Report - keepo.io/att867979/

Report Overview

Visited public
2023-12-01 01:11:59
Tags
URL
keepo.io/att867979/
Finishing URL
keepo.io/att867979/
IP / ASN
54.230.111.49
#16509 AMAZON-02
Title
att

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
api.keepo.io	unknown	2020-12-04	2021-05-19 12:35:38	2023-11-30 13:49:02	610 B	410 B	54.233.248.67
fonts.googleapis.com	8877	2005-01-25	2013-06-10 22:14:26	2023-11-30 06:03:12	485 B	1.9 kB	142.250.74.106
fonts.gstatic.com	unknown	2008-02-11	2014-09-09 02:40:21	2023-11-30 06:35:27	1.6 kB	104 kB	216.58.207.227
www.googletagmanager.com	75	2011-11-11	2013-05-22 04:07:37	2023-11-30 08:05:45	1.3 kB	242 kB	142.250.74.168
static.keepo.io	unknown	2020-12-04	2022-11-09 06:55:42	2023-11-30 10:00:18	549 B	54 kB	54.230.111.91
keepo.io	unknown	2020-12-04	2020-12-05 17:42:49	2023-11-30 18:06:14	2.1 kB	264 kB	54.230.111.35

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2023-11-30	medium	keepo.io/att867979/	AT&T Inc.

PhishTank

Scan Date	Severity	Indicator	Alert
2023-11-30	medium	keepo.io/att867979/	Other

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (5)

	URL	From	Size	First Seen	Last Seen
	www.googletagmanager.com/gtm.js?id=GTM-T65ZLWP	ScriptElement	170 kB	2023-12-01	2023-12-01
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-T65ZLWP IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-01 02:11 Last Seen2023-12-01 02:11 Times Seen1 Hash 1de9a45243fc178881569ad909790cc8 33f3fadd504572064d832558856686be552d8490 4202bae5fac25b9ac3cc58a5fc80fc4617b60b23b67cbcd51fd4b1e00495bd62 Loading...

	www.googletagmanager.com/gtag/js?id=G-3DRNLZNR7J&l=dataLayer&cx=c	ScriptElement	266 kB	2023-12-01	2023-12-01
Pretty URL www.googletagmanager.com/gtag/js?id=G-3DRNLZNR7J&l=dataLayer&cx=c IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-01 02:11 Last Seen2023-12-01 02:11 Times Seen1 Hash 533c8300425cd40b645cd908b594812c 828df55127e5370ca6833dbd29f6a7a33b794b2c c3d2f13c97f1f701fb27fb522d89a7c80dc9d3470bbe1c93ab0f8478f0d1a8b9 Loading...

	www.googletagmanager.com/gtag/js?id=G-8TTCQTD2HM&l=dataLayer&cx=c	ScriptElement	266 kB	2023-12-01	2023-12-01
Pretty URL www.googletagmanager.com/gtag/js?id=G-8TTCQTD2HM&l=dataLayer&cx=c IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-01 02:11 Last Seen2023-12-01 02:11 Times Seen1 Hash bccf8b5a6c877ef3f277a9183d994e78 fc68183f9221afc9a6700fdc83ab4052f201fb60 a5d8f0a73b72188b6b1d9be126f2b84f827052b8adae881e78191542badfe99b Loading...

	keepo.io/att867979/main.bundle.213c0009b9c60e143e9b.js	ScriptElement	194 kB	2024-08-20	2024-08-20
Pretty URL keepo.io/att867979/main.bundle.213c0009b9c60e143e9b.js IP 54.230.111.35 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-20 17:14 Last Seen2024-08-20 17:14 Times Seen1 Hash 08236e9e234cc4ab8071c523e1cd9ac6 d0b292d36f965fc271747ebd0438b26f4a5da8a0 a4560ee85fc2bef514d7f9e6ea3150fb7768d1ecfc7bdace8d607318ff728995 Loading...

	keepo.io/att867979/	ScriptElement	593 B	2023-09-12	2025-05-04
Pretty URL keepo.io/att867979/ IP 54.230.111.35 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-12 15:26 Last Seen2025-05-04 09:30 Times Seen232 Hash 1110c91a0dd8b7e478ca272b30244c6f 47dfa217edb3e8a7ef3e2ad9cdc0f43bafada6d6 63eea8b204e7e8a855027201944daa375157a65c089b5d258dd97636035418c9 Loading...

HTTP Transactions (13)

URL IP Response Size

fonts.googleapis.com/css2?family=Inter:wght@400;700&family=Poppins:wght@400;600&display=swap

142.250.74.106

200 OK

1.2 kB

URL GET HTTP/2
fonts.googleapis.com/css2?family=Inter:wght@400;700&family=Poppins:wght@400;600&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://keepo.io/att867979/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
gzip compressed data, max compression\012- data
Size
1.2 kB (1240 bytes)
Hash
39075210471d5266dc524141cfa97303
a3249856228cc8afc3da1a5164e4a1856590d869
020759b72b4a65a815bd27d39c21d70c73a6a84775b6e9b3a326f8c91f0b0146

HTTP Headers

GET /css2?family=Inter:wght@400;700&family=Poppins:wght@400;600&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://keepo.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 01 Dec 2023 01:11:41 GMT
date: Fri, 01 Dec 2023 01:11:41 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2

216.58.207.227

200 OK

47 kB

URL GET HTTP/2
fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://keepo.io/att867979/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 46704, version 1.0\012- data
Size
47 kB (46704 bytes)
Hash
30a274cd01b6eeb0b082c918b0697f1e
393311bde26b99a4ad935fa55bad1dce7994388b
88df0b5a7bc397dbc13a26bb8b3742cc62cd1c9b0dded57da7832416d6f52f42

HTTP Headers

GET /s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://keepo.io
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46704
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 07:29:24 GMT
expires: Fri, 29 Nov 2024 07:29:24 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 23:49:07 GMT
content-type: font/woff2
age: 63737
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.googletagmanager.com/gtm.js?id=GTM-T65ZLWP

142.250.74.168

200 OK

61 kB

URL GET HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-T65ZLWP
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://keepo.io/att867979/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT

File type
ASCII text, with very long lines (3026)
Size
61 kB (61243 bytes)
Hash
1de9a45243fc178881569ad909790cc8
33f3fadd504572064d832558856686be552d8490
4202bae5fac25b9ac3cc58a5fc80fc4617b60b23b67cbcd51fd4b1e00495bd62

HTTP Headers

GET /gtm.js?id=GTM-T65ZLWP HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://keepo.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 01 Dec 2023 01:11:41 GMT
expires: Fri, 01 Dec 2023 01:11:41 GMT
cache-control: private, max-age=900
last-modified: Fri, 01 Dec 2023 00:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 61243
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2

216.58.207.227

200 OK

8.0 kB

URL GET HTTP/2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://keepo.io/att867979/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 8000, version 1.0\012- data
Size
8.0 kB (8000 bytes)
Hash
72993dddf88a63e8f226656f7de88e57
179f97ec0275f09603a8db94d4380eb584d81cd5
f4e80d9dfd374d02989b87a27b5ed4cb78fbb177c27f1478e9a8b0afb7513149

HTTP Headers

GET /s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://keepo.io
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8000
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 04:53:49 GMT
expires: Fri, 29 Nov 2024 04:53:49 GMT
cache-control: public, max-age=31536000
age: 73072
last-modified: Wed, 27 Apr 2022 16:59:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2

216.58.207.227

200 OK

47 kB

URL GET HTTP/2
fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://keepo.io/att867979/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 46704, version 1.0\012- data
Size
47 kB (46704 bytes)
Hash
30a274cd01b6eeb0b082c918b0697f1e
393311bde26b99a4ad935fa55bad1dce7994388b
88df0b5a7bc397dbc13a26bb8b3742cc62cd1c9b0dded57da7832416d6f52f42

HTTP Headers

GET /s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://keepo.io
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46704
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 07:29:24 GMT
expires: Fri, 29 Nov 2024 07:29:24 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 23:49:07 GMT
content-type: font/woff2
age: 63737
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-3DRNLZNR7J&l=dataLayer&cx=c

142.250.74.168

200 OK

90 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-3DRNLZNR7J&l=dataLayer&cx=c
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://keepo.io/att867979/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT

File type
ASCII text, with very long lines (3651)
Size
90 kB (89492 bytes)
Hash
533c8300425cd40b645cd908b594812c
828df55127e5370ca6833dbd29f6a7a33b794b2c
c3d2f13c97f1f701fb27fb522d89a7c80dc9d3470bbe1c93ab0f8478f0d1a8b9

HTTP Headers

GET /gtag/js?id=G-3DRNLZNR7J&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://keepo.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 01 Dec 2023 01:11:41 GMT
expires: Fri, 01 Dec 2023 01:11:41 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 89492
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.googletagmanager.com/gtag/js?id=G-8TTCQTD2HM&l=dataLayer&cx=c

142.250.74.168

200 OK

90 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-8TTCQTD2HM&l=dataLayer&cx=c
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://keepo.io/att867979/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT

File type
ASCII text, with very long lines (3651)
Size
90 kB (89486 bytes)
Hash
bccf8b5a6c877ef3f277a9183d994e78
fc68183f9221afc9a6700fdc83ab4052f201fb60
a5d8f0a73b72188b6b1d9be126f2b84f827052b8adae881e78191542badfe99b

HTTP Headers

GET /gtag/js?id=G-8TTCQTD2HM&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://keepo.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 01 Dec 2023 01:11:41 GMT
expires: Fri, 01 Dec 2023 01:11:41 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 89486
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

static.keepo.io/users/0b7356ee-41ec-47c1-ad73-cec87c897d35/sites/61b07fd9-7815-40a9-bac3-8a03f81720d4/5c68cb5b-680a-4455-ad01-37275ea16da6-cropped.png

54.230.111.91

200 OK

53 kB

URL GET HTTP/2
static.keepo.io/users/0b7356ee-41ec-47c1-ad73-cec87c897d35/sites/61b07fd9-7815-40a9-bac3-8a03f81720d4/5c68cb5b-680a-4455-ad01-37275ea16da6-cropped.png
IP
54.230.111.91:443
ASN
#16509 AMAZON-02

Requested by
https://keepo.io/att867979/
Certificate
IssuerAmazon
Subjectstatic.keepo.io
Fingerprint45:3A:6B:2D:9D:9D:60:2A:44:E9:CF:BC:D0:6D:CC:5B:5F:94:8B:7F
ValidityWed, 09 Aug 2023 00:00:00 GMT - Fri, 06 Sep 2024 23:59:59 GMT

File type
PNG image data, 400 x 400, 8-bit/color RGBA, non-interlaced\012- data
Size
53 kB (53086 bytes)
Hash
58083afac2e8492bbf6d03bf0982d63a
33c26a3e625ff5d8be03b8631fa3ccd4b0b29bd9
f1c14d9709d59c9475fc168114af936c2aec7e82bb05d7ab444c8a28fc304773

HTTP Headers

GET /users/0b7356ee-41ec-47c1-ad73-cec87c897d35/sites/61b07fd9-7815-40a9-bac3-8a03f81720d4/5c68cb5b-680a-4455-ad01-37275ea16da6-cropped.png HTTP/1.1
Host: static.keepo.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://keepo.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
content-length: 53086
date: Thu, 30 Nov 2023 21:23:19 GMT
last-modified: Wed, 29 Nov 2023 22:12:33 GMT
etag: "58083afac2e8492bbf6d03bf0982d63a"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: BdxnyegzogImS5nq9GredDzm_ejfZxTeOaqNeP-ImkY5g6y_YWLDig==
age: 13703
X-Firefox-Spdy: h2

keepo.io/android-icon-192x192.png

54.230.111.35

200 OK

6.3 kB

URL GET HTTP/2
keepo.io/android-icon-192x192.png
IP
54.230.111.35:443
ASN
#16509 AMAZON-02

Requested by
https://keepo.io/att867979/
Certificate
IssuerAmazon
Subjectkeepo.io
FingerprintBB:1F:A5:3C:CF:73:9F:F6:56:C4:98:33:BF:4B:D6:E6:6B:11:53:7F
ValidityMon, 27 Feb 2023 00:00:00 GMT - Mon, 05 Feb 2024 23:59:59 GMT

File type
PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Size
6.3 kB (6344 bytes)
Hash
8eb558e941e4850778502872b49f7919
8d7aebf8a52b010d1f7e420ceea5338531b03bbe
d2f602d8b29713073ef0f7c86028744f21b6d30175ed39ccfc96c7314e3e63f0

HTTP Headers

GET /android-icon-192x192.png HTTP/1.1
Host: keepo.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://keepo.io/att867979/
Cookie: _ga_3DRNLZNR7J=GS1.1.1701393106.1.0.1701393106.0.0.0; _ga=GA1.1.1573629007.1701393106; _ga_8TTCQTD2HM=GS1.1.1701393106.1.0.1701393106.0.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 6344
date: Fri, 01 Dec 2023 01:11:43 GMT
last-modified: Sun, 21 Nov 2021 13:14:19 GMT
etag: "8eb558e941e4850778502872b49f7919"
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: odnBJsGHnuugxL4-aknMBIcAEUo4k_zllkqIMh1Lzl9HWVkHrx2oYg==
X-Firefox-Spdy: h2

keepo.io/favicon-16x16.png

54.230.111.35

200 OK

1.0 kB

URL GET HTTP/2
keepo.io/favicon-16x16.png
IP
54.230.111.35:443
ASN
#16509 AMAZON-02

Requested by
https://keepo.io/att867979/
Certificate
IssuerAmazon
Subjectkeepo.io
FingerprintBB:1F:A5:3C:CF:73:9F:F6:56:C4:98:33:BF:4B:D6:E6:6B:11:53:7F
ValidityMon, 27 Feb 2023 00:00:00 GMT - Mon, 05 Feb 2024 23:59:59 GMT

File type
PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Size
1.0 kB (1032 bytes)
Hash
be0c1830a38421496c1b03c60e780b36
c9f217183d7cf853097edb3682db35e79074718d
d7c7bf06bfcfae6fad0eda42e9043bc79e4e04b25439a595f34ddd12ce55147e

HTTP Headers

GET /favicon-16x16.png HTTP/1.1
Host: keepo.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://keepo.io/att867979/
Cookie: _ga_3DRNLZNR7J=GS1.1.1701393106.1.0.1701393106.0.0.0; _ga=GA1.1.1573629007.1701393106; _ga_8TTCQTD2HM=GS1.1.1701393106.1.0.1701393106.0.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 1032
date: Fri, 01 Dec 2023 01:11:43 GMT
last-modified: Sun, 21 Nov 2021 13:14:23 GMT
etag: "be0c1830a38421496c1b03c60e780b36"
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: INaWEx_Fa-KXxHqsHgmSWuEDQNYpzOxPfS8NYYc5KZ_xJEtG8i3u1g==
X-Firefox-Spdy: h2

keepo.io/att867979/

54.230.111.35

200 OK

60 kB

URL User Request GET HTTP/2
keepo.io/att867979/
IP
54.230.111.35:443
ASN
#16509 AMAZON-02

Certificate
IssuerAmazon
Subjectkeepo.io
FingerprintBB:1F:A5:3C:CF:73:9F:F6:56:C4:98:33:BF:4B:D6:E6:6B:11:53:7F
ValidityMon, 27 Feb 2023 00:00:00 GMT - Mon, 05 Feb 2024 23:59:59 GMT

File type
gzip compressed data, from Unix\012- data
Size
60 kB (60314 bytes)
Hash
6fbc08cdffcf9668bcd534244098b3e0
bf595b3550597201c1f4eab89c2438a76c127b96
5f999ad069f3b023d473781418c9855bca38534d1af709b9e071cf4706978b6a

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	AT&T Inc.
PhishTank	phishing	Other

HTTP Headers

GET /att867979/ HTTP/1.1
Host: keepo.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/html
vary: Accept-Encoding
date: Fri, 01 Dec 2023 01:11:41 GMT
cache-control: max-age=0
last-modified: Wed, 29 Nov 2023 22:15:08 GMT
etag: W/"ebb9ee7bc5129dde664e205e871ad038"
server: AmazonS3
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: nuW-vKLs05EElf_BeymT2avdGQX2C6Y7f4aD-VVHSYlN1oQCVu-hQg==
X-Firefox-Spdy: h2

api.keepo.io/redirect?event_type=page_load&continue=eyJzaXRlSWQiOiI2MWIwN2ZkOS03ODE1LTQwYTktYmFjMy04YTAzZjgxNzIwZDQiLCJ1c2VySWQiOiIwYjczNTZlZS00MWVjLTQ3YzEtYWQ3My1jZWM4N2M4OTdkMzUiLCJ1cmwiOiJhdHQ4Njc5NzkifQ..

54.233.248.67

200 OK

2 B

URL GET HTTP/2
api.keepo.io/redirect?event_type=page_load&continue=eyJzaXRlSWQiOiI2MWIwN2ZkOS03ODE1LTQwYTktYmFjMy04YTAzZjgxNzIwZDQiLCJ1c2VySWQiOiIwYjczNTZlZS00MWVjLTQ3YzEtYWQ3My1jZWM4N2M4OTdkMzUiLCJ1cmwiOiJhdHQ4Njc5NzkifQ..
IP
54.233.248.67:443
ASN
#16509 AMAZON-02

Requested by
https://keepo.io/att867979/
Certificate
IssuerAmazon
Subjectapi.keepo.io
Fingerprint88:E3:A4:DE:58:10:04:0D:0C:4D:00:AC:79:E9:A1:32:5C:DC:36:89
ValidityFri, 03 Feb 2023 00:00:00 GMT - Mon, 05 Feb 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

HTTP Headers

GET /redirect?event_type=page_load&continue=eyJzaXRlSWQiOiI2MWIwN2ZkOS03ODE1LTQwYTktYmFjMy04YTAzZjgxNzIwZDQiLCJ1c2VySWQiOiIwYjczNTZlZS00MWVjLTQ3YzEtYWQ3My1jZWM4N2M4OTdkMzUiLCJ1cmwiOiJhdHQ4Njc5NzkifQ.. HTTP/1.1
Host: api.keepo.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://keepo.io/
Origin: https://keepo.io
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 01 Dec 2023 01:11:43 GMT
content-type: application/json
content-length: 2
x-amzn-requestid: d9ba35ff-7ecf-40a7-806b-70483cb8a7b0
access-control-allow-origin: *
x-amz-apigw-id: PPTgZG42mjQEARg=
access-control-allow-methods: *
x-amzn-trace-id: Root=1-656932cf-28f1721b4936b59326f69200;Sampled=0;lineage=199f696f:0
access-control-allow-credentials: true
X-Firefox-Spdy: h2

keepo.io/att867979/main.bundle.213c0009b9c60e143e9b.js

54.230.111.35

200 OK

194 kB

URL GET HTTP/2
keepo.io/att867979/main.bundle.213c0009b9c60e143e9b.js
IP
54.230.111.35:443
ASN
#16509 AMAZON-02

Requested by
https://keepo.io/att867979/
Certificate
IssuerAmazon
Subjectkeepo.io
FingerprintBB:1F:A5:3C:CF:73:9F:F6:56:C4:98:33:BF:4B:D6:E6:6B:11:53:7F
ValidityMon, 27 Feb 2023 00:00:00 GMT - Mon, 05 Feb 2024 23:59:59 GMT

File type

Size
194 kB (194514 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /att867979/main.bundle.213c0009b9c60e143e9b.js HTTP/1.1
Host: keepo.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://keepo.io/att867979/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
vary: Accept-Encoding
date: Fri, 01 Dec 2023 01:11:42 GMT
cache-control: max-age=31536000
last-modified: Wed, 29 Nov 2023 22:15:08 GMT
etag: W/"08236e9e234cc4ab8071c523e1cd9ac6"
server: AmazonS3
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ylILQGhJ-_yPwr40KxQwjckyQoPxiP0L6P1hMSbe0xYritE8LXz6TA==
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (5)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (13)

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by