Report Overview
- Visited public2023-11-22 03:00:49
- URL
splendid-awake-bun.glitch.me/public/vghshja.HTM
- Finishing URL
splendid-awake-bun.glitch.me/public/vghshja.HTM
- IP / ASN
44.217.233.228#14618 AMAZON-AES
TitleNavy Federal Credit Union - Our Members are the Mission® Phishing - Navy Federal Credit Union
Suspicious - Suspicious Javascript code
Domain Summary
| Domain / FQDN | Rank | Registered | First Seen | Last Seen | Sent | Received | IP |
|---|---|---|---|---|---|---|---|
| splendid-awake-bun.glitch.me | unknown | unknown | No data | No data | 503 B | 2.9 MB | 34.225.219.45 |
| i.ibb.co | 13485 | 2010-07-20 | 2018-11-25 11:13:48 | 2023-11-21 06:20:23 | 442 B | 3.6 kB |  162.19.58.161 |
| l2.io | 163527 | 2012-05-12 | 2015-06-25 03:31:26 | 2023-11-20 04:35:50 | 411 B | 226 B | 195.80.159.133 |
Related reports
Network Intrusion Detection Systems
Suricata /w Emerging Threats Pro
| Timestamp | Severity | Source IP | Destination IP | Alert |
|---|---|---|---|---|
| 2023-11-22 03:00:33 | medium | Client IP | Internal IP | |
| 2023-11-22 03:00:33 | medium | Client IP | Internal IP | |
| 2023-11-22 03:00:33 | medium | Client IP | Internal IP | |
| 2023-11-22 03:00:33 | medium | Client IP | 34.225.219.45 | |
| 2023-11-22 03:00:34 | medium | Client IP | Internal IP | |
| 2023-11-22 03:00:34 | medium | Client IP | Internal IP | |
| 2023-11-22 03:00:35 | medium | Client IP | 195.80.159.133 | |
| 2023-11-22 03:00:38 | medium | Client IP | 195.80.159.133 |
Threat Detection Systems
Public InfoSec YARA rules
No alerts detected
OpenPhish
| Scan Date | Severity | Indicator | Alert |
|---|---|---|---|
| 2023-11-21 | medium | splendid-awake-bun.glitch.me/public/vghshja.HTM | Navy Federal Credit Union |
PhishTank
No alerts detected
mnemonic secure dns
No alerts detected
Quad9 DNS
No alerts detected
ThreatFox
No alerts detected
JavaScript (14)
| URL | From | Size | First Seen | Last Seen | |
|---|---|---|---|---|---|
unknown | ScriptElement | 2.1 kB | 2023-04-14 | 2025-05-08 | |
Pretty
Loading... | |||||
unknown | ScriptElement | 1.3 kB | 2023-04-12 | 2025-05-06 | |
Pretty
Loading... | |||||
unknown | ScriptElement | 403 B | 2023-04-12 | 2025-05-08 | |
Pretty
Loading... | |||||
unknown | ScriptElement | 24 B | 2023-04-14 | 2025-05-08 | |
Pretty
Loading... | |||||
unknown | ScriptElement | 1.9 kB | 2023-04-12 | 2025-05-06 | |
Pretty
Loading... | |||||
unknown | ScriptElement | 1.2 kB | 2023-04-14 | 2025-05-06 | |
Pretty
Loading... | |||||
unknown | ScriptElement | 1.4 kB | 2023-04-12 | 2025-05-06 | |
Pretty
Loading... | |||||
unknown | ScriptElement | 852 B | 2023-04-14 | 2025-05-08 | |
Pretty
Loading... | |||||
unknown | ScriptElement | 1.4 kB | 2023-05-07 | 2024-08-29 | |
Pretty
Loading... | |||||
unknown | ScriptElement | 1.1 kB | 2023-04-12 | 2025-05-06 | |
Pretty
Loading... | |||||
l2.io/ip.js?var=userip | ScriptElement | 24 B | 2023-03-07 | 2025-05-09 | |
Pretty
Loading... | |||||
splendid-awake-bun.glitch.me/public/vghshja.HTM | ScriptElement | 2.9 MB | 2023-03-08 | 2024-08-29 | |
Pretty
Loading... | |||||
unknown | ScriptElement | 81 B | 2023-04-14 | 2025-05-08 | |
Pretty
Loading... | |||||
| Size | First Seen | Last Seen | ||
|---|---|---|---|---|
| #1 Write - b24e3b4ad9d5bace5317ed7eda88f960 | 953 kB | 2023-03-08 11:55 | 2024-08-29 18:00 | |
Pretty
Loading... | ||||
HTTP Transactions (3)
| URL | IP | Response | Size | ||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
splendid-awake-bun.glitch.me/public/vghshja.HTM | 34.225.219.45 | 200 OK | 2.9 MB | ||||||||||
Detections
HTTP Headers
| |||||||||||||
i.ibb.co/RpLNy4f/ajax-loader.gif | 162.19.58.161 | 200 OK | 3.2 kB | ||||||||||
HTTP Headers
| |||||||||||||
l2.io/ip.js?var=userip | 195.80.159.133 | 200 OK | 24 B | ||||||||||
HTTP Headers
| |||||||||||||