Report - pub-4af31b6ada8c483384313be39b573d6c.r2.dev/3.html

Report Overview

Visited public
2024-07-25 09:16:55
Tags
suspicious
Submit Tags
URL
pub-4af31b6ada8c483384313be39b573d6c.r2.dev/3.html
Finishing URL
pub-4af31b6ada8c483384313be39b573d6c.r2.dev/3.html
IP / ASN
104.18.3.35
#13335 CLOUDFLARENET
Title
Login - ANZ Internet Banking
Suspicious - Suspicious Javascript code

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
ajax.googleapis.com	12905	2005-01-25	2013-08-16 11:51:31	2024-07-25 08:58:06	395 B	31 kB	142.250.74.106
api.ipify.org	3267	2014-01-05	2014-10-06 14:38:43	2024-07-24 23:39:38	465 B	267 B	104.26.12.205
r10.o.lencr.org	unknown	2020-06-29	2024-06-06 21:45:11	2024-07-24 18:12:02	2.3 kB	6.2 kB	23.36.77.32
pub-4af31b6ada8c483384313be39b573d6c.r2.dev	unknown	unknown	No data	No data	504 B	576 kB	104.18.2.35
o.pki.goog	unknown	2016-06-13	2024-04-24 13:44:57	2024-07-24 18:12:52	650 B	1.4 kB	142.250.74.131

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2024-07-25 09:16:32	low	Client IP	104.26.12.205	ET INFO External IP Address Lookup Domain (ipify .org) in TLS SNI

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-07-24	medium	pub-4af31b6ada8c483384313be39b573d6c.r2.dev/3.html	Australia and New Zealand Banking Group

PhishTank

Scan Date	Severity	Indicator	Alert
2024-05-10	medium	pub-4af31b6ada8c483384313be39b573d6c.r2.dev/3.html	Other

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (5)

	URL	From	Size	First Seen	Last Seen
	pub-4af31b6ada8c483384313be39b573d6c.r2.dev/3.html	ScriptElement	1.4 kB	2024-05-15	2024-09-28
Pretty URL pub-4af31b6ada8c483384313be39b573d6c.r2.dev/3.html IP 104.18.2.35 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-15 07:31 Last Seen2024-09-28 08:17 Times Seen34 Hash e31b67e2a047fb995a6c6554738d59c9 565d272cf5bf5d165b40b24acd87b2aa4b4d6cc3 02c999ad613ffab369422e4d673a4084a2d9e385eb74149af1ee0f625b48f3bb Loading...

	pub-4af31b6ada8c483384313be39b573d6c.r2.dev/3.html	ScriptElement	1.6 kB	2024-05-15	2024-09-28
Pretty URL pub-4af31b6ada8c483384313be39b573d6c.r2.dev/3.html IP 104.18.2.35 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-15 07:31 Last Seen2024-09-28 08:17 Times Seen34 Hash cc01e8d2c60dbc426606695ebebceb59 6035aa837bed8e6fe3e1ff57eb97a82fcb2b1bd6 8ceaa74b43890ab0d2b35294158358eb3a80af087e0c220730b1386684e7cc45 Loading...

	pub-4af31b6ada8c483384313be39b573d6c.r2.dev/3.html	ScriptElement	224 B	2024-05-15	2025-04-09
Pretty URL pub-4af31b6ada8c483384313be39b573d6c.r2.dev/3.html IP 104.18.2.35 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-15 07:31 Last Seen2025-04-09 02:37 Times Seen36 Hash 00ab8ba818c235173d68dd4ca4e69030 a2a2111a44d8a6c19d21eccac0aede11ff857421 78b232b2bf638eb17dee723ee37bd27858ec46072b77fce37b7f6cf0b9186d9d Loading...

	pub-4af31b6ada8c483384313be39b573d6c.r2.dev/3.html	ScriptElement	684 B	2024-05-15	2024-09-28
Pretty URL pub-4af31b6ada8c483384313be39b573d6c.r2.dev/3.html IP 104.18.2.35 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-15 07:31 Last Seen2024-09-28 08:17 Times Seen34 Hash 666923a566276bcdb46c2e47fb926be0 8b8a324b330b9e7e5c8d1e61492b9f2375d13706 1428d668025dcbb27730975fcdb93b90ee995840393ab3e792a908846d989b4e Loading...

	ajax.googleapis.com/ajax/libs/jquery/3.2.1/jquery.min.js	ScriptElement	87 kB	2023-03-07	2025-07-16
Pretty URL ajax.googleapis.com/ajax/libs/jquery/3.2.1/jquery.min.js IP 142.250.74.106 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-07-16 08:25 Times Seen42962 Hash c9f5aeeca3ad37bf2aa006139b935f0a 1055018c28ab41087ef9ccefe411606893dabea2 87083882cc6015984eb0411a99d3981817f5dc5c90ba24f0940420c5548d82de Loading...

HTTP Transactions (12)

URL IP Response Size

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
21fba4953d0a666a4844d872097cb8f4
80ac64ff700d5d02eb9901123ecd64f02c9e3ec2
f5c60f75b60eb8ef8e42e66fcad10e8df5759fe29bad30a23871fb7c1da61456

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "F5C60F75B60EB8EF8E42E66FCAD10E8DF5759FE29BAD30A23871FB7C1DA61456"
Last-Modified: Wed, 24 Jul 2024 18:27:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3690
Expires: Thu, 25 Jul 2024 10:17:59 GMT
Date: Thu, 25 Jul 2024 09:16:29 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
8ee91f15329e1523b1f6bd250d539943
6972bcf5758adc1f49f957cace3db5a9946258f9
817924c0d86deb9a192c4ec3aa86ff6468fd399272a429ad872b4f0b6c73b73e

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "817924C0D86DEB9A192C4EC3AA86FF6468FD399272A429AD872B4F0B6C73B73E"
Last-Modified: Wed, 24 Jul 2024 18:28:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3745
Expires: Thu, 25 Jul 2024 10:18:54 GMT
Date: Thu, 25 Jul 2024 09:16:29 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
53c120d8bd28a824c423b6b51e6a5f07
8c8f9015ddb4e7bbd18c0b35103ff1e8a0b7d5c1
0ef528831322336534e6b28ac3db61ac793b2b52f700672aee09ee5b1c92a2c7

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "0EF528831322336534E6B28AC3DB61AC793B2B52F700672AEE09EE5B1C92A2C7"
Last-Modified: Wed, 24 Jul 2024 18:26:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5239
Expires: Thu, 25 Jul 2024 10:43:48 GMT
Date: Thu, 25 Jul 2024 09:16:29 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
b1e4e1a92df74669a74711c4eaef2acc
a26f28116849cc857a0e31e3495f659e0cd36ac4
77f9d9afcb4a72b62085fa7ca04adb0007edaec1ab4bde5c4b82272a786a6cad

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "77F9D9AFCB4A72B62085FA7CA04ADB0007EDAEC1AB4BDE5C4B82272A786A6CAD"
Last-Modified: Wed, 24 Jul 2024 18:57:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2238
Expires: Thu, 25 Jul 2024 09:53:47 GMT
Date: Thu, 25 Jul 2024 09:16:29 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
91392416ed946eb8b26810ff46d7e57e
8ce21a441df1ac09da4ebf098eaf47e2d74bbff0
5d153b40d51555b8f2717f7e56bfbe3be25b1b38a18b31715eea4ddff345f98a

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "5D153B40D51555B8F2717F7E56BFBE3BE25B1B38A18B31715EEA4DDFF345F98A"
Last-Modified: Wed, 24 Jul 2024 18:27:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7940
Expires: Thu, 25 Jul 2024 11:28:51 GMT
Date: Thu, 25 Jul 2024 09:16:31 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
91392416ed946eb8b26810ff46d7e57e
8ce21a441df1ac09da4ebf098eaf47e2d74bbff0
5d153b40d51555b8f2717f7e56bfbe3be25b1b38a18b31715eea4ddff345f98a

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "5D153B40D51555B8F2717F7E56BFBE3BE25B1B38A18B31715EEA4DDFF345F98A"
Last-Modified: Wed, 24 Jul 2024 18:27:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7940
Expires: Thu, 25 Jul 2024 11:28:51 GMT
Date: Thu, 25 Jul 2024 09:16:31 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
91392416ed946eb8b26810ff46d7e57e
8ce21a441df1ac09da4ebf098eaf47e2d74bbff0
5d153b40d51555b8f2717f7e56bfbe3be25b1b38a18b31715eea4ddff345f98a

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "5D153B40D51555B8F2717F7E56BFBE3BE25B1B38A18B31715EEA4DDFF345F98A"
Last-Modified: Wed, 24 Jul 2024 18:27:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7940
Expires: Thu, 25 Jul 2024 11:28:51 GMT
Date: Thu, 25 Jul 2024 09:16:31 GMT
Connection: keep-alive

GET pub-4af31b6ada8c483384313be39b573d6c.r2.dev/3.html

104.18.2.35

200 OK

575 kB

URL User Request GET HTTP/1.1
pub-4af31b6ada8c483384313be39b573d6c.r2.dev/3.html
IP
104.18.2.35:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerLet's Encrypt
Subject*.r2.dev
Fingerprint00:AA:40:3F:3E:AE:B0:85:C2:A1:9B:9E:8B:A4:F4:21:D4:DE:DD:AC
ValidityMon, 03 Jun 2024 14:44:39 GMT - Sun, 01 Sep 2024 14:44:38 GMT

File type
HTML document, ASCII text, with very long lines (65536), with no line terminators
Size
575 kB (575199 bytes)
Hash
bcb86e203e1912457404e97bca2fe4e8
fe7ff579c30d5dcf97185a517fe29c11eb025b85
9d74d1810c80336a13372fa7c360e61a85721430ec44baedb50b0ab99169cd2d

Detections

Analyzer	Verdict	Alert
urlquery	suspicious	Suspicious - Suspicious Javascript code
OpenPhish	phishing	Australia and New Zealand Banking Group
PhishTank	phishing	Other

HTTP Headers

GET /3.html HTTP/1.1
Host: pub-4af31b6ada8c483384313be39b573d6c.r2.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 25 Jul 2024 09:16:31 GMT
Content-Type: text/html
Content-Length: 575199
Connection: keep-alive
Accept-Ranges: bytes
ETag: "bcb86e203e1912457404e97bca2fe4e8"
Last-Modified: Mon, 06 May 2024 16:13:32 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8a8b0d2dfa9d0b02-OSL

o.pki.goog/wr2

142.250.74.131

472 B

URL
o.pki.goog/wr2
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
be6a0d1fd767eeee1dafa4d0f9df37f4
46fdde0fe36d851f832b43740d6d45e6caebf47c
eb65465ac9d07953e6af672bf1fa2358e015695486031a9b9a8f670265f66737

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 25 Jul 2024 09:16:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

GET ajax.googleapis.com/ajax/libs/jquery/3.2.1/jquery.min.js

142.250.74.106

200 OK

30 kB

URL GET HTTP/2
ajax.googleapis.com/ajax/libs/jquery/3.2.1/jquery.min.js
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://pub-4af31b6ada8c483384313be39b573d6c.r2.dev/3.html
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint8F:1C:80:D7:A7:FA:04:F3:EE:EF:70:FD:56:35:32:FD:55:AB:63:5F
ValidityMon, 24 Jun 2024 07:40:53 GMT - Mon, 16 Sep 2024 07:40:52 GMT

File type
JavaScript source, ASCII text, with very long lines (32058)
Size
30 kB (30306 bytes)
Hash
c9f5aeeca3ad37bf2aa006139b935f0a
1055018c28ab41087ef9ccefe411606893dabea2
87083882cc6015984eb0411a99d3981817f5dc5c90ba24f0940420c5548d82de

HTTP Headers

GET /ajax/libs/jquery/3.2.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30306
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 Jul 2024 20:44:29 GMT
expires: Thu, 24 Jul 2025 20:44:29 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 45123
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

o.pki.goog/wr2

142.250.74.131

472 B

URL
o.pki.goog/wr2
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
be6a0d1fd767eeee1dafa4d0f9df37f4
46fdde0fe36d851f832b43740d6d45e6caebf47c
eb65465ac9d07953e6af672bf1fa2358e015695486031a9b9a8f670265f66737

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 25 Jul 2024 09:16:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

GET api.ipify.org/?format=json

104.26.12.205

200 OK

21 B

URL GET HTTP/2
api.ipify.org/?format=json
IP
104.26.12.205:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pub-4af31b6ada8c483384313be39b573d6c.r2.dev/3.html
Certificate
IssuerGoogle Trust Services
Subjectipify.org
Fingerprint14:92:0D:1D:39:E0:D3:AD:DC:06:2E:2E:6B:21:C6:C0:AC:D6:A1:B6
ValidityThu, 18 Jul 2024 02:50:08 GMT - Wed, 16 Oct 2024 02:50:07 GMT

File type
JSON text data
Size
21 B (21 bytes)
Hash
7d69c71af0f191e9a72db6153f8018d1
f67c5f2887bc05654b47f76e9621e53a4091aed1
5bac6e06cf0e1ad38c55f9f9d12122272bf4b8157877629fe68cd33fe2133c65

HTTP Headers

GET /?format=json HTTP/1.1
Host: api.ipify.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pub-4af31b6ada8c483384313be39b573d6c.r2.dev
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 25 Jul 2024 09:16:32 GMT
content-type: application/json
content-length: 21
access-control-allow-origin: *
vary: Origin
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 8a8b0d3e2a1b0b65-OSL
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (5)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (12)

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN