Report - anonymfile.com/8bbq/full-source-unedited.zip

Report Overview

Visited public
2023-12-27 07:41:19
Tags
URL
anonymfile.com/8bbq/full-source-unedited.zip
Finishing URL
anonymfile.com/8bbq/full-source-unedited.zip
IP / ASN
88.198.63.72
#24940 Hetzner Online GmbH
Title
Anonym File - Full Source Unedited.zip

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17 22:46:33	2023-12-26 10:12:24	5.3 kB	389 kB	104.17.24.14
anonymfile.com	unknown	2022-08-09	2022-08-09 22:53:13	2023-12-26 13:03:07	7.7 kB	776 kB	88.198.63.72
cdn.jsdelivr.net	439	2012-05-16	2012-09-30 02:15:09	2023-12-26 05:09:14	420 B	22 kB	151.101.1.229
unpkg.com	11693	2016-01-06	2016-01-08 00:26:01	2023-12-26 09:17:03	1.9 kB	246 kB	104.16.123.175

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-12-27 07:35:05	low	Client IP	Internal IP	ET INFO File Sharing Related Domain in DNS Lookup (anonymfile .com)
2023-12-27 07:35:05	low	Client IP	Internal IP	ET INFO File Sharing Related Domain in DNS Lookup (anonymfile .com)
2023-12-27 07:35:05	low	Client IP	Internal IP	ET INFO File Sharing Related Domain in DNS Lookup (anonymfile .com)
2023-12-27 07:35:05	low	Client IP	88.198.63.72	ET INFO File Sharing Domain Observed in TLS SNI (anonymfile .com)
2023-12-27 07:35:06	low	Client IP	Internal IP	ET INFO File Sharing Related Domain in DNS Lookup (anonymfile .com)
2023-12-27 07:35:06	low	Client IP	Internal IP	ET INFO File Sharing Related Domain in DNS Lookup (anonymfile .com)
2023-12-27 07:35:06	low	Client IP	Internal IP	ET INFO File Sharing Related Domain in DNS Lookup (anonymfile .com)
2023-12-27 07:35:06	low	Client IP	Internal IP	ET INFO File Sharing Related Domain in DNS Lookup (anonymfile .com)
2023-12-27 07:35:07	low	Client IP	Internal IP	ET INFO File Sharing Related Domain in DNS Lookup (anonymfile .com)
2023-12-27 07:35:07	low	Client IP	Internal IP	ET INFO File Sharing Related Domain in DNS Lookup (anonymfile .com)

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-12-27	medium	anonymfile.com	Sinkholed
2023-12-27	medium	anonymfile.com	Sinkholed
2023-12-27	medium	anonymfile.com	Sinkholed
2023-12-27	medium	anonymfile.com	Sinkholed
2023-12-27	medium	anonymfile.com	Sinkholed
2023-12-27	medium	anonymfile.com	Sinkholed
2023-12-27	medium	anonymfile.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (13)

	URL	From	Size	First Seen	Last Seen
	anonymfile.com/8bbq/full-source-unedited.zip	ScriptElement	40 B	2023-03-07	2025-04-30
Pretty URL anonymfile.com/8bbq/full-source-unedited.zip IP 88.198.63.72 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02 Last Seen2025-04-30 15:44 Times Seen5839 Hash 6bd43cf0ae158526c6ab93dc3be79f28 15c289e342bd3fdf5b1e95f7abf25a2bc78bf357 7a13d5ae0755d86c09084ec300c4a0f1a0a06921f74d9980eba9d966ff17ad38 Loading...

	cdnjs.cloudflare.com/ajax/libs/filepond/4.30.3/filepond.min.js	ScriptElement	118 kB	2023-03-07	2025-04-30
Pretty URL cdnjs.cloudflare.com/ajax/libs/filepond/4.30.3/filepond.min.js IP 104.17.24.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:23 Last Seen2025-04-30 03:12 Times Seen1070 Hash 516f35ea42aa797b3b106a8f108edb88 9b1313b221c5d59835c31da0327f4273a2647174 9677264de392aeedd3b391fe53578415c87835405d14068380f9bf3970a48286 Loading...

	cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js	ScriptElement	90 kB	2023-03-07	2025-05-01
Pretty URL cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js IP 104.17.24.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-01 03:07 Times Seen203761 Hash 8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e Loading...

	unknown	EventHandler	16 B	2023-04-10	2025-05-01
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2023-04-10 15:57 Last Seen2025-05-01 03:07 Times Seen56084 Hash 7c3c3ddeb80438dcbb3d081d2d00e152 5a4016732ee72ec77b4f6ab17047bcea6d2ea34d 321b4f657afbf8ba49518e6ab4cbad07ea967d0b4c68f71c7deed05ed09c1187 Loading...

	unpkg.com/filepond-plugin-file-validate-type/dist/filepond-plugin-file-validate-type.js	ScriptElement	7.4 kB	2023-03-07	2024-08-21
Pretty URL unpkg.com/filepond-plugin-file-validate-type/dist/filepond-plugin-file-validate-type.js IP 104.16.123.175 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:23 Last Seen2024-08-21 09:40 Times Seen358 Hash 6170d2a086cb1d5769c6fd1f76edf99b d61c541caceb4e5deb35d8642702b89091a8bb42 6fc678b64782a17a266b5675e195be5956efd7513fd228143901b427983df928 Loading...

	cdnjs.cloudflare.com/ajax/libs/popper.js/2.10.2/umd/popper.min.js	ScriptElement	19 kB	2023-03-07	2025-04-30
Pretty URL cdnjs.cloudflare.com/ajax/libs/popper.js/2.10.2/umd/popper.min.js IP 104.17.24.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:23 Last Seen2025-04-30 13:04 Times Seen1888 Hash 541aecc95a7faeef0fc27558070f3647 0ec7ca4778ba3ccb4d1b1688094720834fbe9ed3 f395875eb5d58c5128c434812cd0a53d438b11536f7fd1577077d8a5c612e1fd Loading...

	anonymfile.com/js/site.js	ScriptElement	9.4 kB	2023-03-07	2025-04-30
Pretty URL anonymfile.com/js/site.js IP 88.198.63.72 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01 Last Seen2025-04-30 03:12 Times Seen681 Hash afecd65686f50e645b8e1ee3edade2c2 f038373fb9efa997f7aeba9f80a47fbc3d6bd634 524fcae3468beb724c12b61925a2c1dcdb482f37783cd9d3f7630ae8bafa3d2a Loading...

	cdn.jsdelivr.net/npm/sweetalert2@11	ScriptElement	77 kB	2023-11-19	2025-04-21
Pretty URL cdn.jsdelivr.net/npm/sweetalert2@11 IP 151.101.1.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-19 16:44 Last Seen2025-04-21 10:35 Times Seen254 Hash f95effdb9191d542a77edbe51b300f18 462994fd08f5b996a32a3cf707a32ef04f8bcd55 e7ee140344701f1acb771ba8fbf2e2a199087ab4acf05fd50e757826cf597704 Loading...

	unpkg.com/filepond-plugin-file-validate-size/dist/filepond-plugin-file-validate-size.js	ScriptElement	6.8 kB	2023-03-08	2025-04-30
Pretty URL unpkg.com/filepond-plugin-file-validate-size/dist/filepond-plugin-file-validate-size.js IP 104.16.123.175 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:46 Last Seen2025-04-30 03:12 Times Seen1068 Hash 5ab1c9fe6f2ca02b78083699d8109be5 99aa73a69b0ee070162ff7a2a8b70005ebb48565 845b2368dce026b72f19715d6de81f03fef056e4a79c718a658161a1f7b03b3b Loading...

	anonymfile.com/8bbq/full-source-unedited.zip	ScriptElement	340 B	2023-11-06	2024-08-20
Pretty URL anonymfile.com/8bbq/full-source-unedited.zip IP 88.198.63.72 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-06 00:00 Last Seen2024-08-20 20:45 Times Seen237 Hash d6e39979ae2a377e5cc23bdb936ee81e 1a30a6d33617b11e19ac3905c61673ae937c1d27 e1c7da76cd98496d897eee30312f9c8d609ab81d864365f34632bd4f3b49dac0 Loading...

	anonymfile.com/8bbq/full-source-unedited.zip	ScriptElement	1.9 kB	2024-08-20	2024-08-20
Pretty URL anonymfile.com/8bbq/full-source-unedited.zip IP 88.198.63.72 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 14:52 Last Seen2024-08-20 14:52 Times Seen1 Hash 3a72a7cdfcf2b2f1488d587ad2827ff9 d6aef6483e7eb5f5a1cad88a175a170ac22b431a 4c5e26ab1107e95cc00ddb56a0d1bfa016eff70ec8270b656a8b9a9511a5e5dd Loading...

	cdnjs.cloudflare.com/ajax/libs/bootstrap/5.1.3/js/bootstrap.min.js	ScriptElement	59 kB	2023-03-07	2025-04-30
Pretty URL cdnjs.cloudflare.com/ajax/libs/bootstrap/5.1.3/js/bootstrap.min.js IP 104.17.24.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:23 Last Seen2025-04-30 13:04 Times Seen2535 Hash 259e416ef6833be43801b8b68a93b008 19080c3b817985336aab5e1ce6925c99803f2efd 70c3d690bdc5ce3b9a1527c46044989a3176e610882fa99f4523e75bc395bcce Loading...

	cdnjs.cloudflare.com/ajax/libs/clipboard.js/2.0.8/clipboard.min.js	ScriptElement	11 kB	2023-04-11	2025-04-30
Pretty URL cdnjs.cloudflare.com/ajax/libs/clipboard.js/2.0.8/clipboard.min.js IP 104.17.24.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 13:43 Last Seen2025-04-30 03:12 Times Seen1260 Hash 0c90c3f51f337dd66b28d7c0027ceba4 1e53cadaf02787c1c3a8c7b8b531a11d6745acc0 e119f272c1474ce1483e4215dc07b6452afa5c652e4efc9b5a828bdea68d99dd Loading...

HTTP Transactions (23)

URL IP Response Size

cdnjs.cloudflare.com/ajax/libs/bootstrap/5.1.3/js/bootstrap.min.js

104.17.24.14

200 OK

15 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/bootstrap/5.1.3/js/bootstrap.min.js
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://anonymfile.com/8bbq/full-source-unedited.zip
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (58940)
Size
15 kB (14584 bytes)
Hash
259e416ef6833be43801b8b68a93b008
19080c3b817985336aab5e1ce6925c99803f2efd
70c3d690bdc5ce3b9a1527c46044989a3176e610882fa99f4523e75bc395bcce

HTTP Headers

GET /ajax/libs/bootstrap/5.1.3/js/bootstrap.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://anonymfile.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 27 Dec 2023 07:40:53 GMT
content-type: application/javascript; charset=utf-8
content-length: 14584
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "6161dfe3-38f8"
last-modified: Sat, 09 Oct 2021 18:30:59 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 2949865
expires: Mon, 16 Dec 2024 07:40:53 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=n%2F8mme%2Fo1v5RrjKiq2fl1fXe7iInCs%2F2fc45Ks1AAgElligPakSiEzDNDb5XK9Gufr36u00TO6lE0yanTKEIRf%2BPaGdCCcnRct7a1tXo8i4nYod546TPG858FatBPg2hT%2F26jfwg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 83bfeb037f481bfe-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js

104.17.24.14

200 OK

28 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://anonymfile.com/8bbq/full-source-unedited.zip
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65447)
Size
28 kB (27938 bytes)
Hash
8fb8fee4fcc3cc86ff6c724154c49c42
b82d238d4e31fdf618bae8ac11a6c812c03dd0d4
ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e

HTTP Headers

GET /ajax/libs/jquery/3.6.0/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://anonymfile.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 27 Dec 2023 07:40:53 GMT
content-type: application/javascript; charset=utf-8
content-length: 27938
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "603e8adc-15d9d"
last-modified: Tue, 02 Mar 2021 18:58:36 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 2770551
expires: Mon, 16 Dec 2024 07:40:53 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cvIab6ybpabOC44ai920jz1GvWsOZyLX%2BN8KSoqFCLI2skD2bO%2FaEbbjhFQAw0wzwsM35Og2AY2wSQrocBJiVngks4UPOg37NAKEyoSposxLJo5nn5T0kUmCR8JRaYhdM7fC225%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 83bfeb037f431bfe-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/filepond/4.30.3/filepond.min.js

104.17.24.14

200 OK

30 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/filepond/4.30.3/filepond.min.js
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://anonymfile.com/8bbq/full-source-unedited.zip
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65370)
Size
30 kB (29707 bytes)
Hash
516f35ea42aa797b3b106a8f108edb88
9b1313b221c5d59835c31da0327f4273a2647174
9677264de392aeedd3b391fe53578415c87835405d14068380f9bf3970a48286

HTTP Headers

GET /ajax/libs/filepond/4.30.3/filepond.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://anonymfile.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 27 Dec 2023 07:40:53 GMT
content-type: application/javascript; charset=utf-8
content-length: 29707
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "615c7e96-740b"
last-modified: Tue, 05 Oct 2021 16:34:30 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 2939836
expires: Mon, 16 Dec 2024 07:40:53 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yk9NxI8OJmky0uYt9FosWOh6M%2FfrXSpU7okadKZe1D19B8iPpSbElC8xszgE9odA9cEmd%2FFi49AUHJSXKn96tXRd1opkfJ6VgKnoNdz2%2Bi6xkXVgwuomJq19%2FYxTF%2FPZhExBno3I"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 83bfeb037f4a1bfe-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

anonymfile.com/img/logo-anon-warning.png

88.198.63.72

200 OK

41 kB

URL GET HTTP/2
anonymfile.com/img/logo-anon-warning.png
IP
88.198.63.72:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://anonymfile.com/8bbq/full-source-unedited.zip
Certificate
IssuerLet's Encrypt
Subjectanonymfile.com
Fingerprint9A:3A:E4:32:1D:49:07:9D:4B:3F:8B:25:45:C0:46:15:0D:FF:17:7E
ValiditySat, 28 Oct 2023 18:31:05 GMT - Fri, 26 Jan 2024 18:31:04 GMT

File type
PNG image data, 1024 x 1024, 8-bit/color RGBA, non-interlaced
Size
41 kB (40729 bytes)
Hash
d52ea6ebcd0b10dcf112a9d6c43ceee0
641e5277e2e079f0e88e2899879fda8882e58d28
77cb73f16f049b51c0a81c12ed878e11efe3b9a71c632a3bdb647d963059532e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /img/logo-anon-warning.png HTTP/1.1
Host: anonymfile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://anonymfile.com/8bbq/full-source-unedited.zip
Cookie: XSRF-TOKEN=eyJpdiI6Ijk1UTRtc2xnRWZVNXBQSnhaWnhvRXc9PSIsInZhbHVlIjoic0R3VlovUnhweVhuNkx6R1d1UDNJR2NndWIvdHhQc3gyZkNaZklKb1pTNG8xR09TNjBKMFdleHFFdGtrd0tRZ3RiR0N4ck5rV1U4NW9FRDdsM1Z5QXZEWm5Ub3VLRWtvZTV0RzgyRm9ObE9CN01ScDdrcE1RUE5QcE15TmM3Rm8iLCJtYWMiOiI0NjkyZDJhMDhmYTg1YTY4MDQyYzFjNTA3NDY4ZTQ4YzMyZDk5ZjgwMGFlMDRjY2Q5NjUwZjAzOTIzZWMwNmJhIiwidGFnIjoiIn0%3D; anonymfile_session=eyJpdiI6IkhPY0Q2RDNGWEoyQ0VodUZTamZ4bkE9PSIsInZhbHVlIjoieFNVbkdpbG9CQjhLdDRNNmw0TVB4N09oRUJsOWErNmFvUEI3UjNwTCtoaVFDQi9sbWp4WFpSbzRMcDMvcmxseWpTUGFzR010ZlhqdDllQXBQMlRnV2I2RmgvVFY2NFVIeVZCT3BPWndtSDVuN0hiUkdnMzNOK3I2N3FZbUFiL1giLCJtYWMiOiJlYjYyYjAwYTkxOTZhYjI5MmNjMzMyZTZjYzEzNGVhNGUyYTllNWFiZmMzY2JjYzBkYTNiNDkyYTM2ZGE0NzMxIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 27 Dec 2023 07:40:53 GMT
content-type: image/png
content-length: 40729
last-modified: Tue, 29 Aug 2023 19:18:16 GMT
etag: "64ee4478-9f19"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
accept-ranges: bytes
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/popper.js/2.10.2/umd/popper.min.js

104.17.24.14

200 OK

6.0 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/popper.js/2.10.2/umd/popper.min.js
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://anonymfile.com/8bbq/full-source-unedited.zip
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (18706)
Size
6.0 kB (6037 bytes)
Hash
541aecc95a7faeef0fc27558070f3647
0ec7ca4778ba3ccb4d1b1688094720834fbe9ed3
f395875eb5d58c5128c434812cd0a53d438b11536f7fd1577077d8a5c612e1fd

HTTP Headers

GET /ajax/libs/popper.js/2.10.2/umd/popper.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://anonymfile.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 27 Dec 2023 07:40:53 GMT
content-type: application/javascript; charset=utf-8
content-length: 6037
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "6155af49-1795"
last-modified: Thu, 30 Sep 2021 12:36:25 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1951885
expires: Mon, 16 Dec 2024 07:40:53 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2fThH43%2FEjt7TaAzACkLpDofDfzwVy5%2Fyp69WsqpDYjidKuv1%2BW98XS83yulO5Z2LbbXWkIq3vqB7COUt7zzjKd5M4f153%2BUm%2Btzh%2FOmsjjdwjEwt2c5BzvP02BfiWIe8KK6ikyk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 83bfeb037f451bfe-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/clipboard.js/2.0.8/clipboard.min.js

104.17.24.14

200 OK

3.0 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/clipboard.js/2.0.8/clipboard.min.js
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://anonymfile.com/8bbq/full-source-unedited.zip
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (10584)
Size
3.0 kB (3000 bytes)
Hash
27784b7376dd992368c71b6c5559f358
f86d2ac408c4de0d5281cf91d6ddfb93e5e5d2ff
11be927cda59c8b6019ebbea838285c5beaf21183ea4b83dbd4e4fbf9413ce4a

HTTP Headers

GET /ajax/libs/clipboard.js/2.0.8/clipboard.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://anonymfile.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 27 Dec 2023 07:40:53 GMT
content-type: application/javascript; charset=utf-8
content-length: 3000
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "6049431e-29b4"
last-modified: Wed, 10 Mar 2021 22:07:26 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 2867737
expires: Mon, 16 Dec 2024 07:40:53 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8xr5g93uiEorbwujQCsRzaWcqc%2FgOH0y63p0B4KNQr2CDMjtvyzKy%2Bjkukb6FLZvYONEISa6q4sReg%2B%2BGSQwUO4mImMCgcAvaPOjuFe6XlPh%2ByWgZcek3f971I89t5Agk3Yrve3Z"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 83bfeb047fea1bfe-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.jsdelivr.net/npm/sweetalert2@11

151.101.1.229

200 OK

22 kB

URL GET HTTP/2
cdn.jsdelivr.net/npm/sweetalert2@11
IP
151.101.1.229:443
ASN
#54113 FASTLY

Requested by
https://anonymfile.com/8bbq/full-source-unedited.zip
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT

File type
ASCII text, with very long lines (52514)
Size
22 kB (21469 bytes)
Hash
f95effdb9191d542a77edbe51b300f18
462994fd08f5b996a32a3cf707a32ef04f8bcd55
e7ee140344701f1acb771ba8fbf2e2a199087ab4acf05fd50e757826cf597704

HTTP Headers

GET /npm/sweetalert2@11 HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://anonymfile.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 11.10.1
x-jsd-version-type: version
etag: W/"12b3b-RimU/Qj1uZajKjz3B6Mu8E+LzVU"
content-encoding: br
accept-ranges: bytes
date: Wed, 27 Dec 2023 07:40:53 GMT
age: 13221
x-served-by: cache-fra-eddf8230029-FRA, cache-hel1410029-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 21469
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0-beta2/css/all.min.css

104.17.24.14

200 OK

14 kB

URL GET HTTP/3
cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0-beta2/css/all.min.css
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://anonymfile.com/8bbq/full-source-unedited.zip
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65345)
Size
14 kB (14374 bytes)
Hash
b94102c568b10816907c96d987fc156c
033d2cf8dc346fc5ae26677bb877155ecf3e72e3
81735261671cd094376ce5c6d31058c64fa70ad0f3b0798ffce2f2d8eeb7ab51

HTTP Headers

GET /ajax/libs/font-awesome/6.0.0-beta2/css/all.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://anonymfile.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 27 Dec 2023 07:40:54 GMT
content-type: text/css; charset=utf-8
content-length: 14374
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "61498362-3826"
last-modified: Tue, 21 Sep 2021 07:01:54 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 2678048
expires: Mon, 16 Dec 2024 07:40:54 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9NU4n%2FKe2AdGcrgXTZNuv59bM0%2BkbFOy7U%2BxM5GmA2wixKKgk9ozzQxRpOxMJCoPscE4m534pZWrSlqT5E1%2FPHSggi6%2BJr5ffyFJkqc92Jw2UnFlA5LsFteVE7uxbgSDd31rWT%2F1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 83bfeb05fb4456c9-OSL
alt-svc: h3=":443"; ma=86400

cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js

104.17.24.14

200 OK

28 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://anonymfile.com/8bbq/full-source-unedited.zip
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65447)
Size
28 kB (27938 bytes)
Hash
8fb8fee4fcc3cc86ff6c724154c49c42
b82d238d4e31fdf618bae8ac11a6c812c03dd0d4
ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e

HTTP Headers

GET /ajax/libs/jquery/3.6.0/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://anonymfile.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 27 Dec 2023 07:40:54 GMT
content-type: application/javascript; charset=utf-8
content-length: 27938
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "603e8adc-15d9d"
last-modified: Tue, 02 Mar 2021 18:58:36 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 2770552
expires: Mon, 16 Dec 2024 07:40:54 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=m4oHhK8tv061b4aYv8JXiaSHPQ39oS9J6eLhBwrkW7qvyocmsWJDvZOjxkvmttqC%2FRS4dQfLSOYdBE9tjOYqvSJXgIYMpm4qB2xTjRs7S0Bo%2FZPH%2FHmJYNd9vPYN87gu5hdYF4G4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 83bfeb063b6e56c9-OSL
alt-svc: h3=":443"; ma=86400

cdnjs.cloudflare.com/ajax/libs/filepond/4.29.1/filepond.min.css

104.17.24.14

200 OK

2.9 kB

URL GET HTTP/3
cdnjs.cloudflare.com/ajax/libs/filepond/4.29.1/filepond.min.css
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://anonymfile.com/8bbq/full-source-unedited.zip
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
assembler source, ASCII text, with very long lines (17282)
Size
2.9 kB (2934 bytes)
Hash
8eec69af8b7514e7980a5934d329404c
1e176e95fe692683e6e59bb467ec89464b1672f6
a620ee6349399f7d71768f23b38e7fe17f45a89f853288b309c2723af4eadea5

HTTP Headers

GET /ajax/libs/filepond/4.29.1/filepond.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://anonymfile.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 27 Dec 2023 07:40:54 GMT
content-type: text/css; charset=utf-8
content-length: 2934
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "613afc53-b76"
last-modified: Fri, 10 Sep 2021 06:33:55 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 2607062
expires: Mon, 16 Dec 2024 07:40:54 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=t0kfBmT3g55AQWkLZjG3Yo9kFTDKdGvNRz%2Fsn3Vsp44j3KaQmYgJ9DlrrTSM7dleQ2As4p2Y8SD7jeOzOsEsFCacgkkhHgvM4xiBB6ovZZNJc9Y%2FN8NqLdo1%2FmRPraECoUjO23JS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 83bfeb077c0f56c9-OSL
alt-svc: h3=":443"; ma=86400

unpkg.com/filepond-plugin-file-validate-type/dist/filepond-plugin-file-validate-type.js

104.16.123.175

302 Found

123 kB

URL GET HTTP/2
unpkg.com/filepond-plugin-file-validate-type/dist/filepond-plugin-file-validate-type.js
IP
104.16.123.175:443
ASN
#13335 CLOUDFLARENET

Requested by
https://anonymfile.com/8bbq/full-source-unedited.zip
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF7:B6:41:CA:15:FD:D1:0C:27:39:55:5D:C5:CE:3F:1C:A6:BB:9D:6F
ValidityTue, 02 May 2023 00:00:00 GMT - Wed, 01 May 2024 23:59:59 GMT

File type
data
Size
123 kB (122866 bytes)
Hash
73cac3577b16279acd6b7d58f72567ae
48640eae88584dafcb15ce245b084a5f1eec5280
e0538392d70484e3c863bba2344bc78c62f7de69cca3f72c41a5828ba65c835c

HTTP Headers

GET /filepond-plugin-file-validate-type/dist/filepond-plugin-file-validate-type.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://anonymfile.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Wed, 27 Dec 2023 07:40:53 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /filepond-plugin-file-validate-type@1.2.8/dist/filepond-plugin-file-validate-type.js
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01HJN2Z85G9K060037A0WR246Z-arn
cf-cache-status: HIT
age: 556
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 83bfeb039b67b4f4-OSL
X-Firefox-Spdy: h2

anonymfile.com/img/main/footer.webp

88.198.63.72

200 OK

24 kB

URL GET HTTP/2
anonymfile.com/img/main/footer.webp
IP
88.198.63.72:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://anonymfile.com/8bbq/full-source-unedited.zip
Certificate
IssuerLet's Encrypt
Subjectanonymfile.com
Fingerprint9A:3A:E4:32:1D:49:07:9D:4B:3F:8B:25:45:C0:46:15:0D:FF:17:7E
ValiditySat, 28 Oct 2023 18:31:05 GMT - Fri, 26 Jan 2024 18:31:04 GMT

File type
Web Open Font Format (Version 2), TrueType, length 23456, version 768.66
Size
24 kB (23456 bytes)
Hash
e3e5eef95eb3652d939b8c86ecb47fac
ff36e7b2a956a05de0b94dbe7b1bf7e2d6d44cb2
445189de22489c06a549b75c8f8e95cc56639d4128cd72e76896b4d2a7c40ce2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /img/main/footer.webp HTTP/1.1
Host: anonymfile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://anonymfile.com/8bbq/full-source-unedited.zip
Cookie: XSRF-TOKEN=eyJpdiI6Ijk1UTRtc2xnRWZVNXBQSnhaWnhvRXc9PSIsInZhbHVlIjoic0R3VlovUnhweVhuNkx6R1d1UDNJR2NndWIvdHhQc3gyZkNaZklKb1pTNG8xR09TNjBKMFdleHFFdGtrd0tRZ3RiR0N4ck5rV1U4NW9FRDdsM1Z5QXZEWm5Ub3VLRWtvZTV0RzgyRm9ObE9CN01ScDdrcE1RUE5QcE15TmM3Rm8iLCJtYWMiOiI0NjkyZDJhMDhmYTg1YTY4MDQyYzFjNTA3NDY4ZTQ4YzMyZDk5ZjgwMGFlMDRjY2Q5NjUwZjAzOTIzZWMwNmJhIiwidGFnIjoiIn0%3D; anonymfile_session=eyJpdiI6IkhPY0Q2RDNGWEoyQ0VodUZTamZ4bkE9PSIsInZhbHVlIjoieFNVbkdpbG9CQjhLdDRNNmw0TVB4N09oRUJsOWErNmFvUEI3UjNwTCtoaVFDQi9sbWp4WFpSbzRMcDMvcmxseWpTUGFzR010ZlhqdDllQXBQMlRnV2I2RmgvVFY2NFVIeVZCT3BPWndtSDVuN0hiUkdnMzNOK3I2N3FZbUFiL1giLCJtYWMiOiJlYjYyYjAwYTkxOTZhYjI5MmNjMzMyZTZjYzEzNGVhNGUyYTllNWFiZmMzY2JjYzBkYTNiNDkyYTM2ZGE0NzMxIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 27 Dec 2023 07:40:53 GMT
content-type: image/webp
content-length: 178070
last-modified: Tue, 29 Aug 2023 19:49:19 GMT
etag: "64ee4bbf-2b796"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
accept-ranges: bytes
X-Firefox-Spdy: h2

unpkg.com/filepond-plugin-file-validate-size@2.2.8/dist/filepond-plugin-file-validate-size.js

104.16.123.175

200 OK

107 kB

URL GET HTTP/2
unpkg.com/filepond-plugin-file-validate-size@2.2.8/dist/filepond-plugin-file-validate-size.js
IP
104.16.123.175:443
ASN
#13335 CLOUDFLARENET

Requested by
https://anonymfile.com/8bbq/full-source-unedited.zip
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF7:B6:41:CA:15:FD:D1:0C:27:39:55:5D:C5:CE:3F:1C:A6:BB:9D:6F
ValidityTue, 02 May 2023 00:00:00 GMT - Wed, 01 May 2024 23:59:59 GMT

File type
ASCII text
Size
107 kB (106925 bytes)
Hash
5ab1c9fe6f2ca02b78083699d8109be5
99aa73a69b0ee070162ff7a2a8b70005ebb48565
845b2368dce026b72f19715d6de81f03fef056e4a79c718a658161a1f7b03b3b

HTTP Headers

GET /filepond-plugin-file-validate-size@2.2.8/dist/filepond-plugin-file-validate-size.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://anonymfile.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 27 Dec 2023 07:40:54 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"1a7f-mapzppsO4HAWL/eiqLcABeu0hWU"
via: 1.1 fly.io
fly-request-id: 01HG00DYT57K1YNF14EW3S073H-arn
cf-cache-status: HIT
age: 2855347
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 83bfeb064cf1b4f4-OSL
content-encoding: br
X-Firefox-Spdy: h2

anonymfile.com/img/logo-anon-warning.png

88.198.63.72

200 OK

41 kB

URL GET HTTP/2
anonymfile.com/img/logo-anon-warning.png
IP
88.198.63.72:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://anonymfile.com/8bbq/full-source-unedited.zip
Certificate
IssuerLet's Encrypt
Subjectanonymfile.com
Fingerprint9A:3A:E4:32:1D:49:07:9D:4B:3F:8B:25:45:C0:46:15:0D:FF:17:7E
ValiditySat, 28 Oct 2023 18:31:05 GMT - Fri, 26 Jan 2024 18:31:04 GMT

File type
PNG image data, 1024 x 1024, 8-bit/color RGBA, non-interlaced
Size
41 kB (40729 bytes)
Hash
d52ea6ebcd0b10dcf112a9d6c43ceee0
641e5277e2e079f0e88e2899879fda8882e58d28
77cb73f16f049b51c0a81c12ed878e11efe3b9a71c632a3bdb647d963059532e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /img/logo-anon-warning.png HTTP/1.1
Host: anonymfile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://anonymfile.com/8bbq/full-source-unedited.zip
Cookie: XSRF-TOKEN=eyJpdiI6Ijk1UTRtc2xnRWZVNXBQSnhaWnhvRXc9PSIsInZhbHVlIjoic0R3VlovUnhweVhuNkx6R1d1UDNJR2NndWIvdHhQc3gyZkNaZklKb1pTNG8xR09TNjBKMFdleHFFdGtrd0tRZ3RiR0N4ck5rV1U4NW9FRDdsM1Z5QXZEWm5Ub3VLRWtvZTV0RzgyRm9ObE9CN01ScDdrcE1RUE5QcE15TmM3Rm8iLCJtYWMiOiI0NjkyZDJhMDhmYTg1YTY4MDQyYzFjNTA3NDY4ZTQ4YzMyZDk5ZjgwMGFlMDRjY2Q5NjUwZjAzOTIzZWMwNmJhIiwidGFnIjoiIn0%3D; anonymfile_session=eyJpdiI6IkhPY0Q2RDNGWEoyQ0VodUZTamZ4bkE9PSIsInZhbHVlIjoieFNVbkdpbG9CQjhLdDRNNmw0TVB4N09oRUJsOWErNmFvUEI3UjNwTCtoaVFDQi9sbWp4WFpSbzRMcDMvcmxseWpTUGFzR010ZlhqdDllQXBQMlRnV2I2RmgvVFY2NFVIeVZCT3BPWndtSDVuN0hiUkdnMzNOK3I2N3FZbUFiL1giLCJtYWMiOiJlYjYyYjAwYTkxOTZhYjI5MmNjMzMyZTZjYzEzNGVhNGUyYTllNWFiZmMzY2JjYzBkYTNiNDkyYTM2ZGE0NzMxIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 27 Dec 2023 07:40:54 GMT
content-type: image/png
content-length: 40729
last-modified: Tue, 29 Aug 2023 19:18:16 GMT
etag: "64ee4478-9f19"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
accept-ranges: bytes
X-Firefox-Spdy: h2

anonymfile.com/img/logo-anon-warning.png

88.198.63.72

200 OK

41 kB

URL GET HTTP/2
anonymfile.com/img/logo-anon-warning.png
IP
88.198.63.72:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://anonymfile.com/8bbq/full-source-unedited.zip
Certificate
IssuerLet's Encrypt
Subjectanonymfile.com
Fingerprint9A:3A:E4:32:1D:49:07:9D:4B:3F:8B:25:45:C0:46:15:0D:FF:17:7E
ValiditySat, 28 Oct 2023 18:31:05 GMT - Fri, 26 Jan 2024 18:31:04 GMT

File type
PNG image data, 1024 x 1024, 8-bit/color RGBA, non-interlaced
Size
41 kB (40729 bytes)
Hash
d52ea6ebcd0b10dcf112a9d6c43ceee0
641e5277e2e079f0e88e2899879fda8882e58d28
77cb73f16f049b51c0a81c12ed878e11efe3b9a71c632a3bdb647d963059532e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /img/logo-anon-warning.png HTTP/1.1
Host: anonymfile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://anonymfile.com/8bbq/full-source-unedited.zip
Cookie: XSRF-TOKEN=eyJpdiI6Ijk1UTRtc2xnRWZVNXBQSnhaWnhvRXc9PSIsInZhbHVlIjoic0R3VlovUnhweVhuNkx6R1d1UDNJR2NndWIvdHhQc3gyZkNaZklKb1pTNG8xR09TNjBKMFdleHFFdGtrd0tRZ3RiR0N4ck5rV1U4NW9FRDdsM1Z5QXZEWm5Ub3VLRWtvZTV0RzgyRm9ObE9CN01ScDdrcE1RUE5QcE15TmM3Rm8iLCJtYWMiOiI0NjkyZDJhMDhmYTg1YTY4MDQyYzFjNTA3NDY4ZTQ4YzMyZDk5ZjgwMGFlMDRjY2Q5NjUwZjAzOTIzZWMwNmJhIiwidGFnIjoiIn0%3D; anonymfile_session=eyJpdiI6IkhPY0Q2RDNGWEoyQ0VodUZTamZ4bkE9PSIsInZhbHVlIjoieFNVbkdpbG9CQjhLdDRNNmw0TVB4N09oRUJsOWErNmFvUEI3UjNwTCtoaVFDQi9sbWp4WFpSbzRMcDMvcmxseWpTUGFzR010ZlhqdDllQXBQMlRnV2I2RmgvVFY2NFVIeVZCT3BPWndtSDVuN0hiUkdnMzNOK3I2N3FZbUFiL1giLCJtYWMiOiJlYjYyYjAwYTkxOTZhYjI5MmNjMzMyZTZjYzEzNGVhNGUyYTllNWFiZmMzY2JjYzBkYTNiNDkyYTM2ZGE0NzMxIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 27 Dec 2023 07:40:54 GMT
content-type: image/png
content-length: 40729
last-modified: Tue, 29 Aug 2023 19:18:16 GMT
etag: "64ee4478-9f19"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
accept-ranges: bytes
X-Firefox-Spdy: h2

anonymfile.com/8bbq/full-source-unedited.zip

88.198.63.72

200 OK

19 kB

URL User Request GET HTTP/2
anonymfile.com/8bbq/full-source-unedited.zip
IP
88.198.63.72:443
ASN
#24940 Hetzner Online GmbH

Certificate
IssuerLet's Encrypt
Subjectanonymfile.com
Fingerprint9A:3A:E4:32:1D:49:07:9D:4B:3F:8B:25:45:C0:46:15:0D:FF:17:7E
ValiditySat, 28 Oct 2023 18:31:05 GMT - Fri, 26 Jan 2024 18:31:04 GMT

File type

Size
19 kB (19194 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /8bbq/full-source-unedited.zip HTTP/1.1
Host: anonymfile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: no-cache, private
date: Wed, 27 Dec 2023 07:40:52 GMT
set-cookie: XSRF-TOKEN=eyJpdiI6Ijk1UTRtc2xnRWZVNXBQSnhaWnhvRXc9PSIsInZhbHVlIjoic0R3VlovUnhweVhuNkx6R1d1UDNJR2NndWIvdHhQc3gyZkNaZklKb1pTNG8xR09TNjBKMFdleHFFdGtrd0tRZ3RiR0N4ck5rV1U4NW9FRDdsM1Z5QXZEWm5Ub3VLRWtvZTV0RzgyRm9ObE9CN01ScDdrcE1RUE5QcE15TmM3Rm8iLCJtYWMiOiI0NjkyZDJhMDhmYTg1YTY4MDQyYzFjNTA3NDY4ZTQ4YzMyZDk5ZjgwMGFlMDRjY2Q5NjUwZjAzOTIzZWMwNmJhIiwidGFnIjoiIn0%3D; expires=Wed, 27-Dec-2023 09:40:52 GMT; Max-Age=7200; path=/; samesite=lax
anonymfile_session=eyJpdiI6IkhPY0Q2RDNGWEoyQ0VodUZTamZ4bkE9PSIsInZhbHVlIjoieFNVbkdpbG9CQjhLdDRNNmw0TVB4N09oRUJsOWErNmFvUEI3UjNwTCtoaVFDQi9sbWp4WFpSbzRMcDMvcmxseWpTUGFzR010ZlhqdDllQXBQMlRnV2I2RmgvVFY2NFVIeVZCT3BPWndtSDVuN0hiUkdnMzNOK3I2N3FZbUFiL1giLCJtYWMiOiJlYjYyYjAwYTkxOTZhYjI5MmNjMzMyZTZjYzEzNGVhNGUyYTllNWFiZmMzY2JjYzBkYTNiNDkyYTM2ZGE0NzMxIiwidGFnIjoiIn0%3D; expires=Wed, 27-Dec-2023 09:40:52 GMT; Max-Age=7200; path=/; httponly; samesite=lax
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-encoding: gzip
X-Firefox-Spdy: h2

anonymfile.com/js/site.js

88.198.63.72

200 OK

9.4 kB

URL GET HTTP/2
anonymfile.com/js/site.js
IP
88.198.63.72:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://anonymfile.com/8bbq/full-source-unedited.zip
Certificate
IssuerLet's Encrypt
Subjectanonymfile.com
Fingerprint9A:3A:E4:32:1D:49:07:9D:4B:3F:8B:25:45:C0:46:15:0D:FF:17:7E
ValiditySat, 28 Oct 2023 18:31:05 GMT - Fri, 26 Jan 2024 18:31:04 GMT

File type
ASCII text, with very long lines (9669), with no line terminators
Size
9.4 kB (9351 bytes)
Hash
53fbd7ec3564e9eace6cc150441ae6e0
1b0179094541162f986581cf93561b24d78fab2c
9929e8ec1f73bb530fc9c9a350ca107e69e26d41a235dd766ec5d895591c68c1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/site.js HTTP/1.1
Host: anonymfile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://anonymfile.com/8bbq/full-source-unedited.zip
Cookie: XSRF-TOKEN=eyJpdiI6Ijk1UTRtc2xnRWZVNXBQSnhaWnhvRXc9PSIsInZhbHVlIjoic0R3VlovUnhweVhuNkx6R1d1UDNJR2NndWIvdHhQc3gyZkNaZklKb1pTNG8xR09TNjBKMFdleHFFdGtrd0tRZ3RiR0N4ck5rV1U4NW9FRDdsM1Z5QXZEWm5Ub3VLRWtvZTV0RzgyRm9ObE9CN01ScDdrcE1RUE5QcE15TmM3Rm8iLCJtYWMiOiI0NjkyZDJhMDhmYTg1YTY4MDQyYzFjNTA3NDY4ZTQ4YzMyZDk5ZjgwMGFlMDRjY2Q5NjUwZjAzOTIzZWMwNmJhIiwidGFnIjoiIn0%3D; anonymfile_session=eyJpdiI6IkhPY0Q2RDNGWEoyQ0VodUZTamZ4bkE9PSIsInZhbHVlIjoieFNVbkdpbG9CQjhLdDRNNmw0TVB4N09oRUJsOWErNmFvUEI3UjNwTCtoaVFDQi9sbWp4WFpSbzRMcDMvcmxseWpTUGFzR010ZlhqdDllQXBQMlRnV2I2RmgvVFY2NFVIeVZCT3BPWndtSDVuN0hiUkdnMzNOK3I2N3FZbUFiL1giLCJtYWMiOiJlYjYyYjAwYTkxOTZhYjI5MmNjMzMyZTZjYzEzNGVhNGUyYTllNWFiZmMzY2JjYzBkYTNiNDkyYTM2ZGE0NzMxIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 27 Dec 2023 07:40:53 GMT
content-type: application/javascript
last-modified: Tue, 29 Aug 2023 19:18:16 GMT
vary: Accept-Encoding
etag: W/"64ee4478-2487"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-encoding: gzip
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0-beta2/webfonts/fa-brands-400.woff2

104.17.24.14

200 OK

105 kB

URL GET HTTP/3
cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0-beta2/webfonts/fa-brands-400.woff2
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://anonymfile.com/8bbq/full-source-unedited.zip
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 105264, version 768.66
Size
105 kB (105264 bytes)
Hash
ef9332780500ea981e97dff51cc30669
4020ed1a099b98c421f09ceb9a92f4a1d8d5d9c8
ec372177b8e8df39d755e16551dfbbddcc53938ca52765fd730d0925885c964e

HTTP Headers

GET /ajax/libs/font-awesome/6.0.0-beta2/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://anonymfile.com
DNT: 1
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 27 Dec 2023 07:40:54 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 105264
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "61498362-19b30"
last-modified: Tue, 21 Sep 2021 07:01:54 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1599282
expires: Mon, 16 Dec 2024 07:40:54 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FLcSchhF%2Bv4Cz%2BtYRKVouPWncNzCwaMftwsFadoCYqp5s0xXk5lYTsgABlAH24QjgfnpsWuDSj6B16tW%2BNPY7qWfqeAvpbKCLjC8Cn7uySxy%2BzDl8XCnUZfEnCJcLBmSeueyzWer"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 83bfeb077c1556c9-OSL
alt-svc: h3=":443"; ma=86400

unpkg.com/filepond-plugin-file-validate-type@1.2.8/dist/filepond-plugin-file-validate-type.js

104.16.123.175

200 OK

7.4 kB

URL GET HTTP/2
unpkg.com/filepond-plugin-file-validate-type@1.2.8/dist/filepond-plugin-file-validate-type.js
IP
104.16.123.175:443
ASN
#13335 CLOUDFLARENET

Requested by
https://anonymfile.com/8bbq/full-source-unedited.zip
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF7:B6:41:CA:15:FD:D1:0C:27:39:55:5D:C5:CE:3F:1C:A6:BB:9D:6F
ValidityTue, 02 May 2023 00:00:00 GMT - Wed, 01 May 2024 23:59:59 GMT

File type
ASCII text, with very long lines (7681), with no line terminators
Size
7.4 kB (7431 bytes)
Hash
08f31175f62c10c483860d2c746ae52f
2fee06ebf67f7722292add347fb09cf9b82901fb
3ae2cb56796f85af0afc8aced3abfeb9590a718d826451ee0c16caabec2e6755

HTTP Headers

GET /filepond-plugin-file-validate-type@1.2.8/dist/filepond-plugin-file-validate-type.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://anonymfile.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 27 Dec 2023 07:40:54 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"1d07-1hxUHKzrTl3rNdhkJwK4kJGou0I"
via: 1.1 fly.io
fly-request-id: 01HJ7QGPARM8284JBB5FKCJ4FN-arn
cf-cache-status: HIT
age: 448776
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 83bfeb066d01b4f4-OSL
content-encoding: br
X-Firefox-Spdy: h2

unpkg.com/filepond-plugin-file-validate-size/dist/filepond-plugin-file-validate-size.js

104.16.123.175

302 Found

6.8 kB

URL GET HTTP/2
unpkg.com/filepond-plugin-file-validate-size/dist/filepond-plugin-file-validate-size.js
IP
104.16.123.175:443
ASN
#13335 CLOUDFLARENET

Requested by
https://anonymfile.com/8bbq/full-source-unedited.zip
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF7:B6:41:CA:15:FD:D1:0C:27:39:55:5D:C5:CE:3F:1C:A6:BB:9D:6F
ValidityTue, 02 May 2023 00:00:00 GMT - Wed, 01 May 2024 23:59:59 GMT

File type

Size
6.8 kB (6783 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /filepond-plugin-file-validate-size/dist/filepond-plugin-file-validate-size.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://anonymfile.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Wed, 27 Dec 2023 07:40:53 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /filepond-plugin-file-validate-size@2.2.8/dist/filepond-plugin-file-validate-size.js
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01HJN362GZCC7SV7C2CCEH7QWQ-arn
cf-cache-status: HIT
age: 333
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 83bfeb037b4bb4f4-OSL
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0-beta2/webfonts/fa-regular-400.woff2

104.17.24.14

200 OK

24 kB

URL GET HTTP/3
cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0-beta2/webfonts/fa-regular-400.woff2
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://anonymfile.com/8bbq/full-source-unedited.zip
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 23456, version 768.66
Size
24 kB (23456 bytes)
Hash
e3e5eef95eb3652d939b8c86ecb47fac
ff36e7b2a956a05de0b94dbe7b1bf7e2d6d44cb2
445189de22489c06a549b75c8f8e95cc56639d4128cd72e76896b4d2a7c40ce2

HTTP Headers

GET /ajax/libs/font-awesome/6.0.0-beta2/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://anonymfile.com
DNT: 1
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 27 Dec 2023 07:40:54 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 23456
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "61498362-5ba0"
last-modified: Tue, 21 Sep 2021 07:01:54 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 3027251
expires: Mon, 16 Dec 2024 07:40:54 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Lnb6hScQKqgG9yQLoXKqayoRSOMdJegKF3NhvYxGcPYhfSYDb3HZ88NK6jtwZKZQ7cGjQeAuIgXUuhK0XIkVABcU8DxuJUHhS0l3m%2BnUjgQEX1S4OglfXeVgkbMW0yIPI4zRCmNy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 83bfeb077c1256c9-OSL
alt-svc: h3=":443"; ma=86400

cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0-beta2/webfonts/fa-solid-900.woff2

104.17.24.14

200 OK

123 kB

URL GET HTTP/3
cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0-beta2/webfonts/fa-solid-900.woff2
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://anonymfile.com/8bbq/full-source-unedited.zip
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 122760, version 768.66
Size
123 kB (122760 bytes)
Hash
d1bea16f470ff27ca26131a867131fda
c1e34985d239716f1f236b932f2ecf4fb4c167d2
57deb9ccde6d49564a916cc58a799d8ebd793c7aff69a7f3cce48cbfb0c48777

HTTP Headers

GET /ajax/libs/font-awesome/6.0.0-beta2/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://anonymfile.com
DNT: 1
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 27 Dec 2023 07:40:54 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 122760
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "61498362-1df88"
last-modified: Tue, 21 Sep 2021 07:01:54 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1247058
expires: Mon, 16 Dec 2024 07:40:54 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=of9AutT%2FXvLVRc6vkmjZDe%2BIVzHT495bm89vzTTwbQhG%2BgIAPWCUzZAo%2FR4C26PDU0FTf%2Fb13D15xfiNl3bJjU20BnLgatKspErE53OiGhKNmQsiRAdM%2BDhUU%2BA9Y5R%2FT%2BzkbF99"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 83bfeb077c1156c9-OSL
alt-svc: h3=":443"; ma=86400

anonymfile.com/css/theme.min.css

88.198.63.72

200 OK

598 kB

URL GET HTTP/2
anonymfile.com/css/theme.min.css
IP
88.198.63.72:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://anonymfile.com/8bbq/full-source-unedited.zip
Certificate
IssuerLet's Encrypt
Subjectanonymfile.com
Fingerprint9A:3A:E4:32:1D:49:07:9D:4B:3F:8B:25:45:C0:46:15:0D:FF:17:7E
ValiditySat, 28 Oct 2023 18:31:05 GMT - Fri, 26 Jan 2024 18:31:04 GMT

File type

Size
598 kB (598523 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /css/theme.min.css HTTP/1.1
Host: anonymfile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://anonymfile.com/8bbq/full-source-unedited.zip
Cookie: XSRF-TOKEN=eyJpdiI6Ijk1UTRtc2xnRWZVNXBQSnhaWnhvRXc9PSIsInZhbHVlIjoic0R3VlovUnhweVhuNkx6R1d1UDNJR2NndWIvdHhQc3gyZkNaZklKb1pTNG8xR09TNjBKMFdleHFFdGtrd0tRZ3RiR0N4ck5rV1U4NW9FRDdsM1Z5QXZEWm5Ub3VLRWtvZTV0RzgyRm9ObE9CN01ScDdrcE1RUE5QcE15TmM3Rm8iLCJtYWMiOiI0NjkyZDJhMDhmYTg1YTY4MDQyYzFjNTA3NDY4ZTQ4YzMyZDk5ZjgwMGFlMDRjY2Q5NjUwZjAzOTIzZWMwNmJhIiwidGFnIjoiIn0%3D; anonymfile_session=eyJpdiI6IkhPY0Q2RDNGWEoyQ0VodUZTamZ4bkE9PSIsInZhbHVlIjoieFNVbkdpbG9CQjhLdDRNNmw0TVB4N09oRUJsOWErNmFvUEI3UjNwTCtoaVFDQi9sbWp4WFpSbzRMcDMvcmxseWpTUGFzR010ZlhqdDllQXBQMlRnV2I2RmgvVFY2NFVIeVZCT3BPWndtSDVuN0hiUkdnMzNOK3I2N3FZbUFiL1giLCJtYWMiOiJlYjYyYjAwYTkxOTZhYjI5MmNjMzMyZTZjYzEzNGVhNGUyYTllNWFiZmMzY2JjYzBkYTNiNDkyYTM2ZGE0NzMxIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 27 Dec 2023 07:40:53 GMT
content-type: text/css
last-modified: Tue, 29 Aug 2023 19:18:16 GMT
vary: Accept-Encoding
etag: W/"64ee4478-921fb"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-encoding: gzip
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (13)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash