Report Overview

  1. Submitted URL

    m.jennybrooklin.com/analytics/hit.php?nocache=1612905461.1021&r=https://quickinaction.top/relWAdJCrASFrL5P1p/Y3RoZWlzZW5AYWNhZHZpc2VyLmNvbQ==&a=12&i=4240601&r2=https://quickinaction.top/relWAdJCrASFrL5P1p/Y3RoZWlzZW5AYWNhZHZpc2VyLmNvbQ==

  2. IP

    23.21.77.60

    ASN

    #14618 AMAZON-AES

  3. Submitted

    2024-05-10 15:44:01

    Access

    public

  4. Website Title

    9xrukv66ho

  5. Final URL

    safetycheckincluded.icu/?dkxydr9z4=aHR0cHM6Ly9sb2dpbi5taWNyb3NvZnRvbmxpbmUuY29tL2NvbW1vbi9vYXV0aDIvYXV0aG9yaXplP2NsaWVudF9pZD0wMDAwMDAwMi0wMDAwLTBmZjEtY2UwMC0wMDAwMDAwMDAwMDAmcmVkaXJlY3RfdXJpPWh0dHBzJTNhJTJmJTJmb3V0bG9vay5vZmZpY2UuY29tJTJmb3dhJTJmJnJlc291cmNlPTAwMDAwMDAyLTAwMDAtMGZmMS1jZTAwLTAwMDAwMDAwMDAwMCZyZXNwb25zZV9tb2RlPWZvcm1fcG9zdCZyZXNwb25zZV90eXBlPWNvZGUraWRfdG9rZW4mc2NvcGU9b3BlbmlkJm1zYWZlZD0xJm1zYXJlZGlyPTEmbG9naW5faGludD1jdGhlaXNlbiU0MGFjYWR2aXNlci5jb20mY2xpZW50LXJlcXVlc3QtaWQ9NjRhMjUzZDQtNjZjOC1mOWZiLTAyOWQtYzk4NzAzODI4MWRiJnByb3RlY3RlZHRva2VuPXRydWUmY2xhaW1zPSU3YiUyMmlkX3Rva2VuJTIyJTNhJTdiJTIyeG1zX2NjJTIyJTNhJTdiJTIydmFsdWVzJTIyJTNhJTViJTIyQ1AxJTIyJTVkJTdkJTdkJTdkJm5vbmNlPTYzODUwOTUyNjIxNDk3ODQxMi5lZjc1ODU4OC0xNWI5LTRmYzYtODM4My0xNTg0ZmNlZGY4NGQmc3RhdGU9RFl0TERnSWhFQVZCei1MQ0JUTjh1cUZaR0k5aWtJOURvcERvUks5dkw2cnlhdkdrRU9MSUhCaXBXU0o0UjZnaldtOE54RUJnN0ZKYlFFSWlaZkFlRmJUc0ZUbHluTVJSU3lNb2tyX25kZjdTZW4zT1J4LTNyWV85a3ZldDlrOGRKOUFwcF9MbF9WN3lmUDBC

  6. Tags

  7. urlquery detections

    Phishing - Microsoft Outlook

Detections

  2. urlquery

    19

  3. Network Intrusion Detection

    2

  4. Threat Detection Systems

    0

Domain Summary

Domain / FQDNRankRegisteredFirst SeenLast Seen
m.jennybrooklin.comunknown2009-03-112019-06-122019-08-12
quickinaction.topunknownunknownNo dataNo data
challenges.cloudflare.comunknown2009-02-172021-10-202024-05-10
checkingappworkstationaccesswithapplicationaccdesschecked.topunknownunknown2023-10-032024-03-28
safetycheckincluded.icuunknownunknownNo dataNo data
outlook.office365.com512005-06-202013-04-112021-03-15
r4.res.office365.com1802005-06-202017-03-032024-05-09

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

SeveritySource IPDestination IPAlert
mediumClient IP 159.223.9.9
ET INFO Suspicious Domain (*.icu) in TLS SNI
mediumClient IP 159.223.9.9
ET INFO Suspicious Domain (*.icu) in TLS SNI

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected


OpenPhish

No alerts detected


PhishTank

No alerts detected


mnemonic secure dns

No alerts detected


Quad9 DNS

No alerts detected


ThreatFox

No alerts detected


JavaScript (176)

HTTP Transactions (36)

URLIPResponseSize
m.jennybrooklin.com/
23.21.77.60 138 B
quickinaction.top/relWAdJCrASFrL5P1p/Y3RoZWlzZW5AYWNhZHZpc2VyLmNvbQ==
162.240.224.36302 Found3.8 kB
challenges.cloudflare.com/turnstile/v0/api.js?onload=onloadTurnstileCallback
104.17.2.184 0 B
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/3lgor/0x4AAAAAAAZK4ttxZkXmuUII/auto/normal
104.17.2.184 18 kB
challenges.cloudflare.com/turnstile/v0/g/1b3559406bc8/api.js
104.17.2.184 15 kB
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/i/881b0bc6abba56ba/1715355818415/hkrAfZ_aPzfl6Ys
104.17.2.184 61 B
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/pat/881b0bc6abba56ba/1715355818423/9f116595e7041d6ba7178fc2c1ff8b622feb08e1196dc3f778a9f36e36269f78/S4LU3GiKfZt2h_L
104.17.2.184 1 B
quickinaction.top/relWAdJCrASFrL5P1p/Y3RoZWlzZW5AYWNhZHZpc2VyLmNvbQ==
162.240.224.36302 Found0 B
checkingappworkstationaccesswithapplicationaccdesschecked.top/?mfgmmflc&email=ctheisen@acadviser.com
159.223.9.9302 Found0 B
safetycheckincluded.icu/?dataXX0=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ1cmwiOiJodHRwczovL3NhZmV0eWNoZWNraW5jbHVkZWQuaWN1IiwiZG9tYWluIjoic2FmZXR5Y2hlY2tpbmNsdWRlZC5pY3UiLCJrZXkiOiJFY2NUbElPTzZkeW0iLCJxcmMiOiJjdGhlaXNlbkBhY2FkdmlzZXIuY29tIiwiaWF0IjoxNzE1MzU1ODIwLCJleHAiOjE3MTUzNTU5NDB9.CDHpXEpFDNAY5RKUmlZpnKAzj_oZNixM7KrHNFc7MYc
159.223.9.9302 Found0 B
safetycheckincluded.icu/?qrc=ctheisen%40acadviser.com
159.223.9.9302 Moved Temporarily0 B
safetycheckincluded.icu/owa/?login_hint=ctheisen%40acadviser.com
159.223.9.9302 Found1.4 kB
safetycheckincluded.icu/aadcdn.msauth.net/~/ests/2.1/content/cdnbundles/converged.v2.login.min_1ito3russhq-9gioj-zd4w2.css
159.223.9.9200 OK20 kB
safetycheckincluded.icu/aadcdn.msauth.net/~/shared/1.0/content/js/ConvergedLogin_PCore_IDwaQXicOTFiRVOQGoK9bQ2.js
159.223.9.9200 OK689 kB
safetycheckincluded.icu/aadcdn.msauth.net/~/ests/2.1/content/cdnbundles/ux.converged.login.strings-en.min_il6fx5t9s506cdxfu3ywpg2.js
159.223.9.9200 OK33 kB
outlook.office365.com/owa/prefetch.aspx
40.99.215.82200 OK1.2 kB
safetycheckincluded.icu/aadcdn.msauth.net/~/shared/1.0/content/images/marching_ants_b540a8e518037192e32c4fe58bf2dbab.gif
159.223.9.9200 OK3.6 kB
safetycheckincluded.icu/aadcdn.msauth.net/~/shared/1.0/content/images/marching_ants_white_166de53471265253ab3a456defe6da23.gif
159.223.9.9200 OK2.7 kB
r4.res.office365.com/owa/prem/15.20.7544.51/scripts/boot.worldwide.0.mouse.js
23.36.79.11404 Not Found10 B
safetycheckincluded.icu/aadcdn.msauth.net/~/shared/1.0/content/images/appbackgrounds/49-small_e58aafc980614a9cd7796bea7b5ea8f0.jpg
159.223.9.9200 OK987 B
safetycheckincluded.icu/aadcdn.msauth.net/~/shared/1.0/content/images/appbackgrounds/49_7916a894ebde7d29c2cc29b267f1299f.jpg
159.223.9.9200 OK18 kB
safetycheckincluded.icu/aadcdn.msauth.net/~/shared/1.0/content/images/applogos/53_8b36337037cff88c3df203bb73d58e41.png
159.223.9.9200 OK5.1 kB
safetycheckincluded.icu/aadcdn.msauth.net/~/shared/1.0/content/js/asyncchunk/convergedlogin_pcustomizationloader_80e93b9a4cb13643afca.js
159.223.9.9200 OK34 kB
r4.res.office365.com/owa/prem/15.20.7544.51/scripts/boot.worldwide.1.mouse.js
23.36.79.11404 Not Found10 B
r4.res.office365.com/owa/prem/15.20.7544.51/scripts/boot.worldwide.2.mouse.js
23.36.79.11404 Not Found10 B
r4.res.office365.com/owa/prem/15.20.7544.51/scripts/boot.worldwide.3.mouse.js
23.36.79.11404 Not Found10 B
r4.res.office365.com/owa/prem/15.20.7544.51/resources/images/0/sprite1.mouse.png
23.36.79.11404 Not Found10 B
r4.res.office365.com/owa/prem/15.20.7544.51/resources/images/0/sprite1.mouse.css
23.36.79.11404 Not Found10 B
r4.res.office365.com/owa/prem/15.20.7544.51/resources/styles/0/boot.worldwide.mouse.css
23.36.79.11404 Not Found10 B
r4.res.office365.com/owa/prem/15.20.7544.51/resources/styles/fonts/office365icons.woff
23.36.79.11404 Not Found10 B
r4.res.office365.com/owa/prem/15.20.7544.51/resources/styles/fonts/office365icons.ttf
23.36.79.11404 Not Found10 B
safetycheckincluded.icu/aadcdn.msauth.net/~/shared/1.0/content/images/microsoft_logo_ee5c8d9fb6248c938fd0dc19370e90bd.svg
159.223.9.9200 OK3.7 kB
safetycheckincluded.icu/aadcdn.msauth.net/~/shared/1.0/content/js/asyncchunk/convergedlogin_ppassword_f7b06b70c72b4590b779.js
159.223.9.9200 OK24 kB
safetycheckincluded.icu/?dkxydr9z4=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
159.223.9.9200 OK39 kB
safetycheckincluded.icu/aadcdn.msauth.net/~/shared/1.0/content/js/oneDs_641b1cf809bdc17b42ab.js
159.223.9.9200 OK190 kB
safetycheckincluded.icu/aadcdn.msauth.net/~/shared/1.0/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.ico
159.223.9.9200 OK17 kB