| cdnjs.cloudflare.com/ajax/libs/layui/2.8.12/layui.js | 104.17.25.14 | 200 OK | 93 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/layui/2.8.12/layui.js IP104.17.25.14:443
CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hash7425ae77bebb2b88ab7e487acee29a0c 6e54bb9fad0aa728448f8999be5ad80878bbfb86 5111eecdeb3616e035db583f74a1fd0800cfde34f97be9d987ed638b5733d374
GET /ajax/libs/layui/2.8.12/layui.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://icluod-yz.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 17 Apr 2024 15:52:23 GMT
content-type: application/javascript; charset=utf-8
content-length: 92839
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "64c88c10-16aa7"
last-modified: Tue, 01 Aug 2023 04:37:36 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 11822
expires: Mon, 07 Apr 2025 15:52:23 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NlMw%2Fu%2BukxV5662DfgUWqp4mn6uRlQ0t93vi8oyvH%2BNkLftJcPf%2BWpdaQ%2F%2FEAKY%2FonZIFYg7xhki2cJ5m60E8myNpsFitJKfSmYgvoZ5J2nk7Cl42dzxku0BxNad9LYcR%2FbOwXwg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 875d94f7ca73be58-CPH
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/layui/2.8.12/css/layui.css | 104.17.25.14 | 200 OK | 17 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/layui/2.8.12/css/layui.css IP104.17.25.14:443
CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hash1f054a9f78b363f7dddfa6d8c5012ca2 ed60650351210aeaca375358e952957532de61d5 66909330bb3c92568db4e0e3f65a4b6b8b81ab4d77fe2b1e8075560953f1ec12
GET /ajax/libs/layui/2.8.12/css/layui.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://icluod-yz.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 17 Apr 2024 15:52:23 GMT
content-type: text/css; charset=utf-8
content-length: 17317
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "64c88c10-43a5"
last-modified: Tue, 01 Aug 2023 04:37:36 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 339575
expires: Mon, 07 Apr 2025 15:52:23 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=f%2B9p7MAQX%2FwJLx7JxPSYNbj2QvWXgkDtUtlEuCEKAIPrhlsz7duZL0Y7fr5P0jPP5gZaHKLuf18fRK6l%2F%2FHYM69d%2BvJlZWCBH%2FVQMJUKsMM3yRYxHN1I0VIaegGjRlWlk7kHLRVe"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 875d94f7ca6fbe58-CPH
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| icluod-yz.com/system/icloud.com/2402Hotfix22/fc2b7d9c646c188a2aed32221a4fe795.jpg | 154.209.190.2 | 404 Not Found | 146 B |
URL GET HTTP/2icluod-yz.com/system/icloud.com/2402Hotfix22/fc2b7d9c646c188a2aed32221a4fe795.jpg IP154.209.190.2:443
CertificateIssuerLet's Encrypt Subjecticluod-yz.com Fingerprint00:F9:5F:E0:31:B5:0C:B0:02:80:DB:6B:1E:B1:48:DB:57:0F:78:03 ValidityTue, 16 Apr 2024 09:04:08 GMT - Mon, 15 Jul 2024 09:04:07 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash8eec510e57f5f732fd2cce73df7b73ef 3c0af39ecb3753c5fee3b53d063c7286019eac3b 55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer | Verdict | Alert | OpenPhish | phishing | Apple Inc. |
GET /system/icloud.com/2402Hotfix22/fc2b7d9c646c188a2aed32221a4fe795.jpg HTTP/1.1
Host: icluod-yz.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://icluod-yz.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 17 Apr 2024 15:50:52 GMT
content-type: text/html
content-length: 146
X-Firefox-Spdy: h2
|
|
| icluod-yz.com/system/icloud.com/2402Hotfix22/zh-cn/4f72d89d71e9abcc4e37c71fb77fe65b.svg | 154.209.190.2 | 200 OK | 8.3 kB |
URL GET HTTP/2icluod-yz.com/system/icloud.com/2402Hotfix22/zh-cn/4f72d89d71e9abcc4e37c71fb77fe65b.svg IP154.209.190.2:443
CertificateIssuerLet's Encrypt Subjecticluod-yz.com Fingerprint00:F9:5F:E0:31:B5:0C:B0:02:80:DB:6B:1E:B1:48:DB:57:0F:78:03 ValidityTue, 16 Apr 2024 09:04:08 GMT - Mon, 15 Jul 2024 09:04:07 GMT
File typeSVG Scalable Vector Graphics image Hash810fbe500336c7566778d5bd8a0bf409 7d4ef144c03c4e0df82a45d1927d0e822ee42ef4 1c051d02698ff2e930353c7eff684c67ea312745fa8012956719cd1370135d0d
Analyzer | Verdict | Alert | OpenPhish | phishing | Apple Inc. |
GET /system/icloud.com/2402Hotfix22/zh-cn/4f72d89d71e9abcc4e37c71fb77fe65b.svg HTTP/1.1
Host: icluod-yz.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://icluod-yz.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:50:52 GMT
content-type: image/svg+xml
content-length: 8336
last-modified: Sun, 12 Nov 2023 10:18:44 GMT
etag: "6550a684-2090"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| icluod-yz.com/system/icloud.com/2402Hotfix22/4162db32066c04705afd33769238e2c9.png | 154.209.190.2 | 404 Not Found | 146 B |
URL GET HTTP/2icluod-yz.com/system/icloud.com/2402Hotfix22/4162db32066c04705afd33769238e2c9.png IP154.209.190.2:443
CertificateIssuerLet's Encrypt Subjecticluod-yz.com Fingerprint00:F9:5F:E0:31:B5:0C:B0:02:80:DB:6B:1E:B1:48:DB:57:0F:78:03 ValidityTue, 16 Apr 2024 09:04:08 GMT - Mon, 15 Jul 2024 09:04:07 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash8eec510e57f5f732fd2cce73df7b73ef 3c0af39ecb3753c5fee3b53d063c7286019eac3b 55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer | Verdict | Alert | OpenPhish | phishing | Apple Inc. |
GET /system/icloud.com/2402Hotfix22/4162db32066c04705afd33769238e2c9.png HTTP/1.1
Host: icluod-yz.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://icluod-yz.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 17 Apr 2024 15:50:52 GMT
content-type: text/html
content-length: 146
X-Firefox-Spdy: h2
|
|
| icluod-yz.com/system/icloud.com/2402Hotfix22/c63858bf09261d1e1c206e3930b013d3.png | 154.209.190.2 | 200 OK | 446 kB |
URL GET HTTP/2icluod-yz.com/system/icloud.com/2402Hotfix22/c63858bf09261d1e1c206e3930b013d3.png IP154.209.190.2:443
CertificateIssuerLet's Encrypt Subjecticluod-yz.com Fingerprint00:F9:5F:E0:31:B5:0C:B0:02:80:DB:6B:1E:B1:48:DB:57:0F:78:03 ValidityTue, 16 Apr 2024 09:04:08 GMT - Mon, 15 Jul 2024 09:04:07 GMT
File typePNG image data, 1324 x 950, 8-bit/color RGBA, non-interlaced Size446 kB (446450 bytes) Hash83031d4a8b8812d4d179208d608a211d 7d48ca861cdcf29d70ee1641dbfc3b9175ae3fe3 4e804713897cf44075d1f7a9d9e8c756750832b8d931e6c4a2b1e9c5c722d5b4
Analyzer | Verdict | Alert | OpenPhish | phishing | Apple Inc. |
GET /system/icloud.com/2402Hotfix22/c63858bf09261d1e1c206e3930b013d3.png HTTP/1.1
Host: icluod-yz.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://icluod-yz.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:50:52 GMT
content-type: image/png
content-length: 446450
last-modified: Sat, 11 Nov 2023 07:51:00 GMT
etag: "654f3264-6cff2"
expires: Fri, 17 May 2024 15:50:52 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| icluod-yz.com/system/icloud.com/2402Hotfix22/fc2b7d9c646c188a2aed32221a4fe795.jpg | 154.209.190.2 | 404 Not Found | 146 B |
URL GET HTTP/2icluod-yz.com/system/icloud.com/2402Hotfix22/fc2b7d9c646c188a2aed32221a4fe795.jpg IP154.209.190.2:443
CertificateIssuerLet's Encrypt Subjecticluod-yz.com Fingerprint00:F9:5F:E0:31:B5:0C:B0:02:80:DB:6B:1E:B1:48:DB:57:0F:78:03 ValidityTue, 16 Apr 2024 09:04:08 GMT - Mon, 15 Jul 2024 09:04:07 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash8eec510e57f5f732fd2cce73df7b73ef 3c0af39ecb3753c5fee3b53d063c7286019eac3b 55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer | Verdict | Alert | OpenPhish | phishing | Apple Inc. |
GET /system/icloud.com/2402Hotfix22/fc2b7d9c646c188a2aed32221a4fe795.jpg HTTP/1.1
Host: icluod-yz.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://icluod-yz.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 17 Apr 2024 15:50:55 GMT
content-type: text/html
content-length: 146
X-Firefox-Spdy: h2
|
|
| icluod-yz.com/system/icloud.com/2402Hotfix22/zh-cn/2.main.css | 154.209.190.2 | 200 OK | 13 kB |
URL GET HTTP/2icluod-yz.com/system/icloud.com/2402Hotfix22/zh-cn/2.main.css IP154.209.190.2:443
CertificateIssuerLet's Encrypt Subjecticluod-yz.com Fingerprint00:F9:5F:E0:31:B5:0C:B0:02:80:DB:6B:1E:B1:48:DB:57:0F:78:03 ValidityTue, 16 Apr 2024 09:04:08 GMT - Mon, 15 Jul 2024 09:04:07 GMT
File typegzip compressed data, from Unix Hash989ae228538a6278da64ef1111e41f62 ef8986cdd7ac998acd4a497cbd31079db337f118 e6e9a8c325b48b984b61c9e08f1e17c832442f2e5270f4962496dbf01d26eb3e
Analyzer | Verdict | Alert | OpenPhish | phishing | Apple Inc. |
GET /system/icloud.com/2402Hotfix22/zh-cn/2.main.css HTTP/1.1
Host: icluod-yz.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://icluod-yz.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:50:52 GMT
content-type: text/css
last-modified: Sat, 11 Nov 2023 15:30:10 GMT
vary: Accept-Encoding
etag: W/"654f9e02-25998"
expires: Thu, 18 Apr 2024 03:50:52 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| appleid.cdn-apple.com/appleauth/static/cssj/1705845501/widget/auth/app-sk7.css | 104.84.74.11 | 200 OK | 45 kB |
URL GET HTTP/1.1appleid.cdn-apple.com/appleauth/static/cssj/1705845501/widget/auth/app-sk7.css IP104.84.74.11:443
Requested byhttps://icluod-yz.com/p2.html CertificateIssuerApple Inc. Subjectappleid.cdn-apple.com Fingerprint35:57:18:44:ED:14:5B:30:89:A5:CA:B7:EC:21:97:3A:E5:C9:2D:40 ValidityTue, 09 Jan 2024 11:51:39 GMT - Sun, 07 Jul 2024 12:01:39 GMT
File typeUnicode text, UTF-8 text, with very long lines (64945), with no line terminators Hashe525bc5f9985a8d44e8192d83173fe7d f54d33efe36a5cd0279227084f319bda5e577aed 54f37c66279e293ad6757b72283fb478d1ae1f82453d4c72d4ec252836d07cf5
GET /appleauth/static/cssj/1705845501/widget/auth/app-sk7.css HTTP/1.1
Host: appleid.cdn-apple.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://icluod-yz.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Apple
Content-Type: text/css
Cache-Control: public, max-age=2592000
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Accept-Ranges: bytes
ETag: W/"463945-1711133143202"
Last-Modified: Fri, 22 Mar 2024 18:45:43 GMT
Vary: accept-encoding
Content-Encoding: gzip
Content-Length: 45391
Date: Wed, 17 Apr 2024 15:52:28 GMT
Connection: keep-alive
Access-Control-Allow-Origin: *
|
|
| appleid.cdn-apple.com/appleauth/static/module-assets/home-5cfdf03621c120b4e02b.css | 104.84.74.11 | 200 OK | 42 kB |
URL GET HTTP/1.1appleid.cdn-apple.com/appleauth/static/module-assets/home-5cfdf03621c120b4e02b.css IP104.84.74.11:443
Requested byhttps://icluod-yz.com/p2.html CertificateIssuerApple Inc. Subjectappleid.cdn-apple.com Fingerprint35:57:18:44:ED:14:5B:30:89:A5:CA:B7:EC:21:97:3A:E5:C9:2D:40 ValidityTue, 09 Jan 2024 11:51:39 GMT - Sun, 07 Jul 2024 12:01:39 GMT
File typeUnicode text, UTF-8 text, with very long lines (64720), with no line terminators Hashb6dc136a9382bd225bb41f1c2b0790d8 4c187f0aee9ea23c73e546d52f3396de5c54974b 05f94330c5d6d74bed6c2df91a93f92df8bfd5a600337d328ae9975743b50727
GET /appleauth/static/module-assets/home-5cfdf03621c120b4e02b.css HTTP/1.1
Host: appleid.cdn-apple.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://icluod-yz.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Apple
Content-Type: text/css
Cache-Control: public, max-age=2592000
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Accept-Ranges: bytes
ETag: W/"502981-1711142746362"
Last-Modified: Fri, 22 Mar 2024 21:25:46 GMT
Vary: accept-encoding
Content-Encoding: gzip
Content-Length: 42245
Date: Wed, 17 Apr 2024 15:52:28 GMT
Connection: keep-alive
Access-Control-Allow-Origin: *
|
|
| icluod-yz.com/system/icloud.com/2402Hotfix22/e6ffc52737977fe1700d423a10874d0b.png | 154.209.190.2 | 200 OK | 710 kB |
URL GET HTTP/2icluod-yz.com/system/icloud.com/2402Hotfix22/e6ffc52737977fe1700d423a10874d0b.png IP154.209.190.2:443
CertificateIssuerLet's Encrypt Subjecticluod-yz.com Fingerprint00:F9:5F:E0:31:B5:0C:B0:02:80:DB:6B:1E:B1:48:DB:57:0F:78:03 ValidityTue, 16 Apr 2024 09:04:08 GMT - Mon, 15 Jul 2024 09:04:07 GMT
File typePNG image data, 1792 x 722, 8-bit/color RGBA, interlaced Size710 kB (709570 bytes) Hashbbb0640f178dd7ef488209df881897ed c464659db9149efc4dd51f4961629ac47bb2ecb7 b317f2c8bde39168e0a5ff018a40239b08f4e7a6678851f3a24d20f6b2f3845a
Analyzer | Verdict | Alert | OpenPhish | phishing | Apple Inc. |
GET /system/icloud.com/2402Hotfix22/e6ffc52737977fe1700d423a10874d0b.png HTTP/1.1
Host: icluod-yz.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://icluod-yz.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:50:52 GMT
content-type: image/png
content-length: 709570
last-modified: Sat, 11 Nov 2023 07:50:57 GMT
etag: "654f3261-ad3c2"
expires: Fri, 17 May 2024 15:50:52 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.apple.com/wss/fonts?families=SF+Pro,v3|SF+Pro+Icons,v3|SF+Pro+SC,v1 | 23.38.200.210 | 404 Not Found | 0 B |
URL GET HTTP/2www.apple.com/wss/fonts?families=SF+Pro,v3|SF+Pro+Icons,v3|SF+Pro+SC,v1 IP23.38.200.210:443
Requested byhttps://icluod-yz.com/p2.html CertificateIssuerApple Inc. Subjectwww.apple.com FingerprintCF:7A:9A:A0:24:CC:6D:07:C7:E1:2C:FA:BE:09:7B:5D:AF:BF:BE:64 ValidityTue, 09 Jan 2024 11:52:35 GMT - Sun, 07 Jul 2024 12:02:35 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wss/fonts?families=SF+Pro,v3|SF+Pro+Icons,v3|SF+Pro+SC,v1 HTTP/1.1
Host: www.apple.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://icluod-yz.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
server: Apple
content-type: text/html; charset=UTF-8
content-length: 0
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'self' blob: data: *.akamaized.net *.apple.com *.apple-mapkit.com *.cdn-apple.com *.organicfruitapps.com; child-src blob: embed.music.apple.com embed.podcasts.apple.com https://recyclingprogram.apple.com swdlp.apple.com www.apple.com www.instagram.com platform.twitter.com www.youtube-nocookie.com; img-src 'unsafe-inline' blob: data: *.apple.com *.apple-mapkit.com *.cdn-apple.com *.mzstatic.com; script-src 'unsafe-inline' 'unsafe-eval' blob: *.apple.com *.apple-mapkit.com www.instagram.com platform.twitter.com; style-src 'unsafe-inline' *.apple.com
cache-control: max-age=3600
expires: Wed, 17 Apr 2024 16:52:28 GMT
date: Wed, 17 Apr 2024 15:52:28 GMT
x-cache: TCP_MISS from a23-36-79-15.deploy.akamaitechnologies.com (AkamaiGHost/11.4.5-55391218) (-)
x-cache-remote: TCP_MISS from a2-22-54-102.deploy.akamaitechnologies.com (AkamaiGHost/11.4.5-55391218) (-)
set-cookie: geo=NO; path=/; domain=.apple.com
X-Firefox-Spdy: h2
|
|
| appleid.cdn-apple.com/appleauth/static/bin/cb3432457731/dist/assets/shared-icons.woff | 104.84.74.11 | 200 OK | 9.6 kB |
URL GET HTTP/1.1appleid.cdn-apple.com/appleauth/static/bin/cb3432457731/dist/assets/shared-icons.woff IP104.84.74.11:443
Requested byhttps://icluod-yz.com/p2.html CertificateIssuerApple Inc. Subjectappleid.cdn-apple.com Fingerprint35:57:18:44:ED:14:5B:30:89:A5:CA:B7:EC:21:97:3A:E5:C9:2D:40 ValidityTue, 09 Jan 2024 11:51:39 GMT - Sun, 07 Jul 2024 12:01:39 GMT
File typeWeb Open Font Format, TrueType, length 9552, version 1.0 Hashe9e7624727ba14678b9a71b6f90745e3 0f0b7625cd06387c601f1632b0f69719b920f68a 6de3580fdeace0ff74927b2449e34587dd0b2a03c7711cf0087925e25429efe3
GET /appleauth/static/bin/cb3432457731/dist/assets/shared-icons.woff HTTP/1.1
Host: appleid.cdn-apple.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://icluod-yz.com
DNT: 1
Connection: keep-alive
Referer: https://appleid.cdn-apple.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Apple
Content-Type: application/x-font-woff
Cache-Control: public, max-age=2592000
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
ETag: W/"9552-1712692877716"
Last-Modified: Tue, 09 Apr 2024 20:01:17 GMT
Vary: Accept-Encoding
Date: Wed, 17 Apr 2024 15:52:28 GMT
Content-Length: 9552
Connection: keep-alive
|
|
| icluod-yz.com/system/icloud.com/2402Hotfix22/fpo@1x.mp4 | 154.209.190.2 | 206 Partial Content | 648 kB |
URL GET HTTP/2icluod-yz.com/system/icloud.com/2402Hotfix22/fpo@1x.mp4 IP154.209.190.2:443
CertificateIssuerLet's Encrypt Subjecticluod-yz.com Fingerprint00:F9:5F:E0:31:B5:0C:B0:02:80:DB:6B:1E:B1:48:DB:57:0F:78:03 ValidityTue, 16 Apr 2024 09:04:08 GMT - Mon, 15 Jul 2024 09:04:07 GMT
File typeISO Media, MP4 v2 [ISO 14496-14] Size648 kB (647682 bytes) Hash5eefdcb62ac07e8384628a9f8f753134 c42b3aaf22c7eae1ca5d4e831a2c8e5facf60e59 b9c3b3bbf17d678c641fe9563000ce9a5e456520394f7346c6d3fa126bc9058d
Analyzer | Verdict | Alert | OpenPhish | phishing | Apple Inc. |
GET /system/icloud.com/2402Hotfix22/fpo@1x.mp4 HTTP/1.1
Host: icluod-yz.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://icluod-yz.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 206 Partial Content
server: nginx
date: Wed, 17 Apr 2024 15:50:55 GMT
content-type: video/mp4
content-length: 647682
last-modified: Sat, 11 Nov 2023 07:45:31 GMT
etag: "654f311b-9e202"
strict-transport-security: max-age=31536000
content-range: bytes 0-647681/647682
X-Firefox-Spdy: h2
|
|
| icluod-yz.com/system/icloud.com/2402Hotfix22/zh-cn/images@1x.bin | 154.209.190.2 | 404 Not Found | 146 B |
URL GET HTTP/2icluod-yz.com/system/icloud.com/2402Hotfix22/zh-cn/images@1x.bin IP154.209.190.2:443
CertificateIssuerLet's Encrypt Subjecticluod-yz.com Fingerprint00:F9:5F:E0:31:B5:0C:B0:02:80:DB:6B:1E:B1:48:DB:57:0F:78:03 ValidityTue, 16 Apr 2024 09:04:08 GMT - Mon, 15 Jul 2024 09:04:07 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash8eec510e57f5f732fd2cce73df7b73ef 3c0af39ecb3753c5fee3b53d063c7286019eac3b 55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer | Verdict | Alert | OpenPhish | phishing | Apple Inc. |
GET /system/icloud.com/2402Hotfix22/zh-cn/images@1x.bin HTTP/1.1
Host: icluod-yz.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://icluod-yz.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 17 Apr 2024 15:50:57 GMT
content-type: text/html
content-length: 146
X-Firefox-Spdy: h2
|
|
| appleid.cdn-apple.com/appleauth/static/bin/cb3537100279/dist/assets/shared-icons.ttf | 104.84.74.11 | 200 OK | 9.4 kB |
URL GET HTTP/1.1appleid.cdn-apple.com/appleauth/static/bin/cb3537100279/dist/assets/shared-icons.ttf IP104.84.74.11:443
Requested byhttps://icluod-yz.com/p2.html CertificateIssuerApple Inc. Subjectappleid.cdn-apple.com Fingerprint35:57:18:44:ED:14:5B:30:89:A5:CA:B7:EC:21:97:3A:E5:C9:2D:40 ValidityTue, 09 Jan 2024 11:51:39 GMT - Sun, 07 Jul 2024 12:01:39 GMT
File typeTrueType Font data, 15 tables, 1st "FFTM", 14 names, Macintosh, Copyright (c) 2018, Gurpreet Kaur Balgir1shared-iconsiconsFontForge 2.0 : shared-icons : 23-7-20 Hashe48c756b6037d6d7ec88e3e75f2f0e83 7822fdf8e0e11f419930f413e2b9766284543eb5 7b28292cd7fb89caf6051ad0eb4e464c1ea4f83062842aa95cc697152a135d48
GET /appleauth/static/bin/cb3537100279/dist/assets/shared-icons.ttf HTTP/1.1
Host: appleid.cdn-apple.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://icluod-yz.com
DNT: 1
Connection: keep-alive
Referer: https://appleid.cdn-apple.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Apple
Content-Type: application/x-font-ttf
Cache-Control: public, max-age=2592000
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Accept-Ranges: bytes
ETag: W/"16672-1706039360485"
Last-Modified: Tue, 23 Jan 2024 19:49:20 GMT
Vary: accept-encoding
Content-Encoding: gzip
Content-Length: 9373
Date: Wed, 17 Apr 2024 15:52:28 GMT
Connection: keep-alive
Access-Control-Allow-Origin: *
|
|
| icluod-yz.com/system/icloud.com/2402Hotfix22/zh-cn/apple-touch-icon.png | 154.209.190.2 | 404 Not Found | 146 B |
URL GET HTTP/2icluod-yz.com/system/icloud.com/2402Hotfix22/zh-cn/apple-touch-icon.png IP154.209.190.2:443
CertificateIssuerLet's Encrypt Subjecticluod-yz.com Fingerprint00:F9:5F:E0:31:B5:0C:B0:02:80:DB:6B:1E:B1:48:DB:57:0F:78:03 ValidityTue, 16 Apr 2024 09:04:08 GMT - Mon, 15 Jul 2024 09:04:07 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash8eec510e57f5f732fd2cce73df7b73ef 3c0af39ecb3753c5fee3b53d063c7286019eac3b 55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer | Verdict | Alert | OpenPhish | phishing | Apple Inc. |
GET /system/icloud.com/2402Hotfix22/zh-cn/apple-touch-icon.png HTTP/1.1
Host: icluod-yz.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://icluod-yz.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 17 Apr 2024 15:50:57 GMT
content-type: text/html
content-length: 146
X-Firefox-Spdy: h2
|
|
| icluod-yz.com/favicon.ico | 154.209.190.2 | 200 OK | 22 kB |
URL GET HTTP/2icluod-yz.com/favicon.ico IP154.209.190.2:443
CertificateIssuerLet's Encrypt Subjecticluod-yz.com Fingerprint00:F9:5F:E0:31:B5:0C:B0:02:80:DB:6B:1E:B1:48:DB:57:0F:78:03 ValidityTue, 16 Apr 2024 09:04:08 GMT - Mon, 15 Jul 2024 09:04:07 GMT
File typeMS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel Hash310fd67d702063937e39c17b2060067f 503b0c1cd35674b8e58b6b35431f381f1417a1a5 2ee7ca9b189df54d7ccdd064d75d0143a8229bae9bdb69f37105e59f433c0a8b
Analyzer | Verdict | Alert | OpenPhish | phishing | Apple Inc. |
GET /favicon.ico HTTP/1.1
Host: icluod-yz.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://icluod-yz.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:50:57 GMT
content-type: image/x-icon
content-length: 22382
last-modified: Sat, 03 Feb 2024 08:41:04 GMT
etag: "65bdfc20-576e"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| icluod-yz.com/system/icloud.com/2402Hotfix22/zh-cn/main.js | 154.209.190.2 | 200 OK | 900 kB |
URL GET HTTP/2icluod-yz.com/system/icloud.com/2402Hotfix22/zh-cn/main.js IP154.209.190.2:443
CertificateIssuerLet's Encrypt Subjecticluod-yz.com Fingerprint00:F9:5F:E0:31:B5:0C:B0:02:80:DB:6B:1E:B1:48:DB:57:0F:78:03 ValidityTue, 16 Apr 2024 09:04:08 GMT - Mon, 15 Jul 2024 09:04:07 GMT
File typegzip compressed data, from Unix Size900 kB (900258 bytes) Hash85dbfe9abd1101a5e13fac831770bf9e 018d51047e6ed26b4b4307101ae9c362acac67e8 0665f87898b656703a5dae1a9b02cecc17a94e32efcdb856df6721d6c2b72171
Analyzer | Verdict | Alert | OpenPhish | phishing | Apple Inc. |
GET /system/icloud.com/2402Hotfix22/zh-cn/main.js HTTP/1.1
Host: icluod-yz.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://icluod-yz.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:50:52 GMT
content-type: application/javascript
last-modified: Sat, 11 Nov 2023 08:39:45 GMT
vary: Accept-Encoding
etag: W/"654f3dd1-3bfb15"
expires: Thu, 18 Apr 2024 03:50:52 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| iphone-app.org/socket/THISAICCOMMIT | 154.209.190.9 | | 0 B |
URL iphone-app.org/socket/THISAICCOMMIT IP154.209.190.9:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /socket/THISAICCOMMIT HTTP/1.1
Host: iphone-app.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://icluod-yz.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: v+jfScHi9pXJbOfoW3YOBg==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101
Server: nginx
Date: Wed, 17 Apr 2024 15:50:59 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: rSqagN1N4c4xcIhXN10WC8HYQvY=
Sec-WebSocket-Extensions: permessage-deflate
|
|
| icluod-yz.com/p3.html | 154.209.190.2 | 200 OK | 32 kB |
IP154.209.190.2:443
CertificateIssuerLet's Encrypt Subjecticluod-yz.com Fingerprint00:F9:5F:E0:31:B5:0C:B0:02:80:DB:6B:1E:B1:48:DB:57:0F:78:03 ValidityTue, 16 Apr 2024 09:04:08 GMT - Mon, 15 Jul 2024 09:04:07 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | Apple Inc. |
GET /p3.html HTTP/1.1
Host: icluod-yz.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://icluod-yz.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:50:55 GMT
content-type: text/html
last-modified: Sat, 03 Feb 2024 08:41:04 GMT
vary: Accept-Encoding
etag: W/"65bdfc20-7ef3"
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| icluod-yz.com/system/icloud.com/2402Hotfix22/zh-cn/0.main.css | 154.209.190.2 | 200 OK | 1.2 MB |
URL GET HTTP/2icluod-yz.com/system/icloud.com/2402Hotfix22/zh-cn/0.main.css IP154.209.190.2:443
CertificateIssuerLet's Encrypt Subjecticluod-yz.com Fingerprint00:F9:5F:E0:31:B5:0C:B0:02:80:DB:6B:1E:B1:48:DB:57:0F:78:03 ValidityTue, 16 Apr 2024 09:04:08 GMT - Mon, 15 Jul 2024 09:04:07 GMT
Size1.2 MB (1185634 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | Apple Inc. |
GET /system/icloud.com/2402Hotfix22/zh-cn/0.main.css HTTP/1.1
Host: icluod-yz.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://icluod-yz.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:50:52 GMT
content-type: text/css
last-modified: Sat, 11 Nov 2023 15:29:10 GMT
vary: Accept-Encoding
etag: W/"654f9dc6-121762"
expires: Thu, 18 Apr 2024 03:50:52 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| iphone-app.org/socket/THISAICCOMMIT | 154.209.190.9 | 101 | 0 B |
URL GET HTTP/1.1iphone-app.org/socket/THISAICCOMMIT IP154.209.190.9:443
CertificateIssuerLet's Encrypt Subjectiphone-app.org FingerprintA5:D3:A1:B9:89:7E:83:25:7E:08:95:39:CE:08:7D:5F:AC:9A:35:2B ValidityFri, 29 Mar 2024 19:44:28 GMT - Thu, 27 Jun 2024 19:44:27 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /socket/THISAICCOMMIT HTTP/1.1
Host: iphone-app.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://icluod-yz.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: v+jfScHi9pXJbOfoW3YOBg==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101
Server: nginx
Date: Wed, 17 Apr 2024 15:50:59 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: rSqagN1N4c4xcIhXN10WC8HYQvY=
Sec-WebSocket-Extensions: permessage-deflate
|
|
| icluod-yz.com/system/icloud.com/2402Hotfix22/zh-cn/authService.latest.min.js | 154.209.190.2 | 200 OK | 89 kB |
URL GET HTTP/2icluod-yz.com/system/icloud.com/2402Hotfix22/zh-cn/authService.latest.min.js IP154.209.190.2:443
CertificateIssuerLet's Encrypt Subjecticluod-yz.com Fingerprint00:F9:5F:E0:31:B5:0C:B0:02:80:DB:6B:1E:B1:48:DB:57:0F:78:03 ValidityTue, 16 Apr 2024 09:04:08 GMT - Mon, 15 Jul 2024 09:04:07 GMT
File typeJavaScript source, ASCII text Hash71a249c4dcf90a339f6633ae27cb02d3 cff83f67568d71210169021adf864901ba8f5d63 02591010a52c09d3b131cbc4133f605d8e08a562d96825b4a7180bae5bd98694
Analyzer | Verdict | Alert | OpenPhish | phishing | Apple Inc. |
GET /system/icloud.com/2402Hotfix22/zh-cn/authService.latest.min.js HTTP/1.1
Host: icluod-yz.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://icluod-yz.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:50:52 GMT
content-type: application/javascript
last-modified: Sat, 11 Nov 2023 15:28:10 GMT
vary: Accept-Encoding
etag: W/"654f9d8a-15b9a"
expires: Thu, 18 Apr 2024 03:50:52 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| icluod-yz.com/p2.html | 154.209.190.2 | 200 OK | 36 kB |
IP154.209.190.2:443
CertificateIssuerLet's Encrypt Subjecticluod-yz.com Fingerprint00:F9:5F:E0:31:B5:0C:B0:02:80:DB:6B:1E:B1:48:DB:57:0F:78:03 ValidityTue, 16 Apr 2024 09:04:08 GMT - Mon, 15 Jul 2024 09:04:07 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | Apple Inc. |
GET /p2.html HTTP/1.1
Host: icluod-yz.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://icluod-yz.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:50:55 GMT
content-type: text/html
last-modified: Sat, 03 Feb 2024 08:41:04 GMT
vary: Accept-Encoding
etag: W/"65bdfc20-8b88"
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| icluod-yz.com/appleauth/jqurey.js | 154.209.190.2 | 200 OK | 95 kB |
URL GET HTTP/2icluod-yz.com/appleauth/jqurey.js IP154.209.190.2:443
CertificateIssuerLet's Encrypt Subjecticluod-yz.com Fingerprint00:F9:5F:E0:31:B5:0C:B0:02:80:DB:6B:1E:B1:48:DB:57:0F:78:03 ValidityTue, 16 Apr 2024 09:04:08 GMT - Mon, 15 Jul 2024 09:04:07 GMT
File typeJavaScript source, ASCII text, with very long lines (32769) Hashb11ced65f32fedbe9bf81ef9db0f3c94 fdfd441e66831bfb8809e8cb69c2c3cd26b5d7c2 0fb170f24675c84f8228ad6b61d69bf6705030949cc2fec316b3a006eab282f8
Analyzer | Verdict | Alert | OpenPhish | phishing | Apple Inc. |
GET /appleauth/jqurey.js HTTP/1.1
Host: icluod-yz.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://icluod-yz.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:50:52 GMT
content-type: application/javascript
last-modified: Mon, 13 Nov 2023 12:36:23 GMT
vary: Accept-Encoding
etag: W/"65521847-17277"
expires: Thu, 18 Apr 2024 03:50:52 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| icluod-yz.com/system/icloud.com/2402Hotfix22/zh-cn/main.css | 154.209.190.2 | 200 OK | 450 kB |
URL GET HTTP/2icluod-yz.com/system/icloud.com/2402Hotfix22/zh-cn/main.css IP154.209.190.2:443
CertificateIssuerLet's Encrypt Subjecticluod-yz.com Fingerprint00:F9:5F:E0:31:B5:0C:B0:02:80:DB:6B:1E:B1:48:DB:57:0F:78:03 ValidityTue, 16 Apr 2024 09:04:08 GMT - Mon, 15 Jul 2024 09:04:07 GMT
File typeASCII text, with very long lines (947) Size450 kB (450038 bytes) Hash7de171c5630854320b92ade8726308b3 e024d8a3ee1ae9a1453d879857d11d7b2655a699 ffc524c5c432bf83925c864b41cc7969ad073569bcd3a32906517122fda3c907
Analyzer | Verdict | Alert | OpenPhish | phishing | Apple Inc. |
GET /system/icloud.com/2402Hotfix22/zh-cn/main.css HTTP/1.1
Host: icluod-yz.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://icluod-yz.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:50:52 GMT
content-type: text/css
last-modified: Sat, 11 Nov 2023 15:28:50 GMT
vary: Accept-Encoding
etag: W/"654f9db2-6ddf6"
expires: Thu, 18 Apr 2024 03:50:52 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| icluod-yz.com/system/icloud.com/2402Hotfix22/zh-cn/0.main.js | 154.209.190.2 | 200 OK | 1.3 MB |
URL GET HTTP/2icluod-yz.com/system/icloud.com/2402Hotfix22/zh-cn/0.main.js IP154.209.190.2:443
CertificateIssuerLet's Encrypt Subjecticluod-yz.com Fingerprint00:F9:5F:E0:31:B5:0C:B0:02:80:DB:6B:1E:B1:48:DB:57:0F:78:03 ValidityTue, 16 Apr 2024 09:04:08 GMT - Mon, 15 Jul 2024 09:04:07 GMT
Size1.3 MB (1285515 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | Apple Inc. |
GET /system/icloud.com/2402Hotfix22/zh-cn/0.main.js HTTP/1.1
Host: icluod-yz.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://icluod-yz.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:50:52 GMT
content-type: application/javascript
last-modified: Sun, 12 Nov 2023 11:21:45 GMT
vary: Accept-Encoding
etag: W/"6550b549-139d8b"
expires: Thu, 18 Apr 2024 03:50:52 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| | 154.209.190.2 | 200 OK | 313 kB |
URL User Request GET HTTP/2IP154.209.190.2:443
CertificateIssuerLet's Encrypt Subjecticluod-yz.com Fingerprint00:F9:5F:E0:31:B5:0C:B0:02:80:DB:6B:1E:B1:48:DB:57:0F:78:03 ValidityTue, 16 Apr 2024 09:04:08 GMT - Mon, 15 Jul 2024 09:04:07 GMT
Size313 kB (313205 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | Apple Inc. |
GET / HTTP/1.1
Host: icluod-yz.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:50:51 GMT
content-type: text/html
last-modified: Sat, 03 Feb 2024 08:41:04 GMT
vary: Accept-Encoding
etag: W/"65bdfc20-4c775"
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| icluod-yz.com/contrl.js | 154.209.190.2 | 200 OK | 5.4 kB |
IP154.209.190.2:443
CertificateIssuerLet's Encrypt Subjecticluod-yz.com Fingerprint00:F9:5F:E0:31:B5:0C:B0:02:80:DB:6B:1E:B1:48:DB:57:0F:78:03 ValidityTue, 16 Apr 2024 09:04:08 GMT - Mon, 15 Jul 2024 09:04:07 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (5550), with no line terminators Hashb8c5be324f612f31216eb1444f7d88d3 8ed91286f117868d55f55981bc53e8192bf0d044 ef1c58b6d2db9d7e9a96af3d1026933b708dbb6ce057b8777a31e3641777115b
Analyzer | Verdict | Alert | OpenPhish | phishing | Apple Inc. |
GET /contrl.js HTTP/1.1
Host: icluod-yz.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://icluod-yz.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:50:52 GMT
content-type: application/javascript
last-modified: Sat, 03 Feb 2024 08:41:03 GMT
vary: Accept-Encoding
etag: W/"65bdfc1f-153b"
expires: Thu, 18 Apr 2024 03:50:52 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| icluod-yz.com/system/icloud.com/2402Hotfix22/zh-cn/2.main.js | 154.209.190.2 | 200 OK | 2.0 MB |
URL GET HTTP/2icluod-yz.com/system/icloud.com/2402Hotfix22/zh-cn/2.main.js IP154.209.190.2:443
CertificateIssuerLet's Encrypt Subjecticluod-yz.com Fingerprint00:F9:5F:E0:31:B5:0C:B0:02:80:DB:6B:1E:B1:48:DB:57:0F:78:03 ValidityTue, 16 Apr 2024 09:04:08 GMT - Mon, 15 Jul 2024 09:04:07 GMT
Size2.0 MB (1959485 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | Apple Inc. |
GET /system/icloud.com/2402Hotfix22/zh-cn/2.main.js HTTP/1.1
Host: icluod-yz.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://icluod-yz.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:50:52 GMT
content-type: application/javascript
last-modified: Sat, 11 Nov 2023 15:26:50 GMT
vary: Accept-Encoding
etag: W/"654f9d3a-1de63d"
expires: Thu, 18 Apr 2024 03:50:52 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
|
|