Report - paylah.best/

Report Overview

Submitted URL
paylah.best/
IP
202.95.14.3
ASN
#64050 BGPNET Global ASN
Submitted
2024-05-10 15:25:18
Access
public
Website Title
Document
Final URL
paylah.best/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
26

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
paylah.best	unknown	unknown	No data	No data	6.7 kB	359 kB	202.95.14.3

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-05-10	medium	paylah.best/	DBS Bank Ltd
2024-05-10	medium	paylah.best/	DBS Bank Ltd
2024-05-10	medium	paylah.best/	DBS Bank Ltd
2024-05-10	medium	paylah.best/	DBS Bank Ltd
2024-05-10	medium	paylah.best/	DBS Bank Ltd
2024-05-10	medium	paylah.best/	DBS Bank Ltd
2024-05-10	medium	paylah.best/	DBS Bank Ltd
2024-05-10	medium	paylah.best/	DBS Bank Ltd
2024-05-10	medium	paylah.best/	DBS Bank Ltd
2024-05-10	medium	paylah.best/	DBS Bank Ltd
2024-05-10	medium	paylah.best/	DBS Bank Ltd
2024-05-10	medium	paylah.best/	DBS Bank Ltd
2024-05-10	medium	paylah.best/	DBS Bank Ltd

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (5)

	URL	Size	First Seen	Last Seen
	paylah.best/js/jquery-1.11.1.min.js	96 kB	2023-03-07	2024-05-20
Pretty URL paylah.best/js/jquery-1.11.1.min.js IP 202.95.14.3 ASN #64050 BGPNET Global ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-05-20 22:22:55 Times Seen48185 Hash 8101d596b2b8fa35fe3a634ea342d7c3 d6c1f41972de07b09bfa63d2e50f9ab41ec372bd 540bc6dec1dd4b92ea4d3fb903f69eabf6d919afd48f4e312b163c28cff0f441 Loading...

	paylah.best/js/swiper.min.js	112 kB	2023-03-08	2024-05-19
Pretty URL paylah.best/js/swiper.min.js IP 202.95.14.3 ASN #64050 BGPNET Global ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:19:18 Last Seen2024-05-19 15:42:05 Times Seen533 Hash 3c6e81325849c77dfa3945f6307e9b83 0279951bcfd392cdfdc2fbcaa478a9c23fdadf5c 71ac9609b38bb7193aa590b72a2e18ecf603226589e02cd157aa312cc0c70bba Loading...

	paylah.best/zy/api/k.js	2.0 kB	2023-03-07	2024-05-14
Pretty URL paylah.best/zy/api/k.js IP 202.95.14.3 ASN #64050 BGPNET Global ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:19:10 Last Seen2024-05-14 19:51:34 Times Seen242 Hash 0513efa0d938318e87f046ed621ecf78 e733d0ee865b68e69a5e94a6b4526796e1dffb47 2b2afdc05faf6b897ecb2fe532526752927f5c5cdf5e1452355f9395396b9190 Loading...

	paylah.best/	0 B	2023-03-07	2024-05-20
Pretty URL paylah.best/ IP 202.95.14.3 ASN #64050 BGPNET Global ASN Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-20 22:32:18 Times Seen37896147 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	paylah.best/zy/api/i.js?ver=1715354695436	13 kB	2023-03-08	2024-05-14
Pretty URL paylah.best/zy/api/i.js?ver=1715354695436 IP 202.95.14.3 ASN #64050 BGPNET Global ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:40:14 Last Seen2024-05-14 19:51:34 Times Seen476 Hash 62f4569352d5484fd9880d3a20a4759b 3ee3845f47918f49715a35cd64ffd3382195203d dbf82bc987446183b84a7c9a342f3f7ecfb1836879ab7a1437b2b2d221a5130a Loading...

HTTP Transactions (14)

URL IP Response Size

paylah.best/css/global.css

202.95.14.3

200 OK

32 B

URL GET HTTP/2
paylah.best/css/global.css
IP
202.95.14.3:443
ASN
#64050 BGPNET Global ASN

Requested by
https://paylah.best/
Certificate
IssuerLet's Encrypt
Subjectpaylah.best
FingerprintCB:6E:61:A5:DF:4D:D6:55:7C:C8:1F:AF:40:81:AA:C5:25:C6:41:7F
ValidityFri, 10 May 2024 05:58:54 GMT - Thu, 08 Aug 2024 05:58:53 GMT

File type
ASCII text
Size
32 B (32 bytes)
Hash
3be97ef1ca24eceb7420292999284fc0
ad836458e436fe6a76e1cd22e270b54707f80ff7
7e16396ef8c0c1249aed9ed2a4120629a50e28070d8469030061cb3a71662ade

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DBS Bank Ltd

HTTP Headers

GET /css/global.css HTTP/1.1
Host: paylah.best
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://paylah.best/
Cookie: PHPSESSID=v69g3cnld3utnkgfkju9o4l2rd
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 15:24:53 GMT
content-type: text/css
content-length: 32
last-modified: Sat, 19 Nov 2022 18:45:24 GMT
etag: "63792444-20"
expires: Sat, 11 May 2024 03:24:53 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

paylah.best/img/news/slide_2.png

202.95.14.3

404 Not Found

146 B

URL GET HTTP/2
paylah.best/img/news/slide_2.png
IP
202.95.14.3:443
ASN
#64050 BGPNET Global ASN

Requested by
https://paylah.best/
Certificate
IssuerLet's Encrypt
Subjectpaylah.best
FingerprintCB:6E:61:A5:DF:4D:D6:55:7C:C8:1F:AF:40:81:AA:C5:25:C6:41:7F
ValidityFri, 10 May 2024 05:58:54 GMT - Thu, 08 Aug 2024 05:58:53 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
146 B (146 bytes)
Hash
8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DBS Bank Ltd

HTTP Headers

GET /img/news/slide_2.png HTTP/1.1
Host: paylah.best
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://paylah.best/
Cookie: PHPSESSID=v69g3cnld3utnkgfkju9o4l2rd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
server: nginx
date: Fri, 10 May 2024 15:24:53 GMT
content-type: text/html
content-length: 146
X-Firefox-Spdy: h2

paylah.best/img/news/slide_3.png

202.95.14.3

404 Not Found

146 B

URL GET HTTP/2
paylah.best/img/news/slide_3.png
IP
202.95.14.3:443
ASN
#64050 BGPNET Global ASN

Requested by
https://paylah.best/
Certificate
IssuerLet's Encrypt
Subjectpaylah.best
FingerprintCB:6E:61:A5:DF:4D:D6:55:7C:C8:1F:AF:40:81:AA:C5:25:C6:41:7F
ValidityFri, 10 May 2024 05:58:54 GMT - Thu, 08 Aug 2024 05:58:53 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
146 B (146 bytes)
Hash
8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DBS Bank Ltd

HTTP Headers

GET /img/news/slide_3.png HTTP/1.1
Host: paylah.best
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://paylah.best/
Cookie: PHPSESSID=v69g3cnld3utnkgfkju9o4l2rd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
server: nginx
date: Fri, 10 May 2024 15:24:53 GMT
content-type: text/html
content-length: 146
X-Firefox-Spdy: h2

paylah.best/img/news/slide_4.png

202.95.14.3

404 Not Found

146 B

URL GET HTTP/2
paylah.best/img/news/slide_4.png
IP
202.95.14.3:443
ASN
#64050 BGPNET Global ASN

Requested by
https://paylah.best/
Certificate
IssuerLet's Encrypt
Subjectpaylah.best
FingerprintCB:6E:61:A5:DF:4D:D6:55:7C:C8:1F:AF:40:81:AA:C5:25:C6:41:7F
ValidityFri, 10 May 2024 05:58:54 GMT - Thu, 08 Aug 2024 05:58:53 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
146 B (146 bytes)
Hash
8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DBS Bank Ltd

HTTP Headers

GET /img/news/slide_4.png HTTP/1.1
Host: paylah.best
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://paylah.best/
Cookie: PHPSESSID=v69g3cnld3utnkgfkju9o4l2rd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
server: nginx
date: Fri, 10 May 2024 15:24:53 GMT
content-type: text/html
content-length: 146
X-Firefox-Spdy: h2

paylah.best/favicon.ico

202.95.14.3

200 OK

28 kB

URL GET HTTP/2
paylah.best/favicon.ico
IP
202.95.14.3:443
ASN
#64050 BGPNET Global ASN

Requested by
https://paylah.best/
Certificate
IssuerLet's Encrypt
Subjectpaylah.best
FingerprintCB:6E:61:A5:DF:4D:D6:55:7C:C8:1F:AF:40:81:AA:C5:25:C6:41:7F
ValidityFri, 10 May 2024 05:58:54 GMT - Thu, 08 Aug 2024 05:58:53 GMT

File type
MS Windows icon resource - 1 icon, 82x82, 32 bits/pixel
Size
28 kB (27942 bytes)
Hash
2f1f476dde82603e6707cac6888ba940
1bc55159e0213251a2640ef6aa3617d7102cd9a5
fe745f8e0bf523d857b573bf196a69770c0b1f7c95a3a132feadc23553bc9dac

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DBS Bank Ltd

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: paylah.best
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://paylah.best/
Cookie: PHPSESSID=v69g3cnld3utnkgfkju9o4l2rd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 15:24:54 GMT
content-type: image/x-icon
content-length: 27942
last-modified: Sun, 20 Nov 2022 18:25:44 GMT
etag: "637a7128-6d26"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

paylah.best/img/blur_splash.png

202.95.14.3

200 OK

59 kB

URL GET HTTP/2
paylah.best/img/blur_splash.png
IP
202.95.14.3:443
ASN
#64050 BGPNET Global ASN

Requested by
https://paylah.best/
Certificate
IssuerLet's Encrypt
Subjectpaylah.best
FingerprintCB:6E:61:A5:DF:4D:D6:55:7C:C8:1F:AF:40:81:AA:C5:25:C6:41:7F
ValidityFri, 10 May 2024 05:58:54 GMT - Thu, 08 Aug 2024 05:58:53 GMT

File type
gzip compressed data, from Unix
Size
59 kB (58671 bytes)
Hash
d2819605a7a11058a4386b2bfc725a30
a93b2c5159e5f4ce8cf5470f2408b52423361b18
715152beb7e249dd5fbe17815bca37078672c7c7be395625463e1f5f6567d3ca

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DBS Bank Ltd

HTTP Headers

GET /img/blur_splash.png HTTP/1.1
Host: paylah.best
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://paylah.best/
Cookie: PHPSESSID=v69g3cnld3utnkgfkju9o4l2rd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 15:24:54 GMT
content-type: image/png
last-modified: Sat, 19 Nov 2022 17:56:56 GMT
vary: Accept-Encoding
etag: W/"637918e8-be95"
expires: Sun, 09 Jun 2024 15:24:54 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

paylah.best/zy/api/api.php

202.95.14.3

200 OK

6.6 kB

URL POST HTTP/2
paylah.best/zy/api/api.php
IP
202.95.14.3:443
ASN
#64050 BGPNET Global ASN

Requested by
https://paylah.best/
Certificate
IssuerLet's Encrypt
Subjectpaylah.best
FingerprintCB:6E:61:A5:DF:4D:D6:55:7C:C8:1F:AF:40:81:AA:C5:25:C6:41:7F
ValidityFri, 10 May 2024 05:58:54 GMT - Thu, 08 Aug 2024 05:58:53 GMT

File type
gzip compressed data, from Unix
Size
6.6 kB (6627 bytes)
Hash
3f90898c0f47fadf341be77c8008bfb7
8133bc8febc1296020c3ec19ff9bd560920a6ee7
7d511c10cf759fc75c82587e60fe4b16212131c940395d9c9ec558962e017949

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DBS Bank Ltd

HTTP Headers

POST /zy/api/api.php HTTP/1.1
Host: paylah.best
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 6
Origin: https://paylah.best
DNT: 1
Connection: keep-alive
Referer: https://paylah.best/
Cookie: PHPSESSID=v69g3cnld3utnkgfkju9o4l2rd
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 15:25:03 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

paylah.best/img/img_paylahlogo_dark.png

202.95.14.3

200 OK

15 kB

URL GET HTTP/2
paylah.best/img/img_paylahlogo_dark.png
IP
202.95.14.3:443
ASN
#64050 BGPNET Global ASN

Requested by
https://paylah.best/
Certificate
IssuerLet's Encrypt
Subjectpaylah.best
FingerprintCB:6E:61:A5:DF:4D:D6:55:7C:C8:1F:AF:40:81:AA:C5:25:C6:41:7F
ValidityFri, 10 May 2024 05:58:54 GMT - Thu, 08 Aug 2024 05:58:53 GMT

File type
gzip compressed data, from Unix
Size
15 kB (14605 bytes)
Hash
d8a091d8122e7066f1fb75d5a2cc5053
0fb2b752bae0cb1a8e1d52bf89af5bba4f3a38d6
14d5883814ef0dfa45ae0cee123f0f016bf3e365be3d021d1aa76bc516187110

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DBS Bank Ltd

HTTP Headers

GET /img/img_paylahlogo_dark.png HTTP/1.1
Host: paylah.best
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://paylah.best/
Cookie: PHPSESSID=v69g3cnld3utnkgfkju9o4l2rd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 15:24:53 GMT
content-type: image/png
last-modified: Sat, 19 Nov 2022 17:56:56 GMT
vary: Accept-Encoding
etag: W/"637918e8-1264"
expires: Sun, 09 Jun 2024 15:24:53 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

paylah.best/css/swiper.min.css

202.95.14.3

200 OK

19 kB

URL GET HTTP/2
paylah.best/css/swiper.min.css
IP
202.95.14.3:443
ASN
#64050 BGPNET Global ASN

Requested by
https://paylah.best/
Certificate
IssuerLet's Encrypt
Subjectpaylah.best
FingerprintCB:6E:61:A5:DF:4D:D6:55:7C:C8:1F:AF:40:81:AA:C5:25:C6:41:7F
ValidityFri, 10 May 2024 05:58:54 GMT - Thu, 08 Aug 2024 05:58:53 GMT

File type
ASCII text, with very long lines (19068)
Size
19 kB (19333 bytes)
Hash
63648a9f719dfbcf22778b432a5f4585
0f70d24619ec9167146d1ddc6c0605964ae3061e
0acdefe2164951522a3032ca13a4f691e14c4823cdca772b4b499a97a6fb27eb

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DBS Bank Ltd

HTTP Headers

GET /css/swiper.min.css HTTP/1.1
Host: paylah.best
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://paylah.best/
Cookie: PHPSESSID=v69g3cnld3utnkgfkju9o4l2rd
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 15:24:53 GMT
content-type: text/css
last-modified: Sat, 19 Nov 2022 18:45:24 GMT
vary: Accept-Encoding
etag: W/"63792444-4b85"
expires: Sat, 11 May 2024 03:24:53 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

paylah.best/js/jquery-1.11.1.min.js

202.95.14.3

200 OK

96 kB

URL GET HTTP/2
paylah.best/js/jquery-1.11.1.min.js
IP
202.95.14.3:443
ASN
#64050 BGPNET Global ASN

Requested by
https://paylah.best/
Certificate
IssuerLet's Encrypt
Subjectpaylah.best
FingerprintCB:6E:61:A5:DF:4D:D6:55:7C:C8:1F:AF:40:81:AA:C5:25:C6:41:7F
ValidityFri, 10 May 2024 05:58:54 GMT - Thu, 08 Aug 2024 05:58:53 GMT

File type
JavaScript source, ASCII text, with very long lines (32086)
Size
96 kB (95786 bytes)
Hash
8101d596b2b8fa35fe3a634ea342d7c3
d6c1f41972de07b09bfa63d2e50f9ab41ec372bd
540bc6dec1dd4b92ea4d3fb903f69eabf6d919afd48f4e312b163c28cff0f441

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DBS Bank Ltd

HTTP Headers

GET /js/jquery-1.11.1.min.js HTTP/1.1
Host: paylah.best
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://paylah.best/
Cookie: PHPSESSID=v69g3cnld3utnkgfkju9o4l2rd
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 15:24:53 GMT
content-type: application/javascript
last-modified: Tue, 15 Nov 2022 10:10:44 GMT
vary: Accept-Encoding
etag: W/"637365a4-1762a"
expires: Sat, 11 May 2024 03:24:53 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

paylah.best/js/swiper.min.js

202.95.14.3

200 OK

112 kB

URL GET HTTP/2
paylah.best/js/swiper.min.js
IP
202.95.14.3:443
ASN
#64050 BGPNET Global ASN

Requested by
https://paylah.best/
Certificate
IssuerLet's Encrypt
Subjectpaylah.best
FingerprintCB:6E:61:A5:DF:4D:D6:55:7C:C8:1F:AF:40:81:AA:C5:25:C6:41:7F
ValidityFri, 10 May 2024 05:58:54 GMT - Thu, 08 Aug 2024 05:58:53 GMT

File type
JavaScript source, ASCII text, with very long lines (65271)
Size
112 kB (111502 bytes)
Hash
3c6e81325849c77dfa3945f6307e9b83
0279951bcfd392cdfdc2fbcaa478a9c23fdadf5c
71ac9609b38bb7193aa590b72a2e18ecf603226589e02cd157aa312cc0c70bba

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DBS Bank Ltd

HTTP Headers

GET /js/swiper.min.js HTTP/1.1
Host: paylah.best
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://paylah.best/
Cookie: PHPSESSID=v69g3cnld3utnkgfkju9o4l2rd
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 15:24:53 GMT
content-type: application/javascript
last-modified: Tue, 15 Nov 2022 10:08:20 GMT
vary: Accept-Encoding
etag: W/"63736514-1b38e"
expires: Sat, 11 May 2024 03:24:53 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

paylah.best/zy/api/i.js?ver=1715354695436

202.95.14.3

200 OK

13 kB

URL GET HTTP/2
paylah.best/zy/api/i.js?ver=1715354695436
IP
202.95.14.3:443
ASN
#64050 BGPNET Global ASN

Requested by
https://paylah.best/
Certificate
IssuerLet's Encrypt
Subjectpaylah.best
FingerprintCB:6E:61:A5:DF:4D:D6:55:7C:C8:1F:AF:40:81:AA:C5:25:C6:41:7F
ValidityFri, 10 May 2024 05:58:54 GMT - Thu, 08 Aug 2024 05:58:53 GMT

File type
ASCII text, with very long lines (672), with CRLF line terminators
Size
13 kB (13151 bytes)
Hash
62f4569352d5484fd9880d3a20a4759b
3ee3845f47918f49715a35cd64ffd3382195203d
dbf82bc987446183b84a7c9a342f3f7ecfb1836879ab7a1437b2b2d221a5130a

HTTP Headers

GET /zy/api/i.js?ver=1715354695436 HTTP/1.1
Host: paylah.best
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://paylah.best/
Cookie: PHPSESSID=v69g3cnld3utnkgfkju9o4l2rd
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 15:24:55 GMT
content-type: application/javascript
last-modified: Sun, 20 Nov 2022 16:13:22 GMT
vary: Accept-Encoding
etag: W/"637a5222-335f"
expires: Sat, 11 May 2024 03:24:55 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

paylah.best/zy/api/k.js

202.95.14.3

200 OK

2.0 kB

URL GET HTTP/2
paylah.best/zy/api/k.js
IP
202.95.14.3:443
ASN
#64050 BGPNET Global ASN

Requested by
https://paylah.best/
Certificate
IssuerLet's Encrypt
Subjectpaylah.best
FingerprintCB:6E:61:A5:DF:4D:D6:55:7C:C8:1F:AF:40:81:AA:C5:25:C6:41:7F
ValidityFri, 10 May 2024 05:58:54 GMT - Thu, 08 Aug 2024 05:58:53 GMT

File type
JavaScript source, ASCII text, with very long lines (2195), with no line terminators
Size
2.0 kB (2019 bytes)
Hash
e14f41f600223d79e45c7ad094dc2cbd
4e93f83f223b88570b053676709a459dae0c2edb
48249b8acaefdf1d61c40faaf347b89a03bda8516016cc30995f2e69d08fe66c

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DBS Bank Ltd

HTTP Headers

GET /zy/api/k.js HTTP/1.1
Host: paylah.best
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://paylah.best/
Cookie: PHPSESSID=v69g3cnld3utnkgfkju9o4l2rd
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 15:24:53 GMT
content-type: application/javascript
last-modified: Fri, 29 Jul 2022 12:55:30 GMT
vary: Accept-Encoding
etag: W/"62e3d8c2-7e3"
expires: Sat, 11 May 2024 03:24:53 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

paylah.best/

202.95.14.3

200 OK

4.5 kB

URL User Request GET HTTP/2
paylah.best/
IP
202.95.14.3:443
ASN
#64050 BGPNET Global ASN

Certificate
IssuerLet's Encrypt
Subjectpaylah.best
FingerprintCB:6E:61:A5:DF:4D:D6:55:7C:C8:1F:AF:40:81:AA:C5:25:C6:41:7F
ValidityFri, 10 May 2024 05:58:54 GMT - Thu, 08 Aug 2024 05:58:53 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (4882), with no line terminators
Size
4.5 kB (4532 bytes)
Hash
5d76a974dd2a49f394040ac347352989
5b3204c4ba06563d667d3d5c61b36ae89c9cecf3
4a9f328fd9aec405a74e9259b04f44f22e87cd8c7caa54595f27d11033ebe6a6

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DBS Bank Ltd

HTTP Headers

GET / HTTP/1.1
Host: paylah.best
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 15:24:53 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
set-cookie: PHPSESSID=v69g3cnld3utnkgfkju9o4l2rd; path=/
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (5)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (14)

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash