Report - pub-04ce8de3b8264609ae0c4bb873f62716.r2.dev/ekiud.html#jeff.bezoz@spacex.com

Report Overview

Submitted URL
pub-04ce8de3b8264609ae0c4bb873f62716.r2.dev/ekiud.html#jeff.bezoz@spacex.com
IP
104.18.3.35
ASN
#13335 CLOUDFLARENET
Submitted
2024-05-07 08:38:11
Access
public
Website Title
Session Expired!
Final URL
pub-04ce8de3b8264609ae0c4bb873f62716.r2.dev/ekiud.html#jeff.bezoz@spacex.com
Tags
phishing
urlquery detections
Phishing - Generic phishing

Detections

urlquery
2
Network Intrusion Detection
0
Threat Detection Systems
8

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.spacex.com	282988	2002-05-13	2012-05-21	2024-02-23	4.5 kB	870 kB	20.140.151.75
pub-04ce8de3b8264609ae0c4bb873f62716.r2.dev	unknown	unknown	No data	No data	2.2 kB	57 kB	104.18.2.35
code.jquery.com	634	2005-12-10	2012-05-21	2024-05-06	888 B	61 kB	151.101.2.137
logo.clearbit.com	27344	2003-07-04	2015-06-30	2024-05-06	1.4 kB	4.8 kB	143.204.55.28
www.google.com	7	1997-09-15	2015-05-10	2024-03-23	1.9 kB	3.3 kB	142.250.74.164
t3.gstatic.com	unknown	2008-02-11	2013-05-06	2024-05-05	2.1 kB	4.5 kB	142.250.74.100
spacex.com	115354	2002-05-13	2012-05-22	2024-02-14	526 B	400 B	20.141.12.33
content.spacex.com	unknown	2002-05-13	2022-11-18	2024-01-19	452 B	21 kB	20.140.151.75
sxcontent9668.azureedge.us	unknown	2020-01-22	2022-12-19	2024-01-19	2.4 kB	960 kB	20.140.56.69
t2.gstatic.com	unknown	2008-02-11	2013-05-07	2024-05-02	1.1 kB	0 B	0.0.0.0

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-05-07	medium	pub-04ce8de3b8264609ae0c4bb873f62716.r2.dev/ekiud.html	Generic/Spear Phishing
2024-05-07	medium	pub-04ce8de3b8264609ae0c4bb873f62716.r2.dev/ekiud.html	Generic/Spear Phishing
2024-05-07	medium	pub-04ce8de3b8264609ae0c4bb873f62716.r2.dev/ekiud.html	Generic/Spear Phishing
2024-05-07	medium	pub-04ce8de3b8264609ae0c4bb873f62716.r2.dev/ekiud.html	Generic/Spear Phishing

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (7)

	URL	Size	First Seen	Last Seen
	code.jquery.com/jquery-3.2.1.min.js	87 kB	2023-03-07	2024-05-19
Pretty URL code.jquery.com/jquery-3.2.1.min.js IP 151.101.2.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-05-19 17:47:38 Times Seen68036 Hash c9f5aeeca3ad37bf2aa006139b935f0a 1055018c28ab41087ef9ccefe411606893dabea2 87083882cc6015984eb0411a99d3981817f5dc5c90ba24f0940420c5548d82de Loading...

	pub-04ce8de3b8264609ae0c4bb873f62716.r2.dev/ekiud.html#	6.4 kB	2024-04-27	2024-05-07
Pretty URL pub-04ce8de3b8264609ae0c4bb873f62716.r2.dev/ekiud.html# IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-27 19:29:24 Last Seen2024-05-07 12:15:39 Times Seen11 Hash 3030228408352ade85098181cce74730 3d01a62d5b76021091301b2fbb5bee8d296de7eb 79ce4d5aa2210aca61589c656ac9c10f6634f0ae27df5f7447e306709f83a1d2 Loading...

	www.spacex.com/	0 B	2023-03-07	2024-05-19
Pretty URL www.spacex.com/ IP 20.140.151.75 ASN #8070 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-19 18:01:04 Times Seen37837118 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.spacex.com/static/player-min.js	118 kB	2024-02-19	2024-05-07
Pretty URL www.spacex.com/static/player-min.js IP 20.140.151.75 ASN #8070 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2024-02-19 00:15:22 Last Seen2024-05-07 10:38:18 Times Seen4 Hash 03a5e88aadee935e5bb2f01d546c9d29 557150e8f8f06ba90460df268e75de7486b5faa8 a9d4789c321f621a6907457c8c81cfce1313e06af0488794136c26776507c087 Loading...

	www.spacex.com/static/home-page-min.js	3.5 kB	2024-02-19	2024-05-07
Pretty URL www.spacex.com/static/home-page-min.js IP 20.140.151.75 ASN #8070 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2024-02-19 00:15:22 Last Seen2024-05-07 10:38:18 Times Seen3 Hash add4b6095aa9b53e8d05ad36c5862f1b 6599719019cb0cd19f91d0771fa092df63fbd710 165d16b7688066ec92d972db60fe08f9bf3427192c87665f9f8a510c0138b57a Loading...

	www.spacex.com/static/deps-min.js	248 kB	2024-02-19	2024-05-07
Pretty URL www.spacex.com/static/deps-min.js IP 20.140.151.75 ASN #8070 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2024-02-19 00:15:22 Last Seen2024-05-07 10:38:18 Times Seen4 Hash 8dbe84906944b0bd91c2439dc4ec593f 04193ca735b9ed5fb3c0b0e032b9f4ae521d466f 7660be2c5b87f7968b0ac40bc3c3ef94b75fa602ea8ca7f02c61921765ef1cbc Loading...

	www.spacex.com/static/core-min.js	12 kB	2024-02-19	2024-05-07
Pretty URL www.spacex.com/static/core-min.js IP 20.140.151.75 ASN #8070 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2024-02-19 00:15:22 Last Seen2024-05-07 10:38:18 Times Seen4 Hash 4ce2cc269e7b8eb686268b6bdf86b7d6 23aa7d34654d28f17433f37c59d7bccbe4152485 c6eaaec855ee18c072c1b1dc58763c081292912b6769512af3bec3c4c4c00927 Loading...

HTTP Transactions (36)

URL IP Response Size

pub-04ce8de3b8264609ae0c4bb873f62716.r2.dev/ekiud.html

104.18.2.35

14 kB

URL
pub-04ce8de3b8264609ae0c4bb873f62716.r2.dev/ekiud.html
IP
104.18.2.35:0
ASN
#13335 CLOUDFLARENET

File type
HTML document, Unicode text, UTF-8 text, with very long lines (5539), with CRLF line terminators
Size
14 kB (13921 bytes)
Hash
b9b34d3f7768a6be979f57426bfc7118
f13981285fdd8694242d895067e9cfd6219de84b
ee4806492b1614b47606aade33b0146a0b2164a28c18df7dfe9e561c0eb58f05

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Generic/Spear Phishing

HTTP Headers

GET /ekiud.html HTTP/1.1
Host: pub-04ce8de3b8264609ae0c4bb873f62716.r2.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 07 May 2024 08:37:45 GMT
Content-Type: text/html
Content-Length: 13921
Connection: keep-alive
Accept-Ranges: bytes
ETag: "b9b34d3f7768a6be979f57426bfc7118"
Last-Modified: Tue, 07 May 2024 03:15:48 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87ffe3cd7c7056c5-OSL

code.jquery.com/jquery-3.2.1.min.js

151.101.2.137

200 OK

30 kB

URL GET HTTP/2
code.jquery.com/jquery-3.2.1.min.js
IP
151.101.2.137:443
ASN
#54113 FASTLY

Requested by
https://pub-04ce8de3b8264609ae0c4bb873f62716.r2.dev/ekiud.html#jeff.bezoz@spacex.com
Certificate
IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (32058)
Size
30 kB (30125 bytes)
Hash
c9f5aeeca3ad37bf2aa006139b935f0a
1055018c28ab41087ef9ccefe411606893dabea2
87083882cc6015984eb0411a99d3981817f5dc5c90ba24f0940420c5548d82de

HTTP Headers

GET /jquery-3.2.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-04ce8de3b8264609ae0c4bb873f62716.r2.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-15283"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 07 May 2024 08:37:45 GMT
age: 9619631
x-served-by: cache-lga21971-LGA, cache-hel1410032-HEL
x-cache: HIT, HIT
x-cache-hits: 29, 150776
x-timer: S1715071066.824280,VS0,VE0
vary: Accept-Encoding
content-length: 30125
X-Firefox-Spdy: h2

logo.clearbit.com/live.com

143.204.55.28

200 OK

618 B

URL GET HTTP/2
logo.clearbit.com/live.com
IP
143.204.55.28:443
ASN
#16509 AMAZON-02

Requested by
https://pub-04ce8de3b8264609ae0c4bb873f62716.r2.dev/ekiud.html#jeff.bezoz@spacex.com
Certificate
IssuerAmazon
Subjectclearbit.com
FingerprintCE:16:94:BB:21:1F:D1:5C:C5:B1:B0:D0:51:6C:C5:26:30:0D:59:72
ValidityMon, 22 Jan 2024 00:00:00 GMT - Tue, 18 Feb 2025 23:59:59 GMT

File type
PNG image data, 128 x 128, 8-bit/color RGB, non-interlaced
Size
618 B (618 bytes)
Hash
e6f4ae3faed9768872a85280b818ff9f
42c9623d1ea60726d8e1e75733d8d7b4ab336dc1
a1fab8fc3cf9fb9554b6d0fcab8236be7a22ceadec82ce0704cf79d3973c1139

HTTP Headers

GET /live.com HTTP/1.1
Host: logo.clearbit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-04ce8de3b8264609ae0c4bb873f62716.r2.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
content-length: 618
access-control-allow-origin: *
cache-control: public, max-age=2592000
date: Tue, 09 Apr 2024 21:51:59 GMT
x-envoy-response-flags: -
server: Clearbit
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: nMLd_936TqWamEoCZ2NAWcBNOjSSxf2Xu96P0nRzoFPQjxwm_RCxwQ==
age: 2371546
X-Firefox-Spdy: h2

pub-04ce8de3b8264609ae0c4bb873f62716.r2.dev/ekiud.html

104.18.2.35

14 kB

URL
pub-04ce8de3b8264609ae0c4bb873f62716.r2.dev/ekiud.html
IP
104.18.2.35:0
ASN
#13335 CLOUDFLARENET

File type
HTML document, Unicode text, UTF-8 text, with very long lines (5539), with CRLF line terminators
Size
14 kB (13921 bytes)
Hash
b9b34d3f7768a6be979f57426bfc7118
f13981285fdd8694242d895067e9cfd6219de84b
ee4806492b1614b47606aade33b0146a0b2164a28c18df7dfe9e561c0eb58f05

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Generic/Spear Phishing

HTTP Headers

GET /ekiud.html HTTP/1.1
Host: pub-04ce8de3b8264609ae0c4bb873f62716.r2.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-04ce8de3b8264609ae0c4bb873f62716.r2.dev/ekiud.html
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 07 May 2024 08:37:46 GMT
Content-Type: text/html
Content-Length: 13921
Connection: keep-alive
Accept-Ranges: bytes
ETag: "b9b34d3f7768a6be979f57426bfc7118"
Last-Modified: Tue, 07 May 2024 03:15:48 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87ffe3d23dbc56c5-OSL

logo.clearbit.com/spacex.com

143.204.55.28

200 OK

1.9 kB

URL GET HTTP/2
logo.clearbit.com/spacex.com
IP
143.204.55.28:443
ASN
#16509 AMAZON-02

Requested by
https://pub-04ce8de3b8264609ae0c4bb873f62716.r2.dev/ekiud.html#jeff.bezoz@spacex.com
Certificate
IssuerAmazon
Subjectclearbit.com
FingerprintCE:16:94:BB:21:1F:D1:5C:C5:B1:B0:D0:51:6C:C5:26:30:0D:59:72
ValidityMon, 22 Jan 2024 00:00:00 GMT - Tue, 18 Feb 2025 23:59:59 GMT

File type
PNG image data, 128 x 128, 8-bit/color RGB, non-interlaced
Size
1.9 kB (1945 bytes)
Hash
a56c40a431da59a3ca8129385bfd53f4
561e5632c7b7757804a34ab91ec24fc3f191a6dc
2afd25d38a1b2c24990df022663b1826626f3724e22046627ac3d30d5ab5c52a

HTTP Headers

GET /spacex.com HTTP/1.1
Host: logo.clearbit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-04ce8de3b8264609ae0c4bb873f62716.r2.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 1945
access-control-allow-origin: *
cache-control: public, max-age=2592000
date: Sat, 20 Apr 2024 06:39:48 GMT
x-envoy-response-flags: -
server: Clearbit
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: B604zRfaPxoYC7f0JJtBPQWREF4YSWbmDt0nLso1JvL122-xc0zkXg==
age: 1475878
X-Firefox-Spdy: h2

www.google.com/s2/favicons?domain=microsoft.com

142.250.74.164

301 Moved Permanently

333 B

URL GET HTTP/2
www.google.com/s2/favicons?domain=microsoft.com
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
https://pub-04ce8de3b8264609ae0c4bb873f62716.r2.dev/ekiud.html#jeff.bezoz@spacex.com
Certificate
IssuerGoogle Trust Services LLC
Subjectwww.google.com
FingerprintC6:A2:DC:31:5A:53:FA:DD:55:71:A3:F4:DD:43:3D:16:71:B8:B3:99
ValidityTue, 16 Apr 2024 04:20:32 GMT - Tue, 09 Jul 2024 04:20:31 GMT

File type
HTML document, ASCII text, with CRLF, LF line terminators
Size
333 B (333 bytes)
Hash
c28d72b8d45d4620584507f1cefa3bdc
186a92810d10c19f7587732113cc76f5029a045c
1dff1bcaad427e72d8229c005a58f01b03f60d9ba1778dc2e11b1d5deb5ae22d

HTTP Headers

GET /s2/favicons?domain=microsoft.com HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-04ce8de3b8264609ae0c4bb873f62716.r2.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
location: https://t2.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://microsoft.com&size=16
x-content-type-options: nosniff
server: sffe
content-length: 333
x-xss-protection: 0
date: Tue, 07 May 2024 08:13:33 GMT
expires: Tue, 07 May 2024 08:43:33 GMT
cache-control: public, max-age=1800
content-type: text/html; charset=UTF-8
age: 1453
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

code.jquery.com/jquery-3.2.1.min.js

151.101.2.137

200 OK

30 kB

URL GET HTTP/2
code.jquery.com/jquery-3.2.1.min.js
IP
151.101.2.137:443
ASN
#54113 FASTLY

Requested by
https://pub-04ce8de3b8264609ae0c4bb873f62716.r2.dev/ekiud.html#jeff.bezoz@spacex.com
Certificate
IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (32058)
Size
30 kB (30125 bytes)
Hash
c9f5aeeca3ad37bf2aa006139b935f0a
1055018c28ab41087ef9ccefe411606893dabea2
87083882cc6015984eb0411a99d3981817f5dc5c90ba24f0940420c5548d82de

HTTP Headers

GET /jquery-3.2.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-04ce8de3b8264609ae0c4bb873f62716.r2.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-15283"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 07 May 2024 08:37:46 GMT
age: 9619632
x-served-by: cache-lga21971-LGA, cache-hel1410032-HEL
x-cache: HIT, HIT
x-cache-hits: 29, 150777
x-timer: S1715071066.130559,VS0,VE0
vary: Accept-Encoding
content-length: 30125
X-Firefox-Spdy: h2

www.google.com/s2/favicons?domain=microsoft.com

142.250.74.164

301 Moved Permanently

333 B

URL GET HTTP/2
www.google.com/s2/favicons?domain=microsoft.com
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
https://pub-04ce8de3b8264609ae0c4bb873f62716.r2.dev/ekiud.html#jeff.bezoz@spacex.com
Certificate
IssuerGoogle Trust Services LLC
Subjectwww.google.com
FingerprintC6:A2:DC:31:5A:53:FA:DD:55:71:A3:F4:DD:43:3D:16:71:B8:B3:99
ValidityTue, 16 Apr 2024 04:20:32 GMT - Tue, 09 Jul 2024 04:20:31 GMT

File type
HTML document, ASCII text, with CRLF, LF line terminators
Size
333 B (333 bytes)
Hash
c28d72b8d45d4620584507f1cefa3bdc
186a92810d10c19f7587732113cc76f5029a045c
1dff1bcaad427e72d8229c005a58f01b03f60d9ba1778dc2e11b1d5deb5ae22d

HTTP Headers

GET /s2/favicons?domain=microsoft.com HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-04ce8de3b8264609ae0c4bb873f62716.r2.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
location: https://t2.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://microsoft.com&size=16
x-content-type-options: nosniff
server: sffe
content-length: 333
x-xss-protection: 0
date: Tue, 07 May 2024 08:13:33 GMT
expires: Tue, 07 May 2024 08:43:33 GMT
cache-control: public, max-age=1800
content-type: text/html; charset=UTF-8
age: 1453
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

logo.clearbit.com/live.com

143.204.55.28

200 OK

618 B

URL GET HTTP/2
logo.clearbit.com/live.com
IP
143.204.55.28:443
ASN
#16509 AMAZON-02

Requested by
https://pub-04ce8de3b8264609ae0c4bb873f62716.r2.dev/ekiud.html#jeff.bezoz@spacex.com
Certificate
IssuerAmazon
Subjectclearbit.com
FingerprintCE:16:94:BB:21:1F:D1:5C:C5:B1:B0:D0:51:6C:C5:26:30:0D:59:72
ValidityMon, 22 Jan 2024 00:00:00 GMT - Tue, 18 Feb 2025 23:59:59 GMT

File type
PNG image data, 128 x 128, 8-bit/color RGB, non-interlaced
Size
618 B (618 bytes)
Hash
e6f4ae3faed9768872a85280b818ff9f
42c9623d1ea60726d8e1e75733d8d7b4ab336dc1
a1fab8fc3cf9fb9554b6d0fcab8236be7a22ceadec82ce0704cf79d3973c1139

HTTP Headers

GET /live.com HTTP/1.1
Host: logo.clearbit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-04ce8de3b8264609ae0c4bb873f62716.r2.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 618
access-control-allow-origin: *
cache-control: public, max-age=2592000
date: Tue, 09 Apr 2024 21:51:59 GMT
x-envoy-response-flags: -
server: Clearbit
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: BOa2EF7X0ic5cNcReU6Zyf-9wuE9vhCV8Qc6PCoOoGYIVH1vUa7-Hg==
age: 2371547
X-Firefox-Spdy: h2

www.google.com/s2/favicons?domain=spacex.com

142.250.74.164

301 Moved Permanently

330 B

URL GET HTTP/2
www.google.com/s2/favicons?domain=spacex.com
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
https://pub-04ce8de3b8264609ae0c4bb873f62716.r2.dev/ekiud.html#jeff.bezoz@spacex.com
Certificate
IssuerGoogle Trust Services LLC
Subjectwww.google.com
FingerprintC6:A2:DC:31:5A:53:FA:DD:55:71:A3:F4:DD:43:3D:16:71:B8:B3:99
ValidityTue, 16 Apr 2024 04:20:32 GMT - Tue, 09 Jul 2024 04:20:31 GMT

File type
HTML document, ASCII text, with CRLF, LF line terminators
Size
330 B (330 bytes)
Hash
106d4d899e6bedbee51425244dc011ed
24589399540eb5d101adb5663d2fb8081b03e9d4
18aa7b146ca0b5006a2b67dbe1154e38ed9804368c87d41c8891040c4ec17c1c

HTTP Headers

GET /s2/favicons?domain=spacex.com HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-04ce8de3b8264609ae0c4bb873f62716.r2.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 301 Moved Permanently
location: https://t3.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://spacex.com&size=16
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Tue, 07 May 2024 08:37:46 GMT
expires: Tue, 07 May 2024 09:07:46 GMT
cache-control: public, max-age=1800
server: sffe
content-length: 330
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.google.com/s2/favicons?domain=spacex.com

142.250.74.164

301 Moved Permanently

330 B

URL GET HTTP/2
www.google.com/s2/favicons?domain=spacex.com
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
https://pub-04ce8de3b8264609ae0c4bb873f62716.r2.dev/ekiud.html#jeff.bezoz@spacex.com
Certificate
IssuerGoogle Trust Services LLC
Subjectwww.google.com
FingerprintC6:A2:DC:31:5A:53:FA:DD:55:71:A3:F4:DD:43:3D:16:71:B8:B3:99
ValidityTue, 16 Apr 2024 04:20:32 GMT - Tue, 09 Jul 2024 04:20:31 GMT

File type
HTML document, ASCII text, with CRLF, LF line terminators
Size
330 B (330 bytes)
Hash
106d4d899e6bedbee51425244dc011ed
24589399540eb5d101adb5663d2fb8081b03e9d4
18aa7b146ca0b5006a2b67dbe1154e38ed9804368c87d41c8891040c4ec17c1c

HTTP Headers

GET /s2/favicons?domain=spacex.com HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-04ce8de3b8264609ae0c4bb873f62716.r2.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 301 Moved Permanently
location: https://t3.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://spacex.com&size=16
x-content-type-options: nosniff
server: sffe
content-length: 330
x-xss-protection: 0
date: Tue, 07 May 2024 08:37:46 GMT
expires: Tue, 07 May 2024 09:07:46 GMT
cache-control: public, max-age=1800
content-type: text/html; charset=UTF-8
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

t3.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://spacex.com&size=16

142.250.74.100

268 B

URL
t3.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://spacex.com&size=16
IP
142.250.74.100:0
ASN
#15169 GOOGLE

File type
PNG image data, 16 x 16, 8-bit colormap, non-interlaced
Size
268 B (268 bytes)
Hash
ee71fac6dc94995bf028ba16c7704260
ab7aa76b63d688898758676732cdff8b4bca2b6b
e9a05e467740d15b12a72dbeb5ff1b4a35b087c0eaa2fc1fc6c05472b493d7bc

HTTP Headers

GET /faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://spacex.com&size=16 HTTP/1.1
Host: t3.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pub-04ce8de3b8264609ae0c4bb873f62716.r2.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-location: https://www.spacex.com/static/images/favicon.ico
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/media-favicon
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="media-favicon"
report-to: {"group":"media-favicon","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/media-favicon"}]}
content-length: 268
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 05 May 2024 06:59:04 GMT
expires: Sun, 12 May 2024 06:59:04 GMT
cache-control: public, max-age=604800
last-modified: Wed, 13 May 2020 03:07:53 GMT
content-type: image/png
age: 178722
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

t3.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://spacex.com&size=16

142.250.74.100

268 B

URL
t3.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://spacex.com&size=16
IP
142.250.74.100:0
ASN
#15169 GOOGLE

File type
PNG image data, 16 x 16, 8-bit colormap, non-interlaced
Size
268 B (268 bytes)
Hash
ee71fac6dc94995bf028ba16c7704260
ab7aa76b63d688898758676732cdff8b4bca2b6b
e9a05e467740d15b12a72dbeb5ff1b4a35b087c0eaa2fc1fc6c05472b493d7bc

HTTP Headers

GET /faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://spacex.com&size=16 HTTP/1.1
Host: t3.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pub-04ce8de3b8264609ae0c4bb873f62716.r2.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-location: https://www.spacex.com/static/images/favicon.ico
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/media-favicon
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="media-favicon"
report-to: {"group":"media-favicon","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/media-favicon"}]}
content-length: 268
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 05 May 2024 06:59:04 GMT
expires: Sun, 12 May 2024 06:59:04 GMT
cache-control: public, max-age=604800
last-modified: Wed, 13 May 2020 03:07:53 GMT
content-type: image/png
age: 178722
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

spacex.com/

20.141.12.33

301 Moved Permanently

0 B

URL GET HTTP/2
spacex.com/
IP
20.141.12.33:443
ASN
#8070 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://pub-04ce8de3b8264609ae0c4bb873f62716.r2.dev/ekiud.html#jeff.bezoz@spacex.com
Certificate
IssuerDigiCert Inc
Subjectwww.spacex.com
Fingerprint91:8A:95:24:B7:7C:35:17:83:62:E1:0D:B5:F4:AC:93:5E:0B:47:56
ValidityWed, 01 Nov 2023 00:00:00 GMT - Tue, 05 Nov 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: spacex.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-04ce8de3b8264609ae0c4bb873f62716.r2.dev/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
cache-control: public,max-age=60,must-revalidate
location: https://www.spacex.com/
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-azure-ref: 0Wug5ZgAAAAAsQ6z1PIdrQbJZrkrChB0dcGh4MDQtZmR2Mi04NDk2NDY1NjVkLXI2NHRxAGM3NmUzYmE1LWNjZmUtNDZhNC1hYTI1LWQzMGQwODkyOTA4YQ==
date: Tue, 07 May 2024 08:37:46 GMT
content-length: 0
X-Firefox-Spdy: h2

www.spacex.com/fix.css

20.140.151.75

200 OK

81 B

URL GET HTTP/2
www.spacex.com/fix.css
IP
20.140.151.75:443
ASN
#8070 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://www.spacex.com/
Certificate
IssuerDigiCert Inc
Subjectwww.spacex.com
Fingerprint91:8A:95:24:B7:7C:35:17:83:62:E1:0D:B5:F4:AC:93:5E:0B:47:56
ValidityWed, 01 Nov 2023 00:00:00 GMT - Tue, 05 Nov 2024 23:59:59 GMT

File type
ASCII text
Size
81 B (81 bytes)
Hash
36e6ea08146cc53876f72ed1696ba8d8
5f5a2bd814cb0c3ef0cd0ce632d9a0d0c1becbb2
a8c525b164789765e242966aa3ca261f9b6c554dd6e27bacc6c344b50214bd29

HTTP Headers

GET /fix.css HTTP/1.1
Host: www.spacex.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.spacex.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 07 May 2024 08:37:48 GMT
content-type: text/css
content-length: 81
last-modified: Fri, 12 Jan 2024 17:15:17 GMT
etag: "0x8DC13920C8F14E0"
x-ms-request-id: 70349b63-f01e-00a1-4e2b-9ef109000000
x-ms-version: 2018-03-28
x-azure-ref: 20240507T083748Z-16dff6d9b57nx2pvmnk96a1u9c0000000cd00000000016zy
x-cache: TCP_HIT
x-fd-int-roxy-purgeid: 741104
cache-control: public,max-age=60,must-revalidate
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

www.spacex.com/fonts/D-DIN.woff2

20.140.151.75

200 OK

21 kB

URL GET HTTP/2
www.spacex.com/fonts/D-DIN.woff2
IP
20.140.151.75:443
ASN
#8070 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://www.spacex.com/
Certificate
IssuerDigiCert Inc
Subjectwww.spacex.com
Fingerprint91:8A:95:24:B7:7C:35:17:83:62:E1:0D:B5:F4:AC:93:5E:0B:47:56
ValidityWed, 01 Nov 2023 00:00:00 GMT - Tue, 05 Nov 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 20744, version 1.0
Size
21 kB (20744 bytes)
Hash
513ab2a5980be8e2c2ec7353e918f20b
6644c16230456b53823e48fd218cab88fb9618e3
41b210fad6e9eaa120e032bb945a2e4cf30dece4de3657ec0dc42732ba472740

HTTP Headers

GET /fonts/D-DIN.woff2 HTTP/1.1
Host: www.spacex.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.spacex.com/style.min.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 07 May 2024 08:37:49 GMT
content-type: font/woff2
content-length: 20744
last-modified: Fri, 12 Jan 2024 17:15:17 GMT
etag: "0x8DC13920CB2C44C"
x-ms-request-id: 7034e56d-f01e-00a1-502b-9ef109000000
x-ms-version: 2018-03-28
x-azure-ref: 20240507T083749Z-16dff6d9b57nx2pvmnk96a1u9c0000000cd0000000001706
x-cache: TCP_HIT
x-fd-int-roxy-purgeid: 741104
cache-control: public,max-age=60,must-revalidate
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

www.spacex.com/fonts/D-DIN-Bold.woff2

20.140.151.75

200 OK

22 kB

URL GET HTTP/2
www.spacex.com/fonts/D-DIN-Bold.woff2
IP
20.140.151.75:443
ASN
#8070 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://www.spacex.com/
Certificate
IssuerDigiCert Inc
Subjectwww.spacex.com
Fingerprint91:8A:95:24:B7:7C:35:17:83:62:E1:0D:B5:F4:AC:93:5E:0B:47:56
ValidityWed, 01 Nov 2023 00:00:00 GMT - Tue, 05 Nov 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 22052, version 1.0
Size
22 kB (22052 bytes)
Hash
fb679b2531990a9222182c552ad691ee
244a9f351df88d3ae932bdaa40aa1d7feb0f85b5
9007288706aafe9616f96be4e856fe91722056c40ea579bbfcd95993a6e82e34

HTTP Headers

GET /fonts/D-DIN-Bold.woff2 HTTP/1.1
Host: www.spacex.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.spacex.com/style.min.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 07 May 2024 08:37:49 GMT
content-type: font/woff2
content-length: 22052
last-modified: Fri, 12 Jan 2024 17:15:17 GMT
etag: "0x8DC13920CAFDE84"
x-ms-request-id: 3760d1e7-001e-0078-132b-9e5725000000
x-ms-version: 2018-03-28
x-azure-ref: 20240507T083749Z-16dff6d9b57nx2pvmnk96a1u9c0000000cd0000000001707
x-cache: TCP_HIT
x-fd-int-roxy-purgeid: 741104
cache-control: public,max-age=60,must-revalidate
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

www.spacex.com/fonts/D-DIN.woff2

20.140.151.75

200 OK

21 kB

URL GET HTTP/2
www.spacex.com/fonts/D-DIN.woff2
IP
20.140.151.75:443
ASN
#8070 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://www.spacex.com/
Certificate
IssuerDigiCert Inc
Subjectwww.spacex.com
Fingerprint91:8A:95:24:B7:7C:35:17:83:62:E1:0D:B5:F4:AC:93:5E:0B:47:56
ValidityWed, 01 Nov 2023 00:00:00 GMT - Tue, 05 Nov 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 20744, version 1.0
Size
21 kB (20744 bytes)
Hash
513ab2a5980be8e2c2ec7353e918f20b
6644c16230456b53823e48fd218cab88fb9618e3
41b210fad6e9eaa120e032bb945a2e4cf30dece4de3657ec0dc42732ba472740

HTTP Headers

GET /fonts/D-DIN.woff2 HTTP/1.1
Host: www.spacex.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.spacex.com/style.min.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 07 May 2024 08:37:49 GMT
content-type: font/woff2
content-length: 20744
last-modified: Fri, 12 Jan 2024 17:15:17 GMT
etag: "0x8DC13920CB2C44C"
x-ms-request-id: 7034e56d-f01e-00a1-502b-9ef109000000
x-ms-version: 2018-03-28
x-azure-ref: 20240507T083749Z-16dff6d9b57nx2pvmnk96a1u9c0000000cd0000000001708
x-cache: TCP_HIT
x-fd-int-roxy-purgeid: 741104
cache-control: public,max-age=60,must-revalidate
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

content.spacex.com/api/spacex-website/homepage-tiles

20.140.151.75

200 OK

19 kB

URL GET HTTP/2
content.spacex.com/api/spacex-website/homepage-tiles
IP
20.140.151.75:443
ASN
#8070 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://www.spacex.com/
Certificate
IssuerDigiCert Inc
Subjectcontent.spacex.com
Fingerprint40:A1:F1:14:88:0E:BE:C4:D9:2E:C0:33:73:7A:DF:6F:B2:C6:DA:91
ValidityWed, 01 Nov 2023 00:00:00 GMT - Sun, 17 Nov 2024 23:59:59 GMT

File type
JSON text data
Size
19 kB (19388 bytes)
Hash
69adb8c10513608a30d04b748091eb61
87f447755c4085182f95f77e1b1e526cfc40e377
f11a381764541f33f2d599fdb3bc440a9c7b8c393472b717a3fcf73061e29956

HTTP Headers

GET /api/spacex-website/homepage-tiles HTTP/1.1
Host: content.spacex.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.spacex.com
DNT: 1
Connection: keep-alive
Referer: https://www.spacex.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 07 May 2024 08:37:50 GMT
content-type: application/json; charset=utf-8
content-length: 19388
content-security-policy: connect-src 'self' https:;img-src 'self' data: blob: https://sxcontent9668.blob.core.usgovcloudapi.net https://sxcontent9668.azureedge.us;media-src 'self' data: blob: https://sxcontent9668.blob.core.usgovcloudapi.net https://sxcontent9668.azureedge.us;default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self';object-src 'none';script-src 'self';script-src-attr 'none';style-src 'self' https: 'unsafe-inline'
referrer-policy: no-referrer
strict-transport-security: max-age=31536000; includeSubDomainsmax-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
vary: Origin
access-control-allow-origin: https://www.spacex.com
access-control-allow-credentials: true
x-azure-ref: 20240507T083750Z-16dff6d9b576jscctc6m3nb2kc0000000ch00000000007rn
cache-control: public,max-age=60,must-revalidate
x-fd-int-roxy-purgeid: 741863
x-cache: TCP_HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

www.spacex.com/static/core-min.js

20.140.151.75

200 OK

132 kB

URL GET HTTP/2
www.spacex.com/static/core-min.js
IP
20.140.151.75:443
ASN
#8070 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://www.spacex.com/
Certificate
IssuerDigiCert Inc
Subjectwww.spacex.com
Fingerprint91:8A:95:24:B7:7C:35:17:83:62:E1:0D:B5:F4:AC:93:5E:0B:47:56
ValidityWed, 01 Nov 2023 00:00:00 GMT - Tue, 05 Nov 2024 23:59:59 GMT

File type
ASCII text, with very long lines (11891), with no line terminators
Size
132 kB (132533 bytes)
Hash
4ce2cc269e7b8eb686268b6bdf86b7d6
23aa7d34654d28f17433f37c59d7bccbe4152485
c6eaaec855ee18c072c1b1dc58763c081292912b6769512af3bec3c4c4c00927

HTTP Headers

GET /static/core-min.js HTTP/1.1
Host: www.spacex.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.spacex.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 07 May 2024 08:37:50 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Fri, 15 Mar 2024 22:11:46 GMT
etag: W/"0x8DC453CE79CC977"
x-ms-request-id: 70349ef1-f01e-00a1-772b-9ef109000000
x-ms-version: 2018-03-28
x-azure-ref: 20240507T083750Z-16dff6d9b57nx2pvmnk96a1u9c0000000cd000000000170d
x-cache: TCP_HIT
x-fd-int-roxy-purgeid: 741104
content-encoding: br
cache-control: public,max-age=60,must-revalidate
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2

sxcontent9668.azureedge.us/cms-assets/assets/Flight_3_Website_Desktop_2_8cd1983689.jpg

20.140.56.69

200 OK

127 kB

URL GET HTTP/2
sxcontent9668.azureedge.us/cms-assets/assets/Flight_3_Website_Desktop_2_8cd1983689.jpg
IP
20.140.56.69:443
ASN
#8070 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://www.spacex.com/
Certificate
IssuerDigiCert Inc
Subject*.azureedge.us
FingerprintE2:B0:AB:3B:ED:56:52:21:7F:88:9D:C8:67:3C:1B:63:CE:D3:90:CD
ValidityMon, 01 Apr 2024 00:00:00 GMT - Tue, 01 Apr 2025 23:59:59 GMT

File type
JPEG image data, baseline, precision 8, 2600x1200, components 3
Size
127 kB (127416 bytes)
Hash
e3a0d8bea2bfafd014fb142189a391ad
e7a2e5d1a4806b52f0799328c7d0f9262388f3e7
572ec1a80909e325a961fc36f3c0629dc1d47864546b5d7446206a94d8f794f9

HTTP Headers

GET /cms-assets/assets/Flight_3_Website_Desktop_2_8cd1983689.jpg HTTP/1.1
Host: sxcontent9668.azureedge.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.spacex.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 07 May 2024 08:37:51 GMT
content-type: image/jpeg
content-length: 127416
last-modified: Thu, 14 Mar 2024 17:42:57 GMT
etag: "0x8DC444E2FA61B0B"
x-ms-request-id: fbe2147b-901e-0062-5e97-9c7829000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
x-azure-ref: 20240507T083751Z-174b5c5f49bvldn88k9fhu2wcw00000009a0000000000dku
cache-control: public, max-age=43200
x-fd-int-roxy-purgeid: 0
x-cache: TCP_HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

sxcontent9668.azureedge.us/cms-assets/assets/make_life_multiplanetary_desktop_3fa7cff73c.jpg

20.140.56.69

200 OK

178 kB

URL GET HTTP/2
sxcontent9668.azureedge.us/cms-assets/assets/make_life_multiplanetary_desktop_3fa7cff73c.jpg
IP
20.140.56.69:443
ASN
#8070 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://www.spacex.com/
Certificate
IssuerDigiCert Inc
Subject*.azureedge.us
FingerprintE2:B0:AB:3B:ED:56:52:21:7F:88:9D:C8:67:3C:1B:63:CE:D3:90:CD
ValidityMon, 01 Apr 2024 00:00:00 GMT - Tue, 01 Apr 2025 23:59:59 GMT

File type
JPEG image data, baseline, precision 8, 2600x1200, components 3
Size
178 kB (177962 bytes)
Hash
a4263259d35eb13738e51dd03c2b5a77
c2f3e4cf55b3913c77c7238453d370b10fe2a2ec
4c0f216c233e6642591eb2b33ee231b94ecf433d0b54301f927655fa86b11319

HTTP Headers

GET /cms-assets/assets/make_life_multiplanetary_desktop_3fa7cff73c.jpg HTTP/1.1
Host: sxcontent9668.azureedge.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.spacex.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 07 May 2024 08:37:51 GMT
content-type: image/jpeg
content-length: 177962
last-modified: Sat, 06 Apr 2024 17:11:47 GMT
etag: "0x8DC565CA4577D09"
x-ms-request-id: aaa0b25a-901e-00b9-0b8e-9cbe14000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
x-azure-ref: 20240507T083751Z-174b5c5f49bvldn88k9fhu2wcw00000009a0000000000dkr
cache-control: public, max-age=43200
x-fd-int-roxy-purgeid: 0
x-cache: TCP_HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

sxcontent9668.azureedge.us/cms-assets/assets/Digital_Globe_1_SW_Hill_Horiz_9707_Desktop_11a0425f53.jpg

20.140.56.69

200 OK

181 kB

URL GET HTTP/2
sxcontent9668.azureedge.us/cms-assets/assets/Digital_Globe_1_SW_Hill_Horiz_9707_Desktop_11a0425f53.jpg
IP
20.140.56.69:443
ASN
#8070 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://www.spacex.com/
Certificate
IssuerDigiCert Inc
Subject*.azureedge.us
FingerprintE2:B0:AB:3B:ED:56:52:21:7F:88:9D:C8:67:3C:1B:63:CE:D3:90:CD
ValidityMon, 01 Apr 2024 00:00:00 GMT - Tue, 01 Apr 2025 23:59:59 GMT

File type
JPEG image data, baseline, precision 8, 2600x1200, components 3
Size
181 kB (180966 bytes)
Hash
ac810e530a218e341fb2faf788427c1f
e1e2aed0df71c2c98bdf0c070123de895855e1a3
d5b0a6594fbc706e27addf59c7021d3f726c87dc0f1f23b20990767eeaceb65b

HTTP Headers

GET /cms-assets/assets/Digital_Globe_1_SW_Hill_Horiz_9707_Desktop_11a0425f53.jpg HTTP/1.1
Host: sxcontent9668.azureedge.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.spacex.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 07 May 2024 08:37:51 GMT
content-type: image/jpeg
content-length: 180966
last-modified: Thu, 02 May 2024 20:40:58 GMT
etag: "0x8DC6AE82C37D574"
x-ms-request-id: 42d9a2dd-801e-000c-2ed1-9c2d06000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
x-azure-ref: 20240507T083751Z-174b5c5f49bvldn88k9fhu2wcw00000009a0000000000dkt
cache-control: public, max-age=43200
x-fd-int-roxy-purgeid: 0
x-cache: TCP_HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

www.spacex.com/static/deps-min.js

20.140.151.75

200 OK

444 kB

URL GET HTTP/2
www.spacex.com/static/deps-min.js
IP
20.140.151.75:443
ASN
#8070 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://www.spacex.com/
Certificate
IssuerDigiCert Inc
Subjectwww.spacex.com
Fingerprint91:8A:95:24:B7:7C:35:17:83:62:E1:0D:B5:F4:AC:93:5E:0B:47:56
ValidityWed, 01 Nov 2023 00:00:00 GMT - Tue, 05 Nov 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
444 kB (443646 bytes)
Hash
8dbe84906944b0bd91c2439dc4ec593f
04193ca735b9ed5fb3c0b0e032b9f4ae521d466f
7660be2c5b87f7968b0ac40bc3c3ef94b75fa602ea8ca7f02c61921765ef1cbc

HTTP Headers

GET /static/deps-min.js HTTP/1.1
Host: www.spacex.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.spacex.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 07 May 2024 08:37:48 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Fri, 15 Mar 2024 22:11:46 GMT
etag: W/"0x8DC453CE7BDE128"
x-ms-request-id: d0f93c6a-e01e-0050-642b-9e209a000000
x-ms-version: 2018-03-28
x-azure-ref: 20240507T083748Z-16dff6d9b57nx2pvmnk96a1u9c0000000cd0000000001700
x-cache: TCP_HIT
x-fd-int-roxy-purgeid: 741104
content-encoding: br
cache-control: public,max-age=60,must-revalidate
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2

pub-04ce8de3b8264609ae0c4bb873f62716.r2.dev/ekiud.html

104.18.2.35

200 OK

14 kB

URL GET HTTP/1.1
pub-04ce8de3b8264609ae0c4bb873f62716.r2.dev/ekiud.html
IP
104.18.2.35:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pub-04ce8de3b8264609ae0c4bb873f62716.r2.dev/ekiud.html#jeff.bezoz@spacex.com
Certificate
IssuerLet's Encrypt
Subject*.r2.dev
Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0
ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT

File type

Size
14 kB (13921 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Generic/Spear Phishing

HTTP Headers

GET /ekiud.html HTTP/1.1
Host: pub-04ce8de3b8264609ae0c4bb873f62716.r2.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-04ce8de3b8264609ae0c4bb873f62716.r2.dev/ekiud.html
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 07 May 2024 08:37:46 GMT
Content-Type: text/html
Content-Length: 13921
Connection: keep-alive
Accept-Ranges: bytes
ETag: "b9b34d3f7768a6be979f57426bfc7118"
Last-Modified: Tue, 07 May 2024 03:15:48 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87ffe3d23dbc56c5-OSL

sxcontent9668.azureedge.us/cms-assets/assets/Star6_57_050624_IMG_9926_desktop_ac730ccb96.jpg

20.140.56.69

200 OK

343 kB

URL GET HTTP/2
sxcontent9668.azureedge.us/cms-assets/assets/Star6_57_050624_IMG_9926_desktop_ac730ccb96.jpg
IP
20.140.56.69:443
ASN
#8070 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://www.spacex.com/
Certificate
IssuerDigiCert Inc
Subject*.azureedge.us
FingerprintE2:B0:AB:3B:ED:56:52:21:7F:88:9D:C8:67:3C:1B:63:CE:D3:90:CD
ValidityMon, 01 Apr 2024 00:00:00 GMT - Tue, 01 Apr 2025 23:59:59 GMT

File type
JPEG image data, baseline, precision 8, 2600x1200, components 3
Size
343 kB (342802 bytes)
Hash
f0844eb9edb41f19a1a4771b968978df
b38be13e259cb52ba4f3d769a43be0e07e49d3b5
fa5c17574e692cc57f371f678769f24a19774b994c46522c1dadc76e4f8ee3aa

HTTP Headers

GET /cms-assets/assets/Star6_57_050624_IMG_9926_desktop_ac730ccb96.jpg HTTP/1.1
Host: sxcontent9668.azureedge.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.spacex.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 07 May 2024 08:37:51 GMT
content-type: image/jpeg
content-length: 342802
last-modified: Mon, 06 May 2024 19:30:25 GMT
etag: "0x8DC6E02FA80A12B"
x-ms-request-id: 5ddba9f4-301e-00fd-08ec-9f342b000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
x-azure-ref: 20240507T083751Z-174b5c5f49bvldn88k9fhu2wcw00000009a0000000000dks
cache-control: public, max-age=43200
x-fd-int-roxy-purgeid: 0
x-cache: TCP_HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

t3.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://spacex.com&size=16

142.250.74.100

200 OK

268 B

URL GET HTTP/2
t3.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://spacex.com&size=16
IP
142.250.74.100:443
ASN
#15169 GOOGLE

Requested by
https://pub-04ce8de3b8264609ae0c4bb873f62716.r2.dev/ekiud.html#jeff.bezoz@spacex.com
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
PNG image data, 16 x 16, 8-bit colormap, non-interlaced
Size
268 B (268 bytes)
Hash
ee71fac6dc94995bf028ba16c7704260
ab7aa76b63d688898758676732cdff8b4bca2b6b
e9a05e467740d15b12a72dbeb5ff1b4a35b087c0eaa2fc1fc6c05472b493d7bc

HTTP Headers

GET /faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://spacex.com&size=16 HTTP/1.1
Host: t3.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pub-04ce8de3b8264609ae0c4bb873f62716.r2.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-location: https://www.spacex.com/static/images/favicon.ico
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/media-favicon
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="media-favicon"
report-to: {"group":"media-favicon","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/media-favicon"}]}
content-length: 268
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 05 May 2024 06:59:04 GMT
expires: Sun, 12 May 2024 06:59:04 GMT
cache-control: public, max-age=604800
last-modified: Wed, 13 May 2020 03:07:53 GMT
content-type: image/png
age: 178722
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.spacex.com/

20.140.151.75

200 OK

9.6 kB

URL GET HTTP/2
www.spacex.com/
IP
20.140.151.75:443
ASN
#8070 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://pub-04ce8de3b8264609ae0c4bb873f62716.r2.dev/ekiud.html#jeff.bezoz@spacex.com
Certificate
IssuerDigiCert Inc
Subjectwww.spacex.com
Fingerprint91:8A:95:24:B7:7C:35:17:83:62:E1:0D:B5:F4:AC:93:5E:0B:47:56
ValidityWed, 01 Nov 2023 00:00:00 GMT - Tue, 05 Nov 2024 23:59:59 GMT

File type
HTML document, ASCII text, with very long lines (10354), with no line terminators
Size
9.6 kB (9647 bytes)
Hash
26cb80a41abdf93513e949d11c4bff90
273bead371e1127b07c45b1b0023bee1bacfe129
7724e15dcfba73de70ed30250f98fcaeff4de7b723d4675cb881eccd381d82e5

HTTP Headers

GET / HTTP/1.1
Host: www.spacex.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pub-04ce8de3b8264609ae0c4bb873f62716.r2.dev/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 07 May 2024 08:37:48 GMT
content-type: text/html
vary: Accept-Encoding
last-modified: Sat, 04 May 2024 13:59:06 GMT
etag: W/"0x8DC6C425CE50AEE"
x-ms-request-id: 466aa4d9-c01e-0065-222b-9e8ecf000000
x-ms-version: 2018-03-28
x-azure-ref: 20240507T083748Z-16dff6d9b57nx2pvmnk96a1u9c0000000cd00000000016zw
x-cache: TCP_HIT
x-fd-int-roxy-purgeid: 741104
content-encoding: br
cache-control: public,max-age=60,must-revalidate
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2

www.spacex.com/static/player-min.js

20.140.151.75

200 OK

118 kB

URL GET HTTP/2
www.spacex.com/static/player-min.js
IP
20.140.151.75:443
ASN
#8070 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://www.spacex.com/
Certificate
IssuerDigiCert Inc
Subjectwww.spacex.com
Fingerprint91:8A:95:24:B7:7C:35:17:83:62:E1:0D:B5:F4:AC:93:5E:0B:47:56
ValidityWed, 01 Nov 2023 00:00:00 GMT - Tue, 05 Nov 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
118 kB (117737 bytes)
Hash
03a5e88aadee935e5bb2f01d546c9d29
557150e8f8f06ba90460df268e75de7486b5faa8
a9d4789c321f621a6907457c8c81cfce1313e06af0488794136c26776507c087

HTTP Headers

GET /static/player-min.js HTTP/1.1
Host: www.spacex.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.spacex.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 07 May 2024 08:37:48 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 06 Feb 2024 00:33:36 GMT
etag: W/"0x8DC26AB42110974"
x-ms-request-id: 8c1934be-001e-003c-732b-9e8b49000000
x-ms-version: 2018-03-28
x-azure-ref: 20240507T083748Z-16dff6d9b57nx2pvmnk96a1u9c0000000cd0000000001701
x-cache: TCP_HIT
x-fd-int-roxy-purgeid: 741104
content-encoding: br
cache-control: public,max-age=60,must-revalidate
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2

t2.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://microsoft.com&size=16

0.0.0.0

0 B

URL GET
t2.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://microsoft.com&size=16
IP
0.0.0.0:0
ASN
#0

Requested by
https://pub-04ce8de3b8264609ae0c4bb873f62716.r2.dev/ekiud.html#jeff.bezoz@spacex.com

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://microsoft.com&size=16 HTTP/1.1
Host: t2.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pub-04ce8de3b8264609ae0c4bb873f62716.r2.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

www.spacex.com/style.min.css

20.140.151.75

200 OK

93 kB

URL GET HTTP/2
www.spacex.com/style.min.css
IP
20.140.151.75:443
ASN
#8070 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://www.spacex.com/
Certificate
IssuerDigiCert Inc
Subjectwww.spacex.com
Fingerprint91:8A:95:24:B7:7C:35:17:83:62:E1:0D:B5:F4:AC:93:5E:0B:47:56
ValidityWed, 01 Nov 2023 00:00:00 GMT - Tue, 05 Nov 2024 23:59:59 GMT

File type
ASCII text, with very long lines (44233)
Size
93 kB (93337 bytes)
Hash
82b3fdb2750ff27cbd4580b505c5a9f1
62e94fe76a6d0b966faf3521ee1d90c45132c6b1
942a3558b6d1527f1b97e487c735ef7fe10a12edd296ea3c6f5cb107d57c5a2d

HTTP Headers

GET /style.min.css HTTP/1.1
Host: www.spacex.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.spacex.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 07 May 2024 08:37:48 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Fri, 15 Mar 2024 22:11:46 GMT
etag: W/"0x8DC453CE7A553B6"
x-ms-request-id: f327af17-101e-0028-242b-9e482d000000
x-ms-version: 2018-03-28
x-azure-ref: 20240507T083748Z-16dff6d9b57nx2pvmnk96a1u9c0000000cd00000000016zx
x-cache: TCP_HIT
x-fd-int-roxy-purgeid: 741104
content-encoding: br
cache-control: public,max-age=60,must-revalidate
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2

www.spacex.com/static/home-page-min.js

20.140.151.75

200 OK

3.5 kB

URL GET HTTP/2
www.spacex.com/static/home-page-min.js
IP
20.140.151.75:443
ASN
#8070 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://www.spacex.com/
Certificate
IssuerDigiCert Inc
Subjectwww.spacex.com
Fingerprint91:8A:95:24:B7:7C:35:17:83:62:E1:0D:B5:F4:AC:93:5E:0B:47:56
ValidityWed, 01 Nov 2023 00:00:00 GMT - Tue, 05 Nov 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (3688), with no line terminators
Size
3.5 kB (3515 bytes)
Hash
b7eac4d8f6560a108517dd5cd84c291e
1816bede2653524113580d65bb2d51a6f3beec68
8809000e6a8417545d093fd938253c604a79a58dd11bb8c3f8a9cc98da3bdcae

HTTP Headers

GET /static/home-page-min.js HTTP/1.1
Host: www.spacex.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.spacex.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 07 May 2024 08:37:48 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Fri, 15 Mar 2024 22:11:46 GMT
etag: W/"0x8DC453CE79FFD52"
x-ms-request-id: 5f2a7f0b-001e-0051-592b-9e2167000000
x-ms-version: 2018-03-28
x-azure-ref: 20240507T083748Z-16dff6d9b57nx2pvmnk96a1u9c0000000cd00000000016zz
x-cache: TCP_HIT
x-fd-int-roxy-purgeid: 741104
content-encoding: br
cache-control: public,max-age=60,must-revalidate
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2

sxcontent9668.azureedge.us/cms-assets/assets/Eva_Suit_Desktop_alternate_1cf9bae18e.jpg

20.140.56.69

200 OK

128 kB

URL GET HTTP/2
sxcontent9668.azureedge.us/cms-assets/assets/Eva_Suit_Desktop_alternate_1cf9bae18e.jpg
IP
20.140.56.69:443
ASN
#8070 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://www.spacex.com/
Certificate
IssuerDigiCert Inc
Subject*.azureedge.us
FingerprintE2:B0:AB:3B:ED:56:52:21:7F:88:9D:C8:67:3C:1B:63:CE:D3:90:CD
ValidityMon, 01 Apr 2024 00:00:00 GMT - Tue, 01 Apr 2025 23:59:59 GMT

File type
JPEG image data, baseline, precision 8, 2600x1200, components 3
Size
128 kB (127685 bytes)
Hash
eaf67aafec1898c9ff4380cb9a149255
3fdc6b9b7cd270ddcc336ed60c304e1fe8d184cf
e8a4a2b9e1d5d9622eafedc5ff9638c0ce58e0ec41f2d74ddf1a708635c2c171

HTTP Headers

GET /cms-assets/assets/Eva_Suit_Desktop_alternate_1cf9bae18e.jpg HTTP/1.1
Host: sxcontent9668.azureedge.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.spacex.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 07 May 2024 08:37:51 GMT
content-type: image/jpeg
content-length: 127685
last-modified: Sat, 04 May 2024 04:20:15 GMT
etag: "0x8DC6BF17FDC84BF"
x-ms-request-id: d2d4cef8-901e-005d-6d2c-9eb08a000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
x-azure-ref: 20240507T083751Z-174b5c5f49bvldn88k9fhu2wcw00000009a0000000000dkq
cache-control: public, max-age=43200
x-fd-int-roxy-purgeid: 0
x-cache: TCP_HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

t3.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://spacex.com&size=16

142.250.74.100

200 OK

268 B

URL GET HTTP/2
t3.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://spacex.com&size=16
IP
142.250.74.100:443
ASN
#15169 GOOGLE

Requested by
https://pub-04ce8de3b8264609ae0c4bb873f62716.r2.dev/ekiud.html#jeff.bezoz@spacex.com
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
PNG image data, 16 x 16, 8-bit colormap, non-interlaced
Size
268 B (268 bytes)
Hash
ee71fac6dc94995bf028ba16c7704260
ab7aa76b63d688898758676732cdff8b4bca2b6b
e9a05e467740d15b12a72dbeb5ff1b4a35b087c0eaa2fc1fc6c05472b493d7bc

HTTP Headers

GET /faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://spacex.com&size=16 HTTP/1.1
Host: t3.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pub-04ce8de3b8264609ae0c4bb873f62716.r2.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-location: https://www.spacex.com/static/images/favicon.ico
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/media-favicon
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="media-favicon"
report-to: {"group":"media-favicon","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/media-favicon"}]}
content-length: 268
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 05 May 2024 06:59:04 GMT
expires: Sun, 12 May 2024 06:59:04 GMT
cache-control: public, max-age=604800
last-modified: Wed, 13 May 2020 03:07:53 GMT
content-type: image/png
age: 178722
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

t2.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://microsoft.com&size=16

0.0.0.0

0 B

URL GET
t2.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://microsoft.com&size=16
IP
0.0.0.0:0
ASN
#0

Requested by
https://pub-04ce8de3b8264609ae0c4bb873f62716.r2.dev/ekiud.html#jeff.bezoz@spacex.com
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://microsoft.com&size=16 HTTP/1.1
Host: t2.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pub-04ce8de3b8264609ae0c4bb873f62716.r2.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

pub-04ce8de3b8264609ae0c4bb873f62716.r2.dev/ekiud.html

104.18.2.35

200 OK

14 kB

URL User Request GET HTTP/1.1
pub-04ce8de3b8264609ae0c4bb873f62716.r2.dev/ekiud.html
IP
104.18.2.35:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerLet's Encrypt
Subject*.r2.dev
Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0
ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT

File type

Size
14 kB (13921 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Generic/Spear Phishing

HTTP Headers

GET /ekiud.html HTTP/1.1
Host: pub-04ce8de3b8264609ae0c4bb873f62716.r2.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 07 May 2024 08:37:45 GMT
Content-Type: text/html
Content-Length: 13921
Connection: keep-alive
Accept-Ranges: bytes
ETag: "b9b34d3f7768a6be979f57426bfc7118"
Last-Modified: Tue, 07 May 2024 03:15:48 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87ffe3cd7c7056c5-OSL

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (7)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (36)

URL

IP

ASN

File type