Report - jewnavyeetle.glitch.me/public/ueou8uy02hwoij082uosh8901juheoihiujw1h10.HTML?entity=1994173

Report Overview

Visited public
2023-11-25 13:13:58
Tags
suspicious
URL
jewnavyeetle.glitch.me/public/ueou8uy02hwoij082uosh8901juheoihiujw1h10.HTML?entity=1994173
Finishing URL
jewnavyeetle.glitch.me/public/ueou8uy02hwoij082uosh8901juheoihiujw1h10.HTML?entity=1994173
IP / ASN
3.234.49.89
#14618 AMAZON-AES
Title
Navy Federal Credit Union - Our Members are the Mission®
Suspicious - Suspicious Javascript code

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17 22:46:33	2023-11-25 05:09:33	481 B	6.6 kB	104.17.25.14
jewnavyeetle.glitch.me	unknown	unknown	No data	No data	556 B	910 kB	34.225.219.45
l2.io	163527	2012-05-12	2015-06-25 03:31:26	2023-11-23 16:44:56	415 B	226 B	195.80.159.133

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-11-25 13:13:44	medium	Client IP	Internal IP	ET POLICY Observed IP Lookup Domain (l2 .io in DNS Lookup)
2023-11-25 13:13:44	medium	Client IP	Internal IP	ET POLICY Observed IP Lookup Domain (l2 .io in DNS Lookup)
2023-11-25 13:13:44	medium	Client IP	195.80.159.133	ET POLICY Observed IP Lookup Domain (l2 .io in TLS SNI)
2023-11-25 13:13:45	medium	Client IP	195.80.159.133	ET POLICY Observed IP Lookup Domain (l2 .io in TLS SNI)

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (15)

	URL	From	Size	First Seen	Last Seen
	jewnavyeetle.glitch.me/public/ueou8uy02hwoij082uosh8901juheoihiujw1h10.HTML?entity=1994173	ScriptElement	258 B	2023-03-07	2025-05-07
Pretty URL jewnavyeetle.glitch.me/public/ueou8uy02hwoij082uosh8901juheoihiujw1h10.HTML?entity=1994173 IP 34.225.219.45 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:09 Last Seen2025-05-07 16:02 Times Seen73 Hash c93bfd6df957b0e513001d034271d53e 86dabc69994dd97e75556a5f172d16b96d204093 41a08952e21af8f17814cdc69394a20e255e4f828741c85f61bdb50b5b513d36 Loading...

	l2.io/ip.js?var=userip	ScriptElement	24 B	2023-03-07	2025-05-09
Pretty URL l2.io/ip.js?var=userip IP 195.80.159.133 ASN #29152 Decknet S.a.r.l. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-09 07:36 Times Seen1137 Hash f9dc91b3feea65bd389a2f5b57306c32 147d1c9ae79ae948a34c5f1254bdcbf7af9caf8e d88923af30873abcf4cde709062c3d2e9ded181f9e2552c7fbcc983b3796ff77 Loading...

	jewnavyeetle.glitch.me/public/ueou8uy02hwoij082uosh8901juheoihiujw1h10.HTML?entity=1994173	ScriptElement	15 B	2023-03-07	2025-05-07
Pretty URL jewnavyeetle.glitch.me/public/ueou8uy02hwoij082uosh8901juheoihiujw1h10.HTML?entity=1994173 IP 34.225.219.45 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:06 Last Seen2025-05-07 16:02 Times Seen319 Hash a6334981a8bbe29aa5c1dc2edd2640b2 4c0fb8f501dfb048b93102fccc8976cd1ce14f34 5dedb26ee87d110b89e97198b67b2a79dc14359cfda2d56ff91af5f460b6a4a0 Loading...

	unknown	ScriptElement	12 kB	2023-06-13	2025-02-01
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-13 00:51 Last Seen2025-02-01 12:08 Times Seen28 Hash 59797016ea6e421b27cfcf61978a6d1a 0b5bb0a6b60dd86019568a464ebf865e22afb9fe 343324400f8143dd59d4f78de66d69148afa153291856d56b0e9c59b67a0b7bb Loading...

	jewnavyeetle.glitch.me/public/ueou8uy02hwoij082uosh8901juheoihiujw1h10.HTML?entity=1994173	ScriptElement	65 B	2023-03-07	2025-05-07
Pretty URL jewnavyeetle.glitch.me/public/ueou8uy02hwoij082uosh8901juheoihiujw1h10.HTML?entity=1994173 IP 34.225.219.45 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:06 Last Seen2025-05-07 16:02 Times Seen316 Hash 2bd60c5b14d66a418d7acfdb28bbbdce d2281051c147d3ba68c9cdf1048cf1d49408aa39 7ebe893f5ae6a45f490e5b51841c7ba938425832b0326aad21a13106b52d8675 Loading...

	jewnavyeetle.glitch.me/public/ueou8uy02hwoij082uosh8901juheoihiujw1h10.HTML?entity=1994173	ScriptElement	1.0 kB	2023-09-10	2024-08-21
Pretty URL jewnavyeetle.glitch.me/public/ueou8uy02hwoij082uosh8901juheoihiujw1h10.HTML?entity=1994173 IP 34.225.219.45 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-10 01:51 Last Seen2024-08-21 07:10 Times Seen17 Hash 95b3b7abfb0c0276dab8a14d7c05917e f83d2f9ead245e82b04e3e8b4825500d82760011 ce66ece15cb3556965b914cccc16043c2a1f038ca2221e340e305903092241ed Loading...

	jewnavyeetle.glitch.me/public/ueou8uy02hwoij082uosh8901juheoihiujw1h10.HTML?entity=1994173	ScriptElement	1.2 kB	2023-09-10	2024-08-21
Pretty URL jewnavyeetle.glitch.me/public/ueou8uy02hwoij082uosh8901juheoihiujw1h10.HTML?entity=1994173 IP 34.225.219.45 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-10 01:51 Last Seen2024-08-21 07:10 Times Seen17 Hash 1ff8ec221e8fd372b7de574830d78277 3137e9b514e1a8df6510df02bcdd26661605baf0 f6577c21fb348101addd1a7a6faf4f74df5f582bdf3c505970b55e5160cd9900 Loading...

	jewnavyeetle.glitch.me/public/ueou8uy02hwoij082uosh8901juheoihiujw1h10.HTML?entity=1994173	ScriptElement	1.3 kB	2023-09-10	2024-08-21
Pretty URL jewnavyeetle.glitch.me/public/ueou8uy02hwoij082uosh8901juheoihiujw1h10.HTML?entity=1994173 IP 34.225.219.45 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-10 01:51 Last Seen2024-08-21 07:10 Times Seen17 Hash 287c45848626d4c1a06e54dcac1144c5 84c61acd5177e9579f3cf1c51d83e5ba8abac9ae bb2816db8e44995120a2e0df0c98d8f70bc5de06e6cd468fb98b06d498ff78ec Loading...

	jewnavyeetle.glitch.me/public/ueou8uy02hwoij082uosh8901juheoihiujw1h10.HTML?entity=1994173	ScriptElement	1.4 kB	2023-09-10	2024-08-21
Pretty URL jewnavyeetle.glitch.me/public/ueou8uy02hwoij082uosh8901juheoihiujw1h10.HTML?entity=1994173 IP 34.225.219.45 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-10 01:51 Last Seen2024-08-21 07:10 Times Seen17 Hash f0d68409fbd583710d9b9928bc5c193f 28e8f457e2a7165df0adef62498396cb773e2800 43326d1e22a149a74109001030ac3586d44578c7a6765368a25318b37e3a8ce7 Loading...

	jewnavyeetle.glitch.me/public/ueou8uy02hwoij082uosh8901juheoihiujw1h10.HTML?entity=1994173	ScriptElement	2.3 kB	2023-09-10	2024-08-21
Pretty URL jewnavyeetle.glitch.me/public/ueou8uy02hwoij082uosh8901juheoihiujw1h10.HTML?entity=1994173 IP 34.225.219.45 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-10 01:51 Last Seen2024-08-21 07:10 Times Seen17 Hash d9b747c67fd754d83c8b65364f47afc2 e83c2bdca265be26c611729e798b38219b9c1acc 25f08d4f17850ed3d37077ffd4c837c122917bd7d6086d392e076717cf8de052 Loading...

	jewnavyeetle.glitch.me/public/ueou8uy02hwoij082uosh8901juheoihiujw1h10.HTML?entity=1994173	ScriptElement	2.5 kB	2023-09-10	2024-08-21
Pretty URL jewnavyeetle.glitch.me/public/ueou8uy02hwoij082uosh8901juheoihiujw1h10.HTML?entity=1994173 IP 34.225.219.45 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-10 01:51 Last Seen2024-08-21 07:10 Times Seen17 Hash 93b5af5defa834a01537e9e196b54295 95c83cce33edcf38dd5936fdeab488e4281e732f e28b581c91250b0dc7e1d1da5e168e449ba0a4e5aa85a687c5c8e8decd1cf483 Loading...

	jewnavyeetle.glitch.me/public/ueou8uy02hwoij082uosh8901juheoihiujw1h10.HTML?entity=1994173	ScriptElement	2.8 kB	2023-09-10	2024-08-21
Pretty URL jewnavyeetle.glitch.me/public/ueou8uy02hwoij082uosh8901juheoihiujw1h10.HTML?entity=1994173 IP 34.225.219.45 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-10 01:51 Last Seen2024-08-21 07:10 Times Seen17 Hash 0225083d900c9a4bf15a9208539afe88 a9adcbdb7d787a51d75db0fe1326a470ad39ccfd b2e4adcf5decc7b3589f8d86d7d110d879be1be8e436a86a3d961e7f8d340f49 Loading...

	jewnavyeetle.glitch.me/public/ueou8uy02hwoij082uosh8901juheoihiujw1h10.HTML?entity=1994173	ScriptElement	7.3 kB	2023-03-07	2025-05-07
Pretty URL jewnavyeetle.glitch.me/public/ueou8uy02hwoij082uosh8901juheoihiujw1h10.HTML?entity=1994173 IP 34.225.219.45 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:09 Last Seen2025-05-07 16:02 Times Seen72 Hash b9d6f1560ad183cb9fde5f597e405fad 38b60cb29859a431e8c38d616615eb893cff3391 9feebe08608ee9e17dd00041e29d3ee7dbab56f153cce83c942d09da420f5905 Loading...

	jewnavyeetle.glitch.me/public/ueou8uy02hwoij082uosh8901juheoihiujw1h10.HTML?entity=1994173	ScriptElement	0 B	0001-01-01	2025-05-09
Pretty URL jewnavyeetle.glitch.me/public/ueou8uy02hwoij082uosh8901juheoihiujw1h10.HTML?entity=1994173 IP 34.225.219.45 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-05-09 09:14 Times Seen4635084 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

		Size	First Seen	Last Seen
	#1 Write - bf032f61a73d2a8ca48627a33908da48	2.4 kB	2023-03-07 12:09	2025-05-07 16:02
Pretty Observations First Seen2023-03-07 12:09 Last Seen2025-05-07 16:02 Times Seen119 Hash bf032f61a73d2a8ca48627a33908da48 38b4b237d602fb229cd309315b0ce65fc47d5477 1f3f925220fd8734d386059dfdf4e3f19109432bed4dfa31ac6f0ea7c1a5ada3 Loading...

HTTP Transactions (3)

	URL	IP	Response	Size
	cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css	104.17.25.14	200 OK	5.6 kB
URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css IP 104.17.25.14:443 ASN #13335 CLOUDFLARENET Requested by https://jewnavyeetle.glitch.me/public/ueou8uy02hwoij082uosh8901juheoihiujw1h10.HTML?entity=1994173 Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT File type ASCII text, with very long lines (30837) Size 5.6 kB (5631 bytes) Hash 269550530cc127b6aa5a35925a7de6ce 512c7d79033e3028a9be61b540cf1a6870c896f8 799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd HTTP Headers `GET /ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1 Host: cdnjs.cloudflare.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://jewnavyeetle.glitch.me/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Sat, 25 Nov 2023 13:13:41 GMT content-type: text/css; charset=utf-8 content-length: 5631 access-control-allow-origin: * cache-control: public, max-age=30672000 content-encoding: br etag: "5eb03e5f-7918" last-modified: Mon, 04 May 2020 16:10:07 GMT cf-cdnjs-via: cfworker/kv cross-origin-resource-policy: cross-origin timing-allow-origin: * x-content-type-options: nosniff vary: Accept-Encoding cf-cache-status: HIT age: 2460576 expires: Thu, 14 Nov 2024 13:13:41 GMT accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VNihuvo8a1Du1dHmUZlixr7FoDWJNEpKPW1TCC9bQ5jjhXv3Yruiz7SSDrpkIaYCvHKFCxccRupjsAVERdUVLnJmNk9UssUM1cv%2Bu8PMSoG1rxoqOmXjQdpqAnTasnGY1%2B5CSAJu"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} strict-transport-security: max-age=15780000 server: cloudflare cf-ray: 82ba26810a3d56c5-OSL alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	jewnavyeetle.glitch.me/public/ueou8uy02hwoij082uosh8901juheoihiujw1h10.HTML?entity=1994173	34.225.219.45	200 OK	910 kB
URL User Request GET HTTP/2 jewnavyeetle.glitch.me/public/ueou8uy02hwoij082uosh8901juheoihiujw1h10.HTML?entity=1994173 IP 34.225.219.45:443 ASN #14618 AMAZON-AES Certificate IssuerAmazon Subjectglitch.com Fingerprint13:93:2D:E4:50:7E:CE:BA:BC:F9:6D:7E:86:7F:43:5D:8E:63:45:3E ValidityWed, 22 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (15881) Size 910 kB (909726 bytes) Hash 63bc9a26623167440ab8e8a342352cce 8b46db7c0c55fdb4fc7af61dc3931958e9c08037 a141a6d4e748accd9946eb834906a6e2e992b8758f0327a75d6cc8fe1d90b216 HTTP Headers GET /public/ueou8uy02hwoij082uosh8901juheoihiujw1h10.HTML?entity=1994173 HTTP/1.1 Host: jewnavyeetle.glitch.me User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK date: Sat, 25 Nov 2023 13:13:40 GMT content-type: text/html; charset=utf-8 content-length: 909726 x-amz-id-2: a/wI5QI+wn8HcI2ICnsOz+vdy0yAr3pweuiCc8hpEpYFLc8udI1+9dTggBF+hrnvN+8KhZxGfLs= x-amz-request-id: 025501W46FFJ8M9R last-modified: Thu, 23 Nov 2023 22:02:08 GMT etag: "63bc9a26623167440ab8e8a342352cce" x-amz-server-side-encryption: AES256 cache-control: no-cache x-amz-version-id: null accept-ranges: bytes server: AmazonS3 X-Firefox-Spdy: h2`

	l2.io/ip.js?var=userip	195.80.159.133	200 OK	24 B
URL GET HTTP/1.1 l2.io/ip.js?var=userip IP 195.80.159.133:443 ASN #29152 Decknet S.a.r.l. Requested by https://jewnavyeetle.glitch.me/public/ueou8uy02hwoij082uosh8901juheoihiujw1h10.HTML?entity=1994173 Certificate IssuerLet's Encrypt Subjectl2.io Fingerprint65:49:ED:2D:E9:35:D9:26:3D:70:87:2B:4F:20:FF:14:56:55:52:B4 ValidityTue, 17 Oct 2023 07:33:55 GMT - Mon, 15 Jan 2024 07:33:54 GMT File type ASCII text, with no line terminators Size 24 B (24 bytes) Hash f9dc91b3feea65bd389a2f5b57306c32 147d1c9ae79ae948a34c5f1254bdcbf7af9caf8e d88923af30873abcf4cde709062c3d2e9ded181f9e2552c7fbcc983b3796ff77 HTTP Headers `GET /ip.js?var=userip HTTP/1.1 Host: l2.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://jewnavyeetle.glitch.me/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Sat, 25 Nov 2023 13:13:41 GMT Server: Apache/2.4.38 (Debian) Content-Length: 24 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Content-Type: text/html; charset=UTF-8`

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (15)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash