Report - urldefense.com/v3/__https://auth.wetransfer.com/u/email-verification?ticket=MDExIQTXlWbH25i2wMSkwWngEcZGqcdr*__;Iw!!GajMJZiM!UHaVrUCssR4RtZLAXOxEahhUPpilDYfboGaJ1mAk1WUyp8DNdgl3FNax8hKchDNbLCFb_6DvJohRa4JA8dr

Report Overview

Submitted URL
urldefense.com/v3/__https://auth.wetransfer.com/u/email-verification?ticket=MDExIQTXlWbH25i2wMSkwWngEcZGqcdr*__;Iw!!GajMJZiM!UHaVrUCssR4RtZLAXOxEahhUPpilDYfboGaJ1mAk1WUyp8DNdgl3FNax8hKchDNbLCFb_6DvJohRa4JA8dr_$
IP
52.6.56.188
ASN
#14618 AMAZON-AES
Submitted
2024-05-02 17:00:08
Access
public
Website Title
Auth Static
Final URL
auth-static.wetransfer.com/errors?error_description=Access%20expired.&lang=
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
cdn.auth0.com	9952	2012-10-18	2017-04-20	2024-05-01	416 B	66 kB	54.230.82.48
urldefense.com	61470	2017-09-08	2015-04-27	2024-05-02	664 B	414 B	52.71.28.102
images.ctfassets.net	4623	2017-03-28	2017-09-20	2024-05-01	461 B	497 B	143.204.55.68
auth.wetransfer.com	32158	2007-12-14	2018-09-18	2024-05-02	2.9 kB	3.1 kB	143.204.55.32
auth-static.wetransfer.com	unknown	unknown	No data	No data	5.0 kB	431 kB	54.230.111.17

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (1)

	URL	Size	First Seen	Last Seen
	auth-static.wetransfer.com/static/js/main.8e272730.js	342 kB	2024-05-02	2024-05-10
Pretty URL auth-static.wetransfer.com/static/js/main.8e272730.js IP 54.230.111.17 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-02 19:00:14 Last Seen2024-05-10 10:24:53 Times Seen8 Hash 24bdea15719e54e21a7edd9f378d6058 462a0c94cadf0e0fc9bd7532f8360a1010283bc4 31f55f447594137b99d7717a90175d819baf98e39f16348364609b34989caa2f Loading...

HTTP Transactions (14)

	URL	IP	Response	Size
	urldefense.com/v3/__https://auth.wetransfer.com/u/email-verification?ticket=MDExIQTXlWbH25i2wMSkwWngEcZGqcdr*__;Iw!!GajMJZiM!UHaVrUCssR4RtZLAXOxEahhUPpilDYfboGaJ1mAk1WUyp8DNdgl3FNax8hKchDNbLCFb_6DvJohRa4JA8dr_$	52.71.28.102		0 B
URL urldefense.com/v3/__https://auth.wetransfer.com/u/email-verification?ticket=MDExIQTXlWbH25i2wMSkwWngEcZGqcdr__;Iw!!GajMJZiM!UHaVrUCssR4RtZLAXOxEahhUPpilDYfboGaJ1mAk1WUyp8DNdgl3FNax8hKchDNbLCFb_6DvJohRa4JA8dr_$ IP 52.71.28.102:0 ASN #14618 AMAZON-AES File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /v3/__https://auth.wetransfer.com/u/email-verification?ticket=MDExIQTXlWbH25i2wMSkwWngEcZGqcdr__;Iw!!GajMJZiM!UHaVrUCssR4RtZLAXOxEahhUPpilDYfboGaJ1mAk1WUyp8DNdgl3FNax8hKchDNbLCFb_6DvJohRa4JA8dr_$ HTTP/1.1 Host: urldefense.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 302 Found date: Thu, 02 May 2024 16:59:43 GMT content-length: 0 location: https://auth.wetransfer.com/u/email-verification?ticket=MDExIQTXlWbH25i2wMSkwWngEcZGqcdr# strict-transport-security: max-age=31536000 x-robots-tag: noindex, nofollow x-content-type-options: nosniff x-xss-protection: 1; mode=block x-frame-options: SAMEORIGIN content-security-policy: default-src 'self'; X-Firefox-Spdy: h2`

