Report - tangerine-travesseiro-b4c696.netlify.app/

Report Overview

Visited public
2024-04-06 21:27:31
Tags
URL
tangerine-travesseiro-b4c696.netlify.app/
Finishing URL
tangerine-travesseiro-b4c696.netlify.app/
IP / ASN
3.70.101.28
#16509 AMAZON-02
Title
Annotate

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
code.jquery.com	634	2005-12-10	2012-05-21 19:28:02	2024-04-05 23:39:42	434 B	32 kB	151.101.2.137
cdn.glitch.global	282615	2021-09-09	2022-01-13 11:18:16	2024-03-28 10:42:38	1.0 kB	125 kB	151.101.66.132
fonts.gstatic.com	unknown	2008-02-11	2014-09-09 02:40:21	2024-04-06 03:17:04	568 B	14 kB	142.250.74.99
fonts.googleapis.com	8877	2005-01-25	2013-06-10 22:14:26	2024-04-06 03:17:02	470 B	2.9 kB	142.250.74.74
tangerine-travesseiro-b4c696.netlify.app	unknown	unknown	No data	No data	978 B	2.0 kB	18.192.94.96

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2024-04-06 21:27:05	medium	Client IP	18.192.94.96	ET HUNTING Suspicious Netlify Hosted TLS SNI Request - Possible Phishing Landing

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (2)

	URL	From	Size	First Seen	Last Seen
	tangerine-travesseiro-b4c696.netlify.app/	ScriptElement	0 B	0001-01-01	2025-05-27
Pretty URL tangerine-travesseiro-b4c696.netlify.app/ IP 18.192.94.96 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-05-27 19:08 Times Seen4771323 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	code.jquery.com/jquery-3.6.4.min.js	ScriptElement	90 kB	2023-03-26	2025-05-27
Pretty URL code.jquery.com/jquery-3.6.4.min.js IP 151.101.2.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 04:59 Last Seen2025-05-27 19:04 Times Seen7635 Hash 641dd14370106e992d352166f5a07e99 eda46747c71d38a880bee44f9a439c3858bb8f99 a0fe8723dcf55da64d06b25446d0a8513e52527c45afcb37073465f9c6f352af Loading...

HTTP Transactions (7)

	URL	IP	Response	Size
	tangerine-travesseiro-b4c696.netlify.app/	18.192.94.96	200 OK	454 B
URL User Request GET HTTP/2 tangerine-travesseiro-b4c696.netlify.app/ IP 18.192.94.96:443 ASN #16509 AMAZON-02 Certificate IssuerDigiCert Inc Subject.netlify.app FingerprintB0:8E:E9:A5:C3:D9:B5:C1:FF:B6:51:7A:DF:98:CF:2D:28:18:41:9B ValidityMon, 15 Jan 2024 00:00:00 GMT - Fri, 14 Feb 2025 23:59:59 GMT File type HTML document, ASCII text Size 454 B (454 bytes) Hash 1a0d3a47bdc709ef4ca4d7f8379988b7 c3457058860829bd178eff0c23fab7bf1aa43d0b 3a0b176dfc5414aa97e31978d4cab1ef9af3efc8c3c864aedf8e35dcb80f6b5a HTTP Headers `GET / HTTP/1.1 Host: tangerine-travesseiro-b4c696.netlify.app User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK accept-ranges: bytes age: 1 cache-control: public,max-age=0,must-revalidate cache-status: "Netlify Edge"; fwd=miss content-encoding: br content-type: text/html; charset=UTF-8 date: Sat, 06 Apr 2024 21:27:06 GMT etag: "e6f6282128f74fbfbbadf8b91dcfd087-ssl-df" server: Netlify strict-transport-security: max-age=31536000; includeSubDomains; preload vary: Accept-Encoding x-nf-request-id: 01HTTMXMYF2FEYZAVGEJS42Z2B content-length: 454 X-Firefox-Spdy: h2`

	code.jquery.com/jquery-3.6.4.min.js	151.101.2.137	200 OK	31 kB
URL GET HTTP/2 code.jquery.com/jquery-3.6.4.min.js IP 151.101.2.137:443 ASN #54113 FASTLY Requested by https://tangerine-travesseiro-b4c696.netlify.app/ Certificate IssuerSectigo Limited Subject.jquery.com FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT File type JavaScript source, ASCII text, with very long lines (65447) Size 31 kB (31011 bytes) Hash 641dd14370106e992d352166f5a07e99 eda46747c71d38a880bee44f9a439c3858bb8f99 a0fe8723dcf55da64d06b25446d0a8513e52527c45afcb37073465f9c6f352af HTTP Headers `GET /jquery-3.6.4.min.js HTTP/1.1 Host: code.jquery.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://tangerine-travesseiro-b4c696.netlify.app/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK server: nginx content-type: application/javascript; charset=utf-8 last-modified: Fri, 18 Oct 1991 12:00:00 GMT etag: W/"28feccc0-15ec3" cache-control: public, max-age=31536000, stale-while-revalidate=604800 access-control-allow-origin: * content-encoding: gzip via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Sat, 06 Apr 2024 21:27:06 GMT age: 17638219 x-served-by: cache-lga21953-LGA, cache-hel1410027-HEL x-cache: HIT, HIT x-cache-hits: 138, 215976 x-timer: S1712438826.481351,VS0,VE0 vary: Accept-Encoding content-length: 31011 X-Firefox-Spdy: h2

	tangerine-travesseiro-b4c696.netlify.app/home/style.css	18.192.94.96	200 OK	636 B
URL GET HTTP/2 tangerine-travesseiro-b4c696.netlify.app/home/style.css IP 18.192.94.96:443 ASN #16509 AMAZON-02 Requested by https://tangerine-travesseiro-b4c696.netlify.app/ Certificate IssuerDigiCert Inc Subject.netlify.app FingerprintB0:8E:E9:A5:C3:D9:B5:C1:FF:B6:51:7A:DF:98:CF:2D:28:18:41:9B ValidityMon, 15 Jan 2024 00:00:00 GMT - Fri, 14 Feb 2025 23:59:59 GMT File type ASCII text Size 636 B (636 bytes) Hash 746a9a3d09fe2d9cfc0f638cbb177bee 351cbd9ccf82f8919ec06e51e45809519e3baffb 12e3c14cfaa87f248d96e5d534c205b6c0fb1415ebf19a42df2e61683008a511 HTTP Headers `GET /home/style.css HTTP/1.1 Host: tangerine-travesseiro-b4c696.netlify.app User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/*;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://tangerine-travesseiro-b4c696.netlify.app/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK accept-ranges: bytes age: 0 cache-control: public,max-age=0,must-revalidate cache-status: "Netlify Edge"; fwd=miss content-type: text/css; charset=UTF-8 date: Sat, 06 Apr 2024 21:27:06 GMT etag: "e69bb80e3a9c1454fc908e384d9b9aa5-ssl" server: Netlify strict-transport-security: max-age=31536000; includeSubDomains; preload x-nf-request-id: 01HTTMXNCT4BA7TPZDFCJARDXE content-length: 636 X-Firefox-Spdy: h2`

	cdn.glitch.global/a300bc83-1349-40d5-8dc8-60619ca5027c/annotate.png	151.101.66.132	200 OK	62 kB
URL GET HTTP/2 cdn.glitch.global/a300bc83-1349-40d5-8dc8-60619ca5027c/annotate.png IP 151.101.66.132:443 ASN #54113 FASTLY Requested by https://tangerine-travesseiro-b4c696.netlify.app/ Certificate IssuerLet's Encrypt Subjectcdn.glitch.global FingerprintF2:EB:85:15:C1:89:0D:2A:EF:A5:2E:07:1E:4F:69:31:EF:1C:8C:06 ValiditySun, 31 Mar 2024 19:31:34 GMT - Sat, 29 Jun 2024 19:31:33 GMT File type PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced Size 62 kB (61901 bytes) Hash 4e74e60e508fe16c31b5948324a096a6 cd1ecbe15dd3bad6abdd708549bd8451f0ceaf08 c4efa5b1303e31ce3f6836ef67b0622c1b318465b295a2e0487c7a50d30b2e51 HTTP Headers `GET /a300bc83-1349-40d5-8dc8-60619ca5027c/annotate.png HTTP/1.1 Host: cdn.glitch.global User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://tangerine-travesseiro-b4c696.netlify.app/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK x-amz-id-2: pp66Tlly3unYmyry5yiqHvety0B1jKNY2mlqXvUPx//8Z2Nj+2OYtomus9uNtQBzGxomGj6FUaeT+VptPmyA95PMa4fH9JJP x-amz-request-id: 5ATTBZTBRSRFB461 last-modified: Tue, 17 Jan 2023 15:54:48 GMT etag: "4e74e60e508fe16c31b5948324a096a6" x-amz-server-side-encryption: AES256 cache-control: max-age=31536000 content-type: image/png server: AmazonS3 via: 1.1 varnish, 1.1 varnish access-control-allow-methods: GET, HEAD, POST access-control-allow-origin: * content-security-policy: script-src 'none' accept-ranges: bytes age: 241480 date: Sat, 06 Apr 2024 21:27:06 GMT x-served-by: cache-iad-kjyo7100157-IAD, cache-hel1410034-HEL x-cache: HIT, MISS x-cache-hits: 5, 0 x-timer: S1712438826.499449,VS0,VE98 content-length: 61901 X-Firefox-Spdy: h2

	fonts.gstatic.com/s/comfortaa/v45/1Pt_g8LJRfWJmhDAuUsSQamb1W0lwk4S4WjMDrMfIA.woff2	142.250.74.99	200 OK	14 kB
URL GET HTTP/2 fonts.gstatic.com/s/comfortaa/v45/1Pt_g8LJRfWJmhDAuUsSQamb1W0lwk4S4WjMDrMfIA.woff2 IP 142.250.74.99:443 ASN #15169 GOOGLE Requested by https://tangerine-travesseiro-b4c696.netlify.app/ Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT File type Web Open Font Format (Version 2), TrueType, length 13620, version 1.0 Size 14 kB (13620 bytes) Hash fb9f3b92ba47a506c571a6cdc822ee33 603746b9b81c8687a95e1a5743ddb087c9b71b5a a60cbbc3a467d154735820b68c3840319e675c0048dd2c10a8561e92263423c7 HTTP Headers GET /s/comfortaa/v45/1Pt_g8LJRfWJmhDAuUsSQamb1W0lwk4S4WjMDrMfIA.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://tangerine-travesseiro-b4c696.netlify.app DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 13620 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 04 Apr 2024 17:22:29 GMT expires: Fri, 04 Apr 2025 17:22:29 GMT cache-control: public, max-age=31536000 age: 187477 last-modified: Thu, 24 Aug 2023 20:50:16 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	cdn.glitch.global/a300bc83-1349-40d5-8dc8-60619ca5027c/annotate.png?v=1673970874349	151.101.66.132	200 OK	62 kB
URL GET HTTP/2 cdn.glitch.global/a300bc83-1349-40d5-8dc8-60619ca5027c/annotate.png?v=1673970874349 IP 151.101.66.132:443 ASN #54113 FASTLY Requested by https://tangerine-travesseiro-b4c696.netlify.app/ Certificate IssuerLet's Encrypt Subjectcdn.glitch.global FingerprintF2:EB:85:15:C1:89:0D:2A:EF:A5:2E:07:1E:4F:69:31:EF:1C:8C:06 ValiditySun, 31 Mar 2024 19:31:34 GMT - Sat, 29 Jun 2024 19:31:33 GMT File type PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced Size 62 kB (61901 bytes) Hash 4e74e60e508fe16c31b5948324a096a6 cd1ecbe15dd3bad6abdd708549bd8451f0ceaf08 c4efa5b1303e31ce3f6836ef67b0622c1b318465b295a2e0487c7a50d30b2e51 HTTP Headers GET /a300bc83-1349-40d5-8dc8-60619ca5027c/annotate.png?v=1673970874349 HTTP/1.1 Host: cdn.glitch.global User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://tangerine-travesseiro-b4c696.netlify.app/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK x-amz-id-2: ZXbifRkGGC8zS3fB86F+EBBECHomLv6OawSLAMpUHy443el0SwcbVogdj4NsCo1kKI8wdBAygSo= x-amz-request-id: PBP60XV9FX2CT66B last-modified: Tue, 17 Jan 2023 15:54:48 GMT etag: "4e74e60e508fe16c31b5948324a096a6" x-amz-server-side-encryption: AES256 cache-control: max-age=31536000 content-type: image/png server: AmazonS3 via: 1.1 varnish, 1.1 varnish access-control-allow-methods: GET, HEAD, POST access-control-allow-origin: * content-security-policy: script-src 'none' accept-ranges: bytes age: 1698545 date: Sat, 06 Apr 2024 21:27:06 GMT x-served-by: cache-iad-kiad7000157-IAD, cache-hel1410034-HEL x-cache: HIT, MISS x-cache-hits: 20, 0 x-timer: S1712438827.724925,VS0,VE98 content-length: 61901 X-Firefox-Spdy: h2

	fonts.googleapis.com/css2?family=Comfortaa&display=swap	142.250.74.74	200 OK	2.2 kB
URL GET HTTP/2 fonts.googleapis.com/css2?family=Comfortaa&display=swap IP 142.250.74.74:443 ASN #15169 GOOGLE Requested by https://tangerine-travesseiro-b4c696.netlify.app/ Certificate IssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT File type ASCII text, with very long lines (2285), with no line terminators Size 2.2 kB (2231 bytes) Hash 55cd6f7a220e59010cabb1d27a922828 43866418ed2db4cf603249e2ece96655125b0ad1 2088ff29995254692a038d0481d5ff6582a10facd87cad516b88aa1389406f75 HTTP Headers `GET /css2?family=Comfortaa&display=swap HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://tangerine-travesseiro-b4c696.netlify.app/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Sat, 06 Apr 2024 21:27:06 GMT date: Sat, 06 Apr 2024 21:27:06 GMT cache-control: private, max-age=86400 cross-origin-opener-policy: same-origin-allow-popups cross-origin-resource-policy: cross-origin content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (2)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (7)

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash