| connecttocontact-code341.pages.dev/_framework/blazor.boot.json | 172.66.47.97 | 200 OK | 39 kB |
URL GET HTTP/3connecttocontact-code341.pages.dev/_framework/blazor.boot.json IP172.66.47.97:443
Requested byhttps://connecttocontact-code341.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectconnecttocontact-code341.pages.dev FingerprintCC:13:16:E4:C8:52:19:7A:E3:66:7B:68:FB:D0:68:DC:2B:14:04:3A ValiditySun, 05 May 2024 06:47:05 GMT - Sat, 03 Aug 2024 06:47:04 GMT
Hash36dd498ac5fc88efd8dafbd653911de0 7ffae39bf6454b77835b5b46d74eaaf30538a917 54b47cf6ffc88db6496d429c82646ece50b6a156fdc18c1c051cc244203066b2
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/blazor.boot.json HTTP/1.1
Host: connecttocontact-code341.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://connecttocontact-code341.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 16:07:53 GMT
content-type: application/json
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"8ff6fa4f7ad7a853b8169a4d0c1805ad"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Xwqyz%2B9vzD4aFfbRakvlT2mrULdwtHYoKndx4p0noYSs8OeuxTloClkoJfMvhv4x9W9wSuUaxOVIBvqO%2F1vx6wD67YC%2BJxp7ogJA6D3AtZmpeClln7Adws1DVlZ1qwqWNNCnNfZqgnWLf3u1RU8%2BFq7yt%2F%2FI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ab48d2b15712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| connecttocontact-code341.pages.dev/MetaWebAssembly.styles.css | 172.66.47.97 | 200 OK | 156 kB |
URL GET HTTP/3connecttocontact-code341.pages.dev/MetaWebAssembly.styles.css IP172.66.47.97:443
Requested byhttps://connecttocontact-code341.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectconnecttocontact-code341.pages.dev FingerprintCC:13:16:E4:C8:52:19:7A:E3:66:7B:68:FB:D0:68:DC:2B:14:04:3A ValiditySun, 05 May 2024 06:47:05 GMT - Sat, 03 Aug 2024 06:47:04 GMT
File typeASCII text, with very long lines (508), with CRLF line terminators Size156 kB (156158 bytes) Hash72caf67b5d6e5548fa221e8acc5a5fdc 841d2547f470092f1a593c4d5a59b97d962249ab cffcf0b89703aeecdbc5c089adc4f08cbabe2f22a13bc1775ff2dedbf2ed6a15
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /MetaWebAssembly.styles.css HTTP/1.1
Host: connecttocontact-code341.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://connecttocontact-code341.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 16:07:52 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"5f2fe9278836fb45c0b3e0c446113f5c"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=51kEHO52itZlzGI9%2FaC7D8BGz9lsyjxdX5SO2I1W112mO%2FT9xb3t2K0Q%2FWKPlSkT8Bs3EMrLnr7acSm6w61q0zAIjlzrHBHR8dzvm5QAYkdP5Z79PffkZXyyVYtM4xmE7XJKNUdku3WIGsGvIx47%2Bwxepvsw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ab48b689f712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| connecttocontact-code341.pages.dev/_framework/Microsoft.AspNetCore.Components.WebAssembly.dll | 172.66.47.97 | 200 OK | 49 kB |
URL GET HTTP/3connecttocontact-code341.pages.dev/_framework/Microsoft.AspNetCore.Components.WebAssembly.dll IP172.66.47.97:443
Requested byhttps://connecttocontact-code341.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectconnecttocontact-code341.pages.dev FingerprintCC:13:16:E4:C8:52:19:7A:E3:66:7B:68:FB:D0:68:DC:2B:14:04:3A ValiditySun, 05 May 2024 06:47:05 GMT - Sat, 03 Aug 2024 06:47:04 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hash19130315ca35a752740855e7dc4f9079 73fc1c1a7d7a400f2ef4d7d709eb8a7ed0791f5c 1ad84aac771273cb8e2fa5d790640feae19f11296c8fd9078621a52c0fb0e623
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/Microsoft.AspNetCore.Components.WebAssembly.dll HTTP/1.1
Host: connecttocontact-code341.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://connecttocontact-code341.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 16:07:53 GMT
content-type: application/x-msdownload
content-length: 48640
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "cded9693a05b45d1de731cd21eb093d4"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SVwpo9rgCqiFF6bBg1i1pJA51zqhZGRQzdGzd0F52A28uhPZZ5FNbGEwHix1lDt8eycMTNo4I7ObeTJSSj7xnqBv3P7oxHo8b8vXn5wUWgYQRHpZLUtJ%2B2IWwPWC6cmRT7QxxNoP1PjuoA%2Fu5y4u11H9Nvdv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ab48dcbe8712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| connecttocontact-code341.pages.dev/_framework/Microsoft.Extensions.Configuration.Json.dll | 172.66.47.97 | 200 OK | 7.7 kB |
URL GET HTTP/3connecttocontact-code341.pages.dev/_framework/Microsoft.Extensions.Configuration.Json.dll IP172.66.47.97:443
Requested byhttps://connecttocontact-code341.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectconnecttocontact-code341.pages.dev FingerprintCC:13:16:E4:C8:52:19:7A:E3:66:7B:68:FB:D0:68:DC:2B:14:04:3A ValiditySun, 05 May 2024 06:47:05 GMT - Sat, 03 Aug 2024 06:47:04 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hashaba9b687121af87805c7a0100214d543 3152d0713945e606ad3f7f8b327f0165fe10b79b 43902a267780d93667cc2d08633071ea3fed1d185601e31ba47dc1b15eca8168
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/Microsoft.Extensions.Configuration.Json.dll HTTP/1.1
Host: connecttocontact-code341.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://connecttocontact-code341.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 16:07:53 GMT
content-type: application/x-msdownload
content-length: 7680
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "746694dd3b33c18b32ad6415b8293a17"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=C3cc6Lb1v1DxohIODOgekgzaP2cfD37uWCTCpaD%2FJX69CUQnc6BfGYrnum0jMBwHfuAlw8Vhk5uq2npHNLC85FMFATYlsbig7R0i8jx8sTp0bW1rXz0OgbNR3eTb4MSEo3RAfG344R0ur%2BUaw2q09%2FRRpBEJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ab48dcbf5712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| connecttocontact-code341.pages.dev/_framework/MetaWebAssembly.dll | 172.66.47.97 | 200 OK | 126 kB |
URL GET HTTP/3connecttocontact-code341.pages.dev/_framework/MetaWebAssembly.dll IP172.66.47.97:443
Requested byhttps://connecttocontact-code341.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectconnecttocontact-code341.pages.dev FingerprintCC:13:16:E4:C8:52:19:7A:E3:66:7B:68:FB:D0:68:DC:2B:14:04:3A ValiditySun, 05 May 2024 06:47:05 GMT - Sat, 03 Aug 2024 06:47:04 GMT
File typePE32 executable (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Size126 kB (125952 bytes) Hash3948eb5b080bb7016fd60bdb9b27c401 afe8f064f2ead9535d390c1c1d69a9042fb0799d b9f3c4e1e655e34903cc4d91fa3c5aa7931f4e8ae57eda0806373b2938bc084c
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/MetaWebAssembly.dll HTTP/1.1
Host: connecttocontact-code341.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://connecttocontact-code341.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 16:07:53 GMT
content-type: application/x-msdownload
content-length: 125952
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "5cdc9b6ab0f1f888fea415ec7d7a618b"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=E6GVaml02EMk3oKu3OSwtcUwRcavU12MJvK5HJhxhsHN8FWJqZs2WJT73ZLCjpPwjJ4Ue5x62U7sRqsy4NKF2oW%2F%2BwbwK1oAkIKslvcnQB%2BTz9YEXeZdJOX5pQB0%2BLeTP7b1Q4zSMoVRedtaR3uqPApVdofB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ab48dbbe0712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| connecttocontact-code341.pages.dev/_framework/Microsoft.AspNetCore.Components.Forms.dll | 172.66.47.97 | 200 OK | 15 kB |
URL GET HTTP/3connecttocontact-code341.pages.dev/_framework/Microsoft.AspNetCore.Components.Forms.dll IP172.66.47.97:443
Requested byhttps://connecttocontact-code341.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectconnecttocontact-code341.pages.dev FingerprintCC:13:16:E4:C8:52:19:7A:E3:66:7B:68:FB:D0:68:DC:2B:14:04:3A ValiditySun, 05 May 2024 06:47:05 GMT - Sat, 03 Aug 2024 06:47:04 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hash609234f45d0d7be3951094b41b425ef8 8876d4da1ca1716e62177f1e69f030b05caff1a6 27946301a85fb9273deb3f2329d056954fa3393f17bdcfe6de832456951baa03
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/Microsoft.AspNetCore.Components.Forms.dll HTTP/1.1
Host: connecttocontact-code341.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://connecttocontact-code341.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 16:07:53 GMT
content-type: application/x-msdownload
content-length: 14848
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "d25c9d7b4317937d61a48cdb55cb8ec4"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=O6s7cuLAyhUzArsUhJ%2FM5tWV8jzy5zDRb4TVp1LRIyDUD39oLWoeZb14HW6Ey08WBydOuDkRwF%2FB%2FrzLKwrtq5plflvDSiQdFqOhpNzg7%2F25vCOGqc23Zlk0ddT70JcW8JxtOR9n72dIt8F0a%2Fr%2BGEHQL7TF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ab48dbbe5712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| connecttocontact-code341.pages.dev/_framework/Microsoft.AspNetCore.Components.Web.dll | 172.66.47.97 | 200 OK | 55 kB |
URL GET HTTP/3connecttocontact-code341.pages.dev/_framework/Microsoft.AspNetCore.Components.Web.dll IP172.66.47.97:443
Requested byhttps://connecttocontact-code341.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectconnecttocontact-code341.pages.dev FingerprintCC:13:16:E4:C8:52:19:7A:E3:66:7B:68:FB:D0:68:DC:2B:14:04:3A ValiditySun, 05 May 2024 06:47:05 GMT - Sat, 03 Aug 2024 06:47:04 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hasha56ba53b5aefe899cf5cb652b5d4c389 624fafcda529998949e47b7330a236f902aa16a1 157c75ce9146876a7d51af4c33409c0075d4154d4ef6e5aa44c0d0444be6814c
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/Microsoft.AspNetCore.Components.Web.dll HTTP/1.1
Host: connecttocontact-code341.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://connecttocontact-code341.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 16:07:53 GMT
content-type: application/x-msdownload
content-length: 55296
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "eeadfd5293ca0e5d32a43b1dd7b859c7"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CuuTkBw4ojIOalxI%2BVVK24FZwzsvXUaSShwLgdEqwxvMMAxlx5al3w9q02jo%2BPgRz7etdMqbTKMP1mrPOh5YI17jYoG9%2BKgbQh98YRCBSCAI33z%2F0ichnCjU1ZtB3Hm3u4jElUza6nKxpYYAcsWUxeXfwbOR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ab48dcbe6712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| connecttocontact-code341.pages.dev/_framework/Microsoft.Extensions.Configuration.Abstractions.dll | 172.66.47.97 | 200 OK | 6.1 kB |
URL GET HTTP/3connecttocontact-code341.pages.dev/_framework/Microsoft.Extensions.Configuration.Abstractions.dll IP172.66.47.97:443
Requested byhttps://connecttocontact-code341.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectconnecttocontact-code341.pages.dev FingerprintCC:13:16:E4:C8:52:19:7A:E3:66:7B:68:FB:D0:68:DC:2B:14:04:3A ValiditySun, 05 May 2024 06:47:05 GMT - Sat, 03 Aug 2024 06:47:04 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hash6859d10b1fdadfab68f826076cb5edc2 a9e9a51ce2cabdf6f3a4df5d2cedf31916d6d2e9 5ff7f87c397672e2115de58784afdfd94a906c58a80fe454e1ae02121d33aeb4
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/Microsoft.Extensions.Configuration.Abstractions.dll HTTP/1.1
Host: connecttocontact-code341.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://connecttocontact-code341.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 16:07:53 GMT
content-type: application/x-msdownload
content-length: 6144
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "5b17333d734fffed0d7de8a89dd46d87"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CqN2%2BZ9BlxZrTC%2BoGUKRTINfewB6ZLMVhNEoGOHdZfKDrvn0NJpKvPK32fYJVtziwZiJwBIHYcIquzbKb68aKDZNdGb7psCKp%2Fe2D0vY87eXeg47BcnJw7hDpVhN8m687FQFAIgT3Gx6YzGSdoiHbVCvm0tq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ab48dcbf0712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| connecttocontact-code341.pages.dev/_framework/Microsoft.Extensions.Configuration.dll | 172.66.47.97 | 200 OK | 6.7 kB |
URL GET HTTP/3connecttocontact-code341.pages.dev/_framework/Microsoft.Extensions.Configuration.dll IP172.66.47.97:443
Requested byhttps://connecttocontact-code341.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectconnecttocontact-code341.pages.dev FingerprintCC:13:16:E4:C8:52:19:7A:E3:66:7B:68:FB:D0:68:DC:2B:14:04:3A ValiditySun, 05 May 2024 06:47:05 GMT - Sat, 03 Aug 2024 06:47:04 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hash8c3f1d432b91442d973bc34d389c5fe1 7ddbbcb5337632ccccdb43372cdba8f0c3e96a99 0c138a48fae23f6243c556db5ab2d7c83dcae3fc7744189f3415a4fead48dfd3
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/Microsoft.Extensions.Configuration.dll HTTP/1.1
Host: connecttocontact-code341.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://connecttocontact-code341.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 16:07:53 GMT
content-type: application/x-msdownload
content-length: 6656
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "b9776d6e16ef5eaddbdea55374a16cf9"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=swuXePU48BdBNcKZ3CAUm6oiQWxRz5n0Iah7Yr1%2Fw%2F54Ji31TbT0AaFghqnt73FVcC5CwTYp3cj3dr9tTRWX85GZZa5e0ExE%2BGqJtqkdamzZxNxNB1Mmx0XgdlOHKsCCn%2FygdkJAJNLKRhFYCK0wwEdc%2BcVo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ab48dcbf2712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| fonts.googleapis.com/css2?family=Material+Symbols+Outlined:opsz,wght,FILL,GRAD@24,500,0,0 | 142.250.74.170 | 200 OK | 13 kB |
URL GET HTTP/2fonts.googleapis.com/css2?family=Material+Symbols+Outlined:opsz,wght,FILL,GRAD@24,500,0,0 IP142.250.74.170:443
Requested byhttps://connecttocontact-code341.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File typegzip compressed data, max compression Hashfa2315933e89afbfc3b036ad19cdac85 a2bca6a8e3709f257fd3d1485e86510667f1698f a21d9cefae3f701e2e65e5fe40f0977787708ad6749bea22b6ab2f75400fdd6f
GET /css2?family=Material+Symbols+Outlined:opsz,wght,FILL,GRAD@24,500,0,0 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://connecttocontact-code341.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 08 May 2024 16:07:52 GMT
date: Wed, 08 May 2024 16:07:52 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| connecttocontact-code341.pages.dev/css/bootstrap/bootstrap.min.css | 172.66.47.97 | 200 OK | 61 kB |
URL GET HTTP/3connecttocontact-code341.pages.dev/css/bootstrap/bootstrap.min.css IP172.66.47.97:443
Requested byhttps://connecttocontact-code341.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectconnecttocontact-code341.pages.dev FingerprintCC:13:16:E4:C8:52:19:7A:E3:66:7B:68:FB:D0:68:DC:2B:14:04:3A ValiditySun, 05 May 2024 06:47:05 GMT - Sat, 03 Aug 2024 06:47:04 GMT
File typeUnicode text, UTF-8 text, with very long lines (65306) Hashe451b87914db6243b6afa3c5e484ec16 396f51b333ff6f0926f6e67ad6e6c9c69bea7b31 cfc391e34328c09f0680ae8ff3d63e86224ae7e71c973147ccb84540b2fdd9b8
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /css/bootstrap/bootstrap.min.css HTTP/1.1
Host: connecttocontact-code341.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://connecttocontact-code341.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 16:07:52 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"4c5d83eb6adf727e3094733542e0c4a5"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ILM2s5CG5rdttiwppso3Awq7QzQIxk00BKLPzRD8jf44TZ7kapSnf%2FMYG8VmuOCYAwdvIC0QDopZvSmYPMjWR44IFtzHwoMhM5wq%2FPiAtj7w8iXGo%2FMTP1XH6PZWYm3rpkTTYH3UMa6E5a2f3GGfrPjbEYyH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ab48b6895712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| connecttocontact-code341.pages.dev/css/app.css | 172.66.47.97 | 200 OK | 35 kB |
URL GET HTTP/3connecttocontact-code341.pages.dev/css/app.css IP172.66.47.97:443
Requested byhttps://connecttocontact-code341.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectconnecttocontact-code341.pages.dev FingerprintCC:13:16:E4:C8:52:19:7A:E3:66:7B:68:FB:D0:68:DC:2B:14:04:3A ValiditySun, 05 May 2024 06:47:05 GMT - Sat, 03 Aug 2024 06:47:04 GMT
File typeASCII text, with very long lines (1687), with CRLF line terminators Hashe223c14dfddb580e7a4cd4e186b7c688 69bba8dfea8b62ab063c1f43049b0a24114a9666 f509351a73ad66942c0c7577015de0e9987915bf0e53aebe193d4432cc3fc501
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /css/app.css HTTP/1.1
Host: connecttocontact-code341.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://connecttocontact-code341.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 16:07:52 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"1323965c04c4e2d24e411f1255de6b03"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WRGuFo8W0hrPImIL6UUjWi09%2BxCo4C%2BoyVjPoixy0O0FDJXHyWa9iVdlDGwW9l%2B8tGe8Aguudt5NjK6Gd9l4Mdqh8znJMUeKiqs%2FQ0KHnuMZqBNC%2B7I2Jc2ZVjPIoUDdjtGQ1eKGfZpQ9esXnFwV2YOcd8dB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ab48b6899712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| connecttocontact-code341.pages.dev/_framework/Microsoft.Extensions.Logging.dll | 172.66.47.97 | 200 OK | 16 kB |
URL GET HTTP/3connecttocontact-code341.pages.dev/_framework/Microsoft.Extensions.Logging.dll IP172.66.47.97:443
Requested byhttps://connecttocontact-code341.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectconnecttocontact-code341.pages.dev FingerprintCC:13:16:E4:C8:52:19:7A:E3:66:7B:68:FB:D0:68:DC:2B:14:04:3A ValiditySun, 05 May 2024 06:47:05 GMT - Sat, 03 Aug 2024 06:47:04 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hash84cdacf1548928c46a4ff45d726ec652 a0c020657fde46b8a3d91a038a51db95f2b492d4 44913aeb44c40b5c26dccc8bd445d07d3401d6a2be256cb579f554c48f27354a
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/Microsoft.Extensions.Logging.dll HTTP/1.1
Host: connecttocontact-code341.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://connecttocontact-code341.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 16:07:53 GMT
content-type: application/x-msdownload
content-length: 16384
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "83f8ca9e3bd4d70e50e56af9ea39edcc"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=e%2BhrSXmBFKn%2FAsN1eDDbTJwwMD6o7h7gPVguSD3HrW%2B2XjVt04h2AF0q0ICyRtw0oWCEEO8rKlAS%2FDVBWmz23JJaiotLqqcBpU%2BGjSda7wlT23kmVBTWPW0w986X1jWzku3M%2BtMdBwDMsdWwMJNYrAOU9s53"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ab48ddc0a712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| connecttocontact-code341.pages.dev/_framework/Microsoft.Extensions.Options.dll | 172.66.47.97 | 200 OK | 15 kB |
URL GET HTTP/3connecttocontact-code341.pages.dev/_framework/Microsoft.Extensions.Options.dll IP172.66.47.97:443
Requested byhttps://connecttocontact-code341.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectconnecttocontact-code341.pages.dev FingerprintCC:13:16:E4:C8:52:19:7A:E3:66:7B:68:FB:D0:68:DC:2B:14:04:3A ValiditySun, 05 May 2024 06:47:05 GMT - Sat, 03 Aug 2024 06:47:04 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hash3219bee2fad23ef9528b87aa652c3de8 7fa9dc99190b1510611bc3cdb06c1b73c4f7e4cb 58f05093baedda9e1a304a36a53a75b01a6c896744f0c996b8862afb397571ea
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/Microsoft.Extensions.Options.dll HTTP/1.1
Host: connecttocontact-code341.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://connecttocontact-code341.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 16:07:53 GMT
content-type: application/x-msdownload
content-length: 14848
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "cc5baece31c268e7825e83eb9f7c6808"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4SzsG%2BfzsTUbzkbh45VJ8vlFlHcaw3brJ1QkRFqPCpe54wily0WGrTApmM2QiqfqcIMZVa3nQZOYC5sMlfUFAfUFd5x3jQEMBSRxfbfiJdwnVi6%2Fm8feYJDiYzq3cGFV9wgDfZ1B29CTTA7fJOmMVja%2BhcYX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ab48ddc0e712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| connecttocontact-code341.pages.dev/_framework/Microsoft.Extensions.Primitives.dll | 172.66.47.97 | 200 OK | 7.7 kB |
URL GET HTTP/3connecttocontact-code341.pages.dev/_framework/Microsoft.Extensions.Primitives.dll IP172.66.47.97:443
Requested byhttps://connecttocontact-code341.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectconnecttocontact-code341.pages.dev FingerprintCC:13:16:E4:C8:52:19:7A:E3:66:7B:68:FB:D0:68:DC:2B:14:04:3A ValiditySun, 05 May 2024 06:47:05 GMT - Sat, 03 Aug 2024 06:47:04 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hash5b53a8e79427055d58561757faee6b98 b11c0808064a762e0ef296ee57d9494e42581f85 797bc6c768dc8e94cf109a001c1b16fd5b8c3db372c94f80b2e84f9a4cd24916
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/Microsoft.Extensions.Primitives.dll HTTP/1.1
Host: connecttocontact-code341.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://connecttocontact-code341.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 16:07:53 GMT
content-type: application/x-msdownload
content-length: 7680
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "945272a5920802dd108f8d42b39e52c4"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0pA7KLLelWn0QqBrv58c2h7F6Wm5IrsXLl8FKOHiYSOVq58fVwQ46vgLhEw8yLGfGZJhsR20CU5vNZXFr0AkWa6uEJU6nFz7qXebeo91lX4vNZZfv7WqACBrfbBjzlrduioay2s89JE0CYMOV0MZyMB0uQdh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ab48ddc10712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| connecttocontact-code341.pages.dev/_framework/Microsoft.JSInterop.dll | 172.66.47.97 | 200 OK | 38 kB |
URL GET HTTP/3connecttocontact-code341.pages.dev/_framework/Microsoft.JSInterop.dll IP172.66.47.97:443
Requested byhttps://connecttocontact-code341.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectconnecttocontact-code341.pages.dev FingerprintCC:13:16:E4:C8:52:19:7A:E3:66:7B:68:FB:D0:68:DC:2B:14:04:3A ValiditySun, 05 May 2024 06:47:05 GMT - Sat, 03 Aug 2024 06:47:04 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hash30dd9ecb064e1ce1c4a0e2dd1de36954 6da563f80ed83906557dc06b53f05354453b3d8c 74e5beed5ba01a9187674c6f768ad5c9b74bee83562bc7737b4c46782f2a9a1a
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/Microsoft.JSInterop.dll HTTP/1.1
Host: connecttocontact-code341.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://connecttocontact-code341.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 16:07:53 GMT
content-type: application/x-msdownload
content-length: 37888
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "865e03bd6ad764fda8432a4155d595a5"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5JfDOFLXPZ2KrT44z9vMdta%2BSxX16bcbKMYffO0PwqG05Wmj4KsMw5rg2mhl01IA5ATpvauurC45Qr18pr3aoJb%2BHZM%2BvQpnl9F%2FnlW3AS8GyC7ysBWWmKmU4wvffK4KXOEZAcRt4RmzNdqEvEqj%2F4Lx3xLz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ab48ddc12712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| connecttocontact-code341.pages.dev/_framework/Microsoft.JSInterop.WebAssembly.dll | 172.66.47.97 | 200 OK | 8.7 kB |
URL GET HTTP/3connecttocontact-code341.pages.dev/_framework/Microsoft.JSInterop.WebAssembly.dll IP172.66.47.97:443
Requested byhttps://connecttocontact-code341.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectconnecttocontact-code341.pages.dev FingerprintCC:13:16:E4:C8:52:19:7A:E3:66:7B:68:FB:D0:68:DC:2B:14:04:3A ValiditySun, 05 May 2024 06:47:05 GMT - Sat, 03 Aug 2024 06:47:04 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hashf03fe889a3441e67c13b135ec4b8e1c7 131f00034aeb6547d3110f58b0f35bf92d3b7452 ac2122093bd9e2af4787c7da89858c77cc3c53162d78cd5b371189dfbeb3b265
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/Microsoft.JSInterop.WebAssembly.dll HTTP/1.1
Host: connecttocontact-code341.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://connecttocontact-code341.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 16:07:53 GMT
content-type: application/x-msdownload
content-length: 8704
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "fcd6bbd0b6b91aff5595c4d379cf6d34"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9zJGxR1q0M4fByFHS8LymD%2F5X1CzYI7Aqg4GQ%2B%2Fvxh06puU7GinR0ZeZQ1fC8DZtVPGll1Z43hjPRzJjPtVxa2s6yBw0jeq3ENUVQTa43JU1haawCk0E9XsnkeDOk9nL5gpia0%2BAEEx9Hu2EbvoZncDU6WRC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ab48dec15712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| connecttocontact-code341.pages.dev/_framework/netstandard.dll | 172.66.47.97 | 200 OK | 15 kB |
URL GET HTTP/3connecttocontact-code341.pages.dev/_framework/netstandard.dll IP172.66.47.97:443
Requested byhttps://connecttocontact-code341.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectconnecttocontact-code341.pages.dev FingerprintCC:13:16:E4:C8:52:19:7A:E3:66:7B:68:FB:D0:68:DC:2B:14:04:3A ValiditySun, 05 May 2024 06:47:05 GMT - Sat, 03 Aug 2024 06:47:04 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hash24b650adcff177e6f5bc9094cd5a5aad 23f476de24f761f82e1d37b7278b01a4a734a97b a10a8475e3f341de3e559a06c7f5849da22376c0f0ff3fa7eaa54d4acee5a1b9
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/netstandard.dll HTTP/1.1
Host: connecttocontact-code341.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://connecttocontact-code341.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 16:07:53 GMT
content-type: application/x-msdownload
content-length: 14848
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "001a738ad0284bd26bfef3bb48fc7458"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4G1wCnFeyL7Ke2B4xyG34Kxe4Nug5eYNrP1UiJN1l%2FL0CAmmmp59dZBsTjI8MNsnvH7oyEfsE%2BZ4Sfx010m81qp4PpOuf1FUcBdkTsWMwlQ3%2FhKB0O3AfcV5FrNJXAvQwv5YkOhrlTL13RTGQw%2B537AiLwAt"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ab48dec19712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| connecttocontact-code341.pages.dev/_framework/Microsoft.CSharp.dll | 172.66.47.97 | 200 OK | 223 kB |
URL GET HTTP/3connecttocontact-code341.pages.dev/_framework/Microsoft.CSharp.dll IP172.66.47.97:443
Requested byhttps://connecttocontact-code341.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectconnecttocontact-code341.pages.dev FingerprintCC:13:16:E4:C8:52:19:7A:E3:66:7B:68:FB:D0:68:DC:2B:14:04:3A ValiditySun, 05 May 2024 06:47:05 GMT - Sat, 03 Aug 2024 06:47:04 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Size223 kB (223232 bytes) Hash85829bbbdcffb15a40b8062d33c3bdaf a53528352acc5a50df89982f02a1e7a62fdd67eb 061d453bf65c57be1b303be2a3abba1a4df11eab492ee138b10be0495e4ac826
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/Microsoft.CSharp.dll HTTP/1.1
Host: connecttocontact-code341.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://connecttocontact-code341.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 16:07:53 GMT
content-type: application/x-msdownload
content-length: 223232
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "b445c52efd69cffec668054219ade0cf"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Kc3F%2FhBBRSbomYaPOxvH2eKrHlG8IERkfpxi1gWMoHLaUjPnhn1JHENObp8I7SlUB2%2Fiq%2F8eAFPUXNNV2Ly8QfglfC3vBpAcIAVwvbcsjZJu1Q1ZHUPmWJ0GDPkr4GJ4wgFMHWwDEuU9D6iDrrp95kIGArMi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ab48dcbeb712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| connecttocontact-code341.pages.dev/_framework/Newtonsoft.Json.dll | 172.66.47.97 | 200 OK | 695 kB |
URL GET HTTP/3connecttocontact-code341.pages.dev/_framework/Newtonsoft.Json.dll IP172.66.47.97:443
Requested byhttps://connecttocontact-code341.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectconnecttocontact-code341.pages.dev FingerprintCC:13:16:E4:C8:52:19:7A:E3:66:7B:68:FB:D0:68:DC:2B:14:04:3A ValiditySun, 05 May 2024 06:47:05 GMT - Sat, 03 Aug 2024 06:47:04 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Size695 kB (695336 bytes) Hash916d32b899f1bc23b209648d007b99fd e3673d05d46f29e68241d4536bddf18cdd0a913d 72cf291d4bab0edd08a9b07c6173e1e7ad1abb7ab727fd7044bf6305d7515661
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/Newtonsoft.Json.dll HTTP/1.1
Host: connecttocontact-code341.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://connecttocontact-code341.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 16:07:53 GMT
content-type: application/x-msdownload
content-length: 695336
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "c43e1d847d74bf30221d551c6b9b6d76"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mjwocl40uGqC%2FGj7bLTnVRwtN%2FRjqBLE4CEFXLPvNe4SVYDggrKIesvV9Hldo4Tb4QDVK%2Bhcd9JUrDt2bBLSb5hyzQlcDdVaB8%2BOxyGzoyM0wWs5hVU6e0xD0bobGicTd6uPHPIUTvqq19FQeDo570KbSPEi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ab48dec23712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| connecttocontact-code341.pages.dev/_framework/System.Collections.Concurrent.dll | 172.66.47.97 | 200 OK | 20 kB |
URL GET HTTP/3connecttocontact-code341.pages.dev/_framework/System.Collections.Concurrent.dll IP172.66.47.97:443
Requested byhttps://connecttocontact-code341.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectconnecttocontact-code341.pages.dev FingerprintCC:13:16:E4:C8:52:19:7A:E3:66:7B:68:FB:D0:68:DC:2B:14:04:3A ValiditySun, 05 May 2024 06:47:05 GMT - Sat, 03 Aug 2024 06:47:04 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hashbd3c99af8e8e1701ed6b6567c894bdbf 063c996e70bc5563d775927dd61318e93177cdee 827e774542b52088c125d6fd7220d83c55009a5383e33bfe6b79b6f1d42aa8b2
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/System.Collections.Concurrent.dll HTTP/1.1
Host: connecttocontact-code341.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://connecttocontact-code341.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 16:07:53 GMT
content-type: application/x-msdownload
content-length: 20480
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "9dfe5a545b0de29272ff16beb1fb3722"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cvqkmw0xw3HmhtX6wDXs%2FHnTWSaLY%2F2Lf7EtpEuKEYuqtNuG7ogebtSBJFmc2nXvM4NGTNHzHgJ8iGXk9vZFHVeiR%2FjitTwwKUqCBEEg2UgBjJwW2SQF48xvm0%2FQ2Atg9xiVOZ0W6IgPmCNZ6QeoQqg3iOEZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ab48dec26712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| connecttocontact-code341.pages.dev/_framework/System.Collections.dll | 172.66.47.97 | 200 OK | 12 kB |
URL GET HTTP/3connecttocontact-code341.pages.dev/_framework/System.Collections.dll IP172.66.47.97:443
Requested byhttps://connecttocontact-code341.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectconnecttocontact-code341.pages.dev FingerprintCC:13:16:E4:C8:52:19:7A:E3:66:7B:68:FB:D0:68:DC:2B:14:04:3A ValiditySun, 05 May 2024 06:47:05 GMT - Sat, 03 Aug 2024 06:47:04 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hasheebf6bf5392e924c8c7eaa32555aab19 3204eb88e2d35eead0588e00822e70863aece25c a028e10a2db4d87bc7e5831a629c9eb70399f89d7a274ab14be659dcb9e7f1cb
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/System.Collections.dll HTTP/1.1
Host: connecttocontact-code341.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://connecttocontact-code341.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 16:07:53 GMT
content-type: application/x-msdownload
content-length: 12288
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "63877889880f6ee87546cf45b700af67"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yc8h7pIij4L1F%2BlKcWVwYyfJposh9oibQrthLnwsc0vYvMrRm53puk5ROyb3rTXv%2FxjvsZYvwXUYtIYOoR%2BSVV36JNW%2B3DijnAWNI6u1GILgVOoVWxXx%2FzBPCfmbAeM3Wpm4TgazMf%2Bik4%2BnDcNLvQb4BcVe"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ab48dec28712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| connecttocontact-code341.pages.dev/_framework/System.Collections.NonGeneric.dll | 172.66.47.97 | 200 OK | 15 kB |
URL GET HTTP/3connecttocontact-code341.pages.dev/_framework/System.Collections.NonGeneric.dll IP172.66.47.97:443
Requested byhttps://connecttocontact-code341.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectconnecttocontact-code341.pages.dev FingerprintCC:13:16:E4:C8:52:19:7A:E3:66:7B:68:FB:D0:68:DC:2B:14:04:3A ValiditySun, 05 May 2024 06:47:05 GMT - Sat, 03 Aug 2024 06:47:04 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hash8c8c9ec88d8dbf4da9332e0133cbdc6b fe076b9878f05d1383568fd35a81551f9e0affe3 a077fc97c3b1b61d8092e0b5ae0ffea30262d1e93d7bd7adf657ac7bcb89680b
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/System.Collections.NonGeneric.dll HTTP/1.1
Host: connecttocontact-code341.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://connecttocontact-code341.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 16:07:53 GMT
content-type: application/x-msdownload
content-length: 15360
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "745ca4b48e0809e2ee372a7f837608a8"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bEuJZtGfBHBSZH232BCnhBWbrwodsiRxK4jiOqu1XDKyqHL5Zyopgp5ZNSnj70kdq5tBeHmlG5jsSDpchsuUdFYL3y%2BRrCwjV40VS05FDpOKS9ap1h1VI%2FCUjfkrr2po8l42sNefmevwonv%2Fa11ypYcRDdTA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ab48dec2a712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| connecttocontact-code341.pages.dev/_framework/System.Collections.Specialized.dll | 172.66.47.97 | 200 OK | 12 kB |
URL GET HTTP/3connecttocontact-code341.pages.dev/_framework/System.Collections.Specialized.dll IP172.66.47.97:443
Requested byhttps://connecttocontact-code341.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectconnecttocontact-code341.pages.dev FingerprintCC:13:16:E4:C8:52:19:7A:E3:66:7B:68:FB:D0:68:DC:2B:14:04:3A ValiditySun, 05 May 2024 06:47:05 GMT - Sat, 03 Aug 2024 06:47:04 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hash3ac7aec570d72553f77753564e14d1a1 623540853e4521e390918ab065c0af91a7160fed 8df4cea5a787cb576624c5c9ebeb71d889b462aed82e39f896b7afc8dc749b4d
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/System.Collections.Specialized.dll HTTP/1.1
Host: connecttocontact-code341.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://connecttocontact-code341.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 16:07:53 GMT
content-type: application/x-msdownload
content-length: 12288
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "e8830c8cab4b4cf7bdbb6fdcb31abd8e"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4ZMWUMr7W53Vda1HMiTJGO6xdK0VE9Yy0gi3Eb1RXZoigsaAK7%2FKdkmGxSX4hUzw9Ipri%2BApQ5aasb2kCfvUWUldpHVwgpfOMHOmZqbnf%2Bhemn%2B%2FI7objMGgdcnrjuNJUPIFTVWcjflhUBPbAjwvExIVqrf%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ab48dec2f712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| connecttocontact-code341.pages.dev/_framework/System.ComponentModel.Annotations.dll | 172.66.47.97 | 200 OK | 5.1 kB |
URL GET HTTP/3connecttocontact-code341.pages.dev/_framework/System.ComponentModel.Annotations.dll IP172.66.47.97:443
Requested byhttps://connecttocontact-code341.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectconnecttocontact-code341.pages.dev FingerprintCC:13:16:E4:C8:52:19:7A:E3:66:7B:68:FB:D0:68:DC:2B:14:04:3A ValiditySun, 05 May 2024 06:47:05 GMT - Sat, 03 Aug 2024 06:47:04 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hashb44866fd072a143c6193153ebf3b7e3d 97154ebb0e77469b075e521ed56384c483c11cfc 8fa47c83e7cfb8aa82703ce780ed9c59e5a28ba4423a84125279b8c78fb79dec
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/System.ComponentModel.Annotations.dll HTTP/1.1
Host: connecttocontact-code341.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://connecttocontact-code341.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 16:07:53 GMT
content-type: application/x-msdownload
content-length: 5120
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "f7a4d0b0f88c9fa158a8926cb7bfc67e"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9DIZF0vMsrkFJKvM5BWcwwFO3D%2Bl9EQq2Ecgf%2BLwBHV8HsXxI8MYz1YewPpfQ3Cqfhiu%2BWDSLm9SHtOapvyUrdOEXAENHCY0NfEZsw4XPHi0QDy4K6uKhpgDIldHvZXcSCouiYsAhXdVs0CWp1L65IUfBBWW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ab48dfc3a712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| connecttocontact-code341.pages.dev/_framework/System.ComponentModel.dll | 172.66.47.97 | 200 OK | 4.6 kB |
URL GET HTTP/3connecttocontact-code341.pages.dev/_framework/System.ComponentModel.dll IP172.66.47.97:443
Requested byhttps://connecttocontact-code341.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectconnecttocontact-code341.pages.dev FingerprintCC:13:16:E4:C8:52:19:7A:E3:66:7B:68:FB:D0:68:DC:2B:14:04:3A ValiditySun, 05 May 2024 06:47:05 GMT - Sat, 03 Aug 2024 06:47:04 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hash27b0a900bb2621315f9c6f768f4ee159 b95b6e7b38f4f13f64cdc77065a0a0071d329774 2bc562cdb2871df73451b0e58defb2945812bed746853d8f2a6d1109ebbff755
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/System.ComponentModel.dll HTTP/1.1
Host: connecttocontact-code341.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://connecttocontact-code341.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 16:07:53 GMT
content-type: application/x-msdownload
content-length: 4608
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "9c936e2916ffd3cea6e984175e7c29da"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jQv9Fa8CacbKaQSvMDpRhAzksf14wzgXHcRHMzJloUqteKUf5dtctyu4KltVbkn0k07V0cwRR0r0KdMkVgKo5Ck0cFRzqlty6gQlcxuLq29RWsfNfFnkiwnzD29f7JyBE532nEAjeRn07LpsH6lAqF%2FyWaWD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ab48dfc3c712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| connecttocontact-code341.pages.dev/_framework/System.ComponentModel.Primitives.dll | 172.66.47.97 | 200 OK | 11 kB |
URL GET HTTP/3connecttocontact-code341.pages.dev/_framework/System.ComponentModel.Primitives.dll IP172.66.47.97:443
Requested byhttps://connecttocontact-code341.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectconnecttocontact-code341.pages.dev FingerprintCC:13:16:E4:C8:52:19:7A:E3:66:7B:68:FB:D0:68:DC:2B:14:04:3A ValiditySun, 05 May 2024 06:47:05 GMT - Sat, 03 Aug 2024 06:47:04 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hash5a7db7edbff2fd502c5c62af41877fb9 8b8e9c163c409922095d94a8ceddd713f9b272c9 bcb64c5d7b49eadedf53ea798b2947dbebde46e1a290c300669e28fb6ec534e1
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/System.ComponentModel.Primitives.dll HTTP/1.1
Host: connecttocontact-code341.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://connecttocontact-code341.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 16:07:53 GMT
content-type: application/x-msdownload
content-length: 11264
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "085001198d8c51647fbe9413d791dbee"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HaX%2B7CvrmYWlavIL0xPPYFfSMRgiBWYDHXDbgNfNvNSXnUhdBpnDu4D2nAiHvfjPj1f8EbG4cYDSwzijuh5gqCtmyWhAwG50ldc0SMZCNK%2BK1Fc0GzDZOXIzY3tseDqrZxFFRx6gnqYQ9L9LL8iWnSVWcYON"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ab48dfc41712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| connecttocontact-code341.pages.dev/_framework/System.ComponentModel.TypeConverter.dll | 172.66.47.97 | 200 OK | 124 kB |
URL GET HTTP/3connecttocontact-code341.pages.dev/_framework/System.ComponentModel.TypeConverter.dll IP172.66.47.97:443
Requested byhttps://connecttocontact-code341.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectconnecttocontact-code341.pages.dev FingerprintCC:13:16:E4:C8:52:19:7A:E3:66:7B:68:FB:D0:68:DC:2B:14:04:3A ValiditySun, 05 May 2024 06:47:05 GMT - Sat, 03 Aug 2024 06:47:04 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Size124 kB (124416 bytes) Hash1fafddc88ad5641eecc6c0070073260d c3a5f8a41b750c4ee6e7273129f581a4e82ac1e7 b64002564ea8a6b7e75c9335bc7146de8d9064bc9a37136b2d39485bddd1921d
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/System.ComponentModel.TypeConverter.dll HTTP/1.1
Host: connecttocontact-code341.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://connecttocontact-code341.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 16:07:53 GMT
content-type: application/x-msdownload
content-length: 124416
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "ddac8570ebe1f17b88c404cae710cea3"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7%2BXyPUYx32pKmAdxRDI41xqzO0SFvyYXkC32KyZExNHN3jkt3g1xyDfSRARHdYtWfuTMsCg4NAGHZqlxPAuwKDK%2FP9WaywDGLyYA7YjcoybxOlzhajtKU93fNmgbueHlVgIFcPTDWNSNlwaZKTKZLEXxSaWU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ab48dfc45712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| connecttocontact-code341.pages.dev/_framework/System.Data.Common.dll | 172.66.47.97 | 200 OK | 477 kB |
URL GET HTTP/3connecttocontact-code341.pages.dev/_framework/System.Data.Common.dll IP172.66.47.97:443
Requested byhttps://connecttocontact-code341.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectconnecttocontact-code341.pages.dev FingerprintCC:13:16:E4:C8:52:19:7A:E3:66:7B:68:FB:D0:68:DC:2B:14:04:3A ValiditySun, 05 May 2024 06:47:05 GMT - Sat, 03 Aug 2024 06:47:04 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Size477 kB (477184 bytes) Hashdea5f4e0059b0344f3861102a4e4d0f8 8f5b1a9f62ffc34c5c862fa81b3ae56ec6ca3c13 f03ad1a2b0523e81ada4e2a2faf3fc874c2cf3482a8307901eab0883838e263d
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/System.Data.Common.dll HTTP/1.1
Host: connecttocontact-code341.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://connecttocontact-code341.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 16:07:53 GMT
content-type: application/x-msdownload
content-length: 477184
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "fdb7563cadf4403853881517c2111505"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jtPfKkFIwiPX2GmaUbpndNWsBEzJIO%2FrurZxmIYJ6%2BHmcBI%2FmXr3gnpEEQ2VvpEjPkL%2FtrmnfUPVp4S02OgAwH8zCqmVOsWP%2Ba7jQQvVcblgwVFOGypf62v6BEMdw0px%2F7pgOkOFZLTz9t3LDanbig7x3Z%2Bt"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ab48e0c48712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| connecttocontact-code341.pages.dev/_framework/System.Diagnostics.TraceSource.dll | 172.66.47.97 | 200 OK | 18 kB |
URL GET HTTP/3connecttocontact-code341.pages.dev/_framework/System.Diagnostics.TraceSource.dll IP172.66.47.97:443
Requested byhttps://connecttocontact-code341.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectconnecttocontact-code341.pages.dev FingerprintCC:13:16:E4:C8:52:19:7A:E3:66:7B:68:FB:D0:68:DC:2B:14:04:3A ValiditySun, 05 May 2024 06:47:05 GMT - Sat, 03 Aug 2024 06:47:04 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hashc45120271a5e62e2fad35eb2fc9a23ea d730abb5643bf8e3896b0ee3e162d847082fc7ed afa949758648fe982ae7b3b950c8d7a7bd2154134716341b078d2eec2edf7ead
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/System.Diagnostics.TraceSource.dll HTTP/1.1
Host: connecttocontact-code341.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://connecttocontact-code341.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 16:07:53 GMT
content-type: application/x-msdownload
content-length: 17920
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "daa0a822f8b4b41a5aa4891ffb6049c4"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DT5cyuDn%2Fn26SpckoMbjLlJ54GLAhsPYofgDGBgCdRAN7jb3e9pEihKgOCfDlKcZwTnqCrmIJRAV3yo1EqCuV61hRxQtqDeE6lG3zIhg5%2FZQRlJKi6RPE4192%2FRntUbTThXil0Zhr4a3rGiLEMMaXSe0UezO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ab48e0c4e712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| connecttocontact-code341.pages.dev/_framework/System.dll | 172.66.47.97 | 200 OK | 4.1 kB |
URL GET HTTP/3connecttocontact-code341.pages.dev/_framework/System.dll IP172.66.47.97:443
Requested byhttps://connecttocontact-code341.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectconnecttocontact-code341.pages.dev FingerprintCC:13:16:E4:C8:52:19:7A:E3:66:7B:68:FB:D0:68:DC:2B:14:04:3A ValiditySun, 05 May 2024 06:47:05 GMT - Sat, 03 Aug 2024 06:47:04 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hash13655ab2317ecf830672c69d89a59879 76fbc3005c32ce31ff6a3c2ad479c823ef633173 fe1e2611c648e5f81a1f41402f0321f8c2c11537bba5a4df6b62ff4b0d80438f
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/System.dll HTTP/1.1
Host: connecttocontact-code341.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://connecttocontact-code341.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 16:07:53 GMT
content-type: application/x-msdownload
content-length: 4096
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "e87c0d22627514d5234d41c7d8c4dddf"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nIozs%2FFbFgK%2FoPe%2BCFxAw%2F46wi4ANPTYLUfi9JKWdVzI2tOZNbT1ltyr3l4VFoEvbIb8morZNgQY0lY4vrkhEJeMTaOZ37f6vok%2Fq0G2w3oxjiFo%2FFRbc%2FmFs9zxrz%2BV0v23EHqhKpH8CYPW04IH%2Bdd6dVzn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ab48e0c51712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| connecttocontact-code341.pages.dev/_framework/System.Drawing.dll | 172.66.47.97 | 200 OK | 4.6 kB |
URL GET HTTP/3connecttocontact-code341.pages.dev/_framework/System.Drawing.dll IP172.66.47.97:443
Requested byhttps://connecttocontact-code341.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectconnecttocontact-code341.pages.dev FingerprintCC:13:16:E4:C8:52:19:7A:E3:66:7B:68:FB:D0:68:DC:2B:14:04:3A ValiditySun, 05 May 2024 06:47:05 GMT - Sat, 03 Aug 2024 06:47:04 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hash8bef77f76bf6e8c95e0ede7a3a5eb89b 6f85674562e553e74e20ba4a6a6dd20337098936 8c988b30603151b8dba40825fb34ec214d6b8b6aacd38a73571ce4106d22dc0b
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/System.Drawing.dll HTTP/1.1
Host: connecttocontact-code341.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://connecttocontact-code341.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 16:07:53 GMT
content-type: application/x-msdownload
content-length: 4608
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "fcfdefd11ede92e60b8537a06b33a80e"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RSoXhjPlWBLaOqGfMAPaFOoKYzs4Ixp9w2moS1VXTVQxzltGCCT5UZluIS1WAakmhizi6TJQfKhQBEkkDnoza%2BFWZkJastafuCx4LeQjOEpadaTRlhc%2Fj1SAOFXwEBlY%2Ft7wRmdSKAbv5lvJGrJ4tP8%2B4OvA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ab48e0c55712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| connecttocontact-code341.pages.dev/_framework/System.Drawing.Primitives.dll | 172.66.47.97 | 200 OK | 35 kB |
URL GET HTTP/3connecttocontact-code341.pages.dev/_framework/System.Drawing.Primitives.dll IP172.66.47.97:443
Requested byhttps://connecttocontact-code341.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectconnecttocontact-code341.pages.dev FingerprintCC:13:16:E4:C8:52:19:7A:E3:66:7B:68:FB:D0:68:DC:2B:14:04:3A ValiditySun, 05 May 2024 06:47:05 GMT - Sat, 03 Aug 2024 06:47:04 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hasha24f03e355332fa18742c5091e8c8496 6366c5451ba962f2b85b8ca141185f82422a0f9e 964222cc6b8efeb751bb7651605010a4fdca03e2f7b960b1a51e98b7e0b35f5d
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/System.Drawing.Primitives.dll HTTP/1.1
Host: connecttocontact-code341.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://connecttocontact-code341.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 16:07:53 GMT
content-type: application/x-msdownload
content-length: 34816
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "90242c9a5942dc7a63ffb41978189826"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WEXpB5L0HGh3C%2Ba3NBT%2FufZzCjnW%2B5TDF%2Fa%2BgyAr0ajWbNBPUx4iSn547n2%2Fkn5iIT4AJe0xTRyht7pzWIYrRZYbMUPaEFld7jMyUIDtkn9A8vozSvfiSgpxOEIPKNRQ5wOmZAX1YHjxdvTXuFgh%2FcP%2F%2BBsl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ab48e0c58712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| connecttocontact-code341.pages.dev/_framework/System.Linq.dll | 172.66.47.97 | 200 OK | 35 kB |
URL GET HTTP/3connecttocontact-code341.pages.dev/_framework/System.Linq.dll IP172.66.47.97:443
Requested byhttps://connecttocontact-code341.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectconnecttocontact-code341.pages.dev FingerprintCC:13:16:E4:C8:52:19:7A:E3:66:7B:68:FB:D0:68:DC:2B:14:04:3A ValiditySun, 05 May 2024 06:47:05 GMT - Sat, 03 Aug 2024 06:47:04 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hash35263b743d90b0ef43167655e0dbf439 65739656163a2e3126067b852357fb4a15990b95 b7e64b8e7d0efd9ff3ec0a8a376520e8aebf76296acc0bbbe8909b7c30c0010e
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/System.Linq.dll HTTP/1.1
Host: connecttocontact-code341.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://connecttocontact-code341.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 16:07:53 GMT
content-type: application/x-msdownload
content-length: 34816
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "83aedc265b80772bc4c8de5592ff5930"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IptFY6itAwVVFmZBPiLVzh9B1Fm8yUJ1Q19RUKos4%2FnQBpTEo3qJ%2Bwrcn2Fp20PZeOQWls9zLo%2BZZ9kKHoFZwXTS2zvACBH%2Bk0qI2MDhKQ3uJZ9e5MyeBt%2BZU9xJsyUUw%2F9VC6aZmZhRTdVGOZiTL5oe0g%2Fg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ab48e0c63712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| connecttocontact-code341.pages.dev/_framework/System.Linq.Expressions.dll | 172.66.47.97 | 200 OK | 416 kB |
URL GET HTTP/3connecttocontact-code341.pages.dev/_framework/System.Linq.Expressions.dll IP172.66.47.97:443
Requested byhttps://connecttocontact-code341.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectconnecttocontact-code341.pages.dev FingerprintCC:13:16:E4:C8:52:19:7A:E3:66:7B:68:FB:D0:68:DC:2B:14:04:3A ValiditySun, 05 May 2024 06:47:05 GMT - Sat, 03 Aug 2024 06:47:04 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Size416 kB (415744 bytes) Hashfcdf86d9e7a15146deae985fe39c6e9c 5ee57a2aa862415023b208e0df3ff7f29ee0a1ac 797ba5b4e319b87ea1e8cd068152056313db617d35fcff9fa19cce0269640f16
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/System.Linq.Expressions.dll HTTP/1.1
Host: connecttocontact-code341.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://connecttocontact-code341.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 16:07:53 GMT
content-type: application/x-msdownload
content-length: 415744
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "048acc19410e565af59679044957ab58"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7ZSs53koGU0qkhnAToGevV0Y9UNrz8Ko04EyiDK6tksrwJFPz5EMp7kTAbeZUx11cH6PMkfdkjt7QCD9aIXTtfDdjzoow73V5zB3F3EXn6509dEUKVnNbpNWwN472ehdD1h6hZOEIqrDdOFcmN2%2FmlgLT9%2Bc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ab48e1c65712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| connecttocontact-code341.pages.dev/_framework/System.Memory.dll | 172.66.47.97 | 200 OK | 13 kB |
URL GET HTTP/3connecttocontact-code341.pages.dev/_framework/System.Memory.dll IP172.66.47.97:443
Requested byhttps://connecttocontact-code341.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectconnecttocontact-code341.pages.dev FingerprintCC:13:16:E4:C8:52:19:7A:E3:66:7B:68:FB:D0:68:DC:2B:14:04:3A ValiditySun, 05 May 2024 06:47:05 GMT - Sat, 03 Aug 2024 06:47:04 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hasheb4ba6da3a9019c76fdd35675c34ed8a 7e5a2ae4104ebf978cd81649678542d860b1c810 225e1e1a44388cc8ef58516137bef1821cfc8ee4bdc1ff3d5df97c769c79d766
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/System.Memory.dll HTTP/1.1
Host: connecttocontact-code341.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://connecttocontact-code341.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 16:07:53 GMT
content-type: application/x-msdownload
content-length: 13312
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "1a6f9cfd8524320884ff279dcc0e2f62"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Sc88P3YV39v0NqzOxpI%2FYLSPgo01XBhOpDCxJXa0%2F7iIKsXZR8CsGU8MsfyCKfVQeBcEA2bGM43gGr4qW5rGGmnFUcr%2Ff5RpJCBN9xcTmB%2BA41BnvwBgn38blSEFwgKg0Gelaea8Dw3XFjohBdZIAiJp9ogR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ab48e1c72712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| connecttocontact-code341.pages.dev/_framework/System.Net.Http.dll | 172.66.47.97 | 200 OK | 148 kB |
URL GET HTTP/3connecttocontact-code341.pages.dev/_framework/System.Net.Http.dll IP172.66.47.97:443
Requested byhttps://connecttocontact-code341.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectconnecttocontact-code341.pages.dev FingerprintCC:13:16:E4:C8:52:19:7A:E3:66:7B:68:FB:D0:68:DC:2B:14:04:3A ValiditySun, 05 May 2024 06:47:05 GMT - Sat, 03 Aug 2024 06:47:04 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Size148 kB (148480 bytes) Hashc402052d6b7c117e3afb6885120d1ec9 b70ec40ad1afacb9ac47e300a41165ebc21624db a54aec8a460b8aa23cf607a90751be1b487fe14647548e07287ee12e3c359c61
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/System.Net.Http.dll HTTP/1.1
Host: connecttocontact-code341.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://connecttocontact-code341.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 16:07:53 GMT
content-type: application/x-msdownload
content-length: 148480
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "ca2bb816412a689082cdc26ba38d8c29"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zFIOnPs25wfiITAyj0KUI6fwlp53mK91o0oZM%2FudbUnPa0uaYu4CBls50LTag%2FgWr2zEUf0hGgh6RmDIHTLs7OkLWhhwF6j3YXGWyk3PO6Cosbd%2FH1UmhCyLt%2B4JMSbgIuf9HagtTn92BcuugJZhDuwqejAS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ab48e1c73712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| connecttocontact-code341.pages.dev/_framework/System.Net.Primitives.dll | 172.66.47.97 | 200 OK | 7.2 kB |
URL GET HTTP/3connecttocontact-code341.pages.dev/_framework/System.Net.Primitives.dll IP172.66.47.97:443
Requested byhttps://connecttocontact-code341.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectconnecttocontact-code341.pages.dev FingerprintCC:13:16:E4:C8:52:19:7A:E3:66:7B:68:FB:D0:68:DC:2B:14:04:3A ValiditySun, 05 May 2024 06:47:05 GMT - Sat, 03 Aug 2024 06:47:04 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hash17247d91b0d7c8d608bc7ddeebcde4f4 b2fec4e22176cb1c8cc32dfcf7799e550feca3b9 cb5283edef2a7a08297ade3fc2d0fa6adb02a7f5d57bfab50bc493a3fa0400c6
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/System.Net.Primitives.dll HTTP/1.1
Host: connecttocontact-code341.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://connecttocontact-code341.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 16:07:53 GMT
content-type: application/x-msdownload
content-length: 7168
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "9cc23eb29a9701d70cc10358053eb509"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JDsxoweEIVQISc4wyyRjSWmQGKK6rPQcA8zG2CqHSgkry%2Fg2NwiQJSU6C4oBmj4mba0StD3Tb2uYmI%2BsHDpFh3ZE%2BBfvWD1fkW%2BHxk8RVom6LxV%2Bcis0eIuOPLMBnXzQD5EhtuvurwFh4o0DLKzl%2BoaAvtJu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ab48e1c74712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| connecttocontact-code341.pages.dev/_framework/System.ObjectModel.dll | 172.66.47.97 | 200 OK | 13 kB |
URL GET HTTP/3connecttocontact-code341.pages.dev/_framework/System.ObjectModel.dll IP172.66.47.97:443
Requested byhttps://connecttocontact-code341.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectconnecttocontact-code341.pages.dev FingerprintCC:13:16:E4:C8:52:19:7A:E3:66:7B:68:FB:D0:68:DC:2B:14:04:3A ValiditySun, 05 May 2024 06:47:05 GMT - Sat, 03 Aug 2024 06:47:04 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hashcba9637f55497f829f75e1935748deec f2031a698310fae9479ba705369b1329226d4cde a2650c2ae8c6fe832381a2717e7c2a3aafabbace658669c5f5ad487e82450f93
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/System.ObjectModel.dll HTTP/1.1
Host: connecttocontact-code341.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://connecttocontact-code341.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 16:07:53 GMT
content-type: application/x-msdownload
content-length: 13312
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "4f5f4e3e9547ff7b54514f3e4fd4a1b0"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=n8gQrOoG4vbPjkjrSn6j4Px8GCzs7OQDYnbm38OaTgfiyGL8wJaiuQjf6%2BHVL%2FS8DgKXcimlu%2BmhwJL%2B%2FQPAQCrikGLQyo3zqwdDjEYqvu1mCHmY3GD8VN3Af%2BSo1%2B4viSZEvrTIuVPJ6C%2BBiH1BVtzTPsBm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ab48e1c76712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| connecttocontact-code341.pages.dev/_framework/System.Private.CoreLib.dll | 172.66.47.97 | 200 OK | 1.7 MB |
URL GET HTTP/3connecttocontact-code341.pages.dev/_framework/System.Private.CoreLib.dll IP172.66.47.97:443
Requested byhttps://connecttocontact-code341.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectconnecttocontact-code341.pages.dev FingerprintCC:13:16:E4:C8:52:19:7A:E3:66:7B:68:FB:D0:68:DC:2B:14:04:3A ValiditySun, 05 May 2024 06:47:05 GMT - Sat, 03 Aug 2024 06:47:04 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Size1.7 MB (1740800 bytes) Hash8aead27ad83b2319a5b17a3bdb934d43 b32f25cc1c6f75b0dc8227f557402902943e8478 1a06810a97fa4aff6e9118e3759ac2f5dedf69568a44008425cb3a51b2041f46
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/System.Private.CoreLib.dll HTTP/1.1
Host: connecttocontact-code341.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://connecttocontact-code341.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 16:07:53 GMT
content-type: application/x-msdownload
content-length: 1740800
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "33059cd6c58c49f0cbc5b7a44dd49e70"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GYRQLV1teofjWaeclBTfXIhyJeb1Z%2F3RXfDcBVL8%2F3USHYdSOhxlcimyhC1cugiFnz4RaPWzX62EgIyFBY5ulSPOqtYf9dO0Ix8d5%2B3X1%2F2nmJdFa429s9a%2BDoq92Euvt5j0THC%2FUFccFQFjFSzMEF%2BYYfU5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ab48e7ce1712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| connecttocontact-code341.pages.dev/_framework/System.Private.Uri.dll | 172.66.47.97 | 200 OK | 66 kB |
URL GET HTTP/3connecttocontact-code341.pages.dev/_framework/System.Private.Uri.dll IP172.66.47.97:443
Requested byhttps://connecttocontact-code341.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectconnecttocontact-code341.pages.dev FingerprintCC:13:16:E4:C8:52:19:7A:E3:66:7B:68:FB:D0:68:DC:2B:14:04:3A ValiditySun, 05 May 2024 06:47:05 GMT - Sat, 03 Aug 2024 06:47:04 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hashf0c5e1bcff47dfa39b51328fb6e331a9 5d0880d3ee0c596af48a1429e89b2e386f187b94 94fe6fa43ef50c56687c3c8b1be09f2c414811d553a21d50ef80aaffbd769f95
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/System.Private.Uri.dll HTTP/1.1
Host: connecttocontact-code341.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://connecttocontact-code341.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 16:07:53 GMT
content-type: application/x-msdownload
content-length: 65536
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "38fb64d5ce2c99f5868485b51a22ccf9"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=N3zj42RbBVtffTgIEmTmxO22xh7MIN3ekNZfYrUuP3dVzInc9mnvq6cAvNiHLSIO8J2vVzRdq2L9%2BxUWfqR2fDdRBqpLiHoi%2Bd1zHoDCPevGsyHzXghc5KeaiVzNHlDJlMwhYN5RBzxlBUH5ENA6%2BLhkNYcZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ab48e8ce7712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| connecttocontact-code341.pages.dev/_framework/System.Private.Xml.dll | 172.66.47.97 | 200 OK | 1.3 MB |
URL GET HTTP/3connecttocontact-code341.pages.dev/_framework/System.Private.Xml.dll IP172.66.47.97:443
Requested byhttps://connecttocontact-code341.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectconnecttocontact-code341.pages.dev FingerprintCC:13:16:E4:C8:52:19:7A:E3:66:7B:68:FB:D0:68:DC:2B:14:04:3A ValiditySun, 05 May 2024 06:47:05 GMT - Sat, 03 Aug 2024 06:47:04 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Size1.3 MB (1278464 bytes) Hash4472a3487f69824ac5aaa7ffec5955ca 6af1b6dde89ff1e365b4c96fb5f1bfaac7911390 f3d8061bcd3c8255f303135009ebb6e86fa1136fce8fb60488193c6831c1d3b0
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/System.Private.Xml.dll HTTP/1.1
Host: connecttocontact-code341.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://connecttocontact-code341.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 16:07:53 GMT
content-type: application/x-msdownload
content-length: 1278464
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "422154e68a36576b53d3735b19cc3bfa"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5AMPEkKzr8gTJgYmmt6Jh6GT3V2Ytf4RIDxslU0bN57xZ8d9mn4i%2BM%2FbOJaI4VTqFiM194EuSP1%2Ft4JY%2BzT%2FRq%2BBAHiCL7r3%2F0ZsU7%2FwTv1IGjUpIamffGj%2B1Z%2FRVmP%2Bl85i94k1xpWvV45oqD37w6fMrKag"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ab48e8cec712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| connecttocontact-code341.pages.dev/_framework/System.Private.Xml.Linq.dll | 172.66.47.97 | 200 OK | 40 kB |
URL GET HTTP/3connecttocontact-code341.pages.dev/_framework/System.Private.Xml.Linq.dll IP172.66.47.97:443
Requested byhttps://connecttocontact-code341.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectconnecttocontact-code341.pages.dev FingerprintCC:13:16:E4:C8:52:19:7A:E3:66:7B:68:FB:D0:68:DC:2B:14:04:3A ValiditySun, 05 May 2024 06:47:05 GMT - Sat, 03 Aug 2024 06:47:04 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hashd84d3eba00534c4fd151071cac4fab09 e9886e067d9ec75c1f9f164eb32feedce9059346 6533a7be80db812b314a607e2acfa831fee6106e2a8a8a033ef905bbb8602edd
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/System.Private.Xml.Linq.dll HTTP/1.1
Host: connecttocontact-code341.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://connecttocontact-code341.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 16:07:53 GMT
content-type: application/x-msdownload
content-length: 40448
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "cc0132eef7dd2193a19624e0412e21be"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EsCfOV%2B8PIbjbDcOhwyqZR6QXYZscEyuDv0eV6yp28evaJdZS3B7C78eRzi8wnA7tuuEw2Ge39GgLhuthIFX3voLtffdCC0GdvawNWfTIeY7H9uk%2Fn8sDCmngquJp6Lz7QguInl0yQvZPnhhkQ%2F2pSbAQqAx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ab48e8cee712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| connecttocontact-code341.pages.dev/_framework/System.Runtime.dll | 172.66.47.97 | 200 OK | 8.2 kB |
URL GET HTTP/3connecttocontact-code341.pages.dev/_framework/System.Runtime.dll IP172.66.47.97:443
Requested byhttps://connecttocontact-code341.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectconnecttocontact-code341.pages.dev FingerprintCC:13:16:E4:C8:52:19:7A:E3:66:7B:68:FB:D0:68:DC:2B:14:04:3A ValiditySun, 05 May 2024 06:47:05 GMT - Sat, 03 Aug 2024 06:47:04 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hashe4d61a803c6d2e1fdd32b6ed6af51406 4ac8c869879122c8f310477574da753446ff14d7 336b925dff6824418ded4a719c0341773b845d961703138468f3c52c188c684d
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/System.Runtime.dll HTTP/1.1
Host: connecttocontact-code341.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://connecttocontact-code341.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 16:07:53 GMT
content-type: application/x-msdownload
content-length: 8192
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "9d509073d74f75772ef6cdada99900d8"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=D8ACkKWaKVCq%2FW5lKXou66E4AUq4OcijeK%2BWGFfefsA3%2FXa8TkVG9wale%2BuqyxBeghNUaoG05HIj9MCg6Ri7r2%2BRLgdatjOhlORYJoISFDm%2B7qdUSd%2F4wXgJJwI1e7QmEOtW2UXpBOlHrk1BRlhHPOeMfhdW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ab48e8cf2712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| connecttocontact-code341.pages.dev/_framework/System.Runtime.InteropServices.JavaScript.dll | 172.66.47.97 | 200 OK | 37 kB |
URL GET HTTP/3connecttocontact-code341.pages.dev/_framework/System.Runtime.InteropServices.JavaScript.dll IP172.66.47.97:443
Requested byhttps://connecttocontact-code341.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectconnecttocontact-code341.pages.dev FingerprintCC:13:16:E4:C8:52:19:7A:E3:66:7B:68:FB:D0:68:DC:2B:14:04:3A ValiditySun, 05 May 2024 06:47:05 GMT - Sat, 03 Aug 2024 06:47:04 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hash220db4f09029262275410abd5ce889f6 f916b528850918ca7f6eb4ae31f000b6dde129ac dcd716f19c85af8522673f4dae46372b3ba455d6f1aa995b212dc90bfcd14a51
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/System.Runtime.InteropServices.JavaScript.dll HTTP/1.1
Host: connecttocontact-code341.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://connecttocontact-code341.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 16:07:53 GMT
content-type: application/x-msdownload
content-length: 36864
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "aa18a8902f660594c288414c7fdf65cc"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=N6RrY0R%2FmT%2FMtyWAFtLn1RreBWbAx8FO9eq3soL3D%2FjYzuLDFZuXgli97zgifE9CZAB2XLdHVZYNHMWdAnCbMZLx%2BvKEvepfj1Hc5%2BENHPUIKuKhQuBcaQOB5DB64tAsIqZbz4%2FIqdmr%2B9ZXk4J%2FzBAFNMsZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ab48e8cf4712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| connecttocontact-code341.pages.dev/_framework/System.Runtime.Numerics.dll | 172.66.47.97 | 200 OK | 85 kB |
URL GET HTTP/3connecttocontact-code341.pages.dev/_framework/System.Runtime.Numerics.dll IP172.66.47.97:443
Requested byhttps://connecttocontact-code341.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectconnecttocontact-code341.pages.dev FingerprintCC:13:16:E4:C8:52:19:7A:E3:66:7B:68:FB:D0:68:DC:2B:14:04:3A ValiditySun, 05 May 2024 06:47:05 GMT - Sat, 03 Aug 2024 06:47:04 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hash76aaa553925c68c267c00ebce9ecbf25 c9a473b19c8faed91354d4fc66f882d39f0abfc9 48cbb1c0e5615c5783ab59887dbaeb920798ed2e6cb534be9ac915f41a27cfe2
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/System.Runtime.Numerics.dll HTTP/1.1
Host: connecttocontact-code341.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://connecttocontact-code341.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 16:07:53 GMT
content-type: application/x-msdownload
content-length: 84992
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "342881f063f1be558529ffeaf0155986"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VaNGe0eS8nYKoaijIPpHpBF%2F5mY9%2FpgqTILxWpsL1MqQ6jnhEFX9LL%2BG3A2OHLUbTJZiYsPfbqoN1DVM08G%2FpK5rWppINuC45CRLP5mTcegkBoGrDtJbJe2F8Q6ZytG6vhJOLXkYq%2BY5Dn7WPas8Gku%2FTXVY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ab48e8cf5712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| connecttocontact-code341.pages.dev/_framework/System.Runtime.Serialization.Formatters.dll | 172.66.47.97 | 200 OK | 6.7 kB |
URL GET HTTP/3connecttocontact-code341.pages.dev/_framework/System.Runtime.Serialization.Formatters.dll IP172.66.47.97:443
Requested byhttps://connecttocontact-code341.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectconnecttocontact-code341.pages.dev FingerprintCC:13:16:E4:C8:52:19:7A:E3:66:7B:68:FB:D0:68:DC:2B:14:04:3A ValiditySun, 05 May 2024 06:47:05 GMT - Sat, 03 Aug 2024 06:47:04 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hash3858d983827799c33ba5eb88a384e809 33ea3eced38262243620f0b7c11de93f97cb8f33 f078d52c4c5e536b5c7f8c1bd7a1473cf167c999f38c55b676b2eff3f8446b73
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/System.Runtime.Serialization.Formatters.dll HTTP/1.1
Host: connecttocontact-code341.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://connecttocontact-code341.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 16:07:53 GMT
content-type: application/x-msdownload
content-length: 6656
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "6890fcfcc1fad4d90a025c13a9339d07"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GUQxFlGActFpFVq29Va4MegWFyWBLMU5NaTFU86sKE1OVZBLp9n8d1uXsq4gcYpW7FgJRoch3WvCwDeN0N8bhV1h2rO%2FqDiQyRzEB4RSy2mG1R9xsQ%2Fb5YhjrjO6nL4UxLq7ACAnVZlJ09BE%2Fp7eI%2BG3%2BNkh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ab48e8cf7712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| connecttocontact-code341.pages.dev/_framework/System.Runtime.Serialization.Primitives.dll | 172.66.47.97 | 200 OK | 5.1 kB |
URL GET HTTP/3connecttocontact-code341.pages.dev/_framework/System.Runtime.Serialization.Primitives.dll IP172.66.47.97:443
Requested byhttps://connecttocontact-code341.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectconnecttocontact-code341.pages.dev FingerprintCC:13:16:E4:C8:52:19:7A:E3:66:7B:68:FB:D0:68:DC:2B:14:04:3A ValiditySun, 05 May 2024 06:47:05 GMT - Sat, 03 Aug 2024 06:47:04 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hashd4fcb18362a2353cbff57e8f90c983c6 071c19ced1e1f5c036455035c523127ca654caef 35b04719f40b968929b85de4458844f75da1e4717d958d8a9c76b68af4bea0e1
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/System.Runtime.Serialization.Primitives.dll HTTP/1.1
Host: connecttocontact-code341.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://connecttocontact-code341.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 16:07:53 GMT
content-type: application/x-msdownload
content-length: 5120
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "61a72df0237f58bf0d3a3c67a6d08ab3"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DdeIG%2FRoAlLg1JP9qFjZyoBpzrX6%2BNLyGVPwz2nu5btO%2By%2FdWrztgw4g6kZK2i5MZp3hAGvjoLN7qKiYl3t%2FIJgULA%2FBUjzqmXPAOvc9ddrAkMaJtYg8y0vqk5fUzdO4%2FfSWaQORbdOgCWmjW8OER6ZFyliY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ab48e8cf9712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| connecttocontact-code341.pages.dev/_framework/System.Security.Cryptography.dll | 172.66.47.97 | 200 OK | 17 kB |
URL GET HTTP/3connecttocontact-code341.pages.dev/_framework/System.Security.Cryptography.dll IP172.66.47.97:443
Requested byhttps://connecttocontact-code341.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectconnecttocontact-code341.pages.dev FingerprintCC:13:16:E4:C8:52:19:7A:E3:66:7B:68:FB:D0:68:DC:2B:14:04:3A ValiditySun, 05 May 2024 06:47:05 GMT - Sat, 03 Aug 2024 06:47:04 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hash745955a81d90b9733b780a1575d5037a e79f9954c83ac5c3f19b1a72eb69ea6082bd8271 8a9ffaf15ce4aca6dde53860e107928c636bb8667ad37b366b574ed2b67ea80a
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/System.Security.Cryptography.dll HTTP/1.1
Host: connecttocontact-code341.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://connecttocontact-code341.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 16:07:53 GMT
content-type: application/x-msdownload
content-length: 17408
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "eb6afc71c754017b0783b902c5cea9c8"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yQnwD4%2BRXZMi9fcnYK8YrVFZ3ZnlA6dHqRZkgaba%2FkBvH9G3PjyWNN8r0%2B2Vmq1rnMpo0ux%2Fq3Zu9NkKJMb4QftAtXPiYlfT5M8qGHxsZwnFzE2k6msC8NnuC9evEr4Mc7QVqQWYVmYKRzDDSUMI4XAoRGSp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ab48e8cfa712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| connecttocontact-code341.pages.dev/_framework/System.Text.Encodings.Web.dll | 172.66.47.97 | 200 OK | 28 kB |
URL GET HTTP/3connecttocontact-code341.pages.dev/_framework/System.Text.Encodings.Web.dll IP172.66.47.97:443
Requested byhttps://connecttocontact-code341.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectconnecttocontact-code341.pages.dev FingerprintCC:13:16:E4:C8:52:19:7A:E3:66:7B:68:FB:D0:68:DC:2B:14:04:3A ValiditySun, 05 May 2024 06:47:05 GMT - Sat, 03 Aug 2024 06:47:04 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hash52c49c974732b3c40586482cafec9b50 bad427642bf0dd07d2f5dcd4b97a40434d5dcb4b 81f1866099c18d3e732ea42f23f6c7b1ac60a6a8a0544496be64f6c8637ff25d
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/System.Text.Encodings.Web.dll HTTP/1.1
Host: connecttocontact-code341.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://connecttocontact-code341.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 16:07:53 GMT
content-type: application/x-msdownload
content-length: 28160
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "b54aaa519b6e2738d3b63041202e00f2"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TyinN1J41j1Nn4QewrpeZIPbm7xsZB4Y6GyqanIzOSTT9xE4IEl6FD7Q%2BmSVgHqzvY1T%2BhPHbb6WwOOfb6trbnuUJw%2F7WrmHrNrJ1pHdwgjp9jF7%2FxDS6lUn9MHJ6LYVscpNztCLxiICmW%2B8%2B%2FbvQuxs0mm6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ab48e8cfc712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| connecttocontact-code341.pages.dev/_framework/System.Text.Json.dll | 172.66.47.97 | 200 OK | 321 kB |
URL GET HTTP/3connecttocontact-code341.pages.dev/_framework/System.Text.Json.dll IP172.66.47.97:443
Requested byhttps://connecttocontact-code341.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectconnecttocontact-code341.pages.dev FingerprintCC:13:16:E4:C8:52:19:7A:E3:66:7B:68:FB:D0:68:DC:2B:14:04:3A ValiditySun, 05 May 2024 06:47:05 GMT - Sat, 03 Aug 2024 06:47:04 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Size321 kB (321024 bytes) Hashebe682df5f4ad2b8721bf4de5b2c6150 cbb617914a37dc2b7febc61bfb43e71b7a9d1bb0 ec1229fdb78d5f1d0e8237fd110472227e135f1438306e53268859725aa146e8
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/System.Text.Json.dll HTTP/1.1
Host: connecttocontact-code341.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://connecttocontact-code341.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 16:07:53 GMT
content-type: application/x-msdownload
content-length: 321024
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "80f8ea8c612ed0bacf41b5d8a16484f9"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qaqV1CGFLvmCprXv3grUVewBhmwRQ6hk0T8uIYPIJKN0V2vl5umhqFBUr4xAXoL9m4bvlVCWbB3F6C8PbPc5ardCvvXQ0XXuXJ5iyeDNDbb3EZobPVBiE3HVXVPL8n5KIi4nHtp8OA%2B02bjr%2BvhAWnM5FO9j"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ab48e8cfd712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| connecttocontact-code341.pages.dev/_framework/System.Text.RegularExpressions.dll | 172.66.47.97 | 200 OK | 227 kB |
URL GET HTTP/3connecttocontact-code341.pages.dev/_framework/System.Text.RegularExpressions.dll IP172.66.47.97:443
Requested byhttps://connecttocontact-code341.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectconnecttocontact-code341.pages.dev FingerprintCC:13:16:E4:C8:52:19:7A:E3:66:7B:68:FB:D0:68:DC:2B:14:04:3A ValiditySun, 05 May 2024 06:47:05 GMT - Sat, 03 Aug 2024 06:47:04 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Size227 kB (227328 bytes) Hashcdd15ba444b12aae4e2f9148580b3ea2 66aaa2ec9a379d1697e4e7202b75ceda7577bd38 7dbabb523782864d97a0a6a82d83debc809dcd8a5ea61dfb1e2caa5aa1c6b34b
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/System.Text.RegularExpressions.dll HTTP/1.1
Host: connecttocontact-code341.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://connecttocontact-code341.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 16:07:53 GMT
content-type: application/x-msdownload
content-length: 227328
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "a03fa801f1f07dcb0186e8f51ebaafe9"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QkJjfZdIVAbzeDVRRSRtUTzgUis%2Bv42UUJEwpKN1MX8BobiGwTIDjrg5OBdRFKEJOjqdxd%2FWOBx3R3NKqq5YTQIiDkN9GuCbyoLkTRz%2BAAKt6q00GQvR9cqh%2Binc7YXraTLdi8S7%2FV0nXgnxSziKZAjgu0jP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ab48e8d00712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| connecttocontact-code341.pages.dev/_framework/System.Threading.Channels.dll | 172.66.47.97 | 200 OK | 22 kB |
URL GET HTTP/3connecttocontact-code341.pages.dev/_framework/System.Threading.Channels.dll IP172.66.47.97:443
Requested byhttps://connecttocontact-code341.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectconnecttocontact-code341.pages.dev FingerprintCC:13:16:E4:C8:52:19:7A:E3:66:7B:68:FB:D0:68:DC:2B:14:04:3A ValiditySun, 05 May 2024 06:47:05 GMT - Sat, 03 Aug 2024 06:47:04 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hash8bac70716c3dff0063d5016cf0fdd852 cf5b49a9552ab3fbcc42c936cdfdef44218d3db0 499cf0296c040f5a0671151a1718e643fb3a6f15cb74789b7acffd844f6e9865
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/System.Threading.Channels.dll HTTP/1.1
Host: connecttocontact-code341.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://connecttocontact-code341.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 16:07:53 GMT
content-type: application/x-msdownload
content-length: 22016
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "649762fded585207ce36b59e5f0058fb"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=x%2ByBO81Kj2fpehUioX59IoREt2njVUj%2FM2VlNbx9q7Wp5SR2at%2B3CszTpeXNRZLroMsMb9kScJTJ5DEz0t2ZWKHXKSwO%2BigYyM%2FIPGbMH%2FPpslESNeIF8OqU7aJhQy0tMeMju25%2F7VUnQnay4LtRYplezw0X"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ab48e8d03712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| connecttocontact-code341.pages.dev/_framework/System.Threading.dll | 172.66.47.97 | 200 OK | 4.6 kB |
URL GET HTTP/3connecttocontact-code341.pages.dev/_framework/System.Threading.dll IP172.66.47.97:443
Requested byhttps://connecttocontact-code341.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectconnecttocontact-code341.pages.dev FingerprintCC:13:16:E4:C8:52:19:7A:E3:66:7B:68:FB:D0:68:DC:2B:14:04:3A ValiditySun, 05 May 2024 06:47:05 GMT - Sat, 03 Aug 2024 06:47:04 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hashdf1be07f93ce4cce720ea0fd13f579a5 0eead4c421c1dedcda3724d3f96231f22dcf7ef0 f726b017f0b126d54b62f0192ab99ec3759c0311af19d0de6c5e51b506bbd48c
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/System.Threading.dll HTTP/1.1
Host: connecttocontact-code341.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://connecttocontact-code341.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 16:07:53 GMT
content-type: application/x-msdownload
content-length: 4608
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "1424cf93e47be50597946e3ec68beec0"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HyJg6Yo%2Bf7oBc7ptg1XN9cLChbQA33YD3gz0MlNxZ3z%2FcBfcXci9Nf79Ii6UV680lliaq%2FSjscykAeG7XlhXGXWbTqqK%2F5sY4tHX9gYnuRu9tvcz2itGM4C96NSKhgexeYB30YY5MvgUYIX7SEdvXf6jdIJC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ab48e8d07712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| connecttocontact-code341.pages.dev/_framework/System.Xml.Linq.dll | 172.66.47.97 | 200 OK | 4.1 kB |
URL GET HTTP/3connecttocontact-code341.pages.dev/_framework/System.Xml.Linq.dll IP172.66.47.97:443
Requested byhttps://connecttocontact-code341.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectconnecttocontact-code341.pages.dev FingerprintCC:13:16:E4:C8:52:19:7A:E3:66:7B:68:FB:D0:68:DC:2B:14:04:3A ValiditySun, 05 May 2024 06:47:05 GMT - Sat, 03 Aug 2024 06:47:04 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hash8f751fe370b3228740bd9a59efe8af17 712344eb689900de5c2fc99ae7b25c82b6c359d5 3b6267fc7643d84267cf960e699ea343ac32af79149aeec9fe4547e894f6a062
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/System.Xml.Linq.dll HTTP/1.1
Host: connecttocontact-code341.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://connecttocontact-code341.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 16:07:53 GMT
content-type: application/x-msdownload
content-length: 4096
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "33f1b705d0583728f2fa733130a75378"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=azL8hsgqzGbhT80woE2WaMjPiGl5515T9rimdZ92%2BHWLyHkVQjf58gdy99L5ee4hyPyn5yArcAHlWBCYJB37MCXwc%2F%2FXDKREwAMxdCcRWZRHfh%2FdhjtS%2BCyhGvN9LRJR6Yyt3MUk4IzEzYvTO19IWrN3PAn7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ab48e8d09712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| connecttocontact-code341.pages.dev/_framework/Telegram.Bot.dll | 172.66.47.97 | 200 OK | 392 kB |
URL GET HTTP/3connecttocontact-code341.pages.dev/_framework/Telegram.Bot.dll IP172.66.47.97:443
Requested byhttps://connecttocontact-code341.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectconnecttocontact-code341.pages.dev FingerprintCC:13:16:E4:C8:52:19:7A:E3:66:7B:68:FB:D0:68:DC:2B:14:04:3A ValiditySun, 05 May 2024 06:47:05 GMT - Sat, 03 Aug 2024 06:47:04 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Size392 kB (392192 bytes) Hash2ff3be8841f79bb26a488c8616688826 9ad7898779d748a83ac3b2753f0f21dc40a6ed52 74a7aeb8a48b3e6ec79bd64306200bc44cf534073e0aaa641c46f064c90ac44e
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. | VirusTotal | suspicious | |
GET /_framework/Telegram.Bot.dll HTTP/1.1
Host: connecttocontact-code341.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://connecttocontact-code341.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 16:07:53 GMT
content-type: application/x-msdownload
content-length: 392192
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "2ac18667ecc509baaa9dd23c357fc4cd"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=o7Ho%2FrNbZbFJiUGaTFaQMBs7KWWdKtgoOuEJ4%2FkiNlA%2B3tt%2BCAQWOfkq4mT5cV3sfOigPZv0Cebl64vQdbU42Fx721nUE4FZZh86Scity3txgeYJ7KEmKNXCYpO33QbEqUe2Xff1FrqqGCXOyhvtEwCl0dL0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ab48e8d0e712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| connecttocontact-code341.pages.dev/_framework/dotnet.timezones.blat | 172.66.47.97 | 200 OK | 341 kB |
URL GET HTTP/3connecttocontact-code341.pages.dev/_framework/dotnet.timezones.blat IP172.66.47.97:443
Requested byhttps://connecttocontact-code341.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectconnecttocontact-code341.pages.dev FingerprintCC:13:16:E4:C8:52:19:7A:E3:66:7B:68:FB:D0:68:DC:2B:14:04:3A ValiditySun, 05 May 2024 06:47:05 GMT - Sat, 03 Aug 2024 06:47:04 GMT
Size341 kB (341310 bytes) Hashb53c9f608617d2ab82fd6149888b8470 2efee2c83e0aff3274d0c89f14cf3520549f5b12 af0c89a89bb7ea4790c0d9a6fced5757bb6792456574838af062239f881352de
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/dotnet.timezones.blat HTTP/1.1
Host: connecttocontact-code341.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://connecttocontact-code341.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 16:07:53 GMT
content-length: 341310
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "9264db96dec1b8941bbcc2dbcb3972f6"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xNQyy8wCYR4XbrYAX3JDBqmDUsYIkrVsMe00fdYeeeGYJ0qLfPVQ4700uCOnKa00UP%2BVkX%2FTZmShnQ93z6twP4dtHSy31E0YsDjnLic9l3XmDHcnKIoUcwWGGPn0BY4fLShvr%2FlG0gr07dT898%2Ba9cPlxszT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ab48e8d12712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| connecttocontact-code341.pages.dev/_framework/icudt_EFIGS.dat | 172.66.47.97 | 200 OK | 551 kB |
URL GET HTTP/3connecttocontact-code341.pages.dev/_framework/icudt_EFIGS.dat IP172.66.47.97:443
Requested byhttps://connecttocontact-code341.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectconnecttocontact-code341.pages.dev FingerprintCC:13:16:E4:C8:52:19:7A:E3:66:7B:68:FB:D0:68:DC:2B:14:04:3A ValiditySun, 05 May 2024 06:47:05 GMT - Sat, 03 Aug 2024 06:47:04 GMT
Size551 kB (550832 bytes) Hash1c1a277003fe15adc66b782b4362e522 7712276641b5161ffaa7715020aa599cb388c419 f1f22d7ad618f24434c30ea8c704cb893de85e50701caba66de3f6a51178c937
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/icudt_EFIGS.dat HTTP/1.1
Host: connecttocontact-code341.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://connecttocontact-code341.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 16:07:53 GMT
content-length: 550832
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "e0a3b07ccf66fff5b9fbe8ccabd30028"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WlWPaAsvz4Xxym3ZPQ%2FratNLwDsnLfVnSHCgoc1k8w5glosVyL7nEgE8eF2HVZlQ32JACdiemK9%2F0XYPAbGJQEAnWwWC9GgmUXVkpBKzQoPNk%2BNhU1r0q%2BxxTxah0%2BxlP2JPZOm2AOo8TKBJydSbtVkI6vyL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ab48e8d13712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| connecttocontact-code341.pages.dev/_framework/Microsoft.Extensions.DependencyInjection.Abstractions.dll | 172.66.47.97 | 200 OK | 13 kB |
URL GET HTTP/3connecttocontact-code341.pages.dev/_framework/Microsoft.Extensions.DependencyInjection.Abstractions.dll IP172.66.47.97:443
Requested byhttps://connecttocontact-code341.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectconnecttocontact-code341.pages.dev FingerprintCC:13:16:E4:C8:52:19:7A:E3:66:7B:68:FB:D0:68:DC:2B:14:04:3A ValiditySun, 05 May 2024 06:47:05 GMT - Sat, 03 Aug 2024 06:47:04 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hashea6ae3c811260f75fea161711d60eeb7 3114f3f09f14299f8efce58b43ee3d07d7210b72 4c763c6d926614c6a85b881b941e09095145a03c5c824b23099c3bd7e8a55be3
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/Microsoft.Extensions.DependencyInjection.Abstractions.dll HTTP/1.1
Host: connecttocontact-code341.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://connecttocontact-code341.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 16:07:53 GMT
content-type: application/x-msdownload
content-length: 12800
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "b58944522c4113ace84f254589970a63"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VAScSvac46gkErkpS4PrKRoTBWal%2FqP9LPA4TPMT%2BN%2BOP%2BaEUhiCHhgpj%2FocnERiQQpALKutNyh6XCr1qh0Wkp9AlmEvFPhJWEyZYbpOBj%2F9B%2B3HY5%2F158Bsny0hizcNHlCDLHLFAoLS6W0xlyjwu06Cqr6g"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ab48dcbfa712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| connecttocontact-code341.pages.dev/_framework/dotnet.wasm | 172.66.47.97 | 200 OK | 2.5 MB |
URL GET HTTP/3connecttocontact-code341.pages.dev/_framework/dotnet.wasm IP172.66.47.97:443
Requested byhttps://connecttocontact-code341.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectconnecttocontact-code341.pages.dev FingerprintCC:13:16:E4:C8:52:19:7A:E3:66:7B:68:FB:D0:68:DC:2B:14:04:3A ValiditySun, 05 May 2024 06:47:05 GMT - Sat, 03 Aug 2024 06:47:04 GMT
Size2.5 MB (2510409 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/dotnet.wasm HTTP/1.1
Host: connecttocontact-code341.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://connecttocontact-code341.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 16:07:53 GMT
content-type: application/wasm
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"e05868a340a98d4ab56c6aeffa7c22ae"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FxeGre0hFUvvshel0OrWEAK2WoaI08XJvFPaChr2N9R79ahB8d7o5Uv%2Fdg5Bmk6pQx%2BGwoBzCXAXRcuoSAae31QPInoT5hfgPDlsU7ftyyDsYaNr9ux5wh8%2BKLpyPUpajkl%2FiurYhMtkTtr5py9HKTYAvgwi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ab48e8d10712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| connecttocontact-code341.pages.dev/_framework/dotnet.7.0.16.65a571xn83.js | 172.66.47.97 | 200 OK | 270 kB |
URL GET HTTP/3connecttocontact-code341.pages.dev/_framework/dotnet.7.0.16.65a571xn83.js IP172.66.47.97:443
Requested byhttps://connecttocontact-code341.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectconnecttocontact-code341.pages.dev FingerprintCC:13:16:E4:C8:52:19:7A:E3:66:7B:68:FB:D0:68:DC:2B:14:04:3A ValiditySun, 05 May 2024 06:47:05 GMT - Sat, 03 Aug 2024 06:47:04 GMT
File typeJavaScript source, ASCII text, with very long lines (51793) Size270 kB (269958 bytes) Hash43335ac8dd5b7d380e4d065f3abcc7fa b636c59a6e80052fcbe02d21d32ac5a9e8243f89 e01880acaba0249b6942bce7185e7359f989d9307df3ea7aacab32a2a86d324e
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/dotnet.7.0.16.65a571xn83.js HTTP/1.1
Host: connecttocontact-code341.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://connecttocontact-code341.pages.dev/_framework/blazor.webassembly.js
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 16:07:53 GMT
content-type: text/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"6f116fc3499f0206d81a13f8e1cc942b"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uFJa2QU%2F9j4kdLDbHEIqsRLj2PxDJMXVDJU%2FGR0q%2Fzgp%2FD%2BqM18rChEW76nGR9UukDwLfDOMZ01DUHTkfx1jEbM4kFoEdvxYWJDnBOwYopNsUa60rrbLtZ4%2FvTC%2BwakzWshaG8amdag9edFKYC%2BAgm%2FZedQw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ab48dabb8712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| connecttocontact-code341.pages.dev/_framework/Microsoft.Extensions.DependencyInjection.dll | 172.66.47.97 | 200 OK | 36 kB |
URL GET HTTP/3connecttocontact-code341.pages.dev/_framework/Microsoft.Extensions.DependencyInjection.dll IP172.66.47.97:443
Requested byhttps://connecttocontact-code341.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectconnecttocontact-code341.pages.dev FingerprintCC:13:16:E4:C8:52:19:7A:E3:66:7B:68:FB:D0:68:DC:2B:14:04:3A ValiditySun, 05 May 2024 06:47:05 GMT - Sat, 03 Aug 2024 06:47:04 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hash15a1d4641e9ad33a238e1becd82215d7 cf60e37a5765c66374266adc4d20098dcb1321ea aa2d2413bae9d2476c36a74be83c8f6447a29a3506bdc2d3e225905f462746eb
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/Microsoft.Extensions.DependencyInjection.dll HTTP/1.1
Host: connecttocontact-code341.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://connecttocontact-code341.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 16:07:53 GMT
content-type: application/x-msdownload
content-length: 35840
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "e194b4172578d6f5f2acf7eb2b9542df"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IV2ziQcp0WZ8RIuKCkRzNcSWQ6U8koaOONOHf7lWiAuxJgxl99EczGnQlRhySvAoM3O5jR9bQ8zlNDYTmgmYrCoyRo6I9JSS9GNZblwI0mCyRyRbXBmbFqMSKfb%2Btx5yYwAVnwq1EdDg%2F5EeXLe%2FKucSyTs5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ab48ddc02712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| connecttocontact-code341.pages.dev/_framework/Microsoft.Extensions.Logging.Abstractions.dll | 172.66.47.97 | 200 OK | 23 kB |
URL GET HTTP/3connecttocontact-code341.pages.dev/_framework/Microsoft.Extensions.Logging.Abstractions.dll IP172.66.47.97:443
Requested byhttps://connecttocontact-code341.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectconnecttocontact-code341.pages.dev FingerprintCC:13:16:E4:C8:52:19:7A:E3:66:7B:68:FB:D0:68:DC:2B:14:04:3A ValiditySun, 05 May 2024 06:47:05 GMT - Sat, 03 Aug 2024 06:47:04 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Hashb5e43b089b5d00726eaa0c0d2501dd47 f0c29035d64d3261171a32014d621dfbdca03659 16fc57b3ca84e74d960304216fe3596d307d0904d20af93142a2941336d05ee7
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/Microsoft.Extensions.Logging.Abstractions.dll HTTP/1.1
Host: connecttocontact-code341.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://connecttocontact-code341.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 16:07:53 GMT
content-type: application/x-msdownload
content-length: 23040
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "24909bae75adc18ae6bf36e12a8a0182"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EmSc2JxjbK48KGB929Gwn56EM0APhr%2BODXCLFsTVyd8q9oALaVu29hdbEw2khTcMzr%2BRoSdg9z4d1Tjyu9V7ETNsLOe1bTX9ut7B6Mv8jL%2B84Bia4fABQrVYymcC71TmhgFqZTdH6nulnuTeFMHX3ARNOEVc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ab48ddc05712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| connecttocontact-code341.pages.dev/ | 172.66.47.97 | 200 OK | 4.0 kB |
URL User Request GET HTTP/2connecttocontact-code341.pages.dev/ IP172.66.47.97:443
CertificateIssuerGoogle Trust Services LLC Subjectconnecttocontact-code341.pages.dev FingerprintCC:13:16:E4:C8:52:19:7A:E3:66:7B:68:FB:D0:68:DC:2B:14:04:3A ValiditySun, 05 May 2024 06:47:05 GMT - Sat, 03 Aug 2024 06:47:04 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (4200), with no line terminators Hashc1d04687f134fa8b3439b0451aa228eb 92416bb07cac4997a7c8c1aa8908ba3544bbeaaf 93087071c3ac66f6712d83396e6083ade4ea6979aae3f4cb48df7cb4ed04b7f9
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET / HTTP/1.1
Host: connecttocontact-code341.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 08 May 2024 16:07:52 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"4d2d574a63d8860276643000164b04e8"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CBXccTfFelVQrX%2FhxsGfD3qBHd9iRyvoiYGjZdZ43Eh6ojuRb8EuuyZIAxrqfizLkvVvs8TAcxfziuRS5dlHBQwD4ZMWtjO61RMhhdpLntnRFzCeqUt%2F%2F5RnMenUtp9o9Gcx6GjPQSrOPyCOxjwoY46yfo0%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ab4892b335697-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| connecttocontact-code341.pages.dev/_framework/blazor.webassembly.js | 172.66.47.97 | 200 OK | 64 kB |
URL GET HTTP/3connecttocontact-code341.pages.dev/_framework/blazor.webassembly.js IP172.66.47.97:443
Requested byhttps://connecttocontact-code341.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectconnecttocontact-code341.pages.dev FingerprintCC:13:16:E4:C8:52:19:7A:E3:66:7B:68:FB:D0:68:DC:2B:14:04:3A ValiditySun, 05 May 2024 06:47:05 GMT - Sat, 03 Aug 2024 06:47:04 GMT
File typeJavaScript source, ASCII text, with very long lines (63688), with no line terminators Hash7cf532ca7794682144dcf27f2cba8ca6 b75a9e362d1ebdc9419c4482a33ee024cd7738d4 94e0ace397eb35ff83ee67ba94a2e052144276de15c070a9f47e82b7e616cdfb
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/blazor.webassembly.js HTTP/1.1
Host: connecttocontact-code341.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://connecttocontact-code341.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 16:07:52 GMT
content-type: text/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"c54ae9fd4c7115c0c43c784c90ff0842"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MoCKMthqhL%2BSs9TCIdaCeLiiKFFG8Th6vtBHj3Wl07CKb7jeNXKL8M0M8wgrwLpQpn%2BWjEqPyR%2FRBu4Bd5kui09IJT3UdwGB6vWguMVPVmiz1W8VR%2FKXwTBDPCLdr4aAbAcSpACWIe9WUePWiimljNbZ1FBI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ab48b68a0712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| connecttocontact-code341.pages.dev/logo.png | 172.66.47.97 | 200 OK | 36 kB |
URL GET HTTP/3connecttocontact-code341.pages.dev/logo.png IP172.66.47.97:443
Requested byhttps://connecttocontact-code341.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectconnecttocontact-code341.pages.dev FingerprintCC:13:16:E4:C8:52:19:7A:E3:66:7B:68:FB:D0:68:DC:2B:14:04:3A ValiditySun, 05 May 2024 06:47:05 GMT - Sat, 03 Aug 2024 06:47:04 GMT
File typeRIFF (little-endian) data, Web/P image Hash3ddb61bdd806c16c6aa2b1dfdb7eaec9 5f5cbfd0f1284b09c15884a494758f8626227dd4 62ebfab29cdf3c417eb48e9c429133d6c4d1b8ddb27fc14820a57b9d5a617ae8
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /logo.png HTTP/1.1
Host: connecttocontact-code341.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://connecttocontact-code341.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 16:07:53 GMT
content-type: image/png
content-length: 35616
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "cedc3e7528636d25b38ccc7e9f62b802"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uSOjHLEMH%2BZDYCV62Dou3Onchq9jLQvg5YM7vOKng06KSM%2FCbzxbMG0WGnpxJT4LajXMF2C2pqUMBvYZZJXjGB3Fk7nQ73c9P6dmslExZm1YpZ1hH2ZTh659cx9hnTgTb6G%2FZra9EBFNWyYHug82JAqWRlL3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ab48d7b73712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| connecttocontact-code341.pages.dev/_framework/Microsoft.AspNetCore.Components.dll | 172.66.47.97 | 200 OK | 148 kB |
URL GET HTTP/3connecttocontact-code341.pages.dev/_framework/Microsoft.AspNetCore.Components.dll IP172.66.47.97:443
Requested byhttps://connecttocontact-code341.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectconnecttocontact-code341.pages.dev FingerprintCC:13:16:E4:C8:52:19:7A:E3:66:7B:68:FB:D0:68:DC:2B:14:04:3A ValiditySun, 05 May 2024 06:47:05 GMT - Sat, 03 Aug 2024 06:47:04 GMT
File typePE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Size148 kB (147968 bytes) Hash6e011bbe45d60eeb6e0ea5a5d107f184 85c499cf03a4cf48b1e281fe54af037c555f0c1c 76062fefd79f9ae9adc9c9fd1f9cb915fb8a86ca7235a3c90a8b2384a2656753
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET /_framework/Microsoft.AspNetCore.Components.dll HTTP/1.1
Host: connecttocontact-code341.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://connecttocontact-code341.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 16:07:53 GMT
content-type: application/x-msdownload
content-length: 147968
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "cd80dc7a8d6db3bdc5d2580a7394b9f6"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Qim4cgAGYfMBnoe%2Fody69xU%2BJk2cU14qdARbcxjdrvXAtWsTPVj8csJCepad%2BDF6suyqvg2bj%2FWKXZZS9xYQOGXY3coz3uC%2F2QDMaUED1dmN3Fmb1WNeFo7AawWkJHGHrFUmXz7CQa%2FaO8TnTGMnSlRXBOpl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ab48dbbe3712f-OSL
alt-svc: h3=":443"; ma=86400
|
|