	images.ctfassets.net/ncozpa9tpd50/1MB6eBlCBzD9fflql7h8Mf/c3bddc7933c2c625bbedd65bf6b654a1/icon-wt.png	143.204.55.68		109 B
URL images.ctfassets.net/ncozpa9tpd50/1MB6eBlCBzD9fflql7h8Mf/c3bddc7933c2c625bbedd65bf6b654a1/icon-wt.png IP 143.204.55.68:0 ASN #16509 AMAZON-02 File type JSON text data Size 109 B (109 bytes) Hash ac2556bf109bd14537ad796e7b89c41b 04308fa4a9e5d8817a4f7c3dabfdc58d8e5f30ed 0d4497b2300359082b51ebf66d75065f930566011bc3744d6d66b2611e087a94 HTTP Headers `GET /ncozpa9tpd50/1MB6eBlCBzD9fflql7h8Mf/c3bddc7933c2c625bbedd65bf6b654a1/icon-wt.png HTTP/1.1 Host: images.ctfassets.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 404 Not Found content-type: application/json content-length: 109 server: CloudFront date: Thu, 02 May 2024 16:54:54 GMT cache-control: max-age=300 x-cache: Error from cloudfront via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: pUp6c6xUsdDJlD9V2bPP6wlXN11vWBD-Vtw8fGFh_A5g5U-XbQDrEA== age: 290 X-Firefox-Spdy: h2`

	auth.wetransfer.com/u/email-verification?ticket=MDExIQTXlWbH25i2wMSkwWngEcZGqcdr	143.204.55.32		218 B
URL auth.wetransfer.com/u/email-verification?ticket=MDExIQTXlWbH25i2wMSkwWngEcZGqcdr IP 143.204.55.32:0 ASN #16509 AMAZON-02 File type HTML document, ASCII text, with no line terminators Size 218 B (218 bytes) Hash 3f490f5adf163047ab9c9c33caae933d 2ddfae5be1a3c6f10e48388fbef7767480ca6e77 6c73f48cc6938fbb6cdc52be6867922c4faf169b80fbe65eac3f8a3dc8bbc8ee HTTP Headers POST /u/email-verification?ticket=MDExIQTXlWbH25i2wMSkwWngEcZGqcdr HTTP/1.1 Host: auth.wetransfer.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://auth.wetransfer.com/u/email-verification?ticket=MDExIQTXlWbH25i2wMSkwWngEcZGqcdr Content-Type: application/x-www-form-urlencoded Content-Length: 38 Origin: https://auth.wetransfer.com DNT: 1 Connection: keep-alive Cookie: did=s%3Av0%3A5f7e3f30-08a5-11ef-b3a2-49563c5a3634.ltbcWFsjL%2F%2FlRb2eGkDtSrxxP3XqCCxECfRnXXPQtBw; auth0=s%3Av1.gadzZXNzaW9ugqZoYW5kbGXEQMD5I6tvrIuIV2tqFz11Dov9o8LiZ_ITO3YEyw3BVPgd8HyxPIJZTj9OIl7a7G2qSnNU4P0N76ThrO8EPwLWQuimY29va2llg6dleHBpcmVz1_-gsbIAZje6_65vcmlnaW5hbE1heEFnZc4PcxQAqHNhbWVTaXRlpG5vbmU.UpJa0BaeETyD1SougzrvmQfpWrKDNCvZMTaQxLs9Xqs; did_compat=s%3Av0%3A5f7e3f30-08a5-11ef-b3a2-49563c5a3634.ltbcWFsjL%2F%2FlRb2eGkDtSrxxP3XqCCxECfRnXXPQtBw; auth0_compat=s%3Av1.gadzZXNzaW9ugqZoYW5kbGXEQMD5I6tvrIuIV2tqFz11Dov9o8LiZ_ITO3YEyw3BVPgd8HyxPIJZTj9OIl7a7G2qSnNU4P0N76ThrO8EPwLWQuimY29va2llg6dleHBpcmVz1_-gsbIAZje6_65vcmlnaW5hbE1heEFnZc4PcxQAqHNhbWVTaXRlpG5vbmU.UpJa0BaeETyD1SougzrvmQfpWrKDNCvZMTaQxLs9Xqs Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 302 Found content-type: text/html; charset=utf-8 content-length: 218 location: https://auth-static.wetransfer.com/errors?error_description=Access%20expired.&lang= date: Thu, 02 May 2024 16:59:44 GMT cf-ray: 87d99040cafb0b06-OSL cf-cache-status: DYNAMIC cache-control: private, no-store, no-cache, must-revalidate, post-check=0, pre-check=0, no-transform strict-transport-security: max-age=31536000; includeSubDomains vary: Accept, Accept-Encoding x-auth0-requestid: a31915770f0db1f4bfe2 x-content-type-options: nosniff x-ratelimit-limit: 10 x-ratelimit-remaining: 9 x-ratelimit-reset: 1714669197 set-cookie: __cf_bm=1royzAe5qdqVCH5d8e2k5ztfWz.lFhyCXLYIAG6XYqw-1714669184-1.0.1.1-cp5KUDPLikxRS6aiO2j3r3NQ2uWTErB9DmXYOHnQQ1vmCBkI1v3pn1b6pd3fl6TX; path=/; expires=Thu, 02-May-24 17:29:44 GMT; domain=.eu.auth0.com; HttpOnly; Secure; SameSite=None server: cloudflare x-cache: Miss from cloudfront via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: Iy8m4qaIeHvGWxT5JKj90FympSnpBbiitpD-tZcgBIPwSr8zjnnZ-g== X-Firefox-Spdy: h2

	auth-static.wetransfer.com/errors?error_description=Access%20expired.&lang=	54.230.111.17	200 OK	665 B
URL User Request GET HTTP/2 auth-static.wetransfer.com/errors?error_description=Access%20expired.&lang= IP 54.230.111.17:443 ASN #16509 AMAZON-02 Certificate IssuerAmazon Subjectwetransfer.com FingerprintC1:C6:48:BB:ED:6D:4A:32:B1:CD:74:36:6C:D3:0A:B0:7E:98:D7:2E ValidityFri, 09 Jun 2023 00:00:00 GMT - Sun, 07 Jul 2024 23:59:59 GMT File type HTML document, ASCII text, with very long lines (665), with no line terminators Size 665 B (665 bytes) Hash 7579fd1517aa65c94f4628647e019370 ff12c4fbe5bca337b9510798dc6db6526fb83692 4e2ff1ca4f7a33876062411f60facc3b10583940f6eea77eb88cf73ada5c5056 HTTP Headers GET /errors?error_description=Access%20expired.&lang= HTTP/1.1 Host: auth-static.wetransfer.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: same-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK content-type: text/html; charset=utf-8 content-length: 665 accept-ranges: bytes cache-control: public, must-revalidate, maxage=0, s-maxage=60 content-disposition: inline; filename="index.html" content-security-policy: default-src 'self' http: https: data: blob: 'unsafe-inline' date: Thu, 02 May 2024 16:59:44 GMT referrer-policy: strict-origin-when-cross-origin strict-transport-security: max-age=31536000; includeSubDomains x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-xss-protection: 1; mode=block x-cache: Miss from cloudfront via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: sG8J5ANW9RuhPCIHyWotd06TQv-SCLZKN5yOeFPjTd_zuXZJww2nsQ== X-Firefox-Spdy: h2

	auth-static.wetransfer.com/static/js/main.8e272730.js	54.230.111.17	200 OK	342 kB
URL GET HTTP/2 auth-static.wetransfer.com/static/js/main.8e272730.js IP 54.230.111.17:443 ASN #16509 AMAZON-02 Requested by https://auth-static.wetransfer.com/errors?error_description=Access%20expired.&lang= Certificate IssuerAmazon Subjectwetransfer.com FingerprintC1:C6:48:BB:ED:6D:4A:32:B1:CD:74:36:6C:D3:0A:B0:7E:98:D7:2E ValidityFri, 09 Jun 2023 00:00:00 GMT - Sun, 07 Jul 2024 23:59:59 GMT File type JavaScript source, ASCII text, with very long lines (65465) Size 342 kB (342207 bytes) Hash 24bdea15719e54e21a7edd9f378d6058 462a0c94cadf0e0fc9bd7532f8360a1010283bc4 31f55f447594137b99d7717a90175d819baf98e39f16348364609b34989caa2f HTTP Headers `GET /static/js/main.8e272730.js HTTP/1.1 Host: auth-static.wetransfer.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://auth-static.wetransfer.com/errors?error_description=Access%20expired.&lang= DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK content-type: application/javascript; charset=utf-8 content-length: 342207 accept-ranges: bytes cache-control: public, max-age=315360000, s-maxage=31530000 content-disposition: inline; filename="main.8e272730.js" content-security-policy: default-src 'self' http: https: data: blob: 'unsafe-inline' date: Tue, 05 Dec 2023 00:07:04 GMT referrer-policy: strict-origin-when-cross-origin strict-transport-security: max-age=31536000; includeSubDomains x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-xss-protection: 1; mode=block x-cache: Hit from cloudfront via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: ku2w5M-jtcfJnHWzpviN3BBZMoBGX_IPAAfAFoRLE0xlFLXa_dGLvA== age: 12934360 X-Firefox-Spdy: h2

	auth-static.wetransfer.com/static/css/main.857c57d1.css	54.230.111.17	200 OK	1.4 kB
URL GET HTTP/2 auth-static.wetransfer.com/static/css/main.857c57d1.css IP 54.230.111.17:443 ASN #16509 AMAZON-02 Requested by https://auth-static.wetransfer.com/errors?error_description=Access%20expired.&lang= Certificate IssuerAmazon Subjectwetransfer.com FingerprintC1:C6:48:BB:ED:6D:4A:32:B1:CD:74:36:6C:D3:0A:B0:7E:98:D7:2E ValidityFri, 09 Jun 2023 00:00:00 GMT - Sun, 07 Jul 2024 23:59:59 GMT File type ASCII text, with very long lines (1436), with no line terminators Size 1.4 kB (1436 bytes) Hash b78cd9ab20191151223ceede2227d37d b76545213f09fffde31ffaf105484a1a785b46bb 4dd6d8dd989336b17c66e960f291673ca0842d26ebde32f1c1d0693573ec1532 HTTP Headers GET /static/css/main.857c57d1.css HTTP/1.1 Host: auth-static.wetransfer.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://auth-static.wetransfer.com/errors?error_description=Access%20expired.&lang= DNT: 1 Connection: keep-alive Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK content-type: text/css; charset=utf-8 content-length: 1436 accept-ranges: bytes cache-control: public, max-age=315360000, s-maxage=31530000 content-disposition: inline; filename="main.857c57d1.css" content-security-policy: default-src 'self' http: https: data: blob: 'unsafe-inline' date: Sun, 01 Oct 2023 23:42:59 GMT referrer-policy: strict-origin-when-cross-origin strict-transport-security: max-age=31536000; includeSubDomains x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-xss-protection: 1; mode=block x-cache: Hit from cloudfront via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: yv9dBjxoohGQQ084nlXPm26zT_MRL24MO0mKzIY4t0yjyL-pWTW9Ew== age: 18465404 X-Firefox-Spdy: h2

	auth-static.wetransfer.com/static/media/ActiefGrotesque_W_Regular.1f4378761651f50dd209.woff	54.230.111.17	200 OK	31 kB
URL GET HTTP/2 auth-static.wetransfer.com/static/media/ActiefGrotesque_W_Regular.1f4378761651f50dd209.woff IP 54.230.111.17:443 ASN #16509 AMAZON-02 Requested by https://auth-static.wetransfer.com/errors?error_description=Access%20expired.&lang= Certificate IssuerAmazon Subjectwetransfer.com FingerprintC1:C6:48:BB:ED:6D:4A:32:B1:CD:74:36:6C:D3:0A:B0:7E:98:D7:2E ValidityFri, 09 Jun 2023 00:00:00 GMT - Sun, 07 Jul 2024 23:59:59 GMT File type Web Open Font Format, TrueType, length 31120, version 1.6554 Size 31 kB (31120 bytes) Hash 57cbbfdafc43e0deecc75a309dd042c6 b9cc2ff331b8520706de175f5b3fdba6731a9bfc a9117f16bdaa64c953b303bef951dfca6316ef59f1b7ca72d5b946b1d815f6a6 HTTP Headers GET /static/media/ActiefGrotesque_W_Regular.1f4378761651f50dd209.woff HTTP/1.1 Host: auth-static.wetransfer.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Referer: https://auth-static.wetransfer.com/static/css/main.857c57d1.css DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK content-type: font/woff content-length: 31120 accept-ranges: bytes access-control-allow-origin: * cache-control: public, max-age=315360000, s-maxage=31530000 content-disposition: inline; filename="ActiefGrotesque_W_Regular.1f4378761651f50dd209.woff" content-security-policy: default-src 'self' http: https: data: blob: 'unsafe-inline' date: Wed, 01 May 2024 10:35:43 GMT referrer-policy: strict-origin-when-cross-origin strict-transport-security: max-age=31536000; includeSubDomains x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-xss-protection: 1; mode=block x-cache: Hit from cloudfront via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: LwL-B98lF2gJtbscBmRsUuo7AGfNKFjfB4NC072VOv_upGqKE-wHOw== age: 109441 X-Firefox-Spdy: h2

	auth-static.wetransfer.com/locales/en.json	54.230.111.17	200 OK	136 B
URL GET HTTP/2 auth-static.wetransfer.com/locales/en.json IP 54.230.111.17:443 ASN #16509 AMAZON-02 Requested by https://auth-static.wetransfer.com/errors?error_description=Access%20expired.&lang= Certificate IssuerAmazon Subjectwetransfer.com FingerprintC1:C6:48:BB:ED:6D:4A:32:B1:CD:74:36:6C:D3:0A:B0:7E:98:D7:2E ValidityFri, 09 Jun 2023 00:00:00 GMT - Sun, 07 Jul 2024 23:59:59 GMT File type JSON text data Size 136 B (136 bytes) Hash 6542b6c7c7be70a15bd8b85228f258a0 1f9463c573880c400475cada9167e143193258ee 48e36e5085b72988df2d7468006d37743a2f2ca08dd1e1a8f579045bc26c02c0 HTTP Headers `GET /locales/en.json HTTP/1.1 Host: auth-static.wetransfer.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://auth-static.wetransfer.com/errors?error_description=Access%20expired.&lang= DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK content-type: application/json; charset=utf-8 content-length: 136 accept-ranges: bytes content-disposition: inline; filename="en.json" content-security-policy: default-src 'self' http: https: data: blob: 'unsafe-inline' date: Thu, 02 May 2024 11:12:38 GMT referrer-policy: strict-origin-when-cross-origin strict-transport-security: max-age=31536000; includeSubDomains x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-xss-protection: 1; mode=block x-cache: Hit from cloudfront via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: skoAbWuF7q-JzVluydCCIZHrldopKPpyU198waQT7rGz9XzpgTmHkg== age: 20826 X-Firefox-Spdy: h2

	auth-static.wetransfer.com/logo192.png	54.230.111.17	200 OK	5.8 kB
URL GET HTTP/2 auth-static.wetransfer.com/logo192.png IP 54.230.111.17:443 ASN #16509 AMAZON-02 Requested by https://auth-static.wetransfer.com/errors?error_description=Access%20expired.&lang= Certificate IssuerAmazon Subjectwetransfer.com FingerprintC1:C6:48:BB:ED:6D:4A:32:B1:CD:74:36:6C:D3:0A:B0:7E:98:D7:2E ValidityFri, 09 Jun 2023 00:00:00 GMT - Sun, 07 Jul 2024 23:59:59 GMT File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced Size 5.8 kB (5792 bytes) Hash 6703684281ff1301ecb52b95eb6f38c6 a203fa01d943d93f99a18fc1d7fac96196080f36 559bead66f479ca434dc8f00d45cc79a1d35a39cd7b0458d0c46a2e512840359 HTTP Headers GET /logo192.png HTTP/1.1 Host: auth-static.wetransfer.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://auth-static.wetransfer.com/errors?error_description=Access%20expired.&lang= DNT: 1 Connection: keep-alive Cookie: _dd_s=rum=2&id=ae02a9f1-864f-4cc6-ae19-e26ee58a32de&created=1714669184781&expire=1714670084781 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK content-type: image/png content-length: 5792 accept-ranges: bytes cache-control: public, max-age=315360000, s-maxage=31530000 content-disposition: inline; filename="logo192.png" content-security-policy: default-src 'self' http: https: data: blob: 'unsafe-inline' date: Wed, 27 Mar 2024 12:02:42 GMT referrer-policy: strict-origin-when-cross-origin strict-transport-security: max-age=31536000; includeSubDomains x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-xss-protection: 1; mode=block x-cache: Hit from cloudfront via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: f51vkX3MCU6FgJIjZF8t1SjovV5JBSKZYW1mF7-n44EHvqXYjkk9-A== age: 3128222 X-Firefox-Spdy: h2

	auth-static.wetransfer.com/favicon.ico	54.230.111.17	200 OK	42 kB
URL GET HTTP/2 auth-static.wetransfer.com/favicon.ico IP 54.230.111.17:443 ASN #16509 AMAZON-02 Requested by https://auth-static.wetransfer.com/errors?error_description=Access%20expired.&lang= Certificate IssuerAmazon Subjectwetransfer.com FingerprintC1:C6:48:BB:ED:6D:4A:32:B1:CD:74:36:6C:D3:0A:B0:7E:98:D7:2E ValidityFri, 09 Jun 2023 00:00:00 GMT - Sun, 07 Jul 2024 23:59:59 GMT File type MS Windows icon resource - 5 icons, 16x16, 32 bits/pixel, 24x24, 32 bits/pixel Size 42 kB (41566 bytes) Hash 692e1c7339c359b6412f059c9c9a0474 e7c1a53dca16b7664880e5b8a92524cf9a47fb62 d12161435ace47c6883360e08466508593325f134c1852b1d0e6e75d5f76adda HTTP Headers GET /favicon.ico HTTP/1.1 Host: auth-static.wetransfer.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://auth-static.wetransfer.com/errors?error_description=Access%20expired.&lang= DNT: 1 Connection: keep-alive Cookie: _dd_s=rum=2&id=ae02a9f1-864f-4cc6-ae19-e26ee58a32de&created=1714669184781&expire=1714670084781 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK content-type: image/vnd.microsoft.icon content-length: 41566 accept-ranges: bytes cache-control: public, max-age=315360000, s-maxage=31530000 content-disposition: inline; filename="favicon.ico" content-security-policy: default-src 'self' http: https: data: blob: 'unsafe-inline' date: Sun, 05 Nov 2023 17:21:43 GMT referrer-policy: strict-origin-when-cross-origin strict-transport-security: max-age=31536000; includeSubDomains x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-xss-protection: 1; mode=block x-cache: Hit from cloudfront via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: zsN_VoR-Ky0_gunZZvqkNiwYOunNp_Jum7XEFHYD03Y-C5geOilTxg== age: 15464281 X-Firefox-Spdy: h2

	cdn.auth0.com/ulp/react-components/1.93.11/css/main.cdn.min.css	54.230.82.48		65 kB
URL cdn.auth0.com/ulp/react-components/1.93.11/css/main.cdn.min.css IP 54.230.82.48:0 ASN #16509 AMAZON-02 File type gzip compressed data, from Unix Size 65 kB (64769 bytes) Hash 16f8f73177bb99393aa33b652e63db71 87e2207d1de83cac21d0182f98d14b5dc107d2d9 f0ac22d18c78034faa11ef6cb92cd1a285fc5d954377a76f52af1416f12777cc HTTP Headers `GET /ulp/react-components/1.93.11/css/main.cdn.min.css HTTP/1.1 Host: cdn.auth0.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: text/css x-amz-replication-status: FAILED last-modified: Thu, 25 Apr 2024 11:32:01 GMT x-amz-server-side-encryption: AES256 x-amz-version-id: .37_xPjuUIEVZEs8IPljXDPd4pQRwLqp server: AmazonS3 content-encoding: gzip date: Thu, 02 May 2024 01:06:08 GMT cache-control: max-age=86400 etag: W/"40739a75fdfe94e0e2f44310c5b315aa" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: NTaUxeIbLLDCTpbLUDXcHjbUvANZ_5v2jBIDsni3Vg6Td44dT1OTjw== age: 57219 x-content-type-options: nosniff strict-transport-security: max-age=63072000; includeSubDomains x-robots-tag: noindex X-Firefox-Spdy: h2

	auth-static.wetransfer.com/static/media/arrow--top-right.dd241edb54a6a0e470c6.svg	54.230.111.17	200 OK	266 B
URL GET HTTP/2 auth-static.wetransfer.com/static/media/arrow--top-right.dd241edb54a6a0e470c6.svg IP 54.230.111.17:443 ASN #16509 AMAZON-02 Requested by https://auth-static.wetransfer.com/errors?error_description=Access%20expired.&lang= Certificate IssuerAmazon Subjectwetransfer.com FingerprintC1:C6:48:BB:ED:6D:4A:32:B1:CD:74:36:6C:D3:0A:B0:7E:98:D7:2E ValidityFri, 09 Jun 2023 00:00:00 GMT - Sun, 07 Jul 2024 23:59:59 GMT File type SVG Scalable Vector Graphics image Size 266 B (266 bytes) Hash 7eed410a41c5a15baf4f733deec662be 716f2897254cf9afc67468431b0f2967a1958a0f 2b4c7414b2301fc411362c6979e74f861112e17f292a8ffdff60cc509634714f HTTP Headers GET /static/media/arrow--top-right.dd241edb54a6a0e470c6.svg HTTP/1.1 Host: auth-static.wetransfer.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://auth-static.wetransfer.com/static/css/main.857c57d1.css DNT: 1 Connection: keep-alive Cookie: _dd_s=rum=2&id=ae02a9f1-864f-4cc6-ae19-e26ee58a32de&created=1714669184781&expire=1714670084781 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK content-type: image/svg+xml content-length: 266 accept-ranges: bytes content-disposition: inline; filename="arrow--top-right.dd241edb54a6a0e470c6.svg" content-security-policy: default-src 'self' http: https: data: blob: 'unsafe-inline' date: Thu, 02 May 2024 09:16:35 GMT referrer-policy: strict-origin-when-cross-origin strict-transport-security: max-age=31536000; includeSubDomains x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-xss-protection: 1; mode=block x-cache: Hit from cloudfront via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: rA7RD13Wl2Cf5YKhskEcGz2DebE78w9a88Ib7_s6cJBVfCROK7CIOw== age: 27789 X-Firefox-Spdy: h2

	auth.wetransfer.com/u/email-verification?ticket=MDExIQTXlWbH25i2wMSkwWngEcZGqcdr	143.204.55.32	302 Found	665 B
URL User Request POST HTTP/2 auth.wetransfer.com/u/email-verification?ticket=MDExIQTXlWbH25i2wMSkwWngEcZGqcdr IP 143.204.55.32:443 ASN #16509 AMAZON-02 Certificate IssuerAmazon Subjectwetransfer.com FingerprintC1:C6:48:BB:ED:6D:4A:32:B1:CD:74:36:6C:D3:0A:B0:7E:98:D7:2E ValidityFri, 09 Jun 2023 00:00:00 GMT - Sun, 07 Jul 2024 23:59:59 GMT File type Size 665 B (665 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /u/email-verification?ticket=MDExIQTXlWbH25i2wMSkwWngEcZGqcdr HTTP/1.1 Host: auth.wetransfer.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://auth.wetransfer.com/u/email-verification?ticket=MDExIQTXlWbH25i2wMSkwWngEcZGqcdr Content-Type: application/x-www-form-urlencoded Content-Length: 38 Origin: https://auth.wetransfer.com DNT: 1 Connection: keep-alive Cookie: did=s%3Av0%3A5f7e3f30-08a5-11ef-b3a2-49563c5a3634.ltbcWFsjL%2F%2FlRb2eGkDtSrxxP3XqCCxECfRnXXPQtBw; auth0=s%3Av1.gadzZXNzaW9ugqZoYW5kbGXEQMD5I6tvrIuIV2tqFz11Dov9o8LiZ_ITO3YEyw3BVPgd8HyxPIJZTj9OIl7a7G2qSnNU4P0N76ThrO8EPwLWQuimY29va2llg6dleHBpcmVz1_-gsbIAZje6_65vcmlnaW5hbE1heEFnZc4PcxQAqHNhbWVTaXRlpG5vbmU.UpJa0BaeETyD1SougzrvmQfpWrKDNCvZMTaQxLs9Xqs; did_compat=s%3Av0%3A5f7e3f30-08a5-11ef-b3a2-49563c5a3634.ltbcWFsjL%2F%2FlRb2eGkDtSrxxP3XqCCxECfRnXXPQtBw; auth0_compat=s%3Av1.gadzZXNzaW9ugqZoYW5kbGXEQMD5I6tvrIuIV2tqFz11Dov9o8LiZ_ITO3YEyw3BVPgd8HyxPIJZTj9OIl7a7G2qSnNU4P0N76ThrO8EPwLWQuimY29va2llg6dleHBpcmVz1_-gsbIAZje6_65vcmlnaW5hbE1heEFnZc4PcxQAqHNhbWVTaXRlpG5vbmU.UpJa0BaeETyD1SougzrvmQfpWrKDNCvZMTaQxLs9Xqs Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/2 302 Found content-type: text/html; charset=utf-8 content-length: 218 location: https://auth-static.wetransfer.com/errors?error_description=Access%20expired.&lang= date: Thu, 02 May 2024 16:59:44 GMT cf-ray: 87d99040cafb0b06-OSL cf-cache-status: DYNAMIC cache-control: private, no-store, no-cache, must-revalidate, post-check=0, pre-check=0, no-transform strict-transport-security: max-age=31536000; includeSubDomains vary: Accept, Accept-Encoding x-auth0-requestid: a31915770f0db1f4bfe2 x-content-type-options: nosniff x-ratelimit-limit: 10 x-ratelimit-remaining: 9 x-ratelimit-reset: 1714669197 set-cookie: __cf_bm=1royzAe5qdqVCH5d8e2k5ztfWz.lFhyCXLYIAG6XYqw-1714669184-1.0.1.1-cp5KUDPLikxRS6aiO2j3r3NQ2uWTErB9DmXYOHnQQ1vmCBkI1v3pn1b6pd3fl6TX; path=/; expires=Thu, 02-May-24 17:29:44 GMT; domain=.eu.auth0.com; HttpOnly; Secure; SameSite=None server: cloudflare x-cache: Miss from cloudfront via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: Iy8m4qaIeHvGWxT5JKj90FympSnpBbiitpD-tZcgBIPwSr8zjnnZ-g== X-Firefox-Spdy: h2

	auth-static.wetransfer.com/locales/en-US.json	54.230.111.17	200 OK	665 B
URL GET HTTP/2 auth-static.wetransfer.com/locales/en-US.json IP 54.230.111.17:443 ASN #16509 AMAZON-02 Requested by https://auth-static.wetransfer.com/errors?error_description=Access%20expired.&lang= Certificate IssuerAmazon Subjectwetransfer.com FingerprintC1:C6:48:BB:ED:6D:4A:32:B1:CD:74:36:6C:D3:0A:B0:7E:98:D7:2E ValidityFri, 09 Jun 2023 00:00:00 GMT - Sun, 07 Jul 2024 23:59:59 GMT File type HTML document, ASCII text, with very long lines (703), with no line terminators Size 665 B (665 bytes) Hash b24355feffe4c7bd5cd066e9da96b3ff b7b63e117c9f9a3657d2642901552e599e7c5ac2 2dbabe30ce5cf3acdd0b49d993cc997afd0dc4d72427b60b934b3000e079327a HTTP Headers GET /locales/en-US.json HTTP/1.1 Host: auth-static.wetransfer.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://auth-static.wetransfer.com/errors?error_description=Access%20expired.&lang= DNT: 1 Connection: keep-alive Cookie: _dd_s=rum=2&id=ae02a9f1-864f-4cc6-ae19-e26ee58a32de&created=1714669184781&expire=1714670084781 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK content-type: text/html; charset=utf-8 content-length: 665 accept-ranges: bytes cache-control: public, must-revalidate, maxage=0, s-maxage=60 content-disposition: inline; filename="index.html" content-security-policy: default-src 'self' http: https: data: blob: 'unsafe-inline' date: Thu, 02 May 2024 16:59:44 GMT referrer-policy: strict-origin-when-cross-origin strict-transport-security: max-age=31536000; includeSubDomains x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-xss-protection: 1; mode=block x-cache: Miss from cloudfront via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: 8pOrCudBrtlXxkUQWHPaMmmq3t7fSr_m1cPzEEcfkwwqpw7B2XOhyw== X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (1)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (14)

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash