Report - pandorasalecanada.com/

Report Overview

Submitted URL
pandorasalecanada.com/
IP
196.242.179.152
ASN
#58065 Orion Network Limited
Submitted
2024-04-18 12:19:26
Access
public
Website Title
Pandora Jewelry Canada Sale | Pandora Outlet Online Canada
Final URL
www.pandorasalecanada.com/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
116

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
pandorasalecanada.com	unknown	2024-03-21	2024-03-21	2024-03-22	476 B	495 B	196.242.179.152
www.pandorasalecanada.com	unknown	unknown	No data	No data	30 kB	4.3 MB	196.242.179.152
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-04-18	445 B	1.4 kB	142.250.74.106
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-04-18	544 B	129 kB	142.250.74.163
aus5.mozilla.org	2548	1998-01-24	2015-10-27	2024-04-18	512 B	1.2 kB	35.244.181.201

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-04-18	medium	pandorasalecanada.com	Sinkholed
2024-04-18	medium	pandorasalecanada.com	Sinkholed
2024-04-18	medium	pandorasalecanada.com	Sinkholed
2024-04-18	medium	pandorasalecanada.com	Sinkholed
2024-04-18	medium	pandorasalecanada.com	Sinkholed
2024-04-18	medium	pandorasalecanada.com	Sinkholed
2024-04-18	medium	pandorasalecanada.com	Sinkholed
2024-04-18	medium	pandorasalecanada.com	Sinkholed
2024-04-18	medium	pandorasalecanada.com	Sinkholed
2024-04-18	medium	pandorasalecanada.com	Sinkholed
2024-04-18	medium	pandorasalecanada.com	Sinkholed
2024-04-18	medium	pandorasalecanada.com	Sinkholed
2024-04-18	medium	pandorasalecanada.com	Sinkholed
2024-04-18	medium	pandorasalecanada.com	Sinkholed
2024-04-18	medium	pandorasalecanada.com	Sinkholed
2024-04-18	medium	pandorasalecanada.com	Sinkholed
2024-04-18	medium	pandorasalecanada.com	Sinkholed
2024-04-18	medium	pandorasalecanada.com	Sinkholed
2024-04-18	medium	pandorasalecanada.com	Sinkholed
2024-04-18	medium	pandorasalecanada.com	Sinkholed
2024-04-18	medium	pandorasalecanada.com	Sinkholed
2024-04-18	medium	pandorasalecanada.com	Sinkholed
2024-04-18	medium	pandorasalecanada.com	Sinkholed
2024-04-18	medium	pandorasalecanada.com	Sinkholed
2024-04-18	medium	pandorasalecanada.com	Sinkholed
2024-04-18	medium	pandorasalecanada.com	Sinkholed
2024-04-18	medium	pandorasalecanada.com	Sinkholed
2024-04-18	medium	pandorasalecanada.com	Sinkholed
2024-04-18	medium	pandorasalecanada.com	Sinkholed
2024-04-18	medium	pandorasalecanada.com	Sinkholed
2024-04-18	medium	pandorasalecanada.com	Sinkholed
2024-04-18	medium	pandorasalecanada.com	Sinkholed
2024-04-18	medium	pandorasalecanada.com	Sinkholed
2024-04-18	medium	pandorasalecanada.com	Sinkholed
2024-04-18	medium	pandorasalecanada.com	Sinkholed
2024-04-18	medium	pandorasalecanada.com	Sinkholed
2024-04-18	medium	pandorasalecanada.com	Sinkholed
2024-04-18	medium	pandorasalecanada.com	Sinkholed
2024-04-18	medium	pandorasalecanada.com	Sinkholed
2024-04-18	medium	pandorasalecanada.com	Sinkholed
2024-04-18	medium	pandorasalecanada.com	Sinkholed
2024-04-18	medium	pandorasalecanada.com	Sinkholed
2024-04-18	medium	pandorasalecanada.com	Sinkholed
2024-04-18	medium	pandorasalecanada.com	Sinkholed
2024-04-18	medium	pandorasalecanada.com	Sinkholed
2024-04-18	medium	pandorasalecanada.com	Sinkholed
2024-04-18	medium	pandorasalecanada.com	Sinkholed
2024-04-18	medium	pandorasalecanada.com	Sinkholed
2024-04-18	medium	pandorasalecanada.com	Sinkholed
2024-04-18	medium	pandorasalecanada.com	Sinkholed
2024-04-18	medium	pandorasalecanada.com	Sinkholed
2024-04-18	medium	pandorasalecanada.com	Sinkholed
2024-04-18	medium	pandorasalecanada.com	Sinkholed
2024-04-18	medium	pandorasalecanada.com	Sinkholed
2024-04-18	medium	pandorasalecanada.com	Sinkholed
2024-04-18	medium	pandorasalecanada.com	Sinkholed
2024-04-18	medium	pandorasalecanada.com	Sinkholed
2024-04-18	medium	pandorasalecanada.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (22)

	URL	Size	First Seen	Last Seen
	www.pandorasalecanada.com/includes/templates/pandoracanada/jscript/jscript_lightbox.js	20 kB	2023-03-07	2024-05-01
Pretty URL www.pandorasalecanada.com/includes/templates/pandoracanada/jscript/jscript_lightbox.js IP 196.242.179.152 ASN #58065 Orion Network Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:40 Last Seen2024-05-01 01:43:14 Times Seen4086 Hash 62160589e6cfe07633cf89ba5f6b850e 0ddc3da269bf68a7a86f82db9099181126c8aad5 c84699604527cf065821fe6ddb4aea785e99cfbcfbaec426a51cff1dfd617eca Loading...

	www.pandorasalecanada.com/js/jquery.mmenu.min.all.js	39 kB	2023-03-07	2024-05-01
Pretty URL www.pandorasalecanada.com/js/jquery.mmenu.min.all.js IP 196.242.179.152 ASN #58065 Orion Network Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:40 Last Seen2024-05-01 01:43:15 Times Seen7561 Hash 5b2edbe2f95659b625a0b919ebf98286 1c5722696e849953fccdf41e0f0a01e3f37a80da a83065a45e7248c11ae228cab8da5d6bfcfa4791be255e2a78e81dbc456a4637 Loading...

	www.pandorasalecanada.com/includes/templates/pandoracanada/js/layer.js	38 kB	2023-03-07	2024-05-01
Pretty URL www.pandorasalecanada.com/includes/templates/pandoracanada/js/layer.js IP 196.242.179.152 ASN #58065 Orion Network Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:40 Last Seen2024-05-01 01:43:16 Times Seen5207 Hash f679a433cba7ebde1bbe121fffd8c60c 4d2159e06a5e80328e0ba9554e02fb2422ed0b36 60c2f96124f2970788057614a90229fe470b13f5420e5794d90d73c9e08ce2f0 Loading...

	www.pandorasalecanada.com/	44 B	2023-03-07	2024-05-01
Pretty URL www.pandorasalecanada.com/ IP 196.242.179.152 ASN #58065 Orion Network Limited Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:06:40 Last Seen2024-05-01 01:43:14 Times Seen4131 Hash 0f9f77c8d79923a94eaf9563663b37bf e9de64d20cf4f34a74de22d7b663634bd64f1be6 f401ef86148cd7087f19cbf14828ac17464cb4e1712f05305fb571d07521bb01 Loading...

	www.pandorasalecanada.com/	3.1 kB	2023-04-08	2024-04-30
Pretty URL www.pandorasalecanada.com/ IP 196.242.179.152 ASN #58065 Orion Network Limited Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-08 00:49:16 Last Seen2024-04-30 03:58:37 Times Seen758 Hash 43bb8afcc41296e6afc46d741cca8ee4 a0944dbd64c1dac7465cfb0da95ca654855e7fe6 d6235bd24bc349c69e8d9da4ffddf96aadb93138a01ae18ec8530ec0bd522019 Loading...

	www.pandorasalecanada.com/	1.7 kB	2024-04-18	2024-04-18
Pretty URL www.pandorasalecanada.com/ IP 196.242.179.152 ASN #58065 Orion Network Limited Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-18 14:19:33 Last Seen2024-04-18 14:19:33 Times Seen1 Hash 15cade021119a761a3c33595f4c70c6e efcaa84ae6f058cbc516e45d6c83fb0e58c6023a 1bdfc114689f84704d5b795b6e2dc3d7295ba7cecab97cc623ec94e12b17ed82 Loading...

	www.pandorasalecanada.com/	318 B	2024-04-18	2024-04-18
Pretty URL www.pandorasalecanada.com/ IP 196.242.179.152 ASN #58065 Orion Network Limited Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-18 14:19:33 Last Seen2024-04-18 14:19:33 Times Seen1 Hash efb54d36ea5eeea1453d5c09419b2f3b ae7b12bb8b814649f51c867c8d410b65b791a03c 745d5e4d596311810f4cf3e0be1998e620c6c5090a24b4c2b8cc4a92fe84057e Loading...

	www.pandorasalecanada.com/js/jquery.jxa.js	2.7 kB	2023-03-07	2024-05-01
Pretty URL www.pandorasalecanada.com/js/jquery.jxa.js IP 196.242.179.152 ASN #58065 Orion Network Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:40 Last Seen2024-05-01 01:43:15 Times Seen7454 Hash ca643ec9e974f881e4c904db35bc40c7 759df5ef14b4e2c0c46770b5e408f600972294ca a1e3d7d98e8e9886c1181e7d53ddd4a6ff424a0fff640d1dc4b06757f096e0e2 Loading...

	www.pandorasalecanada.com/includes/templates/pandoracanada/jscript/jscript_1.11.1.min.js	86 kB	2023-03-07	2024-05-01
Pretty URL www.pandorasalecanada.com/includes/templates/pandoracanada/jscript/jscript_1.11.1.min.js IP 196.242.179.152 ASN #58065 Orion Network Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:40 Last Seen2024-05-01 01:43:15 Times Seen7145 Hash 93c4b563622d278b1065690a3d93709e f00d128cf399f17322b1d4ee02fa8cd892e081bd 601c06474a16936670a0477da2a777ccfca3301e3857204ec9b55dfa2c45287e Loading...

	www.pandorasalecanada.com/includes/templates/pandoracanada/jscript/jscript_jquery_kinSlideshow.js	10 kB	2023-04-11	2024-05-01
Pretty URL www.pandorasalecanada.com/includes/templates/pandoracanada/jscript/jscript_jquery_kinSlideshow.js IP 196.242.179.152 ASN #58065 Orion Network Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:28:27 Last Seen2024-05-01 01:43:14 Times Seen3502 Hash abbb3376ffd05856914efb567ee1f53b 4502bb187bd05f6bdc324546301c0fb3ededb453 f3e0eb53b3dc82b94ae4c1fe8c654bf827bf0d7f9f12cc01976e0689c5db9203 Loading...

	www.pandorasalecanada.com/js/jquery-1.7.2.min.js	158 kB	2023-03-07	2024-05-01
Pretty URL www.pandorasalecanada.com/js/jquery-1.7.2.min.js IP 196.242.179.152 ASN #58065 Orion Network Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:40 Last Seen2024-05-01 01:43:15 Times Seen13320 Hash 6f3d61313966fcd43b0334aa5fad66b9 22b2b120da5b405a348e4abdd865c496625d87ab f2374ffefd903e49bfa1772a042c1b593e52cd862e6553f538128ab4a58fe5b5 Loading...

	www.pandorasalecanada.com/	144 B	2024-04-18	2024-04-18
Pretty URL www.pandorasalecanada.com/ IP 196.242.179.152 ASN #58065 Orion Network Limited Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-18 14:19:33 Last Seen2024-04-18 14:19:33 Times Seen1 Hash bd8a4442222a142d05bb22c593563f5b 065da7e1ac57484a753b4d4f73fa27ba35b84e2d 2bc8d4306204fb1486099de62eb3fb3c3822fa1a36037c4856b311e393876a27 Loading...

	www.pandorasalecanada.com/js/slick_new.js	1.9 kB	2023-03-07	2024-05-01
Pretty URL www.pandorasalecanada.com/js/slick_new.js IP 196.242.179.152 ASN #58065 Orion Network Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:32 Last Seen2024-05-01 01:43:15 Times Seen3733 Hash 37192079541f105b380c4d17cb5b1a45 4cf67b7d006b630a2e063acb52740d1b8cfa08c4 faffeb52bd73185450a0e8bad135ac6209a599c01d2247636e29fe4d640557cf Loading...

	www.pandorasalecanada.com/	597 B	2023-03-07	2024-05-01
Pretty URL www.pandorasalecanada.com/ IP 196.242.179.152 ASN #58065 Orion Network Limited Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:11:41 Last Seen2024-05-01 01:43:15 Times Seen2226 Hash 0dcfb49030f0696eed0631626f0b773a 2c88166dcdaa8372f41639a40ecc01195a012845 f0e9cf6e6cacab382ea6a8bbc66f73e345588eaff2c966d462578cf716ff74de Loading...

	www.pandorasalecanada.com/includes/templates/pandoracanada/jscript/jscript_2.2.0.min.js	143 kB	2023-04-05	2024-05-01
Pretty URL www.pandorasalecanada.com/includes/templates/pandoracanada/jscript/jscript_2.2.0.min.js IP 196.242.179.152 ASN #58065 Orion Network Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-05 13:52:00 Last Seen2024-05-01 01:43:15 Times Seen3215 Hash 391ebf61aa662184ec57e51ba5ce11c5 4359e99c16ac8e1dcc441465203d2025eaee8c48 a41091e7f49dd461b53a67d1fbbb715097796994077a2e7199f12c7a7d39c19e Loading...

	www.pandorasalecanada.com/	312 B	2023-03-07	2024-05-01
Pretty URL www.pandorasalecanada.com/ IP 196.242.179.152 ASN #58065 Orion Network Limited Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:06:40 Last Seen2024-05-01 01:43:15 Times Seen2722 Hash 7ce5e7d2da9a3d65ead4d2138055617e 051b88ccda03caa7daf3d18190375955b31a7b4d 4c17dfdfc4b0a40b632f760a15a335f7627fa0b6b22acb202a87e49ef511273c Loading...

	www.pandorasalecanada.com/js/slick.js	87 kB	2023-03-07	2024-05-01
Pretty URL www.pandorasalecanada.com/js/slick.js IP 196.242.179.152 ASN #58065 Orion Network Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:41 Last Seen2024-05-01 01:43:15 Times Seen4840 Hash b56bbf351b271132a8fdab2ed21c82ab 8274eb6924ead2f5d8616fd162ef24bebd3c0b21 c37611fa51880e07f6a12795e03e5cd3eb4699b82f69be67036f735ffb5ecb60 Loading...

	www.pandorasalecanada.com/includes/templates/pandoracanada/jscript/jscript_jquery.js	86 kB	2023-03-07	2024-05-01
Pretty URL www.pandorasalecanada.com/includes/templates/pandoracanada/jscript/jscript_jquery.js IP 196.242.179.152 ASN #58065 Orion Network Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:40 Last Seen2024-05-01 10:09:27 Times Seen18042 Hash e85aed5c30d734f1e30646e030d7a817 b8dcaa1c866905c0bdb0b70c8e564ff1c3fe27ad 8f0a19ee8c606b35a10904951e0a27da1896eafe33c6e88cb7bcbe455f05a24a Loading...

	www.pandorasalecanada.com/includes/templates/pandoracanada/jscript/jscript_slick.js	89 kB	2023-03-07	2024-05-01
Pretty URL www.pandorasalecanada.com/includes/templates/pandoracanada/jscript/jscript_slick.js IP 196.242.179.152 ASN #58065 Orion Network Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:40 Last Seen2024-05-01 01:43:15 Times Seen8227 Hash 5f8f4aed010e1afe499184d8197309f9 097f6a1b4f115e9b6ebefa70d76d830733bcc9ba 0aaa4cf927b0e3631cffbe62f6786810aa65348483cd950e49f634a0881b16b4 Loading...

	www.pandorasalecanada.com/includes/templates/pandoracanada/js/re_login.js	11 kB	2023-03-07	2024-04-30
Pretty URL www.pandorasalecanada.com/includes/templates/pandoracanada/js/re_login.js IP 196.242.179.152 ASN #58065 Orion Network Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:32 Last Seen2024-04-30 19:36:07 Times Seen3268 Hash 7bd679d5c675a092b612e5b4b7a56dbd 6e62d5cf6e15493d5d34173348f255dfe6e9dac5 ca6d5aa9dc260b677698d2eebce1167f1beee6d848768c476b7d7ba25fbadb28 Loading...

	www.pandorasalecanada.com/	21 B	2023-03-07	2024-05-01
Pretty URL www.pandorasalecanada.com/ IP 196.242.179.152 ASN #58065 Orion Network Limited Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:06:40 Last Seen2024-05-01 01:43:15 Times Seen2923 Hash 5a9b4911bc66f9e2f54bd20a9c333f26 8f357fb053913c958e71d7167e56aa68a698f1e4 2412af640fa9ba9f1a38f46e8b58e00b2cdd73ab4bd327a7d79be4132d960c65 Loading...

		Size	First Seen	Last Seen
	#1 Eval - abf4a875d5948c9b1b39999a48ff7e87	13 kB	2023-03-07	2024-05-01
Pretty Observations First Seen2023-03-07 01:06:40 Last Seen2024-05-01 01:43:15 Times Seen3824 Hash abf4a875d5948c9b1b39999a48ff7e87 e686ced083517764a0dd7424d84ac5fa1b52f20b a824a97e1e060dcfc3950a4231c4510e369c17c0c8694340e873ff5bdc8397ea Loading...

HTTP Transactions (61)

URL IP Response Size

pandorasalecanada.com/

196.242.179.152

301 Moved Permanently

242 B

URL User Request GET HTTP/1.1
pandorasalecanada.com/
IP
196.242.179.152:443
ASN
#58065 Orion Network Limited

Certificate
IssuercPanel, Inc.
Subjectpandorasalecanada.com
Fingerprint80:6F:B2:26:53:9F:8E:8A:73:03:02:54:AE:18:2F:E3:42:44:BC:F4
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
HTML document, ASCII text
Size
242 B (242 bytes)
Hash
3329fea10f95069c1a53191235995fe3
28dfd9a046a101559cb3784002915233e3b13ade
4d35c4fad35c1712acaf8c3d19e0b6282aa2f56ca99653c351b391a6b7b804de

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: pandorasalecanada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Date: Thu, 18 Apr 2024 12:18:58 GMT
Server: Apache
Location: https://www.pandorasalecanada.com/
Content-Length: 242
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

www.pandorasalecanada.com/

196.242.179.152

200 OK

53 kB

URL User Request GET HTTP/1.1
www.pandorasalecanada.com/
IP
196.242.179.152:443
ASN
#58065 Orion Network Limited

Certificate
IssuercPanel, Inc.
Subjectpandorasalecanada.com
Fingerprint80:6F:B2:26:53:9F:8E:8A:73:03:02:54:AE:18:2F:E3:42:44:BC:F4
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (12298), with CRLF, LF line terminators
Size
53 kB (53374 bytes)
Hash
453504dff10e56a2a639b16c3db793e8
8590af880b7d1d0f30bc2f49c296ead06766a58c
acf865ffaebb0c144f5b27fe14d607f0aa8920d410f07e2f6ad09d3120848097

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: www.pandorasalecanada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 12:18:59 GMT
Server: Apache
Set-Cookie: cookie_test=please_accept_for_session; expires=Sat, 18-May-2024 12:18:59 GMT; Max-Age=2592000; path=/
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=utf-8

www.pandorasalecanada.com/includes/templates/pandoracanada/css/style.css

196.242.179.152

200 OK

25 kB

URL GET HTTP/1.1
www.pandorasalecanada.com/includes/templates/pandoracanada/css/style.css
IP
196.242.179.152:443
ASN
#58065 Orion Network Limited

Requested by
https://www.pandorasalecanada.com/
Certificate
IssuercPanel, Inc.
Subjectpandorasalecanada.com
Fingerprint80:6F:B2:26:53:9F:8E:8A:73:03:02:54:AE:18:2F:E3:42:44:BC:F4
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
ASCII text, with very long lines (1470)
Size
25 kB (24572 bytes)
Hash
0269f25a408028ad7d1fa88f3fc07c32
bdf70b66b3a9a09ed1b009ccd694b89574646d9c
4225c3ed92bfc238dee21c99754cc70c6be9605fd4613f706c9ea927b00606d8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/pandoracanada/css/style.css HTTP/1.1
Host: www.pandorasalecanada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pandorasalecanada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 12:19:00 GMT
Server: Apache
Last-Modified: Thu, 12 Oct 2023 08:59:15 GMT
Accept-Ranges: bytes
Content-Length: 24572
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

fonts.googleapis.com/icon?family=Material+Icons

142.250.74.106

200 OK

812 B

URL GET HTTP/2
fonts.googleapis.com/icon?family=Material+Icons
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://www.pandorasalecanada.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E
ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT

File type
gzip compressed data, max compression
Size
812 B (812 bytes)
Hash
ffc8df097fedb37b3458cda4f79d4a0a
600abc8388b2ecb102f9634d5adef10fb325b41e
78bc2a75de6278c60466850382b166371e616c7f388bdf79471ff79d6bb3f4d4

HTTP Headers

GET /icon?family=Material+Icons HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pandorasalecanada.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 18 Apr 2024 12:19:00 GMT
date: Thu, 18 Apr 2024 12:19:00 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.pandorasalecanada.com/includes/templates/pandoracanada/css/stylesheet_jquery.mmenu.all.css

196.242.179.152

200 OK

11 kB

URL GET HTTP/1.1
www.pandorasalecanada.com/includes/templates/pandoracanada/css/stylesheet_jquery.mmenu.all.css
IP
196.242.179.152:443
ASN
#58065 Orion Network Limited

Requested by
https://www.pandorasalecanada.com/
Certificate
IssuercPanel, Inc.
Subjectpandorasalecanada.com
Fingerprint80:6F:B2:26:53:9F:8E:8A:73:03:02:54:AE:18:2F:E3:42:44:BC:F4
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
ASCII text
Size
11 kB (11016 bytes)
Hash
71677734b09ae3c532865f174cb97b91
6570de5d3125b9b6c16eab8e3361f14c1dc777b9
fd94336ca97120bcdacf1906a59e8aacdc8654f45e01a1edfe82a0b57e31ddb4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/pandoracanada/css/stylesheet_jquery.mmenu.all.css HTTP/1.1
Host: www.pandorasalecanada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pandorasalecanada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 12:19:00 GMT
Server: Apache
Last-Modified: Thu, 12 Oct 2023 08:59:15 GMT
Accept-Ranges: bytes
Content-Length: 11016
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css

www.pandorasalecanada.com/includes/templates/pandoracanada/css/stylesheet_slick.css

196.242.179.152

200 OK

4.2 kB

URL GET HTTP/1.1
www.pandorasalecanada.com/includes/templates/pandoracanada/css/stylesheet_slick.css
IP
196.242.179.152:443
ASN
#58065 Orion Network Limited

Requested by
https://www.pandorasalecanada.com/
Certificate
IssuercPanel, Inc.
Subjectpandorasalecanada.com
Fingerprint80:6F:B2:26:53:9F:8E:8A:73:03:02:54:AE:18:2F:E3:42:44:BC:F4
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
ASCII text, with CRLF line terminators
Size
4.2 kB (4154 bytes)
Hash
756119a1dd5a353626cf4ec4349c5f1c
5049e4e8ecdca1f8f7773f20c40b2e1741c0baab
e1fead43513acfbe97b384ffaf4c8d4f35c6859f6d60177f8ed7af0342bed5c8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/pandoracanada/css/stylesheet_slick.css HTTP/1.1
Host: www.pandorasalecanada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pandorasalecanada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 12:19:00 GMT
Server: Apache
Last-Modified: Thu, 12 Oct 2023 08:59:15 GMT
Accept-Ranges: bytes
Content-Length: 4154
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css

www.pandorasalecanada.com/includes/templates/pandoracanada/css/stylesheet_header_menu.css

196.242.179.152

200 OK

3.3 kB

URL GET HTTP/1.1
www.pandorasalecanada.com/includes/templates/pandoracanada/css/stylesheet_header_menu.css
IP
196.242.179.152:443
ASN
#58065 Orion Network Limited

Requested by
https://www.pandorasalecanada.com/
Certificate
IssuercPanel, Inc.
Subjectpandorasalecanada.com
Fingerprint80:6F:B2:26:53:9F:8E:8A:73:03:02:54:AE:18:2F:E3:42:44:BC:F4
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
ASCII text, with CRLF line terminators
Size
3.3 kB (3302 bytes)
Hash
3132aaf8095e8395cc2dac3481f1c989
2da73db444e513f11b2715098d1036d37c43d602
646429b8bec4dc1620c6e666a6b6c93ff0b9cbc243a78ce1ea739aa7744dcdb7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/pandoracanada/css/stylesheet_header_menu.css HTTP/1.1
Host: www.pandorasalecanada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pandorasalecanada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 12:19:00 GMT
Server: Apache
Last-Modified: Thu, 12 Oct 2023 08:59:15 GMT
Accept-Ranges: bytes
Content-Length: 3302
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

www.pandorasalecanada.com/includes/templates/pandoracanada/css/stylesheet_categories_menu.css

196.242.179.152

200 OK

2.3 kB

URL GET HTTP/1.1
www.pandorasalecanada.com/includes/templates/pandoracanada/css/stylesheet_categories_menu.css
IP
196.242.179.152:443
ASN
#58065 Orion Network Limited

Requested by
https://www.pandorasalecanada.com/
Certificate
IssuercPanel, Inc.
Subjectpandorasalecanada.com
Fingerprint80:6F:B2:26:53:9F:8E:8A:73:03:02:54:AE:18:2F:E3:42:44:BC:F4
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
ASCII text
Size
2.3 kB (2341 bytes)
Hash
77ac4aa1fc1b80426aa7ad8033dcb40c
fa30830acbbe5458aa445be97ecd00be2e1d60fa
93a60cfc2924d4c2d193bd12bd2ccd8d54b433b975bf842d9c2547a95efabdf0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/pandoracanada/css/stylesheet_categories_menu.css HTTP/1.1
Host: www.pandorasalecanada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pandorasalecanada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 12:19:00 GMT
Server: Apache
Last-Modified: Thu, 12 Oct 2023 08:59:15 GMT
Accept-Ranges: bytes
Content-Length: 2341
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

www.pandorasalecanada.com/includes/templates/pandoracanada/css/stylesheet_lightbox.css

196.242.179.152

200 OK

2.4 kB

URL GET HTTP/1.1
www.pandorasalecanada.com/includes/templates/pandoracanada/css/stylesheet_lightbox.css
IP
196.242.179.152:443
ASN
#58065 Orion Network Limited

Requested by
https://www.pandorasalecanada.com/
Certificate
IssuercPanel, Inc.
Subjectpandorasalecanada.com
Fingerprint80:6F:B2:26:53:9F:8E:8A:73:03:02:54:AE:18:2F:E3:42:44:BC:F4
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
ASCII text, with CRLF line terminators
Size
2.4 kB (2370 bytes)
Hash
4156c4f3b3e8eb75b3f0ffc31b9b3c48
d2e2362789756890af0cd16178e7dc00b66a2032
9b1778227a7dc12daa8be9254e2f90de342d38c9c26140ffd85c82de5a1f70cd

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/pandoracanada/css/stylesheet_lightbox.css HTTP/1.1
Host: www.pandorasalecanada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pandorasalecanada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 12:19:00 GMT
Server: Apache
Last-Modified: Thu, 12 Oct 2023 08:59:15 GMT
Accept-Ranges: bytes
Content-Length: 2370
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

www.pandorasalecanada.com/includes/templates/pandoracanada/css/stylesheet1.css

196.242.179.152

200 OK

18 kB

URL GET HTTP/1.1
www.pandorasalecanada.com/includes/templates/pandoracanada/css/stylesheet1.css
IP
196.242.179.152:443
ASN
#58065 Orion Network Limited

Requested by
https://www.pandorasalecanada.com/
Certificate
IssuercPanel, Inc.
Subjectpandorasalecanada.com
Fingerprint80:6F:B2:26:53:9F:8E:8A:73:03:02:54:AE:18:2F:E3:42:44:BC:F4
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
ASCII text, with very long lines (876)
Size
18 kB (17947 bytes)
Hash
f85526fa80fd903f119b09856bfe1f77
6e11c3eacaba0f81ca1bd6922528dec543d44dc8
2f8d482ea09869caec11bf64fd51849d205b15c4a52a3c01c94cf526071e3a55

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/pandoracanada/css/stylesheet1.css HTTP/1.1
Host: www.pandorasalecanada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pandorasalecanada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 12:19:00 GMT
Server: Apache
Last-Modified: Thu, 12 Oct 2023 08:59:15 GMT
Accept-Ranges: bytes
Content-Length: 17947
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

www.pandorasalecanada.com/includes/templates/pandoracanada/jscript/jscript_1.11.1.min.js

196.242.179.152

200 OK

86 kB

URL GET HTTP/1.1
www.pandorasalecanada.com/includes/templates/pandoracanada/jscript/jscript_1.11.1.min.js
IP
196.242.179.152:443
ASN
#58065 Orion Network Limited

Requested by
https://www.pandorasalecanada.com/
Certificate
IssuercPanel, Inc.
Subjectpandorasalecanada.com
Fingerprint80:6F:B2:26:53:9F:8E:8A:73:03:02:54:AE:18:2F:E3:42:44:BC:F4
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (32069)
Size
86 kB (85588 bytes)
Hash
93c4b563622d278b1065690a3d93709e
f00d128cf399f17322b1d4ee02fa8cd892e081bd
601c06474a16936670a0477da2a777ccfca3301e3857204ec9b55dfa2c45287e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/pandoracanada/jscript/jscript_1.11.1.min.js HTTP/1.1
Host: www.pandorasalecanada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pandorasalecanada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 12:19:00 GMT
Server: Apache
Last-Modified: Wed, 29 Jul 2020 07:10:10 GMT
Accept-Ranges: bytes
Content-Length: 85588
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript

www.pandorasalecanada.com/includes/templates/pandoracanada/jscript/jscript_jquery_kinSlideshow.js

196.242.179.152

200 OK

9.7 kB

URL GET HTTP/1.1
www.pandorasalecanada.com/includes/templates/pandoracanada/jscript/jscript_jquery_kinSlideshow.js
IP
196.242.179.152:443
ASN
#58065 Orion Network Limited

Requested by
https://www.pandorasalecanada.com/
Certificate
IssuercPanel, Inc.
Subjectpandorasalecanada.com
Fingerprint80:6F:B2:26:53:9F:8E:8A:73:03:02:54:AE:18:2F:E3:42:44:BC:F4
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
JavaScript source, ISO-8859 text, with very long lines (8513), with CRLF line terminators
Size
9.7 kB (9674 bytes)
Hash
08a763acea723e1d88cbce2f1c9b3317
ea20687e4f773bf67907b0edb029ebafbc110fc1
c17caeebb94b90d9aae3dc3142cda848f67e8b9425a6d25e434af74d2978aba4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/pandoracanada/jscript/jscript_jquery_kinSlideshow.js HTTP/1.1
Host: www.pandorasalecanada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pandorasalecanada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 12:19:00 GMT
Server: Apache
Last-Modified: Sun, 21 Nov 2010 16:51:10 GMT
Accept-Ranges: bytes
Content-Length: 9674
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

www.pandorasalecanada.com/includes/templates/pandoracanada/jscript/jscript_lightbox.js

196.242.179.152

200 OK

20 kB

URL GET HTTP/1.1
www.pandorasalecanada.com/includes/templates/pandoracanada/jscript/jscript_lightbox.js
IP
196.242.179.152:443
ASN
#58065 Orion Network Limited

Requested by
https://www.pandorasalecanada.com/
Certificate
IssuercPanel, Inc.
Subjectpandorasalecanada.com
Fingerprint80:6F:B2:26:53:9F:8E:8A:73:03:02:54:AE:18:2F:E3:42:44:BC:F4
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
JavaScript source, ISO-8859 text, with very long lines (797), with CRLF line terminators
Size
20 kB (20417 bytes)
Hash
3d79a6c53803295ef00c052546d76500
f1481ce4f6f2aaefd7a5b6af19be42c7b1606dcc
93acbf26510bd264764a43d220a984b78270cd37536e0aa6bf8deb1fb28338f8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/pandoracanada/jscript/jscript_lightbox.js HTTP/1.1
Host: www.pandorasalecanada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pandorasalecanada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 12:19:00 GMT
Server: Apache
Last-Modified: Sun, 24 Oct 2010 11:36:54 GMT
Accept-Ranges: bytes
Content-Length: 20417
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

www.pandorasalecanada.com/includes/templates/pandoracanada/jscript/jscript_slick.js

196.242.179.152

200 OK

89 kB

URL GET HTTP/1.1
www.pandorasalecanada.com/includes/templates/pandoracanada/jscript/jscript_slick.js
IP
196.242.179.152:443
ASN
#58065 Orion Network Limited

Requested by
https://www.pandorasalecanada.com/
Certificate
IssuercPanel, Inc.
Subjectpandorasalecanada.com
Fingerprint80:6F:B2:26:53:9F:8E:8A:73:03:02:54:AE:18:2F:E3:42:44:BC:F4
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
JavaScript source, ASCII text
Size
89 kB (88955 bytes)
Hash
5f8f4aed010e1afe499184d8197309f9
097f6a1b4f115e9b6ebefa70d76d830733bcc9ba
0aaa4cf927b0e3631cffbe62f6786810aa65348483cd950e49f634a0881b16b4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/pandoracanada/jscript/jscript_slick.js HTTP/1.1
Host: www.pandorasalecanada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pandorasalecanada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 12:19:00 GMT
Server: Apache
Last-Modified: Fri, 11 Feb 2022 15:22:28 GMT
Accept-Ranges: bytes
Content-Length: 88955
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript

www.pandorasalecanada.com/js/jquery.mmenu.min.all.js

196.242.179.152

200 OK

39 kB

URL GET HTTP/1.1
www.pandorasalecanada.com/js/jquery.mmenu.min.all.js
IP
196.242.179.152:443
ASN
#58065 Orion Network Limited

Requested by
https://www.pandorasalecanada.com/
Certificate
IssuercPanel, Inc.
Subjectpandorasalecanada.com
Fingerprint80:6F:B2:26:53:9F:8E:8A:73:03:02:54:AE:18:2F:E3:42:44:BC:F4
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (401)
Size
39 kB (38800 bytes)
Hash
5b2edbe2f95659b625a0b919ebf98286
1c5722696e849953fccdf41e0f0a01e3f37a80da
a83065a45e7248c11ae228cab8da5d6bfcfa4791be255e2a78e81dbc456a4637

