Report - reviwesamazon.shop/

Report Overview

Submitted URL
reviwesamazon.shop/
IP
104.21.17.215
ASN
#13335 CLOUDFLARENET
Submitted
2024-05-07 17:47:40
Access
public
Website Title
sign in
Final URL
reviwesamazon.shop/#/pages/login/logins
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
50

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
reviwesamazon.shop	unknown	2023-10-17	2023-10-17	2024-03-23	11 kB	4.2 MB	104.21.17.215
api1.apiamazon.co	unknown	2023-08-29	2023-08-31	2024-01-15	1.5 kB	14 kB	172.67.188.106
aus5.mozilla.org	2548	1998-01-24	2015-10-27	2024-05-06	512 B	1.2 kB	35.244.181.201
cdn.dcloud.net.cn	116868	2013-07-17	2018-09-15	2024-05-06	437 B	579 B	106.54.228.253

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-05-07	medium	reviwesamazon.shop/	Amazon.com Inc.
2024-05-07	medium	reviwesamazon.shop/	Amazon.com Inc.
2024-05-07	medium	reviwesamazon.shop/	Amazon.com Inc.
2024-05-07	medium	reviwesamazon.shop/	Amazon.com Inc.
2024-05-07	medium	reviwesamazon.shop/	Amazon.com Inc.
2024-05-07	medium	reviwesamazon.shop/	Amazon.com Inc.
2024-05-07	medium	reviwesamazon.shop/	Amazon.com Inc.
2024-05-07	medium	reviwesamazon.shop/	Amazon.com Inc.
2024-05-07	medium	reviwesamazon.shop/	Amazon.com Inc.
2024-05-07	medium	reviwesamazon.shop/	Amazon.com Inc.
2024-05-07	medium	reviwesamazon.shop/	Amazon.com Inc.
2024-05-07	medium	reviwesamazon.shop/	Amazon.com Inc.
2024-05-07	medium	reviwesamazon.shop/	Amazon.com Inc.
2024-05-07	medium	reviwesamazon.shop/	Amazon.com Inc.
2024-05-07	medium	reviwesamazon.shop/	Amazon.com Inc.
2024-05-07	medium	reviwesamazon.shop/	Amazon.com Inc.
2024-05-07	medium	reviwesamazon.shop/	Amazon.com Inc.
2024-05-07	medium	reviwesamazon.shop/	Amazon.com Inc.
2024-05-07	medium	reviwesamazon.shop/	Amazon.com Inc.
2024-05-07	medium	reviwesamazon.shop/	Amazon.com Inc.
2024-05-07	medium	reviwesamazon.shop/	Amazon.com Inc.
2024-05-07	medium	reviwesamazon.shop/	Amazon.com Inc.
2024-05-07	medium	reviwesamazon.shop/	Amazon.com Inc.
2024-05-07	medium	reviwesamazon.shop/	Amazon.com Inc.
2024-05-07	medium	reviwesamazon.shop/	Amazon.com Inc.

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (9)

	URL	Size	First Seen	Last Seen
	reviwesamazon.shop/static/js/chunk-vendors.dc9b3017.js	929 kB	2023-09-17	2024-05-11
Pretty URL reviwesamazon.shop/static/js/chunk-vendors.dc9b3017.js IP 104.21.17.215 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-17 03:44:54 Last Seen2024-05-11 23:57:28 Times Seen18 Hash 9db1f0c3f86baadb8246963b626794fd 0508b175957af3a1f7273098fcd397d3036075cc 5fabac0d4e222300f8c2f9ab1f34fd9c51b7aff7efbaea529c6e0836c8046d98 Loading...

	reviwesamazon.shop/static/js/index.204f630c.js	203 kB	2024-03-08	2024-05-11
Pretty URL reviwesamazon.shop/static/js/index.204f630c.js IP 104.21.17.215 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-08 04:45:48 Last Seen2024-05-11 23:57:28 Times Seen9 Hash d7b8a4cb7c74a8102717f38c42f38846 4ee431128e5786a4de7aef3de8d344134d344aeb 3561ccbe17e51cf0b9a4badadfcdc4c9f6da929d2a7eec1e7d51ddff50c3866d Loading...

	reviwesamazon.shop/static/js/pages-capital-capitals~pages-index-indexs~pages-indexHelp-indexHelps~pages-login-logins~pages-order-~b036990d.2ac3a363.js	31 kB	2023-11-05	2024-05-11
Pretty URL reviwesamazon.shop/static/js/pages-capital-capitals~pages-index-indexs~pages-indexHelp-indexHelps~pages-login-logins~pages-order-~b036990d.2ac3a363.js IP 104.21.17.215 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-05 15:53:51 Last Seen2024-05-11 23:57:27 Times Seen9 Hash 77f4f7a6925bf1fc7e9aebd44f6d5e07 993c4568191901d069f11d1784c3f44c5d700d4e 007a2a8a8399faf35562e67896985aa919501448af62265b1c26cf5b4d5ed7ef Loading...

	reviwesamazon.shop/static/js/pages-index-indexs.0ccbac77.js	18 kB	2023-11-05	2024-05-11
Pretty URL reviwesamazon.shop/static/js/pages-index-indexs.0ccbac77.js IP 104.21.17.215 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-05 15:53:51 Last Seen2024-05-11 23:57:27 Times Seen12 Hash b2c8e9d1bb572996b19f8f9099122a6d 662a99797dbd3f6a49714392322e04404ab65239 36f2648663b806eea49e5234ecd856017fe3140d3b791624ba2a08b6740cad9c Loading...

	reviwesamazon.shop/static/js/pages-index-indexs~pages-user-user.c01f3614.js	66 kB	2023-11-05	2024-05-11
Pretty URL reviwesamazon.shop/static/js/pages-index-indexs~pages-user-user.c01f3614.js IP 104.21.17.215 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-05 15:53:51 Last Seen2024-05-11 23:57:27 Times Seen11 Hash a19ba68449b76987e8e650367e326384 bc7a42252253b1e0ff68d3fa8bca936703635b42 783393a6f77733de30fcb24309f7470bf979e60f5129874911efce520dacd60a Loading...

	reviwesamazon.shop/static/js/pages-login-logins~pages-register-register.a4e4e356.js	34 kB	2023-11-05	2024-05-11
Pretty URL reviwesamazon.shop/static/js/pages-login-logins~pages-register-register.a4e4e356.js IP 104.21.17.215 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-05 15:53:51 Last Seen2024-05-11 23:57:28 Times Seen16 Hash 97bfb1ed205feb9c97438404f3f72267 c2e0aad9a1ffe942faedc94f3f2a2e7464de6440 da9220d1cfa804298ba701d56392f914c12d21977b075719ab8da3ab963644a3 Loading...

	reviwesamazon.shop/static/js/pages-login-logins.d39fd828.js	13 kB	2023-11-05	2024-05-11
Pretty URL reviwesamazon.shop/static/js/pages-login-logins.d39fd828.js IP 104.21.17.215 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-05 15:53:51 Last Seen2024-05-11 23:57:27 Times Seen13 Hash ca1087a6e5c904886136dcc31141ce7e 40bca8f4e6c1b4993e2802bd1c77d3618228fcaa 6c37138740f9110815486db7e5358666cfd5bfc467f2eb6ed395c8921d3be27d Loading...

	reviwesamazon.shop/	357 B	2023-04-05	2024-05-28
Pretty URL reviwesamazon.shop/ IP 104.21.17.215 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-05 04:38:22 Last Seen2024-05-28 18:45:58 Times Seen612 Hash 830340a907776dc356a11dd09613045a 752e7534d3816cfbd6064e36ffff1f79f52f9919 96c12e066cf636b1a9d5010ba9d9e7c9972fd2bbd8874e00633d5828dcfa3df8 Loading...

		Size	First Seen	Last Seen
	#1 Write - 3d5272693eb411e5b8b13a243f76c720	148 B	2023-03-07	2024-05-28
Pretty Observations First Seen2023-03-07 01:10:06 Last Seen2024-05-28 18:45:58 Times Seen1785 Hash 3d5272693eb411e5b8b13a243f76c720 6a586ab8e0a4bf12bbc60eea6ca9f2418625a22c 9582f31f9eb892b8823a780e579d464d54e26d97d65dc327d2b2bdd92d47c4b8 Loading...

HTTP Transactions (30)

URL IP Response Size

reviwesamazon.shop/static/weight-alt.png

104.21.17.215

200 OK

456 B

URL GET HTTP/3
reviwesamazon.shop/static/weight-alt.png
IP
104.21.17.215:443
ASN
#13335 CLOUDFLARENET

Requested by
https://reviwesamazon.shop/
Certificate
IssuerGoogle Trust Services LLC
Subjectreviwesamazon.shop
Fingerprint00:11:5E:F9:7C:07:E6:4C:00:18:90:CC:FB:6A:76:0D:FB:15:77:A3
ValiditySun, 14 Apr 2024 02:24:37 GMT - Sat, 13 Jul 2024 02:24:36 GMT

File type
PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced
Size
456 B (456 bytes)
Hash
162211e8624962b59c05d9661d442e48
e827b21c7a7a90c4b7e2e312297b53595be7d0ef
166f049d72fb69ba02c7a22de23639350b478c743d3c3cf547ec92d93092ada5

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Amazon.com Inc.

HTTP Headers

GET /static/weight-alt.png HTTP/1.1
Host: reviwesamazon.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://reviwesamazon.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:47:14 GMT
content-type: image/png
content-length: 456
last-modified: Fri, 02 Feb 2024 03:25:32 GMT
etag: "65bc60ac-1c8"
expires: Fri, 31 May 2024 08:49:41 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 550653
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=o%2BkgWPAmYN34wOGq2Gp0nQ%2Br8d2oPBRDjR4iX5s8SaTGgqCsAGfnKueInLoRqK4teB2ymthOprfAfbESUeRdehoLXxBXBm7nVPMu5rdMMTj2qnvBOrGZS6RmHgejwZjQiT785Us%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880308b6cf5ab527-OSL
alt-svc: h3=":443"; ma=86400

reviwesamazon.shop/static/home-3-fill.png

104.21.17.215

200 OK

459 B

URL GET HTTP/3
reviwesamazon.shop/static/home-3-fill.png
IP
104.21.17.215:443
ASN
#13335 CLOUDFLARENET

Requested by
https://reviwesamazon.shop/
Certificate
IssuerGoogle Trust Services LLC
Subjectreviwesamazon.shop
Fingerprint00:11:5E:F9:7C:07:E6:4C:00:18:90:CC:FB:6A:76:0D:FB:15:77:A3
ValiditySun, 14 Apr 2024 02:24:37 GMT - Sat, 13 Jul 2024 02:24:36 GMT

File type
PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced
Size
459 B (459 bytes)
Hash
37650c05aa6d94485f716ded3f85b868
9d23f7e10d7de925da2c6848e423b24372ca5c9c
54a9ecd0ffffd5b469f32904461e0ca08f2efc3dc781fc5057b96b59baaf69ca

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Amazon.com Inc.

HTTP Headers

GET /static/home-3-fill.png HTTP/1.1
Host: reviwesamazon.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://reviwesamazon.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:47:14 GMT
content-type: image/png
content-length: 459
last-modified: Fri, 02 Feb 2024 03:25:32 GMT
etag: "65bc60ac-1cb"
expires: Thu, 06 Jun 2024 17:45:17 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 117
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rxnREk7%2FdlRbIXQgqsOCNMr96vWSj5noMpK8U3XEk3B9s7u73c1mLf36BPiUSr5IbkrhDKUwNf8PQGU1m9M9wcEGN2AE2PUBo9qPJXjW84INGIybjsEw25QddmD1c8sn3kriEic%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880308b6cf44b527-OSL
alt-svc: h3=":443"; ma=86400

reviwesamazon.shop/static/js/pages-capital-capitals~pages-index-indexs~pages-indexHelp-indexHelps~pages-login-logins~pages-order-~b036990d.2ac3a363.js

104.21.17.215

200 OK

6.5 kB

URL GET HTTP/3
reviwesamazon.shop/static/js/pages-capital-capitals~pages-index-indexs~pages-indexHelp-indexHelps~pages-login-logins~pages-order-~b036990d.2ac3a363.js
IP
104.21.17.215:443
ASN
#13335 CLOUDFLARENET

Requested by
https://reviwesamazon.shop/
Certificate
IssuerGoogle Trust Services LLC
Subjectreviwesamazon.shop
Fingerprint00:11:5E:F9:7C:07:E6:4C:00:18:90:CC:FB:6A:76:0D:FB:15:77:A3
ValiditySun, 14 Apr 2024 02:24:37 GMT - Sat, 13 Jul 2024 02:24:36 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (30145), with no line terminators
Size
6.5 kB (6546 bytes)
Hash
eae33aa8f90e32ef1d0134f2b9383b17
42002d4db73a0349f57bedd542825e823ed8d32c
b025910322190db0e9ae9c90b5a9c97f5a696ea0d614fb1e693ce6845358ef34

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Amazon.com Inc.

HTTP Headers

GET /static/js/pages-capital-capitals~pages-index-indexs~pages-indexHelp-indexHelps~pages-login-logins~pages-order-~b036990d.2ac3a363.js HTTP/1.1
Host: reviwesamazon.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://reviwesamazon.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:47:14 GMT
content-type: application/javascript
last-modified: Fri, 02 Feb 2024 03:25:32 GMT
vary: Accept-Encoding
etag: W/"65bc60ac-77b5"
expires: Wed, 08 May 2024 05:45:17 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 117
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XaodhqMdenec2IeKIKj0XjIA8rqcDlRlmkhCkyCrNazPxYpxhb1UpHKCuLJzRVD4ug7kiInyYmVnEhl8b1n1O4D5RAhVYmA6o0d1U709X4ckt23NYqmC%2BavEqTkDvXtLoO3IEOg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880308b6af1cb527-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

reviwesamazon.shop/static/user-4-line.png

104.21.17.215

200 OK

665 B

URL GET HTTP/3
reviwesamazon.shop/static/user-4-line.png
IP
104.21.17.215:443
ASN
#13335 CLOUDFLARENET

Requested by
https://reviwesamazon.shop/
Certificate
IssuerGoogle Trust Services LLC
Subjectreviwesamazon.shop
Fingerprint00:11:5E:F9:7C:07:E6:4C:00:18:90:CC:FB:6A:76:0D:FB:15:77:A3
ValiditySun, 14 Apr 2024 02:24:37 GMT - Sat, 13 Jul 2024 02:24:36 GMT

File type
PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced
Size
665 B (665 bytes)
Hash
640a5365d701d22465fd32bdf996b074
7880bebeed35a3129aafa87979704a1170a90315
74f186abb1ee50255004a529d2a1ad069a2b905dc59e04c50d0a4940b6456742

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Amazon.com Inc.

HTTP Headers

GET /static/user-4-line.png HTTP/1.1
Host: reviwesamazon.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://reviwesamazon.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:47:14 GMT
content-type: image/png
content-length: 665
last-modified: Fri, 02 Feb 2024 03:25:32 GMT
etag: "65bc60ac-299"
expires: Thu, 06 Jun 2024 17:45:17 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 117
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=k1M4lHSYoF30Gw8fV6%2Bv0VR7FYYwwkYgT%2FtruB2JoQ9VWas7nuLKqaucgxxb1Ozt9FVU014rtr%2FuGCVciWcTFXwWntiTdgEiqI4YDBlS5MYq26XNqYwkkAfvoDLkC2PHqVugKNI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880308b6df75b527-OSL
alt-svc: h3=":443"; ma=86400

reviwesamazon.shop/static/group-line.png

104.21.17.215

200 OK

1.0 kB

URL GET HTTP/3
reviwesamazon.shop/static/group-line.png
IP
104.21.17.215:443
ASN
#13335 CLOUDFLARENET

Requested by
https://reviwesamazon.shop/
Certificate
IssuerGoogle Trust Services LLC
Subjectreviwesamazon.shop
Fingerprint00:11:5E:F9:7C:07:E6:4C:00:18:90:CC:FB:6A:76:0D:FB:15:77:A3
ValiditySun, 14 Apr 2024 02:24:37 GMT - Sat, 13 Jul 2024 02:24:36 GMT

File type
PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced
Size
1.0 kB (1002 bytes)
Hash
0c0f2b42f56b6f97d0bb2208ad0ea1d9
c7517c7b76e74a8dde17445a9662c7c54f3587be
fd50b8baca36d99efb222f8db192ec670594e04a8b3d47b36ca9c18bc1fe4eef

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Amazon.com Inc.

HTTP Headers

GET /static/group-line.png HTTP/1.1
Host: reviwesamazon.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://reviwesamazon.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:47:14 GMT
content-type: image/png
content-length: 1002
last-modified: Fri, 02 Feb 2024 03:25:32 GMT
etag: "65bc60ac-3ea"
expires: Thu, 06 Jun 2024 17:45:17 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 117
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=e%2Fp2Bmhb6MI%2FqlldtulPWPZ26u3yxAfCU9Y06SCVSYWgFZrx13Z6rnxlaWhvotxaEbTH9DXIvrvoAJqJu7koSBxWgT%2B6k8%2Fkct8MkyQqCT2kEAGodNHhaX0SAgM7eM6oUmTTh0s%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880308b6df6eb527-OSL
alt-svc: h3=":443"; ma=86400

reviwesamazon.shop/static/index.97465e7b.css

104.21.17.215

200 OK

1.3 MB

URL GET HTTP/3
reviwesamazon.shop/static/index.97465e7b.css
IP
104.21.17.215:443
ASN
#13335 CLOUDFLARENET

Requested by
https://reviwesamazon.shop/
Certificate
IssuerGoogle Trust Services LLC
Subjectreviwesamazon.shop
Fingerprint00:11:5E:F9:7C:07:E6:4C:00:18:90:CC:FB:6A:76:0D:FB:15:77:A3
ValiditySun, 14 Apr 2024 02:24:37 GMT - Sat, 13 Jul 2024 02:24:36 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
1.3 MB (1323198 bytes)
Hash
97a29764a1df91af2f287e5641b1efeb
887cbd5cd4630164c4ac6b8738d8a32459c920d6
f6789ee8a50f44f18ba717956bd34c4cd17b1d658443e92408976907b83a0242

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Amazon.com Inc.

HTTP Headers

GET /static/index.97465e7b.css HTTP/1.1
Host: reviwesamazon.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://reviwesamazon.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:47:13 GMT
content-type: text/css
last-modified: Fri, 02 Feb 2024 03:25:32 GMT
vary: Accept-Encoding
etag: W/"65bc60ac-17894"
expires: Wed, 08 May 2024 05:45:15 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 118
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MU3c6pEBnWiEXU06se2OWcl0O1p6c68wQGZqaEFPb2dCBQW%2FyH7WidYXEgAxUKtyw1%2FlyRIbBwGEJejTpVVVqHrs4NZWCFEzXznrunru5PI2Y1blbqOiDpKWS%2FJZ1jpgKTRLHdI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880308b419a7b527-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

reviwesamazon.shop/static/fonts/uniicons.b6d3756e.ttf

104.21.17.215

200 OK

36 kB

URL GET HTTP/3
reviwesamazon.shop/static/fonts/uniicons.b6d3756e.ttf
IP
104.21.17.215:443
ASN
#13335 CLOUDFLARENET

Requested by
https://reviwesamazon.shop/
Certificate
IssuerGoogle Trust Services LLC
Subjectreviwesamazon.shop
Fingerprint00:11:5E:F9:7C:07:E6:4C:00:18:90:CC:FB:6A:76:0D:FB:15:77:A3
ValiditySun, 14 Apr 2024 02:24:37 GMT - Sat, 13 Jul 2024 02:24:36 GMT

File type
TrueType Font data, 11 tables, 1st "GSUB", 18 names, Macintosh, Created by iconfontuniiconsRegularuniiconsuniiconsVersion 1.0uniiconsGenerated by svg2ttf from F
Size
36 kB (35760 bytes)
Hash
b6d3756ee0e3dd7ecb155b751a233247
4e61eda60483fc01548f76ca5741ee838486cc96
89ed7d6d732e893a473c6d6b443f854f4dcdf57360a11016306335a2048895ff

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Amazon.com Inc.

HTTP Headers

GET /static/fonts/uniicons.b6d3756e.ttf HTTP/1.1
Host: reviwesamazon.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://reviwesamazon.shop/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:47:14 GMT
content-type: application/octet-stream
content-length: 35760
last-modified: Fri, 02 Feb 2024 03:25:32 GMT
etag: "65bc60ac-8bb0"
cache-control: max-age=14400
cf-cache-status: HIT
age: 116
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=S%2FW84TYhsu6panROMolAJzD4Pv1z5s5VVvZbxbMlORodBN3%2Bw1MKrfUzGu9BaFRkAHxkninxIbmNgbRSWKjqsGoeCPQe3AvupXW18UlBhGhA%2FUxPiZ1mYSOwpM1q1AStsBuGO%2Bo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880308b80a02b527-OSL
alt-svc: h3=":443"; ma=86400

reviwesamazon.shop/static/logo1.png

104.21.17.215

200 OK

8.2 kB

URL GET HTTP/3
reviwesamazon.shop/static/logo1.png
IP
104.21.17.215:443
ASN
#13335 CLOUDFLARENET

Requested by
https://reviwesamazon.shop/
Certificate
IssuerGoogle Trust Services LLC
Subjectreviwesamazon.shop
Fingerprint00:11:5E:F9:7C:07:E6:4C:00:18:90:CC:FB:6A:76:0D:FB:15:77:A3
ValiditySun, 14 Apr 2024 02:24:37 GMT - Sat, 13 Jul 2024 02:24:36 GMT

File type
PNG image data, 1000 x 100, 8-bit/color RGBA, non-interlaced
Size
8.2 kB (8203 bytes)
Hash
b2cb45724afb428b31011b0114a7df9c
3ecb9c1c916288febbeb95c5d4f4db43cba78f5f
3384b0e3c69ce8d10375c1b393ccf97a0a9c16d2fde20872913c0d09ede45a24

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Amazon.com Inc.

HTTP Headers

GET /static/logo1.png HTTP/1.1
Host: reviwesamazon.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://reviwesamazon.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:47:14 GMT
content-type: image/png
content-length: 8203
last-modified: Fri, 02 Feb 2024 03:25:32 GMT
etag: "65bc60ac-200b"
expires: Sat, 01 Jun 2024 21:44:07 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 417787
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EhzAmSM88lq1yUGs9vTOcCSK8xYqvRy2R3LzQlSshZQMwbUgmy6xiXKcnuvUGQXmG9lnBMY9TucAqsHHkEooK50Htl2de8bEmNKvYN7LcCaMjXTjr0t6cCn9aPcwmgoRqlbATSk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880308b82a86b527-OSL
alt-svc: h3=":443"; ma=86400

reviwesamazon.shop/static/guanyuwomen_1.png

104.21.17.215

200 OK

3.7 kB

URL GET HTTP/3
reviwesamazon.shop/static/guanyuwomen_1.png
IP
104.21.17.215:443
ASN
#13335 CLOUDFLARENET

Requested by
https://reviwesamazon.shop/
Certificate
IssuerGoogle Trust Services LLC
Subjectreviwesamazon.shop
Fingerprint00:11:5E:F9:7C:07:E6:4C:00:18:90:CC:FB:6A:76:0D:FB:15:77:A3
ValiditySun, 14 Apr 2024 02:24:37 GMT - Sat, 13 Jul 2024 02:24:36 GMT

File type
PNG image data, 72 x 72, 8-bit/color RGBA, non-interlaced
Size
3.7 kB (3723 bytes)
Hash
e9fd3ab186b250270012173c5cfd5337
27e1b4c9ad2d723330d775cd903d8591f114ae92
dda552bfad06cb3f8d308308e1c73eb6c8609763306c4fa850a469a4ec5067aa

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Amazon.com Inc.

HTTP Headers

GET /static/guanyuwomen_1.png HTTP/1.1
Host: reviwesamazon.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://reviwesamazon.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:47:14 GMT
content-type: image/png
content-length: 3723
last-modified: Fri, 02 Feb 2024 03:25:32 GMT
etag: "65bc60ac-e8b"
expires: Thu, 06 Jun 2024 17:45:18 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 116
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=A91Dxnqe%2F0EqI7fmwyIdtPpKAo132Lr8HZokvouhB99mJheTnqOkbYOygizMS%2BMMYhHyNewd2IcFQbu8LuENYD9KJ2HMbbmXUQUD02sap2uYQNu1Z7GXGD2DEjP8dAgU9dgBhOk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880308b9bda4b527-OSL
alt-svc: h3=":443"; ma=86400

reviwesamazon.shop/static/banklogo.png

104.21.17.215

200 OK

4.3 kB

URL GET HTTP/3
reviwesamazon.shop/static/banklogo.png
IP
104.21.17.215:443
ASN
#13335 CLOUDFLARENET

Requested by
https://reviwesamazon.shop/
Certificate
IssuerGoogle Trust Services LLC
Subjectreviwesamazon.shop
Fingerprint00:11:5E:F9:7C:07:E6:4C:00:18:90:CC:FB:6A:76:0D:FB:15:77:A3
ValiditySun, 14 Apr 2024 02:24:37 GMT - Sat, 13 Jul 2024 02:24:36 GMT

File type
PNG image data, 72 x 72, 8-bit/color RGBA, non-interlaced
Size
4.3 kB (4254 bytes)
Hash
201c94637ce132f13ad27d726956848a
6b6f958b68814ddc50b2fee85494df5f6941388d
4b19276f337c70b853b62b65049e769037f090db18cf46859b52c17aa5559005

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Amazon.com Inc.

HTTP Headers

GET /static/banklogo.png HTTP/1.1
Host: reviwesamazon.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://reviwesamazon.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:47:14 GMT
content-type: image/png
content-length: 4254
last-modified: Fri, 02 Feb 2024 03:25:32 GMT
etag: "65bc60ac-109e"
expires: Thu, 06 Jun 2024 17:45:18 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 116
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=iXFwhBzYZsHDZCuxYwtdnyQhWoEoGfpjZIxV%2FzoofnOA6XzWHiolHnRY8sTMMNOOIxbzKFN390DwHdCKvivVpLiiA%2BjaguvCCh%2FcKRGBWHp1SnNTHVC%2F5GIDUkGmddSsQxmZPoQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880308b9bda2b527-OSL
alt-svc: h3=":443"; ma=86400

reviwesamazon.shop/static/img/image5.57808d5f.png

104.21.17.215

200 OK

76 kB

URL GET HTTP/3
reviwesamazon.shop/static/img/image5.57808d5f.png
IP
104.21.17.215:443
ASN
#13335 CLOUDFLARENET

Requested by
https://reviwesamazon.shop/
Certificate
IssuerGoogle Trust Services LLC
Subjectreviwesamazon.shop
Fingerprint00:11:5E:F9:7C:07:E6:4C:00:18:90:CC:FB:6A:76:0D:FB:15:77:A3
ValiditySun, 14 Apr 2024 02:24:37 GMT - Sat, 13 Jul 2024 02:24:36 GMT

File type
PNG image data, 471 x 305, 8-bit/color RGBA, non-interlaced
Size
76 kB (76533 bytes)
Hash
57808d5ffd35dacf4483ffefa199d94e
4a3fe6b1a2dc15cb6a0cedd826be8eecae8614c9
8db290cde25c2036f287cd26ab19a65f8f4dc03d04c5bb33ab5ad1443fc06d40

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Amazon.com Inc.

HTTP Headers

GET /static/img/image5.57808d5f.png HTTP/1.1
Host: reviwesamazon.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://reviwesamazon.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:47:14 GMT
content-type: image/png
content-length: 76533
last-modified: Fri, 02 Feb 2024 03:25:32 GMT
etag: "65bc60ac-12af5"
expires: Thu, 06 Jun 2024 17:45:18 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 116
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3G4B2NC8%2F%2BJzI465%2Fv83NQ64gHi2ZjUKwe1dCMDACsleS3qJe0mVvSny6OUbc3IBsPwZ3FEBz8JMMbl8ya3gGoWpgbZX7%2Fjkcne7fVz7KHWTvaKtm5c9YdePoYE1m96%2BSc%2Bk6ZE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880308b9bda7b527-OSL
alt-svc: h3=":443"; ma=86400

reviwesamazon.shop/static/query.png

104.21.17.215

200 OK

2.6 kB

URL GET HTTP/3
reviwesamazon.shop/static/query.png
IP
104.21.17.215:443
ASN
#13335 CLOUDFLARENET

Requested by
https://reviwesamazon.shop/
Certificate
IssuerGoogle Trust Services LLC
Subjectreviwesamazon.shop
Fingerprint00:11:5E:F9:7C:07:E6:4C:00:18:90:CC:FB:6A:76:0D:FB:15:77:A3
ValiditySun, 14 Apr 2024 02:24:37 GMT - Sat, 13 Jul 2024 02:24:36 GMT

File type
PNG image data, 72 x 72, 8-bit/color RGBA, non-interlaced
Size
2.6 kB (2553 bytes)
Hash
7ecf1137cd0fa609271f57185beb3d78
f8950470b2c7210ce16325a35ae7ccd3d5d8e4eb
150b887cadb58a2e80d74702a3b2d3f9e1df19ace1b6c8e0f5936e61a50aa5c4

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Amazon.com Inc.

HTTP Headers

GET /static/query.png HTTP/1.1
Host: reviwesamazon.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://reviwesamazon.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:47:14 GMT
content-type: image/png
content-length: 2553
last-modified: Fri, 02 Feb 2024 03:25:32 GMT
etag: "65bc60ac-9f9"
expires: Thu, 06 Jun 2024 17:45:18 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 116
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0UZSjMsvIET9Xf6wlBHe8ENkI9hFgTejFtFpgkyhbpQpCi%2BCEW2jObATnfwLDkoqYn9YFx%2B2Kf89hc%2BQx%2BmdpXbU%2BQUeAUoyS6UffXtC4s1YJNPzVMUiF%2FAbmQyfiGuiMcD9Vqk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880308b9bda6b527-OSL
alt-svc: h3=":443"; ma=86400

reviwesamazon.shop/static/down.png

104.21.17.215

200 OK

2.4 kB

URL GET HTTP/3
reviwesamazon.shop/static/down.png
IP
104.21.17.215:443
ASN
#13335 CLOUDFLARENET

Requested by
https://reviwesamazon.shop/
Certificate
IssuerGoogle Trust Services LLC
Subjectreviwesamazon.shop
Fingerprint00:11:5E:F9:7C:07:E6:4C:00:18:90:CC:FB:6A:76:0D:FB:15:77:A3
ValiditySun, 14 Apr 2024 02:24:37 GMT - Sat, 13 Jul 2024 02:24:36 GMT

File type
PNG image data, 72 x 72, 8-bit/color RGBA, non-interlaced
Size
2.4 kB (2407 bytes)
Hash
e7cf3d045e1045b8bba78da0b633548b
9e350aa772261ef8c9c8491770cac4e18a15833a
697f9d335db1911d89b39a29c1b808a9a2c2a78e59a39d11a2d90987f7a4f8af

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Amazon.com Inc.

HTTP Headers

GET /static/down.png HTTP/1.1
Host: reviwesamazon.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://reviwesamazon.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:47:14 GMT
content-type: image/png
content-length: 2407
last-modified: Fri, 02 Feb 2024 03:25:32 GMT
etag: "65bc60ac-967"
expires: Thu, 06 Jun 2024 17:45:18 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 116
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0BfVZbDpg%2B2XhmzcQefl24zPLa4zUPBNtA4aNpeFQvmc1UVSl7MS92CTAIj%2BmIRvaEH55SMeompqscK7PUYFK8yZi%2FtyNmF%2BbFyTO%2FMbSy4g2YF6lm0QSwlrH1mWYbvlwCSTYtg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880308b9bda5b527-OSL
alt-svc: h3=":443"; ma=86400

api1.apiamazon.co/api/getInfo

172.67.188.106

204 No Content

0 B

URL OPTIONS HTTP/2
api1.apiamazon.co/api/getInfo
IP
172.67.188.106:443
ASN
#13335 CLOUDFLARENET

Requested by
https://reviwesamazon.shop/
Certificate
IssuerGoogle Trust Services LLC
Subjectapiamazon.co
FingerprintBD:7E:3B:2B:7D:ED:2F:21:23:01:E0:07:63:0E:C1:EA:F7:FE:22:07
ValidityMon, 22 Apr 2024 08:28:37 GMT - Sun, 21 Jul 2024 08:28:36 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /api/getInfo HTTP/1.1
Host: api1.apiamazon.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://reviwesamazon.shop/
Origin: https://reviwesamazon.shop
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
date: Tue, 07 May 2024 17:47:14 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: https://reviwesamazon.shop
access-control-allow-methods: GET,PUT,POST,PATCH,DELETE
access-control-allow-headers: Authorization,Content-Type,If-Match,If-Modified-Since,If-None-Match,If-Unmodified-Since,X-Requested-With,Api-Type,Api-Name,Api-Uuid,Jwt-Token,Api-Token,User-Form-Token,User-Token,Token
access-control-allow-credentials: true
access-control-expose-headers: Api-Type,Api-Name,Api-Uuid,Jwt-Token,Api-Token,User-Form-Token,User-Token,Token
set-cookie: ssid=504cab9d0112ea84a7f279d3e3292d96; path=/; secure; HttpOnly; SameSite=none
lang=en-us; path=/; secure; HttpOnly; SameSite=none
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JZzEEhPQpeHCiziEmzUZ6S9glC5NqJUv7gFz5Nl7O8aYe3NbqoLuww9Dh1nOL8Kt0yQPseswCN%2FQ126pJ3hTxmoWBwF%2BaDzcBmsnasICRWfmV2nDitPMqYB7w110zhgmbg7%2Fbg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880308b7fff756c0-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

api1.apiamazon.co/api/getInfo

172.67.188.106

204 No Content

4.4 kB

URL OPTIONS HTTP/2
api1.apiamazon.co/api/getInfo
IP
172.67.188.106:443
ASN
#13335 CLOUDFLARENET

Requested by
https://reviwesamazon.shop/
Certificate
IssuerGoogle Trust Services LLC
Subjectapiamazon.co
FingerprintBD:7E:3B:2B:7D:ED:2F:21:23:01:E0:07:63:0E:C1:EA:F7:FE:22:07
ValidityMon, 22 Apr 2024 08:28:37 GMT - Sun, 21 Jul 2024 08:28:36 GMT

File type
JSON text data
Size
4.4 kB (4390 bytes)
Hash
dd8b37d43dae0697af796c72d986035e
bad22aebca2fc2c2581755f9059d188a1d378662
4f5b53145ba8dd195def9558ed6ff8de05adcaf99ce9673121ec047464a1f7a1

HTTP Headers

POST /api/getInfo HTTP/1.1
Host: api1.apiamazon.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 2
Origin: https://reviwesamazon.shop
DNT: 1
Connection: keep-alive
Referer: https://reviwesamazon.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 07 May 2024 17:47:15 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: https://reviwesamazon.shop
access-control-allow-methods: GET,PUT,POST,PATCH,DELETE
access-control-allow-headers: Authorization,Content-Type,If-Match,If-Modified-Since,If-None-Match,If-Unmodified-Since,X-Requested-With,Api-Type,Api-Name,Api-Uuid,Jwt-Token,Api-Token,User-Form-Token,User-Token,Token
access-control-allow-credentials: true
access-control-expose-headers: Api-Type,Api-Name,Api-Uuid,Jwt-Token,Api-Token,User-Form-Token,User-Token,Token
set-cookie: ssid=625e26d1e783a42adda067e5bbaaa677; path=/; secure; HttpOnly; SameSite=none
lang=en-us; path=/; secure; HttpOnly; SameSite=none
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=oY%2BOwmY4O8QQeX%2BffkrK8OxiT%2BhVobftE3UEWMtCSF8EPhmdVnrIVZwO7tydA8yCmf%2FRLdX3tGWyXsQKlfvpwm57ljZ4K8s%2Ftwr%2BEWz5TLysu8BvKR%2FmJSelXq8mP%2BAe8QcJLw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880308ba4bc956c0-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

reviwesamazon.shop/favicon.ico

104.21.17.215

404 Not Found

9.8 kB

URL GET HTTP/3
reviwesamazon.shop/favicon.ico
IP
104.21.17.215:443
ASN
#13335 CLOUDFLARENET

Requested by
https://reviwesamazon.shop/
Certificate
IssuerGoogle Trust Services LLC
Subjectreviwesamazon.shop
Fingerprint00:11:5E:F9:7C:07:E6:4C:00:18:90:CC:FB:6A:76:0D:FB:15:77:A3
ValiditySun, 14 Apr 2024 02:24:37 GMT - Sat, 13 Jul 2024 02:24:36 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
9.8 kB (9822 bytes)
Hash
8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Amazon.com Inc.

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: reviwesamazon.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://reviwesamazon.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
date: Tue, 07 May 2024 17:47:15 GMT
content-type: text/html
cache-control: max-age=14400
cf-cache-status: HIT
age: 116
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BInku9SpqIGFrSnC6Yt1bKKxRPVgieFCAUz%2BjWaArZBXKTNNpir3s7XwuWy804n0AjeQQXEY4cBzouZcvqRFNn7SZEZ9ECHrLQjyeIxj86JqgBi%2F03P4k1iltaVudaOYfHZI%2FM4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880308bb68b8b527-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

reviwesamazon.shop/static/js/pages-login-logins.d39fd828.js

104.21.17.215

200 OK

84 kB

URL GET HTTP/3
reviwesamazon.shop/static/js/pages-login-logins.d39fd828.js
IP
104.21.17.215:443
ASN
#13335 CLOUDFLARENET

Requested by
https://reviwesamazon.shop/
Certificate
IssuerGoogle Trust Services LLC
Subjectreviwesamazon.shop
Fingerprint00:11:5E:F9:7C:07:E6:4C:00:18:90:CC:FB:6A:76:0D:FB:15:77:A3
ValiditySun, 14 Apr 2024 02:24:37 GMT - Sat, 13 Jul 2024 02:24:36 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (13374), with no line terminators
Size
84 kB (83655 bytes)
Hash
ca1087a6e5c904886136dcc31141ce7e
40bca8f4e6c1b4993e2802bd1c77d3618228fcaa
6c37138740f9110815486db7e5358666cfd5bfc467f2eb6ed395c8921d3be27d

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Amazon.com Inc.

HTTP Headers

GET /static/js/pages-login-logins.d39fd828.js HTTP/1.1
Host: reviwesamazon.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://reviwesamazon.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:47:16 GMT
content-type: application/javascript
last-modified: Fri, 02 Feb 2024 03:25:32 GMT
vary: Accept-Encoding
etag: W/"65bc60ac-3477"
expires: Wed, 08 May 2024 05:45:20 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 116
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AqDAi%2FIKIMnJ%2FSnrCHELDHmeooAT7Dofiuzmm3lhg%2BO4%2B9Ewc1wNf5p%2FHnHMPu7%2FNgJALeovnxW9B3kSNPhCXwgiCtnhgJk%2F8t9RfmgJ9N%2BGel2Ygl408mlwcEPUCXJ53KNAeKc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880308c44cd7b527-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

reviwesamazon.shop/static/logo2.png

104.21.17.215

200 OK

35 kB

URL GET HTTP/3
reviwesamazon.shop/static/logo2.png
IP
104.21.17.215:443
ASN
#13335 CLOUDFLARENET

Requested by
https://reviwesamazon.shop/
Certificate
IssuerGoogle Trust Services LLC
Subjectreviwesamazon.shop
Fingerprint00:11:5E:F9:7C:07:E6:4C:00:18:90:CC:FB:6A:76:0D:FB:15:77:A3
ValiditySun, 14 Apr 2024 02:24:37 GMT - Sat, 13 Jul 2024 02:24:36 GMT

File type
PNG image data, 1000 x 1000, 8-bit/color RGBA, non-interlaced
Size
35 kB (34936 bytes)
Hash
362b07407742372d67903a527de1a26f
d5d9402880f37dd72784708b2fc6c6c295136054
21de4b413f40729fae7232d30d348e2398cbfd0c147f0c40e4517938aaa5aa80

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Amazon.com Inc.

HTTP Headers

GET /static/logo2.png HTTP/1.1
Host: reviwesamazon.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://reviwesamazon.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:47:16 GMT
content-type: image/png
content-length: 34936
last-modified: Fri, 02 Feb 2024 03:25:32 GMT
etag: "65bc60ac-8878"
expires: Thu, 06 Jun 2024 17:45:21 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 115
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FwPicSF1f0J7Zjb7YeLrpKKnbofzOvvrEn0U%2B%2B8YCiq5zz%2BUKOx50pNgQO3o0zn3sa4yEj9bK3vRMLzpnZxDJj%2BCRLIfGaV7RWGL4a5uU8Fe5k1JQhBObgWet7PVbck4A96LHw4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880308c4de30b527-OSL
alt-svc: h3=":443"; ma=86400

reviwesamazon.shop/static/js/pages-login-logins~pages-register-register.a4e4e356.js

104.21.17.215

200 OK

10 kB

URL GET HTTP/3
reviwesamazon.shop/static/js/pages-login-logins~pages-register-register.a4e4e356.js
IP
104.21.17.215:443
ASN
#13335 CLOUDFLARENET

Requested by
https://reviwesamazon.shop/
Certificate
IssuerGoogle Trust Services LLC
Subjectreviwesamazon.shop
Fingerprint00:11:5E:F9:7C:07:E6:4C:00:18:90:CC:FB:6A:76:0D:FB:15:77:A3
ValiditySun, 14 Apr 2024 02:24:37 GMT - Sat, 13 Jul 2024 02:24:36 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (32698), with no line terminators
Size
10 kB (10378 bytes)
Hash
97bfb1ed205feb9c97438404f3f72267
c2e0aad9a1ffe942faedc94f3f2a2e7464de6440
da9220d1cfa804298ba701d56392f914c12d21977b075719ab8da3ab963644a3

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Amazon.com Inc.

HTTP Headers

GET /static/js/pages-login-logins~pages-register-register.a4e4e356.js HTTP/1.1
Host: reviwesamazon.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://reviwesamazon.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:47:16 GMT
content-type: application/javascript
last-modified: Fri, 02 Feb 2024 03:25:32 GMT
vary: Accept-Encoding
etag: W/"65bc60ac-84b0"
expires: Wed, 08 May 2024 05:45:20 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 116
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vUxKYGn%2BZiDhfkKt3UAeyFaEebxBl4whY737QQvVSToG8LVgKf%2F7vHU%2F%2Fm46%2BeQGRTL0h0s9awDxWgcUI3X3AI3XvouXlOTKwOWINr8ENTRjkOAGDx%2B9TULfSmeXstZu6TYFri8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880308c44cd5b527-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml

35.244.181.201

444 B

URL
aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml
IP
35.244.181.201:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
XML 1.0 document, ASCII text, with very long lines (332)
Size
444 B (444 bytes)
Hash
3b324dec137a87ef7e24a30a65b13dd0
c0faa95b2f1018e264b3a14aaf50d1003e6c27b3
6cd0b591d9239fc8564627e92a804fc261951b1cbaf5fa58a8ada3cc13f51463

HTTP Headers

GET /update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml HTTP/1.1
Host: aus5.mozilla.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: no-cache
Pragma: no-cache
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
rule-id: unknown
rule-data-version: unknown
content-signature: x5u=https://content-signature-2.cdn.mozilla.net/chains/aus.content-signature.mozilla.org-2024-06-09-11-51-10.chain; p384ecdsa=glNTzxwSNuwoCyLSmixTcV8JA9ma_RdweZKVqwyr3vDJlZQA3IxfoIsSWrvVk1nWiI97eDYtTSZCu1NDoRMfi2cNkLllJ-QfDvnOssgDOOz8xMH9W9CJMkAf1dsKB-dH
strict-transport-security: max-age=31536000;
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'
x-proxy-cache-status: EXPIRED
content-encoding: gzip
via: 1.1 google
date: Tue, 07 May 2024 17:46:45 GMT
content-type: text/xml; charset=utf-8
vary: Accept-Encoding
content-length: 444
age: 47
cache-control: public,max-age=90
alt-svc: clear
X-Firefox-Spdy: h2

reviwesamazon.shop/static/js/pages-index-indexs~pages-user-user.c01f3614.js

104.21.17.215

200 OK

66 kB

URL GET HTTP/3
reviwesamazon.shop/static/js/pages-index-indexs~pages-user-user.c01f3614.js
IP
104.21.17.215:443
ASN
#13335 CLOUDFLARENET

Requested by
https://reviwesamazon.shop/
Certificate
IssuerGoogle Trust Services LLC
Subjectreviwesamazon.shop
Fingerprint00:11:5E:F9:7C:07:E6:4C:00:18:90:CC:FB:6A:76:0D:FB:15:77:A3
ValiditySun, 14 Apr 2024 02:24:37 GMT - Sat, 13 Jul 2024 02:24:36 GMT

File type

Size
66 kB (66516 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Amazon.com Inc.

HTTP Headers

GET /static/js/pages-index-indexs~pages-user-user.c01f3614.js HTTP/1.1
Host: reviwesamazon.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://reviwesamazon.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 17:47:14 GMT
content-type: application/javascript
last-modified: Fri, 02 Feb 2024 03:25:32 GMT
vary: Accept-Encoding
etag: W/"65bc60ac-103d4"
expires: Wed, 08 May 2024 05:45:17 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 117
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=e1WjPfkhxULIjyCOvJzj7iH%2BZVwYSSuU4VX3lMZzF7pH9PYyGZxw7FlByc%2Bqyi0Vzk7oOdmSc%2BH570plWiRcF3Cxp%2FYwONfB%2F5cPWfTncTgNz0lFVGpEVoUgfqF5pQjijhGlNOU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880308b6af1db527-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

reviwesamazon.shop/static/js/index.204f630c.js

104.21.17.215

200 OK

203 kB

URL GET HTTP/3
reviwesamazon.shop/static/js/index.204f630c.js
IP
104.21.17.215:443
ASN
#13335 CLOUDFLARENET

Requested by
https://reviwesamazon.shop/
Certificate
IssuerGoogle Trust Services LLC
Subjectreviwesamazon.shop
Fingerprint00:11:5E:F9:7C:07:E6:4C:00:18:90:CC:FB:6A:76:0D:FB:15:77:A3
ValiditySun, 14 Apr 2024 02:24:37 GMT - Sat, 13 Jul 2024 02:24:36 GMT

File type

Size
203 kB (203125 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Amazon.com Inc.

HTTP Headers

GET /static/js/index.204f630c.js HTTP/1.1
Host: reviwesamazon.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://reviwesamazon.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 17:47:13 GMT
content-type: application/javascript
last-modified: Fri, 02 Feb 2024 03:25:32 GMT
vary: Accept-Encoding
etag: W/"65bc60ac-31975"
expires: Wed, 08 May 2024 05:45:15 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 118
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=u6h%2Fx7dZnVbEt9vapdZtckEniceNFpLt6BSUZFu12AR6kdm5H6dBsGCiBTp%2Fw%2FARP8IA1s7NjOOK3bmFPZ0Tw2gZBGMpPt9YiGbQAY3ax6jkHlUOSl2U%2Ftuxno62FOrZ7GJPF9o%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880308b419bfb527-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

reviwesamazon.shop/static/js/pages-index-indexs.0ccbac77.js

104.21.17.215

200 OK

18 kB

URL GET HTTP/3
reviwesamazon.shop/static/js/pages-index-indexs.0ccbac77.js
IP
104.21.17.215:443
ASN
#13335 CLOUDFLARENET

Requested by
https://reviwesamazon.shop/
Certificate
IssuerGoogle Trust Services LLC
Subjectreviwesamazon.shop
Fingerprint00:11:5E:F9:7C:07:E6:4C:00:18:90:CC:FB:6A:76:0D:FB:15:77:A3
ValiditySun, 14 Apr 2024 02:24:37 GMT - Sat, 13 Jul 2024 02:24:36 GMT

File type

Size
18 kB (18396 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Amazon.com Inc.

HTTP Headers

GET /static/js/pages-index-indexs.0ccbac77.js HTTP/1.1
Host: reviwesamazon.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://reviwesamazon.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 17:47:14 GMT
content-type: application/javascript
last-modified: Fri, 02 Feb 2024 03:25:32 GMT
vary: Accept-Encoding
etag: W/"65bc60ac-47dc"
expires: Wed, 08 May 2024 05:45:17 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 117
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tMOeIYjMezWy8UnUijVJ5O%2BqIbxLgL%2BQc8g2rrE3d%2Fkh5cSXz60xpb7cXZpQZdfiNVjIhDyb298XmWrCG2FSu85aiCWcZ9wn4WLZFx5cKnRX4kOG5HflNaJ%2F5g42if0rQV4oX%2Bc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880308b6bf2bb527-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

reviwesamazon.shop/static/img/backgroundAll.6fbcf978.png

104.21.17.215

200 OK

1.3 MB

URL GET HTTP/3
reviwesamazon.shop/static/img/backgroundAll.6fbcf978.png
IP
104.21.17.215:443
ASN
#13335 CLOUDFLARENET

Requested by
https://reviwesamazon.shop/
Certificate
IssuerGoogle Trust Services LLC
Subjectreviwesamazon.shop
Fingerprint00:11:5E:F9:7C:07:E6:4C:00:18:90:CC:FB:6A:76:0D:FB:15:77:A3
ValiditySun, 14 Apr 2024 02:24:37 GMT - Sat, 13 Jul 2024 02:24:36 GMT

File type
PNG image data, 1170 x 2532, 8-bit/color RGBA, non-interlaced
Size
1.3 MB (1292774 bytes)
Hash
b55fffa14f72878ef25d69fccede88c5
64b9a97850b8d46808f2120bc885f9be069c3710
9d50593ad4f4a66589f1ebfb6419a0c25713db394a6109dd1b85275c654a5dc1

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Amazon.com Inc.

HTTP Headers

GET /static/img/backgroundAll.6fbcf978.png HTTP/1.1
Host: reviwesamazon.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://reviwesamazon.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 17:47:14 GMT
content-type: image/png
content-length: 1292774
last-modified: Fri, 02 Feb 2024 03:25:32 GMT
etag: "65bc60ac-13b9e6"
expires: Thu, 06 Jun 2024 17:45:17 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 117
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jP%2BzHSwSfMU9F1yzHbDf1gYcfPSveneNJ%2BOZdMhjcR6vkHAXrVpFW6iQYPK7hlx5MZy1VIwfRqD1GvWkAE1tu9nMhAf52Po0x9MCwtVQswebBkDXf87OstG58mDEa7LP6ASjl4w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880308b71fdbb527-OSL
alt-svc: h3=":443"; ma=86400

reviwesamazon.shop/

104.21.17.215

200 OK

780 B

URL User Request GET HTTP/2
reviwesamazon.shop/
IP
104.21.17.215:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectreviwesamazon.shop
Fingerprint00:11:5E:F9:7C:07:E6:4C:00:18:90:CC:FB:6A:76:0D:FB:15:77:A3
ValiditySun, 14 Apr 2024 02:24:37 GMT - Sat, 13 Jul 2024 02:24:36 GMT

File type
HTML document, ASCII text, with very long lines (787), with no line terminators
Size
780 B (780 bytes)
Hash
8aac4125ca33de57bdbac65dbcdc6faf
3bc28021c0bbb8871b75f8f0e17190992292beb9
f9f34388913341c4e913484688634a9e4b04b6cecd213c6a94f175a49ccd4f28

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Amazon.com Inc.

HTTP Headers

GET / HTTP/1.1
Host: reviwesamazon.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 07 May 2024 17:47:13 GMT
content-type: text/html
last-modified: Fri, 02 Feb 2024 03:25:32 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UT8TL%2Fc%2BAo5SUGNDCmd0J%2BSuzIzbM8y1tbRimWcFUJNztZXQkzk8Vfnz0Q2mMAtZLEdmXdvz0Nxvps410vva3H%2FTMI3kzI0gTqebcEAGH5PyNUZo2pp37srgpZZMKEk4yMeEWCQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880308af4f300b31-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

reviwesamazon.shop/static/js/chunk-vendors.dc9b3017.js

104.21.17.215

200 OK

929 kB

URL GET HTTP/3
reviwesamazon.shop/static/js/chunk-vendors.dc9b3017.js
IP
104.21.17.215:443
ASN
#13335 CLOUDFLARENET

Requested by
https://reviwesamazon.shop/
Certificate
IssuerGoogle Trust Services LLC
Subjectreviwesamazon.shop
Fingerprint00:11:5E:F9:7C:07:E6:4C:00:18:90:CC:FB:6A:76:0D:FB:15:77:A3
ValiditySun, 14 Apr 2024 02:24:37 GMT - Sat, 13 Jul 2024 02:24:36 GMT

File type

Size
929 kB (929014 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Amazon.com Inc.

HTTP Headers

GET /static/js/chunk-vendors.dc9b3017.js HTTP/1.1
Host: reviwesamazon.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://reviwesamazon.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 17:47:13 GMT
content-type: application/javascript
last-modified: Fri, 02 Feb 2024 03:25:32 GMT
vary: Accept-Encoding
etag: W/"65bc60ac-e2cf6"
expires: Wed, 08 May 2024 05:45:15 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 118
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=eDR5m8AjRG%2By4OQNLijPoMBqxmVH%2BUk0b3se%2FDsFnTZ9lxoTXB19mKIKGcvpwN20KxGRO%2FWHWvRbaEPxQGoGJX9yjAp18RUNRzS%2Fcn2xO0pwGjigwv22PPcXRU%2F7iu1jzU1Np3M%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880308b419b8b527-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

reviwesamazon.shop/static/user-5-line.png

104.21.17.215

200 OK

642 B

URL GET HTTP/3
reviwesamazon.shop/static/user-5-line.png
IP
104.21.17.215:443
ASN
#13335 CLOUDFLARENET

Requested by
https://reviwesamazon.shop/
Certificate
IssuerGoogle Trust Services LLC
Subjectreviwesamazon.shop
Fingerprint00:11:5E:F9:7C:07:E6:4C:00:18:90:CC:FB:6A:76:0D:FB:15:77:A3
ValiditySun, 14 Apr 2024 02:24:37 GMT - Sat, 13 Jul 2024 02:24:36 GMT

File type
PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced
Size
642 B (642 bytes)
Hash
ccfd86d6d652a570085f4bb4b96599e9
86f9123634c646f32a3b08148ac90f1bfecd1e58
9802a74f72a4df83bae0a7cdeff4978e044f1643e74837967a8fd968f73f977c

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Amazon.com Inc.

HTTP Headers

GET /static/user-5-line.png HTTP/1.1
Host: reviwesamazon.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://reviwesamazon.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 17:47:14 GMT
content-type: image/png
content-length: 642
last-modified: Fri, 02 Feb 2024 03:25:32 GMT
etag: "65bc60ac-282"
expires: Thu, 06 Jun 2024 17:45:17 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 117
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1AT%2FzRA%2FIeemVQpPZJSm8YF9PFjuqTWe6t8lq0hqozJUPRSxENMG26P3c0faPRc%2Fckh6qpQZhxdCMHac28UFfTbtpf2OgZtWmOsyTLJRhl1HCVWjsPOCRKBl3kEIPauD1VncBDY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880308b6df6cb527-OSL
alt-svc: h3=":443"; ma=86400

cdn.dcloud.net.cn/img/shadow-grey.png

106.54.228.253

200 OK

136 B

URL GET HTTP/1.1
cdn.dcloud.net.cn/img/shadow-grey.png
IP
106.54.228.253:443
ASN
#45090 Shenzhen Tencent Computer Systems Company Limited

Requested by
https://reviwesamazon.shop/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.dcloud.net.cn
FingerprintAE:46:5C:A4:9B:D3:F7:AC:7D:5E:C7:27:E1:5F:C3:7C:DA:CE:F2:AC
ValiditySat, 05 Aug 2023 03:00:05 GMT - Tue, 03 Sep 2024 03:00:04 GMT

File type
PNG image data, 1 x 6, 4-bit colormap, non-interlaced
Size
136 B (136 bytes)
Hash
5a962adf74d92ae702467b3f47976547
36f74049375584e3fa69b5ef87e9572336ff9e7a
ad4ebea1c3496dd2924789ee009174a2c6289d1200e9811f458fd46f172d1d6f

HTTP Headers

GET /img/shadow-grey.png HTTP/1.1
Host: cdn.dcloud.net.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://reviwesamazon.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 May 2024 17:47:17 GMT
Content-Type: image/png
Content-Length: 136
Last-Modified: Thu, 06 Jun 2019 06:42:07 GMT
Connection: close
ETag: "5cf8b5bf-88"
Expires: Tue, 07 May 2024 19:47:17 GMT
Cache-Control: max-age=7200
Set-Cookie: __uni__uid=rBEQg2Y6aSVilgxqdflgAg==; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=dcloud.net.cn; path=/; secure; httponly; samesite=none
Accept-Ranges: bytes

api1.apiamazon.co/api/getBanner

172.67.188.106

200 OK

6.5 kB

URL GET HTTP/2
api1.apiamazon.co/api/getBanner
IP
172.67.188.106:443
ASN
#13335 CLOUDFLARENET

Requested by
https://reviwesamazon.shop/
Certificate
IssuerGoogle Trust Services LLC
Subjectapiamazon.co
FingerprintBD:7E:3B:2B:7D:ED:2F:21:23:01:E0:07:63:0E:C1:EA:F7:FE:22:07
ValidityMon, 22 Apr 2024 08:28:37 GMT - Sun, 21 Jul 2024 08:28:36 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (7414), with no line terminators
Size
6.5 kB (6503 bytes)
Hash
35b89387fb292a42d25374a59feba0c1
1c56cfa66dc15837f6c614971eabb8adb9b28c08
cfde4c0d9a0af1c8481eb73724bb69e82ecefdaa1226f4b31d2b7264529f0a21

HTTP Headers

GET /api/getBanner HTTP/1.1
Host: api1.apiamazon.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://reviwesamazon.shop
DNT: 1
Connection: keep-alive
Referer: https://reviwesamazon.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 07 May 2024 17:47:14 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: https://reviwesamazon.shop
access-control-allow-methods: GET,PUT,POST,PATCH,DELETE
access-control-allow-headers: Authorization,Content-Type,If-Match,If-Modified-Since,If-None-Match,If-Unmodified-Since,X-Requested-With,Api-Type,Api-Name,Api-Uuid,Jwt-Token,Api-Token,User-Form-Token,User-Token,Token
access-control-allow-credentials: true
access-control-expose-headers: Api-Type,Api-Name,Api-Uuid,Jwt-Token,Api-Token,User-Form-Token,User-Token,Token
set-cookie: ssid=938a7dbdff6212e1ac74f0473b956850; path=/; secure; HttpOnly; SameSite=none
lang=en-us; path=/; secure; HttpOnly; SameSite=none
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gFe%2FUWuYlgLY%2BEkURaVkS1VqnL9yM1IsInIuxnQFCGfls9idlVCpni%2FqMZW%2FjNriRhdo6D5kI1fFTlKWvRFLKt3vef3WANMjtTOD2wUCKkNx1Qomm8WeLQHXdWxQTVXgt3jUSg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880308b7efcb56c0-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

reviwesamazon.shop/static/img/BACKGROUND.86eb4eaa.png

104.21.17.215

200 OK

80 kB

URL GET HTTP/3
reviwesamazon.shop/static/img/BACKGROUND.86eb4eaa.png
IP
104.21.17.215:443
ASN
#13335 CLOUDFLARENET

Requested by
https://reviwesamazon.shop/
Certificate
IssuerGoogle Trust Services LLC
Subjectreviwesamazon.shop
Fingerprint00:11:5E:F9:7C:07:E6:4C:00:18:90:CC:FB:6A:76:0D:FB:15:77:A3
ValiditySun, 14 Apr 2024 02:24:37 GMT - Sat, 13 Jul 2024 02:24:36 GMT

File type
PNG image data, 1170 x 2532, 8-bit/color RGBA, non-interlaced
Size
80 kB (80321 bytes)
Hash
86eb4eaa2155c382bd6170a2308d8c04
ce8b3ba2079af77e409096803f9e85810a9fa254
fb36feb75388764a0ec9b9b61265089d8d766e6856b48fc132af924be4522811

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Amazon.com Inc.

HTTP Headers

GET /static/img/BACKGROUND.86eb4eaa.png HTTP/1.1
Host: reviwesamazon.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://reviwesamazon.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 17:47:16 GMT
content-type: image/png
content-length: 80321
last-modified: Fri, 02 Feb 2024 03:25:32 GMT
etag: "65bc60ac-139c1"
expires: Wed, 05 Jun 2024 12:14:07 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 106389
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BUzy4CoD0aDVzlH%2Fi8E69oCU3X6ef3aBs0txKBL%2B780tE45F4qfznkghz0nHaPeaAA0nzLV1IclPpTAyGp75yo%2BGyrJ2CRSg9XieQH6dq8MnTHdj09UCPjGi76h4tmIL9LGKdBo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880308c4de27b527-OSL
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (9)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML