df"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XLncPApHcYpQkVOHUBd3F2jhkfzzPm%2Bdb74LUYv1f8T1n8piAm%2B7IPORs4qhkfP3m%2BJVCTaXg0f0H1Yx%2BP4CQa8shC0BRJoHEwKYWJZvHPYNm38xky6LI4ZwGda7Wa6Saeqyh%2Fez3wm508tp2Vkc7sSNjPCChbygHg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793645ddd2d1c0a-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cbe240a9.veryadversiting6685.pages.dev/_framework/Microsoft.Extensions.Logging.Abstractions.dll | 172.66.47.141 | 200 OK | 23 kB |
URL GET HTTP/3cbe240a9.veryadversiting6685.pages.dev/_framework/Microsoft.Extensions.Logging.Abstractions.dll IP172.66.47.141:443
Requested byhttps://cbe240a9.veryadversiting6685.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectveryadversiting6685.pages.dev Fingerprint94:13:F7:8D:1F:12:4A:1A:AA:0C:BD:37:FB:38:41:29:4C:50:7F:FC ValiditySat, 20 Apr 2024 06:49:43 GMT - Fri, 19 Jul 2024 06:49:42 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hashb5e43b089b5d00726eaa0c0d2501dd47 f0c29035d64d3261171a32014d621dfbdca03659 16fc57b3ca84e74d960304216fe3596d307d0904d20af93142a2941336d05ee7
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/Microsoft.Extensions.Logging.Abstractions.dll HTTP/1.1
Host: cbe240a9.veryadversiting6685.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cbe240a9.veryadversiting6685.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:36:23 GMT
content-type: application/x-msdownload
content-length: 23040
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "24909bae75adc18ae6bf36e12a8a0182"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9OflFbgdxireqcz4lsW4F7GLUoqeoVuvCh8jc5yE1PdJo3x%2Bf7WmRo4wz3i6zBUj%2F3mNk184Adyogj3mlMl0y%2By%2BAcHl5JS0JkcxlBawogmV%2F2Oy5%2FeAqqUNOsvgD7pxHHRd3yzB880BqS92ymERjA9aEHUMt%2BZn1A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793645ddd2e1c0a-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cbe240a9.veryadversiting6685.pages.dev/_framework/Microsoft.Extensions.Logging.dll | 172.66.47.141 | 200 OK | 16 kB |
URL GET HTTP/3cbe240a9.veryadversiting6685.pages.dev/_framework/Microsoft.Extensions.Logging.dll IP172.66.47.141:443
Requested byhttps://cbe240a9.veryadversiting6685.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectveryadversiting6685.pages.dev Fingerprint94:13:F7:8D:1F:12:4A:1A:AA:0C:BD:37:FB:38:41:29:4C:50:7F:FC ValiditySat, 20 Apr 2024 06:49:43 GMT - Fri, 19 Jul 2024 06:49:42 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hash84cdacf1548928c46a4ff45d726ec652 a0c020657fde46b8a3d91a038a51db95f2b492d4 44913aeb44c40b5c26dccc8bd445d07d3401d6a2be256cb579f554c48f27354a
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/Microsoft.Extensions.Logging.dll HTTP/1.1
Host: cbe240a9.veryadversiting6685.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cbe240a9.veryadversiting6685.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:36:23 GMT
content-type: application/x-msdownload
content-length: 16384
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "83f8ca9e3bd4d70e50e56af9ea39edcc"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hXHp3LLAkkm6BrW%2BZCYK3WVxsAOK5%2Fq1A%2FWnwzB%2FoeSLk3TYL7hh%2Feo%2BZLnSxi2KG6lLSyKkFihE%2B%2FjjOUDNlmOPM1E3mefbADSSOjEKd6tgkrY1cjnwlQPgBxVaxJf0zRaqCsvWHfJ0bTElD9RvWODl5%2BldvZ3%2FCg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793645ddd2f1c0a-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cbe240a9.veryadversiting6685.pages.dev/_framework/Microsoft.Extensions.Options.dll | 172.66.47.141 | 200 OK | 15 kB |
URL GET HTTP/3cbe240a9.veryadversiting6685.pages.dev/_framework/Microsoft.Extensions.Options.dll IP172.66.47.141:443
Requested byhttps://cbe240a9.veryadversiting6685.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectveryadversiting6685.pages.dev Fingerprint94:13:F7:8D:1F:12:4A:1A:AA:0C:BD:37:FB:38:41:29:4C:50:7F:FC ValiditySat, 20 Apr 2024 06:49:43 GMT - Fri, 19 Jul 2024 06:49:42 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hash3219bee2fad23ef9528b87aa652c3de8 7fa9dc99190b1510611bc3cdb06c1b73c4f7e4cb 58f05093baedda9e1a304a36a53a75b01a6c896744f0c996b8862afb397571ea
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/Microsoft.Extensions.Options.dll HTTP/1.1
Host: cbe240a9.veryadversiting6685.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cbe240a9.veryadversiting6685.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:36:23 GMT
content-type: application/x-msdownload
content-length: 14848
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "cc5baece31c268e7825e83eb9f7c6808"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=iOelfoiU14qpscvBDYn3zTiWfyFXdEDTjwQqfFHTVCsfj0cEYrZAZftZ6hhLzNcX%2FPjhQXcIhqfDL8qxWNUoKFDoG4Ia18JEnCK4W%2BnmKeGaCwnnY07Xoh%2BIZhk8mo0DVmnvjUKk3IyUirQqLoTbVxc7M9Ey0IgFOQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793645ddd301c0a-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cbe240a9.veryadversiting6685.pages.dev/_framework/Microsoft.Extensions.Primitives.dll | 172.66.47.141 | 200 OK | 7.7 kB |
URL GET HTTP/3cbe240a9.veryadversiting6685.pages.dev/_framework/Microsoft.Extensions.Primitives.dll IP172.66.47.141:443
Requested byhttps://cbe240a9.veryadversiting6685.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectveryadversiting6685.pages.dev Fingerprint94:13:F7:8D:1F:12:4A:1A:AA:0C:BD:37:FB:38:41:29:4C:50:7F:FC ValiditySat, 20 Apr 2024 06:49:43 GMT - Fri, 19 Jul 2024 06:49:42 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hash5b53a8e79427055d58561757faee6b98 b11c0808064a762e0ef296ee57d9494e42581f85 797bc6c768dc8e94cf109a001c1b16fd5b8c3db372c94f80b2e84f9a4cd24916
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/Microsoft.Extensions.Primitives.dll HTTP/1.1
Host: cbe240a9.veryadversiting6685.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cbe240a9.veryadversiting6685.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:36:23 GMT
content-type: application/x-msdownload
content-length: 7680
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "945272a5920802dd108f8d42b39e52c4"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=eXNnBZF5N1%2Fx5f82v2ge2uzONX7RM7fsliGGRjbwjVt09yjjXC6YfOJkSEU9fo%2BFS7NWDoJiRjbkGkT0gpU9hePSDjTC7M7bFpOMTK%2FH9BiJ4bV2NfOHpdFXMOTQKJkm4jLzNAUD2dprgJ6IL2%2Bd5EKQUE%2FpFbKwSQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793645ddd331c0a-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cbe240a9.veryadversiting6685.pages.dev/_framework/Microsoft.JSInterop.WebAssembly.dll | 172.66.47.141 | 200 OK | 8.7 kB |
URL GET HTTP/3cbe240a9.veryadversiting6685.pages.dev/_framework/Microsoft.JSInterop.WebAssembly.dll IP172.66.47.141:443
Requested byhttps://cbe240a9.veryadversiting6685.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectveryadversiting6685.pages.dev Fingerprint94:13:F7:8D:1F:12:4A:1A:AA:0C:BD:37:FB:38:41:29:4C:50:7F:FC ValiditySat, 20 Apr 2024 06:49:43 GMT - Fri, 19 Jul 2024 06:49:42 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hashf03fe889a3441e67c13b135ec4b8e1c7 131f00034aeb6547d3110f58b0f35bf92d3b7452 ac2122093bd9e2af4787c7da89858c77cc3c53162d78cd5b371189dfbeb3b265
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/Microsoft.JSInterop.WebAssembly.dll HTTP/1.1
Host: cbe240a9.veryadversiting6685.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cbe240a9.veryadversiting6685.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:36:23 GMT
content-type: application/x-msdownload
content-length: 8704
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "fcd6bbd0b6b91aff5595c4d379cf6d34"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UCnOSe%2Fo%2FsDh6XvHXnpcw121TWLNFJy83NLuoUqRcEG2oDBV%2FTP6hqNW%2BhLpFK9vZvJSotuekwAEf90B32Pp4Q9CD0r5%2B4eW3N5zRaz3lQYmju6Rt9ZPGKHmVWcOSaQWpt6WlCz071H4h3tTsrXWXaUp665SqY40HA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793645ddd351c0a-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cbe240a9.veryadversiting6685.pages.dev/_framework/netstandard.dll | 172.66.47.141 | 200 OK | 15 kB |
URL GET HTTP/3cbe240a9.veryadversiting6685.pages.dev/_framework/netstandard.dll IP172.66.47.141:443
Requested byhttps://cbe240a9.veryadversiting6685.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectveryadversiting6685.pages.dev Fingerprint94:13:F7:8D:1F:12:4A:1A:AA:0C:BD:37:FB:38:41:29:4C:50:7F:FC ValiditySat, 20 Apr 2024 06:49:43 GMT - Fri, 19 Jul 2024 06:49:42 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hash24b650adcff177e6f5bc9094cd5a5aad 23f476de24f761f82e1d37b7278b01a4a734a97b a10a8475e3f341de3e559a06c7f5849da22376c0f0ff3fa7eaa54d4acee5a1b9
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/netstandard.dll HTTP/1.1
Host: cbe240a9.veryadversiting6685.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cbe240a9.veryadversiting6685.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:36:23 GMT
content-type: application/x-msdownload
content-length: 14848
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "001a738ad0284bd26bfef3bb48fc7458"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0VAXMnWM7Tx%2BB8CtCTiCHUtuCFCBz%2FzIHMS7fm0%2F7MpWqekUhu3TrkUob4TEJHIJnyt21dVhvs%2BbJMDP8Muo%2BiGEl3RGPm6%2FO5COkrCPUoJibjo29%2BAmf%2B942SFbLfCGrmJoYXnSfVc1r91YUIGSwp7UiHJfy9opXw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793645ddd361c0a-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cbe240a9.veryadversiting6685.pages.dev/_framework/System.Collections.dll | 172.66.47.141 | 200 OK | 12 kB |
URL GET HTTP/3cbe240a9.veryadversiting6685.pages.dev/_framework/System.Collections.dll IP172.66.47.141:443
Requested byhttps://cbe240a9.veryadversiting6685.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectveryadversiting6685.pages.dev Fingerprint94:13:F7:8D:1F:12:4A:1A:AA:0C:BD:37:FB:38:41:29:4C:50:7F:FC ValiditySat, 20 Apr 2024 06:49:43 GMT - Fri, 19 Jul 2024 06:49:42 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hasheebf6bf5392e924c8c7eaa32555aab19 3204eb88e2d35eead0588e00822e70863aece25c a028e10a2db4d87bc7e5831a629c9eb70399f89d7a274ab14be659dcb9e7f1cb
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/System.Collections.dll HTTP/1.1
Host: cbe240a9.veryadversiting6685.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cbe240a9.veryadversiting6685.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:36:23 GMT
content-type: application/x-msdownload
content-length: 12288
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "63877889880f6ee87546cf45b700af67"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jDMvkLXFF3VFsdBD%2BsSfpjX5PQzwmxGIayKgKLLriig2jyxL2WVWMJzGl3rc9p6xC3GuwrHNOMjv%2FsQt%2B0nhVN9XfsrTBlSdymqplyQrl5M9X9Edy8EXYA2bha7p87e8LexzMq9bPZ98bnll3ZAghDR6mknWek%2B4xg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793645ded3d1c0a-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cbe240a9.veryadversiting6685.pages.dev/_framework/System.ComponentModel.Annotations.dll | 172.66.47.141 | 200 OK | 5.1 kB |
URL GET HTTP/3cbe240a9.veryadversiting6685.pages.dev/_framework/System.ComponentModel.Annotations.dll IP172.66.47.141:443
Requested byhttps://cbe240a9.veryadversiting6685.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectveryadversiting6685.pages.dev Fingerprint94:13:F7:8D:1F:12:4A:1A:AA:0C:BD:37:FB:38:41:29:4C:50:7F:FC ValiditySat, 20 Apr 2024 06:49:43 GMT - Fri, 19 Jul 2024 06:49:42 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hashb44866fd072a143c6193153ebf3b7e3d 97154ebb0e77469b075e521ed56384c483c11cfc 8fa47c83e7cfb8aa82703ce780ed9c59e5a28ba4423a84125279b8c78fb79dec
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/System.ComponentModel.Annotations.dll HTTP/1.1
Host: cbe240a9.veryadversiting6685.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cbe240a9.veryadversiting6685.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:36:23 GMT
content-type: application/x-msdownload
content-length: 5120
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "f7a4d0b0f88c9fa158a8926cb7bfc67e"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UGVjrdo5NIZLy2NgHe3hj0Dcxz158FE15EtBMIyv0oM6UpjQoLNE%2BohjdqhEEOvVaOCPjJG3FtfSFNwT3RybEIqj%2F1M5R3UNb2iGyWYE4qtU8hpaZxRw6%2FcpikmZJVhCWLVJsmNdDGPKGoBpFmkNnQCNulqkY6sPsA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793645ded431c0a-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cbe240a9.veryadversiting6685.pages.dev/_framework/System.ComponentModel.Primitives.dll | 172.66.47.141 | 200 OK | 11 kB |
URL GET HTTP/3cbe240a9.veryadversiting6685.pages.dev/_framework/System.ComponentModel.Primitives.dll IP172.66.47.141:443
Requested byhttps://cbe240a9.veryadversiting6685.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectveryadversiting6685.pages.dev Fingerprint94:13:F7:8D:1F:12:4A:1A:AA:0C:BD:37:FB:38:41:29:4C:50:7F:FC ValiditySat, 20 Apr 2024 06:49:43 GMT - Fri, 19 Jul 2024 06:49:42 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hash5a7db7edbff2fd502c5c62af41877fb9 8b8e9c163c409922095d94a8ceddd713f9b272c9 bcb64c5d7b49eadedf53ea798b2947dbebde46e1a290c300669e28fb6ec534e1
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/System.ComponentModel.Primitives.dll HTTP/1.1
Host: cbe240a9.veryadversiting6685.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cbe240a9.veryadversiting6685.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:36:23 GMT
content-type: application/x-msdownload
content-length: 11264
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "085001198d8c51647fbe9413d791dbee"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1UJV8HnfPbBMxn0Uoa6Uo6%2Bx8hDtB4klYLlWqOJ%2F6P7nUMfUUumXRvUoOOb%2FsRGnBSrrkMGjiQ9xzFhbMa1ZUW%2FiDXqtzuVp5t5sEGOO3AvUqUnImR%2FIbcpFjHRebJeMOD%2Bwzl%2F0CWaKloEvaiNTSwIQBvMO6KZNQg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793645ded471c0a-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cbe240a9.veryadversiting6685.pages.dev/_framework/System.ComponentModel.TypeConverter.dll | 172.66.47.141 | 200 OK | 124 kB |
URL GET HTTP/3cbe240a9.veryadversiting6685.pages.dev/_framework/System.ComponentModel.TypeConverter.dll IP172.66.47.141:443
Requested byhttps://cbe240a9.veryadversiting6685.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectveryadversiting6685.pages.dev Fingerprint94:13:F7:8D:1F:12:4A:1A:AA:0C:BD:37:FB:38:41:29:4C:50:7F:FC ValiditySat, 20 Apr 2024 06:49:43 GMT - Fri, 19 Jul 2024 06:49:42 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Size124 kB (124416 bytes) Hash1fafddc88ad5641eecc6c0070073260d c3a5f8a41b750c4ee6e7273129f581a4e82ac1e7 b64002564ea8a6b7e75c9335bc7146de8d9064bc9a37136b2d39485bddd1921d
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/System.ComponentModel.TypeConverter.dll HTTP/1.1
Host: cbe240a9.veryadversiting6685.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cbe240a9.veryadversiting6685.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:36:23 GMT
content-type: application/x-msdownload
content-length: 124416
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "ddac8570ebe1f17b88c404cae710cea3"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2LEoG25PEPkkVu%2BTUTui5YDaJ%2FM1PG62Vxu1DY0BekP6eY9%2FWzZlD2LQiXp3aHhwXk0%2BY6PgISLeviFjY3FRznZmY%2FXBY33N8iyqwhyrzrqtwaUZof%2F85HbKWakf6QDU1okxwVARZI6ObaLl3y5bTcRmGAEYUsn4xw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793645dfd481c0a-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cbe240a9.veryadversiting6685.pages.dev/_framework/Microsoft.AspNetCore.Components.WebAssembly.dll | 172.66.47.141 | 200 OK | 49 kB |
URL GET HTTP/3cbe240a9.veryadversiting6685.pages.dev/_framework/Microsoft.AspNetCore.Components.WebAssembly.dll IP172.66.47.141:443
Requested byhttps://cbe240a9.veryadversiting6685.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectveryadversiting6685.pages.dev Fingerprint94:13:F7:8D:1F:12:4A:1A:AA:0C:BD:37:FB:38:41:29:4C:50:7F:FC ValiditySat, 20 Apr 2024 06:49:43 GMT - Fri, 19 Jul 2024 06:49:42 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hash19130315ca35a752740855e7dc4f9079 73fc1c1a7d7a400f2ef4d7d709eb8a7ed0791f5c 1ad84aac771273cb8e2fa5d790640feae19f11296c8fd9078621a52c0fb0e623
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/Microsoft.AspNetCore.Components.WebAssembly.dll HTTP/1.1
Host: cbe240a9.veryadversiting6685.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cbe240a9.veryadversiting6685.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:36:23 GMT
content-type: application/x-msdownload
content-length: 48640
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "cded9693a05b45d1de731cd21eb093d4"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QpR9vppvVutgOx3HRt1rsZ5y04v7tY6R%2FEDvj%2BNQK8dW2azCTOMD9p3yITQ0q1sdzBJKuKd162wZZTYe%2BI3IwyBxFcnM%2BfZJJPJBl8MH82XPHL91sRprBpYsNJvxKTD830DwHbkA8SMa9yq6%2FzTSI%2FI4aXwX1x567Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793645dbd241c0a-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cbe240a9.veryadversiting6685.pages.dev/_framework/Microsoft.JSInterop.dll | 172.66.47.141 | 200 OK | 38 kB |
URL GET HTTP/3cbe240a9.veryadversiting6685.pages.dev/_framework/Microsoft.JSInterop.dll IP172.66.47.141:443
Requested byhttps://cbe240a9.veryadversiting6685.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectveryadversiting6685.pages.dev Fingerprint94:13:F7:8D:1F:12:4A:1A:AA:0C:BD:37:FB:38:41:29:4C:50:7F:FC ValiditySat, 20 Apr 2024 06:49:43 GMT - Fri, 19 Jul 2024 06:49:42 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hash30dd9ecb064e1ce1c4a0e2dd1de36954 6da563f80ed83906557dc06b53f05354453b3d8c 74e5beed5ba01a9187674c6f768ad5c9b74bee83562bc7737b4c46782f2a9a1a
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/Microsoft.JSInterop.dll HTTP/1.1
Host: cbe240a9.veryadversiting6685.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cbe240a9.veryadversiting6685.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:36:23 GMT
content-type: application/x-msdownload
content-length: 37888
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "865e03bd6ad764fda8432a4155d595a5"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KrGaWV1%2FDgkI%2BxuC3Kwlb5N4b9p7aNgylk%2BShoTF6cgYDboVByH9o7um%2F9nI8skfvONAgkg9rgs1AShiSBzhT5cLc86Z2z7Sp5i71sdGhLsZjM8AEznmWSwhPKJ1uhwdZWaImayATuswU5QYhzTTYt2jY%2BfzBFpO4g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793645ddd341c0a-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cbe240a9.veryadversiting6685.pages.dev/_framework/System.Collections.Concurrent.dll | 172.66.47.141 | 200 OK | 20 kB |
URL GET HTTP/3cbe240a9.veryadversiting6685.pages.dev/_framework/System.Collections.Concurrent.dll IP172.66.47.141:443
Requested byhttps://cbe240a9.veryadversiting6685.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectveryadversiting6685.pages.dev Fingerprint94:13:F7:8D:1F:12:4A:1A:AA:0C:BD:37:FB:38:41:29:4C:50:7F:FC ValiditySat, 20 Apr 2024 06:49:43 GMT - Fri, 19 Jul 2024 06:49:42 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hashbd3c99af8e8e1701ed6b6567c894bdbf 063c996e70bc5563d775927dd61318e93177cdee 827e774542b52088c125d6fd7220d83c55009a5383e33bfe6b79b6f1d42aa8b2
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/System.Collections.Concurrent.dll HTTP/1.1
Host: cbe240a9.veryadversiting6685.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cbe240a9.veryadversiting6685.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:36:23 GMT
content-type: application/x-msdownload
content-length: 20480
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "9dfe5a545b0de29272ff16beb1fb3722"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=H6%2FYahyY9tSBQHRatGOFwAgpqWmLhKnjQFXN9%2BFJsnmofaf5NdX2h1iixRRDGo9ROjDmhIkoHSDTQvXZJU4oYK2d%2Bdi7gMDFxiUeTgIsjkAd%2BjjSUhOmgifOtQLymHA6WaO%2FOpzx2%2Bvpu9MwtKioP2Q3kXixcAK9mg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793645ded3c1c0a-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cbe240a9.veryadversiting6685.pages.dev/_framework/System.Collections.NonGeneric.dll | 172.66.47.141 | 200 OK | 15 kB |
URL GET HTTP/3cbe240a9.veryadversiting6685.pages.dev/_framework/System.Collections.NonGeneric.dll IP172.66.47.141:443
Requested byhttps://cbe240a9.veryadversiting6685.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectveryadversiting6685.pages.dev Fingerprint94:13:F7:8D:1F:12:4A:1A:AA:0C:BD:37:FB:38:41:29:4C:50:7F:FC ValiditySat, 20 Apr 2024 06:49:43 GMT - Fri, 19 Jul 2024 06:49:42 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hash8c8c9ec88d8dbf4da9332e0133cbdc6b fe076b9878f05d1383568fd35a81551f9e0affe3 a077fc97c3b1b61d8092e0b5ae0ffea30262d1e93d7bd7adf657ac7bcb89680b
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/System.Collections.NonGeneric.dll HTTP/1.1
Host: cbe240a9.veryadversiting6685.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cbe240a9.veryadversiting6685.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:36:23 GMT
content-type: application/x-msdownload
content-length: 15360
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "745ca4b48e0809e2ee372a7f837608a8"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cHbQy9GiVmapdM94lND8wgBVqtRa09Yl49iwrmxyAxCFghoku3J1gBnpWUmGRDlzSBenRaA0sPY9nJY5215Uq7fsrK0Q4pbCNxGw2BpAj7aa9RWs%2FMHRmTY9OyyN76gvzvFjQtZDlU3rCsF%2B2wvRA00RogSao5JOWQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793645ded3e1c0a-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cbe240a9.veryadversiting6685.pages.dev/_framework/System.Collections.Specialized.dll | 172.66.47.141 | 200 OK | 12 kB |
URL GET HTTP/3cbe240a9.veryadversiting6685.pages.dev/_framework/System.Collections.Specialized.dll IP172.66.47.141:443
Requested byhttps://cbe240a9.veryadversiting6685.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectveryadversiting6685.pages.dev Fingerprint94:13:F7:8D:1F:12:4A:1A:AA:0C:BD:37:FB:38:41:29:4C:50:7F:FC ValiditySat, 20 Apr 2024 06:49:43 GMT - Fri, 19 Jul 2024 06:49:42 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hash3ac7aec570d72553f77753564e14d1a1 623540853e4521e390918ab065c0af91a7160fed 8df4cea5a787cb576624c5c9ebeb71d889b462aed82e39f896b7afc8dc749b4d
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/System.Collections.Specialized.dll HTTP/1.1
Host: cbe240a9.veryadversiting6685.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cbe240a9.veryadversiting6685.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:36:23 GMT
content-type: application/x-msdownload
content-length: 12288
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "e8830c8cab4b4cf7bdbb6fdcb31abd8e"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HGzcjylmKmrW%2BLYqMhX2EVMaF6MkWZIbTtWLkKz1AwOmflQ9FUwaytqGaz2BUzpFQbHWzFUFp5020Fy8icavZXa6XxUiCSLul86bqI6FUmw2op4d9oqSUs82aDrqeSwXMF0NHfp2vtk91s09zDKGQvpiEqGzVC6bYw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793645ded3f1c0a-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cbe240a9.veryadversiting6685.pages.dev/_framework/System.ComponentModel.dll | 172.66.47.141 | 200 OK | 4.6 kB |
URL GET HTTP/3cbe240a9.veryadversiting6685.pages.dev/_framework/System.ComponentModel.dll IP172.66.47.141:443
Requested byhttps://cbe240a9.veryadversiting6685.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectveryadversiting6685.pages.dev Fingerprint94:13:F7:8D:1F:12:4A:1A:AA:0C:BD:37:FB:38:41:29:4C:50:7F:FC ValiditySat, 20 Apr 2024 06:49:43 GMT - Fri, 19 Jul 2024 06:49:42 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hash27b0a900bb2621315f9c6f768f4ee159 b95b6e7b38f4f13f64cdc77065a0a0071d329774 2bc562cdb2871df73451b0e58defb2945812bed746853d8f2a6d1109ebbff755
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/System.ComponentModel.dll HTTP/1.1
Host: cbe240a9.veryadversiting6685.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cbe240a9.veryadversiting6685.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:36:23 GMT
content-type: application/x-msdownload
content-length: 4608
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "9c936e2916ffd3cea6e984175e7c29da"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BrbZ8Ju5YYHD%2B8wDtw7C0tXih9CYyG94MsG67z0mlJ6nenqEOHq4q%2F7N78fyVDZkADFbrZj2IWMKPFwpLFoIfuQaL%2FO5olz0EUWftZEMZSMcztY8iz9fOIR8QNJBhDkYKGbBbgp9rJ6GUVzWucUwLg%2FRqh56Bg92Ig%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793645ded441c0a-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cbe240a9.veryadversiting6685.pages.dev/_framework/System.Data.Common.dll | 172.66.47.141 | 200 OK | 477 kB |
URL GET HTTP/3cbe240a9.veryadversiting6685.pages.dev/_framework/System.Data.Common.dll IP172.66.47.141:443
Requested byhttps://cbe240a9.veryadversiting6685.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectveryadversiting6685.pages.dev Fingerprint94:13:F7:8D:1F:12:4A:1A:AA:0C:BD:37:FB:38:41:29:4C:50:7F:FC ValiditySat, 20 Apr 2024 06:49:43 GMT - Fri, 19 Jul 2024 06:49:42 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Size477 kB (477184 bytes) Hashdea5f4e0059b0344f3861102a4e4d0f8 8f5b1a9f62ffc34c5c862fa81b3ae56ec6ca3c13 f03ad1a2b0523e81ada4e2a2faf3fc874c2cf3482a8307901eab0883838e263d
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/System.Data.Common.dll HTTP/1.1
Host: cbe240a9.veryadversiting6685.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cbe240a9.veryadversiting6685.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:36:23 GMT
content-type: application/x-msdownload
content-length: 477184
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "fdb7563cadf4403853881517c2111505"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FWS%2BpM6%2Fu9xTotgQMHghCZQHw%2F431iarb%2B0GvTDm%2B8o%2BXNInf1ODFu7HE4D%2FVw6pp3CH7n1ziLEaTSyBhL6uPtJdHZy%2B3qqsF2irW5Zd7yhg5Ju135Rkntvd0GJlBBdTMzjrtzS8adZXXEtHo1w6U28Gh8YNInJM5w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793645dfd4a1c0a-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cbe240a9.veryadversiting6685.pages.dev/_framework/System.Diagnostics.TraceSource.dll | 172.66.47.141 | 200 OK | 18 kB |
URL GET HTTP/3cbe240a9.veryadversiting6685.pages.dev/_framework/System.Diagnostics.TraceSource.dll IP172.66.47.141:443
Requested byhttps://cbe240a9.veryadversiting6685.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectveryadversiting6685.pages.dev Fingerprint94:13:F7:8D:1F:12:4A:1A:AA:0C:BD:37:FB:38:41:29:4C:50:7F:FC ValiditySat, 20 Apr 2024 06:49:43 GMT - Fri, 19 Jul 2024 06:49:42 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hashc45120271a5e62e2fad35eb2fc9a23ea d730abb5643bf8e3896b0ee3e162d847082fc7ed afa949758648fe982ae7b3b950c8d7a7bd2154134716341b078d2eec2edf7ead
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/System.Diagnostics.TraceSource.dll HTTP/1.1
Host: cbe240a9.veryadversiting6685.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cbe240a9.veryadversiting6685.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:36:23 GMT
content-type: application/x-msdownload
content-length: 17920
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "daa0a822f8b4b41a5aa4891ffb6049c4"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=osxMb9o5YDWa%2BXdXDgn1NQH7WTUSH0NNoJIxHNvqreXh%2FxD2Ty0gLAxmEpuOCdjEdQHuKerkf2czGkYvpCP8mp7VgOdE5MbrD%2F%2BZkRoQVS2rbxcugg0mQgx58PqnwCAtCHYSgnTatQKjIM%2FXKZax6ppL%2FyyxnbiJtA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793645dfd4b1c0a-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cbe240a9.veryadversiting6685.pages.dev/_framework/System.dll | 172.66.47.141 | 200 OK | 4.1 kB |
URL GET HTTP/3cbe240a9.veryadversiting6685.pages.dev/_framework/System.dll IP172.66.47.141:443
Requested byhttps://cbe240a9.veryadversiting6685.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectveryadversiting6685.pages.dev Fingerprint94:13:F7:8D:1F:12:4A:1A:AA:0C:BD:37:FB:38:41:29:4C:50:7F:FC ValiditySat, 20 Apr 2024 06:49:43 GMT - Fri, 19 Jul 2024 06:49:42 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hash13655ab2317ecf830672c69d89a59879 76fbc3005c32ce31ff6a3c2ad479c823ef633173 fe1e2611c648e5f81a1f41402f0321f8c2c11537bba5a4df6b62ff4b0d80438f
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/System.dll HTTP/1.1
Host: cbe240a9.veryadversiting6685.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cbe240a9.veryadversiting6685.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:36:23 GMT
content-type: application/x-msdownload
content-length: 4096
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "e87c0d22627514d5234d41c7d8c4dddf"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=i167E6LCzq1VgOpnudMWzIQPSrd704kjXAYzMYdbcTH4jy%2B9KMYVUtkbQJcP4zKxBPKVXexs01BFpxp%2Fb5yADgSeafAK7lwegCQ0n5JcOZkp0oar5x2uW7aYw2zHoPRPp2wfyCMJtwIhZtElkTATA5Yy46ME1mt2mQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793645dfd4f1c0a-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cbe240a9.veryadversiting6685.pages.dev/_framework/System.Drawing.dll | 172.66.47.141 | 200 OK | 4.6 kB |
URL GET HTTP/3cbe240a9.veryadversiting6685.pages.dev/_framework/System.Drawing.dll IP172.66.47.141:443
Requested byhttps://cbe240a9.veryadversiting6685.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectveryadversiting6685.pages.dev Fingerprint94:13:F7:8D:1F:12:4A:1A:AA:0C:BD:37:FB:38:41:29:4C:50:7F:FC ValiditySat, 20 Apr 2024 06:49:43 GMT - Fri, 19 Jul 2024 06:49:42 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hash8bef77f76bf6e8c95e0ede7a3a5eb89b 6f85674562e553e74e20ba4a6a6dd20337098936 8c988b30603151b8dba40825fb34ec214d6b8b6aacd38a73571ce4106d22dc0b
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/System.Drawing.dll HTTP/1.1
Host: cbe240a9.veryadversiting6685.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cbe240a9.veryadversiting6685.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:36:23 GMT
content-type: application/x-msdownload
content-length: 4608
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "fcfdefd11ede92e60b8537a06b33a80e"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0PFYVZPJ%2Ft5UJdQKlNPtcknHUBY0oKbdSDjGy9a8G54z24807U6iAIr8kb02UJgBLYUTIjppEygzBtF%2FVqJouNnX0%2B00DvrXdw0fOFZsMVnkhY0jLOcN%2FA3Yo%2BlmpdMEDiGL8j8nwuUPDPapFqkI50oFOD9ETyPctA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793645dfd521c0a-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cbe240a9.veryadversiting6685.pages.dev/_framework/System.Drawing.Primitives.dll | 172.66.47.141 | 200 OK | 35 kB |
URL GET HTTP/3cbe240a9.veryadversiting6685.pages.dev/_framework/System.Drawing.Primitives.dll IP172.66.47.141:443
Requested byhttps://cbe240a9.veryadversiting6685.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectveryadversiting6685.pages.dev Fingerprint94:13:F7:8D:1F:12:4A:1A:AA:0C:BD:37:FB:38:41:29:4C:50:7F:FC ValiditySat, 20 Apr 2024 06:49:43 GMT - Fri, 19 Jul 2024 06:49:42 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hasha24f03e355332fa18742c5091e8c8496 6366c5451ba962f2b85b8ca141185f82422a0f9e 964222cc6b8efeb751bb7651605010a4fdca03e2f7b960b1a51e98b7e0b35f5d
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/System.Drawing.Primitives.dll HTTP/1.1
Host: cbe240a9.veryadversiting6685.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cbe240a9.veryadversiting6685.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:36:23 GMT
content-type: application/x-msdownload
content-length: 34816
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "90242c9a5942dc7a63ffb41978189826"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jXZfNQeqX8Sw9qMP4c8lYJOtW1HXzeaHgGroOUI5PIEZafhGlkcycVo%2Fde0IAQFod92cDmwtvp6zNSZGsR35vLha01kNXX95JXjqKCFm%2F%2BZwOjouIQnGuTrVGRd1EsmbbeTEs4DHCQA%2FU59pyHRp4VdMtX4MCsJMJg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793645dfd551c0a-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cbe240a9.veryadversiting6685.pages.dev/_framework/System.Linq.dll | 172.66.47.141 | 200 OK | 35 kB |
URL GET HTTP/3cbe240a9.veryadversiting6685.pages.dev/_framework/System.Linq.dll IP172.66.47.141:443
Requested byhttps://cbe240a9.veryadversiting6685.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectveryadversiting6685.pages.dev Fingerprint94:13:F7:8D:1F:12:4A:1A:AA:0C:BD:37:FB:38:41:29:4C:50:7F:FC ValiditySat, 20 Apr 2024 06:49:43 GMT - Fri, 19 Jul 2024 06:49:42 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hash35263b743d90b0ef43167655e0dbf439 65739656163a2e3126067b852357fb4a15990b95 b7e64b8e7d0efd9ff3ec0a8a376520e8aebf76296acc0bbbe8909b7c30c0010e
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/System.Linq.dll HTTP/1.1
Host: cbe240a9.veryadversiting6685.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cbe240a9.veryadversiting6685.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:36:23 GMT
content-type: application/x-msdownload
content-length: 34816
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "83aedc265b80772bc4c8de5592ff5930"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xpCzz1bpvor0d9J8HkzhEQpClZb2LnSgsapteHiHXd68EBDVwc1%2F1jkGHYcqJuZkQQfv1RCHEZmVYAYMDn32BS1sjVgqiITFL%2F2f0%2BAVO9rFMGJ8HhPm1NoAx1S3UvCRlBSgGh9XkHSobk3oQIwTVN1zFGH2QZ%2FKhA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793645dfd561c0a-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cbe240a9.veryadversiting6685.pages.dev/_framework/System.Net.Http.dll | 172.66.47.141 | 200 OK | 148 kB |
URL GET HTTP/3cbe240a9.veryadversiting6685.pages.dev/_framework/System.Net.Http.dll IP172.66.47.141:443
Requested byhttps://cbe240a9.veryadversiting6685.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectveryadversiting6685.pages.dev Fingerprint94:13:F7:8D:1F:12:4A:1A:AA:0C:BD:37:FB:38:41:29:4C:50:7F:FC ValiditySat, 20 Apr 2024 06:49:43 GMT - Fri, 19 Jul 2024 06:49:42 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Size148 kB (148480 bytes) Hashc402052d6b7c117e3afb6885120d1ec9 b70ec40ad1afacb9ac47e300a41165ebc21624db a54aec8a460b8aa23cf607a90751be1b487fe14647548e07287ee12e3c359c61
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/System.Net.Http.dll HTTP/1.1
Host: cbe240a9.veryadversiting6685.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cbe240a9.veryadversiting6685.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:36:23 GMT
content-type: application/x-msdownload
content-length: 148480
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "ca2bb816412a689082cdc26ba38d8c29"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ehbc3XBlJGuuGSkSXZkcr%2BnNlwXIvfvn6ewRfV9w2SNjBhYXpyl51R7gqFiCuZoxG9vl%2FuMhSoga4hcXO6hRaKZclu0crTFX%2BJI9rZMaJ15pnbHAUzRDdTwyhLwGf6cP1%2BRnXDFJFlNvJVEumr2K7c49ILmgj8%2FfMQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793645e0d5a1c0a-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cbe240a9.veryadversiting6685.pages.dev/_framework/System.Net.Primitives.dll | 172.66.47.141 | 200 OK | 7.2 kB |
URL GET HTTP/3cbe240a9.veryadversiting6685.pages.dev/_framework/System.Net.Primitives.dll IP172.66.47.141:443
Requested byhttps://cbe240a9.veryadversiting6685.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectveryadversiting6685.pages.dev Fingerprint94:13:F7:8D:1F:12:4A:1A:AA:0C:BD:37:FB:38:41:29:4C:50:7F:FC ValiditySat, 20 Apr 2024 06:49:43 GMT - Fri, 19 Jul 2024 06:49:42 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hash17247d91b0d7c8d608bc7ddeebcde4f4 b2fec4e22176cb1c8cc32dfcf7799e550feca3b9 cb5283edef2a7a08297ade3fc2d0fa6adb02a7f5d57bfab50bc493a3fa0400c6
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/System.Net.Primitives.dll HTTP/1.1
Host: cbe240a9.veryadversiting6685.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cbe240a9.veryadversiting6685.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:36:23 GMT
content-type: application/x-msdownload
content-length: 7168
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "9cc23eb29a9701d70cc10358053eb509"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KtjM1zEbmDvHt0qIJpyajm32vsvI2sv1AFWKwZ%2FxE5rL87ufEiaxfq59%2Bbl10wDpqCnAx2pT5z8dyC%2BgPP0gs%2BnL6MvG6AyENWBGVhcUmf6GCxRoCvtLaBs%2FoU9Kx90Zun8FEKGLb%2BLFLTquTK%2Bb8E9eiNUK1yhgeQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793645e0d5b1c0a-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cbe240a9.veryadversiting6685.pages.dev/_framework/System.ObjectModel.dll | 172.66.47.141 | 200 OK | 13 kB |
URL GET HTTP/3cbe240a9.veryadversiting6685.pages.dev/_framework/System.ObjectModel.dll IP172.66.47.141:443
Requested byhttps://cbe240a9.veryadversiting6685.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectveryadversiting6685.pages.dev Fingerprint94:13:F7:8D:1F:12:4A:1A:AA:0C:BD:37:FB:38:41:29:4C:50:7F:FC ValiditySat, 20 Apr 2024 06:49:43 GMT - Fri, 19 Jul 2024 06:49:42 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hashcba9637f55497f829f75e1935748deec f2031a698310fae9479ba705369b1329226d4cde a2650c2ae8c6fe832381a2717e7c2a3aafabbace658669c5f5ad487e82450f93
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/System.ObjectModel.dll HTTP/1.1
Host: cbe240a9.veryadversiting6685.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cbe240a9.veryadversiting6685.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:36:23 GMT
content-type: application/x-msdownload
content-length: 13312
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "4f5f4e3e9547ff7b54514f3e4fd4a1b0"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FSfNOMHtgOJusjqDvDtjvMDclMM5PWZJAGycujksuFnhdhigS0GIaDCkilrNkDUFlmnnIG1Eh2Te7C%2BKLFHH7Ai2Ocqklgo%2FiEuF%2Bjbx%2FAZjWdoT2Y7Eu9qy04qBDgI17SZB9xRDP0HyyPNcSQkL%2FLNcVMgdFX45nQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793645e0d5c1c0a-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cbe240a9.veryadversiting6685.pages.dev/ | 172.66.47.141 | 200 OK | 1.7 MB |
URL User Request GET HTTP/2cbe240a9.veryadversiting6685.pages.dev/ IP172.66.47.141:443
CertificateIssuerGoogle Trust Services LLC Subjectveryadversiting6685.pages.dev Fingerprint94:13:F7:8D:1F:12:4A:1A:AA:0C:BD:37:FB:38:41:29:4C:50:7F:FC ValiditySat, 20 Apr 2024 06:49:43 GMT - Fri, 19 Jul 2024 06:49:42 GMT
File typeHTML document, Unicode text, UTF-8 text, with CRLF line terminators Size1.7 MB (1741909 bytes) Hasha11ea5fa48d9ec544946fe9f621ac8a4 1786760c888e3bd688f1ce3ba0cdb5d2251fa828 b5dd8c3ad7208dd4f63f8df58c15636e9eafce88c74dcbc0a74a017fd215fba4
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET / HTTP/1.1
Host: cbe240a9.veryadversiting6685.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 04:36:22 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"0c8e17a81115df623587990f15f0bc44"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Zv0tN07DCCv3D5jyW%2FrgsDD7pnyPfZo0QBDS8a0LBW%2F1NyHAR94z8EXr5KCEbr%2BktmPvHIfIqYbMo%2FH0J52JSSwEJ5brC3ToEPV3b0nK1%2F5lpsSFmxh2%2FuPxHYO1It4t9yZ%2F5ghj4yOjnFaDtEAYfEAyZJZXryuKpg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87936459f87db4eb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cbe240a9.veryadversiting6685.pages.dev/_framework/System.Private.Uri.dll | 172.66.47.141 | 200 OK | 66 kB |
URL GET HTTP/3cbe240a9.veryadversiting6685.pages.dev/_framework/System.Private.Uri.dll IP172.66.47.141:443
Requested byhttps://cbe240a9.veryadversiting6685.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectveryadversiting6685.pages.dev Fingerprint94:13:F7:8D:1F:12:4A:1A:AA:0C:BD:37:FB:38:41:29:4C:50:7F:FC ValiditySat, 20 Apr 2024 06:49:43 GMT - Fri, 19 Jul 2024 06:49:42 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hashf0c5e1bcff47dfa39b51328fb6e331a9 5d0880d3ee0c596af48a1429e89b2e386f187b94 94fe6fa43ef50c56687c3c8b1be09f2c414811d553a21d50ef80aaffbd769f95
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/System.Private.Uri.dll HTTP/1.1
Host: cbe240a9.veryadversiting6685.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cbe240a9.veryadversiting6685.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:36:23 GMT
content-type: application/x-msdownload
content-length: 65536
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "38fb64d5ce2c99f5868485b51a22ccf9"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZxkpauE3B3X88Ua%2F8a6lDqRXRJ69tvqwTksD%2BZFMj5qyOyhHwUNHn%2FzB16UGPII3IyXsiXny9yWOycrz0Zk6EpqbPr0llPtzAYG5RdycNtDvTG6dn4YlQx5dk93Di2mFbXsyRAqdiO55yavQC9rSFz8vB8Ognl%2FvyQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793645e0d5f1c0a-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cbe240a9.veryadversiting6685.pages.dev/_framework/Newtonsoft.Json.dll | 172.66.47.141 | 200 OK | 695 kB |
URL GET HTTP/3cbe240a9.veryadversiting6685.pages.dev/_framework/Newtonsoft.Json.dll IP172.66.47.141:443
Requested byhttps://cbe240a9.veryadversiting6685.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectveryadversiting6685.pages.dev Fingerprint94:13:F7:8D:1F:12:4A:1A:AA:0C:BD:37:FB:38:41:29:4C:50:7F:FC ValiditySat, 20 Apr 2024 06:49:43 GMT - Fri, 19 Jul 2024 06:49:42 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Size695 kB (695336 bytes) Hash916d32b899f1bc23b209648d007b99fd e3673d05d46f29e68241d4536bddf18cdd0a913d 72cf291d4bab0edd08a9b07c6173e1e7ad1abb7ab727fd7044bf6305d7515661
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/Newtonsoft.Json.dll HTTP/1.1
Host: cbe240a9.veryadversiting6685.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cbe240a9.veryadversiting6685.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:36:23 GMT
content-type: application/x-msdownload
content-length: 695336
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "c43e1d847d74bf30221d551c6b9b6d76"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=edkFOxrlRyCTyUFTg0%2BrbTlDHJU5Kd0L2CL9OBgRcKvfjAopqyfnahV%2FneHUK4L2OAevu%2BgjXyMHQj4UJn%2FB2Hb7DbI5G2eiBgPTiuWX6QlWqStz0s4Qw3ovXO%2FsbYgxY0ura4ieY3Lxdc%2FCBmIRkZkypugMaqCxVQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793645ded3a1c0a-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cbe240a9.veryadversiting6685.pages.dev/_framework/System.Linq.Expressions.dll | 172.66.47.141 | 200 OK | 416 kB |
URL GET HTTP/3cbe240a9.veryadversiting6685.pages.dev/_framework/System.Linq.Expressions.dll IP172.66.47.141:443
Requested byhttps://cbe240a9.veryadversiting6685.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectveryadversiting6685.pages.dev Fingerprint94:13:F7:8D:1F:12:4A:1A:AA:0C:BD:37:FB:38:41:29:4C:50:7F:FC ValiditySat, 20 Apr 2024 06:49:43 GMT - Fri, 19 Jul 2024 06:49:42 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Size416 kB (415744 bytes) Hashfcdf86d9e7a15146deae985fe39c6e9c 5ee57a2aa862415023b208e0df3ff7f29ee0a1ac 797ba5b4e319b87ea1e8cd068152056313db617d35fcff9fa19cce0269640f16
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/System.Linq.Expressions.dll HTTP/1.1
Host: cbe240a9.veryadversiting6685.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cbe240a9.veryadversiting6685.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:36:24 GMT
content-type: application/x-msdownload
content-length: 415744
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "048acc19410e565af59679044957ab58"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GkmwcoAFTPCyws1tzk4isKBQ3%2B1FlzwoO3q65X%2F%2FVzOj%2FqlCppC30mJG3xbN0Bc7ft%2FFbzWWkBcq9zuJJkoCIDG2qPCPbope1gmgEixfVTh6ysBrBLExzAjaiEh4sHiMfDMgVCHUrtYYlHO98Oh34Hj4YQereRHJCA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793645dfd571c0a-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cbe240a9.veryadversiting6685.pages.dev/_framework/System.Memory.dll | 172.66.47.141 | 200 OK | 13 kB |
URL GET HTTP/3cbe240a9.veryadversiting6685.pages.dev/_framework/System.Memory.dll IP172.66.47.141:443
Requested byhttps://cbe240a9.veryadversiting6685.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectveryadversiting6685.pages.dev Fingerprint94:13:F7:8D:1F:12:4A:1A:AA:0C:BD:37:FB:38:41:29:4C:50:7F:FC ValiditySat, 20 Apr 2024 06:49:43 GMT - Fri, 19 Jul 2024 06:49:42 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hasheb4ba6da3a9019c76fdd35675c34ed8a 7e5a2ae4104ebf978cd81649678542d860b1c810 225e1e1a44388cc8ef58516137bef1821cfc8ee4bdc1ff3d5df97c769c79d766
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/System.Memory.dll HTTP/1.1
Host: cbe240a9.veryadversiting6685.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cbe240a9.veryadversiting6685.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:36:23 GMT
content-type: application/x-msdownload
content-length: 13312
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "1a6f9cfd8524320884ff279dcc0e2f62"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Qd6jHaGcI7%2FDokCHquMaWbgCchM%2FiXD3yBZkPQE9eIg7GmhlVmMdAJgTo%2B0HFZ2s%2FV1ncyV3bvbDlNrgLsKyM%2FU6IAltL9QaRJGHs4uAIkJwE%2BptmVPCTU%2FXFviB4XYmTds9MOMuIcovDyY28ecFOYyaj7%2FqZ0kjjw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793645dfd591c0a-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cbe240a9.veryadversiting6685.pages.dev/_framework/System.Private.Xml.dll | 172.66.47.141 | 200 OK | 1.3 MB |
URL GET HTTP/3cbe240a9.veryadversiting6685.pages.dev/_framework/System.Private.Xml.dll IP172.66.47.141:443
Requested byhttps://cbe240a9.veryadversiting6685.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectveryadversiting6685.pages.dev Fingerprint94:13:F7:8D:1F:12:4A:1A:AA:0C:BD:37:FB:38:41:29:4C:50:7F:FC ValiditySat, 20 Apr 2024 06:49:43 GMT - Fri, 19 Jul 2024 06:49:42 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Size1.3 MB (1278464 bytes) Hash4472a3487f69824ac5aaa7ffec5955ca 6af1b6dde89ff1e365b4c96fb5f1bfaac7911390 f3d8061bcd3c8255f303135009ebb6e86fa1136fce8fb60488193c6831c1d3b0
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/System.Private.Xml.dll HTTP/1.1
Host: cbe240a9.veryadversiting6685.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cbe240a9.veryadversiting6685.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:36:23 GMT
content-type: application/x-msdownload
content-length: 1278464
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "422154e68a36576b53d3735b19cc3bfa"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=etcAnWPmu%2BLx8e59q4aKvCZavSnVzUFvQcGm1wxSrFgW5Nxbc1oQiunQgQQdnKuOGk2gBvS42NYgzH9bucDTayFJo0XOIBu8s2%2F%2FUEfhOz0bbN51AXrHXX1%2F4Fg3iGQ3z56FhEF6vMW%2FN%2FQld7IGGGq465M3dDFeXg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793645e0d601c0a-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cbe240a9.veryadversiting6685.pages.dev/_framework/System.Private.Xml.Linq.dll | 172.66.47.141 | 200 OK | 40 kB |
URL GET HTTP/3cbe240a9.veryadversiting6685.pages.dev/_framework/System.Private.Xml.Linq.dll IP172.66.47.141:443
Requested byhttps://cbe240a9.veryadversiting6685.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectveryadversiting6685.pages.dev Fingerprint94:13:F7:8D:1F:12:4A:1A:AA:0C:BD:37:FB:38:41:29:4C:50:7F:FC ValiditySat, 20 Apr 2024 06:49:43 GMT - Fri, 19 Jul 2024 06:49:42 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hashd84d3eba00534c4fd151071cac4fab09 e9886e067d9ec75c1f9f164eb32feedce9059346 6533a7be80db812b314a607e2acfa831fee6106e2a8a8a033ef905bbb8602edd
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/System.Private.Xml.Linq.dll HTTP/1.1
Host: cbe240a9.veryadversiting6685.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cbe240a9.veryadversiting6685.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:36:23 GMT
content-type: application/x-msdownload
content-length: 40448
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "cc0132eef7dd2193a19624e0412e21be"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tndzytyRcoSmGDQoskw9zgXymdB5eYFG6vLfTnPU0rOksYZp8%2FctkzCAQd3XvAHi8w6ZefFq5w63ouKN%2FBe8aELyN2iUlzs1%2FDrBkZU1gdBzkxyBkZqjhDqAIPdF39qqI0%2BogySWOzXVco%2FwprOm4m5zuAZ2qkAW%2Fw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793645e0d611c0a-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cbe240a9.veryadversiting6685.pages.dev/_framework/System.Runtime.dll | 172.66.47.141 | 200 OK | 8.2 kB |
URL GET HTTP/3cbe240a9.veryadversiting6685.pages.dev/_framework/System.Runtime.dll IP172.66.47.141:443
Requested byhttps://cbe240a9.veryadversiting6685.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectveryadversiting6685.pages.dev Fingerprint94:13:F7:8D:1F:12:4A:1A:AA:0C:BD:37:FB:38:41:29:4C:50:7F:FC ValiditySat, 20 Apr 2024 06:49:43 GMT - Fri, 19 Jul 2024 06:49:42 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hashd196f3879c4587a19835e8339410b02e c77f3e811e636e5103b9fe84e4af805c34ccc7ec 9cc775377f5fbbf6054a1e12f0d12a4f68fe2d34dd303e16013c48cc6bb652c5
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/System.Runtime.dll HTTP/1.1
Host: cbe240a9.veryadversiting6685.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cbe240a9.veryadversiting6685.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:36:23 GMT
content-type: application/x-msdownload
content-length: 8192
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "f5f62cde2ff8b4db879f474d002374ae"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ei%2FhJHaTyooEXzHZbPVr5g4Wjb832jGM7yEIB8RnX1jjE8apZJjcSbZH6NrCOnZiqq8u%2B2ZxBrVsWJy5Ne2YbvsYi4QqYwIOUzHFQVefj0EJXn539p5FxXONpUbbT6uoDdsQOaNRbIVmOUVPJH6TZhhWytxgfwMeeQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793645e0d621c0a-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cbe240a9.veryadversiting6685.pages.dev/_framework/System.Runtime.InteropServices.JavaScript.dll | 172.66.47.141 | 200 OK | 37 kB |
URL GET HTTP/3cbe240a9.veryadversiting6685.pages.dev/_framework/System.Runtime.InteropServices.JavaScript.dll IP172.66.47.141:443
Requested byhttps://cbe240a9.veryadversiting6685.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectveryadversiting6685.pages.dev Fingerprint94:13:F7:8D:1F:12:4A:1A:AA:0C:BD:37:FB:38:41:29:4C:50:7F:FC ValiditySat, 20 Apr 2024 06:49:43 GMT - Fri, 19 Jul 2024 06:49:42 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hash220db4f09029262275410abd5ce889f6 f916b528850918ca7f6eb4ae31f000b6dde129ac dcd716f19c85af8522673f4dae46372b3ba455d6f1aa995b212dc90bfcd14a51
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/System.Runtime.InteropServices.JavaScript.dll HTTP/1.1
Host: cbe240a9.veryadversiting6685.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cbe240a9.veryadversiting6685.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:36:23 GMT
content-type: application/x-msdownload
content-length: 36864
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "aa18a8902f660594c288414c7fdf65cc"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RPtIIGgVyNDPtPH2RY7XwybwSg0eb7MoDsmGM1zxUISyyJTnUjZ413fOwJvHUCKr5bEn4xWvbDGlUeD3WbyNUc%2BZzxHvOitYcEQZ6saPuHnvpYvR52%2F7jXJe84l3ScN%2FQ7rJYBESldo03T%2Feel0zTmtEiySBqaZOTQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793645e1d631c0a-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cbe240a9.veryadversiting6685.pages.dev/_framework/System.Runtime.Numerics.dll | 172.66.47.141 | 200 OK | 85 kB |
URL GET HTTP/3cbe240a9.veryadversiting6685.pages.dev/_framework/System.Runtime.Numerics.dll IP172.66.47.141:443
Requested byhttps://cbe240a9.veryadversiting6685.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectveryadversiting6685.pages.dev Fingerprint94:13:F7:8D:1F:12:4A:1A:AA:0C:BD:37:FB:38:41:29:4C:50:7F:FC ValiditySat, 20 Apr 2024 06:49:43 GMT - Fri, 19 Jul 2024 06:49:42 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hash76aaa553925c68c267c00ebce9ecbf25 c9a473b19c8faed91354d4fc66f882d39f0abfc9 48cbb1c0e5615c5783ab59887dbaeb920798ed2e6cb534be9ac915f41a27cfe2
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/System.Runtime.Numerics.dll HTTP/1.1
Host: cbe240a9.veryadversiting6685.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cbe240a9.veryadversiting6685.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:36:23 GMT
content-type: application/x-msdownload
content-length: 84992
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "342881f063f1be558529ffeaf0155986"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hWsd7FG0Py2iNjGgc67qvxrQwccDdbGY182jjzOIXAUmuoyTsM99LYRJWn8o%2FvjydI5KnTMZN1zEmiR2lPeWyz4VAXmUvBvbfCzqJUNSmfqKthgZ6Dta8tl%2BVTq6J0QNQlACJEQueFQAMSCG3eCQSoRr43N8MF9ylw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793645e1d641c0a-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cbe240a9.veryadversiting6685.pages.dev/_framework/System.Runtime.Serialization.Formatters.dll | 172.66.47.141 | 200 OK | 6.7 kB |
URL GET HTTP/3cbe240a9.veryadversiting6685.pages.dev/_framework/System.Runtime.Serialization.Formatters.dll IP172.66.47.141:443
Requested byhttps://cbe240a9.veryadversiting6685.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectveryadversiting6685.pages.dev Fingerprint94:13:F7:8D:1F:12:4A:1A:AA:0C:BD:37:FB:38:41:29:4C:50:7F:FC ValiditySat, 20 Apr 2024 06:49:43 GMT - Fri, 19 Jul 2024 06:49:42 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hash3858d983827799c33ba5eb88a384e809 33ea3eced38262243620f0b7c11de93f97cb8f33 f078d52c4c5e536b5c7f8c1bd7a1473cf167c999f38c55b676b2eff3f8446b73
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/System.Runtime.Serialization.Formatters.dll HTTP/1.1
Host: cbe240a9.veryadversiting6685.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cbe240a9.veryadversiting6685.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:36:23 GMT
content-type: application/x-msdownload
content-length: 6656
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "6890fcfcc1fad4d90a025c13a9339d07"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ahQkXWHGGGqSQb5SWZa67oenVOcJIb%2FtMNCeP%2BqiqlVjIjWf6IBLTzUzpTyoqCWydOAatv85ntFNdOg8xT9NHktt9LwweaeV%2FjaNIB%2FNB8VKYumAd0a4okt1C%2FFk9MOyDdmHkHQhcJEEqI60PC5I3sgDR1kDtnZq5w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793645e1d651c0a-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cbe240a9.veryadversiting6685.pages.dev/_framework/System.Runtime.Serialization.Primitives.dll | 172.66.47.141 | 200 OK | 5.1 kB |
URL GET HTTP/3cbe240a9.veryadversiting6685.pages.dev/_framework/System.Runtime.Serialization.Primitives.dll IP172.66.47.141:443
Requested byhttps://cbe240a9.veryadversiting6685.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectveryadversiting6685.pages.dev Fingerprint94:13:F7:8D:1F:12:4A:1A:AA:0C:BD:37:FB:38:41:29:4C:50:7F:FC ValiditySat, 20 Apr 2024 06:49:43 GMT - Fri, 19 Jul 2024 06:49:42 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hashd4fcb18362a2353cbff57e8f90c983c6 071c19ced1e1f5c036455035c523127ca654caef 35b04719f40b968929b85de4458844f75da1e4717d958d8a9c76b68af4bea0e1
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/System.Runtime.Serialization.Primitives.dll HTTP/1.1
Host: cbe240a9.veryadversiting6685.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cbe240a9.veryadversiting6685.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:36:23 GMT
content-type: application/x-msdownload
content-length: 5120
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "61a72df0237f58bf0d3a3c67a6d08ab3"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1MDZA91Tku%2F2O%2Fa2093MVL2ZmEo3caEKFT%2BfTQWMCku7aQdE0Lk9Ic0QAologN0xCSkHqkryNOYdTgee1w5lwEiLN4DfAjI5yZ0tynSlE2LsFgafZF3aDtqiJB9ZHvIIcwBMHpc1UMtPXHfcmbEMfLbVhNN5eueGPw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793645e1d681c0a-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cbe240a9.veryadversiting6685.pages.dev/_framework/System.Security.Cryptography.dll | 172.66.47.141 | 200 OK | 17 kB |
URL GET HTTP/3cbe240a9.veryadversiting6685.pages.dev/_framework/System.Security.Cryptography.dll IP172.66.47.141:443
Requested byhttps://cbe240a9.veryadversiting6685.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectveryadversiting6685.pages.dev Fingerprint94:13:F7:8D:1F:12:4A:1A:AA:0C:BD:37:FB:38:41:29:4C:50:7F:FC ValiditySat, 20 Apr 2024 06:49:43 GMT - Fri, 19 Jul 2024 06:49:42 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hash745955a81d90b9733b780a1575d5037a e79f9954c83ac5c3f19b1a72eb69ea6082bd8271 8a9ffaf15ce4aca6dde53860e107928c636bb8667ad37b366b574ed2b67ea80a
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/System.Security.Cryptography.dll HTTP/1.1
Host: cbe240a9.veryadversiting6685.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cbe240a9.veryadversiting6685.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:36:23 GMT
content-type: application/x-msdownload
content-length: 17408
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "eb6afc71c754017b0783b902c5cea9c8"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QpOof%2BYnu7HfY3v6Jx986q3pJIdnbfLHzfBRgJfICK8%2F0znAyV1%2FkaP6XeykA0E9R1w6w1Bop22GH%2FrJCTt1rOVhi6zGBCP5NtjZeGU4ZKsB03TLdfQ9LXFhZfHwd%2BIhpxbXFPTjk1g5t2Q1iB12wvL%2FsbWfzggdkA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793645e1d691c0a-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cbe240a9.veryadversiting6685.pages.dev/_framework/System.Text.Encodings.Web.dll | 172.66.47.141 | 200 OK | 28 kB |
URL GET HTTP/3cbe240a9.veryadversiting6685.pages.dev/_framework/System.Text.Encodings.Web.dll IP172.66.47.141:443
Requested byhttps://cbe240a9.veryadversiting6685.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectveryadversiting6685.pages.dev Fingerprint94:13:F7:8D:1F:12:4A:1A:AA:0C:BD:37:FB:38:41:29:4C:50:7F:FC ValiditySat, 20 Apr 2024 06:49:43 GMT - Fri, 19 Jul 2024 06:49:42 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hash52c49c974732b3c40586482cafec9b50 bad427642bf0dd07d2f5dcd4b97a40434d5dcb4b 81f1866099c18d3e732ea42f23f6c7b1ac60a6a8a0544496be64f6c8637ff25d
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/System.Text.Encodings.Web.dll HTTP/1.1
Host: cbe240a9.veryadversiting6685.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cbe240a9.veryadversiting6685.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:36:23 GMT
content-type: application/x-msdownload
content-length: 28160
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "b54aaa519b6e2738d3b63041202e00f2"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ahfO5I9tW6gnhJExGCRz90KaEm%2BlMecD2ujArARIa6v0FWcRozcWrUvT3gGDb9gFOTjlCRokYNRjMr%2Bb9AjG8Lu9W4BR4CclFykUGelMSPpU2z1262GqZhohvRsMGo%2FoyVMEka3wLQMQ7g%2FkYKU3P7cWmehISTJeyQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793645e1d6a1c0a-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cbe240a9.veryadversiting6685.pages.dev/_framework/System.Text.Json.dll | 172.66.47.141 | 200 OK | 321 kB |
URL GET HTTP/3cbe240a9.veryadversiting6685.pages.dev/_framework/System.Text.Json.dll IP172.66.47.141:443
Requested byhttps://cbe240a9.veryadversiting6685.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectveryadversiting6685.pages.dev Fingerprint94:13:F7:8D:1F:12:4A:1A:AA:0C:BD:37:FB:38:41:29:4C:50:7F:FC ValiditySat, 20 Apr 2024 06:49:43 GMT - Fri, 19 Jul 2024 06:49:42 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Size321 kB (321024 bytes) Hashebe682df5f4ad2b8721bf4de5b2c6150 cbb617914a37dc2b7febc61bfb43e71b7a9d1bb0 ec1229fdb78d5f1d0e8237fd110472227e135f1438306e53268859725aa146e8
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/System.Text.Json.dll HTTP/1.1
Host: cbe240a9.veryadversiting6685.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cbe240a9.veryadversiting6685.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:36:23 GMT
content-type: application/x-msdownload
content-length: 321024
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "80f8ea8c612ed0bacf41b5d8a16484f9"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AIb9wCtCPa67T%2FFFDSUvZgK3mfcb7FJOA5tNio73g%2FSCP2S2Kokosjtng%2Fr1mfQkMI3q9ZtiJo%2FPR3catbb0A8FEjF1pkq7nr4RBh%2Fc3q6UtzLHZKxq%2Fvx%2BtAlwt4xyEy46m4gp5kMWsXc1y1fAINExNH88T3nnPIA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793645e2d6b1c0a-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cbe240a9.veryadversiting6685.pages.dev/_framework/System.Text.RegularExpressions.dll | 172.66.47.141 | 200 OK | 227 kB |
URL GET HTTP/3cbe240a9.veryadversiting6685.pages.dev/_framework/System.Text.RegularExpressions.dll IP172.66.47.141:443
Requested byhttps://cbe240a9.veryadversiting6685.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectveryadversiting6685.pages.dev Fingerprint94:13:F7:8D:1F:12:4A:1A:AA:0C:BD:37:FB:38:41:29:4C:50:7F:FC ValiditySat, 20 Apr 2024 06:49:43 GMT - Fri, 19 Jul 2024 06:49:42 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Size227 kB (227328 bytes) Hashcdd15ba444b12aae4e2f9148580b3ea2 66aaa2ec9a379d1697e4e7202b75ceda7577bd38 7dbabb523782864d97a0a6a82d83debc809dcd8a5ea61dfb1e2caa5aa1c6b34b
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/System.Text.RegularExpressions.dll HTTP/1.1
Host: cbe240a9.veryadversiting6685.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cbe240a9.veryadversiting6685.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:36:23 GMT
content-type: application/x-msdownload
content-length: 227328
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "a03fa801f1f07dcb0186e8f51ebaafe9"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WiawWBXvvpT3pJ5CF1Fl%2B8Ko7TAyDVuilZxqGEVTpl6oi8J6Vslde5STQGBYuG7Q4yJK6KmEVxVzzUJ5JwCViOvMqXxUlmxvYkR7Euyf6574O0IcPxmbNNij1fxesrLHZmbPnZmnJOI34I%2FBFiMu%2BOaeL2kx2x1HGg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793645e2d6c1c0a-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cbe240a9.veryadversiting6685.pages.dev/_framework/System.Threading.Channels.dll | 172.66.47.141 | 200 OK | 22 kB |
URL GET HTTP/3cbe240a9.veryadversiting6685.pages.dev/_framework/System.Threading.Channels.dll IP172.66.47.141:443
Requested byhttps://cbe240a9.veryadversiting6685.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectveryadversiting6685.pages.dev Fingerprint94:13:F7:8D:1F:12:4A:1A:AA:0C:BD:37:FB:38:41:29:4C:50:7F:FC ValiditySat, 20 Apr 2024 06:49:43 GMT - Fri, 19 Jul 2024 06:49:42 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hash8bac70716c3dff0063d5016cf0fdd852 cf5b49a9552ab3fbcc42c936cdfdef44218d3db0 499cf0296c040f5a0671151a1718e643fb3a6f15cb74789b7acffd844f6e9865
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/System.Threading.Channels.dll HTTP/1.1
Host: cbe240a9.veryadversiting6685.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cbe240a9.veryadversiting6685.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:36:23 GMT
content-type: application/x-msdownload
content-length: 22016
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "649762fded585207ce36b59e5f0058fb"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=edTCY%2B%2BherFQmLKcWuOBafvyuo1%2FCALOqfoDe5aQkwHTY69affPDmo0xUuC3njYAufFpgo6btHLkIjamUEM%2FeTDqldm96l5PK%2F8Slj%2F%2FfrQo9VBecWuEFPQ2hNswJZ5ii8bj%2F6Be%2FFniqkFuqVM3VCsY5YU3zx6gqA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793645e2d6d1c0a-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cbe240a9.veryadversiting6685.pages.dev/_framework/System.Threading.dll | 172.66.47.141 | 200 OK | 4.6 kB |
URL GET HTTP/3cbe240a9.veryadversiting6685.pages.dev/_framework/System.Threading.dll IP172.66.47.141:443
Requested byhttps://cbe240a9.veryadversiting6685.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectveryadversiting6685.pages.dev Fingerprint94:13:F7:8D:1F:12:4A:1A:AA:0C:BD:37:FB:38:41:29:4C:50:7F:FC ValiditySat, 20 Apr 2024 06:49:43 GMT - Fri, 19 Jul 2024 06:49:42 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hashdf1be07f93ce4cce720ea0fd13f579a5 0eead4c421c1dedcda3724d3f96231f22dcf7ef0 f726b017f0b126d54b62f0192ab99ec3759c0311af19d0de6c5e51b506bbd48c
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/System.Threading.dll HTTP/1.1
Host: cbe240a9.veryadversiting6685.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cbe240a9.veryadversiting6685.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:36:23 GMT
content-type: application/x-msdownload
content-length: 4608
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "1424cf93e47be50597946e3ec68beec0"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sPvukPraJOFy5rWkkjFgYFwm7JPiMbZRdZMCYbqIZORqcwIYGg5YAJfIqO5DTHcPDIUUYOH2i%2Fpy4toySJ1WqKvb%2B3tRQEDTDkvLvjEeKGYRLixgwX2hZNuD%2FoRODNtVaUmxYHF8lTpDhP%2FKWRrGBohNf84cB2WK%2Bw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793645e2d701c0a-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cbe240a9.veryadversiting6685.pages.dev/_framework/System.Xml.Linq.dll | 172.66.47.141 | 200 OK | 4.1 kB |
URL GET HTTP/3cbe240a9.veryadversiting6685.pages.dev/_framework/System.Xml.Linq.dll IP172.66.47.141:443
Requested byhttps://cbe240a9.veryadversiting6685.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectveryadversiting6685.pages.dev Fingerprint94:13:F7:8D:1F:12:4A:1A:AA:0C:BD:37:FB:38:41:29:4C:50:7F:FC ValiditySat, 20 Apr 2024 06:49:43 GMT - Fri, 19 Jul 2024 06:49:42 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hash8f751fe370b3228740bd9a59efe8af17 712344eb689900de5c2fc99ae7b25c82b6c359d5 3b6267fc7643d84267cf960e699ea343ac32af79149aeec9fe4547e894f6a062
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/System.Xml.Linq.dll HTTP/1.1
Host: cbe240a9.veryadversiting6685.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cbe240a9.veryadversiting6685.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:36:23 GMT
content-type: application/x-msdownload
content-length: 4096
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "33f1b705d0583728f2fa733130a75378"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RPexCzzq1FBhTb7Y3dXtqUrbSo4%2Bc%2Fofup9thEb0ABDGGIXNvnqzJFBosxRtH9vi3P69DUV0dPRUYFL%2BI949VTiD3EfL7Cg%2F9d2zyIGE%2Boq3GVthBjLTTntfaDiR%2FXas79aiAib8tl6VbE2LLPSgf7ov4cF4ltMhAg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793645e2d711c0a-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cbe240a9.veryadversiting6685.pages.dev/_framework/Telegram.Bot.dll | 172.66.47.141 | 200 OK | 392 kB |
URL GET HTTP/3cbe240a9.veryadversiting6685.pages.dev/_framework/Telegram.Bot.dll IP172.66.47.141:443
Requested byhttps://cbe240a9.veryadversiting6685.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectveryadversiting6685.pages.dev Fingerprint94:13:F7:8D:1F:12:4A:1A:AA:0C:BD:37:FB:38:41:29:4C:50:7F:FC ValiditySat, 20 Apr 2024 06:49:43 GMT - Fri, 19 Jul 2024 06:49:42 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Size392 kB (392192 bytes) Hash2ff3be8841f79bb26a488c8616688826 9ad7898779d748a83ac3b2753f0f21dc40a6ed52 74a7aeb8a48b3e6ec79bd64306200bc44cf534073e0aaa641c46f064c90ac44e
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. | VirusTotal | suspicious | |
GET /_framework/Telegram.Bot.dll HTTP/1.1
Host: cbe240a9.veryadversiting6685.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cbe240a9.veryadversiting6685.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:36:23 GMT
content-type: application/x-msdownload
content-length: 392192
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "2ac18667ecc509baaa9dd23c357fc4cd"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=09i2ssYk0D4vnOAOnfau7DdGm%2FfZQgXCOBV4QEo%2Bk5BnmnUte8Ycy%2FczERu4Ivw2wT1mRbD90DR%2B%2BtFzRaIAb3%2BNbUjtqbF9LKiSyRy%2BFz5MV0Pjk9R%2BJ1oGgK%2BpXUp6K19afHtTWHEkP899C4pY%2BeJFv%2FndzMZ9kg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793645e2d721c0a-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cbe240a9.veryadversiting6685.pages.dev/_framework/dotnet.timezones.blat | 172.66.47.141 | 200 OK | 341 kB |
URL GET HTTP/3cbe240a9.veryadversiting6685.pages.dev/_framework/dotnet.timezones.blat IP172.66.47.141:443
Requested byhttps://cbe240a9.veryadversiting6685.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectveryadversiting6685.pages.dev Fingerprint94:13:F7:8D:1F:12:4A:1A:AA:0C:BD:37:FB:38:41:29:4C:50:7F:FC ValiditySat, 20 Apr 2024 06:49:43 GMT - Fri, 19 Jul 2024 06:49:42 GMT
Size341 kB (341310 bytes) Hashd9ac74c44b51c8851f7b2ef18430cb16 b7217f66b1e6b1baefbff8bcf77bd1b0c3a9d8ac a5ff5c85c077ec27f5dcabaebd272ca33a269c051a9cc7827ef0ebf56aa87e1f
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/dotnet.timezones.blat HTTP/1.1
Host: cbe240a9.veryadversiting6685.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cbe240a9.veryadversiting6685.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:36:23 GMT
content-length: 341310
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "7bab6f1804805f548c2f120de1dccd3b"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QQcibBPQIigA2m0hqIs5pXNd9ORp7fOaoPSAad2EEXlQQ8yQ4gq7F%2FakblnhelvgcLfqUviPcYXkq%2BLlsBe5lR7BmGeGLLxlNCfZbfFbEfhemsxr%2BgRo97JEL8si5H2mUqUD13yDcDK81jwQjIPcRQcLN14LxfLpOw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793645e3d741c0a-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cbe240a9.veryadversiting6685.pages.dev/_framework/icudt_EFIGS.dat | 172.66.47.141 | 200 OK | 551 kB |
URL GET HTTP/3cbe240a9.veryadversiting6685.pages.dev/_framework/icudt_EFIGS.dat IP172.66.47.141:443
Requested byhttps://cbe240a9.veryadversiting6685.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectveryadversiting6685.pages.dev Fingerprint94:13:F7:8D:1F:12:4A:1A:AA:0C:BD:37:FB:38:41:29:4C:50:7F:FC ValiditySat, 20 Apr 2024 06:49:43 GMT - Fri, 19 Jul 2024 06:49:42 GMT
Size551 kB (550832 bytes) Hash1c1a277003fe15adc66b782b4362e522 7712276641b5161ffaa7715020aa599cb388c419 f1f22d7ad618f24434c30ea8c704cb893de85e50701caba66de3f6a51178c937
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/icudt_EFIGS.dat HTTP/1.1
Host: cbe240a9.veryadversiting6685.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cbe240a9.veryadversiting6685.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:36:23 GMT
content-length: 550832
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "e0a3b07ccf66fff5b9fbe8ccabd30028"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=R7Sf1V6ixsyCpYtnjvF6iQDFBEIirLegjvSU5K5ljjLTjxpM23Gn%2FDqAoVR%2FVFirnb3y%2B4MzKHGtXIx1rslTxEX2rjMG2MkEfD89A9OCOOp6WA4NljAhHKLo6ji9NSxGzS%2B0mm7Urth4fxY4RhJIRKOF%2B6snJovXhw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793645e3d761c0a-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cbe240a9.veryadversiting6685.pages.dev/_framework/blazor.boot.json | 172.66.47.141 | 200 OK | 6.3 kB |
URL GET HTTP/3cbe240a9.veryadversiting6685.pages.dev/_framework/blazor.boot.json IP172.66.47.141:443
Requested byhttps://cbe240a9.veryadversiting6685.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectveryadversiting6685.pages.dev Fingerprint94:13:F7:8D:1F:12:4A:1A:AA:0C:BD:37:FB:38:41:29:4C:50:7F:FC ValiditySat, 20 Apr 2024 06:49:43 GMT - Fri, 19 Jul 2024 06:49:42 GMT
File typeASCII text, with very long lines (6761), with no line terminators Hash26436eed10f3fcce901339eaaf994eab 2a15af5ffb6d033c77f698bc0539a142f4edc01f 50e834e340235abf3625566e1a3d7326e9838bb16a089205bceed9310e9e1c61
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/blazor.boot.json HTTP/1.1
Host: cbe240a9.veryadversiting6685.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cbe240a9.veryadversiting6685.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:36:23 GMT
content-type: application/json
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"65edae422743ce1dd9e0357fe14f8dd6"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5CEobOuc3nt62qjnEUPgmH0cjVyYtQeoRbhxodUjg0GfGQvLo1Zltd%2FgdQ9Ow26Sx6fka0E%2Bl4aSOcCMbFOiITbj9Io8ppNZ8A5ejsbpsXwO02dN2q8crwBvK9VgVNya%2F%2Bj%2FtvMZpM%2Bfi47BLuo8wJodM6GPRvQRyQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793645d0cd31c0a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fonts.googleapis.com/css2?family=Material+Symbols+Outlined:opsz,wght,FILL,GRAD@24,500,0,0 | 142.250.74.106 | 200 OK | 692 B |
URL GET HTTP/2fonts.googleapis.com/css2?family=Material+Symbols+Outlined:opsz,wght,FILL,GRAD@24,500,0,0 IP142.250.74.106:443
Requested byhttps://cbe240a9.veryadversiting6685.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File typeASCII text, with very long lines (715), with no line terminators Hash2ddd8d1a42e3534cd049b83bf8a3120f 2a5b0bc0b79435cbb997b6916118f722d33d5d67 8110f4e1e6df9e9ce63feeb1e57288cf9f57762e77d0b0722c7df798f680cd54
GET /css2?family=Material+Symbols+Outlined:opsz,wght,FILL,GRAD@24,500,0,0 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cbe240a9.veryadversiting6685.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 24 Apr 2024 04:36:23 GMT
date: Wed, 24 Apr 2024 04:36:23 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cbe240a9.veryadversiting6685.pages.dev/_framework/System.Private.CoreLib.dll | 172.66.47.141 | 200 OK | 1.7 MB |
URL GET HTTP/3cbe240a9.veryadversiting6685.pages.dev/_framework/System.Private.CoreLib.dll IP172.66.47.141:443
Requested byhttps://cbe240a9.veryadversiting6685.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectveryadversiting6685.pages.dev Fingerprint94:13:F7:8D:1F:12:4A:1A:AA:0C:BD:37:FB:38:41:29:4C:50:7F:FC ValiditySat, 20 Apr 2024 06:49:43 GMT - Fri, 19 Jul 2024 06:49:42 GMT
Size1.7 MB (1740800 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/System.Private.CoreLib.dll HTTP/1.1
Host: cbe240a9.veryadversiting6685.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cbe240a9.veryadversiting6685.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:36:23 GMT
content-type: application/x-msdownload
content-length: 1740800
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "33059cd6c58c49f0cbc5b7a44dd49e70"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mCpmLPxdRPYrQfpMUbm2FlD0U6L%2FlrtnH0LgXDusIcGrzDs8NRKCED87vxuNtHXXCBa%2B69wul%2FheRK%2B53NpXKZkM%2BeOZDCJ%2FK9Z%2Bc10TebOSK5ERoDKV2%2FgDZMAO3KMW0xknoFJKBMEFVqYUXjXS%2FsmheRQFerZHMA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793645e0d5e1c0a-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cbe240a9.veryadversiting6685.pages.dev/_framework/dotnet.wasm | 172.66.47.141 | 200 OK | 2.5 MB |
URL GET HTTP/3cbe240a9.veryadversiting6685.pages.dev/_framework/dotnet.wasm IP172.66.47.141:443
Requested byhttps://cbe240a9.veryadversiting6685.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectveryadversiting6685.pages.dev Fingerprint94:13:F7:8D:1F:12:4A:1A:AA:0C:BD:37:FB:38:41:29:4C:50:7F:FC ValiditySat, 20 Apr 2024 06:49:43 GMT - Fri, 19 Jul 2024 06:49:42 GMT
Size2.5 MB (2509932 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/dotnet.wasm HTTP/1.1
Host: cbe240a9.veryadversiting6685.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cbe240a9.veryadversiting6685.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:36:23 GMT
content-type: application/wasm
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"f0b1a6134e7e63a083fee90b2ddcfbda"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VinRmoCIG72qPLEscWbkCpwjCdIdTCBS2f166dBbG356z9L1D6zPN%2B4pdhtYP7%2FgjF57WC9Xd%2FCVlbK7o53LMTiq3%2FYtlNYKURB7Ygs7fJ7aHMetHxijtVuTryadz%2BblwSOU0R6xua0VO%2Frbi3NPote5MXhgrfDIZA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793645e3d731c0a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| cbe240a9.veryadversiting6685.pages.dev/MetaWebAssembly.styles.css | 172.66.47.141 | 200 OK | 55 kB |
URL GET HTTP/3cbe240a9.veryadversiting6685.pages.dev/MetaWebAssembly.styles.css IP172.66.47.141:443
Requested byhttps://cbe240a9.veryadversiting6685.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectveryadversiting6685.pages.dev Fingerprint94:13:F7:8D:1F:12:4A:1A:AA:0C:BD:37:FB:38:41:29:4C:50:7F:FC ValiditySat, 20 Apr 2024 06:49:43 GMT - Fri, 19 Jul 2024 06:49:42 GMT
File typeASCII text, with very long lines (508), with CRLF line terminators Hashda712be49c53a0c2ea5799d4ddf80792 5dbdb5fe68cdfb2f84fad1d2fb653c1023ecbe18 8b07010730d9759d6b45a138a539a8c6336597f12c099dd67e235f70172cb96c
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /MetaWebAssembly.styles.css HTTP/1.1
Host: cbe240a9.veryadversiting6685.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cbe240a9.veryadversiting6685.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:36:23 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"6ccdc094ad8f3344bd81a7527da755f7"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VS5L3%2FD64%2FNj9ee88mvapH%2FRC8ymYAe%2BbBGZH%2FmLtEUiKwjKhxzXF0T2LWK2ZqkynrM0JSeFvNiw1mOXU%2FHaN50KTjxyVcPynsx3J4%2BcQXOIGycc4Mq3hkaBjCMoT8DHhFuYxYtGboOdJY5dTuUD3HrHQHyNfZ2c2Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793645bcc581c0a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| cbe240a9.veryadversiting6685.pages.dev/logo.png | 172.66.47.141 | 200 OK | 36 kB |
URL GET HTTP/3cbe240a9.veryadversiting6685.pages.dev/logo.png IP172.66.47.141:443
Requested byhttps://cbe240a9.veryadversiting6685.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectveryadversiting6685.pages.dev Fingerprint94:13:F7:8D:1F:12:4A:1A:AA:0C:BD:37:FB:38:41:29:4C:50:7F:FC ValiditySat, 20 Apr 2024 06:49:43 GMT - Fri, 19 Jul 2024 06:49:42 GMT
File typeRIFF (little-endian) data, Web/P image Hash3ddb61bdd806c16c6aa2b1dfdb7eaec9 5f5cbfd0f1284b09c15884a494758f8626227dd4 62ebfab29cdf3c417eb48e9c429133d6c4d1b8ddb27fc14820a57b9d5a617ae8
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /logo.png HTTP/1.1
Host: cbe240a9.veryadversiting6685.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cbe240a9.veryadversiting6685.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:36:23 GMT
content-type: image/png
content-length: 35616
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "cedc3e7528636d25b38ccc7e9f62b802"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HlBZqX3xU2ocQHnIy3wxpeMbg1WxjjbcW7Da8gGG7E2p0FQAoWcd7u5vZ7ktAhuSyHWVyxOsSzo2WkJsk3f3TG1o9NdV6gIA5UrkiWyfLdxXMD6bBolNOXBAUhR6hw%2BCtztPqxvS9MW1rjZqnBdMD695Ss3%2BRZNG9w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793645d7cfc1c0a-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cbe240a9.veryadversiting6685.pages.dev/css/app.css | 172.66.47.141 | 200 OK | 63 kB |
URL GET HTTP/3cbe240a9.veryadversiting6685.pages.dev/css/app.css IP172.66.47.141:443
Requested byhttps://cbe240a9.veryadversiting6685.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectveryadversiting6685.pages.dev Fingerprint94:13:F7:8D:1F:12:4A:1A:AA:0C:BD:37:FB:38:41:29:4C:50:7F:FC ValiditySat, 20 Apr 2024 06:49:43 GMT - Fri, 19 Jul 2024 06:49:42 GMT
File typeASCII text, with very long lines (1687), with CRLF line terminators Hashe223c14dfddb580e7a4cd4e186b7c688 69bba8dfea8b62ab063c1f43049b0a24114a9666 f509351a73ad66942c0c7577015de0e9987915bf0e53aebe193d4432cc3fc501
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /css/app.css HTTP/1.1
Host: cbe240a9.veryadversiting6685.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cbe240a9.veryadversiting6685.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:36:23 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"1323965c04c4e2d24e411f1255de6b03"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=V7bu4NQ%2FqaehF8JKFjFNlknLhnWwqvp675ZuO5jzeAjArZLqWOI4azsQ8H0fHltkiw4YQrNVqfuaE60x4aXgHFBgm6T9TASg0EcQMh1n28jwUX7nFzSETozCSs7Pf%2FHSu0QR0QFOKH6A8Gu0KbNXKB%2BTzxqvTbM2Ng%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793645bbc571c0a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| cbe240a9.veryadversiting6685.pages.dev/_framework/dotnet.7.0.16.65a571xn83.js | 172.66.47.141 | 200 OK | 270 kB |
URL GET HTTP/3cbe240a9.veryadversiting6685.pages.dev/_framework/dotnet.7.0.16.65a571xn83.js IP172.66.47.141:443
Requested byhttps://cbe240a9.veryadversiting6685.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectveryadversiting6685.pages.dev Fingerprint94:13:F7:8D:1F:12:4A:1A:AA:0C:BD:37:FB:38:41:29:4C:50:7F:FC ValiditySat, 20 Apr 2024 06:49:43 GMT - Fri, 19 Jul 2024 06:49:42 GMT
File typeJavaScript source, ASCII text, with very long lines (51793) Size270 kB (269958 bytes) Hash43335ac8dd5b7d380e4d065f3abcc7fa b636c59a6e80052fcbe02d21d32ac5a9e8243f89 e01880acaba0249b6942bce7185e7359f989d9307df3ea7aacab32a2a86d324e
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/dotnet.7.0.16.65a571xn83.js HTTP/1.1
Host: cbe240a9.veryadversiting6685.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cbe240a9.veryadversiting6685.pages.dev/_framework/blazor.webassembly.js
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:36:23 GMT
content-type: text/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"6f116fc3499f0206d81a13f8e1cc942b"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Icl9l5B8AZBidwhnis4WQ2OVFGE7B0XfYB0%2FCOSf4mEscSFIQIUKxXokoKByT74RERScOUX7rt0miLB7CmUURSVFV5aIoVKUd3LubZKhvOYNs%2BWnyBz3WpVk7rBotWSQpAx0npRMptm7qozr1lDBQHrVMccD0FXM3Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793645d9d081c0a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| cbe240a9.veryadversiting6685.pages.dev/_framework/blazor.webassembly.js | 172.66.47.141 | 200 OK | 64 kB |
URL GET HTTP/3cbe240a9.veryadversiting6685.pages.dev/_framework/blazor.webassembly.js IP172.66.47.141:443
Requested byhttps://cbe240a9.veryadversiting6685.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectveryadversiting6685.pages.dev Fingerprint94:13:F7:8D:1F:12:4A:1A:AA:0C:BD:37:FB:38:41:29:4C:50:7F:FC ValiditySat, 20 Apr 2024 06:49:43 GMT - Fri, 19 Jul 2024 06:49:42 GMT
File typeJavaScript source, ASCII text, with very long lines (63688), with no line terminators Hash7cf532ca7794682144dcf27f2cba8ca6 b75a9e362d1ebdc9419c4482a33ee024cd7738d4 94e0ace397eb35ff83ee67ba94a2e052144276de15c070a9f47e82b7e616cdfb
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/blazor.webassembly.js HTTP/1.1
Host: cbe240a9.veryadversiting6685.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cbe240a9.veryadversiting6685.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:36:23 GMT
content-type: text/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"c54ae9fd4c7115c0c43c784c90ff0842"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=olgefrNxDDHyjiH6hED4Q4Neu%2Bq9nP%2FPkOUwzPeZQRTaSlDlX8O9icK%2FUPc%2FgwOypilRRU3nhr7Le3%2BsYqF9z3IZHcl2zvhxzoh105dphFJBmGxT2LeBawmJBUCyx75BDo5pmacQxQbKkxSdZ3W%2Fl71xO7h4hRsdAQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793645bcc591c0a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|