Report - neon-profiterole-467daf.netlify.app/appeal_case

Report Overview

Submitted URL
neon-profiterole-467daf.netlify.app/appeal_case_id/#2847566493
IP
35.156.224.161
ASN
#16509 AMAZON-02
Submitted
2024-04-19 18:35:39
Access
public
Website Title
Site Not Found
Final URL
neon-profiterole-467daf.netlify.app/appeal_case_id/#2847566493
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
1
Threat Detection Systems
10

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
neon-profiterole-467daf.netlify.app	unknown	unknown	No data	No data	2.5 kB	13 kB	3.72.140.173

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2024-04-19 18:35:14	medium	Client IP	3.72.140.173	ET HUNTING Suspicious Netlify Hosted TLS SNI Request - Possible Phishing Landing

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-04-19	medium	neon-profiterole-467daf.netlify.app	Sinkholed
2024-04-19	medium	neon-profiterole-467daf.netlify.app	Sinkholed
2024-04-19	medium	neon-profiterole-467daf.netlify.app	Sinkholed
2024-04-19	medium	neon-profiterole-467daf.netlify.app	Sinkholed
2024-04-19	medium	neon-profiterole-467daf.netlify.app	Sinkholed

ThreatFox

No alerts detected

JavaScript (1)

	URL	Size	First Seen	Last Seen
	neon-profiterole-467daf.netlify.app/appeal_case_id/#2847566493	214 B	2023-11-30	2024-04-25
Pretty URL neon-profiterole-467daf.netlify.app/appeal_case_id/#2847566493 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-30 08:02:53 Last Seen2024-04-25 07:37:22 Times Seen39 Hash eca197dda6d9067413a9e53cd0be0456 64be605fea39669860a195f60a4555f369743746 41cc1b36a202cb6c0dc8bf5cbe165525a65845ba4adc7c05a68d77031611aea8 Loading...

HTTP Transactions (5)

URL IP Response Size

neon-profiterole-467daf.netlify.app/appeal_case_id/

3.72.140.173

2.8 kB

URL
neon-profiterole-467daf.netlify.app/appeal_case_id/
IP
3.72.140.173:0
ASN
#16509 AMAZON-02

File type
HTML document, ASCII text, with very long lines (1642)
Size
2.8 kB (2803 bytes)
Hash
b2491cae3154d9bed93da51ce3d21f83
d3181ab9b49c8717ea86ca994640adf42ea3fb49
d87b529bc7f010ad7870760368edb60b6ce604cd1474a81c5a73df248fd6d6b7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /appeal_case_id/ HTTP/1.1
Host: neon-profiterole-467daf.netlify.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
content-type: text/html
date: Fri, 19 Apr 2024 18:35:14 GMT
server: Netlify
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-nf-request-id: 01HVVT89RQCH5360TB9EZ1CMAF
content-length: 2803
X-Firefox-Spdy: h2

neon-profiterole-467daf.netlify.app/appeal_case_id/

3.72.140.173

2.8 kB

URL
neon-profiterole-467daf.netlify.app/appeal_case_id/
IP
3.72.140.173:0
ASN
#16509 AMAZON-02

File type
HTML document, ASCII text, with very long lines (1642)
Size
2.8 kB (2803 bytes)
Hash
3bb87fbe735caa5292a8a10480019ce3
a8c422a7cd291d65235f6ebc2c3e54b748af45f3
60b237370e6fae862346a01a6ae99d5a48443959e51329c7a723fc6a3c1f2821

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /appeal_case_id/ HTTP/1.1
Host: neon-profiterole-467daf.netlify.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
content-type: text/html
date: Fri, 19 Apr 2024 18:35:14 GMT
server: Netlify
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-nf-request-id: 01HVVT89YJGBX7VA3A01GGCWMY
content-length: 2803
X-Firefox-Spdy: h2

neon-profiterole-467daf.netlify.app/favicon.ico

3.72.140.173

404 Not Found

50 B

URL GET HTTP/2
neon-profiterole-467daf.netlify.app/favicon.ico
IP
3.72.140.173:443
ASN
#16509 AMAZON-02

Requested by
https://neon-profiterole-467daf.netlify.app/appeal_case_id/#2847566493
Certificate
IssuerDigiCert Inc
Subject*.netlify.app
FingerprintB0:8E:E9:A5:C3:D9:B5:C1:FF:B6:51:7A:DF:98:CF:2D:28:18:41:9B
ValidityMon, 15 Jan 2024 00:00:00 GMT - Fri, 14 Feb 2025 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
50 B (50 bytes)
Hash
8473e774fafbc25dd4ce4f463540f359
838cfeaefb8b5576e9d83569d1609d023f3d132a
47d7c8a5d0a1901b9141b741b9a94c00366377729efb48f51981b4cc901388a8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: neon-profiterole-467daf.netlify.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neon-profiterole-467daf.netlify.app/appeal_case_id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
cache-control: private, max-age=0
content-type: text/plain; charset=utf-8
date: Fri, 19 Apr 2024 18:35:14 GMT
server: Netlify
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-nf-request-id: 01HVVT8A1SP0DSG1R5KDT5HC21
content-length: 50
X-Firefox-Spdy: h2

neon-profiterole-467daf.netlify.app/appeal_case_id/

3.72.140.173

404 Not Found

2.8 kB

URL User Request GET HTTP/2
neon-profiterole-467daf.netlify.app/appeal_case_id/
IP
3.72.140.173:443
ASN
#16509 AMAZON-02

Certificate
IssuerDigiCert Inc
Subject*.netlify.app
FingerprintB0:8E:E9:A5:C3:D9:B5:C1:FF:B6:51:7A:DF:98:CF:2D:28:18:41:9B
ValidityMon, 15 Jan 2024 00:00:00 GMT - Fri, 14 Feb 2025 23:59:59 GMT

File type
HTML document, ASCII text, with very long lines (2836), with no line terminators
Size
2.8 kB (2803 bytes)
Hash
960ac086f09e079d42bdfdd4f48fbcb3
26d83ddfa0f90c87f2f6ff10247987fdf6fae301
c0fed27e46479d8db558fdb47dd2d42900b6ee0aed7d2a006af7f0598e0188b4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /appeal_case_id/ HTTP/1.1
Host: neon-profiterole-467daf.netlify.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
content-type: text/html
date: Fri, 19 Apr 2024 18:35:14 GMT
server: Netlify
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-nf-request-id: 01HVVT89RQCH5360TB9EZ1CMAF
content-length: 2803
X-Firefox-Spdy: h2

neon-profiterole-467daf.netlify.app/appeal_case_id/

3.72.140.173

404 Not Found

2.8 kB

URL User Request GET HTTP/2
neon-profiterole-467daf.netlify.app/appeal_case_id/
IP
3.72.140.173:443
ASN
#16509 AMAZON-02

Certificate
IssuerDigiCert Inc
Subject*.netlify.app
FingerprintB0:8E:E9:A5:C3:D9:B5:C1:FF:B6:51:7A:DF:98:CF:2D:28:18:41:9B
ValidityMon, 15 Jan 2024 00:00:00 GMT - Fri, 14 Feb 2025 23:59:59 GMT

File type
HTML document, ASCII text, with very long lines (2836), with no line terminators
Size
2.8 kB (2803 bytes)
Hash
2555dbd87e199222882267a793c7328c
de1b4665d14f6e5e4e8a27a402527b2eb418f18d
0a1d708f88c8678f4b8337024a4057fe730250faa5055d6707556424d8e57df8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /appeal_case_id/ HTTP/1.1
Host: neon-profiterole-467daf.netlify.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
content-type: text/html
date: Fri, 19 Apr 2024 18:35:14 GMT
server: Netlify
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-nf-request-id: 01HVVT89YJGBX7VA3A01GGCWMY
content-length: 2803
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (1)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (5)

URL

IP

ASN

File type

Size

Hash

Detections

HTTP Headers

URL

IP

ASN

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers