Report - abundant-river-ursinia.glitch.me/

Report Overview

Submitted URL
abundant-river-ursinia.glitch.me/
IP
52.21.72.108
ASN
#14618 AMAZON-AES
Submitted
2024-04-18 09:22:56
Access
public
Website Title
abundant-river-ursinia.glitch.me/
Final URL
abundant-river-ursinia.glitch.me/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
6
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17	2024-04-18	448 B	3.6 kB	104.17.25.14
abundant-river-ursinia.glitch.me	unknown	unknown	No data	No data	1.6 kB	754 B	54.234.253.124

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2024-04-18 09:22:30	medium	Client IP	52.21.72.108	ET HUNTING Suspicious Glitch Hosted TLS SNI Request - Possible Phishing Landing
2024-04-18 09:22:30	low	Client IP	52.21.72.108	ET INFO Observed Online Application Hosting Domain (glitch .me in TLS SNI)
2024-04-18 09:22:31	medium	Client IP	54.234.253.124	ET HUNTING Suspicious Glitch Hosted TLS SNI Request - Possible Phishing Landing
2024-04-18 09:22:31	low	Client IP	54.234.253.124	ET INFO Observed Online Application Hosting Domain (glitch .me in TLS SNI)
2024-04-18 09:22:40	medium	Client IP	54.234.253.124	ET HUNTING Suspicious Glitch Hosted TLS SNI Request - Possible Phishing Landing
2024-04-18 09:22:40	low	Client IP	54.234.253.124	ET INFO Observed Online Application Hosting Domain (glitch .me in TLS SNI)

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (0)

HTTP Transactions (4)

	URL	IP	Response	Size
	cdnjs.cloudflare.com/ajax/libs/bowser/1.9.4/bowser.min.js	104.17.25.14		2.6 kB
URL cdnjs.cloudflare.com/ajax/libs/bowser/1.9.4/bowser.min.js IP 104.17.25.14:0 ASN #13335 CLOUDFLARENET File type JavaScript source, ASCII text, with very long lines (7791) Size 2.6 kB (2561 bytes) Hash 557e1db8c44d751c997a04f411a61598 849afb67561b75e90bc3ca310db3a82742a064ac b52f6b6011741e76cefa2be41164bbc9b33bba334b9ad15b03abad37b609d983 HTTP Headers `GET /ajax/libs/bowser/1.9.4/bowser.min.js HTTP/1.1 Host: cdnjs.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://abundant-river-ursinia.glitch.me/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Thu, 18 Apr 2024 09:22:31 GMT content-type: application/javascript; charset=utf-8 content-length: 2561 access-control-allow-origin: * cache-control: public, max-age=30672000 content-encoding: br etag: "5eb03d90-1edd" last-modified: Mon, 04 May 2020 16:06:40 GMT cf-cdnjs-via: cfworker/kv cross-origin-resource-policy: cross-origin timing-allow-origin: * x-content-type-options: nosniff vary: Accept-Encoding cf-cache-status: HIT age: 231151 expires: Tue, 08 Apr 2025 09:22:31 GMT accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DPn3Hx3hjN4ToUHen6uanC6csZTR3Yr6rqLjkxvQv8i6ilM3oVFP1%2BbAhJcJuK2LQV3y8uh0E119akXmY8iU53KYHu%2F3xlUzbWyHzN0h5zkVAVfwz7PNRcj5083vIAP56talp%2FJI"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} strict-transport-security: max-age=15780000 server: cloudflare cf-ray: 87639741d80056c1-OSL alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	abundant-river-ursinia.glitch.me/___glitch_loading_status___	54.234.253.124		0 B
URL abundant-river-ursinia.glitch.me/___glitch_loading_status___ IP 54.234.253.124:0 ASN #14618 AMAZON-AES File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /___glitch_loading_status___ HTTP/1.1 Host: abundant-river-ursinia.glitch.me User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: https://abundant-river-ursinia.glitch.me Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: 6/cfo503imhJBL7q2OMVMw== DNT: 1 Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Date: Thu, 18 Apr 2024 09:22:33 GMT Connection: upgrade upgrade: websocket sec-websocket-accept: T3ZrUP6oe1qbqQUKKpPC3D16vJw=`

	abundant-river-ursinia.glitch.me/	54.234.253.124	503 Service Unavailable	185 B
URL User Request GET HTTP/2 abundant-river-ursinia.glitch.me/ IP 54.234.253.124:443 ASN #14618 AMAZON-AES Certificate IssuerAmazon Subjectglitch.com Fingerprint57:4F:13:8A:33:42:32:7C:F7:C9:C5:1F:DF:C1:35:65:F0:E9:70:EE ValidityMon, 04 Dec 2023 00:00:00 GMT - Wed, 01 Jan 2025 23:59:59 GMT File type ASCII text Size 185 B (185 bytes) Hash feef4a6e1c139b4315d45183392d03ca 5add9f341a3085678312c5439bed4ef4f42b6d66 af88a99fbe36e5ee9e28e64e69e99d27e2ffbae3556b094987627aba143ae566 HTTP Headers `GET / HTTP/1.1 Host: abundant-river-ursinia.glitch.me User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 503 Service Unavailable date: Thu, 18 Apr 2024 09:22:40 GMT content-length: 185 X-Firefox-Spdy: h2`

	abundant-river-ursinia.glitch.me/favicon.ico	54.234.253.124	503 Service Unavailable	185 B
URL GET HTTP/2 abundant-river-ursinia.glitch.me/favicon.ico IP 54.234.253.124:443 ASN #14618 AMAZON-AES Requested by https://abundant-river-ursinia.glitch.me/ Certificate IssuerAmazon Subjectglitch.com Fingerprint57:4F:13:8A:33:42:32:7C:F7:C9:C5:1F:DF:C1:35:65:F0:E9:70:EE ValidityMon, 04 Dec 2023 00:00:00 GMT - Wed, 01 Jan 2025 23:59:59 GMT File type ASCII text Size 185 B (185 bytes) Hash feef4a6e1c139b4315d45183392d03ca 5add9f341a3085678312c5439bed4ef4f42b6d66 af88a99fbe36e5ee9e28e64e69e99d27e2ffbae3556b094987627aba143ae566 HTTP Headers `GET /favicon.ico HTTP/1.1 Host: abundant-river-ursinia.glitch.me User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://abundant-river-ursinia.glitch.me/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 503 Service Unavailable date: Thu, 18 Apr 2024 09:22:40 GMT content-length: 185 X-Firefox-Spdy: h2`