| ocsp.pki.goog/gts1c3 |  142.250.74.131 | | 472 B |
IP142.250.74.131:0
Hash41483292d1f8a265ad1f7f492a9c43c4 eac272ce2a84c22e86cbb319b49d99bfa21d7368 93d68da78e82235ff3c7d6e3f6e34427dad51d1e0220551cf53ca818e2f54a81
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 01 Sep 2023 12:09:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ajax.googleapis.com/ajax/libs/jquery/3.3.1/jquery.min.js | 216.58.211.10 | 200 OK | 30 kB |
URL GET HTTP/2ajax.googleapis.com/ajax/libs/jquery/3.3.1/jquery.min.js IP216.58.211.10:443
CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint94:C0:54:E4:BA:6C:E0:93:C6:8F:D9:27:1C:74:6F:E8:CE:6E:E2:BA ValidityMon, 07 Aug 2023 12:21:56 GMT - Mon, 30 Oct 2023 12:21:55 GMT
File typeASCII text, with very long lines (65451) Hasha09e13ee94d51c524b7e2a728c7d4039 0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae 160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef
GET /ajax/libs/jquery/3.3.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://aavagroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30399
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Aug 2023 12:09:26 GMT
expires: Tue, 27 Aug 2024 12:09:26 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 345587
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | | 472 B |
IP142.250.74.131:0
Hash41483292d1f8a265ad1f7f492a9c43c4 eac272ce2a84c22e86cbb319b49d99bfa21d7368 93d68da78e82235ff3c7d6e3f6e34427dad51d1e0220551cf53ca818e2f54a81
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 01 Sep 2023 12:09:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| aavagroup.com/c2a553c9e3f8c0dfbd08fae8b518289a880f634d.png | 172.67.170.249 | 200 OK | 17 kB |
URL GET HTTP/3aavagroup.com/c2a553c9e3f8c0dfbd08fae8b518289a880f634d.png IP172.67.170.249:443
CertificateIssuerLet's Encrypt Subjectaavagroup.com FingerprintB5:D8:27:D3:49:35:DF:97:19:53:6B:4B:4B:EC:65:F5:A8:12:57:25 ValidityWed, 30 Aug 2023 20:21:23 GMT - Tue, 28 Nov 2023 20:21:22 GMT
File typePNG image data, 128 x 128, 8-bit colormap, non-interlaced\012- data Hash39d295b5d5bfe8f8d93f21dc6a721320 c2a553c9e3f8c0dfbd08fae8b518289a880f634d d2b2d502741fc06f3cc54af8547ac0d5c30d086080e33fda6d62bf3e86ec6746
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | Crypto/Wallet |
GET /c2a553c9e3f8c0dfbd08fae8b518289a880f634d.png HTTP/1.1
Host: aavagroup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://aavagroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 01 Sep 2023 12:09:13 GMT
content-type: image/png
content-length: 16616
last-modified: Wed, 16 Aug 2023 19:08:12 GMT
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KaLQPGg6KZ4bOdyO%2FtlHrWph9ryNrXyRrU7FmFGhnPmL9jSW2gFxY5epTzP1rOGAwC8K2lalX5HjnKUw8eDyeJp%2Boi079CCgsec%2FScoRj45klkAOxqGfjsZ5X8YdOR7%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ffd6733cff0569c-OSL
alt-svc: h3=":443"; ma=86400
|
|
| aavagroup.com/Inter-Medium.dc792b50.woff2 | 172.67.170.249 | 200 OK | 106 kB |
URL GET HTTP/3aavagroup.com/Inter-Medium.dc792b50.woff2 IP172.67.170.249:443
CertificateIssuerLet's Encrypt Subjectaavagroup.com FingerprintB5:D8:27:D3:49:35:DF:97:19:53:6B:4B:4B:EC:65:F5:A8:12:57:25 ValidityWed, 30 Aug 2023 20:21:23 GMT - Tue, 28 Nov 2023 20:21:22 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 105924, version 1.0\012- data Size106 kB (105924 bytes) Hash75db5319e7e87c587019a5df08d7272c 92b30527304b5dc80f45e997e0b1ac4c70110a18 1b498b959e5b7decbf9185803591d25bc1fbf83e798372ed30d32d5c79d82ff6
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | Crypto/Wallet |
GET /Inter-Medium.dc792b50.woff2 HTTP/1.1
Host: aavagroup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://aavagroup.com/0da2d62e1a58e826.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 01 Sep 2023 12:09:14 GMT
content-type: font/woff2
content-length: 105924
last-modified: Wed, 16 Aug 2023 19:08:14 GMT
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=80UeqGj8Wuam6xCC3%2BaO5tO5NGaSNL7FysI0JGxHgsY60V%2FiUYY4PDWKlVnCnO11rSB7Z0IqdcGaubZHeixg11CyL4krRj3IOXrL%2BY6EVInkkUQF3zTTV5VPIPS6rawV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ffd67376a7f569c-OSL
alt-svc: h3=":443"; ma=86400
|
|
| aavagroup.com/Inter-Bold.579e0f95.woff2 | 172.67.170.249 | 200 OK | 106 kB |
URL GET HTTP/3aavagroup.com/Inter-Bold.579e0f95.woff2 IP172.67.170.249:443
CertificateIssuerLet's Encrypt Subjectaavagroup.com FingerprintB5:D8:27:D3:49:35:DF:97:19:53:6B:4B:4B:EC:65:F5:A8:12:57:25 ValidityWed, 30 Aug 2023 20:21:23 GMT - Tue, 28 Nov 2023 20:21:22 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 106140, version 1.0\012- data Size106 kB (106140 bytes) Hash444a7284663a3bc886683eb81450b294 1e94a0dfac8bab0947ea9b0b6fb663ebad5cceb5 c63158babcb7902203ed73476ccf901db34825ea524d4a36a52b5e5f97e1abf7
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | Crypto/Wallet |
GET /Inter-Bold.579e0f95.woff2 HTTP/1.1
Host: aavagroup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://aavagroup.com/0da2d62e1a58e826.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 01 Sep 2023 12:09:14 GMT
content-type: font/woff2
content-length: 106140
last-modified: Wed, 16 Aug 2023 19:08:14 GMT
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UBN2i%2Fvm7QE9ieU%2FFpiKKTZXGxUqJ21u2RWhp6tVicsiSH%2F2Hg4IjAwjbrGY4eudc93d3o2KFtxSu4Q4GYs1s1CGDgOeKo%2BNF%2BxRAcuFu5CEFfwtmuWAqmhaMrLBYTOZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ffd67376a81569c-OSL
alt-svc: h3=":443"; ma=86400
|
|
| aavagroup.com/Inter-Regular.f1f0c35b.woff2 | 172.67.170.249 | 200 OK | 99 kB |
URL GET HTTP/3aavagroup.com/Inter-Regular.f1f0c35b.woff2 IP172.67.170.249:443
CertificateIssuerLet's Encrypt Subjectaavagroup.com FingerprintB5:D8:27:D3:49:35:DF:97:19:53:6B:4B:4B:EC:65:F5:A8:12:57:25 ValidityWed, 30 Aug 2023 20:21:23 GMT - Tue, 28 Nov 2023 20:21:22 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 98868, version 1.0\012- data Hashdc131113894217b5031000575d9de002 f96348260751ea78b1d23e9557db297290bdaf28 d612f1212b452af07f1a5defb2b672e76a91f7139e7499fa48bb9b2b985c22d6
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | Crypto/Wallet |
GET /Inter-Regular.f1f0c35b.woff2 HTTP/1.1
Host: aavagroup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://aavagroup.com/0da2d62e1a58e826.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 01 Sep 2023 12:09:14 GMT
content-type: font/woff2
content-length: 98868
last-modified: Wed, 16 Aug 2023 19:08:16 GMT
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=irZ9Bmjtaen4qEya%2B49XN2NzP%2BxNOqX91sPpWAC7HSgvgq90B5lfJceXlimJU5FDQLMo1zvlFIXX5tlG95uRwfRp%2BoTEUS%2Fuv9Vi6PjpyhTDsAS2xafPZZVD50JxdVqP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ffd67375a7d569c-OSL
alt-svc: h3=":443"; ma=86400
|
|
| aavagroup.com/Inter-SemiBold.fcb100c7.woff2 | 172.67.170.249 | 200 OK | 106 kB |
URL GET HTTP/3aavagroup.com/Inter-SemiBold.fcb100c7.woff2 IP172.67.170.249:443
CertificateIssuerLet's Encrypt Subjectaavagroup.com FingerprintB5:D8:27:D3:49:35:DF:97:19:53:6B:4B:4B:EC:65:F5:A8:12:57:25 ValidityWed, 30 Aug 2023 20:21:23 GMT - Tue, 28 Nov 2023 20:21:22 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 105804, version 1.0\012- data Size106 kB (105804 bytes) Hash007ad31a53f4ab3f58ee74f2308482ce dfa9f8f3d79bf8a0001fe72eeadad0490cba59cc 152261291c938aa5aad6a56d52b47ffcb893d1c0387e76d7f270a7382ff786d5
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | Crypto/Wallet |
GET /Inter-SemiBold.fcb100c7.woff2 HTTP/1.1
Host: aavagroup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://aavagroup.com/0da2d62e1a58e826.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 01 Sep 2023 12:09:14 GMT
content-type: font/woff2
content-length: 105804
last-modified: Wed, 16 Aug 2023 19:08:14 GMT
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=alGUHlYP%2F6DKgkE1Q1ma0Yo%2Bu142WDKTaSrApKIpxRUEA0ktMwOg8fsSem8X2FkPGXe2cMjST1dzJZnXpysx9aGFRYbIrcOGI7umbyNEhcDUgPWvKWIAmbOeARsLyMgb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ffd67376a84569c-OSL
alt-svc: h3=":443"; ma=86400
|
|
| aavagroup.com/es.svg | 172.67.170.249 | 200 OK | 54 kB |
IP172.67.170.249:443
CertificateIssuerLet's Encrypt Subjectaavagroup.com FingerprintB5:D8:27:D3:49:35:DF:97:19:53:6B:4B:4B:EC:65:F5:A8:12:57:25 ValidityWed, 30 Aug 2023 20:21:23 GMT - Tue, 28 Nov 2023 20:21:22 GMT
File typeSVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (65536), with no line terminators Hash37ec3238ee9d47f7f0bfade3868709e3 d215c949078205b0cd56ab51cb519affb98f3d13 222b4ff6d02318e891a67e42e635897578f703c87f958c4c1d64fdb45d5550c5
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | Crypto/Wallet |
GET /es.svg HTTP/1.1
Host: aavagroup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://aavagroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 01 Sep 2023 12:09:13 GMT
content-type: image/svg+xml
last-modified: Wed, 16 Aug 2023 19:08:16 GMT
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8aeqoHdpAdtsUjkEprq0ff9cQ3aU11M9Qb6dL1KfLCO%2FOt%2BBw%2By6UH1Ets9qMA5RN0UWA5KgEUb9R8qmlVn7CtUqYExSPTaXHZomktJUJxyN8UbtCFr%2B04J6HpWkLcFr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ffd6733dff2569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| min-api.cryptocompare.com/data/pricemulti?fsyms=ETH,BNB,MATIC,AVAX,ARB,FTM,OP&tsyms=USD |  20.76.68.7 | 200 OK | 111 B |
URL GET HTTP/1.1min-api.cryptocompare.com/data/pricemulti?fsyms=ETH,BNB,MATIC,AVAX,ARB,FTM,OP&tsyms=USD IP20.76.68.7:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
CertificateIssuerGoDaddy.com, Inc. Subject*.cryptocompare.com FingerprintFD:5B:28:EA:D8:BA:05:91:57:A1:4C:D4:B5:35:2A:1B:65:6B:4F:55 ValidityMon, 24 Apr 2023 12:02:27 GMT - Sat, 25 May 2024 12:02:27 GMT
File typeJSON data\012- , ASCII text, with no line terminators Hash5016260c8dd253198e5839d5ddb38ed7 0ba1c9fe24b249a09e7079c0d9bf00a074ee3268 fea1b85734fd31a4d806386bdee8cbe6b8a10b0016694a79b3b1d0af5e365912
GET /data/pricemulti?fsyms=ETH,BNB,MATIC,AVAX,ARB,FTM,OP&tsyms=USD HTTP/1.1
Host: min-api.cryptocompare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://aavagroup.com/
Origin: https://aavagroup.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 01 Sep 2023 12:09:14 GMT
Content-Type: application/json; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Security-Policy: frame-ancestors 'none'
Access-Control-Allow-Origin: https://aavagroup.com
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: Content-Type, Cookie, Set-Cookie, Authorization
Access-Control-Allow-Credentials: true
Cache-Control: public, max-age=10
X-CryptoCompare-Cache-HIT: false
X-CryptoCompare-Server-Id: cc-api-min-22
Content-Encoding: gzip
|
|
| app.aave.com/aave_icon180.png |  188.114.96.1 | 200 OK | 26 kB |
URL GET HTTP/2app.aave.com/aave_icon180.png IP188.114.96.1:443
CertificateIssuerLet's Encrypt Subjectaave.com FingerprintFE:58:F2:26:46:24:94:66:FC:E7:D7:8F:F7:83:D5:DB:D6:0F:DC:38 ValidityThu, 27 Jul 2023 09:38:18 GMT - Wed, 25 Oct 2023 09:38:17 GMT
File typePNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data Hash23abd5da83a81fa9eb300a30118e3efe 6d070af7f34a3966b401cc5613f85acc7e0ec354 6106d3cebea0dc2324832cc5a8721f06b369998f50c10778ada9c777023b85b9
GET /aave_icon180.png HTTP/1.1
Host: app.aave.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://aavagroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 01 Sep 2023 12:09:15 GMT
content-type: image/png
content-length: 26138
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
etag: "bafkreidba3j45pva3qrsjazmywuhehygwnuztd2qyedxrlnjy53qeo4fxe"
last-modified: Tue, 09 May 2023 23:30:11 GMT
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-ipfs-path: /ipns/app.aave.com/aave_icon180.png
x-ipfs-roots: bafybeib3wcwapnkui72irj4tsmquhb6teorddqezxoewo2mf4ux3xtfhoy,bafkreidba3j45pva3qrsjazmywuhehygwnuztd2qyedxrlnjy53qeo4fxe
x-xss-protection: 0
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=1800
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=y7%2FaD%2FR5wnb85o6L7qIhoS3aCJnDyvabZqL8DIUSyBP1WbCxBY7b8%2FQARby4bXxS%2BxH0sQcCoVMI46i52EErSlKlyU9TCL%2FKRv%2F47BJ0D2BU7Icn5tzzeg3kG5VeJzE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ffd673d5c875699-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | | 471 B |
IP142.250.74.131:0
Hashe6873053727ca509f47815bd5bc1fa4a 622cab3f24ff554269489dbfb5a82e5128085612 cad98f00b52e5e0460db47c42fcc828c896fc83c20771e9ca5e0d61e750f9ee0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 01 Sep 2023 12:09:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | | 471 B |
IP142.250.74.131:0
Hashe6873053727ca509f47815bd5bc1fa4a 622cab3f24ff554269489dbfb5a82e5128085612 cad98f00b52e5e0460db47c42fcc828c896fc83c20771e9ca5e0d61e750f9ee0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 01 Sep 2023 12:09:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| aavagroup.com/el.svg | 172.67.170.249 | 200 OK | 38 kB |
IP172.67.170.249:443
CertificateIssuerLet's Encrypt Subjectaavagroup.com FingerprintB5:D8:27:D3:49:35:DF:97:19:53:6B:4B:4B:EC:65:F5:A8:12:57:25 ValidityWed, 30 Aug 2023 20:21:23 GMT - Tue, 28 Nov 2023 20:21:22 GMT
File typeSVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (448) Hash1f4b4f940aca49012d8d6d27ec05eeb7 08207179bcafd60964874a09b6428c8915aeb76d e0c660872d4ff92f71591408db5be729e4e863907ce6906be0a794a83660fec8
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | Crypto/Wallet |
GET /el.svg HTTP/1.1
Host: aavagroup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://aavagroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 01 Sep 2023 12:09:13 GMT
content-type: image/svg+xml
last-modified: Wed, 16 Aug 2023 19:08:16 GMT
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IRnDgn78yxn6JryBVCSeV9chAHlReoP5DNRPdazEBZSbH7bmxoJTogawOWXnRzwhcH09meGddBOcW%2FU8sNPSTX%2FSJJtBSHStOCNiVQZHB6QI4bEbZKdxzaND1tJDkc%2BJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ffd6733dff6569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fonts.gstatic.com/s/inter/v12/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 | 142.250.74.131 | 200 OK | 38 kB |
URL GET HTTP/2fonts.gstatic.com/s/inter/v12/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 IP142.250.74.131:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint1B:14:11:9F:49:14:C3:A3:7C:87:B0:E1:5B:18:75:10:3D:2A:B3:72 ValidityMon, 07 Aug 2023 12:21:56 GMT - Mon, 30 Oct 2023 12:21:55 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 37924, version 1.0\012- data Hashe08be6d5d433944f7ad52902e4d24db5 e2600c1d60d12d397b3ee44411a021231d71e974 450f3ba4e47ee174bd9692b396f264b907d37d2528f53911760f3d0edb785f7e
GET /s/inter/v12/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://aavagroup.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 37924
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 25 Aug 2023 19:49:27 GMT
expires: Sat, 24 Aug 2024 19:49:27 GMT
cache-control: public, max-age=31536000
age: 577188
last-modified: Mon, 11 Jul 2022 20:54:46 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | | 471 B |
IP142.250.74.131:0
Hashe6873053727ca509f47815bd5bc1fa4a 622cab3f24ff554269489dbfb5a82e5128085612 cad98f00b52e5e0460db47c42fcc828c896fc83c20771e9ca5e0d61e750f9ee0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 01 Sep 2023 12:09:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| aavagroup.com/assets/web3-provider/web3-alert.js | 172.67.170.249 | 200 OK | 145 kB |
URL GET HTTP/3aavagroup.com/assets/web3-provider/web3-alert.js IP172.67.170.249:443
CertificateIssuerLet's Encrypt Subjectaavagroup.com FingerprintB5:D8:27:D3:49:35:DF:97:19:53:6B:4B:4B:EC:65:F5:A8:12:57:25 ValidityWed, 30 Aug 2023 20:21:23 GMT - Tue, 28 Nov 2023 20:21:22 GMT
Size145 kB (145398 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | Crypto/Wallet |
GET /assets/web3-provider/web3-alert.js HTTP/1.1
Host: aavagroup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://aavagroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 01 Sep 2023 12:09:13 GMT
content-type: application/javascript
last-modified: Mon, 10 Jul 2023 16:07:46 GMT
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ugAEsC5ZrcT0QXH4pqU3w2h6NGumCF8Gu%2F52rhflx%2FixH%2B13vX973c3G5B5Yx6i6nGPTMwEGZHnkaJturaUouPwKBlJMqXqKCfByr%2BATorEFxy%2BuPmCo4AOwC6EOtXdd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ffd6733e807569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| aavagroup.com/assets/web3-modal/images/TW.svg | 172.67.170.249 | 200 OK | 2.7 kB |
URL GET HTTP/3aavagroup.com/assets/web3-modal/images/TW.svg IP172.67.170.249:443
CertificateIssuerLet's Encrypt Subjectaavagroup.com FingerprintB5:D8:27:D3:49:35:DF:97:19:53:6B:4B:4B:EC:65:F5:A8:12:57:25 ValidityWed, 30 Aug 2023 20:21:23 GMT - Tue, 28 Nov 2023 20:21:22 GMT
File typeSVG Scalable Vector Graphics image\012- XML document, ASCII text, with very long lines (2687), with no line terminators Hash64ced96c4a07e9e61e43f3b548f77d18 7ba6c3b5277512e1b21ddc16c84564fc1c9ab29a 9d00ae5a1db309b9887012e16cf19dda11b5510bf30a19afcd14f554c02d94db
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | Crypto/Wallet |
GET /assets/web3-modal/images/TW.svg HTTP/1.1
Host: aavagroup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://aavagroup.com/
Cookie: cf_clearance=d4FmKgP.sISPdaZkBPI3eauZkbcfsc.AyBa3rXebucw-1693570155-0-1-69b0ef05.6b0d8b6b.438cce4a-0.2.1693570155
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 01 Sep 2023 12:09:15 GMT
content-type: image/svg+xml
last-modified: Mon, 10 Jul 2023 16:07:46 GMT
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=A5U2IKZslxUL7zZNcaSRFHQY7%2BLWWh%2BCZWGOSOP4Kjyb2cr3HcoriePKhdZWG0lZRWCZkUVhMF0hm4w5iEPDpRvA3pgPojGj4HgHQd7d5F8FBbI%2BsmHvOy%2BR7GtovXDw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ffd673ee908569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| aavagroup.com/cdn-cgi/challenge-platform/h/b/scripts/jsd/be88c2a1/main.js | 172.67.170.249 | 200 OK | 7.5 kB |
URL GET HTTP/3aavagroup.com/cdn-cgi/challenge-platform/h/b/scripts/jsd/be88c2a1/main.js IP172.67.170.249:443
CertificateIssuerLet's Encrypt Subjectaavagroup.com FingerprintB5:D8:27:D3:49:35:DF:97:19:53:6B:4B:4B:EC:65:F5:A8:12:57:25 ValidityWed, 30 Aug 2023 20:21:23 GMT - Tue, 28 Nov 2023 20:21:22 GMT
File typeASCII text, with very long lines (7474), with no line terminators Hashddcbedbb3bb307d8f2245ca77a6098fa c331e7932c885ffef4c2778f46953550fa5f3b69 7a334af65c5beea65fa198f0cbc05e3a957c3ce556ca5e8166864768040c59df
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | Crypto/Wallet |
GET /cdn-cgi/challenge-platform/h/b/scripts/jsd/be88c2a1/main.js HTTP/1.1
Host: aavagroup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 01 Sep 2023 12:09:14 GMT
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
vary: accept-encoding
cache-control: max-age=14400, public
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mbtG2yqsSJtLf8JeU6B7ReKRjUApPR2EVCTfac6nkvjYT%2BZ3RGkLScP9wBFsWkDrvXrjJs8fUC3Vktd9A00Fi7ODDlvbk8CCphLSgNLfc%2FcRKfDMJlup8EmYGGdfJ%2BuO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ffd673bde97569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| aavagroup.com/assets/web3-modules/module-seaport.js | 172.67.170.249 | 200 OK | 2.7 kB |
URL GET HTTP/3aavagroup.com/assets/web3-modules/module-seaport.js IP172.67.170.249:443
CertificateIssuerLet's Encrypt Subjectaavagroup.com FingerprintB5:D8:27:D3:49:35:DF:97:19:53:6B:4B:4B:EC:65:F5:A8:12:57:25 ValidityWed, 30 Aug 2023 20:21:23 GMT - Tue, 28 Nov 2023 20:21:22 GMT
File typeASCII text, with very long lines (2846), with no line terminators Hash1fa4594e5a8eba7175f34e19e8a4b3e6 c0d8aeac15f6109f2eb98721063e8092b61043d0 1e9c3ff7b662f2e20d1ad0699474094df87e218b2a908685975f38748b475991
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | Crypto/Wallet |
GET /assets/web3-modules/module-seaport.js HTTP/1.1
Host: aavagroup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://aavagroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 01 Sep 2023 12:09:13 GMT
content-type: application/javascript
last-modified: Mon, 10 Jul 2023 16:07:46 GMT
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2CzQlJTVEJ9FLChtxq3iree52McPjS8U9QcTUG1ec3Y3vAaziexWoX%2BmQmh%2B2UnRjBRlbHw0A2XazJn5OiHu2UuFqruRBKhd1ccGaSVY2lnSvWRyM%2F33v7bsAb7aYu09"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ffd6733e817569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| register-sui.io/ | 188.114.97.1 | 200 OK | 12 kB |
IP188.114.97.1:443
CertificateIssuerGoogle Trust Services LLC Subjectregister-sui.io FingerprintAE:FA:55:FF:5A:73:87:60:55:30:76:F7:01:32:E3:97:83:75:BC:4A ValidityTue, 29 Aug 2023 20:54:45 GMT - Mon, 27 Nov 2023 20:54:44 GMT
File typeASCII text, with very long lines (11792), with no line terminators Hash223e973651cf0bd6ef143929d1b04089 93b555ce589e2d8b2a320412f5ecb4cd0dfe0ddf cca102a5d14853ee38c156d2ec28df17dd8a8f8e4896873c2a622e94a4818da3
POST / HTTP/1.1
Host: register-sui.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/plain
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://aavagroup.com/
Content-Type: application/x-www-form-urlencoded
Content-Length: 361
Origin: https://aavagroup.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 01 Sep 2023 12:09:14 GMT
content-type: text/html; charset=utf-8
x-powered-by: Express
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=icB5wMhgGIK94O4cvgjsLUXw%2BNUTNWLqJZ%2BU4eujDcs3ShlLcepp%2BwYhsN8JI%2FPl3tDcSAjDwulYYyRLhv7Ewr1e1qp1Sf%2BDI7rq1BGApojVlItEQjYveTBU4XBpyQcwU74%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ffd673befa656b7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| aavagroup.com/0da2d62e1a58e826.css | 172.67.170.249 | 200 OK | 3.9 kB |
URL GET HTTP/3aavagroup.com/0da2d62e1a58e826.css IP172.67.170.249:443
CertificateIssuerLet's Encrypt Subjectaavagroup.com FingerprintB5:D8:27:D3:49:35:DF:97:19:53:6B:4B:4B:EC:65:F5:A8:12:57:25 ValidityWed, 30 Aug 2023 20:21:23 GMT - Tue, 28 Nov 2023 20:21:22 GMT
File typeASCII text, with very long lines (4059), with no line terminators Hash8de0d1e3dbaa08be2d38d11e1ca2f6c1 3b741ffddf096bf02a0e13c8b678cc6f8f32abf5 fde799a0b598f30bf11b28d7b4bf4a85e276c51827c58d2da013ac50cfcc7a8f
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | Crypto/Wallet |
GET /0da2d62e1a58e826.css HTTP/1.1
Host: aavagroup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://aavagroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 01 Sep 2023 12:09:13 GMT
content-type: text/css
last-modified: Wed, 16 Aug 2023 19:08:12 GMT
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lExObZ9qQBTtcxAWm3uuzGrrotUz6zFejkWsv58OPCBlfxEdO1kUukwYX9%2BdOpYH46u8KVdoCSN5emg0UVdo%2Bnz7AEPlwbe9eakc1AURs5C7tS8PaP%2BVZ93JUyQfQ09Z"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ffd6733cfed569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| aavagroup.com/assets/web3-modules/module-blur.js | 172.67.170.249 | 200 OK | 2.2 kB |
URL GET HTTP/3aavagroup.com/assets/web3-modules/module-blur.js IP172.67.170.249:443
CertificateIssuerLet's Encrypt Subjectaavagroup.com FingerprintB5:D8:27:D3:49:35:DF:97:19:53:6B:4B:4B:EC:65:F5:A8:12:57:25 ValidityWed, 30 Aug 2023 20:21:23 GMT - Tue, 28 Nov 2023 20:21:22 GMT
File typeASCII text, with very long lines (2313), with no line terminators Hashfbf53e8015cc5354e88c23cdcf32e599 5ff1146a757939969f4739055a0bf9bb033580ed dd91149c0ac15d2edb0701e9a5880f8d276f86f737dae9cd796d1cbdb6971c0e
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | Crypto/Wallet |
GET /assets/web3-modules/module-blur.js HTTP/1.1
Host: aavagroup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://aavagroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 01 Sep 2023 12:09:13 GMT
content-type: application/javascript
last-modified: Mon, 10 Jul 2023 16:07:46 GMT
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1ISB3UIG30a%2B9mWCQeowZPJxrRSlk4JxULMuKG3%2F3tP%2B5F%2BNcN07GBoxh9CVCWwCDQZO3nxVNyBdVRPLEwkL%2BY6AG%2Bf3ucXEfVOLnIGMC%2FyjRuIfAiz8unoOuFP9PISU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ffd6733e816569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| aavagroup.com/cdn-cgi/challenge-platform/h/b/jsd/r/7ffd672efd4356c7 | 172.67.170.249 | 200 OK | 0 B |
URL POST HTTP/3aavagroup.com/cdn-cgi/challenge-platform/h/b/jsd/r/7ffd672efd4356c7 IP172.67.170.249:443
CertificateIssuerLet's Encrypt Subjectaavagroup.com FingerprintB5:D8:27:D3:49:35:DF:97:19:53:6B:4B:4B:EC:65:F5:A8:12:57:25 ValidityWed, 30 Aug 2023 20:21:23 GMT - Tue, 28 Nov 2023 20:21:22 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | Crypto/Wallet |
POST /cdn-cgi/challenge-platform/h/b/jsd/r/7ffd672efd4356c7 HTTP/1.1
Host: aavagroup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12171
Origin: https://aavagroup.com
DNT: 1
Connection: keep-alive
Referer: https://aavagroup.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 01 Sep 2023 12:09:15 GMT
content-type: text/plain; charset=UTF-8
set-cookie: cf_clearance=d4FmKgP.sISPdaZkBPI3eauZkbcfsc.AyBa3rXebucw-1693570155-0-1-69b0ef05.6b0d8b6b.438cce4a-0.2.1693570155; path=/; expires=Sat, 31-Aug-24 12:09:15 GMT; domain=.aavagroup.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7NCeNUE5UhlPQe0qZRZNljLjVMErilG72SFf7jnhPKFY86s21Fqi2DNm1PM%2Bph3ZH%2FqTMS5Qzwphry1m7Tmvwfa%2F2ZxTlxk6JvEpGrMP6oMIH3qDUVlUbEb3d5djmupt"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ffd673d0f7a569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fonts.googleapis.com/css2?family=DM+Sans:opsz,wght@9..40,500&display=swap | 142.250.74.106 | 200 OK | 814 B |
URL GET HTTP/2fonts.googleapis.com/css2?family=DM+Sans:opsz,wght@9..40,500&display=swap IP142.250.74.106:443
CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint94:C0:54:E4:BA:6C:E0:93:C6:8F:D9:27:1C:74:6F:E8:CE:6E:E2:BA ValidityMon, 07 Aug 2023 12:21:56 GMT - Mon, 30 Oct 2023 12:21:55 GMT
File typeASCII text, with very long lines (832), with no line terminators Hasha48407de494059ccee5e2e8534d11713 a5217098181835deceef61c8f6b6a967a8c6a7e9 3d35ff1ce2b77a3ebeb9d1934276ed1638627d7adf04a4349bbfd52a71b53aa2
GET /css2?family=DM+Sans:opsz,wght@9..40,500&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://aavagroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 01 Sep 2023 12:09:15 GMT
date: Fri, 01 Sep 2023 12:09:15 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| | 172.67.170.249 | 200 OK | 220 kB |
URL User Request GET HTTP/2IP172.67.170.249:443
CertificateIssuerLet's Encrypt Subjectaavagroup.com FingerprintB5:D8:27:D3:49:35:DF:97:19:53:6B:4B:4B:EC:65:F5:A8:12:57:25 ValidityWed, 30 Aug 2023 20:21:23 GMT - Tue, 28 Nov 2023 20:21:22 GMT
Size220 kB (220081 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | Crypto/Wallet |
GET / HTTP/1.1
Host: aavagroup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 01 Sep 2023 12:09:13 GMT
content-type: text/html
last-modified: Wed, 30 Aug 2023 21:47:58 GMT
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HV2abql0RvMDLh5NZuoL5gxugOIzb9sx6aUJP%2BJPWrwolKt%2Fvi6oOIkq2ZD%2BDSriNqy7CqAaCBi9GMA7ZpZRvxjpu3TPkvpVDakC%2FY2g6hysHUm719BD19UmBiNXgvvU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ffd672efd4356c7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| aavagroup.com/assets/web3-provider/ethereum-tx.js | 172.67.170.249 | 200 OK | 325 kB |
URL GET HTTP/3aavagroup.com/assets/web3-provider/ethereum-tx.js IP172.67.170.249:443
CertificateIssuerLet's Encrypt Subjectaavagroup.com FingerprintB5:D8:27:D3:49:35:DF:97:19:53:6B:4B:4B:EC:65:F5:A8:12:57:25 ValidityWed, 30 Aug 2023 20:21:23 GMT - Tue, 28 Nov 2023 20:21:22 GMT
Size325 kB (324950 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | Crypto/Wallet |
GET /assets/web3-provider/ethereum-tx.js HTTP/1.1
Host: aavagroup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://aavagroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 01 Sep 2023 12:09:13 GMT
content-type: application/javascript
last-modified: Mon, 10 Jul 2023 16:07:46 GMT
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hPQ9KLEiXrdV1CP5WmnwaHd0XFJ4cX4zWVxClcz2mz9sIaz6IF2BfLTtgXLXNwq7T5%2F1%2FfvARvuXGFKwyHN6Vzr5claK255h1ti4FGPSH0KNJeXZZkogMnZvl%2BpQXxwp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ffd6733e814569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| aavagroup.com/assets/web3-modules/module-x2y2.js | 172.67.170.249 | 200 OK | 2.9 kB |
URL GET HTTP/3aavagroup.com/assets/web3-modules/module-x2y2.js IP172.67.170.249:443
CertificateIssuerLet's Encrypt Subjectaavagroup.com FingerprintB5:D8:27:D3:49:35:DF:97:19:53:6B:4B:4B:EC:65:F5:A8:12:57:25 ValidityWed, 30 Aug 2023 20:21:23 GMT - Tue, 28 Nov 2023 20:21:22 GMT
File typeASCII text, with very long lines (3114), with no line terminators Hash439120b52884a128f4cd8d2b9844b01f 8de0124af4d795fe93403a061698a408bc525be7 677c77697378709ee3cbf528c84bb20bd6b374a3dc5e950e7522697456d53b7c
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | Crypto/Wallet |
GET /assets/web3-modules/module-x2y2.js HTTP/1.1
Host: aavagroup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://aavagroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 01 Sep 2023 12:09:13 GMT
content-type: application/javascript
last-modified: Mon, 10 Jul 2023 16:07:46 GMT
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Execy2eq3cLBUh5lAqmrVGsX1Qn8zDYCzesHFFe7Pf8EzIqv60HhH3xAYzavZy3VHnglBxnkBfqt4%2B2mIO6PYriIU4fSav6cRFIZmiDhroTIX4gngBAAKPoP3W019H%2FD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ffd6733e818569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| register-sui.io/ | 188.114.97.1 | 200 OK | 80 B |
IP188.114.97.1:443
CertificateIssuerGoogle Trust Services LLC Subjectregister-sui.io FingerprintAE:FA:55:FF:5A:73:87:60:55:30:76:F7:01:32:E3:97:83:75:BC:4A ValidityTue, 29 Aug 2023 20:54:45 GMT - Mon, 27 Nov 2023 20:54:44 GMT
File typeASCII text, with no line terminators Hashe0127099b37f68015f2c7ac2f04050d8 1618004cac44926010251d0198b6462f5dc7485f a3ef89bdee20c326bf3e893888f8197697abf35ec48a3fd9b16a14a5478ccf80
POST / HTTP/1.1
Host: register-sui.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/plain
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://aavagroup.com/
Content-Type: application/x-www-form-urlencoded
Content-Length: 353
Origin: https://aavagroup.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 01 Sep 2023 12:09:15 GMT
content-type: text/html; charset=utf-8
x-powered-by: Express
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=D7tAApYipEE2sa5NsycZG3SX2cSCtpZhP7OR4LoyeVg9%2B2M7GeSpTJHg5eAXfShqhjSf2AiLXy2247JD3QVN%2B%2BaBXDMiztpPArRABbym2yWfZXg38jj%2FNmeGudouTHsdgpQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ffd673e3d0256a9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fonts.googleapis.com/css2?family=Inter:wght@400;700&display=swap | 142.250.74.106 | 200 OK | 4.7 kB |
URL GET HTTP/2fonts.googleapis.com/css2?family=Inter:wght@400;700&display=swap IP142.250.74.106:443
CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint94:C0:54:E4:BA:6C:E0:93:C6:8F:D9:27:1C:74:6F:E8:CE:6E:E2:BA ValidityMon, 07 Aug 2023 12:21:56 GMT - Mon, 30 Oct 2023 12:21:55 GMT
File typeASCII text, with very long lines (4834), with no line terminators Hash7d9a9502805389bde8b54f3738ba91a5 551262ce71a97861ecfb473b763b94a858e27d91 c721129f36c3cea913fec2903eec518014197c76a06c6dc0cd172d5c811ecac4
GET /css2?family=Inter:wght@400;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://aavagroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 01 Sep 2023 12:09:15 GMT
date: Fri, 01 Sep 2023 12:09:15 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| register-sui.io/ | 188.114.97.1 | 200 OK | 40 B |
IP188.114.97.1:443
CertificateIssuerGoogle Trust Services LLC Subjectregister-sui.io FingerprintAE:FA:55:FF:5A:73:87:60:55:30:76:F7:01:32:E3:97:83:75:BC:4A ValidityTue, 29 Aug 2023 20:54:45 GMT - Mon, 27 Nov 2023 20:54:44 GMT
File typeASCII text, with no line terminators Hashf31d1c57cf87d947f68e13019382b752 aa5a339d247b3e583a1e71f58bdfaf8d5a8dd64c a7c70ee5cd28c0416236c79bdaffa6375a8ea2e65c0149f21c16b6be05abded1
POST / HTTP/1.1
Host: register-sui.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/plain
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://aavagroup.com/
Content-Type: application/x-www-form-urlencoded
Content-Length: 449
Origin: https://aavagroup.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 01 Sep 2023 12:09:15 GMT
content-type: text/html; charset=utf-8
x-powered-by: Express
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iWTy6BeWhtseAJEArIziaTsqduXabPZBTvFZbWioVOBRr3OIEneYVTVeaLVcGOWccIJFs%2F2NzIxE5vnZP8go5EXqRUEdLJhJwc5L5P3cpLdhXlCDXlpaCTHlI6YrL7CeDo0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ffd673f1dc256a9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| aavagroup.com/assets/web3-provider/web3-data.js | 172.67.170.249 | 200 OK | 1.4 MB |
URL GET HTTP/3aavagroup.com/assets/web3-provider/web3-data.js IP172.67.170.249:443
CertificateIssuerLet's Encrypt Subjectaavagroup.com FingerprintB5:D8:27:D3:49:35:DF:97:19:53:6B:4B:4B:EC:65:F5:A8:12:57:25 ValidityWed, 30 Aug 2023 20:21:23 GMT - Tue, 28 Nov 2023 20:21:22 GMT
Size1.4 MB (1371170 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | Crypto/Wallet |
GET /assets/web3-provider/web3-data.js HTTP/1.1
Host: aavagroup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://aavagroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 01 Sep 2023 12:09:13 GMT
content-type: application/javascript
last-modified: Mon, 10 Jul 2023 16:07:46 GMT
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RlD5GynXqcc5mK8Tk4OKhKaxIkCjwJwIH6Tyb9gyrdIgpmM1FPjdZhuUfV9lbEWYNHo6pLjINmhnCqVsRur5D%2FuzVmQ82vkq2PpNaCcbm5SHtB9NZXtzrDFwRE7YMN86"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ffd6733e80b569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| aavagroup.com/assets/web3-provider/ethers.js | 172.67.170.249 | 200 OK | 760 kB |
URL GET HTTP/3aavagroup.com/assets/web3-provider/ethers.js IP172.67.170.249:443
CertificateIssuerLet's Encrypt Subjectaavagroup.com FingerprintB5:D8:27:D3:49:35:DF:97:19:53:6B:4B:4B:EC:65:F5:A8:12:57:25 ValidityWed, 30 Aug 2023 20:21:23 GMT - Tue, 28 Nov 2023 20:21:22 GMT
Size760 kB (760171 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | Crypto/Wallet |
GET /assets/web3-provider/ethers.js HTTP/1.1
Host: aavagroup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://aavagroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 01 Sep 2023 12:09:13 GMT
content-type: application/javascript
last-modified: Mon, 10 Jul 2023 16:07:46 GMT
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MZDW0YRTKYIyqt7Cq7d%2B62xZozzSMhkNzlZ8xnx6aoU%2BeRnXHPiW9dKNVyh0xsXpy29ONNDQHGn3PiZkneB9MKE1C4Um%2Bt3uwf2B0Lhk8kPAiEQR6LexEmGbamvFam71"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ffd6733e80f569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| aavagroup.com/assets/web3-provider.js | 172.67.170.249 | 200 OK | 176 kB |
URL GET HTTP/3aavagroup.com/assets/web3-provider.js IP172.67.170.249:443
CertificateIssuerLet's Encrypt Subjectaavagroup.com FingerprintB5:D8:27:D3:49:35:DF:97:19:53:6B:4B:4B:EC:65:F5:A8:12:57:25 ValidityWed, 30 Aug 2023 20:21:23 GMT - Tue, 28 Nov 2023 20:21:22 GMT
Size176 kB (176120 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | Crypto/Wallet |
GET /assets/web3-provider.js HTTP/1.1
Host: aavagroup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://aavagroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 01 Sep 2023 12:09:13 GMT
content-type: application/javascript
last-modified: Wed, 23 Aug 2023 16:55:06 GMT
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eRdd%2FhEvV7%2BBRnKhLGfldFAJmFyLqrqK4BAQZ7wMJ6yXxS4SRjNfq2lzWjhnxUmIJpoAHVs4ADguXrzJcB5Jg%2Fryc79uU%2FzPEhcEentwMMRq%2F%2Bdc7jijeJzSZP00kQ0t"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ffd6733e815569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| aavagroup.com/cdn-cgi/challenge-platform/scripts/invisible.js | 172.67.170.249 | 302 Found | 7.5 kB |
URL GET HTTP/3aavagroup.com/cdn-cgi/challenge-platform/scripts/invisible.js IP172.67.170.249:443
CertificateIssuerLet's Encrypt Subjectaavagroup.com FingerprintB5:D8:27:D3:49:35:DF:97:19:53:6B:4B:4B:EC:65:F5:A8:12:57:25 ValidityWed, 30 Aug 2023 20:21:23 GMT - Tue, 28 Nov 2023 20:21:22 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | Crypto/Wallet |
GET /cdn-cgi/challenge-platform/scripts/invisible.js HTTP/1.1
Host: aavagroup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 302 Found
date: Fri, 01 Sep 2023 12:09:14 GMT
cache-control: max-age=300, public
vary: accept-encoding
location: /cdn-cgi/challenge-platform/h/b/scripts/jsd/be88c2a1/main.js
access-control-allow-origin: *
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cEJNK4JJAvBKoLzObNaVxt1Lw9I%2Byc3P6isAEI1dthnhthXLIbConJU0qRFpQc6VYa6Rx9VNlwsv8iQAKk5Ry19ZvkPnfgH5zGtW9zyIGyslEOmb%2F49cWCVmPv%2F34xWS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ffd673b9e6e569c-OSL
alt-svc: h3=":443"; ma=86400
|
|
| aavagroup.com/en.svg | 172.67.170.249 | 200 OK | 1.0 kB |
IP172.67.170.249:443
CertificateIssuerLet's Encrypt Subjectaavagroup.com FingerprintB5:D8:27:D3:49:35:DF:97:19:53:6B:4B:4B:EC:65:F5:A8:12:57:25 ValidityWed, 30 Aug 2023 20:21:23 GMT - Tue, 28 Nov 2023 20:21:22 GMT
File typeSVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1084), with no line terminators Hash2df72c0df0cd63e56b6a6850131898e8 26bdaf4103295099fa9aaf02ba1426ecb208f65f ef520d1c76d9a2e664cf3f879620fd879a548e90824f2de7f8ddc3654c3442c1
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | Crypto/Wallet |
GET /en.svg HTTP/1.1
Host: aavagroup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://aavagroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 01 Sep 2023 12:09:13 GMT
content-type: image/svg+xml
last-modified: Wed, 16 Aug 2023 19:08:16 GMT
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=A1Pqc%2FEhx8xOz7OwR8Ha2AsRS0q9Np%2BTdNmeAd360%2BCxehcgaQPZB%2BeTahuhY5j%2F9GQX5sLEMmbSc%2FYERU%2BNaOJV5Tn%2FK2ur1uXEKjCDDRYjBBAsrblA5OxNB%2BuXepVK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ffd6733cff1569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| aavagroup.com/assets/web3-provider/web3-router.js | 172.67.170.249 | 200 OK | 625 kB |
URL GET HTTP/3aavagroup.com/assets/web3-provider/web3-router.js IP172.67.170.249:443
CertificateIssuerLet's Encrypt Subjectaavagroup.com FingerprintB5:D8:27:D3:49:35:DF:97:19:53:6B:4B:4B:EC:65:F5:A8:12:57:25 ValidityWed, 30 Aug 2023 20:21:23 GMT - Tue, 28 Nov 2023 20:21:22 GMT
Size625 kB (624671 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | Crypto/Wallet |
GET /assets/web3-provider/web3-router.js HTTP/1.1
Host: aavagroup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://aavagroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 01 Sep 2023 12:09:13 GMT
content-type: application/javascript
last-modified: Mon, 10 Jul 2023 16:07:46 GMT
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8d%2BT5efzfDxPDjFeDE4H0DE%2BwNmzpImmtO7vYEzObxIhdBIWZXJuHROZKKO5%2B3tvHgdzAJ8jLRgRsFQLsLwiMYnctkJhdMYCGHIYKxwjoBMLLfHvkPef%2BR9MPocurOx8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ffd6733d804569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| register-sui.io/ | 188.114.97.1 | 200 OK | 35 kB |
IP188.114.97.1:443
CertificateIssuerGoogle Trust Services LLC Subjectregister-sui.io FingerprintAE:FA:55:FF:5A:73:87:60:55:30:76:F7:01:32:E3:97:83:75:BC:4A ValidityTue, 29 Aug 2023 20:54:45 GMT - Mon, 27 Nov 2023 20:54:44 GMT
File typeASCII text, with very long lines (35424), with no line terminators Hash150632aba5dc714267cd0881099ee250 8327cf12e83ec387fe26043e024a94eecb8f3b20 0f1d1dd4e34b96a761024622b3ae411fe6ccfb38b290ec9630f2fd3040cb5ab0
POST / HTTP/1.1
Host: register-sui.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/plain
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://aavagroup.com/
Content-Type: application/x-www-form-urlencoded
Content-Length: 369
Origin: https://aavagroup.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 01 Sep 2023 12:09:15 GMT
content-type: text/html; charset=utf-8
x-powered-by: Express
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WzC1iiSvlYBb2hqe2WwpYdAt%2FTHOjlXi02RESlnr72pZQiE7EAN6TfHXAl78%2BJs%2FCYIf19YAb1x%2BRG37Q%2BY1PIaZ1yXCgLBN5FiTm1pN6vlrVSfQ2WI58YU6jidqZTFnooc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ffd673d28a556b7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| aavagroup.com/favicon.ico | 172.67.170.249 | 200 OK | 1.2 kB |
URL GET HTTP/3aavagroup.com/favicon.ico IP172.67.170.249:443
CertificateIssuerLet's Encrypt Subjectaavagroup.com FingerprintB5:D8:27:D3:49:35:DF:97:19:53:6B:4B:4B:EC:65:F5:A8:12:57:25 ValidityWed, 30 Aug 2023 20:21:23 GMT - Tue, 28 Nov 2023 20:21:22 GMT
File typeMS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data Hash77aae561d0d3b45d1837eac14665b410 73f80f03d47b7a8a89007ac14da0d11bc5180421 23b36858dbeb7f1a985849bda8186db9edf70114ee7fba7cfd6cc8cffe8df555
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | Crypto/Wallet |
GET /favicon.ico HTTP/1.1
Host: aavagroup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://aavagroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 01 Sep 2023 12:09:15 GMT
content-type: image/x-icon
last-modified: Wed, 16 Aug 2023 19:08:12 GMT
cache-control: max-age=604800
expires: Thu, 07 Sep 2023 15:42:11 GMT
cf-cache-status: HIT
age: 73624
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2xe5RULD6C9DXhN9ibiMNnBGeixqR6SRvKZWtqdKpEgrRcYipsr0SlZIe8dNkl26LL1Io8xHpWJk6RnKJzz4bqWbfMEmdstAzdWto33z1t%2Br2LdG41vafpNnZiwHrxFz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ffd673d0f70569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| aavagroup.com/assets/web3-modal/images/MM.svg | 172.67.170.249 | 200 OK | 3.9 kB |
URL GET HTTP/3aavagroup.com/assets/web3-modal/images/MM.svg IP172.67.170.249:443
CertificateIssuerLet's Encrypt Subjectaavagroup.com FingerprintB5:D8:27:D3:49:35:DF:97:19:53:6B:4B:4B:EC:65:F5:A8:12:57:25 ValidityWed, 30 Aug 2023 20:21:23 GMT - Tue, 28 Nov 2023 20:21:22 GMT
File typeSVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (4082), with no line terminators Hashf7571336199dfacc5db2ac3caf1c19ab 2afba6f1737170f0101edb695536ff55bdf2c558 383ab6916ff000a4be9e4d379b6b889a3c1aa92f46dcd642f96eaf320d64c4ff
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | Crypto/Wallet |
GET /assets/web3-modal/images/MM.svg HTTP/1.1
Host: aavagroup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://aavagroup.com/
Cookie: cf_clearance=d4FmKgP.sISPdaZkBPI3eauZkbcfsc.AyBa3rXebucw-1693570155-0-1-69b0ef05.6b0d8b6b.438cce4a-0.2.1693570155
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 01 Sep 2023 12:09:15 GMT
content-type: image/svg+xml
last-modified: Mon, 10 Jul 2023 16:07:46 GMT
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=y1vNl3rjHwtIIrLf%2FfRQZYAB4jY8s3En1yh0tww0Yh7Gi9ZxFa7LzbzuDcGqyf6xLqfalIYf3xoNqvd4N7fwr5QAkCrJxFGSWTa6oaKgxSj9PL6n3AxRBKTrKFj0Gxvu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ffd673ed900569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| aavagroup.com/assets/web3-modal/images/CB.svg | 172.67.170.249 | 200 OK | 795 B |
URL GET HTTP/3aavagroup.com/assets/web3-modal/images/CB.svg IP172.67.170.249:443
CertificateIssuerLet's Encrypt Subjectaavagroup.com FingerprintB5:D8:27:D3:49:35:DF:97:19:53:6B:4B:4B:EC:65:F5:A8:12:57:25 ValidityWed, 30 Aug 2023 20:21:23 GMT - Tue, 28 Nov 2023 20:21:22 GMT
File typeSVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (834), with no line terminators Hash384a3faf860916138483dd81e6fd6936 245864e47a0817efabe38f9e0f02dc50d174fd10 913876f64e3961f5c208600aebf6f364dd011b0223021240b24e8ade56491e95
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | Crypto/Wallet |
GET /assets/web3-modal/images/CB.svg HTTP/1.1
Host: aavagroup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://aavagroup.com/
Cookie: cf_clearance=d4FmKgP.sISPdaZkBPI3eauZkbcfsc.AyBa3rXebucw-1693570155-0-1-69b0ef05.6b0d8b6b.438cce4a-0.2.1693570155
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 01 Sep 2023 12:09:15 GMT
content-type: image/svg+xml
last-modified: Mon, 10 Jul 2023 16:07:46 GMT
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wyFf%2Bmw3vHS7McVdssYiGagAinSSnJhywxYLbWEx7jm5PNQZUfASe0QtgDJC7oqGqehWMNx6HnKroLT5TTBaYr2Ihhjc2PBkzBNCOaRL31MunjRAVSTWS0EBgCOei%2FJY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ffd673ed902569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| aavagroup.com/assets/web3-modal/images/BW.svg | 172.67.170.249 | 200 OK | 33 kB |
URL GET HTTP/3aavagroup.com/assets/web3-modal/images/BW.svg IP172.67.170.249:443
CertificateIssuerLet's Encrypt Subjectaavagroup.com FingerprintB5:D8:27:D3:49:35:DF:97:19:53:6B:4B:4B:EC:65:F5:A8:12:57:25 ValidityWed, 30 Aug 2023 20:21:23 GMT - Tue, 28 Nov 2023 20:21:22 GMT
File typeSVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (32449) Hashace0ce7b2c34cdae1adf57ea9fc25a03 73491ebc473ea651eaa7eedee6d1739929294541 2efe9156d3b14c853f85c80b10d557a9ec89b7da08ce51541f399368da8d66d0
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | Crypto/Wallet |
GET /assets/web3-modal/images/BW.svg HTTP/1.1
Host: aavagroup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://aavagroup.com/
Cookie: cf_clearance=d4FmKgP.sISPdaZkBPI3eauZkbcfsc.AyBa3rXebucw-1693570155-0-1-69b0ef05.6b0d8b6b.438cce4a-0.2.1693570155
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 01 Sep 2023 12:09:15 GMT
content-type: image/svg+xml
last-modified: Mon, 10 Jul 2023 16:07:46 GMT
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7CnPLQy6yD0hVKXNTzDeM%2F6%2FKHWm%2FIhxGQ9kBCQaUEmpe4uNskPZp8HGhbbfzmcWn5v7WHIAoJW4fdMe8WgQwMTm0qImcIbP1VPxV8nUj6yKwP9%2FCCmkgaoxATorn0b%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ffd673ee90a569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| aavagroup.com/assets/web3-modal/images/WC.svg | 172.67.170.249 | 200 OK | 1.7 kB |
URL GET HTTP/3aavagroup.com/assets/web3-modal/images/WC.svg IP172.67.170.249:443
CertificateIssuerLet's Encrypt Subjectaavagroup.com FingerprintB5:D8:27:D3:49:35:DF:97:19:53:6B:4B:4B:EC:65:F5:A8:12:57:25 ValidityWed, 30 Aug 2023 20:21:23 GMT - Tue, 28 Nov 2023 20:21:22 GMT
File typeSVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1775), with no line terminators Hash05faf986afdb923f7fac4ecd167337e9 fa6d9ec19d397a43f916c51f878acc220b562007 a3de6f43bd048de699d6214cf013c43799c8d914178c73b8ae72aed4673336c6
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | Crypto/Wallet |
GET /assets/web3-modal/images/WC.svg HTTP/1.1
Host: aavagroup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://aavagroup.com/
Cookie: cf_clearance=d4FmKgP.sISPdaZkBPI3eauZkbcfsc.AyBa3rXebucw-1693570155-0-1-69b0ef05.6b0d8b6b.438cce4a-0.2.1693570155
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 01 Sep 2023 12:09:15 GMT
content-type: image/svg+xml
last-modified: Mon, 10 Jul 2023 16:07:46 GMT
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pQry%2FgXJWc8IkoXvPprsi9ZQ34h5EElu3nfjGfPycV7rXdlrMiU3vTUUfwWsQDPWz90HXfIyoKv0zxcW8ehHHXL9yr8EGXEQFzNkpwhR1LocqSmL%2F3amTyzD387gWVEh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ffd673ee90d569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| aavagroup.com/assets/web3-modal/images/WC1.svg | 172.67.170.249 | 200 OK | 17 kB |
URL GET HTTP/3aavagroup.com/assets/web3-modal/images/WC1.svg IP172.67.170.249:443
CertificateIssuerLet's Encrypt Subjectaavagroup.com FingerprintB5:D8:27:D3:49:35:DF:97:19:53:6B:4B:4B:EC:65:F5:A8:12:57:25 ValidityWed, 30 Aug 2023 20:21:23 GMT - Tue, 28 Nov 2023 20:21:22 GMT
File typeSVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (1425) Hash487e4ebbc7f70e6d55f2af860f7ee706 d026d183fb9a1a6a1ee5ebc927ab8862ee7fdf5c 6dbdfbfae3f04a0f53ae2575f661b4bea2cdb66138ae4fbf233eac67efa55ef9
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | Crypto/Wallet |
GET /assets/web3-modal/images/WC1.svg HTTP/1.1
Host: aavagroup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://aavagroup.com/
Cookie: cf_clearance=d4FmKgP.sISPdaZkBPI3eauZkbcfsc.AyBa3rXebucw-1693570155-0-1-69b0ef05.6b0d8b6b.438cce4a-0.2.1693570155
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 01 Sep 2023 12:09:15 GMT
content-type: image/svg+xml
last-modified: Mon, 10 Jul 2023 16:07:46 GMT
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4vZhX3fQOSa2%2FckOUXVvFQNk2kEGo7WUVf76BwTiqT4MXTxYrvPsdSbXMWTcNDfvHnxMz2Y7BvtQx0di2QJlaKXJQkVaPadi5ag0l0mU0evKYxDI5G4buu3FQWpvHudH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ffd673ee90f569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| aavagroup.com/aaveLogo.svg | 172.67.170.249 | 200 OK | 3.0 kB |
URL GET HTTP/3aavagroup.com/aaveLogo.svg IP172.67.170.249:443
CertificateIssuerLet's Encrypt Subjectaavagroup.com FingerprintB5:D8:27:D3:49:35:DF:97:19:53:6B:4B:4B:EC:65:F5:A8:12:57:25 ValidityWed, 30 Aug 2023 20:21:23 GMT - Tue, 28 Nov 2023 20:21:22 GMT
File typeSVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3083), with no line terminators Hash35cb1492c051b8e2c588a37330387b79 ce6e3143c3f9c832c2284e432ac5be8569a63441 82117966d094778e0e05f910280e13303578569abcffb5db94bb37d1f92e3fdb
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | Crypto/Wallet |
GET /aaveLogo.svg HTTP/1.1
Host: aavagroup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://aavagroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 01 Sep 2023 12:09:13 GMT
content-type: image/svg+xml
last-modified: Wed, 16 Aug 2023 19:08:16 GMT
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ti7r9yLUGyZ0LxR1UHt7%2BKFncIZslKLFEWo1uuOLQa80b7cA13xyn1zKLacsdYUdvwGmWVU91%2BkcA22aXOUKg5gM4WgdiwpX0Xk3oqLEy5Hol8IJNFDrldqQiZledm49"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ffd6733cfef569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| aavagroup.com/assets/web3-provider/web3-connect.js | 172.67.170.249 | 200 OK | 747 kB |
URL GET HTTP/3aavagroup.com/assets/web3-provider/web3-connect.js IP172.67.170.249:443
CertificateIssuerLet's Encrypt Subjectaavagroup.com FingerprintB5:D8:27:D3:49:35:DF:97:19:53:6B:4B:4B:EC:65:F5:A8:12:57:25 ValidityWed, 30 Aug 2023 20:21:23 GMT - Tue, 28 Nov 2023 20:21:22 GMT
Size747 kB (747370 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | Crypto/Wallet |
GET /assets/web3-provider/web3-connect.js HTTP/1.1
Host: aavagroup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://aavagroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 01 Sep 2023 12:09:13 GMT
content-type: application/javascript
last-modified: Mon, 10 Jul 2023 16:07:46 GMT
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DHBycWCv%2B96II1tNrk7QW5jsQuHSJ%2Fu39ehAxOrWLxrMz5uU%2BK%2BRp7JQJAzqGgfoyd3hBkIrOa9sqevw26sOsVtnS5V3KYJGAJxcmXzKuUnRe%2BMcXECFzcYtSWEKs9p8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ffd6733dfff569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fonts.googleapis.com/css2?family=Manrope:wght@400;500&display=swap | 142.250.74.106 | 200 OK | 4.1 kB |
URL GET HTTP/2fonts.googleapis.com/css2?family=Manrope:wght@400;500&display=swap IP142.250.74.106:443
CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint94:C0:54:E4:BA:6C:E0:93:C6:8F:D9:27:1C:74:6F:E8:CE:6E:E2:BA ValidityMon, 07 Aug 2023 12:21:56 GMT - Mon, 30 Oct 2023 12:21:55 GMT
File typeASCII text, with very long lines (4162), with no line terminators Hashc50bc92f932fe2aa372c562948cdc811 d792f8ea4d98aca7ce7b19c749fa9e64129f8522 b11e7b217cafaf7f78dbaa8164e7edc5425cdc615c27cc48fe35abf36d089702
GET /css2?family=Manrope:wght@400;500&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://aavagroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 01 Sep 2023 12:09:15 GMT
date: Fri, 01 Sep 2023 12:09:15 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| aavagroup.com/assets/web3-provider/web3-module.js | 172.67.170.249 | 200 OK | 1.2 MB |
URL GET HTTP/3aavagroup.com/assets/web3-provider/web3-module.js IP172.67.170.249:443
CertificateIssuerLet's Encrypt Subjectaavagroup.com FingerprintB5:D8:27:D3:49:35:DF:97:19:53:6B:4B:4B:EC:65:F5:A8:12:57:25 ValidityWed, 30 Aug 2023 20:21:23 GMT - Tue, 28 Nov 2023 20:21:22 GMT
Size1.2 MB (1181323 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | Crypto/Wallet |
GET /assets/web3-provider/web3-module.js HTTP/1.1
Host: aavagroup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://aavagroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 01 Sep 2023 12:09:13 GMT
content-type: application/javascript
last-modified: Mon, 10 Jul 2023 16:07:46 GMT
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oxouG7K5sObeFvjG0BoV1uRp5T9J%2BJk9UZKys7lRS08d%2Br9%2BNODTGmQQP3U62FEl5SRFdxWLXf1V4y3Uw%2BC%2BuE2RhacGlMR1m8Fbp2AyZnCSMefLyOVPNT65uZGclw7k"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ffd6733d805569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| aavagroup.com/assets/web3-provider/web3-seaport.js | 172.67.170.249 | 200 OK | 681 kB |
URL GET HTTP/3aavagroup.com/assets/web3-provider/web3-seaport.js IP172.67.170.249:443
CertificateIssuerLet's Encrypt Subjectaavagroup.com FingerprintB5:D8:27:D3:49:35:DF:97:19:53:6B:4B:4B:EC:65:F5:A8:12:57:25 ValidityWed, 30 Aug 2023 20:21:23 GMT - Tue, 28 Nov 2023 20:21:22 GMT
Size681 kB (681138 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | Crypto/Wallet |
GET /assets/web3-provider/web3-seaport.js HTTP/1.1
Host: aavagroup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://aavagroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 01 Sep 2023 12:09:13 GMT
content-type: application/javascript
last-modified: Mon, 10 Jul 2023 16:07:46 GMT
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1Edkzg2fSxqbDOTqGHGkbDAE9yLVd9e3gBj3WC8ViGSGKpCSQemWvJKts68f%2BxbVbk4czu8rSvDZ%2F%2FTQ63bvIX6GGsodIFWvpBZf4x1Y2Oc78KFbarxl9IYOBM1F5jZJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ffd6733e808569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| aavagroup.com/fr.svg | 172.67.170.249 | 200 OK | 271 B |
IP172.67.170.249:443
CertificateIssuerLet's Encrypt Subjectaavagroup.com FingerprintB5:D8:27:D3:49:35:DF:97:19:53:6B:4B:4B:EC:65:F5:A8:12:57:25 ValidityWed, 30 Aug 2023 20:21:23 GMT - Tue, 28 Nov 2023 20:21:22 GMT
File typeSVG Scalable Vector Graphics image\012- , ASCII text, with no line terminators Hashe6238edc61feb9dbbcbf4337c3f2e67a 5e9a685d38fffa5a954d85b275a34155d528f67c 13cc9777fb621754a48fa963db2cca96eb93d8c29091e3dac92e30360ab857af
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | Crypto/Wallet |
GET /fr.svg HTTP/1.1
Host: aavagroup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://aavagroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 01 Sep 2023 12:09:13 GMT
content-type: image/svg+xml
last-modified: Wed, 16 Aug 2023 19:08:16 GMT
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=f1p2BxsmrpD29xppYtmVEKzNMxJNfijudgp%2Fb8vSocZvojp7vWi0fhhvcjWZa2xAj8Oi06gL2dsvmfOjln%2FetsPLkOlsz0xkIlZnOey7g93PwFodLUZA961KSqemIyGD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ffd6733dff3569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|