| overfrillishom.com/favicon.ico | 104.21.87.87 | 204 No Content | 0 B |
URL GET HTTP/3overfrillishom.com/favicon.ico IP104.21.87.87:443
Requested byhttps://overfrillishom.com/ CertificateIssuerGoogle Trust Services LLC Subjectoverfrillishom.com Fingerprint6D:79:6A:A4:20:07:BE:8A:95:8A:8F:63:43:F9:22:ED:CC:9B:C5:3A ValidityMon, 15 Apr 2024 13:35:31 GMT - Sun, 14 Jul 2024 13:35:30 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: overfrillishom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://overfrillishom.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
date: Fri, 26 Apr 2024 15:48:22 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CPA8h4KW1rQoPMNx3ESctpyJrjrQYyTxVeDxSDhpU5i9cGQoMTSwxKV5UPN1OMAJDEx0T9KeIKwjNsodVPx%2Ftm7CKiOTgUh6AAyRehQAKHWmreUIvpcp8oNudj9rUd5470ijbVo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a7b779ea60b500-OSL
alt-svc: h3=":443"; ma=86400
|
|
| overfrillishom.com/_next/static/ZcFBe8znm1v6dE2i2HQ4s/_buildManifest.js | 104.21.87.87 | 200 OK | 6.7 kB |
URL GET HTTP/3overfrillishom.com/_next/static/ZcFBe8znm1v6dE2i2HQ4s/_buildManifest.js IP104.21.87.87:443
Requested byhttps://overfrillishom.com/ CertificateIssuerGoogle Trust Services LLC Subjectoverfrillishom.com Fingerprint6D:79:6A:A4:20:07:BE:8A:95:8A:8F:63:43:F9:22:ED:CC:9B:C5:3A ValidityMon, 15 Apr 2024 13:35:31 GMT - Sun, 14 Jul 2024 13:35:30 GMT
File typeASCII text, with very long lines (634), with no line terminators Hash0bc121097a3427d8c16c3ff7c1e018e4 e7df3c9c8f0e609b5b13f4dcbb2d5c063e578994 d3704d7c863a53b0a5c4c12ab553dc2bbc54f6c2513d389b2ad6bc1b3cbd03b7
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/ZcFBe8znm1v6dE2i2HQ4s/_buildManifest.js HTTP/1.1
Host: overfrillishom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://overfrillishom.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 15:48:22 GMT
content-type: application/javascript
last-modified: Fri, 26 Apr 2024 15:20:44 GMT
vary: Accept-Encoding
etag: W/"662bc64c-27a"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=imMqOR2eCPXhMcNSEooo0p0auvD%2BR5pjDE3xolahz%2FXeSgj94zJr%2BzfXgt5oZWuDFFPD2ZUzuom6gg%2FTzAvN4nrPyt%2F0i%2Fsz5Oe7I1gr2URgdQSmb3gP10ejKOPIk2sT2txPngo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a7b778d8c4b500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| overfrillishom.com/_next/static/chunks/643-243878930ed029bf.js | 104.21.87.87 | 200 OK | 37 kB |
URL GET HTTP/3overfrillishom.com/_next/static/chunks/643-243878930ed029bf.js IP104.21.87.87:443
Requested byhttps://overfrillishom.com/ CertificateIssuerGoogle Trust Services LLC Subjectoverfrillishom.com Fingerprint6D:79:6A:A4:20:07:BE:8A:95:8A:8F:63:43:F9:22:ED:CC:9B:C5:3A ValidityMon, 15 Apr 2024 13:35:31 GMT - Sun, 14 Jul 2024 13:35:30 GMT
File typeJavaScript source, ASCII text, with very long lines (37308), with no line terminators Hash419b3a8168b0da096cce642315228a82 dfe7c11297bd60e651994d557e61648cb5502029 ae06d14abcda1f98d484918b81e460dc93a8e12cdcc0d936dbd2241a613d66cf
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/643-243878930ed029bf.js HTTP/1.1
Host: overfrillishom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://overfrillishom.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 15:48:22 GMT
content-type: application/javascript
last-modified: Fri, 26 Apr 2024 15:20:44 GMT
vary: Accept-Encoding
etag: W/"662bc64c-91bc"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kXfDAwp4Wp52TyV8MsSiw8R8nPE2yV9Q%2B78iXNEqJx5pRfE71UCjixEGBCrM9%2FSyIeIRZfzcpqC2LGq4lDwf%2Fj%2B72Qblk1q32XH1gv5qVW4gbN7KKKIOwAsXSuLruIbi1JP9tXM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a7b778d8beb500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| overfrillishom.com/_next/static/chunks/pages/index-5eaeb5f3c1c9156a.js | 104.21.87.87 | 200 OK | 26 kB |
URL GET HTTP/3overfrillishom.com/_next/static/chunks/pages/index-5eaeb5f3c1c9156a.js IP104.21.87.87:443
Requested byhttps://overfrillishom.com/ CertificateIssuerGoogle Trust Services LLC Subjectoverfrillishom.com Fingerprint6D:79:6A:A4:20:07:BE:8A:95:8A:8F:63:43:F9:22:ED:CC:9B:C5:3A ValidityMon, 15 Apr 2024 13:35:31 GMT - Sun, 14 Jul 2024 13:35:30 GMT
File typeJavaScript source, ASCII text, with very long lines (25717), with no line terminators Hash6e1611f5017199b5438ccd27bc564432 fe0a9d2254a2903d79a370afe6850e6296abb554 132030b1ed1cd4df37675b2fc1cf3dc2333c80a0deca8e1788857bbdcb463f62
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/pages/index-5eaeb5f3c1c9156a.js HTTP/1.1
Host: overfrillishom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://overfrillishom.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 15:48:22 GMT
content-type: application/javascript
last-modified: Fri, 26 Apr 2024 15:20:44 GMT
vary: Accept-Encoding
etag: W/"662bc64c-6475"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wCJdpZGlRQVAM6Fz9b%2BqonS8650Q60Q4paxQo8AktUsGGKiXyzVC7wH9R0rRZhcaf8okjBpsnvOc2YtmXC7P4t%2BbTv1eQ4nn0YLxtTlKFaOC3MFq%2FxdLqQRdrjePDKWzhYvMMPE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a7b778d8c0b500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| | 104.21.87.87 | 200 OK | 19 kB |
URL User Request GET HTTP/2IP104.21.87.87:443
CertificateIssuerGoogle Trust Services LLC Subjectoverfrillishom.com Fingerprint6D:79:6A:A4:20:07:BE:8A:95:8A:8F:63:43:F9:22:ED:CC:9B:C5:3A ValidityMon, 15 Apr 2024 13:35:31 GMT - Sun, 14 Jul 2024 13:35:30 GMT
File typeHTML document, ASCII text, with very long lines (9049) Hash4368d757bc07df1cd1f8ba616e484b55 9f35e7dcd152ca57de9944137e7ee3e0a5a64eb9 66ce72810011f854dbe4ce0e8317c9ecb95f0696c0ffdd5a24a4a17bee3fa270
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: overfrillishom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 15:48:22 GMT
content-type: text/html
last-modified: Fri, 26 Apr 2024 15:20:44 GMT
vary: Accept-Encoding
strict-transport-security: max-age=1
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0JB8fRcUP9uYmCA56YUYUCYeSCRqdC9xYJJ81xYf54MWMJhKP5kspixaTqorV70fx8YHvLF%2B3gh4k6OCV%2Bml7Ol7itUafSRIXaKNsYfVRByTPs3McZwQBpe4L5bmJWL3jJmpqy4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a7b776eadc712d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| overfrillishom.com/_next/static/css/0bc0cde260d08b97.css | 104.21.87.87 | 200 OK | 1.8 kB |
URL GET HTTP/3overfrillishom.com/_next/static/css/0bc0cde260d08b97.css IP104.21.87.87:443
Requested byhttps://overfrillishom.com/ CertificateIssuerGoogle Trust Services LLC Subjectoverfrillishom.com Fingerprint6D:79:6A:A4:20:07:BE:8A:95:8A:8F:63:43:F9:22:ED:CC:9B:C5:3A ValidityMon, 15 Apr 2024 13:35:31 GMT - Sun, 14 Jul 2024 13:35:30 GMT
File typeASCII text, with very long lines (1843), with no line terminators Hash64b2b4fa42c7d558d735e2cd28ecf88a 03d6da6e55b1201b51689590520da495a9233d67 2fdb3ce9ccba8355040e5ba3dfb2283194acba81858943b5d88f70030dbb71ea
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/css/0bc0cde260d08b97.css HTTP/1.1
Host: overfrillishom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://overfrillishom.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 15:48:22 GMT
content-type: text/css
last-modified: Fri, 26 Apr 2024 15:20:44 GMT
vary: Accept-Encoding
etag: W/"662bc64c-733"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pDP6RJpa0WTtj5ZO%2BGPYyU02RmBbD7%2Frc3C3o8Ky42ajLX0j9CPh5kphPHoFJkvDcAUatE%2FO0gQQaY1%2BQgmUa3nDZf3gMewvcjdB3T4qs4bnx3UBSbINQWzZJsFneFazyDYnhGo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a7b778c8a1b500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| overfrillishom.com/_next/static/chunks/webpack-3317c353d158ef42.js | 104.21.87.87 | 200 OK | 3.9 kB |
URL GET HTTP/3overfrillishom.com/_next/static/chunks/webpack-3317c353d158ef42.js IP104.21.87.87:443
Requested byhttps://overfrillishom.com/ CertificateIssuerGoogle Trust Services LLC Subjectoverfrillishom.com Fingerprint6D:79:6A:A4:20:07:BE:8A:95:8A:8F:63:43:F9:22:ED:CC:9B:C5:3A ValidityMon, 15 Apr 2024 13:35:31 GMT - Sun, 14 Jul 2024 13:35:30 GMT
File typeJavaScript source, ASCII text, with very long lines (4027), with no line terminators Hash0a79bb443be4ec02c005acfe9388b1d8 085fe252f11f8c4d9096b444407a280bfec82c2c a7eef1274c5237d49e3e9c394fe7112ee7b8c4990a25fd9bff816aaaf65be1b2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/webpack-3317c353d158ef42.js HTTP/1.1
Host: overfrillishom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://overfrillishom.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 15:48:22 GMT
content-type: application/javascript
last-modified: Fri, 26 Apr 2024 15:20:44 GMT
vary: Accept-Encoding
etag: W/"662bc64c-f4e"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jEUMdhz4q63p8Y1PlbQm3opLijF5vgFMh8u65M8O26HrQ5MQr3sP4q%2BZvi3v3ikORc1B49B8ANtIth3hvqZk0rojDRu4zvOhT7ARhSlbOFY3lLE2%2FTeZsmcbNmjLdaKzewAroR8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a7b778c8aab500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| overfrillishom.com/_next/static/chunks/framework-6d942e99539c36ca.js | 104.21.87.87 | 200 OK | 26 kB |
URL GET HTTP/3overfrillishom.com/_next/static/chunks/framework-6d942e99539c36ca.js IP104.21.87.87:443
Requested byhttps://overfrillishom.com/ CertificateIssuerGoogle Trust Services LLC Subjectoverfrillishom.com Fingerprint6D:79:6A:A4:20:07:BE:8A:95:8A:8F:63:43:F9:22:ED:CC:9B:C5:3A ValidityMon, 15 Apr 2024 13:35:31 GMT - Sun, 14 Jul 2024 13:35:30 GMT
File typeJavaScript source, ASCII text, with very long lines (25994), with no line terminators Hashc7fcb36f573e287619667e1fcf38db4d b6f058c25e6569f248ce70f448a3d0ca4c6a64a0 a0fbf46f3d7cbd836e9f96d7299c6d3cd119aef1fd70992d2c01fe78474737a2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/framework-6d942e99539c36ca.js HTTP/1.1
Host: overfrillishom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://overfrillishom.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 15:48:22 GMT
content-type: application/javascript
last-modified: Fri, 26 Apr 2024 15:20:44 GMT
vary: Accept-Encoding
etag: W/"662bc64c-658a"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BcaUby4C8tHX5yLE4zT2qQirZvdRG4SpKHTCbr6QPJMBztyAOSEUqG5Ku5vPAIywAhjtZZv8TBzVix2cBc1h864XaY%2FyN74L303uTU%2F21A2BBUC5ePkEKcnxRZiphg47By9GEac%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a7b778c8afb500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| overfrillishom.com/_next/static/chunks/main-5f1e5510ac7525f2.js | 104.21.87.87 | 200 OK | 109 kB |
URL GET HTTP/3overfrillishom.com/_next/static/chunks/main-5f1e5510ac7525f2.js IP104.21.87.87:443
Requested byhttps://overfrillishom.com/ CertificateIssuerGoogle Trust Services LLC Subjectoverfrillishom.com Fingerprint6D:79:6A:A4:20:07:BE:8A:95:8A:8F:63:43:F9:22:ED:CC:9B:C5:3A ValidityMon, 15 Apr 2024 13:35:31 GMT - Sun, 14 Jul 2024 13:35:30 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size109 kB (108886 bytes) Hash183c7237a9f9f92f1ffcc27852e2826a 437e6ef0eb8dbabb9c1ff34163c22bd5b1af1d3f 4fa3cb259a0afe7a75daaccdec278c70e5d9a934a2922707aab86882981ae656
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/main-5f1e5510ac7525f2.js HTTP/1.1
Host: overfrillishom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://overfrillishom.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 15:48:22 GMT
content-type: application/javascript
last-modified: Fri, 26 Apr 2024 15:20:44 GMT
vary: Accept-Encoding
etag: W/"662bc64c-1a956"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=For0VpdlA2duaLs1EJgyQPKmrZSxEm0%2BqT%2FwLaGhGxJbJ3W6CkXGfrPma4DDhRKInfOv2fWB8n%2BU%2BFrjLlPJf5fn%2B%2FwsebOweFNzRpHtFrOCcyrTuvTTu7qOCV6aNHf61%2B1ZUNU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a7b778c8b7b500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| overfrillishom.com/_next/static/chunks/pages/_app-63cd9fcd428d9815.js | 104.21.87.87 | 200 OK | 41 kB |
URL GET HTTP/3overfrillishom.com/_next/static/chunks/pages/_app-63cd9fcd428d9815.js IP104.21.87.87:443
Requested byhttps://overfrillishom.com/ CertificateIssuerGoogle Trust Services LLC Subjectoverfrillishom.com Fingerprint6D:79:6A:A4:20:07:BE:8A:95:8A:8F:63:43:F9:22:ED:CC:9B:C5:3A ValidityMon, 15 Apr 2024 13:35:31 GMT - Sun, 14 Jul 2024 13:35:30 GMT
File typeJavaScript source, ASCII text, with very long lines (40905), with no line terminators Hash3cd02ad5da0184455f7cf12c831bf73a 6f94cf2e253944918c5c8822682e4f1255b9b6d8 a0de440a4a7728c1d3a02213ed947e6b0604cf334b78e68fc02956f828897eff
Analyzer | Verdict | Alert | YARAhub by abuse.ch | malware | Detects SocGholish obfuscated variant first observed in July 2022 | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/pages/_app-63cd9fcd428d9815.js HTTP/1.1
Host: overfrillishom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://overfrillishom.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 15:48:22 GMT
content-type: application/javascript
last-modified: Fri, 26 Apr 2024 15:20:44 GMT
vary: Accept-Encoding
etag: W/"662bc64c-9fc9"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4DS0q0VQaoDt8qyOMp8HNR47PgEa9kYoYeVPMnSK1CiJsQsrSKBhCsXpF0N8DhXo8kuDBxv9JKSyHpHC3j5Bpxglh8J%2FDRfvu7%2F5f4gy2TLnmWocvb3pP%2BlQgxr6D9a7pBrcCVE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a7b778c8bcb500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| overfrillishom.com/_next/static/ZcFBe8znm1v6dE2i2HQ4s/_ssgManifest.js | 104.21.87.87 | 200 OK | 134 B |
URL GET HTTP/3overfrillishom.com/_next/static/ZcFBe8znm1v6dE2i2HQ4s/_ssgManifest.js IP104.21.87.87:443
Requested byhttps://overfrillishom.com/ CertificateIssuerGoogle Trust Services LLC Subjectoverfrillishom.com Fingerprint6D:79:6A:A4:20:07:BE:8A:95:8A:8F:63:43:F9:22:ED:CC:9B:C5:3A ValidityMon, 15 Apr 2024 13:35:31 GMT - Sun, 14 Jul 2024 13:35:30 GMT
File typeASCII text, with no line terminators Hash8ffe0d99020b7535af6db34ba54a25cf c9e0b6379bdae795228998c3050d295d14e65669 1f5fd7652f124b236dc9ef40458fe6fbbd3b09ef521cd3e4f22602450525773c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/ZcFBe8znm1v6dE2i2HQ4s/_ssgManifest.js HTTP/1.1
Host: overfrillishom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://overfrillishom.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 15:48:22 GMT
content-type: application/javascript
last-modified: Fri, 26 Apr 2024 15:20:44 GMT
vary: Accept-Encoding
etag: W/"662bc64c-86"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zCNbIKNzFEL31tYnQx9cx0MSco1UIPGzUkGHfo5UcOJMn9B4aIH%2BtGHAW%2FhzBZTSwwxjWnSlw1Vo6J58lDe5Mijst%2Fs6VaoBtBGShy7ZNe3KhZjOpchV%2Bw5CrpzwN7PwbD1Jqik%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a7b778d8c6b500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|