Report Overview
Submitted URL
pub-2bebf788fd2d4290ab1c24755d9409a5.r2.dev/expensivemfa2faauthappreauthenticatingexpensivemfa2faauthappreauthenticatingexpensivemfa2faauthappreauthenticatingexpensivemfa2faauthappreauthenticating.html
IP
104.18.3.35ASN
#13335 CLOUDFLARENET
Submitted
2024-05-04 07:52:31
Access
public
Website Title
pub-2bebf788fd2d4290ab1c24755d9409a5.r2.dev/expensivemfa2faauthappreauthenticatingexpensivemfa2faauthappreauthenticatingexpensivemfa2faauthappreauthenticatingexpensivemfa2faauthappreauthenticating.html
Final URL
pub-2bebf788fd2d4290ab1c24755d9409a5.r2.dev/expensivemfa2faauthappreauthenticatingexpensivemfa2faauthappreauthenticatingexpensivemfa2faauthappreauthenticatingexpensivemfa2faauthappreauthenticating.html
urlquery detections
Phishing - Microsoft
Detections
urlquery
2
Network Intrusion Detection
0
Threat Detection Systems
4
Domain Summary
| Domain / FQDN | Rank | Registered | First Seen | Last Seen | Sent | Received | IP |
|---|---|---|---|---|---|---|---|
| staff.wonammamamliquidpordksjms.com | unknown | 2023-11-03 | 2023-11-03 | 2023-11-15 | 471 B | 0 B | 0.0.0.0 |
| pub-2bebf788fd2d4290ab1c24755d9409a5.r2.dev | unknown | 2022-08-23 | 2023-11-14 | 2023-11-16 | 1.3 kB | 101 kB | 104.18.3.35 |
Related reports
Network Intrusion Detection Systems
Suricata /w Emerging Threats Pro
Threat Detection Systems
Public InfoSec YARA rules
No alerts detected
OpenPhish
No alerts detected
PhishTank
| Scan Date | Severity | Indicator | Alert |
|---|---|---|---|
| 2023-11-15 | medium | pub-2bebf788fd2d4290ab1c24755d9409a5.r2.dev/expensivemfa2faauthappreauthenticatingexpensivemfa2faauthappreauthenticatingexpensivemfa2faauthappreauthenticatingexpensivemfa2faauthappreauthenticating.html | Other |
mnemonic secure dns
No alerts detected
Quad9 DNS
| Scan Date | Severity | Indicator | Alert |
|---|---|---|---|
| 2024-05-04 | medium | wonammamamliquidpordksjms.com | Sinkholed |
ThreatFox
No alerts detected
JavaScript (2)
| URL | Size | First Seen | Last Seen | |
|---|---|---|---|---|
pub-2bebf788fd2d4290ab1c24755d9409a5.r2.dev/expensivemfa2faauthappreauthenticatingexpensivemfa2faauthappreauthenticatingexpensivemfa2faauthappreauthenticatingexpensivemfa2faauthappreauthenticating.html | 74 kB | 2023-11-16 | 2024-05-04 | |
Pretty
Loading... | ||||
| Size | First Seen | Last Seen | ||
|---|---|---|---|---|
| #1 Write - cf10a24806c9ccbb5c311539af27948a | 22 kB | 2023-11-16 | 2024-05-04 | |
Pretty
Loading... | ||||
HTTP Transactions (3)
| URL | IP | Response | Size | |||||||
|---|---|---|---|---|---|---|---|---|---|---|
pub-2bebf788fd2d4290ab1c24755d9409a5.r2.dev/expensivemfa2faauthappreauthenticatingexpensivemfa2faauthappreauthenticatingexpensivemfa2faauthappreauthenticatingexpensivemfa2faauthappreauthenticating.html | 104.18.3.35 | 200 OK | 74 kB | |||||||
Detections
HTTP Headers
| ||||||||||
pub-2bebf788fd2d4290ab1c24755d9409a5.r2.dev/favicon.ico | 104.18.3.35 | 404 Not Found | 27 kB | |||||||
Detections
HTTP Headers
| ||||||||||
staff.wonammamamliquidpordksjms.com/expensi/host2.4/admin/js/sc.php | 0.0.0.0 | 0 B | ||||||||
Detections
HTTP Headers
| ||||||||||