Report - omshete0550.github.io/NetflixClone

Report Overview

Visited public
2024-02-09 15:18:10
Tags
netflix phishing
URL
omshete0550.github.io/NetflixClone
Finishing URL
omshete0550.github.io/NetflixClone/
IP / ASN
185.199.111.153
#54113 FASTLY
Title
Netflix
Phishing - Netflix

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
omshete0550.github.io	unknown	unknown	No data	No data	2.4 kB	27 kB	185.199.109.153
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17 22:46:33	2024-02-09 09:19:38	1.0 kB	177 kB	104.17.25.14
assets.nflxext.com	3871	2011-02-11	2015-07-22 06:02:07	2024-02-09 05:15:46	3.6 kB	870 kB	45.57.91.1
i.ibb.co	13485	2010-07-20	2018-11-25 11:13:48	2024-02-09 05:04:08	426 B	6.7 kB	162.19.58.160

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-02-09	medium	omshete0550.github.io/NetflixClone	Netflix Inc.

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (1)

	URL	From	Size	First Seen	Last Seen
	omshete0550.github.io/NetflixClone/JS/script.js	ScriptElement	391 B	2024-02-09	2024-08-20
Pretty URL omshete0550.github.io/NetflixClone/JS/script.js IP 185.199.109.153 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2024-02-09 16:18 Last Seen2024-08-20 09:58 Times Seen2 Hash 63439eba4aab3bfdfd73f054a66621ed 4601b6dac8527cfe3a47178183ee24f550684f62 35ae082c0d0afd217bcec9da919cc3aeda2cbcf39d55f50bc05311349704e464 Loading...

HTTP Transactions (15)

URL IP Response Size

omshete0550.github.io/NetflixClone

185.199.109.153

301 Moved Permanently

162 B

URL User Request GET HTTP/2
omshete0550.github.io/NetflixClone
IP
185.199.109.153:443
ASN
#54113 FASTLY

Certificate
IssuerDigiCert Inc
Subject*.github.io
FingerprintA1:46:14:C7:2A:1D:52:79:F6:AA:2B:B2:C5:0A:3B:D3:F5:02:06:75
ValidityTue, 21 Feb 2023 00:00:00 GMT - Wed, 20 Mar 2024 23:59:59 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Netflix
OpenPhish	phishing	Netflix Inc.

HTTP Headers

GET /NetflixClone HTTP/1.1
Host: omshete0550.github.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
server: GitHub.com
content-type: text/html
permissions-policy: interest-cohort=()
location: https://omshete0550.github.io/NetflixClone/
x-github-request-id: A72C:2A24A8:33D9623:34FA5EC:65C63E6E
accept-ranges: bytes
date: Fri, 09 Feb 2024 15:17:44 GMT
via: 1.1 varnish
age: 938
x-served-by: cache-hel1410031-HEL
x-cache: HIT
x-cache-hits: 2
x-timer: S1707491864.453288,VS0,VE0
vary: Accept-Encoding
x-fastly-request-id: 18367932b28ba3da5d61f79f55ad3e1d10d69308
content-length: 162
X-Firefox-Spdy: h2

omshete0550.github.io/NetflixClone/

185.199.109.153

200 OK

2.5 kB

URL User Request GET HTTP/2
omshete0550.github.io/NetflixClone/
IP
185.199.109.153:443
ASN
#54113 FASTLY

Certificate
IssuerDigiCert Inc
Subject*.github.io
FingerprintA1:46:14:C7:2A:1D:52:79:F6:AA:2B:B2:C5:0A:3B:D3:F5:02:06:75
ValidityTue, 21 Feb 2023 00:00:00 GMT - Wed, 20 Mar 2024 23:59:59 GMT

File type
HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Size
2.5 kB (2507 bytes)
Hash
64c5137f759867a670c9936a265e2858
d0d20a45be914d1177ae7ca71097ff65c006920c
0583d1d4472973e5405cbaa97718639eb3c8493dea3f0416ac9dfb34ef2cf518

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Netflix

HTTP Headers

GET /NetflixClone/ HTTP/1.1
Host: omshete0550.github.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: text/html; charset=utf-8
permissions-policy: interest-cohort=()
last-modified: Fri, 15 Dec 2023 13:28:09 GMT
access-control-allow-origin: *
strict-transport-security: max-age=31556952
etag: W/"657c5469-2a3d"
expires: Fri, 09 Feb 2024 12:13:21 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 8290:2C7F8:31BCAA1:32D76D2:65C61489
accept-ranges: bytes
date: Fri, 09 Feb 2024 15:17:44 GMT
via: 1.1 varnish
age: 296
x-served-by: cache-hel1410031-HEL
x-cache: HIT
x-cache-hits: 1
x-timer: S1707491864.471396,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 8482da1282cf0166288d56a6c3ba17574720fd0b
content-length: 2507
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/font-awesome/6.5.1/css/all.min.css

104.17.25.14

200 OK

19 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/font-awesome/6.5.1/css/all.min.css
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://omshete0550.github.io/NetflixClone/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (52276)
Size
19 kB (18861 bytes)
Hash
9402848c3d4bbc710c764326f8b887c9
b6e555166eb1381392e00adcde9bf8863f16ff01
c22cfb6520a7fdbb738632834019acf47c78b1279462c0eb4cb83bae83ecb5a7

HTTP Headers

GET /ajax/libs/font-awesome/6.5.1/css/all.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://omshete0550.github.io
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 09 Feb 2024 15:17:44 GMT
content-type: text/css; charset=utf-8
content-length: 18861
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "65692999-49ad"
last-modified: Fri, 01 Dec 2023 00:32:25 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 6078138
expires: Wed, 29 Jan 2025 15:17:44 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qjTxa0LdIGWdGMVMAaK9UvNHxWjsNu%2BmJDBsRXGDRKbcaBWIHpuRIbx1t%2BLduZkK1Cp2CqdfsOy%2B5xbDcHbbAehjjOyELfVT6lSAxsPko7tGr%2BVnf7kTyr6%2FVYY6epfG0YLikyAV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 852d14bb083b5688-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

omshete0550.github.io/NetflixClone/CSS/style.css

185.199.109.153

200 OK

2.1 kB

URL GET HTTP/2
omshete0550.github.io/NetflixClone/CSS/style.css
IP
185.199.109.153:443
ASN
#54113 FASTLY

Requested by
https://omshete0550.github.io/NetflixClone/
Certificate
IssuerDigiCert Inc
Subject*.github.io
FingerprintA1:46:14:C7:2A:1D:52:79:F6:AA:2B:B2:C5:0A:3B:D3:F5:02:06:75
ValidityTue, 21 Feb 2023 00:00:00 GMT - Wed, 20 Mar 2024 23:59:59 GMT

File type
troff or preprocessor input, ASCII text
Size
2.1 kB (2143 bytes)
Hash
c7998bc8f0b99b4b531e7b68c2bb49fd
9d4493bb5a54a6e05b6f3c1f23c2c30d0b6a0633
107386a687944c6dd510ccfb34be62df430ebababce99d3f46593756b3308850

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Netflix

HTTP Headers

GET /NetflixClone/CSS/style.css HTTP/1.1
Host: omshete0550.github.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://omshete0550.github.io/NetflixClone/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: text/css; charset=utf-8
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Fri, 15 Dec 2023 13:28:09 GMT
access-control-allow-origin: *
strict-transport-security: max-age=31556952
etag: W/"657c5469-1fdc"
expires: Fri, 09 Feb 2024 14:29:06 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: C8FE:2A24A8:33174BE:3435406:65C6345A
accept-ranges: bytes
date: Fri, 09 Feb 2024 15:17:44 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-hel1410031-HEL
x-cache: HIT
x-cache-hits: 1
x-timer: S1707491865.677411,VS0,VE128
vary: Accept-Encoding
x-fastly-request-id: ed130d89866ee4e99d93addc90183d39018e851a
content-length: 2143
X-Firefox-Spdy: h2

omshete0550.github.io/NetflixClone/JS/script.js

185.199.109.153

200 OK

219 B

URL GET HTTP/2
omshete0550.github.io/NetflixClone/JS/script.js
IP
185.199.109.153:443
ASN
#54113 FASTLY

Requested by
https://omshete0550.github.io/NetflixClone/
Certificate
IssuerDigiCert Inc
Subject*.github.io
FingerprintA1:46:14:C7:2A:1D:52:79:F6:AA:2B:B2:C5:0A:3B:D3:F5:02:06:75
ValidityTue, 21 Feb 2023 00:00:00 GMT - Wed, 20 Mar 2024 23:59:59 GMT

File type
ASCII text
Size
219 B (219 bytes)
Hash
63439eba4aab3bfdfd73f054a66621ed
4601b6dac8527cfe3a47178183ee24f550684f62
35ae082c0d0afd217bcec9da919cc3aeda2cbcf39d55f50bc05311349704e464

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Netflix

HTTP Headers

GET /NetflixClone/JS/script.js HTTP/1.1
Host: omshete0550.github.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://omshete0550.github.io/NetflixClone/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: application/javascript; charset=utf-8
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Fri, 15 Dec 2023 13:28:09 GMT
access-control-allow-origin: *
strict-transport-security: max-age=31556952
etag: W/"657c5469-187"
expires: Fri, 09 Feb 2024 14:29:06 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 6648:5C693:32CCB37:33F2051:65C6345A
accept-ranges: bytes
date: Fri, 09 Feb 2024 15:17:44 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-hel1410031-HEL
x-cache: HIT
x-cache-hits: 1
x-timer: S1707491865.682943,VS0,VE125
vary: Accept-Encoding
x-fastly-request-id: 717fb68efd09398fe19fb62151b8a561641cff7d
content-length: 219
X-Firefox-Spdy: h2

assets.nflxext.com/ffe/siteui/acquisition/ourStory/fuji/desktop/tv.png

45.57.91.1

200 OK

11 kB

URL GET HTTP/1.1
assets.nflxext.com/ffe/siteui/acquisition/ourStory/fuji/desktop/tv.png
IP
45.57.91.1:443
ASN
#40027 NETFLIX-ASN

Requested by
https://omshete0550.github.io/NetflixClone/
Certificate
IssuerDigiCert Inc
Subject*.1.nflxso.net
FingerprintE4:63:22:F5:57:66:E1:2B:B7:34:55:DE:56:84:60:6F:18:6B:78:E3
ValidityMon, 29 Jan 2024 00:00:00 GMT - Tue, 05 Mar 2024 00:28:25 GMT

File type
PNG image data, 640 x 480, 8-bit colormap, non-interlaced
Size
11 kB (11418 bytes)
Hash
77994a67327ba957dfd880e33a91f041
5ba507de8c9bc4a063beecb569e89bcf9e0a901c
b68ea2c7bea397aa11fadb189ce7d83862baebaf03ece643eb5aa9fb5f755056

HTTP Headers

GET /ffe/siteui/acquisition/ourStory/fuji/desktop/tv.png HTTP/1.1
Host: assets.nflxext.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://omshete0550.github.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Feb 2024 15:17:44 GMT
Content-Type: image/png
Content-Length: 11418
Connection: keep-alive
Content-MD5: d5lKZzJ7qVff2IDjOpHwQQ==
Last-Modified: Wed, 14 Nov 2018 18:20:41 GMT
Cache-Control: max-age=604801
Expires: Fri, 16 Feb 2024 15:17:45 GMT
Accept-Ranges: bytes

assets.nflxext.com/ffe/siteui/acquisition/ourStory/fuji/desktop/device-pile.png

45.57.91.1

200 OK

137 kB

URL GET HTTP/1.1
assets.nflxext.com/ffe/siteui/acquisition/ourStory/fuji/desktop/device-pile.png
IP
45.57.91.1:443
ASN
#40027 NETFLIX-ASN

Requested by
https://omshete0550.github.io/NetflixClone/
Certificate
IssuerDigiCert Inc
Subject*.1.nflxso.net
FingerprintE4:63:22:F5:57:66:E1:2B:B7:34:55:DE:56:84:60:6F:18:6B:78:E3
ValidityMon, 29 Jan 2024 00:00:00 GMT - Tue, 05 Mar 2024 00:28:25 GMT

File type
PNG image data, 640 x 480, 8-bit/color RGBA, non-interlaced
Size
137 kB (137040 bytes)
Hash
0b3d821493d5748d829c852bbd6d292d
2b83523c3e0731a1aebace26ecbebf02a63a6b19
81cf64888a7b3f6848b09695b034026d9ad685665b91d54597ecbb6197c6acbb

HTTP Headers

GET /ffe/siteui/acquisition/ourStory/fuji/desktop/device-pile.png HTTP/1.1
Host: assets.nflxext.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://omshete0550.github.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Feb 2024 15:17:44 GMT
Content-Type: image/png
Content-Length: 137040
Connection: keep-alive
Content-MD5: Cz2CFJPVdI2CnIUrvW0pLQ==
Last-Modified: Wed, 23 Jan 2019 00:35:07 GMT
Cache-Control: max-age=604801
Expires: Fri, 16 Feb 2024 15:17:45 GMT
Accept-Ranges: bytes

assets.nflxext.com/ffe/siteui/acquisition/ourStory/fuji/desktop/video-devices.m4v

45.57.91.1

206 Partial Content

266 kB

URL GET HTTP/1.1
assets.nflxext.com/ffe/siteui/acquisition/ourStory/fuji/desktop/video-devices.m4v
IP
45.57.91.1:443
ASN
#40027 NETFLIX-ASN

Requested by
https://omshete0550.github.io/NetflixClone/
Certificate
IssuerDigiCert Inc
Subject*.1.nflxso.net
FingerprintF7:98:D1:7E:B4:EB:C5:5F:78:0F:BC:6A:0E:40:19:A6:0E:EC:15:3F
ValidityTue, 30 Jan 2024 00:00:00 GMT - Mon, 04 Mar 2024 00:06:27 GMT

File type
ISO Media, Apple iTunes Video (.M4V) Video
Size
266 kB (266160 bytes)
Hash
3e55c56205a89c859fed005ae1729faa
b33bba44ef2d6932707d0eef8e00b0ed534fcbb7
3eec290a7f7da9abb00b49ca84f5f16e6d45ca33d40fd8ede4380835d6161d71

HTTP Headers

GET /ffe/siteui/acquisition/ourStory/fuji/desktop/video-devices.m4v HTTP/1.1
Host: assets.nflxext.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://omshete0550.github.io/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 206 Partial Content
Server: nginx
Date: Fri, 09 Feb 2024 15:17:44 GMT
Content-Type: video/x-m4v
Content-Length: 266160
Connection: keep-alive
Content-MD5: PlXFYgWonIWf7QBa4XKfqg==
Last-Modified: Wed, 09 Jan 2019 20:47:49 GMT
Cache-Control: max-age=604801
Expires: Fri, 16 Feb 2024 15:17:45 GMT
Content-Range: bytes 0-266159/266160

assets.nflxext.com/ffe/siteui/acquisition/ourStory/fuji/desktop/video-tv-0819.m4v

45.57.91.1

206 Partial Content

270 kB

URL GET HTTP/1.1
assets.nflxext.com/ffe/siteui/acquisition/ourStory/fuji/desktop/video-tv-0819.m4v
IP
45.57.91.1:443
ASN
#40027 NETFLIX-ASN

Requested by
https://omshete0550.github.io/NetflixClone/
Certificate
IssuerDigiCert Inc
Subject*.1.nflxso.net
Fingerprint6E:30:92:79:D7:70:D0:C8:ED:FB:5B:36:17:96:D4:EC:F3:4B:40:96
ValidityFri, 12 Jan 2024 00:00:00 GMT - Wed, 14 Feb 2024 23:36:13 GMT

File type
ISO Media, Apple iTunes Video (.M4V) Video
Size
270 kB (270046 bytes)
Hash
3cb12db7c672b33735006480a455ec72
d060e5996b3f7143755496cf2a06de5a59c283ce
4c7a552d219146985961bf78d9083b7e2c1a82c4ada5d959f48b3e53754c9049

HTTP Headers

GET /ffe/siteui/acquisition/ourStory/fuji/desktop/video-tv-0819.m4v HTTP/1.1
Host: assets.nflxext.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://omshete0550.github.io/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 206 Partial Content
Server: nginx
Date: Fri, 09 Feb 2024 15:17:44 GMT
Content-Type: video/x-m4v
Content-Length: 270046
Connection: keep-alive
Content-MD5: PLEtt8Zyszc1AGSApFXscg==
Last-Modified: Mon, 12 Aug 2019 20:49:12 GMT
Cache-Control: max-age=604801
Expires: Fri, 16 Feb 2024 15:17:45 GMT
Content-Range: bytes 0-270045/270046

assets.nflxext.com/ffe/siteui/acquisition/ourStory/fuji/desktop/mobile-0819.jpg

45.57.91.1

200 OK

50 kB

URL GET HTTP/1.1
assets.nflxext.com/ffe/siteui/acquisition/ourStory/fuji/desktop/mobile-0819.jpg
IP
45.57.91.1:443
ASN
#40027 NETFLIX-ASN

Requested by
https://omshete0550.github.io/NetflixClone/
Certificate
IssuerDigiCert Inc
Subject*.1.nflxso.net
FingerprintC7:97:92:D6:86:D9:80:A0:41:4D:A1:B3:38:7B:4F:D6:CA:0A:D8:24
ValidityTue, 16 Jan 2024 00:00:00 GMT - Wed, 21 Feb 2024 23:08:05 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 640x480, components 3
Size
50 kB (49614 bytes)
Hash
a48333d43c19612ed61987fa5dbff3c5
8a8781250b96fee7830eb63ee8dda19e5c871881
492fdebd363e40cbba153a244bcfe2a7f5f7cf20aff0805fe45d5c7e2180b875

HTTP Headers

GET /ffe/siteui/acquisition/ourStory/fuji/desktop/mobile-0819.jpg HTTP/1.1
Host: assets.nflxext.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://omshete0550.github.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Feb 2024 15:17:44 GMT
Content-Type: image/jpeg
Content-Length: 49614
Connection: keep-alive
Content-MD5: pIMz1DwZYS7WGYf6Xb/zxQ==
Last-Modified: Wed, 14 Aug 2019 17:59:05 GMT
Cache-Control: max-age=604801
Expires: Fri, 16 Feb 2024 15:17:45 GMT
Accept-Ranges: bytes

i.ibb.co/r5krrdz/logo.png

162.19.58.160

200 OK

6.3 kB

URL GET HTTP/2
i.ibb.co/r5krrdz/logo.png
IP
162.19.58.160:443
ASN
#16276 OVH SAS

Requested by
https://omshete0550.github.io/NetflixClone/
Certificate
IssuerLet's Encrypt
Subjectibb.co
Fingerprint47:33:B4:39:55:FC:BC:18:08:79:9C:6C:9D:F3:CF:3A:89:C4:99:62
ValidityWed, 07 Feb 2024 12:41:56 GMT - Tue, 07 May 2024 12:41:55 GMT

File type
PNG image data, 329 x 88, 8-bit/color RGBA, non-interlaced
Size
6.3 kB (6332 bytes)
Hash
d0a2b09e321dd08f0e234bf352f166ed
6143b3ee04ab74fb32f9988010c7337a2bedaff6
caf69067b53f840529b7cc3a2494e90878dc9f62307fc458dd893fac746d37a0

HTTP Headers

GET /r5krrdz/logo.png HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://omshete0550.github.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 09 Feb 2024 15:17:44 GMT
content-type: image/png
content-length: 6332
last-modified: Tue, 21 May 2019 12:11:24 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/font-awesome/6.5.1/webfonts/fa-solid-900.woff2

104.17.25.14

200 OK

156 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/font-awesome/6.5.1/webfonts/fa-solid-900.woff2
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://omshete0550.github.io/NetflixClone/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 156496, version 773.768
Size
156 kB (156496 bytes)
Hash
6c4eee562650e53cee32496bdfbe534b
1aae708e3b94ee981b452a918d28ed037fbb5e18
9fc85f3a4544ab0d570c7f8f9bbb88db8d92c359b2707580ea8b07c75673eae2

HTTP Headers

GET /ajax/libs/font-awesome/6.5.1/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://omshete0550.github.io
DNT: 1
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 09 Feb 2024 15:17:45 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 156496
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "65692999-26350"
last-modified: Fri, 01 Dec 2023 00:32:25 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 170123
expires: Wed, 29 Jan 2025 15:17:45 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qCfZmOYp1IoJoavSVUK%2FtzUe3Iyzx6rD3pb7vtfwJ3HRuXnVmOgqOf8zWWWChHzZJ1Ia%2Fg%2FrCXNajCvnzpVrPeAy%2FDIzEortc%2BHPFfUkiGQDJGeg890tLnY2Ox7fAVYpaSz7yaoJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 852d14bcaaa15688-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

assets.nflxext.com/ffe/siteui/acquisition/ourStory/fuji/desktop/boxshot.png

45.57.91.1

200 OK

20 kB

URL GET HTTP/1.1
assets.nflxext.com/ffe/siteui/acquisition/ourStory/fuji/desktop/boxshot.png
IP
45.57.91.1:443
ASN
#40027 NETFLIX-ASN

Requested by
https://omshete0550.github.io/NetflixClone/
Certificate
IssuerDigiCert Inc
Subject*.1.nflxso.net
FingerprintDC:AA:15:15:83:1D:CE:BE:F1:3A:BD:C5:4E:4F:AD:67:C1:C9:13:6E
ValidityTue, 06 Feb 2024 00:00:00 GMT - Wed, 13 Mar 2024 00:15:58 GMT

File type
PNG image data, 150 x 210, 8-bit colormap, non-interlaced
Size
20 kB (20506 bytes)
Hash
587e040f20259792094901ca9739669e
d48b9de536ecd248ab1d923bf837c6958a9e0cec
e1fa26cc34fda574edc01d09e374d6f10735a3fa621bdde87c104ee15453d4b6

HTTP Headers

GET /ffe/siteui/acquisition/ourStory/fuji/desktop/boxshot.png HTTP/1.1
Host: assets.nflxext.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://omshete0550.github.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Feb 2024 15:17:45 GMT
Content-Type: image/png
Content-Length: 20506
Connection: keep-alive
Content-MD5: WH4EDyAll5IJSQHKlzlmng==
Last-Modified: Wed, 14 Nov 2018 18:48:14 GMT
Cache-Control: max-age=604801
Expires: Fri, 16 Feb 2024 15:17:46 GMT
Accept-Ranges: bytes

assets.nflxext.com/ffe/siteui/vlv3/8ef88e03-6f89-4c75-ae51-f8da7d252358/6ac07e5f-07ca-4543-8540-f22edce8bb02/TW-en-20210208-popsignuptwoweeks-perspective_alpha_website_small.jpg

45.57.91.1

200 OK

113 kB

URL GET HTTP/1.1
assets.nflxext.com/ffe/siteui/vlv3/8ef88e03-6f89-4c75-ae51-f8da7d252358/6ac07e5f-07ca-4543-8540-f22edce8bb02/TW-en-20210208-popsignuptwoweeks-perspective_alpha_website_small.jpg
IP
45.57.91.1:443
ASN
#40027 NETFLIX-ASN

Requested by
https://omshete0550.github.io/NetflixClone/
Certificate
IssuerDigiCert Inc
Subject*.1.nflxso.net
Fingerprint6E:30:92:79:D7:70:D0:C8:ED:FB:5B:36:17:96:D4:EC:F3:4B:40:96
ValidityFri, 12 Jan 2024 00:00:00 GMT - Wed, 14 Feb 2024 23:36:13 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 2000x1125, components 3
Size
113 kB (112995 bytes)
Hash
c2c62c678531fc266b5189d700ab7e41
042d7b20e7927e6402be7f22006075d2adf3a4ce
1efb50289d5f59788aac73652c72f77319a24f976f080907825f924fa38cfe62

HTTP Headers

GET /ffe/siteui/vlv3/8ef88e03-6f89-4c75-ae51-f8da7d252358/6ac07e5f-07ca-4543-8540-f22edce8bb02/TW-en-20210208-popsignuptwoweeks-perspective_alpha_website_small.jpg HTTP/1.1
Host: assets.nflxext.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://omshete0550.github.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Feb 2024 15:17:45 GMT
Content-Type: image/jpeg
Content-Length: 112995
Connection: keep-alive
Content-MD5: wsYsZ4Ux/CZrUYnXAKt+QQ==
Last-Modified: Wed, 10 Feb 2021 14:45:54 GMT
Cache-Control: max-age=604801
Expires: Fri, 16 Feb 2024 15:17:46 GMT
Accept-Ranges: bytes

omshete0550.github.io/NetflixClone/images/logo.png

185.199.109.153

200 OK

18 kB

URL GET HTTP/2
omshete0550.github.io/NetflixClone/images/logo.png
IP
185.199.109.153:443
ASN
#54113 FASTLY

Requested by
https://omshete0550.github.io/NetflixClone/
Certificate
IssuerDigiCert Inc
Subject*.github.io
FingerprintA1:46:14:C7:2A:1D:52:79:F6:AA:2B:B2:C5:0A:3B:D3:F5:02:06:75
ValidityTue, 21 Feb 2023 00:00:00 GMT - Wed, 20 Mar 2024 23:59:59 GMT

File type
PNG image data, 663 x 376, 8-bit/color RGBA, non-interlaced
Size
18 kB (18479 bytes)
Hash
fc0affe625621aff90e15f0131bdb89f
211bd436bb9b9bcc4c2c0e0dbb086bc70d869101
a993f4cd95fced8690862a648fbce8ed74ecdd299bf214c5a4f8dbb58fb5fbee

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Netflix

HTTP Headers

GET /NetflixClone/images/logo.png HTTP/1.1
Host: omshete0550.github.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://omshete0550.github.io/NetflixClone/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/png
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Fri, 15 Dec 2023 13:28:09 GMT
access-control-allow-origin: *
strict-transport-security: max-age=31556952
etag: "657c5469-482f"
expires: Fri, 09 Feb 2024 15:27:45 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 63EC:5C693:33C714B:34F08D0:65C64217
accept-ranges: bytes
date: Fri, 09 Feb 2024 15:17:45 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-hel1410031-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1707491865.126154,VS0,VE127
vary: Accept-Encoding
x-fastly-request-id: dd2a24f5eff5271117718f7c987ebe4ef6bca001
content-length: 18479
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (1)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (15)

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/1.1

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/1.1

IP

ASN