Report Overview
Submitted URL
splendid-awake-bun.glitch.me/public/vghshja.HTM
IP
44.217.233.228ASN
#14618 AMAZON-AES
Submitted
2023-11-22 03:00:49
Access
public
Website Title
Navy Federal Credit Union - Our Members are the Mission®
Final URL
splendid-awake-bun.glitch.me/public/vghshja.HTM
urlquery detections
Phishing - Navy Federal Credit Union
Suspicious - Suspicious Javascript code
Detections
urlquery
4
Network Intrusion Detection
8
Threat Detection Systems
2
Domain Summary
| Domain / FQDN | Rank | Registered | First Seen | Last Seen | Sent | Received | IP |
|---|---|---|---|---|---|---|---|
| splendid-awake-bun.glitch.me | unknown | unknown | No data | No data | 503 B | 2.9 MB | 34.225.219.45 |
| i.ibb.co | 13485 | 2010-07-20 | 2018-11-25 | 2023-11-21 | 442 B | 3.6 kB |  162.19.58.161 |
| l2.io | 163527 | 2012-05-12 | 2015-06-25 | 2023-11-20 | 411 B | 226 B | 195.80.159.133 |
Related reports
Network Intrusion Detection Systems
Suricata /w Emerging Threats Pro
| Timestamp | Severity | Source IP | Destination IP | Alert |
|---|---|---|---|---|
| 2023-11-22 03:00:33 | medium | Client IP | Internal IP | |
| 2023-11-22 03:00:33 | medium | Client IP | Internal IP | |
| 2023-11-22 03:00:33 | medium | Client IP | Internal IP | |
| 2023-11-22 03:00:33 | medium | Client IP | 34.225.219.45 | |
| 2023-11-22 03:00:34 | medium | Client IP | Internal IP | |
| 2023-11-22 03:00:34 | medium | Client IP | Internal IP | |
| 2023-11-22 03:00:35 | medium | Client IP | 195.80.159.133 | |
| 2023-11-22 03:00:38 | medium | Client IP | 195.80.159.133 |
Threat Detection Systems
Public InfoSec YARA rules
No alerts detected
OpenPhish
| Scan Date | Severity | Indicator | Alert |
|---|---|---|---|
| 2023-11-21 | medium | splendid-awake-bun.glitch.me/public/vghshja.HTM | Navy Federal Credit Union |
PhishTank
No alerts detected
Fortinet's Web Filter
No alerts detected
mnemonic secure dns
No alerts detected
Quad9 DNS
No alerts detected
ThreatFox
No alerts detected
JavaScript (14)
| URL | Size | First Seen | Last Seen | |
|---|---|---|---|---|
unknown | 2.1 kB | 2023-04-14 | 2024-07-22 | |
Pretty
Loading... | ||||
unknown | 1.3 kB | 2023-04-12 | 2024-07-18 | |
Pretty
Loading... | ||||
unknown | 403 B | 2023-04-12 | 2024-07-22 | |
Pretty
Loading... | ||||
unknown | 24 B | 2023-04-14 | 2024-07-22 | |
Pretty
Loading... | ||||
unknown | 1.9 kB | 2023-04-12 | 2024-07-18 | |
Pretty
Loading... | ||||
unknown | 1.2 kB | 2023-04-14 | 2024-01-18 | |
Pretty
Loading... | ||||
unknown | 1.4 kB | 2023-04-12 | 2024-07-18 | |
Pretty
Loading... | ||||
unknown | 852 B | 2023-04-14 | 2024-07-22 | |
Pretty
Loading... | ||||
unknown | 1.4 kB | 2023-05-07 | 2024-01-14 | |
Pretty
Loading... | ||||
unknown | 1.1 kB | 2023-04-12 | 2024-07-18 | |
Pretty
Loading... | ||||
l2.io/ip.js?var=userip | 24 B | 2023-03-07 | 2024-07-27 | |
Pretty
Loading... | ||||
splendid-awake-bun.glitch.me/public/vghshja.HTM | 2.9 MB | 2023-03-08 | 2024-01-14 | |
Pretty
Loading... | ||||
unknown | 81 B | 2023-04-14 | 2024-07-22 | |
Pretty
Loading... | ||||
| Size | First Seen | Last Seen | ||
|---|---|---|---|---|
| #1 Write - b24e3b4ad9d5bace5317ed7eda88f960 | 953 kB | 2023-03-08 | 2024-01-14 | |
Pretty
Loading... | ||||
HTTP Transactions (3)
| URL | IP | Response | Size | ||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
splendid-awake-bun.glitch.me/public/vghshja.HTM | 34.225.219.45 | 200 OK | 2.9 MB | ||||||||||
Detections
HTTP Headers
| |||||||||||||
i.ibb.co/RpLNy4f/ajax-loader.gif | 162.19.58.161 | 200 OK | 3.2 kB | ||||||||||
HTTP Headers
| |||||||||||||
l2.io/ip.js?var=userip | 195.80.159.133 | 200 OK | 24 B | ||||||||||
HTTP Headers
| |||||||||||||