IP 104.21.34.8:443
CertificateIssuerGoogle Trust Services Subjectsteamgift.us Fingerprint89:84:9B:44:73:83:AE:0F:51:97:75:23:26:03:89:45:8D:14:99:69 ValidityWed, 02 Apr 2025 03:59:08 GMT - Tue, 01 Jul 2025 04:57:20 GMT
File typeHTML document, ASCII text, with very long lines (18863) Hash28587aa1c4d45ad9e351d9627198a7f8 15603b7db75ddc6df8ce5dc39b90929da90b20ea f9541ebd11ec03e291abd701f3633a4c798e49e7ca4ab03534840c169864c714
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /1065499401 HTTP/1.1
Host: steamgift.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 07 Apr 2025 11:55:01 GMT
content-type: text/html; charset=utf-8
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
origin-agent-cluster: ?1
referrer-policy: no-referrer
set-cookie: session=eyJhbGciOiJBMTI4S1ciLCJlbmMiOiJBMTI4R0NNIn0.DI9qyFwiukqEtD8ziHrK_UX533LsxmE8.fs0L4401EA5E8Wd0.6PsS7tFGIDKyuvy0Szh6B6hOxxWt0OujjatUs9F_HhGWLXc_UtAxw2RgQ_mXfxJG9WBE4OD-ntsmNSbc8ZZuSlUm_BzdYCrKcJito05qBlxwkH4IubzKVAO_A-4GXcR3plAZPF1TN8CAeKZGE1D0saFSl5zXKgeH_GqHoNb1w4h5l1mYM6Z3uN9QKrFSLjm9hxSkRNmIyV7PT9jCSDcO0DSQJp_2Nkcp7fRo1Q.x1Np_IzTIN-X5QzFI9AUuA; Path=/; Expires=Mon, 07 Apr 2025 15:55:01 GMT; SameSite=Lax
token=eyJhbGciOiJIUzI1NiJ9.eyJvd25lciI6MjE5LCJzZWNyZXQiOiJkMmUyMDk0ZTliMTBlNjFlNTMwMTQ5ZjI5ZmU5NWZlYyIsInNlcnZpY2UiOiJTdGVhbSJ9.qoFF75BheqpgHeUSuT_RNyJW7pVeUfD_ycqbR6-4CkQ; Path=/; Expires=Mon, 07 Apr 2025 15:55:01 GMT; SameSite=Lax
strict-transport-security: max-age=15552000; includeSubDomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 0
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QlfN7G1EbGc5nhDw%2F4CiqAaaumpqo9VByks0ig1%2BFOghqjCHh1GPkq7%2FHW72haVAOfzabj5ygcOEPZcQaqS8Ehf0ubJdsZNnzBbqxYN7Hq1gKl19INIY7EXO1XeLCvc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 92c955636de7b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=6802&min_rtt=661&rtt_var=11402&sent=8&recv=11&lost=0&retrans=0&sent_bytes=3280&recv_bytes=1247&delivery_rate=1261324&cwnd=254&unsent_bytes=0&cid=d3ecc14798f38988&ts=239&x=0"
X-Firefox-Spdy: h2
|
| steamgift.us/204b2b537d085754095404045c0f055504 | 104.21.34.8 | 503 Service Unavailable | 190 B |
URL POST steamgift.us/204b2b537d085754095404045c0f055504 IP104.21.34.8:443
Requested byhttps://steamgift.us/1065499401 CertificateIssuerGoogle Trust Services Subjectsteamgift.us Fingerprint89:84:9B:44:73:83:AE:0F:51:97:75:23:26:03:89:45:8D:14:99:69 ValidityWed, 02 Apr 2025 03:59:08 GMT - Tue, 01 Jul 2025 04:57:20 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash3267dd8f0e96711dd54dbb1f5676b447 202602c4ec4a5e2498e3d24a3ed025ce70bf749c b429e25e7813a9e2b90dcec11d9cb5287751246128dd6c76a7349774829c5554
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
POST /204b2b537d085754095404045c0f055504 HTTP/1.1
Host: steamgift.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 52
Origin: null
DNT: 1
Connection: keep-alive
Cookie: session=eyJhbGciOiJBMTI4S1ciLCJlbmMiOiJBMTI4R0NNIn0.DI9qyFwiukqEtD8ziHrK_UX533LsxmE8.fs0L4401EA5E8Wd0.6PsS7tFGIDKyuvy0Szh6B6hOxxWt0OujjatUs9F_HhGWLXc_UtAxw2RgQ_mXfxJG9WBE4OD-ntsmNSbc8ZZuSlUm_BzdYCrKcJito05qBlxwkH4IubzKVAO_A-4GXcR3plAZPF1TN8CAeKZGE1D0saFSl5zXKgeH_GqHoNb1w4h5l1mYM6Z3uN9QKrFSLjm9hxSkRNmIyV7PT9jCSDcO0DSQJp_2Nkcp7fRo1Q.x1Np_IzTIN-X5QzFI9AUuA; token=eyJhbGciOiJIUzI1NiJ9.eyJvd25lciI6MjE5LCJzZWNyZXQiOiJkMmUyMDk0ZTliMTBlNjFlNTMwMTQ5ZjI5ZmU5NWZlYyIsInNlcnZpY2UiOiJTdGVhbSJ9.qoFF75BheqpgHeUSuT_RNyJW7pVeUfD_ycqbR6-4CkQ
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 503 Service Unavailable
date: Mon, 07 Apr 2025 11:55:01 GMT
content-type: text/html
server: cloudflare
cf-cache-status: DYNAMIC
cf-ray: 92c955667a6ab518-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
| steamgift.us/https%3A%2F%2Fsteamcommunity.com%2Ffavicon.ico | 104.21.34.8 | 404 Not Found | 65 B |
URL GET steamgift.us/https%3A%2F%2Fsteamcommunity.com%2Ffavicon.ico IP104.21.34.8:443
Requested byhttps://steamgift.us/1065499401 CertificateIssuerGoogle Trust Services Subjectsteamgift.us Fingerprint89:84:9B:44:73:83:AE:0F:51:97:75:23:26:03:89:45:8D:14:99:69 ValidityWed, 02 Apr 2025 03:59:08 GMT - Tue, 01 Jul 2025 04:57:20 GMT
Hash6688d59f1d0b9e116ceca1708a113d0d d0078c573575a40a584cc92d4ccc5e8ae62aa948 cacc3c09d432702d237265c156358a0430dd08938afbceaf4a444d26340b25e8
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /https%3A%2F%2Fsteamcommunity.com%2Ffavicon.ico HTTP/1.1
Host: steamgift.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: session=eyJhbGciOiJBMTI4S1ciLCJlbmMiOiJBMTI4R0NNIn0.DI9qyFwiukqEtD8ziHrK_UX533LsxmE8.fs0L4401EA5E8Wd0.6PsS7tFGIDKyuvy0Szh6B6hOxxWt0OujjatUs9F_HhGWLXc_UtAxw2RgQ_mXfxJG9WBE4OD-ntsmNSbc8ZZuSlUm_BzdYCrKcJito05qBlxwkH4IubzKVAO_A-4GXcR3plAZPF1TN8CAeKZGE1D0saFSl5zXKgeH_GqHoNb1w4h5l1mYM6Z3uN9QKrFSLjm9hxSkRNmIyV7PT9jCSDcO0DSQJp_2Nkcp7fRo1Q.x1Np_IzTIN-X5QzFI9AUuA; token=eyJhbGciOiJIUzI1NiJ9.eyJvd25lciI6MjE5LCJzZWNyZXQiOiJkMmUyMDk0ZTliMTBlNjFlNTMwMTQ5ZjI5ZmU5NWZlYyIsInNlcnZpY2UiOiJTdGVhbSJ9.qoFF75BheqpgHeUSuT_RNyJW7pVeUfD_ycqbR6-4CkQ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Mon, 07 Apr 2025 11:55:01 GMT
content-type: application/json; charset=utf-8
content-encoding: gzip
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
etag: W/"41-0AeMVzV1pApYTMktTMxeiuYqqUg"
origin-agent-cluster: ?1
referrer-policy: no-referrer
strict-transport-security: max-age=15552000; includeSubDomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 0
age: 20461
cache-control: max-age=14400
cf-cache-status: STALE
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8%2Fe9ig6%2FB9RpxuQTUzmTgmsnjLb705EnmJWjpOtMEA12LJKOIO%2BZlDzVheB8dBFSdQrlS3%2FvcXvMU5N%2BXVFN7woutmosAxpzG2VxihjTs5Z9nPD4biQSI8u6j%2BBSTxU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 92c955669a9cb518-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=2018&min_rtt=419&rtt_var=2885&sent=22&recv=25&lost=0&retrans=0&sent_bytes=12067&recv_bytes=2042&delivery_rate=12467404&cwnd=257&unsent_bytes=0&cid=d3ecc14798f38988&ts=745&x=0"
X-Firefox-Spdy: h2
|