Report Overview
URL
link.edgepilot.com/s/529c1ccf/G_byFTOvtUOpkbUfB01cOQ?u=https://buckscountypublicadjuster.net/i/YW5hZ2xlckBlbWEudXM=
Finishing URL
flower-woolen-impulse.glitch.me/#anagler@ema.us
IP / ASN
199.30.234.133
Title
Outlook Web App
Phishing - Microsoft
Phishing - Generic phishing
Phishing - Microsoft Outlook
Detections
urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0
Host Summary
| Host | Rank | Registered | First Seen | Last Seen | Sent | Received | IP | Fingerprints |
|---|---|---|---|---|---|---|---|---|
r10.o.lencr.org | unknown | 2020-06-29 | 2024-06-06 21:45:11 | 2024-07-01 18:12:04 | 2.3 kB | 6.2 kB |  23.36.76.226 | |
link.edgepilot.com | 52195 | 2009-01-22 | 2020-08-20 19:28:50 | 2024-05-07 13:33:48 | 2.3 kB | 5.5 kB | 199.30.234.133 | |
maxcdn.bootstrapcdn.com | 724 | 2012-05-25 | 2014-06-18 02:37:31 | 2024-07-02 09:30:24 | 954 B | 50 kB |  104.18.11.207 | |
buckscountypublicadjuster.net 1 alert(s) on this Host | unknown | 2013-10-25 | 2020-12-29 13:28:54 | 2023-11-02 08:14:37 | 544 B | 315 B | 104.247.77.61 | |
flower-woolen-impulse.glitch.me 8 alert(s) on this Host | unknown | unknown | No data | No data | 2.2 kB | 817 kB | 3.209.36.135 | |
wafsd.com 2 alert(s) on this Host | unknown | 2023-09-07 | 2023-11-29 16:10:01 | 2024-04-17 23:18:22 | 1.4 kB | 118 kB |  195.35.33.215 | |
ocsp.entrust.net | 1208 | 1997-07-28 | 2014-01-10 03:18:45 | 2024-07-01 18:12:01 | 328 B | 2.0 kB | 184.24.45.171 | |
code.jquery.com | 634 | 2005-12-10 | 2012-05-21 19:28:02 | 2024-07-02 07:18:54 | 445 B | 31 kB | 151.101.2.137 | |
ocsp.r2m03.amazontrust.com | unknown | 2007-05-11 | 2023-02-21 01:06:24 | 2024-07-02 11:47:29 | 338 B | 942 B | 143.204.245.189 |
Related reports
Network Intrusion Detection Systems
Suricata /w Emerging Threats Pro
| Timestamp | Severity | Source IP | Destination IP | Alert |
|---|---|---|---|---|
| medium | Client IP | 3.209.36.135 | ET HUNTING Suspicious Glitch Hosted TLS SNI Request - Possible Phishing Landing | |
| low | Client IP | 3.209.36.135 | ET INFO Observed Online Application Hosting Domain (glitch .me in TLS SNI) |
Threat Detection Systems
Public InfoSec YARA rules
No alerts detected
OpenPhish
No alerts detected
PhishTank
No alerts detected
mnemonic secure dns
No alerts detected
Quad9 DNS
No alerts detected
ThreatFox
No alerts detected
JavaScript (9)
| HASH | FROM | Size | First Seen | Last Seen | |
|---|---|---|---|---|---|
| fedfd6fcb838d4a9803055c29801421c | DocumentWrite | 54 kB | 2024-07-02 | 2024-08-19 | |
Introduced by DocumentWrite First Seen 2024-07-02 Last Seen 2024-08-19 Times Seen 50 Size 54 kB (54151 bytes) MD5 fedfd6fcb838d4a9803055c29801421c SHA1 66ed0d4e79fe9910347962c0308f8cef603c8e74 Loading... | |||||
HTTP Transactions (24)
| URL | IP | Response | Size |
|---|