Report - meskk.app/

Report Overview

Submitted URL
meskk.app/
IP
104.21.25.195
ASN
#13335 CLOUDFLARENET
Submitted
2024-05-09 18:27:43
Access
public
Website Title
小狐狸钱包app官网-metamask官方下载-小狐狸钱包安卓最新版本
Final URL
meskk.app/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
240

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
meskk.app	unknown	unknown	No data	No data	32 kB	1.2 MB	172.67.134.129
sdk.51.la	88367	2005-01-17	2021-03-08	2024-05-02	804 B	27 kB	163.181.157.118
hm.baidu.com	8254	1999-10-11	2012-05-26	2024-05-08	1.2 kB	32 kB	14.215.183.79
collect-v6.51.la	91421	2005-01-17	2021-03-08	2024-04-30	894 B	1.3 kB	163.181.154.138

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-04-23	medium	meskk.app/	Crypto/Wallet
2024-04-23	medium	meskk.app/	Crypto/Wallet
2024-04-23	medium	meskk.app/	Crypto/Wallet
2024-04-23	medium	meskk.app/	Crypto/Wallet
2024-04-23	medium	meskk.app/	Crypto/Wallet
2024-04-23	medium	meskk.app/	Crypto/Wallet
2024-04-23	medium	meskk.app/	Crypto/Wallet
2024-04-23	medium	meskk.app/	Crypto/Wallet
2024-04-23	medium	meskk.app/	Crypto/Wallet
2024-04-23	medium	meskk.app/	Crypto/Wallet
2024-04-23	medium	meskk.app/	Crypto/Wallet
2024-04-23	medium	meskk.app/	Crypto/Wallet
2024-04-23	medium	meskk.app/	Crypto/Wallet
2024-04-23	medium	meskk.app/	Crypto/Wallet
2024-04-23	medium	meskk.app/	Crypto/Wallet
2024-04-23	medium	meskk.app/	Crypto/Wallet
2024-04-23	medium	meskk.app/	Crypto/Wallet
2024-04-23	medium	meskk.app/	Crypto/Wallet
2024-04-23	medium	meskk.app/	Crypto/Wallet
2024-04-23	medium	meskk.app/	Crypto/Wallet
2024-04-23	medium	meskk.app/	Crypto/Wallet
2024-04-23	medium	meskk.app/	Crypto/Wallet
2024-04-23	medium	meskk.app/	Crypto/Wallet
2024-04-23	medium	meskk.app/	Crypto/Wallet
2024-04-23	medium	meskk.app/	Crypto/Wallet
2024-04-23	medium	meskk.app/	Crypto/Wallet
2024-04-23	medium	meskk.app/	Crypto/Wallet
2024-04-23	medium	meskk.app/	Crypto/Wallet
2024-04-23	medium	meskk.app/	Crypto/Wallet
2024-04-23	medium	meskk.app/	Crypto/Wallet
2024-04-23	medium	meskk.app/	Crypto/Wallet
2024-04-23	medium	meskk.app/	Crypto/Wallet
2024-04-23	medium	meskk.app/	Crypto/Wallet
2024-04-23	medium	meskk.app/	Crypto/Wallet
2024-04-23	medium	meskk.app/	Crypto/Wallet
2024-04-23	medium	meskk.app/	Crypto/Wallet
2024-04-23	medium	meskk.app/	Crypto/Wallet
2024-04-23	medium	meskk.app/	Crypto/Wallet
2024-04-23	medium	meskk.app/	Crypto/Wallet
2024-04-23	medium	meskk.app/	Crypto/Wallet
2024-04-23	medium	meskk.app/	Crypto/Wallet
2024-04-23	medium	meskk.app/	Crypto/Wallet
2024-04-23	medium	meskk.app/	Crypto/Wallet
2024-04-23	medium	meskk.app/	Crypto/Wallet
2024-04-23	medium	meskk.app/	Crypto/Wallet
2024-04-23	medium	meskk.app/	Crypto/Wallet
2024-04-23	medium	meskk.app/	Crypto/Wallet
2024-04-23	medium	meskk.app/	Crypto/Wallet
2024-04-23	medium	meskk.app/	Crypto/Wallet
2024-04-23	medium	meskk.app/	Crypto/Wallet
2024-04-23	medium	meskk.app/	Crypto/Wallet
2024-04-23	medium	meskk.app/	Crypto/Wallet
2024-04-23	medium	meskk.app/	Crypto/Wallet
2024-04-23	medium	meskk.app/	Crypto/Wallet
2024-04-23	medium	meskk.app/	Crypto/Wallet
2024-04-23	medium	meskk.app/	Crypto/Wallet
2024-04-23	medium	meskk.app/	Crypto/Wallet
2024-04-23	medium	meskk.app/	Crypto/Wallet
2024-04-23	medium	meskk.app/	Crypto/Wallet
2024-04-23	medium	meskk.app/	Crypto/Wallet

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-05-09	medium	meskk.app	Sinkholed
2024-05-09	medium	meskk.app	Sinkholed
2024-05-09	medium	meskk.app	Sinkholed
2024-05-09	medium	meskk.app	Sinkholed
2024-05-09	medium	meskk.app	Sinkholed
2024-05-09	medium	meskk.app	Sinkholed
2024-05-09	medium	meskk.app	Sinkholed
2024-05-09	medium	meskk.app	Sinkholed
2024-05-09	medium	meskk.app	Sinkholed
2024-05-09	medium	meskk.app	Sinkholed
2024-05-09	medium	meskk.app	Sinkholed
2024-05-09	medium	meskk.app	Sinkholed
2024-05-09	medium	meskk.app	Sinkholed
2024-05-09	medium	meskk.app	Sinkholed
2024-05-09	medium	meskk.app	Sinkholed
2024-05-09	medium	meskk.app	Sinkholed
2024-05-09	medium	meskk.app	Sinkholed
2024-05-09	medium	meskk.app	Sinkholed
2024-05-09	medium	meskk.app	Sinkholed
2024-05-09	medium	meskk.app	Sinkholed
2024-05-09	medium	meskk.app	Sinkholed
2024-05-09	medium	meskk.app	Sinkholed
2024-05-09	medium	meskk.app	Sinkholed
2024-05-09	medium	meskk.app	Sinkholed
2024-05-09	medium	meskk.app	Sinkholed
2024-05-09	medium	meskk.app	Sinkholed
2024-05-09	medium	meskk.app	Sinkholed
2024-05-09	medium	meskk.app	Sinkholed
2024-05-09	medium	meskk.app	Sinkholed
2024-05-09	medium	meskk.app	Sinkholed
2024-05-09	medium	meskk.app	Sinkholed
2024-05-09	medium	meskk.app	Sinkholed
2024-05-09	medium	meskk.app	Sinkholed
2024-05-09	medium	meskk.app	Sinkholed
2024-05-09	medium	meskk.app	Sinkholed
2024-05-09	medium	meskk.app	Sinkholed
2024-05-09	medium	meskk.app	Sinkholed
2024-05-09	medium	meskk.app	Sinkholed
2024-05-09	medium	meskk.app	Sinkholed
2024-05-09	medium	meskk.app	Sinkholed
2024-05-09	medium	meskk.app	Sinkholed
2024-05-09	medium	meskk.app	Sinkholed
2024-05-09	medium	meskk.app	Sinkholed
2024-05-09	medium	meskk.app	Sinkholed
2024-05-09	medium	meskk.app	Sinkholed
2024-05-09	medium	meskk.app	Sinkholed
2024-05-09	medium	meskk.app	Sinkholed
2024-05-09	medium	meskk.app	Sinkholed
2024-05-09	medium	meskk.app	Sinkholed
2024-05-09	medium	meskk.app	Sinkholed
2024-05-09	medium	meskk.app	Sinkholed
2024-05-09	medium	meskk.app	Sinkholed
2024-05-09	medium	meskk.app	Sinkholed
2024-05-09	medium	meskk.app	Sinkholed
2024-05-09	medium	meskk.app	Sinkholed
2024-05-09	medium	meskk.app	Sinkholed
2024-05-09	medium	meskk.app	Sinkholed
2024-05-09	medium	meskk.app	Sinkholed
2024-05-09	medium	meskk.app	Sinkholed
2024-05-09	medium	meskk.app	Sinkholed

ThreatFox

No alerts detected

JavaScript (21)

	URL	Size	First Seen	Last Seen
	sdk.51.la/js-sdk-pro.min.js	34 kB	2023-04-05	2024-05-20
Pretty URL sdk.51.la/js-sdk-pro.min.js IP 163.181.157.118 ASN #24429 Zhejiang Taobao Network Co.,Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-05 07:31:50 Last Seen2024-05-20 11:08:44 Times Seen14774 Hash 8fc0b01d35300e8398d6e957987c01e7 f1eb32c75b8d8e4b0555ebc2a5f5d1d60296f41e b164aafa0bb83dfe511912ca2ca475880bfffac8d8f098c947fd3d4af440d3a4 Loading...

	meskk.app/static/js/jquery.waypoints.min.js	9.0 kB	2023-03-07	2024-05-19
Pretty URL meskk.app/static/js/jquery.waypoints.min.js IP 172.67.134.129 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:18 Last Seen2024-05-19 09:16:53 Times Seen4888 Hash 7d05f92297dede9ecfe3706efb95677a 56bdb149d9baf64474a4c24ae66445769a28254e 368daab67b1a5b2b2802edbbac79a2aa4ba992a2ebf9c67b98ad784d8004018c Loading...

	meskk.app/static/js/custom.js	254 B	2023-03-13	2024-05-17
Pretty URL meskk.app/static/js/custom.js IP 172.67.134.129 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 04:45:01 Last Seen2024-05-17 20:14:40 Times Seen69 Hash 36fef3c339ce62b6db391c0224563d1b 6495ccd5dedea8c075c12346a3135fb8057667a7 ba393265d46394a131f7c8e738a6b5227b5428ac3198a97278220015f6ca0f9f Loading...

	unknown	512 B	2023-07-26	2024-05-17
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-26 22:20:52 Last Seen2024-05-17 20:14:39 Times Seen14 Hash 1c5f57bcee29b4c417b9ad0f96b1b6ff 6c594923431a9678c4b666545bd136d156e041b2 3eb6f2ec6f60104d30e05528d8eb2699ccc8b2cd0414326c24b9011f029e096b Loading...

	hm.baidu.com/hm.js?081a7bf471949e8471ded823ce68fcaa	31 kB	2024-05-09	2024-05-09
Pretty URL hm.baidu.com/hm.js?081a7bf471949e8471ded823ce68fcaa IP 14.215.183.79 ASN #4134 Chinanet Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-09 20:27:50 Last Seen2024-05-09 20:27:50 Times Seen2 Hash 9f8048b2fda69e8d45fcda5dbe19342b 5f1fe0669e5888c2e2db1033ac1e5bf350a0d8ce bb9d5b3eb0a43e83c4da62658cdd444e78f70c4f0500df3c73d9b32781df54e3 Loading...

	unknown	37 B	2023-04-11	2024-05-20
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:49:14 Last Seen2024-05-20 11:08:43 Times Seen22679 Hash 1c5c9160600df2d96d69a4ea16cec7ed 3cf678c9135cc952ba6970ef545035bb757a443f a3520fe88e248d2b6c9c6db93309a037ef969fe297208e5bd7e49a55bb32c808 Loading...

	unknown	459 B	2024-05-09	2024-05-09
Pretty Introduced by Function Embedded in HTML false Observations First Seen2024-05-09 20:27:50 Last Seen2024-05-09 20:27:50 Times Seen1 Hash 3107ced08b12f1bcf897af0e7c7a6db9 65667367a9f1a95df14340cbeed8d373e2a59ab7 c1333e7e9e9e42a314cad8864cc97d2aa27da7afc1a7af8656307f200a11e05f Loading...

	meskk.app/static/js/parsley.min.js	43 kB	2023-03-12	2024-05-17
Pretty URL meskk.app/static/js/parsley.min.js IP 172.67.134.129 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 20:22:28 Last Seen2024-05-17 20:14:40 Times Seen110 Hash f357718a12a1fabad8b4175d1d918d79 5902d7f1cb923768ff4c623da0127df2bf9437ba 7c735d70916116b38f3992f36d4bfbd883b4d981cf474b3596e7a7f6aac9c203 Loading...

	meskk.app/static/js/bootstrap.bundle.min.js	71 kB	2023-03-07	2024-05-20
Pretty URL meskk.app/static/js/bootstrap.bundle.min.js IP 172.67.134.129 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:38 Last Seen2024-05-20 10:47:56 Times Seen1366 Hash ef58fee438cd2da2c3b33ff6f1cfeebf 41a4836fc0253324e7e583905f47ba7194bac91d 13f578716138aaf01e3b930e863b46b6a0f33e77513b52c193c949fcf47b080e Loading...

	meskk.app/static/js/menu.min.js	1.3 kB	2023-03-12	2024-05-17
Pretty URL meskk.app/static/js/menu.min.js IP 172.67.134.129 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 20:22:28 Last Seen2024-05-17 20:14:39 Times Seen97 Hash 11523555d48b38ac0c755b91472b6e54 00e1c7432fe7e9c9a040752ea2240ad8f2dfddbb 72d17bd9918958ea5db273de0af388d3a26f9696739d0c4d2c38462dac595589 Loading...

	meskk.app/static/js/jquery.magnific-popup.min.js	20 kB	2023-03-07	2024-05-20
Pretty URL meskk.app/static/js/jquery.magnific-popup.min.js IP 172.67.134.129 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-05-20 09:41:42 Times Seen20411 Hash ba6cf724c8bb1cf5b084e79ff230626e f455c5f153f872e52265f87a644ff89fe14a6fb6 3fddc6d28aba3c13d64cfd4847c333ff48c71d4a5a58bd1a0494ca6ae8ac1bb4 Loading...

	meskk.app/	54 B	2023-09-22	2024-05-17
Pretty URL meskk.app/ IP 172.67.134.129 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-22 03:11:18 Last Seen2024-05-17 20:14:39 Times Seen8 Hash 3b1dbe53dc11b1a7577adf949cc6391a 11688a717dd6a2dc647b1b0896952dbea47a4dea 4c9dd676b79173c6272f5a8399af8119e1935d75631e5f042f492c4f3b854a2c Loading...

	meskk.app/static/js/tj.js	1.0 kB	2023-07-26	2024-05-17
Pretty URL meskk.app/static/js/tj.js IP 172.67.134.129 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-26 22:20:52 Last Seen2024-05-17 20:14:40 Times Seen16 Hash bfc577146477998280be20f1371b70b6 8d9105ca26356bfd3ad5804540acd13d7cfd5dfa 70b760fd28220f1721b49b0d7bfeab462d9112ed5eba27c51c446d5a0d0b48dc Loading...

	meskk.app/static/js/jquery-3.3.1.min.js	87 kB	2023-03-07	2024-05-20
Pretty URL meskk.app/static/js/jquery-3.3.1.min.js IP 172.67.134.129 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-05-20 11:10:43 Times Seen115372 Hash a09e13ee94d51c524b7e2a728c7d4039 0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae 160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef Loading...

	meskk.app/static/js/parallax.js	17 kB	2023-03-07	2024-05-17
Pretty URL meskk.app/static/js/parallax.js IP 172.67.134.129 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14:42 Last Seen2024-05-17 20:14:40 Times Seen104 Hash 97a318c5dd971ceb013b04ee3a5a9c00 8fb86cc097c792f5cdd9c0e02c2be5bcc27ed510 1aa4cad8b8c65ae062f64172ceb16f7eb02242cee0ec506f6a18390b650b98e3 Loading...

	meskk.app/static/js/owl.carousel.min.js	44 kB	2023-03-07	2024-05-20
Pretty URL meskk.app/static/js/owl.carousel.min.js IP 172.67.134.129 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:37 Last Seen2024-05-20 09:10:09 Times Seen20861 Hash f416f9031fef25ae25ba9756e3eb6978 e2a600e433df72b4cfde93d7880e3114917a3cbe a53c43f834b32309b084ea9314df8307e9c78cee2202c6e07f216ae4ae5b704d Loading...

	meskk.app/static/js/jquery.counterup.min.js	1.1 kB	2023-03-07	2024-05-17
Pretty URL meskk.app/static/js/jquery.counterup.min.js IP 172.67.134.129 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:31:21 Last Seen2024-05-17 20:14:39 Times Seen114 Hash a93c83334ec316e024791d3bfd0ecc61 828cf49badf0fccc53727ad2d9a73c3385e31890 00d91b451b2d4b7dfa2371e70721fe6cd54fb59764eda50bb7e8fdbbbfb1d432 Loading...

	meskk.app/static/js/scripts.js	12 kB	2023-05-23	2024-05-17
Pretty URL meskk.app/static/js/scripts.js IP 172.67.134.129 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-23 03:23:31 Last Seen2024-05-17 20:14:40 Times Seen63 Hash 4129785c230f3d477ae35ba666e23604 1f59310ec901781805e492af2faa82d2ba6e4675 0de9f4928478b6afc27dc8d06675e07b1f015b129f5bca0822e99fc940820210 Loading...

	meskk.app/static/js/redirect.js	7.5 kB	2023-07-26	2024-05-17
Pretty URL meskk.app/static/js/redirect.js IP 172.67.134.129 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-26 22:20:52 Last Seen2024-05-17 20:14:39 Times Seen27 Hash a5682e8998d7b504bcfd5ccb504eabc1 08eab3837df08ce1cbd012baec6064a293444a6e 8b8010207252580cd9160cc8afcb6dc75b3ca32a88468f4229f08fad36467364 Loading...

		Size	First Seen	Last Seen
	#1 Write - fdbc6f09e6f58065a83ee8835e0635d7	157 B	2023-07-26	2024-05-17
Pretty Observations First Seen2023-07-26 22:20:52 Last Seen2024-05-17 20:14:40 Times Seen14 Hash fdbc6f09e6f58065a83ee8835e0635d7 bf11523e3f455ddb7327dbe2706ed8332bcfce9f 3782d6c0382b4aa48ae367d29330a3abfa444b02f455ab5450981854798addb8 Loading...

	#2 Write - 105a795c291365a875a6f3185165b717	508 B	2023-07-26	2024-05-17
Pretty Observations First Seen2023-07-26 22:20:52 Last Seen2024-05-17 20:14:40 Times Seen14 Hash 105a795c291365a875a6f3185165b717 aeadf2423552c02c834536b85570a49b1c86eee8 c84bca95dd47f224c73e85f17386741ee73d059372462e1f6e315c536e4e226f Loading...

HTTP Transactions (66)

URL IP Response Size

meskk.app/static/picture/shaps1.png

172.67.134.129

200 OK

696 B

URL GET HTTP/3
meskk.app/static/picture/shaps1.png
IP
172.67.134.129:443
ASN
#13335 CLOUDFLARENET

Requested by
https://meskk.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectmeskk.app
Fingerprint47:62:53:0A:48:D2:6A:8F:5B:72:EC:0C:27:32:2D:43:59:D8:39:ED
ValidityMon, 06 May 2024 15:41:52 GMT - Sun, 04 Aug 2024 15:41:51 GMT

File type
PNG image data, 39 x 39, 8-bit colormap, non-interlaced
Size
696 B (696 bytes)
Hash
d8584e2b2eea3108db27361cdc286e06
7de5610d6232d61c31a0b27d78f5fc33af69699f
160abe9fa3f8c4822c0c27815a45d0d5d4b5ed3952303c73ddc11f94210e0fea

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/picture/shaps1.png HTTP/1.1
Host: meskk.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://meskk.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 09 May 2024 18:27:17 GMT
content-type: image/png
content-length: 696
last-modified: Sun, 18 Jun 2023 07:45:14 GMT
etag: "648eb60a-2b8"
expires: Sat, 08 Jun 2024 18:27:17 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=C%2Bp0b9XJWMEm%2FcrI026lSlWE5NW6mMs0Oc%2BMHUyCdLWSPhJX%2FYa58Xq91Tt4U4cAnOsFHSf%2BD78TUFcanU6%2BwYvgJNghIxnArUNzJFBtLBPxNVwVZZMqskHMYxE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8813be1d6b815693-OSL
alt-svc: h3=":443"; ma=86400

meskk.app/static/picture/shaps6.png

172.67.134.129

200 OK

947 B

URL GET HTTP/3
meskk.app/static/picture/shaps6.png
IP
172.67.134.129:443
ASN
#13335 CLOUDFLARENET

Requested by
https://meskk.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectmeskk.app
Fingerprint47:62:53:0A:48:D2:6A:8F:5B:72:EC:0C:27:32:2D:43:59:D8:39:ED
ValidityMon, 06 May 2024 15:41:52 GMT - Sun, 04 Aug 2024 15:41:51 GMT

File type
PNG image data, 43 x 43, 8-bit colormap, non-interlaced
Size
947 B (947 bytes)
Hash
1636176fab3fbacf5fefdc503bbfa7a7
87be437283c76897b0db2fd5d814799f855e0210
33a48e0c345620ba51c9e9b70790438d3dde51a07c1ecaf7fe49adce6d9e86ca

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/picture/shaps6.png HTTP/1.1
Host: meskk.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://meskk.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 09 May 2024 18:27:17 GMT
content-type: image/png
content-length: 947
last-modified: Sun, 18 Jun 2023 07:45:14 GMT
etag: "648eb60a-3b3"
expires: Sat, 08 Jun 2024 18:27:17 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BN%2FURE17dqXZK%2FbUjMtmqUpuoa6GFQHv1ik7ea6KjocAd2EwrRuaUVOgkogJVNGlBn27yLfqBuxr5c939YRUcdunq661TxZNWeyoyWK8icezfkgIYOen6Y7TyS0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8813be1d6b905693-OSL
alt-svc: h3=":443"; ma=86400

meskk.app/static/picture/ma.png

172.67.134.129

200 OK

911 B

URL GET HTTP/3
meskk.app/static/picture/ma.png
IP
172.67.134.129:443
ASN
#13335 CLOUDFLARENET

Requested by
https://meskk.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectmeskk.app
Fingerprint47:62:53:0A:48:D2:6A:8F:5B:72:EC:0C:27:32:2D:43:59:D8:39:ED
ValidityMon, 06 May 2024 15:41:52 GMT - Sun, 04 Aug 2024 15:41:51 GMT

File type
PNG image data, 130 x 130, 8-bit/color RGB, non-interlaced
Size
911 B (911 bytes)
Hash
ac51a9340c4597c69dee35cfe1bac233
7e2e42ae7563b50753429eb56a3156007036f625
2dc812dd3067ac276d915ab3e7264590ff4e493ac5c3925637343ae146b78c11

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/picture/ma.png HTTP/1.1
Host: meskk.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://meskk.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 09 May 2024 18:27:17 GMT
content-type: image/png
content-length: 911
last-modified: Mon, 24 Jul 2023 15:43:17 GMT
etag: "64be9c15-38f"
expires: Sat, 08 Jun 2024 18:27:17 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=doFp%2FYJpmSDIH%2Fx%2FDqu%2FzYZoD7K8aa0WZj3IVW8r4hRxECvBPq4pHnBbxX7ZAbTNCz5hoBG5zZyUnzldmtiWDoeLEY5LxpfoYY0%2FLY4lCyNOioeeRnsXX2Ilowg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8813be1d8bd45693-OSL
alt-svc: h3=":443"; ma=86400

meskk.app/static/picture/solution1.svg

172.67.134.129

200 OK

3.0 kB

URL GET HTTP/3
meskk.app/static/picture/solution1.svg
IP
172.67.134.129:443
ASN
#13335 CLOUDFLARENET

Requested by
https://meskk.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectmeskk.app
Fingerprint47:62:53:0A:48:D2:6A:8F:5B:72:EC:0C:27:32:2D:43:59:D8:39:ED
ValidityMon, 06 May 2024 15:41:52 GMT - Sun, 04 Aug 2024 15:41:51 GMT

File type
gzip compressed data, from Unix
Size
3.0 kB (3031 bytes)
Hash
4b1ddb870d978d5a3a4880d4e7cc01f6
3db596861dd2883ed0f7487bb9f0d2e092d2e591
cfa1b902390ea00a84fed78bc528704b01937df7d2cf458ee9775a1befecb1df

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/picture/solution1.svg HTTP/1.1
Host: meskk.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://meskk.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 09 May 2024 18:27:17 GMT
content-type: image/svg+xml
last-modified: Sun, 18 Jun 2023 07:45:14 GMT
vary: Accept-Encoding
etag: W/"648eb60a-efa"
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cIKE4CgppBfbgQGCeY4tgtCS1r1tB%2BPVP3faH2wDtGXaj6PoXkdR6CgmX1KtKkq3Gv7Tq4SWaPKpsW80II%2Bs0uvNqAX7g3aWnOd4SztePET6zV5t0vUuZLqamRQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8813be1d7bb55693-OSL
alt-svc: h3=":443"; ma=86400

sdk.51.la/js-sdk-pro.min.js

163.181.157.118

200 OK

13 kB

URL GET HTTP/2
sdk.51.la/js-sdk-pro.min.js
IP
163.181.157.118:443
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

Requested by
https://meskk.app/
Certificate
IssuerGlobalSign nv-sa
Subject*.51.la
Fingerprint9E:F3:EB:9A:59:E9:6D:6E:48:13:64:78:3C:33:1D:AA:79:52:5B:79
ValidityThu, 20 Apr 2023 01:12:57 GMT - Tue, 21 May 2024 01:12:56 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (34110)
Size
13 kB (12846 bytes)
Hash
24bb520e9517f2ed3ed987b46aeaf723
846723563d7dd2bff3954f93633b11af0103adc8
d1f1bfe698f2ffb7b3e7a885a301d58f9554d45df0a31c3e8b53c84b33c80d27

HTTP Headers

GET /js-sdk-pro.min.js HTTP/1.1
Host: sdk.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://meskk.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: Tengine
content-type: application/javascript
content-length: 12846
date: Sun, 28 Apr 2024 20:09:00 GMT
vary: Accept-Encoding
x-oss-request-id: 662EACDCE144DC3230A0C500
x-oss-cdn-auth: success
last-modified: Thu, 08 Jun 2023 02:24:34 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 5143829838470429443
x-oss-storage-class: Standard
content-md5: JLtSDpUX8u0+2Ye0aur3Iw==
x-oss-server-time: 3
content-encoding: gzip
ali-swift-global-savetime: 1714334940
via: cache15.l2de2[0,0,200-0,H], cache16.l2de2[1,0], ens-cache10.de7[0,0,200-0,H], ens-cache11.de7[1,0]
age: 944297
x-cache: HIT TCP_MEM_HIT dirn:-2:-2
x-swift-savetime: Tue, 30 Apr 2024 09:29:08 GMT
x-swift-cachetime: 1161592
access-control-allow-origin: *
timing-allow-origin: *
eagleid: a3b5839f17152792374993702e
X-Firefox-Spdy: h2

meskk.app/static/js/jquery.magnific-popup.min.js

172.67.134.129

200 OK

8.6 kB

URL GET HTTP/3
meskk.app/static/js/jquery.magnific-popup.min.js
IP
172.67.134.129:443
ASN
#13335 CLOUDFLARENET

Requested by
https://meskk.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectmeskk.app
Fingerprint47:62:53:0A:48:D2:6A:8F:5B:72:EC:0C:27:32:2D:43:59:D8:39:ED
ValidityMon, 06 May 2024 15:41:52 GMT - Sun, 04 Aug 2024 15:41:51 GMT

File type
gzip compressed data, from Unix
Size
8.6 kB (8563 bytes)
Hash
42e86b0a132c8e2a3c19f3b57fee24e1
c77a1aecac4b09daa341d9125ac639f6686c1219
a27d8f6c7d26f8d15525adeb14c9f05ebccf85b4d43c800c51928c75d59978e1

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/jquery.magnific-popup.min.js HTTP/1.1
Host: meskk.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://meskk.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 09 May 2024 18:27:17 GMT
content-type: application/javascript
last-modified: Sun, 18 Jun 2023 07:45:16 GMT
vary: Accept-Encoding
etag: W/"648eb60c-4ef8"
expires: Fri, 10 May 2024 06:27:17 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HlCR36UdgJOegL9FAuMQh6Me0gRcMlBGgcdZ2nIFQ4lfuYiWLy81UXPEEEqP8548OU5JrEd3qk4nUGImIUDjjtjBAiUzLfBmjfivXSbyC9bT4FCxyB%2FiRD4ws%2BE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8813be1d9bf25693-OSL
alt-svc: h3=":443"; ma=86400

meskk.app/static/css/owl.carousel.min.css

172.67.134.129

200 OK

1.7 kB

URL GET HTTP/3
meskk.app/static/css/owl.carousel.min.css
IP
172.67.134.129:443
ASN
#13335 CLOUDFLARENET

Requested by
https://meskk.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectmeskk.app
Fingerprint47:62:53:0A:48:D2:6A:8F:5B:72:EC:0C:27:32:2D:43:59:D8:39:ED
ValidityMon, 06 May 2024 15:41:52 GMT - Sun, 04 Aug 2024 15:41:51 GMT

File type
gzip compressed data, from Unix
Size
1.7 kB (1654 bytes)
Hash
e640bb2ef72066957a64462264bce6b5
f69074ecf1f7d3878f8ec7ff4b3b32e2fe67fb47
b9c5002dcba7a807db2db05b376a8eaaa743fecfa72de0a34c4d3a671ad522e8

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/css/owl.carousel.min.css HTTP/1.1
Host: meskk.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://meskk.app/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 09 May 2024 18:27:17 GMT
content-type: text/css
last-modified: Sun, 18 Jun 2023 07:45:16 GMT
vary: Accept-Encoding
etag: W/"648eb60c-d48"
expires: Fri, 10 May 2024 06:27:17 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=iVJUWR3%2BU7AcINvhNxR25mEW1PG0NUozEdZZHajsVz%2FjZXa6mjvmwSfz9%2BQ%2FJt3r9dGPU4fg2xXHSjTNJ%2BDf9t7AkJXvmme8gyFB7HvLIclPm8ZanInB7WhHFbo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8813be1d4b5c5693-OSL
alt-svc: h3=":443"; ma=86400

meskk.app/static/js/jquery.counterup.min.js

172.67.134.129

200 OK

3.8 kB

URL GET HTTP/3
meskk.app/static/js/jquery.counterup.min.js
IP
172.67.134.129:443
ASN
#13335 CLOUDFLARENET

Requested by
https://meskk.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectmeskk.app
Fingerprint47:62:53:0A:48:D2:6A:8F:5B:72:EC:0C:27:32:2D:43:59:D8:39:ED
ValidityMon, 06 May 2024 15:41:52 GMT - Sun, 04 Aug 2024 15:41:51 GMT

File type
gzip compressed data, from Unix
Size
3.8 kB (3843 bytes)
Hash
ffb39198da44018ef71cc9f13e952f59
a8b98fa6db939a8a516bf8f7c07d3b8aa90ac216
0f26f23998c9df034a40ff5e29e3cababacc9e06a3b8ff306877a762275a2e33

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/jquery.counterup.min.js HTTP/1.1
Host: meskk.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://meskk.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 09 May 2024 18:27:17 GMT
content-type: application/javascript
last-modified: Sun, 18 Jun 2023 07:45:16 GMT
vary: Accept-Encoding
etag: W/"648eb60c-42c"
expires: Fri, 10 May 2024 06:27:17 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QURiDo%2FYT%2BLvi6eVmHXeFMMaGBHfGNs6wc%2Bohs9RcwQJyoYEgH03hxJKo0gMqnisRsNhxOvEYbvH%2BHNXUZiyzjCXqLiDHH2BOhN2Inekl75tfYlUhq%2Fu3IBjrxM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8813be1d9bf45693-OSL
alt-svc: h3=":443"; ma=86400

meskk.app/static/js/menu.min.js

172.67.134.129

200 OK

6.9 kB

URL GET HTTP/3
meskk.app/static/js/menu.min.js
IP
172.67.134.129:443
ASN
#13335 CLOUDFLARENET

Requested by
https://meskk.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectmeskk.app
Fingerprint47:62:53:0A:48:D2:6A:8F:5B:72:EC:0C:27:32:2D:43:59:D8:39:ED
ValidityMon, 06 May 2024 15:41:52 GMT - Sun, 04 Aug 2024 15:41:51 GMT

File type
gzip compressed data, from Unix
Size
6.9 kB (6902 bytes)
Hash
7dedc25c231289762308a2bc28edc9bd
5e71f0a725d34fdac08e6608cbcd33b8c065dbad
11ef27d82842781f097ddd6018589807b4544dc87bb92e28f4508e51f6c597e9

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/menu.min.js HTTP/1.1
Host: meskk.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://meskk.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 09 May 2024 18:27:17 GMT
content-type: application/javascript
last-modified: Sun, 18 Jun 2023 07:45:16 GMT
vary: Accept-Encoding
etag: W/"648eb60c-527"
expires: Fri, 10 May 2024 06:27:17 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HLk%2BPZ8qQmK2zzuCIp7FjbgF0WN5vsEEsnosbwkWDeG28GzTP1jZi6M6EdbH3FBGXwUQdFx%2FndD%2Fr3uZ0VMR4YA0ddIlqeNQdmVUQnMdAYft2BqqjLelTr5vl3g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8813be1d9bef5693-OSL
alt-svc: h3=":443"; ma=86400

meskk.app/static/js/scripts.js

172.67.134.129

200 OK

9.7 kB

URL GET HTTP/3
meskk.app/static/js/scripts.js
IP
172.67.134.129:443
ASN
#13335 CLOUDFLARENET

Requested by
https://meskk.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectmeskk.app
Fingerprint47:62:53:0A:48:D2:6A:8F:5B:72:EC:0C:27:32:2D:43:59:D8:39:ED
ValidityMon, 06 May 2024 15:41:52 GMT - Sun, 04 Aug 2024 15:41:51 GMT

File type
gzip compressed data, from Unix
Size
9.7 kB (9729 bytes)
Hash
85c0ac267bed87078e9e3550fa6c198c
8663022dac3178576a9317b04d50eb75b6c472a5
40b3b12ba186284af491c4be67f8086df6942473a1bfe1a8e5d26ae4d77c0dde

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/scripts.js HTTP/1.1
Host: meskk.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://meskk.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 09 May 2024 18:27:17 GMT
content-type: application/javascript
last-modified: Sun, 18 Jun 2023 07:45:16 GMT
vary: Accept-Encoding
etag: W/"648eb60c-2dfa"
expires: Fri, 10 May 2024 06:27:17 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kKJqacER4cRLbt9pKfYutKc2Z%2BqykWafiwLoP5W%2BPDmr%2FwF8wcMbvy%2F2lZR%2ByTqeJB7ObsVL5DsGNYAc5XPoNuWAbqb%2B%2BGV%2BUNefBxtVnUUNPBaVzrnw7ZBpy6Q%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8813be1d9bf75693-OSL
alt-svc: h3=":443"; ma=86400

meskk.app/static/picture/14145S224-0-lp.jpg

172.67.134.129

200 OK

29 kB

URL GET HTTP/3
meskk.app/static/picture/14145S224-0-lp.jpg
IP
172.67.134.129:443
ASN
#13335 CLOUDFLARENET

Requested by
https://meskk.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectmeskk.app
Fingerprint47:62:53:0A:48:D2:6A:8F:5B:72:EC:0C:27:32:2D:43:59:D8:39:ED
ValidityMon, 06 May 2024 15:41:52 GMT - Sun, 04 Aug 2024 15:41:51 GMT

File type
gzip compressed data, from Unix
Size
29 kB (28808 bytes)
Hash
6565c8b39f7285afbc9a98131d448c45
88ab95499d235ad1d439b19003e6fb8f15edb90c
1d81a86b578a3f1a93ca26d09495c10bee4fe1bc32370973d047b1c918e67f49

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/picture/14145S224-0-lp.jpg HTTP/1.1
Host: meskk.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://meskk.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 09 May 2024 18:27:17 GMT
content-type: image/jpeg
last-modified: Sun, 18 Jun 2023 07:45:14 GMT
vary: Accept-Encoding
etag: W/"648eb60a-60aa"
expires: Sat, 08 Jun 2024 18:27:17 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=i7hjOm49jOMgiRYWHciOYY06CzZ0%2FsgywS2g%2F4xfOnd6vYPhdyJlwAutstn7V9pRI5X7cxiAMkorZMdUc0e6CY3iS1KxGxiGJHR0C2GLiwRxJ%2FsPrCMcX%2BbY8rU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8813be1d7bcf5693-OSL
alt-svc: h3=":443"; ma=86400

meskk.app/static/picture/home-hero.webp

172.67.134.129

200 OK

52 kB

URL GET HTTP/3
meskk.app/static/picture/home-hero.webp
IP
172.67.134.129:443
ASN
#13335 CLOUDFLARENET

Requested by
https://meskk.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectmeskk.app
Fingerprint47:62:53:0A:48:D2:6A:8F:5B:72:EC:0C:27:32:2D:43:59:D8:39:ED
ValidityMon, 06 May 2024 15:41:52 GMT - Sun, 04 Aug 2024 15:41:51 GMT

File type
RIFF (little-endian) data, Web/P image
Size
52 kB (52080 bytes)
Hash
e0b964ce8a22e37761e5c42b18cb810d
e57271a70e23f87d190556582831c2f91fd4a468
0a7b892b315f0dfecb0edfe9948c2925ebe11e6bb5b0c667bf870ff6ae84772c

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/picture/home-hero.webp HTTP/1.1
Host: meskk.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://meskk.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 09 May 2024 18:27:17 GMT
content-type: image/webp
content-length: 52080
last-modified: Sun, 18 Jun 2023 07:45:14 GMT
etag: "648eb60a-cb70"
strict-transport-security: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kqR8GH8BkGO2TiUbmrYp6%2BauViXkvPWOhBB0lmB7xhGycaA7w1aJhApH%2FEBoiJJjxN0tEWsOKVwPGZe8eatm1WPhZZeLN5iRXR46QLZcR4bWlvgum1vTXSZCJU4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8813be1d6b975693-OSL
alt-svc: h3=":443"; ma=86400

sdk.51.la/js-sdk-pro.min.js

163.181.157.118

200 OK

13 kB

URL GET HTTP/2
sdk.51.la/js-sdk-pro.min.js
IP
163.181.157.118:443
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

Requested by
https://meskk.app/
Certificate
IssuerGlobalSign nv-sa
Subject*.51.la
Fingerprint9E:F3:EB:9A:59:E9:6D:6E:48:13:64:78:3C:33:1D:AA:79:52:5B:79
ValidityThu, 20 Apr 2023 01:12:57 GMT - Tue, 21 May 2024 01:12:56 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (34110)
Size
13 kB (12846 bytes)
Hash
24bb520e9517f2ed3ed987b46aeaf723
846723563d7dd2bff3954f93633b11af0103adc8
d1f1bfe698f2ffb7b3e7a885a301d58f9554d45df0a31c3e8b53c84b33c80d27

HTTP Headers

GET /js-sdk-pro.min.js HTTP/1.1
Host: sdk.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://meskk.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: application/javascript
content-length: 12846
date: Sun, 28 Apr 2024 20:09:00 GMT
vary: Accept-Encoding
x-oss-request-id: 662EACDCE144DC3230A0C500
x-oss-cdn-auth: success
last-modified: Thu, 08 Jun 2023 02:24:34 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 5143829838470429443
x-oss-storage-class: Standard
content-md5: JLtSDpUX8u0+2Ye0aur3Iw==
x-oss-server-time: 3
content-encoding: gzip
ali-swift-global-savetime: 1714334940
via: cache15.l2de2[0,0,200-0,H], cache16.l2de2[1,0], ens-cache10.de7[0,0,200-0,H], ens-cache11.de7[0,0]
age: 944298
x-cache: HIT TCP_MEM_HIT dirn:-2:-2
x-swift-savetime: Tue, 30 Apr 2024 09:29:08 GMT
x-swift-cachetime: 1161592
access-control-allow-origin: *
timing-allow-origin: *
eagleid: a3b5839f17152792381135199e
X-Firefox-Spdy: h2

meskk.app/static/picture/planning.svg

172.67.134.129

200 OK

1.4 kB

URL GET HTTP/3
meskk.app/static/picture/planning.svg
IP
172.67.134.129:443
ASN
#13335 CLOUDFLARENET

Requested by
https://meskk.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectmeskk.app
Fingerprint47:62:53:0A:48:D2:6A:8F:5B:72:EC:0C:27:32:2D:43:59:D8:39:ED
ValidityMon, 06 May 2024 15:41:52 GMT - Sun, 04 Aug 2024 15:41:51 GMT

File type
SVG Scalable Vector Graphics image
Size
1.4 kB (1383 bytes)
Hash
b052e28944b2ea5d8d101a0f793caadf
187bad20f52c12bc959476714e2dc53b30caad28
7b4a83c63a1a45ba71c4b9a6f0e800d66126f02025e27b56321f93d47c0156e7

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/picture/planning.svg HTTP/1.1
Host: meskk.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/xml, text/xml, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://meskk.app/
Cookie: __vtins__K0iC0h6X1qowQVQZ=%7B%22sid%22%3A%20%22dfd4f9f9-7fe2-5ccb-887c-b54742af3233%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201715281037686%2C%20%22ct%22%3A%201715279237686%7D; __51uvsct__K0iC0h6X1qowQVQZ=1; __51vcke__K0iC0h6X1qowQVQZ=48427041-426f-55a5-9f64-20443277e297; __51vuft__K0iC0h6X1qowQVQZ=1715279237694
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 09 May 2024 18:27:18 GMT
content-type: image/svg+xml
last-modified: Sun, 18 Jun 2023 07:45:14 GMT
vary: Accept-Encoding
etag: W/"648eb60a-f7b"
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 1
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2B2wMd7aENlmeq0wQgdVw4Ghxd4NZ7mYkiCjzoUYy%2BOxvdkrwXykY7CrNQwJDvve3zOmvzW6Ird4YJi5XeEcB073rq8nd%2BgGQEViZi9Dk%2FIHZh%2BoyuW9n7XzGqpI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8813be25aa405693-OSL
alt-svc: h3=":443"; ma=86400

meskk.app/static/picture/Explore-illo.svg

172.67.134.129

200 OK

14 kB

URL GET HTTP/3
meskk.app/static/picture/Explore-illo.svg
IP
172.67.134.129:443
ASN
#13335 CLOUDFLARENET

Requested by
https://meskk.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectmeskk.app
Fingerprint47:62:53:0A:48:D2:6A:8F:5B:72:EC:0C:27:32:2D:43:59:D8:39:ED
ValidityMon, 06 May 2024 15:41:52 GMT - Sun, 04 Aug 2024 15:41:51 GMT

File type
SVG Scalable Vector Graphics image
Size
14 kB (14515 bytes)
Hash
46fb450c5ecf6da758bca0975551f056
629157e884b450ecf5a94d38d736db3c7428245f
8ba2b37fd4f2f3c19c10109bc6111d3d71692c78f9351f1eb2a8cab5231b77b5

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/picture/Explore-illo.svg HTTP/1.1
Host: meskk.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://meskk.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 09 May 2024 18:27:17 GMT
content-type: image/svg+xml
last-modified: Sun, 18 Jun 2023 07:45:14 GMT
vary: Accept-Encoding
etag: W/"648eb60a-8fe3"
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9B620%2BF595x2%2BWMlFqGfNronBGjdjERRPf2pK4BOI%2FZ%2B4YcSlmpctAipJsNrA1UXTPStIWCjVOromuTidGSXXbFciX5eYQHxvZRbmh%2FDOWS0EmgQU4ylBy0F%2B80%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8813be1d7bc45693-OSL
alt-svc: h3=":443"; ma=86400

meskk.app/static/font/fontawesome-webfont.woff2

172.67.134.129

200 OK

77 kB

URL GET HTTP/3
meskk.app/static/font/fontawesome-webfont.woff2
IP
172.67.134.129:443
ASN
#13335 CLOUDFLARENET

Requested by
https://meskk.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectmeskk.app
Fingerprint47:62:53:0A:48:D2:6A:8F:5B:72:EC:0C:27:32:2D:43:59:D8:39:ED
ValidityMon, 06 May 2024 15:41:52 GMT - Sun, 04 Aug 2024 15:41:51 GMT

File type
Web Open Font Format (Version 2), TrueType, length 77160, version 4.459
Size
77 kB (77160 bytes)
Hash
af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/font/fontawesome-webfont.woff2 HTTP/1.1
Host: meskk.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://meskk.app/static/css/font-awesome.min.css
Cookie: __vtins__K0iC0h6X1qowQVQZ=%7B%22sid%22%3A%20%22dfd4f9f9-7fe2-5ccb-887c-b54742af3233%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201715281037686%2C%20%22ct%22%3A%201715279237686%7D; __51uvsct__K0iC0h6X1qowQVQZ=1; __51vcke__K0iC0h6X1qowQVQZ=48427041-426f-55a5-9f64-20443277e297; __51vuft__K0iC0h6X1qowQVQZ=1715279237694
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 09 May 2024 18:27:19 GMT
content-type: font/woff2
content-length: 77160
last-modified: Sun, 18 Jun 2023 07:45:16 GMT
etag: "648eb60c-12d68"
strict-transport-security: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fDhDR%2Fw3eNupJ2w0pIsRld%2F7Wz57%2FS37AK5Y%2BdQVQGtNyKUtiYK9Od%2FlupHHvtCSjM6NC8xM66Sb6a4j4DVDFTjVH%2BibAtymQv745NuQs9q0uwvHbAH7Aa3qNsQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8813be245fcd5693-OSL
alt-svc: h3=":443"; ma=86400

meskk.app/static/picture/planning.svg

172.67.134.129

200 OK

13 kB

URL GET HTTP/3
meskk.app/static/picture/planning.svg
IP
172.67.134.129:443
ASN
#13335 CLOUDFLARENET

Requested by
https://meskk.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectmeskk.app
Fingerprint47:62:53:0A:48:D2:6A:8F:5B:72:EC:0C:27:32:2D:43:59:D8:39:ED
ValidityMon, 06 May 2024 15:41:52 GMT - Sun, 04 Aug 2024 15:41:51 GMT

File type
SVG Scalable Vector Graphics image
Size
13 kB (12843 bytes)
Hash
0b9d76c7f103ce28dac4473714f5282b
dca080a9944013230bb7f1cfce3a5b470d1679e4
2451e750e3b58919fe82b2a8bbd30b0e6304faf5abc6525a192b44c4ee72ba0d

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/picture/planning.svg HTTP/1.1
Host: meskk.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://meskk.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 09 May 2024 18:27:17 GMT
content-type: image/svg+xml
last-modified: Sun, 18 Jun 2023 07:45:14 GMT
vary: Accept-Encoding
etag: W/"648eb60a-f7b"
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lGkulyk2wyPP8BFc%2BRi6ohnT0IHPTnJ%2FdwxpT%2BUb0MSIjZC087J9O6Xa9jHeEzqV2YpKsEXhF1ttSvRug4mhHC3m66VV1NtUciydl8HKBWDXaEbpgZtpaf5GNpI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8813be1d6ba85693-OSL
alt-svc: h3=":443"; ma=86400

meskk.app/static/picture/planning.svg

172.67.134.129

200 OK

1.4 kB

URL GET HTTP/3
meskk.app/static/picture/planning.svg
IP
172.67.134.129:443
ASN
#13335 CLOUDFLARENET

Requested by
https://meskk.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectmeskk.app
Fingerprint47:62:53:0A:48:D2:6A:8F:5B:72:EC:0C:27:32:2D:43:59:D8:39:ED
ValidityMon, 06 May 2024 15:41:52 GMT - Sun, 04 Aug 2024 15:41:51 GMT

File type
gzip compressed data, from Unix
Size
1.4 kB (1426 bytes)
Hash
35a1515bf607cf3dac52641427f12bc5
8340d6450d4cb40592cd27440de64cb05741bab4
6385fef881d8e89fe67af04f4f1adf3e78f31a0ab490e572b5115f9b0f7225d0

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/picture/planning.svg HTTP/1.1
Host: meskk.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/xml, text/xml, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://meskk.app/
Cookie: __vtins__K0iC0h6X1qowQVQZ=%7B%22sid%22%3A%20%22dfd4f9f9-7fe2-5ccb-887c-b54742af3233%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201715281037686%2C%20%22ct%22%3A%201715279237686%7D; __51uvsct__K0iC0h6X1qowQVQZ=1; __51vcke__K0iC0h6X1qowQVQZ=48427041-426f-55a5-9f64-20443277e297; __51vuft__K0iC0h6X1qowQVQZ=1715279237694
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 09 May 2024 18:27:18 GMT
content-type: image/svg+xml
last-modified: Sun, 18 Jun 2023 07:45:14 GMT
vary: Accept-Encoding
etag: W/"648eb60a-f7b"
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 1
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VZiJ8Kkb%2BKMMMJC7vwAnJA90yo6497cHEGvsvoAG6B%2FHrnVxARfrHt6vQ6TgASaOZNqlF8m9dtYCus1fokr4Q5PzN9WfFaBwhrOjy0iqJwlrqa41Nq3xAGwnKEo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8813be25ca635693-OSL
alt-svc: h3=":443"; ma=86400

meskk.app/static/js/owl.carousel.min.js

172.67.134.129

200 OK

18 kB

URL GET HTTP/3
meskk.app/static/js/owl.carousel.min.js
IP
172.67.134.129:443
ASN
#13335 CLOUDFLARENET

Requested by
https://meskk.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectmeskk.app
Fingerprint47:62:53:0A:48:D2:6A:8F:5B:72:EC:0C:27:32:2D:43:59:D8:39:ED
ValidityMon, 06 May 2024 15:41:52 GMT - Sun, 04 Aug 2024 15:41:51 GMT

File type
gzip compressed data, from Unix
Size
18 kB (17632 bytes)
Hash
dc8a772822837b373306a572b0c57b3b
6bd41a484b6baea5365f00a7120ca06f771b0976
8e8aac17f3fdaa3efd68f240bc8652a820462ec36abe5079a13e99df472651fc

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/owl.carousel.min.js HTTP/1.1
Host: meskk.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://meskk.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 09 May 2024 18:27:17 GMT
content-type: application/javascript
last-modified: Sun, 18 Jun 2023 07:45:16 GMT
vary: Accept-Encoding
etag: W/"648eb60c-ad36"
expires: Fri, 10 May 2024 06:27:17 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tZ2lI6FRAH1O54y%2FLWZDUotxbB0F%2FRndy%2FVunMFd0I0s5SeXIVgYibbEUS7ouY4caAZcl0UNMrsSZH51f9wtW810%2B9la6o8xo5MkvVP4zzEFAWoMVxVjXwroJKg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8813be1d9bed5693-OSL
alt-svc: h3=":443"; ma=86400

meskk.app/static/picture/solution.svg

172.67.134.129

200 OK

10 kB

URL GET HTTP/3
meskk.app/static/picture/solution.svg
IP
172.67.134.129:443
ASN
#13335 CLOUDFLARENET

Requested by
https://meskk.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectmeskk.app
Fingerprint47:62:53:0A:48:D2:6A:8F:5B:72:EC:0C:27:32:2D:43:59:D8:39:ED
ValidityMon, 06 May 2024 15:41:52 GMT - Sun, 04 Aug 2024 15:41:51 GMT

File type
gzip compressed data, from Unix
Size
10 kB (10058 bytes)
Hash
16263b2a0b58a8356f78dc47f534e9b8
927aa8e5bc99658bf079c73aa1adaee7fff30c57
ff378eb1a54229871b482d9202ad897c2ad56ab72f3f4a68c92a0bd665aac438

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/picture/solution.svg HTTP/1.1
Host: meskk.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/xml, text/xml, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://meskk.app/
Cookie: __vtins__K0iC0h6X1qowQVQZ=%7B%22sid%22%3A%20%22dfd4f9f9-7fe2-5ccb-887c-b54742af3233%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201715281037686%2C%20%22ct%22%3A%201715279237686%7D; __51uvsct__K0iC0h6X1qowQVQZ=1; __51vcke__K0iC0h6X1qowQVQZ=48427041-426f-55a5-9f64-20443277e297; __51vuft__K0iC0h6X1qowQVQZ=1715279237694
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 09 May 2024 18:27:18 GMT
content-type: image/svg+xml
last-modified: Sun, 18 Jun 2023 07:45:14 GMT
vary: Accept-Encoding
etag: W/"648eb60a-12bb"
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 1
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6JawZjFlw36TknjEeD0r7ts37kFvQx1nXShLHK6c2QhMBTCBfUth9qD7NuKUzO9SdbdsI1AuVj867E14R9uuGooNOTiWp0vuTtJmk1cM63V1SI4BCzsyA%2FMXShg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8813be25ca605693-OSL
alt-svc: h3=":443"; ma=86400

meskk.app/static/picture/solution.svg

172.67.134.129

200 OK

14 kB

URL GET HTTP/3
meskk.app/static/picture/solution.svg
IP
172.67.134.129:443
ASN
#13335 CLOUDFLARENET

Requested by
https://meskk.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectmeskk.app
Fingerprint47:62:53:0A:48:D2:6A:8F:5B:72:EC:0C:27:32:2D:43:59:D8:39:ED
ValidityMon, 06 May 2024 15:41:52 GMT - Sun, 04 Aug 2024 15:41:51 GMT

File type
gzip compressed data, from Unix
Size
14 kB (13742 bytes)
Hash
1a7c348849a536a6f874667ef26b5534
0b2a191d3233591e3adf176b1dc0fe6ea4213735
a630d68d4dcbb5b8f82b0da1699347dfcac37375f4de97fc9724558a3a382d77

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/picture/solution.svg HTTP/1.1
Host: meskk.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/xml, text/xml, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://meskk.app/
Cookie: __vtins__K0iC0h6X1qowQVQZ=%7B%22sid%22%3A%20%22dfd4f9f9-7fe2-5ccb-887c-b54742af3233%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201715281037686%2C%20%22ct%22%3A%201715279237686%7D; __51uvsct__K0iC0h6X1qowQVQZ=1; __51vcke__K0iC0h6X1qowQVQZ=48427041-426f-55a5-9f64-20443277e297; __51vuft__K0iC0h6X1qowQVQZ=1715279237694
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 09 May 2024 18:27:18 GMT
content-type: image/svg+xml
last-modified: Sun, 18 Jun 2023 07:45:14 GMT
vary: Accept-Encoding
etag: W/"648eb60a-12bb"
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 1
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mtQbPoks%2B9UwQzbPMtOKZxM%2B%2BaFE5RBh20E%2FD2Wip70nqzoSUlH9SQ5jezpE5y4scniY%2BBwaB0XJzfwtW5%2F9oNBWej2tGhUciD%2FKiHbcZW2ze0qOZHEhZXdwpuQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8813be25aa375693-OSL
alt-svc: h3=":443"; ma=86400

meskk.app/static/picture/solution.svg

172.67.134.129

200 OK

6.7 kB

URL GET HTTP/3
meskk.app/static/picture/solution.svg
IP
172.67.134.129:443
ASN
#13335 CLOUDFLARENET

Requested by
https://meskk.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectmeskk.app
Fingerprint47:62:53:0A:48:D2:6A:8F:5B:72:EC:0C:27:32:2D:43:59:D8:39:ED
ValidityMon, 06 May 2024 15:41:52 GMT - Sun, 04 Aug 2024 15:41:51 GMT

File type
gzip compressed data, from Unix
Size
6.7 kB (6680 bytes)
Hash
e450b005fef1d89de33ca2b60cba8c84
2c4948162150703ebb91467f3f6226264d6d00ce
a8bcf9f4a6a9618e5e1c051914dbb04604ddf0d25fd35385f02e0690ad782e58

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/picture/solution.svg HTTP/1.1
Host: meskk.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/xml, text/xml, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://meskk.app/
Cookie: __vtins__K0iC0h6X1qowQVQZ=%7B%22sid%22%3A%20%22dfd4f9f9-7fe2-5ccb-887c-b54742af3233%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201715281037686%2C%20%22ct%22%3A%201715279237686%7D; __51uvsct__K0iC0h6X1qowQVQZ=1; __51vcke__K0iC0h6X1qowQVQZ=48427041-426f-55a5-9f64-20443277e297; __51vuft__K0iC0h6X1qowQVQZ=1715279237694
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 09 May 2024 18:27:18 GMT
content-type: image/svg+xml
last-modified: Sun, 18 Jun 2023 07:45:14 GMT
vary: Accept-Encoding
etag: W/"648eb60a-12bb"
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 1
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=n4He6l8ZPh1F0cezWlzAJTaL4dcWW%2FXWmrksdKAZYNOn0OU%2BVy7rp9osmzouAOaxABp%2BS5ezXDAJ%2F%2BKnpCv04lZhfv1XjOsOANc2zQYjbkTfIGLAdKyibz8EwAI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8813be25ba4d5693-OSL
alt-svc: h3=":443"; ma=86400

meskk.app/static/js/parsley.min.js

172.67.134.129

200 OK

19 kB

URL GET HTTP/3
meskk.app/static/js/parsley.min.js
IP
172.67.134.129:443
ASN
#13335 CLOUDFLARENET

Requested by
https://meskk.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectmeskk.app
Fingerprint47:62:53:0A:48:D2:6A:8F:5B:72:EC:0C:27:32:2D:43:59:D8:39:ED
ValidityMon, 06 May 2024 15:41:52 GMT - Sun, 04 Aug 2024 15:41:51 GMT

File type
gzip compressed data, from Unix
Size
19 kB (19057 bytes)
Hash
952ba434c5acc9dd682f3bac7f0be812
7d27331dda8850b838a72ec8e4ac5417a5c0a093
2f5d3a3c55484f97649a9ddfa8062aec2f358a282998fdaf3f6adc7d28c0af23

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/parsley.min.js HTTP/1.1
Host: meskk.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://meskk.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 09 May 2024 18:27:17 GMT
content-type: application/javascript
last-modified: Sun, 18 Jun 2023 07:45:16 GMT
vary: Accept-Encoding
etag: W/"648eb60c-a85f"
expires: Fri, 10 May 2024 06:27:17 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0uecb2KyH8pycTNPOfSONLxjkbNdTMdim%2BqNaIgQtxBLeVVBa8yzTk7HDu%2BFxD%2Br%2Fe85rGEnMHFcb6UtX2dAyZLDbxhuxoH%2BMgNQNMcyLaq3qUUa91Vg8UsICvM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8813be1d8be25693-OSL
alt-svc: h3=":443"; ma=86400

meskk.app/static/picture/shaps7.png

172.67.134.129

200 OK

8.6 kB

URL GET HTTP/3
meskk.app/static/picture/shaps7.png
IP
172.67.134.129:443
ASN
#13335 CLOUDFLARENET

Requested by
https://meskk.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectmeskk.app
Fingerprint47:62:53:0A:48:D2:6A:8F:5B:72:EC:0C:27:32:2D:43:59:D8:39:ED
ValidityMon, 06 May 2024 15:41:52 GMT - Sun, 04 Aug 2024 15:41:51 GMT

File type
gzip compressed data, from Unix
Size
8.6 kB (8597 bytes)
Hash
6deb21f7957e8744de409956ceeecbb8
27bfeb54937914bf4d88aaf0fc538cc2ddea69dd
70fb57a28f3192e32fc266cb897e88920621713afefd477c6620728c06b18596

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/picture/shaps7.png HTTP/1.1
Host: meskk.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://meskk.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 09 May 2024 18:27:17 GMT
content-type: image/png
last-modified: Sun, 18 Jun 2023 07:45:14 GMT
vary: Accept-Encoding
etag: W/"648eb60a-41e"
expires: Sat, 08 Jun 2024 18:27:17 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OYnoXAvWw1BljAOWT2YgTh%2BPx5l4V9INixhUnHczzMSfHHV3dEzRzQADVOJaIJkbtc1xA2vev5VPXex5VwBKHBEz9WjgYdbLr5MY3JXVGTNdNOoVHykKFxNNeIo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8813be1d6b965693-OSL
alt-svc: h3=":443"; ma=86400

meskk.app/static/css/favicon.ico

172.67.134.129

200 OK

1.2 kB

URL GET HTTP/3
meskk.app/static/css/favicon.ico
IP
172.67.134.129:443
ASN
#13335 CLOUDFLARENET

Requested by
https://meskk.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectmeskk.app
Fingerprint47:62:53:0A:48:D2:6A:8F:5B:72:EC:0C:27:32:2D:43:59:D8:39:ED
ValidityMon, 06 May 2024 15:41:52 GMT - Sun, 04 Aug 2024 15:41:51 GMT

File type

Size
1.2 kB (1156 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/css/favicon.ico HTTP/1.1
Host: meskk.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://meskk.app/
Cookie: __vtins__K0iC0h6X1qowQVQZ=%7B%22sid%22%3A%20%22dfd4f9f9-7fe2-5ccb-887c-b54742af3233%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201715281037686%2C%20%22ct%22%3A%201715279237686%7D; __51uvsct__K0iC0h6X1qowQVQZ=1; __51vcke__K0iC0h6X1qowQVQZ=48427041-426f-55a5-9f64-20443277e297; __51vuft__K0iC0h6X1qowQVQZ=1715279237694; __vtins__3FrAQTpvxXDWcFto=%7B%22sid%22%3A%20%221f8678ee-69ea-55ea-93bc-2e3976e342e3%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201715281038138%2C%20%22ct%22%3A%201715279238138%7D; __51uvsct__3FrAQTpvxXDWcFto=1; __51vcke__3FrAQTpvxXDWcFto=664ed194-9f51-524b-82ce-1ec02de60405; __51vuft__3FrAQTpvxXDWcFto=1715279238141
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 18:27:18 GMT
content-type: image/x-icon
last-modified: Sun, 18 Jun 2023 07:45:16 GMT
etag: W/"648eb60c-484"
strict-transport-security: max-age=31536000
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wuB09sZJuERWTEKgtlzDmzQU4u0A4qJwWOXcef7L1BkeFGoyw3gGlb5xrDztQLPfRu0G2NxE883O%2FJmhaF%2Bm%2BnocVAZoJjQodgM99j7wDAE7mHP77HkmOPkUNZc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8813be29897b5693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

meskk.app/static/picture/shaps3.png

172.67.134.129

200 OK

1.2 kB

URL GET HTTP/3
meskk.app/static/picture/shaps3.png
IP
172.67.134.129:443
ASN
#13335 CLOUDFLARENET

Requested by
https://meskk.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectmeskk.app
Fingerprint47:62:53:0A:48:D2:6A:8F:5B:72:EC:0C:27:32:2D:43:59:D8:39:ED
ValidityMon, 06 May 2024 15:41:52 GMT - Sun, 04 Aug 2024 15:41:51 GMT

File type
PNG image data, 35 x 35, 8-bit colormap, non-interlaced
Size
1.2 kB (1150 bytes)
Hash
bae5fe7c363266aa09d66d6c534b34f2
08280645c6379330652f376f21b5f4f48a3c6399
c6a3063bea44ed3fd8ce205fd033d861828d7d01efe7bb5787c7880d7c623fd7

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/picture/shaps3.png HTTP/1.1
Host: meskk.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://meskk.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 18:27:17 GMT
content-type: image/png
last-modified: Sun, 18 Jun 2023 07:45:14 GMT
vary: Accept-Encoding
etag: W/"648eb60a-47e"
expires: Sat, 08 Jun 2024 18:27:17 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5WALuun6JCBbLAMXRihdo4wtmtcnw0%2Fk%2B30l1LLVHPlt%2FOvfhTRV71mvDuybPSdpahXv4%2Fr4XWfg0WD%2BKOe97L0mSVIEUGBzMLfgLAO64SciSZzOnEtczRtrkaU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8813be1d6b885693-OSL
alt-svc: h3=":443"; ma=86400

meskk.app/static/image/video-bg.jpg

172.67.134.129

200 OK

134 kB

URL GET HTTP/3
meskk.app/static/image/video-bg.jpg
IP
172.67.134.129:443
ASN
#13335 CLOUDFLARENET

Requested by
https://meskk.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectmeskk.app
Fingerprint47:62:53:0A:48:D2:6A:8F:5B:72:EC:0C:27:32:2D:43:59:D8:39:ED
ValidityMon, 06 May 2024 15:41:52 GMT - Sun, 04 Aug 2024 15:41:51 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 1980x1320, components 3
Size
134 kB (134401 bytes)
Hash
7b4d2663cde4f1a7b3993a043e599a4e
dc1e08097ba90c061c839d5cdf55e19cb45e22b9
376749c2dd8b0ce40e6bc36b4ff8caf357ff0481b61bf1955e95f3af6c45a17b

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/image/video-bg.jpg HTTP/1.1
Host: meskk.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://meskk.app/static/css/style.css
Cookie: __vtins__K0iC0h6X1qowQVQZ=%7B%22sid%22%3A%20%22dfd4f9f9-7fe2-5ccb-887c-b54742af3233%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201715281037686%2C%20%22ct%22%3A%201715279237686%7D; __51uvsct__K0iC0h6X1qowQVQZ=1; __51vcke__K0iC0h6X1qowQVQZ=48427041-426f-55a5-9f64-20443277e297; __51vuft__K0iC0h6X1qowQVQZ=1715279237694
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 18:27:18 GMT
content-type: image/jpeg
last-modified: Sun, 18 Jun 2023 07:45:16 GMT
vary: Accept-Encoding
etag: W/"648eb60c-20d01"
expires: Sat, 08 Jun 2024 18:27:18 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BPSBNs8zNDnexWAEMBFOH%2FXgrotR21c1VeqhkpgXr4sPIemOvGM9OX1a7WgIy1uqNcrjlvhaRXbGNlK93aVeirZVMVwpK3yfV4kPiLt3hu4t3kD8h8z4oQyKZh4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8813be240efc5693-OSL
alt-svc: h3=":443"; ma=86400

meskk.app/static/css/magnific-popup.css

172.67.134.129

200 OK

7.0 kB

URL GET HTTP/3
meskk.app/static/css/magnific-popup.css
IP
172.67.134.129:443
ASN
#13335 CLOUDFLARENET

Requested by
https://meskk.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectmeskk.app
Fingerprint47:62:53:0A:48:D2:6A:8F:5B:72:EC:0C:27:32:2D:43:59:D8:39:ED
ValidityMon, 06 May 2024 15:41:52 GMT - Sun, 04 Aug 2024 15:41:51 GMT

File type
ASCII text, with very long lines (7302), with no line terminators
Size
7.0 kB (6951 bytes)
Hash
31624166558eafd72f05df700acd2245
efe61cc95aa5dc7b4798bbb5ca3223616e64649d
acfdcefce785e171e91cbbb5d1367730acd4f83584d17c671a77bc10c141af5e

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/css/magnific-popup.css HTTP/1.1
Host: meskk.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://meskk.app/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 18:27:17 GMT
content-type: text/css
last-modified: Sun, 18 Jun 2023 07:45:16 GMT
vary: Accept-Encoding
etag: W/"648eb60c-1b27"
expires: Fri, 10 May 2024 06:27:17 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ovPwATZe1fSGxSZ7%2BWhsrWrxKddYelFHH3znUSPXEzqBh9PcJgRah%2Fcd4pFmyeJDiCbhj4o%2Bl%2BDm76qIgTeHFiMLfWEv9M3A2iQc4lG4qzsT493SQAlgmp7v5ns%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8813be1d5b615693-OSL
alt-svc: h3=":443"; ma=86400

meskk.app/static/picture/shaps5.png

172.67.134.129

200 OK

1.1 kB

URL GET HTTP/3
meskk.app/static/picture/shaps5.png
IP
172.67.134.129:443
ASN
#13335 CLOUDFLARENET

Requested by
https://meskk.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectmeskk.app
Fingerprint47:62:53:0A:48:D2:6A:8F:5B:72:EC:0C:27:32:2D:43:59:D8:39:ED
ValidityMon, 06 May 2024 15:41:52 GMT - Sun, 04 Aug 2024 15:41:51 GMT

File type
PNG image data, 42 x 42, 8-bit colormap, non-interlaced
Size
1.1 kB (1090 bytes)
Hash
f4114091f8971907041072997240288d
c2074b0e35ff0902379d1b67e7af76bcc65b9cae
951b11e6c3f1691a1bf3cc1206546605049da3426f7cb0370d8ce88f6d46d2ba

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/picture/shaps5.png HTTP/1.1
Host: meskk.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://meskk.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 18:27:17 GMT
content-type: image/png
last-modified: Sun, 18 Jun 2023 07:45:14 GMT
vary: Accept-Encoding
etag: W/"648eb60a-442"
expires: Sat, 08 Jun 2024 18:27:17 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=r4OWllgsr6ZwlBsWFuGGMKriqHOR3WhKbhdzu1AnIU%2FkbqRZlLo6TRphFWCAtd4BnooNxjKewKbP6uW%2FNx15YGmtmWufkg9SV4Ai3T3Lchxo9sVItrTwUNf9uVs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8813be1d6b8e5693-OSL
alt-svc: h3=":443"; ma=86400

meskk.app/static/picture/goal.svg

172.67.134.129

200 OK

5.1 kB

URL GET HTTP/3
meskk.app/static/picture/goal.svg
IP
172.67.134.129:443
ASN
#13335 CLOUDFLARENET

Requested by
https://meskk.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectmeskk.app
Fingerprint47:62:53:0A:48:D2:6A:8F:5B:72:EC:0C:27:32:2D:43:59:D8:39:ED
ValidityMon, 06 May 2024 15:41:52 GMT - Sun, 04 Aug 2024 15:41:51 GMT

File type
SVG Scalable Vector Graphics image
Size
5.1 kB (5114 bytes)
Hash
96e03af4058d6d047b06e9fd06be4116
4289ed9cc8884f80aaee054cc42feb5090ff24be
df06ec425f675a999cba49b2d9223f86b158d1428bbe4bda49389a23a5167f79

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/picture/goal.svg HTTP/1.1
Host: meskk.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://meskk.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 18:27:17 GMT
content-type: image/svg+xml
last-modified: Sun, 18 Jun 2023 07:45:14 GMT
vary: Accept-Encoding
etag: W/"648eb60a-13fa"
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=T%2B1HGqlXPXnTKAHHVUSLTeK1itYDZ4sTQ721bt85IAQjk8fYrvPOJAlEj8ilLnJQj%2F54cn7fx91krx8f3Vd2XLXR9gj%2FGWFWDIqNz3Tf2MwCba2LVTvGqZRCFhQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8813be1d6baa5693-OSL
alt-svc: h3=":443"; ma=86400

meskk.app/static/picture/1414511425-0.jpg

172.67.134.129

200 OK

45 kB

URL GET HTTP/3
meskk.app/static/picture/1414511425-0.jpg
IP
172.67.134.129:443
ASN
#13335 CLOUDFLARENET

Requested by
https://meskk.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectmeskk.app
Fingerprint47:62:53:0A:48:D2:6A:8F:5B:72:EC:0C:27:32:2D:43:59:D8:39:ED
ValidityMon, 06 May 2024 15:41:52 GMT - Sun, 04 Aug 2024 15:41:51 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 936x416, Scaling: [none]x[none], YUV color, decoders should clamp
Size
45 kB (44996 bytes)
Hash
78d73dffac21d76b1533bb959221ef25
166237e78bfaeb77dc1aa6526cf2cd69c245fcc0
f9004995a0596ff6cb748915aacac933483ee10574e798195b9c7921ec2794fa

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/picture/1414511425-0.jpg HTTP/1.1
Host: meskk.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://meskk.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 18:27:17 GMT
content-type: image/jpeg
last-modified: Sun, 18 Jun 2023 07:45:14 GMT
vary: Accept-Encoding
etag: W/"648eb60a-afc4"
expires: Sat, 08 Jun 2024 18:27:17 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Z3wtEyvYuruLeTZu3QnW1E%2FaVJxfkU1D0IstR34GX1iPZg8gYoB6hE14bcH7NeccsWOKOD0dbbNif64K8EN3Vib%2FUDEzMp7LuAjpl%2BMmqk7X47mG2DVtS1%2FsQps%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8813be1d7bd05693-OSL
alt-svc: h3=":443"; ma=86400

hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=1666191650&si=081a7bf471949e8471ded823ce68fcaa&v=1.2.83&lv=1&sn=31684&r=0&ww=1280&ct=!!&u=https%3A%2F%2Fmeskk.app%2F&tt=%E5%B0%8F%E7%8B%90%E7%8B%B8%E9%92%B1%E5%8C%85app%E5%AE%98%E7%BD%91-metamask%E5%AE%98%E6%96%B9%E4%B8%8B%E8%BD%BD-%E5%B0%8F%E7%8B%90%E7%8B%B8%E9%92%B1%E5%8C%85%E5%AE%89%E5%8D%93%E6%9C%80%E6%96%B0%E7%89%88%E6%9C%AC

14.215.183.79

200 OK

43 B

URL GET HTTP/1.1
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=1666191650&si=081a7bf471949e8471ded823ce68fcaa&v=1.2.83&lv=1&sn=31684&r=0&ww=1280&ct=!!&u=https%3A%2F%2Fmeskk.app%2F&tt=%E5%B0%8F%E7%8B%90%E7%8B%B8%E9%92%B1%E5%8C%85app%E5%AE%98%E7%BD%91-metamask%E5%AE%98%E6%96%B9%E4%B8%8B%E8%BD%BD-%E5%B0%8F%E7%8B%90%E7%8B%B8%E9%92%B1%E5%8C%85%E5%AE%89%E5%8D%93%E6%9C%80%E6%96%B0%E7%89%88%E6%9C%AC
IP
14.215.183.79:443
ASN
#4134 Chinanet

Requested by
https://meskk.app/
Certificate
IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT

File type
GIF image data, version 89a, 1 x 1
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=1666191650&si=081a7bf471949e8471ded823ce68fcaa&v=1.2.83&lv=1&sn=31684&r=0&ww=1280&ct=!!&u=https%3A%2F%2Fmeskk.app%2F&tt=%E5%B0%8F%E7%8B%90%E7%8B%B8%E9%92%B1%E5%8C%85app%E5%AE%98%E7%BD%91-metamask%E5%AE%98%E6%96%B9%E4%B8%8B%E8%BD%BD-%E5%B0%8F%E7%8B%90%E7%8B%B8%E9%92%B1%E5%8C%85%E5%AE%89%E5%8D%93%E6%9C%80%E6%96%B0%E7%89%88%E6%9C%AC HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://meskk.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Thu, 09 May 2024 18:27:19 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=04D6C66908520294; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff

meskk.app/static/css/bootstrap.min.css

172.67.134.129

200 OK

141 kB

URL GET HTTP/3
meskk.app/static/css/bootstrap.min.css
IP
172.67.134.129:443
ASN
#13335 CLOUDFLARENET

Requested by
https://meskk.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectmeskk.app
Fingerprint47:62:53:0A:48:D2:6A:8F:5B:72:EC:0C:27:32:2D:43:59:D8:39:ED
ValidityMon, 06 May 2024 15:41:52 GMT - Sun, 04 Aug 2024 15:41:51 GMT

File type
ASCII text, with very long lines (65324)
Size
141 kB (140936 bytes)
Hash
04aca1f4cd3ec3c05a75a879f3be75a3
675fcf28f9fbf37139d3b2c0b676f96f601a4203
7928b5ab63c6e89ee0ee26f5ef201a58c72baf91abb688580a1aa26eb57b3c11

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/css/bootstrap.min.css HTTP/1.1
Host: meskk.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://meskk.app/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 18:27:17 GMT
content-type: text/css
last-modified: Sun, 18 Jun 2023 07:45:16 GMT
vary: Accept-Encoding
etag: W/"648eb60c-22688"
expires: Fri, 10 May 2024 06:27:17 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Jg7hS7XCHK7bozEVBtWxwx7%2BsZ5BuVyIctkw6whyrDJcyZY0uP%2B8VE7LkGqTyXmuKV12Ban3V6Jmrj4vqi7biwi5t8PSKp3HXeY8bHfVgsJcKmGRrxcSCzZwd08%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8813be1d4b555693-OSL
alt-svc: h3=":443"; ma=86400

meskk.app/static/picture/metamask-4.png

172.67.134.129

200 OK

9.8 kB

URL GET HTTP/3
meskk.app/static/picture/metamask-4.png
IP
172.67.134.129:443
ASN
#13335 CLOUDFLARENET

Requested by
https://meskk.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectmeskk.app
Fingerprint47:62:53:0A:48:D2:6A:8F:5B:72:EC:0C:27:32:2D:43:59:D8:39:ED
ValidityMon, 06 May 2024 15:41:52 GMT - Sun, 04 Aug 2024 15:41:51 GMT

File type
RIFF (little-endian) data, Web/P image
Size
9.8 kB (9750 bytes)
Hash
921d4822d718edb760a8db59021255bb
7e528dd57e4c8e5246de9ca135349446c0cbc203
8362ecc3f722b164ca30707476950d958b8b886154c5474a12b85771c87ca896

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/picture/metamask-4.png HTTP/1.1
Host: meskk.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://meskk.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 18:27:17 GMT
content-type: image/png
last-modified: Sun, 18 Jun 2023 07:45:14 GMT
vary: Accept-Encoding
etag: W/"648eb60a-2616"
expires: Sat, 08 Jun 2024 18:27:17 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SesK658%2Fn4%2BkNbXb4N5bNIpZlYKM5RwQTRyWbHEEwgggRmbuw%2FJgF6ifOMFI4Fw7usf2HsQDaKfkinlnLWaYaHxTuQPEFCEPM4UAHTAGGgAmrjqjdXwVXmlkUYQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8813be1d7bca5693-OSL
alt-svc: h3=":443"; ma=86400

meskk.app/static/picture/metamask-1.png

172.67.134.129

200 OK

18 kB

URL GET HTTP/3
meskk.app/static/picture/metamask-1.png
IP
172.67.134.129:443
ASN
#13335 CLOUDFLARENET

Requested by
https://meskk.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectmeskk.app
Fingerprint47:62:53:0A:48:D2:6A:8F:5B:72:EC:0C:27:32:2D:43:59:D8:39:ED
ValidityMon, 06 May 2024 15:41:52 GMT - Sun, 04 Aug 2024 15:41:51 GMT

File type
RIFF (little-endian) data, Web/P image
Size
18 kB (17914 bytes)
Hash
7c56c7a78b4b0f1e59c87fa8242ec679
f3a4a2009c93deac3d29317e88c39468bc154e94
7dc329f056a325a49e40efe01e3f89452790227c4abf22938574f843daf7c599

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/picture/metamask-1.png HTTP/1.1
Host: meskk.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://meskk.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 18:27:17 GMT
content-type: image/png
last-modified: Sun, 18 Jun 2023 07:45:14 GMT
vary: Accept-Encoding
etag: W/"648eb60a-45fa"
expires: Sat, 08 Jun 2024 18:27:17 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yNMFpTgCgaIa2vLn35RgbUt4TWFHiJyjfhzHvC10JaPjnXQIDqpgvPP%2F8qIpWXuveyb3ZOh65WnW8axQXRJswbLcOmodicP0kF7HfRjAYNOVdc96IH4IBg9RSYQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8813be1d7bc65693-OSL
alt-svc: h3=":443"; ma=86400

hm.baidu.com/hm.js?081a7bf471949e8471ded823ce68fcaa

14.215.183.79

200 OK

31 kB

URL GET HTTP/1.1
hm.baidu.com/hm.js?081a7bf471949e8471ded823ce68fcaa
IP
14.215.183.79:443
ASN
#4134 Chinanet

Requested by
https://meskk.app/
Certificate
IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT

File type
JavaScript source, ASCII text, with very long lines (623)
Size
31 kB (30673 bytes)
Hash
9f8048b2fda69e8d45fcda5dbe19342b
5f1fe0669e5888c2e2db1033ac1e5bf350a0d8ce
bb9d5b3eb0a43e83c4da62658cdd444e78f70c4f0500df3c73d9b32781df54e3

HTTP Headers

GET /hm.js?081a7bf471949e8471ded823ce68fcaa HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://meskk.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11460
Content-Type: application/javascript
Date: Thu, 09 May 2024 18:27:18 GMT
Etag: 266d5cbcc04475fd8cd3c17bfbf7950a
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=2B9AFE75ADF793C2; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800

meskk.app/static/picture/project-management.svg

172.67.134.129

200 OK

7.3 kB

URL GET HTTP/3
meskk.app/static/picture/project-management.svg
IP
172.67.134.129:443
ASN
#13335 CLOUDFLARENET

Requested by
https://meskk.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectmeskk.app
Fingerprint47:62:53:0A:48:D2:6A:8F:5B:72:EC:0C:27:32:2D:43:59:D8:39:ED
ValidityMon, 06 May 2024 15:41:52 GMT - Sun, 04 Aug 2024 15:41:51 GMT

File type
SVG Scalable Vector Graphics image
Size
7.3 kB (7275 bytes)
Hash
7a37f488510c8584282c4c8d623f20f6
58237f6b63b78b503bfd8a2dbe7507559b506379
32c61fb95a053430125a52bfd097f62e055e92e09c05757adb3ff1d5bc9ff9f4

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/picture/project-management.svg HTTP/1.1
Host: meskk.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/xml, text/xml, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://meskk.app/
Cookie: __vtins__K0iC0h6X1qowQVQZ=%7B%22sid%22%3A%20%22dfd4f9f9-7fe2-5ccb-887c-b54742af3233%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201715281037686%2C%20%22ct%22%3A%201715279237686%7D; __51uvsct__K0iC0h6X1qowQVQZ=1; __51vcke__K0iC0h6X1qowQVQZ=48427041-426f-55a5-9f64-20443277e297; __51vuft__K0iC0h6X1qowQVQZ=1715279237694
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 18:27:18 GMT
content-type: image/svg+xml
last-modified: Sun, 18 Jun 2023 07:45:14 GMT
vary: Accept-Encoding
etag: W/"648eb60a-1c6b"
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 1
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qiYDqVbQbTbX7uV8fMwqQERqQHPSludMTez6S2qYRplZAYdYwrLmPe%2Fq30NWBXm4rj%2FqxOX%2FAgOuxnv9Uoc6pxW8Mc7pDlNhcyyUL1mDkpouF0%2FWnhCtDTmcSNs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8813be25ba565693-OSL
alt-svc: h3=":443"; ma=86400

meskk.app/static/css/responsive.css

172.67.134.129

200 OK

20 kB

URL GET HTTP/3
meskk.app/static/css/responsive.css
IP
172.67.134.129:443
ASN
#13335 CLOUDFLARENET

Requested by
https://meskk.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectmeskk.app
Fingerprint47:62:53:0A:48:D2:6A:8F:5B:72:EC:0C:27:32:2D:43:59:D8:39:ED
ValidityMon, 06 May 2024 15:41:52 GMT - Sun, 04 Aug 2024 15:41:51 GMT

File type
ASCII text, with CRLF line terminators
Size
20 kB (20363 bytes)
Hash
211e608c91828ca277f6a4de60d8355a
e5590ed56d97e6f1739a898330d699f074aac1f0
e87848b61df7039e0f9d153fe4d00e5e182b3f76502ab5043249c326ad6bcc24

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/css/responsive.css HTTP/1.1
Host: meskk.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://meskk.app/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 18:27:17 GMT
content-type: text/css
last-modified: Sun, 18 Jun 2023 07:45:16 GMT
vary: Accept-Encoding
etag: W/"648eb60c-4f8b"
expires: Fri, 10 May 2024 06:27:17 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wf6gqOshPs6GfD8kd%2BrzxRc%2FGmJAXFyF%2BKsj5AMpqEmRWnFBQfvHzTby0GEXuZDBXCP%2Bq6e2%2BKyMXac5uRbQ6Keuckdg0vMcuWy571twRBv%2F4doWh%2FNcPx80G5g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8813be1d5b695693-OSL
alt-svc: h3=":443"; ma=86400

meskk.app/static/picture/metamask-2.png

172.67.134.129

200 OK

21 kB

URL GET HTTP/3
meskk.app/static/picture/metamask-2.png
IP
172.67.134.129:443
ASN
#13335 CLOUDFLARENET

Requested by
https://meskk.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectmeskk.app
Fingerprint47:62:53:0A:48:D2:6A:8F:5B:72:EC:0C:27:32:2D:43:59:D8:39:ED
ValidityMon, 06 May 2024 15:41:52 GMT - Sun, 04 Aug 2024 15:41:51 GMT

File type
RIFF (little-endian) data, Web/P image
Size
21 kB (21316 bytes)
Hash
894d3ff7553eb0bbc064224594f4d4a7
160be72781e444b05485a080858a1ba16ac1ef2d
c68cf7ab82e8fa150086e9ef43f37df970caaf8ee987da3a3ef66fdadc676e8c

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/picture/metamask-2.png HTTP/1.1
Host: meskk.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://meskk.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 18:27:17 GMT
content-type: image/png
last-modified: Sun, 18 Jun 2023 07:45:14 GMT
vary: Accept-Encoding
etag: W/"648eb60a-5344"
expires: Sat, 08 Jun 2024 18:27:17 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=w%2BygfzkTFcgSOPTv%2BZusuwnXTt1FAEHenl5fRqiib3l2DRjaAg7e8qMftlG35bE2kBTyAr%2FWU9LYRlh6a6w4flZZNDi9BQRaK8Qnzy87odCJ0OQ9xAcaM0vnJd0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8813be1d7bc75693-OSL
alt-svc: h3=":443"; ma=86400

meskk.app/static/picture/shaps4.png

172.67.134.129

200 OK

1.1 kB

URL GET HTTP/3
meskk.app/static/picture/shaps4.png
IP
172.67.134.129:443
ASN
#13335 CLOUDFLARENET

Requested by
https://meskk.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectmeskk.app
Fingerprint47:62:53:0A:48:D2:6A:8F:5B:72:EC:0C:27:32:2D:43:59:D8:39:ED
ValidityMon, 06 May 2024 15:41:52 GMT - Sun, 04 Aug 2024 15:41:51 GMT

File type
PNG image data, 34 x 40, 8-bit colormap, non-interlaced
Size
1.1 kB (1103 bytes)
Hash
7e504ba9800440f3708b1823b546c9cf
312784b5910aa407abfb3bbbb988717776556d91
34dc3136ec79a2fc2636c2383082a04ab7747cc5ec9375553b2d83c31f713153

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/picture/shaps4.png HTTP/1.1
Host: meskk.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://meskk.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 18:27:17 GMT
content-type: image/png
last-modified: Sun, 18 Jun 2023 07:45:14 GMT
vary: Accept-Encoding
etag: W/"648eb60a-44f"
expires: Sat, 08 Jun 2024 18:27:17 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WfKUhvC6rBfDNdz9%2BwGbmvqK0FNmeXlUsvsUbemHMMxkVgSY6CJsF1TqIYZd%2FWBz%2BKGFmipH8ssFZuaocfMQPkJ0Wav9eIo4keRrkInLyjCku4gX4S4v9Tw%2F9Bc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8813be1d6b8b5693-OSL
alt-svc: h3=":443"; ma=86400

meskk.app/static/css/style.css

172.67.134.129

200 OK

60 kB

URL GET HTTP/3
meskk.app/static/css/style.css
IP
172.67.134.129:443
ASN
#13335 CLOUDFLARENET

Requested by
https://meskk.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectmeskk.app
Fingerprint47:62:53:0A:48:D2:6A:8F:5B:72:EC:0C:27:32:2D:43:59:D8:39:ED
ValidityMon, 06 May 2024 15:41:52 GMT - Sun, 04 Aug 2024 15:41:51 GMT

File type
ASCII text
Size
60 kB (59981 bytes)
Hash
2227c28d0c8d1bb8bab53a826d219f08
825ffa99066f7de10fdb2ec1476ac409c75e607c
e6d89649b92aeb39d7cf849e636b7848a85fc20c471d5f92a3a305f0081a9c75

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/css/style.css HTTP/1.1
Host: meskk.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://meskk.app/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 18:27:17 GMT
content-type: text/css
last-modified: Sun, 18 Jun 2023 07:45:16 GMT
vary: Accept-Encoding
etag: W/"648eb60c-ea4d"
expires: Fri, 10 May 2024 06:27:17 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qdm1OWZuAR3AHmwdMNDQ1CPwFlynvZP3uLVGI9ff6GeMOse5EcpKm42wLQojf2xJukmV1lnFjXiEQG6OIiXuBTNvktbSvMUsv1HctSgZ%2F2BLMtuwp2zv0e%2BLbRE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8813be1d5b665693-OSL
alt-svc: h3=":443"; ma=86400

meskk.app/static/picture/wallet-illo.svg

172.67.134.129

200 OK

36 kB

URL GET HTTP/3
meskk.app/static/picture/wallet-illo.svg
IP
172.67.134.129:443
ASN
#13335 CLOUDFLARENET

Requested by
https://meskk.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectmeskk.app
Fingerprint47:62:53:0A:48:D2:6A:8F:5B:72:EC:0C:27:32:2D:43:59:D8:39:ED
ValidityMon, 06 May 2024 15:41:52 GMT - Sun, 04 Aug 2024 15:41:51 GMT

File type
SVG Scalable Vector Graphics image
Size
36 kB (36437 bytes)
Hash
63ad7f01f67accd6aafb47999640abe5
5ed10575a1a39d5b02840416a281fb1e655bd423
596228062de19a21cfda4d3129b3a5d397c5a71509e096b8f67fb8c4f22aa56d

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/picture/wallet-illo.svg HTTP/1.1
Host: meskk.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://meskk.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 18:27:17 GMT
content-type: image/svg+xml
last-modified: Sun, 18 Jun 2023 07:45:14 GMT
vary: Accept-Encoding
etag: W/"648eb60a-8e55"
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RGH3U3X7B5jVbUxdxvMpuDEIOIz8E3zbdBY81Jve2%2FGEIcalVfB8DOgLGjtut3s9jRMTtm%2BoWfqDV2xZDexYfO3AF9%2BPxorVxsTktaSBs%2BTbf%2BP3bpR%2Bw%2B04CLs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8813be1d6bad5693-OSL
alt-svc: h3=":443"; ma=86400

meskk.app/static/picture/metamask-3.png

172.67.134.129

200 OK

11 kB

URL GET HTTP/3
meskk.app/static/picture/metamask-3.png
IP
172.67.134.129:443
ASN
#13335 CLOUDFLARENET

Requested by
https://meskk.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectmeskk.app
Fingerprint47:62:53:0A:48:D2:6A:8F:5B:72:EC:0C:27:32:2D:43:59:D8:39:ED
ValidityMon, 06 May 2024 15:41:52 GMT - Sun, 04 Aug 2024 15:41:51 GMT

File type
RIFF (little-endian) data, Web/P image
Size
11 kB (10654 bytes)
Hash
9e77649ff88cdef97d6b4d82b7606e7f
3a78a29aff1a501845de67ae842e59a4d8acdebd
76b8076244590844d54e884cb83acf4da2d635e74da3159d0e54d7169743e194

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/picture/metamask-3.png HTTP/1.1
Host: meskk.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://meskk.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 18:27:17 GMT
content-type: image/png
last-modified: Sun, 18 Jun 2023 07:45:14 GMT
vary: Accept-Encoding
etag: W/"648eb60a-299e"
expires: Sat, 08 Jun 2024 18:27:17 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AJSQwYuTSbBPMYYEWd1yPFTqejqO%2BJkpMzOW27IJ3%2F7fHKI%2BUI3%2B6mjMNsMpjgaGwtTG7kKvaFAsiLQPCe5NgR4NPjw9cjE8Ka2b4ImfjXAuQo%2Bgu7e0sqKRA%2BQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8813be1d7bc95693-OSL
alt-svc: h3=":443"; ma=86400

meskk.app/static/js/bootstrap.bundle.min.js

172.67.134.129

200 OK

71 kB

URL GET HTTP/3
meskk.app/static/js/bootstrap.bundle.min.js
IP
172.67.134.129:443
ASN
#13335 CLOUDFLARENET

Requested by
https://meskk.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectmeskk.app
Fingerprint47:62:53:0A:48:D2:6A:8F:5B:72:EC:0C:27:32:2D:43:59:D8:39:ED
ValidityMon, 06 May 2024 15:41:52 GMT - Sun, 04 Aug 2024 15:41:51 GMT

File type
JavaScript source, ASCII text, with very long lines (65297)
Size
71 kB (70966 bytes)
Hash
ef58fee438cd2da2c3b33ff6f1cfeebf
41a4836fc0253324e7e583905f47ba7194bac91d
13f578716138aaf01e3b930e863b46b6a0f33e77513b52c193c949fcf47b080e

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/bootstrap.bundle.min.js HTTP/1.1
Host: meskk.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://meskk.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 18:27:17 GMT
content-type: application/javascript
last-modified: Sun, 18 Jun 2023 07:45:16 GMT
vary: Accept-Encoding
etag: W/"648eb60c-11536"
expires: Fri, 10 May 2024 06:27:17 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wggzOgm6JHhIMOeVNs5g97S80Gu%2BVIZzdHLakmx8%2B5s%2BHwXJydEwKClny2UZVOfaz95IqB0WctmBRhdql4W1SwrjWNz26fz6TXbEr9xxCtkRMqhL%2F9dK%2FB%2Fliq4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8813be1d8bdc5693-OSL
alt-svc: h3=":443"; ma=86400

meskk.app/static/js/custom.js

172.67.134.129

200 OK

254 B

URL GET HTTP/3
meskk.app/static/js/custom.js
IP
172.67.134.129:443
ASN
#13335 CLOUDFLARENET

Requested by
https://meskk.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectmeskk.app
Fingerprint47:62:53:0A:48:D2:6A:8F:5B:72:EC:0C:27:32:2D:43:59:D8:39:ED
ValidityMon, 06 May 2024 15:41:52 GMT - Sun, 04 Aug 2024 15:41:51 GMT

File type
ASCII text, with no line terminators
Size
254 B (254 bytes)
Hash
a102fc547f4ae1430df31e12161c6b18
b0d476c6477767f86e000bb86b6d07b5404928c7
9eb13cf37f41f35c6cc01b15adab2590f321dd132aa9f27ee494c85a20bdc876

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/custom.js HTTP/1.1
Host: meskk.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://meskk.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 18:27:17 GMT
content-type: application/javascript
last-modified: Sun, 18 Jun 2023 07:45:16 GMT
etag: W/"648eb60c-fe"
expires: Fri, 10 May 2024 06:27:17 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZbHsGKGFHSTzqDjp4I0SK0cEbhIFP16agDa0cHOhbC2C3KjMUHEwh5hpUgsRSzBC5jFmXkxGvYwXHBbeYik9XKmFgrLQEYyQ7QQG%2FLM1RqFMCxPKdV2BoMAlbf0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8813be1d9c025693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

meskk.app/static/js/redirect.js

172.67.134.129

200 OK

7.5 kB

URL GET HTTP/3
meskk.app/static/js/redirect.js
IP
172.67.134.129:443
ASN
#13335 CLOUDFLARENET

Requested by
https://meskk.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectmeskk.app
Fingerprint47:62:53:0A:48:D2:6A:8F:5B:72:EC:0C:27:32:2D:43:59:D8:39:ED
ValidityMon, 06 May 2024 15:41:52 GMT - Sun, 04 Aug 2024 15:41:51 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (8003), with no line terminators
Size
7.5 kB (7505 bytes)
Hash
d003234ffeecfbf108004568db9d1316
4704481cbcd45f3362d3f3b75a2af872555f2e11
7adfaef4c329c8d21510a53bad4a30e0a01c77a5a213553a4dc6bd4a8e865e5a

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/redirect.js HTTP/1.1
Host: meskk.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://meskk.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 18:27:17 GMT
content-type: application/javascript
last-modified: Sun, 18 Jun 2023 07:45:16 GMT
vary: Accept-Encoding
etag: W/"648eb60c-1d51"
expires: Fri, 10 May 2024 06:27:17 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=L3Px8VGnNVl4IYVYs2ML2yeSMOakHGtnAKeNBsZ%2FZPYM3K6seJdxbraASEkRzsJesQvFWFA9ITbGzyIABRij7JufPAFiHnABTGIqHWejleTXu7soRMY7mS5EbbE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8813be1d5b7c5693-OSL
alt-svc: h3=":443"; ma=86400

meskk.app/static/picture/metamask-5.png

172.67.134.129

200 OK

10 kB

URL GET HTTP/3
meskk.app/static/picture/metamask-5.png
IP
172.67.134.129:443
ASN
#13335 CLOUDFLARENET

Requested by
https://meskk.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectmeskk.app
Fingerprint47:62:53:0A:48:D2:6A:8F:5B:72:EC:0C:27:32:2D:43:59:D8:39:ED
ValidityMon, 06 May 2024 15:41:52 GMT - Sun, 04 Aug 2024 15:41:51 GMT

File type
RIFF (little-endian) data, Web/P image
Size
10 kB (10504 bytes)
Hash
fb8629698e3b63bc39e596516e989f99
7a981ad68f689516f22982858da04259daf022a0
4d3ac7f449330c5b37819d05c6480a1097e4d1f3f94985c8b3a2f7e6adcbb6e2

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/picture/metamask-5.png HTTP/1.1
Host: meskk.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://meskk.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 18:27:17 GMT
content-type: image/png
last-modified: Sun, 18 Jun 2023 07:45:14 GMT
vary: Accept-Encoding
etag: W/"648eb60a-2908"
expires: Sat, 08 Jun 2024 18:27:17 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wUs18FD2T0Eqn5qeZDnDtLavHOf609CCnpdfIA%2FxSDlL2tQwuQyPXEDEnMq55j0vhSduvK8sATYGPHKp6sV0K%2B37fAZ535eDf3QbdSy2p%2FBt%2BYmpi1DadsbcyQU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8813be1d7bcb5693-OSL
alt-svc: h3=":443"; ma=86400

meskk.app/static/picture/goal.svg

172.67.134.129

200 OK

5.1 kB

URL GET HTTP/3
meskk.app/static/picture/goal.svg
IP
172.67.134.129:443
ASN
#13335 CLOUDFLARENET

Requested by
https://meskk.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectmeskk.app
Fingerprint47:62:53:0A:48:D2:6A:8F:5B:72:EC:0C:27:32:2D:43:59:D8:39:ED
ValidityMon, 06 May 2024 15:41:52 GMT - Sun, 04 Aug 2024 15:41:51 GMT

File type
SVG Scalable Vector Graphics image
Size
5.1 kB (5114 bytes)
Hash
96e03af4058d6d047b06e9fd06be4116
4289ed9cc8884f80aaee054cc42feb5090ff24be
df06ec425f675a999cba49b2d9223f86b158d1428bbe4bda49389a23a5167f79

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/picture/goal.svg HTTP/1.1
Host: meskk.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/xml, text/xml, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://meskk.app/
Cookie: __vtins__K0iC0h6X1qowQVQZ=%7B%22sid%22%3A%20%22dfd4f9f9-7fe2-5ccb-887c-b54742af3233%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201715281037686%2C%20%22ct%22%3A%201715279237686%7D; __51uvsct__K0iC0h6X1qowQVQZ=1; __51vcke__K0iC0h6X1qowQVQZ=48427041-426f-55a5-9f64-20443277e297; __51vuft__K0iC0h6X1qowQVQZ=1715279237694
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 18:27:18 GMT
content-type: image/svg+xml
last-modified: Sun, 18 Jun 2023 07:45:14 GMT
vary: Accept-Encoding
etag: W/"648eb60a-13fa"
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 1
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=z0q0lcEUD6odotSwYnZXFIYF8%2BptahXGovhdtauEe6FgWGCxMhQRYuQGZhJyO3rm2TXhXIL3XUwnnS7nTPJUetRGMewUY5Omll4flCh67IwaJB%2FALX78ORd9nsg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8813be25ba545693-OSL
alt-svc: h3=":443"; ma=86400

meskk.app/static/picture/project-management.svg

172.67.134.129

200 OK

7.3 kB

URL GET HTTP/3
meskk.app/static/picture/project-management.svg
IP
172.67.134.129:443
ASN
#13335 CLOUDFLARENET

Requested by
https://meskk.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectmeskk.app
Fingerprint47:62:53:0A:48:D2:6A:8F:5B:72:EC:0C:27:32:2D:43:59:D8:39:ED
ValidityMon, 06 May 2024 15:41:52 GMT - Sun, 04 Aug 2024 15:41:51 GMT

File type
SVG Scalable Vector Graphics image
Size
7.3 kB (7275 bytes)
Hash
7a37f488510c8584282c4c8d623f20f6
58237f6b63b78b503bfd8a2dbe7507559b506379
32c61fb95a053430125a52bfd097f62e055e92e09c05757adb3ff1d5bc9ff9f4

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/picture/project-management.svg HTTP/1.1
Host: meskk.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://meskk.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 18:27:17 GMT
content-type: image/svg+xml
last-modified: Sun, 18 Jun 2023 07:45:14 GMT
vary: Accept-Encoding
etag: W/"648eb60a-1c6b"
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kgJJANsyTg7ta%2BU85jfi0rlz3lWnwvEiNtHJW6nMt%2F4xE9cdoC8VjnLhW4AiJvqybpxcszZiN6jncbTnr4QhootRvdHf%2B5hDI2kNLJuiLGiOkvxKIXLMOG%2BoAUI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8813be1d6b9d5693-OSL
alt-svc: h3=":443"; ma=86400

meskk.app/static/js/parallax.js

172.67.134.129

200 OK

17 kB

URL GET HTTP/3
meskk.app/static/js/parallax.js
IP
172.67.134.129:443
ASN
#13335 CLOUDFLARENET

Requested by
https://meskk.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectmeskk.app
Fingerprint47:62:53:0A:48:D2:6A:8F:5B:72:EC:0C:27:32:2D:43:59:D8:39:ED
ValidityMon, 06 May 2024 15:41:52 GMT - Sun, 04 Aug 2024 15:41:51 GMT

File type
JavaScript source, ASCII text, with very long lines (17272)
Size
17 kB (17313 bytes)
Hash
97a318c5dd971ceb013b04ee3a5a9c00
8fb86cc097c792f5cdd9c0e02c2be5bcc27ed510
1aa4cad8b8c65ae062f64172ceb16f7eb02242cee0ec506f6a18390b650b98e3

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/parallax.js HTTP/1.1
Host: meskk.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://meskk.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 18:27:17 GMT
content-type: application/javascript
last-modified: Sun, 18 Jun 2023 07:45:16 GMT
vary: Accept-Encoding
etag: W/"648eb60c-43a1"
expires: Fri, 10 May 2024 06:27:17 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rIuJ3SZ2DIanzcwTxaovdD950a%2F4WJiyWlI8p80M4YcKG2%2FcKtkyJzyycZjxVsoiN%2FWcfGw05J6V3%2BZxjoXxoQpOtuQGgx7GDuVw2cwJiwYqVi3kdqFwvHV4%2F1A%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8813be1d8be55693-OSL
alt-svc: h3=":443"; ma=86400

meskk.app/static/picture/goal.svg

172.67.134.129

200 OK

5.1 kB

URL GET HTTP/3
meskk.app/static/picture/goal.svg
IP
172.67.134.129:443
ASN
#13335 CLOUDFLARENET

Requested by
https://meskk.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectmeskk.app
Fingerprint47:62:53:0A:48:D2:6A:8F:5B:72:EC:0C:27:32:2D:43:59:D8:39:ED
ValidityMon, 06 May 2024 15:41:52 GMT - Sun, 04 Aug 2024 15:41:51 GMT

File type
SVG Scalable Vector Graphics image
Size
5.1 kB (5114 bytes)
Hash
96e03af4058d6d047b06e9fd06be4116
4289ed9cc8884f80aaee054cc42feb5090ff24be
df06ec425f675a999cba49b2d9223f86b158d1428bbe4bda49389a23a5167f79

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/picture/goal.svg HTTP/1.1
Host: meskk.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/xml, text/xml, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://meskk.app/
Cookie: __vtins__K0iC0h6X1qowQVQZ=%7B%22sid%22%3A%20%22dfd4f9f9-7fe2-5ccb-887c-b54742af3233%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201715281037686%2C%20%22ct%22%3A%201715279237686%7D; __51uvsct__K0iC0h6X1qowQVQZ=1; __51vcke__K0iC0h6X1qowQVQZ=48427041-426f-55a5-9f64-20443277e297; __51vuft__K0iC0h6X1qowQVQZ=1715279237694
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 18:27:18 GMT
content-type: image/svg+xml
last-modified: Sun, 18 Jun 2023 07:45:14 GMT
vary: Accept-Encoding
etag: W/"648eb60a-13fa"
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 1
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IjxJRYbszuJ6TEofzBgbM0xllHwiPwGJ8R9qxZK6yrSQNZcBnuXu7h4yD2If%2BvIzMjXvXvJgs5%2B3iQ4nT4X%2BFl0tazPhUjhucgZoRzhm7O7AKQQZmIGnNNDqKLE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8813be25ba455693-OSL
alt-svc: h3=":443"; ma=86400

meskk.app/static/css/font-awesome.min.css

172.67.134.129

200 OK

31 kB

URL GET HTTP/3
meskk.app/static/css/font-awesome.min.css
IP
172.67.134.129:443
ASN
#13335 CLOUDFLARENET

Requested by
https://meskk.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectmeskk.app
Fingerprint47:62:53:0A:48:D2:6A:8F:5B:72:EC:0C:27:32:2D:43:59:D8:39:ED
ValidityMon, 06 May 2024 15:41:52 GMT - Sun, 04 Aug 2024 15:41:51 GMT

File type
ASCII text, with very long lines (30757)
Size
31 kB (30920 bytes)
Hash
d3caa4475eeaa7c2a344f143e0e15910
5334dd0ca6f9415e32add1d3a1fd8c71c3f8efa2
fd1389a7fc0a48b4a501ecf36fddf7ab25df9964dc11b9c68859759ee5686763

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/css/font-awesome.min.css HTTP/1.1
Host: meskk.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://meskk.app/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 18:27:17 GMT
content-type: text/css
last-modified: Sun, 18 Jun 2023 07:45:16 GMT
vary: Accept-Encoding
etag: W/"648eb60c-78c8"
expires: Fri, 10 May 2024 06:27:17 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XmJ18CSWpT8kU4Dp4YfL2r5J0QB%2FQEMbKr%2BmQRZAvDIv1jie32GJD2bGBmBAwmpCR8XiNPSSSOos5enU1620PFWCuXb5evPyouSmKCNvGBkC7hwhEJ0FlkwdrPA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8813be1d4b595693-OSL
alt-svc: h3=":443"; ma=86400

meskk.app/static/picture/footer-bg.png

172.67.134.129

200 OK

9.3 kB

URL GET HTTP/3
meskk.app/static/picture/footer-bg.png
IP
172.67.134.129:443
ASN
#13335 CLOUDFLARENET

Requested by
https://meskk.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectmeskk.app
Fingerprint47:62:53:0A:48:D2:6A:8F:5B:72:EC:0C:27:32:2D:43:59:D8:39:ED
ValidityMon, 06 May 2024 15:41:52 GMT - Sun, 04 Aug 2024 15:41:51 GMT

File type
PNG image data, 1894 x 525, 8-bit/color RGBA, non-interlaced
Size
9.3 kB (9284 bytes)
Hash
d6fd5e4f2ad55d93d0558fc4f80e820d
f72d3b81f8bfdc7febc41634ed7f9d70aee55bf8
4568baa259cdeac5c1201984a61238c583e618a2fea2434ff10f3f238272f6c9

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/picture/footer-bg.png HTTP/1.1
Host: meskk.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://meskk.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 18:27:17 GMT
content-type: image/png
last-modified: Sun, 18 Jun 2023 07:45:14 GMT
vary: Accept-Encoding
etag: W/"648eb60a-2444"
expires: Sat, 08 Jun 2024 18:27:17 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ynd4SLSHSEw9Rm0RrK7UqeF%2BTcnbFF22i3Prpfin3R9Tq9cKiygUZLy%2F%2BXuig5Z%2BgRx5oAkdwOdUtTzHdVyhrnzf9A8SNncN9IN4HjT2lbuJnS%2FhFu0lsfKyeIc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8813be1d7bd15693-OSL
alt-svc: h3=":443"; ma=86400

meskk.app/static/picture/project-management.svg

172.67.134.129

200 OK

7.3 kB

URL GET HTTP/3
meskk.app/static/picture/project-management.svg
IP
172.67.134.129:443
ASN
#13335 CLOUDFLARENET

Requested by
https://meskk.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectmeskk.app
Fingerprint47:62:53:0A:48:D2:6A:8F:5B:72:EC:0C:27:32:2D:43:59:D8:39:ED
ValidityMon, 06 May 2024 15:41:52 GMT - Sun, 04 Aug 2024 15:41:51 GMT

File type
SVG Scalable Vector Graphics image
Size
7.3 kB (7275 bytes)
Hash
7a37f488510c8584282c4c8d623f20f6
58237f6b63b78b503bfd8a2dbe7507559b506379
32c61fb95a053430125a52bfd097f62e055e92e09c05757adb3ff1d5bc9ff9f4

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/picture/project-management.svg HTTP/1.1
Host: meskk.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/xml, text/xml, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://meskk.app/
Cookie: __vtins__K0iC0h6X1qowQVQZ=%7B%22sid%22%3A%20%22dfd4f9f9-7fe2-5ccb-887c-b54742af3233%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201715281037686%2C%20%22ct%22%3A%201715279237686%7D; __51uvsct__K0iC0h6X1qowQVQZ=1; __51vcke__K0iC0h6X1qowQVQZ=48427041-426f-55a5-9f64-20443277e297; __51vuft__K0iC0h6X1qowQVQZ=1715279237694
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 18:27:18 GMT
content-type: image/svg+xml
last-modified: Sun, 18 Jun 2023 07:45:14 GMT
vary: Accept-Encoding
etag: W/"648eb60a-1c6b"
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 1
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hKlw2oeSO%2FHDdpknks73uQI%2FHIT3FDYPwj6BEK9F7VFjfiMttorRyCgQZ1eY0YZu62sYz071L3N72GnAw%2B%2B8OkuO8EQUeL8srq0QP7pyDxvK%2B53qRR1RUixYvvs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8813be25ba4a5693-OSL
alt-svc: h3=":443"; ma=86400

meskk.app/static/js/tj.js

172.67.134.129

200 OK

1.0 kB

URL GET HTTP/3
meskk.app/static/js/tj.js
IP
172.67.134.129:443
ASN
#13335 CLOUDFLARENET

Requested by
https://meskk.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectmeskk.app
Fingerprint47:62:53:0A:48:D2:6A:8F:5B:72:EC:0C:27:32:2D:43:59:D8:39:ED
ValidityMon, 06 May 2024 15:41:52 GMT - Sun, 04 Aug 2024 15:41:51 GMT

File type
JavaScript source, ASCII text, with very long lines (1102), with no line terminators
Size
1.0 kB (1021 bytes)
Hash
87011f8063069d0f677031f2bed1c8b2
77bdba913a2d2a337307eeadb8fd2288d5a3a9ef
f6a0bf409d0d1638c15a24e8747d26c3d4b57069488133eb87fb49da66167709

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/tj.js HTTP/1.1
Host: meskk.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://meskk.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 18:27:17 GMT
content-type: application/javascript
last-modified: Sun, 18 Jun 2023 07:45:16 GMT
etag: W/"648eb60c-3fd"
expires: Fri, 10 May 2024 06:27:17 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FnWj1CI4OGlw46RLi2bEMO06Nj44wnhNXNTYd2i0yTTBw1A4NbsDVlZ%2FIOLTuo1LpFLIJ7sSb0%2Bu5mh0BBGqBq7Dz6BpL01o93tnydA5IMRYpi4tpfE6uxh44%2Bw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8813be1d5b775693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

meskk.app/static/js/jquery-3.3.1.min.js

172.67.134.129

200 OK

87 kB

URL GET HTTP/3
meskk.app/static/js/jquery-3.3.1.min.js
IP
172.67.134.129:443
ASN
#13335 CLOUDFLARENET

Requested by
https://meskk.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectmeskk.app
Fingerprint47:62:53:0A:48:D2:6A:8F:5B:72:EC:0C:27:32:2D:43:59:D8:39:ED
ValidityMon, 06 May 2024 15:41:52 GMT - Sun, 04 Aug 2024 15:41:51 GMT

File type
JavaScript source, ASCII text, with very long lines (65451)
Size
87 kB (86927 bytes)
Hash
a09e13ee94d51c524b7e2a728c7d4039
0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae
160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/jquery-3.3.1.min.js HTTP/1.1
Host: meskk.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://meskk.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 18:27:17 GMT
content-type: application/javascript
last-modified: Sun, 18 Jun 2023 07:45:16 GMT
vary: Accept-Encoding
etag: W/"648eb60c-1538f"
expires: Fri, 10 May 2024 06:27:17 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xr6s9%2F3D5PTkAQqltcQAvpd01e737Pw%2BH9pZ%2BS1D%2FCbgFGrVVcK%2F5QWmRV5vzg2ULiMCm8b7jcVnCvnkGbd82Pqx%2B%2FXpmiUtUo7j%2FxdnUeNlJYXIRhi7RuXs0ts%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8813be1d8bd95693-OSL
alt-svc: h3=":443"; ma=86400

collect-v6.51.la/v6/collect?dt=4

163.181.154.138

200 OK

0 B

URL POST HTTP/1.1
collect-v6.51.la/v6/collect?dt=4
IP
163.181.154.138:443
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

Requested by
https://meskk.app/
Certificate
IssuerGlobalSign nv-sa
Subject*.51.la
Fingerprint9E:F3:EB:9A:59:E9:6D:6E:48:13:64:78:3C:33:1D:AA:79:52:5B:79
ValidityThu, 20 Apr 2023 01:12:57 GMT - Tue, 21 May 2024 01:12:56 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /v6/collect?dt=4 HTTP/1.1
Host: collect-v6.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 393
Origin: https://meskk.app
DNT: 1
Connection: keep-alive
Referer: https://meskk.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Tengine
Content-Length: 0
Connection: keep-alive
Date: Thu, 09 May 2024 18:27:18 GMT
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Access-Control-Allow-Origin: https://meskk.app
Access-Control-Allow-Credentials: true
Ali-Swift-Global-Savetime: 1715279238
Via: cache17.l2de2[183,182,200-0,M], cache17.l2de2[184,0], ens-cache25.gb4[200,199,200-0,M], ens-cache25.gb4[202,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Thu, 09 May 2024 18:27:18 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: a3b59aad17152792385633171e

meskk.app/

172.67.134.129

200 OK

20 kB

URL User Request GET HTTP/2
meskk.app/
IP
172.67.134.129:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectmeskk.app
Fingerprint47:62:53:0A:48:D2:6A:8F:5B:72:EC:0C:27:32:2D:43:59:D8:39:ED
ValidityMon, 06 May 2024 15:41:52 GMT - Sun, 04 Aug 2024 15:41:51 GMT

File type

Size
20 kB (20014 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: meskk.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 09 May 2024 18:27:16 GMT
content-type: text/html
last-modified: Sat, 04 May 2024 10:09:53 GMT
vary: Accept-Encoding
strict-transport-security: max-age=31536000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YL0PF%2BOky9HsCH6hgYiHWWLAJhnBDC0Vm7T6cjfzE8wa%2BOHr%2Fe9z3K6sU2Jni3%2Bd%2BIbJz%2FQ%2BBUyDdy4xckCvSq%2FXsbLk6bhvEA%2Bo5MKlURiDgFmKeTKCa8KoTmA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8813be174ad5712a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

meskk.app/static/picture/shaps2.png

172.67.134.129

200 OK

1.2 kB

URL GET HTTP/3
meskk.app/static/picture/shaps2.png
IP
172.67.134.129:443
ASN
#13335 CLOUDFLARENET

Requested by
https://meskk.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectmeskk.app
Fingerprint47:62:53:0A:48:D2:6A:8F:5B:72:EC:0C:27:32:2D:43:59:D8:39:ED
ValidityMon, 06 May 2024 15:41:52 GMT - Sun, 04 Aug 2024 15:41:51 GMT

File type
PNG image data, 43 x 41, 8-bit colormap, non-interlaced
Size
1.2 kB (1189 bytes)
Hash
dab4a9abfc19a0e406db29f7f95b79d1
f298511f66dda46c744306d9ddd808149cf64c1c
4e8433221699cbf885cfc457f772de7e8aa9593065f89b14438c7a36c22d8d1f

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/picture/shaps2.png HTTP/1.1
Host: meskk.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://meskk.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 18:27:17 GMT
content-type: image/png
last-modified: Sun, 18 Jun 2023 07:45:14 GMT
vary: Accept-Encoding
etag: W/"648eb60a-4a5"
expires: Sat, 08 Jun 2024 18:27:17 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kiXYxzJDDSbPX%2BltXJ8kDqJFRYnkUaxxiLMDMFMQ4L4ST5N4zDnw7LI2wx%2Bgxjez9UE9%2B9aRCU04H5fqkdfcfqyMDz32FxeIKyHErp2XLzwISYijmzPa15OM9YI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8813be1d6b845693-OSL
alt-svc: h3=":443"; ma=86400

meskk.app/static/picture/1GK04593-0-lp.jpg

172.67.134.129

200 OK

9.8 kB

URL GET HTTP/3
meskk.app/static/picture/1GK04593-0-lp.jpg
IP
172.67.134.129:443
ASN
#13335 CLOUDFLARENET

Requested by
https://meskk.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectmeskk.app
Fingerprint47:62:53:0A:48:D2:6A:8F:5B:72:EC:0C:27:32:2D:43:59:D8:39:ED
ValidityMon, 06 May 2024 15:41:52 GMT - Sun, 04 Aug 2024 15:41:51 GMT

File type
PNG image data, 240 x 126, 8-bit/color RGBA, non-interlaced
Size
9.8 kB (9820 bytes)
Hash
8d421c4d454b610031047773053ad313
154219dc7b449d1979f3aa60760bcec3c650c8b0
25b3e5717b6df9522d5f8454ef096922250f29bf3587af2440da0a7f4e9901ab

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/picture/1GK04593-0-lp.jpg HTTP/1.1
Host: meskk.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://meskk.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 18:27:17 GMT
content-type: image/jpeg
last-modified: Sun, 18 Jun 2023 07:45:14 GMT
vary: Accept-Encoding
etag: W/"648eb60a-265c"
expires: Sat, 08 Jun 2024 18:27:17 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KX%2BJ9hvbOf%2FeZo5zvlz3khKGxTULhKrYW2Suz5myI5Xi64ov8VnjVyO5IzF2ELzDL4PP2GCSoN34bXt71wXlEf4LUZUtcPpQIX3LDLGLVckw%2Fto%2FP2YoVgYNXxs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8813be1d7bcd5693-OSL
alt-svc: h3=":443"; ma=86400

meskk.app/static/js/jquery.waypoints.min.js

172.67.134.129

200 OK

9.0 kB

URL GET HTTP/3
meskk.app/static/js/jquery.waypoints.min.js
IP
172.67.134.129:443
ASN
#13335 CLOUDFLARENET

Requested by
https://meskk.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectmeskk.app
Fingerprint47:62:53:0A:48:D2:6A:8F:5B:72:EC:0C:27:32:2D:43:59:D8:39:ED
ValidityMon, 06 May 2024 15:41:52 GMT - Sun, 04 Aug 2024 15:41:51 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (9137), with no line terminators
Size
9.0 kB (9028 bytes)
Hash
dbfe0e29e5089a3a46930f0df243c803
2dff052eb87ed427d52506019121836fa1c59600
e918ad22c5be15ed92178b1eef17639915fb2c9f68d12454904d2baf5b797c72

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/jquery.waypoints.min.js HTTP/1.1
Host: meskk.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://meskk.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 18:27:17 GMT
content-type: application/javascript
last-modified: Sun, 18 Jun 2023 07:45:16 GMT
vary: Accept-Encoding
etag: W/"648eb60c-2344"
expires: Fri, 10 May 2024 06:27:17 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WMPzhdMHUdChMs56647ZaE6ET33iY9QcX3XkedBKeniA%2BtFqP3Ui%2ByLJASjTJeR000Apm55mYtkTfLB0Fp3Oss8bsH8MbJ%2BdmpWBp2tG7HFTHzeb007p8wJYv38%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8813be1d8be05693-OSL
alt-svc: h3=":443"; ma=86400

collect-v6.51.la/v6/collect?dt=4

163.181.154.138

406 Not Acceptable

0 B

URL POST HTTP/1.1
collect-v6.51.la/v6/collect?dt=4
IP
163.181.154.138:443
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

Requested by
https://meskk.app/
Certificate
IssuerGlobalSign nv-sa
Subject*.51.la
Fingerprint9E:F3:EB:9A:59:E9:6D:6E:48:13:64:78:3C:33:1D:AA:79:52:5B:79
ValidityThu, 20 Apr 2023 01:12:57 GMT - Tue, 21 May 2024 01:12:56 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /v6/collect?dt=4 HTTP/1.1
Host: collect-v6.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 396
Origin: https://meskk.app
DNT: 1
Connection: keep-alive
Referer: https://meskk.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 406 Not Acceptable
Server: Tengine
Content-Length: 0
Connection: keep-alive
Date: Thu, 09 May 2024 18:27:18 GMT
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Access-Control-Allow-Origin: https://meskk.app
Access-Control-Allow-Credentials: true
Ali-Swift-Global-Savetime: 1715279238
Via: cache14.l2de2[183,182,406-1280,M], cache14.l2de2[183,0], ens-cache18.gb4[202,202,406-1280,M], ens-cache18.gb4[203,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-Error: orig response 4XX error
X-Swift-SaveTime: Thu, 09 May 2024 18:27:18 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: a3b59aa617152792385635641e

meskk.app/static/css/custom.css

172.67.134.129

200 OK

262 B

URL GET HTTP/3
meskk.app/static/css/custom.css
IP
172.67.134.129:443
ASN
#13335 CLOUDFLARENET

Requested by
https://meskk.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectmeskk.app
Fingerprint47:62:53:0A:48:D2:6A:8F:5B:72:EC:0C:27:32:2D:43:59:D8:39:ED
ValidityMon, 06 May 2024 15:41:52 GMT - Sun, 04 Aug 2024 15:41:51 GMT

File type
ASCII text, with no line terminators
Size
262 B (262 bytes)
Hash
5cc47838ab1a5925f62b866709e9a939
a61c23ee6678e4aef989f62c3e6fbe5d5fcae0fb
dd22a329ff26d22e848829bc0192cc041d90cef7d19d4c62f20224c30c785bd6

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/css/custom.css HTTP/1.1
Host: meskk.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://meskk.app/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 18:27:17 GMT
content-type: text/css
last-modified: Sun, 18 Jun 2023 07:45:16 GMT
etag: W/"648eb60c-106"
expires: Fri, 10 May 2024 06:27:17 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=biP2XjEY0b6Ri%2FFf%2BhghtNnjtxvdcbiuBUQzmjF6YAUqAvLj0MmjQaOSr3g6ZDQ8FIirH%2FFyf5Z7gQ7WvgdMVRG2CQx5DoCpp%2B41JBqJWGiXPSDYutjBNsN3zRE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8813be1d5b6d5693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

meskk.app/static/picture/logo.png

172.67.134.129

200 OK

5.9 kB

URL GET HTTP/3
meskk.app/static/picture/logo.png
IP
172.67.134.129:443
ASN
#13335 CLOUDFLARENET

Requested by
https://meskk.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectmeskk.app
Fingerprint47:62:53:0A:48:D2:6A:8F:5B:72:EC:0C:27:32:2D:43:59:D8:39:ED
ValidityMon, 06 May 2024 15:41:52 GMT - Sun, 04 Aug 2024 15:41:51 GMT

File type
PNG image data, 301 x 72, 8-bit/color RGBA, non-interlaced
Size
5.9 kB (5851 bytes)
Hash
b89f04eb56eb4f523d0e97e53fd3745b
7b30e943b5fd7b9285fc93fa96f8555cc4cdd954
84cc26dbf118bfbf3e0119e21014bad3a7a2ff20ee702f831bb154c918d84202

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/picture/logo.png HTTP/1.1
Host: meskk.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://meskk.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 18:27:17 GMT
content-type: image/png
last-modified: Sun, 18 Jun 2023 07:45:14 GMT
vary: Accept-Encoding
etag: W/"648eb60a-16db"
expires: Sat, 08 Jun 2024 18:27:17 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=60Gd0wvuhcDQbs9f9un2PykLZ7uiXN35n1qsw2xTS8xTfvRwShAx%2FF87cotvUSclnOYtUnkn%2F9BLScv9YFUz%2BaWibYD%2FWs9pSOWhJDw8766coZx3JH%2FV%2FRMXkXQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8813be1d6b7d5693-OSL
alt-svc: h3=":443"; ma=86400

meskk.app/static/picture/teamwork.svg

172.67.134.129

200 OK

5.3 kB

URL GET HTTP/3
meskk.app/static/picture/teamwork.svg
IP
172.67.134.129:443
ASN
#13335 CLOUDFLARENET

Requested by
https://meskk.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectmeskk.app
Fingerprint47:62:53:0A:48:D2:6A:8F:5B:72:EC:0C:27:32:2D:43:59:D8:39:ED
ValidityMon, 06 May 2024 15:41:52 GMT - Sun, 04 Aug 2024 15:41:51 GMT

File type
SVG Scalable Vector Graphics image
Size
5.3 kB (5308 bytes)
Hash
57f20c5dd5e27d4ae3c3ccfd74496e3e
02892f95aeaaf2b8bbf26a1c9391e93795cf9b51
7e2327537acab5fa25a4f84006b1606d9cdf3acb58e1cb2b59933a2bfd8452f5

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/picture/teamwork.svg HTTP/1.1
Host: meskk.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://meskk.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 18:27:17 GMT
content-type: image/svg+xml
last-modified: Sun, 18 Jun 2023 07:45:14 GMT
vary: Accept-Encoding
etag: W/"648eb60a-14bc"
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5NNyBT0fW%2FfP%2BIeOInSDqyHqAY1aKl8TKntjFAIcdWi3ZW%2FKXVVwSb8mw%2Bkg6CqqqgjBIi6CPGmV8oYSTTmS5GRrpkJ2ixCCH3tnqGDWp1KdAUrHFnESTKf2cdY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8813be1d6baf5693-OSL
alt-svc: h3=":443"; ma=86400

meskk.app/static/picture/teamwork.svg

172.67.134.129

200 OK

5.3 kB

URL GET HTTP/3
meskk.app/static/picture/teamwork.svg
IP
172.67.134.129:443
ASN
#13335 CLOUDFLARENET

Requested by
https://meskk.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectmeskk.app
Fingerprint47:62:53:0A:48:D2:6A:8F:5B:72:EC:0C:27:32:2D:43:59:D8:39:ED
ValidityMon, 06 May 2024 15:41:52 GMT - Sun, 04 Aug 2024 15:41:51 GMT

File type
SVG Scalable Vector Graphics image
Size
5.3 kB (5308 bytes)
Hash
57f20c5dd5e27d4ae3c3ccfd74496e3e
02892f95aeaaf2b8bbf26a1c9391e93795cf9b51
7e2327537acab5fa25a4f84006b1606d9cdf3acb58e1cb2b59933a2bfd8452f5

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/picture/teamwork.svg HTTP/1.1
Host: meskk.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/xml, text/xml, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://meskk.app/
Cookie: __vtins__K0iC0h6X1qowQVQZ=%7B%22sid%22%3A%20%22dfd4f9f9-7fe2-5ccb-887c-b54742af3233%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201715281037686%2C%20%22ct%22%3A%201715279237686%7D; __51uvsct__K0iC0h6X1qowQVQZ=1; __51vcke__K0iC0h6X1qowQVQZ=48427041-426f-55a5-9f64-20443277e297; __51vuft__K0iC0h6X1qowQVQZ=1715279237694
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 18:27:18 GMT
content-type: image/svg+xml
last-modified: Sun, 18 Jun 2023 07:45:14 GMT
vary: Accept-Encoding
etag: W/"648eb60a-14bc"
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 1
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WjZjeXa4O%2F1OuqCO26CyqpJTshCqkFtVUzy%2BtvhWiKfmd4x2DW9THvoKseQ6R8II98AwGOl3fMNtQOd6yqyKQ3bKQ84xcKh%2BncyDBCGVaILV0yudz%2BvMpK6%2F2b4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8813be25ca6c5693-OSL
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (21)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash