| GET ekriikrd.cn/QJSmxXOQ/ |  188.114.96.1 | 200 OK | 448 B |
IP188.114.96.1:443
CertificateIssuerGoogle Trust Services Subjectekriikrd.cn FingerprintDD:19:C1:34:82:37:2E:5F:8C:9F:17:82:2B:23:1B:CE:6B:CA:95:32 ValidityWed, 23 Apr 2025 13:35:51 GMT - Tue, 22 Jul 2025 14:33:28 GMT
File typeHTML document, ASCII text, with CRLF, CR, LF line terminators Hash73986b6db64456317f98c1312604afb8 6e6065dbb6eb833a84b9a212fdfce517b17543df 93f5b3ee4a5ca5694cd24ac1460873cfaf70980c5c11a17868b883d89a98cb49
| Analyzer | Verdict | Alert |
|---|
| PhishTank | phishing | Other |
GET /QJSmxXOQ/ HTTP/1.1
Host: ekriikrd.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 25 Apr 2025 08:47:18 GMT
content-type: text/html
server: cloudflare
last-modified: Tue, 15 Apr 2025 17:17:58 GMT
vary: Accept-Encoding
cf-cache-status: DYNAMIC
content-encoding: br
cf-ray: 935c932c4f817131-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| GET ekriikrd.cn/QJSmxXOQ/assets/index-C0yoyiYi.js | 188.114.96.1 | 200 OK | 231 kB |
URL GET ekriikrd.cn/QJSmxXOQ/assets/index-C0yoyiYi.js IP188.114.96.1:443
Requested byhttps://ekriikrd.cn/QJSmxXOQ/ CertificateIssuerGoogle Trust Services Subjectekriikrd.cn FingerprintDD:19:C1:34:82:37:2E:5F:8C:9F:17:82:2B:23:1B:CE:6B:CA:95:32 ValidityWed, 23 Apr 2025 13:35:51 GMT - Tue, 22 Jul 2025 14:33:28 GMT
File typeJavaScript source, ASCII text, with very long lines (35595) Size231 kB (230843 bytes) Hash17fe5612a5012263c59ab3238dfdcdcf cc8426e95837a4c291f588c4c6e57e0354d7f92f a95f424cd0d8027a77a58b123662188708008c09bd1422836f0351cdd866481e
GET /QJSmxXOQ/assets/index-C0yoyiYi.js HTTP/1.1
Host: ekriikrd.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ekriikrd.cn/QJSmxXOQ/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 25 Apr 2025 08:47:19 GMT
content-type: application/javascript
server: cloudflare
last-modified: Tue, 15 Apr 2025 17:17:58 GMT
vary: Accept-Encoding
etag: W/"67fe94c6-385bb"
expires: Sun, 25 May 2025 08:47:19 GMT
cache-control: public, max-age=2592000
content-encoding: gzip
cf-cache-status: MISS
priority: u=3,i=?0
cf-ray: 935c93309b7db4f4-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET ekriikrd.cn/QJSmxXOQ/assets/index-Cd8VJd52.css | 188.114.96.1 | 200 OK | 18 kB |
URL GET ekriikrd.cn/QJSmxXOQ/assets/index-Cd8VJd52.css IP188.114.96.1:443
Requested byhttps://ekriikrd.cn/QJSmxXOQ/ CertificateIssuerGoogle Trust Services Subjectekriikrd.cn FingerprintDD:19:C1:34:82:37:2E:5F:8C:9F:17:82:2B:23:1B:CE:6B:CA:95:32 ValidityWed, 23 Apr 2025 13:35:51 GMT - Tue, 22 Jul 2025 14:33:28 GMT
File typeASCII text, with very long lines (17983) Hashb4fde740dcb90ea8396f7aaae3a008fa b02177e681e711d0675226ee489d0e9aed3fd121 bfe8964948a08f9470c78934c7331df9bcd77681e98c8a261912415b6d066e8f
GET /QJSmxXOQ/assets/index-Cd8VJd52.css HTTP/1.1
Host: ekriikrd.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ekriikrd.cn/QJSmxXOQ/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 25 Apr 2025 08:47:19 GMT
content-type: text/css
server: cloudflare
last-modified: Tue, 15 Apr 2025 17:17:58 GMT
vary: Accept-Encoding
etag: W/"67fe94c6-4640"
expires: Sun, 25 May 2025 08:47:19 GMT
cache-control: public, max-age=2592000
content-encoding: gzip
cf-cache-status: MISS
priority: u=2,i=?0
cf-ray: 935c93309b81b4f4-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| POST ekriikrd.cn/open/visitors/info/createOrGetUserInfo | 188.114.96.1 | 404 Not Found | 9 B |
URL POST ekriikrd.cn/open/visitors/info/createOrGetUserInfo IP188.114.96.1:443
Requested byhttps://ekriikrd.cn/QJSmxXOQ/ CertificateIssuerGoogle Trust Services Subjectekriikrd.cn FingerprintDD:19:C1:34:82:37:2E:5F:8C:9F:17:82:2B:23:1B:CE:6B:CA:95:32 ValidityWed, 23 Apr 2025 13:35:51 GMT - Tue, 22 Jul 2025 14:33:28 GMT
File typeASCII text, with no line terminators Hash9d1ead73e678fa2f51a70a933b0bf017 d205cbd6783332a212c5ae92d73c77178c2d2f28 0019dfc4b32d63c1392aa264aed2253c1e0c2fb09216f8e2cc269bbfb8bb49b5
POST /open/visitors/info/createOrGetUserInfo HTTP/1.1
Host: ekriikrd.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 372
Origin: https://ekriikrd.cn
DNT: 1
Connection: keep-alive
Referer: https://ekriikrd.cn/QJSmxXOQ/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Fri, 25 Apr 2025 08:47:20 GMT
content-type: text/plain; charset=utf-8
server: cloudflare
vary: Origin
access-control-allow-origin: https://ekriikrd.cn
priority: u=3,i=?0
cf-cache-status: DYNAMIC
content-encoding: br
set-cookie: locale=en-us; Path=/; Max-Age=31557600; Expires=Sat, 25 Apr 2026 14:47:20 GMT
cf-ray: 935c93365bfeb4f4-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET ekriikrd.cn/favicon.ico | 188.114.96.1 | 404 Not Found | 153 B |
IP188.114.96.1:443
Requested byhttps://ekriikrd.cn/QJSmxXOQ/ CertificateIssuerGoogle Trust Services Subjectekriikrd.cn FingerprintDD:19:C1:34:82:37:2E:5F:8C:9F:17:82:2B:23:1B:CE:6B:CA:95:32 ValidityWed, 23 Apr 2025 13:35:51 GMT - Tue, 22 Jul 2025 14:33:28 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash00f8a62e85f99f73fa8caf355eaa4593 272da4cc254ce7dd9c97448051ead592d3589c33 8bf1b0813f4fb6b039752427dc2c097d0723304d4e1f92a77270a362fca4e8ee
GET /favicon.ico HTTP/1.1
Host: ekriikrd.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ekriikrd.cn/QJSmxXOQ/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Fri, 25 Apr 2025 08:47:20 GMT
content-type: text/html
server: cloudflare
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
priority: u=6,i=?0
content-encoding: br
cf-ray: 935c9336fcd3b4f4-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|