Report - www.barclaysplsweepstakes.com/AmericanAirlines/

Report Overview

Submitted URL
www.barclaysplsweepstakes.com/AmericanAirlines/
IP
13.107.246.53
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Submitted
2024-05-04 08:05:46
Access
public
Website Title
Barclays Ultimate Premier League Experience Partner Sweepstakes
Final URL
www.barclaysplsweepstakes.com/AmericanAirlines/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
22

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
use.fontawesome.com	942	2012-10-18	2017-01-30	2024-05-02	479 B	987 kB	172.67.142.245
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17	2024-05-03	497 B	7.7 kB	104.17.25.14
cdn.jsdelivr.net	439	2012-05-16	2012-09-30	2024-05-03	451 B	3.4 kB	151.101.193.229
wurfl.io	17880	2014-03-25	2014-04-09	2024-04-26	405 B	2.2 kB	13.51.164.40
www.googletagmanager.com	75	2011-11-11	2013-05-22	2024-05-03	436 B	102 kB	142.250.74.136
use.typekit.net	494	2010-08-02	2012-07-05	2024-05-02	429 B	1.2 kB	23.36.76.122
code.jquery.com	634	2005-12-10	2012-05-21	2024-05-03	467 B	32 kB	151.101.130.137
www.barclaysplsweepstakes.com	unknown	unknown	No data	No data	8.2 kB	194 kB	13.107.213.53
upcdn.io	unknown	2022-03-20	2022-03-21	2024-04-23	1.0 kB	128 kB	143.204.55.60
p.typekit.net	620	2010-08-02	2012-05-23	2024-05-03	477 B	338 B	23.36.76.96
stackpath.bootstrapcdn.com	2467	2012-05-25	2018-06-15	2024-05-03	1.0 kB	90 kB	104.18.11.207

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-05-04	medium	barclaysplsweepstakes.com	Sinkholed
2024-05-04	medium	barclaysplsweepstakes.com	Sinkholed
2024-05-04	medium	barclaysplsweepstakes.com	Sinkholed
2024-05-04	medium	barclaysplsweepstakes.com	Sinkholed
2024-05-04	medium	barclaysplsweepstakes.com	Sinkholed
2024-05-04	medium	barclaysplsweepstakes.com	Sinkholed
2024-05-04	medium	barclaysplsweepstakes.com	Sinkholed
2024-05-04	medium	barclaysplsweepstakes.com	Sinkholed
2024-05-04	medium	barclaysplsweepstakes.com	Sinkholed
2024-05-04	medium	barclaysplsweepstakes.com	Sinkholed
2024-05-04	medium	barclaysplsweepstakes.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (10)

	URL	Size	First Seen	Last Seen
	code.jquery.com/jquery-3.5.1.min.js	90 kB	2023-03-07	2024-05-23
Pretty URL code.jquery.com/jquery-3.5.1.min.js IP 151.101.130.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:01 Last Seen2024-05-23 08:51:01 Times Seen146759 Hash dc5e7f18c8d36ac1d3d4753a87c98d0a c8e1c8b386dc5b7a9184c763c88d19a346eb3342 f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d Loading...

	stackpath.bootstrapcdn.com/bootstrap/4.2.1/js/bootstrap.min.js	56 kB	2023-03-07	2024-05-23
Pretty URL stackpath.bootstrapcdn.com/bootstrap/4.2.1/js/bootstrap.min.js IP 104.18.11.207 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:56 Last Seen2024-05-23 05:50:17 Times Seen2384 Hash 6895e8cd60b62646ce12426015888f58 de908c9ed184d74eb525fa7a30449b67fc3a1c14 eb795deda8983fa5310627c9584cf3f3b95d272567113500059018b3941cb267 Loading...

	use.fontawesome.com/releases/v5.3.1/js/all.js	986 kB	2023-03-07	2024-05-20
Pretty URL use.fontawesome.com/releases/v5.3.1/js/all.js IP 172.67.142.245 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:36 Last Seen2024-05-20 18:05:44 Times Seen282 Hash d0482db440697a659af4980d2e841891 d7ff2806086f5924e06910e90a79b44492b52450 8cb270b4d9485a93b31df98113fda8723ffc067fa7bfa90cedd47b76f7b10be1 Loading...

	www.barclaysplsweepstakes.com/AmericanAirlines/	0 B	2023-03-07	2024-05-23
Pretty URL www.barclaysplsweepstakes.com/AmericanAirlines/ IP 13.107.213.53 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-23 08:51:04 Times Seen38002161 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.barclaysplsweepstakes.com/AmericanAirlines/	739 B	2024-05-04	2024-05-04
Pretty URL www.barclaysplsweepstakes.com/AmericanAirlines/ IP 13.107.213.53 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-04 10:05:53 Last Seen2024-05-04 10:05:53 Times Seen1 Hash ad999a43e9c18e0b70ed980a8c7eab13 9b788ed1f74d7ebe130c92df869d439ede6b48ed de441d4393723dea6b09d2fca3cffefb790935badcc71385217721b7aba2b1f3 Loading...

	www.googletagmanager.com/gtag/js?id=G-8TPXSYHM2D	306 kB	2024-05-04	2024-05-04
Pretty URL www.googletagmanager.com/gtag/js?id=G-8TPXSYHM2D IP 142.250.74.136 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-04 10:05:53 Last Seen2024-05-04 10:05:54 Times Seen2 Hash 09474c859d4df03d725702b596d7d4f8 5c1972ffacf431c6ae0a895137d50c8710b8dc1c a33efa5403caa642cc9eaa6ec358cf1bb355a448be1a68b41bad478fe418ea2f Loading...

	www.barclaysplsweepstakes.com/AmericanAirlines/	0 B	2023-03-07	2024-05-23
Pretty URL www.barclaysplsweepstakes.com/AmericanAirlines/ IP 13.107.213.53 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-23 08:51:04 Times Seen38002161 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.6/umd/popper.min.js	21 kB	2023-03-07	2024-05-23
Pretty URL cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.6/umd/popper.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:56 Last Seen2024-05-23 05:50:17 Times Seen1585 Hash 7e58cd01528ac4394af369c152c17bc2 9496922c892ea80e86d868c4509610d61a1f2847 587c080125b135d29a931ed371e50ffc1a9641831c1087de2cd74532815f4560 Loading...

	cdn.jsdelivr.net/npm/es6-promise@4/dist/es6-promise.auto.min.js	6.5 kB	2023-03-07	2024-05-23
Pretty URL cdn.jsdelivr.net/npm/es6-promise@4/dist/es6-promise.auto.min.js IP 151.101.193.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18:55 Last Seen2024-05-23 00:56:31 Times Seen657 Hash 889f6a354b79c38bdf62a8792a65329d 34b3404aee23c330527201dc2c3b6e78a7655f51 5f1addaf2e9f5922aed63d802f2b8afe01c543ed81a7be99ad1e9fdd05c8e3b6 Loading...

	wurfl.io/wurfl.js	4.0 kB	2024-03-24	2024-05-22
Pretty URL wurfl.io/wurfl.js IP 13.51.164.40 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-24 12:36:23 Last Seen2024-05-22 17:11:58 Times Seen163 Hash 4e56ee18d87f62dc6297b5d332d1b081 63b4003113f47f2602ac99e828ebf7d615dac68f 2bf5cac174101bde02ebd7664e6dac3f41c3206a3aee299ca2153f4e96d5fd9e Loading...

HTTP Transactions (23)

URL IP Response Size

cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.6/umd/popper.min.js

104.17.25.14

200 OK

6.6 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.6/umd/popper.min.js
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.barclaysplsweepstakes.com/AmericanAirlines/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (20800)
Size
6.6 kB (6634 bytes)
Hash
7e58cd01528ac4394af369c152c17bc2
9496922c892ea80e86d868c4509610d61a1f2847
587c080125b135d29a931ed371e50ffc1a9641831c1087de2cd74532815f4560

HTTP Headers

GET /ajax/libs/popper.js/1.14.6/umd/popper.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.barclaysplsweepstakes.com
DNT: 1
Connection: keep-alive
Referer: https://www.barclaysplsweepstakes.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 08:05:20 GMT
content-type: application/javascript; charset=utf-8
content-length: 6634
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fa9-51ed"
last-modified: Mon, 04 May 2020 16:15:37 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 311891
expires: Thu, 24 Apr 2025 08:05:20 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=y4GgAG%2FYPQzHq%2FSLG47GpFIyYUGxyrfaNYYmLbmQT14fN27mkqMpXdQZBUWQiU2rYBKp1Vs1L%2BQEyuCWoWA2S0GTEF9NB%2FjpVAWlhxEU0NoXI%2Fk1vq89iZcDuTOKp25%2ButLbFL74"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87e6fc33dee85689-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.jsdelivr.net/npm/es6-promise@4/dist/es6-promise.auto.min.js

151.101.193.229

200 OK

2.6 kB

URL GET HTTP/2
cdn.jsdelivr.net/npm/es6-promise@4/dist/es6-promise.auto.min.js
IP
151.101.193.229:443
ASN
#54113 FASTLY

Requested by
https://www.barclaysplsweepstakes.com/AmericanAirlines/
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT

File type
JavaScript source, ASCII text, with very long lines (6498), with no line terminators
Size
2.6 kB (2588 bytes)
Hash
889f6a354b79c38bdf62a8792a65329d
34b3404aee23c330527201dc2c3b6e78a7655f51
5f1addaf2e9f5922aed63d802f2b8afe01c543ed81a7be99ad1e9fdd05c8e3b6

HTTP Headers

GET /npm/es6-promise@4/dist/es6-promise.auto.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.barclaysplsweepstakes.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 4.2.8
x-jsd-version-type: version
etag: W/"1962-NLNASu4jwzBScgHcLDtueKdlX1E"
content-encoding: br
accept-ranges: bytes
date: Sat, 04 May 2024 08:05:20 GMT
age: 7584
x-served-by: cache-fra-etou8220134-FRA, cache-hel1410029-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 2588
X-Firefox-Spdy: h2

code.jquery.com/jquery-3.5.1.min.js

151.101.130.137

200 OK

31 kB

URL GET HTTP/2
code.jquery.com/jquery-3.5.1.min.js
IP
151.101.130.137:443
ASN
#54113 FASTLY

Requested by
https://www.barclaysplsweepstakes.com/AmericanAirlines/
Certificate
IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65451)
Size
31 kB (30879 bytes)
Hash
dc5e7f18c8d36ac1d3d4753a87c98d0a
c8e1c8b386dc5b7a9184c763c88d19a346eb3342
f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d

HTTP Headers

GET /jquery-3.5.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.barclaysplsweepstakes.com
DNT: 1
Connection: keep-alive
Referer: https://www.barclaysplsweepstakes.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-15d84"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 May 2024 08:05:20 GMT
age: 666092
x-served-by: cache-lga21981-LGA, cache-hel1410027-HEL
x-cache: HIT, HIT
x-cache-hits: 64, 207253
x-timer: S1714809921.739264,VS0,VE0
vary: Accept-Encoding
content-length: 30879
X-Firefox-Spdy: h2

www.barclaysplsweepstakes.com/styles/layout.css?ver=002

13.107.213.53

200 OK

2.4 kB

URL GET HTTP/2
www.barclaysplsweepstakes.com/styles/layout.css?ver=002
IP
13.107.213.53:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://www.barclaysplsweepstakes.com/AmericanAirlines/
Certificate
IssuerDigiCert, Inc.
Subjectwww.barclaysplsweepstakes.com
FingerprintBB:85:7F:A6:2B:93:C4:98:46:2C:DA:56:36:E4:85:58:77:92:82:2C
ValidityFri, 15 Mar 2024 00:00:00 GMT - Sun, 15 Sep 2024 23:59:59 GMT

File type
ASCII text
Size
2.4 kB (2352 bytes)
Hash
50bafe5f0c9c0b436d6fd2caf7669b9f
a864b6f295b1208197603874cfe78ae1431111ca
61728d97e77b8a6dcfd97cc976253c076805b115aae2f21f658293bb060f791c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /styles/layout.css?ver=002 HTTP/1.1
Host: www.barclaysplsweepstakes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.barclaysplsweepstakes.com/AmericanAirlines/
Cookie: CFID=9354146; CFTOKEN=40614d715505c617-9A557178-CE1C-EA00-D6B1BED37B78FAEA; ASLBSA=000330c3543b51f5e042a277426c994db5c1afde55f87c4080d734fa336e084a9068; ASLBSACORS=000330c3543b51f5e042a277426c994db5c1afde55f87c4080d734fa336e084a9068
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 08:05:20 GMT
content-type: text/css
content-length: 2352
cache-control: no-store
last-modified: Wed, 07 Feb 2024 17:52:41 GMT
etag: "97f42872ee59da1:0"
set-cookie: ASLBSA=000330c3543b51f5e042a277426c994db5c1afde55f87c4080d734fa336e084a9068; Path=/; Secure; HttpOnly;
ASLBSACORS=000330c3543b51f5e042a277426c994db5c1afde55f87c4080d734fa336e084a9068; SameSite=none; Path=/; Secure; HttpOnly;
x-azure-ref: 20240504T080520Z-er15bb998b7tjzfh04z8st3p4s00000001sg000000006ugt
x-cache: CONFIG_NOCACHE
accept-ranges: bytes
X-Firefox-Spdy: h2

upcdn.io/kW15bTP/raw/Barclays/BarclaysPLSweepstakes/Header_AmericanAirlines_1x.jpg

143.204.55.60

200 OK

86 kB

URL GET HTTP/2
upcdn.io/kW15bTP/raw/Barclays/BarclaysPLSweepstakes/Header_AmericanAirlines_1x.jpg
IP
143.204.55.60:443
ASN
#16509 AMAZON-02

Requested by
https://www.barclaysplsweepstakes.com/AmericanAirlines/
Certificate
IssuerAmazon
Subjectupcdn.io
Fingerprint19:93:1D:7D:0D:E4:4D:F8:E7:09:AF:C6:A0:94:AB:C9:EF:B9:92:1A
ValiditySat, 20 Jan 2024 00:00:00 GMT - Mon, 17 Feb 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1200x720, components 3
Size
86 kB (85850 bytes)
Hash
e00b11652036d210d8d3c81da8615319
76f5d41fd86a5f7e6f2f0b5163e015b3bfcab70e
d3bec89cf1b5f504e740a31d9d5dee673f16f96fa55039e21c09c97ccebb9624

HTTP Headers

GET /kW15bTP/raw/Barclays/BarclaysPLSweepstakes/Header_AmericanAirlines_1x.jpg HTTP/1.1
Host: upcdn.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.barclaysplsweepstakes.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/jpeg
content-length: 85850
date: Thu, 25 Apr 2024 22:45:29 GMT
etag: "05eedafe46ce6094d128832eb4f48bb4-1"
content-disposition: inline; filename="Header_AmericanAirlines_1x.jpg"; filename*=UTF-8''Header_AmericanAirlines_1x.jpg
accept-ranges: bytes
server: Bytescale
x-cache-perma: Hit from Bytescale
content-security-policy: default-src 'none'; media-src 'self' blob: data:; connect-src 'self' blob: data:; img-src 'self' blob: data:;
vary: Origin,Accept-Encoding,Access-Control-Request-Headers,Access-Control-Request-Method,Cookie,Authorization,authorization-token
x-cache: Hit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 9d0tggmr6lAxeutyG45AcYRcASwVzhQZRjPgatcM6lC-shY5NVOGpg==
age: 724792
cache-control: max-age=31536000
X-Firefox-Spdy: h2

upcdn.io/kW15bTP/raw/Barclays/BarclaysPLSweepstakes/Header_Mobile_AmericanAirlines_1x.jpg

143.204.55.60

200 OK

40 kB

URL GET HTTP/2
upcdn.io/kW15bTP/raw/Barclays/BarclaysPLSweepstakes/Header_Mobile_AmericanAirlines_1x.jpg
IP
143.204.55.60:443
ASN
#16509 AMAZON-02

Requested by
https://www.barclaysplsweepstakes.com/AmericanAirlines/
Certificate
IssuerAmazon
Subjectupcdn.io
Fingerprint19:93:1D:7D:0D:E4:4D:F8:E7:09:AF:C6:A0:94:AB:C9:EF:B9:92:1A
ValiditySat, 20 Jan 2024 00:00:00 GMT - Mon, 17 Feb 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 642x560, components 3
Size
40 kB (39859 bytes)
Hash
f5022929eec61ab900c7eea33158d6a7
ef5f44a5670ab748a86c1131aa148d64a77fb186
0108bd6d8362f7d16ec513ce3922c73dbe24264acd9b5cb343227a445af5d80a

HTTP Headers

GET /kW15bTP/raw/Barclays/BarclaysPLSweepstakes/Header_Mobile_AmericanAirlines_1x.jpg HTTP/1.1
Host: upcdn.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.barclaysplsweepstakes.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/jpeg
content-length: 39859
date: Sun, 31 Mar 2024 10:13:03 GMT
etag: "20ed51c61e07799312ac0231a481215c-1"
content-disposition: inline; filename="Header_Mobile_AmericanAirlines_1x.jpg"; filename*=UTF-8''Header_Mobile_AmericanAirlines_1x.jpg
accept-ranges: bytes
server: Bytescale
x-cache-perma: Hit from Bytescale
content-security-policy: default-src 'none'; media-src 'self' blob: data:; connect-src 'self' blob: data:; img-src 'self' blob: data:;
vary: Origin,Accept-Encoding,Access-Control-Request-Headers,Access-Control-Request-Method,Cookie,Authorization,authorization-token
x-cache: Hit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: wgM29EhWDJieh6_QYiT5yvb8eDgqdz3XUT9DR8i1j6W4ChUyvWEJhA==
age: 2929938
cache-control: max-age=31536000
X-Firefox-Spdy: h2

wurfl.io/wurfl.js

13.51.164.40

200 OK

1.5 kB

URL GET HTTP/1.1
wurfl.io/wurfl.js
IP
13.51.164.40:443
ASN
#16509 AMAZON-02

Requested by
https://www.barclaysplsweepstakes.com/AmericanAirlines/
Certificate
IssuerAmazon
Subjectwurfl.io
Fingerprint84:98:DD:3B:AF:04:6D:BB:FE:28:6C:10:1A:EF:71:B5:3C:48:38:97
ValidityWed, 23 Aug 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (3512)
Size
1.5 kB (1488 bytes)
Hash
4e56ee18d87f62dc6297b5d332d1b081
63b4003113f47f2602ac99e828ebf7d615dac68f
2bf5cac174101bde02ebd7664e6dac3f41c3206a3aee299ca2153f4e96d5fd9e

HTTP Headers

GET /wurfl.js HTTP/1.1
Host: wurfl.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.barclaysplsweepstakes.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ch: Sec-Ch-Ua, Sec-Ch-Ua-Arch, Sec-Ch-Ua-Bitness, Sec-Ch-Ua-Full-Version, Sec-Ch-Ua-Full-Version-List, Sec-Ch-Ua-Mobile, Sec-Ch-Ua-Model, Sec-Ch-Ua-Platform, Sec-Ch-Ua-Platform-Version
Cache-Control: no-cache
Content-Encoding: br
Content-Type: application/javascript
Cross-Origin-Embedder-Policy: cross-origin
Cross-Origin-Opener-Policy: cross-origin
Cross-Origin-Resource-Policy: cross-origin
Date: Sat, 04 May 2024 08:05:20 GMT
Vary: accept-encoding, user-agent, sec-ch-ua, sec-ch-ua-arch, sec-ch-ua-bitness, sec-ch-ua-full-version, sec-ch-ua-full-version-list, sec-ch-ua-mobile, sec-ch-ua-model, sec-ch-ua-platform, sec-ch-ua-platform-version
Content-Length: 1488
Connection: keep-alive

www.barclaysplsweepstakes.com/images/Button_T_1x.png

13.107.213.53

200 OK

774 B

URL GET HTTP/2
www.barclaysplsweepstakes.com/images/Button_T_1x.png
IP
13.107.213.53:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://www.barclaysplsweepstakes.com/AmericanAirlines/
Certificate
IssuerDigiCert, Inc.
Subjectwww.barclaysplsweepstakes.com
FingerprintBB:85:7F:A6:2B:93:C4:98:46:2C:DA:56:36:E4:85:58:77:92:82:2C
ValidityFri, 15 Mar 2024 00:00:00 GMT - Sun, 15 Sep 2024 23:59:59 GMT

File type
PNG image data, 34 x 34, 8-bit/color RGBA, non-interlaced
Size
774 B (774 bytes)
Hash
a6e5ec535232489621b9aa121f576bcd
03211e6c4bdfe9650ef3f57f3a0757432d76e9d0
b8a753f159204c0f0d40d74945e915185de55980f1b1d1bfaeb980fc416a85d1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/Button_T_1x.png HTTP/1.1
Host: www.barclaysplsweepstakes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.barclaysplsweepstakes.com/AmericanAirlines/
Cookie: CFID=9354146; CFTOKEN=40614d715505c617-9A557178-CE1C-EA00-D6B1BED37B78FAEA; ASLBSA=000330c3543b51f5e042a277426c994db5c1afde55f87c4080d734fa336e084a9068; ASLBSACORS=000330c3543b51f5e042a277426c994db5c1afde55f87c4080d734fa336e084a9068
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 08:05:20 GMT
content-type: image/png
content-length: 774
cache-control: no-store
last-modified: Wed, 07 Feb 2024 17:52:38 GMT
etag: "c2348470ee59da1:0"
set-cookie: ASLBSA=000330c3543b51f5e042a277426c994db5c1afde55f87c4080d734fa336e084a9068; Path=/; Secure; HttpOnly;
ASLBSACORS=000330c3543b51f5e042a277426c994db5c1afde55f87c4080d734fa336e084a9068; SameSite=none; Path=/; Secure; HttpOnly;
x-azure-ref: 20240504T080520Z-er15bb998b7tjzfh04z8st3p4s00000001sg000000006ugx
x-cache: CONFIG_NOCACHE
accept-ranges: bytes
X-Firefox-Spdy: h2

www.barclaysplsweepstakes.com/AmericanAirlines/

13.107.213.53

200 OK

7.4 kB

URL User Request GET HTTP/2
www.barclaysplsweepstakes.com/AmericanAirlines/
IP
13.107.213.53:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Certificate
IssuerDigiCert, Inc.
Subjectwww.barclaysplsweepstakes.com
FingerprintBB:85:7F:A6:2B:93:C4:98:46:2C:DA:56:36:E4:85:58:77:92:82:2C
ValidityFri, 15 Mar 2024 00:00:00 GMT - Sun, 15 Sep 2024 23:59:59 GMT

File type
data
Size
7.4 kB (7438 bytes)
Hash
f80563766b39d2e8fdc00dcf3ef9fbee
79f96fa98d5b5398f45d42cf0b2ad88250e8226b
59f95260698381b87c844d229325d3cd40900cf7f7722874f4caa87a4b3fa990

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /AmericanAirlines/ HTTP/1.1
Host: www.barclaysplsweepstakes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 08:05:20 GMT
content-type: text/html;charset=UTF-8
cache-control: no-store
set-cookie: CFID=9354146; Expires=Mon, 27 Apr 2054 08:05:20 GMT; Path=/; HttpOnly
CFTOKEN=40614d715505c617-9A557178-CE1C-EA00-D6B1BED37B78FAEA; Expires=Mon, 27 Apr 2054 08:05:20 GMT; Path=/; HttpOnly
ASLBSA=000330c3543b51f5e042a277426c994db5c1afde55f87c4080d734fa336e084a9068; Path=/; Secure; HttpOnly;
ASLBSACORS=000330c3543b51f5e042a277426c994db5c1afde55f87c4080d734fa336e084a9068; SameSite=none; Path=/; Secure; HttpOnly;
x-azure-ref: 20240504T080519Z-er15bb998b7tjzfh04z8st3p4s00000001sg000000006uf6
x-cache: CONFIG_NOCACHE
X-Firefox-Spdy: h2

www.barclaysplsweepstakes.com/images/Stadium_Footer_lg_2x.jpg

13.107.213.53

404 Not Found

1.2 kB

URL GET HTTP/2
www.barclaysplsweepstakes.com/images/Stadium_Footer_lg_2x.jpg
IP
13.107.213.53:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://www.barclaysplsweepstakes.com/AmericanAirlines/
Certificate
IssuerDigiCert, Inc.
Subjectwww.barclaysplsweepstakes.com
FingerprintBB:85:7F:A6:2B:93:C4:98:46:2C:DA:56:36:E4:85:58:77:92:82:2C
ValidityFri, 15 Mar 2024 00:00:00 GMT - Sun, 15 Sep 2024 23:59:59 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
1.2 kB (1245 bytes)
Hash
5343c1a8b203c162a3bf3870d9f50fd4
04b5b886c20d88b57eea6d8ff882624a4ac1e51d
dc1d54dab6ec8c00f70137927504e4f222c8395f10760b6beecfcfa94e08249f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/Stadium_Footer_lg_2x.jpg HTTP/1.1
Host: www.barclaysplsweepstakes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.barclaysplsweepstakes.com/AmericanAirlines/
Cookie: CFID=9354146; CFTOKEN=40614d715505c617-9A557178-CE1C-EA00-D6B1BED37B78FAEA; ASLBSA=000330c3543b51f5e042a277426c994db5c1afde55f87c4080d734fa336e084a9068; ASLBSACORS=000330c3543b51f5e042a277426c994db5c1afde55f87c4080d734fa336e084a9068
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
date: Sat, 04 May 2024 08:05:20 GMT
content-type: text/html
content-length: 1245
cache-control: no-store
set-cookie: ASLBSA=000330c3543b51f5e042a277426c994db5c1afde55f87c4080d734fa336e084a9068; Path=/; Secure; HttpOnly;
ASLBSACORS=000330c3543b51f5e042a277426c994db5c1afde55f87c4080d734fa336e084a9068; SameSite=none; Path=/; Secure; HttpOnly;
x-azure-ref: 20240504T080520Z-er15bb998b7tjzfh04z8st3p4s00000001sg000000006uh0
x-cache: CONFIG_NOCACHE
X-Firefox-Spdy: h2

www.barclaysplsweepstakes.com/images/Button_Youtube_1x.png

13.107.213.53

200 OK

693 B

URL GET HTTP/2
www.barclaysplsweepstakes.com/images/Button_Youtube_1x.png
IP
13.107.213.53:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://www.barclaysplsweepstakes.com/AmericanAirlines/
Certificate
IssuerDigiCert, Inc.
Subjectwww.barclaysplsweepstakes.com
FingerprintBB:85:7F:A6:2B:93:C4:98:46:2C:DA:56:36:E4:85:58:77:92:82:2C
ValidityFri, 15 Mar 2024 00:00:00 GMT - Sun, 15 Sep 2024 23:59:59 GMT

File type
PNG image data, 34 x 34, 8-bit/color RGBA, non-interlaced
Size
693 B (693 bytes)
Hash
56ad82abd49b5389ce24e5dfd7d067f3
032f45470fcb536f655a6ae98de02e932620be09
c93fc11e410831fde5cb180b20d6486285b8cfdd0366165f94a4ad1cad99a496

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/Button_Youtube_1x.png HTTP/1.1
Host: www.barclaysplsweepstakes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.barclaysplsweepstakes.com/AmericanAirlines/
Cookie: CFID=9354146; CFTOKEN=40614d715505c617-9A557178-CE1C-EA00-D6B1BED37B78FAEA; ASLBSA=000330c3543b51f5e042a277426c994db5c1afde55f87c4080d734fa336e084a9068; ASLBSACORS=000330c3543b51f5e042a277426c994db5c1afde55f87c4080d734fa336e084a9068
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 08:05:20 GMT
content-type: image/png
content-length: 693
cache-control: no-store
last-modified: Wed, 07 Feb 2024 17:52:38 GMT
etag: "fdbe8c70ee59da1:0"
set-cookie: ASLBSA=000330c3543b51f5e042a277426c994db5c1afde55f87c4080d734fa336e084a9068; Path=/; Secure; HttpOnly;
ASLBSACORS=000330c3543b51f5e042a277426c994db5c1afde55f87c4080d734fa336e084a9068; SameSite=none; Path=/; Secure; HttpOnly;
x-azure-ref: 20240504T080520Z-er15bb998b7tjzfh04z8st3p4s00000001sg000000006ugy
x-cache: CONFIG_NOCACHE
accept-ranges: bytes
X-Firefox-Spdy: h2

www.barclaysplsweepstakes.com/images/Button_Instagram_1x.png

13.107.213.53

200 OK

813 B

URL GET HTTP/2
www.barclaysplsweepstakes.com/images/Button_Instagram_1x.png
IP
13.107.213.53:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://www.barclaysplsweepstakes.com/AmericanAirlines/
Certificate
IssuerDigiCert, Inc.
Subjectwww.barclaysplsweepstakes.com
FingerprintBB:85:7F:A6:2B:93:C4:98:46:2C:DA:56:36:E4:85:58:77:92:82:2C
ValidityFri, 15 Mar 2024 00:00:00 GMT - Sun, 15 Sep 2024 23:59:59 GMT

File type
PNG image data, 34 x 34, 8-bit/color RGBA, non-interlaced
Size
813 B (813 bytes)
Hash
836d7f1fa434956ec9e95d4140355ba7
f375e0ab2173969040ba2866add86b4b08fb094c
d5991f1f30fb1728149a9b8df94bf9630c24b4da320323fdc53588ab26160ae5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/Button_Instagram_1x.png HTTP/1.1
Host: www.barclaysplsweepstakes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.barclaysplsweepstakes.com/AmericanAirlines/
Cookie: CFID=9354146; CFTOKEN=40614d715505c617-9A557178-CE1C-EA00-D6B1BED37B78FAEA; ASLBSA=000330c3543b51f5e042a277426c994db5c1afde55f87c4080d734fa336e084a9068; ASLBSACORS=000330c3543b51f5e042a277426c994db5c1afde55f87c4080d734fa336e084a9068
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 08:05:20 GMT
content-type: image/png
content-length: 813
cache-control: no-store
last-modified: Wed, 07 Feb 2024 17:52:38 GMT
etag: "96688770ee59da1:0"
set-cookie: ASLBSA=000330c3543b51f5e042a277426c994db5c1afde55f87c4080d734fa336e084a9068; Path=/; Secure; HttpOnly;
ASLBSACORS=000330c3543b51f5e042a277426c994db5c1afde55f87c4080d734fa336e084a9068; SameSite=none; Path=/; Secure; HttpOnly;
x-azure-ref: 20240504T080520Z-er15bb998b7tjzfh04z8st3p4s00000001sg000000006ugz
x-cache: CONFIG_NOCACHE
accept-ranges: bytes
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-8TPXSYHM2D

142.250.74.136

200 OK

102 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=G-8TPXSYHM2D
IP
142.250.74.136:443
ASN
#15169 GOOGLE

Requested by
https://www.barclaysplsweepstakes.com/AmericanAirlines/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE
ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT

File type
JavaScript source, ASCII text, with very long lines (5955)
Size
102 kB (101613 bytes)
Hash
09474c859d4df03d725702b596d7d4f8
5c1972ffacf431c6ae0a895137d50c8710b8dc1c
a33efa5403caa642cc9eaa6ec358cf1bb355a448be1a68b41bad478fe418ea2f

HTTP Headers

GET /gtag/js?id=G-8TPXSYHM2D HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.barclaysplsweepstakes.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 04 May 2024 08:05:20 GMT
expires: Sat, 04 May 2024 08:05:20 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 101613
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.barclaysplsweepstakes.com/styles/styles.css?ver=002

13.107.213.53

200 OK

19 kB

URL GET HTTP/2
www.barclaysplsweepstakes.com/styles/styles.css?ver=002
IP
13.107.213.53:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://www.barclaysplsweepstakes.com/AmericanAirlines/
Certificate
IssuerDigiCert, Inc.
Subjectwww.barclaysplsweepstakes.com
FingerprintBB:85:7F:A6:2B:93:C4:98:46:2C:DA:56:36:E4:85:58:77:92:82:2C
ValidityFri, 15 Mar 2024 00:00:00 GMT - Sun, 15 Sep 2024 23:59:59 GMT

File type
ASCII text, with very long lines (571)
Size
19 kB (19051 bytes)
Hash
4f8e2cee0cee749e6b8dd709d0e05d67
ab8be08d9cc6d582aebf4748574e42236a31bd2e
fb3fd2ae2588164588e8d4046da5ee4754cba2d1441dddcdaaac206e3fa61320

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /styles/styles.css?ver=002 HTTP/1.1
Host: www.barclaysplsweepstakes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.barclaysplsweepstakes.com/AmericanAirlines/
Cookie: CFID=9354146; CFTOKEN=40614d715505c617-9A557178-CE1C-EA00-D6B1BED37B78FAEA; ASLBSA=000330c3543b51f5e042a277426c994db5c1afde55f87c4080d734fa336e084a9068; ASLBSACORS=000330c3543b51f5e042a277426c994db5c1afde55f87c4080d734fa336e084a9068
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 08:05:20 GMT
content-type: text/css
content-length: 19051
cache-control: no-store
last-modified: Tue, 13 Feb 2024 16:02:58 GMT
etag: "d5b5301d965eda1:0"
set-cookie: ASLBSA=000330c3543b51f5e042a277426c994db5c1afde55f87c4080d734fa336e084a9068; Path=/; Secure; HttpOnly;
ASLBSACORS=000330c3543b51f5e042a277426c994db5c1afde55f87c4080d734fa336e084a9068; SameSite=none; Path=/; Secure; HttpOnly;
x-azure-ref: 20240504T080520Z-er15bb998b7tjzfh04z8st3p4s00000001sg000000006ugu
x-cache: CONFIG_NOCACHE
accept-ranges: bytes
X-Firefox-Spdy: h2

www.barclaysplsweepstakes.com/styles/bootstrap.min.css?ver=002

13.107.213.53

200 OK

153 kB

URL GET HTTP/2
www.barclaysplsweepstakes.com/styles/bootstrap.min.css?ver=002
IP
13.107.213.53:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://www.barclaysplsweepstakes.com/AmericanAirlines/
Certificate
IssuerDigiCert, Inc.
Subjectwww.barclaysplsweepstakes.com
FingerprintBB:85:7F:A6:2B:93:C4:98:46:2C:DA:56:36:E4:85:58:77:92:82:2C
ValidityFri, 15 Mar 2024 00:00:00 GMT - Sun, 15 Sep 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65324)
Size
153 kB (153182 bytes)
Hash
dac722a5850c261ab7a254ab891f7fda
8d5598536cabe6317fbe53631f8a72bca5dd5607
bcdae57f819698f6ea53fcaf74814c7ac12ebbb17a9cc21f831c8ed67a0dd4d8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /styles/bootstrap.min.css?ver=002 HTTP/1.1
Host: www.barclaysplsweepstakes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.barclaysplsweepstakes.com/AmericanAirlines/
Cookie: CFID=9354146; CFTOKEN=40614d715505c617-9A557178-CE1C-EA00-D6B1BED37B78FAEA; ASLBSA=000330c3543b51f5e042a277426c994db5c1afde55f87c4080d734fa336e084a9068; ASLBSACORS=000330c3543b51f5e042a277426c994db5c1afde55f87c4080d734fa336e084a9068
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 08:05:20 GMT
content-type: text/css
content-length: 153182
cache-control: no-store
last-modified: Wed, 07 Feb 2024 17:52:41 GMT
etag: "e6b54472ee59da1:0"
set-cookie: ASLBSA=000330c3543b51f5e042a277426c994db5c1afde55f87c4080d734fa336e084a9068; Path=/; Secure; HttpOnly;
ASLBSACORS=000330c3543b51f5e042a277426c994db5c1afde55f87c4080d734fa336e084a9068; SameSite=none; Path=/; Secure; HttpOnly;
x-azure-ref: 20240504T080520Z-er15bb998b7tjzfh04z8st3p4s00000001sg000000006ugs
x-cache: CONFIG_NOCACHE
accept-ranges: bytes
X-Firefox-Spdy: h2

use.typekit.net/zfn0znm.css

23.36.76.122

200 OK

725 B

URL GET HTTP/2
use.typekit.net/zfn0znm.css
IP
23.36.76.122:443
ASN
#20940 Akamai International B.V.

Requested by
https://www.barclaysplsweepstakes.com/AmericanAirlines/
Certificate
IssuerDigiCert Inc
Subjectuse.typekit.net
Fingerprint15:AD:3F:8A:55:B7:BC:20:D8:70:5B:06:E0:D2:92:7C:BE:C6:E0:56
ValidityThu, 01 Feb 2024 00:00:00 GMT - Mon, 03 Mar 2025 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (516)
Size
725 B (725 bytes)
Hash
3440cc17c8d44dd0f15aea9d14e155fa
5cad5c19b64a364d4d7101ed461f8b836afa644d
bfbf51ce7a39d16f8fd2efef47e415da1eada6d3015ecf62ba228c21e1bc31ef

HTTP Headers

GET /zfn0znm.css HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.barclaysplsweepstakes.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: text/css;charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains;
cache-control: private, max-age=600, stale-while-revalidate=604800
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-encoding: gzip
content-length: 725
date: Sat, 04 May 2024 08:05:21 GMT
X-Firefox-Spdy: h2

p.typekit.net/p.css?s=1&k=zfn0znm&ht=tk&f=9785.9786.9787.9788&a=86375780&app=typekit&e=css

23.36.76.96

200 OK

5 B

URL GET HTTP/2
p.typekit.net/p.css?s=1&k=zfn0znm&ht=tk&f=9785.9786.9787.9788&a=86375780&app=typekit&e=css
IP
23.36.76.96:443
ASN
#20940 Akamai International B.V.

Requested by
https://www.barclaysplsweepstakes.com/AmericanAirlines/
Certificate
IssuerDigiCert Inc
Subjectuse.typekit.net
Fingerprint15:AD:3F:8A:55:B7:BC:20:D8:70:5B:06:E0:D2:92:7C:BE:C6:E0:56
ValidityThu, 01 Feb 2024 00:00:00 GMT - Mon, 03 Mar 2025 23:59:59 GMT

File type
ASCII text
Size
5 B (5 bytes)
Hash
83d24d4b43cc7eef2b61e66c95f3d158
f0cafc285ee23bb6c28c5166f305493c4331c84d
1c0ff118a4290c99f39c90abb38703a866e47251b23cca20266c69c812ccafeb

HTTP Headers

GET /p.css?s=1&k=zfn0znm&ht=tk&f=9785.9786.9787.9788&a=86375780&app=typekit&e=css HTTP/1.1
Host: p.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: text/css
content-length: 5
last-modified: Tue, 07 Mar 2023 19:56:00 GMT
etag: "640796d0-5"
cache-control: public, max-age=604800
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
date: Sat, 04 May 2024 08:05:21 GMT
X-Firefox-Spdy: h2

www.barclaysplsweepstakes.com/images/Stadium_Footer_lg_2x.jpg

13.107.213.53

404 Not Found

1.2 kB

URL GET HTTP/2
www.barclaysplsweepstakes.com/images/Stadium_Footer_lg_2x.jpg
IP
13.107.213.53:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://www.barclaysplsweepstakes.com/AmericanAirlines/
Certificate
IssuerDigiCert, Inc.
Subjectwww.barclaysplsweepstakes.com
FingerprintBB:85:7F:A6:2B:93:C4:98:46:2C:DA:56:36:E4:85:58:77:92:82:2C
ValidityFri, 15 Mar 2024 00:00:00 GMT - Sun, 15 Sep 2024 23:59:59 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
1.2 kB (1245 bytes)
Hash
5343c1a8b203c162a3bf3870d9f50fd4
04b5b886c20d88b57eea6d8ff882624a4ac1e51d
dc1d54dab6ec8c00f70137927504e4f222c8395f10760b6beecfcfa94e08249f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/Stadium_Footer_lg_2x.jpg HTTP/1.1
Host: www.barclaysplsweepstakes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.barclaysplsweepstakes.com/AmericanAirlines/
Cookie: CFID=9354146; CFTOKEN=40614d715505c617-9A557178-CE1C-EA00-D6B1BED37B78FAEA; ASLBSA=000330c3543b51f5e042a277426c994db5c1afde55f87c4080d734fa336e084a9068; ASLBSACORS=000330c3543b51f5e042a277426c994db5c1afde55f87c4080d734fa336e084a9068; _ga_8TPXSYHM2D=GS1.1.1714809921.1.0.1714809921.0.0.0; _ga=GA1.1.2069896020.1714809921
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
date: Sat, 04 May 2024 08:05:21 GMT
content-type: text/html
content-length: 1245
cache-control: no-store
set-cookie: ASLBSA=000330c3543b51f5e042a277426c994db5c1afde55f87c4080d734fa336e084a9068; Path=/; Secure; HttpOnly;
ASLBSACORS=000330c3543b51f5e042a277426c994db5c1afde55f87c4080d734fa336e084a9068; SameSite=none; Path=/; Secure; HttpOnly;
x-azure-ref: 20240504T080521Z-er15bb998b7tjzfh04z8st3p4s00000001sg000000006uk8
x-cache: CONFIG_NOCACHE
X-Firefox-Spdy: h2

www.barclaysplsweepstakes.com/services/tracking.cfm

13.107.213.53

200 OK

0 B

URL POST HTTP/2
www.barclaysplsweepstakes.com/services/tracking.cfm
IP
13.107.213.53:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://www.barclaysplsweepstakes.com/AmericanAirlines/
Certificate
IssuerDigiCert, Inc.
Subjectwww.barclaysplsweepstakes.com
FingerprintBB:85:7F:A6:2B:93:C4:98:46:2C:DA:56:36:E4:85:58:77:92:82:2C
ValidityFri, 15 Mar 2024 00:00:00 GMT - Sun, 15 Sep 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /services/tracking.cfm HTTP/1.1
Host: www.barclaysplsweepstakes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 428
Origin: https://www.barclaysplsweepstakes.com
DNT: 1
Connection: keep-alive
Referer: https://www.barclaysplsweepstakes.com/AmericanAirlines/
Cookie: CFID=9354146; CFTOKEN=40614d715505c617-9A557178-CE1C-EA00-D6B1BED37B78FAEA; ASLBSA=000330c3543b51f5e042a277426c994db5c1afde55f87c4080d734fa336e084a9068; ASLBSACORS=000330c3543b51f5e042a277426c994db5c1afde55f87c4080d734fa336e084a9068; _ga_8TPXSYHM2D=GS1.1.1714809921.1.0.1714809921.0.0.0; _ga=GA1.1.2069896020.1714809921
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 08:05:21 GMT
content-type: text/html;charset=UTF-8
content-length: 0
cache-control: no-store
set-cookie: ASLBSA=000330c3543b51f5e042a277426c994db5c1afde55f87c4080d734fa336e084a9068; Path=/; Secure; HttpOnly;
ASLBSACORS=000330c3543b51f5e042a277426c994db5c1afde55f87c4080d734fa336e084a9068; SameSite=none; Path=/; Secure; HttpOnly;
x-azure-ref: 20240504T080521Z-er15bb998b7tjzfh04z8st3p4s00000001sg000000006uka
x-cache: CONFIG_NOCACHE
accept-ranges: bytes
X-Firefox-Spdy: h2

stackpath.bootstrapcdn.com/bootstrap/4.2.1/css/bootstrap.min.css

104.18.11.207

200 OK

33 kB

URL GET HTTP/2
stackpath.bootstrapcdn.com/bootstrap/4.2.1/css/bootstrap.min.css
IP
104.18.11.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.barclaysplsweepstakes.com/AmericanAirlines/
Certificate
IssuerGoogle Trust Services LLC
Subjectbootstrapcdn.com
Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63
ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT

File type
ASCII text, with very long lines (65324)
Size
33 kB (32775 bytes)
Hash
f411c136e2bb302ada2120b3eb1d5bc3
3ae9bb0e7929489abd23736ae892939c8fe98645
6b3bef53dc4a96ec07149d02a60b5fd026332bbce0b4ece79f3c55e3ddb85f5c

HTTP Headers

GET /bootstrap/4.2.1/css/bootstrap.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.barclaysplsweepstakes.com
DNT: 1
Connection: keep-alive
Referer: https://www.barclaysplsweepstakes.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 08:05:20 GMT
content-type: text/css; charset=utf-8
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31919000
content-encoding: br
etag: W/"f411c136e2bb302ada2120b3eb1d5bc3"
last-modified: Mon, 25 Jan 2021 22:04:07 GMT
cdn-cachedat: 04/06/2024 17:33:43
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1077
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: dc0c17158d5fff381254a5ebeccf9127
cdn-cache: HIT
cf-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87e6fc33bf0f7131-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

www.barclaysplsweepstakes.com/images/Button_FaceBook_1x.png

13.107.213.53

200 OK

680 B

URL GET HTTP/2
www.barclaysplsweepstakes.com/images/Button_FaceBook_1x.png
IP
13.107.213.53:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://www.barclaysplsweepstakes.com/AmericanAirlines/
Certificate
IssuerDigiCert, Inc.
Subjectwww.barclaysplsweepstakes.com
FingerprintBB:85:7F:A6:2B:93:C4:98:46:2C:DA:56:36:E4:85:58:77:92:82:2C
ValidityFri, 15 Mar 2024 00:00:00 GMT - Sun, 15 Sep 2024 23:59:59 GMT

File type
PNG image data, 34 x 34, 8-bit/color RGBA, non-interlaced
Size
680 B (680 bytes)
Hash
b388f556b965f76762cc5179f114a2fa
e34870d45513085660bc6b610f7c25e9de6ab8c7
a266e9de8aee16f425b3a8e8063fb124e1c99adfecea2d690780eff43a2cd5b0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/Button_FaceBook_1x.png HTTP/1.1
Host: www.barclaysplsweepstakes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.barclaysplsweepstakes.com/AmericanAirlines/
Cookie: CFID=9354146; CFTOKEN=40614d715505c617-9A557178-CE1C-EA00-D6B1BED37B78FAEA; ASLBSA=000330c3543b51f5e042a277426c994db5c1afde55f87c4080d734fa336e084a9068; ASLBSACORS=000330c3543b51f5e042a277426c994db5c1afde55f87c4080d734fa336e084a9068
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 08:05:20 GMT
content-type: image/png
content-length: 680
cache-control: no-store
last-modified: Wed, 07 Feb 2024 17:52:38 GMT
etag: "9d4f7870ee59da1:0"
set-cookie: ASLBSA=000330c3543b51f5e042a277426c994db5c1afde55f87c4080d734fa336e084a9068; Path=/; Secure; HttpOnly;
ASLBSACORS=000330c3543b51f5e042a277426c994db5c1afde55f87c4080d734fa336e084a9068; SameSite=none; Path=/; Secure; HttpOnly;
x-azure-ref: 20240504T080520Z-er15bb998b7tjzfh04z8st3p4s00000001sg000000006ugw
x-cache: CONFIG_NOCACHE
accept-ranges: bytes
X-Firefox-Spdy: h2

use.fontawesome.com/releases/v5.3.1/js/all.js

172.67.142.245

200 OK

986 kB

URL GET HTTP/2
use.fontawesome.com/releases/v5.3.1/js/all.js
IP
172.67.142.245:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.barclaysplsweepstakes.com/AmericanAirlines/
Certificate
IssuerCloudflare, Inc.
Subjectuse.fontawesome.com
FingerprintCB:BE:6B:C4:5F:DF:18:7A:C3:AD:BF:6C:40:36:18:9F:E2:99:7F:78
ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 10 Oct 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65351)
Size
986 kB (986033 bytes)
Hash
d0482db440697a659af4980d2e841891
d7ff2806086f5924e06910e90a79b44492b52450
8cb270b4d9485a93b31df98113fda8723ffc067fa7bfa90cedd47b76f7b10be1

HTTP Headers

GET /releases/v5.3.1/js/all.js HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.barclaysplsweepstakes.com
DNT: 1
Connection: keep-alive
Referer: https://www.barclaysplsweepstakes.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 08:05:20 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=31556926
etag: W/"d0482db440697a659af4980d2e841891"
last-modified: Fri, 22 Sep 2023 01:45:29 GMT
vary: Origin, Accept-Encoding
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CK3lsDKv8r6wBsm1wsd2m%2BULHj4pU66b2W45mfqUeD3f40W6s%2BaZ3MF9FaL5fiNOtwqKgQT%2FeZBjbccqv7tryphD6ps6i9FIkN6VA%2FlbucQzmP6gwF4ExZDHOwpcZdJYzGgtl9%2BU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e6fc34bf0c5687-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

stackpath.bootstrapcdn.com/bootstrap/4.2.1/js/bootstrap.min.js

104.18.11.207

200 OK

56 kB

URL GET HTTP/2
stackpath.bootstrapcdn.com/bootstrap/4.2.1/js/bootstrap.min.js
IP
104.18.11.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.barclaysplsweepstakes.com/AmericanAirlines/
Certificate
IssuerGoogle Trust Services LLC
Subjectbootstrapcdn.com
Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63
ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT

File type
JavaScript source, ASCII text, with very long lines (55494)
Size
56 kB (55775 bytes)
Hash
6895e8cd60b62646ce12426015888f58
de908c9ed184d74eb525fa7a30449b67fc3a1c14
eb795deda8983fa5310627c9584cf3f3b95d272567113500059018b3941cb267

HTTP Headers

GET /bootstrap/4.2.1/js/bootstrap.min.js HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.barclaysplsweepstakes.com
DNT: 1
Connection: keep-alive
Referer: https://www.barclaysplsweepstakes.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 08:05:20 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"6895e8cd60b62646ce12426015888f58"
last-modified: Mon, 25 Jan 2021 22:04:07 GMT
cdn-cachedat: 02/15/2024 11:22:40
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 752
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 89de9054de142674048531f09c5bde4d
cdn-cache: HIT
cf-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87e6fc33bf137131-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (10)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML