Report - secure-evy.pages.dev/

Report Overview

Submitted URL
secure-evy.pages.dev/
IP
172.66.44.110
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-18 05:35:21
Access
public
Website Title
The Ultimate Crypto Wallet for DeFi, Web3 Apps, and NFTs | MetaMask
Final URL
secure-evy.pages.dev/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
86

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
secure-evy.pages.dev	unknown	unknown	No data	No data	22 kB	5.6 MB	172.66.44.110
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-04-18	1.1 kB	23 kB	142.250.74.163

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-04-17	medium	secure-evy.pages.dev/	Crypto/Wallet
2024-04-17	medium	secure-evy.pages.dev/	Crypto/Wallet
2024-04-17	medium	secure-evy.pages.dev/	Crypto/Wallet
2024-04-17	medium	secure-evy.pages.dev/	Crypto/Wallet
2024-04-17	medium	secure-evy.pages.dev/	Crypto/Wallet
2024-04-17	medium	secure-evy.pages.dev/	Crypto/Wallet
2024-04-17	medium	secure-evy.pages.dev/	Crypto/Wallet
2024-04-17	medium	secure-evy.pages.dev/	Crypto/Wallet
2024-04-17	medium	secure-evy.pages.dev/	Crypto/Wallet
2024-04-17	medium	secure-evy.pages.dev/	Crypto/Wallet
2024-04-17	medium	secure-evy.pages.dev/	Crypto/Wallet
2024-04-17	medium	secure-evy.pages.dev/	Crypto/Wallet
2024-04-17	medium	secure-evy.pages.dev/	Crypto/Wallet
2024-04-17	medium	secure-evy.pages.dev/	Crypto/Wallet
2024-04-17	medium	secure-evy.pages.dev/	Crypto/Wallet
2024-04-17	medium	secure-evy.pages.dev/	Crypto/Wallet
2024-04-17	medium	secure-evy.pages.dev/	Crypto/Wallet
2024-04-17	medium	secure-evy.pages.dev/	Crypto/Wallet
2024-04-17	medium	secure-evy.pages.dev/	Crypto/Wallet
2024-04-17	medium	secure-evy.pages.dev/	Crypto/Wallet
2024-04-17	medium	secure-evy.pages.dev/	Crypto/Wallet
2024-04-17	medium	secure-evy.pages.dev/	Crypto/Wallet
2024-04-17	medium	secure-evy.pages.dev/	Crypto/Wallet
2024-04-17	medium	secure-evy.pages.dev/	Crypto/Wallet
2024-04-17	medium	secure-evy.pages.dev/	Crypto/Wallet
2024-04-17	medium	secure-evy.pages.dev/	Crypto/Wallet
2024-04-17	medium	secure-evy.pages.dev/	Crypto/Wallet
2024-04-17	medium	secure-evy.pages.dev/	Crypto/Wallet
2024-04-17	medium	secure-evy.pages.dev/	Crypto/Wallet
2024-04-17	medium	secure-evy.pages.dev/	Crypto/Wallet
2024-04-17	medium	secure-evy.pages.dev/	Crypto/Wallet
2024-04-17	medium	secure-evy.pages.dev/	Crypto/Wallet
2024-04-17	medium	secure-evy.pages.dev/	Crypto/Wallet
2024-04-17	medium	secure-evy.pages.dev/	Crypto/Wallet
2024-04-17	medium	secure-evy.pages.dev/	Crypto/Wallet
2024-04-17	medium	secure-evy.pages.dev/	Crypto/Wallet
2024-04-17	medium	secure-evy.pages.dev/	Crypto/Wallet
2024-04-17	medium	secure-evy.pages.dev/	Crypto/Wallet
2024-04-17	medium	secure-evy.pages.dev/	Crypto/Wallet
2024-04-17	medium	secure-evy.pages.dev/	Crypto/Wallet
2024-04-17	medium	secure-evy.pages.dev/	Crypto/Wallet
2024-04-17	medium	secure-evy.pages.dev/	Crypto/Wallet
2024-04-17	medium	secure-evy.pages.dev/	Crypto/Wallet

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (13)

	URL	Size	First Seen	Last Seen
	secure-evy.pages.dev/assets/YVgfHZMFFFQ	13 B	2023-03-07	2024-05-01
Pretty URL secure-evy.pages.dev/assets/YVgfHZMFFFQ IP 172.66.44.110 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02:14 Last Seen2024-05-01 12:43:13 Times Seen34287 Hash d8fb965e7ead2924508e97e5326bd3b1 fae376d0cb54d4433b7bdc9aba04690cd6cb5d27 57bb660c2fdf4369ff8e37f99b26963dba87c120b80c443ff3d31e030ab3a0f5 Loading...

	secure-evy.pages.dev/assets/YVgfHZMFFFQ	62 B	2023-12-30	2024-04-30
Pretty URL secure-evy.pages.dev/assets/YVgfHZMFFFQ IP 172.66.44.110 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-30 02:40:23 Last Seen2024-04-30 08:40:28 Times Seen143 Hash 00c7c82e23b3c74bffe4a8cb5906334b 9f75dba3a915001e86617685b128519cd2f678de 89b4829ea5793d63a1368fb4e64de244f97243bc9f3620dc56cf429a0caf963b Loading...

	secure-evy.pages.dev/assets/www-embed-player.js	328 kB	2024-03-15	2024-04-18
Pretty URL secure-evy.pages.dev/assets/www-embed-player.js IP 172.66.44.110 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-15 04:33:29 Last Seen2024-04-18 07:35:29 Times Seen230 Hash df0288be9f149f47d8a06512e78d4ede 07a7e882ed85717ff4177ae8322fc09ba25bd322 42a4914076688cc439ac8dbf82ed794170e03ef887d68d999db2a712d5c8f1ec Loading...

	secure-evy.pages.dev/assets/YVgfHZMFFFQ	0 B	2023-03-07	2024-05-01
Pretty URL secure-evy.pages.dev/assets/YVgfHZMFFFQ IP 172.66.44.110 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-01 12:45:19 Times Seen37244308 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	secure-evy.pages.dev/assets/cast_sender(1).js	51 kB	2024-03-31	2024-04-18
Pretty URL secure-evy.pages.dev/assets/cast_sender(1).js IP 172.66.44.110 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-31 06:19:39 Last Seen2024-04-18 07:35:29 Times Seen6 Hash 4f643bcd2156760d86ef35d2f37846f1 d5093c16614366b6a0c7887d18bbbb270421a829 765a638d2813ec1b917fc56cf90863f88991ef2550c1a14c99e9e9b243e80f74 Loading...

	secure-evy.pages.dev/assets/cast_sender.js	4.3 kB	2023-03-07	2024-04-30
Pretty URL secure-evy.pages.dev/assets/cast_sender.js IP 172.66.44.110 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:34 Last Seen2024-04-30 23:09:04 Times Seen3557 Hash b427175fa1078775eb792756e7b6d1e7 4c55c0233d3d9002b3449c025f97821f8bb8900d ee147e859ad0f09aa50367974e38ab53e7c7054c4a51d400a7f45b0eb251454f Loading...

	secure-evy.pages.dev/assets/WYTIt-NnTSB_Iq9CaAb1lyhgQsr3_6ssf6BwxEETdOI.js	52 kB	2024-03-14	2024-04-18
Pretty URL secure-evy.pages.dev/assets/WYTIt-NnTSB_Iq9CaAb1lyhgQsr3_6ssf6BwxEETdOI.js IP 172.66.44.110 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-14 21:30:19 Last Seen2024-04-18 07:35:29 Times Seen19 Hash 57100bfdded4aa26474a1e4d1a8bedc3 25dacdc6ac67d2aa09141ee00b0a6c390e047bfe 5984c8b7e3674d207f22af426806f597286042caf7ffab2c7fa070c4411374e2 Loading...

	secure-evy.pages.dev/	959 B	2023-12-31	2024-04-18
Pretty URL secure-evy.pages.dev/ IP 172.66.44.110 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-31 06:40:56 Last Seen2024-04-18 07:35:29 Times Seen6 Hash 053fdb6e0c560d43182ab194c858f64f d7739f202b748546f87e990c66c27df3dbfac34b 16ab2be4ea11f3873c304805763681e990f1bd118ab3db95cbefe3f0bbad141f Loading...

	secure-evy.pages.dev/assets/ad_status.js	29 B	2023-03-07	2024-04-18
Pretty URL secure-evy.pages.dev/assets/ad_status.js IP 172.66.44.110 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:17 Last Seen2024-04-18 07:35:29 Times Seen2735 Hash 1fa71744db23d0f8df9cce6719defcb7 e4be9b7136697942a036f97cf26ebaf703ad2067 eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9 Loading...

	secure-evy.pages.dev/assets/base.js	2.5 MB	2024-03-31	2024-04-18
Pretty URL secure-evy.pages.dev/assets/base.js IP 172.66.44.110 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-31 06:19:39 Last Seen2024-04-18 07:35:29 Times Seen3 Hash 43a6a050dc4c7026eed023a62eca2608 c35bfb8c00e85947e3662522782cbd8d6e311b27 056221d627c7c575a0bd27ff97d0520c78647040f1703c39f05b3fcdb8b86df4 Loading...

	secure-evy.pages.dev/assets/embed.js	58 kB	2024-03-31	2024-04-18
Pretty URL secure-evy.pages.dev/assets/embed.js IP 172.66.44.110 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-31 06:19:39 Last Seen2024-04-18 07:35:29 Times Seen8 Hash de0ba88834fc233fd95dfb876ef07e9b c0e31161995a37796b8a6a0003b4f3204a8857bd 09fb39b42764b79be7a53881ff168ec3363ead2a391f36ffa1d9cc9b40113c1f Loading...

	secure-evy.pages.dev/assets/remote.js	120 kB	2024-03-31	2024-04-18
Pretty URL secure-evy.pages.dev/assets/remote.js IP 172.66.44.110 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-31 06:19:38 Last Seen2024-04-18 07:35:29 Times Seen6 Hash 6f7a29ca52a5026a82e6234f7b424519 87b854b08ee8d319d72661b96d2661874b70d558 c7cade26e11dbbe6be62aa6f00ca5df8d229bf9c8e53fb11380043a156a06aa6 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 300607f8cd7a95e251e7bbce1f087e73	59 kB	2024-04-18	2024-04-18
Pretty Observations First Seen2024-04-18 07:35:29 Last Seen2024-04-18 07:35:29 Times Seen1 Hash 300607f8cd7a95e251e7bbce1f087e73 49b94d1c0719e00a500d12a420ddaf3ec95cb14c 019212155f3b6bee3041766b801fd24610995a8cae01b03f53e5974b315bf0be Loading...

HTTP Transactions (45)

URL IP Response Size

secure-evy.pages.dev/assets/sddefault.webp

172.66.44.110

200 OK

18 kB

URL GET HTTP/3
secure-evy.pages.dev/assets/sddefault.webp
IP
172.66.44.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://secure-evy.pages.dev/
Certificate
IssuerLet's Encrypt
Subjectsecure-evy.pages.dev
Fingerprint22:E5:3E:39:E5:BE:6E:74:7A:78:BA:CF:98:A9:D1:FB:3A:30:78:DA
ValidityWed, 17 Apr 2024 11:55:30 GMT - Tue, 16 Jul 2024 11:55:29 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 640x480, Scaling: [none]x[none], YUV color, decoders should clamp
Size
18 kB (18434 bytes)
Hash
d288755975f12c1b804cce683a56b56b
af27df3ca58c18ccfa231b3ad5089e11b29fb4e1
f27731898ea8846c9a9f428fb8cbe2da7c832a4bb6032af7b4b7f0c64f81de55

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /assets/sddefault.webp HTTP/1.1
Host: secure-evy.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure-evy.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 05:34:54 GMT
content-type: image/webp
content-length: 18434
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "4439c37387ac386742e09edb875b44dc"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1S4%2FYv42zbshZSMMYS3O7D74g%2FmLIf8v8%2Bq%2BLMzccLp5hfAtdcM564YdP%2FLZu9U%2BD9iv%2BoXx9n%2F2DWgFLTRztRaQ%2Bn7MdARsZeL7VTm4gV2ByHbJAC4SAWe6mtSzj0Lhvp5o4Yy7sQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876249d448cbb50b-OSL
alt-svc: h3=":443"; ma=86400

secure-evy.pages.dev/fonts/EuclidCircularB-Regular-WebXL.woff2

172.66.44.110

200 OK

36 kB

URL GET HTTP/3
secure-evy.pages.dev/fonts/EuclidCircularB-Regular-WebXL.woff2
IP
172.66.44.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://secure-evy.pages.dev/
Certificate
IssuerLet's Encrypt
Subjectsecure-evy.pages.dev
Fingerprint22:E5:3E:39:E5:BE:6E:74:7A:78:BA:CF:98:A9:D1:FB:3A:30:78:DA
ValidityWed, 17 Apr 2024 11:55:30 GMT - Tue, 16 Jul 2024 11:55:29 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (48887)
Size
36 kB (35702 bytes)
Hash
32ab8461211fc406247611530a152576
a1f2055b847555185f434aec93b795107336c0a7
0ffa10436cdc006a65dbc30714793cfbb0aabbb262bab87be661bccb1f88e7a3

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /fonts/EuclidCircularB-Regular-WebXL.woff2 HTTP/1.1
Host: secure-evy.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure-evy.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 05:34:54 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"33746ba0272a9201369ded616b26915b"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SNWTFShwz9FGkvayfZGcpDvv5uTYoPqRTWiQJao%2FWAPoq7U%2FY7gusTCtOefKwrfI6jn%2FKImOgmHF7Xg0AWIa4mur4c0J7EiWVqPP%2FT2djIoi7P4uC1fa9zBOT22GW8DGiCoifL%2FWVg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876249d448c6b50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

secure-evy.pages.dev/

172.66.44.110

200 OK

203 kB

URL User Request GET HTTP/2
secure-evy.pages.dev/
IP
172.66.44.110:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerLet's Encrypt
Subjectsecure-evy.pages.dev
Fingerprint22:E5:3E:39:E5:BE:6E:74:7A:78:BA:CF:98:A9:D1:FB:3A:30:78:DA
ValidityWed, 17 Apr 2024 11:55:30 GMT - Tue, 16 Jul 2024 11:55:29 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (48887)
Size
203 kB (203194 bytes)
Hash
32ab8461211fc406247611530a152576
a1f2055b847555185f434aec93b795107336c0a7
0ffa10436cdc006a65dbc30714793cfbb0aabbb262bab87be661bccb1f88e7a3

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET / HTTP/1.1
Host: secure-evy.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://secure-evy.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 05:34:54 GMT
content-type: text/html; charset=utf-8
content-length: 203194
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "33746ba0272a9201369ded616b26915b"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=oxIMPcy3%2Fdplg%2FGyNRiPMGuwTEq%2FypEm4vrUJObl2Xci%2FB2nUvLgr7n3A15d%2BPpCRb9AqA8AMZXua2QCsRx83r%2Bw9DNOnu%2BfHqVTmwujJ5RXrSJpNABLQ7c977qf8d%2B7gfQttY%2FUqQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876249d4d93cb50b-OSL
alt-svc: h3=":443"; ma=86400

secure-evy.pages.dev/

172.66.44.110

200 OK

203 kB

URL User Request GET HTTP/2
secure-evy.pages.dev/
IP
172.66.44.110:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerLet's Encrypt
Subjectsecure-evy.pages.dev
Fingerprint22:E5:3E:39:E5:BE:6E:74:7A:78:BA:CF:98:A9:D1:FB:3A:30:78:DA
ValidityWed, 17 Apr 2024 11:55:30 GMT - Tue, 16 Jul 2024 11:55:29 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (48887)
Size
203 kB (203194 bytes)
Hash
32ab8461211fc406247611530a152576
a1f2055b847555185f434aec93b795107336c0a7
0ffa10436cdc006a65dbc30714793cfbb0aabbb262bab87be661bccb1f88e7a3

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET / HTTP/1.1
Host: secure-evy.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://secure-evy.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 05:34:54 GMT
content-type: text/html; charset=utf-8
content-length: 203194
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "33746ba0272a9201369ded616b26915b"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=B%2BfRe2FO1R2YEsQsGCFApfQQasx%2BlInGAZB8liIuGiac5bAaLBUXdkjmreni%2BTNJieWVZTufOudELNFagxejBAhUDCZyoUjeqzu%2FzYskpk0NqxmqWPWwK10odNUZdoyrsvmPOXVJew%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876249d4e943b50b-OSL
alt-svc: h3=":443"; ma=86400

secure-evy.pages.dev/

172.66.44.110

200 OK

203 kB

URL User Request GET HTTP/2
secure-evy.pages.dev/
IP
172.66.44.110:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerLet's Encrypt
Subjectsecure-evy.pages.dev
Fingerprint22:E5:3E:39:E5:BE:6E:74:7A:78:BA:CF:98:A9:D1:FB:3A:30:78:DA
ValidityWed, 17 Apr 2024 11:55:30 GMT - Tue, 16 Jul 2024 11:55:29 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (48887)
Size
203 kB (203194 bytes)
Hash
32ab8461211fc406247611530a152576
a1f2055b847555185f434aec93b795107336c0a7
0ffa10436cdc006a65dbc30714793cfbb0aabbb262bab87be661bccb1f88e7a3

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET / HTTP/1.1
Host: secure-evy.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://secure-evy.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 05:34:54 GMT
content-type: text/html; charset=utf-8
content-length: 203194
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "33746ba0272a9201369ded616b26915b"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=STU8NqY837LGSnx84WFLt98Yncrm0XbBuBsLXnKrba6z2xYCumqYVKzqnWV3brMiwp7HVslTiFDWZ6H5AlNCpFBBQ173nf65Tfxbz158mX0iwD0yEYGVKosb9FTQYY93PtxVCVKs3A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876249d569c9b50b-OSL
alt-svc: h3=":443"; ma=86400

secure-evy.pages.dev/

172.66.44.110

200 OK

203 kB

URL User Request GET HTTP/2
secure-evy.pages.dev/
IP
172.66.44.110:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerLet's Encrypt
Subjectsecure-evy.pages.dev
Fingerprint22:E5:3E:39:E5:BE:6E:74:7A:78:BA:CF:98:A9:D1:FB:3A:30:78:DA
ValidityWed, 17 Apr 2024 11:55:30 GMT - Tue, 16 Jul 2024 11:55:29 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (48887)
Size
203 kB (203194 bytes)
Hash
32ab8461211fc406247611530a152576
a1f2055b847555185f434aec93b795107336c0a7
0ffa10436cdc006a65dbc30714793cfbb0aabbb262bab87be661bccb1f88e7a3

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET / HTTP/1.1
Host: secure-evy.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://secure-evy.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 05:34:54 GMT
content-type: text/html; charset=utf-8
content-length: 203194
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "33746ba0272a9201369ded616b26915b"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HtvYUllPi1dWzS9uYoDKsX4LSsEbDms0b7nv%2FMd70HdsPixvfZRt%2B0MaJ%2BgHIeaoJjO2%2FziyMDSkPcNj7Q4LXR5Z1EtCE396Ug9PlBdPD3mv8DUHQ2LwVgb5agN54E9Gdaao9vsNKA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876249d569d7b50b-OSL
alt-svc: h3=":443"; ma=86400

secure-evy.pages.dev/assets/Portfolio2x.png?w=1152&h=957&q=80&fm=webp

172.66.44.110

200 OK

275 kB

URL GET HTTP/3
secure-evy.pages.dev/assets/Portfolio2x.png?w=1152&h=957&q=80&fm=webp
IP
172.66.44.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://secure-evy.pages.dev/
Certificate
IssuerLet's Encrypt
Subjectsecure-evy.pages.dev
Fingerprint22:E5:3E:39:E5:BE:6E:74:7A:78:BA:CF:98:A9:D1:FB:3A:30:78:DA
ValidityWed, 17 Apr 2024 11:55:30 GMT - Tue, 16 Jul 2024 11:55:29 GMT

File type
PNG image data, 1152 x 957, 8-bit/color RGBA, non-interlaced
Size
275 kB (274866 bytes)
Hash
68d9026aacf87f89a252b79c1c095a52
c8b14884040b91cc7df3d248d696aaad49f3331a
0c0c43568e3feb53d2549d1d2184230fd22c982c9c556467941d0bf9e8fa5cb5

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /assets/Portfolio2x.png?w=1152&h=957&q=80&fm=webp HTTP/1.1
Host: secure-evy.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure-evy.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 05:34:54 GMT
content-type: image/png
content-length: 274866
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "4f136ba3f1516f2b49f804197b79604a"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FtcOPMlEuAINWrp6Q6H0YQ0jkSEYflcQyCc4q3okK6htS5q4HzmQAOyCfHy9Y0iv%2BYivRFLzdPT6cFwqjMsOqJbmNFltmJfysG0AR%2BYRzA4B4MC97koGXMW2jPBJ2ot3ZwFXlzo5QQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876249d5399db50b-OSL
alt-svc: h3=":443"; ma=86400

secure-evy.pages.dev/fonts/EuclidCircularB-Bold-WebXL.html

172.66.44.110

308 Permanent Redirect

0 B

URL GET HTTP/3
secure-evy.pages.dev/fonts/EuclidCircularB-Bold-WebXL.html
IP
172.66.44.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://secure-evy.pages.dev/
Certificate
IssuerLet's Encrypt
Subjectsecure-evy.pages.dev
Fingerprint22:E5:3E:39:E5:BE:6E:74:7A:78:BA:CF:98:A9:D1:FB:3A:30:78:DA
ValidityWed, 17 Apr 2024 11:55:30 GMT - Tue, 16 Jul 2024 11:55:29 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /fonts/EuclidCircularB-Bold-WebXL.html HTTP/1.1
Host: secure-evy.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://secure-evy.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 308 Permanent Redirect
date: Thu, 18 Apr 2024 05:34:54 GMT
content-length: 0
location: /fonts/EuclidCircularB-Bold-WebXL
access-control-allow-origin: *
referrer-policy: strict-origin-when-cross-origin
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=eMJMedP7zYFj3TUBYT7vEzcT05nUmiFhF87rOJQlvPhbWOA5%2Ft%2BVgFPG%2Fuab79vsXdvtGQRD6srMhx1%2FO%2FmBlhol%2B7NSJ4hl3y8dFo0aHBxffVREv77rzuE6CaAYzb%2F6%2FXWNNkI5Pg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876249d64ab4b50b-OSL
alt-svc: h3=":443"; ma=86400

secure-evy.pages.dev/fonts/EuclidCircularB-Regular-WebXL.html

172.66.44.110

308 Permanent Redirect

0 B

URL GET HTTP/3
secure-evy.pages.dev/fonts/EuclidCircularB-Regular-WebXL.html
IP
172.66.44.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://secure-evy.pages.dev/
Certificate
IssuerLet's Encrypt
Subjectsecure-evy.pages.dev
Fingerprint22:E5:3E:39:E5:BE:6E:74:7A:78:BA:CF:98:A9:D1:FB:3A:30:78:DA
ValidityWed, 17 Apr 2024 11:55:30 GMT - Tue, 16 Jul 2024 11:55:29 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /fonts/EuclidCircularB-Regular-WebXL.html HTTP/1.1
Host: secure-evy.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://secure-evy.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 308 Permanent Redirect
date: Thu, 18 Apr 2024 05:34:54 GMT
content-length: 0
location: /fonts/EuclidCircularB-Regular-WebXL
access-control-allow-origin: *
referrer-policy: strict-origin-when-cross-origin
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ozDjFWQqIxuZNrRh6Bj%2BTAntjnbzSxfqeTG2mFfPx0LA0FumeE6Ppmj1YygSdx3HLt2hfZuTR2bwqdilEKIX9z5oOeQrrPA%2Bhnf6E7kNjR1onU96v1LpOD3ElAg4tEvsb3cT4ruwbg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876249d64ab6b50b-OSL
alt-svc: h3=":443"; ma=86400

secure-evy.pages.dev/assets/YVgfHZMFFFQ

172.66.44.110

200 OK

52 kB

URL GET HTTP/3
secure-evy.pages.dev/assets/YVgfHZMFFFQ
IP
172.66.44.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://secure-evy.pages.dev/
Certificate
IssuerLet's Encrypt
Subjectsecure-evy.pages.dev
Fingerprint22:E5:3E:39:E5:BE:6E:74:7A:78:BA:CF:98:A9:D1:FB:3A:30:78:DA
ValidityWed, 17 Apr 2024 11:55:30 GMT - Tue, 16 Jul 2024 11:55:29 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (57119)
Size
52 kB (51462 bytes)
Hash
0b258a4d42dc33c57f784128890c4aa1
4bb8adfff4f21707dd053de4f8fda3341d0062e6
ced70e8c457b1a547ada938c6572010a334f737fecc7857c35f688dedc3a6368

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /assets/YVgfHZMFFFQ HTTP/1.1
Host: secure-evy.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure-evy.pages.dev/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 05:34:54 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"f9c19253898763b5a61356414a73d367"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EuLgxrgWlki1Je%2FjS8tIILEyHKlp0yLFWBZZDeva9s892ggMixFboyCFcc38SxfNUkE3ZM066sxVuVXwF7Vw%2FBitzGbc2quLtefyYmC5e6vkDKl7xckTuXajDqGxZjNCNm8odpbTIQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876249d4e954b50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

secure-evy.pages.dev/fonts/EuclidCircularB-Bold-WebXL

172.66.44.110

200 OK

477 B

URL GET HTTP/3
secure-evy.pages.dev/fonts/EuclidCircularB-Bold-WebXL
IP
172.66.44.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://secure-evy.pages.dev/
Certificate
IssuerLet's Encrypt
Subjectsecure-evy.pages.dev
Fingerprint22:E5:3E:39:E5:BE:6E:74:7A:78:BA:CF:98:A9:D1:FB:3A:30:78:DA
ValidityWed, 17 Apr 2024 11:55:30 GMT - Tue, 16 Jul 2024 11:55:29 GMT

File type
HTML document, ASCII text
Size
477 B (477 bytes)
Hash
fc10f358967a59750ef6fd9a698e2d60
3fc472d167c41a4193625aff84ee6e599b302002
16ce845440c38f491f80553aee7a8144dcc0a82c46258deaffdd10a0fa3d2db2

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /fonts/EuclidCircularB-Bold-WebXL HTTP/1.1
Host: secure-evy.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure-evy.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 05:34:54 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"65bd57fcb0c25d137178df399b99f2a8"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1fxuSIFdl4rFfVXPvDUvUvEoixGBMKKiUNieIQjGswY02HodIvxq7%2BqbwHfi3oeVLCQZ9YQA8helLqbQ6Ssvjt6OzhZgm7MpFzTo2adwZ4KqjZn7xMqMTCWsz%2BMIqP3ygTTV45Stug%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876249d67ae5b50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

secure-evy.pages.dev/assets/cast_sender(1).js

172.66.44.110

200 OK

15 kB

URL GET HTTP/3
secure-evy.pages.dev/assets/cast_sender(1).js
IP
172.66.44.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://secure-evy.pages.dev/assets/YVgfHZMFFFQ
Certificate
IssuerLet's Encrypt
Subjectsecure-evy.pages.dev
Fingerprint22:E5:3E:39:E5:BE:6E:74:7A:78:BA:CF:98:A9:D1:FB:3A:30:78:DA
ValidityWed, 17 Apr 2024 11:55:30 GMT - Tue, 16 Jul 2024 11:55:29 GMT

File type
JavaScript source, ASCII text, with very long lines (3536)
Size
15 kB (15174 bytes)
Hash
4f643bcd2156760d86ef35d2f37846f1
d5093c16614366b6a0c7887d18bbbb270421a829
765a638d2813ec1b917fc56cf90863f88991ef2550c1a14c99e9e9b243e80f74

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /assets/cast_sender(1).js HTTP/1.1
Host: secure-evy.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure-evy.pages.dev/assets/YVgfHZMFFFQ
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 05:34:54 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"be9bfe271078aa95b52b178ba5cc85a6"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CMVvE%2FPMQMftpGxQ9BxFIGlp2ak3KBED2taBzWf%2FPD4ZnziGEfmdRbO4Q9mE73uITuokV1PPJQgHliy%2FUsh7Tmh9jEQHwst3hLL9i6dxAU%2B6Fo7yB78isVL2pu8H%2BG6OYlmcve%2BnvA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876249d63a9db50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

secure-evy.pages.dev/assets/www-embed-player.js

172.66.44.110

200 OK

117 kB

URL GET HTTP/3
secure-evy.pages.dev/assets/www-embed-player.js
IP
172.66.44.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://secure-evy.pages.dev/assets/YVgfHZMFFFQ
Certificate
IssuerLet's Encrypt
Subjectsecure-evy.pages.dev
Fingerprint22:E5:3E:39:E5:BE:6E:74:7A:78:BA:CF:98:A9:D1:FB:3A:30:78:DA
ValidityWed, 17 Apr 2024 11:55:30 GMT - Tue, 16 Jul 2024 11:55:29 GMT

File type
JavaScript source, ASCII text, with very long lines (682)
Size
117 kB (117242 bytes)
Hash
df0288be9f149f47d8a06512e78d4ede
07a7e882ed85717ff4177ae8322fc09ba25bd322
42a4914076688cc439ac8dbf82ed794170e03ef887d68d999db2a712d5c8f1ec

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /assets/www-embed-player.js HTTP/1.1
Host: secure-evy.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure-evy.pages.dev/assets/YVgfHZMFFFQ
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 05:34:54 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"c80c7d1379a9bc9126cfb85a39a2b291"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Xchxt3zEr1TG7kb2LXb%2FhMVxpQ0TdXkhS1bckkrglrLF1SqIdUvMcOLRH4MpjIOMJxsQl44CMQ9JWcH2iUDbmD5czh%2FNaRxuHdY1PupFPJP1AAnVPEjtIC06xMTbXjbhrxAp%2FsI%2FhA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876249d63aa0b50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

secure-evy.pages.dev/assets/favicon/icon-512x512ec78.png

172.66.44.110

200 OK

48 kB

URL GET HTTP/3
secure-evy.pages.dev/assets/favicon/icon-512x512ec78.png
IP
172.66.44.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://secure-evy.pages.dev/
Certificate
IssuerLet's Encrypt
Subjectsecure-evy.pages.dev
Fingerprint22:E5:3E:39:E5:BE:6E:74:7A:78:BA:CF:98:A9:D1:FB:3A:30:78:DA
ValidityWed, 17 Apr 2024 11:55:30 GMT - Tue, 16 Jul 2024 11:55:29 GMT

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced
Size
48 kB (48027 bytes)
Hash
9ea5fd21e73199b39680374e92f9ca6b
194c9756d4b531b22871669fa2ff75059d8b344a
669e4b70e051d9e65a49bf251518a766df6cb4aac98f8f584bdf37be1f92899d

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /assets/favicon/icon-512x512ec78.png HTTP/1.1
Host: secure-evy.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure-evy.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 05:34:54 GMT
content-type: image/png
content-length: 48027
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "ad390245c3ca1c40ef0d09487e78514e"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Z5km8eKWo5BYjsubFMQuvuvBP%2FxuwMbVlB4VNAMZ%2FCYpfiZNovLgU5EjOTj4hsHxqCfuAG5x4Qijs1SyAPBvOKLnkDyhO%2FCjHBLgBQE7Db40DxH8KpXZPizxbApDkVwFctLT3d92ZA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876249d71b78b50b-OSL
alt-svc: h3=":443"; ma=86400

secure-evy.pages.dev/assets/Browse-illo.svg

172.66.44.110

200 OK

35 kB

URL GET HTTP/3
secure-evy.pages.dev/assets/Browse-illo.svg
IP
172.66.44.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://secure-evy.pages.dev/
Certificate
IssuerLet's Encrypt
Subjectsecure-evy.pages.dev
Fingerprint22:E5:3E:39:E5:BE:6E:74:7A:78:BA:CF:98:A9:D1:FB:3A:30:78:DA
ValidityWed, 17 Apr 2024 11:55:30 GMT - Tue, 16 Jul 2024 11:55:29 GMT

File type
SVG Scalable Vector Graphics image
Size
35 kB (34822 bytes)
Hash
afeafb6a9f14bd7771c63015be5a05c9
78683c75d81cf80440f083e9fb4bb2987748e290
517c0c6b44ede59070fb138aab7e875b9c230a227295f9612c32dabb9b0bdb13

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /assets/Browse-illo.svg HTTP/1.1
Host: secure-evy.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure-evy.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 05:34:54 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"6134253d571eed060b3bd54dda137272"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RY2C9H53qVut9w0c6BHFISirqWFXs2WV7tr1Dn%2B0fWQ6fWu053umydvA2PG1KGQYVJnoC6RKZW84amHS7ypzbZey%2FlD4Z%2B88%2BF%2Fp%2FFjYDIjrOw13zKyS1%2BLcQRxfTPlBlj7zv7CfQQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876249d5399bb50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4AMP6lQ.woff2

142.250.74.163

200 OK

11 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4AMP6lQ.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://secure-evy.pages.dev/assets/YVgfHZMFFFQ
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9
ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT

File type
Web Open Font Format (Version 2), TrueType, length 10788, version 1.0
Size
11 kB (10788 bytes)
Hash
709f6f90c7d493cd16b8cd087df492ab
8fb2a4d035a6f1a5290dc14b4cba324d558f1205
b79781efede37903be212fcdf63955e41c8649e678b6b83adf824459d240a188

HTTP Headers

GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4AMP6lQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://secure-evy.pages.dev/
Origin: https://secure-evy.pages.dev
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10788
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:32:53 GMT
expires: Fri, 18 Apr 2025 02:32:53 GMT
cache-control: public, max-age=31536000
age: 10921
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

secure-evy.pages.dev/fonts/EuclidCircularB-Regular-WebXL

172.66.44.110

200 OK

477 B

URL GET HTTP/3
secure-evy.pages.dev/fonts/EuclidCircularB-Regular-WebXL
IP
172.66.44.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://secure-evy.pages.dev/
Certificate
IssuerLet's Encrypt
Subjectsecure-evy.pages.dev
Fingerprint22:E5:3E:39:E5:BE:6E:74:7A:78:BA:CF:98:A9:D1:FB:3A:30:78:DA
ValidityWed, 17 Apr 2024 11:55:30 GMT - Tue, 16 Jul 2024 11:55:29 GMT

File type
HTML document, ASCII text
Size
477 B (477 bytes)
Hash
fc10f358967a59750ef6fd9a698e2d60
3fc472d167c41a4193625aff84ee6e599b302002
16ce845440c38f491f80553aee7a8144dcc0a82c46258deaffdd10a0fa3d2db2

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /fonts/EuclidCircularB-Regular-WebXL HTTP/1.1
Host: secure-evy.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure-evy.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 05:34:54 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"65bd57fcb0c25d137178df399b99f2a8"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=F2ulStSEpGm7kJG4x3XBhoIB1KUCFp%2FALkN4TunhL%2Fd6aZrCjvXa8ckg6CDygB3npiH9CmVbZxuRVmX0LUGyFccdLVkbgbdBRWEo9kwL2J%2BG2RSKGKbvXIUdtaYyWg5%2BYE9Cf0umsQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876249d67ae8b50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

secure-evy.pages.dev/assets/cast_sender.js

172.66.44.110

200 OK

13 kB

URL GET HTTP/3
secure-evy.pages.dev/assets/cast_sender.js
IP
172.66.44.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://secure-evy.pages.dev/assets/YVgfHZMFFFQ
Certificate
IssuerLet's Encrypt
Subjectsecure-evy.pages.dev
Fingerprint22:E5:3E:39:E5:BE:6E:74:7A:78:BA:CF:98:A9:D1:FB:3A:30:78:DA
ValidityWed, 17 Apr 2024 11:55:30 GMT - Tue, 16 Jul 2024 11:55:29 GMT

File type
JavaScript source, ASCII text, with very long lines (1143)
Size
13 kB (12761 bytes)
Hash
b427175fa1078775eb792756e7b6d1e7
4c55c0233d3d9002b3449c025f97821f8bb8900d
ee147e859ad0f09aa50367974e38ab53e7c7054c4a51d400a7f45b0eb251454f

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /assets/cast_sender.js HTTP/1.1
Host: secure-evy.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure-evy.pages.dev/assets/YVgfHZMFFFQ
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 05:34:54 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"b623f1697b551230ec004e510035504c"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kUMhxx3tpyhz4CjtV6roiUNghJcOw0KN%2F5AeHG0qvBKXej2IwzQtDq2QuhcZZqFbcGQw6PpJ4Ov9hi%2BXxCQTEV3N8KgyW0WizAKG6nPiNyYUD%2FpqyQkF0w5Ph9DRDr3cKaUretP86A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876249d62a8fb50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

secure-evy.pages.dev/assets/_https_/i.ytimg.com/vi/YVgfHZMFFFQ/maxresdefault.html

172.66.44.110

308 Permanent Redirect

0 B

URL GET HTTP/3
secure-evy.pages.dev/assets/_https_/i.ytimg.com/vi/YVgfHZMFFFQ/maxresdefault.html
IP
172.66.44.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://secure-evy.pages.dev/assets/YVgfHZMFFFQ
Certificate
IssuerLet's Encrypt
Subjectsecure-evy.pages.dev
Fingerprint22:E5:3E:39:E5:BE:6E:74:7A:78:BA:CF:98:A9:D1:FB:3A:30:78:DA
ValidityWed, 17 Apr 2024 11:55:30 GMT - Tue, 16 Jul 2024 11:55:29 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /assets/_https_/i.ytimg.com/vi/YVgfHZMFFFQ/maxresdefault.html HTTP/1.1
Host: secure-evy.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure-evy.pages.dev/assets/YVgfHZMFFFQ
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 308 Permanent Redirect
date: Thu, 18 Apr 2024 05:34:54 GMT
content-length: 0
location: /assets/_https_/i.ytimg.com/vi/YVgfHZMFFFQ/maxresdefault
access-control-allow-origin: *
referrer-policy: strict-origin-when-cross-origin
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TmCMqZ%2F4thrWpJGxyITP2X52Lkg4elHPDEasJ1ytKrPe%2Bc09vgL4xBmYmXB6u3jOYFbXJUSQoXC7MLGmLmimkodKEBWGGOXc9z4hoz52%2FfowqNIJpnjkW%2BizPlu1bcafSGZXw3U8IQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876249d8dd79b50b-OSL
alt-svc: h3=":443"; ma=86400

secure-evy.pages.dev/assets/www-player.css

172.66.44.110

200 OK

66 kB

URL GET HTTP/3
secure-evy.pages.dev/assets/www-player.css
IP
172.66.44.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://secure-evy.pages.dev/assets/YVgfHZMFFFQ
Certificate
IssuerLet's Encrypt
Subjectsecure-evy.pages.dev
Fingerprint22:E5:3E:39:E5:BE:6E:74:7A:78:BA:CF:98:A9:D1:FB:3A:30:78:DA
ValidityWed, 17 Apr 2024 11:55:30 GMT - Tue, 16 Jul 2024 11:55:29 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
66 kB (66263 bytes)
Hash
624590d2b233b672ca469ed046d41f86
25057e5d558fd7c7f21bbae682ad8f04012f4ebd
bd4afcb46db7748788228b1a46d2b63ca2321213e2a6710d5fff5e3e7a3136cf

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /assets/www-player.css HTTP/1.1
Host: secure-evy.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure-evy.pages.dev/assets/YVgfHZMFFFQ
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 05:34:54 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"8ce80f32b509f34a779b9020b2722d00"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=eajUSbKFCbLi6nfmDg3EQ8DnYaoJq59l8kDNA%2BtZGT1Fxl%2Fn1XWC8QrgdSNPYMB4CWSzIxXBQUXE59R5f8ly3QN6oIPR5%2FzdFh4FT%2FP%2FnbREbFoMYmx9yeMdAMIrI8JWKDpn4q3fYQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876249d63a9bb50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

secure-evy.pages.dev/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8

172.66.44.110

405 Method Not Allowed

0 B

URL POST HTTP/3
secure-evy.pages.dev/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8
IP
172.66.44.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://secure-evy.pages.dev/assets/YVgfHZMFFFQ
Certificate
IssuerLet's Encrypt
Subjectsecure-evy.pages.dev
Fingerprint22:E5:3E:39:E5:BE:6E:74:7A:78:BA:CF:98:A9:D1:FB:3A:30:78:DA
ValidityWed, 17 Apr 2024 11:55:30 GMT - Tue, 16 Jul 2024 11:55:29 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

POST /youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 HTTP/1.1
Host: secure-evy.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure-evy.pages.dev/assets/YVgfHZMFFFQ
X-Goog-Request-Time: 1713418497434
Content-Type: application/json
X-Goog-Visitor-Id: CgtDTjVjbFZOUXFIWSj7muavBjIKCgJVUxIEGgAgMg%3D%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20240313.00.00
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1713418495331&flash=0&frm=1&u_tz&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=31&bih=1024&biw=1280&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C992%2C560&vis=1&wgl=true&ca_type=image
Content-Length: 3832
Origin: https://secure-evy.pages.dev
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 405 Method Not Allowed
date: Thu, 18 Apr 2024 05:34:57 GMT
content-length: 0
access-control-allow-origin: *
referrer-policy: strict-origin-when-cross-origin
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=v%2F1vy%2B%2FGyI7qzjtwkrmmfcj0nB3WdTD9rbaVYes%2FyOdnRjt%2FQMYGIz4fqyflyMx5oDM7DB6yR4FYkzz0wi8lH4%2FoHAgqQNHSPQa8EJWhK%2FAJmVmbSuMMOP2h0ppHnA%2BQs3%2FIuSuy9Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876249e91f1fb50b-OSL
alt-svc: h3=":443"; ma=86400

secure-evy.pages.dev/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8

172.66.44.110

405 Method Not Allowed

0 B

URL POST HTTP/3
secure-evy.pages.dev/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8
IP
172.66.44.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://secure-evy.pages.dev/assets/YVgfHZMFFFQ
Certificate
IssuerLet's Encrypt
Subjectsecure-evy.pages.dev
Fingerprint22:E5:3E:39:E5:BE:6E:74:7A:78:BA:CF:98:A9:D1:FB:3A:30:78:DA
ValidityWed, 17 Apr 2024 11:55:30 GMT - Tue, 16 Jul 2024 11:55:29 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

POST /youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 HTTP/1.1
Host: secure-evy.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure-evy.pages.dev/assets/YVgfHZMFFFQ
X-Goog-Request-Time: 1713418518567
Content-Type: application/json
X-Goog-Visitor-Id: CgtDTjVjbFZOUXFIWSj7muavBjIKCgJVUxIEGgAgMg%3D%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20240313.00.00
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1713418494689&flash=0&frm=1&u_tz&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=31&bih=1024&biw=1280&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C992%2C560&vis=1&wgl=true&ca_type=image
Content-Length: 927
Origin: https://secure-evy.pages.dev
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 405 Method Not Allowed
date: Thu, 18 Apr 2024 05:35:18 GMT
content-length: 0
access-control-allow-origin: *
referrer-policy: strict-origin-when-cross-origin
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5a%2BIetOYAYrOOd%2FObMeN6qNWFe6i7ItjvRBbs7XqCC1ZJQAU4k4R%2BuXDz4JTa0yUKSrafS1AwqIUqRHYEkUy3igkIgakQ2XCDOce09sDfdCj4Rfmw26CyrhcDeFzOkKwINRz24ay2A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87624a6d993db50b-OSL
alt-svc: h3=":443"; ma=86400

secure-evy.pages.dev/fonts/EuclidCircularB-Bold-WebXL.woff2

172.66.44.110

200 OK

203 kB

URL GET HTTP/3
secure-evy.pages.dev/fonts/EuclidCircularB-Bold-WebXL.woff2
IP
172.66.44.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://secure-evy.pages.dev/
Certificate
IssuerLet's Encrypt
Subjectsecure-evy.pages.dev
Fingerprint22:E5:3E:39:E5:BE:6E:74:7A:78:BA:CF:98:A9:D1:FB:3A:30:78:DA
ValidityWed, 17 Apr 2024 11:55:30 GMT - Tue, 16 Jul 2024 11:55:29 GMT

File type

Size
203 kB (203194 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /fonts/EuclidCircularB-Bold-WebXL.woff2 HTTP/1.1
Host: secure-evy.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure-evy.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 18 Apr 2024 05:34:54 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"33746ba0272a9201369ded616b26915b"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2Bkse86EqnTjAWp0F9edkRE5TUjq%2BUsYeAavua1cHPM6WEfsFpQO8HooZGPUIAXFmW%2BnWVgyIByBOgWpV26aqqfMuMiNl9rutNgP7KkFrIgVTpRmTbiB2B2glassg7QhkIAs%2F21kM8Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876249d448cab50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

secure-evy.pages.dev/assets/base.js

172.66.44.110

200 OK

2.5 MB

URL GET HTTP/3
secure-evy.pages.dev/assets/base.js
IP
172.66.44.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://secure-evy.pages.dev/assets/YVgfHZMFFFQ
Certificate
IssuerLet's Encrypt
Subjectsecure-evy.pages.dev
Fingerprint22:E5:3E:39:E5:BE:6E:74:7A:78:BA:CF:98:A9:D1:FB:3A:30:78:DA
ValidityWed, 17 Apr 2024 11:55:30 GMT - Tue, 16 Jul 2024 11:55:29 GMT

File type

Size
2.5 MB (2518904 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /assets/base.js HTTP/1.1
Host: secure-evy.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure-evy.pages.dev/assets/YVgfHZMFFFQ
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 18 Apr 2024 05:34:54 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"8218524902cf89b3acf7848d8ed0899c"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gxl%2B4v4cMA2Y6fbewMVQ%2FmkDrQliWnR%2Fp%2FQvcu9bOske7mJ9y%2BrKYuws0Oh0j2uP2ycCTxjP72OSpKvKilbpOMvCooB0DVQtFdeN5O1Fwy2BwkzF%2Fv33nblPl7iry6OGH06%2Bo0eVxQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876249d64ab0b50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

secure-evy.pages.dev/fonts/EuclidCircularB-Regular-WebXL-2.html

172.66.44.110

308 Permanent Redirect

1.1 kB

URL GET HTTP/3
secure-evy.pages.dev/fonts/EuclidCircularB-Regular-WebXL-2.html
IP
172.66.44.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://secure-evy.pages.dev/
Certificate
IssuerLet's Encrypt
Subjectsecure-evy.pages.dev
Fingerprint22:E5:3E:39:E5:BE:6E:74:7A:78:BA:CF:98:A9:D1:FB:3A:30:78:DA
ValidityWed, 17 Apr 2024 11:55:30 GMT - Tue, 16 Jul 2024 11:55:29 GMT

File type
HTML document, ASCII text, with very long lines (1230), with no line terminators
Size
1.1 kB (1130 bytes)
Hash
3ecd454460b4423e6ae9d65e5f09446d
f77d1e9b901a3ecf319a9d6f3f9109bdf3437d61
55f426c0b6a95897e3ad2fd15ac1f8ae4117f357595c491800189387f37effc9

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /fonts/EuclidCircularB-Regular-WebXL-2.html HTTP/1.1
Host: secure-evy.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://secure-evy.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 308 Permanent Redirect
date: Thu, 18 Apr 2024 05:34:54 GMT
content-length: 0
location: /fonts/EuclidCircularB-Regular-WebXL-2
access-control-allow-origin: *
referrer-policy: strict-origin-when-cross-origin
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EQk6iChUsFpTPpiG0d9Kznhq%2FvIhPnWhvu7aN%2F4Es%2BxkxXeHFsppUrbio64TsnfHTSWupBXZJJmwscIPGMHeqj0CblcScZIS7PryhyuOupnywIXaj3YeT7mbtRoTz%2FPxCqcDSNPKrQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876249d72b8cb50b-OSL
alt-svc: h3=":443"; ma=86400

secure-evy.pages.dev/assets/wallet-illo.svg

172.66.44.110

200 OK

36 kB

URL GET HTTP/3
secure-evy.pages.dev/assets/wallet-illo.svg
IP
172.66.44.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://secure-evy.pages.dev/
Certificate
IssuerLet's Encrypt
Subjectsecure-evy.pages.dev
Fingerprint22:E5:3E:39:E5:BE:6E:74:7A:78:BA:CF:98:A9:D1:FB:3A:30:78:DA
ValidityWed, 17 Apr 2024 11:55:30 GMT - Tue, 16 Jul 2024 11:55:29 GMT

File type
SVG Scalable Vector Graphics image
Size
36 kB (36437 bytes)
Hash
63ad7f01f67accd6aafb47999640abe5
5ed10575a1a39d5b02840416a281fb1e655bd423
596228062de19a21cfda4d3129b3a5d397c5a71509e096b8f67fb8c4f22aa56d

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /assets/wallet-illo.svg HTTP/1.1
Host: secure-evy.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure-evy.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 18 Apr 2024 05:34:54 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"bf28fdd98178b017969bff160aca3cea"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AdMY1ZTQ%2BzIMOav%2BzRIopdf7%2BoEdwjUpVBhRvXjPPGBCSlA8bLu5jPQ%2FyqjkIeMPYyzQNyKUo2yeNe8mySC53LYqId0IOs28BHQpDghxqb673X%2B5amCwmY0rk%2FbpPaxX47zr2gfyIA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876249d53995b50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

secure-evy.pages.dev/assets/ad_status.js

172.66.44.110

200 OK

29 B

URL GET HTTP/3
secure-evy.pages.dev/assets/ad_status.js
IP
172.66.44.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://secure-evy.pages.dev/assets/YVgfHZMFFFQ
Certificate
IssuerLet's Encrypt
Subjectsecure-evy.pages.dev
Fingerprint22:E5:3E:39:E5:BE:6E:74:7A:78:BA:CF:98:A9:D1:FB:3A:30:78:DA
ValidityWed, 17 Apr 2024 11:55:30 GMT - Tue, 16 Jul 2024 11:55:29 GMT

File type
ASCII text, with no line terminators
Size
29 B (29 bytes)
Hash
9b0834be0bcc0bfc219a7b9108218038
2567d4f9d48feb6b9e84bb4032c81d04d2bff5d2
db41b65d7c843e0417ad066bf7aebd35b2253f2313b8d0def39da5d5a4e6a814

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /assets/ad_status.js HTTP/1.1
Host: secure-evy.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure-evy.pages.dev/assets/YVgfHZMFFFQ
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 18 Apr 2024 05:34:54 GMT
content-type: application/javascript
content-length: 29
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "b92941a35d878f0652f3ca68034110de"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uPki3TGPYoyGeyuwb6yokcYdvPcSenzUKprIN0kmQnegoq9T3PKJ%2BtGnhNB60HJMXcYB17INWQaKijQvbLTBwDWGr76dp91tkAR5EK1ond7BTgKLMquiRpK8E28ASAFLk8VtUfuNkw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876249d63a98b50b-OSL
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2

142.250.74.163

200 OK

11 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://secure-evy.pages.dev/assets/YVgfHZMFFFQ
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9
ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT

File type
Web Open Font Format (Version 2), TrueType, length 10748, version 1.0
Size
11 kB (10748 bytes)
Hash
ece6673e477b4d7aca12f04dace5ed60
f8ff7fbe231448a58d3989d84803dd66851b9988
4352380f92ce7f9a4a4a23306b992bed10055dbfffe90987cc72083e583fc280

HTTP Headers

GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://secure-evy.pages.dev/
Origin: https://secure-evy.pages.dev
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10748
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:37:12 GMT
expires: Fri, 18 Apr 2025 02:37:12 GMT
cache-control: public, max-age=31536000
age: 10662
last-modified: Mon, 16 Oct 2017 17:32:51 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

secure-evy.pages.dev/assets/_https_/i.ytimg.com/vi/YVgfHZMFFFQ/maxresdefault

172.66.44.110

200 OK

1.1 kB

URL GET HTTP/3
secure-evy.pages.dev/assets/_https_/i.ytimg.com/vi/YVgfHZMFFFQ/maxresdefault
IP
172.66.44.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://secure-evy.pages.dev/assets/YVgfHZMFFFQ
Certificate
IssuerLet's Encrypt
Subjectsecure-evy.pages.dev
Fingerprint22:E5:3E:39:E5:BE:6E:74:7A:78:BA:CF:98:A9:D1:FB:3A:30:78:DA
ValidityWed, 17 Apr 2024 11:55:30 GMT - Tue, 16 Jul 2024 11:55:29 GMT

File type
HTML document, ASCII text, with very long lines (1230), with no line terminators
Size
1.1 kB (1130 bytes)
Hash
3ecd454460b4423e6ae9d65e5f09446d
f77d1e9b901a3ecf319a9d6f3f9109bdf3437d61
55f426c0b6a95897e3ad2fd15ac1f8ae4117f357595c491800189387f37effc9

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /assets/_https_/i.ytimg.com/vi/YVgfHZMFFFQ/maxresdefault HTTP/1.1
Host: secure-evy.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure-evy.pages.dev/assets/YVgfHZMFFFQ
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 18 Apr 2024 05:34:55 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"65bd57fcb0c25d137178df399b99f2a8"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=eecLWN8VRBGHMTB20jkZR0jKMOlOKrKLlh0LzFhwtBbebJbl3cjI%2BIhIyJhtnwCzrN5IF5gj5efyLUXdYiKXKvv%2BA3g4g0FJErHC3n%2FLih%2BFbR0nb8OQG6LG1Gjw9x1CT34MoT5pGw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876249d9ce9eb50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

secure-evy.pages.dev/fonts/EuclidCircularB-Regular-WebXL-2

172.66.44.110

200 OK

1.1 kB

URL GET HTTP/3
secure-evy.pages.dev/fonts/EuclidCircularB-Regular-WebXL-2
IP
172.66.44.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://secure-evy.pages.dev/
Certificate
IssuerLet's Encrypt
Subjectsecure-evy.pages.dev
Fingerprint22:E5:3E:39:E5:BE:6E:74:7A:78:BA:CF:98:A9:D1:FB:3A:30:78:DA
ValidityWed, 17 Apr 2024 11:55:30 GMT - Tue, 16 Jul 2024 11:55:29 GMT

File type
HTML document, ASCII text, with very long lines (1230), with no line terminators
Size
1.1 kB (1130 bytes)
Hash
3ecd454460b4423e6ae9d65e5f09446d
f77d1e9b901a3ecf319a9d6f3f9109bdf3437d61
55f426c0b6a95897e3ad2fd15ac1f8ae4117f357595c491800189387f37effc9

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /fonts/EuclidCircularB-Regular-WebXL-2 HTTP/1.1
Host: secure-evy.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure-evy.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 18 Apr 2024 05:34:54 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"65bd57fcb0c25d137178df399b99f2a8"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PAgJHDqYnidV%2BlV4Td09feHIUdg1ZwEpMyn0C2T5LUNXzEKyrqTHseQVvC8EgbpfMTL6LvWaOrtiBsiz9yI6xDi0PPbTc6bDzkU8RXDeGmUWs9hoTkUn5lYt3vkZ5OlKQ9HDCSxu6A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876249d76bcbb50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

secure-evy.pages.dev/assets/_https_/yt3.ggpht.com/ytc/AIdro_lsS_0MayprFtO-KPiJFEFYdib5-RBhuZJqt_SB=s68-c-k-c0x00ffffff-no-rj_

172.66.44.110

200 OK

1.1 kB

URL GET HTTP/3
secure-evy.pages.dev/assets/_https_/yt3.ggpht.com/ytc/AIdro_lsS_0MayprFtO-KPiJFEFYdib5-RBhuZJqt_SB=s68-c-k-c0x00ffffff-no-rj_
IP
172.66.44.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://secure-evy.pages.dev/assets/YVgfHZMFFFQ
Certificate
IssuerLet's Encrypt
Subjectsecure-evy.pages.dev
Fingerprint22:E5:3E:39:E5:BE:6E:74:7A:78:BA:CF:98:A9:D1:FB:3A:30:78:DA
ValidityWed, 17 Apr 2024 11:55:30 GMT - Tue, 16 Jul 2024 11:55:29 GMT

File type
HTML document, ASCII text, with very long lines (1234), with no line terminators
Size
1.1 kB (1134 bytes)
Hash
b4edb88d9a74f96d5c9aa7367860f343
d53ab176a993bb940f6ac828f8fd5a50c92bf17a
a10bbe06843f7421c34be66728d2a801bac52348c7f8f9e12e4e6cd956d5f058

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /assets/_https_/yt3.ggpht.com/ytc/AIdro_lsS_0MayprFtO-KPiJFEFYdib5-RBhuZJqt_SB=s68-c-k-c0x00ffffff-no-rj_ HTTP/1.1
Host: secure-evy.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure-evy.pages.dev/assets/YVgfHZMFFFQ
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 18 Apr 2024 05:34:55 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"1904c142f3d18107c1a64ed31dd9fa08"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=eN2Uw%2BZuwkRirWMHnVArV7QfyDQwLl2FYQqz6VP5A2i2sxBeNwuiA2knq3NtqFMnK3f%2F8FhFD%2B1XR9hdGah17D2FAIkK0Yw%2F2pGyp%2B8ZcTEzmP75fZFZytxHGT1wjCcL1Xxxgr3miA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876249d9ce97b50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

secure-evy.pages.dev/assets/YVgfHZMFFFQ.html

172.66.44.110

308 Permanent Redirect

141 kB

URL GET HTTP/3
secure-evy.pages.dev/assets/YVgfHZMFFFQ.html
IP
172.66.44.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://secure-evy.pages.dev/
Certificate
IssuerLet's Encrypt
Subjectsecure-evy.pages.dev
Fingerprint22:E5:3E:39:E5:BE:6E:74:7A:78:BA:CF:98:A9:D1:FB:3A:30:78:DA
ValidityWed, 17 Apr 2024 11:55:30 GMT - Tue, 16 Jul 2024 11:55:29 GMT

File type

Size
141 kB (141260 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /assets/YVgfHZMFFFQ.html HTTP/1.1
Host: secure-evy.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure-evy.pages.dev/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 308 Permanent Redirect
date: Thu, 18 Apr 2024 05:34:54 GMT
content-length: 0
location: /assets/YVgfHZMFFFQ
access-control-allow-origin: *
referrer-policy: strict-origin-when-cross-origin
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Uol5iJuTCPT7lMGWlQhL83xa7yQwlXEzZ9%2FbI3Gqj83NtKyEcTg7srPzI60bmS6WDhnUlVh3ksdPHJIgxCmqC8HbopKw5Pn8IljQxio8miwrtsUJR8jLjXZx%2FXQpB%2FDEJ%2Bntijacww%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876249d4c92eb50b-OSL
alt-svc: h3=":443"; ma=86400

secure-evy.pages.dev/fonts/EuclidCircularB-Bold-WebXL-2.html

172.66.44.110

308 Permanent Redirect

1.1 kB

URL GET HTTP/3
secure-evy.pages.dev/fonts/EuclidCircularB-Bold-WebXL-2.html
IP
172.66.44.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://secure-evy.pages.dev/
Certificate
IssuerLet's Encrypt
Subjectsecure-evy.pages.dev
Fingerprint22:E5:3E:39:E5:BE:6E:74:7A:78:BA:CF:98:A9:D1:FB:3A:30:78:DA
ValidityWed, 17 Apr 2024 11:55:30 GMT - Tue, 16 Jul 2024 11:55:29 GMT

File type
HTML document, ASCII text, with very long lines (1230), with no line terminators
Size
1.1 kB (1130 bytes)
Hash
3ecd454460b4423e6ae9d65e5f09446d
f77d1e9b901a3ecf319a9d6f3f9109bdf3437d61
55f426c0b6a95897e3ad2fd15ac1f8ae4117f357595c491800189387f37effc9

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /fonts/EuclidCircularB-Bold-WebXL-2.html HTTP/1.1
Host: secure-evy.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://secure-evy.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 308 Permanent Redirect
date: Thu, 18 Apr 2024 05:34:54 GMT
content-length: 0
location: /fonts/EuclidCircularB-Bold-WebXL-2
access-control-allow-origin: *
referrer-policy: strict-origin-when-cross-origin
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=h2%2BzxR0a%2FXSRYlNWsPwWB%2Be5eGK%2Fm3DmMadzb2Qd2uvxhBgszlURC6shQmVH3wXkZGyCXn31qQQto0adbDRj9fDACgdOcIgWHu8vvmVpX%2Fo9dFE9fEbv5qtLF%2FL7obOTC%2BhltvAyWA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876249d72b86b50b-OSL
alt-svc: h3=":443"; ma=86400

secure-evy.pages.dev/fonts/EuclidCircularB-Bold-WebXL-2

172.66.44.110

200 OK

1.1 kB

URL GET HTTP/3
secure-evy.pages.dev/fonts/EuclidCircularB-Bold-WebXL-2
IP
172.66.44.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://secure-evy.pages.dev/
Certificate
IssuerLet's Encrypt
Subjectsecure-evy.pages.dev
Fingerprint22:E5:3E:39:E5:BE:6E:74:7A:78:BA:CF:98:A9:D1:FB:3A:30:78:DA
ValidityWed, 17 Apr 2024 11:55:30 GMT - Tue, 16 Jul 2024 11:55:29 GMT

File type
HTML document, ASCII text, with very long lines (1230), with no line terminators
Size
1.1 kB (1130 bytes)
Hash
3ecd454460b4423e6ae9d65e5f09446d
f77d1e9b901a3ecf319a9d6f3f9109bdf3437d61
55f426c0b6a95897e3ad2fd15ac1f8ae4117f357595c491800189387f37effc9

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /fonts/EuclidCircularB-Bold-WebXL-2 HTTP/1.1
Host: secure-evy.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure-evy.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 18 Apr 2024 05:34:54 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"65bd57fcb0c25d137178df399b99f2a8"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CnvlNFjeFYE%2FWXP21IeoqFB2jcXOLyAVARuivOCJxjEJkE8phuzul9MU7NnceW611rgv2pSFcyZ%2FLl0KmRUnE0xWnVBoLKkbS%2BQs0u2HZLmRGiEjex%2FB2soLlTbE%2BMg4RIL%2FjqnflA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876249d76bc6b50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

secure-evy.pages.dev/assets/Explore-illo.svg

172.66.44.110

200 OK

37 kB

URL GET HTTP/3
secure-evy.pages.dev/assets/Explore-illo.svg
IP
172.66.44.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://secure-evy.pages.dev/
Certificate
IssuerLet's Encrypt
Subjectsecure-evy.pages.dev
Fingerprint22:E5:3E:39:E5:BE:6E:74:7A:78:BA:CF:98:A9:D1:FB:3A:30:78:DA
ValidityWed, 17 Apr 2024 11:55:30 GMT - Tue, 16 Jul 2024 11:55:29 GMT

File type
SVG Scalable Vector Graphics image
Size
37 kB (36835 bytes)
Hash
46fb450c5ecf6da758bca0975551f056
629157e884b450ecf5a94d38d736db3c7428245f
8ba2b37fd4f2f3c19c10109bc6111d3d71692c78f9351f1eb2a8cab5231b77b5

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /assets/Explore-illo.svg HTTP/1.1
Host: secure-evy.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure-evy.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 18 Apr 2024 05:34:54 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"70edc0e650d6ab7527f8d6944e346bef"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6IoEKzxscgwrhDHQ0ZkbWvnSHuLRJqZaeIW6CX403kXb31a91HCx3pabnXeMCHfc%2FTN6EYXw%2FA2Bl6xC%2Fbr7cJGdD8nT8BMgo35oOdbJiFatcOjF3%2Bdzb51f4OiJgIm56jQwKv5XBg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876249d53998b50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

secure-evy.pages.dev/

172.66.44.110

200 OK

203 kB

URL GET HTTP/3
secure-evy.pages.dev/
IP
172.66.44.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://secure-evy.pages.dev/
Certificate
IssuerLet's Encrypt
Subjectsecure-evy.pages.dev
Fingerprint22:E5:3E:39:E5:BE:6E:74:7A:78:BA:CF:98:A9:D1:FB:3A:30:78:DA
ValidityWed, 17 Apr 2024 11:55:30 GMT - Tue, 16 Jul 2024 11:55:29 GMT

File type

Size
203 kB (203194 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET / HTTP/1.1
Host: secure-evy.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://secure-evy.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 18 Apr 2024 05:34:54 GMT
content-type: text/html; charset=utf-8
content-length: 203194
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "33746ba0272a9201369ded616b26915b"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=STU8NqY837LGSnx84WFLt98Yncrm0XbBuBsLXnKrba6z2xYCumqYVKzqnWV3brMiwp7HVslTiFDWZ6H5AlNCpFBBQ173nf65Tfxbz158mX0iwD0yEYGVKosb9FTQYY93PtxVCVKs3A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876249d569c9b50b-OSL
alt-svc: h3=":443"; ma=86400

secure-evy.pages.dev/

172.66.44.110

200 OK

203 kB

URL GET HTTP/3
secure-evy.pages.dev/
IP
172.66.44.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://secure-evy.pages.dev/
Certificate
IssuerLet's Encrypt
Subjectsecure-evy.pages.dev
Fingerprint22:E5:3E:39:E5:BE:6E:74:7A:78:BA:CF:98:A9:D1:FB:3A:30:78:DA
ValidityWed, 17 Apr 2024 11:55:30 GMT - Tue, 16 Jul 2024 11:55:29 GMT

File type

Size
203 kB (203194 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET / HTTP/1.1
Host: secure-evy.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://secure-evy.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 18 Apr 2024 05:34:54 GMT
content-type: text/html; charset=utf-8
content-length: 203194
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "33746ba0272a9201369ded616b26915b"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HtvYUllPi1dWzS9uYoDKsX4LSsEbDms0b7nv%2FMd70HdsPixvfZRt%2B0MaJ%2BgHIeaoJjO2%2FziyMDSkPcNj7Q4LXR5Z1EtCE396Ug9PlBdPD3mv8DUHQ2LwVgb5agN54E9Gdaao9vsNKA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876249d569d7b50b-OSL
alt-svc: h3=":443"; ma=86400

secure-evy.pages.dev/assets/favicon-32x32ec78.png

172.66.44.110

200 OK

2.2 kB

URL GET HTTP/3
secure-evy.pages.dev/assets/favicon-32x32ec78.png
IP
172.66.44.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://secure-evy.pages.dev/
Certificate
IssuerLet's Encrypt
Subjectsecure-evy.pages.dev
Fingerprint22:E5:3E:39:E5:BE:6E:74:7A:78:BA:CF:98:A9:D1:FB:3A:30:78:DA
ValidityWed, 17 Apr 2024 11:55:30 GMT - Tue, 16 Jul 2024 11:55:29 GMT

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
Size
2.2 kB (2228 bytes)
Hash
91516ee931622cc04ff32e6faab859ee
21509164f65500e8ab82cbbc21be0ec128d0ff70
0d1233a78555b58544d634be26bd0216da1166b2cf64b13fe2b7c9cb6bff1641

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /assets/favicon-32x32ec78.png HTTP/1.1
Host: secure-evy.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure-evy.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 18 Apr 2024 05:34:54 GMT
content-type: image/png
content-length: 2228
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "42103b4560a31044d81894c27a237512"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gikRI75kiwBXor0vC6OtBP15KCDjKLU9ZDKPcrT8NmG0N8HSHRlZtX2bYMyOOj0ruTmGKqcZ%2BbVb5%2FFDyE0IwVhyML1e6lE9lzUzHDgQ9NQMRZ69%2FioEU8sdwwPseoPTm3IxTnxxsw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876249d71b7ab50b-OSL
alt-svc: h3=":443"; ma=86400

secure-evy.pages.dev/assets/_https_/yt3.ggpht.com/ytc/AIdro_lsS_0MayprFtO-KPiJFEFYdib5-RBhuZJqt_SB%3ds68-c-k-c0x00ffffff-no-rj_.html

172.66.44.110

308 Permanent Redirect

1.1 kB

URL GET HTTP/3
secure-evy.pages.dev/assets/_https_/yt3.ggpht.com/ytc/AIdro_lsS_0MayprFtO-KPiJFEFYdib5-RBhuZJqt_SB%3ds68-c-k-c0x00ffffff-no-rj_.html
IP
172.66.44.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://secure-evy.pages.dev/assets/YVgfHZMFFFQ
Certificate
IssuerLet's Encrypt
Subjectsecure-evy.pages.dev
Fingerprint22:E5:3E:39:E5:BE:6E:74:7A:78:BA:CF:98:A9:D1:FB:3A:30:78:DA
ValidityWed, 17 Apr 2024 11:55:30 GMT - Tue, 16 Jul 2024 11:55:29 GMT

File type
HTML document, ASCII text, with very long lines (1234), with no line terminators
Size
1.1 kB (1134 bytes)
Hash
b4edb88d9a74f96d5c9aa7367860f343
d53ab176a993bb940f6ac828f8fd5a50c92bf17a
a10bbe06843f7421c34be66728d2a801bac52348c7f8f9e12e4e6cd956d5f058

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /assets/_https_/yt3.ggpht.com/ytc/AIdro_lsS_0MayprFtO-KPiJFEFYdib5-RBhuZJqt_SB%3ds68-c-k-c0x00ffffff-no-rj_.html HTTP/1.1
Host: secure-evy.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure-evy.pages.dev/assets/YVgfHZMFFFQ
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 308 Permanent Redirect
date: Thu, 18 Apr 2024 05:34:54 GMT
content-length: 0
location: /assets/_https_/yt3.ggpht.com/ytc/AIdro_lsS_0MayprFtO-KPiJFEFYdib5-RBhuZJqt_SB=s68-c-k-c0x00ffffff-no-rj_
access-control-allow-origin: *
referrer-policy: strict-origin-when-cross-origin
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5e%2FYrND6MXewa9tPbM2I%2BB5Fk4EdiGreCG8gRecmjtT9jRI6gijcUvkFpWIDLMczQ6CVLsnF901IYvvfzRmH42VzRRh61gMSU%2BCWcNOFgfhfQNItXLK8dgJ0RSjA4dYvH8t2Vy4d9w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876249d8dd76b50b-OSL
alt-svc: h3=":443"; ma=86400

secure-evy.pages.dev/

172.66.44.110

200 OK

203 kB

URL GET HTTP/3
secure-evy.pages.dev/
IP
172.66.44.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://secure-evy.pages.dev/
Certificate
IssuerLet's Encrypt
Subjectsecure-evy.pages.dev
Fingerprint22:E5:3E:39:E5:BE:6E:74:7A:78:BA:CF:98:A9:D1:FB:3A:30:78:DA
ValidityWed, 17 Apr 2024 11:55:30 GMT - Tue, 16 Jul 2024 11:55:29 GMT

File type

Size
203 kB (203194 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET / HTTP/1.1
Host: secure-evy.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://secure-evy.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 18 Apr 2024 05:34:54 GMT
content-type: text/html; charset=utf-8
content-length: 203194
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "33746ba0272a9201369ded616b26915b"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=B%2BfRe2FO1R2YEsQsGCFApfQQasx%2BlInGAZB8liIuGiac5bAaLBUXdkjmreni%2BTNJieWVZTufOudELNFagxejBAhUDCZyoUjeqzu%2FzYskpk0NqxmqWPWwK10odNUZdoyrsvmPOXVJew%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876249d4e943b50b-OSL
alt-svc: h3=":443"; ma=86400

secure-evy.pages.dev/assets/embed.js

172.66.44.110

200 OK

58 kB

URL GET HTTP/3
secure-evy.pages.dev/assets/embed.js
IP
172.66.44.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://secure-evy.pages.dev/assets/YVgfHZMFFFQ
Certificate
IssuerLet's Encrypt
Subjectsecure-evy.pages.dev
Fingerprint22:E5:3E:39:E5:BE:6E:74:7A:78:BA:CF:98:A9:D1:FB:3A:30:78:DA
ValidityWed, 17 Apr 2024 11:55:30 GMT - Tue, 16 Jul 2024 11:55:29 GMT

File type
JavaScript source, ASCII text, with very long lines (3391)
Size
58 kB (58353 bytes)
Hash
de0ba88834fc233fd95dfb876ef07e9b
c0e31161995a37796b8a6a0003b4f3204a8857bd
09fb39b42764b79be7a53881ff168ec3363ead2a391f36ffa1d9cc9b40113c1f

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /assets/embed.js HTTP/1.1
Host: secure-evy.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure-evy.pages.dev/assets/YVgfHZMFFFQ
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 18 Apr 2024 05:34:54 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"e16066ffcc02f6400dfec69632b68b9f"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AHhlaP1jQoC4bLIetAYSLSs2huiSLnUMm9Ia1psfvUJa%2BQ8CbNFoO6st7ZvC9rbFZJmFzUJJTkWyjw2UH6w1HvQh4voFk0GCQETgOOfXUtdHWGorFCBKOU1gqtPlRW0B5gdecu%2FJ2A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876249d62a92b50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

secure-evy.pages.dev/assets/remote.js

172.66.44.110

200 OK

120 kB

URL GET HTTP/3
secure-evy.pages.dev/assets/remote.js
IP
172.66.44.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://secure-evy.pages.dev/assets/YVgfHZMFFFQ
Certificate
IssuerLet's Encrypt
Subjectsecure-evy.pages.dev
Fingerprint22:E5:3E:39:E5:BE:6E:74:7A:78:BA:CF:98:A9:D1:FB:3A:30:78:DA
ValidityWed, 17 Apr 2024 11:55:30 GMT - Tue, 16 Jul 2024 11:55:29 GMT

File type
JavaScript source, ASCII text, with very long lines (538)
Size
120 kB (120230 bytes)
Hash
6f7a29ca52a5026a82e6234f7b424519
87b854b08ee8d319d72661b96d2661874b70d558
c7cade26e11dbbe6be62aa6f00ca5df8d229bf9c8e53fb11380043a156a06aa6

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /assets/remote.js HTTP/1.1
Host: secure-evy.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure-evy.pages.dev/assets/YVgfHZMFFFQ
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 18 Apr 2024 05:34:54 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"0df04e226ff68494c979b5314070982b"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GnS1xXOSultt76JJ3UNQf0lMQ5Hl3VJlcqiJGUgIRrEMq6RmeLgJaOm6BpcwE7vJvhfVJ%2BSepVXklTA3yrI%2FFEDbZa5o3gRPwna62Ds5WNFFaj%2BGnM7pDkRUguDpMCbmPGdEiY%2FEfQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876249d62a96b50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

secure-evy.pages.dev/

172.66.44.110

200 OK

203 kB

URL GET HTTP/3
secure-evy.pages.dev/
IP
172.66.44.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://secure-evy.pages.dev/
Certificate
IssuerLet's Encrypt
Subjectsecure-evy.pages.dev
Fingerprint22:E5:3E:39:E5:BE:6E:74:7A:78:BA:CF:98:A9:D1:FB:3A:30:78:DA
ValidityWed, 17 Apr 2024 11:55:30 GMT - Tue, 16 Jul 2024 11:55:29 GMT

File type

Size
203 kB (203194 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET / HTTP/1.1
Host: secure-evy.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://secure-evy.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 18 Apr 2024 05:34:54 GMT
content-type: text/html; charset=utf-8
content-length: 203194
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "33746ba0272a9201369ded616b26915b"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=oxIMPcy3%2Fdplg%2FGyNRiPMGuwTEq%2FypEm4vrUJObl2Xci%2FB2nUvLgr7n3A15d%2BPpCRb9AqA8AMZXua2QCsRx83r%2Bw9DNOnu%2BfHqVTmwujJ5RXrSJpNABLQ7c977qf8d%2B7gfQttY%2FUqQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876249d4d93cb50b-OSL
alt-svc: h3=":443"; ma=86400

secure-evy.pages.dev/assets/WYTIt-NnTSB_Iq9CaAb1lyhgQsr3_6ssf6BwxEETdOI.js

172.66.44.110

200 OK

52 kB

URL GET HTTP/3
secure-evy.pages.dev/assets/WYTIt-NnTSB_Iq9CaAb1lyhgQsr3_6ssf6BwxEETdOI.js
IP
172.66.44.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://secure-evy.pages.dev/assets/YVgfHZMFFFQ
Certificate
IssuerLet's Encrypt
Subjectsecure-evy.pages.dev
Fingerprint22:E5:3E:39:E5:BE:6E:74:7A:78:BA:CF:98:A9:D1:FB:3A:30:78:DA
ValidityWed, 17 Apr 2024 11:55:30 GMT - Tue, 16 Jul 2024 11:55:29 GMT

File type
JavaScript source, ASCII text, with very long lines (50961)
Size
52 kB (52220 bytes)
Hash
57100bfdded4aa26474a1e4d1a8bedc3
25dacdc6ac67d2aa09141ee00b0a6c390e047bfe
5984c8b7e3674d207f22af426806f597286042caf7ffab2c7fa070c4411374e2

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /assets/WYTIt-NnTSB_Iq9CaAb1lyhgQsr3_6ssf6BwxEETdOI.js HTTP/1.1
Host: secure-evy.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure-evy.pages.dev/assets/YVgfHZMFFFQ
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 18 Apr 2024 05:34:54 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"dbfa80132a695fe764a7a5eed4e5138f"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=y51IGsu6YefWNl9QIRNODQiLS0mvfEc5KPa%2F4E%2BhoLQvC%2BDWgdS5HhDoYMraBMtAAAvXrr%2BxOcVRKv7rMb8kuy5xl%2FRw5mZBbUN6Lte%2FtHsj%2Fo6Ufp9O3XNz8gs8Sb7kvhUYFtfQNw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876249d62a93b50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

secure-evy.pages.dev/assets/embed.js

172.66.44.110

200 OK

58 kB

URL GET HTTP/3
secure-evy.pages.dev/assets/embed.js
IP
172.66.44.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://secure-evy.pages.dev/assets/YVgfHZMFFFQ
Certificate
IssuerLet's Encrypt
Subjectsecure-evy.pages.dev
Fingerprint22:E5:3E:39:E5:BE:6E:74:7A:78:BA:CF:98:A9:D1:FB:3A:30:78:DA
ValidityWed, 17 Apr 2024 11:55:30 GMT - Tue, 16 Jul 2024 11:55:29 GMT

File type
JavaScript source, ASCII text, with very long lines (3391)
Size
58 kB (58353 bytes)
Hash
de0ba88834fc233fd95dfb876ef07e9b
c0e31161995a37796b8a6a0003b4f3204a8857bd
09fb39b42764b79be7a53881ff168ec3363ead2a391f36ffa1d9cc9b40113c1f

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /assets/embed.js HTTP/1.1
Host: secure-evy.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure-evy.pages.dev/assets/YVgfHZMFFFQ
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 18 Apr 2024 05:34:54 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"e16066ffcc02f6400dfec69632b68b9f"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AbaZBeF192e6frNZErABn2qUvCPamPZIZaa7IugIno4oFYip3feB%2Bok4zLChhkkwLvc6QfaMVoRqojt4%2BtG0bpmpNXwyEmTOp%2BjsLDbPH7%2BeeiChDO%2Fs1%2FgLvsrwSiu5O8xms%2B3oDQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876249d77bd7b50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (13)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML