Report - kutt.it/mX3bQG

Report Overview

Visitedpublic

2025-06-27 09:41:30

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Host Summary

Host	Rank	Registered	First Seen	Last Seen	Sent	Received	IP	Fingerprints
fastsettlementhub.click	unknown	2025-05-09	2025-06-27	2025-06-27	3.7 kB	31 kB	104.21.39.149
kutt.it	139837	2017-12-15	2018-03-03	2025-06-04	482 B	7.8 kB	172.67.188.125

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2025-06-27 09:41:20	low	Client IP	104.21.39.149	ETPRO INFO HTTP Request to a *.click domain
2025-06-27 09:41:20	low	Client IP	104.21.39.149	ETPRO INFO HTTP Request to a *.click domain
2025-06-27 09:41:20	low	Client IP	104.21.39.149	ETPRO INFO HTTP Request to a *.click domain
2025-06-27 09:41:20	low	Client IP	104.21.39.149	ETPRO INFO HTTP Request to a *.click domain
2025-06-27 09:41:20	low	Client IP	172.67.170.210	ETPRO INFO HTTP Request to a *.click domain
2025-06-27 09:41:20	low	Client IP	172.67.170.210	ETPRO INFO HTTP Request to a *.click domain
2025-06-27 09:41:20	low	Client IP	172.67.170.210	ETPRO INFO HTTP Request to a *.click domain
2025-06-27 09:41:20	low	Client IP	172.67.170.210	ETPRO INFO HTTP Request to a *.click domain

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

Scan Date	Severity	Indicator	Alert
2025-06-27	medium	fastsettlementhub.click/	Other
2025-06-27	medium	fastsettlementhub.click/cdn-cgi/images/cf-icon-server.png	Other
2025-06-27	medium	kutt.it/mX3bQG	Other
2025-06-27	medium	fastsettlementhub.click/	Other
2025-06-27	medium	fastsettlementhub.click/cdn-cgi/styles/main.css	Other
2025-06-27	medium	fastsettlementhub.click/cdn-cgi/images/cf-icon-browser.png	Other
2025-06-27	medium	fastsettlementhub.click/cdn-cgi/images/cf-icon-ok.png	Other
2025-06-27	medium	fastsettlementhub.click/cdn-cgi/images/cf-icon-cloud.png	Other
2025-06-27	medium	fastsettlementhub.click/cdn-cgi/images/cf-icon-error.png	Other
2025-06-27	medium	fastsettlementhub.click/favicon.ico	Other

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (1)

	URL	From	Size	First Seen	Last Seen
	fastsettlementhub.click/	ScriptElement	375 B	2023-03-07	2025-08-02
URL fastsettlementhub.click/ IP / ASN 104.21.39.149 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded true Resource Info First Seen 2023-03-07 Last Seen 2025-08-02 Times Seen 167745 Size 375 B (375 bytes) MD5 56df91490fa1984fa82b297dcb23c22d SHA1 2050f127b73f50d21eb9b0a2a3f2aea7d4372ba9 SHA256 275407540ae2d5516300e4027ce994e1c97f958d464e137d0fff116d7acf0f24 Format Code Loading...

HTTP Transactions (10)

URL IP Response Size

GET fastsettlementhub.click/

104.21.39.149

504 Gateway Timeout

6.5 kB

URL

fastsettlementhub.click/

IP / ASN

104.21.39.149

#13335 CLOUDFLARENET

Requested byN/A

Resource Info

File typeHTML document, ASCII text, with very long lines (396)

First Seen2025-06-27

Last Seen2025-06-27

Times Seen1

Size6.5 kB (6469 bytes)

MD56c7278f98f7c74798f03629a4aa249cc

SHA111b3d52e96049af3fed02d516a318245e6d1ca74

SHA256d4cde1d37896749dbc1d1d5b7b99d64292d5fde80b97479b0d222bf1fc19ff5b

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
suricata	low	ETPRO INFO HTTP Request to a *.click domain

HTTP Headers

GET / HTTP/1.1
Host: fastsettlementhub.click
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 504 Gateway Timeout
Date: Fri, 27 Jun 2025 09:41:20 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 6469
Connection: keep-alive
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
Server: cloudflare
CF-RAY: 9563fcd34fb356af-OSL

GET fastsettlementhub.click/cdn-cgi/images/cf-icon-server.png

172.67.170.210

200 OK

1.4 kB

URL

fastsettlementhub.click/cdn-cgi/images/cf-icon-server.png

IP / ASN

172.67.170.210

#13335 CLOUDFLARENET

Requested byhttp://fastsettlementhub.click/

Resource Info

File typePNG image data, 95 x 75, 8-bit colormap, non-interlaced

First Seen2023-04-16

Last Seen2025-08-02

Times Seen10043

Size1.4 kB (1384 bytes)

MD52c11e67182601007f577f8bf2c72fee8

SHA101dc915d4745f00632021c05d3eef634747a9c3d

SHA25641553a537f85839927155af093b7bfa1987215f474ed038714609cc48812ea3b

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
suricata	low	ETPRO INFO HTTP Request to a *.click domain

HTTP Headers

GET /cdn-cgi/images/cf-icon-server.png HTTP/1.1
Host: fastsettlementhub.click
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://fastsettlementhub.click/cdn-cgi/styles/main.css
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 27 Jun 2025 09:41:20 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Vary: accept-encoding
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=o0OAU78i0%2B9Nurifpbhl6ygaTKyixg2v%2F82B62ahAdmHAwQ%2FrXZCdY5SgQknjizBWv1R0U5bpebk4gGYsDI6wHXusIkj%2FfR5pwKhlbeZA7yFTjwXIQ%3D%3D"}]}
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
Server: cloudflare
CF-RAY: 9563fcf1e89156be-OSL

GET kutt.it/mX3bQG

172.67.188.125

302 Found

6.5 kB

URL

kutt.it/mX3bQG

IP / ASN

172.67.188.125

#13335 CLOUDFLARENET

Requested byN/A

Resource Info

File typeN/A

First Seen0001-01-01

Last Seen2025-08-02

Times Seen5605925

Size6.5 kB (6469 bytes)

MD5d41d8cd98f00b204e9800998ecf8427e

SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Certificate Info

IssuerGoogle Trust Services

Subjectkutt.it

Fingerprint29:D2:36:04:D8:90:D7:94:57:55:11:D2:C8:D8:82:BC:C2:A0:6A:F7

ValidityWed, 18 Jun 2025 18:51:39 GMT - Tue, 16 Sep 2025 19:50:05 GMT

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other

HTTP Headers

GET /mX3bQG HTTP/1.1
Host: kutt.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Fri, 27 Jun 2025 09:41:10 GMT
content-type: text/html; charset=utf-8
location: https://fastsettlementhub.click/
cf-ray: 9563fcb02cda0b06-OSL
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
origin-agent-cluster: ?1
referrer-policy: no-referrer, no-referrer-when-downgrade
strict-transport-security: max-age=15552000; includeSubDomains
x-content-type-options: nosniff, nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN, SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 0, 1; mode=block
vary: Accept
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IAacPMYDaCk8uxWKXANTw4FbwF%2BZMUT77xbWZhG6O6DIejBhDbWbJ2rMsY5KviKLbSshJqsIb08tDKoNd%2BBnW478s3VcwNi8X%2BuQ5meZmls8qJH6KndztvYR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfCacheStatus;desc="DYNAMIC", cfOrigin;dur=506,cfEdge;dur=28, cfL4;desc="?proto=TCP&rtt=5669&min_rtt=455&rtt_var=10411&sent=8&recv=11&lost=0&retrans=0&sent_bytes=3183&recv_bytes=1124&delivery_rate=5878213&cwnd=254&unsent_bytes=0&cid=29bde63c77add1d5&ts=563&x=0"
X-Firefox-Spdy: h2

GET fastsettlementhub.click/

104.21.39.149

504 Gateway Timeout

6.5 kB

URL

fastsettlementhub.click/

IP / ASN

104.21.39.149

#13335 CLOUDFLARENET

Requested byN/A

Resource Info

File typeHTML document, ASCII text, with very long lines (396)

First Seen2025-06-27

Last Seen2025-06-27

Times Seen1

Size6.5 kB (6469 bytes)

MD5af9b93fa19ee0dc060b3ef7d906ccfa0

SHA16c56ccafe7b2ef7a3ba36e9a540faae7101ffd7e

SHA256acd68fcbdd4298bd1ff3525c20c6df8eb53b1c66fca7b61fef5c697f82457ffa

Certificate Info

IssuerGoogle Trust Services

Subjectfastsettlementhub.click

Fingerprint7D:5C:08:1F:A8:01:E1:9A:47:05:6F:44:DE:50:30:72:FE:F7:17:3B

ValidityFri, 09 May 2025 17:25:42 GMT - Thu, 07 Aug 2025 18:24:28 GMT

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
suricata	low	ETPRO INFO HTTP Request to a *.click domain

HTTP Headers

GET / HTTP/1.1
Host: fastsettlementhub.click
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 504 Gateway Timeout
date: Fri, 27 Jun 2025 09:41:15 GMT
content-type: text/html; charset=UTF-8
content-length: 6469
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
referrer-policy: same-origin
x-frame-options: SAMEORIGIN
server: cloudflare
cf-ray: 9563fcb43b93569f-OSL
X-Firefox-Spdy: h2

GET fastsettlementhub.click/cdn-cgi/styles/main.css

104.21.39.149

200 OK

8.0 kB

URL

fastsettlementhub.click/cdn-cgi/styles/main.css

IP / ASN

104.21.39.149

#13335 CLOUDFLARENET

Requested byhttp://fastsettlementhub.click/

Resource Info

File typeASCII text, with very long lines (8012)

First Seen2023-04-05

Last Seen2025-08-02

Times Seen29401

Size8.0 kB (8013 bytes)

MD5ff26f59e28a5fe6ea4ab23586415696b

SHA14182675484d175e363cd34b43041b7b1af93d0cd

SHA256d30b4ea6f68456672f5abb35e9dcf7d54226372b66e9d60a7ee26b7a52568e74

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
suricata	low	ETPRO INFO HTTP Request to a *.click domain

HTTP Headers

GET /cdn-cgi/styles/main.css HTTP/1.1
Host: fastsettlementhub.click
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://fastsettlementhub.click/
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 27 Jun 2025 09:41:20 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: accept-encoding
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=gNBpe3J2L1gMkmt5mgnr%2B%2FhyB2E0rlwU8LG9glAbvAMNAnXoQZT56pgUHvMqXKE62%2FPz%2F2nXu%2Bhg6unN8KA6cEt0Oyama8nRnp2F1eRFKjzsV3M4WA%3D%3D"}]}
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
Content-Encoding: gzip
Server: cloudflare
CF-RAY: 9563fcf1abd556af-OSL

GET fastsettlementhub.click/cdn-cgi/images/cf-icon-browser.png

104.21.39.149

200 OK

484 B

URL

fastsettlementhub.click/cdn-cgi/images/cf-icon-browser.png

IP / ASN

104.21.39.149

#13335 CLOUDFLARENET

Requested byhttp://fastsettlementhub.click/

Resource Info

File typePNG image data, 100 x 80, 8-bit colormap, non-interlaced

First Seen2023-04-16

Last Seen2025-08-02

Times Seen9991

Size484 B (484 bytes)

MD559caf3c7eb63af78f12db37f41433779

SHA18024e688e78e910ae1ea3bc25be7a7ab65444b02

SHA25678a7d8b29cabf16831417dba1b9bbe36fae0d060a35a495e8f10e9663b3c9e65

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
suricata	low	ETPRO INFO HTTP Request to a *.click domain

HTTP Headers

GET /cdn-cgi/images/cf-icon-browser.png HTTP/1.1
Host: fastsettlementhub.click
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://fastsettlementhub.click/cdn-cgi/styles/main.css
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 27 Jun 2025 09:41:20 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Vary: accept-encoding
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=jD71N6KHt4KEYkuHR5CX8tiq2oNEbov2Az5TvIMJ7Th5JvdRRkfoZIOC0fscvHqz7MzRNOfyJ2c3fC53yPUG8WFNFc1I1qj4JGZkmaIfgNad0WPMwQ%3D%3D"}]}
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
Server: cloudflare
CF-RAY: 9563fcf1dc2656af-OSL

GET fastsettlementhub.click/cdn-cgi/images/cf-icon-ok.png

172.67.170.210

200 OK

946 B

URL

fastsettlementhub.click/cdn-cgi/images/cf-icon-ok.png

IP / ASN

172.67.170.210

#13335 CLOUDFLARENET

Requested byhttp://fastsettlementhub.click/

Resource Info

File typePNG image data, 48 x 48, 8-bit colormap, non-interlaced

First Seen2023-04-16

Last Seen2025-08-02

Times Seen10043

Size946 B (946 bytes)

MD5dfaf0fbb758c874be231335db178381d

SHA18f2597eb7ba4c89892aac0559816db3f5280b23e

SHA256ed732380ee3ff0f2d841784da213c8c05d2b5ae187a5217b419d21cae5cedb1b

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
suricata	low	ETPRO INFO HTTP Request to a *.click domain

HTTP Headers

GET /cdn-cgi/images/cf-icon-ok.png HTTP/1.1
Host: fastsettlementhub.click
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://fastsettlementhub.click/cdn-cgi/styles/main.css
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 27 Jun 2025 09:41:20 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Vary: accept-encoding
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=c2sreuKhNhyZ1EpIgMGOZ5NeSNAhOpOknaTEv3u7nr%2BaOFnUCt%2FULJ3q4Zvm%2ByKsvmx0lJn6YWEB5Wtj2U1aaVu1Q5w8JUkzqwhLoSU5qyolrZEHzA%3D%3D"}]}
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
Server: cloudflare
CF-RAY: 9563fcf1ebca0b61-OSL

GET fastsettlementhub.click/cdn-cgi/images/cf-icon-cloud.png

104.21.39.149

200 OK

1.5 kB

URL

fastsettlementhub.click/cdn-cgi/images/cf-icon-cloud.png

IP / ASN

104.21.39.149

#13335 CLOUDFLARENET

Requested byhttp://fastsettlementhub.click/

Resource Info

File typePNG image data, 152 x 77, 8-bit colormap, non-interlaced

First Seen2023-04-09

Last Seen2025-08-02

Times Seen10036

Size1.5 kB (1484 bytes)

MD53ec81e5e3a4de9fec46ce9e6999b9e27

SHA18f03b6857ab8d31feb65f97b1ae6b678efdc2ddd

SHA2563a223426c67a0a33ff57af68a57fb589fea36af2a6e8f9dae7798c77471e0e58

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
suricata	low	ETPRO INFO HTTP Request to a *.click domain

HTTP Headers

GET /cdn-cgi/images/cf-icon-cloud.png HTTP/1.1
Host: fastsettlementhub.click
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://fastsettlementhub.click/cdn-cgi/styles/main.css
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 27 Jun 2025 09:41:20 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Vary: accept-encoding
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=z58IKJSTBJfE%2B63cMINq1WUIUo1hPYabIN6hxOCy8m0A3N%2BedXPlDUvnWd9JP3pw%2Fjr3vRe12DmGpfiLgIon7dxWomg5Hywo5jwttpLtmR1LlRALDw%3D%3D"}]}
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
Server: cloudflare
CF-RAY: 9563fcf1ec3d56af-OSL

GET fastsettlementhub.click/cdn-cgi/images/cf-icon-error.png

172.67.170.210

200 OK

854 B

URL

fastsettlementhub.click/cdn-cgi/images/cf-icon-error.png

IP / ASN

172.67.170.210

#13335 CLOUDFLARENET

Requested byhttp://fastsettlementhub.click/

Resource Info

File typePNG image data, 48 x 48, 8-bit colormap, non-interlaced

First Seen2023-04-21

Last Seen2025-08-02

Times Seen10046

Size854 B (854 bytes)

MD5e5577f04b6d92590410e26bd2292933b

SHA116946b2c99d98a57f83eac170ce94b012b7d1a7b

SHA25667f70597a183fbca7fac55d609fbaac5c34bb4d4d32a0530bbbbb42591f2de2f

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
suricata	low	ETPRO INFO HTTP Request to a *.click domain

HTTP Headers

GET /cdn-cgi/images/cf-icon-error.png HTTP/1.1
Host: fastsettlementhub.click
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://fastsettlementhub.click/cdn-cgi/styles/main.css
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 27 Jun 2025 09:41:20 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Vary: accept-encoding
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=YPail%2BiLZEkJ2N3CuOJ8s5O4wceW4UjISOY45gQFwH2xIE2ZK75RyUpbBjMBqxm%2Fv9AC0SmBDYD4IPrSQKm1JbVBqCCGd91412MMG%2FC2Ytj5sq70pg%3D%3D"}]}
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
Server: cloudflare
CF-RAY: 9563fcf1e852b4f9-OSL

GET fastsettlementhub.click/favicon.ico

172.67.170.210

404 Not Found

285 B

URL

fastsettlementhub.click/favicon.ico

IP / ASN

172.67.170.210

#13335 CLOUDFLARENET

Requested byhttp://fastsettlementhub.click/

Resource Info

File typeHTML document, ASCII text

First Seen2025-06-27

Last Seen2025-06-27

Times Seen1

Size285 B (285 bytes)

MD5e9a42f4e7d1989662ddc8061c124065d

SHA148ed2d3ed693a879c16c225f949ce0b12da68e1c

SHA256c3127c3718f886fa7bb569b62247f5004a5cb986064db76406515f05b7118bcc

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
suricata	low	ETPRO INFO HTTP Request to a *.click domain

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: fastsettlementhub.click
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://fastsettlementhub.click/
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 27 Jun 2025 09:41:20 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Server: cloudflare
Cache-Control: max-age=14400
Cf-Cache-Status: MISS
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
Vary: accept-encoding
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=PaVKoA6kTt6Ryxa78RqcvEFXp4ituKStRNvueYUkFbB9EVAXlZ%2F6rB1d21SnIUWYXP%2BGQRMrY7Cu%2BaIC75QCP%2F%2F6WBzy%2Fet3TNWLMemlZFCHRTrKHw%3D%3D"}]}
Content-Encoding: gzip
CF-RAY: 9563fcf2594d56be-OSL
alt-svc: h2=":443"; ma=60