Report - dana-login.aktivasie-monay.com/

Report Overview

Submitted URL
dana-login.aktivasie-monay.com/
IP
172.67.176.177
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-25 07:41:37
Access
public
Website Title
𝗗𝗔𝗡𝗔 | 𝗖𝘂𝘀𝘁𝗼𝗺𝗲𝗿 𝗖𝗮𝗿𝗲 𝗗𝗔𝗡𝗔
Final URL
dana-login.aktivasie-monay.com/
Tags
suspicious
urlquery detections
Suspicious - Suspicious Javascript code

Detections

urlquery
7
Network Intrusion Detection
0
Threat Detection Systems
18

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
unpkg.com	11693	2016-01-06	2016-01-08	2024-04-24	2.4 kB	21 kB	104.17.246.203
dev-danapemulihan.pantheonsite.io	unknown	2016-01-29	2024-02-03	2024-03-28	5.7 kB	60 kB	23.185.0.4
encrypted-tbn0.gstatic.com	unknown	2008-02-11	2013-05-31	2024-04-24	501 B	12 kB	142.250.74.142
www.dana.id	702697	2017-07-14	2018-07-06	2023-12-09	433 B	5.8 kB	95.101.11.49
blogger.googleusercontent.com	16485	2008-11-17	2012-05-25	2024-04-24	4.8 kB	4.4 MB	142.250.74.97
ajax.googleapis.com	12905	2005-01-25	2013-08-16	2024-04-24	446 B	34 kB	142.250.74.170
code.jquery.com	634	2005-12-10	2012-05-21	2024-04-25	424 B	90 kB	151.101.194.137
dana-login.aktivasie-monay.com	unknown	2023-04-25	2024-04-05	2024-04-11	4.3 kB	108 kB	172.67.176.177

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-04-05	medium	dana-login.aktivasie-monay.com/	DANA
2024-04-05	medium	dana-login.aktivasie-monay.com/	DANA
2024-04-05	medium	dana-login.aktivasie-monay.com/	DANA
2024-04-05	medium	dana-login.aktivasie-monay.com/	DANA
2024-04-05	medium	dana-login.aktivasie-monay.com/	DANA
2024-04-05	medium	dana-login.aktivasie-monay.com/	DANA
2024-04-05	medium	dana-login.aktivasie-monay.com/	DANA
2024-04-05	medium	dana-login.aktivasie-monay.com/	DANA
2024-04-05	medium	dana-login.aktivasie-monay.com/	DANA

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (26)

	URL	Size	First Seen	Last Seen
	dana-login.aktivasie-monay.com/	473 B	2024-02-03	2024-04-30
Pretty URL dana-login.aktivasie-monay.com/ IP 172.67.176.177 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-02-03 18:23:44 Last Seen2024-04-30 18:26:05 Times Seen15 Hash 7f1b030f8de4036f906c61f04a7535d5 d619f69dbc631ce7100b2c4c7d76969e2a360004 3dc7a4b607ca79b8e9766f758edffe1eca2ca6424d847bb1f368c0c454dc36f1 Loading...

	dana-login.aktivasie-monay.com/	135 B	2023-06-29	2024-05-03
Pretty URL dana-login.aktivasie-monay.com/ IP 172.67.176.177 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-29 14:59:08 Last Seen2024-05-03 07:00:06 Times Seen710 Hash 8135d55bdb3fdd9003e5226986c539f4 17796aff7fea44999042478f0340bdc87776acab 0c472d92c58eac469153a6fa27f2fb758ae436804afed1b0689bd9e33c15a0eb Loading...

	dana-login.aktivasie-monay.com/	66 B	2023-06-29	2024-05-03
Pretty URL dana-login.aktivasie-monay.com/ IP 172.67.176.177 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-29 14:59:08 Last Seen2024-05-03 07:00:06 Times Seen699 Hash b7ec93a09110dfd8bb76196fe658a2ca fa0e9eecd598aa16a419e4e799c4694469ecf9f3 5ef8108dc8ed8de6d3ce2b0a190bcde518ac3f55143f767074e421359a2ee58a Loading...

	dana-login.aktivasie-monay.com/	208 B	2023-12-20	2024-04-30
Pretty URL dana-login.aktivasie-monay.com/ IP 172.67.176.177 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-20 04:21:49 Last Seen2024-04-30 18:26:05 Times Seen25 Hash fa83aaa3e449ddee7cb13344707ede4a 5aaa48fea0a0c69867fd6db4c27026ffab437420 12994d657557cd68e64e391cc69e57b210233b7990eefb8dd2b47ba1967c7754 Loading...

	dana-login.aktivasie-monay.com/	1.1 kB	2024-02-03	2024-04-30
Pretty URL dana-login.aktivasie-monay.com/ IP 172.67.176.177 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-02-03 18:23:44 Last Seen2024-04-30 18:26:05 Times Seen14 Hash 72e4db4cb02584555d7ac63f1196aed5 40048fd0d01dcc0557fcee212e4a98d09b2d3184 873d533ed6a7b85c72cca8af15059cc611524b8bcc620fd650611a7acbee555c Loading...

	unknown	563 B	2024-02-03	2024-04-30
Pretty Introduced by domTimer Embedded in HTML false Observations First Seen2024-02-03 18:23:44 Last Seen2024-04-30 18:26:05 Times Seen14 Hash b497ea9e0a2641c622b48004c4b6a1b6 09acded9416951a37389b598b35f6cfba0c75d78 894bbeaef2536335a5789468c8a202d3e0705945e34392be68fd3c1c2bb1bd8b Loading...

	dana-login.aktivasie-monay.com/	689 B	2023-06-29	2024-05-03
Pretty URL dana-login.aktivasie-monay.com/ IP 172.67.176.177 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-29 14:59:08 Last Seen2024-05-03 07:00:06 Times Seen711 Hash b05c8bd1528cb5466392fb8d88178905 84590a391d262608fef98d82cc37bc399c656c6a c5ed1f676d19f816f1f227611469605003b0e57edc27aaf55f51a654aa6134e2 Loading...

	code.jquery.com/jquery-3.5.1.min.js	90 kB	2023-03-07	2024-05-04
Pretty URL code.jquery.com/jquery-3.5.1.min.js IP 151.101.194.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:01 Last Seen2024-05-04 09:48:33 Times Seen141347 Hash dc5e7f18c8d36ac1d3d4753a87c98d0a c8e1c8b386dc5b7a9184c763c88d19a346eb3342 f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d Loading...

	dana-login.aktivasie-monay.com/	421 B	2023-12-20	2024-04-30
Pretty URL dana-login.aktivasie-monay.com/ IP 172.67.176.177 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-20 04:21:49 Last Seen2024-04-30 18:26:05 Times Seen24 Hash 1002d4c6234252d7bce75a7537a65d31 16eb09445285e8ec77f91d33e01b3d165934749b 1d5a9881ada5fed1626d19635ff88693abb14574859dc0ea443a200e9f90766b Loading...

	unpkg.com/ionicons@7.1.0/dist/ionicons/p-1c0b2c47.entry.js	4.1 kB	2023-05-12	2024-05-01
Pretty URL unpkg.com/ionicons@7.1.0/dist/ionicons/p-1c0b2c47.entry.js IP 104.17.246.203 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-12 02:59:06 Last Seen2024-05-01 18:11:48 Times Seen160 Hash 5305c9d6890ecf4e37e6828920544483 1c0b2c47e127227005c0048c73d103490b2c5d25 a1abb9748933534d9eba6be132c72c9846321f9aa6b063d5b51870299b71f0b3 Loading...

	dana-login.aktivasie-monay.com/	548 B	2024-02-03	2024-04-30
Pretty URL dana-login.aktivasie-monay.com/ IP 172.67.176.177 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-02-03 18:23:44 Last Seen2024-04-30 18:26:05 Times Seen15 Hash 8a43399be5766a11709fa70021c8446f db3cbf8f1ee2e9e5d8d86ae5b80a9b3bc182f4b7 741ceca037b2be77b2d9675ba217f104029dadf416abee83759e17f1b121ffc3 Loading...

	dana-login.aktivasie-monay.com/	348 B	2024-02-03	2024-04-30
Pretty URL dana-login.aktivasie-monay.com/ IP 172.67.176.177 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-02-03 18:23:44 Last Seen2024-04-30 18:26:05 Times Seen15 Hash 41d19f2fe722ef452f5966bfb35a9d2c 498e934d252bd01f27af24cc0a3851019db99806 d932ff89ed58da480d4c36bbb447e608776699b47e7aefa297c2a9aea54b1410 Loading...

	unpkg.com/ionicons@7.1.0/dist/ionicons/p-40ae2aa7.js	1.1 kB	2023-05-12	2024-05-01
Pretty URL unpkg.com/ionicons@7.1.0/dist/ionicons/p-40ae2aa7.js IP 104.17.246.203 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2023-05-12 02:59:06 Last Seen2024-05-01 18:11:48 Times Seen143 Hash 62432c4bcf2d4f5737b7104ee2f87318 4f197801a3174c7144a8671328a07c9d0a76c363 c20fa1a22f15f8cf1e459b5bd91740823854099e77840b716d8d4aa24e9c7cf1 Loading...

	dev-danapemulihan.pantheonsite.io/asset/google.js	4.2 kB	2024-04-24	2024-04-30
Pretty URL dev-danapemulihan.pantheonsite.io/asset/google.js IP 23.185.0.4 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 17:56:30 Last Seen2024-04-30 18:26:05 Times Seen8 Hash 39c79d68387ddfa7790de3198ddd1868 eac953810ff7c98b498126e44b8199cb95c5ab48 2a459257fbd8322a8b8a8183961417fb05ecedd5aed2fa622e82c04dfe75ea5c Loading...

	dana-login.aktivasie-monay.com/	222 B	2024-02-03	2024-04-30
Pretty URL dana-login.aktivasie-monay.com/ IP 172.67.176.177 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-02-03 18:23:44 Last Seen2024-04-30 18:26:05 Times Seen15 Hash 08d9a37c83d8c5c10547b7edde7d5b5c 55de89069d8145ec0471519f2b86a314fdf68578 fc3bf2829b1f37dc39fd714844880829f4e185e9ecd559a01165e8adae925971 Loading...

	dev-danapemulihan.pantheonsite.io/asset/jquery.mask.min.js	7.9 kB	2023-06-29	2024-05-03
Pretty URL dev-danapemulihan.pantheonsite.io/asset/jquery.mask.min.js IP 23.185.0.4 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-29 14:59:08 Last Seen2024-05-03 07:00:06 Times Seen908 Hash 2e961f240d376e0a83c885a07f00762e e9f1d4a792dc3fb06f8d65d68a607738f3b4070c 470a65fdd4c44fa96ef232acb2a308ca73a3f17d6accc399d0c7a28a21d532d9 Loading...

	dana-login.aktivasie-monay.com/	9 B	2023-03-07	2024-04-30
Pretty URL dana-login.aktivasie-monay.com/ IP 172.67.176.177 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:28:33 Last Seen2024-04-30 18:26:05 Times Seen16 Hash 4a24bacd71727dfea8f73bf8f9c85b10 e18fb9798c2fe130776bb44c699f497844bef4f7 f9fb512b99090f9e7bbcf8b4815904094f1125ed09fe4f890c3cbdc8b60e9557 Loading...

	ajax.googleapis.com/ajax/libs/jquery/1.11.3/jquery.min.js	96 kB	2023-03-07	2024-05-04
Pretty URL ajax.googleapis.com/ajax/libs/jquery/1.11.3/jquery.min.js IP 142.250.74.170 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:11 Last Seen2024-05-04 04:49:25 Times Seen15459 Hash f03e5a3bf534f4a738bc350631fd05bd 37b1db88b57438f1072a8ebc7559c909c9d3a682 aec3d419d50f05781a96f223e18289aeb52598b5db39be82a7b71dc67d6a7947 Loading...

	dana-login.aktivasie-monay.com/telegram.js	92 B	2024-04-24	2024-04-25
Pretty URL dana-login.aktivasie-monay.com/telegram.js IP 172.67.176.177 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 17:56:29 Last Seen2024-04-25 09:41:39 Times Seen4 Hash 1ee26721a72ee1a1fc1561e8e8948748 7746daf9f67891dc1c0b7aa2215d7127ee80771e f818020e27ae16d56847e1cb18097ac6228e0274498a8c474db2bab2c282d5ce Loading...

	unpkg.com/ionicons@7.1.0/dist/ionicons/p-d15ec307.js	8.7 kB	2023-05-12	2024-05-01
Pretty URL unpkg.com/ionicons@7.1.0/dist/ionicons/p-d15ec307.js IP 104.17.246.203 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2023-05-12 02:59:06 Last Seen2024-05-01 18:11:48 Times Seen223 Hash aa6e142201142f16f7d60cd0ebe9506b 749dbd66aeca71b9c99d9513bc5ec73df56d0c21 124547b63964181d189d03dbb1884508fea77622f32709d236552c2c46368c55 Loading...

	unpkg.com/ionicons@7.1.0/dist/ionicons/ionicons.esm.js	340 B	2023-05-12	2024-05-01
Pretty URL unpkg.com/ionicons@7.1.0/dist/ionicons/ionicons.esm.js IP 104.17.246.203 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-12 02:59:06 Last Seen2024-05-01 18:11:48 Times Seen213 Hash 59bbca58eb0134032c0c6e0175c556a3 62f7f9dc98d524e559f688e7cb333b18d1860af8 062fa0cee97dee43fdd025204c6776ae609d71a55b6117b100bcbf6adf394bd2 Loading...

	dana-login.aktivasie-monay.com/	3.8 kB	2024-02-03	2024-04-25
Pretty URL dana-login.aktivasie-monay.com/ IP 172.67.176.177 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-02-03 18:23:44 Last Seen2024-04-25 09:41:39 Times Seen12 Hash fb8f2330413524e205abe0b4946330d0 e3b9f36cec296c9c326537162dcd7f61b60bc1e8 3a975ddb34eee718348705c6afedb7f3539e496fd9c04a2e0e00322d5bb0480c Loading...

	dana-login.aktivasie-monay.com/	48 B	2024-02-03	2024-04-30
Pretty URL dana-login.aktivasie-monay.com/ IP 172.67.176.177 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-02-03 18:23:44 Last Seen2024-04-30 18:26:05 Times Seen15 Hash 1fd7cf621f5e5aaf756ff7babd31819b 578ee85b38397afe0f81ac1448b39e12623d7ac8 95876803b1dda9dd2b008781fbbf2ebd8dc91c58942cfd44eeb616d69d8c3385 Loading...

	dana-login.aktivasie-monay.com/	8 B	2023-03-12	2024-04-30
Pretty URL dana-login.aktivasie-monay.com/ IP 172.67.176.177 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-12 14:06:25 Last Seen2024-04-30 18:26:05 Times Seen17 Hash bbf549dc26189aba4737a353021f48f1 174b36521016da4dc7324a2fb8f05bd49c04cc46 ea6d5c07f27ecae822f3b308235e5c479e9b67d6b5e6d75f7c6aaeb5e2b6359a Loading...

	dana-login.aktivasie-monay.com/	195 B	2024-02-03	2024-04-30
Pretty URL dana-login.aktivasie-monay.com/ IP 172.67.176.177 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-02-03 18:23:44 Last Seen2024-04-30 18:26:05 Times Seen15 Hash 59703baf39fdb5df541ac6adeae4e1bb d69ed5ada41fa23e4f12559591e16a3ec6312b07 3bc5d68c330a8468f336645d8750f6c4fadac2e82fbd97c10a70ee48b2f40bf4 Loading...

	dana-login.aktivasie-monay.com/	361 B	2024-01-29	2024-04-30
Pretty URL dana-login.aktivasie-monay.com/ IP 172.67.176.177 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-01-29 09:30:09 Last Seen2024-04-30 18:26:05 Times Seen16 Hash 6bbde875987fd6561bdfae21a38fed2e 27359b16006880288791ff6562cc4f6b439b7aa0 ecb7ac77d6b44bab7f29e08724b1822a28d130178b8ad1bec241ab688633819d Loading...

HTTP Transactions (37)

URL IP Response Size

ajax.googleapis.com/ajax/libs/jquery/1.11.3/jquery.min.js

142.250.74.170

200 OK

34 kB

URL GET HTTP/2
ajax.googleapis.com/ajax/libs/jquery/1.11.3/jquery.min.js
IP
142.250.74.170:443
ASN
#15169 GOOGLE

Requested by
https://dana-login.aktivasie-monay.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT

File type
JavaScript source, ASCII text, with very long lines (32038)
Size
34 kB (33507 bytes)
Hash
f03e5a3bf534f4a738bc350631fd05bd
37b1db88b57438f1072a8ebc7559c909c9d3a682
aec3d419d50f05781a96f223e18289aeb52598b5db39be82a7b71dc67d6a7947

HTTP Headers

GET /ajax/libs/jquery/1.11.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dana-login.aktivasie-monay.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33507
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 19 Apr 2024 04:18:29 GMT
expires: Sat, 19 Apr 2025 04:18:29 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 530563
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

code.jquery.com/jquery-3.5.1.min.js

151.101.194.137

200 OK

90 kB

URL GET HTTP/2
code.jquery.com/jquery-3.5.1.min.js
IP
151.101.194.137:443
ASN
#54113 FASTLY

Requested by
https://dana-login.aktivasie-monay.com/
Certificate
IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65451)
Size
90 kB (89476 bytes)
Hash
dc5e7f18c8d36ac1d3d4753a87c98d0a
c8e1c8b386dc5b7a9184c763c88d19a346eb3342
f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d

HTTP Headers

GET /jquery-3.5.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dana-login.aktivasie-monay.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: "28feccc0-15d84"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 25 Apr 2024 07:41:12 GMT
age: 1559991
x-served-by: cache-lga21981-LGA, cache-hel1410034-HEL
x-cache: HIT, HIT
x-cache-hits: 1878, 4963
x-timer: S1714030872.184933,VS0,VE0
vary: Accept-Encoding
content-length: 89476
X-Firefox-Spdy: h2

dana-login.aktivasie-monay.com/asset/img/dana_logo.png

172.67.176.177

200 OK

13 kB

URL GET HTTP/3
dana-login.aktivasie-monay.com/asset/img/dana_logo.png
IP
172.67.176.177:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dana-login.aktivasie-monay.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectaktivasie-monay.com
Fingerprint5E:66:9F:39:CE:0F:ED:F8:D6:57:3D:97:F1:A4:16:AD:63:2C:43:76
ValiditySun, 14 Apr 2024 01:36:50 GMT - Sat, 13 Jul 2024 01:36:49 GMT

File type
PNG image data, 382 x 112, 8-bit/color RGBA, interlaced
Size
13 kB (12786 bytes)
Hash
6fd5a7d18a8f7c04bc5effcdc5235987
c4852c577f44fcdf78fb439a30ea2c6c6983b140
c67e5431f9c00bb690ea8b8add63d5ca9250bf2925f2c2a691eeee498ac75853

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DANA

HTTP Headers

GET /asset/img/dana_logo.png HTTP/1.1
Host: dana-login.aktivasie-monay.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dana-login.aktivasie-monay.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 25 Apr 2024 07:41:12 GMT
content-type: image/png
content-length: 12786
last-modified: Sun, 30 Oct 2022 23:38:08 GMT
cache-control: max-age=14400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NjacoUPZMsc6YKu2B4EerfZ9z%2FtMlZ3desbX3rG%2F616mNV4mH9Uani2zOMfz04vkBnP3c2FAMtWEio3FUfcC2bpA3PKwrBKksOYn5%2BnwkYYWvbF1ZlUmU7DQSNjDlULB0FogjIkRAxmpIJZUvBD8sM8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879cb076cc480b3d-OSL
alt-svc: h3=":443"; ma=86400

unpkg.com/ionicons@7.1.0/dist/ionicons/ionicons.esm.js

104.17.246.203

200 OK

771 B

URL GET HTTP/2
unpkg.com/ionicons@7.1.0/dist/ionicons/ionicons.esm.js
IP
104.17.246.203:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dana-login.aktivasie-monay.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectunpkg.com
Fingerprint2E:F1:F6:31:28:EC:29:20:41:F4:58:4B:B1:CF:51:16:77:7E:BF:E3
ValidityMon, 01 Apr 2024 02:40:24 GMT - Sun, 30 Jun 2024 02:40:23 GMT

File type
ASCII text, with very long lines (340), with no line terminators
Size
771 B (771 bytes)
Hash
59bbca58eb0134032c0c6e0175c556a3
62f7f9dc98d524e559f688e7cb333b18d1860af8
062fa0cee97dee43fdd025204c6776ae609d71a55b6117b100bcbf6adf394bd2

HTTP Headers

GET /ionicons@7.1.0/dist/ionicons/ionicons.esm.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dana-login.aktivasie-monay.com
DNT: 1
Connection: keep-alive
Referer: https://dana-login.aktivasie-monay.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 25 Apr 2024 07:41:12 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"154-Yvf53JjVJOVZ9ojnyzM7GNGGCvg"
via: 1.1 fly.io
fly-request-id: 01HFTZM95T8F5P65MBXA9T0G31-arn
cf-cache-status: HIT
age: 13391975
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 879cb076fd37b503-OSL
content-encoding: br
X-Firefox-Spdy: h2

dev-danapemulihan.pantheonsite.io/asset/img/load_bg.png

23.185.0.4

200 OK

7.9 kB

URL GET HTTP/2
dev-danapemulihan.pantheonsite.io/asset/img/load_bg.png
IP
23.185.0.4:443
ASN
#54113 FASTLY

Requested by
https://dana-login.aktivasie-monay.com/
Certificate
IssuerLet's Encrypt
Subjectpantheonsite.io
FingerprintF0:B6:EE:9C:03:9F:B0:36:8C:F7:7A:BA:A2:D4:49:C5:4D:32:99:59
ValidityMon, 22 Apr 2024 16:38:54 GMT - Sun, 21 Jul 2024 16:38:53 GMT

File type
PNG image data, 300 x 300, 8-bit gray+alpha, non-interlaced
Size
7.9 kB (7863 bytes)
Hash
bf1d4a90de7e29b2be55237982cb30b4
ef942049631b598767fda52d54458b9f9680ee87
46518758f002d85cff9220609163f23b7e9f8f2721561d1e0ba79c4f17425c58

HTTP Headers

GET /asset/img/load_bg.png HTTP/1.1
Host: dev-danapemulihan.pantheonsite.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dana-login.aktivasie-monay.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/png
etag: "661ab741-1eb7"
expires: Thu, 25 Apr 2024 07:41:11 GMT
last-modified: Sat, 13 Apr 2024 16:48:01 GMT
server: nginx
strict-transport-security: max-age=300
x-pantheon-styx-hostname: styx-fe4-a-c686c7ffb-qh6f5
x-styx-req-id: 304aea6a-02d7-11ef-b4e1-ae0103e7b8f5
cache-control: no-cache, must-revalidate
date: Thu, 25 Apr 2024 07:41:12 GMT
x-served-by: cache-chi-kigq8000132-CHI, cache-hel1410023-HEL
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1714030872.257452,VS0,VE126
x-robots-tag: noindex
age: 0
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
content-length: 7863
X-Firefox-Spdy: h2

dev-danapemulihan.pantheonsite.io/asset/img/load_spin.png

23.185.0.4

200 OK

5.1 kB

URL GET HTTP/2
dev-danapemulihan.pantheonsite.io/asset/img/load_spin.png
IP
23.185.0.4:443
ASN
#54113 FASTLY

Requested by
https://dana-login.aktivasie-monay.com/
Certificate
IssuerLet's Encrypt
Subjectpantheonsite.io
FingerprintF0:B6:EE:9C:03:9F:B0:36:8C:F7:7A:BA:A2:D4:49:C5:4D:32:99:59
ValidityMon, 22 Apr 2024 16:38:54 GMT - Sun, 21 Jul 2024 16:38:53 GMT

File type
PNG image data, 200 x 200, 8-bit gray+alpha, non-interlaced
Size
5.1 kB (5078 bytes)
Hash
e8e4e4432355a07040a7327673850223
b07f6cfaacb6a2093778b08dd8d9b8f7d718c119
50b4bad00572d07c6158459a5cb93b1b3f9bdea95d393aa56970afded2f58913

HTTP Headers

GET /asset/img/load_spin.png HTTP/1.1
Host: dev-danapemulihan.pantheonsite.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dana-login.aktivasie-monay.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/png
etag: "661ab741-13d6"
expires: Thu, 25 Apr 2024 07:41:11 GMT
last-modified: Sat, 13 Apr 2024 16:48:01 GMT
server: nginx
strict-transport-security: max-age=300
x-pantheon-styx-hostname: styx-fe4-b-5b7775789c-xk8w9
x-styx-req-id: 304af436-02d7-11ef-9ec2-dedb0f419b17
cache-control: no-cache, must-revalidate
date: Thu, 25 Apr 2024 07:41:12 GMT
x-served-by: cache-chi-klot8100120-CHI, cache-hel1410023-HEL
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1714030872.259347,VS0,VE127
x-robots-tag: noindex
age: 0
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
content-length: 5078
X-Firefox-Spdy: h2

dev-danapemulihan.pantheonsite.io/asset/container.css

23.185.0.4

200 OK

350 B

URL GET HTTP/2
dev-danapemulihan.pantheonsite.io/asset/container.css
IP
23.185.0.4:443
ASN
#54113 FASTLY

Requested by
https://dana-login.aktivasie-monay.com/
Certificate
IssuerLet's Encrypt
Subjectpantheonsite.io
FingerprintF0:B6:EE:9C:03:9F:B0:36:8C:F7:7A:BA:A2:D4:49:C5:4D:32:99:59
ValidityMon, 22 Apr 2024 16:38:54 GMT - Sun, 21 Jul 2024 16:38:53 GMT

File type
ASCII text, with very long lines (790), with no line terminators
Size
350 B (350 bytes)
Hash
8308d2ea1d6ea02c0cb00f298799633e
6deedbf3eea7d45bd140179d681c8f78613073d6
fe9df1a47b206f90c0f6a9bd88239d8eb22313978376f04d9e3fab4a35317380

HTTP Headers

GET /asset/container.css HTTP/1.1
Host: dev-danapemulihan.pantheonsite.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dana-login.aktivasie-monay.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-encoding: gzip
content-type: text/css
etag: W/"661ab731-316"
expires: Thu, 25 Apr 2024 07:41:11 GMT
last-modified: Sat, 13 Apr 2024 16:47:45 GMT
server: nginx
strict-transport-security: max-age=300
x-pantheon-styx-hostname: styx-fe4-a-c686c7ffb-xqv8z
x-styx-req-id: 304b1f93-02d7-11ef-be6e-12cacebb040a
cache-control: no-cache, must-revalidate
date: Thu, 25 Apr 2024 07:41:12 GMT
x-served-by: cache-chi-kigq8000144-CHI, cache-hel1410023-HEL
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1714030872.261160,VS0,VE125
vary: Accept-Encoding
x-robots-tag: noindex
age: 0
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
content-length: 350
X-Firefox-Spdy: h2

dev-danapemulihan.pantheonsite.io/asset/img/indo.png

23.185.0.4

200 OK

741 B

URL GET HTTP/2
dev-danapemulihan.pantheonsite.io/asset/img/indo.png
IP
23.185.0.4:443
ASN
#54113 FASTLY

Requested by
https://dana-login.aktivasie-monay.com/
Certificate
IssuerLet's Encrypt
Subjectpantheonsite.io
FingerprintF0:B6:EE:9C:03:9F:B0:36:8C:F7:7A:BA:A2:D4:49:C5:4D:32:99:59
ValidityMon, 22 Apr 2024 16:38:54 GMT - Sun, 21 Jul 2024 16:38:53 GMT

File type
PNG image data, 80 x 45, 8-bit colormap, non-interlaced
Size
741 B (741 bytes)
Hash
c15c95b8db17f44e5826bb7839278578
5be0ab5aba6201a0a3a3423f9db8008ed2385430
af52bfb0ab7606d185db1457ddc3edceb61c7fe9675e099cae3e3be1eccf152c

HTTP Headers

GET /asset/img/indo.png HTTP/1.1
Host: dev-danapemulihan.pantheonsite.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dana-login.aktivasie-monay.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/png
etag: "661ab741-2e5"
expires: Thu, 25 Apr 2024 07:41:11 GMT
last-modified: Sat, 13 Apr 2024 16:48:01 GMT
server: nginx
strict-transport-security: max-age=300
x-pantheon-styx-hostname: styx-fe4-b-5b7775789c-9bcg2
x-styx-req-id: 304b0b15-02d7-11ef-9145-a2a5687ebb79
cache-control: no-cache, must-revalidate
date: Thu, 25 Apr 2024 07:41:12 GMT
x-served-by: cache-chi-klot8100165-CHI, cache-hel1410023-HEL
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1714030872.257010,VS0,VE130
x-robots-tag: noindex
age: 0
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
content-length: 741
X-Firefox-Spdy: h2

dev-danapemulihan.pantheonsite.io/asset/img/dana_logo.png

23.185.0.4

200 OK

13 kB

URL GET HTTP/2
dev-danapemulihan.pantheonsite.io/asset/img/dana_logo.png
IP
23.185.0.4:443
ASN
#54113 FASTLY

Requested by
https://dana-login.aktivasie-monay.com/
Certificate
IssuerLet's Encrypt
Subjectpantheonsite.io
FingerprintF0:B6:EE:9C:03:9F:B0:36:8C:F7:7A:BA:A2:D4:49:C5:4D:32:99:59
ValidityMon, 22 Apr 2024 16:38:54 GMT - Sun, 21 Jul 2024 16:38:53 GMT

File type
PNG image data, 382 x 112, 8-bit/color RGBA, interlaced
Size
13 kB (12786 bytes)
Hash
6fd5a7d18a8f7c04bc5effcdc5235987
c4852c577f44fcdf78fb439a30ea2c6c6983b140
c67e5431f9c00bb690ea8b8add63d5ca9250bf2925f2c2a691eeee498ac75853

HTTP Headers

GET /asset/img/dana_logo.png HTTP/1.1
Host: dev-danapemulihan.pantheonsite.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dana-login.aktivasie-monay.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/png
etag: "661ab741-31f2"
expires: Thu, 25 Apr 2024 07:41:11 GMT
last-modified: Sat, 13 Apr 2024 16:48:01 GMT
server: nginx
strict-transport-security: max-age=300
x-pantheon-styx-hostname: styx-fe4-a-c686c7ffb-pfjpl
x-styx-req-id: 304ad5d5-02d7-11ef-b853-72b553c69a30
cache-control: no-cache, must-revalidate
date: Thu, 25 Apr 2024 07:41:12 GMT
x-served-by: cache-chi-kigq8000098-CHI, cache-hel1410023-HEL
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1714030872.256944,VS0,VE130
x-robots-tag: noindex
age: 0
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
content-length: 12786
X-Firefox-Spdy: h2

dev-danapemulihan.pantheonsite.io/asset/loader.css

23.185.0.4

200 OK

380 B

URL GET HTTP/2
dev-danapemulihan.pantheonsite.io/asset/loader.css
IP
23.185.0.4:443
ASN
#54113 FASTLY

Requested by
https://dana-login.aktivasie-monay.com/
Certificate
IssuerLet's Encrypt
Subjectpantheonsite.io
FingerprintF0:B6:EE:9C:03:9F:B0:36:8C:F7:7A:BA:A2:D4:49:C5:4D:32:99:59
ValidityMon, 22 Apr 2024 16:38:54 GMT - Sun, 21 Jul 2024 16:38:53 GMT

File type
ASCII text, with very long lines (1561), with no line terminators
Size
380 B (380 bytes)
Hash
553a4feacebe4a339e3f83b082684ff8
7334803536f6429c43ad344da92e22414e5882c2
94e570a73c7171a271962b2c59739196b2101bba6ce3257e1e60743013cdaf32

HTTP Headers

GET /asset/loader.css HTTP/1.1
Host: dev-danapemulihan.pantheonsite.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dana-login.aktivasie-monay.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-encoding: gzip
content-type: text/css
etag: W/"661ab731-619"
expires: Thu, 25 Apr 2024 07:41:11 GMT
last-modified: Sat, 13 Apr 2024 16:47:45 GMT
server: nginx
strict-transport-security: max-age=300
x-pantheon-styx-hostname: styx-fe4-b-5b7775789c-lpwkj
x-styx-req-id: 304b9583-02d7-11ef-8ca9-62f4ba0edcbd
cache-control: no-cache, must-revalidate
date: Thu, 25 Apr 2024 07:41:12 GMT
x-served-by: cache-chi-kigq8000135-CHI, cache-hel1410023-HEL
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1714030872.262948,VS0,VE126
vary: Accept-Encoding
x-robots-tag: noindex
age: 0
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
content-length: 380
X-Firefox-Spdy: h2

dana-login.aktivasie-monay.com/asset/img/load_bg.png

172.67.176.177

200 OK

7.9 kB

URL GET HTTP/3
dana-login.aktivasie-monay.com/asset/img/load_bg.png
IP
172.67.176.177:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dana-login.aktivasie-monay.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectaktivasie-monay.com
Fingerprint5E:66:9F:39:CE:0F:ED:F8:D6:57:3D:97:F1:A4:16:AD:63:2C:43:76
ValiditySun, 14 Apr 2024 01:36:50 GMT - Sat, 13 Jul 2024 01:36:49 GMT

File type
PNG image data, 300 x 300, 8-bit gray+alpha, non-interlaced
Size
7.9 kB (7863 bytes)
Hash
bf1d4a90de7e29b2be55237982cb30b4
ef942049631b598767fda52d54458b9f9680ee87
46518758f002d85cff9220609163f23b7e9f8f2721561d1e0ba79c4f17425c58

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DANA

HTTP Headers

GET /asset/img/load_bg.png HTTP/1.1
Host: dana-login.aktivasie-monay.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dana-login.aktivasie-monay.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 25 Apr 2024 07:41:12 GMT
content-type: image/png
content-length: 7863
last-modified: Sat, 06 Jan 2024 14:44:20 GMT
cache-control: max-age=14400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=V0UQpOhhQ0tMiK7elc5C%2FdTw%2FasAx5t8yhCAJEFlSgoFOjkyC6rdbf6HAMtLJHQb1WQAk8bLlfirrIpe2WKHi2E%2FlxFSKeb8ZIe6MBuZJXEy3exgiN3pRC%2FxVYq0dLkZFPL572vGuqaBHBKzbWos01E%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879cb076dc530b3d-OSL
alt-svc: h3=":443"; ma=86400

dev-danapemulihan.pantheonsite.io/asset/main.css

23.185.0.4

200 OK

1.2 kB

URL GET HTTP/2
dev-danapemulihan.pantheonsite.io/asset/main.css
IP
23.185.0.4:443
ASN
#54113 FASTLY

Requested by
https://dana-login.aktivasie-monay.com/
Certificate
IssuerLet's Encrypt
Subjectpantheonsite.io
FingerprintF0:B6:EE:9C:03:9F:B0:36:8C:F7:7A:BA:A2:D4:49:C5:4D:32:99:59
ValidityMon, 22 Apr 2024 16:38:54 GMT - Sun, 21 Jul 2024 16:38:53 GMT

File type
ASCII text, with very long lines (3879), with no line terminators
Size
1.2 kB (1226 bytes)
Hash
6a8c3d6f52eaa646f71e2e83cbd3f101
500fc6cf07cb5b9e6225da77ca5736fcf4e5b3b2
64fbe5e2a5068ac3483ece2807f7ea9ab3be2ba44db45ffad94d0260730ddb5f

HTTP Headers

GET /asset/main.css HTTP/1.1
Host: dev-danapemulihan.pantheonsite.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dana-login.aktivasie-monay.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-encoding: gzip
content-type: text/css
etag: W/"661ab731-f27"
expires: Thu, 25 Apr 2024 07:41:11 GMT
last-modified: Sat, 13 Apr 2024 16:47:45 GMT
server: nginx
strict-transport-security: max-age=300
x-pantheon-styx-hostname: styx-fe4-a-c686c7ffb-ft8v9
x-styx-req-id: 304c3db9-02d7-11ef-bb40-2e3ab7de6826
cache-control: no-cache, must-revalidate
date: Thu, 25 Apr 2024 07:41:12 GMT
x-served-by: cache-chi-kigq8000154-CHI, cache-hel1410023-HEL
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1714030872.267460,VS0,VE125
vary: Accept-Encoding
x-robots-tag: noindex
age: 0
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
content-length: 1226
X-Firefox-Spdy: h2

dev-danapemulihan.pantheonsite.io/asset/otp.css

23.185.0.4

200 OK

499 B

URL GET HTTP/2
dev-danapemulihan.pantheonsite.io/asset/otp.css
IP
23.185.0.4:443
ASN
#54113 FASTLY

Requested by
https://dana-login.aktivasie-monay.com/
Certificate
IssuerLet's Encrypt
Subjectpantheonsite.io
FingerprintF0:B6:EE:9C:03:9F:B0:36:8C:F7:7A:BA:A2:D4:49:C5:4D:32:99:59
ValidityMon, 22 Apr 2024 16:38:54 GMT - Sun, 21 Jul 2024 16:38:53 GMT

File type
ASCII text, with very long lines (1255)
Size
499 B (499 bytes)
Hash
e2a320730ef8a296909722d232ae202e
1fa905b79ff205824aa73a08fa4cdd6980e08297
9cfafe8abebe3f03670b51ad157009cc0d2c2015a17aead016e387f2b5d8a94c

HTTP Headers

GET /asset/otp.css HTTP/1.1
Host: dev-danapemulihan.pantheonsite.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dana-login.aktivasie-monay.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-encoding: gzip
content-type: text/css
etag: W/"661ab731-4e8"
expires: Thu, 25 Apr 2024 07:41:11 GMT
last-modified: Sat, 13 Apr 2024 16:47:45 GMT
server: nginx
strict-transport-security: max-age=300
x-pantheon-styx-hostname: styx-fe4-b-5b7775789c-fbq4r
x-styx-req-id: 304c4985-02d7-11ef-9c62-760405bddfdb
cache-control: no-cache, must-revalidate
date: Thu, 25 Apr 2024 07:41:12 GMT
x-served-by: cache-chi-kigq8000049-CHI, cache-hel1410023-HEL
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1714030872.267753,VS0,VE142
vary: Accept-Encoding
x-robots-tag: noindex
age: 0
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
content-length: 499
X-Firefox-Spdy: h2

dev-danapemulihan.pantheonsite.io/asset/pin.css

23.185.0.4

200 OK

310 B

URL GET HTTP/2
dev-danapemulihan.pantheonsite.io/asset/pin.css
IP
23.185.0.4:443
ASN
#54113 FASTLY

Requested by
https://dana-login.aktivasie-monay.com/
Certificate
IssuerLet's Encrypt
Subjectpantheonsite.io
FingerprintF0:B6:EE:9C:03:9F:B0:36:8C:F7:7A:BA:A2:D4:49:C5:4D:32:99:59
ValidityMon, 22 Apr 2024 16:38:54 GMT - Sun, 21 Jul 2024 16:38:53 GMT

File type
ASCII text, with very long lines (666), with no line terminators
Size
310 B (310 bytes)
Hash
f04c34e455649c317cbfe449a7c5b10e
07c192cd6c0d6b6a96ddd3fe56ffc5762c2f6eb7
963ee000ea25a124a63e7dd4ded8a9adc4d3501de7d0bf47f78f6fa4bc4ee472

HTTP Headers

GET /asset/pin.css HTTP/1.1
Host: dev-danapemulihan.pantheonsite.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dana-login.aktivasie-monay.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-encoding: gzip
content-type: text/css
etag: W/"661ab731-29a"
expires: Thu, 25 Apr 2024 07:41:11 GMT
last-modified: Sat, 13 Apr 2024 16:47:45 GMT
server: nginx
strict-transport-security: max-age=300
x-pantheon-styx-hostname: styx-fe4-a-c686c7ffb-vqmns
x-styx-req-id: 304cf33f-02d7-11ef-a2d3-76465062e072
cache-control: no-cache, must-revalidate
date: Thu, 25 Apr 2024 07:41:12 GMT
x-served-by: cache-chi-klot8100169-CHI, cache-hel1410023-HEL
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1714030872.271776,VS0,VE143
vary: Accept-Encoding
x-robots-tag: noindex
age: 0
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
content-length: 310
X-Firefox-Spdy: h2

dev-danapemulihan.pantheonsite.io/asset/google.js

23.185.0.4

200 OK

1.2 kB

URL GET HTTP/2
dev-danapemulihan.pantheonsite.io/asset/google.js
IP
23.185.0.4:443
ASN
#54113 FASTLY

Requested by
https://dana-login.aktivasie-monay.com/
Certificate
IssuerLet's Encrypt
Subjectpantheonsite.io
FingerprintF0:B6:EE:9C:03:9F:B0:36:8C:F7:7A:BA:A2:D4:49:C5:4D:32:99:59
ValidityMon, 22 Apr 2024 16:38:54 GMT - Sun, 21 Jul 2024 16:38:53 GMT

File type
JavaScript source, Unicode text, UTF-8 text
Size
1.2 kB (1164 bytes)
Hash
39c79d68387ddfa7790de3198ddd1868
eac953810ff7c98b498126e44b8199cb95c5ab48
2a459257fbd8322a8b8a8183961417fb05ecedd5aed2fa622e82c04dfe75ea5c

Detections

Analyzer	Verdict	Alert
urlquery	suspicious	Suspicious - Suspicious Javascript code

HTTP Headers

GET /asset/google.js HTTP/1.1
Host: dev-danapemulihan.pantheonsite.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dana-login.aktivasie-monay.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
content-type: application/x-javascript
etag: W/"661ab731-1051"
expires: Thu, 25 Apr 2024 07:41:11 GMT
last-modified: Sat, 13 Apr 2024 16:47:45 GMT
server: nginx
strict-transport-security: max-age=300
x-pantheon-styx-hostname: styx-fe4-b-5b7775789c-lpwkj
x-styx-req-id: 3051815f-02d7-11ef-8ca9-62f4ba0edcbd
cache-control: no-cache, must-revalidate
date: Thu, 25 Apr 2024 07:41:12 GMT
x-served-by: cache-chi-kigq8000049-CHI, cache-hel1410023-HEL
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1714030872.256627,VS0,VE172
vary: Accept-Encoding
x-robots-tag: noindex
age: 0
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
content-length: 1164
X-Firefox-Spdy: h2

dana-login.aktivasie-monay.com/asset/img/bi.png

172.67.176.177

200 OK

16 kB

URL GET HTTP/3
dana-login.aktivasie-monay.com/asset/img/bi.png
IP
172.67.176.177:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dana-login.aktivasie-monay.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectaktivasie-monay.com
Fingerprint5E:66:9F:39:CE:0F:ED:F8:D6:57:3D:97:F1:A4:16:AD:63:2C:43:76
ValiditySun, 14 Apr 2024 01:36:50 GMT - Sat, 13 Jul 2024 01:36:49 GMT

File type
PNG image data, 360 x 200, 8-bit/color RGBA, non-interlaced
Size
16 kB (16542 bytes)
Hash
6e77df79b301b9fb95fdf50d66e3ceb7
1c93476fccf582d5ea0fa88ec8b1becc00d9edb5
4262dc8d42209d7e2a597f7f1098880e75ad0f6a53a66da1a7bd094a5f778199

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DANA

HTTP Headers

GET /asset/img/bi.png HTTP/1.1
Host: dana-login.aktivasie-monay.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dana-login.aktivasie-monay.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 25 Apr 2024 07:41:12 GMT
content-type: image/png
content-length: 16542
last-modified: Fri, 28 Apr 2023 02:18:12 GMT
cache-control: max-age=14400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=iQHQJiCkLiOYp%2Blx1aq59rSSlZSq3fQl5CEPKozWfEsICZwFk5ASEaFS3SQx6le%2B4nyV1fhS1B7t0X7PwGf3f28ogoGC6KDBIKNHCc10xb8lhwtoNp0Dmt2nTQjhybMWz8Tv0NGkPy6y7fOm7gk4Sm8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879cb076cc4c0b3d-OSL
alt-svc: h3=":443"; ma=86400

dev-danapemulihan.pantheonsite.io/external.html?link=https://fonts.googleapis.com/css2?family=Open+Sans:wght@400;600;700&display=swap

23.185.0.4

404 Not Found

13 kB

URL GET HTTP/2
dev-danapemulihan.pantheonsite.io/external.html?link=https://fonts.googleapis.com/css2?family=Open+Sans:wght@400;600;700&display=swap
IP
23.185.0.4:443
ASN
#54113 FASTLY

Requested by
https://dana-login.aktivasie-monay.com/
Certificate
IssuerLet's Encrypt
Subjectpantheonsite.io
FingerprintF0:B6:EE:9C:03:9F:B0:36:8C:F7:7A:BA:A2:D4:49:C5:4D:32:99:59
ValidityMon, 22 Apr 2024 16:38:54 GMT - Sun, 21 Jul 2024 16:38:53 GMT

File type
HTML document, ASCII text, with very long lines (20451)
Size
13 kB (13437 bytes)
Hash
0a2df4446ca1da4b86edce547975db7a
78a2bd946653124ad89441c719dc38b8fec63a11
f29b57065096a5afc7a23a398c7ceb6447a6bcb1afac28d8962da0723f1a51b4

HTTP Headers

GET /external.html?link=https://fonts.googleapis.com/css2?family=Open+Sans:wght@400;600;700&amp;display=swap HTTP/1.1
Host: dev-danapemulihan.pantheonsite.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dev-danapemulihan.pantheonsite.io/asset/main.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
cache-control: public, max-age=600
content-encoding: gzip
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
link: <https://dev-danapemulihan.pantheonsite.io/wp-json/>; rel="https://api.w.org/"
server: nginx
strict-transport-security: max-age=300
x-pantheon-styx-hostname: styx-fe4-b-5b7775789c-dsm96
x-styx-req-id: da51a62f-02d6-11ef-b55a-fac52e4f1446
date: Thu, 25 Apr 2024 07:41:12 GMT
x-served-by: cache-chi-klot8100053-CHI, cache-hel1410023-HEL
x-cache: HIT, MISS
x-cache-hits: 3, 0
x-timer: S1714030873.667479,VS0,VE111
vary: Accept-Encoding, Cookie, Cookie
x-robots-tag: noindex
age: 144
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
content-length: 13437
X-Firefox-Spdy: h2

dana-login.aktivasie-monay.com/asset/img/load_spin.png

172.67.176.177

200 OK

5.1 kB

URL GET HTTP/3
dana-login.aktivasie-monay.com/asset/img/load_spin.png
IP
172.67.176.177:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dana-login.aktivasie-monay.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectaktivasie-monay.com
Fingerprint5E:66:9F:39:CE:0F:ED:F8:D6:57:3D:97:F1:A4:16:AD:63:2C:43:76
ValiditySun, 14 Apr 2024 01:36:50 GMT - Sat, 13 Jul 2024 01:36:49 GMT

File type
PNG image data, 200 x 200, 8-bit gray+alpha, non-interlaced
Size
5.1 kB (5078 bytes)
Hash
e8e4e4432355a07040a7327673850223
b07f6cfaacb6a2093778b08dd8d9b8f7d718c119
50b4bad00572d07c6158459a5cb93b1b3f9bdea95d393aa56970afded2f58913

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DANA

HTTP Headers

GET /asset/img/load_spin.png HTTP/1.1
Host: dana-login.aktivasie-monay.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dana-login.aktivasie-monay.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 25 Apr 2024 07:41:13 GMT
content-type: image/png
content-length: 5078
last-modified: Sat, 06 Jan 2024 14:44:20 GMT
cache-control: max-age=14400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CiZtTAVgdJ4Ee1r7KhQT2G6Xj0FgxoCNy135FDlJyeb4mwKUUuaqtyr7a5D%2BUIv9C2jH3y1%2FuWAhiT0ZMJfgU6uzgihl2QW12HZqI3678Z1NtFwf1h%2Fre6wWAZvoRvwG9bJsATnXWGPR221vjDeeJ3M%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879cb076dc540b3d-OSL
alt-svc: h3=":443"; ma=86400

dana-login.aktivasie-monay.com/asset/img/dana_text.png

172.67.176.177

200 OK

11 kB

URL GET HTTP/3
dana-login.aktivasie-monay.com/asset/img/dana_text.png
IP
172.67.176.177:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dana-login.aktivasie-monay.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectaktivasie-monay.com
Fingerprint5E:66:9F:39:CE:0F:ED:F8:D6:57:3D:97:F1:A4:16:AD:63:2C:43:76
ValiditySun, 14 Apr 2024 01:36:50 GMT - Sat, 13 Jul 2024 01:36:49 GMT

File type
PNG image data, 480 x 118, 8-bit/color RGBA, non-interlaced
Size
11 kB (10588 bytes)
Hash
3dc459976e4f7086419105435a80fc25
4a79a70ae98be7b6386ddde8609d83eee4777373
8af7f1691e018bfc400432dfc61455f26f63226ab369e675c80cef5a93334e87

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DANA

HTTP Headers

GET /asset/img/dana_text.png HTTP/1.1
Host: dana-login.aktivasie-monay.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dana-login.aktivasie-monay.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 25 Apr 2024 07:41:13 GMT
content-type: image/png
content-length: 10588
last-modified: Sat, 05 Nov 2022 21:15:06 GMT
cache-control: max-age=14400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aY6%2F2fMGtY0HZoaT8BJrGNGNa8ge80LiA%2FzWFZglkFePPc0jN%2BOsMmFNQFSccYEyaod38Y4xqjrNjWps18nPP2illY5twlmnWo5Wk9nc9UANLsdHK8NVoEkGiczLbGVTDq%2F9XVKBRX38TCx9dQ%2Bx6KI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879cb076cc4b0b3d-OSL
alt-svc: h3=":443"; ma=86400

dana-login.aktivasie-monay.com/telegram.js

172.67.176.177

200 OK

561 B

URL GET HTTP/3
dana-login.aktivasie-monay.com/telegram.js
IP
172.67.176.177:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dana-login.aktivasie-monay.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectaktivasie-monay.com
Fingerprint5E:66:9F:39:CE:0F:ED:F8:D6:57:3D:97:F1:A4:16:AD:63:2C:43:76
ValiditySun, 14 Apr 2024 01:36:50 GMT - Sat, 13 Jul 2024 01:36:49 GMT

File type
ASCII text
Size
561 B (561 bytes)
Hash
1ee26721a72ee1a1fc1561e8e8948748
7746daf9f67891dc1c0b7aa2215d7127ee80771e
f818020e27ae16d56847e1cb18097ac6228e0274498a8c474db2bab2c282d5ce

Detections

Analyzer	Verdict	Alert
urlquery	suspicious	Suspicious - Suspicious Javascript code
OpenPhish	phishing	DANA

HTTP Headers

GET /telegram.js HTTP/1.1
Host: dana-login.aktivasie-monay.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dana-login.aktivasie-monay.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 25 Apr 2024 07:41:12 GMT
content-type: text/javascript
last-modified: Tue, 16 Apr 2024 02:55:32 GMT
cache-control: max-age=14400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7TSq4%2B%2BlqY5Xfy5VPeP1R5TxvrEVLon5ZCFTIF7ZFtTo4GJjzYwwnbIeULxzSg2pkljA8NKGJO7ZL65bqU324PDRNhvFSSmRiyO3p3Fap1vyfrCtftNANRxNu6%2B8cRUdw2yyHorxywU7LonuFuk%2F4iU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879cb076ec590b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

encrypted-tbn0.gstatic.com/images?q=tbn:ANd9GcQZ9dATs_nkzyO-gSoQWbtIhJV7bG51r3gOKg&usqp=CAU

142.250.74.142

200 OK

12 kB

URL GET HTTP/2
encrypted-tbn0.gstatic.com/images?q=tbn:ANd9GcQZ9dATs_nkzyO-gSoQWbtIhJV7bG51r3gOKg&usqp=CAU
IP
142.250.74.142:443
ASN
#15169 GOOGLE

Requested by
https://dana-login.aktivasie-monay.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 512x512, components 3
Size
12 kB (11540 bytes)
Hash
45525a4e10b53535c2f0a134aec2d0fe
8689b23fb445fab7c8f3f92f91eb8606a5a51959
0546f98f9019a3d2afbe9372ba08aba895e2aa716bd0fec8e78ff5879162f134

HTTP Headers

GET /images?q=tbn:ANd9GcQZ9dATs_nkzyO-gSoQWbtIhJV7bG51r3gOKg&usqp=CAU HTTP/1.1
Host: encrypted-tbn0.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dana-login.aktivasie-monay.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/images-tbn
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="images-tbn"
report-to: {"group":"images-tbn","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/images-tbn"}]}
content-length: 11540
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Apr 2024 00:10:12 GMT
expires: Fri, 25 Apr 2025 00:10:12 GMT
cache-control: public, max-age=31536000
age: 27061
last-modified: Sun, 15 Sep 2019 17:10:09 GMT
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.dana.id/favicon.ico

95.101.11.49

5.2 kB

URL GET
www.dana.id/favicon.ico
IP
95.101.11.49:0
ASN
#20940 Akamai International B.V.

Requested by
https://dana-login.aktivasie-monay.com/
Certificate
IssuerDigiCert Inc
Subjectwww.dana.id
FingerprintA1:71:4F:1D:DC:BB:D5:7F:FC:83:4C:5E:7B:E1:36:18:79:D9:BB:E6
ValidityTue, 08 Aug 2023 00:00:00 GMT - Wed, 07 Aug 2024 23:59:59 GMT

File type
MS Windows icon resource - 6 icons, 256x256 with PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced, 32 bits/pixel, -128x-128, 32 bits/pixel
Size
5.2 kB (5210 bytes)
Hash
8f1bac7ae69451bdf9c44b09577cf28c
4fe47a2d13f8b8bdf5966dc6c4e9e245b00e91c1
8cd0ee2909907b3b0f78d1fd1e7223e2ecc90069261768d98c4b8c7cbee0f9f5

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.dana.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dana-login.aktivasie-monay.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/x-icon
last-modified: Tue, 11 Apr 2023 09:54:24 GMT
etag: "64352e50-18c5f"
x-ua-compatible: IE=Edge
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
accept-ranges: bytes
strict-transport-security: max-age=31536000; includeSubDomains
content-encoding: gzip
content-length: 5210
cache-control: public, no-transform, max-age=7634228
date: Thu, 25 Apr 2024 07:41:13 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=1, ak_p; desc="1714030873340_1600457517_399754071_69_12132_1_58_21";dur=1
X-Firefox-Spdy: h2

dana-login.aktivasie-monay.com/

172.67.176.177

200 OK

8.6 kB

URL User Request GET HTTP/2
dana-login.aktivasie-monay.com/
IP
172.67.176.177:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectaktivasie-monay.com
Fingerprint5E:66:9F:39:CE:0F:ED:F8:D6:57:3D:97:F1:A4:16:AD:63:2C:43:76
ValiditySun, 14 Apr 2024 01:36:50 GMT - Sat, 13 Jul 2024 01:36:49 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (1116)
Size
8.6 kB (8575 bytes)
Hash
e89db3b6d9bf8b9e01049d687a047790
c143c1f31ed34cf084d2c645eaa41392eac8930f
9c66a5143e5b620e9a38cbacbe2375c4fab54dfd99b2ebb5c27f7d7d569e2104

Detections

Analyzer	Verdict	Alert
urlquery	suspicious	Suspicious - Suspicious Javascript code
OpenPhish	phishing	DANA

HTTP Headers

GET / HTTP/1.1
Host: dana-login.aktivasie-monay.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 25 Apr 2024 07:41:11 GMT
content-type: text/html
last-modified: Tue, 16 Apr 2024 03:03:51 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wVlgu%2Fm2xflZVMmELSBJGL3uhxq38K1VQA3JEHZCeswFBkaD3ukp8ipIjx7YalGjeExD3Pi0%2BemeWYtkX9FDnCm20yh9a091WxTbNu4%2FCRk%2BnZPZGHWChYcGqAZklsLWXTnp%2FlP0lsYlAbjqtv7zPv4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879cb06ffef4b503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

dana-login.aktivasie-monay.com/asset/img/kom.png

172.67.176.177

200 OK

8.5 kB

URL GET HTTP/3
dana-login.aktivasie-monay.com/asset/img/kom.png
IP
172.67.176.177:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dana-login.aktivasie-monay.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectaktivasie-monay.com
Fingerprint5E:66:9F:39:CE:0F:ED:F8:D6:57:3D:97:F1:A4:16:AD:63:2C:43:76
ValiditySun, 14 Apr 2024 01:36:50 GMT - Sat, 13 Jul 2024 01:36:49 GMT

File type
PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced
Size
8.5 kB (8484 bytes)
Hash
74adb66e545a68df7e5a0442a02fa8e7
a1692d3bfbde3c0cb3a8bc9b9b1fb2de4d570e85
4285db40c51cc53230cab0490df40566e285b48fb2b2e4729b42ff2a26c74480

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DANA

HTTP Headers

GET /asset/img/kom.png HTTP/1.1
Host: dana-login.aktivasie-monay.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dana-login.aktivasie-monay.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 25 Apr 2024 07:41:13 GMT
content-type: image/png
content-length: 8484
last-modified: Fri, 28 Apr 2023 02:11:54 GMT
cache-control: max-age=14400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xc01rdR7ZXco4s3bybdCx3ahSf6iHUW4ndQraTr7%2BHOX0nOk8xwPsGSao0wQmx4G24ggc3KCCUhxKUMEt2y5hlmZg56HxcXdHFL0TnHs%2BWEtkiHYJIOBSwEJyrtPrJ%2B3tNMHhM4iYVWAXwhbh3J%2Fmmc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879cb076cc4e0b3d-OSL
alt-svc: h3=":443"; ma=86400

unpkg.com/ionicons@7.1.0/dist/ionicons/p-d15ec307.js

104.17.246.203

200 OK

12 kB

URL GET HTTP/2
unpkg.com/ionicons@7.1.0/dist/ionicons/p-d15ec307.js
IP
104.17.246.203:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dana-login.aktivasie-monay.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectunpkg.com
Fingerprint2E:F1:F6:31:28:EC:29:20:41:F4:58:4B:B1:CF:51:16:77:7E:BF:E3
ValidityMon, 01 Apr 2024 02:40:24 GMT - Sun, 30 Jun 2024 02:40:23 GMT

File type
JavaScript source, ASCII text, with very long lines (8320)
Size
12 kB (11916 bytes)
Hash
aa6e142201142f16f7d60cd0ebe9506b
749dbd66aeca71b9c99d9513bc5ec73df56d0c21
124547b63964181d189d03dbb1884508fea77622f32709d236552c2c46368c55

HTTP Headers

GET /ionicons@7.1.0/dist/ionicons/p-d15ec307.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dana-login.aktivasie-monay.com
DNT: 1
Connection: keep-alive
Referer: https://unpkg.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 25 Apr 2024 07:41:12 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"21d1-dJ29Zq7KcbnJnZUTvF7HPfVtDCE"
via: 1.1 fly.io
fly-request-id: 01HG008XMTB3CW696NMW8PMHVH-arn
cf-cache-status: HIT
age: 13223531
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 879cb077fe12b503-OSL
content-encoding: br
X-Firefox-Spdy: h2

blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhl9xJVYWF_a9vAhgW5QQgozvZVADTaJgIX64iO7a5sQuMpSoPBK3zfKjvT6xc9fZPfxZz39mjk1H_oZOOOtYvO1l7DkWNqiD5LJyGYdwDNyHuyqLk_Ix6eFs3aLCG2yUXVwtsnj0BXTA40WZmecyLyCIm_ff0xNkkOvkuKBOl6yfS-QjI_EJrIyGtU/s1600/load_spin.png

142.250.74.97

200 OK

4.7 kB

URL GET HTTP/2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhl9xJVYWF_a9vAhgW5QQgozvZVADTaJgIX64iO7a5sQuMpSoPBK3zfKjvT6xc9fZPfxZz39mjk1H_oZOOOtYvO1l7DkWNqiD5LJyGYdwDNyHuyqLk_Ix6eFs3aLCG2yUXVwtsnj0BXTA40WZmecyLyCIm_ff0xNkkOvkuKBOl6yfS-QjI_EJrIyGtU/s1600/load_spin.png
IP
142.250.74.97:443
ASN
#15169 GOOGLE

Requested by
https://dana-login.aktivasie-monay.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint6E:66:E1:45:85:5C:3A:EB:60:4A:8E:EF:62:B8:7C:E3:C7:1B:FA:47
ValidityMon, 18 Mar 2024 20:34:07 GMT - Mon, 10 Jun 2024 20:34:06 GMT

File type
PNG image data, 200 x 200, 8-bit gray+alpha, non-interlaced
Size
4.7 kB (4696 bytes)
Hash
955f1e3415ef3b8a9014cd9494766361
c2b79837de62700a431c51e627e545c8ad8fc604
0224a076d967053559dc1e17752b57bc121782add2ed23279bda160fb9ef88f8

HTTP Headers

GET /img/b/R29vZ2xl/AVvXsEhl9xJVYWF_a9vAhgW5QQgozvZVADTaJgIX64iO7a5sQuMpSoPBK3zfKjvT6xc9fZPfxZz39mjk1H_oZOOOtYvO1l7DkWNqiD5LJyGYdwDNyHuyqLk_Ix6eFs3aLCG2yUXVwtsnj0BXTA40WZmecyLyCIm_ff0xNkkOvkuKBOl6yfS-QjI_EJrIyGtU/s1600/load_spin.png HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dana-login.aktivasie-monay.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
vary: Origin
access-control-expose-headers: Content-Length
etag: "v60d"
expires: Fri, 26 Apr 2024 07:41:13 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="load_spin.png"
x-content-type-options: nosniff
date: Thu, 25 Apr 2024 07:41:13 GMT
server: fife
content-length: 4696
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgbD-mmuMUDwaeFMEz6NefivuQqHyrFXvXxqVxMhYRhR5wsfUhiWkPNkpxLKkagRNpJ2obIiZH_D9EK6tnHIJUFMVBOclZI98zrU7VPszAR5n-_GeSWNCNgnfH1MRWuL-ahhPjxsejyDa5yyWAaOMWXWT4jS4EngtdLLlXjaPakQoFIOsjyS6tfnEBHDlw/s16000/output-onlinegiftools.gif

142.250.74.97

200 OK

325 kB

URL GET HTTP/2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgbD-mmuMUDwaeFMEz6NefivuQqHyrFXvXxqVxMhYRhR5wsfUhiWkPNkpxLKkagRNpJ2obIiZH_D9EK6tnHIJUFMVBOclZI98zrU7VPszAR5n-_GeSWNCNgnfH1MRWuL-ahhPjxsejyDa5yyWAaOMWXWT4jS4EngtdLLlXjaPakQoFIOsjyS6tfnEBHDlw/s16000/output-onlinegiftools.gif
IP
142.250.74.97:443
ASN
#15169 GOOGLE

Requested by
https://dana-login.aktivasie-monay.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint6E:66:E1:45:85:5C:3A:EB:60:4A:8E:EF:62:B8:7C:E3:C7:1B:FA:47
ValidityMon, 18 Mar 2024 20:34:07 GMT - Mon, 10 Jun 2024 20:34:06 GMT

File type
GIF image data, version 89a, 600 x 117
Size
325 kB (325076 bytes)
Hash
efb2fb9c6324222f019c04c56b1e00d2
f0e5c97de104ef75ad496336d15f4b980e5055e8
774d4eed5653477050074d1fbb01b3d554573c55f6ea2d37905b2e2c69d4fb40

HTTP Headers

GET /img/b/R29vZ2xl/AVvXsEgbD-mmuMUDwaeFMEz6NefivuQqHyrFXvXxqVxMhYRhR5wsfUhiWkPNkpxLKkagRNpJ2obIiZH_D9EK6tnHIJUFMVBOclZI98zrU7VPszAR5n-_GeSWNCNgnfH1MRWuL-ahhPjxsejyDa5yyWAaOMWXWT4jS4EngtdLLlXjaPakQoFIOsjyS6tfnEBHDlw/s16000/output-onlinegiftools.gif HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dana-login.aktivasie-monay.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/gif
vary: Origin
access-control-expose-headers: Content-Length
etag: "v145b"
expires: Fri, 26 Apr 2024 07:41:13 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="output-onlinegiftools.gif"
x-content-type-options: nosniff
date: Thu, 25 Apr 2024 07:41:13 GMT
server: fife
content-length: 325076
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEixR-U2gHP_VriGKaaVcf-_BbZmvWWoaRI8Wd26DYewNJayil_To6kgdWxmdq3TDJKQJ7lAAbD1de1uuuWTLQzCGdR8qT1S2mTehsdR02AFN573iPkN-0IrliCuRAy0xJfSH9AlfJWV7odqpRC_bxJLM2EkLf-84_ePEjEfE8SOtiKfEjcLQ7nDBjDc/s16000/ezgif.com-crop%20(4).gif

142.250.74.97

200 OK

1.4 MB

URL GET HTTP/3
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEixR-U2gHP_VriGKaaVcf-_BbZmvWWoaRI8Wd26DYewNJayil_To6kgdWxmdq3TDJKQJ7lAAbD1de1uuuWTLQzCGdR8qT1S2mTehsdR02AFN573iPkN-0IrliCuRAy0xJfSH9AlfJWV7odqpRC_bxJLM2EkLf-84_ePEjEfE8SOtiKfEjcLQ7nDBjDc/s16000/ezgif.com-crop%20(4).gif
IP
142.250.74.97:443
ASN
#15169 GOOGLE

Requested by
https://dana-login.aktivasie-monay.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint6E:66:E1:45:85:5C:3A:EB:60:4A:8E:EF:62:B8:7C:E3:C7:1B:FA:47
ValidityMon, 18 Mar 2024 20:34:07 GMT - Mon, 10 Jun 2024 20:34:06 GMT

File type
GIF image data, version 89a, 600 x 947
Size
1.4 MB (1382333 bytes)
Hash
4a67a67a0d4666b0da5807c65c3f09c3
b6dc767bca35bf211d8d2298e6c8664eebdd5f84
2e3a81133f893dfb5fc3f7d52e02fb7c193f68bfb61696dc5076c947bd4ea8f0

HTTP Headers

GET /img/b/R29vZ2xl/AVvXsEixR-U2gHP_VriGKaaVcf-_BbZmvWWoaRI8Wd26DYewNJayil_To6kgdWxmdq3TDJKQJ7lAAbD1de1uuuWTLQzCGdR8qT1S2mTehsdR02AFN573iPkN-0IrliCuRAy0xJfSH9AlfJWV7odqpRC_bxJLM2EkLf-84_ePEjEfE8SOtiKfEjcLQ7nDBjDc/s16000/ezgif.com-crop%20(4).gif HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dana-login.aktivasie-monay.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: image/gif
vary: Origin
access-control-expose-headers: Content-Length
etag: "v73c"
expires: Fri, 26 Apr 2024 07:41:17 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="ezgif.com-crop (4).gif"
x-content-type-options: nosniff
date: Thu, 25 Apr 2024 07:41:17 GMT
server: fife
content-length: 1382333
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEilUMIG_IMFVixTFpWb4xA5f1HJt25lbv-cc1baknB_YJeWO9FYU4SJOzdeMNkA1msFpUU-0MiI3B-llmFX122-XhqCq7-1HW4YUfaWX52rlNtfspDDvlFNj_A--xZIRknP3ycDkzm51noxYaFx_gfOck3U745QZSBwpCSesqOq1oEycuQamqaZlqoz/s16000/ezgif.com-crop%20(3).gif

142.250.74.97

200 OK

1.4 MB

URL GET HTTP/3
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEilUMIG_IMFVixTFpWb4xA5f1HJt25lbv-cc1baknB_YJeWO9FYU4SJOzdeMNkA1msFpUU-0MiI3B-llmFX122-XhqCq7-1HW4YUfaWX52rlNtfspDDvlFNj_A--xZIRknP3ycDkzm51noxYaFx_gfOck3U745QZSBwpCSesqOq1oEycuQamqaZlqoz/s16000/ezgif.com-crop%20(3).gif
IP
142.250.74.97:443
ASN
#15169 GOOGLE

Requested by
https://dana-login.aktivasie-monay.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint6E:66:E1:45:85:5C:3A:EB:60:4A:8E:EF:62:B8:7C:E3:C7:1B:FA:47
ValidityMon, 18 Mar 2024 20:34:07 GMT - Mon, 10 Jun 2024 20:34:06 GMT

File type
GIF image data, version 89a, 599 x 944
Size
1.4 MB (1386608 bytes)
Hash
3c0cbf27635610cc0872eb182c737b41
e9496fd5b16ed12289d07bb4e4efcdd0f4ac6450
90b285f5ad416e5ffa9a0f86c73653641c4b69e12a108011b362e8d1158d7594

HTTP Headers

GET /img/b/R29vZ2xl/AVvXsEilUMIG_IMFVixTFpWb4xA5f1HJt25lbv-cc1baknB_YJeWO9FYU4SJOzdeMNkA1msFpUU-0MiI3B-llmFX122-XhqCq7-1HW4YUfaWX52rlNtfspDDvlFNj_A--xZIRknP3ycDkzm51noxYaFx_gfOck3U745QZSBwpCSesqOq1oEycuQamqaZlqoz/s16000/ezgif.com-crop%20(3).gif HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dana-login.aktivasie-monay.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: image/gif
vary: Origin
access-control-expose-headers: Content-Length
etag: "v73d"
expires: Fri, 26 Apr 2024 07:41:17 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="ezgif.com-crop (3).gif"
x-content-type-options: nosniff
date: Thu, 25 Apr 2024 07:41:17 GMT
server: fife
content-length: 1386608
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjj8Fs3JMUwF85O07XgsV-e1rmQjTwS91jcu-zh3Lr_fEgVfhY823rmnMewtU59iGvsFjcBm-12OLSj81f57ZEksJeU2GaG7UU3zuwDsOsfTO4dAJ693JJyILcXjdHEzirw-pPBCeV1CfTqSroNgoMTGIfy-Y-HC8GAJDmo68GYd1-x2gGu0UsincrU/s16000/ezgif.com-crop%20(5).gif

142.250.74.97

200 OK

1.2 MB

URL GET HTTP/3
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjj8Fs3JMUwF85O07XgsV-e1rmQjTwS91jcu-zh3Lr_fEgVfhY823rmnMewtU59iGvsFjcBm-12OLSj81f57ZEksJeU2GaG7UU3zuwDsOsfTO4dAJ693JJyILcXjdHEzirw-pPBCeV1CfTqSroNgoMTGIfy-Y-HC8GAJDmo68GYd1-x2gGu0UsincrU/s16000/ezgif.com-crop%20(5).gif
IP
142.250.74.97:443
ASN
#15169 GOOGLE

Requested by
https://dana-login.aktivasie-monay.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint6E:66:E1:45:85:5C:3A:EB:60:4A:8E:EF:62:B8:7C:E3:C7:1B:FA:47
ValidityMon, 18 Mar 2024 20:34:07 GMT - Mon, 10 Jun 2024 20:34:06 GMT

File type
GIF image data, version 89a, 599 x 944
Size
1.2 MB (1188349 bytes)
Hash
785a25d36d14a2c575547966151f81a1
76b935386863f57b8b829b0d778f0a9257ac4b9d
f630b7d3b73881e20cb5cde9fefb66e917f66ce96264f0a381ed39a6a399265a

HTTP Headers

GET /img/b/R29vZ2xl/AVvXsEjj8Fs3JMUwF85O07XgsV-e1rmQjTwS91jcu-zh3Lr_fEgVfhY823rmnMewtU59iGvsFjcBm-12OLSj81f57ZEksJeU2GaG7UU3zuwDsOsfTO4dAJ693JJyILcXjdHEzirw-pPBCeV1CfTqSroNgoMTGIfy-Y-HC8GAJDmo68GYd1-x2gGu0UsincrU/s16000/ezgif.com-crop%20(5).gif HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dana-login.aktivasie-monay.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: image/gif
vary: Origin
access-control-expose-headers: Content-Length
etag: "v73d"
expires: Fri, 26 Apr 2024 07:41:17 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="ezgif.com-crop (5).gif"
x-content-type-options: nosniff
date: Thu, 25 Apr 2024 07:41:17 GMT
server: fife
content-length: 1188349
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEid9dARAQbMu1UTEgpOfyH6pn4eI3_XArbELp_8lfZtysRgex-gqs0Czc9ch_O7U2lrucgBVSqGQEL33BwV3Ri4D3evjzJHJ6LBFa_K-pIPbdO6QQ3iHlTkLiqo_w2z2NbXTw83lNcWHG7T9q2n6m7N3SZ-qfZpTdsioS3dm-YIfJh4zU16QEODOLKn/s16000/AddText_06-06-08.17.04.jpg

142.250.74.97

200 OK

56 kB

URL GET HTTP/3
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEid9dARAQbMu1UTEgpOfyH6pn4eI3_XArbELp_8lfZtysRgex-gqs0Czc9ch_O7U2lrucgBVSqGQEL33BwV3Ri4D3evjzJHJ6LBFa_K-pIPbdO6QQ3iHlTkLiqo_w2z2NbXTw83lNcWHG7T9q2n6m7N3SZ-qfZpTdsioS3dm-YIfJh4zU16QEODOLKn/s16000/AddText_06-06-08.17.04.jpg
IP
142.250.74.97:443
ASN
#15169 GOOGLE

Requested by
https://dana-login.aktivasie-monay.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint6E:66:E1:45:85:5C:3A:EB:60:4A:8E:EF:62:B8:7C:E3:C7:1B:FA:47
ValidityMon, 18 Mar 2024 20:34:07 GMT - Mon, 10 Jun 2024 20:34:06 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 599x237, components 3
Size
56 kB (56391 bytes)
Hash
5ecb3bcb8068110c5c44a096ba43cb77
e4e215baacbb74b21a31914cb82aea083c56685b
ed8e7414b2e1883d3d618f6b6ab5d2b100734edac00cd5a1ed3a278c745053a1

HTTP Headers

GET /img/b/R29vZ2xl/AVvXsEid9dARAQbMu1UTEgpOfyH6pn4eI3_XArbELp_8lfZtysRgex-gqs0Czc9ch_O7U2lrucgBVSqGQEL33BwV3Ri4D3evjzJHJ6LBFa_K-pIPbdO6QQ3iHlTkLiqo_w2z2NbXTw83lNcWHG7T9q2n6m7N3SZ-qfZpTdsioS3dm-YIfJh4zU16QEODOLKn/s16000/AddText_06-06-08.17.04.jpg HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dana-login.aktivasie-monay.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: image/jpeg
vary: Origin
access-control-expose-headers: Content-Length
etag: "v73b"
expires: Fri, 26 Apr 2024 07:41:17 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="AddText_06-06-08.17.04.jpg"
x-content-type-options: nosniff
date: Thu, 25 Apr 2024 07:41:17 GMT
server: fife
content-length: 56391
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi8hbZEfutKvr9pkj0-mkJYWt-1SBtt3gw-HFOEZc0172okrp0SFHLaW3PRGVDm1U0P7WWEMELIw4nlq1_1gCgyZBo3cxf-OJNpguNamdJryCkGU-hTHiW3RyOv5JD9eIjXTFtrJFCVn0ae4RxG4Oi-czAP20tEaJI3OstxFAbtOwtFxp6RvOHc6NZL/s1600/load_bg.png

142.250.74.97

200 OK

7.6 kB

URL GET HTTP/2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi8hbZEfutKvr9pkj0-mkJYWt-1SBtt3gw-HFOEZc0172okrp0SFHLaW3PRGVDm1U0P7WWEMELIw4nlq1_1gCgyZBo3cxf-OJNpguNamdJryCkGU-hTHiW3RyOv5JD9eIjXTFtrJFCVn0ae4RxG4Oi-czAP20tEaJI3OstxFAbtOwtFxp6RvOHc6NZL/s1600/load_bg.png
IP
142.250.74.97:443
ASN
#15169 GOOGLE

Requested by
https://dana-login.aktivasie-monay.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint6E:66:E1:45:85:5C:3A:EB:60:4A:8E:EF:62:B8:7C:E3:C7:1B:FA:47
ValidityMon, 18 Mar 2024 20:34:07 GMT - Mon, 10 Jun 2024 20:34:06 GMT

File type
PNG image data, 300 x 300, 8-bit gray+alpha, non-interlaced
Size
7.6 kB (7617 bytes)
Hash
001751494ae109e2f7f8a8a32f96a164
ed7fae6661ba71874ce35bc4528f1a4a94db7163
4f9d3c4e300d721848f9cac1283cb7afcc5d378d72d56bfa1288fd5b506bf648

HTTP Headers

GET /img/b/R29vZ2xl/AVvXsEi8hbZEfutKvr9pkj0-mkJYWt-1SBtt3gw-HFOEZc0172okrp0SFHLaW3PRGVDm1U0P7WWEMELIw4nlq1_1gCgyZBo3cxf-OJNpguNamdJryCkGU-hTHiW3RyOv5JD9eIjXTFtrJFCVn0ae4RxG4Oi-czAP20tEaJI3OstxFAbtOwtFxp6RvOHc6NZL/s1600/load_bg.png HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dana-login.aktivasie-monay.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
vary: Origin
access-control-expose-headers: Content-Length
etag: "v60c"
expires: Fri, 26 Apr 2024 07:41:13 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="load_bg.png"
x-content-type-options: nosniff
date: Thu, 25 Apr 2024 07:41:13 GMT
server: fife
content-length: 7617
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

dana-login.aktivasie-monay.com/asset/img/hero.svg

172.67.176.177

200 OK

32 kB

URL GET HTTP/3
dana-login.aktivasie-monay.com/asset/img/hero.svg
IP
172.67.176.177:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dana-login.aktivasie-monay.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectaktivasie-monay.com
Fingerprint5E:66:9F:39:CE:0F:ED:F8:D6:57:3D:97:F1:A4:16:AD:63:2C:43:76
ValiditySun, 14 Apr 2024 01:36:50 GMT - Sat, 13 Jul 2024 01:36:49 GMT

File type
SVG Scalable Vector Graphics image
Size
32 kB (31697 bytes)
Hash
bc0ceea50591f74883dd9b92b19b852c
5617f0be48b9a0973c24ff0e1d200201549a4a50
a3d7991adee411105f2ddd533c34d0f0afd141187bc13503fd035de014f954d8

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DANA

HTTP Headers

GET /asset/img/hero.svg HTTP/1.1
Host: dana-login.aktivasie-monay.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dana-login.aktivasie-monay.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 07:41:12 GMT
content-type: image/svg+xml
last-modified: Mon, 04 Sep 2023 19:49:00 GMT
cache-control: max-age=14400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XUE5pP3nrl0Waj37t18FMtmCkI8zEe5zqTKXPeT1Wo6hAVs1b56cfCxDtKtGuSx%2BdL3mlc4nBMs%2FFfdECfEIXFHx3f13YgguiTwSZALDc7fUz0P4Rp8EwDTKEI3yM%2FVTydpILBICfVVyA%2FgYipCInFo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879cb076cc490b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

dev-danapemulihan.pantheonsite.io/asset/jquery.mask.min.js

23.185.0.4

200 OK

7.9 kB

URL GET HTTP/2
dev-danapemulihan.pantheonsite.io/asset/jquery.mask.min.js
IP
23.185.0.4:443
ASN
#54113 FASTLY

Requested by
https://dana-login.aktivasie-monay.com/
Certificate
IssuerLet's Encrypt
Subjectpantheonsite.io
FingerprintF0:B6:EE:9C:03:9F:B0:36:8C:F7:7A:BA:A2:D4:49:C5:4D:32:99:59
ValidityMon, 22 Apr 2024 16:38:54 GMT - Sun, 21 Jul 2024 16:38:53 GMT

File type
JavaScript source, ASCII text, with very long lines (8132), with no line terminators
Size
7.9 kB (7920 bytes)
Hash
c71ebcdd10a5dd93f081dc61e87d6b63
88623481cb90c64c31185ae9325d420aeffdd1e6
d07deaceaefefc6bab3b5d703b361beac52560eb3418a71ae7312e2d873094ba

HTTP Headers

GET /asset/jquery.mask.min.js HTTP/1.1
Host: dev-danapemulihan.pantheonsite.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dana-login.aktivasie-monay.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-encoding: gzip
content-type: application/x-javascript
etag: W/"661ab731-1ef0"
expires: Thu, 25 Apr 2024 07:41:11 GMT
last-modified: Sat, 13 Apr 2024 16:47:45 GMT
server: nginx
strict-transport-security: max-age=300
x-pantheon-styx-hostname: styx-fe4-a-c686c7ffb-2j42z
x-styx-req-id: 304aa133-02d7-11ef-acb6-2270c3adcf97
cache-control: no-cache, must-revalidate
date: Thu, 25 Apr 2024 07:41:12 GMT
x-served-by: cache-chi-kigq8000053-CHI, cache-hel1410023-HEL
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1714030872.255777,VS0,VE128
vary: Accept-Encoding
x-robots-tag: noindex
age: 0
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
X-Firefox-Spdy: h2

unpkg.com/ionicons@7.1.0/dist/ionicons/svg/chevron-back-outline.svg

104.17.246.203

200 OK

211 B

URL GET HTTP/2
unpkg.com/ionicons@7.1.0/dist/ionicons/svg/chevron-back-outline.svg
IP
104.17.246.203:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dana-login.aktivasie-monay.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectunpkg.com
Fingerprint2E:F1:F6:31:28:EC:29:20:41:F4:58:4B:B1:CF:51:16:77:7E:BF:E3
ValidityMon, 01 Apr 2024 02:40:24 GMT - Sun, 30 Jun 2024 02:40:23 GMT

File type
SVG Scalable Vector Graphics image
Size
211 B (211 bytes)
Hash
2919f6d2e8e9c1bfc31fed4072ad3f79
4cdeb0870aaca773326ccf18196ff1e31c42c784
eb7aa1c3572b956a4927dac9d59aae15db1d5fe27473360ad2ecf98840eebb07

HTTP Headers

GET /ionicons@7.1.0/dist/ionicons/svg/chevron-back-outline.svg HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dana-login.aktivasie-monay.com/
Origin: https://dana-login.aktivasie-monay.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 25 Apr 2024 07:41:12 GMT
content-type: image/svg+xml
access-control-allow-origin: *
content-encoding: br
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: "d3-qgAfOZqw+DN474sa0ZhgYMZOPHQ"
via: 1.1 fly.io
fly-request-id: 01HV543GJCMYQMT5PQHDEFHFEX-ams
cf-cache-status: HIT
age: 1240581
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 879cb07b895eb503-OSL
X-Firefox-Spdy: h2

unpkg.com/ionicons@7.1.0/dist/ionicons/p-1c0b2c47.entry.js

104.17.246.203

200 OK

4.1 kB

URL GET HTTP/2
unpkg.com/ionicons@7.1.0/dist/ionicons/p-1c0b2c47.entry.js
IP
104.17.246.203:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dana-login.aktivasie-monay.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectunpkg.com
Fingerprint2E:F1:F6:31:28:EC:29:20:41:F4:58:4B:B1:CF:51:16:77:7E:BF:E3
ValidityMon, 01 Apr 2024 02:40:24 GMT - Sun, 30 Jun 2024 02:40:23 GMT

File type
JavaScript source, ASCII text, with very long lines (4227), with no line terminators
Size
4.1 kB (4141 bytes)
Hash
c97855fb35ac7b60fe4883cb9a1b9696
6deb219ac5599f7022956dc323d6830fa54861e3
37fad5305f8676ec1130d0fb9bb0341f27af2f5d3c52228679728e619cab1cb2

HTTP Headers

GET /ionicons@7.1.0/dist/ionicons/p-1c0b2c47.entry.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dana-login.aktivasie-monay.com
DNT: 1
Connection: keep-alive
Referer: https://unpkg.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 25 Apr 2024 07:41:12 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
content-encoding: br
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: "102d-HAssR+EnInAFwASMc9EDSQssXSU"
via: 1.1 fly.io
fly-request-id: 01HV84DGBQ0NTAXW8ZF15DQ6PS-ams
cf-cache-status: HIT
age: 1139590
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 879cb07b491db503-OSL
X-Firefox-Spdy: h2

unpkg.com/ionicons@7.1.0/dist/ionicons/p-40ae2aa7.js

104.17.246.203

200 OK

1.1 kB

URL GET HTTP/2
unpkg.com/ionicons@7.1.0/dist/ionicons/p-40ae2aa7.js
IP
104.17.246.203:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dana-login.aktivasie-monay.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectunpkg.com
Fingerprint2E:F1:F6:31:28:EC:29:20:41:F4:58:4B:B1:CF:51:16:77:7E:BF:E3
ValidityMon, 01 Apr 2024 02:40:24 GMT - Sun, 30 Jun 2024 02:40:23 GMT

File type
JavaScript source, ASCII text, with very long lines (1125), with no line terminators
Size
1.1 kB (1094 bytes)
Hash
a726f01c50d182a131a2a75f9ca7f295
733ec85658e2336ec9879a64a83a4baf27c1829c
6bb307feae81ba0d6dfbb820c761dfdbe789b958a08a5f5e349316052d6ac226

HTTP Headers

GET /ionicons@7.1.0/dist/ionicons/p-40ae2aa7.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dana-login.aktivasie-monay.com
DNT: 1
Connection: keep-alive
Referer: https://unpkg.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 25 Apr 2024 07:41:12 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"446-Txl4AaMXTHFEqGcTKKB8nQp2w2M"
via: 1.1 fly.io
fly-request-id: 01HGA60WSFTFRTMDAKY8BPXB6T-arn
cf-cache-status: HIT
age: 12881958
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 879cb07b693ab503-OSL
content-encoding: br
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (26)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL