Report - curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev/?yeGHUGFDsertyuikljbvcdfghj

Report Overview

Submitted URL
curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev/?yeGHUGFDsertyuikljbvcdfghj_docx=asktorlys@slurpmail.net
IP
172.66.44.172
ASN
#13335 CLOUDFLARENET
Submitted
2024-05-10 15:27:00
Access
public
Website Title
Slurpmail.net
Final URL
curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev/?yeGHUGFDsertyuikljbvcdfghj_docx=asktorlys@slurpmail.net
Tags
phishing
urlquery detections
Phishing - Generic phishing

Detections

urlquery
3
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
logo.clearbit.com	27344	2003-07-04	2015-06-30	2024-05-09	473 B	489 B	54.230.111.26
image.thum.io	282725	2016-02-04	2017-02-03	2024-04-17	499 B	10 kB	54.236.121.161
curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev	unknown	unknown	No data	No data	3.4 kB	262 kB	172.66.44.172

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (3)

	URL	Size	First Seen	Last Seen
	curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev/static/js/main.bc950d7d.js	145 kB	2024-05-07	2024-05-14
Pretty URL curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev/static/js/main.bc950d7d.js IP 172.66.44.172 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-07 16:02:14 Last Seen2024-05-14 23:07:32 Times Seen40 Hash 776068de637a801c6d5af6429739e997 ef812bddf7839de3fb9e5dc0662dbd258fced896 6b086c84005bde893ebc64acf134cc56de4111bf05dde15a5100693068f1e9c3 Loading...

	curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev/static/js/8.83d209ba.chunk.js	3.9 kB	2024-05-07	2024-05-14
Pretty URL curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev/static/js/8.83d209ba.chunk.js IP 172.66.44.172 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-07 16:02:14 Last Seen2024-05-14 23:07:32 Times Seen25 Hash dd34cea3295327355deec705f3ff10ca 6ea780cf48616646ef2ba6067edf73c02c56f1be edd2e6da9994d5576fd02bec0cca007edd629a95b59a0fe0ec94701b724e2ce6 Loading...

	curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev/static/js/876.3d0303f4.chunk.js	90 kB	2024-05-07	2024-05-14
Pretty URL curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev/static/js/876.3d0303f4.chunk.js IP 172.66.44.172 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-07 16:02:14 Last Seen2024-05-14 23:07:32 Times Seen40 Hash 8d69d76d3db6ec58294de54a89d4cb83 df7afa2e4ecf34f8bececb2378fbbf734d709c7c 0df54c65eb19f14619100e7f92f3fb54d9ee1bb529dad106b2c292c1c15f86ee Loading...

HTTP Transactions (8)

URL IP Response Size

logo.clearbit.com/https://slurpmail.net

54.230.111.26

404 Not Found

1 B

URL GET HTTP/2
logo.clearbit.com/https://slurpmail.net
IP
54.230.111.26:443
ASN
#16509 AMAZON-02

Requested by
https://curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev/?yeGHUGFDsertyuikljbvcdfghj_docx=asktorlys@slurpmail.net
Certificate
IssuerAmazon
Subjectclearbit.com
FingerprintCE:16:94:BB:21:1F:D1:5C:C5:B1:B0:D0:51:6C:C5:26:30:0D:59:72
ValidityMon, 22 Jan 2024 00:00:00 GMT - Tue, 18 Feb 2025 23:59:59 GMT

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
68b329da9893e34099c7d8ad5cb9c940
adc83b19e793491b1c6ea0fd8b46cd9f32e592fc
01ba4719c80b6fe911b091a7c05124b64eeece964e09c058ef8f9805daca546b

HTTP Headers

GET /https://slurpmail.net HTTP/1.1
Host: logo.clearbit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
content-type: text/plain; charset=utf-8
content-length: 1
date: Fri, 10 May 2024 15:26:40 GMT
x-envoy-response-flags: -
server: Clearbit
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-cache: Error from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: asw4bWHnE9-zFj-CpJM-Rw4qEcRRs-sFU4U6jjChqgS9IazdUdIO3Q==
X-Firefox-Spdy: h2

image.thum.io/get/auth/70387-kkkkkkkkk/https://www.slurpmail.net/

54.236.121.161

403 Forbidden

9.8 kB

URL GET HTTP/2
image.thum.io/get/auth/70387-kkkkkkkkk/https://www.slurpmail.net/
IP
54.236.121.161:443
ASN
#14618 AMAZON-AES

Requested by
https://curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev/?yeGHUGFDsertyuikljbvcdfghj_docx=asktorlys@slurpmail.net
Certificate
IssuerAmazon
Subject*.thum.io
Fingerprint07:A3:2D:21:8F:4E:98:41:CF:71:06:8A:8A:92:CF:EA:7F:05:ED:03
ValiditySun, 24 Sep 2023 00:00:00 GMT - Tue, 22 Oct 2024 23:59:59 GMT

File type
PNG image data, 600 x 600, 8-bit/color RGBA, non-interlaced
Size
9.8 kB (9816 bytes)
Hash
09b352a25c4b4abe354ba1c6c0ca37eb
a43506f79bbbb0664f6daf9c37cb459f07dd20c6
40679ea2456c9601e2f5da2c4f6d07d59ce6d6dd30bd2d079b439448da5e7bbb

HTTP Headers

GET /get/auth/70387-kkkkkkkkk/https://www.slurpmail.net/ HTTP/1.1
Host: image.thum.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 403 Forbidden
date: Fri, 10 May 2024 15:26:40 GMT
content-type: image/png
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
X-Firefox-Spdy: h2

curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev/static/css/main.1319e149.css

172.66.44.172

200 OK

991 B

URL GET HTTP/3
curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev/static/css/main.1319e149.css
IP
172.66.44.172:443
ASN
#13335 CLOUDFLARENET

Requested by
https://curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev/?yeGHUGFDsertyuikljbvcdfghj_docx=asktorlys@slurpmail.net
Certificate
IssuerGoogle Trust Services LLC
Subjectcurly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev
FingerprintAE:2A:F3:B0:FD:B5:19:36:79:64:46:B9:F5:CB:81:5E:6E:03:C9:38
ValidityMon, 06 May 2024 13:58:56 GMT - Sun, 04 Aug 2024 13:58:55 GMT

File type
ASCII text, with very long lines (992), with no line terminators
Size
991 B (991 bytes)
Hash
0c81e65e74df2a111d09520fd2ae5e08
eb062c60d2915b60e8c2b64b0652fc75175da66f
6e50c46ad01a28a96cfe33f60a8b16bca15d47b7b9823458d484daee51e164cf

HTTP Headers

GET /static/css/main.1319e149.css HTTP/1.1
Host: curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev/?yeGHUGFDsertyuikljbvcdfghj_docx=asktorlys@slurpmail.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 10 May 2024 15:26:35 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"6cff9e6e6fee35c25d8db7f515227944"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=a7BFhMRa5i%2B7%2BNQX0lNaCCuzWq5dTyMKNI6fHZE%2FjRXr9WpCDvNyMkxvH55p%2BtfWAxw5C7V2XSzPmZ9NRNH9thN4T3dw47qN4wSdbS4RUw%2FqayzQyxl8phTygGcqC55v%2FKdlVT3mCFb2kcuHerkiT%2FRII665nXWgieDn5hdGV4J791VcKq5Tjz0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881af2d2baec0b61-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev/static/js/876.3d0303f4.chunk.js

172.66.44.172

200 OK

90 kB

URL GET HTTP/3
curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev/static/js/876.3d0303f4.chunk.js
IP
172.66.44.172:443
ASN
#13335 CLOUDFLARENET

Requested by
https://curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev/?yeGHUGFDsertyuikljbvcdfghj_docx=asktorlys@slurpmail.net
Certificate
IssuerGoogle Trust Services LLC
Subjectcurly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev
FingerprintAE:2A:F3:B0:FD:B5:19:36:79:64:46:B9:F5:CB:81:5E:6E:03:C9:38
ValidityMon, 06 May 2024 13:58:56 GMT - Sun, 04 Aug 2024 13:58:55 GMT

File type
JavaScript source, ASCII text, with very long lines (65460)
Size
90 kB (90537 bytes)
Hash
8d69d76d3db6ec58294de54a89d4cb83
df7afa2e4ecf34f8bececb2378fbbf734d709c7c
0df54c65eb19f14619100e7f92f3fb54d9ee1bb529dad106b2c292c1c15f86ee

HTTP Headers

GET /static/js/876.3d0303f4.chunk.js HTTP/1.1
Host: curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev/?yeGHUGFDsertyuikljbvcdfghj_docx=asktorlys@slurpmail.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 10 May 2024 15:26:36 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"fda59883d3f7a95f1868bc4a939b4a99"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pQMmulOENY6pVWH78Qs04oBjLxnF3sIrcogSpZagBEtcoLUZ5Onyx0PM2Pp5MYWwBQv%2FPtoDGyOU7ye7Bzm2Gsp%2BXtsWnHowQqmpEPQTL2tY9IHAjkJqLeM9%2B3%2BGHA00GpJTifmvq2k4QMAi9DPDycxbW2YI8XZU23zIk3iz7pE9j3WJvwZEHho%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881af2d36b970b61-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev/?yeGHUGFDsertyuikljbvcdfghj_docx=asktorlys@slurpmail.net

172.66.44.172

200 OK

14 kB

URL User Request GET HTTP/2
curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev/?yeGHUGFDsertyuikljbvcdfghj_docx=asktorlys@slurpmail.net
IP
172.66.44.172:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectcurly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev
FingerprintAE:2A:F3:B0:FD:B5:19:36:79:64:46:B9:F5:CB:81:5E:6E:03:C9:38
ValidityMon, 06 May 2024 13:58:56 GMT - Sun, 04 Aug 2024 13:58:55 GMT

File type
HTML document, ASCII text, with very long lines (14268), with no line terminators
Size
14 kB (14268 bytes)
Hash
8d36124171c1eb502cbfffdbffa7286a
0ec006bbd4cbd44c421ec064431f21ad0c471cee
a90530ad58fff240157c928b80dce317e7d54971f8f05a2eb9e4ead9cb2cffad

HTTP Headers

GET /?yeGHUGFDsertyuikljbvcdfghj_docx=asktorlys@slurpmail.net HTTP/1.1
Host: curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 10 May 2024 15:26:35 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"8087bccf0080c66c7d2a3d5042fb4215"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zXIKWengPS1IxqeiUzOi%2B80aUAoKlHR1OKPVcWSbBBXvfPesIiYWO9OnGnQY%2F6JXZd%2FYL7xVS9m7Ocu1IOs9AVUevxjHW2CMVa7opn1nb%2Bc5Mw540%2FmsgrDVtI0CoHfuez6lr40iGhE2%2FSlokl7XkewVri7Gowv5wCkPR5S5vvbSNp7rDnmeDk4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881af2d0a82f0afa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev/static/js/main.bc950d7d.js

172.66.44.172

200 OK

145 kB

URL GET HTTP/3
curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev/static/js/main.bc950d7d.js
IP
172.66.44.172:443
ASN
#13335 CLOUDFLARENET

Requested by
https://curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev/?yeGHUGFDsertyuikljbvcdfghj_docx=asktorlys@slurpmail.net
Certificate
IssuerGoogle Trust Services LLC
Subjectcurly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev
FingerprintAE:2A:F3:B0:FD:B5:19:36:79:64:46:B9:F5:CB:81:5E:6E:03:C9:38
ValidityMon, 06 May 2024 13:58:56 GMT - Sun, 04 Aug 2024 13:58:55 GMT

File type
JavaScript source, ASCII text, with very long lines (65465)
Size
145 kB (145127 bytes)
Hash
776068de637a801c6d5af6429739e997
ef812bddf7839de3fb9e5dc0662dbd258fced896
6b086c84005bde893ebc64acf134cc56de4111bf05dde15a5100693068f1e9c3

HTTP Headers

GET /static/js/main.bc950d7d.js HTTP/1.1
Host: curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev/?yeGHUGFDsertyuikljbvcdfghj_docx=asktorlys@slurpmail.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 10 May 2024 15:26:36 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"cb08adaf46744537ecf8b4013044284e"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RWBGLVvgNFSGSfUrgtEZQLBDgtI7f%2B3nOFNE88S50rPrOcKkHg5X5KlDPBrhvxROERatqNcx%2BRgM9vwk6YRk16vAk%2FPIqlr4VLlPr5xclwGUHFYKPElgIrb0va0C47D%2FMuyiewnBtzojHlGnLolzmZZ8DoQJmLIubEvpUsuKmx83wJC92gpaNpc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881af2d2bae80b61-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev/static/css/8.9bc90ec6.chunk.css

172.66.44.172

200 OK

2.3 kB

URL GET HTTP/3
curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev/static/css/8.9bc90ec6.chunk.css
IP
172.66.44.172:443
ASN
#13335 CLOUDFLARENET

Requested by
https://curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev/?yeGHUGFDsertyuikljbvcdfghj_docx=asktorlys@slurpmail.net
Certificate
IssuerGoogle Trust Services LLC
Subjectcurly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev
FingerprintAE:2A:F3:B0:FD:B5:19:36:79:64:46:B9:F5:CB:81:5E:6E:03:C9:38
ValidityMon, 06 May 2024 13:58:56 GMT - Sun, 04 Aug 2024 13:58:55 GMT

File type
ASCII text, with very long lines (2293), with no line terminators
Size
2.3 kB (2291 bytes)
Hash
f99057ed3f7c22c6309a0f72669567aa
214ff9df661228d5e130f17437ba99f9ce5f8f09
8ac32f34d5ed5340b031a7f18b3d63dd64c20dac249db434b02814a90bc0fac4

HTTP Headers

GET /static/css/8.9bc90ec6.chunk.css HTTP/1.1
Host: curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev/?yeGHUGFDsertyuikljbvcdfghj_docx=asktorlys@slurpmail.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 10 May 2024 15:26:36 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"4824f6f312c6fd4a6fcbc577b1da4e04"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=P4lE0RC2O0Ds1YjQNaSyAvBJtv5FMCt3UxcmE%2FkPbcsRyhvcNrSDxoL6CUIGZ%2FIKuDCDEF9MeNIId%2B3egPtc7ClP8dq%2BMMbi5Rd%2FDDCcgkBG6dgXJRvFUsfssDJWagncQOo7ftHkkuTyu%2BrPs%2FJ2JdtPQEXDqhkQc9EAucHGAA8HC29FL9j%2BX4c%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881af2d36b9a0b61-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev/static/js/8.83d209ba.chunk.js

172.66.44.172

200 OK

3.9 kB

URL GET HTTP/3
curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev/static/js/8.83d209ba.chunk.js
IP
172.66.44.172:443
ASN
#13335 CLOUDFLARENET

Requested by
https://curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev/?yeGHUGFDsertyuikljbvcdfghj_docx=asktorlys@slurpmail.net
Certificate
IssuerGoogle Trust Services LLC
Subjectcurly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev
FingerprintAE:2A:F3:B0:FD:B5:19:36:79:64:46:B9:F5:CB:81:5E:6E:03:C9:38
ValidityMon, 06 May 2024 13:58:56 GMT - Sun, 04 Aug 2024 13:58:55 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (4105), with no line terminators
Size
3.9 kB (3896 bytes)
Hash
9b07fb6b2b77d9f593beeff56d158bd1
2f24c0a26db69badd472782f466bdc4341c2a727
7c795c8d285ab448c4d5ad353c5176b4c1bbec9531b0ed7aff96a2f3a98cd7fd

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Generic phishing

HTTP Headers

GET /static/js/8.83d209ba.chunk.js HTTP/1.1
Host: curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://curly-octo-jfdfghjkljhgfdrtyuhjkljhgfnicular.pages.dev/?yeGHUGFDsertyuikljbvcdfghj_docx=asktorlys@slurpmail.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 10 May 2024 15:26:36 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"45eae5e23b04c772c1d7d06e2cb81200"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UsdG0KDGrPYoOTaqUXEmrMf9JmFeM5Ip9qyajLU6VZBpecoij47RtKs1INwygMnsAS8HqeaHqupsbdwHLh%2BRLkn3j9vUU6T%2Fpc7Q3Y2%2B27JoGDlCCqNd5O2A28F7gvEERLO1BbPnO5zrJodcR1PdnRwdiEulE9T2HD1rHriQUO1uoZe0V4qaF%2BU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881af2d36b9c0b61-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (3)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (8)

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/3

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/3

IP

ASN

Requested by

Certificate