| sdk.51.la/js-sdk-pro.min.js | 163.181.157.117 | 200 OK | 13 kB |
URL GET HTTP/2sdk.51.la/js-sdk-pro.min.js IP163.181.157.117:443 ASN#24429 Zhejiang Taobao Network Co.,Ltd
CertificateIssuerGlobalSign nv-sa Subject*.51.la Fingerprint9E:F3:EB:9A:59:E9:6D:6E:48:13:64:78:3C:33:1D:AA:79:52:5B:79 ValidityThu, 20 Apr 2023 01:12:57 GMT - Tue, 21 May 2024 01:12:56 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (34110) Hash24bb520e9517f2ed3ed987b46aeaf723 846723563d7dd2bff3954f93633b11af0103adc8 d1f1bfe698f2ffb7b3e7a885a301d58f9554d45df0a31c3e8b53c84b33c80d27
GET /js-sdk-pro.min.js HTTP/1.1
Host: sdk.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://telegramhk.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Tengine
content-type: application/javascript
content-length: 12846
date: Sun, 28 Apr 2024 20:09:00 GMT
vary: Accept-Encoding
x-oss-request-id: 662EACDCE144DC3230A0C500
x-oss-cdn-auth: success
last-modified: Thu, 08 Jun 2023 02:24:34 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 5143829838470429443
x-oss-storage-class: Standard
content-md5: JLtSDpUX8u0+2Ye0aur3Iw==
x-oss-server-time: 3
content-encoding: gzip
ali-swift-global-savetime: 1714334940
via: cache15.l2de2[0,0,200-0,H], cache16.l2de2[1,0], ens-cache10.de7[0,0,200-0,H], ens-cache12.de7[0,0]
age: 940575
x-cache: HIT TCP_MEM_HIT dirn:-2:-2
x-swift-savetime: Tue, 30 Apr 2024 09:29:08 GMT
x-swift-cachetime: 1161592
access-control-allow-origin: *
timing-allow-origin: *
eagleid: a3b583a017152755154733538e
X-Firefox-Spdy: h2
|
|
| telegramhk.com/static/js/jquery-migrate.min.js | 104.21.31.69 | 200 OK | 27 kB |
URL GET HTTP/3telegramhk.com/static/js/jquery-migrate.min.js IP104.21.31.69:443
CertificateIssuerGoogle Trust Services LLC Subjecttelegramhk.com Fingerprint9A:A3:BA:FF:68:AA:C8:B1:D2:E6:FB:E5:83:43:BD:73:E3:7B:70:40 ValidityWed, 20 Mar 2024 10:34:25 GMT - Tue, 18 Jun 2024 10:34:24 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (51731) Hash1080acd6c8fcedc709ae0a692ad344d2 fe32ca7628bd1f4521b27951f60cc93e70895fdf cc496625d5c32fc8539e10979dc3d607865629d0f7579210183649cf8e5f6b7c
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /static/js/jquery-migrate.min.js HTTP/1.1
Host: telegramhk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://telegramhk.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 09 May 2024 17:25:14 GMT
content-type: application/javascript
last-modified: Wed, 20 Mar 2024 16:39:59 GMT
vary: Accept-Encoding
etag: W/"65fb115f-3509"
expires: Fri, 10 May 2024 00:07:42 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 19052
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bLeoIN1rp7kG%2BwVGm5VT1o87o6vhtmYl750JcfIT0ccWf9oRjAj8c8vAaxbdEkeok%2B1ffbzgZiCQjEMxSjlxLHrI2k5zFnJUznLGqdjGCriffa7i0Tigkgi8tcgGb%2FQ3aQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8813633f0cad56ca-OSL
alt-svc: h3=":443"; ma=86400
|
|
| telegramhk.com/static/js/modal.min.js | 104.21.31.69 | 200 OK | 14 kB |
URL GET HTTP/3telegramhk.com/static/js/modal.min.js IP104.21.31.69:443
CertificateIssuerGoogle Trust Services LLC Subjecttelegramhk.com Fingerprint9A:A3:BA:FF:68:AA:C8:B1:D2:E6:FB:E5:83:43:BD:73:E3:7B:70:40 ValidityWed, 20 Mar 2024 10:34:25 GMT - Tue, 18 Jun 2024 10:34:24 GMT
File typegzip compressed data, from Unix Hash36b3c2b193bddedcd51bd782e0ee1087 822f8ca7abfdc0946a2951f069797d34448d2e98 2c5ceb7473e743eb272e6f58b60aa99d059548af0e02b837b3d14e411b1334e0
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /static/js/modal.min.js HTTP/1.1
Host: telegramhk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://telegramhk.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 09 May 2024 17:25:14 GMT
content-type: application/javascript
last-modified: Wed, 20 Mar 2024 16:39:59 GMT
vary: Accept-Encoding
etag: W/"65fb115f-1a39"
expires: Fri, 10 May 2024 00:07:42 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 19052
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kwnPudJMfKqIYa7ola2%2BTEh0%2BHbU9MsYv2K9pzmFyLTngcqQ3LiWhNH3qnSe2gFoZ1ulOknqbHSmIsgiEvzwM8RRI7WSQPPl495EOM3pi5yUe6R6rTdF6Nysl45J09H6kA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8813633f1cbd56ca-OSL
alt-svc: h3=":443"; ma=86400
|
|
| telegramhk.com/static/css/header.css | 104.21.31.69 | 200 OK | 2.6 kB |
URL GET HTTP/3telegramhk.com/static/css/header.css IP104.21.31.69:443
CertificateIssuerGoogle Trust Services LLC Subjecttelegramhk.com Fingerprint9A:A3:BA:FF:68:AA:C8:B1:D2:E6:FB:E5:83:43:BD:73:E3:7B:70:40 ValidityWed, 20 Mar 2024 10:34:25 GMT - Tue, 18 Jun 2024 10:34:24 GMT
File typegzip compressed data, from Unix Hasha9e0580e4dcd1300b09d3be7b22c79c4 9b0df462e495a9363c15f7b3175d77a8bf2c5b45 1ad1d05516e1471418f46479af7c68206bcef79c6a5d04b812f976212808d391
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /static/css/header.css HTTP/1.1
Host: telegramhk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://telegramhk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 09 May 2024 17:25:14 GMT
content-type: text/css
last-modified: Wed, 20 Mar 2024 16:39:59 GMT
vary: Accept-Encoding
etag: W/"65fb115f-c5b"
expires: Fri, 10 May 2024 00:07:42 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 19052
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fJ7qMMOSpj3PNF10CO0zI7JWnjZDDXhgHY48YYFvoAmcEridn4LkLFe8DhMo%2ByoiKzYHxnKoH6wf15e8a346iUxCc3vSI6aXelz06Okk7geFvTXg84fH4PXHzguVWjJAJg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8813633f0c9056ca-OSL
alt-svc: h3=":443"; ma=86400
|
|
| telegramhk.com/static/css/footer.css | 104.21.31.69 | 200 OK | 2.2 kB |
URL GET HTTP/3telegramhk.com/static/css/footer.css IP104.21.31.69:443
CertificateIssuerGoogle Trust Services LLC Subjecttelegramhk.com Fingerprint9A:A3:BA:FF:68:AA:C8:B1:D2:E6:FB:E5:83:43:BD:73:E3:7B:70:40 ValidityWed, 20 Mar 2024 10:34:25 GMT - Tue, 18 Jun 2024 10:34:24 GMT
File typegzip compressed data, from Unix Hash18f303ea3d04eb1efbf5bdf90b79afb4 cc292996d34f99b2c5ecaa631e739d213107bc52 dc5545ced68eabc024a7dada383d06e6494e2bb1c3599ebf831da4a2c40aa478
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /static/css/footer.css HTTP/1.1
Host: telegramhk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://telegramhk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 09 May 2024 17:25:14 GMT
content-type: text/css
last-modified: Wed, 20 Mar 2024 16:39:59 GMT
vary: Accept-Encoding
etag: W/"65fb115f-944"
expires: Fri, 10 May 2024 00:07:42 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 19052
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QfPusysAFo54Ss4oW7WmNH2DCAF3rH%2FpZeal8rfRLjUY8yxXI%2Bj1dZUNSMQUznH%2Blgv4j%2FmQo%2BAZhYiY%2F5oNtfBeY8%2B8Tzp7pMAOl6GGmO1Up5aZPJUxA4Uta79vNkDazA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8813633f0c9756ca-OSL
alt-svc: h3=":443"; ma=86400
|
|
| telegramhk.com/static/picture/td_laptop.png | 104.21.31.69 | 200 OK | 190 kB |
URL GET HTTP/3telegramhk.com/static/picture/td_laptop.png IP104.21.31.69:443
CertificateIssuerGoogle Trust Services LLC Subjecttelegramhk.com Fingerprint9A:A3:BA:FF:68:AA:C8:B1:D2:E6:FB:E5:83:43:BD:73:E3:7B:70:40 ValidityWed, 20 Mar 2024 10:34:25 GMT - Tue, 18 Jun 2024 10:34:24 GMT
File typePNG image data, 840 x 487, 8-bit/color RGBA, non-interlaced Size190 kB (189734 bytes) Hash40d4266e5aadc87cceec1ab420dc2692 266c56990a106b6e9efb0f9ef2a1a752aa6fa0fc 3a1d4890b3e91a01c20c65b75f1ae028e3c445cad1fd2d249dd0868876dfe4b4
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /static/picture/td_laptop.png HTTP/1.1
Host: telegramhk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://telegramhk.com/
Cookie: __vtins__KNsxLYTnvmFyzGbH=%7B%22sid%22%3A%20%22b6b499be-bbc8-55bb-97dd-948dc19cdb13%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201715277315543%2C%20%22ct%22%3A%201715275515543%7D; __51uvsct__KNsxLYTnvmFyzGbH=1; __51vcke__KNsxLYTnvmFyzGbH=35fe6b18-afc7-599f-b51f-c7b29f7c251a; __51vuft__KNsxLYTnvmFyzGbH=1715275515550
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 09 May 2024 17:25:15 GMT
content-type: image/png
content-length: 189734
last-modified: Wed, 20 Mar 2024 16:37:04 GMT
etag: "65fb10b0-2e526"
expires: Sat, 08 Jun 2024 12:07:44 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 19051
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Zmxhz%2FrVwwQsL4%2FmYhXBt4QhhAEQFLWwkw4VEkKw1aCqqscm5jKRUhdLTNfk9p2uu0m4j0hT0yRWa940d9WIafgyyCvqNQgNsD1HIeB%2BZMUiQBRdFanc6zeQQ4MF68jNhA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88136345784156ca-OSL
alt-svc: h3=":443"; ma=86400
|
|
| telegramhk.com/static/css/wen.css | 104.21.31.69 | 200 OK | 2.4 MB |
URL GET HTTP/3telegramhk.com/static/css/wen.css IP104.21.31.69:443
CertificateIssuerGoogle Trust Services LLC Subjecttelegramhk.com Fingerprint9A:A3:BA:FF:68:AA:C8:B1:D2:E6:FB:E5:83:43:BD:73:E3:7B:70:40 ValidityWed, 20 Mar 2024 10:34:25 GMT - Tue, 18 Jun 2024 10:34:24 GMT
File typegzip compressed data, from Unix Size2.4 MB (2417799 bytes) Hash50ff501b024624ef8bf9af61a1e3e270 0e30d142d4cfa5a905a25ba0b272655a93479aec 7a8b408ce5582fd8b10d21b9c4b9ccbf04d8ec2d47d79c33a8158a62bd18980b
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /static/css/wen.css HTTP/1.1
Host: telegramhk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://telegramhk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 09 May 2024 17:25:14 GMT
content-type: text/css
last-modified: Wed, 20 Mar 2024 16:39:59 GMT
vary: Accept-Encoding
etag: W/"65fb115f-26f9"
expires: Fri, 10 May 2024 00:07:42 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 19052
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4PIBcWq77xJ5Vb9XlqJ0BtCclaJoxFbYw9eD0kLmZa31qZrsmR%2FOegYDSgQlbnAheSYbxXbsAVCCK47Xow78PLLP0DdwVDG3tPjmiMtWi0Pvv3%2BwmiN48%2F5PbeNfAhHiZA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8813633f0c9e56ca-OSL
alt-svc: h3=":443"; ma=86400
|
|
| telegramhk.com/static/css/index.css | 104.21.31.69 | 200 OK | 2.7 kB |
URL GET HTTP/3telegramhk.com/static/css/index.css IP104.21.31.69:443
CertificateIssuerGoogle Trust Services LLC Subjecttelegramhk.com Fingerprint9A:A3:BA:FF:68:AA:C8:B1:D2:E6:FB:E5:83:43:BD:73:E3:7B:70:40 ValidityWed, 20 Mar 2024 10:34:25 GMT - Tue, 18 Jun 2024 10:34:24 GMT
File typegzip compressed data, from Unix Hash60e24c400f1228755b4b0b7aab5cb6b7 7329b4e7cc2c28d6530b1c85f8780515d29661d1 3b8aa765e0232620b52d21dbe955e88a4efd6d20a4d2aaf15f0f8dec45e073dc
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /static/css/index.css HTTP/1.1
Host: telegramhk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://telegramhk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 09 May 2024 17:25:14 GMT
content-type: text/css
last-modified: Wed, 20 Mar 2024 16:39:59 GMT
vary: Accept-Encoding
etag: W/"65fb115f-2194"
expires: Fri, 10 May 2024 00:07:42 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 19052
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rT%2FraVTAk6A27FV4DccXurMQt21Cyq%2F7JDvaC%2Fl5fpjE%2FCR6ZHAtB0S9eRx7kzPhhwCgm%2Beu%2BjyccifHNG2V4RuWMEtgXBMcqoNH6hKKFiWluRi1FAEcLjdGQicfNcQo7A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8813633f0c9a56ca-OSL
alt-svc: h3=":443"; ma=86400
|
|
| telegramhk.com/static/file/t_main_Android_demo.mp4 | 104.21.31.69 | 206 Partial Content | 251 kB |
URL GET HTTP/3telegramhk.com/static/file/t_main_Android_demo.mp4 IP104.21.31.69:443
CertificateIssuerGoogle Trust Services LLC Subjecttelegramhk.com Fingerprint9A:A3:BA:FF:68:AA:C8:B1:D2:E6:FB:E5:83:43:BD:73:E3:7B:70:40 ValidityWed, 20 Mar 2024 10:34:25 GMT - Tue, 18 Jun 2024 10:34:24 GMT
File typeISO Media, MP4 v2 [ISO 14496-14] Size251 kB (250838 bytes) Hash36bebc24f7516d37cbfbb4ee2aedf6f6 c40bb63cbe7c48f67faf8db89240fd60f912e1ce 03b2ae439d25e00e297b01942883f4ef8a6a5c87e01dd0faec6f1eef24b92816
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /static/file/t_main_Android_demo.mp4 HTTP/1.1
Host: telegramhk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://telegramhk.com/
Cookie: __vtins__KNsxLYTnvmFyzGbH=%7B%22sid%22%3A%20%22b6b499be-bbc8-55bb-97dd-948dc19cdb13%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201715277315543%2C%20%22ct%22%3A%201715275515543%7D; __51uvsct__KNsxLYTnvmFyzGbH=1; __51vcke__KNsxLYTnvmFyzGbH=35fe6b18-afc7-599f-b51f-c7b29f7c251a; __51vuft__KNsxLYTnvmFyzGbH=1715275515550
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 206 Partial Content
date: Thu, 09 May 2024 17:25:16 GMT
content-type: video/mp4
content-length: 250838
last-modified: Wed, 20 Mar 2024 16:39:56 GMT
etag: "65fb115c-3d3d6"
strict-transport-security: max-age=31536000
cache-control: max-age=14400
cf-cache-status: REVALIDATED
content-range: bytes 0-250837/250838
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tO%2FEWWTEHrse1LyU9nFvP8DuJkDhTnKFrktAhRHrGzu%2Brf%2BSi7lSwF60Ay5VMqvFWgGWr8krwc92Di9rDYFeQN6VoR3AbAecKdUDfmXlK0w7b8PQqTctYOpZA%2Fp1BRGUnQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881363451fb256ca-OSL
alt-svc: h3=":443"; ma=86400
|
|
| collect-v6.51.la/v6/collect?dt=4 | 163.181.154.138 | 403 Forbidden | 0 B |
URL POST HTTP/1.1collect-v6.51.la/v6/collect?dt=4 IP163.181.154.138:443 ASN#24429 Zhejiang Taobao Network Co.,Ltd
CertificateIssuerGlobalSign nv-sa Subject*.51.la Fingerprint9E:F3:EB:9A:59:E9:6D:6E:48:13:64:78:3C:33:1D:AA:79:52:5B:79 ValidityThu, 20 Apr 2023 01:12:57 GMT - Tue, 21 May 2024 01:12:56 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /v6/collect?dt=4 HTTP/1.1
Host: collect-v6.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 380
Origin: https://telegramhk.com
DNT: 1
Connection: keep-alive
Referer: https://telegramhk.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Server: Tengine
Content-Length: 0
Connection: keep-alive
Date: Thu, 09 May 2024 17:25:16 GMT
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Access-Control-Allow-Origin: https://telegramhk.com
Access-Control-Allow-Credentials: true
Ali-Swift-Global-Savetime: 1715275516
Via: cache20.l2de2[181,181,403-0,M], cache20.l2de2[183,0], ens-cache26.gb4[199,199,403-1280,M], ens-cache26.gb4[200,0]
Cache-Control: no-cache
Age: 0
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-Error: orig response 4XX error
X-Swift-SaveTime: Thu, 09 May 2024 17:25:16 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: a3b59aae17152755160172266e
|
|
| telegramhk.com/static/file/t_main_iOS_demo.mp4 | 104.21.31.69 | 206 Partial Content | 245 kB |
URL GET HTTP/3telegramhk.com/static/file/t_main_iOS_demo.mp4 IP104.21.31.69:443
CertificateIssuerGoogle Trust Services LLC Subjecttelegramhk.com Fingerprint9A:A3:BA:FF:68:AA:C8:B1:D2:E6:FB:E5:83:43:BD:73:E3:7B:70:40 ValidityWed, 20 Mar 2024 10:34:25 GMT - Tue, 18 Jun 2024 10:34:24 GMT
File typeISO Media, MP4 v2 [ISO 14496-14] Size245 kB (244748 bytes) Hash91daa37e09df8b688f7832e7d6d80aa6 fc59e29275e98dd5dce1efc9b982ec1ba5ad4276 eaf99fdddbab6953d53df2a7e81b5275e90e221e0a7ebd3d99f42cf4b6aba6d2
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /static/file/t_main_iOS_demo.mp4 HTTP/1.1
Host: telegramhk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://telegramhk.com/
Cookie: __vtins__KNsxLYTnvmFyzGbH=%7B%22sid%22%3A%20%22b6b499be-bbc8-55bb-97dd-948dc19cdb13%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201715277315543%2C%20%22ct%22%3A%201715275515543%7D; __51uvsct__KNsxLYTnvmFyzGbH=1; __51vcke__KNsxLYTnvmFyzGbH=35fe6b18-afc7-599f-b51f-c7b29f7c251a; __51vuft__KNsxLYTnvmFyzGbH=1715275515550
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 206 Partial Content
date: Thu, 09 May 2024 17:25:16 GMT
content-type: video/mp4
content-length: 244748
last-modified: Wed, 20 Mar 2024 16:39:56 GMT
etag: "65fb115c-3bc0c"
strict-transport-security: max-age=31536000
cache-control: max-age=14400
cf-cache-status: REVALIDATED
content-range: bytes 0-244747/244748
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=c7rOygvCTYhbJ2xJXF8x6dmOYnyI02rdh9JmVS1q681To5ET9SgL4vKytd4JiB6EkajZhrDXvvmpc%2BQG5XS0KTIK3M6%2FifdFyTWqekaf4iu4oE%2Fpii1ZY3%2Bkivanlr5hTQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881363454ffe56ca-OSL
alt-svc: h3=":443"; ma=86400
|
|
| telegramhk.com/static/css/kk-star-ratings.min.css | 104.21.31.69 | 200 OK | 9.3 kB |
URL GET HTTP/3telegramhk.com/static/css/kk-star-ratings.min.css IP104.21.31.69:443
CertificateIssuerGoogle Trust Services LLC Subjecttelegramhk.com Fingerprint9A:A3:BA:FF:68:AA:C8:B1:D2:E6:FB:E5:83:43:BD:73:E3:7B:70:40 ValidityWed, 20 Mar 2024 10:34:25 GMT - Tue, 18 Jun 2024 10:34:24 GMT
File typegzip compressed data, from Unix Hashff14d9e746e3dfd3a5e554d5d70b18f7 540a8f2478c754278970e57dcd9d53687c1c31a1 5efe6ca91ebfc8e3549c7e5119f6adb71d742dc1c7e81f6aae0c02211cc5744c
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /static/css/kk-star-ratings.min.css HTTP/1.1
Host: telegramhk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://telegramhk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 09 May 2024 17:25:14 GMT
content-type: text/css
last-modified: Wed, 20 Mar 2024 16:39:59 GMT
vary: Accept-Encoding
etag: W/"65fb115f-91d"
expires: Fri, 10 May 2024 00:07:42 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 19052
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Rr9LbodXflzqNTr%2BMHmaPk0qFbvOcGv3BEPZ%2FG3rQ5DlvFlpMjZkEYun90h0HgWpwraB0x5slc2wmuvQ9b9Cj%2Fib87ZuLZ%2FMxhD%2FC7tCtgDygPokphoXSjdVIWXPJ8aVAg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8813633efc7956ca-OSL
alt-svc: h3=":443"; ma=86400
|
|
| telegramhk.com/static/css/bost.css | 104.21.31.69 | 200 OK | 2.2 MB |
URL GET HTTP/3telegramhk.com/static/css/bost.css IP104.21.31.69:443
CertificateIssuerGoogle Trust Services LLC Subjecttelegramhk.com Fingerprint9A:A3:BA:FF:68:AA:C8:B1:D2:E6:FB:E5:83:43:BD:73:E3:7B:70:40 ValidityWed, 20 Mar 2024 10:34:25 GMT - Tue, 18 Jun 2024 10:34:24 GMT
File typegzip compressed data, from Unix Size2.2 MB (2210393 bytes) Hashf170527e6de9c20a71094fc32e9651b8 f1a369b79dd5fa0d1c8160076dbac342f7922ba5 09f3ef501c2966a76fe832e0cfb1938ca89ab87169f57810b5c57b8df6a3f044
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /static/css/bost.css HTTP/1.1
Host: telegramhk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://telegramhk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 09 May 2024 17:25:14 GMT
content-type: text/css
last-modified: Wed, 20 Mar 2024 16:39:59 GMT
vary: Accept-Encoding
etag: W/"65fb115f-b2eb"
expires: Fri, 10 May 2024 00:07:42 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 19052
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8R6CMliXckc%2BDS3F03rmYWBRLt4%2FiYKj4pjyIwnxTw2gObIWBsDifyBhZ4cpx12GZROrZVlyrKxFjknILUDb8xa699iNa4g7lZ2SvvP8tbMLQlEzYecgMVU9o0nxWj%2Fwjg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8813633f0ca056ca-OSL
alt-svc: h3=":443"; ma=86400
|
|
| telegramhk.com/static/css/faq-schema-ultimate-public.css | 104.21.31.69 | 200 OK | 9.8 kB |
URL GET HTTP/3telegramhk.com/static/css/faq-schema-ultimate-public.css IP104.21.31.69:443
CertificateIssuerGoogle Trust Services LLC Subjecttelegramhk.com Fingerprint9A:A3:BA:FF:68:AA:C8:B1:D2:E6:FB:E5:83:43:BD:73:E3:7B:70:40 ValidityWed, 20 Mar 2024 10:34:25 GMT - Tue, 18 Jun 2024 10:34:24 GMT
Hashe6094661d8923e95b233019ebff7c8f0 cfd836d385d475baffee45d85cfeb9bb36e70d9e 547dda3c14b284819be511be1e410da94a5efc6ccc4a9afe1c75394f9333191a
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /static/css/faq-schema-ultimate-public.css HTTP/1.1
Host: telegramhk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://telegramhk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 09 May 2024 17:25:14 GMT
content-type: text/css
last-modified: Wed, 20 Mar 2024 16:39:59 GMT
etag: W/"65fb115f-62"
expires: Fri, 10 May 2024 00:07:42 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 19052
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6gI%2BkYWWsGzvn8pH4rFVEKsFilQ05iJJU984aBx4h0g56XyrTrvfiEBA1YoWjgvabNNLUosHFcy1nszHsf%2FL%2FsaKS0GiKCWwvqhhw%2BxtthJ6nJ%2BJVWhs1HzZQqdMxqMjAg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8813633efc7356ca-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| telegramhk.com/static/css/modal.min.css | 104.21.31.69 | 200 OK | 2.3 MB |
URL GET HTTP/3telegramhk.com/static/css/modal.min.css IP104.21.31.69:443
CertificateIssuerGoogle Trust Services LLC Subjecttelegramhk.com Fingerprint9A:A3:BA:FF:68:AA:C8:B1:D2:E6:FB:E5:83:43:BD:73:E3:7B:70:40 ValidityWed, 20 Mar 2024 10:34:25 GMT - Tue, 18 Jun 2024 10:34:24 GMT
File typegzip compressed data, from Unix Size2.3 MB (2255703 bytes) Hash7d909d7ca3c7a584b55406175b5ebc5f a2f47cf33f95762d6b13af351c06bb99617a3a9c 4b790c79103715b845d1ef8b0fb960f8d0a1fd87963f15b6a8cfadb347a525eb
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /static/css/modal.min.css HTTP/1.1
Host: telegramhk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://telegramhk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 09 May 2024 17:25:14 GMT
content-type: text/css
last-modified: Wed, 20 Mar 2024 16:39:59 GMT
vary: Accept-Encoding
etag: W/"65fb115f-957"
expires: Fri, 10 May 2024 00:07:42 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 19052
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xcdfE7ucMuITTxQev9xplwRNJGFdko1LeSFQ2nwZFxz4DoPM4avpAsdsKI5tOqXWSJ5eXyNipsg9RFJ0Q0MjHCbzdQGWmBdD73WHBhjLMzmNkzVY0Z%2BiJMFfz74wt8hDxQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8813633f0ca356ca-OSL
alt-svc: h3=":443"; ma=86400
|
|
| telegramhk.com/static/font/AlibabaPuHuiTi-2-105-Heavy.ttf | 104.21.31.69 | 200 OK | 2.0 MB |
URL GET HTTP/3telegramhk.com/static/font/AlibabaPuHuiTi-2-105-Heavy.ttf IP104.21.31.69:443
CertificateIssuerGoogle Trust Services LLC Subjecttelegramhk.com Fingerprint9A:A3:BA:FF:68:AA:C8:B1:D2:E6:FB:E5:83:43:BD:73:E3:7B:70:40 ValidityWed, 20 Mar 2024 10:34:25 GMT - Tue, 18 Jun 2024 10:34:24 GMT
File typeTrueType Font data, digitally signed, 17 tables, 1st "DSIG", name offset 0x1d8b1c Size2.0 MB (2035700 bytes) Hash12bbf943a7cccc41ca8776b0fcc90e79 feac3777bba22a8f8276eb352e3751fd01689f53 737edd01c588db7ff26cb94acc3a8cf3b218c48de6274604b51f8c70a4f4625f
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /static/font/AlibabaPuHuiTi-2-105-Heavy.ttf HTTP/1.1
Host: telegramhk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://telegramhk.com/static/css/fonts.css
Cookie: __vtins__KNsxLYTnvmFyzGbH=%7B%22sid%22%3A%20%22b6b499be-bbc8-55bb-97dd-948dc19cdb13%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201715277315543%2C%20%22ct%22%3A%201715275515543%7D; __51uvsct__KNsxLYTnvmFyzGbH=1; __51vcke__KNsxLYTnvmFyzGbH=35fe6b18-afc7-599f-b51f-c7b29f7c251a; __51vuft__KNsxLYTnvmFyzGbH=1715275515550
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 09 May 2024 17:25:16 GMT
content-type: application/octet-stream
content-length: 2035700
last-modified: Wed, 20 Mar 2024 16:39:13 GMT
etag: "65fb1131-1f0ff4"
strict-transport-security: max-age=31536000
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QnoITz9rk%2BOywuftd76doCdK2q8EblUL6llKXv0PP1bh9UGLiPek5l6SS2ZBt20Snh6XALabkICGL1WXSsywFT1m1eVm2Wltgeu0KHN2q2XRzU5iIT38Vw6GK%2BVaCJXQLg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88136344df4156ca-OSL
alt-svc: h3=":443"; ma=86400
|
|
| telegramhk.com/static/picture/d4.gif | 104.21.31.69 | 200 OK | 3.4 MB |
URL GET HTTP/3telegramhk.com/static/picture/d4.gif IP104.21.31.69:443
CertificateIssuerGoogle Trust Services LLC Subjecttelegramhk.com Fingerprint9A:A3:BA:FF:68:AA:C8:B1:D2:E6:FB:E5:83:43:BD:73:E3:7B:70:40 ValidityWed, 20 Mar 2024 10:34:25 GMT - Tue, 18 Jun 2024 10:34:24 GMT
File typeGIF image data, version 89a, 512 x 512 Size3.4 MB (3422486 bytes) Hashe60746b12f4e6cca778727472f415218 4e3b517a1911d891d018bc63b66e1b69837a3e15 b285715d34361c4fed5058a10eb830bf2dd61126518477ded340dd7f95221417
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /static/picture/d4.gif HTTP/1.1
Host: telegramhk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://telegramhk.com/
Cookie: __vtins__KNsxLYTnvmFyzGbH=%7B%22sid%22%3A%20%22b6b499be-bbc8-55bb-97dd-948dc19cdb13%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201715277315543%2C%20%22ct%22%3A%201715275515543%7D; __51uvsct__KNsxLYTnvmFyzGbH=1; __51vcke__KNsxLYTnvmFyzGbH=35fe6b18-afc7-599f-b51f-c7b29f7c251a; __51vuft__KNsxLYTnvmFyzGbH=1715275515550
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 09 May 2024 17:25:15 GMT
content-type: image/gif
content-length: 3422486
last-modified: Wed, 20 Mar 2024 16:37:15 GMT
etag: "65fb10bb-343916"
expires: Sat, 08 Jun 2024 12:07:44 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 19051
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ype3TAa8%2BitfQEWzc9G%2FwwYcJs6mN8JldUEJ2uazLONB0UvpmnzNb4KTchzdxu91odkKwJCnY2xmtfG3k8KVw66o0LtrJjTwiOVgYcH0vDvas%2Bg%2Bf9y276p83%2BVooWUS2Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88136345785756ca-OSL
alt-svc: h3=":443"; ma=86400
|
|
| telegramhk.com/static/js/faq-schema-ultimate-public.js | 104.21.31.69 | 200 OK | 8.5 MB |
URL GET HTTP/3telegramhk.com/static/js/faq-schema-ultimate-public.js IP104.21.31.69:443
CertificateIssuerGoogle Trust Services LLC Subjecttelegramhk.com Fingerprint9A:A3:BA:FF:68:AA:C8:B1:D2:E6:FB:E5:83:43:BD:73:E3:7B:70:40 ValidityWed, 20 Mar 2024 10:34:25 GMT - Tue, 18 Jun 2024 10:34:24 GMT
File typeJavaScript source, ASCII text Size8.5 MB (8450122 bytes) Hash49cea0a781874a962879c2caca9bc322 72c1650de2b93ef320d2db873fbb473fe360269c 57a50c99a31ef4e89e86664e96f6dfbdde163a2eb96e88b3b492c49aa4be2f37
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /static/js/faq-schema-ultimate-public.js HTTP/1.1
Host: telegramhk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://telegramhk.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 09 May 2024 17:25:14 GMT
content-type: application/javascript
last-modified: Wed, 20 Mar 2024 16:39:59 GMT
etag: W/"65fb115f-346"
expires: Fri, 10 May 2024 00:07:42 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 19052
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HcRIKp2uWev2iOkgECTRXueJs%2Fj%2BD9l%2B82v6m54OkqgKlaO7ixsxaAC8NnmG4iz43OdKsQfee1JUC9xDJAhQJsgoycLIPNHQAvK5jRe5bj46PeflkYGZxRGywP62EiU3HA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8813633f1cb156ca-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| telegramhk.com/static/picture/d5.gif | 104.21.31.69 | 200 OK | 2.0 MB |
URL GET HTTP/3telegramhk.com/static/picture/d5.gif IP104.21.31.69:443
CertificateIssuerGoogle Trust Services LLC Subjecttelegramhk.com Fingerprint9A:A3:BA:FF:68:AA:C8:B1:D2:E6:FB:E5:83:43:BD:73:E3:7B:70:40 ValidityWed, 20 Mar 2024 10:34:25 GMT - Tue, 18 Jun 2024 10:34:24 GMT
File typeGIF image data, version 89a, 512 x 512 Size2.0 MB (2002471 bytes) Hash6a88bbd5858b7d9234fb7d0c6c5059a6 c3412d69dfa2ce6b208d52e6842ea7807cff42d3 f8152a8d500807f824571c3256320bbf578cdce88d45d0fd048a6422f71c272b
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /static/picture/d5.gif HTTP/1.1
Host: telegramhk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://telegramhk.com/
Cookie: __vtins__KNsxLYTnvmFyzGbH=%7B%22sid%22%3A%20%22b6b499be-bbc8-55bb-97dd-948dc19cdb13%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201715277315543%2C%20%22ct%22%3A%201715275515543%7D; __51uvsct__KNsxLYTnvmFyzGbH=1; __51vcke__KNsxLYTnvmFyzGbH=35fe6b18-afc7-599f-b51f-c7b29f7c251a; __51vuft__KNsxLYTnvmFyzGbH=1715275515550
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 09 May 2024 17:25:15 GMT
content-type: image/gif
content-length: 2002471
last-modified: Wed, 20 Mar 2024 16:37:19 GMT
etag: "65fb10bf-1e8e27"
expires: Sat, 08 Jun 2024 12:07:44 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 19051
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2P%2BCwT4jw0CssTMmAhqaq4UG%2Fye%2B4m9cRiblXrovEJVs%2BoiZBrWldsv3JUQXdExiU5wt4ryKEwh7CJsac2uwQzq6nxQ6nVBTK05N9CD6KlkCRzHuBxwLiUllxNVL54H%2Fug%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88136345885956ca-OSL
alt-svc: h3=":443"; ma=86400
|
|
| telegramhk.com/static/picture/d6.gif | 104.21.31.69 | 200 OK | 2.4 MB |
URL GET HTTP/3telegramhk.com/static/picture/d6.gif IP104.21.31.69:443
CertificateIssuerGoogle Trust Services LLC Subjecttelegramhk.com Fingerprint9A:A3:BA:FF:68:AA:C8:B1:D2:E6:FB:E5:83:43:BD:73:E3:7B:70:40 ValidityWed, 20 Mar 2024 10:34:25 GMT - Tue, 18 Jun 2024 10:34:24 GMT
File typeGIF image data, version 89a, 512 x 512 Size2.4 MB (2424803 bytes) Hash14c0a01070573bc00e0f462023e8162f 8d8725f9bdbe99060b86e0a03434bb5c4e3be8af 116029bd091ec390064879df7dad05e601e284413f53b9d51978875b85dc7471
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /static/picture/d6.gif HTTP/1.1
Host: telegramhk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://telegramhk.com/
Cookie: __vtins__KNsxLYTnvmFyzGbH=%7B%22sid%22%3A%20%22b6b499be-bbc8-55bb-97dd-948dc19cdb13%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201715277315543%2C%20%22ct%22%3A%201715275515543%7D; __51uvsct__KNsxLYTnvmFyzGbH=1; __51vcke__KNsxLYTnvmFyzGbH=35fe6b18-afc7-599f-b51f-c7b29f7c251a; __51vuft__KNsxLYTnvmFyzGbH=1715275515550
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 09 May 2024 17:25:15 GMT
content-type: image/gif
content-length: 2424803
last-modified: Wed, 20 Mar 2024 16:37:08 GMT
etag: "65fb10b4-24ffe3"
expires: Sat, 08 Jun 2024 12:07:44 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 19051
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NMCGjsOkosh1xl96RNtrTosKEykdzp%2FqoAPGqDi%2BBsJn0FiX0cqo0NifjEFPjUIbzgeY123BlECBbjsScXlo3cpUG%2BYBMo3lt45HgD%2F6EJ5S2nrkO9SGll2cGgAGm0RuuA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88136345885d56ca-OSL
alt-svc: h3=":443"; ma=86400
|
|
| telegramhk.com/favicon.ico | 104.21.31.69 | 200 OK | 18 kB |
URL GET HTTP/3telegramhk.com/favicon.ico IP104.21.31.69:443
CertificateIssuerGoogle Trust Services LLC Subjecttelegramhk.com Fingerprint9A:A3:BA:FF:68:AA:C8:B1:D2:E6:FB:E5:83:43:BD:73:E3:7B:70:40 ValidityWed, 20 Mar 2024 10:34:25 GMT - Tue, 18 Jun 2024 10:34:24 GMT
File typePNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced Hash2c84be4c4dec401d09a64498cbbd382d 1c7053b083d5e59ed5cb4912c5500f39beaf765e 88afe4caad9d3ef9d7b4a5301d1b2b4378b54d233038079f0145e2f387f4eed9
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /favicon.ico HTTP/1.1
Host: telegramhk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://telegramhk.com/
Cookie: __vtins__KNsxLYTnvmFyzGbH=%7B%22sid%22%3A%20%22b6b499be-bbc8-55bb-97dd-948dc19cdb13%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201715277315543%2C%20%22ct%22%3A%201715275515543%7D; __51uvsct__KNsxLYTnvmFyzGbH=1; __51vcke__KNsxLYTnvmFyzGbH=35fe6b18-afc7-599f-b51f-c7b29f7c251a; __51vuft__KNsxLYTnvmFyzGbH=1715275515550
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 09 May 2024 17:25:18 GMT
content-type: image/x-icon
last-modified: Wed, 20 Mar 2024 12:01:17 GMT
etag: W/"65fad00d-2cb9"
strict-transport-security: max-age=31536000
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MnUc7XO8jt8FBedVklMmX2yBzBmIs85Dd9m8MfKSJoqQxs%2BZwhMwYN2wIoNHei3lhTpb%2Bjip80eqIVyzd%2BlFiAZ4XTwp4qx7DHm064eRoCASflzvQFtznUMi0M1AAmLbXA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88136356df9956ca-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| telegramhk.com/static/js/kk-star-ratings.min.js | 104.21.31.69 | 200 OK | 9.6 kB |
URL GET HTTP/3telegramhk.com/static/js/kk-star-ratings.min.js IP104.21.31.69:443
CertificateIssuerGoogle Trust Services LLC Subjecttelegramhk.com Fingerprint9A:A3:BA:FF:68:AA:C8:B1:D2:E6:FB:E5:83:43:BD:73:E3:7B:70:40 ValidityWed, 20 Mar 2024 10:34:25 GMT - Tue, 18 Jun 2024 10:34:24 GMT
File typegzip compressed data, from Unix Hashf0ccc440d445ff84e89b4fe35a600d8b 8dd8a3f5085599ebc7377d158d49b9684452a563 32a4623eda325d807d69c7e58772d85905b619410995c2a9463f53ec160bbbe8
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /static/js/kk-star-ratings.min.js HTTP/1.1
Host: telegramhk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://telegramhk.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 09 May 2024 17:25:14 GMT
content-type: application/javascript
last-modified: Wed, 20 Mar 2024 16:39:59 GMT
vary: Accept-Encoding
etag: W/"65fb115f-54f"
expires: Fri, 10 May 2024 00:07:42 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 19052
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DzgpkRwHnlfHLoBXwN%2FWTfT%2Fs68GXZPEsDB5Y4NnAYbc02RwaFjCQ7YjCNt9vMOiWPoc32fOMvtZ%2BrO4XjO%2BOYhyVjojoIYuk53QO9%2Bop%2FfAbX0LDA3ifvfcfuva6WQXTw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8813633f2cc956ca-OSL
alt-svc: h3=":443"; ma=86400
|
|
| telegramhk.com/static/font/AlibabaPuHuiTi-2-55-Regular.ttf | 104.21.31.69 | 200 OK | 8.4 MB |
URL GET HTTP/3telegramhk.com/static/font/AlibabaPuHuiTi-2-55-Regular.ttf IP104.21.31.69:443
CertificateIssuerGoogle Trust Services LLC Subjecttelegramhk.com Fingerprint9A:A3:BA:FF:68:AA:C8:B1:D2:E6:FB:E5:83:43:BD:73:E3:7B:70:40 ValidityWed, 20 Mar 2024 10:34:25 GMT - Tue, 18 Jun 2024 10:34:24 GMT
Size8.4 MB (8449680 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /static/font/AlibabaPuHuiTi-2-55-Regular.ttf HTTP/1.1
Host: telegramhk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://telegramhk.com/static/css/fonts.css
Cookie: __vtins__KNsxLYTnvmFyzGbH=%7B%22sid%22%3A%20%22b6b499be-bbc8-55bb-97dd-948dc19cdb13%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201715277315543%2C%20%22ct%22%3A%201715275515543%7D; __51uvsct__KNsxLYTnvmFyzGbH=1; __51vcke__KNsxLYTnvmFyzGbH=35fe6b18-afc7-599f-b51f-c7b29f7c251a; __51vuft__KNsxLYTnvmFyzGbH=1715275515550
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 09 May 2024 17:25:16 GMT
content-type: application/octet-stream
content-length: 8449680
last-modified: Wed, 20 Mar 2024 16:39:15 GMT
etag: "65fb1133-80ee90"
strict-transport-security: max-age=31536000
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6nbPC9pQ9%2FqIMGBDo1Z8tZwLPFQrrk5%2FJTV1xn3fKHppLYBV5%2FmJ6uQzxRfSqV7IZgRa62wUq92QgzWcXEDLLmmdD6%2BeS3UivzKsEGhGvc0LLeRGnRF3DJhpQSJcn4XGSA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88136344cf2e56ca-OSL
alt-svc: h3=":443"; ma=86400
|
|
| telegramhk.com/static/picture/twitter_2x.png | 104.21.31.69 | 200 OK | 1.8 kB |
URL GET HTTP/3telegramhk.com/static/picture/twitter_2x.png IP104.21.31.69:443
CertificateIssuerGoogle Trust Services LLC Subjecttelegramhk.com Fingerprint9A:A3:BA:FF:68:AA:C8:B1:D2:E6:FB:E5:83:43:BD:73:E3:7B:70:40 ValidityWed, 20 Mar 2024 10:34:25 GMT - Tue, 18 Jun 2024 10:34:24 GMT
File typePNG image data, 42 x 34, 8-bit/color RGBA, non-interlaced Hash0946d1815d70d8718b27b655adcdca48 82c082061ca48f6046b82b5f079d1679ec2efa23 ecf8b3e71463f374da983ceec053e78a11896e5cf2cc1da1cad7cbc8c9f1c0cf
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /static/picture/twitter_2x.png HTTP/1.1
Host: telegramhk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://telegramhk.com/
Cookie: __vtins__KNsxLYTnvmFyzGbH=%7B%22sid%22%3A%20%22b6b499be-bbc8-55bb-97dd-948dc19cdb13%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201715277315543%2C%20%22ct%22%3A%201715275515543%7D; __51uvsct__KNsxLYTnvmFyzGbH=1; __51vcke__KNsxLYTnvmFyzGbH=35fe6b18-afc7-599f-b51f-c7b29f7c251a; __51vuft__KNsxLYTnvmFyzGbH=1715275515550
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 09 May 2024 17:25:15 GMT
content-type: image/png
content-length: 1768
last-modified: Wed, 20 Mar 2024 16:37:04 GMT
etag: "65fb10b0-6e8"
expires: Sat, 08 Jun 2024 12:07:44 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 19051
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xtv4Pj6OlCJaol%2B8p83oICz%2FNqBdU8swGrCwP4qIifu%2Bc4kxxtz72DDIGssqafxTtjgzgAyvcy5JFCf5CHEE33x8ZfbWMznEQL%2B62V8YnPIbPRocK4JIQ61l3SlKYyCIAg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88136345783f56ca-OSL
alt-svc: h3=":443"; ma=86400
|
|
| telegramhk.com/static/picture/jiandan.gif | 104.21.31.69 | 200 OK | 2.4 MB |
URL GET HTTP/3telegramhk.com/static/picture/jiandan.gif IP104.21.31.69:443
CertificateIssuerGoogle Trust Services LLC Subjecttelegramhk.com Fingerprint9A:A3:BA:FF:68:AA:C8:B1:D2:E6:FB:E5:83:43:BD:73:E3:7B:70:40 ValidityWed, 20 Mar 2024 10:34:25 GMT - Tue, 18 Jun 2024 10:34:24 GMT
Size2.4 MB (2415534 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /static/picture/jiandan.gif HTTP/1.1
Host: telegramhk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://telegramhk.com/
Cookie: __vtins__KNsxLYTnvmFyzGbH=%7B%22sid%22%3A%20%22b6b499be-bbc8-55bb-97dd-948dc19cdb13%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201715277315543%2C%20%22ct%22%3A%201715275515543%7D; __51uvsct__KNsxLYTnvmFyzGbH=1; __51vcke__KNsxLYTnvmFyzGbH=35fe6b18-afc7-599f-b51f-c7b29f7c251a; __51vuft__KNsxLYTnvmFyzGbH=1715275515550
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 09 May 2024 17:25:15 GMT
content-type: image/gif
content-length: 2415534
last-modified: Wed, 20 Mar 2024 16:37:09 GMT
etag: "65fb10b5-24dbae"
expires: Sat, 08 Jun 2024 12:07:44 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 19051
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NpkppiTDxU1kvW1ZSLa2K5RRdS280%2BBleO46mb6rhcjUv4UatjUIj9GmShFfrrbdjwY4qV2odVfht7liXE7eX13K3SE9W6vfhC7P1a0UuRM0MNzqOsOzIJDbJMWRJUYR4Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88136345784d56ca-OSL
alt-svc: h3=":443"; ma=86400
|
|
| telegramhk.com/static/css/reset.css | 104.21.31.69 | 200 OK | 8.9 kB |
URL GET HTTP/3telegramhk.com/static/css/reset.css IP104.21.31.69:443
CertificateIssuerGoogle Trust Services LLC Subjecttelegramhk.com Fingerprint9A:A3:BA:FF:68:AA:C8:B1:D2:E6:FB:E5:83:43:BD:73:E3:7B:70:40 ValidityWed, 20 Mar 2024 10:34:25 GMT - Tue, 18 Jun 2024 10:34:24 GMT
File typeUnicode text, UTF-8 text, with very long lines (9445), with no line terminators Hash6df327f88636181efee78bf8298f5a1f 54aa9443f00fac266086f7a40e4dedb10347253e 6e66fb64d1babb5fb94af2063652fb1348e49d82907a32a7a06831c16fadede6
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /static/css/reset.css HTTP/1.1
Host: telegramhk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://telegramhk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 09 May 2024 17:25:14 GMT
content-type: text/css
last-modified: Wed, 20 Mar 2024 16:39:59 GMT
vary: Accept-Encoding
etag: W/"65fb115f-2296"
expires: Fri, 10 May 2024 00:07:42 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 19052
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8qxANueUruKfmuXoI3e%2BYX36I1M0hcDiJMfF3FMhRK06cnCM3a3Pb%2FKJCF93Q8BipJSWy9KcWkAdZumtWvhWfwtTZftts3bhdiKF13lW8QSMnlhqWQbHVFSk3RuzTFq1kA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8813633efc8056ca-OSL
alt-svc: h3=":443"; ma=86400
|
|
| telegramhk.com/static/picture/t_logo.png | 104.21.31.69 | 200 OK | 11 kB |
URL GET HTTP/3telegramhk.com/static/picture/t_logo.png IP104.21.31.69:443
CertificateIssuerGoogle Trust Services LLC Subjecttelegramhk.com Fingerprint9A:A3:BA:FF:68:AA:C8:B1:D2:E6:FB:E5:83:43:BD:73:E3:7B:70:40 ValidityWed, 20 Mar 2024 10:34:25 GMT - Tue, 18 Jun 2024 10:34:24 GMT
File typePNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced Hash2c84be4c4dec401d09a64498cbbd382d 1c7053b083d5e59ed5cb4912c5500f39beaf765e 88afe4caad9d3ef9d7b4a5301d1b2b4378b54d233038079f0145e2f387f4eed9
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /static/picture/t_logo.png HTTP/1.1
Host: telegramhk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://telegramhk.com/
Cookie: __vtins__KNsxLYTnvmFyzGbH=%7B%22sid%22%3A%20%22b6b499be-bbc8-55bb-97dd-948dc19cdb13%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201715277315543%2C%20%22ct%22%3A%201715275515543%7D; __51uvsct__KNsxLYTnvmFyzGbH=1; __51vcke__KNsxLYTnvmFyzGbH=35fe6b18-afc7-599f-b51f-c7b29f7c251a; __51vuft__KNsxLYTnvmFyzGbH=1715275515550
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 09 May 2024 17:25:15 GMT
content-type: image/png
content-length: 11449
last-modified: Wed, 20 Mar 2024 16:37:04 GMT
etag: "65fb10b0-2cb9"
expires: Sat, 08 Jun 2024 12:07:44 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 19051
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GVGWqAJJqFPvfJ9mV3TLMt1DsE7vGP47UIBj1wB%2BQ5f3sA9mrNTtGP4c40Q92S6VNO%2B2WzEuq6ZU2p%2B%2FVVJFc%2BR41pKr4CgTKyrNuuyCb7aWylBFXoGX9wMgUjsUp9p%2BMw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88136345783d56ca-OSL
alt-svc: h3=":443"; ma=86400
|
|
| telegramhk.com/static/css/fonts.css | 104.21.31.69 | 200 OK | 283 B |
URL GET HTTP/3telegramhk.com/static/css/fonts.css IP104.21.31.69:443
CertificateIssuerGoogle Trust Services LLC Subjecttelegramhk.com Fingerprint9A:A3:BA:FF:68:AA:C8:B1:D2:E6:FB:E5:83:43:BD:73:E3:7B:70:40 ValidityWed, 20 Mar 2024 10:34:25 GMT - Tue, 18 Jun 2024 10:34:24 GMT
File typeASCII text, with no line terminators Hash36a3ebaefea705708f8bb3610516c99c fc484689c17df007af23eb3944c9f62b5b25a46b 7a93074ace1edf2a1e4b81ae3754f9adf4bab3cc934ed640dcc26def627a2a2d
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /static/css/fonts.css HTTP/1.1
Host: telegramhk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://telegramhk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 09 May 2024 17:25:14 GMT
content-type: text/css
last-modified: Wed, 20 Mar 2024 16:39:59 GMT
etag: W/"65fb115f-11b"
expires: Fri, 10 May 2024 00:07:42 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 19052
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=c%2BJVEBE5zlB5z6SkMu5i7JdscNi6x%2FTaUiCrqsZHEHQH%2FRxZoTslO2d6J6eFkMcyHeOVP5PwsIGiyzycyMJ5lxThl7%2Ft95OwZS%2BZK5%2Fu617%2B3Yc3Uv%2FXlXk4GOBdt0YPPQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8813633efc8756ca-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| telegramhk.com/static/js/JQuery.js | 104.21.31.69 | 200 OK | 88 kB |
URL GET HTTP/3telegramhk.com/static/js/JQuery.js IP104.21.31.69:443
CertificateIssuerGoogle Trust Services LLC Subjecttelegramhk.com Fingerprint9A:A3:BA:FF:68:AA:C8:B1:D2:E6:FB:E5:83:43:BD:73:E3:7B:70:40 ValidityWed, 20 Mar 2024 10:34:25 GMT - Tue, 18 Jun 2024 10:34:24 GMT
File typeJavaScript source, ASCII text, with very long lines (65446), with CRLF line terminators Hash4fcf018b5c604c47ae980185cf0167c2 fa4ab55b154a5a4c4ef55cfad51a2a2d4407af61 32b42f9bc813dd6bad1b45129eade1df8dd1463908f79505209fbfa1aa71018a
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /static/js/JQuery.js HTTP/1.1
Host: telegramhk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://telegramhk.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 09 May 2024 17:25:14 GMT
content-type: application/javascript
last-modified: Wed, 20 Mar 2024 16:39:59 GMT
vary: Accept-Encoding
etag: W/"65fb115f-155a6"
expires: Fri, 10 May 2024 00:07:42 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 19052
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8rD7yQyHP9rnb1bJvC28fioi9aHhuGv0rrH4s4c9X3syO9meAzCJ8ZKvZRHZbnGj5489WM7erCVbl%2FUke5m2WgP26VwMqEIUWW30r8LGvyQyc3inPQyY6HyeTDXqigs89g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8813633f1cbc56ca-OSL
alt-svc: h3=":443"; ma=86400
|
|
| telegramhk.com/static/js/lazyload.min.js | 104.21.31.69 | 200 OK | 8.9 kB |
URL GET HTTP/3telegramhk.com/static/js/lazyload.min.js IP104.21.31.69:443
CertificateIssuerGoogle Trust Services LLC Subjecttelegramhk.com Fingerprint9A:A3:BA:FF:68:AA:C8:B1:D2:E6:FB:E5:83:43:BD:73:E3:7B:70:40 ValidityWed, 20 Mar 2024 10:34:25 GMT - Tue, 18 Jun 2024 10:34:24 GMT
File typeJavaScript source, ASCII text, with very long lines (9056), with no line terminators Hash797c2156a7211100e9aceff7365be7a4 b70b89caf8cc05c7cbef1077e06994085331c5cc 812cdb2da5fee86d2f5a423fb5010af68f20c594f081b40f3b7f0050736e9ea8
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /static/js/lazyload.min.js HTTP/1.1
Host: telegramhk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://telegramhk.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 09 May 2024 17:25:14 GMT
content-type: application/javascript
last-modified: Wed, 20 Mar 2024 16:39:59 GMT
vary: Accept-Encoding
etag: W/"65fb115f-22bc"
expires: Fri, 10 May 2024 00:07:42 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 19051
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=feSDxCaS4MXd%2FRpF9PO74fMef45NyK1URt%2Fa0orrnIdDbQj%2FJHlanZPGCm3Ks4AAKlSbcDd88vrjFRr2FHJpnU%2FMOmY5yKzyLnkqT3Qy%2BLr4mBdY%2BBkBKf0HKFz%2Bh7y6tA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8813633f2ccb56ca-OSL
alt-svc: h3=":443"; ma=86400
|
|
| sdk.51.la/event/js-sdk-event.min.js?u=KNsxLYTnvmFyzGbH | 163.181.157.117 | 200 OK | 76 kB |
URL GET HTTP/2sdk.51.la/event/js-sdk-event.min.js?u=KNsxLYTnvmFyzGbH IP163.181.157.117:443 ASN#24429 Zhejiang Taobao Network Co.,Ltd
CertificateIssuerGlobalSign nv-sa Subject*.51.la Fingerprint9E:F3:EB:9A:59:E9:6D:6E:48:13:64:78:3C:33:1D:AA:79:52:5B:79 ValidityThu, 20 Apr 2023 01:12:57 GMT - Tue, 21 May 2024 01:12:56 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /event/js-sdk-event.min.js?u=KNsxLYTnvmFyzGbH HTTP/1.1
Host: sdk.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://telegramhk.com
DNT: 1
Connection: keep-alive
Referer: https://telegramhk.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Tengine
content-type: application/javascript
content-length: 21348
date: Sun, 05 May 2024 00:37:23 GMT
vary: Accept-Encoding
x-oss-request-id: 6636D4C31344D1383648E3AB
x-oss-cdn-auth: success
last-modified: Thu, 08 Jun 2023 02:24:58 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 12997830976545422151
x-oss-storage-class: Standard
content-md5: Wy2BPkv8hhmIoHgIIZm53g==
x-oss-server-time: 3
content-encoding: gzip
ali-swift-global-savetime: 1714869443
via: cache12.l2de2[0,0,200-0,H], cache26.l2de2[1,0], ens-cache1.de7[21,21,200-0,M], ens-cache2.de7[22,0]
age: 0
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Thu, 09 May 2024 17:25:15 GMT
x-swift-cachetime: 889928
access-control-allow-origin: *
timing-allow-origin: *
eagleid: a3b5839617152755156452119e
X-Firefox-Spdy: h2
|
|
| telegramhk.com/static/js/jquery.min.js | 104.21.31.69 | 200 OK | 88 kB |
URL GET HTTP/3telegramhk.com/static/js/jquery.min.js IP104.21.31.69:443
CertificateIssuerGoogle Trust Services LLC Subjecttelegramhk.com Fingerprint9A:A3:BA:FF:68:AA:C8:B1:D2:E6:FB:E5:83:43:BD:73:E3:7B:70:40 ValidityWed, 20 Mar 2024 10:34:25 GMT - Tue, 18 Jun 2024 10:34:24 GMT
File typeJavaScript source, ASCII text, with very long lines (65447) Hash826eb77e86b02ab7724fe3d0141ff87c 79cd3587d565afe290076a8d36c31c305a573d18 cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /static/js/jquery.min.js HTTP/1.1
Host: telegramhk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://telegramhk.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 09 May 2024 17:25:14 GMT
content-type: application/javascript
last-modified: Wed, 20 Mar 2024 16:39:59 GMT
vary: Accept-Encoding
etag: W/"65fb115f-15601"
expires: Fri, 10 May 2024 00:07:42 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 19052
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZpRXbsoY22Ju4IT7Vm%2BHDHwlUIVKko%2B0LtTrcHrf9QLwTPeV1rLxDF%2B8LUY7KukJBlvYttaeF6G6yxZ%2FDM6kp0Vv%2BgoCNZpx1gYJzK9KW5iP5zWi2HCS0GHsgpBrXznUYA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8813633f0ca756ca-OSL
alt-svc: h3=":443"; ma=86400
|
|
| telegramhk.com/static/picture/zhongwen_a.png | 104.21.31.69 | 200 OK | 1.5 kB |
URL GET HTTP/3telegramhk.com/static/picture/zhongwen_a.png IP104.21.31.69:443
CertificateIssuerGoogle Trust Services LLC Subjecttelegramhk.com Fingerprint9A:A3:BA:FF:68:AA:C8:B1:D2:E6:FB:E5:83:43:BD:73:E3:7B:70:40 ValidityWed, 20 Mar 2024 10:34:25 GMT - Tue, 18 Jun 2024 10:34:24 GMT
File typePNG image data, 26 x 24, 8-bit/color RGBA, non-interlaced Hash5ef37dda1cf34c87e1d8df3d3ad892d3 e3409fd1acf4a44ed0d5a0655aae8dc036e49a14 3f4916d4dd945744b333087f7dce11b59455de86127eb34bf45970b59ab5187c
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /static/picture/zhongwen_a.png HTTP/1.1
Host: telegramhk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://telegramhk.com/
Cookie: __vtins__KNsxLYTnvmFyzGbH=%7B%22sid%22%3A%20%22b6b499be-bbc8-55bb-97dd-948dc19cdb13%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201715277315543%2C%20%22ct%22%3A%201715275515543%7D; __51uvsct__KNsxLYTnvmFyzGbH=1; __51vcke__KNsxLYTnvmFyzGbH=35fe6b18-afc7-599f-b51f-c7b29f7c251a; __51vuft__KNsxLYTnvmFyzGbH=1715275515550
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 09 May 2024 17:25:15 GMT
content-type: image/png
content-length: 1483
last-modified: Wed, 20 Mar 2024 16:37:04 GMT
etag: "65fb10b0-5cb"
expires: Sat, 08 Jun 2024 12:07:44 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 19051
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CjxmbnZ3Cr09AfaG3YiWWCAiNuzLtEr2jl%2BBoW63ffKUwLJNUXLb9ZHFJBbyDl7TQVkylD634inD4ywENfpFDreM3R1wqOP6hVq%2FfBOsHW%2BQAH4mO1jVNTIBMchsDDFA3w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88136345784656ca-OSL
alt-svc: h3=":443"; ma=86400
|
|
| telegramhk.com/static/picture/anzhuo.jpg | 0.0.0.0 | | 0 B |
URL GET telegramhk.com/static/picture/anzhuo.jpg IP0.0.0.0:0
CertificateIssuerGoogle Trust Services LLC Subjecttelegramhk.com Fingerprint9A:A3:BA:FF:68:AA:C8:B1:D2:E6:FB:E5:83:43:BD:73:E3:7B:70:40 ValidityWed, 20 Mar 2024 10:34:25 GMT - Tue, 18 Jun 2024 10:34:24 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /static/picture/anzhuo.jpg HTTP/1.1
Host: telegramhk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://telegramhk.com/
Cookie: __vtins__KNsxLYTnvmFyzGbH=%7B%22sid%22%3A%20%22b6b499be-bbc8-55bb-97dd-948dc19cdb13%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201715277315543%2C%20%22ct%22%3A%201715275515543%7D; __51uvsct__KNsxLYTnvmFyzGbH=1; __51vcke__KNsxLYTnvmFyzGbH=35fe6b18-afc7-599f-b51f-c7b29f7c251a; __51vuft__KNsxLYTnvmFyzGbH=1715275515550
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
|
|
| telegramhk.com/static/picture/d3.gif | 104.21.31.69 | 200 OK | 2.3 MB |
URL GET HTTP/3telegramhk.com/static/picture/d3.gif IP104.21.31.69:443
CertificateIssuerGoogle Trust Services LLC Subjecttelegramhk.com Fingerprint9A:A3:BA:FF:68:AA:C8:B1:D2:E6:FB:E5:83:43:BD:73:E3:7B:70:40 ValidityWed, 20 Mar 2024 10:34:25 GMT - Tue, 18 Jun 2024 10:34:24 GMT
Size2.3 MB (2254846 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /static/picture/d3.gif HTTP/1.1
Host: telegramhk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://telegramhk.com/
Cookie: __vtins__KNsxLYTnvmFyzGbH=%7B%22sid%22%3A%20%22b6b499be-bbc8-55bb-97dd-948dc19cdb13%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201715277315543%2C%20%22ct%22%3A%201715275515543%7D; __51uvsct__KNsxLYTnvmFyzGbH=1; __51vcke__KNsxLYTnvmFyzGbH=35fe6b18-afc7-599f-b51f-c7b29f7c251a; __51vuft__KNsxLYTnvmFyzGbH=1715275515550
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 09 May 2024 17:25:15 GMT
content-type: image/gif
content-length: 2254846
last-modified: Wed, 20 Mar 2024 16:37:14 GMT
etag: "65fb10ba-2267fe"
expires: Sat, 08 Jun 2024 12:07:44 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 19051
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CMuF8weFWytpt2TEfQLJU8lhzusVc%2BzSmXQG4WZrXqvLQSg5WDLCz889JOIcmVNegZzaSn5uC7HyNEHoJo%2FPeZzEVIJ0fA1Yul%2BduEmjgsdb44N1%2FHfWvmceAqk%2Fms0VfQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88136345785556ca-OSL
alt-svc: h3=":443"; ma=86400
|
|
| telegramhk.com/static/css/style.min.css | 104.21.31.69 | 200 OK | 110 kB |
URL GET HTTP/3telegramhk.com/static/css/style.min.css IP104.21.31.69:443
CertificateIssuerGoogle Trust Services LLC Subjecttelegramhk.com Fingerprint9A:A3:BA:FF:68:AA:C8:B1:D2:E6:FB:E5:83:43:BD:73:E3:7B:70:40 ValidityWed, 20 Mar 2024 10:34:25 GMT - Tue, 18 Jun 2024 10:34:24 GMT
Size110 kB (110130 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /static/css/style.min.css HTTP/1.1
Host: telegramhk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://telegramhk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 09 May 2024 17:25:14 GMT
content-type: text/css
last-modified: Wed, 20 Mar 2024 16:39:59 GMT
vary: Accept-Encoding
etag: W/"65fb115f-1ae32"
expires: Fri, 10 May 2024 00:07:42 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 19052
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jVkDw7m9TibCF6MFzwKBMpbxkbpu%2F2WIM11%2F6GfEVe1Veg7K6HE0qQITjho6EPIpuOfNnBaqVVUZZ16RxRcb2Jne9bh0a54cWPJwfVGtlW4AOuPGS7QW%2FL193z08H%2F5UFg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8813633eec6f56ca-OSL
alt-svc: h3=":443"; ma=86400
|
|
| telegramhk.com/static/picture/simi.gif | 104.21.31.69 | 200 OK | 2.2 MB |
URL GET HTTP/3telegramhk.com/static/picture/simi.gif IP104.21.31.69:443
CertificateIssuerGoogle Trust Services LLC Subjecttelegramhk.com Fingerprint9A:A3:BA:FF:68:AA:C8:B1:D2:E6:FB:E5:83:43:BD:73:E3:7B:70:40 ValidityWed, 20 Mar 2024 10:34:25 GMT - Tue, 18 Jun 2024 10:34:24 GMT
Size2.2 MB (2202471 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /static/picture/simi.gif HTTP/1.1
Host: telegramhk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://telegramhk.com/
Cookie: __vtins__KNsxLYTnvmFyzGbH=%7B%22sid%22%3A%20%22b6b499be-bbc8-55bb-97dd-948dc19cdb13%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201715277315543%2C%20%22ct%22%3A%201715275515543%7D; __51uvsct__KNsxLYTnvmFyzGbH=1; __51vcke__KNsxLYTnvmFyzGbH=35fe6b18-afc7-599f-b51f-c7b29f7c251a; __51vuft__KNsxLYTnvmFyzGbH=1715275515550
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 09 May 2024 17:25:15 GMT
content-type: image/gif
content-length: 2202471
last-modified: Wed, 20 Mar 2024 16:37:16 GMT
etag: "65fb10bc-219b67"
expires: Sat, 08 Jun 2024 12:07:44 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 19051
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WQ2LGBzZdnTvUZzgPULZK1WuxVjyqyhMsPDS9GGJby86oOXITC7CxERLLM5MxKUIDAx1pBn7ghXE8fCjl3dsuPJ6Q8XPWn0pYIaQqmoQhHPmEPeXr7yVfLJpsMKcU8q0uA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88136345785256ca-OSL
alt-svc: h3=":443"; ma=86400
|
|
| telegramhk.com/page/2 | 104.21.31.69 | 404 Not Found | 146 B |
IP104.21.31.69:443
CertificateIssuerGoogle Trust Services LLC Subjecttelegramhk.com Fingerprint9A:A3:BA:FF:68:AA:C8:B1:D2:E6:FB:E5:83:43:BD:73:E3:7B:70:40 ValidityWed, 20 Mar 2024 10:34:25 GMT - Tue, 18 Jun 2024 10:34:24 GMT
File typeHTML document, ASCII text, with no line terminators Hash40b3fc14254227ec5012d996bf90c4e1 b0dd06eb5a779151151101337889ff09953f8ac0 740816c1b61e4a8443c26d30d3eecfea04815fca8cd605a142f9d8a35f86ceca
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /page/2 HTTP/1.1
Host: telegramhk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://telegramhk.com/
Cookie: __vtins__KNsxLYTnvmFyzGbH=%7B%22sid%22%3A%20%22b6b499be-bbc8-55bb-97dd-948dc19cdb13%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201715277315543%2C%20%22ct%22%3A%201715275515543%7D; __51uvsct__KNsxLYTnvmFyzGbH=1; __51vcke__KNsxLYTnvmFyzGbH=35fe6b18-afc7-599f-b51f-c7b29f7c251a; __51vuft__KNsxLYTnvmFyzGbH=1715275515550
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Thu, 09 May 2024 17:25:20 GMT
content-type: text/html
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aezC512Q9FpODkg9CMogG27fItczglEmUTA34L7HD0iKAX5dXo52ZsL8191j5etybxkqt3Fju1unHRPGcEldseSi37eT0nMIKiYnqFLXvr5iFu1YTaMvgY9LuGdHzUVZNQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881363624d1d56ca-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| | 104.21.31.69 | 200 OK | 66 kB |
URL User Request GET HTTP/2IP104.21.31.69:443
CertificateIssuerGoogle Trust Services LLC Subjecttelegramhk.com Fingerprint9A:A3:BA:FF:68:AA:C8:B1:D2:E6:FB:E5:83:43:BD:73:E3:7B:70:40 ValidityWed, 20 Mar 2024 10:34:25 GMT - Tue, 18 Jun 2024 10:34:24 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET / HTTP/1.1
Host: telegramhk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 09 May 2024 17:25:14 GMT
content-type: text/html
last-modified: Wed, 20 Mar 2024 16:43:31 GMT
vary: Accept-Encoding
strict-transport-security: max-age=31536000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7Nm%2Frmo9CXpQuyq87SJDDVzvol1HKvVsyb%2FckusZzPdB%2BBzNHYniSSFeexfwHbMCuOT7vI%2B6pz4xY5RNBTfquJty%2FOFd0Bm4cIafeTiKkxWV5sDKhPGrvTkzpZlKJOjFzA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8813633adbf01c12-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|