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/jquery.mmenu.min.all.js HTTP/1.1
Host: www.pandorasalecanada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pandorasalecanada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 12:19:01 GMT
Server: Apache
Last-Modified: Fri, 08 May 2020 23:51:20 GMT
Accept-Ranges: bytes
Content-Length: 38800
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

www.pandorasalecanada.com/includes/templates/pandoracanada/css/stylesheet_all.css

196.242.179.152

200 OK

116 kB

URL GET HTTP/1.1
www.pandorasalecanada.com/includes/templates/pandoracanada/css/stylesheet_all.css
IP
196.242.179.152:443
ASN
#58065 Orion Network Limited

Requested by
https://www.pandorasalecanada.com/
Certificate
IssuercPanel, Inc.
Subjectpandorasalecanada.com
Fingerprint80:6F:B2:26:53:9F:8E:8A:73:03:02:54:AE:18:2F:E3:42:44:BC:F4
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
ASCII text
Size
116 kB (115467 bytes)
Hash
32ba6b8e2170a462c03f05d2f3990697
d7f67936c163425214c4d691f0fc09bc5036ee66
ec972ecb0e23627a4f611e4e88bb186894acd728f5e0d0532d3c34857e8e34fb

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/pandoracanada/css/stylesheet_all.css HTTP/1.1
Host: www.pandorasalecanada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pandorasalecanada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 12:19:00 GMT
Server: Apache
Last-Modified: Thu, 12 Oct 2023 08:59:15 GMT
Accept-Ranges: bytes
Content-Length: 115467
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

www.pandorasalecanada.com/includes/templates/pandoracanada/jscript/jscript_jquery.js

196.242.179.152

200 OK

86 kB

URL GET HTTP/1.1
www.pandorasalecanada.com/includes/templates/pandoracanada/jscript/jscript_jquery.js
IP
196.242.179.152:443
ASN
#58065 Orion Network Limited

Requested by
https://www.pandorasalecanada.com/
Certificate
IssuercPanel, Inc.
Subjectpandorasalecanada.com
Fingerprint80:6F:B2:26:53:9F:8E:8A:73:03:02:54:AE:18:2F:E3:42:44:BC:F4
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65168)
Size
86 kB (85925 bytes)
Hash
e85aed5c30d734f1e30646e030d7a817
b8dcaa1c866905c0bdb0b70c8e564ff1c3fe27ad
8f0a19ee8c606b35a10904951e0a27da1896eafe33c6e88cb7bcbe455f05a24a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/pandoracanada/jscript/jscript_jquery.js HTTP/1.1
Host: www.pandorasalecanada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pandorasalecanada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 12:19:00 GMT
Server: Apache
Last-Modified: Fri, 01 Apr 2011 23:28:42 GMT
Accept-Ranges: bytes
Content-Length: 85925
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

www.pandorasalecanada.com/includes/templates/pandoracanada/js/layer.js

196.242.179.152

200 OK

38 kB

URL GET HTTP/1.1
www.pandorasalecanada.com/includes/templates/pandoracanada/js/layer.js
IP
196.242.179.152:443
ASN
#58065 Orion Network Limited

Requested by
https://www.pandorasalecanada.com/
Certificate
IssuercPanel, Inc.
Subjectpandorasalecanada.com
Fingerprint80:6F:B2:26:53:9F:8E:8A:73:03:02:54:AE:18:2F:E3:42:44:BC:F4
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (984)
Size
38 kB (37747 bytes)
Hash
f679a433cba7ebde1bbe121fffd8c60c
4d2159e06a5e80328e0ba9554e02fb2422ed0b36
60c2f96124f2970788057614a90229fe470b13f5420e5794d90d73c9e08ce2f0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/pandoracanada/js/layer.js HTTP/1.1
Host: www.pandorasalecanada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pandorasalecanada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 12:19:01 GMT
Server: Apache
Last-Modified: Tue, 29 Jun 2021 19:47:40 GMT
Accept-Ranges: bytes
Content-Length: 37747
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript

www.pandorasalecanada.com/includes/templates/pandoracanada/js/re_login.js

196.242.179.152

200 OK

11 kB

URL GET HTTP/1.1
www.pandorasalecanada.com/includes/templates/pandoracanada/js/re_login.js
IP
196.242.179.152:443
ASN
#58065 Orion Network Limited

Requested by
https://www.pandorasalecanada.com/
Certificate
IssuercPanel, Inc.
Subjectpandorasalecanada.com
Fingerprint80:6F:B2:26:53:9F:8E:8A:73:03:02:54:AE:18:2F:E3:42:44:BC:F4
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with CRLF line terminators
Size
11 kB (10927 bytes)
Hash
7bd679d5c675a092b612e5b4b7a56dbd
6e62d5cf6e15493d5d34173348f255dfe6e9dac5
ca6d5aa9dc260b677698d2eebce1167f1beee6d848768c476b7d7ba25fbadb28

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/pandoracanada/js/re_login.js HTTP/1.1
Host: www.pandorasalecanada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pandorasalecanada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 12:19:01 GMT
Server: Apache
Last-Modified: Fri, 18 Mar 2022 18:53:02 GMT
Accept-Ranges: bytes
Content-Length: 10927
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

www.pandorasalecanada.com/includes/templates/pandoracanada/jscript/jscript_2.2.0.min.js

196.242.179.152

200 OK

143 kB

URL GET HTTP/1.1
www.pandorasalecanada.com/includes/templates/pandoracanada/jscript/jscript_2.2.0.min.js
IP
196.242.179.152:443
ASN
#58065 Orion Network Limited

Requested by
https://www.pandorasalecanada.com/
Certificate
IssuercPanel, Inc.
Subjectpandorasalecanada.com
Fingerprint80:6F:B2:26:53:9F:8E:8A:73:03:02:54:AE:18:2F:E3:42:44:BC:F4
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (522)
Size
143 kB (142713 bytes)
Hash
674b896ffae27a70571b1fc5bd65919d
63c8c73c7e5ba15aa940aba8f1c43b6150a9f941
a7c32e459eae73c136b6eb07711a69b2cc7b557c085fc232dd42db7fb50e9374

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/pandoracanada/jscript/jscript_2.2.0.min.js HTTP/1.1
Host: www.pandorasalecanada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pandorasalecanada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 12:19:00 GMT
Server: Apache
Last-Modified: Sat, 25 Jul 2020 01:30:22 GMT
Accept-Ranges: bytes
Content-Length: 142713
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

www.pandorasalecanada.com/js/slick.js

196.242.179.152

200 OK

87 kB

URL GET HTTP/1.1
www.pandorasalecanada.com/js/slick.js
IP
196.242.179.152:443
ASN
#58065 Orion Network Limited

Requested by
https://www.pandorasalecanada.com/
Certificate
IssuercPanel, Inc.
Subjectpandorasalecanada.com
Fingerprint80:6F:B2:26:53:9F:8E:8A:73:03:02:54:AE:18:2F:E3:42:44:BC:F4
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
JavaScript source, ASCII text
Size
87 kB (87046 bytes)
Hash
b56bbf351b271132a8fdab2ed21c82ab
8274eb6924ead2f5d8616fd162ef24bebd3c0b21
c37611fa51880e07f6a12795e03e5cd3eb4699b82f69be67036f735ffb5ecb60

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/slick.js HTTP/1.1
Host: www.pandorasalecanada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pandorasalecanada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 12:19:01 GMT
Server: Apache
Last-Modified: Fri, 11 Feb 2022 15:38:06 GMT
Accept-Ranges: bytes
Content-Length: 87046
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

www.pandorasalecanada.com/js/slick_new.js

196.242.179.152

200 OK

1.9 kB

URL GET HTTP/1.1
www.pandorasalecanada.com/js/slick_new.js
IP
196.242.179.152:443
ASN
#58065 Orion Network Limited

Requested by
https://www.pandorasalecanada.com/
Certificate
IssuercPanel, Inc.
Subjectpandorasalecanada.com
Fingerprint80:6F:B2:26:53:9F:8E:8A:73:03:02:54:AE:18:2F:E3:42:44:BC:F4
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
ASCII text, with CRLF line terminators
Size
1.9 kB (1859 bytes)
Hash
37192079541f105b380c4d17cb5b1a45
4cf67b7d006b630a2e063acb52740d1b8cfa08c4
faffeb52bd73185450a0e8bad135ac6209a599c01d2247636e29fe4d640557cf

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/slick_new.js HTTP/1.1
Host: www.pandorasalecanada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pandorasalecanada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 12:19:01 GMT
Server: Apache
Last-Modified: Mon, 27 Dec 2021 20:22:54 GMT
Accept-Ranges: bytes
Content-Length: 1859
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

www.pandorasalecanada.com/js/jquery.jxa.js

196.242.179.152

200 OK

2.7 kB

URL GET HTTP/1.1
www.pandorasalecanada.com/js/jquery.jxa.js
IP
196.242.179.152:443
ASN
#58065 Orion Network Limited

Requested by
https://www.pandorasalecanada.com/
Certificate
IssuercPanel, Inc.
Subjectpandorasalecanada.com
Fingerprint80:6F:B2:26:53:9F:8E:8A:73:03:02:54:AE:18:2F:E3:42:44:BC:F4
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with CRLF line terminators
Size
2.7 kB (2658 bytes)
Hash
ca643ec9e974f881e4c904db35bc40c7
759df5ef14b4e2c0c46770b5e408f600972294ca
a1e3d7d98e8e9886c1181e7d53ddd4a6ff424a0fff640d1dc4b06757f096e0e2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/jquery.jxa.js HTTP/1.1
Host: www.pandorasalecanada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pandorasalecanada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 12:19:01 GMT
Server: Apache
Last-Modified: Wed, 29 Apr 2020 21:46:06 GMT
Accept-Ranges: bytes
Content-Length: 2658
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript

www.pandorasalecanada.com/images/hoverimg/202310091658071811.jpg

196.242.179.152

200 OK

5.6 kB

URL GET HTTP/1.1
www.pandorasalecanada.com/images/hoverimg/202310091658071811.jpg
IP
196.242.179.152:443
ASN
#58065 Orion Network Limited

Requested by
https://www.pandorasalecanada.com/
Certificate
IssuercPanel, Inc.
Subjectpandorasalecanada.com
Fingerprint80:6F:B2:26:53:9F:8E:8A:73:03:02:54:AE:18:2F:E3:42:44:BC:F4
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 200x100, components 3
Size
5.6 kB (5600 bytes)
Hash
7eaa384a8fd85481f372b9b5e64b0864
880b73e9c07cbdbdce60102bd7c643ea222348af
b78869e8423e4dd59b2fe404d2cfd8447a5fd8bb5440c8126d1c16024e0be77a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/hoverimg/202310091658071811.jpg HTTP/1.1
Host: www.pandorasalecanada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pandorasalecanada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 12:19:01 GMT
Server: Apache
Last-Modified: Mon, 09 Oct 2023 20:58:08 GMT
Accept-Ranges: bytes
Content-Length: 5600
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg

fonts.gstatic.com/s/materialicons/v142/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2

142.250.74.163

200 OK

128 kB

URL GET HTTP/2
fonts.gstatic.com/s/materialicons/v142/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://www.pandorasalecanada.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9
ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT

File type
Web Open Font Format (Version 2), TrueType, length 128352, version 1.0
Size
128 kB (128352 bytes)
Hash
53436aca8627a49f4deaaa44dc9e3c05
0bc0c675480d94ec7e8609dda6227f88c5d08d2c
8265f64786397d6b832d1ca0aafdf149ad84e72759fffa9f7272e91a0fb015d1

HTTP Headers

GET /s/materialicons/v142/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.pandorasalecanada.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 128352
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 21:27:45 GMT
expires: Tue, 15 Apr 2025 21:27:45 GMT
cache-control: public, max-age=31536000
age: 226276
last-modified: Mon, 08 Apr 2024 19:04:47 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.pandorasalecanada.com/includes/templates/pandoracanada/images/flag/CAN.png

196.242.179.152

200 OK

373 B

URL GET HTTP/1.1
www.pandorasalecanada.com/includes/templates/pandoracanada/images/flag/CAN.png
IP
196.242.179.152:443
ASN
#58065 Orion Network Limited

Requested by
https://www.pandorasalecanada.com/
Certificate
IssuercPanel, Inc.
Subjectpandorasalecanada.com
Fingerprint80:6F:B2:26:53:9F:8E:8A:73:03:02:54:AE:18:2F:E3:42:44:BC:F4
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
PNG image data, 27 x 17, 8-bit/color RGB, non-interlaced
Size
373 B (373 bytes)
Hash
5bcefbd3115209dc486a33315fd0adfe
8092f5ffa43e543815386f2956ae80c27f233dcf
42499bcaf81be894215431d16cbcddfea28868095b7d13e4419784e446d99bbf

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/pandoracanada/images/flag/CAN.png HTTP/1.1
Host: www.pandorasalecanada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pandorasalecanada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 12:19:01 GMT
Server: Apache
Last-Modified: Sat, 09 Oct 2021 16:02:58 GMT
Accept-Ranges: bytes
Content-Length: 373
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png

www.pandorasalecanada.com/js/jquery-1.7.2.min.js

196.242.179.152

200 OK

158 kB

URL GET HTTP/1.1
www.pandorasalecanada.com/js/jquery-1.7.2.min.js
IP
196.242.179.152:443
ASN
#58065 Orion Network Limited

Requested by
https://www.pandorasalecanada.com/
Certificate
IssuercPanel, Inc.
Subjectpandorasalecanada.com
Fingerprint80:6F:B2:26:53:9F:8E:8A:73:03:02:54:AE:18:2F:E3:42:44:BC:F4
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (749)
Size
158 kB (157648 bytes)
Hash
6f3d61313966fcd43b0334aa5fad66b9
22b2b120da5b405a348e4abdd865c496625d87ab
f2374ffefd903e49bfa1772a042c1b593e52cd862e6553f538128ab4a58fe5b5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/jquery-1.7.2.min.js HTTP/1.1
Host: www.pandorasalecanada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pandorasalecanada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 12:19:00 GMT
Server: Apache
Last-Modified: Fri, 08 May 2020 00:22:20 GMT
Accept-Ranges: bytes
Content-Length: 157648
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

www.pandorasalecanada.com/images/hoverimg/202310092038243793.jpg

196.242.179.152

200 OK

78 kB

URL GET HTTP/1.1
www.pandorasalecanada.com/images/hoverimg/202310092038243793.jpg
IP
196.242.179.152:443
ASN
#58065 Orion Network Limited

Requested by
https://www.pandorasalecanada.com/
Certificate
IssuercPanel, Inc.
Subjectpandorasalecanada.com
Fingerprint80:6F:B2:26:53:9F:8E:8A:73:03:02:54:AE:18:2F:E3:42:44:BC:F4
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 750x468, components 3
Size
78 kB (78438 bytes)
Hash
7f7bbd89a919f2063c2ef4a80c4d0782
0c6dc18ad72f7d825cffab06e8dbf6c352f6fc08
9f1046b65a624bcaa0dad95c4c37aab0d06d786d1bf28ee66707bcaa0142171d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/hoverimg/202310092038243793.jpg HTTP/1.1
Host: www.pandorasalecanada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pandorasalecanada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 12:19:01 GMT
Server: Apache
Last-Modified: Tue, 10 Oct 2023 00:38:26 GMT
Accept-Ranges: bytes
Content-Length: 78438
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/jpeg

www.pandorasalecanada.com/js/jquery.jxb.js

196.242.179.152

200 OK

158 kB

URL GET HTTP/1.1
www.pandorasalecanada.com/js/jquery.jxb.js
IP
196.242.179.152:443
ASN
#58065 Orion Network Limited

Requested by
https://www.pandorasalecanada.com/
Certificate
IssuercPanel, Inc.
Subjectpandorasalecanada.com
Fingerprint80:6F:B2:26:53:9F:8E:8A:73:03:02:54:AE:18:2F:E3:42:44:BC:F4
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (749)
Size
158 kB (157648 bytes)
Hash
6f3d61313966fcd43b0334aa5fad66b9
22b2b120da5b405a348e4abdd865c496625d87ab
f2374ffefd903e49bfa1772a042c1b593e52cd862e6553f538128ab4a58fe5b5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/jquery.jxb.js HTTP/1.1
Host: www.pandorasalecanada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pandorasalecanada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 12:19:01 GMT
Server: Apache
Last-Modified: Sat, 06 May 2017 02:03:44 GMT
Accept-Ranges: bytes
Content-Length: 157648
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript

www.pandorasalecanada.com/images/60693036493626/Sterling_Silver_Pandora_Moments_Daisy_Fl_12.jpg

196.242.179.152

200 OK

7.5 kB

URL GET HTTP/1.1
www.pandorasalecanada.com/images/60693036493626/Sterling_Silver_Pandora_Moments_Daisy_Fl_12.jpg
IP
196.242.179.152:443
ASN
#58065 Orion Network Limited

Requested by
https://www.pandorasalecanada.com/
Certificate
IssuercPanel, Inc.
Subjectpandorasalecanada.com
Fingerprint80:6F:B2:26:53:9F:8E:8A:73:03:02:54:AE:18:2F:E3:42:44:BC:F4
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x300, components 3
Size
7.5 kB (7483 bytes)
Hash
6b3f453d07256072c8e2278b023e2157
087c3e7972212b3516b29392bfaf0895e6f88082
0a17e892d9a066928823656fcd7d8eb1e17ffd9c4e8d71e49ef4b4d732208f44

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/60693036493626/Sterling_Silver_Pandora_Moments_Daisy_Fl_12.jpg HTTP/1.1
Host: www.pandorasalecanada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pandorasalecanada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 12:19:01 GMT
Server: Apache
Last-Modified: Thu, 12 Oct 2023 08:50:11 GMT
Accept-Ranges: bytes
Content-Length: 7483
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg

www.pandorasalecanada.com/images/60693036493626/Rose_Gold_Plated_Pandora_Moments_Heart_T_1.jpg

196.242.179.152

200 OK

9.7 kB

URL GET HTTP/1.1
www.pandorasalecanada.com/images/60693036493626/Rose_Gold_Plated_Pandora_Moments_Heart_T_1.jpg
IP
196.242.179.152:443
ASN
#58065 Orion Network Limited

Requested by
https://www.pandorasalecanada.com/
Certificate
IssuercPanel, Inc.
Subjectpandorasalecanada.com
Fingerprint80:6F:B2:26:53:9F:8E:8A:73:03:02:54:AE:18:2F:E3:42:44:BC:F4
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x300, components 3
Size
9.7 kB (9722 bytes)
Hash
78c7228bb9f82d4db70269acb16dc474
4e1aa4857c90bb0f14001ee6756dd07c87d7d329
a5b750b589213bbb7919a7c1049767127bb646c03a98caed6143ab023497902a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/60693036493626/Rose_Gold_Plated_Pandora_Moments_Heart_T_1.jpg HTTP/1.1
Host: www.pandorasalecanada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pandorasalecanada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 12:19:01 GMT
Server: Apache
Last-Modified: Thu, 12 Oct 2023 08:50:04 GMT
Accept-Ranges: bytes
Content-Length: 9722
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg

www.pandorasalecanada.com/images/60693036493626/Rose_Gold_Plated_Pandora_Round_Sparkle_H_3.jpg

196.242.179.152

200 OK

9.1 kB

URL GET HTTP/1.1
www.pandorasalecanada.com/images/60693036493626/Rose_Gold_Plated_Pandora_Round_Sparkle_H_3.jpg
IP
196.242.179.152:443
ASN
#58065 Orion Network Limited

Requested by
https://www.pandorasalecanada.com/
Certificate
IssuercPanel, Inc.
Subjectpandorasalecanada.com
Fingerprint80:6F:B2:26:53:9F:8E:8A:73:03:02:54:AE:18:2F:E3:42:44:BC:F4
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x300, components 3
Size
9.1 kB (9136 bytes)
Hash
f92d9ef55ca246e7b152fab39aa776fd
3ddd4210849128e860f6c5a7f2ceb36f60ada3a9
c531e7aa1f8a2f94bde21cec970daa205fd78b58bd64e842778e2306dfc6c848

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/60693036493626/Rose_Gold_Plated_Pandora_Round_Sparkle_H_3.jpg HTTP/1.1
Host: www.pandorasalecanada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pandorasalecanada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 12:19:01 GMT
Server: Apache
Last-Modified: Thu, 12 Oct 2023 08:50:06 GMT
Accept-Ranges: bytes
Content-Length: 9136
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg

www.pandorasalecanada.com/images/60693036493626/Gold_Pandora_Brilliance_025_ct_tw_Rings__167.jpg

196.242.179.152

200 OK

8.9 kB

URL GET HTTP/1.1
www.pandorasalecanada.com/images/60693036493626/Gold_Pandora_Brilliance_025_ct_tw_Rings__167.jpg
IP
196.242.179.152:443
ASN
#58065 Orion Network Limited

Requested by
https://www.pandorasalecanada.com/
Certificate
IssuercPanel, Inc.
Subjectpandorasalecanada.com
Fingerprint80:6F:B2:26:53:9F:8E:8A:73:03:02:54:AE:18:2F:E3:42:44:BC:F4
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x300, components 3
Size
8.9 kB (8936 bytes)
Hash
8b36c382d2ab27a58ddc4c288f8c1cfe
78460dcb2a5c2ff441e95b29c196364b36f002bf
0b7113ae6771104660074f94f68d2a011018cf5baa2cf2bcc664e9fdc4467389

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/60693036493626/Gold_Pandora_Brilliance_025_ct_tw_Rings__167.jpg HTTP/1.1
Host: www.pandorasalecanada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pandorasalecanada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 12:19:01 GMT
Server: Apache
Last-Modified: Thu, 12 Oct 2023 08:51:40 GMT
Accept-Ranges: bytes
Content-Length: 8936
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/jpeg

www.pandorasalecanada.com/js/jquery-1.7.2.min.js

196.242.179.152

200 OK

158 kB

URL GET HTTP/1.1
www.pandorasalecanada.com/js/jquery-1.7.2.min.js
IP
196.242.179.152:443
ASN
#58065 Orion Network Limited

Requested by
https://www.pandorasalecanada.com/
Certificate
IssuercPanel, Inc.
Subjectpandorasalecanada.com
Fingerprint80:6F:B2:26:53:9F:8E:8A:73:03:02:54:AE:18:2F:E3:42:44:BC:F4
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (749)
Size
158 kB (157648 bytes)
Hash
6f3d61313966fcd43b0334aa5fad66b9
22b2b120da5b405a348e4abdd865c496625d87ab
f2374ffefd903e49bfa1772a042c1b593e52cd862e6553f538128ab4a58fe5b5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/jquery-1.7.2.min.js HTTP/1.1
Host: www.pandorasalecanada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pandorasalecanada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 12:19:01 GMT
Server: Apache
Last-Modified: Fri, 08 May 2020 00:22:20 GMT
Accept-Ranges: bytes
Content-Length: 157648
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript

www.pandorasalecanada.com/images/60693036493626/Twotone_Pandora_Moments_Heart_Clasp_Snak_13.jpg

196.242.179.152

200 OK

7.7 kB

URL GET HTTP/1.1
www.pandorasalecanada.com/images/60693036493626/Twotone_Pandora_Moments_Heart_Clasp_Snak_13.jpg
IP
196.242.179.152:443
ASN
#58065 Orion Network Limited

Requested by
https://www.pandorasalecanada.com/
Certificate
IssuercPanel, Inc.
Subjectpandorasalecanada.com
Fingerprint80:6F:B2:26:53:9F:8E:8A:73:03:02:54:AE:18:2F:E3:42:44:BC:F4
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x300, components 3
Size
7.7 kB (7731 bytes)
Hash
f396b1b61dbd6625e9122f3da45cebcc
6100db16db1d6cd1f9aeadd96aea0fc14b6f32c6
5ffd343a2b3309cba0de6fd050446ebda1cfbf889a4403661254d8678a2c5cfc

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/60693036493626/Twotone_Pandora_Moments_Heart_Clasp_Snak_13.jpg HTTP/1.1
Host: www.pandorasalecanada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pandorasalecanada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 12:19:01 GMT
Server: Apache
Last-Modified: Thu, 12 Oct 2023 08:50:11 GMT
Accept-Ranges: bytes
Content-Length: 7731
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg

www.pandorasalecanada.com/images/60693036493626/Gold_Plated_Pandora_Necklace__Earring_Se_14.jpg

196.242.179.152

200 OK

8.5 kB

URL GET HTTP/1.1
www.pandorasalecanada.com/images/60693036493626/Gold_Plated_Pandora_Necklace__Earring_Se_14.jpg
IP
196.242.179.152:443
ASN
#58065 Orion Network Limited

Requested by
https://www.pandorasalecanada.com/
Certificate
IssuercPanel, Inc.
Subjectpandorasalecanada.com
Fingerprint80:6F:B2:26:53:9F:8E:8A:73:03:02:54:AE:18:2F:E3:42:44:BC:F4
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x300, components 3
Size
8.5 kB (8531 bytes)
Hash
7e203aaf72017f90d10cc0a686a87bf2
59cb8def7cd4c46539a4fb24d32f2a8df400fe86
ab11704aaf3475c12756a774a5b01750e4e6d96f602c67f27e239ca6ebfdff04

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/60693036493626/Gold_Plated_Pandora_Necklace__Earring_Se_14.jpg HTTP/1.1
Host: www.pandorasalecanada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pandorasalecanada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 12:19:01 GMT
Server: Apache
Last-Modified: Thu, 12 Oct 2023 08:50:12 GMT
Accept-Ranges: bytes
Content-Length: 8531
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg

www.pandorasalecanada.com/images/60693036493626/Sterling_Silver_Pandora_Sparkling_Drops__5.jpg

196.242.179.152

200 OK

9.7 kB

URL GET HTTP/1.1
www.pandorasalecanada.com/images/60693036493626/Sterling_Silver_Pandora_Sparkling_Drops__5.jpg
IP
196.242.179.152:443
ASN
#58065 Orion Network Limited

Requested by
https://www.pandorasalecanada.com/
Certificate
IssuercPanel, Inc.
Subjectpandorasalecanada.com
Fingerprint80:6F:B2:26:53:9F:8E:8A:73:03:02:54:AE:18:2F:E3:42:44:BC:F4
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x300, components 3
Size
9.7 kB (9656 bytes)
Hash
472dc7f1c424077e2c95f1a04637ebcc
c59a233dc373370f029e5786445716fc32f3e90f
6e470cf780215b4b6f2b10bc14cb5939404dc4bd6da8a7b0f6b7a5a69ab1cf6a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/60693036493626/Sterling_Silver_Pandora_Sparkling_Drops__5.jpg HTTP/1.1
Host: www.pandorasalecanada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pandorasalecanada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 12:19:01 GMT
Server: Apache
Last-Modified: Thu, 12 Oct 2023 08:50:07 GMT
Accept-Ranges: bytes
Content-Length: 9656
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg

www.pandorasalecanada.com/images/60693036493626/Sterling_Silver_Pandora_Moments_Infinity_6.jpg

196.242.179.152

200 OK

8.5 kB

URL GET HTTP/1.1
www.pandorasalecanada.com/images/60693036493626/Sterling_Silver_Pandora_Moments_Infinity_6.jpg
IP
196.242.179.152:443
ASN
#58065 Orion Network Limited

Requested by
https://www.pandorasalecanada.com/
Certificate
IssuercPanel, Inc.
Subjectpandorasalecanada.com
Fingerprint80:6F:B2:26:53:9F:8E:8A:73:03:02:54:AE:18:2F:E3:42:44:BC:F4
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x300, components 3
Size
8.5 kB (8452 bytes)
Hash
828f74704cc0e5f2d0bdbd0a4d85f7ec
3eed9d724108e3ed791ccf3970d9a3122f41081b
c82e57fc751dd41adceaae4207fe3ba926527998a5a098ed119eb4f790d27a63

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/60693036493626/Sterling_Silver_Pandora_Moments_Infinity_6.jpg HTTP/1.1
Host: www.pandorasalecanada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pandorasalecanada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 12:19:01 GMT
Server: Apache
Last-Modified: Thu, 12 Oct 2023 08:50:07 GMT
Accept-Ranges: bytes
Content-Length: 8452
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/jpeg

www.pandorasalecanada.com/images/60693036493626/Sterling_Silver_Pandora_Classic_Beads_St_2.jpg

196.242.179.152

200 OK

5.2 kB

URL GET HTTP/1.1
www.pandorasalecanada.com/images/60693036493626/Sterling_Silver_Pandora_Classic_Beads_St_2.jpg
IP
196.242.179.152:443
ASN
#58065 Orion Network Limited

Requested by
https://www.pandorasalecanada.com/
Certificate
IssuercPanel, Inc.
Subjectpandorasalecanada.com
Fingerprint80:6F:B2:26:53:9F:8E:8A:73:03:02:54:AE:18:2F:E3:42:44:BC:F4
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x300, components 3
Size
5.2 kB (5216 bytes)
Hash
6c69dcea216d6851514777d0b6075357
6275967510d093f00e32bd2571b4a597dffec7dc
b1dfeefef720fdc16116bb6a4e81bedae37c65c7ca63f73ac598fbb7ea57f46e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/60693036493626/Sterling_Silver_Pandora_Classic_Beads_St_2.jpg HTTP/1.1
Host: www.pandorasalecanada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pandorasalecanada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 12:19:01 GMT
Server: Apache
Last-Modified: Thu, 12 Oct 2023 08:50:05 GMT
Accept-Ranges: bytes
Content-Length: 5216
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg

www.pandorasalecanada.com/images/60693036493626/Sterling_Silver_Pandora_Square_Sparkle_O_4.jpg

196.242.179.152

200 OK

9.1 kB

URL GET HTTP/1.1
www.pandorasalecanada.com/images/60693036493626/Sterling_Silver_Pandora_Square_Sparkle_O_4.jpg
IP
196.242.179.152:443
ASN
#58065 Orion Network Limited

Requested by
https://www.pandorasalecanada.com/
Certificate
IssuercPanel, Inc.
Subjectpandorasalecanada.com
Fingerprint80:6F:B2:26:53:9F:8E:8A:73:03:02:54:AE:18:2F:E3:42:44:BC:F4
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x300, components 3
Size
9.1 kB (9145 bytes)
Hash
bd361ab155f1636f7116d6624b3e7546
3f6797e27bd2c37f0c08a66174732d0dd8769f2d
46de1b64dd036c617451b50753816dd488a34c70d622fde907634fc35a7a2a56

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/60693036493626/Sterling_Silver_Pandora_Square_Sparkle_O_4.jpg HTTP/1.1
Host: www.pandorasalecanada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pandorasalecanada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 12:19:01 GMT
Server: Apache
Last-Modified: Thu, 12 Oct 2023 08:50:06 GMT
Accept-Ranges: bytes
Content-Length: 9145
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg

www.pandorasalecanada.com/images/hoverimg/202310092038085915.png

196.242.179.152

200 OK

1.0 MB

URL GET HTTP/1.1
www.pandorasalecanada.com/images/hoverimg/202310092038085915.png
IP
196.242.179.152:443
ASN
#58065 Orion Network Limited

Requested by
https://www.pandorasalecanada.com/
Certificate
IssuercPanel, Inc.
Subjectpandorasalecanada.com
Fingerprint80:6F:B2:26:53:9F:8E:8A:73:03:02:54:AE:18:2F:E3:42:44:BC:F4
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
PNG image data, 1440 x 460, 8-bit/color RGB, non-interlaced
Size
1.0 MB (1014715 bytes)
Hash
3af84e1a5db2cfa81e74ef2cb2071d44
5065c3672f41b0e80228eb7d49ceca6c8e580d21
37f984e383e14ba8249cf954dfc677f33e514f0f1911f4d2c2cd5e4b5d1941a8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/hoverimg/202310092038085915.png HTTP/1.1
Host: www.pandorasalecanada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pandorasalecanada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 12:19:01 GMT
Server: Apache
Last-Modified: Tue, 10 Oct 2023 00:38:10 GMT
Accept-Ranges: bytes
Content-Length: 1014715
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png

www.pandorasalecanada.com/includes/templates/pandoracanada/js/theme/default/layer.css?v=3.5.0

196.242.179.152

200 OK

17 kB

URL GET HTTP/1.1
www.pandorasalecanada.com/includes/templates/pandoracanada/js/theme/default/layer.css?v=3.5.0
IP
196.242.179.152:443
ASN
#58065 Orion Network Limited

Requested by
https://www.pandorasalecanada.com/
Certificate
IssuercPanel, Inc.
Subjectpandorasalecanada.com
Fingerprint80:6F:B2:26:53:9F:8E:8A:73:03:02:54:AE:18:2F:E3:42:44:BC:F4
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
ASCII text, with CRLF line terminators
Size
17 kB (17360 bytes)
Hash
94ae7c3e6834f7e25a85ff97c2d9cd88
953ea6a358fdbd59f99eef88c93f467a749d27e4
38d12ae4119d3c7ae42cf9ffb240d53b351716c8f44ae4b1acb0f4c15b003eb9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/pandoracanada/js/theme/default/layer.css?v=3.5.0 HTTP/1.1
Host: www.pandorasalecanada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pandorasalecanada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 12:19:01 GMT
Server: Apache
Last-Modified: Tue, 29 Jun 2021 19:47:12 GMT
Accept-Ranges: bytes
Content-Length: 17360
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css

www.pandorasalecanada.com/images/60693036493626/Sterling_Silver_Pandora_Ring_Sets__6438K_16.jpg

196.242.179.152

200 OK

17 kB

URL GET HTTP/1.1
www.pandorasalecanada.com/images/60693036493626/Sterling_Silver_Pandora_Ring_Sets__6438K_16.jpg
IP
196.242.179.152:443
ASN
#58065 Orion Network Limited

Requested by
https://www.pandorasalecanada.com/
Certificate
IssuercPanel, Inc.
Subjectpandorasalecanada.com
Fingerprint80:6F:B2:26:53:9F:8E:8A:73:03:02:54:AE:18:2F:E3:42:44:BC:F4
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x300, components 3
Size
17 kB (16833 bytes)
Hash
c8b470361867edb31883617fe25a115d
7f0992b73cb67b496914b95a559a00c50319b718
343424f72d664a120929c76241cd70e046ecced4cb4bed4b2c9985cd3aced6c8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/60693036493626/Sterling_Silver_Pandora_Ring_Sets__6438K_16.jpg HTTP/1.1
Host: www.pandorasalecanada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pandorasalecanada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 12:19:02 GMT
Server: Apache
Last-Modified: Thu, 12 Oct 2023 08:50:13 GMT
Accept-Ranges: bytes
Content-Length: 16833
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg

www.pandorasalecanada.com/images/60693036493626/Sterling_Silver_Pandora_Family_Always_En_15.jpg

196.242.179.152

200 OK

10 kB

URL GET HTTP/1.1
www.pandorasalecanada.com/images/60693036493626/Sterling_Silver_Pandora_Family_Always_En_15.jpg
IP
196.242.179.152:443
ASN
#58065 Orion Network Limited

Requested by
https://www.pandorasalecanada.com/
Certificate
IssuercPanel, Inc.
Subjectpandorasalecanada.com
Fingerprint80:6F:B2:26:53:9F:8E:8A:73:03:02:54:AE:18:2F:E3:42:44:BC:F4
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x300, components 3
Size
10 kB (9965 bytes)
Hash
338705c4e0f3c758a2747ff2a18b2351
1cc50b9c4c3393665b2b5bf398d75bc554d6e96a
7abbb8230aeeb98f2e580a6d8329574a9014183b22ae553cd69f6f0ca558462c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/60693036493626/Sterling_Silver_Pandora_Family_Always_En_15.jpg HTTP/1.1
Host: www.pandorasalecanada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pandorasalecanada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 12:19:02 GMT
Server: Apache
Last-Modified: Thu, 12 Oct 2023 08:50:13 GMT
Accept-Ranges: bytes
Content-Length: 9965
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg

www.pandorasalecanada.com/images/60693036493626/Gold_Plated_Pandora_Pav_Heart_Hoop_Earri_637.jpg

196.242.179.152

200 OK

16 kB

URL GET HTTP/1.1
www.pandorasalecanada.com/images/60693036493626/Gold_Plated_Pandora_Pav_Heart_Hoop_Earri_637.jpg
IP
196.242.179.152:443
ASN
#58065 Orion Network Limited

Requested by
https://www.pandorasalecanada.com/
Certificate
IssuercPanel, Inc.
Subjectpandorasalecanada.com
Fingerprint80:6F:B2:26:53:9F:8E:8A:73:03:02:54:AE:18:2F:E3:42:44:BC:F4
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x300, components 3
Size
16 kB (15906 bytes)
Hash
dabcf16b300e5a016a0072b2d60b5dea
130a75c2979be0c76842703e61bb325ddf401c54
397c0160cd59a977999764ccc99a52d2209148977e1aca06c03ccdf12d3461e5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/60693036493626/Gold_Plated_Pandora_Pav_Heart_Hoop_Earri_637.jpg HTTP/1.1
Host: www.pandorasalecanada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pandorasalecanada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 12:19:02 GMT
Server: Apache
Last-Modified: Thu, 12 Oct 2023 08:56:13 GMT
Accept-Ranges: bytes
Content-Length: 15906
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg

www.pandorasalecanada.com/images/60693036493626/Twotone_Pandora_Signature_Twotone_Logo_T_7.jpg

196.242.179.152

200 OK

9.6 kB

URL GET HTTP/1.1
www.pandorasalecanada.com/images/60693036493626/Twotone_Pandora_Signature_Twotone_Logo_T_7.jpg
IP
196.242.179.152:443
ASN
#58065 Orion Network Limited

Requested by
https://www.pandorasalecanada.com/
Certificate
IssuercPanel, Inc.
Subjectpandorasalecanada.com
Fingerprint80:6F:B2:26:53:9F:8E:8A:73:03:02:54:AE:18:2F:E3:42:44:BC:F4
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x300, components 3
Size
9.6 kB (9586 bytes)
Hash
349db9505012d37f2d1aab90754b299c
98fe5da9401bd1ce33c475354104200c8c0bd8c2
49a0f1c907efd3b6fc8abb5351f83eea43b6e2936d14827f3511361881c6e5ed

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/60693036493626/Twotone_Pandora_Signature_Twotone_Logo_T_7.jpg HTTP/1.1
Host: www.pandorasalecanada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pandorasalecanada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 12:19:02 GMT
Server: Apache
Last-Modified: Thu, 12 Oct 2023 08:50:08 GMT
Accept-Ranges: bytes
Content-Length: 9586
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg

www.pandorasalecanada.com/images/60693036493626/Sterling_Silver_Pandora_Reflexions_Spark_10.jpg

196.242.179.152

200 OK

11 kB

URL GET HTTP/1.1
www.pandorasalecanada.com/images/60693036493626/Sterling_Silver_Pandora_Reflexions_Spark_10.jpg
IP
196.242.179.152:443
ASN
#58065 Orion Network Limited

Requested by
https://www.pandorasalecanada.com/
Certificate
IssuercPanel, Inc.
Subjectpandorasalecanada.com
Fingerprint80:6F:B2:26:53:9F:8E:8A:73:03:02:54:AE:18:2F:E3:42:44:BC:F4
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x300, components 3
Size
11 kB (10677 bytes)
Hash
3d06fdbe9d67a251bcba4986b6600476
134e527fdcfb4d644049cccb6118b18279d0e262
f07e2448e7b3b3c886522b7578e5c7adb60c4d815e60e687bfdc9b18fc2d23f6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/60693036493626/Sterling_Silver_Pandora_Reflexions_Spark_10.jpg HTTP/1.1
Host: www.pandorasalecanada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pandorasalecanada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 12:19:02 GMT
Server: Apache
Last-Modified: Thu, 12 Oct 2023 08:50:10 GMT
Accept-Ranges: bytes
Content-Length: 10677
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/jpeg

www.pandorasalecanada.com/images/60693036493626/Sterling_Silver_Pandora_Shimmering_Knot__586.jpg

196.242.179.152

200 OK

9.2 kB

URL GET HTTP/1.1
www.pandorasalecanada.com/images/60693036493626/Sterling_Silver_Pandora_Shimmering_Knot__586.jpg
IP
196.242.179.152:443
ASN
#58065 Orion Network Limited

Requested by
https://www.pandorasalecanada.com/
Certificate
IssuercPanel, Inc.
Subjectpandorasalecanada.com
Fingerprint80:6F:B2:26:53:9F:8E:8A:73:03:02:54:AE:18:2F:E3:42:44:BC:F4
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x300, components 3
Size
9.2 kB (9153 bytes)
Hash
bb958b6264b3966b26a6a28baa79928b
ca0fa774de1a09d9b7de1cebb6f3e34e805729c8
2fb70ffa5f6ac8d7e681d06f4ffddd439ddba3c7b09212eec19bc497b5a68d3e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/60693036493626/Sterling_Silver_Pandora_Shimmering_Knot__586.jpg HTTP/1.1
Host: www.pandorasalecanada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pandorasalecanada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 12:19:02 GMT
Server: Apache
Last-Modified: Thu, 12 Oct 2023 08:55:45 GMT
Accept-Ranges: bytes
Content-Length: 9153
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg

www.pandorasalecanada.com/images/60693036493626/Sterling_Silver_Pandora_Blue_Square_Spar_8.jpg

196.242.179.152

200 OK

9.3 kB

URL GET HTTP/1.1
www.pandorasalecanada.com/images/60693036493626/Sterling_Silver_Pandora_Blue_Square_Spar_8.jpg
IP
196.242.179.152:443
ASN
#58065 Orion Network Limited

Requested by
https://www.pandorasalecanada.com/
Certificate
IssuercPanel, Inc.
Subjectpandorasalecanada.com
Fingerprint80:6F:B2:26:53:9F:8E:8A:73:03:02:54:AE:18:2F:E3:42:44:BC:F4
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x300, components 3
Size
9.3 kB (9312 bytes)
Hash
dfda54ea9e20318f98141a4427b67149
fb8b5b4485666d59753e47d2ee46c07464d11597
340508076c676b6c827ead8aca1d8213431b8c5568489b4ed0fc5b55ddccd5e4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/60693036493626/Sterling_Silver_Pandora_Blue_Square_Spar_8.jpg HTTP/1.1
Host: www.pandorasalecanada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pandorasalecanada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 12:19:02 GMT
Server: Apache
Last-Modified: Thu, 12 Oct 2023 08:50:08 GMT
Accept-Ranges: bytes
Content-Length: 9312
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/jpeg

www.pandorasalecanada.com/images/60693036493626/Sterling_Silver_Pandora_Sparkling_Pav_Li_25.jpg

196.242.179.152

200 OK

10 kB

URL GET HTTP/1.1
www.pandorasalecanada.com/images/60693036493626/Sterling_Silver_Pandora_Sparkling_Pav_Li_25.jpg
IP
196.242.179.152:443
ASN
#58065 Orion Network Limited

Requested by
https://www.pandorasalecanada.com/
Certificate
IssuercPanel, Inc.
Subjectpandorasalecanada.com
Fingerprint80:6F:B2:26:53:9F:8E:8A:73:03:02:54:AE:18:2F:E3:42:44:BC:F4
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x300, components 3
Size
10 kB (10116 bytes)
Hash
e262475a93ef32ebba919576678f46e4
8243e72589220dda88cf517039caecda2d81ec11
90883f0caacdc6b06facca422e7efbbd75a4a24e213c2df6c41e46ae22be11eb

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/60693036493626/Sterling_Silver_Pandora_Sparkling_Pav_Li_25.jpg HTTP/1.1
Host: www.pandorasalecanada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pandorasalecanada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 12:19:02 GMT
Server: Apache
Last-Modified: Thu, 12 Oct 2023 08:50:18 GMT
Accept-Ranges: bytes
Content-Length: 10116
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg

www.pandorasalecanada.com/images/60693036493626/Rose_Gold_Plated_Pandora_Ring_Sets__4682_11.jpg

196.242.179.152

200 OK

15 kB

URL GET HTTP/1.1
www.pandorasalecanada.com/images/60693036493626/Rose_Gold_Plated_Pandora_Ring_Sets__4682_11.jpg
IP
196.242.179.152:443
ASN
#58065 Orion Network Limited

Requested by
https://www.pandorasalecanada.com/
Certificate
IssuercPanel, Inc.
Subjectpandorasalecanada.com
Fingerprint80:6F:B2:26:53:9F:8E:8A:73:03:02:54:AE:18:2F:E3:42:44:BC:F4
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x300, components 3
Size
15 kB (14579 bytes)
Hash
389fa606f833d2aa48caafe09967f1c4
734ff6c6dd39d8e46d30b2dbb5f37619763ee236
9325716a66cf53e4547c1451764a62177bf02fb90d0ae1c0fc7c010020d510fc

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/60693036493626/Rose_Gold_Plated_Pandora_Ring_Sets__4682_11.jpg HTTP/1.1
Host: www.pandorasalecanada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pandorasalecanada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 12:19:02 GMT
Server: Apache
Last-Modified: Thu, 12 Oct 2023 08:50:10 GMT
Accept-Ranges: bytes
Content-Length: 14579
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg

www.pandorasalecanada.com/api/country

196.242.179.152

200 OK

110 kB

URL GET HTTP/1.1
www.pandorasalecanada.com/api/country
IP
196.242.179.152:443
ASN
#58065 Orion Network Limited

Requested by
https://www.pandorasalecanada.com/
Certificate
IssuercPanel, Inc.
Subjectpandorasalecanada.com
Fingerprint80:6F:B2:26:53:9F:8E:8A:73:03:02:54:AE:18:2F:E3:42:44:BC:F4
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
JSON text data
Size
110 kB (109930 bytes)
Hash
09889b2376c2e35c09c677d776b27e59
7ec15818b6e8c9e7a0583cc9f0322983072c373c
6100955edd4b70f39aed0e5fad4ed2541ba82cdf3c404decb29b3e13d2d54a49

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /api/country HTTP/1.1
Host: www.pandorasalecanada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.pandorasalecanada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 12:19:02 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: cookie_test=please_accept_for_session; expires=Sat, 18-May-2024 12:19:02 GMT; Max-Age=2592000; path=/
zenid=r2rkdmb7a9nijrmtofpnfbo212; path=/; HttpOnly
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/json

www.pandorasalecanada.com/images/60693036493626/Sterling_Silver_Pandora_Treated_Freshwat_19.jpg

196.242.179.152

200 OK

8.3 kB

URL GET HTTP/1.1
www.pandorasalecanada.com/images/60693036493626/Sterling_Silver_Pandora_Treated_Freshwat_19.jpg
IP
196.242.179.152:443
ASN
#58065 Orion Network Limited

Requested by
https://www.pandorasalecanada.com/
Certificate
IssuercPanel, Inc.
Subjectpandorasalecanada.com
Fingerprint80:6F:B2:26:53:9F:8E:8A:73:03:02:54:AE:18:2F:E3:42:44:BC:F4
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x300, components 3
Size
8.3 kB (8282 bytes)
Hash
e9b0533c959fccf71ad7c1cba028f47a
c3cf2292a30d532c2b86f5ac0dfbee9373756115
11e9fd9d118c6fd8b894e751f68cbd2ac1657bbe68f056ae0f60bde4dfc976ab

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/60693036493626/Sterling_Silver_Pandora_Treated_Freshwat_19.jpg HTTP/1.1
Host: www.pandorasalecanada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pandorasalecanada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 12:19:02 GMT
Server: Apache
Last-Modified: Thu, 12 Oct 2023 08:50:14 GMT
Accept-Ranges: bytes
Content-Length: 8282
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg

www.pandorasalecanada.com/images/60693036493626/Sterling_Silver_Pandora_Sparkling_Asymet_54.jpg

196.242.179.152

200 OK

7.7 kB

URL GET HTTP/1.1
www.pandorasalecanada.com/images/60693036493626/Sterling_Silver_Pandora_Sparkling_Asymet_54.jpg
IP
196.242.179.152:443
ASN
#58065 Orion Network Limited

Requested by
https://www.pandorasalecanada.com/
Certificate
IssuercPanel, Inc.
Subjectpandorasalecanada.com
Fingerprint80:6F:B2:26:53:9F:8E:8A:73:03:02:54:AE:18:2F:E3:42:44:BC:F4
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x300, components 3
Size
7.7 kB (7712 bytes)
Hash
a8020bcdf777691064c42a9df07bb900
5db763e38a40b5899afe37d887184b045e943f64
28c5e47e5c9c3571a812ef55b8c69a5c08e1b50e536d17e1f960974d1ed6d2d6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/60693036493626/Sterling_Silver_Pandora_Sparkling_Asymet_54.jpg HTTP/1.1
Host: www.pandorasalecanada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pandorasalecanada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 12:19:02 GMT
Server: Apache
Last-Modified: Thu, 12 Oct 2023 08:50:33 GMT
Accept-Ranges: bytes
Content-Length: 7712
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg

www.pandorasalecanada.com/images/hoverimg/202310092030542799.jpg

196.242.179.152

200 OK

184 kB

URL GET HTTP/1.1
www.pandorasalecanada.com/images/hoverimg/202310092030542799.jpg
IP
196.242.179.152:443
ASN
#58065 Orion Network Limited

Requested by
https://www.pandorasalecanada.com/
Certificate
IssuercPanel, Inc.
Subjectpandorasalecanada.com
Fingerprint80:6F:B2:26:53:9F:8E:8A:73:03:02:54:AE:18:2F:E3:42:44:BC:F4
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 900x900, components 3
Size
184 kB (184194 bytes)
Hash
836722bde32f97751dbc644242587c99
508c882a0b59310ebf986fdadacd884b92645253
c8c2bf792faa4451e7ce463efd8bb1d75d52397fd961902cd03a6c175109ac5e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/hoverimg/202310092030542799.jpg HTTP/1.1
Host: www.pandorasalecanada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pandorasalecanada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 12:19:02 GMT
Server: Apache
Last-Modified: Tue, 10 Oct 2023 00:30:56 GMT
Accept-Ranges: bytes
Content-Length: 184194
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/jpeg

www.pandorasalecanada.com/images/hoverimg/202310092030542465.jpg

196.242.179.152

200 OK

152 kB

URL GET HTTP/1.1
www.pandorasalecanada.com/images/hoverimg/202310092030542465.jpg
IP
196.242.179.152:443
ASN
#58065 Orion Network Limited

Requested by
https://www.pandorasalecanada.com/
Certificate
IssuercPanel, Inc.
Subjectpandorasalecanada.com
Fingerprint80:6F:B2:26:53:9F:8E:8A:73:03:02:54:AE:18:2F:E3:42:44:BC:F4
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 900x900, components 3
Size
152 kB (151762 bytes)
Hash
c4b26bd480550ee0799bdb87dfe97012
3e6e4eece1838655786ba620541ab2b38680cdf8
70fd9c7a2101cdfd552ce3e6d9593274e299d10947a923430479857d7c3458b1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/hoverimg/202310092030542465.jpg HTTP/1.1
Host: www.pandorasalecanada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pandorasalecanada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 12:19:02 GMT
Server: Apache
Last-Modified: Tue, 10 Oct 2023 00:30:56 GMT
Accept-Ranges: bytes
Content-Length: 151762
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/jpeg

www.pandorasalecanada.com/images/hoverimg/202310092037355130.jpg

196.242.179.152

200 OK

574 kB

URL GET HTTP/1.1
www.pandorasalecanada.com/images/hoverimg/202310092037355130.jpg
IP
196.242.179.152:443
ASN
#58065 Orion Network Limited

Requested by
https://www.pandorasalecanada.com/
Certificate
IssuercPanel, Inc.
Subjectpandorasalecanada.com
Fingerprint80:6F:B2:26:53:9F:8E:8A:73:03:02:54:AE:18:2F:E3:42:44:BC:F4
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 1081x1081, components 3
Size
574 kB (573624 bytes)
Hash
d0e231c1954c2d866389e204218f033d
a6fa50c585905885fc6a4648fb5a7c3b8b57d186
5568d1d129a557f4ab157a4fc61cdd21dfce5c205009a0a61a02b07c4dcff553

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/hoverimg/202310092037355130.jpg HTTP/1.1
Host: www.pandorasalecanada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pandorasalecanada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 12:19:02 GMT
Server: Apache
Last-Modified: Tue, 10 Oct 2023 00:37:36 GMT
Accept-Ranges: bytes
Content-Length: 573624
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: image/jpeg

www.pandorasalecanada.com/images/hoverimg/202310092032176544.jpg

196.242.179.152

200 OK

610 kB

URL GET HTTP/1.1
www.pandorasalecanada.com/images/hoverimg/202310092032176544.jpg
IP
196.242.179.152:443
ASN
#58065 Orion Network Limited

Requested by
https://www.pandorasalecanada.com/
Certificate
IssuercPanel, Inc.
Subjectpandorasalecanada.com
Fingerprint80:6F:B2:26:53:9F:8E:8A:73:03:02:54:AE:18:2F:E3:42:44:BC:F4
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 1030x1030, components 3
Size
610 kB (610346 bytes)
Hash
08f21f858b9ea9d52ba361f79dd75813
23fa5875e3df90ee01271bc611459b4247f3635f
c27f867281475c781af0e18c9edce1e9bb2fc5bc878354eda9c5aa49dd547568

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/hoverimg/202310092032176544.jpg HTTP/1.1
Host: www.pandorasalecanada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pandorasalecanada.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 12:19:02 GMT
Server: Apache
Last-Modified: Tue, 10 Oct 2023 00:32:18 GMT
Accept-Ranges: bytes
Content-Length: 610346
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/jpeg

www.pandorasalecanada.com/favicon.ico

196.242.179.152

200 OK

465 B

URL GET HTTP/1.1
www.pandorasalecanada.com/favicon.ico
IP
196.242.179.152:443
ASN
#58065 Orion Network Limited

Requested by
https://www.pandorasalecanada.com/
Certificate
IssuercPanel, Inc.
Subjectpandorasalecanada.com
Fingerprint80:6F:B2:26:53:9F:8E:8A:73:03:02:54:AE:18:2F:E3:42:44:BC:F4
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
Size
465 B (465 bytes)
Hash
ea2b79397862c6ecd5dd9c97cda3d124
ed5a52cd51ef6a332f3cb2c79905b9dd2bdfa4e4
b941515394467f44fb1e281735d28f0b1e828da321faa86dcbb6071ee99f69dd

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.pandorasalecanada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pandorasalecanada.com/
Cookie: cookie_test=please_accept_for_session; zenid=r2rkdmb7a9nijrmtofpnfbo212
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 12:19:03 GMT
Server: Apache
Last-Modified: Mon, 09 Oct 2023 20:48:08 GMT
Accept-Ranges: bytes
Content-Length: 465
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: image/x-icon

aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml

35.244.181.201

444 B

URL
aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml
IP
35.244.181.201:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
XML 1.0 document, ASCII text, with very long lines (332)
Size
444 B (444 bytes)
Hash
3b324dec137a87ef7e24a30a65b13dd0
c0faa95b2f1018e264b3a14aaf50d1003e6c27b3
6cd0b591d9239fc8564627e92a804fc261951b1cbaf5fa58a8ada3cc13f51463

HTTP Headers

GET /update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml HTTP/1.1
Host: aus5.mozilla.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: no-cache
Pragma: no-cache
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
rule-id: unknown
rule-data-version: unknown
content-signature: x5u=https://content-signature-2.cdn.mozilla.net/chains/aus.content-signature.mozilla.org-2024-05-20-00-15-28.chain; p384ecdsa=av9G0piA_cJeZZS4ED3EnLXQ4664dywE37PRTjdnmhJFULKEMfNK1XRQ7mR-yQ-skEySgQU83mSF0aGBxo_-lNr9JYQ8qd7AAZ9s1UffZvHNY8M5QCd2lm7JcDO2mzAy
strict-transport-security: max-age=31536000;
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'
x-proxy-cache-status: EXPIRED
content-encoding: gzip
via: 1.1 google
date: Thu, 18 Apr 2024 12:16:51 GMT
content-type: text/xml; charset=utf-8
vary: Accept-Encoding
content-length: 444
age: 145
cache-control: public,max-age=90
alt-svc: clear
X-Firefox-Spdy: h2

www.pandorasalecanada.com/includes/templates/pandoracanada/css/ajax-loader.gif

196.242.179.152

404 Not Found

28 kB

URL GET HTTP/1.1
www.pandorasalecanada.com/includes/templates/pandoracanada/css/ajax-loader.gif
IP
196.242.179.152:443
ASN
#58065 Orion Network Limited

Requested by
https://www.pandorasalecanada.com/
Certificate
IssuercPanel, Inc.
Subjectpandorasalecanada.com
Fingerprint80:6F:B2:26:53:9F:8E:8A:73:03:02:54:AE:18:2F:E3:42:44:BC:F4
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type

Size
28 kB (27495 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/pandoracanada/css/ajax-loader.gif HTTP/1.1
Host: www.pandorasalecanada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pandorasalecanada.com/includes/templates/pandoracanada/css/stylesheet_slick.css
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Thu, 18 Apr 2024 12:19:02 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: cookie_test=please_accept_for_session; expires=Sat, 18-May-2024 12:19:02 GMT; Max-Age=2592000; path=/
zenid=rebp7upb7q3njpso3ofso1td86; path=/; HttpOnly
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=utf-8

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (22)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML