Report - sccbeu3x.cc

Report Overview

Visited public
2024-06-07 08:05:10
Tags
URL
sccbeu3x.cc
Finishing URL
sccbeu3x.cc/enter/register
IP / ASN
104.21.24.119
#13335 CLOUDFLARENET
Title
t33n leak 5-17 age

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
sccbeu3x.cc	unknown	unknown	No data	No data	8.8 kB	491 kB	172.67.218.130
challenges.cloudflare.com	unknown	2009-02-17	2021-10-20 07:02:03	2024-06-06 18:42:35	3.9 kB	132 kB	104.17.3.184
cdn.discordapp.com	2474	2015-02-26	2015-08-24 15:06:21	2024-06-06 18:12:09	1.3 kB	2.9 kB	162.159.135.233
ocsp.sectigochina.com	unknown	2019-10-20	2022-02-25 07:42:56	2024-06-06 11:37:02	333 B	964 B	104.18.38.66
b.yzcdn.cn	425969	2014-12-08	2015-07-08 11:30:49	2023-10-23 14:59:32	424 B	9.8 kB	154.85.69.57

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-06-07	medium	sccbeu3x.cc	Sinkholed
2024-06-07	medium	sccbeu3x.cc	Sinkholed
2024-06-07	medium	sccbeu3x.cc	Sinkholed
2024-06-07	medium	sccbeu3x.cc	Sinkholed
2024-06-07	medium	sccbeu3x.cc	Sinkholed
2024-06-07	medium	sccbeu3x.cc	Sinkholed
2024-06-07	medium	sccbeu3x.cc	Sinkholed
2024-06-07	medium	sccbeu3x.cc	Sinkholed
2024-06-07	medium	sccbeu3x.cc	Sinkholed
2024-06-07	medium	sccbeu3x.cc	Sinkholed
2024-06-07	medium	sccbeu3x.cc	Sinkholed
2024-06-07	medium	sccbeu3x.cc	Sinkholed
2024-06-07	medium	sccbeu3x.cc	Sinkholed
2024-06-07	medium	sccbeu3x.cc	Sinkholed
2024-06-07	medium	sccbeu3x.cc	Sinkholed
2024-06-07	medium	sccbeu3x.cc	Sinkholed

ThreatFox

No alerts detected

JavaScript (36)

	URL	From	Size	First Seen	Last Seen
	sccbeu3x.cc/js/chunk-vendors.ea790e22.js	ScriptElement	949 kB	2023-03-07	2024-08-21
Pretty URL sccbeu3x.cc/js/chunk-vendors.ea790e22.js IP 104.21.24.119 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:35 Last Seen2024-08-21 09:33 Times Seen1004 Hash 4fee178f809d1b2a829099a8bb91c56c 178b6322fdc40c08fcbda0c096c668855ad49b51 c3580c9951b9554639c1404a246b3f27f818a99240c728f04cb964cd9e50b73d Loading...

	sccbeu3x.cc/js/app.ab5b259b.js	ScriptElement	172 kB	2024-08-19	2024-08-19
Pretty URL sccbeu3x.cc/js/app.ab5b259b.js IP 104.21.24.119 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-19 20:34 Last Seen2024-08-19 20:34 Times Seen1 Hash fe16039a6b63471034ba007b5bb1f691 84216b509457c2554f52101a2e4b2586237441e3 81d6878d663de675d06994112ddc40b47b1a412eb9514e450191e2e5ddaa6b5d Loading...

		Size	First Seen	Last Seen
	#1 Eval - 0e6446df5a09641687a79397989ba1f2	28 B	2024-08-19 20:34	2024-08-19 20:34
Pretty Observations First Seen2024-08-19 20:34 Last Seen2024-08-19 20:34 Times Seen1 Hash 0e6446df5a09641687a79397989ba1f2 1f3c1b012d4dd212acb64a4e9b9ebb3db47c2e36 042ecfce21fedf6caed8d21005133d012012f37b16c8698e42bace8a13940021 Loading...

	#2 Eval - a4adbeac20c6da84d24fe19e7c9d80e4	28 B	2024-08-19 20:34	2024-08-19 20:34
Pretty Observations First Seen2024-08-19 20:34 Last Seen2024-08-19 20:34 Times Seen1 Hash a4adbeac20c6da84d24fe19e7c9d80e4 282ff7eed6e7bd8794cce28234f53291be3574a8 4e844a5c224bb9f67273d90c6ae13da671b27c3547549f01474589d49196df64 Loading...

	#3 Eval - c5d3cec99e5c15c9c314a934c8f8e79f	28 B	2024-08-19 20:34	2024-08-19 20:34
Pretty Observations First Seen2024-08-19 20:34 Last Seen2024-08-19 20:34 Times Seen1 Hash c5d3cec99e5c15c9c314a934c8f8e79f cc9a83a84fa58e5c84f2826f10a231403b5a9e38 05fc9f78f78da84b1820bc80707509debe847d2ea7373f0766bbd811617be351 Loading...

	#4 Eval - 61539e369e9cceb9db6f2aa2ca5cac05	28 B	2024-08-19 20:34	2024-08-19 20:34
Pretty Observations First Seen2024-08-19 20:34 Last Seen2024-08-19 20:34 Times Seen1 Hash 61539e369e9cceb9db6f2aa2ca5cac05 631e7cee25130ab71a069da9f4a376c6e43c5fc5 712280521a061a5cb182b6c5f5fbe6db856e2738e3a4970c6a8db7bdce03ae18 Loading...

	#5 Eval - 1b627c32f5072fbc6914261aa9d7165b	28 B	2024-08-19 20:34	2024-08-19 20:34
Pretty Observations First Seen2024-08-19 20:34 Last Seen2024-08-19 20:34 Times Seen1 Hash 1b627c32f5072fbc6914261aa9d7165b 1837255327f84c4e8ce6a400f1ac3da734fe6f7b 46f81cfe570a184c343bc328ef0cb5105124817a649ea83f6752c2eeff1a9aa5 Loading...

	#6 Eval - bb95e7d6b5257add9fb04a57fae7ddbb	28 B	2024-08-19 20:34	2024-08-19 20:34
Pretty Observations First Seen2024-08-19 20:34 Last Seen2024-08-19 20:34 Times Seen1 Hash bb95e7d6b5257add9fb04a57fae7ddbb 58ac2fc804f3c9d30bf29f10415973a0262622b9 766501ee8b20fb29be353af248fe8dc9ed72b1b810af8a5b1017f18abb1d74f8 Loading...

	#7 Eval - 1de6dd4fda16c6e61a0663d1a8d6b9f8	28 B	2024-08-19 20:34	2024-08-19 20:34
Pretty Observations First Seen2024-08-19 20:34 Last Seen2024-08-19 20:34 Times Seen1 Hash 1de6dd4fda16c6e61a0663d1a8d6b9f8 8b62214510c40163e49bee69739cc5a7b5b325d7 0b58d4474867b28c14ca8c86cb758cb848ece60b6656632ff46f1f4790fb3c52 Loading...

	#8 Eval - 4c20b272aa1d19bb39a76a0b7fe5832d	28 B	2024-08-19 20:34	2024-08-19 20:34
Pretty Observations First Seen2024-08-19 20:34 Last Seen2024-08-19 20:34 Times Seen1 Hash 4c20b272aa1d19bb39a76a0b7fe5832d a215fb94d481769087069afc3b5d3cdc9952f44e 647b3ef55447018d5db1507ca2cb5f50f266dfff2abbafb670ed970daef9135f Loading...

	#9 Eval - ad37a6ad029eb5c797732711f966a25c	28 B	2024-08-19 20:34	2024-08-19 20:34
Pretty Observations First Seen2024-08-19 20:34 Last Seen2024-08-19 20:34 Times Seen1 Hash ad37a6ad029eb5c797732711f966a25c 2fac86e7a53b0b22a3a1ed67bd49ecd51c550523 880fe05b84397160b1c40b3a8f6512108380c61221e33e70843abeb299d48c1c Loading...

	#10 Eval - 01b264ceac8917657f89cd346197062d	28 B	2024-08-19 20:34	2024-08-19 20:34
Pretty Observations First Seen2024-08-19 20:34 Last Seen2024-08-19 20:34 Times Seen1 Hash 01b264ceac8917657f89cd346197062d ee6a683f0f3fdf5e0c37c52b5125149594fd7d5f 0d036f47298c69660f043fb7bbfb59bb6a17563d98a12d209a8e0a632e703e8d Loading...

	#11 Eval - b344825fe7becc18c84bb757f09dbc91	28 B	2024-08-19 20:34	2024-08-19 20:34
Pretty Observations First Seen2024-08-19 20:34 Last Seen2024-08-19 20:34 Times Seen1 Hash b344825fe7becc18c84bb757f09dbc91 881689be40f675c4a909933b37c8556fbe24700c 6d45e51b5d5fcecd71643ccdb537e46c5777afbffac1ce472d37692c6141ed8b Loading...

	#12 Eval - 9bc1b53fe3b6d5d1cb3b831f19bd1d97	61 B	2024-06-05 15:45	2024-08-19 20:40
Pretty Observations First Seen2024-06-05 15:45 Last Seen2024-08-19 20:40 Times Seen112 Hash 9bc1b53fe3b6d5d1cb3b831f19bd1d97 6fc62917a78593ffa5a0aaaba66485206898dda6 c9a9258f142cbc788190477a3e6757fc381250ee307580f3596fb2935a3170ac Loading...

	#13 Eval - ed6d29e248fbaa3728dcd3bddcfb99a9	28 B	2024-08-19 20:34	2024-08-19 20:34
Pretty Observations First Seen2024-08-19 20:34 Last Seen2024-08-19 20:34 Times Seen1 Hash ed6d29e248fbaa3728dcd3bddcfb99a9 b97d70e20b339e257bb729f80b8f97cf4d502c88 24acb2831b520bd158c1a4283fc855cdc136ce175775f402285cbe3f6b6d855f Loading...

	#14 Eval - e1feb5f395c4e4345a8635eb8608c7c9	28 B	2024-08-19 20:34	2024-08-19 20:34
Pretty Observations First Seen2024-08-19 20:34 Last Seen2024-08-19 20:34 Times Seen1 Hash e1feb5f395c4e4345a8635eb8608c7c9 8e8d3274c3fc09f67d344edefc65dc2f50486cfc c53c81d7a5f9be3815d7ea2b0dc9993d9a4d4d16b37b95081efca0da80403e0f Loading...

	#15 Eval - 575274af92594b9cb172ba0520d68169	28 B	2024-08-19 20:34	2024-08-19 20:34
Pretty Observations First Seen2024-08-19 20:34 Last Seen2024-08-19 20:34 Times Seen1 Hash 575274af92594b9cb172ba0520d68169 38ff35a5b3bdc68e5bec60605adba598e79fd548 d0b5733b3ab08b90074db413c1692cf2ce146a0d371a307f04f3d04d384ac458 Loading...

	#16 Eval - 26cdc8e2d3dc25d8f722bb270ce09344	28 B	2024-08-19 20:34	2024-08-19 20:34
Pretty Observations First Seen2024-08-19 20:34 Last Seen2024-08-19 20:34 Times Seen1 Hash 26cdc8e2d3dc25d8f722bb270ce09344 af4693833bcebe4b68641c4e7b75e2a008e590c9 3148c4b2cffc75ab8ffabe9c64bd3d7838277b3dfcf2950926d76f09a8120f41 Loading...

	#17 Eval - 7043de1003b035aca37b2fc74a6b537e	28 B	2024-08-19 20:34	2024-08-19 20:34
Pretty Observations First Seen2024-08-19 20:34 Last Seen2024-08-19 20:34 Times Seen1 Hash 7043de1003b035aca37b2fc74a6b537e c31a8cf634da73e75c56bbb8a71f62c8f2f70399 6c599b757fa79e10f3d56aa46cfb2d138af69952d37cf224a3f80dab469d1cd4 Loading...

	#18 Eval - a4f3ce1a389032a40f5f2f8e7bc4b902	28 B	2024-08-19 20:34	2024-08-19 20:34
Pretty Observations First Seen2024-08-19 20:34 Last Seen2024-08-19 20:34 Times Seen1 Hash a4f3ce1a389032a40f5f2f8e7bc4b902 b011f9c381575e4ee85feb0d02cb20d1902f0dd9 93eb18b318023d6f9f30fd61d324d9e2e226f5e6cea70ce6188ec9f818182cf4 Loading...

	#19 Eval - 61cd337f274cb4c27f3658710e2898a6	28 B	2024-08-19 20:34	2024-08-19 20:34
Pretty Observations First Seen2024-08-19 20:34 Last Seen2024-08-19 20:34 Times Seen1 Hash 61cd337f274cb4c27f3658710e2898a6 f39d8c8ab12ef4dc2e68f198786bbb4224360b55 b91aef9ea98da27fda5814e33f3c2bdf48b3d9b354005e63876abb722e51aa41 Loading...

	#20 Eval - 569244664af3e456b599c4f534eb602c	28 B	2024-08-19 20:34	2024-08-19 20:34
Pretty Observations First Seen2024-08-19 20:34 Last Seen2024-08-19 20:34 Times Seen1 Hash 569244664af3e456b599c4f534eb602c bc4d987eb71a6abdc6941562485b1794bb88523f f875524f8d7b9adda5f7c7df1b320ebbc059e99c8d6fd4a622abcf17bfd753e2 Loading...

	#21 Eval - b5c59528a253eae0f0c519e6511ecab5	28 B	2024-08-19 20:34	2024-08-19 20:34
Pretty Observations First Seen2024-08-19 20:34 Last Seen2024-08-19 20:34 Times Seen1 Hash b5c59528a253eae0f0c519e6511ecab5 ea65400ca2dea4829d019745893e3ab3f4163aa7 c6d78c14e24d4aac71bf41e35ebb4aa534ffd2437a8725255f7faa7ae8d1ed7b Loading...

	#22 Eval - 668b6f950832f05cf12ffc1ca88ca121	28 B	2024-08-19 20:34	2024-08-19 20:34
Pretty Observations First Seen2024-08-19 20:34 Last Seen2024-08-19 20:34 Times Seen1 Hash 668b6f950832f05cf12ffc1ca88ca121 a578b15174b70ba991825f38736d0f08a3677035 3b6cbb701e0eb7bad2c56386c593675c091f2eb539822f704f617c15cad90f7b Loading...

	#23 Eval - c747f288e33ea0e4baec3f6b60d4b020	28 B	2024-08-19 20:34	2024-08-19 20:34
Pretty Observations First Seen2024-08-19 20:34 Last Seen2024-08-19 20:34 Times Seen1 Hash c747f288e33ea0e4baec3f6b60d4b020 ab16afd7c201ceeb5c60b4bb23f361719ed01143 c5dc860b25a4f5e3062e478f3a283f80cf499888e30129858e8a186426433f01 Loading...

	#24 Eval - 2a7011dd8b2134d0029a984eeff2f712	28 B	2024-08-19 20:34	2024-08-19 20:34
Pretty Observations First Seen2024-08-19 20:34 Last Seen2024-08-19 20:34 Times Seen1 Hash 2a7011dd8b2134d0029a984eeff2f712 4061bc2f8a6a632ed374c19cf69cc6871d28841d 2d0237ca526bc63f5ec92b38718fcec3e3b63170a1868df4ff949b1ee11fc220 Loading...

	#25 Eval - b0e4dbd4df09b36fdf1c01eb6a6f9b0a	28 B	2024-08-19 20:34	2024-08-19 20:34
Pretty Observations First Seen2024-08-19 20:34 Last Seen2024-08-19 20:34 Times Seen1 Hash b0e4dbd4df09b36fdf1c01eb6a6f9b0a b6129c569488961746fa589e082d082793fd5d56 7bc32c68a3229ade9a9040a2f521927c50053ce8ebba01c76b61cad9f16d89a0 Loading...

	#26 Eval - 77698b21032592eed3bf5eb0ffb7b219	28 B	2024-08-19 20:34	2024-08-19 20:34
Pretty Observations First Seen2024-08-19 20:34 Last Seen2024-08-19 20:34 Times Seen1 Hash 77698b21032592eed3bf5eb0ffb7b219 318ddfa00e3cd7d521cf0deef2cc8f76bc434a23 cff908ec56e81b720bba5339001c08ad0160a3fee0ff3b2c85e38ab6b778966e Loading...

	#27 Eval - f158a3f55e46c5b34475ffb92a5ba746	28 B	2024-08-19 20:34	2024-08-19 20:34
Pretty Observations First Seen2024-08-19 20:34 Last Seen2024-08-19 20:34 Times Seen1 Hash f158a3f55e46c5b34475ffb92a5ba746 8cc2317a968a4f5bd7f514ab4fe56ff04f179a6c edf594e22075d8ab7c0f341cb69a87084c7e5e69e76487d592e956d089326202 Loading...

	#28 Eval - 36c96c077a01616fe46eb539cc802fb6	28 B	2024-08-19 20:34	2024-08-19 20:34
Pretty Observations First Seen2024-08-19 20:34 Last Seen2024-08-19 20:34 Times Seen1 Hash 36c96c077a01616fe46eb539cc802fb6 ee0126208a4353449065822cfc8d72b7c84c81cb 483a7863b5c3240679970cdfcd4e30c55ea2c6e98d189adb1c8fa987c47d4fac Loading...

	#29 Eval - 2064fe2f89d175f2a3d9ee45d4549272	28 B	2024-08-19 20:34	2024-08-19 20:34
Pretty Observations First Seen2024-08-19 20:34 Last Seen2024-08-19 20:34 Times Seen1 Hash 2064fe2f89d175f2a3d9ee45d4549272 9d84c4876a325b94ebda4fa0616ab76a9e4d3922 c3024b7935a27e5a86c6f4f95a55b77b5ea9079d418fdfa3b04b09898d27f077 Loading...

	#30 Eval - 1d53eb6ad7a0f4460ce9cbddcc7909ae	28 B	2024-08-19 20:34	2024-08-19 20:34
Pretty Observations First Seen2024-08-19 20:34 Last Seen2024-08-19 20:34 Times Seen1 Hash 1d53eb6ad7a0f4460ce9cbddcc7909ae b7a9a9214379f7ced6a4996226b831dc3cdc5b8a c2d388864cf1fd5fe393c8a187398fd6a72ee35898a7dc943922a2d696497c1f Loading...

	#31 Eval - 9e925e9341b490bfd3b4c4ca3b0c1ef2	4 B	2023-03-07 01:03	2025-06-19 06:00
Pretty Observations First Seen2023-03-07 01:03 Last Seen2025-06-19 06:00 Times Seen381662 Hash 9e925e9341b490bfd3b4c4ca3b0c1ef2 c2543fff3bfa6f144c2f06a7de6cd10c0b650cae 1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408 Loading...

	#32 Eval - 8ae9305af70fc9d0f66cccac51931298	28 B	2024-08-19 20:34	2024-08-19 20:34
Pretty Observations First Seen2024-08-19 20:34 Last Seen2024-08-19 20:34 Times Seen1 Hash 8ae9305af70fc9d0f66cccac51931298 dac8cb8908b538babde8ff27f58b032756dae6f7 e0dd2032b1b1da25e6b9b8c90d6ad92c9e833552687f2b3b0f42b39216c20e36 Loading...

	#33 Eval - 831b16488a3b1b3e73b62cab337d301a	28 B	2024-08-19 20:34	2024-08-19 20:34
Pretty Observations First Seen2024-08-19 20:34 Last Seen2024-08-19 20:34 Times Seen1 Hash 831b16488a3b1b3e73b62cab337d301a c980374d8124d02f252e60a3c283e7b003fb0e20 a5fdc189b4888bea7662831ddce40a2013594a7a512c522f230f036666f60574 Loading...

	#34 Eval - 175eeaa7c6bb1d06f2545566ca0dcf1c	2.8 kB	2024-08-19 20:34	2024-08-19 20:34
Pretty Observations First Seen2024-08-19 20:34 Last Seen2024-08-19 20:34 Times Seen1 Hash 175eeaa7c6bb1d06f2545566ca0dcf1c ae35a1a3d584ca238731423a86e44375aebc5576 cbeb1e52747b0ff07984cad6d168d4b3c9ec808ebd8c94c8aaa925417d333cf3 Loading...

HTTP Transactions (26)

URL IP Response Size

sccbeu3x.cc/

172.67.218.130

200 OK

5.7 kB

URL User Request POST HTTP/1.1
sccbeu3x.cc/
IP
172.67.218.130:80
ASN
#13335 CLOUDFLARENET

File type
HTML document, ASCII text, with very long lines (14074), with no line terminators
Size
5.7 kB (5734 bytes)
Hash
cc649c1f5083f75a67b35771d9af3f75
ed65076eda11b8e6d844f0c17f9916f95c950f83
c0d1b261d67c31c2c53b9393ce806cc963f522b46ac276111f88f1f8c84c8d12

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: sccbeu3x.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 403 Forbidden
Date: Fri, 07 Jun 2024 08:04:44 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Accept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
Critical-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Origin-Agent-Cluster: ?1
Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Content-Options: nosniff
X-Frame-Options: SAMEORIGIN
cf-mitigated: challenge
cf-chl-out: scygyRe/HWHFSF+Xlk9x6htwQ6Xz2aia3mn/VvKwDI6cN4Hb+/Aptxj8Dm/w4QXyPwt6hIJ3Br5Ml0/2eJw0+/efY5VAv0Qn1G7LtsMjkOw=$iD4IhbSy2rt1HSo4fQbTjQ==
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=V5fJKn9vWMwcxvYm4Y5DW3YejBnfyaBMNiyfgmxTtiiQo2W4yMTB91lqwxoXct0xh8dRfJt7DKBwuxZ4knIKGOxctTkF0xBR0JRPy7Kt6AFRaDqj82SErnsoLYLSZw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 88ff2211ac079ff0-AMS
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

sccbeu3x.cc/cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=88ff2211ac079ff0

104.21.24.119

106 kB

URL
sccbeu3x.cc/cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=88ff2211ac079ff0
IP
104.21.24.119:0
ASN
#13335 CLOUDFLARENET

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
106 kB (105558 bytes)
Hash
3827cefb6ba2eb06aa660bf92cb757a1
a32d3323eb6abfd975454d8ee97b6a8c042f65b5
8cdd56fdd3077bbfe140b2daf396c357768c3b3afb9558058422fee189755abc

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=88ff2211ac079ff0 HTTP/1.1
Host: sccbeu3x.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://sccbeu3x.cc/?__cf_chl_rt_tk=m4IkgQ8swa1vP6Ii16DxWAwsVxrSuoOdW3MNIgzVYfQ-1717747484-0.0.1.1-2238
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 07 Jun 2024 08:04:44 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XTVF8NBxTxWiXjFtCPbSEnnCRPRmE9AG7ZeCBFx9ZyzdMDNdan%2F%2F%2BGnY5ngBs7TBWfyu7s7BR51DOq8FI%2FMcProEvddR%2BNWv2BI5nQpERoqlrVGyWWwVBgkF7I30MA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 88ff2213eceb6567-AMS
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

sccbeu3x.cc/favicon.ico

104.21.24.119

988 B

URL
sccbeu3x.cc/favicon.ico
IP
104.21.24.119:0
ASN
#13335 CLOUDFLARENET

File type
HTML document, ASCII text, with very long lines (2700), with no line terminators
Size
988 B (988 bytes)
Hash
f6ef86a5127ad41ff986face31a9f21f
43bed9642b550da7c2da26204547ad66902fd4f4
94e2de1c5ce6bc049113fe2a852e43cccc7930819c18b370a9b6797e61181c11

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: sccbeu3x.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://sccbeu3x.cc/?__cf_chl_rt_tk=m4IkgQ8swa1vP6Ii16DxWAwsVxrSuoOdW3MNIgzVYfQ-1717747484-0.0.1.1-2238
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 07 Jun 2024 08:04:44 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 5188
Last-Modified: Fri, 07 Jun 2024 06:38:16 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=u0UOdfpOorn%2FsqS6WyJpZbESrojG2VU6AKe1ArKXsabueKufKAAFqWdR94NIlRbixhQ7%2B41C3goTbH8if0BDC1fm%2B0LbslRPywhs7F%2Brdhxo9WC1zHVrtFBxKKKeyg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 88ff2214ad9e6567-AMS
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

sccbeu3x.cc/favicon.ico

104.21.24.119

988 B

URL
sccbeu3x.cc/favicon.ico
IP
104.21.24.119:0
ASN
#13335 CLOUDFLARENET

File type
HTML document, ASCII text, with very long lines (2700), with no line terminators
Size
988 B (988 bytes)
Hash
f6ef86a5127ad41ff986face31a9f21f
43bed9642b550da7c2da26204547ad66902fd4f4
94e2de1c5ce6bc049113fe2a852e43cccc7930819c18b370a9b6797e61181c11

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: sccbeu3x.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://sccbeu3x.cc/
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 07 Jun 2024 08:04:45 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 5189
Last-Modified: Fri, 07 Jun 2024 06:38:16 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WVC1j6BDbMqEU%2BE7CutCDXV8eJJOIBUiP5H5rgNYAH%2F%2F3BjUpoXEETq16UD3Y4y%2F5MRtck2oH%2FuwYJPbjZFuoSYWe5or3LuoPt3rriYjyp3uwfwQKUlmwgyRrN3QZQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 88ff22154e306567-AMS
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

sccbeu3x.cc/cdn-cgi/challenge-platform/h/b/flow/ov1/1312176510:1717745379:R-dFXWEvyKTM2vbyDzyWQQICW3Xoii_6d10KOk6xfI0/88ff2211ac079ff0/46dafcfd8012e50

104.21.24.119

12 kB

URL
sccbeu3x.cc/cdn-cgi/challenge-platform/h/b/flow/ov1/1312176510:1717745379:R-dFXWEvyKTM2vbyDzyWQQICW3Xoii_6d10KOk6xfI0/88ff2211ac079ff0/46dafcfd8012e50
IP
104.21.24.119:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (16520), with no line terminators
Size
12 kB (12477 bytes)
Hash
4d8f97189618804f8f6beb2082d3c8a7
1599246f4e4db4121ff0ff3de46f60362ebfdaba
4211ec16d2c3508c0cec7cef0d0c0300768e8a584f0c487a132fba52ff76db0a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /cdn-cgi/challenge-platform/h/b/flow/ov1/1312176510:1717745379:R-dFXWEvyKTM2vbyDzyWQQICW3Xoii_6d10KOk6xfI0/88ff2211ac079ff0/46dafcfd8012e50 HTTP/1.1
Host: sccbeu3x.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://sccbeu3x.cc/
Content-type: application/x-www-form-urlencoded
CF-Challenge: 46dafcfd8012e50
Content-Length: 1674
Origin: http://sccbeu3x.cc
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 07 Jun 2024 08:04:45 GMT
Content-Type: text/plain; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
cf-chl-gen: aQ+cJGvZEnHWjCHFn9Wl+MKB7iIvk72wCpnG00119VKmzF270sJsGKSUHbcuyzZM$fpwofS5kgN+uKYzjNSSqAA==
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VtKnvzNIRS0oGn4aqa6ycX%2B65fK5gj0AKPPj%2BT6trW0x06wCZlGta0MpLe6jaDQgEMnydIhdmPovfyyBRMkNUb247Byl8t7Httu2KxmtAqvbUZqXTpvdhuNJA%2FeW%2Fg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 88ff22164f3b6567-AMS
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D

104.17.3.184

61 B

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D
IP
104.17.3.184:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 2 x 2, 8-bit/color RGB, non-interlaced
Size
61 B (61 bytes)
Hash
9246cca8fc3c00f50035f28e9f6b7f7d
3aa538440f70873b574f40cd793060f53ec17a5d
c07d7d29e3c20fa6ca4c5d20663688d52bad13e129ad82ce06b80eb187d9dc84

HTTP Headers

GET /cdn-cgi/challenge-platform/h/b/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/8ewm3/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 07 Jun 2024 08:04:45 GMT
content-type: image/png
content-length: 61
cache-control: max-age=2629800, public
server: cloudflare
cf-ray: 88ff22194e6192bb-CPH
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/turnstile/v0/b/0143bd9ce132/api.js?onload=niyS5&render=explicit

104.17.3.184

15 kB

URL
challenges.cloudflare.com/turnstile/v0/b/0143bd9ce132/api.js?onload=niyS5&render=explicit
IP
104.17.3.184:0
ASN
#13335 CLOUDFLARENET

File type
JavaScript source, ASCII text, with very long lines (42645)
Size
15 kB (14869 bytes)
Hash
f6007cb110ce15c23cfca98e03b6b4eb
92c89977e153e734eea9b216f24b6fed0338a390
501fdae7d28ee240c58efc632f3cab3dd94f59fb94fbf8f149a6269ade5dcf27

HTTP Headers

GET /turnstile/v0/b/0143bd9ce132/api.js?onload=niyS5&render=explicit HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://sccbeu3x.cc
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 07 Jun 2024 08:04:45 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Tue, 04 Jun 2024 14:19:01 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 88ff22160f458f64-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=88ff22180c8592bb

104.17.3.184

72 kB

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=88ff22180c8592bb
IP
104.17.3.184:0
ASN
#13335 CLOUDFLARENET

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
72 kB (71558 bytes)
Hash
ff55aac450f1d61ffc2d4c6224efae0e
9feb635dea9c4c693b9f196e32f6846d3dc55e07
397052d6a17837ae642cd334e32298fd1c5d5240c4a16a023bdadbccf020d76b

HTTP Headers

GET /cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=88ff22180c8592bb HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/8ewm3/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 07 Jun 2024 08:04:45 GMT
content-type: application/javascript; charset=UTF-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
server: cloudflare
cf-ray: 88ff22194e6992bb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/i/88ff22180c8592bb/1717747486016/04FVCo9x3ppjx5J

104.17.3.184

61 B

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/i/88ff22180c8592bb/1717747486016/04FVCo9x3ppjx5J
IP
104.17.3.184:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 21 x 60, 8-bit/color RGB, non-interlaced
Size
61 B (61 bytes)
Hash
f1b3bf08a1e69b27054c3b55d4c53526
765e16fd516a84b7f3cf5553741ac951056b845a
a664011c6a690718ddd0d334a6851ce1c30e245f0c13e74b94f246088b8af734

HTTP Headers

GET /cdn-cgi/challenge-platform/h/b/i/88ff22180c8592bb/1717747486016/04FVCo9x3ppjx5J HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/8ewm3/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 07 Jun 2024 08:04:47 GMT
content-type: image/png
content-length: 61
server: cloudflare
cf-ray: 88ff22269ac592bb-CPH
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1018024300:1717745279:ixPFbiObS4wIPy2vQbMIXtq2jzW7_39hMn9aDLFcsRA/88ff22180c8592bb/8c44030be31f256

104.17.3.184

25 kB

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1018024300:1717745279:ixPFbiObS4wIPy2vQbMIXtq2jzW7_39hMn9aDLFcsRA/88ff22180c8592bb/8c44030be31f256
IP
104.17.3.184:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (22220), with no line terminators
Size
25 kB (24953 bytes)
Hash
cc8bd26f867dd5796da24d1648c84c51
1356a86eeccddb0193bdd4620c6898a29b32b560
06e19991e6733094ed715690b0f91d9bd6033e333fb3393af227c38c32f43bd1

HTTP Headers

POST /cdn-cgi/challenge-platform/h/b/flow/ov1/1018024300:1717745279:ixPFbiObS4wIPy2vQbMIXtq2jzW7_39hMn9aDLFcsRA/88ff22180c8592bb/8c44030be31f256 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/8ewm3/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: 8c44030be31f256
Content-Length: 27611
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 07 Jun 2024 08:04:48 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: UCxt2V0vu+ZCkQKkD+KKX0G/sNk+mt3vIIKAdtpyGawc2xMz33MmGEhlsVyGGiR9$qCFU50B5a2qVRmLHpl1F9A==
server: cloudflare
cf-ray: 88ff222cbafd92bb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

sccbeu3x.cc/cdn-cgi/challenge-platform/h/b/flow/ov1/1312176510:1717745379:R-dFXWEvyKTM2vbyDzyWQQICW3Xoii_6d10KOk6xfI0/88ff2211ac079ff0/46dafcfd8012e50

104.21.24.119

3.3 kB

URL
sccbeu3x.cc/cdn-cgi/challenge-platform/h/b/flow/ov1/1312176510:1717745379:R-dFXWEvyKTM2vbyDzyWQQICW3Xoii_6d10KOk6xfI0/88ff2211ac079ff0/46dafcfd8012e50
IP
104.21.24.119:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (4296), with no line terminators
Size
3.3 kB (3307 bytes)
Hash
79ca7f5bb05443ea7f4fb2984669d05f
e14035e03151399f17a6f4f1dc18a21cc0438cf5
de9a43f6c02ff953e370834a700f0c0b719bc6f393faf2a4303d59c8c110be1f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /cdn-cgi/challenge-platform/h/b/flow/ov1/1312176510:1717745379:R-dFXWEvyKTM2vbyDzyWQQICW3Xoii_6d10KOk6xfI0/88ff2211ac079ff0/46dafcfd8012e50 HTTP/1.1
Host: sccbeu3x.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://sccbeu3x.cc/
Content-type: application/x-www-form-urlencoded
CF-Challenge: 46dafcfd8012e50
Content-Length: 3087
Origin: http://sccbeu3x.cc
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 07 Jun 2024 08:04:54 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
cf-chl-out-s: srwICKQS/2FwkcmL/Lg8ilAuf0ze+nrjrT7Jw6m6psXAztynyztzlcfwNrMpUe4zuXIR3Os1TsUz1L3jlrYeTPF8gS/w/2xEAaqzJFz19qkBJuJgm7dH3CARxDH2dXOmH15OjXkgzVyDm2zU4lh4WP3oN9ZmfEFDYiJcxlfSBvkIv0ABmdAmtvxw6uYGwAkJ/yWibaaxVDsi9rPvSwldhgyVe19nXrXT3NH+RgFmNB6lHjszyVGzxuGV6iNPCgcd92HV1QzcFUswXhAJN3v5v+EM4oWZuA3l3QKgm3SPxRs1HSosTAjSbpEtxopym9xXgnsqRuvf22Rvw1jKZvYIA5VrIP25DbmSEUNdk7NN+vDgUcXppsYp8JM9hYUeptWEdHhAW2VDcHb9QyvFRYm6uLRgbmGNstq8irp5diRC16V5MAF31n+bXSdmkI14AX+R38YhfBjHbWVOLAlhbQLANg==$CXoj6CCgRtyymc36xowDWA==
set-cookie: cf_chl_rc_m=;Expires=Thu, 06 Jun 2024 08:04:54 GMT;SameSite=Strict
cf-chl-out: zBEAqjIiEpVA4k8TTTMo8+oyqvY+HoizIsfWhm6FdF9B8uAux9l6IJPeQopEi+AqDb7AXP82duW3IAhhbzl7EA==$BLhiqTMgHU8LTRlRaWe0ig==
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=v4eC7%2FnpytT0yXNsflOdqJlKSwwmCWxbze60Sb4xVIAjbuBcZwU4%2F96E8yJb4vN7mWQEKKOffy1Z5aVnjndJ1NdvvCpXTIFeMJYB%2BGIE7nYcnotGZ0dGf1342FQB5A%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 88ff22535c506567-AMS
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

sccbeu3x.cc/

104.21.24.119

200 OK

995 B

URL User Request POST HTTP/1.1
sccbeu3x.cc/
IP
104.21.24.119:80
ASN
#13335 CLOUDFLARENET

File type
HTML document, ASCII text, with very long lines (2700), with no line terminators
Size
995 B (995 bytes)
Hash
f6ef86a5127ad41ff986face31a9f21f
43bed9642b550da7c2da26204547ad66902fd4f4
94e2de1c5ce6bc049113fe2a852e43cccc7930819c18b370a9b6797e61181c11

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST / HTTP/1.1
Host: sccbeu3x.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://sccbeu3x.cc/?__cf_chl_tk=m4IkgQ8swa1vP6Ii16DxWAwsVxrSuoOdW3MNIgzVYfQ-1717747484-0.0.1.1-2238
Content-Type: application/x-www-form-urlencoded
Content-Length: 2704
Origin: http://sccbeu3x.cc
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 07 Jun 2024 08:04:55 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_clearance=phCn74fmG00DN6Vz8nXGeJU6npzkbFRsLoJZRJXpnbI-1717747484-1.0.1.1-WOP4Yx5zHrIZdMGJ_GVg76bdKjOzfJxu4TMMdXAPRNNkoKH.xg5qWuwInv5m.kZk2nAx3zlUcjEnaHrALQ0s9A; Path=/; Expires=Sat, 07-Jun-25 08:04:55 GMT; Domain=.sccbeu3x.cc; HttpOnly
Last-Modified: Thu, 06 Jun 2024 14:50:36 GMT
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=33d%2FS1XISDYU%2BMATrySsf7Y%2BVxvaS0l%2F%2FKSLAH1wM%2FornUFBqwQ3mg5%2B01Zx%2F4qFiExIqzVEJgSZjJs3uDg3Ih1bOeojcI1543hNGxB%2FrM48f99Rx7%2BvBseVaoPuxw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 88ff22543d926567-AMS
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

sccbeu3x.cc/js/app.ab5b259b.js

104.21.24.119

200 OK

24 kB

URL GET HTTP/1.1
sccbeu3x.cc/js/app.ab5b259b.js
IP
104.21.24.119:80
ASN
#13335 CLOUDFLARENET

Requested by
http://sccbeu3x.cc/

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
24 kB (24127 bytes)
Hash
fe16039a6b63471034ba007b5bb1f691
84216b509457c2554f52101a2e4b2586237441e3
81d6878d663de675d06994112ddc40b47b1a412eb9514e450191e2e5ddaa6b5d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/app.ab5b259b.js HTTP/1.1
Host: sccbeu3x.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://sccbeu3x.cc/
Cookie: cf_clearance=phCn74fmG00DN6Vz8nXGeJU6npzkbFRsLoJZRJXpnbI-1717747484-1.0.1.1-WOP4Yx5zHrIZdMGJ_GVg76bdKjOzfJxu4TMMdXAPRNNkoKH.xg5qWuwInv5m.kZk2nAx3zlUcjEnaHrALQ0s9A
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 07 Jun 2024 08:04:55 GMT
Content-Type: text/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 06 Jun 2024 14:51:01 GMT
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 343
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=07JL%2Fk3tYSmokv7%2FDKnGY3cXbIBYGElpQKVZYllrpfRBetNIQoW4gFyuBSfV4PkCKeEA5KnRC4%2FN%2B48h9lIeSTKm7UPI5lAb8U3eim35dId%2FnMU%2FT4z70yaZKJu%2FEQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 88ff2255df739719-AMS
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

sccbeu3x.cc/css/chunk-vendors.c57533e1.css

104.21.24.119

200 OK

44 kB

URL GET HTTP/1.1
sccbeu3x.cc/css/chunk-vendors.c57533e1.css
IP
104.21.24.119:80
ASN
#13335 CLOUDFLARENET

Requested by
http://sccbeu3x.cc/

File type
ASCII text, with very long lines (65536), with no line terminators
Size
44 kB (43872 bytes)
Hash
ebfffebc1f62c3be51082e6595a0a005
e278fbd6fd48150b3f366b50ed388983d934978c
f5ce9e73e1f7cea326eedd4f39d9b2d703ba4ccb31a6078cdc1fb16481298a32

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /css/chunk-vendors.c57533e1.css HTTP/1.1
Host: sccbeu3x.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://sccbeu3x.cc/
Cookie: cf_clearance=phCn74fmG00DN6Vz8nXGeJU6npzkbFRsLoJZRJXpnbI-1717747484-1.0.1.1-WOP4Yx5zHrIZdMGJ_GVg76bdKjOzfJxu4TMMdXAPRNNkoKH.xg5qWuwInv5m.kZk2nAx3zlUcjEnaHrALQ0s9A
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 07 Jun 2024 08:04:55 GMT
Content-Type: text/css; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 06 Jun 2024 14:50:36 GMT
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 5594
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IKBrA3UUTfAo1D7JuJ28aMxVtvg1YcIjlTTTeF%2FNAXRNCknXR0fLkN4c81Pg6bZrIwFiVWN0fKRKS%2Bad1EKy76FAPxn4SLhuW4QD7MicXVmJRT5WfS67TrNNjGPIDg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 88ff2255cd6c92fe-CPH
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

sccbeu3x.cc/js/chunk-vendors.ea790e22.js

104.21.24.119

200 OK

272 kB

URL GET HTTP/1.1
sccbeu3x.cc/js/chunk-vendors.ea790e22.js
IP
104.21.24.119:80
ASN
#13335 CLOUDFLARENET

Requested by
http://sccbeu3x.cc/

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (51759)
Size
272 kB (272420 bytes)
Hash
4fee178f809d1b2a829099a8bb91c56c
178b6322fdc40c08fcbda0c096c668855ad49b51
c3580c9951b9554639c1404a246b3f27f818a99240c728f04cb964cd9e50b73d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/chunk-vendors.ea790e22.js HTTP/1.1
Host: sccbeu3x.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://sccbeu3x.cc/
Cookie: cf_clearance=phCn74fmG00DN6Vz8nXGeJU6npzkbFRsLoJZRJXpnbI-1717747484-1.0.1.1-WOP4Yx5zHrIZdMGJ_GVg76bdKjOzfJxu4TMMdXAPRNNkoKH.xg5qWuwInv5m.kZk2nAx3zlUcjEnaHrALQ0s9A
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 07 Jun 2024 08:04:55 GMT
Content-Type: text/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 06 Jun 2024 14:51:10 GMT
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 343
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1fZuAWs8cTs7L9e4Emc%2BAKyQ4o95OTUfjSe7%2BvzxVJ4TJLghvtJkCztOxSz2RWLFBjm%2Bg3ugo1Izwe58ml%2BWyTg%2FKfFUJ2tIDg5%2FC1IdCp3sGccPo%2B0%2FwgloaK2Z0g%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 88ff2255aff96567-AMS
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

sccbeu3x.cc/css/app.776b3a5c.css

104.21.24.119

200 OK

2.5 kB

URL GET HTTP/1.1
sccbeu3x.cc/css/app.776b3a5c.css
IP
104.21.24.119:80
ASN
#13335 CLOUDFLARENET

Requested by
http://sccbeu3x.cc/

File type
ASCII text, with very long lines (14103), with no line terminators
Size
2.5 kB (2494 bytes)
Hash
47ee3b97abd36e4f5056fd0b503d3a62
d29e8f57784f88a9de5d7e90c51a75f2d3b416cd
fbdb9fccfa147c1060aea1f2fb11fb189844fb930186454d195ca7fd02890121

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /css/app.776b3a5c.css HTTP/1.1
Host: sccbeu3x.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://sccbeu3x.cc/
Cookie: cf_clearance=phCn74fmG00DN6Vz8nXGeJU6npzkbFRsLoJZRJXpnbI-1717747484-1.0.1.1-WOP4Yx5zHrIZdMGJ_GVg76bdKjOzfJxu4TMMdXAPRNNkoKH.xg5qWuwInv5m.kZk2nAx3zlUcjEnaHrALQ0s9A
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 07 Jun 2024 08:04:55 GMT
Content-Type: text/css; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 06 Jun 2024 14:50:33 GMT
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 2292
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bQ1f4Bvg9Tl5zl56UYMDle5XyV7SDAqHeCU4daq3v9ydsn4Ea32ME%2FdJlqc%2BftAqfVyNvvRvwnZe5qFbCiqzIZ2l7Xs7Dqv2t%2B5shRTeJz1lRxjhCSJTs3qCJIVWiw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 88ff2255de039ffe-AMS
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

cdn.discordapp.com/attachments/1248274856558985310/1248274980094083104/scute.mp4?ex=6663122b&is=6661c0ab&hm=ef7a24cb854bba102b52ffb02c20ac6938e43069565300a993d8bdd715a85343&

162.159.135.233

231 B

URL
cdn.discordapp.com/attachments/1248274856558985310/1248274980094083104/scute.mp4?ex=6663122b&is=6661c0ab&hm=ef7a24cb854bba102b52ffb02c20ac6938e43069565300a993d8bdd715a85343&
IP
162.159.135.233:0
ASN
#13335 CLOUDFLARENET

File type
XML 1.0 document, ASCII text, with no line terminators
Size
231 B (231 bytes)
Hash
afeae991d8d40480e6bb9e3f4325347b
3768b1b93fc556aab0a9c56f2ad769b79345ee74
59af46e3f7268673c7d6fd357f08fec4e43843b48da938ef42d0956c5fe6afb9

HTTP Headers

GET /attachments/1248274856558985310/1248274980094083104/scute.mp4?ex=6663122b&is=6661c0ab&hm=ef7a24cb854bba102b52ffb02c20ac6938e43069565300a993d8bdd715a85343& HTTP/1.1
Host: cdn.discordapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: http://sccbeu3x.cc/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
date: Fri, 07 Jun 2024 08:04:56 GMT
content-type: application/xml; charset=UTF-8
content-length: 231
cf-ray: 88ff225a1867abce-CPH
cf-cache-status: HIT
accept-ranges: bytes
age: 277
cache-control: public, max-age=31536000
content-disposition: attachment
expires: Sat, 07 Jun 2025 08:04:56 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
x-guploader-uploadid: ABPtcPoaH-iHJoIxqYyEQa9RjoRBD0PVzsGI56hH7zoPXIkOj4R_DdTW3obmMRVLojBxiI0fpjg
x-robots-tag: noindex, nofollow, noarchive, nocache, noimageindex, noodp
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=v3q6LlZCsrLmU458mKuCR1loKChZYkKJcKUfJqgDqfZ%2F%2FW1KUwL8cB5oGg1auWqmK040A%2BnTY7bTe4a6DduEaZrNiK5473v5WD5RwCQrHoWwZRlDdlra9VWWSVPD55MlaPOJuw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
set-cookie: __cf_bm=c9P5B6XqAEatHOh1vt7GxkrGR35mMZ2KHxU5IRQD4Mk-1717747496-1.0.1.1-0STH6fMygrb.OjdqostY.bWuQwaW0l3IZmZUW6eXDETZlLbwOgmhBZT2Bch.jOQ8wShJogfSLjR9o9Iigzip6g; path=/; expires=Fri, 07-Jun-24 08:34:56 GMT; domain=.discordapp.com; HttpOnly; Secure; SameSite=None
_cfuvid=H_Zak1j.XLcV3nwtBXeEWcbHeQ52XCNo1JpQthqk3EA-1717747496055-0.0.1.1-604800000; path=/; domain=.discordapp.com; HttpOnly; Secure; SameSite=None
server: cloudflare
X-Firefox-Spdy: h2

sccbeu3x.cc/getlog

104.21.24.119

500 Internal Server Error

0 B

URL GET HTTP/1.1
sccbeu3x.cc/getlog
IP
104.21.24.119:80
ASN
#13335 CLOUDFLARENET

Requested by
http://sccbeu3x.cc/

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /getlog HTTP/1.1
Host: sccbeu3x.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://sccbeu3x.cc/enter/register
Cookie: cf_clearance=phCn74fmG00DN6Vz8nXGeJU6npzkbFRsLoJZRJXpnbI-1717747484-1.0.1.1-WOP4Yx5zHrIZdMGJ_GVg76bdKjOzfJxu4TMMdXAPRNNkoKH.xg5qWuwInv5m.kZk2nAx3zlUcjEnaHrALQ0s9A; inviteNumber=-1; username=; hasLogin=false; tier=-1; password=; userId=-1; hasGuide=false
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 500 Internal Server Error
Date: Fri, 07 Jun 2024 08:04:56 GMT
Content-Length: 0
Connection: keep-alive
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BNVOYZO3dJvahw9zxi3JCLKhO%2BqGfZ4UKY1QS1KAHbXcXdAedcGtLrXsmN%2FCkEfsKuY6qdllzfNu5DbmhrN4rQrzkq9Km2aE%2BaqjCxXGUbKHUEHuXaIUM2zOlYP7Kw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 88ff22598c716567-AMS
alt-svc: h2=":443"; ma=60

sccbeu3x.cc/img/icons/apple-touch-icon-152x152.png

104.21.24.119

200 OK

4.0 kB

URL GET HTTP/1.1
sccbeu3x.cc/img/icons/apple-touch-icon-152x152.png
IP
104.21.24.119:80
ASN
#13335 CLOUDFLARENET

Requested by
http://sccbeu3x.cc/

File type
PNG image data, 152 x 152, 8-bit/color RGB, non-interlaced
Size
4.0 kB (4046 bytes)
Hash
1a034e64d80905128113e5272a5ab95e
92328e60f63d690f33cd4961b9934a539dc29b82
4d9685d610c4411caadd8d36ce94d3303cf5b05c8e04d67fc232c16a4469a135

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /img/icons/apple-touch-icon-152x152.png HTTP/1.1
Host: sccbeu3x.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://sccbeu3x.cc/
Cookie: cf_clearance=phCn74fmG00DN6Vz8nXGeJU6npzkbFRsLoJZRJXpnbI-1717747484-1.0.1.1-WOP4Yx5zHrIZdMGJ_GVg76bdKjOzfJxu4TMMdXAPRNNkoKH.xg5qWuwInv5m.kZk2nAx3zlUcjEnaHrALQ0s9A; inviteNumber=-1; username=; hasLogin=false; tier=-1; password=; userId=-1; hasGuide=false
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 07 Jun 2024 08:04:56 GMT
Content-Type: image/png
Content-Length: 4046
Connection: keep-alive
Last-Modified: Thu, 06 Jun 2024 14:50:37 GMT
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 1480
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lJkVMhIKmQyMky1Zplz2VYz1vFjwa7x8Pgjkuaa%2B2nx3yFBxI7scRO%2Fg24xpcaQGxvErd52q11TdHfpXMuIGtWsIqWoLPwLuA%2FMrPkmrrnOAU6Nlqt1p4u%2Fp8lmRLg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 88ff225b9f0e6567-AMS
alt-svc: h2=":443"; ma=60

sccbeu3x.cc/socket.io/?EIO=3&transport=websocket

172.67.218.130

0 B

URL
sccbeu3x.cc/socket.io/?EIO=3&transport=websocket
IP
172.67.218.130:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /socket.io/?EIO=3&transport=websocket HTTP/1.1
Host: sccbeu3x.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: http://sccbeu3x.cc
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: jEC2doOQJ/YpbIaWJZOlQg==
DNT: 1
Connection: keep-alive, Upgrade
Cookie: cf_clearance=phCn74fmG00DN6Vz8nXGeJU6npzkbFRsLoJZRJXpnbI-1717747484-1.0.1.1-WOP4Yx5zHrIZdMGJ_GVg76bdKjOzfJxu4TMMdXAPRNNkoKH.xg5qWuwInv5m.kZk2nAx3zlUcjEnaHrALQ0s9A; inviteNumber=-1; username=; hasLogin=false; tier=-1; password=; userId=-1; hasGuide=false
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Date: Fri, 07 Jun 2024 08:04:56 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: J4bFdB7hY/87B4BbZnYcix4XEso=
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=u8vHXB6y1T7AWKzM0%2ByqDxh29n0sbJsgvzwDWW6ETA%2FAD1qwgLHJ0QN3yIpz7MSDnJ2Fje0LPQDSRjg1uwzDODS6qmGrmoTPXnw5xrfcFP2VkmL32p%2BzfmKGQb6HHg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 88ff225aadf41c95-AMS
alt-svc: h3=":443"; ma=86400

sccbeu3x.cc/img/icons/favicon.svg

104.21.24.119

200 OK

988 B

URL GET HTTP/1.1
sccbeu3x.cc/img/icons/favicon.svg
IP
104.21.24.119:80
ASN
#13335 CLOUDFLARENET

Requested by
http://sccbeu3x.cc/

File type
HTML document, ASCII text, with very long lines (2700), with no line terminators
Size
988 B (988 bytes)
Hash
f6ef86a5127ad41ff986face31a9f21f
43bed9642b550da7c2da26204547ad66902fd4f4
94e2de1c5ce6bc049113fe2a852e43cccc7930819c18b370a9b6797e61181c11

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /img/icons/favicon.svg HTTP/1.1
Host: sccbeu3x.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://sccbeu3x.cc/
Cookie: cf_clearance=phCn74fmG00DN6Vz8nXGeJU6npzkbFRsLoJZRJXpnbI-1717747484-1.0.1.1-WOP4Yx5zHrIZdMGJ_GVg76bdKjOzfJxu4TMMdXAPRNNkoKH.xg5qWuwInv5m.kZk2nAx3zlUcjEnaHrALQ0s9A; inviteNumber=-1; username=; hasLogin=false; tier=-1; password=; userId=-1; hasGuide=false
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 07 Jun 2024 08:04:56 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Last-Modified: Fri, 07 Jun 2024 05:39:06 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2Su5%2BJMTAwZ3BJzhshvshV%2BbPIjNMnQtTbUQEfGx7yrWRDqpb%2FTCp2bQyS5EEshdhoR%2FQs5jp9x%2BHg65YOjCVs891ZXGIKhsZL%2B%2FBCRO1E5p6gd9FszTwQUt7jBpdQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 88ff225b8cc092fe-CPH
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1018024300:1717745279:ixPFbiObS4wIPy2vQbMIXtq2jzW7_39hMn9aDLFcsRA/88ff22180c8592bb/8c44030be31f256

104.17.3.184

18 kB

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1018024300:1717745279:ixPFbiObS4wIPy2vQbMIXtq2jzW7_39hMn9aDLFcsRA/88ff22180c8592bb/8c44030be31f256
IP
104.17.3.184:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (3488), with no line terminators
Size
18 kB (17635 bytes)
Hash
665ac5c333868805192a5fdab578d290
c276acdde1f286a5fad53e22f208a26b5e70e07f
188218fe38104064e010c25e2461a505e17832118dd4a0b51c20a399b4ede3da

HTTP Headers

POST /cdn-cgi/challenge-platform/h/b/flow/ov1/1018024300:1717745279:ixPFbiObS4wIPy2vQbMIXtq2jzW7_39hMn9aDLFcsRA/88ff22180c8592bb/8c44030be31f256 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/8ewm3/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: 8c44030be31f256
Content-Length: 40252
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 07 Jun 2024 08:04:54 GMT
content-type: text/html; charset=UTF-8
cf-chl-out-s: 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$Cy3jHYbId5ySms+kh0HByQ==
cf-chl-out: vqcP9RWpUNTWXIPDBPc4prT4WHwufxuO/ExGrStIyJgFSqJG4O4Sh/mttsb+PuqwYkUORmRYtsEbT8pc0ZaTpD1b1k1Bp5o+UMF48mBldAylk7NrfqpU/Prj6J5epeCV$6G+BlU4dsT48w8fBrwQgwQ==
server: cloudflare
cf-ray: 88ff22524c2892bb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

ocsp.sectigochina.com/

104.18.38.66

472 B

URL
ocsp.sectigochina.com/
IP
104.18.38.66:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
886f69fc31139c46b5fd1a76502c9f51
c429946348de84bb45d4e092c1f8b71bca4192c2
f28272eaa2d3db536f68cb3a136cbd9082ea5c62e13b0829cd109ccd386cd06e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigochina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 07 Jun 2024 08:04:57 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 05 Jun 2024 12:42:44 GMT
Expires: Wed, 12 Jun 2024 12:42:43 GMT
Etag: "c429946348de84bb45d4e092c1f8b71bca4192c2"
Cache-Control: max-age=449100,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 88ff22623f1192f7-CPH

b.yzcdn.cn/vant/icon-demo-1126.png

154.85.69.57

200 OK

8.9 kB

URL GET HTTP/2
b.yzcdn.cn/vant/icon-demo-1126.png
IP
154.85.69.57:443
ASN
#139057 LEGEND DYNASTY PTE. LTD.

Requested by
http://sccbeu3x.cc/
Certificate
IssuersslTrus
Subject*.yzcdn.cn
Fingerprint6A:A8:BA:7C:D4:B4:86:0B:74:EB:E6:19:C8:69:2E:8B:13:6C:1E:1B
ValidityThu, 09 Nov 2023 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type
PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced
Size
8.9 kB (8886 bytes)
Hash
f87c46f346a5548224ccbe0b6bd75df5
8e8b8bd4ba3e6b6c8557d94a726061fdd62492fd
b6304eb9b754d38d3ad74d0acce42c156536840351368ed3e4895a6b50cd9370

HTTP Headers

GET /vant/icon-demo-1126.png HTTP/1.1
Host: b.yzcdn.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://sccbeu3x.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 07 Jun 2024 08:04:57 GMT
content-type: image/png
content-length: 8886
server: openresty
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: X-Log, X-Reqid
access-control-max-age: 2592000
cache-control: public, max-age=2592000
content-disposition: inline; filename="icon-demo-1126.png"; filename*=utf-8''icon-demo-1126.png
content-md5: +HxG80alVIIkzL4La9dd9Q==
content-transfer-encoding: binary
etag: "Fo6Li9S6PmtshVfZSnJgYf3WJJL9"
last-modified: Mon, 26 Nov 2018 11:08:05 GMT
x-reqid: YyIAAAASg9geDiAX
x-svr: IO
x-qiniu-zone: 0
x-log: X-Log
x-ser: BC5_dx-lt-yd-zhejiang-huzhou-3-cache-7, BC165_lt-obgp-fujian-xiamen-33-cache-1, BC132_IT-Lombardia-Milan-1-cache-1, BC46_DE-Frankfurt-Frankfurt-11-cache-4
x-cache: HIT from BC46_DE-Frankfurt-Frankfurt-11-cache-4(baishan)
X-Firefox-Spdy: h2

cdn.discordapp.com/attachments/1248274856558985310/1248274980094083104/scute.mp4?ex=6663122b&is=6661c0ab&hm=ef7a24cb854bba102b52ffb02c20ac6938e43069565300a993d8bdd715a85343&

162.159.135.233

404 Not Found

0 B

URL GET HTTP/2
cdn.discordapp.com/attachments/1248274856558985310/1248274980094083104/scute.mp4?ex=6663122b&is=6661c0ab&hm=ef7a24cb854bba102b52ffb02c20ac6938e43069565300a993d8bdd715a85343&
IP
162.159.135.233:443
ASN
#13335 CLOUDFLARENET

Requested by
http://sccbeu3x.cc/
Certificate
IssuerCloudflare, Inc.
Subjectdiscordapp.com
Fingerprint97:8B:EE:AD:1E:BF:A1:69:E7:94:29:F7:55:7A:29:64:19:C7:81:39
ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /attachments/1248274856558985310/1248274980094083104/scute.mp4?ex=6663122b&is=6661c0ab&hm=ef7a24cb854bba102b52ffb02c20ac6938e43069565300a993d8bdd715a85343& HTTP/1.1
Host: cdn.discordapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: http://sccbeu3x.cc/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
date: Fri, 07 Jun 2024 08:04:56 GMT
content-type: application/xml; charset=UTF-8
content-length: 231
cf-ray: 88ff225a1867abce-CPH
cf-cache-status: HIT
accept-ranges: bytes
age: 277
cache-control: public, max-age=31536000
content-disposition: attachment
expires: Sat, 07 Jun 2025 08:04:56 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
x-guploader-uploadid: ABPtcPoaH-iHJoIxqYyEQa9RjoRBD0PVzsGI56hH7zoPXIkOj4R_DdTW3obmMRVLojBxiI0fpjg
x-robots-tag: noindex, nofollow, noarchive, nocache, noimageindex, noodp
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=v3q6LlZCsrLmU458mKuCR1loKChZYkKJcKUfJqgDqfZ%2F%2FW1KUwL8cB5oGg1auWqmK040A%2BnTY7bTe4a6DduEaZrNiK5473v5WD5RwCQrHoWwZRlDdlra9VWWSVPD55MlaPOJuw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
set-cookie: __cf_bm=c9P5B6XqAEatHOh1vt7GxkrGR35mMZ2KHxU5IRQD4Mk-1717747496-1.0.1.1-0STH6fMygrb.OjdqostY.bWuQwaW0l3IZmZUW6eXDETZlLbwOgmhBZT2Bch.jOQ8wShJogfSLjR9o9Iigzip6g; path=/; expires=Fri, 07-Jun-24 08:34:56 GMT; domain=.discordapp.com; HttpOnly; Secure; SameSite=None
_cfuvid=H_Zak1j.XLcV3nwtBXeEWcbHeQ52XCNo1JpQthqk3EA-1717747496055-0.0.1.1-604800000; path=/; domain=.discordapp.com; HttpOnly; Secure; SameSite=None
server: cloudflare
X-Firefox-Spdy: h2

sccbeu3x.cc/socket.io/?EIO=3&transport=websocket

172.67.218.130

101 Switching Protocols

0 B

URL GET HTTP/1.1
sccbeu3x.cc/socket.io/?EIO=3&transport=websocket
IP
172.67.218.130:443
ASN
#13335 CLOUDFLARENET

Requested by
http://sccbeu3x.cc/
Certificate
IssuerLet's Encrypt
Subjectsccbeu3x.cc
Fingerprint59:68:7C:E4:71:C6:FB:9C:0C:E0:F9:23:93:85:84:AA:64:C3:C6:F4
ValidityWed, 05 Jun 2024 16:40:14 GMT - Tue, 03 Sep 2024 16:40:13 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /socket.io/?EIO=3&transport=websocket HTTP/1.1
Host: sccbeu3x.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: http://sccbeu3x.cc
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: jEC2doOQJ/YpbIaWJZOlQg==
DNT: 1
Connection: keep-alive, Upgrade
Cookie: cf_clearance=phCn74fmG00DN6Vz8nXGeJU6npzkbFRsLoJZRJXpnbI-1717747484-1.0.1.1-WOP4Yx5zHrIZdMGJ_GVg76bdKjOzfJxu4TMMdXAPRNNkoKH.xg5qWuwInv5m.kZk2nAx3zlUcjEnaHrALQ0s9A; inviteNumber=-1; username=; hasLogin=false; tier=-1; password=; userId=-1; hasGuide=false
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Date: Fri, 07 Jun 2024 08:04:56 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: J4bFdB7hY/87B4BbZnYcix4XEso=
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=u8vHXB6y1T7AWKzM0%2ByqDxh29n0sbJsgvzwDWW6ETA%2FAD1qwgLHJ0QN3yIpz7MSDnJ2Fje0LPQDSRjg1uwzDODS6qmGrmoTPXnw5xrfcFP2VkmL32p%2BzfmKGQb6HHg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 88ff225aadf41c95-AMS
alt-svc: h3=":443"; ma=86400

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (36)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations