Report - hd1.hd-cdn.xyz/embed-gelhh7wqo5qo.html

Report Overview

Visited public
2024-11-22 14:34:42
Tags
Submit Tags
URL
hd1.hd-cdn.xyz/embed-gelhh7wqo5qo.html
Finishing URL
hd1.hd-cdn.xyz/embed-gelhh7wqo5qo.html
IP / ASN
172.67.132.159
#13335 CLOUDFLARENET
Title
hd1.hd-cdn.xyz/embed-gelhh7wqo5qo.html

Detections

urlquery

0

Network Intrusion Detection

0

Threat Detection Systems

0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
hd1.hd-cdn.xyz	unknown	2023-07-21	2024-11-22	2024-11-22	2.4 kB	16 kB	104.21.13.57

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Mnemonic Secure DNS

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (3)

	URL	From	Size	First Seen	Last Seen
	hd1.hd-cdn.xyz/embed-gelhh7wqo5qo.html	ScriptElement	923 B	2024-11-22	2024-11-22
Pretty URL hd1.hd-cdn.xyz/embed-gelhh7wqo5qo.html IP 104.21.13.57 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-11-22 14:34 Last Seen2024-11-22 14:34 Times Seen1 Hash 0329af12f662785fa95a4a62c8524847 889093f5aef0e5618a66f890df1090dc1ce87b5b 38847a6ec6ebf314372c72fc605d09f9d43b37ff48596a79ee3568cf92f88491 Loading...

	unknown	ScriptElement	236 B	2024-11-22	2024-11-22
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-11-22 14:34 Last Seen2024-11-22 14:34 Times Seen1 Hash a58b592759f50958883234e7786c43ce 7633a063a2e98ef77698834d986db39894b21778 9f54b08642c08b9ee57c1bcdf5cc2f90b3a9590f349d2d2f3fc8cfa915a2b3b2 Loading...

	hd1.hd-cdn.xyz/cdn-cgi/challenge-platform/scripts/jsd/main.js	ScriptElement	8.1 kB	2024-11-22	2024-11-22
Pretty URL hd1.hd-cdn.xyz/cdn-cgi/challenge-platform/scripts/jsd/main.js IP 104.21.13.57 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-11-22 14:34 Last Seen2024-11-22 14:34 Times Seen1 Hash 17d6cd661f7e027f710cc8e0284a88c6 b683ce80926e00aa22c1d133aee21433fc55c286 eb7470085d7e4645cfee65cb5fa308416b38c88d8d1f2776e68a6009fb98bd36 Loading...

HTTP Transactions (5)

	URL	IP	Response	Size
	GET hd1.hd-cdn.xyz/cdn-cgi/challenge-platform/scripts/jsd/main.js	104.21.13.57	302 Found	0 B
URL GET HTTP/3 hd1.hd-cdn.xyz/cdn-cgi/challenge-platform/scripts/jsd/main.js IP 104.21.13.57:443 ASN #13335 CLOUDFLARENET Requested by https://hd1.hd-cdn.xyz/embed-gelhh7wqo5qo.html Certificate IssuerGoogle Trust Services Subjecthd-cdn.xyz FingerprintB6:7C:DE:41:38:5A:E2:1D:3E:80:1F:8A:76:AB:40:14:50:67:49:D4 ValidityMon, 04 Nov 2024 14:34:38 GMT - Sun, 02 Feb 2025 14:34:37 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1 Host: hd1.hd-cdn.xyz User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Cookie: lang=1 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 302 Found date: Fri, 22 Nov 2024 14:34:18 GMT content-length: 0 location: /cdn-cgi/challenge-platform/h/g/scripts/jsd/e4025c85ea63/main.js? cache-control: max-age=300, stale-if-error=10800, stale-while-revalidate=10800, public access-control-allow-origin: * report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nFUFn72gwCJl85imUY24kB8AN3s%2FtJjaKmMvAQEU1aGaDLhqEaqXzpkzLYDD8L%2BqMVwB1jgKIMNhJICPWHhVUNGK322MdgyxXPXe49kOlz3xJY5qq5eT3HE%2F%2BlxzThuSJQ%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 8e69a3bc2e7d0b59-OSL alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=QUIC&rtt=19661&sent=13&recv=7&lost=0&retrans=0&sent_bytes=4134&recv_bytes=1367&delivery_rate=35795&cwnd=12000&unsent_bytes=0&cid=a1283de37aafc3e5&ts=207&x=1", cfHdrFlush;dur=0

	POST hd1.hd-cdn.xyz/cdn-cgi/challenge-platform/h/g/jsd/r/8e69a3b9cf7db50c	104.21.13.57	200 OK	0 B
URL POST HTTP/3 hd1.hd-cdn.xyz/cdn-cgi/challenge-platform/h/g/jsd/r/8e69a3b9cf7db50c IP 104.21.13.57:443 ASN #13335 CLOUDFLARENET Requested by https://hd1.hd-cdn.xyz/embed-gelhh7wqo5qo.html Certificate IssuerGoogle Trust Services Subjecthd-cdn.xyz FingerprintB6:7C:DE:41:38:5A:E2:1D:3E:80:1F:8A:76:AB:40:14:50:67:49:D4 ValidityMon, 04 Nov 2024 14:34:38 GMT - Sun, 02 Feb 2025 14:34:37 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /cdn-cgi/challenge-platform/h/g/jsd/r/8e69a3b9cf7db50c HTTP/1.1 Host: hd1.hd-cdn.xyz User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Content-Length: 12182 Origin: https://hd1.hd-cdn.xyz DNT: 1 Connection: keep-alive Referer: https://hd1.hd-cdn.xyz/embed-gelhh7wqo5qo.html Cookie: lang=1 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK date: Fri, 22 Nov 2024 14:34:19 GMT content-type: text/plain; charset=UTF-8 content-length: 0 set-cookie: cf_clearance=; Path=/; Expires=Thu, 01-Jan-70 00:00:00 GMT; Domain=.hd-cdn.xyz; Priority=High; HttpOnly; Secure; SameSite=None cf_clearance=jLhjkih0gAV2WkariIxiGeGKjtimclDBrcH6yVW6xN8-1732286059-1.2.1.1-y9zuV7o2m88Y5xRJJZ4xY63B47yTLTitlQz6l_28ZJuEehZXo38gx98NyuWIt4nzWLh4V_8cSPejhE.n5r7lvUhw31SR2GvNEN2jAbqw6hEibQpBFXLZUO13E_K71H_pebBRkmMMgyIF3Rwfucx.FGX2r_ruVJOUYUaZjILtQqUdN9M9TKcZfsFsoJKD.52JabZ6okhrAnBFIj_QPNaseaVDPUDDQE.O5Ru6NOGtTD1mK5Wp_TYceJGBmV3InbCry7s_EBcKTNPYXKJCRM6iGQ0QA2aZnIci5nURvFLkM0Ib_x25F42pMV14_vU9CrZs1jM2sKtpKMr_gLs9x_Hp.A; Path=/; Expires=Sat, 22-Nov-25 14:34:19 GMT; Domain=.hd-cdn.xyz; Priority=High; HttpOnly; Secure; SameSite=None; Partitioned report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TixdnJgG6U8S1m2uG%2F2i%2BezAiUSr8kFJ2nHjMyB8njeRtiJtNO9L5zSLIpQ3aIHtYaeQR7paakgjV89GSMlY%2F2oCGPxAItRkihff0RtWo1jAnEEsQZbC%2FHt3U2SBHRp%2FsQ%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 8e69a3bdf9160b59-OSL alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=QUIC&rtt=21877&sent=24&recv=20&lost=0&retrans=0&sent_bytes=10487&recv_bytes=14601&delivery_rate=125926&cwnd=12000&unsent_bytes=0&cid=a1283de37aafc3e5&ts=509&x=1", cfHdrFlush;dur=0

	GET hd1.hd-cdn.xyz/embed-gelhh7wqo5qo.html	104.21.13.57	200 OK	1.3 kB
URL User Request GET HTTP/2 hd1.hd-cdn.xyz/embed-gelhh7wqo5qo.html IP 104.21.13.57:443 ASN #13335 CLOUDFLARENET Certificate IssuerGoogle Trust Services Subjecthd-cdn.xyz FingerprintB6:7C:DE:41:38:5A:E2:1D:3E:80:1F:8A:76:AB:40:14:50:67:49:D4 ValidityMon, 04 Nov 2024 14:34:38 GMT - Sun, 02 Feb 2025 14:34:37 GMT File type HTML document, ASCII text, with very long lines (1277), with no line terminators Size 1.3 kB (1252 bytes) Hash 57d967138631d040b02c650aef0e1a70 0fdacaaf7f00b00fb243bae1667f7bf298fb8ea9 8afde3013f3aa69470c89e05fe333029be3761368c792a2f50b18fa7dcf8e831 HTTP Headers `GET /embed-gelhh7wqo5qo.html HTTP/1.1 Host: hd1.hd-cdn.xyz User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Fri, 22 Nov 2024 14:34:18 GMT content-type: text/html; charset=UTF-8 expires: Thu, 21 Nov 2024 14:34:18 GMT set-cookie: lang=1; domain=.hd1.hd-cdn.xyz; path=/; HttpOnly cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nU2RmVdqNqvpqE8VEfRYbWOdA4uiES%2BvwBJth2G6ji9t0BhaM7ls2uOgRgCz6V%2FGLDlNXmr52TRAd9LL10uMalCm4%2Bw2J05CErhPEzOh4qPCqAFSP0gASjC0Pl92hGrSVQ%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 8e69a3b9cf7db50c-OSL content-encoding: br alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=TCP&rtt=21988&sent=7&recv=11&lost=0&retrans=0&sent_bytes=3272&recv_bytes=1261&delivery_rate=261639&cwnd=254&unsent_bytes=0&cid=32613706c2dd8d52&ts=180&x=0" X-Firefox-Spdy: h2

	GET hd1.hd-cdn.xyz/favicon.ico	104.21.13.57	200 OK	1.2 kB
URL GET HTTP/3 hd1.hd-cdn.xyz/favicon.ico IP 104.21.13.57:443 ASN #13335 CLOUDFLARENET Requested by https://hd1.hd-cdn.xyz/embed-gelhh7wqo5qo.html Certificate IssuerGoogle Trust Services Subjecthd-cdn.xyz FingerprintB6:7C:DE:41:38:5A:E2:1D:3E:80:1F:8A:76:AB:40:14:50:67:49:D4 ValidityMon, 04 Nov 2024 14:34:38 GMT - Sun, 02 Feb 2025 14:34:37 GMT File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel Size 1.2 kB (1150 bytes) Hash f7b404d04734d64575f577b506c22a06 485d344ea5ace3529dd472f3fadaa621f046eaf5 c53b6a1e519b835191c058325f17d0f3ea15e1507ca47313c94cc54b68741500 HTTP Headers `GET /favicon.ico HTTP/1.1 Host: hd1.hd-cdn.xyz User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://hd1.hd-cdn.xyz/embed-gelhh7wqo5qo.html Cookie: lang=1 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Fri, 22 Nov 2024 14:34:18 GMT content-type: image/vnd.microsoft.icon last-modified: Fri, 05 Jan 2024 15:50:58 GMT etag: W/"47e-60e34d072f4c9" cache-control: max-age=691200 expires: Sat, 23 Nov 2024 22:01:25 GMT vary: User-Agent, Accept-Encoding cf-cache-status: HIT age: 77834 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PqXeDLK1N7eTMO%2Fr%2FsyHSkdi10GS5kR7r%2BvJsgobuErFRFSfXIjVjAB2SXXrIKDF5ZM%2FME%2FU%2FZM11KRilz1FYUXiClIcA9M1AIK9WYrbybLYIJn9Da14VLtNSEs%2Bjzqq1A%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 8e69a3bc2e7a0b59-OSL content-encoding: br alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=QUIC&rtt=19661&sent=14&recv=7&lost=0&retrans=0&sent_bytes=4843&recv_bytes=1367&delivery_rate=35795&cwnd=12000&unsent_bytes=0&cid=a1283de37aafc3e5&ts=220&x=1", cfHdrFlush;dur=0

	GET hd1.hd-cdn.xyz/cdn-cgi/challenge-platform/h/g/scripts/jsd/e4025c85ea63/main.js?	104.21.13.57	200 OK	8.1 kB
URL GET HTTP/3 hd1.hd-cdn.xyz/cdn-cgi/challenge-platform/h/g/scripts/jsd/e4025c85ea63/main.js? IP 104.21.13.57:443 ASN #13335 CLOUDFLARENET Requested by https://hd1.hd-cdn.xyz/embed-gelhh7wqo5qo.html Certificate IssuerGoogle Trust Services Subjecthd-cdn.xyz FingerprintB6:7C:DE:41:38:5A:E2:1D:3E:80:1F:8A:76:AB:40:14:50:67:49:D4 ValidityMon, 04 Nov 2024 14:34:38 GMT - Sun, 02 Feb 2025 14:34:37 GMT File type JavaScript source, ASCII text, with very long lines (8061), with no line terminators Size 8.1 kB (8061 bytes) Hash 17d6cd661f7e027f710cc8e0284a88c6 b683ce80926e00aa22c1d133aee21433fc55c286 eb7470085d7e4645cfee65cb5fa308416b38c88d8d1f2776e68a6009fb98bd36 HTTP Headers `GET /cdn-cgi/challenge-platform/h/g/scripts/jsd/e4025c85ea63/main.js? HTTP/1.1 Host: hd1.hd-cdn.xyz User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Cookie: lang=1 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Fri, 22 Nov 2024 14:34:18 GMT content-type: application/javascript; charset=UTF-8 cache-control: max-age=14400, stale-if-error=10800, stale-while-revalidate=10800, public x-content-type-options: nosniff report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OG5dmIHfgtWKA31405sJoYC1lA4t%2BPIkVzhVN5Evz5Jd5vSv%2FGSSmnUhlqxmB3KwWwj2GkFI62zeHEkMwqK1HUYJeqhYeEH2zspgibm%2BFqdOiuIFPCNAcAncvZbzTFcFBA%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 8e69a3bc9f1d0b59-OSL content-encoding: br alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=QUIC&rtt=20229&sent=16&recv=9&lost=0&retrans=0&sent_bytes=5944&recv_bytes=1676&delivery_rate=9065&cwnd=12000&unsent_bytes=0&cid=a1283de37aafc3e5&ts=276&x=1", cfHdrFlush;dur=0