Report - ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/zgtm.html

Report Overview

Visited public
2025-05-06 11:18:08
Tags
meta facebook phishing social
URL
ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/zgtm.html
Finishing URL
ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/2502AT6872C6.html
IP / ASN
216.198.79.193
#16509 AMAZON-02
Title
Meta for Business - Page Appeal
Phishing - Facebook

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app	unknown	unknown	No data	No data	14 kB	1.8 MB	216.198.79.1
ipinfo.io	8136	unknown	No data	No data	527 B	650 B	34.117.59.81

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2025-05-06 11:17:50	medium	Client IP	34.117.59.81	ET POLICY Possible External IP Lookup Domain Observed in SNI (ipinfo. io)

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (7)

	URL	From	Size	First Seen	Last Seen
	ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/zgtm.html	ScriptElement	180 B	2025-05-06	2025-05-07
Pretty URL ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/zgtm.html IP 216.198.79.1 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2025-05-06 11:18 Last Seen2025-05-07 22:22 Times Seen2 Hash cc4d2d60ca51f724adb949fe4ff8c4be 6e8bd6bf488dec3e450e3dcde6d7ab56b2881d12 200015f5222b82e9cd2393f9c5cd206981c8f8337015a7d3fc0cde6fb451498f Loading...

	ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/styles/jquery.min.js.download	ScriptElement	88 kB	2023-08-31	2025-06-20
Pretty URL ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/styles/jquery.min.js.download IP 216.198.79.1 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-31 16:03 Last Seen2025-06-20 04:39 Times Seen40141 Hash 2c872dbe60f4ba70fb85356113d8b35e ee48592d1fff952fcf06ce0b666ed4785493afdc fc9a93dd241f6b045cbff0481cf4e1901becd0e12fb45166a8f17f95823f0b1a Loading...

	ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/2502AT6872C6.html	ScriptElement	153 B	2025-01-20	2025-06-19
Pretty URL ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/2502AT6872C6.html IP 216.198.79.1 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2025-01-20 11:39 Last Seen2025-06-19 10:31 Times Seen509 Hash eeb8146de4aab5b3cd2972a710feff1d 98b7002e42ece99aa67c8ea16d51a9799e30502e 7989328daf1c51ca658593fcc81c0914cd69ab328e4eb1909c89b3edfad216b4 Loading...

	ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/2502AT6872C6.html	ScriptElement	152 kB	2024-02-15	2025-06-19
Pretty URL ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/2502AT6872C6.html IP 216.198.79.1 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-02-15 03:47 Last Seen2025-06-19 21:08 Times Seen12037 Hash 246cdd9342d6df668fd36e314d7a3ffd e7f22a012295f5927074845f8556da9e50390261 6e9718d5fbecd8e2f158db327e1e58f2b865bec456b59f058c0b8c65a91ac0b6 Loading...

	ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/2502AT6872C6.html	ScriptElement	2.3 kB	2024-02-15	2025-06-19
Pretty URL ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/2502AT6872C6.html IP 216.198.79.1 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-02-15 03:47 Last Seen2025-06-19 16:16 Times Seen11981 Hash 3edd31c7a0371af06d714ca479808dee eaf11285d3b5593d666da6837d6c834f5614f61a 32e343a3d26ddd039f4f95587ced16ab59e263fab366741ffbd04cc3a9a11bff Loading...

	ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/2502AT6872C6.html	ScriptElement	35 kB	2025-05-06	2025-05-07
Pretty URL ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/2502AT6872C6.html IP 216.198.79.1 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2025-05-06 11:18 Last Seen2025-05-07 22:22 Times Seen2 Hash 6609c8082936ea75a115d2f557db1c37 2f2a6ac83cef58681aa93dfe32b7145b1dcef67e 5de4741a8b5449f9e2574454ef1660bc23fa96f8963da4c3b18c8bef8bd8548e Loading...

	ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/styles/js	ScriptElement	336 kB	2025-02-12	2025-06-19
Pretty URL ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/styles/js IP 216.198.79.1 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-02-12 19:04 Last Seen2025-06-19 21:08 Times Seen507 Hash f320631f4c3234d1bb62e1431fe9a66a cedfaafd5ac27cbde6c635141062dfde01320237 cc2257fb7c656f1604ad49b49bac4b5f40844fda8a1ad3fb376318a4846b3c89 Loading...

HTTP Transactions (26)

URL IP Response Size

GET ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/styles/ico.ico

216.198.79.1

200 OK

5.4 kB

URL GET
ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/styles/ico.ico
IP
216.198.79.1:443
ASN
#16509 AMAZON-02

Requested by
https://ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/zgtm.html
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintE3:1E:98:A9:DD:8B:60:D7:46:D6:CC:B1:15:28:72:F4:76:3D:CE:C1
ValidityMon, 21 Apr 2025 19:55:43 GMT - Sun, 20 Jul 2025 19:55:42 GMT

File type
MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel
Size
5.4 kB (5430 bytes)
Hash
6701a4ba0b931af579be35b93631da04
c8161484acccdd0cae1cd6484f56942cb7ffd7dc
ce8a22ece441cfd0f09fb0359b8d683fed0e66f8bec0bbc067a8257c95b05fd8

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Facebook

HTTP Headers

GET /styles/ico.ico HTTP/1.1
Host: ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/zgtm.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 16172
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="ico.ico"
content-encoding: br
content-type: image/vnd.microsoft.icon
date: Tue, 06 May 2025 11:17:46 GMT
etag: "6701a4ba0b931af579be35b93631da04"
last-modified: Tue, 06 May 2025 06:48:14 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::h6s47-1746530266043-9d81c21ee11d
content-length: 909
X-Firefox-Spdy: h2

GET ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/img/dir.png

216.198.79.1

404 Not Found

79 B

URL GET
ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/img/dir.png
IP
216.198.79.1:443
ASN
#16509 AMAZON-02

Requested by
https://ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/2502AT6872C6.html
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintE3:1E:98:A9:DD:8B:60:D7:46:D6:CC:B1:15:28:72:F4:76:3D:CE:C1
ValidityMon, 21 Apr 2025 19:55:43 GMT - Sun, 20 Jul 2025 19:55:42 GMT

File type
ASCII text
Size
79 B (79 bytes)
Hash
c4f4ca96fa6852d59429e6c1361c653c
c544583525fa89766538c53a303c66efb906f633
5d7deb535570919daf1162f30660c11c1a2e01fb398784cb195a2186388603a6

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Facebook

HTTP Headers

GET /id/img/dir.png HTTP/1.1
Host: ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/2502AT6872C6.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
cache-control: public, max-age=0, must-revalidate
content-type: text/plain; charset=utf-8
date: Tue, 06 May 2025 11:17:50 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-error: NOT_FOUND
x-vercel-id: arn1::rktvg-1746530270280-38179d0019e9
content-length: 79
X-Firefox-Spdy: h2

GET ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/img/star.png

216.198.79.1

404 Not Found

79 B

URL GET
ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/img/star.png
IP
216.198.79.1:443
ASN
#16509 AMAZON-02

Requested by
https://ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/2502AT6872C6.html
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintE3:1E:98:A9:DD:8B:60:D7:46:D6:CC:B1:15:28:72:F4:76:3D:CE:C1
ValidityMon, 21 Apr 2025 19:55:43 GMT - Sun, 20 Jul 2025 19:55:42 GMT

File type
ASCII text
Size
79 B (79 bytes)
Hash
9d4dcd6366445a9ca218517103b4a582
b17f285c955f6e0dfd30aaf199dd56e7e894eefb
ca76e51e04d32e3c650a05f0f7423a3139b7e6f5fd9bfea7a43a2e22782034ae

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Facebook

HTTP Headers

GET /id/img/star.png HTTP/1.1
Host: ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/2502AT6872C6.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
cache-control: public, max-age=0, must-revalidate
content-type: text/plain; charset=utf-8
date: Tue, 06 May 2025 11:17:50 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-error: NOT_FOUND
x-vercel-id: arn1::sz5rp-1746530270085-d6d315b71ffa
content-length: 79
X-Firefox-Spdy: h2

GET ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/img/star.png

216.198.79.1

404 Not Found

79 B

URL GET
ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/img/star.png
IP
216.198.79.1:443
ASN
#16509 AMAZON-02

Requested by
https://ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/2502AT6872C6.html
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintE3:1E:98:A9:DD:8B:60:D7:46:D6:CC:B1:15:28:72:F4:76:3D:CE:C1
ValidityMon, 21 Apr 2025 19:55:43 GMT - Sun, 20 Jul 2025 19:55:42 GMT

File type
ASCII text
Size
79 B (79 bytes)
Hash
0c226f9079ba0e074df441423548f00a
f29fcb23356aa88cb44ad3db60787ed6eafa6518
bc246eeb5aaba1f43635cbae255172d528baa3320752ae18c55f4e4b45643f34

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Facebook

HTTP Headers

GET /id/img/star.png HTTP/1.1
Host: ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/2502AT6872C6.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
cache-control: public, max-age=0, must-revalidate
content-type: text/plain; charset=utf-8
date: Tue, 06 May 2025 11:17:50 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-error: NOT_FOUND
x-vercel-id: arn1::89m9t-1746530270280-49e7e42d1896
content-length: 79
X-Firefox-Spdy: h2

GET ipinfo.io/json

34.117.59.81

200 OK

280 B

URL GET
ipinfo.io/json
IP
34.117.59.81:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/2502AT6872C6.html
Certificate
IssuerLet's Encrypt
Subjectipinfo.io
FingerprintCA:1B:73:7D:9E:7C:7D:87:8C:88:09:15:52:E2:16:13:F8:5A:9D:7A
ValidityMon, 05 May 2025 05:43:10 GMT - Sun, 03 Aug 2025 05:43:09 GMT

File type
JSON text data
Size
280 B (280 bytes)
Hash
adf22d9a8ca3a97a9ff78909b8702358
f5046826566a7e98d6b5e5c7b0a65677c3bde708
756edd1454b049c1370e83c864bc93dfdd82f44d8f9752b3068e5a11867a5de3

HTTP Headers

GET /json HTTP/1.1
Host: ipinfo.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/
Origin: https://ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
x-content-type-options: nosniff
content-type: application/json; charset=utf-8
content-encoding: gzip
date: Tue, 06 May 2025 11:17:50 GMT
vary: accept-encoding
via: 1.1 google
strict-transport-security: max-age=2592000; includeSubDomains
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/zgtm.html

216.198.79.1

200 OK

1.3 kB

URL User Request GET
ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/zgtm.html
IP
216.198.79.1:443
ASN
#16509 AMAZON-02

Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintE3:1E:98:A9:DD:8B:60:D7:46:D6:CC:B1:15:28:72:F4:76:3D:CE:C1
ValidityMon, 21 Apr 2025 19:55:43 GMT - Sun, 20 Jul 2025 19:55:42 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
1.3 kB (1271 bytes)
Hash
134d71922e6acdff9f2d7cfe2ef2eda7
fb2997ffa703b1f852770780d0583d734f428dcf
e8bd3929c652cc50727e2a852ca6d8bada5cd6950fa1f2ddc8237f51bf376c81

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Facebook

HTTP Headers

GET /zgtm.html HTTP/1.1
Host: ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 16640
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="zgtm.html"
content-encoding: br
content-type: text/html; charset=utf-8
date: Tue, 06 May 2025 11:17:45 GMT
etag: "134d71922e6acdff9f2d7cfe2ef2eda7"
last-modified: Tue, 06 May 2025 06:40:25 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::h6s47-1746530265691-31561432886f
content-length: 726
X-Firefox-Spdy: h2

GET ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/styles/js

216.198.79.1

200 OK

336 kB

URL GET
ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/styles/js
IP
216.198.79.1:443
ASN
#16509 AMAZON-02

Requested by
https://ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/2502AT6872C6.html
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintE3:1E:98:A9:DD:8B:60:D7:46:D6:CC:B1:15:28:72:F4:76:3D:CE:C1
ValidityMon, 21 Apr 2025 19:55:43 GMT - Sun, 20 Jul 2025 19:55:42 GMT

File type
JavaScript source, ASCII text, with very long lines (5960)
Size
336 kB (335473 bytes)
Hash
f320631f4c3234d1bb62e1431fe9a66a
cedfaafd5ac27cbde6c635141062dfde01320237
cc2257fb7c656f1604ad49b49bac4b5f40844fda8a1ad3fb376318a4846b3c89

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Facebook

HTTP Headers

GET /styles/js HTTP/1.1
Host: ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/2502AT6872C6.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 16172
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="js"
content-type: application/octet-stream
date: Tue, 06 May 2025 11:17:50 GMT
etag: "f320631f4c3234d1bb62e1431fe9a66a"
last-modified: Tue, 06 May 2025 06:48:17 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::7pq2g-1746530270071-6113c8cef32f
content-length: 335473
X-Firefox-Spdy: h2

GET ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/img/meta-logo-grey.png

216.198.79.1

404 Not Found

79 B

URL GET
ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/img/meta-logo-grey.png
IP
216.198.79.1:443
ASN
#16509 AMAZON-02

Requested by
https://ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/2502AT6872C6.html
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintE3:1E:98:A9:DD:8B:60:D7:46:D6:CC:B1:15:28:72:F4:76:3D:CE:C1
ValidityMon, 21 Apr 2025 19:55:43 GMT - Sun, 20 Jul 2025 19:55:42 GMT

File type
ASCII text
Size
79 B (79 bytes)
Hash
0a9aedd6a8a66c70fd859b6c7ccafc09
a5ef436c934b9ada002e0a3ebc35ca786c0eb77c
4fe9ef6514f4be0f6560c9f5607755cecf11ffcec6eab45fa529d8120fc986f8

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Facebook

HTTP Headers

GET /id/img/meta-logo-grey.png HTTP/1.1
Host: ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/2502AT6872C6.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
cache-control: public, max-age=0, must-revalidate
content-type: text/plain; charset=utf-8
date: Tue, 06 May 2025 11:17:50 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-error: NOT_FOUND
x-vercel-id: arn1::7pq2g-1746530270077-30d4114156ab
content-length: 79
X-Firefox-Spdy: h2

GET ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/img/no_avatar.png

216.198.79.1

404 Not Found

79 B

URL GET
ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/img/no_avatar.png
IP
216.198.79.1:443
ASN
#16509 AMAZON-02

Requested by
https://ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/2502AT6872C6.html
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintE3:1E:98:A9:DD:8B:60:D7:46:D6:CC:B1:15:28:72:F4:76:3D:CE:C1
ValidityMon, 21 Apr 2025 19:55:43 GMT - Sun, 20 Jul 2025 19:55:42 GMT

File type
ASCII text
Size
79 B (79 bytes)
Hash
8df146510bd00ac3057b77c23c69841b
8eda37a49d48427685e690cec38a8d39804f1cae
0f6809e7cd328b927c0448194b81cf6992ec7451a224ed1de27142f9c734a520

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Facebook

HTTP Headers

GET /id/img/no_avatar.png HTTP/1.1
Host: ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/2502AT6872C6.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
cache-control: public, max-age=0, must-revalidate
content-type: text/plain; charset=utf-8
date: Tue, 06 May 2025 11:17:50 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-error: NOT_FOUND
x-vercel-id: arn1::sz5rp-1746530270107-d4d544ccf62a
content-length: 79
X-Firefox-Spdy: h2

GET ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/img/doc.png

216.198.79.1

200 OK

5.7 kB

URL GET
ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/img/doc.png
IP
216.198.79.1:443
ASN
#16509 AMAZON-02

Requested by
https://ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/2502AT6872C6.html
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintE3:1E:98:A9:DD:8B:60:D7:46:D6:CC:B1:15:28:72:F4:76:3D:CE:C1
ValidityMon, 21 Apr 2025 19:55:43 GMT - Sun, 20 Jul 2025 19:55:42 GMT

File type
PNG image data, 60 x 60, 8-bit/color RGBA, non-interlaced
Size
5.7 kB (5723 bytes)
Hash
95382a6dab40d5911185a921c53e6f6b
4229cb577571111d747021988aac9dd6cd50634f
e341d9055288dfcd7dd5facab6c915f6b7bcffbf80f8b48468c7275b8cada069

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Facebook

HTTP Headers

GET /img/doc.png HTTP/1.1
Host: ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/2502AT6872C6.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 0
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="doc.png"
content-type: image/png
date: Tue, 06 May 2025 11:17:50 GMT
etag: "95382a6dab40d5911185a921c53e6f6b"
last-modified: Tue, 06 May 2025 11:17:50 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::7pq2g-1746530270081-910958b80b12
content-length: 5723
X-Firefox-Spdy: h2

GET ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/img/dir.png

216.198.79.1

404 Not Found

79 B

URL GET
ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/img/dir.png
IP
216.198.79.1:443
ASN
#16509 AMAZON-02

Requested by
https://ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/2502AT6872C6.html
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintE3:1E:98:A9:DD:8B:60:D7:46:D6:CC:B1:15:28:72:F4:76:3D:CE:C1
ValidityMon, 21 Apr 2025 19:55:43 GMT - Sun, 20 Jul 2025 19:55:42 GMT

File type
ASCII text
Size
79 B (79 bytes)
Hash
2505077a553fd64fcc2fa800913166ed
82c70688c03656eb81a2ec1663084426fb6de421
27cd4415f74d8c7d6bb395e49c3d5219beced3cffa9d983753852d01b50e7c15

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Facebook

HTTP Headers

GET /id/img/dir.png HTTP/1.1
Host: ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/2502AT6872C6.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
cache-control: public, max-age=0, must-revalidate
content-type: text/plain; charset=utf-8
date: Tue, 06 May 2025 11:17:50 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-error: NOT_FOUND
x-vercel-id: arn1::sz5rp-1746530270105-0b830f5a5ef0
content-length: 79
X-Firefox-Spdy: h2

GET ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/img/Mate.mp4

216.198.79.1

206 Partial Content

292 kB

URL GET
ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/img/Mate.mp4
IP
216.198.79.1:443
ASN
#16509 AMAZON-02

Requested by
https://ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/zgtm.html
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintE3:1E:98:A9:DD:8B:60:D7:46:D6:CC:B1:15:28:72:F4:76:3D:CE:C1
ValidityMon, 21 Apr 2025 19:55:43 GMT - Sun, 20 Jul 2025 19:55:42 GMT

File type
ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]
Size
292 kB (292266 bytes)
Hash
10b6a79b6905a100feb12b61fed435b8
0cc399458bb86e12ebcc7f81a34d7d18d4200d21
2fb6e516e0120a67c26d56cfc201f81f88eee2cd5df9bb5019fc79af6b5650a4

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Facebook

HTTP Headers

GET /img/Mate.mp4 HTTP/1.1
Host: ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/zgtm.html
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 206 Partial Content
accept-ranges: bytes
access-control-allow-origin: *
age: 16172
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="Mate.mp4"
content-range: bytes 0-292265/292266
content-type: video/mp4
date: Tue, 06 May 2025 11:17:46 GMT
etag: "10b6a79b6905a100feb12b61fed435b8"
last-modified: Tue, 06 May 2025 06:48:13 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::dnr99-1746530265994-c2e1d4877a09
content-length: 292266
X-Firefox-Spdy: h2

GET ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/styles/style.css

216.198.79.1

200 OK

14 kB

URL GET
ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/styles/style.css
IP
216.198.79.1:443
ASN
#16509 AMAZON-02

Requested by
https://ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/2502AT6872C6.html
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintE3:1E:98:A9:DD:8B:60:D7:46:D6:CC:B1:15:28:72:F4:76:3D:CE:C1
ValidityMon, 21 Apr 2025 19:55:43 GMT - Sun, 20 Jul 2025 19:55:42 GMT

File type
Unicode text, UTF-8 text
Size
14 kB (14424 bytes)
Hash
938ffb1f39a9c79e9d5e0f7efcdddfb6
25716ce5fe4b895828dcdcde637805a4e26a8527
2a1f8347a12c9437391faef8bd8f6074ad64b28d100d39d70ac3ddff25553be2

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Facebook

HTTP Headers

GET /styles/style.css HTTP/1.1
Host: ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/2502AT6872C6.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 16172
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="style.css"
content-encoding: br
content-type: text/css; charset=utf-8
date: Tue, 06 May 2025 11:17:50 GMT
etag: "938ffb1f39a9c79e9d5e0f7efcdddfb6"
last-modified: Tue, 06 May 2025 06:48:17 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::lltcv-1746530270069-3737c4307f8e
content-length: 3694
X-Firefox-Spdy: h2

GET ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/img/meta-logo-grey.png

216.198.79.1

200 OK

106 kB

URL GET
ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/img/meta-logo-grey.png
IP
216.198.79.1:443
ASN
#16509 AMAZON-02

Requested by
https://ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/2502AT6872C6.html
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintE3:1E:98:A9:DD:8B:60:D7:46:D6:CC:B1:15:28:72:F4:76:3D:CE:C1
ValidityMon, 21 Apr 2025 19:55:43 GMT - Sun, 20 Jul 2025 19:55:42 GMT

File type
PNG image data, 900 x 240, 8-bit/color RGBA, non-interlaced
Size
106 kB (105511 bytes)
Hash
ffba640622dd859d554ee43a03d53769
c91a100db7bfc04df9a5f3223d5b6f17536bf5ee
139d38d0fbfed2fd9f2b782af9b3eb08005b9bc75faaa31fe29720cc64bcab0f

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Facebook

HTTP Headers

GET /img/meta-logo-grey.png HTTP/1.1
Host: ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/2502AT6872C6.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 16172
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="meta-logo-grey.png"
content-type: image/png
date: Tue, 06 May 2025 11:17:50 GMT
etag: "ffba640622dd859d554ee43a03d53769"
last-modified: Tue, 06 May 2025 06:48:17 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::rktvg-1746530270082-9b9e371c60a9
content-length: 105511
X-Firefox-Spdy: h2

GET ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/img/2FA.png

216.198.79.1

200 OK

115 kB

URL GET
ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/img/2FA.png
IP
216.198.79.1:443
ASN
#16509 AMAZON-02

Requested by
https://ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/2502AT6872C6.html
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintE3:1E:98:A9:DD:8B:60:D7:46:D6:CC:B1:15:28:72:F4:76:3D:CE:C1
ValidityMon, 21 Apr 2025 19:55:43 GMT - Sun, 20 Jul 2025 19:55:42 GMT

File type
PNG image data, 541 x 252, 8-bit/color RGBA, non-interlaced
Size
115 kB (114767 bytes)
Hash
03d39d5d071182aba1b01ba2e859de39
7ba8f968b03e92fd59a6c4f6ce5c8aa36a5d2b92
a7fd65363687e512751d88f7850b61969427e8d3aa9a177946bcd4bc280b71ad

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Facebook

HTTP Headers

GET /img/2FA.png HTTP/1.1
Host: ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/2502AT6872C6.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 16172
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="2FA.png"
content-type: image/png
date: Tue, 06 May 2025 11:17:50 GMT
etag: "03d39d5d071182aba1b01ba2e859de39"
last-modified: Tue, 06 May 2025 06:48:17 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::lltcv-1746530270082-904a6f4773f8
content-length: 114767
X-Firefox-Spdy: h2

GET ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/img/meta-logo-grey.png

216.198.79.1

404 Not Found

79 B

URL GET
ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/img/meta-logo-grey.png
IP
216.198.79.1:443
ASN
#16509 AMAZON-02

Requested by
https://ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/2502AT6872C6.html
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintE3:1E:98:A9:DD:8B:60:D7:46:D6:CC:B1:15:28:72:F4:76:3D:CE:C1
ValidityMon, 21 Apr 2025 19:55:43 GMT - Sun, 20 Jul 2025 19:55:42 GMT

File type
ASCII text
Size
79 B (79 bytes)
Hash
884be434487fdb5bc9dae96b1c826074
c878cd51d608483e2490356105df5661c8bb9566
7383e64cd9d4ea2654c018a6fc488d5d80b951bbcbc3abf9d9709bb8adf36a6d

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Facebook

HTTP Headers

GET /id/img/meta-logo-grey.png HTTP/1.1
Host: ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/2502AT6872C6.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
cache-control: public, max-age=0, must-revalidate
content-type: text/plain; charset=utf-8
date: Tue, 06 May 2025 11:17:50 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-error: NOT_FOUND
x-vercel-id: arn1::m7nmn-1746530270265-45063c4011db
content-length: 79
X-Firefox-Spdy: h2

GET ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/img/block_2.png

216.198.79.1

404 Not Found

79 B

URL GET
ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/img/block_2.png
IP
216.198.79.1:443
ASN
#16509 AMAZON-02

Requested by
https://ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/2502AT6872C6.html
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintE3:1E:98:A9:DD:8B:60:D7:46:D6:CC:B1:15:28:72:F4:76:3D:CE:C1
ValidityMon, 21 Apr 2025 19:55:43 GMT - Sun, 20 Jul 2025 19:55:42 GMT

File type
ASCII text
Size
79 B (79 bytes)
Hash
16734ce1b45af15b64afa4b312f65daa
25921b606f75a60fa114fa03faf3c09494b751ae
358c8dce8506a8d7b960db7d71d8677d076593dee8247aab0de7e504ba4ed0e2

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Facebook

HTTP Headers

GET /id/img/block_2.png HTTP/1.1
Host: ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/2502AT6872C6.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
cache-control: public, max-age=0, must-revalidate
content-type: text/plain; charset=utf-8
date: Tue, 06 May 2025 11:17:50 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-error: NOT_FOUND
x-vercel-id: arn1::rktvg-1746530270264-32efab73f2ee
content-length: 79
X-Firefox-Spdy: h2

GET ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/styles/ico.ico

216.198.79.1

200 OK

5.4 kB

URL GET
ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/styles/ico.ico
IP
216.198.79.1:443
ASN
#16509 AMAZON-02

Requested by
https://ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/2502AT6872C6.html
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintE3:1E:98:A9:DD:8B:60:D7:46:D6:CC:B1:15:28:72:F4:76:3D:CE:C1
ValidityMon, 21 Apr 2025 19:55:43 GMT - Sun, 20 Jul 2025 19:55:42 GMT

File type
MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel
Size
5.4 kB (5430 bytes)
Hash
6701a4ba0b931af579be35b93631da04
c8161484acccdd0cae1cd6484f56942cb7ffd7dc
ce8a22ece441cfd0f09fb0359b8d683fed0e66f8bec0bbc067a8257c95b05fd8

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Facebook

HTTP Headers

GET /styles/ico.ico HTTP/1.1
Host: ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/2502AT6872C6.html
Cookie: _ga_MR52T79VEH=GS1.1.1746530270.1.0.1746530270.0.0.0; _ga=GA1.1.274583416.1746530270
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 16176
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="ico.ico"
content-encoding: br
content-type: image/vnd.microsoft.icon
date: Tue, 06 May 2025 11:17:50 GMT
etag: "6701a4ba0b931af579be35b93631da04"
last-modified: Tue, 06 May 2025 06:48:14 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::sz5rp-1746530270641-79641a29f338
content-length: 909
X-Firefox-Spdy: h2

GET ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/styles/bootstrap.min.css

216.198.79.1

200 OK

186 kB

URL GET
ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/styles/bootstrap.min.css
IP
216.198.79.1:443
ASN
#16509 AMAZON-02

Requested by
https://ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/2502AT6872C6.html
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintE3:1E:98:A9:DD:8B:60:D7:46:D6:CC:B1:15:28:72:F4:76:3D:CE:C1
ValidityMon, 21 Apr 2025 19:55:43 GMT - Sun, 20 Jul 2025 19:55:42 GMT

File type
Unicode text, UTF-8 text, with very long lines (334)
Size
186 kB (185717 bytes)
Hash
6636c2dab79c70d2af7ee3ac42212655
feb8913114476bee87f055089baa9333760b74c9
1f0b3550fd4a1380d991b3d2ef78a91ca45b8caef07a142a401df48d114aaeb8

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Facebook

HTTP Headers

GET /styles/bootstrap.min.css HTTP/1.1
Host: ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/2502AT6872C6.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 16172
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="bootstrap.min.css"
content-encoding: br
content-type: text/css; charset=utf-8
date: Tue, 06 May 2025 11:17:50 GMT
etag: "6636c2dab79c70d2af7ee3ac42212655"
last-modified: Tue, 06 May 2025 06:48:17 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::lltcv-1746530270064-e7a436ec4e0a
content-length: 27139
X-Firefox-Spdy: h2

GET ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/img/fb_round_logo.png

216.198.79.1

200 OK

43 kB

URL GET
ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/img/fb_round_logo.png
IP
216.198.79.1:443
ASN
#16509 AMAZON-02

Requested by
https://ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/2502AT6872C6.html
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintE3:1E:98:A9:DD:8B:60:D7:46:D6:CC:B1:15:28:72:F4:76:3D:CE:C1
ValidityMon, 21 Apr 2025 19:55:43 GMT - Sun, 20 Jul 2025 19:55:42 GMT

File type
PNG image data, 1200 x 1200, 8-bit/color RGBA, non-interlaced
Size
43 kB (42676 bytes)
Hash
81bb5cf1e451109cf0b1868b2152914b
b70017639afc079394be1ea8625f7c4beb44d617
676c83478e410d324fe56aca428d3305505732c648667b22e15c8222117c75e6

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Facebook

HTTP Headers

GET /img/fb_round_logo.png HTTP/1.1
Host: ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/2502AT6872C6.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 16172
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="fb_round_logo.png"
content-type: image/png
date: Tue, 06 May 2025 11:17:50 GMT
etag: "81bb5cf1e451109cf0b1868b2152914b"
last-modified: Tue, 06 May 2025 06:48:17 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::lltcv-1746530270074-9108fd97a596
content-length: 42676
X-Firefox-Spdy: h2

GET ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/img/save_img.png

216.198.79.1

200 OK

7.6 kB

URL GET
ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/img/save_img.png
IP
216.198.79.1:443
ASN
#16509 AMAZON-02

Requested by
https://ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/2502AT6872C6.html
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintE3:1E:98:A9:DD:8B:60:D7:46:D6:CC:B1:15:28:72:F4:76:3D:CE:C1
ValidityMon, 21 Apr 2025 19:55:43 GMT - Sun, 20 Jul 2025 19:55:42 GMT

File type
PNG image data, 120 x 120, 8-bit colormap, non-interlaced
Size
7.6 kB (7550 bytes)
Hash
8d3bcd1278891fc1e52d38e72549b3d0
af1ab86b5a3993c468c3be9c59a8ed3d9091454d
8fc3f44a189200b47c93a90ad8dffe40fcdeda8a718e62bb4baf98f00d536e97

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Facebook

HTTP Headers

GET /img/save_img.png HTTP/1.1
Host: ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/2502AT6872C6.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 16172
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="save_img.png"
content-type: image/png
date: Tue, 06 May 2025 11:17:50 GMT
etag: "8d3bcd1278891fc1e52d38e72549b3d0"
last-modified: Tue, 06 May 2025 06:48:17 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::89m9t-1746530270080-91b5b48bf65d
content-length: 7550
X-Firefox-Spdy: h2

GET ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/2502AT6872C6.html

216.198.79.1

200 OK

302 kB

URL User Request GET
ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/2502AT6872C6.html
IP
216.198.79.1:443
ASN
#16509 AMAZON-02

Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintE3:1E:98:A9:DD:8B:60:D7:46:D6:CC:B1:15:28:72:F4:76:3D:CE:C1
ValidityMon, 21 Apr 2025 19:55:43 GMT - Sun, 20 Jul 2025 19:55:42 GMT

File type
HTML document, ASCII text, with very long lines (617)
Size
302 kB (302492 bytes)
Hash
f396619faf541f71c50648a626f3d75e
7a5563da3e61029a78f4e3e4c44f80266c338653
93fe6c2178623b388e9c63123581d61d91a82a1a5b193ebd1879ebf6ce938aff

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Facebook

HTTP Headers

GET /id/2502AT6872C6.html HTTP/1.1
Host: ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/zgtm.html
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 16172
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="2502AT6872C6.html"
content-encoding: br
content-type: text/html; charset=utf-8
date: Tue, 06 May 2025 11:17:49 GMT
etag: "f396619faf541f71c50648a626f3d75e"
last-modified: Tue, 06 May 2025 06:48:17 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::lltcv-1746530269972-5568e15fc1df
content-length: 53878
X-Firefox-Spdy: h2

GET ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/styles/jquery.min.js.download

216.198.79.1

200 OK

88 kB

URL GET
ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/styles/jquery.min.js.download
IP
216.198.79.1:443
ASN
#16509 AMAZON-02

Requested by
https://ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/2502AT6872C6.html
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintE3:1E:98:A9:DD:8B:60:D7:46:D6:CC:B1:15:28:72:F4:76:3D:CE:C1
ValidityMon, 21 Apr 2025 19:55:43 GMT - Sun, 20 Jul 2025 19:55:42 GMT

File type
JavaScript source, ASCII text, with very long lines (65447)
Size
88 kB (87533 bytes)
Hash
2c872dbe60f4ba70fb85356113d8b35e
ee48592d1fff952fcf06ce0b666ed4785493afdc
fc9a93dd241f6b045cbff0481cf4e1901becd0e12fb45166a8f17f95823f0b1a

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Facebook

HTTP Headers

GET /styles/jquery.min.js.download HTTP/1.1
Host: ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/2502AT6872C6.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 16172
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="jquery.min.js.download"
content-type: application/octet-stream
date: Tue, 06 May 2025 11:17:50 GMT
etag: "2c872dbe60f4ba70fb85356113d8b35e"
last-modified: Tue, 06 May 2025 06:48:17 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::89m9t-1746530270066-4146e365fd0b
content-length: 87533
X-Firefox-Spdy: h2

GET ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/img/block_2.png

216.198.79.1

404 Not Found

79 B

URL GET
ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/img/block_2.png
IP
216.198.79.1:443
ASN
#16509 AMAZON-02

Requested by
https://ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/2502AT6872C6.html
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintE3:1E:98:A9:DD:8B:60:D7:46:D6:CC:B1:15:28:72:F4:76:3D:CE:C1
ValidityMon, 21 Apr 2025 19:55:43 GMT - Sun, 20 Jul 2025 19:55:42 GMT

File type
ASCII text
Size
79 B (79 bytes)
Hash
ca573cf5ad6e622b30a974694572e73b
4119ab29d1b56a8d404a97e655e6d1200516f693
27879424c28901be4117947801c23d036da3e091b36a54fcd5d6ceb5a99985bd

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Facebook

HTTP Headers

GET /id/img/block_2.png HTTP/1.1
Host: ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/2502AT6872C6.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
cache-control: public, max-age=0, must-revalidate
content-type: text/plain; charset=utf-8
date: Tue, 06 May 2025 11:17:50 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-error: NOT_FOUND
x-vercel-id: arn1::rktvg-1746530270076-fe04baa5f9e0
content-length: 79
X-Firefox-Spdy: h2

GET ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/img/phone.png

216.198.79.1

200 OK

255 kB

URL GET
ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/img/phone.png
IP
216.198.79.1:443
ASN
#16509 AMAZON-02

Requested by
https://ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/2502AT6872C6.html
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintE3:1E:98:A9:DD:8B:60:D7:46:D6:CC:B1:15:28:72:F4:76:3D:CE:C1
ValidityMon, 21 Apr 2025 19:55:43 GMT - Sun, 20 Jul 2025 19:55:42 GMT

File type
PNG image data, 640 x 280, 8-bit/color RGBA, non-interlaced
Size
255 kB (255341 bytes)
Hash
3c18a93313e72ab9967152a4e92aa238
74671591dd7cc381c6ec6de1137b83c0e2f4d7ec
fbc7addde1cd6057bd59c03941fcf38a6ac17dd90312d142ebd7520891c3656e

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Facebook

HTTP Headers

GET /img/phone.png HTTP/1.1
Host: ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/2502AT6872C6.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 16172
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="phone.png"
content-type: image/png
date: Tue, 06 May 2025 11:17:50 GMT
etag: "3c18a93313e72ab9967152a4e92aa238"
last-modified: Tue, 06 May 2025 06:48:17 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::89m9t-1746530270083-03c74956b5b7
content-length: 255341
X-Firefox-Spdy: h2

GET ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/img/no_avatar.png

216.198.79.1

404 Not Found

79 B

URL GET
ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/img/no_avatar.png
IP
216.198.79.1:443
ASN
#16509 AMAZON-02

Requested by
https://ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/2502AT6872C6.html
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintE3:1E:98:A9:DD:8B:60:D7:46:D6:CC:B1:15:28:72:F4:76:3D:CE:C1
ValidityMon, 21 Apr 2025 19:55:43 GMT - Sun, 20 Jul 2025 19:55:42 GMT

File type
ASCII text
Size
79 B (79 bytes)
Hash
6f2aa0cce069fed233d233fa3c7a367a
65a6bee5babbfe9ff50b01cbf5084c3ebc3b9f5f
a4e2761df90d8d546d56ddc64e73fe8bc9a93126c352744693cb545fd3fb6ce9

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Facebook

HTTP Headers

GET /id/img/no_avatar.png HTTP/1.1
Host: ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggaeeuyjxg4giaegiofmg4iabbfgccyoxiabbikbtipcaeqrrg7gimbgle.vercel.app/id/2502AT6872C6.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
cache-control: public, max-age=0, must-revalidate
content-type: text/plain; charset=utf-8
date: Tue, 06 May 2025 11:17:50 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-error: NOT_FOUND
x-vercel-id: arn1::sz5rp-1746530270281-a048f8c0da52
content-length: 79
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (7)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (26)

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash