Report - tapeadvertisement.com/e/ayPZ7pjmp8TxLrQ

Report Overview

Submitted URL
tapeadvertisement.com/e/ayPZ7pjmp8TxLrQ
IP
104.21.34.152
ASN
#13335 CLOUDFLARENET
Submitted
2024-05-08 03:41:32
Access
public
Website Title
Streamtape.com
Final URL
tapeadvertisement.com/e/ayPZ7pjmp8TxLrQ
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
16

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
thumb.tapecontent.net	98256	2020-01-18	2020-04-26	2024-04-30	920 B	230 kB	104.21.235.148
52dvzo62i.com	unknown	unknown	No data	No data	417 B	61 kB	212.117.190.201
yy.puffexies.com	unknown	2024-04-23	2024-04-30	2024-05-03	414 B	1.5 kB	23.109.170.189
www.gstatic.com	unknown	2008-02-11	2016-07-26	2024-05-07	492 B	207 kB	142.250.74.99
www.google.com	7	1997-09-15	2015-05-10	2024-03-23	461 B	1.4 kB	142.250.74.132
tapeadvertisement.com	unknown	2024-03-22	2024-03-22	2024-03-23	3.3 kB	378 kB	172.67.162.22

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-05-08	medium	tapeadvertisement.com	Sinkholed
2024-05-08	medium	puffexies.com	Sinkholed
2024-05-08	medium	tapeadvertisement.com	Sinkholed
2024-05-08	medium	tapeadvertisement.com	Sinkholed
2024-05-08	medium	tapeadvertisement.com	Sinkholed
2024-05-08	medium	tapeadvertisement.com	Sinkholed
2024-05-08	medium	tapeadvertisement.com	Sinkholed
2024-05-08	medium	tapeadvertisement.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (16)

	URL	Size	First Seen	Last Seen
	tapeadvertisement.com/js/player.ec3b7e.js	148 kB	2023-03-07	2024-05-19
Pretty URL tapeadvertisement.com/js/player.ec3b7e.js IP 172.67.162.22 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:24:29 Last Seen2024-05-19 20:01:35 Times Seen493 Hash 1781a0087c11152a2361ca6c84b13fab 87360f858b201c3e28f4af24b2fc7c2d8a8d0232 00c57c8b0121e3c2154bc0c181a5c01ad10550648cc4835a62dc887d5427c656 Loading...

	tapeadvertisement.com/e/ayPZ7pjmp8TxLrQ	33 kB	2024-05-08	2024-05-08
Pretty URL tapeadvertisement.com/e/ayPZ7pjmp8TxLrQ IP 172.67.162.22 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-08 05:41:38 Last Seen2024-05-08 05:41:38 Times Seen1 Hash 3b0ee0ad870f41b8e62651bd68cb8f0e 6e960d5856690397ad9d19b10cf664bc0a0a3009 1fbb891ef7c0522f97efc2bab7180122731c8fdf4290870e46a4e38f63b92ae2 Loading...

	www.google.com/recaptcha/api.js?render=6LfDWNsUAAAAAGaxIiiQpfv-5_b8zWR4mgv7RKvs	884 B	2024-04-24	2024-05-08
Pretty URL www.google.com/recaptcha/api.js?render=6LfDWNsUAAAAAGaxIiiQpfv-5_b8zWR4mgv7RKvs IP 142.250.74.132 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 19:07:51 Last Seen2024-05-08 15:47:15 Times Seen159 Hash 996b590be570d3613e79a37adb3485e1 a09affc1b206f92d0db4de366c11bc6fc635b928 65ae5fcacb3335ad318606507d85c2f3b1ddae8e968002ae429cd51a32ae3c7f Loading...

	unknown	37 B	2023-04-11	2024-05-19
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:31:25 Last Seen2024-05-19 20:57:59 Times Seen238354 Hash 29d0c84b9d1d8da446a6062c6a840ad9 6d6b3a6065667c7c50d92f3889c85ed65a9ad784 3c3cbdb71d0d2c22f504f4d63d8a6ffe8d250cde7e58300619be35b6bbab26a1 Loading...

	tapeadvertisement.com/js/jquery.min.js	88 kB	2023-03-07	2024-05-19
Pretty URL tapeadvertisement.com/js/jquery.min.js IP 172.67.162.22 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:34 Last Seen2024-05-19 20:33:58 Times Seen99105 Hash 220afd743d9e9643852e31a135a9f3ae 88523924351bac0b5d560fe0c5781e2556e7693d 0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a Loading...

	tapeadvertisement.com/e/ayPZ7pjmp8TxLrQ	367 B	2024-05-08	2024-05-08
Pretty URL tapeadvertisement.com/e/ayPZ7pjmp8TxLrQ IP 172.67.162.22 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-08 05:41:38 Last Seen2024-05-08 05:41:38 Times Seen1 Hash ae4ad7f068c4a6934aa0a42593753501 339dfc498d5ea7ae8d63a8510b42901a2e04e8cc 33acc634ed71f5d225ddaff30a984519383ffcf1eba82d358bd7ae5ad0ff69a0 Loading...

	tapeadvertisement.com/e/ayPZ7pjmp8TxLrQ	207 B	2023-03-07	2024-05-19
Pretty URL tapeadvertisement.com/e/ayPZ7pjmp8TxLrQ IP 172.67.162.22 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:24:29 Last Seen2024-05-19 20:01:35 Times Seen255 Hash 326bf869435fdfd3d3e2b6ae92504faa d8f389560a57eebe30e47336c04d60bb0f78642c 02dfbc5561a44e0bd21e3eaa85c620c2d76658781f136705c7c2e91a715e87f9 Loading...

	unknown	79 B	2023-04-11	2024-05-19
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:38:58 Last Seen2024-05-19 20:31:43 Times Seen126656 Hash aa049e2749b8531cb8f233c2f64fc2b2 b611a5a62c1813ae5b4763378b3a4a565556530a e52e51d5897d7a179089ddcf8f5de7aeb3ef4f27b054b63e937cf308b685c9e2 Loading...

	tapeadvertisement.com/adgpt.js	20 B	2023-03-07	2024-05-19
Pretty URL tapeadvertisement.com/adgpt.js IP 172.67.162.22 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:24:29 Last Seen2024-05-19 20:01:35 Times Seen691 Hash 69a305bcdc8e061bbd43294a477a3678 506582a1d912d546f5942d95ffae95ec7f4c37ce 8964d85afd6d5d84b97872464646809c952ab900cdf5c5d7c3b7b4bdb74202fa Loading...

	tapeadvertisement.com/e/ayPZ7pjmp8TxLrQ	176 B	2023-03-07	2024-05-19
Pretty URL tapeadvertisement.com/e/ayPZ7pjmp8TxLrQ IP 172.67.162.22 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:24:29 Last Seen2024-05-19 20:01:35 Times Seen257 Hash 41cc58e5da3a06326891b8646afc7548 a4a725eadb523ca5dee8b3a9a411357a8ed33976 ecbb8b7b69fb79c8909082c10e5d79f11b280d9a089cfde1b89f08f8364d25af Loading...

	unknown	34 B	2023-04-11	2024-05-19
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:16:40 Last Seen2024-05-19 20:34:57 Times Seen77703 Hash 572cb94037fffc2a0a53b465972e15f1 0d679b041a7c1ca45cc99e2d229fc2b86762838d 6487e4bdd0f51bbfd9105810a41755847fdae2c274e2fc325cd22356d7707e35 Loading...

	tapeadvertisement.com/e/ayPZ7pjmp8TxLrQ	773 B	2024-05-08	2024-05-08
Pretty URL tapeadvertisement.com/e/ayPZ7pjmp8TxLrQ IP 172.67.162.22 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-08 05:41:38 Last Seen2024-05-08 05:41:38 Times Seen1 Hash 5bae77ddc24dda0b6f12707992a61c8a 9d5d719a9801383b57f150aae7aa1df4f06edef2 289e516e9fc6cd71aa3d28f6f1dfaee8f06c6bb05cf705f33cc3f6699ce336f1 Loading...

	tapeadvertisement.com/e/ayPZ7pjmp8TxLrQ	54 B	2023-03-07	2024-05-19
Pretty URL tapeadvertisement.com/e/ayPZ7pjmp8TxLrQ IP 172.67.162.22 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:24:29 Last Seen2024-05-19 20:01:35 Times Seen254 Hash 2823d7b7a22610d80a99e65878e70ae8 545e80f2fabeb1eb49cebb7088635dcc4a867d44 36c7a0369978008d36a90e0e62177759df257606497bcef68e3a0f5b30c65c97 Loading...

	tapeadvertisement.com/e/ayPZ7pjmp8TxLrQ	370 B	2023-03-07	2024-05-19
Pretty URL tapeadvertisement.com/e/ayPZ7pjmp8TxLrQ IP 172.67.162.22 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:24:29 Last Seen2024-05-19 20:01:35 Times Seen254 Hash 0b3f8544e15a29c2a15dc1af98210a68 ac09e6ba1b671420fc8dcf45dad1d49353f7d5e4 8b6b4924d58cb7afa649222900dcb4b470e9a45c4ce55265d3fa980cb5c8e34c Loading...

	tapeadvertisement.com/e/ayPZ7pjmp8TxLrQ	4.9 kB	2023-10-21	2024-05-19
Pretty URL tapeadvertisement.com/e/ayPZ7pjmp8TxLrQ IP 172.67.162.22 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-10-21 08:54:01 Last Seen2024-05-19 20:01:35 Times Seen263 Hash 991e31d1267d98ff019b705a3d148ae4 ce26bf1efabcfe070f058fbef107ebadbd1d8d40 aeb0b57af128c03be119c7203f7a81fb63705ded005926bf8ee2485f75f31aac Loading...

		Size	First Seen	Last Seen
	#1 Write - e1f1c9f54666acb1650465e150d3df1b	44 B	2023-03-07	2024-05-19
Pretty Observations First Seen2023-03-07 01:24:29 Last Seen2024-05-19 20:01:35 Times Seen255 Hash e1f1c9f54666acb1650465e150d3df1b 6b7251286fa476ae4e0985f8067cc76006a7cf89 490fbee07295a40ddaf64abd25076eb54cd926777e2b307c8a7c537d62f95ec9 Loading...

HTTP Transactions (13)

URL IP Response Size

tapeadvertisement.com/adgpt.js

172.67.162.22

200 OK

20 B

URL GET HTTP/3
tapeadvertisement.com/adgpt.js
IP
172.67.162.22:443
ASN
#13335 CLOUDFLARENET

Requested by
https://tapeadvertisement.com/e/ayPZ7pjmp8TxLrQ
Certificate
IssuerLet's Encrypt
Subjecttapeadvertisement.com
Fingerprint2E:C1:32:F0:D2:D2:D4:ED:F4:45:E6:15:FB:5F:E2:19:74:BB:3E:08
ValidityFri, 22 Mar 2024 20:46:24 GMT - Thu, 20 Jun 2024 20:46:23 GMT

File type
ASCII text, with no line terminators
Size
20 B (20 bytes)
Hash
69a305bcdc8e061bbd43294a477a3678
506582a1d912d546f5942d95ffae95ec7f4c37ce
8964d85afd6d5d84b97872464646809c952ab900cdf5c5d7c3b7b4bdb74202fa

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /adgpt.js HTTP/1.1
Host: tapeadvertisement.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tapeadvertisement.com/e/ayPZ7pjmp8TxLrQ
Cookie: _b=kube18
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 03:41:05 GMT
content-type: application/javascript; charset=utf-8
content-length: 20
last-modified: Tue, 28 Mar 2023 18:04:25 GMT
etag: "64232c29-14"
cache-control: max-age=432000
cf-cache-status: HIT
age: 668
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7OhC8EDvU2VvgR7rdmyPoo37szJWSo5m95ycnn7nARBnv85lW3X3F5YyvHCvUWTvp4UXrPI3TeKZON5PnY03gDSrZR59fGqHfEE%2FdsFcE8kAqRl7wENyvHu90%2BBLHKequ4I8yxxeWBE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88066e9df8d6b4f9-OSL
alt-svc: h3=":443"; ma=86400

thumb.tapecontent.net/thumb/ayPZ7pjmp8TxLrQ/zPQ1gjggyLSYwXX.jpg

104.21.235.148

200 OK

222 kB

URL GET HTTP/2
thumb.tapecontent.net/thumb/ayPZ7pjmp8TxLrQ/zPQ1gjggyLSYwXX.jpg
IP
104.21.235.148:443
ASN
#13335 CLOUDFLARENET

Requested by
https://tapeadvertisement.com/e/ayPZ7pjmp8TxLrQ
Certificate
IssuerGoogle Trust Services LLC
Subjecttapecontent.net
Fingerprint0D:92:96:2E:BC:7A:10:2B:6D:A4:39:25:87:DD:4B:F9:C6:47:0A:5E
ValidityMon, 15 Apr 2024 06:57:29 GMT - Sun, 14 Jul 2024 06:57:28 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 1275x715, components 3
Size
222 kB (221688 bytes)
Hash
271822e66ea4b6853bb4870c9e2fe3b2
434761de462a86f18701812f4f79038224dc2556
a5da757b1b6c1c4c0cef9a6f2cebc597bb2e46f19fda89e5cfccda85d13300ee

HTTP Headers

GET /thumb/ayPZ7pjmp8TxLrQ/zPQ1gjggyLSYwXX.jpg HTTP/1.1
Host: thumb.tapecontent.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tapeadvertisement.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 08 May 2024 03:41:05 GMT
content-type: image/jpeg
content-length: 221688
last-modified: Mon, 29 Jan 2024 03:19:28 GMT
etag: 91c504272121
access-control-allow-origin: *
allow: OPTIONS, GET, HEAD, POST
access-control-allow-headers: Upgrade-Insecure-Requests,Range,Content-Type,If-Modified-Since
access-control-expose-headers: ETag,Expires,Location,Content-Length,Accept-Ranges,Content-Encoding,Content-Range
content-disposition: inline; filename="zPQ1gjggyLSYwXX.jpg"
cache-control: public, max-age=259200
expires: Wed, 08 May 2024 07:03:53 GMT
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=68YWtGglsr%2F8dhxh9ICPTpOrqUzZcrWbzH9LibHuDcEITkwEETMGIAGSMEJxJq7nkdPH89yt0l8JdwfjTQeqThiIA0AKO4QlDcYZhzz9zxFC97BnbK82vkWnfiQ6U0NXk5LNy%2FbztMM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88066e9e6e9b948c-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

52dvzo62i.com/i/npage/2024703/code.js

212.117.190.201

200 OK

60 kB

URL GET HTTP/2
52dvzo62i.com/i/npage/2024703/code.js
IP
212.117.190.201:443
ASN
#7979 SERVERS-COM

Requested by
https://tapeadvertisement.com/e/ayPZ7pjmp8TxLrQ
Certificate
IssuerBuypass AS-983163327
Subject
Fingerprint00:B4:37:4A:DB:CA:B1:9C:2D:E0:2A:1A:F0:DD:2E:94:7B:2A:E5:3D
ValidityFri, 03 May 2024 21:32:06 GMT - Tue, 29 Oct 2024 22:59:00 GMT

File type
gzip compressed data, max speed, from Unix
Size
60 kB (59887 bytes)
Hash
93c4dd60163bacee93526007e8a1800c
a8a5f02ec56dd165c19599a69b9690466359c51a
f3a0bcc4a18f2377b03d98d9bef241cbf8720b24ecb13b0ff331d462d0ecbf90

HTTP Headers

GET /i/npage/2024703/code.js HTTP/1.1
Host: 52dvzo62i.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tapeadvertisement.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 03:41:05 GMT
content-type: application/javascript
last-modified: Thu, 25 Apr 2024 17:06:20 GMT
vary: Accept-Encoding
etag: W/"662a8d8c-269a3"
x-js-ab2: current
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
content-encoding: gzip
X-Firefox-Spdy: h2

yy.puffexies.com/gPOkVLDriGo/58191

23.109.170.189

200 OK

26 B

URL GET HTTP/1.1
yy.puffexies.com/gPOkVLDriGo/58191
IP
23.109.170.189:443
ASN
#7979 SERVERS-COM

Requested by
https://tapeadvertisement.com/e/ayPZ7pjmp8TxLrQ
Certificate
IssuerLet's Encrypt
Subjectyy.puffexies.com
FingerprintB6:80:F5:60:69:79:02:37:A5:DF:8B:13:16:0A:AD:92:C1:9F:42:3A
ValidityTue, 23 Apr 2024 06:37:04 GMT - Mon, 22 Jul 2024 06:37:03 GMT

File type
ASCII text, with no line terminators
Size
26 B (26 bytes)
Hash
4fc71bf68a1d477bd1523733e34d1e90
15119105cffbe108b6cf290146ab02c9aa8517ba
74c1971a5c7f3f1cfb81b7a0a8717cee5a45841844104566e00bbfca271943ce

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /gPOkVLDriGo/58191 HTTP/1.1
Host: yy.puffexies.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tapeadvertisement.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 May 2024 03:41:06 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Accept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version,sec-ch-ua-full-version-list
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://tapeadvertisement.com
Access-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for, x-requested-with, cache-control, pragma, expires
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET, POST, OPTIONS
X-Frame-Options: SAMEORIGIN
Set-Cookie: GL_UI4=eJw9jUtug0AQRPljJ4akJQ7gIxgUjL3MJivfAQ0zDZ4Ypq1mjJ3bZxIp2dUrPVV5nhcUL%2BAvyRrCm6hhe1R9s5dYojyUVVW%2BHSrZ151o%2BlJVTVnvYK3n1opuRBvBap4E29YuEWwGNMhatpIUZvDqrL%2FmYuhuIog7FkZlEE%2FOGDNIO6b7jFyEEBkxIaQfmrGnhzPEJzEEx72L2rjo7yCguQjzJ4hP2twe%2BSbx8jzx4Pk6CtsTT61WDuOBhULw32ElhcWB%2BAtShfPF0hWARtX%2B%2B7%2Bf8fizBonCRUuHZM%2FI38wATrY%3D; expires=Thu, 09-May-2024 03:41:06 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJwVyM0KgkAUhuE5hxiIJPjIC%2FAKTMsWbrNl6MIrMIsYGObIzNjP3WeLd%2FG8SilOE7CZkNRlXhd5dcjLUwV6gtsOPDroVvx7%2BII8uDiCvcOmC1ayRmYXlz9i9TfIYHu25pP1YudoxAXw0roZbvaxv%2FRX0KQJHEUzONxTBXrp3Q9e7R3S; expires=Thu, 09-May-2024 03:41:06 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff

tapeadvertisement.com/favicon.ico

172.67.162.22

200 OK

3.8 kB

URL GET HTTP/3
tapeadvertisement.com/favicon.ico
IP
172.67.162.22:443
ASN
#13335 CLOUDFLARENET

Requested by
https://tapeadvertisement.com/e/ayPZ7pjmp8TxLrQ
Certificate
IssuerLet's Encrypt
Subjecttapeadvertisement.com
Fingerprint2E:C1:32:F0:D2:D2:D4:ED:F4:45:E6:15:FB:5F:E2:19:74:BB:3E:08
ValidityFri, 22 Mar 2024 20:46:24 GMT - Thu, 20 Jun 2024 20:46:23 GMT

File type
MS Windows icon resource - 1 icon, 100x100, 32 bits/pixel
Size
3.8 kB (3823 bytes)
Hash
1f1617bb9d33485e49af9fae638831f9
e245af39fd84866e07b7e177fa0ff6d25221252f
3fe1701b124953220bd71e61910006cb7c3ae36f6c8975075c842101d97cf513

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: tapeadvertisement.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tapeadvertisement.com/e/ayPZ7pjmp8TxLrQ
Cookie: _b=kube18
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 03:41:06 GMT
content-type: image/x-icon
last-modified: Sun, 13 Dec 2020 16:27:48 GMT
etag: W/"5fd64104-a2be"
cache-control: max-age=432000
cf-cache-status: HIT
age: 390
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XLCgEIZzSxTfYjTMf%2F6dWUqIVIHXWJat3D5So%2B5pDs7d1wHoiOp7GdDkI8%2FdGiNGi1QhzPrvADJ6WR%2BeMx224DPturJSNfEIDJ6AiFSpVMabBZsnoCpbcsKiywNABGVFtmr3PdW8kBA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88066ea4ac09b4f9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js

142.250.74.99

200 OK

206 kB

URL GET HTTP/2
www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js
IP
142.250.74.99:443
ASN
#15169 GOOGLE

Requested by
https://tapeadvertisement.com/e/ayPZ7pjmp8TxLrQ
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
JavaScript source, ASCII text, with very long lines (631)
Size
206 kB (205803 bytes)
Hash
e2e79d6b927169d9e0e57e3baecc0993
1299473950b2999ba0b7f39bd5e4a60eafd1819d
231336ed913a5ebd4445b85486e053caf2b81cab91318241375f3f7a245b6c6b

HTTP Headers

GET /recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://tapeadvertisement.com
DNT: 1
Connection: keep-alive
Referer: https://tapeadvertisement.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 205803
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 07 May 2024 13:33:10 GMT
expires: Wed, 07 May 2025 13:33:10 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 Apr 2024 21:03:35 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 50876
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

tapeadvertisement.com/js/jquery.min.js

172.67.162.22

200 OK

88 kB

URL GET HTTP/3
tapeadvertisement.com/js/jquery.min.js
IP
172.67.162.22:443
ASN
#13335 CLOUDFLARENET

Requested by
https://tapeadvertisement.com/e/ayPZ7pjmp8TxLrQ
Certificate
IssuerLet's Encrypt
Subjecttapeadvertisement.com
Fingerprint2E:C1:32:F0:D2:D2:D4:ED:F4:45:E6:15:FB:5F:E2:19:74:BB:3E:08
ValidityFri, 22 Mar 2024 20:46:24 GMT - Thu, 20 Jun 2024 20:46:23 GMT

File type
JavaScript source, ASCII text, with very long lines (65451)
Size
88 kB (88145 bytes)
Hash
220afd743d9e9643852e31a135a9f3ae
88523924351bac0b5d560fe0c5781e2556e7693d
0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/jquery.min.js HTTP/1.1
Host: tapeadvertisement.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tapeadvertisement.com/e/ayPZ7pjmp8TxLrQ
Cookie: _b=kube18
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 03:41:05 GMT
content-type: application/javascript; charset=utf-8
last-modified: Sun, 13 Dec 2020 16:27:48 GMT
etag: W/"5fd64104-15851"
cache-control: max-age=432000
cf-cache-status: HIT
age: 1397
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uZJOETiuZKdyD6dsd64KIquS%2F59ljlfAyy%2BymGwEfTU%2FrwwOtNFWiSw9SbhDYh3nMS6g4sbCLowxveMFoOcu8GfHC98ucF4cMS00yxemGXh2NThJl0HKVOjeQrDcyyFbW7Ho%2Fc9r%2Bg8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88066e9df8d7b4f9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

tapeadvertisement.com/e/ayPZ7pjmp8TxLrQ

172.67.162.22

200 OK

96 kB

URL User Request GET HTTP/2
tapeadvertisement.com/e/ayPZ7pjmp8TxLrQ
IP
172.67.162.22:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerLet's Encrypt
Subjecttapeadvertisement.com
Fingerprint2E:C1:32:F0:D2:D2:D4:ED:F4:45:E6:15:FB:5F:E2:19:74:BB:3E:08
ValidityFri, 22 Mar 2024 20:46:24 GMT - Thu, 20 Jun 2024 20:46:23 GMT

File type
HTML document, ASCII text, with very long lines (31737)
Size
96 kB (95501 bytes)
Hash
e24244d852afbeeedbc9e0cad4f48fc9
6943a68aaf166f828995a574a51a0a0de4e21571
e8fca30ae345be6880792d56599c661996b286067832d76087bdd08f0c8272ef

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /e/ayPZ7pjmp8TxLrQ HTTP/1.1
Host: tapeadvertisement.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 08 May 2024 03:41:05 GMT
content-type: text/html; charset=UTF-8
cache-control: private
set-cookie: _b=kube18; path=/
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Br3ER13rf6JbtI8v14rdMnocKGYqE1FUK%2BaNAjCoOkguTOnsn5Qs%2FeDClVbbOmEkpTQurmtWp9ysKfUyEyHFS0mwHfAlsi1dxwuj45B2HJTtM0qsnY2s%2FKt68Fz6y8G1wyoom%2BISo8c%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88066e9aa8050b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

tapeadvertisement.com/player.svg

172.67.162.22

200 OK

5.5 kB

URL GET HTTP/3
tapeadvertisement.com/player.svg
IP
172.67.162.22:443
ASN
#13335 CLOUDFLARENET

Requested by
https://tapeadvertisement.com/e/ayPZ7pjmp8TxLrQ
Certificate
IssuerLet's Encrypt
Subjecttapeadvertisement.com
Fingerprint2E:C1:32:F0:D2:D2:D4:ED:F4:45:E6:15:FB:5F:E2:19:74:BB:3E:08
ValidityFri, 22 Mar 2024 20:46:24 GMT - Thu, 20 Jun 2024 20:46:23 GMT

File type
SVG Scalable Vector Graphics image
Size
5.5 kB (5548 bytes)
Hash
84ae75c5bb8eb53fa80dbf474f2b3c9e
e72ffb84dd4ff1ea1e29ac961af43dc1878ed382
f8f633975f552666d54d543bea7874e3934536447064d67ba8f7bf714c74152d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /player.svg HTTP/1.1
Host: tapeadvertisement.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tapeadvertisement.com/e/ayPZ7pjmp8TxLrQ
Cookie: _b=kube18
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 03:41:05 GMT
content-type: image/svg+xml
last-modified: Sun, 13 Dec 2020 16:27:48 GMT
etag: W/"5fd64104-15ac"
cache-control: max-age=432000
cf-cache-status: HIT
age: 1394
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0msi%2FjRv7fJIDu3mQO8ZUZFyIbenS2Yo3JkJ3D3MfFrY4fNL4%2FTfwo4fe%2FS3IoeADvaSJx2W4jKDjkpdBGQWgNGKNGVbN2XFiTN2aFE1fF7dRBIkBznzSGDWl5hzsORjs4Bly7dPVFg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88066e9fd9bbb4f9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.google.com/recaptcha/api.js?render=6LfDWNsUAAAAAGaxIiiQpfv-5_b8zWR4mgv7RKvs

142.250.74.132

200 OK

884 B

URL GET HTTP/2
www.google.com/recaptcha/api.js?render=6LfDWNsUAAAAAGaxIiiQpfv-5_b8zWR4mgv7RKvs
IP
142.250.74.132:443
ASN
#15169 GOOGLE

Requested by
https://tapeadvertisement.com/e/ayPZ7pjmp8TxLrQ
Certificate
IssuerGoogle Trust Services LLC
Subjectwww.google.com
FingerprintC6:A2:DC:31:5A:53:FA:DD:55:71:A3:F4:DD:43:3D:16:71:B8:B3:99
ValidityTue, 16 Apr 2024 04:20:32 GMT - Tue, 09 Jul 2024 04:20:31 GMT

File type
JavaScript source, ASCII text, with very long lines (884), with no line terminators
Size
884 B (884 bytes)
Hash
996b590be570d3613e79a37adb3485e1
a09affc1b206f92d0db4de366c11bc6fc635b928
65ae5fcacb3335ad318606507d85c2f3b1ddae8e968002ae429cd51a32ae3c7f

HTTP Headers

GET /recaptcha/api.js?render=6LfDWNsUAAAAAGaxIiiQpfv-5_b8zWR4mgv7RKvs HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tapeadvertisement.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
expires: Wed, 08 May 2024 03:41:05 GMT
date: Wed, 08 May 2024 03:41:05 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

thumb.tapecontent.net/channellogo/y7oKoDD2VAI16oe.png

104.21.235.148

200 OK

6.3 kB

URL GET HTTP/3
thumb.tapecontent.net/channellogo/y7oKoDD2VAI16oe.png
IP
104.21.235.148:443
ASN
#13335 CLOUDFLARENET

Requested by
https://tapeadvertisement.com/e/ayPZ7pjmp8TxLrQ
Certificate
IssuerGoogle Trust Services LLC
Subjecttapecontent.net
Fingerprint0D:92:96:2E:BC:7A:10:2B:6D:A4:39:25:87:DD:4B:F9:C6:47:0A:5E
ValidityMon, 15 Apr 2024 06:57:29 GMT - Sun, 14 Jul 2024 06:57:28 GMT

File type
PNG image data, 167 x 30, 8-bit/color RGBA, non-interlaced
Size
6.3 kB (6284 bytes)
Hash
083e5851e48a18f1f6c0f1d9351a9e0c
e02beb3d747587c94f192198b66fc252b0c431aa
ebfce84986b8db3346fd93e146a8e8387f04baeab8baa26f0acf8829ef5e2d52

HTTP Headers

GET /channellogo/y7oKoDD2VAI16oe.png HTTP/1.1
Host: thumb.tapecontent.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tapeadvertisement.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 03:41:05 GMT
content-type: image/png
content-length: 6284
last-modified: Sat, 23 Jul 2022 09:40:53 GMT
etag: ee8480113018
access-control-allow-origin: *
allow: OPTIONS, GET, HEAD, POST
access-control-allow-headers: Upgrade-Insecure-Requests,Range,Content-Type,If-Modified-Since
access-control-expose-headers: ETag,Expires,Location,Content-Length,Accept-Ranges,Content-Encoding,Content-Range
content-disposition: inline; filename="y7oKoDD2VAI16oe.png"
cache-control: public, max-age=259200
expires: Wed, 08 May 2024 05:29:36 GMT
cf-cache-status: HIT
age: 60666
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IMrCRL0WMH%2Bw%2B7VQ9cR8PVyCR2ELcxbrDKYuomsDUlEAF6iMG0bu%2BFtv6pH4GKK1o1xjJ563vUA%2Ff7eX%2B3Bi8f0jBpQHvgFr9O4lnktnyVVIy1RG6YTfHKhTBSXgUBvW7CskmV09yT8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88066e9fe94e24ef-LHR
alt-svc: h3=":443"; ma=86400

tapeadvertisement.com/scss/player.ec3b7d.css

172.67.162.22

200 OK

32 kB

URL GET HTTP/3
tapeadvertisement.com/scss/player.ec3b7d.css
IP
172.67.162.22:443
ASN
#13335 CLOUDFLARENET

Requested by
https://tapeadvertisement.com/e/ayPZ7pjmp8TxLrQ
Certificate
IssuerLet's Encrypt
Subjecttapeadvertisement.com
Fingerprint2E:C1:32:F0:D2:D2:D4:ED:F4:45:E6:15:FB:5F:E2:19:74:BB:3E:08
ValidityFri, 22 Mar 2024 20:46:24 GMT - Thu, 20 Jun 2024 20:46:23 GMT

File type
ASCII text, with very long lines (31831), with no line terminators
Size
32 kB (31831 bytes)
Hash
dc2cffa80d365e1efd4a88a462260a60
b0dd95d0afb3c518fc5251cc23c2106cbc9d4fc2
0946d6f8aabb3d1ce41416563689d0e2468a898bda8a2fc190e9b0634288d005

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /scss/player.ec3b7d.css HTTP/1.1
Host: tapeadvertisement.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tapeadvertisement.com/e/ayPZ7pjmp8TxLrQ
Cookie: _b=kube18
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 03:41:05 GMT
content-type: text/css
cf-bgj: minify
etag: W/"622bf685-7b0c"
last-modified: Sat, 12 Mar 2022 01:25:25 GMT
cache-control: max-age=432000
cf-cache-status: HIT
age: 6649
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lFAPQZzeU9Bhd%2FMZN%2F1XJ4nW0YryU9TaDfEXjd9%2BHH5JklToiYpHRRPV15wFhEnD2tvlI2kuHBBS2I8dO6grD5c%2BZ7M1jmawNg8iiAKILTfU%2FlCcLJWsBe6LVAXV2rvgmquaTWBaYww%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88066e9df8d9b4f9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

tapeadvertisement.com/js/player.ec3b7e.js

172.67.162.22

200 OK

148 kB

URL GET HTTP/3
tapeadvertisement.com/js/player.ec3b7e.js
IP
172.67.162.22:443
ASN
#13335 CLOUDFLARENET

Requested by
https://tapeadvertisement.com/e/ayPZ7pjmp8TxLrQ
Certificate
IssuerLet's Encrypt
Subjecttapeadvertisement.com
Fingerprint2E:C1:32:F0:D2:D2:D4:ED:F4:45:E6:15:FB:5F:E2:19:74:BB:3E:08
ValidityFri, 22 Mar 2024 20:46:24 GMT - Thu, 20 Jun 2024 20:46:23 GMT

File type
JavaScript source, ASCII text, with very long lines (57504)
Size
148 kB (148031 bytes)
Hash
1781a0087c11152a2361ca6c84b13fab
87360f858b201c3e28f4af24b2fc7c2d8a8d0232
00c57c8b0121e3c2154bc0c181a5c01ad10550648cc4835a62dc887d5427c656

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/player.ec3b7e.js HTTP/1.1
Host: tapeadvertisement.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tapeadvertisement.com/e/ayPZ7pjmp8TxLrQ
Cookie: _b=kube18
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 03:41:05 GMT
content-type: application/javascript; charset=utf-8
last-modified: Thu, 04 Feb 2021 09:32:46 GMT
etag: W/"601bbf3e-2423f"
cache-control: max-age=432000
cf-cache-status: HIT
age: 1395
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=E1%2FPZ90DsEF1pv8XqNdVbYiiwqEkdNbLza%2F6UldYDgN%2F48oipm7SgBc7bBrCnD%2BX8MGu757J63T%2B5U7IMPSXYeUHjted0qFyy0xFUwmxopZRuHro7rTh7W0eXjycUoFNkZDuuEUIZxU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88066e9ec93eb4f9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (16)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by