Report - zxcyg.mubbb.my.id/

Report Overview

Submitted URL
zxcyg.mubbb.my.id/
IP
188.114.96.1
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-18 06:18:21
Access
public
Website Title
Free Fire
Final URL
zxcyg.mubbb.my.id/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
42

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-04-18	1.0 kB	32 kB	216.58.207.227
www.pubgmobile.com	21653	2017-10-18	2018-04-27	2024-04-11	438 B	700 B	95.101.11.144
raw.githubusercontent.com	35802	2014-02-06	2014-03-01	2024-04-17	1.2 kB	1.6 kB	185.199.111.133
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17	2024-04-17	1.1 kB	46 kB	104.17.25.14
ajax.googleapis.com	12905	2005-01-25	2013-08-16	2024-04-17	864 B	61 kB	142.250.74.170
play-lh.googleusercontent.com	407	2008-11-17	2019-09-30	2024-04-16	495 B	74 kB	142.250.74.86
unpkg.com	11693	2016-01-06	2016-01-08	2024-04-17	854 B	980 B	104.17.245.203
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-04-18	463 B	12 kB	216.58.207.234
stackpath.bootstrapcdn.com	2467	2012-05-25	2018-06-15	2024-04-18	462 B	32 kB	104.18.11.207
cdn.jsdelivr.net	439	2012-05-16	2012-09-30	2024-04-17	464 B	30 kB	151.101.129.229
zxcyg.mubbb.my.id	unknown	2023-09-09	2024-03-26	2024-03-27	9.5 kB	1.6 MB	188.114.96.1
i.ibb.co	13485	2010-07-20	2018-11-25	2024-04-17	874 B	104 kB	162.19.58.156
rawcdn.githack.com	72170	2013-10-12	2016-07-04	2024-04-18	1.1 kB	1.9 kB	104.21.234.230
i.postimg.cc	23840	2016-06-11	2018-04-11	2024-04-17	429 B	38 kB	162.19.61.80
code.jquery.com	634	2005-12-10	2012-05-21	2024-04-17	412 B	33 kB	151.101.66.137
dl.dir.freefiremobile.com	27937	2017-09-04	2020-07-27	2024-04-10	976 B	21 kB	54.230.111.38

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-04-17	medium	zxcyg.mubbb.my.id/	Garena
2024-04-17	medium	zxcyg.mubbb.my.id/	Garena
2024-04-17	medium	zxcyg.mubbb.my.id/	Garena
2024-04-17	medium	zxcyg.mubbb.my.id/	Garena
2024-04-17	medium	zxcyg.mubbb.my.id/	Garena
2024-04-17	medium	zxcyg.mubbb.my.id/	Garena
2024-04-17	medium	zxcyg.mubbb.my.id/	Garena
2024-04-17	medium	zxcyg.mubbb.my.id/	Garena
2024-04-17	medium	zxcyg.mubbb.my.id/	Garena
2024-04-17	medium	zxcyg.mubbb.my.id/	Garena
2024-04-17	medium	zxcyg.mubbb.my.id/	Garena
2024-04-17	medium	zxcyg.mubbb.my.id/	Garena
2024-04-17	medium	zxcyg.mubbb.my.id/	Garena
2024-04-17	medium	zxcyg.mubbb.my.id/	Garena
2024-04-17	medium	zxcyg.mubbb.my.id/	Garena
2024-04-17	medium	zxcyg.mubbb.my.id/	Garena
2024-04-17	medium	zxcyg.mubbb.my.id/	Garena
2024-04-17	medium	zxcyg.mubbb.my.id/	Garena
2024-04-17	medium	zxcyg.mubbb.my.id/	Garena
2024-04-17	medium	zxcyg.mubbb.my.id/	Garena
2024-04-17	medium	zxcyg.mubbb.my.id/	Garena

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (5)

	URL	Size	First Seen	Last Seen
	zxcyg.mubbb.my.id/	4.9 kB	2023-04-21	2024-04-26
Pretty URL zxcyg.mubbb.my.id/ IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-21 09:28:35 Last Seen2024-04-26 06:09:49 Times Seen43 Hash 75bc8c49822c79ae6e0676a112be6d63 87dfc9e605f40a1145c8a2ab20a09a2d368a83f5 f14eee04653661d6d311e25340e04d76229dac7cca8c51c9d61e89b7469add20 Loading...

	code.jquery.com/jquery-1.10.2.min.js	93 kB	2023-03-07	2024-04-30
Pretty URL code.jquery.com/jquery-1.10.2.min.js IP 151.101.66.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-30 20:09:47 Times Seen10329 Hash 628072e7212db1e8cdacb22b21752cda 0511abe9863c2ea7084efa7e24d1d86c5b3974f1 0ba081f546084bd5097aa8a73c75931d5aa1fc4d6e846e53c21f98e6a1509988 Loading...

	ajax.googleapis.com/ajax/libs/jquery/2.1.1/jquery.min.js	84 kB	2023-03-07	2024-05-01
Pretty URL ajax.googleapis.com/ajax/libs/jquery/2.1.1/jquery.min.js IP 142.250.74.170 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-05-01 11:00:28 Times Seen13902 Hash e40ec2161fe7993196f23c8a07346306 afb90752e0a90c24b7f724faca86c5f3d15d1178 874706b2b1311a0719b5267f7d1cf803057e367e94ae1ff7bf78c5450d30f5d4 Loading...

	ajax.googleapis.com/ajax/libs/jquery/2.1.3/jquery.min.js	84 kB	2023-03-07	2024-05-01
Pretty URL ajax.googleapis.com/ajax/libs/jquery/2.1.3/jquery.min.js IP 142.250.74.170 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-05-01 10:44:51 Times Seen14263 Hash 32015dd42e9582a80a84736f5d9a44d7 41b4bfbaa96be6d1440db6e78004ade1c134e276 8af93bd675e1cfd9ecc850e862819fdac6e3ad1f5d761f970e409c7d9c63bdc3 Loading...

	zxcyg.mubbb.my.id/js/ryucodex.js	4.3 kB	2023-03-07	2024-04-29
Pretty URL zxcyg.mubbb.my.id/js/ryucodex.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:29:08 Last Seen2024-04-29 18:26:17 Times Seen242 Hash 3c6b357da9a9c2229aa9db0d95f09fa6 7b15d8f866df1f83d3cebc72f8b29df8335b5bb4 d65b12be8cd3346554199d0d81fed9e1bf66ee7aa0da40a7f1b715e046f065e3 Loading...

HTTP Transactions (44)

URL IP Response Size

cdnjs.cloudflare.com/ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.min.css

104.17.25.14

200 OK

5.8 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.min.css
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://zxcyg.mubbb.my.id/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
5.8 kB (5845 bytes)
Hash
e9365fe85b7e4db79a87015e52c3db6c
2e2b5eb6e08f0f3d11fe0ada97c962a23ba6a0d9
dec3e9f0190a504ed0c8f4a5e957c107206ba106cac4a1bbb6cbac6369a16d56

HTTP Headers

GET /ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:17:51 GMT
content-type: text/css; charset=utf-8
content-length: 5845
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ed9-1149f"
last-modified: Mon, 04 May 2020 16:12:09 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 602224
expires: Tue, 08 Apr 2025 06:17:51 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2B5mPK3aAazb3g%2B72oYx9fjjYgnouoo0KyXApoETn%2BPzfrb03MB%2BDo0WIOCG%2Fedp3JpKstZTNy93FPdPcxshNLMGDjbj%2FgkaO3fNwuBsbffZxjJEzrs0Aj5edvZcXxisbGitB2r7a"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 876288c39c440b65-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.jsdelivr.net/gh/gowebid/assets@main/go_login/facebook_white.png

151.101.129.229

200 OK

29 kB

URL GET HTTP/2
cdn.jsdelivr.net/gh/gowebid/assets@main/go_login/facebook_white.png
IP
151.101.129.229:443
ASN
#54113 FASTLY

Requested by
https://zxcyg.mubbb.my.id/
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT

File type
PNG image data, 604 x 158, 8-bit/color RGBA, non-interlaced
Size
29 kB (28789 bytes)
Hash
74190b93fc4f5d88f0c8e6411ba20bd8
89ce2ecb660a90b8e6ed1b335443d7767c59f28a
092a3cd5f86b3f039feefdeb86694cd16ae545af214cfda614bdbbe2d1bde401

HTTP Headers

GET /gh/gowebid/assets@main/go_login/facebook_white.png HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: image/png
x-jsd-version: main
x-jsd-version-type: branch
etag: W/"7075-ic4uy2YKkLjm7RszVEPXdnxZ8oo"
accept-ranges: bytes
age: 27396
date: Thu, 18 Apr 2024 06:17:52 GMT
x-served-by: cache-fra-etou8220127-FRA, cache-hel1410029-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 28789
X-Firefox-Spdy: h2

code.jquery.com/jquery-1.10.2.min.js

151.101.66.137

200 OK

33 kB

URL GET HTTP/2
code.jquery.com/jquery-1.10.2.min.js
IP
151.101.66.137:443
ASN
#54113 FASTLY

Requested by
https://zxcyg.mubbb.my.id/
Certificate
IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (32072)
Size
33 kB (32788 bytes)
Hash
628072e7212db1e8cdacb22b21752cda
0511abe9863c2ea7084efa7e24d1d86c5b3974f1
0ba081f546084bd5097aa8a73c75931d5aa1fc4d6e846e53c21f98e6a1509988

HTTP Headers

GET /jquery-1.10.2.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-16bb3"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 18 Apr 2024 06:17:52 GMT
age: 18620466
x-served-by: cache-lga13622-LGA, cache-hel1410027-HEL
x-cache: HIT, HIT
x-cache-hits: 1, 60146
x-timer: S1713421072.135659,VS0,VE0
vary: Accept-Encoding
content-length: 32788
X-Firefox-Spdy: h2

dl.dir.freefiremobile.com/common/web_event/official2/dist/client/img/full_logo.969f536.png

54.230.111.38

200 OK

8.3 kB

URL GET HTTP/2
dl.dir.freefiremobile.com/common/web_event/official2/dist/client/img/full_logo.969f536.png
IP
54.230.111.38:443
ASN
#16509 AMAZON-02

Requested by
https://zxcyg.mubbb.my.id/
Certificate
IssuerAmazon
Subjectdl.dir.freefiremobile.com
FingerprintD7:4C:09:C2:7E:90:38:EA:18:D7:59:E0:F8:87:98:CF:8A:74:D3:D9
ValidityWed, 29 Nov 2023 00:00:00 GMT - Fri, 27 Dec 2024 23:59:59 GMT

File type
PNG image data, 616 x 90, 8-bit/color RGBA, non-interlaced
Size
8.3 kB (8314 bytes)
Hash
c632e6bfd0076695e56477bdb3f7232c
5b4212f029814b5dfda946ac5e5a6ba97857feb9
86ccbc1dbeb58af3e6bce5ee52f86a47399da998ad34a0fd2ce9b0b539d92f6c

HTTP Headers

GET /common/web_event/official2/dist/client/img/full_logo.969f536.png HTTP/1.1
Host: dl.dir.freefiremobile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
content-length: 8314
server: OBS
date: Thu, 18 Apr 2024 05:47:26 GMT
x-obs-request-id: 0000018EEFBED9C2980C9F5219AFC72D
content-md5: xjLmv9AHZpXlZHe9s/cjLA==
x-obs-replication-status: REPLICA
accept-ranges: bytes
last-modified: Wed, 10 Apr 2024 03:54:58 GMT
x-obs-id-2: 32AAAQAAEAABAAAQAAEAABAAAQAAEAABCT5Pawrlw+45IZe0Xp59LuXRuWYPpHOB
etag: "c632e6bfd0076695e56477bdb3f7232c"
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 5XugUnmjo_cfM5z85ftApWXkzEY4SMvi8iAhGxJw8MwSu96pccyg0Q==
age: 1826
vary: Origin
X-Firefox-Spdy: h2

dl.dir.freefiremobile.com/common/web_event/official2/dist/client/img/garena_logo.b28b2b6.png

54.230.111.38

200 OK

11 kB

URL GET HTTP/2
dl.dir.freefiremobile.com/common/web_event/official2/dist/client/img/garena_logo.b28b2b6.png
IP
54.230.111.38:443
ASN
#16509 AMAZON-02

Requested by
https://zxcyg.mubbb.my.id/
Certificate
IssuerAmazon
Subjectdl.dir.freefiremobile.com
FingerprintD7:4C:09:C2:7E:90:38:EA:18:D7:59:E0:F8:87:98:CF:8A:74:D3:D9
ValidityWed, 29 Nov 2023 00:00:00 GMT - Fri, 27 Dec 2024 23:59:59 GMT

File type
PNG image data, 459 x 138, 8-bit/color RGBA, non-interlaced
Size
11 kB (11185 bytes)
Hash
f77fe97fc8f4d06fd93eaf7552c4a3e9
c73f03f3e5a9f460eb83e10ae7312738a36ce720
b695d33c5ece1af9739e89855c4cc718fd6e9550528009ee5ff644cac193cb41

HTTP Headers

GET /common/web_event/official2/dist/client/img/garena_logo.b28b2b6.png HTTP/1.1
Host: dl.dir.freefiremobile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
content-length: 11185
server: OBS
date: Thu, 18 Apr 2024 05:34:03 GMT
x-obs-request-id: 0000018EEFB29B3290196F99481C9D3D
content-md5: 93/pf8j00G/ZPq91UsSj6Q==
x-obs-replication-status: REPLICA
accept-ranges: bytes
last-modified: Wed, 10 Apr 2024 03:54:57 GMT
x-obs-id-2: 32AAAQAAEAABAAAQAAEAABAAAQAAEAABCSHIBy/pQsl8yqISVx9KBwHq9gLP3Ile
etag: "f77fe97fc8f4d06fd93eaf7552c4a3e9"
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: DI791Mp3dAToYwjQCrSdUp3Lpo-RFdUkPjgmV_ikd1LnHihtrCcjLA==
age: 2629
vary: Origin
X-Firefox-Spdy: h2

ajax.googleapis.com/ajax/libs/jquery/2.1.3/jquery.min.js

142.250.74.170

200 OK

30 kB

URL GET HTTP/2
ajax.googleapis.com/ajax/libs/jquery/2.1.3/jquery.min.js
IP
142.250.74.170:443
ASN
#15169 GOOGLE

Requested by
https://zxcyg.mubbb.my.id/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E
ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT

File type
JavaScript source, ASCII text, with very long lines (32180)
Size
30 kB (29707 bytes)
Hash
32015dd42e9582a80a84736f5d9a44d7
41b4bfbaa96be6d1440db6e78004ade1c134e276
8af93bd675e1cfd9ecc850e862819fdac6e3ad1f5d761f970e409c7d9c63bdc3

HTTP Headers

GET /ajax/libs/jquery/2.1.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 29707
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 11 Apr 2024 17:21:57 GMT
expires: Fri, 11 Apr 2025 17:21:57 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 564955
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ajax.googleapis.com/ajax/libs/jquery/2.1.1/jquery.min.js

142.250.74.170

200 OK

30 kB

URL GET HTTP/2
ajax.googleapis.com/ajax/libs/jquery/2.1.1/jquery.min.js
IP
142.250.74.170:443
ASN
#15169 GOOGLE

Requested by
https://zxcyg.mubbb.my.id/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E
ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT

File type
JavaScript source, ASCII text, with very long lines (32061)
Size
30 kB (29671 bytes)
Hash
e40ec2161fe7993196f23c8a07346306
afb90752e0a90c24b7f724faca86c5f3d15d1178
874706b2b1311a0719b5267f7d1cf803057e367e94ae1ff7bf78c5450d30f5d4

HTTP Headers

GET /ajax/libs/jquery/2.1.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 29671
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 11 Apr 2024 17:38:23 GMT
expires: Fri, 11 Apr 2025 17:38:23 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 563969
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

i.ibb.co/ccxBcPG/ap-resize.png

162.19.58.156

200 OK

64 kB

URL GET HTTP/2
i.ibb.co/ccxBcPG/ap-resize.png
IP
162.19.58.156:443
ASN
#16276 OVH SAS

Requested by
https://zxcyg.mubbb.my.id/
Certificate
IssuerLet's Encrypt
Subjectibb.co
Fingerprint47:33:B4:39:55:FC:BC:18:08:79:9C:6C:9D:F3:CF:3A:89:C4:99:62
ValidityWed, 07 Feb 2024 12:41:56 GMT - Tue, 07 May 2024 12:41:55 GMT

File type
PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced
Size
64 kB (63618 bytes)
Hash
577860cea8b0ad65ee35abb12a486d9e
524bd6d47354c516316a6197d25dadb6b0302420
dd20f80c86b2dd26de9c4eb68ad4df3216319f546822c003132b2a52b8e24be2

HTTP Headers

GET /ccxBcPG/ap-resize.png HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 06:17:52 GMT
content-type: image/png
content-length: 63618
last-modified: Wed, 13 Mar 2024 16:49:15 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2

zxcyg.mubbb.my.id/static/img/reward/6.png

188.114.96.1

200 OK

86 kB

URL GET HTTP/3
zxcyg.mubbb.my.id/static/img/reward/6.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://zxcyg.mubbb.my.id/
Certificate
IssuerGoogle Trust Services LLC
Subjectmubbb.my.id
FingerprintB6:0E:37:53:C6:DC:64:5B:AB:D8:51:2D:41:E0:3B:23:2E:0C:D0:B4
ValidityMon, 04 Mar 2024 02:04:58 GMT - Sun, 02 Jun 2024 02:04:57 GMT

File type
PNG image data, 280 x 368, 8-bit/color RGB, non-interlaced
Size
86 kB (86293 bytes)
Hash
a2fa517c4924ef7d3358cf41f9d809a9
10aa0714f0c5a7594850317d9752ed9682d191a3
bf95403ac749d17c3997e8783b83f878075c7f987c9f1103074026d566549445

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Garena

HTTP Headers

GET /static/img/reward/6.png HTTP/1.1
Host: zxcyg.mubbb.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:17:52 GMT
content-type: image/png
content-length: 86293
last-modified: Wed, 13 Mar 2024 17:14:45 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TOHMfOlBjDZyU0omF0bAJ9dtcAYq6tfl7xDHasHF8C3CsbWcgqS%2BPcT4PqzeOsH4TMOmQxKtDOlkNJGt01wV4l%2FXH9ynbU6LxFTbAx9Ye4TqZ2tq6fZRT5fIu9PWSkab08rebw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876288c39aafb4eb-OSL
alt-svc: h3=":443"; ma=86400

i.ibb.co/ynHzRkW/20240313-233643.jpg

162.19.58.156

200 OK

40 kB

URL GET HTTP/2
i.ibb.co/ynHzRkW/20240313-233643.jpg
IP
162.19.58.156:443
ASN
#16276 OVH SAS

Requested by
https://zxcyg.mubbb.my.id/
Certificate
IssuerLet's Encrypt
Subjectibb.co
Fingerprint47:33:B4:39:55:FC:BC:18:08:79:9C:6C:9D:F3:CF:3A:89:C4:99:62
ValidityWed, 07 Feb 2024 12:41:56 GMT - Tue, 07 May 2024 12:41:55 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2], progressive, precision 8, 413x640, components 3
Size
40 kB (40179 bytes)
Hash
d8600333aa46e5f17e9f8f091add5df0
8f60c7c6f2e2df641b1d291fbb273247bc3c0b32
bccf1e168cc1f2b09f2e94f217fd2bfbf1d1b9a78bd75492ecfba7789768e529

HTTP Headers

GET /ynHzRkW/20240313-233643.jpg HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 06:17:52 GMT
content-type: image/jpeg
content-length: 40179
last-modified: Wed, 13 Mar 2024 16:37:45 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/material-design-iconic-font/2.2.0/fonts/Material-Design-Iconic-Font.woff2?v=2.2.0

104.17.25.14

200 OK

38 kB

URL GET HTTP/3
cdnjs.cloudflare.com/ajax/libs/material-design-iconic-font/2.2.0/fonts/Material-Design-Iconic-Font.woff2?v=2.2.0
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://zxcyg.mubbb.my.id/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 38384, version 1.0
Size
38 kB (38384 bytes)
Hash
a4d31128b633bc0b1cc1f18a34fb3851
6ee4c79372c3fd679706306ede47e4b03cf53d60
e8eea96e29a7c0a72612ab85ca3229979666467a28349642c2176e7189a1a39c

HTTP Headers

GET /ajax/libs/material-design-iconic-font/2.2.0/fonts/Material-Design-Iconic-Font.woff2?v=2.2.0 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://zxcyg.mubbb.my.id
DNT: 1
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:17:52 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 38384
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "5eb03ed9-95f0"
last-modified: Mon, 04 May 2020 16:12:09 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 218181
expires: Tue, 08 Apr 2025 06:17:52 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bSehFlelXldNdugYspawDb8BBDQrW6NtCgy3bbRfRDYO4rYLRAD7Yzdg8I3x5d3SQCuNLeoCIvRSQWw6XNIyeG%2BBSm1YhlRCiwSMdcjoc9ev67hIeNZe3XKA%2Fy3iBRCs1ksqkLTC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 876288c8efd81bfe-OSL
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/teko/v20/LYjNdG7kmE0gfaN9pQ.woff2

216.58.207.227

200 OK

15 kB

URL GET HTTP/2
fonts.gstatic.com/s/teko/v20/LYjNdG7kmE0gfaN9pQ.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://zxcyg.mubbb.my.id/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9
ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15044, version 1.0
Size
15 kB (15044 bytes)
Hash
4806226b885b3b3d0ae52142f6bfb3af
2ea5cc6d5e4adb874989a2b74bda062296fb1ad3
714088bef569d6981bfae79530ef315f4d6505f302a944ce9063601919977e6f

HTTP Headers

GET /s/teko/v20/LYjNdG7kmE0gfaN9pQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://zxcyg.mubbb.my.id
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15044
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 20:39:40 GMT
expires: Tue, 15 Apr 2025 20:39:40 GMT
cache-control: public, max-age=31536000
age: 207492
last-modified: Thu, 24 Aug 2023 21:55:11 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

zxcyg.mubbb.my.id/img/ghg.png

188.114.96.1

200 OK

109 kB

URL GET HTTP/3
zxcyg.mubbb.my.id/img/ghg.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://zxcyg.mubbb.my.id/
Certificate
IssuerGoogle Trust Services LLC
Subjectmubbb.my.id
FingerprintB6:0E:37:53:C6:DC:64:5B:AB:D8:51:2D:41:E0:3B:23:2E:0C:D0:B4
ValidityMon, 04 Mar 2024 02:04:58 GMT - Sun, 02 Jun 2024 02:04:57 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1600x900, components 3
Size
109 kB (109359 bytes)
Hash
c1dfd3273f7fadb0b01a0d05b85e3018
2135b42ba250e283eb7122645aa41fff2cbbe7f8
f358b3c5a22a9f41f30f20c4be14a07acbd225c1891b0a858405f2ffb1df60f5

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Garena

HTTP Headers

GET /img/ghg.png HTTP/1.1
Host: zxcyg.mubbb.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:17:52 GMT
content-type: image/png
content-length: 109359
last-modified: Wed, 13 Mar 2024 16:46:43 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xz%2BG0xoehJWITXfPjv5PgE7j46yWq99Tk7jX6yxiE9Vxk0JsV6YEgsOYMkx42mC06aQ0OaV9nUoNGw0eAJvbtodysFs%2FtBd%2BC9wltzu6vsRgUDdy66p4a9LmL0K9t%2Ft1bC1JLw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876288c38a99b4eb-OSL
alt-svc: h3=":443"; ma=86400

zxcyg.mubbb.my.id/static/img/reward/7.png

188.114.96.1

200 OK

114 kB

URL GET HTTP/3
zxcyg.mubbb.my.id/static/img/reward/7.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://zxcyg.mubbb.my.id/
Certificate
IssuerGoogle Trust Services LLC
Subjectmubbb.my.id
FingerprintB6:0E:37:53:C6:DC:64:5B:AB:D8:51:2D:41:E0:3B:23:2E:0C:D0:B4
ValidityMon, 04 Mar 2024 02:04:58 GMT - Sun, 02 Jun 2024 02:04:57 GMT

File type
PNG image data, 283 x 375, 8-bit/color RGB, non-interlaced
Size
114 kB (113552 bytes)
Hash
605b6c7b2dd8bae6e7bd23a5340f0a1c
f76afc84509e0dba81b2b7779dca0d2add397ccd
d4dda75dccadd401b95c228ac709862607cbef2073b67de22783898e42c5c783

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Garena

HTTP Headers

GET /static/img/reward/7.png HTTP/1.1
Host: zxcyg.mubbb.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:17:52 GMT
content-type: image/png
content-length: 113552
last-modified: Wed, 13 Mar 2024 17:14:09 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ppA5gNzoTcPAHlrdY7C2XWxrxc4OUmvsctyLuf%2BHeRsYInmhoutZI%2BGfDXOsSKSwdcGRkx3F6XwSOr9xYqmZnTChD9C6qIsh3zAWeve3W5z%2BL0TIpZbQvsyrOFOmeUVMVB1r7A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876288c39ab5b4eb-OSL
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/teko/v20/LYjNdG7kmE0gfaN9pQ.woff2

216.58.207.227

200 OK

15 kB

URL GET HTTP/2
fonts.gstatic.com/s/teko/v20/LYjNdG7kmE0gfaN9pQ.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://zxcyg.mubbb.my.id/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9
ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15044, version 1.0
Size
15 kB (15044 bytes)
Hash
4806226b885b3b3d0ae52142f6bfb3af
2ea5cc6d5e4adb874989a2b74bda062296fb1ad3
714088bef569d6981bfae79530ef315f4d6505f302a944ce9063601919977e6f

HTTP Headers

GET /s/teko/v20/LYjNdG7kmE0gfaN9pQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://zxcyg.mubbb.my.id
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15044
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 20:39:40 GMT
expires: Tue, 15 Apr 2025 20:39:40 GMT
cache-control: public, max-age=31536000
age: 207492
last-modified: Thu, 24 Aug 2023 21:55:11 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

zxcyg.mubbb.my.id/static/img/reward/3.png

188.114.96.1

200 OK

95 kB

URL GET HTTP/3
zxcyg.mubbb.my.id/static/img/reward/3.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://zxcyg.mubbb.my.id/
Certificate
IssuerGoogle Trust Services LLC
Subjectmubbb.my.id
FingerprintB6:0E:37:53:C6:DC:64:5B:AB:D8:51:2D:41:E0:3B:23:2E:0C:D0:B4
ValidityMon, 04 Mar 2024 02:04:58 GMT - Sun, 02 Jun 2024 02:04:57 GMT

File type
PNG image data, 288 x 375, 8-bit/color RGB, non-interlaced
Size
95 kB (94921 bytes)
Hash
61b63bc126a15906fbec1d71f25620cb
fa6f9aed9123e35f2881093348439c7e8d168a63
b09f710d05214acd76849a89ac25e9b41e37ab4fabcaadd5f123184281346b29

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Garena

HTTP Headers

GET /static/img/reward/3.png HTTP/1.1
Host: zxcyg.mubbb.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:17:52 GMT
content-type: image/png
content-length: 94921
last-modified: Wed, 13 Mar 2024 17:15:49 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=U2SlRQ%2BJEkkkmS6nwYXIVDJf0lN1iLEqnvjBJsB8412zjMbvavrgLA3KH%2FjgBpCtpcH%2BjxPfA2s8zuz0Qnj2iXqaURAYc9d6Iv2CkAChz%2F8DFAWguHInzuAecuW81Of52HYZ3g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876288c38aa7b4eb-OSL
alt-svc: h3=":443"; ma=86400

zxcyg.mubbb.my.id/static/img/reward/1.png

188.114.96.1

200 OK

100 kB

URL GET HTTP/3
zxcyg.mubbb.my.id/static/img/reward/1.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://zxcyg.mubbb.my.id/
Certificate
IssuerGoogle Trust Services LLC
Subjectmubbb.my.id
FingerprintB6:0E:37:53:C6:DC:64:5B:AB:D8:51:2D:41:E0:3B:23:2E:0C:D0:B4
ValidityMon, 04 Mar 2024 02:04:58 GMT - Sun, 02 Jun 2024 02:04:57 GMT

File type
PNG image data, 280 x 368, 8-bit/color RGB, non-interlaced
Size
100 kB (99552 bytes)
Hash
b5cf485d30d6adc5f0e6280a358c9a3d
b4c50eefb47bed38e51b09b8c272eb879bed2185
5e8d6499246a5c5e3aabc844313a0a154fbd1c8837cc59c9cea14fb5b86cc1f4

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Garena

HTTP Headers

GET /static/img/reward/1.png HTTP/1.1
Host: zxcyg.mubbb.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:17:52 GMT
content-type: image/png
content-length: 99552
last-modified: Wed, 13 Mar 2024 17:17:38 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ifwpJWY%2FS%2FYxiM7UulXQSHL1b9u27kECKD2bvwCqIlx%2B0FdA6yy0S%2FDr2Dh%2F0bgv2U7NIk5giImDpzVXutBOSNTWwOzN0n2IQ1ExTxLyAYo4O4%2FfzSmBZnDqe%2F2scieXWvWrfw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876288c38aa1b4eb-OSL
alt-svc: h3=":443"; ma=86400

zxcyg.mubbb.my.id/static/img/reward/2.png

188.114.96.1

200 OK

90 kB

URL GET HTTP/3
zxcyg.mubbb.my.id/static/img/reward/2.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://zxcyg.mubbb.my.id/
Certificate
IssuerGoogle Trust Services LLC
Subjectmubbb.my.id
FingerprintB6:0E:37:53:C6:DC:64:5B:AB:D8:51:2D:41:E0:3B:23:2E:0C:D0:B4
ValidityMon, 04 Mar 2024 02:04:58 GMT - Sun, 02 Jun 2024 02:04:57 GMT

File type
PNG image data, 284 x 367, 8-bit/color RGB, non-interlaced
Size
90 kB (89530 bytes)
Hash
9e2c5f54ed2813612815c71dc27a56c3
da86f7a340cee9ff11da48666698285c4b202743
8f85bb40508b7048b6aa28f5e72b59a828568e074e56bacda991a45c06b0c123

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Garena

HTTP Headers

GET /static/img/reward/2.png HTTP/1.1
Host: zxcyg.mubbb.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:17:53 GMT
content-type: image/png
content-length: 89530
last-modified: Wed, 13 Mar 2024 17:14:54 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ej01%2BzbiyKe72Q5VyOAN2A1fLUgvDfxAXF7isL8ha1NsXaWd5HsCqm8e3xxBgql296BeNjh%2FUE%2B%2BFDKBjEDJKthGBmRMscajWiKRQDX%2F0QeiejVe8OVW64MRQcIpJZLHaB1LGA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876288c38aa4b4eb-OSL
alt-svc: h3=":443"; ma=86400

www.pubgmobile.com/en/images/nav_menu.svg

95.101.11.144

200 OK

426 B

URL GET HTTP/2
www.pubgmobile.com/en/images/nav_menu.svg
IP
95.101.11.144:443
ASN
#20940 Akamai International B.V.

Requested by
https://zxcyg.mubbb.my.id/
Certificate
IssuerDigiCert Inc
Subjectwetv.acc.qq.com
Fingerprint5C:D9:77:1B:16:32:99:FE:C5:2E:BD:E3:86:D8:71:22:B0:1B:6A:3F
ValidityMon, 30 Oct 2023 00:00:00 GMT - Wed, 30 Oct 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
426 B (426 bytes)
Hash
a1f09c4f5c87271dbccf8cb05885ad42
18bbacc9c372dcb6bc77c2475595e058c1ad1594
b0d849e0e910d13bcdab1e94f5c799dda1a9429c908e18069f9dc7f7d551d58a

HTTP Headers

GET /en/images/nav_menu.svg HTTP/1.1
Host: www.pubgmobile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: image/svg+xml
last-modified: Mon, 21 Mar 2022 13:24:18 GMT
etag: "62387c82-374"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
date: Thu, 18 Apr 2024 06:17:53 GMT
content-length: 426
X-Firefox-Spdy: h2

zxcyg.mubbb.my.id/static/img/free.png

188.114.96.1

200 OK

241 kB

URL GET HTTP/3
zxcyg.mubbb.my.id/static/img/free.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://zxcyg.mubbb.my.id/
Certificate
IssuerGoogle Trust Services LLC
Subjectmubbb.my.id
FingerprintB6:0E:37:53:C6:DC:64:5B:AB:D8:51:2D:41:E0:3B:23:2E:0C:D0:B4
ValidityMon, 04 Mar 2024 02:04:58 GMT - Sun, 02 Jun 2024 02:04:57 GMT

File type
PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced
Size
241 kB (240826 bytes)
Hash
0b368ba0d6ba79cdac00266cc788423c
abfe41488bb222f5b68a60e8f8574f78d15a5fd3
8d6767ef7c3e6f41f5ba1beca5da879c48d9247922d421196157c2a4192debf0

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Garena

HTTP Headers

GET /static/img/free.png HTTP/1.1
Host: zxcyg.mubbb.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:17:55 GMT
content-type: image/png
content-length: 240826
last-modified: Wed, 13 Mar 2024 16:20:48 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=U6lCo%2FPmb3r%2BNeeWeYhyMD1Y1oQCascQvwJvcMuYTwUw%2FNdVUlE6%2FroVRj5k9GcjnF7tg4EiFvziHCwCRT13N9l%2BxCTSVmDJoILM8cDO4MQW%2Bl0JNmwxXjaUCW2XFH%2BSjVIBlg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876288c38a9fb4eb-OSL
alt-svc: h3=":443"; ma=86400

zxcyg.mubbb.my.id/img/wheel.png

188.114.96.1

200 OK

55 kB

URL GET HTTP/3
zxcyg.mubbb.my.id/img/wheel.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://zxcyg.mubbb.my.id/
Certificate
IssuerGoogle Trust Services LLC
Subjectmubbb.my.id
FingerprintB6:0E:37:53:C6:DC:64:5B:AB:D8:51:2D:41:E0:3B:23:2E:0C:D0:B4
ValidityMon, 04 Mar 2024 02:04:58 GMT - Sun, 02 Jun 2024 02:04:57 GMT

File type
PNG image data, 859 x 871, 8-bit/color RGBA, non-interlaced
Size
55 kB (55386 bytes)
Hash
16ef0d10bc717ef3f5f503bfb8fcd5cd
5ad4d846bd3343ae0eb69c0160d57e15f50a5831
d48485a468b2b5d0ee7dd63efc60de6d4690573cf3b17968b223ec8f2476f84f

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Garena

HTTP Headers

GET /img/wheel.png HTTP/1.1
Host: zxcyg.mubbb.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:17:56 GMT
content-type: image/png
content-length: 55386
last-modified: Tue, 07 Mar 2023 18:28:00 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Gg9CRPfDaH5t2OVWspVk5Rk7R0GNlZgnU45eE68Gm5eWehip8usumoppp6xYEFDEYB4HkVL9lBJHjYjgiHZNtW101D3sarty7Ee2bw7PTmYi5AuU65ApiKOBM9Xoejr9hliV2Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876288c38a9bb4eb-OSL
alt-svc: h3=":443"; ma=86400

zxcyg.mubbb.my.id/static/img/reward/0.png

188.114.96.1

200 OK

102 kB

URL GET HTTP/3
zxcyg.mubbb.my.id/static/img/reward/0.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://zxcyg.mubbb.my.id/
Certificate
IssuerGoogle Trust Services LLC
Subjectmubbb.my.id
FingerprintB6:0E:37:53:C6:DC:64:5B:AB:D8:51:2D:41:E0:3B:23:2E:0C:D0:B4
ValidityMon, 04 Mar 2024 02:04:58 GMT - Sun, 02 Jun 2024 02:04:57 GMT

File type
PNG image data, 288 x 372, 8-bit/color RGB, non-interlaced
Size
102 kB (101830 bytes)
Hash
ea837f048ada68024773ccec95019232
7ecd7c57ef61f72d960ad11af2d6563e47593e54
6bf4912c37ae07cf9cfc242dde86ce1279c383ff823130e2b7e56459952d7b80

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Garena

HTTP Headers

GET /static/img/reward/0.png HTTP/1.1
Host: zxcyg.mubbb.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:17:56 GMT
content-type: image/png
content-length: 101830
last-modified: Thu, 14 Mar 2024 11:45:02 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vWT%2BSX3q4KXIOGQ5tx%2Bsb1cWlIJ3Pt5SzCKhs92Csm76nehp9k%2BGm9eHWpMeVgrYsoQHumxwOLVh6KA53P79FSl%2BEIroCS9vtXtO2SsmjR%2F%2FyyjslhXv0l2cfqF9cHXT8Qhj9A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876288c3aabfb4eb-OSL
alt-svc: h3=":443"; ma=86400

zxcyg.mubbb.my.id/img/btn-off.png

188.114.96.1

200 OK

737 B

URL GET HTTP/3
zxcyg.mubbb.my.id/img/btn-off.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://zxcyg.mubbb.my.id/
Certificate
IssuerGoogle Trust Services LLC
Subjectmubbb.my.id
FingerprintB6:0E:37:53:C6:DC:64:5B:AB:D8:51:2D:41:E0:3B:23:2E:0C:D0:B4
ValidityMon, 04 Mar 2024 02:04:58 GMT - Sun, 02 Jun 2024 02:04:57 GMT

File type
PNG image data, 195 x 58, 8-bit colormap, non-interlaced
Size
737 B (737 bytes)
Hash
0ec1c29e13291ba7838177581aaf9578
f9fe0f9a9e9d5333c6c21ee099766e67ed076778
5c53b5b7d34dc07cb451499f37ff279a87d87033e9f3b6589c887a667fedfc4d

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Garena

HTTP Headers

GET /img/btn-off.png HTTP/1.1
Host: zxcyg.mubbb.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:17:57 GMT
content-type: image/png
content-length: 737
last-modified: Tue, 29 Nov 2022 14:13:36 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RpT2Z7fbXMawyiKLPkeamdHCSVz16DlboW8T5SPowcTDozrcvVp6Ir3RFr8ESzG2HSw5DdgJ4YC6EBMAuyfk%2BYfYIeo8cqAssCpy7m8cIZnLMTjoOc4%2FmjDV2%2BP6HrlIxDA34A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876288c8a837b4eb-OSL
alt-svc: h3=":443"; ma=86400

zxcyg.mubbb.my.id/static/img/reward/5.png

188.114.96.1

200 OK

108 kB

URL GET HTTP/3
zxcyg.mubbb.my.id/static/img/reward/5.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://zxcyg.mubbb.my.id/
Certificate
IssuerGoogle Trust Services LLC
Subjectmubbb.my.id
FingerprintB6:0E:37:53:C6:DC:64:5B:AB:D8:51:2D:41:E0:3B:23:2E:0C:D0:B4
ValidityMon, 04 Mar 2024 02:04:58 GMT - Sun, 02 Jun 2024 02:04:57 GMT

File type
PNG image data, 291 x 372, 8-bit/color RGB, non-interlaced
Size
108 kB (107481 bytes)
Hash
bbe4e0314326e8ac5a818ecb60bdb7d7
fd5458fbe85165f5891a2fad85f21ce9d82eb7f4
7acdcbdf7f22b04d468847756c508d84575d348b52fbec152d333e50f3581c89

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Garena

HTTP Headers

GET /static/img/reward/5.png HTTP/1.1
Host: zxcyg.mubbb.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:17:56 GMT
content-type: image/png
content-length: 107481
last-modified: Wed, 13 Mar 2024 17:18:10 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=E139J8wvbLet9yx9SQXZapVcGDhWzjbKz%2FhnOzF214F2TclRq37uEFysFRELIC4ipY3tK9J95dHhgFFUD%2B6dL2iwSs%2BZ6P%2BPUJx0hQsVjyJr02T8G9uGXlnzOlqyftY7LVnXxg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876288c39aadb4eb-OSL
alt-svc: h3=":443"; ma=86400

rawcdn.githack.com/AlexHostX/all.asset/6635455e463c4b55d9c4dac99f2c44f9091b612c/unclick.mp3

104.21.234.230

301 Moved Permanently

205 B

URL GET HTTP/2
rawcdn.githack.com/AlexHostX/all.asset/6635455e463c4b55d9c4dac99f2c44f9091b612c/unclick.mp3
IP
104.21.234.230:443
ASN
#13335 CLOUDFLARENET

Requested by
https://zxcyg.mubbb.my.id/
Certificate
IssuerGoogle Trust Services LLC
Subjectgithack.com
FingerprintA4:13:2F:80:0A:C6:7C:8B:08:12:12:22:60:76:15:7D:40:80:70:54
ValidityFri, 01 Mar 2024 13:12:36 GMT - Thu, 30 May 2024 13:12:35 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
205 B (205 bytes)
Hash
a131a561ff1fcd4bd22ae4d8a44096a7
0fe2f1188600da413aa9656c095a8f0d0230c231
33dd33c7e4fd25ef18436701457abcb00574695b1d109f7ab25f145b6cc09218

HTTP Headers

GET /AlexHostX/all.asset/6635455e463c4b55d9c4dac99f2c44f9091b612c/unclick.mp3 HTTP/1.1
Host: rawcdn.githack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
date: Thu, 18 Apr 2024 06:17:57 GMT
content-type: text/html
location: https://raw.githubusercontent.com/AlexHostX/all.asset/6635455e463c4b55d9c4dac99f2c44f9091b612c/unclick.mp3
cache-control: max-age=86400, public
access-control-allow-origin: *
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YX426NuJOHtYz1hvOKtb2yUNFDiO1Y5EaNVEFi3XNVzS5fmh0EjRCOSCRFZNTjcToqNvn3cQ3FxRNt5OKK1xTwyQV94RuYbJCpwSm%2BheWBmyBmHu9CKE2QpDrB%2BWkVPq5JDO9sk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876288e49bc07187-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

rawcdn.githack.com/AlexHostX/all.asset/d1a42a80f01064a559cb0ce4e5ec0474091c651f/click.mp3

104.21.234.230

301 Moved Permanently

205 B

URL GET HTTP/2
rawcdn.githack.com/AlexHostX/all.asset/d1a42a80f01064a559cb0ce4e5ec0474091c651f/click.mp3
IP
104.21.234.230:443
ASN
#13335 CLOUDFLARENET

Requested by
https://zxcyg.mubbb.my.id/
Certificate
IssuerGoogle Trust Services LLC
Subjectgithack.com
FingerprintA4:13:2F:80:0A:C6:7C:8B:08:12:12:22:60:76:15:7D:40:80:70:54
ValidityFri, 01 Mar 2024 13:12:36 GMT - Thu, 30 May 2024 13:12:35 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
205 B (205 bytes)
Hash
a131a561ff1fcd4bd22ae4d8a44096a7
0fe2f1188600da413aa9656c095a8f0d0230c231
33dd33c7e4fd25ef18436701457abcb00574695b1d109f7ab25f145b6cc09218

HTTP Headers

GET /AlexHostX/all.asset/d1a42a80f01064a559cb0ce4e5ec0474091c651f/click.mp3 HTTP/1.1
Host: rawcdn.githack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
date: Thu, 18 Apr 2024 06:17:57 GMT
content-type: text/html
location: https://raw.githubusercontent.com/AlexHostX/all.asset/d1a42a80f01064a559cb0ce4e5ec0474091c651f/click.mp3
cache-control: max-age=86400, public
access-control-allow-origin: *
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QS0sN%2FTAJQzgJ1g9c%2F%2BXH5cnLuGERZJlLtJTVHFjZkk3WD6l6bGevQRj%2F2Iykrjb0yjZD1py8oPki5FKICw6ax%2FUjQ5wlvY9xZbOrZ16WZiP5s5N7jTuumXQnWEmucGONQhXdOs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876288e49bb87187-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

zxcyg.mubbb.my.id/static/img/reward/8.png

188.114.96.1

200 OK

102 kB

URL GET HTTP/3
zxcyg.mubbb.my.id/static/img/reward/8.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://zxcyg.mubbb.my.id/
Certificate
IssuerGoogle Trust Services LLC
Subjectmubbb.my.id
FingerprintB6:0E:37:53:C6:DC:64:5B:AB:D8:51:2D:41:E0:3B:23:2E:0C:D0:B4
ValidityMon, 04 Mar 2024 02:04:58 GMT - Sun, 02 Jun 2024 02:04:57 GMT

File type
PNG image data, 288 x 372, 8-bit/color RGB, non-interlaced
Size
102 kB (101830 bytes)
Hash
ea837f048ada68024773ccec95019232
7ecd7c57ef61f72d960ad11af2d6563e47593e54
6bf4912c37ae07cf9cfc242dde86ce1279c383ff823130e2b7e56459952d7b80

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Garena

HTTP Headers

GET /static/img/reward/8.png HTTP/1.1
Host: zxcyg.mubbb.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:17:57 GMT
content-type: image/png
content-length: 101830
last-modified: Wed, 13 Mar 2024 17:11:30 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=be9YZsymUtr94bapCFv%2FzB9JNU63cx%2F8nskG2z1chFP8pno7tG%2By7ig%2BgUeZk62qXNmyhmGiXQBwVD2uk7h9QP3GryS%2BCOPdKFO5mfD3EtcXD3%2B9irlu75jEv9b2pRKHt8pqgg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876288c39ab6b4eb-OSL
alt-svc: h3=":443"; ma=86400

zxcyg.mubbb.my.id/static/wheelStop.mp3

188.114.96.1

206 Partial Content

21 kB

URL GET HTTP/3
zxcyg.mubbb.my.id/static/wheelStop.mp3
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://zxcyg.mubbb.my.id/
Certificate
IssuerGoogle Trust Services LLC
Subjectmubbb.my.id
FingerprintB6:0E:37:53:C6:DC:64:5B:AB:D8:51:2D:41:E0:3B:23:2E:0C:D0:B4
ValidityMon, 04 Mar 2024 02:04:58 GMT - Sun, 02 Jun 2024 02:04:57 GMT

File type
Audio file with ID3 version 2.3.0, contains: MPEG ADTS, layer III, v1, 128 kbps, 48 kHz, JntStereo
Size
21 kB (20994 bytes)
Hash
da5c02d0af9c7f9db0fb0e213858ccfa
9f7c649258009c2c853b74349c060d9de12109b1
2998755f4b37c49010974e07f9aa0643b0a9c5be592d42988c733d0e3acc9ae3

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Garena

HTTP Headers

GET /static/wheelStop.mp3 HTTP/1.1
Host: zxcyg.mubbb.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 206 Partial Content
date: Thu, 18 Apr 2024 06:17:57 GMT
content-type: audio/mpeg
content-length: 20994
last-modified: Mon, 03 Oct 2022 21:34:34 GMT
cache-control: max-age=14400
cf-cache-status: MISS
content-range: bytes 0-20993/20994
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VinEX8lTHoqwJI%2BJEQ3YPolQlyCI1XhhekXSWP%2BsSgI9pMKrNAcCWnAhvtMBQWIS8zsHqf1UTgKsKF9DfpfrPnGdprHl2awaC6ZioQbayDgRBveUWb8WAC4TDIg9lZoBpiTNxw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876288e3f9a3b4eb-OSL
alt-svc: h3=":443"; ma=86400

zxcyg.mubbb.my.id/static/img/reward/4.png

188.114.96.1

200 OK

92 kB

URL GET HTTP/3
zxcyg.mubbb.my.id/static/img/reward/4.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://zxcyg.mubbb.my.id/
Certificate
IssuerGoogle Trust Services LLC
Subjectmubbb.my.id
FingerprintB6:0E:37:53:C6:DC:64:5B:AB:D8:51:2D:41:E0:3B:23:2E:0C:D0:B4
ValidityMon, 04 Mar 2024 02:04:58 GMT - Sun, 02 Jun 2024 02:04:57 GMT

File type
PNG image data, 283 x 359, 8-bit/color RGB, non-interlaced
Size
92 kB (91503 bytes)
Hash
8564d70663058bb3502a1888f51fcd72
85e22240e15bbcbb4d368987a61a1c697e403edf
87875b47144648bcbf091f0554200be688cb750781e98ca037a63841fb0c8005

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Garena

HTTP Headers

GET /static/img/reward/4.png HTTP/1.1
Host: zxcyg.mubbb.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:17:57 GMT
content-type: image/png
content-length: 91503
last-modified: Wed, 13 Mar 2024 17:17:49 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IFvdOHk11VWBtU5QOQgS8mWW0y13pfacFrPBrq8BK7znkNwbg3oDFMeT3pj787qoCEZOztzkEgTfREyzpbyG%2BHFM5WuWk7IdkTRTy0RR%2FZKdMl%2BkBJZ3PzKJrNxdpDASPcbSPg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876288c38aa9b4eb-OSL
alt-svc: h3=":443"; ma=86400

play-lh.googleusercontent.com/jWN9pjF7atbqHYXAAfwvIjtzpGwTIVwX9etT0-9HiWjRjE1hInoEgJiWjwsiemu2rEb8

142.250.74.86

200 OK

73 kB

URL GET HTTP/2
play-lh.googleusercontent.com/jWN9pjF7atbqHYXAAfwvIjtzpGwTIVwX9etT0-9HiWjRjE1hInoEgJiWjwsiemu2rEb8
IP
142.250.74.86:443
ASN
#15169 GOOGLE

Requested by
https://zxcyg.mubbb.my.id/
Certificate
IssuerGoogle Trust Services LLC
Subjectedgestatic.com
Fingerprint78:1A:D9:37:F2:33:3C:A9:0F:4C:4A:E8:40:9E:55:8E:02:75:1E:15
ValidityMon, 04 Mar 2024 06:35:07 GMT - Mon, 27 May 2024 06:35:06 GMT

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced
Size
73 kB (73303 bytes)
Hash
2bafc2fba248405e93058e3c26dfa614
8361bf3eec4ea108953492ad3a332d48d6f7671f
828588fb737f1eb815949ff596fe72a7ba7a1fdb9ad6816d95aa97e88f150506

HTTP Headers

GET /jWN9pjF7atbqHYXAAfwvIjtzpGwTIVwX9etT0-9HiWjRjE1hInoEgJiWjwsiemu2rEb8 HTTP/1.1
Host: play-lh.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v1"
expires: Fri, 19 Apr 2024 06:17:58 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.png"
x-content-type-options: nosniff
date: Thu, 18 Apr 2024 06:17:58 GMT
server: fife
content-length: 73303
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

i.postimg.cc/nVkV8M0W/FfMaxx.jpg

162.19.61.80

200 OK

37 kB

URL GET HTTP/2
i.postimg.cc/nVkV8M0W/FfMaxx.jpg
IP
162.19.61.80:443
ASN
#16276 OVH SAS

Requested by
https://zxcyg.mubbb.my.id/
Certificate
IssuerLet's Encrypt
Subjectpostimg.cc
FingerprintF9:1B:A9:B2:AB:2D:30:75:4E:44:3F:7A:6F:40:77:77:39:CE:1B:13
ValidityWed, 21 Feb 2024 07:13:33 GMT - Tue, 21 May 2024 07:13:32 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 512x512, components 3
Size
37 kB (37166 bytes)
Hash
61aa45bf291755caa8f0664e4e8b91e9
33f6c6304486ce8004d9d459f08aa6b95982f0ba
323b5ffc0bc7f906cf266b1622e4de3f8dfddcb3f38c460e58b468906d51ebf3

HTTP Headers

GET /nVkV8M0W/FfMaxx.jpg HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 06:17:58 GMT
content-type: image/jpeg
content-length: 37166
last-modified: Sat, 04 Mar 2023 14:21:43 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2

zxcyg.mubbb.my.id/css/animate.css

188.114.96.1

200 OK

78 kB

URL GET HTTP/3
zxcyg.mubbb.my.id/css/animate.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://zxcyg.mubbb.my.id/
Certificate
IssuerGoogle Trust Services LLC
Subjectmubbb.my.id
FingerprintB6:0E:37:53:C6:DC:64:5B:AB:D8:51:2D:41:E0:3B:23:2E:0C:D0:B4
ValidityMon, 04 Mar 2024 02:04:58 GMT - Sun, 02 Jun 2024 02:04:57 GMT

File type
ASCII text
Size
78 kB (77906 bytes)
Hash
8eae1a9cfafdc593321d4d59ec4905ea
232f5f3f4c3a0a56823e0e933f9c7fec3aa9cbcc
e89c81987c5cbc157097eaa6657d6a594abf030cc89bb63f0d2154d8383e9fab

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Garena

HTTP Headers

GET /css/animate.css HTTP/1.1
Host: zxcyg.mubbb.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:17:52 GMT
content-type: text/css
last-modified: Mon, 20 Jun 2022 07:07:26 GMT
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QIbPWQLnUeYhqfk5LWcKQXlMvCSo272ygwreYs9vhFFyoDNIa1L6SlGnsl0jCQ0oTqfVt7lDcCMI%2BvEZJcuMYOs5ZH2nVfasYb5ZRovqdQnSRMAyO5slDIXDTeBIwckKrsjWuA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876288c36a64b4eb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

raw.githubusercontent.com/AlexHostX/all.asset/6635455e463c4b55d9c4dac99f2c44f9091b612c/unclick.mp3

185.199.111.133

404 Not Found

0 B

URL GET HTTP/2
raw.githubusercontent.com/AlexHostX/all.asset/6635455e463c4b55d9c4dac99f2c44f9091b612c/unclick.mp3
IP
185.199.111.133:443
ASN
#54113 FASTLY

Requested by
https://zxcyg.mubbb.my.id/
Certificate
IssuerDigiCert Inc
Subject*.github.io
Fingerprint97:D8:C5:70:0F:12:24:6C:88:BC:FA:06:7E:8C:A7:4D:A8:62:67:28
ValidityFri, 15 Mar 2024 00:00:00 GMT - Fri, 14 Mar 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /AlexHostX/all.asset/6635455e463c4b55d9c4dac99f2c44f9091b612c/unclick.mp3 HTTP/1.1
Host: raw.githubusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br, identity
Range: bytes=0-
Referer: https://zxcyg.mubbb.my.id/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; sandbox
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: deny
x-xss-protection: 1; mode=block
content-type: text/plain; charset=utf-8
x-github-request-id: BFEC:22870C:3103BEF:33E4D44:6620BB15
accept-ranges: bytes
date: Thu, 18 Apr 2024 06:17:57 GMT
via: 1.1 varnish
x-served-by: cache-hel1410024-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1713421077.317605,VS0,VE121
vary: Authorization,Accept-Encoding,Origin
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-fastly-request-id: e1081e1bed1640956acacf307bba5769f71205b4
expires: Thu, 18 Apr 2024 06:22:57 GMT
source-age: 0
content-length: 14
X-Firefox-Spdy: h2

zxcyg.mubbb.my.id/

188.114.96.1

200 OK

20 kB

URL User Request GET HTTP/2
zxcyg.mubbb.my.id/
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectmubbb.my.id
FingerprintB6:0E:37:53:C6:DC:64:5B:AB:D8:51:2D:41:E0:3B:23:2E:0C:D0:B4
ValidityMon, 04 Mar 2024 02:04:58 GMT - Sun, 02 Jun 2024 02:04:57 GMT

File type

Size
20 kB (19536 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Garena

HTTP Headers

GET / HTTP/1.1
Host: zxcyg.mubbb.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:17:51 GMT
content-type: text/html; charset=UTF-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yuBXkOunwivzRiHeiONdHPdkbBcFJEhx%2B1D%2FQrfSV%2BW4n1kXRAHDtf73lOTtFBp1On6wMLLU948jVlDljWg%2BDb8ttweCJoftvuOlifL7fHMUJ6RsqdJmmLAX9%2B%2BFKTuZaY12Cg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876288bfa8d8b500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

zxcyg.mubbb.my.id/js/ryucodex.js

188.114.96.1

200 OK

4.3 kB

URL GET HTTP/3
zxcyg.mubbb.my.id/js/ryucodex.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://zxcyg.mubbb.my.id/
Certificate
IssuerGoogle Trust Services LLC
Subjectmubbb.my.id
FingerprintB6:0E:37:53:C6:DC:64:5B:AB:D8:51:2D:41:E0:3B:23:2E:0C:D0:B4
ValidityMon, 04 Mar 2024 02:04:58 GMT - Sun, 02 Jun 2024 02:04:57 GMT

File type
JavaScript source, ASCII text, with very long lines (4762), with no line terminators
Size
4.3 kB (4284 bytes)
Hash
decdcba332baceb9b9b35d877f590465
f902f3eb9c01e750fdd50049f3c4508a7583319e
410f9ffe1cee74c404fd7b3b58cfbb4a6c388e2b167560dbf10b1aa159d70243

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Garena

HTTP Headers

GET /js/ryucodex.js HTTP/1.1
Host: zxcyg.mubbb.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:17:57 GMT
content-type: text/javascript
last-modified: Wed, 26 Oct 2022 09:44:40 GMT
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hPs4WMGtIyjD7drItMt9tkeMhtk4IuDUfiqz0zweP%2BMJ0LvfMQDwG5afU7doiwRKCwpD4B9wQ0YxlnawBlkLTtXmrAB3K0PwOEydBF3mhkzPAVoE01mS31DKSx5X7RavTNSmpQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876288c4ac06b4eb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

zxcyg.mubbb.my.id/css/login/twitter.css

188.114.96.1

200 OK

2.2 kB

URL GET HTTP/3
zxcyg.mubbb.my.id/css/login/twitter.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://zxcyg.mubbb.my.id/
Certificate
IssuerGoogle Trust Services LLC
Subjectmubbb.my.id
FingerprintB6:0E:37:53:C6:DC:64:5B:AB:D8:51:2D:41:E0:3B:23:2E:0C:D0:B4
ValidityMon, 04 Mar 2024 02:04:58 GMT - Sun, 02 Jun 2024 02:04:57 GMT

File type
ASCII text, with very long lines (2432), with no line terminators
Size
2.2 kB (2177 bytes)
Hash
7d5267c9b34aa43887197a665912df33
3a527c4c1711d636a2b59c2efa4335c1f63b04b4
348779db86aad5d0930000f53c1763b20a7613db3aaebaccd12b5d0789bbb3a3

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Garena

HTTP Headers

GET /css/login/twitter.css HTTP/1.1
Host: zxcyg.mubbb.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:17:52 GMT
content-type: text/css
last-modified: Wed, 22 Jun 2022 07:02:08 GMT
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=eOBN8niTUlsXw3e%2FUGrbV40247UAEowEDLbY968uYWT5RF3gjsAHrzdT2Wi2EIYMElZOeZKHKFDQ0f2vOF4KNR3iaZ0fSxyJdPolwk2t9DsQWeVqY1zRe0AXpHxe3AVxV82JlQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876288c36a6db4eb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

unpkg.com/package-ion@2.4.3-icons/ionicons.map.js

104.17.245.203

404 Not Found

0 B

URL GET HTTP/2
unpkg.com/package-ion@2.4.3-icons/ionicons.map.js
IP
104.17.245.203:443
ASN
#13335 CLOUDFLARENET

Requested by
https://zxcyg.mubbb.my.id/
Certificate
IssuerGoogle Trust Services LLC
Subjectunpkg.com
Fingerprint2E:F1:F6:31:28:EC:29:20:41:F4:58:4B:B1:CF:51:16:77:7E:BF:E3
ValidityMon, 01 Apr 2024 02:40:24 GMT - Sun, 30 Jun 2024 02:40:23 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /package-ion@2.4.3-icons/ionicons.map.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
date: Thu, 18 Apr 2024 06:17:52 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
content-encoding: br
etag: W/"2b-fYuHHVpRh3xetcRZpF4tsszS3/0"
via: 1.1 fly.io
fly-request-id: 01HVQXNDR5M0RNP52T5V5G1PDY-arn
cf-cache-status: EXPIRED
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 876288c4b8fc5687-OSL
X-Firefox-Spdy: h2

zxcyg.mubbb.my.id/static/wheelsong.mp3

188.114.96.1

206 Partial Content

113 kB

URL GET HTTP/3
zxcyg.mubbb.my.id/static/wheelsong.mp3
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://zxcyg.mubbb.my.id/
Certificate
IssuerGoogle Trust Services LLC
Subjectmubbb.my.id
FingerprintB6:0E:37:53:C6:DC:64:5B:AB:D8:51:2D:41:E0:3B:23:2E:0C:D0:B4
ValidityMon, 04 Mar 2024 02:04:58 GMT - Sun, 02 Jun 2024 02:04:57 GMT

File type
Audio file with ID3 version 2.3.0, contains: MPEG ADTS, layer III, v1, 256 kbps, 44.1 kHz, JntStereo
Size
113 kB (112789 bytes)
Hash
e5af7795c4852e81055c9c29e38f36d4
0f927d8e36a2fade571b202d5e8a4cf2f759a334
acf2efb7836efd7e4909de245d99d4558bb09e07b6adae15c71c639b504f9e66

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Garena

HTTP Headers

GET /static/wheelsong.mp3 HTTP/1.1
Host: zxcyg.mubbb.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 206 Partial Content
date: Thu, 18 Apr 2024 06:17:58 GMT
content-type: audio/mpeg
content-length: 315326
last-modified: Mon, 03 Oct 2022 21:34:34 GMT
cache-control: max-age=14400
cf-cache-status: MISS
content-range: bytes 0-315325/315326
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UJDnd60C8SrpjtfYSNTpOewqDiGt%2BFGygnbfpkr4imtTsc21TiPajCU6SmQ%2BnBGJtPejNmCRZWLQ7VcGbabxxH3qfhUQaGhAIOFGQ4ryBavjlE%2BIqEbdFVxiYdEXY8vaiz4KlQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876288e3f9a2b4eb-OSL
alt-svc: h3=":443"; ma=86400

raw.githubusercontent.com/AlexHostX/all.asset/d1a42a80f01064a559cb0ce4e5ec0474091c651f/click.mp3

185.199.111.133

404 Not Found

0 B

URL GET HTTP/2
raw.githubusercontent.com/AlexHostX/all.asset/d1a42a80f01064a559cb0ce4e5ec0474091c651f/click.mp3
IP
185.199.111.133:443
ASN
#54113 FASTLY

Requested by
https://zxcyg.mubbb.my.id/
Certificate
IssuerDigiCert Inc
Subject*.github.io
Fingerprint97:D8:C5:70:0F:12:24:6C:88:BC:FA:06:7E:8C:A7:4D:A8:62:67:28
ValidityFri, 15 Mar 2024 00:00:00 GMT - Fri, 14 Mar 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /AlexHostX/all.asset/d1a42a80f01064a559cb0ce4e5ec0474091c651f/click.mp3 HTTP/1.1
Host: raw.githubusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br, identity
Range: bytes=0-
Referer: https://zxcyg.mubbb.my.id/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; sandbox
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: deny
x-xss-protection: 1; mode=block
content-type: text/plain; charset=utf-8
x-github-request-id: A666:22C804:5D6581:62C0B6:6620BB15
accept-ranges: bytes
date: Thu, 18 Apr 2024 06:17:57 GMT
via: 1.1 varnish
x-served-by: cache-hel1410024-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1713421077.324908,VS0,VE121
vary: Authorization,Accept-Encoding,Origin
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-fastly-request-id: 7b08bc79c8fdcc3ca90da3e0f2a66a45ad699202
expires: Thu, 18 Apr 2024 06:22:57 GMT
source-age: 0
content-length: 14
X-Firefox-Spdy: h2

zxcyg.mubbb.my.id/css/style.css

188.114.96.1

200 OK

21 kB

URL GET HTTP/3
zxcyg.mubbb.my.id/css/style.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://zxcyg.mubbb.my.id/
Certificate
IssuerGoogle Trust Services LLC
Subjectmubbb.my.id
FingerprintB6:0E:37:53:C6:DC:64:5B:AB:D8:51:2D:41:E0:3B:23:2E:0C:D0:B4
ValidityMon, 04 Mar 2024 02:04:58 GMT - Sun, 02 Jun 2024 02:04:57 GMT

File type
assembler source, ASCII text
Size
21 kB (20910 bytes)
Hash
7305e168336600617a117cae101e6695
03738a97c782a6a3918f69aa63ecdedee1c84330
443d150a1d878908b45e11aa31211009f724d894efc40d24495a9222c0a226a3

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Garena

HTTP Headers

GET /css/style.css HTTP/1.1
Host: zxcyg.mubbb.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:17:52 GMT
content-type: text/css
last-modified: Wed, 13 Mar 2024 17:23:53 GMT
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=D6HbDBOJLWF5YGhTVt0w18z7AYV%2F%2FusSZ%2BVT28Hlbv7PwRjXas9rhImzyIHGhkLesMyv5BhINZGJYlpMDatInm5OEGM2zRVZh7ZYg%2FeSEE%2F%2BsVdroCKOjQf0eUtX2dN%2Bx24WuA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876288c36a62b4eb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.googleapis.com/css?family=Roboto:300,400,500,700|Teko:300,400,500

216.58.207.234

200 OK

12 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Roboto:300,400,500,700|Teko:300,400,500
IP
216.58.207.234:443
ASN
#15169 GOOGLE

Requested by
https://zxcyg.mubbb.my.id/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E
ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT

File type
ASCII text
Size
12 kB (11840 bytes)
Hash
807349734f3707b50b73c3fd626526e8
2f3ab67f0ffa01bc1f0c180cae9085ecc8d96d63
ce7d7e11e41b1b3619cbdf436bbf2557fda2d97d434e65fab281207ffae5c0d0

HTTP Headers

GET /css?family=Roboto:300,400,500,700|Teko:300,400,500 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 18 Apr 2024 06:17:52 GMT
date: Thu, 18 Apr 2024 06:17:52 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

unpkg.com/package-ion@2.4.3-icons/ionicons.map.js

104.17.245.203

404 Not Found

0 B

URL GET HTTP/2
unpkg.com/package-ion@2.4.3-icons/ionicons.map.js
IP
104.17.245.203:443
ASN
#13335 CLOUDFLARENET

Requested by
https://zxcyg.mubbb.my.id/
Certificate
IssuerGoogle Trust Services LLC
Subjectunpkg.com
Fingerprint2E:F1:F6:31:28:EC:29:20:41:F4:58:4B:B1:CF:51:16:77:7E:BF:E3
ValidityMon, 01 Apr 2024 02:40:24 GMT - Sun, 30 Jun 2024 02:40:23 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /package-ion@2.4.3-icons/ionicons.map.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
date: Thu, 18 Apr 2024 06:17:52 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
content-encoding: br
etag: W/"2b-fYuHHVpRh3xetcRZpF4tsszS3/0"
via: 1.1 fly.io
fly-request-id: 01HVQXNDR5M0RNP52T5V5G1PDY-arn
cf-cache-status: HIT
age: 0
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 876288c91ded5687-OSL
X-Firefox-Spdy: h2

zxcyg.mubbb.my.id/css/login/facebook.css

188.114.96.1

200 OK

3.1 kB

URL GET HTTP/3
zxcyg.mubbb.my.id/css/login/facebook.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://zxcyg.mubbb.my.id/
Certificate
IssuerGoogle Trust Services LLC
Subjectmubbb.my.id
FingerprintB6:0E:37:53:C6:DC:64:5B:AB:D8:51:2D:41:E0:3B:23:2E:0C:D0:B4
ValidityMon, 04 Mar 2024 02:04:58 GMT - Sun, 02 Jun 2024 02:04:57 GMT

File type
ASCII text, with very long lines (3340), with no line terminators
Size
3.1 kB (3136 bytes)
Hash
6855b848037caf4bc5994c5cde899b53
b202e8a3af1d8aea1d7f689fbb6546ccbd21a8bd
f2ecc09425ab65f4ca927f7987d4d1c2895ac4d79d14d65b814e66aaae87020e

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Garena

HTTP Headers

GET /css/login/facebook.css HTTP/1.1
Host: zxcyg.mubbb.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:17:52 GMT
content-type: text/css
last-modified: Mon, 20 Jun 2022 07:07:26 GMT
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JAoTFLpMHWxcgXhgJ%2BFWexl4zQhsSNqjSjFnFJfbUFaRjJgVURf8psZBbypcXtwuL9R7ouwOQjrYhD3QcF06WylPzj5bqL8B9V5hH%2BN4FYGuqceYLQMFnKmCocT4fOVZfSxcjA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876288c36a68b4eb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css

104.18.11.207

200 OK

31 kB

URL GET HTTP/2
stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css
IP
104.18.11.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://zxcyg.mubbb.my.id/
Certificate
IssuerGoogle Trust Services LLC
Subjectbootstrapcdn.com
Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63
ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT

File type
ASCII text, with very long lines (30837)
Size
31 kB (31000 bytes)
Hash
269550530cc127b6aa5a35925a7de6ce
512c7d79033e3028a9be61b540cf1a6870c896f8
799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd

HTTP Headers

GET /font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:17:51 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"269550530cc127b6aa5a35925a7de6ce"
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 10/31/2023 18:48:06
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 722
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: dd809c84048d5afa8e77adc8acacd559
cdn-cache: HIT
cf-cache-status: HIT
age: 12795246
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 876288c38e54b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (5)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (44)

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers