| | 202.95.12.150 | 200 OK | 5.1 kB |
URL User Request GET HTTP/1.1IP202.95.12.150:443 ASN#64050 BGPNET Global ASN
CertificateIssuerLet's Encrypt Subjecttelegramnet.org Fingerprint44:BE:DC:F4:25:13:0D:09:12:FA:6A:D2:A7:47:BE:5C:0E:B0:B7:1C ValidityWed, 17 Apr 2024 00:46:22 GMT - Tue, 16 Jul 2024 00:46:21 GMT
File typeHTML document, ASCII text, with very long lines (1757), with CRLF, CR, LF line terminators Hash4f1b2e2299319477bcab8807600ebabb 0b7c6f1e0fd79d96532fe3dd64f02017110fc693 03f5df5531aeecd9795afdacf6b474781bc0330d68481cabc7014b9f86573c91
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET / HTTP/1.1
Host: telegramnet.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.14.1
Date: Wed, 17 Apr 2024 17:09:45 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: no-store
Accept-Ranges: bytes
Last-Modified: Wed, 17 Apr 2024 11:13:32 GMT
ETag: W/"35c0-18eebc30b60"
Vary: Accept-Encoding
Content-Encoding: gzip
|
|
| telegramnet.org/index-vAd8J_Yp.js | 202.95.12.150 | 200 OK | 48 kB |
URL GET HTTP/1.1telegramnet.org/index-vAd8J_Yp.js IP202.95.12.150:443 ASN#64050 BGPNET Global ASN
CertificateIssuerLet's Encrypt Subjecttelegramnet.org Fingerprint44:BE:DC:F4:25:13:0D:09:12:FA:6A:D2:A7:47:BE:5C:0E:B0:B7:1C ValidityWed, 17 Apr 2024 00:46:22 GMT - Tue, 16 Jul 2024 00:46:21 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (63438), with no line terminators Hashbadba588c58a19457879bf450b7dd9b5 fa26ce106ae5f53444453594e13fe610c8a385a1 af217535e540fda67e66c35d430ea4a62ae7a16f4ae352823d21694aca60c78a
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /index-vAd8J_Yp.js HTTP/1.1
Host: telegramnet.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://telegramnet.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.14.1
Date: Wed, 17 Apr 2024 17:09:45 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: no-store
Accept-Ranges: bytes
Last-Modified: Wed, 17 Apr 2024 11:13:32 GMT
ETag: W/"20bef-18eebc30b60"
Vary: Accept-Encoding
Content-Encoding: gzip
|
|
| telegramnet.org/index-rRV5aYAD.css | 202.95.12.150 | 200 OK | 78 kB |
URL GET HTTP/1.1telegramnet.org/index-rRV5aYAD.css IP202.95.12.150:443 ASN#64050 BGPNET Global ASN
CertificateIssuerLet's Encrypt Subjecttelegramnet.org Fingerprint44:BE:DC:F4:25:13:0D:09:12:FA:6A:D2:A7:47:BE:5C:0E:B0:B7:1C ValidityWed, 17 Apr 2024 00:46:22 GMT - Tue, 16 Jul 2024 00:46:21 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hash84b8813e926c91631cea2631cb4f475d 690f73d7c778c52f841b21851ac0fd7d49e2fa9f 26cb94e8188b97af200a0f982ace544ddf7a35d2f53b48458baeada0c5ee61c5
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /index-rRV5aYAD.css HTTP/1.1
Host: telegramnet.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://telegramnet.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.14.1
Date: Wed, 17 Apr 2024 17:09:45 GMT
Content-Type: text/css; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: no-store
Accept-Ranges: bytes
Last-Modified: Wed, 17 Apr 2024 11:13:32 GMT
ETag: W/"6f1d9-18eebc30b60"
Vary: Accept-Encoding
Content-Encoding: gzip
|
|
| telegramnet.org/assets/fonts/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2 | 202.95.12.150 | 200 OK | 11 kB |
URL GET HTTP/1.1telegramnet.org/assets/fonts/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2 IP202.95.12.150:443 ASN#64050 BGPNET Global ASN
CertificateIssuerLet's Encrypt Subjecttelegramnet.org Fingerprint44:BE:DC:F4:25:13:0D:09:12:FA:6A:D2:A7:47:BE:5C:0E:B0:B7:1C ValidityWed, 17 Apr 2024 00:46:22 GMT - Tue, 16 Jul 2024 00:46:21 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 11016, version 1.0 Hash15fa3062f8929bd3b05fdca5259db412 6ff06a34f68ad0324ddec1bbe4d453c959178b36 5d1bc9b443f3f81fa4b4ad4634c1bb9702194c1898e3a9de0ab5e2cdc0e9f479
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /assets/fonts/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2 HTTP/1.1
Host: telegramnet.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://telegramnet.org/index-rRV5aYAD.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.14.1
Date: Wed, 17 Apr 2024 17:09:46 GMT
Content-Type: font/woff2
Content-Length: 11016
Connection: keep-alive
X-Powered-By: Express
Cache-Control: no-store
Accept-Ranges: bytes
Last-Modified: Thu, 21 Mar 2024 12:37:16 GMT
ETag: W/"2b08-18e61040060"
|
|
| telegramnet.org/crypto.worker-ChwaR_2f.js | 202.95.12.150 | 200 OK | 24 kB |
URL GET HTTP/1.1telegramnet.org/crypto.worker-ChwaR_2f.js IP202.95.12.150:443 ASN#64050 BGPNET Global ASN
CertificateIssuerLet's Encrypt Subjecttelegramnet.org Fingerprint44:BE:DC:F4:25:13:0D:09:12:FA:6A:D2:A7:47:BE:5C:0E:B0:B7:1C ValidityWed, 17 Apr 2024 00:46:22 GMT - Tue, 16 Jul 2024 00:46:21 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (65528), with no line terminators Hash7470dc26209d106b6b0ba6599da1afa6 dee2f30ef2aff8f2a72fb9e6f109c5c04f30930a 35dd12893d8e04183966ca0d412f923255e70135a1568ddf45a5a236fb4580ed
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /crypto.worker-ChwaR_2f.js HTTP/1.1
Host: telegramnet.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://telegramnet.org/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.14.1
Date: Wed, 17 Apr 2024 17:09:46 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: no-store
Accept-Ranges: bytes
Last-Modified: Wed, 17 Apr 2024 11:13:32 GMT
ETag: W/"10cf0-18eebc30b60"
Vary: Accept-Encoding
Content-Encoding: gzip
|
|
| telegramnet.org/lang-6_YFwd9o.js | 202.95.12.150 | 200 OK | 34 kB |
URL GET HTTP/1.1telegramnet.org/lang-6_YFwd9o.js IP202.95.12.150:443 ASN#64050 BGPNET Global ASN
CertificateIssuerLet's Encrypt Subjecttelegramnet.org Fingerprint44:BE:DC:F4:25:13:0D:09:12:FA:6A:D2:A7:47:BE:5C:0E:B0:B7:1C ValidityWed, 17 Apr 2024 00:46:22 GMT - Tue, 16 Jul 2024 00:46:21 GMT
File typeUnicode text, UTF-8 text, with very long lines (14604) Hashea4ae35b4e5fe0283ee0b975411d3bbc 708335577d0e938f3ae14425ceed901f4c3c9baf 75fe821bc451433c2a795b7a2ba7fee10d0e902693ea36f2371e1051e7d710c0
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /lang-6_YFwd9o.js HTTP/1.1
Host: telegramnet.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://telegramnet.org/index-vAd8J_Yp.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.14.1
Date: Wed, 17 Apr 2024 17:09:46 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: no-store
Accept-Ranges: bytes
Last-Modified: Wed, 17 Apr 2024 11:13:32 GMT
ETag: W/"1d594-18eebc30b60"
Vary: Accept-Encoding
Content-Encoding: gzip
|
|
| telegramnet.org/langSign-lcKrqmwM.js | 202.95.12.150 | 200 OK | 812 B |
URL GET HTTP/1.1telegramnet.org/langSign-lcKrqmwM.js IP202.95.12.150:443 ASN#64050 BGPNET Global ASN
CertificateIssuerLet's Encrypt Subjecttelegramnet.org Fingerprint44:BE:DC:F4:25:13:0D:09:12:FA:6A:D2:A7:47:BE:5C:0E:B0:B7:1C ValidityWed, 17 Apr 2024 00:46:22 GMT - Tue, 16 Jul 2024 00:46:21 GMT
File typeASCII text, with very long lines (895) Hash044169c42b6e355439c8fcc5fa4ecc57 5933a11ae125770fe2e3e2deb907af978ceff0e8 900f22723c45f67600638812021437a089daa7c2f0a559ebb85a0726183cee79
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /langSign-lcKrqmwM.js HTTP/1.1
Host: telegramnet.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://telegramnet.org/index-vAd8J_Yp.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.14.1
Date: Wed, 17 Apr 2024 17:09:47 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: no-store
Accept-Ranges: bytes
Last-Modified: Wed, 17 Apr 2024 11:13:32 GMT
ETag: W/"66e-18eebc30b60"
Vary: Accept-Encoding
Content-Encoding: gzip
|
|
| telegramnet.org/countries-lRU-UavE.js | 202.95.12.150 | 200 OK | 4.0 kB |
URL GET HTTP/1.1telegramnet.org/countries-lRU-UavE.js IP202.95.12.150:443 ASN#64050 BGPNET Global ASN
CertificateIssuerLet's Encrypt Subjecttelegramnet.org Fingerprint44:BE:DC:F4:25:13:0D:09:12:FA:6A:D2:A7:47:BE:5C:0E:B0:B7:1C ValidityWed, 17 Apr 2024 00:46:22 GMT - Tue, 16 Jul 2024 00:46:21 GMT
File typeUnicode text, UTF-8 text, with very long lines (24043) Hash8629decc51355f74113da86fd8068fe8 d15ccf55d00895dc5d608570afc32348f92904d4 8528a55ba5d25bb2b6463f369b7a2046c08ced5f20256978a06119c0d50d08a2
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /countries-lRU-UavE.js HTTP/1.1
Host: telegramnet.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://telegramnet.org/index-vAd8J_Yp.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.14.1
Date: Wed, 17 Apr 2024 17:09:47 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: no-store
Accept-Ranges: bytes
Last-Modified: Wed, 17 Apr 2024 11:13:32 GMT
ETag: W/"5e21-18eebc30b60"
Vary: Accept-Encoding
Content-Encoding: gzip
|
|
| telegramnet.org/assets/img/favicon-16x16.png?v=jw3mK7G9Ry | 202.95.12.150 | 200 OK | 1.0 kB |
URL GET HTTP/1.1telegramnet.org/assets/img/favicon-16x16.png?v=jw3mK7G9Ry IP202.95.12.150:443 ASN#64050 BGPNET Global ASN
CertificateIssuerLet's Encrypt Subjecttelegramnet.org Fingerprint44:BE:DC:F4:25:13:0D:09:12:FA:6A:D2:A7:47:BE:5C:0E:B0:B7:1C ValidityWed, 17 Apr 2024 00:46:22 GMT - Tue, 16 Jul 2024 00:46:21 GMT
File typePNG image data, 16 x 16, 8-bit colormap, non-interlaced Hashe3ce05eb00b3215df220efaf0fd06e21 d1533966f79dc2984c34317035f31cf3c91298c9 0d67b7e8ea46e3c959329a0e79a8c8b236187f452edc7049524245e4aa6bee21
GET /assets/img/favicon-16x16.png?v=jw3mK7G9Ry HTTP/1.1
Host: telegramnet.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://telegramnet.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.14.1
Date: Wed, 17 Apr 2024 17:09:47 GMT
Content-Type: image/png
Content-Length: 1012
Connection: keep-alive
X-Powered-By: Express
Cache-Control: no-store
Accept-Ranges: bytes
Last-Modified: Thu, 21 Mar 2024 12:37:16 GMT
ETag: W/"3f4-18e61040060"
|
|
| telegramnet.org/assets/img/android-chrome-192x192.png?v=jw3mK7G9Ry | 202.95.12.150 | 200 OK | 9.0 kB |
URL GET HTTP/1.1telegramnet.org/assets/img/android-chrome-192x192.png?v=jw3mK7G9Ry IP202.95.12.150:443 ASN#64050 BGPNET Global ASN
CertificateIssuerLet's Encrypt Subjecttelegramnet.org Fingerprint44:BE:DC:F4:25:13:0D:09:12:FA:6A:D2:A7:47:BE:5C:0E:B0:B7:1C ValidityWed, 17 Apr 2024 00:46:22 GMT - Tue, 16 Jul 2024 00:46:21 GMT
File typePNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced Hash87fecdadac0beb95f9b7c87b3b3236f0 822f92446c0033a32462aa21208efaef1f0d8c3c 25aa724658da8e71f5cc7c35ccbb43075866af5bed964edb09979caace667b0b
GET /assets/img/android-chrome-192x192.png?v=jw3mK7G9Ry HTTP/1.1
Host: telegramnet.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://telegramnet.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.14.1
Date: Wed, 17 Apr 2024 17:09:47 GMT
Content-Type: image/png
Content-Length: 9024
Connection: keep-alive
X-Powered-By: Express
Cache-Control: no-store
Accept-Ranges: bytes
Last-Modified: Thu, 21 Mar 2024 12:37:16 GMT
ETag: W/"2340-18e61040060"
|
|
| telegramnet.org/crypto.worker-ChwaR_2f.js | 202.95.12.150 | 200 OK | 24 kB |
URL GET HTTP/1.1telegramnet.org/crypto.worker-ChwaR_2f.js IP202.95.12.150:443 ASN#64050 BGPNET Global ASN
CertificateIssuerLet's Encrypt Subjecttelegramnet.org Fingerprint44:BE:DC:F4:25:13:0D:09:12:FA:6A:D2:A7:47:BE:5C:0E:B0:B7:1C ValidityWed, 17 Apr 2024 00:46:22 GMT - Tue, 16 Jul 2024 00:46:21 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (65528), with no line terminators Hash7470dc26209d106b6b0ba6599da1afa6 dee2f30ef2aff8f2a72fb9e6f109c5c04f30930a 35dd12893d8e04183966ca0d412f923255e70135a1568ddf45a5a236fb4580ed
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /crypto.worker-ChwaR_2f.js HTTP/1.1
Host: telegramnet.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://telegramnet.org/
Sec-Fetch-Dest: sharedworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.1
Date: Wed, 17 Apr 2024 17:09:47 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: no-store
Accept-Ranges: bytes
Last-Modified: Wed, 17 Apr 2024 11:13:32 GMT
ETag: W/"10cf0-18eebc30b60"
Vary: Accept-Encoding
Content-Encoding: gzip
|
|
| telegramnet.org/pageSignQR-R57UGZML.js | 202.95.12.150 | 200 OK | 2.7 kB |
URL GET HTTP/1.1telegramnet.org/pageSignQR-R57UGZML.js IP202.95.12.150:443 ASN#64050 BGPNET Global ASN
CertificateIssuerLet's Encrypt Subjecttelegramnet.org Fingerprint44:BE:DC:F4:25:13:0D:09:12:FA:6A:D2:A7:47:BE:5C:0E:B0:B7:1C ValidityWed, 17 Apr 2024 00:46:22 GMT - Tue, 16 Jul 2024 00:46:21 GMT
File typeJava source, ASCII text, with very long lines (5017) Hashcd6a21be07e84b4169a9548623882c85 d45f44357c94307436547d0ab51f6efa952bdca9 83abe20cee3ef9797e266b2c8dbc1d658bfff3870a0b38c0ce4dd61dbe0529ba
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /pageSignQR-R57UGZML.js HTTP/1.1
Host: telegramnet.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://telegramnet.org/index-vAd8J_Yp.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.14.1
Date: Wed, 17 Apr 2024 17:09:47 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: no-store
Accept-Ranges: bytes
Last-Modified: Wed, 17 Apr 2024 11:13:32 GMT
ETag: W/"162f-18eebc30b60"
Vary: Accept-Encoding
Content-Encoding: gzip
|
|
| telegramnet.org/mtproto.worker-6YZ0hUOU.js | 202.95.12.150 | | 243 kB |
URL telegramnet.org/mtproto.worker-6YZ0hUOU.js IP202.95.12.150:0 ASN#64050 BGPNET Global ASN
CertificateIssuerLet's Encrypt Subjecttelegramnet.org Fingerprint44:BE:DC:F4:25:13:0D:09:12:FA:6A:D2:A7:47:BE:5C:0E:B0:B7:1C ValidityWed, 17 Apr 2024 00:46:22 GMT - Tue, 16 Jul 2024 00:46:21 GMT
Size243 kB (243343 bytes) Hash7312b7fc2fa85929dd7f1a9dad37701b 6aba070a05e0d90b29ace6fd9645f8f2933e82f5 0f27837103c2f987120a5ab8e0fe3f9598498fa55fb2bcf2f2d1f005d27d95eb
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /mtproto.worker-6YZ0hUOU.js HTTP/1.1
Host: telegramnet.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://telegramnet.org/
Sec-Fetch-Dest: sharedworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.1
Date: Wed, 17 Apr 2024 17:09:46 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: no-store
Accept-Ranges: bytes
Last-Modified: Wed, 17 Apr 2024 11:13:32 GMT
ETag: W/"eb869-18eebc30b60"
Vary: Accept-Encoding
Content-Encoding: gzip
|
|
| telegramnet.org/putPreloader-JvCBn-TZ.js | 202.95.12.150 | 200 OK | 699 B |
URL GET HTTP/1.1telegramnet.org/putPreloader-JvCBn-TZ.js IP202.95.12.150:443 ASN#64050 BGPNET Global ASN
CertificateIssuerLet's Encrypt Subjecttelegramnet.org Fingerprint44:BE:DC:F4:25:13:0D:09:12:FA:6A:D2:A7:47:BE:5C:0E:B0:B7:1C ValidityWed, 17 Apr 2024 00:46:22 GMT - Tue, 16 Jul 2024 00:46:21 GMT
File typeASCII text, with very long lines (394) Hash3d412f0ea19ff48996bd10d59455db21 dd08e3c8e3ec524ad9aa9d4219cc526412ce5b3d c9c9f7a619415562040408e20ebc2d91bb87970bdd2d7064022350e8e87d4a6d
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /putPreloader-JvCBn-TZ.js HTTP/1.1
Host: telegramnet.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://telegramnet.org/pageSignQR-R57UGZML.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.14.1
Date: Wed, 17 Apr 2024 17:09:47 GMT
Content-Type: application/javascript; charset=UTF-8
Content-Length: 699
Connection: keep-alive
X-Powered-By: Express
Cache-Control: no-store
Accept-Ranges: bytes
Last-Modified: Wed, 17 Apr 2024 11:13:32 GMT
ETag: W/"2bb-18eebc30b60"
Vary: Accept-Encoding
|
|
| telegramnet.org/textToSvgURL-Z4O-nL1S.js | 202.95.12.150 | 200 OK | 357 B |
URL GET HTTP/1.1telegramnet.org/textToSvgURL-Z4O-nL1S.js IP202.95.12.150:443 ASN#64050 BGPNET Global ASN
CertificateIssuerLet's Encrypt Subjecttelegramnet.org Fingerprint44:BE:DC:F4:25:13:0D:09:12:FA:6A:D2:A7:47:BE:5C:0E:B0:B7:1C ValidityWed, 17 Apr 2024 00:46:22 GMT - Tue, 16 Jul 2024 00:46:21 GMT
File typeASCII text, with very long lines (306) Hashcca1508d96dbfce74dcbaed756d04955 c539ff84caf27c4b22e498662644c07e6893c19a 36cb02e59322028c02c5365bd56cbd129b3eb2fb4aaec625160ca2dc9786a4bd
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /textToSvgURL-Z4O-nL1S.js HTTP/1.1
Host: telegramnet.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://telegramnet.org/pageSignQR-R57UGZML.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.14.1
Date: Wed, 17 Apr 2024 17:09:47 GMT
Content-Type: application/javascript; charset=UTF-8
Content-Length: 357
Connection: keep-alive
X-Powered-By: Express
Cache-Control: no-store
Accept-Ranges: bytes
Last-Modified: Wed, 17 Apr 2024 11:13:32 GMT
ETag: W/"165-18eebc30b60"
Vary: Accept-Encoding
|
|
| telegramnet.org/button-XQI7IEYp.js | 202.95.12.150 | 200 OK | 3.7 kB |
URL GET HTTP/1.1telegramnet.org/button-XQI7IEYp.js IP202.95.12.150:443 ASN#64050 BGPNET Global ASN
CertificateIssuerLet's Encrypt Subjecttelegramnet.org Fingerprint44:BE:DC:F4:25:13:0D:09:12:FA:6A:D2:A7:47:BE:5C:0E:B0:B7:1C ValidityWed, 17 Apr 2024 00:46:22 GMT - Tue, 16 Jul 2024 00:46:21 GMT
File typeASCII text, with very long lines (8748) Hash2d315b81e9a230e057abc8b100539046 21c4131a18db696cfcb2550ae29016b87c7faffd 0ca8fc77d6e43dba607e5fca7881306b775b5c56e16531e3b75c3ebb66c0925e
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /button-XQI7IEYp.js HTTP/1.1
Host: telegramnet.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://telegramnet.org/pageSignQR-R57UGZML.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.14.1
Date: Wed, 17 Apr 2024 17:09:47 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: no-store
Accept-Ranges: bytes
Last-Modified: Wed, 17 Apr 2024 11:13:32 GMT
ETag: W/"2259-18eebc30b60"
Vary: Accept-Encoding
Content-Encoding: gzip
|
|
| telegramnet.org/page-4jxlhRMA.js | 202.95.12.150 | 200 OK | 4.1 kB |
URL GET HTTP/1.1telegramnet.org/page-4jxlhRMA.js IP202.95.12.150:443 ASN#64050 BGPNET Global ASN
CertificateIssuerLet's Encrypt Subjecttelegramnet.org Fingerprint44:BE:DC:F4:25:13:0D:09:12:FA:6A:D2:A7:47:BE:5C:0E:B0:B7:1C ValidityWed, 17 Apr 2024 00:46:22 GMT - Tue, 16 Jul 2024 00:46:21 GMT
File typeASCII text, with very long lines (10306) Hash6845ff62bf7515c6584c4264bd618894 6478f2cac3e2752c9c249a24417d01c0556e1010 3d747eaca845914b1cb99fbcd7742beefe413dfdfe417a9357961faf183db5a0
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /page-4jxlhRMA.js HTTP/1.1
Host: telegramnet.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://telegramnet.org/pageSignQR-R57UGZML.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.14.1
Date: Wed, 17 Apr 2024 17:09:47 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: no-store
Accept-Ranges: bytes
Last-Modified: Wed, 17 Apr 2024 11:13:32 GMT
ETag: W/"286d-18eebc30b60"
Vary: Accept-Encoding
Content-Encoding: gzip
|
|
| kws2.web.telegram.org/apiws | 149.154.167.99 | | 0 B |
URL kws2.web.telegram.org/apiws IP149.154.167.99:0 ASN#62041 Telegram Messenger Inc
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /apiws HTTP/1.1
Host: kws2.web.telegram.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://telegramnet.org
Sec-WebSocket-Protocol: binary
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 4OK11rr9+Y3DQHo4pRXg+A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx/1.18.0
Date: Wed, 17 Apr 2024 17:09:48 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 0Hd37No4kiKX3gEvKLCviHsPc04=
Sec-WebSocket-Protocol: binary
|
|
| venus.web.telegram.org/apiw1 | 149.154.167.99 | | 169 B |
URL venus.web.telegram.org/apiw1 IP149.154.167.99:0 ASN#62041 Telegram Messenger Inc
File typeHTML document, ASCII text, with CRLF line terminators Hashc2a982d42f89274763eef2a44fe01030 86e6d53f6478cdd0c05611093d9c55a953454af7 d8b55de3a4d5331f3b450a86bb907afe17dc964adca30f39d101a3d55a4a9d6a
POST /apiw1 HTTP/1.1
Host: venus.web.telegram.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://telegramnet.org/
Content-Length: 0
Origin: https://telegramnet.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
server: nginx/1.18.0
date: Wed, 17 Apr 2024 17:09:48 GMT
content-type: text/html
content-length: 169
pragma: no-cache
cache-control: no-store
access-control-allow-origin: *
access-control-allow-methods: POST, OPTIONS
access-control-allow-headers: origin, content-type
access-control-max-age: 1728000
X-Firefox-Spdy: h2
|
|
| kws2.web.telegram.org/apiws | 149.154.167.99 | | 0 B |
URL kws2.web.telegram.org/apiws IP149.154.167.99:0 ASN#62041 Telegram Messenger Inc
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /apiws HTTP/1.1
Host: kws2.web.telegram.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://telegramnet.org
Sec-WebSocket-Protocol: binary
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: DlZWlSj6xwPm/JAd64VZwg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx/1.18.0
Date: Wed, 17 Apr 2024 17:09:48 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Q+os0jiMJrBpXhzhV86RBpiDyCU=
Sec-WebSocket-Protocol: binary
|
|
| kws2.web.telegram.org/apiws | 149.154.167.99 | | 0 B |
URL kws2.web.telegram.org/apiws IP149.154.167.99:0 ASN#62041 Telegram Messenger Inc
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /apiws HTTP/1.1
Host: kws2.web.telegram.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://telegramnet.org
Sec-WebSocket-Protocol: binary
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 3bu2HyaFi68yggjYkiMarA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx/1.18.0
Date: Wed, 17 Apr 2024 17:09:48 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: GQeasUn3l6Kj75dWAo4fD9SZOO4=
Sec-WebSocket-Protocol: binary
|
|
| telegramnet.org/putPreloader-JvCBn-TZ.js | 202.95.12.150 | 200 OK | 699 B |
URL GET HTTP/1.1telegramnet.org/putPreloader-JvCBn-TZ.js IP202.95.12.150:443 ASN#64050 BGPNET Global ASN
CertificateIssuerLet's Encrypt Subjecttelegramnet.org Fingerprint44:BE:DC:F4:25:13:0D:09:12:FA:6A:D2:A7:47:BE:5C:0E:B0:B7:1C ValidityWed, 17 Apr 2024 00:46:22 GMT - Tue, 16 Jul 2024 00:46:21 GMT
File typeASCII text, with very long lines (394) Hash3d412f0ea19ff48996bd10d59455db21 dd08e3c8e3ec524ad9aa9d4219cc526412ce5b3d c9c9f7a619415562040408e20ebc2d91bb87970bdd2d7064022350e8e87d4a6d
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /putPreloader-JvCBn-TZ.js HTTP/1.1
Host: telegramnet.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://telegramnet.org/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.14.1
Date: Wed, 17 Apr 2024 17:09:48 GMT
Content-Type: application/javascript; charset=UTF-8
Content-Length: 699
Connection: keep-alive
X-Powered-By: Express
Cache-Control: no-store
Accept-Ranges: bytes
Last-Modified: Wed, 17 Apr 2024 11:13:32 GMT
ETag: W/"2bb-18eebc30b60"
Vary: Accept-Encoding
|
|
| telegramnet.org/button-XQI7IEYp.js | 202.95.12.150 | 200 OK | 3.7 kB |
URL GET HTTP/1.1telegramnet.org/button-XQI7IEYp.js IP202.95.12.150:443 ASN#64050 BGPNET Global ASN
CertificateIssuerLet's Encrypt Subjecttelegramnet.org Fingerprint44:BE:DC:F4:25:13:0D:09:12:FA:6A:D2:A7:47:BE:5C:0E:B0:B7:1C ValidityWed, 17 Apr 2024 00:46:22 GMT - Tue, 16 Jul 2024 00:46:21 GMT
File typeASCII text, with very long lines (8748) Hash2d315b81e9a230e057abc8b100539046 21c4131a18db696cfcb2550ae29016b87c7faffd 0ca8fc77d6e43dba607e5fca7881306b775b5c56e16531e3b75c3ebb66c0925e
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /button-XQI7IEYp.js HTTP/1.1
Host: telegramnet.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://telegramnet.org/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.14.1
Date: Wed, 17 Apr 2024 17:09:48 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: no-store
Accept-Ranges: bytes
Last-Modified: Wed, 17 Apr 2024 11:13:32 GMT
ETag: W/"2259-18eebc30b60"
Vary: Accept-Encoding
Content-Encoding: gzip
|
|
| telegramnet.org/pageSignQR-R57UGZML.js | 202.95.12.150 | 200 OK | 2.7 kB |
URL GET HTTP/1.1telegramnet.org/pageSignQR-R57UGZML.js IP202.95.12.150:443 ASN#64050 BGPNET Global ASN
CertificateIssuerLet's Encrypt Subjecttelegramnet.org Fingerprint44:BE:DC:F4:25:13:0D:09:12:FA:6A:D2:A7:47:BE:5C:0E:B0:B7:1C ValidityWed, 17 Apr 2024 00:46:22 GMT - Tue, 16 Jul 2024 00:46:21 GMT
File typeJava source, ASCII text, with very long lines (5017) Hashcd6a21be07e84b4169a9548623882c85 d45f44357c94307436547d0ab51f6efa952bdca9 83abe20cee3ef9797e266b2c8dbc1d658bfff3870a0b38c0ce4dd61dbe0529ba
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /pageSignQR-R57UGZML.js HTTP/1.1
Host: telegramnet.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://telegramnet.org/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.14.1
Date: Wed, 17 Apr 2024 17:09:48 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: no-store
Accept-Ranges: bytes
Last-Modified: Wed, 17 Apr 2024 11:13:32 GMT
ETag: W/"162f-18eebc30b60"
Vary: Accept-Encoding
Content-Encoding: gzip
|
|
| telegramnet.org/page-4jxlhRMA.js | 202.95.12.150 | 200 OK | 4.1 kB |
URL GET HTTP/1.1telegramnet.org/page-4jxlhRMA.js IP202.95.12.150:443 ASN#64050 BGPNET Global ASN
CertificateIssuerLet's Encrypt Subjecttelegramnet.org Fingerprint44:BE:DC:F4:25:13:0D:09:12:FA:6A:D2:A7:47:BE:5C:0E:B0:B7:1C ValidityWed, 17 Apr 2024 00:46:22 GMT - Tue, 16 Jul 2024 00:46:21 GMT
File typeASCII text, with very long lines (10306) Hash6845ff62bf7515c6584c4264bd618894 6478f2cac3e2752c9c249a24417d01c0556e1010 3d747eaca845914b1cb99fbcd7742beefe413dfdfe417a9357961faf183db5a0
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /page-4jxlhRMA.js HTTP/1.1
Host: telegramnet.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://telegramnet.org/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.14.1
Date: Wed, 17 Apr 2024 17:09:48 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: no-store
Accept-Ranges: bytes
Last-Modified: Wed, 17 Apr 2024 11:13:32 GMT
ETag: W/"286d-18eebc30b60"
Vary: Accept-Encoding
Content-Encoding: gzip
|
|
| telegramnet.org/textToSvgURL-Z4O-nL1S.js | 202.95.12.150 | 200 OK | 357 B |
URL GET HTTP/1.1telegramnet.org/textToSvgURL-Z4O-nL1S.js IP202.95.12.150:443 ASN#64050 BGPNET Global ASN
CertificateIssuerLet's Encrypt Subjecttelegramnet.org Fingerprint44:BE:DC:F4:25:13:0D:09:12:FA:6A:D2:A7:47:BE:5C:0E:B0:B7:1C ValidityWed, 17 Apr 2024 00:46:22 GMT - Tue, 16 Jul 2024 00:46:21 GMT
File typeASCII text, with very long lines (306) Hashcca1508d96dbfce74dcbaed756d04955 c539ff84caf27c4b22e498662644c07e6893c19a 36cb02e59322028c02c5365bd56cbd129b3eb2fb4aaec625160ca2dc9786a4bd
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /textToSvgURL-Z4O-nL1S.js HTTP/1.1
Host: telegramnet.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://telegramnet.org/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.14.1
Date: Wed, 17 Apr 2024 17:09:48 GMT
Content-Type: application/javascript; charset=UTF-8
Content-Length: 357
Connection: keep-alive
X-Powered-By: Express
Cache-Control: no-store
Accept-Ranges: bytes
Last-Modified: Wed, 17 Apr 2024 11:13:32 GMT
ETag: W/"165-18eebc30b60"
Vary: Accept-Encoding
|
|
| telegramnet.org/qr-code-styling-ogpV7fl-.js | 202.95.12.150 | 200 OK | 17 kB |
URL GET HTTP/1.1telegramnet.org/qr-code-styling-ogpV7fl-.js IP202.95.12.150:443 ASN#64050 BGPNET Global ASN
CertificateIssuerLet's Encrypt Subjecttelegramnet.org Fingerprint44:BE:DC:F4:25:13:0D:09:12:FA:6A:D2:A7:47:BE:5C:0E:B0:B7:1C ValidityWed, 17 Apr 2024 00:46:22 GMT - Tue, 16 Jul 2024 00:46:21 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (57414) Hash692f467d3bba699553f0dbf68094d72f 67582d4bc87b34a61c43ae8f7f3862562d65efa8 6c4900d40f3335423817340edddd7655d96e707156923fcf3cbf5a6520008d6e
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /qr-code-styling-ogpV7fl-.js HTTP/1.1
Host: telegramnet.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://telegramnet.org/pageSignQR-R57UGZML.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.14.1
Date: Wed, 17 Apr 2024 17:09:48 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: no-store
Accept-Ranges: bytes
Last-Modified: Wed, 17 Apr 2024 11:13:32 GMT
ETag: W/"10254-18eebc30b60"
Vary: Accept-Encoding
Content-Encoding: gzip
|
|
| telegramnet.org/_commonjsHelpers-5-cIlDoe.js | 202.95.12.150 | 200 OK | 290 B |
URL GET HTTP/1.1telegramnet.org/_commonjsHelpers-5-cIlDoe.js IP202.95.12.150:443 ASN#64050 BGPNET Global ASN
CertificateIssuerLet's Encrypt Subjecttelegramnet.org Fingerprint44:BE:DC:F4:25:13:0D:09:12:FA:6A:D2:A7:47:BE:5C:0E:B0:B7:1C ValidityWed, 17 Apr 2024 00:46:22 GMT - Tue, 16 Jul 2024 00:46:21 GMT
Hashfbb884c7112ff8c4ddb8edc410daae6f 299a8b374572849f5028264e3a7f2e71273f1d06 a8df41d98a0fa3d1cb8c8661377ac1a572beb9cd0b68e968f92d69f7c8331483
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /_commonjsHelpers-5-cIlDoe.js HTTP/1.1
Host: telegramnet.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://telegramnet.org/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.14.1
Date: Wed, 17 Apr 2024 17:09:48 GMT
Content-Type: application/javascript; charset=UTF-8
Content-Length: 290
Connection: keep-alive
X-Powered-By: Express
Cache-Control: no-store
Accept-Ranges: bytes
Last-Modified: Wed, 17 Apr 2024 11:13:32 GMT
ETag: W/"122-18eebc30b60"
Vary: Accept-Encoding
|
|
| telegramnet.org/_commonjsHelpers-5-cIlDoe.js | 202.95.12.150 | 200 OK | 290 B |
URL GET HTTP/1.1telegramnet.org/_commonjsHelpers-5-cIlDoe.js IP202.95.12.150:443 ASN#64050 BGPNET Global ASN
CertificateIssuerLet's Encrypt Subjecttelegramnet.org Fingerprint44:BE:DC:F4:25:13:0D:09:12:FA:6A:D2:A7:47:BE:5C:0E:B0:B7:1C ValidityWed, 17 Apr 2024 00:46:22 GMT - Tue, 16 Jul 2024 00:46:21 GMT
Hashfbb884c7112ff8c4ddb8edc410daae6f 299a8b374572849f5028264e3a7f2e71273f1d06 a8df41d98a0fa3d1cb8c8661377ac1a572beb9cd0b68e968f92d69f7c8331483
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /_commonjsHelpers-5-cIlDoe.js HTTP/1.1
Host: telegramnet.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://telegramnet.org/qr-code-styling-ogpV7fl-.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.14.1
Date: Wed, 17 Apr 2024 17:09:48 GMT
Content-Type: application/javascript; charset=UTF-8
Content-Length: 290
Connection: keep-alive
X-Powered-By: Express
Cache-Control: no-store
Accept-Ranges: bytes
Last-Modified: Wed, 17 Apr 2024 11:13:32 GMT
ETag: W/"122-18eebc30b60"
Vary: Accept-Encoding
|
|
| telegramnet.org/qr-code-styling-ogpV7fl-.js | 202.95.12.150 | 200 OK | 17 kB |
URL GET HTTP/1.1telegramnet.org/qr-code-styling-ogpV7fl-.js IP202.95.12.150:443 ASN#64050 BGPNET Global ASN
CertificateIssuerLet's Encrypt Subjecttelegramnet.org Fingerprint44:BE:DC:F4:25:13:0D:09:12:FA:6A:D2:A7:47:BE:5C:0E:B0:B7:1C ValidityWed, 17 Apr 2024 00:46:22 GMT - Tue, 16 Jul 2024 00:46:21 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (57414) Hash692f467d3bba699553f0dbf68094d72f 67582d4bc87b34a61c43ae8f7f3862562d65efa8 6c4900d40f3335423817340edddd7655d96e707156923fcf3cbf5a6520008d6e
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /qr-code-styling-ogpV7fl-.js HTTP/1.1
Host: telegramnet.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://telegramnet.org/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.14.1
Date: Wed, 17 Apr 2024 17:09:48 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: no-store
Accept-Ranges: bytes
Last-Modified: Wed, 17 Apr 2024 11:13:32 GMT
ETag: W/"10254-18eebc30b60"
Vary: Accept-Encoding
Content-Encoding: gzip
|
|
| venus.web.telegram.org/apiw1 | 149.154.167.99 | | 169 B |
URL venus.web.telegram.org/apiw1 IP149.154.167.99:0 ASN#62041 Telegram Messenger Inc
File typeHTML document, ASCII text, with CRLF line terminators Hashc2a982d42f89274763eef2a44fe01030 86e6d53f6478cdd0c05611093d9c55a953454af7 d8b55de3a4d5331f3b450a86bb907afe17dc964adca30f39d101a3d55a4a9d6a
POST /apiw1 HTTP/1.1
Host: venus.web.telegram.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://telegramnet.org/
Content-Length: 0
Origin: https://telegramnet.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
server: nginx/1.18.0
date: Wed, 17 Apr 2024 17:09:48 GMT
content-type: text/html
content-length: 169
pragma: no-cache
cache-control: no-store
access-control-allow-origin: *
access-control-allow-methods: POST, OPTIONS
access-control-allow-headers: origin, content-type
access-control-max-age: 1728000
X-Firefox-Spdy: h2
|
|
| telegramnet.org/assets/fonts/KFOlCnqEu92Fr1MmEU9fBBc4AMP6lQ.woff2 | 202.95.12.150 | 200 OK | 11 kB |
URL GET HTTP/1.1telegramnet.org/assets/fonts/KFOlCnqEu92Fr1MmEU9fBBc4AMP6lQ.woff2 IP202.95.12.150:443 ASN#64050 BGPNET Global ASN
CertificateIssuerLet's Encrypt Subjecttelegramnet.org Fingerprint44:BE:DC:F4:25:13:0D:09:12:FA:6A:D2:A7:47:BE:5C:0E:B0:B7:1C ValidityWed, 17 Apr 2024 00:46:22 GMT - Tue, 16 Jul 2024 00:46:21 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 11056, version 1.0 Hash07db243db21ed0a6b4ff05ff429686b7 5d62925fdd7ed8e80f206d095ed093994f13d276 ce897833ac6e362df7c91ac8223fe511c6defcf33964928a81004600a2dd4c2e
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /assets/fonts/KFOlCnqEu92Fr1MmEU9fBBc4AMP6lQ.woff2 HTTP/1.1
Host: telegramnet.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://telegramnet.org/index-rRV5aYAD.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.14.1
Date: Wed, 17 Apr 2024 17:09:48 GMT
Content-Type: font/woff2
Content-Length: 11056
Connection: keep-alive
X-Powered-By: Express
Cache-Control: no-store
Accept-Ranges: bytes
Last-Modified: Thu, 21 Mar 2024 12:37:16 GMT
ETag: W/"2b30-18e61040060"
|
|
| telegramnet.org/assets/img/logo_padded.svg | 202.95.12.150 | 200 OK | 681 B |
URL GET HTTP/1.1telegramnet.org/assets/img/logo_padded.svg IP202.95.12.150:443 ASN#64050 BGPNET Global ASN
CertificateIssuerLet's Encrypt Subjecttelegramnet.org Fingerprint44:BE:DC:F4:25:13:0D:09:12:FA:6A:D2:A7:47:BE:5C:0E:B0:B7:1C ValidityWed, 17 Apr 2024 00:46:22 GMT - Tue, 16 Jul 2024 00:46:21 GMT
File typeSVG Scalable Vector Graphics image Hashf4743b572ed419192a7669eb3f8cac18 264a7e38f7a943f457951e17b92292192bb04982 7f585fd460f4a7bda0c24c13fbb6d6727f8efd87f8c7329db0c509434b8cb648
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /assets/img/logo_padded.svg HTTP/1.1
Host: telegramnet.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://telegramnet.org/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.14.1
Date: Wed, 17 Apr 2024 17:09:49 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: no-store
Accept-Ranges: bytes
Last-Modified: Thu, 21 Mar 2024 12:37:16 GMT
ETag: W/"43b-18e61040060"
Vary: Accept-Encoding
Content-Encoding: gzip
|
|