Report - ri8hc4gbb.cc.rs6.net/tn.jsp?f=001594Msdcsdf_78mmJ_r7MvCfZ7eJyiivGT0Jq4oxzc4fcl_GGavSUUq7p2PCi-wkgwQT7nbLxZwCxVz4LdXXKmresIkJw6FS_aUJiFOWeBRLok7D_PfXcCfXMWJdzXBfTdWmyJ_UYkW5-ElqXs57MpbFk0VgoZRgDZ1t4lKP2allvh8kBqDI3Gw==&c=&ch==&__=//T5m4d8f8pWmDNhkDJDSU/T5m4d8f8pWmDNhkDJDSU/amFzb25AcHNpLWluYy51cw==

Report Overview

Submitted URL
ri8hc4gbb.cc.rs6.net/tn.jsp?f=001594Msdcsdf_78mmJ_r7MvCfZ7eJyiivGT0Jq4oxzc4fcl_GGavSUUq7p2PCi-wkgwQT7nbLxZwCxVz4LdXXKmresIkJw6FS_aUJiFOWeBRLok7D_PfXcCfXMWJdzXBfTdWmyJ_UYkW5-ElqXs57MpbFk0VgoZRgDZ1t4lKP2allvh8kBqDI3Gw==&c=&ch==&__=//T5m4d8f8pWmDNhkDJDSU/T5m4d8f8pWmDNhkDJDSU/amFzb25AcHNpLWluYy51cw==
IP
208.75.122.11
ASN
#40444 ASN-CC
Submitted
2024-03-29 13:40:15
Access
public
Website Title
98921e9c01e1a19f361add87586564b96606c4b3aaef4
Final URL
luxuway.com/beebb091955c06fa68b3eb8afc0bae516606c4b3aaf30PASbeebb091955c06fa68b3eb8afc0bae516606c4b3aaf32
Tags
microsoft phishing outlook
urlquery detections
Phishing - Microsoft
Phishing - Microsoft Outlook

Detections

urlquery
16
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
unpkg.com	11693	2016-01-06	2016-01-08	2024-03-28	816 B	84 kB	104.16.124.175
ri8hc4gbb.cc.rs6.net	unknown	unknown	No data	No data	751 B	426 B	208.75.122.11
bedfoundation.net	unknown	2022-10-08	2023-01-12	2024-03-26	556 B	382 B	103.191.241.46
luxuway.com	unknown	2023-12-19	2023-12-19	2024-03-28	12 kB	672 kB	104.21.86.163
challenges.cloudflare.com	unknown	2009-02-17	2021-10-20	2024-03-28	2.0 kB	50 kB	104.17.3.184

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (54)

	URL	Size	First Seen	Last Seen
	unpkg.com/axios/dist/axios.min.js	42 kB	2024-03-15	2024-04-27
Pretty URL unpkg.com/axios/dist/axios.min.js IP 104.16.124.175 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-15 17:36:33 Last Seen2024-04-27 04:04:33 Times Seen10010 Hash 3b5b3d36fde8ffe8ed76b1efbfc65410 d63107d0912fdb387530d5ce2d512c928d73d122 29d600462a30694efd15b9848b4ca42d178cd067009275c35a30580121114304 Loading...

	unknown	37 B	2023-04-11	2024-04-27
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:31:25 Last Seen2024-04-27 08:19:20 Times Seen231878 Hash 29d0c84b9d1d8da446a6062c6a840ad9 6d6b3a6065667c7c50d92f3889c85ed65a9ad784 3c3cbdb71d0d2c22f504f4d63d8a6ffe8d250cde7e58300619be35b6bbab26a1 Loading...

	luxuway.com/boot/b1f77fad1ca11ef54ba06706bde3aaae6606c4b3bad9e	51 kB	2023-03-07	2024-04-27
Pretty URL luxuway.com/boot/b1f77fad1ca11ef54ba06706bde3aaae6606c4b3bad9e IP 104.21.86.163 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:44 Last Seen2024-04-27 08:21:05 Times Seen244924 Hash 67176c242e1bdc20603c878dee836df3 27a71b00383d61ef3c489326b3564d698fc1227c 56c12a125b021d21a69e61d7190cefa168d6c28ce715265cea1b3b0112d169c4 Loading...

	luxuway.com/beebb091955c06fa68b3eb8afc0bae516606c4b3aaf30PASbeebb091955c06fa68b3eb8afc0bae516606c4b3aaf32	0 B	2023-03-07	2024-04-27
Pretty URL luxuway.com/beebb091955c06fa68b3eb8afc0bae516606c4b3aaf30PASbeebb091955c06fa68b3eb8afc0bae516606c4b3aaf32 IP 104.21.86.163 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-27 08:21:46 Times Seen37114775 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	unknown	79 B	2023-04-11	2024-04-27
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:38:58 Last Seen2024-04-27 08:17:48 Times Seen124584 Hash aa049e2749b8531cb8f233c2f64fc2b2 b611a5a62c1813ae5b4763378b3a4a565556530a e52e51d5897d7a179089ddcf8f5de7aeb3ef4f27b054b63e937cf308b685c9e2 Loading...

	luxuway.com/jm/b1f77fad1ca11ef54ba06706bde3aaae6606c4b3bada0	6.4 kB	2023-10-11	2024-04-27
Pretty URL luxuway.com/jm/b1f77fad1ca11ef54ba06706bde3aaae6606c4b3bada0 IP 104.21.86.163 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-11 19:03:08 Last Seen2024-04-27 04:04:31 Times Seen43800 Hash 82ff6e77e3b8f004b23294185e108264 03c685b50fd4587427495348cd1231882a8c48d0 0e230a53a5d5abd125c2a8e1cdd97b32ddd84a9f7fd07c23bff95413886b05fa Loading...

	luxuway.com/jq/b1f77fad1ca11ef54ba06706bde3aaae6606c4b3bad94	86 kB	2023-03-07	2024-04-27
Pretty URL luxuway.com/jq/b1f77fad1ca11ef54ba06706bde3aaae6606c4b3bad94 IP 104.21.86.163 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-27 08:21:05 Times Seen385011 Hash 2f6b11a7e914718e0290410e85366fe9 69bb69e25ca7d5ef0935317584e6153f3fd9a88c 05b85d96f41fff14d8f608dad03ab71e2c1017c2da0914d7c59291bad7a54f8e Loading...

		Size	First Seen	Last Seen
	#1 Eval - ad9afb3fcda674b8a241b65d37f6101d	28 B	2024-03-29	2024-03-29
Pretty Observations First Seen2024-03-29 14:40:21 Last Seen2024-03-29 14:40:21 Times Seen1 Hash ad9afb3fcda674b8a241b65d37f6101d ed567c73ce2b79a5ff169ce7cd8594d2ea5e55d2 9efea004ab0a791e77d3cee318cd5aa724034416b49235842cf534d280513494 Loading...

	#2 Eval - 38723d96800077d1c66ce76b14efe81e	28 B	2024-03-29	2024-03-29
Pretty Observations First Seen2024-03-29 14:40:21 Last Seen2024-03-29 14:40:21 Times Seen1 Hash 38723d96800077d1c66ce76b14efe81e 8c149bd0e4c71cb845048a740bc5fa5a3e08723a fb6ebf0591e16207e2ed12a7db7665a2aec07f653862d21f90e5d7c553c9947a Loading...

	#3 Eval - d556e6676414bef4259b88afb54de04c	28 B	2024-03-29	2024-03-29
Pretty Observations First Seen2024-03-29 14:40:21 Last Seen2024-03-29 14:40:21 Times Seen1 Hash d556e6676414bef4259b88afb54de04c 1cc07f009c084af939d090d6b56fe4b19fa56f75 c69957b1b93a1f6971acdcd1ffbc61b6c1696c9771eb070d9cfcbf44980fdc1c Loading...

	#4 Eval - 2fcb2e01d1440bdb474fd0a043792c34	28 B	2024-03-29	2024-03-29
Pretty Observations First Seen2024-03-29 14:40:21 Last Seen2024-03-29 14:40:21 Times Seen1 Hash 2fcb2e01d1440bdb474fd0a043792c34 e7c17dead3e879c6e685a75c16c72a7f83eaa908 4ba2bc184331cda1bdbccb1bcf85a6212ae587c6d260b78a8d2ca350f822f9f2 Loading...

	#5 Eval - 3c1d8f8499f61ee32a6d24cfb76ce004	28 B	2024-03-29	2024-03-29
Pretty Observations First Seen2024-03-29 14:40:21 Last Seen2024-03-29 14:40:21 Times Seen1 Hash 3c1d8f8499f61ee32a6d24cfb76ce004 33e1bc3c5281ac78851c547a47746b659683e19e 7b3dbdb82838b9d82a7681b78f9d49e35d20f052f30bbdc8d4422ce1833da13e Loading...

	#6 Eval - 48a671dffbbe2649858220d610dd6363	28 B	2024-03-29	2024-03-29
Pretty Observations First Seen2024-03-29 14:40:21 Last Seen2024-03-29 14:40:21 Times Seen1 Hash 48a671dffbbe2649858220d610dd6363 6e17ed246f5f8682c546b117d8836e232b429ff5 f627da284e06e8c85c7148706500f8cdf138da3ed564c2cb052cab5e4f9b73cb Loading...

	#7 Eval - 16ebb05d24aa08abeb6c1cf2026b1462	28 B	2024-03-29	2024-03-29
Pretty Observations First Seen2024-03-29 14:40:21 Last Seen2024-03-29 14:40:21 Times Seen1 Hash 16ebb05d24aa08abeb6c1cf2026b1462 8ea73ecbee37a934957f0a673c95de2263e00876 d9287fa1807609b4b9370714709f97ef46c6b35ee1108d2774b97b7510744d17 Loading...

	#8 Eval - 190ef4edaf4aba9ce6829ea860b2cb65	61 B	2024-03-22	2024-04-04
Pretty Observations First Seen2024-03-22 10:35:33 Last Seen2024-04-04 15:56:11 Times Seen1815 Hash 190ef4edaf4aba9ce6829ea860b2cb65 84010fdde06dc04427d11aafdf4ba6495e14eff8 0334ef3ce9e77db17376ce3e320fe96b901743f1baa1096cc4066922ac672f8c Loading...

	#9 Eval - 4d8b2f1f826fb39f145dba00cad10c6f	28 B	2024-03-29	2024-03-29
Pretty Observations First Seen2024-03-29 14:40:21 Last Seen2024-03-29 14:40:21 Times Seen1 Hash 4d8b2f1f826fb39f145dba00cad10c6f d265c14a5dc8f4bcbc12a5d9ea001c9989bd3780 79a576c072f5a55107a5ef1be919b6eed3cde228576c2416e6b060448ad7c9f4 Loading...

	#10 Eval - 55909bcae9170dcc38f9551a19df9e3f	28 B	2024-03-29	2024-03-29
Pretty Observations First Seen2024-03-29 14:40:21 Last Seen2024-03-29 14:40:21 Times Seen1 Hash 55909bcae9170dcc38f9551a19df9e3f 77841c4a612350fa0743d41093bd08e7de755b71 c85de566826a446b9fda9cc10ac04960609d1101a4554718f5cdb4e2d271c215 Loading...

	#11 Eval - c5fc38ca3d39d99d94915c13257e2e7d	28 B	2024-03-29	2024-03-29
Pretty Observations First Seen2024-03-29 14:40:21 Last Seen2024-03-29 14:40:21 Times Seen1 Hash c5fc38ca3d39d99d94915c13257e2e7d 82f331733a0708a8f02c2222d15a33d3d4f7d54f 20cabd1d9fcd6c906e29358ffcf7f5d61145d13c95cf642052d26fe3023fcf27 Loading...

	#12 Eval - 9e925e9341b490bfd3b4c4ca3b0c1ef2	4 B	2023-03-07	2024-04-27
Pretty Observations First Seen2023-03-07 01:03:43 Last Seen2024-04-27 07:23:07 Times Seen350203 Hash 9e925e9341b490bfd3b4c4ca3b0c1ef2 c2543fff3bfa6f144c2f06a7de6cd10c0b650cae 1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408 Loading...

	#13 Eval - 2528c59afebd131cb901fb0b1021121d	28 B	2024-03-29	2024-03-29
Pretty Observations First Seen2024-03-29 14:40:21 Last Seen2024-03-29 14:40:21 Times Seen1 Hash 2528c59afebd131cb901fb0b1021121d a50c134526f68c10fc185b65cea0e3337749f81f cb53060a7d4adb63ebf388a431267412116a92ca9b516204e073e6437a57d063 Loading...

	#14 Eval - bba29ae5cbd2dce41769af1f8dfb6546	28 B	2024-03-29	2024-03-29
Pretty Observations First Seen2024-03-29 14:40:21 Last Seen2024-03-29 14:40:21 Times Seen1 Hash bba29ae5cbd2dce41769af1f8dfb6546 3cd550c9458666062b55a74e2f8551f5d18dd4c4 b38a2954e89f9202d816e40f20a39ee9789278bf46333fd47a38ae10e4e07028 Loading...

	#15 Eval - 87dc51d2f43d21914cdf37efe670f095	1.1 kB	2024-03-29	2024-03-29
Pretty Observations First Seen2024-03-29 14:40:21 Last Seen2024-03-29 14:44:21 Times Seen3 Hash 87dc51d2f43d21914cdf37efe670f095 ceaaa035322805910257e1eef6463cd731c3e302 d5267b3774548f56de02c971c1ee2936edea26f2359c8acebf07f2163f8f05e5 Loading...

	#16 Eval - 78115127e73b0ed0c267366e22a8de2e	28 B	2024-03-29	2024-03-29
Pretty Observations First Seen2024-03-29 14:40:21 Last Seen2024-03-29 14:40:21 Times Seen1 Hash 78115127e73b0ed0c267366e22a8de2e 328c36f03fe8c758995ecda34bdfbc854a83ec88 dca62502197fc2bff04e1795adeb51bab6dbce15a2f62d0b2654dc5ca81c7f4b Loading...

	#17 Eval - dc32bb277dcefa2e8e873d91a6ac8b02	28 B	2024-03-29	2024-03-29
Pretty Observations First Seen2024-03-29 14:40:21 Last Seen2024-03-29 14:40:21 Times Seen1 Hash dc32bb277dcefa2e8e873d91a6ac8b02 1cac4c076ecbfcdf23c4777c8021a3d365322b6f f6c05112fbd9300ff88702d89599b2f997cfe35de19cd8fe7def72534b5de65d Loading...

	#18 Eval - 76e84e32075e1bc0a43d873890c67d30	28 B	2024-03-29	2024-03-29
Pretty Observations First Seen2024-03-29 14:40:21 Last Seen2024-03-29 14:40:21 Times Seen1 Hash 76e84e32075e1bc0a43d873890c67d30 06fa401363d9d634cbe967dfd34d8f82664ea823 afe7b2c7079103f6764294054635df10fad617a5fd9f563cd1ad232010a3f582 Loading...

	#19 Eval - 0ffcc40a68396e4936f7ebebe122a6fd	28 B	2024-03-29	2024-03-29
Pretty Observations First Seen2024-03-29 14:40:21 Last Seen2024-03-29 14:40:21 Times Seen1 Hash 0ffcc40a68396e4936f7ebebe122a6fd aae3cbda2ff353ff5d24d99a7e5bc352c7c56f12 70f292b2ee63116adf496c19dd5d3ee49f67040ff9fccf0acd9a7d58265e6200 Loading...

	#20 Eval - 11317e188f07a1541449d945672198f4	28 B	2024-03-29	2024-03-29
Pretty Observations First Seen2024-03-29 14:40:21 Last Seen2024-03-29 14:40:21 Times Seen1 Hash 11317e188f07a1541449d945672198f4 6456e9bdc2ae631f1be66d0a1d0066d8f1bb1afc cab3057046dd334b0d14fd71ecc664f1cc25a2c07fa9791d47d4348ee51ea74f Loading...

	#21 Eval - 86c34f1a3ab27dc6db082f8e7c403093	28 B	2024-03-29	2024-03-29
Pretty Observations First Seen2024-03-29 14:40:21 Last Seen2024-03-29 14:40:21 Times Seen1 Hash 86c34f1a3ab27dc6db082f8e7c403093 f9ec1dfbf188cd34acf5f8c96c7c95f4da9c8066 0d342f3c930d2cfacf3fa5cd874638f64fdb327722f714028f0bd48f151a2006 Loading...

	#22 Eval - 035a229eb7486e471740c62b1894b4a8	28 B	2024-03-29	2024-03-29
Pretty Observations First Seen2024-03-29 14:40:22 Last Seen2024-03-29 14:40:22 Times Seen1 Hash 035a229eb7486e471740c62b1894b4a8 0950e0a9663af6483242da4925e59dbfe7e44d11 122a3ef7eda3e1f697e49b7cff64d1acdaf3e8293afd2778db95816300b9618b Loading...

	#23 Eval - fe93f91d5a06282f18ab684bd101a284	28 B	2024-03-29	2024-03-29
Pretty Observations First Seen2024-03-29 14:40:22 Last Seen2024-03-29 14:40:22 Times Seen1 Hash fe93f91d5a06282f18ab684bd101a284 4fb980d34d64b815c16aa79ff8ba6e90cd3a7d85 773e0e5e1e5487cb374e4b2d127bc41dbc1ff436df2e96ea79fe9f1e45dfcb39 Loading...

	#24 Eval - bfa0736c7731ef8da03f904aa29599c6	28 B	2024-03-29	2024-03-29
Pretty Observations First Seen2024-03-29 14:40:22 Last Seen2024-03-29 14:40:22 Times Seen1 Hash bfa0736c7731ef8da03f904aa29599c6 652003519312d9bc2a117705128775836465b66c 1e0de24d94f895e3d12f6c780e4e9a1e5309dd3e0674ace9d23618e372c57ca6 Loading...

	#25 Eval - 0a1b85455bf74782b8ec2245cff19629	28 B	2024-03-29	2024-03-29
Pretty Observations First Seen2024-03-29 14:40:22 Last Seen2024-03-29 14:40:22 Times Seen1 Hash 0a1b85455bf74782b8ec2245cff19629 d961234a7ad27ae53f665190ae008e3ef9d595c1 dea740b1e5da262f8a1b6777a3489545d56f9238fd192ac29e05a4753d738b24 Loading...

	#26 Eval - 7e3eff4be89330b56ed65a516154dcc5	28 B	2024-03-29	2024-03-29
Pretty Observations First Seen2024-03-29 14:40:22 Last Seen2024-03-29 14:40:22 Times Seen1 Hash 7e3eff4be89330b56ed65a516154dcc5 c110d05a231e794db7cbcd6edada073e5b9c7b67 14a80c80eecaa38091943bc065751a5d891c4e430c45679e1d66ea3c4873af4d Loading...

	#27 Eval - db053e0ec84a2d5e2c2aabbe626fd688	165 B	2024-03-22	2024-04-04
Pretty Observations First Seen2024-03-22 10:38:02 Last Seen2024-04-04 15:20:10 Times Seen413 Hash db053e0ec84a2d5e2c2aabbe626fd688 a4981a02400b0582b8fbcb7520913ad26da5a2bc efcbfe5540a9f6f735f5e48e75fe356fce202bb35fefcfaacc48ba20732956c5 Loading...

	#28 Eval - 0f52f7d8604281f0c9573a22e17fed77	28 B	2024-03-29	2024-03-29
Pretty Observations First Seen2024-03-29 14:40:22 Last Seen2024-03-29 14:40:22 Times Seen1 Hash 0f52f7d8604281f0c9573a22e17fed77 ed488107432eb329067b10ec0ca478147ef54610 5446682036e1136413d489a46dc167127cff69c889d8834d5001a2c29b57b059 Loading...

	#29 Eval - f7b3c5b0e66d9a9a17e758ed996902d2	28 B	2024-03-29	2024-03-29
Pretty Observations First Seen2024-03-29 14:40:22 Last Seen2024-03-29 14:40:22 Times Seen1 Hash f7b3c5b0e66d9a9a17e758ed996902d2 b8bb222b6998e849c1e3e2835f790da43240bc90 ca874bb0d1ed057877a0c9686f2da16cd9f0ba45eff11cd838cddc1c7223726d Loading...

	#30 Eval - 6b888561ae387ad69c710a23d529e4cd	28 B	2024-03-29	2024-03-29
Pretty Observations First Seen2024-03-29 14:40:22 Last Seen2024-03-29 14:40:22 Times Seen1 Hash 6b888561ae387ad69c710a23d529e4cd 9d499a0348593d495320789207df591d186fe1b9 9aeabe98ba0f3b65ef1586c9242a4063aa05077c07f7bdf28f2abc89c3253400 Loading...

	#31 Eval - ce4abb373a1338a32a6fa5b4c2ff09ce	28 B	2024-03-29	2024-03-29
Pretty Observations First Seen2024-03-29 14:40:22 Last Seen2024-03-29 14:40:22 Times Seen1 Hash ce4abb373a1338a32a6fa5b4c2ff09ce 844ee5e08aabbdfc8154cbaf6a1a73fa8637be0c ddc420c0ce3aac030d37efdffa5384994c438c5a83c76b9e9c26578a50ad8e7f Loading...

	#32 Eval - c417e90419de2b6f3341ffc5e127e024	28 B	2024-03-29	2024-03-29
Pretty Observations First Seen2024-03-29 14:40:22 Last Seen2024-03-29 14:40:22 Times Seen1 Hash c417e90419de2b6f3341ffc5e127e024 a2a50c1f1cbfb7d6cb3f6c0add36ccc3c2b21868 1ad00a421eeabea7bc3291b5511ef2ee588486f95651610c1efcf03004fd9541 Loading...

	#33 Eval - a65c59eb8e9b099836ea2dedf6985a3b	28 B	2024-03-29	2024-03-29
Pretty Observations First Seen2024-03-29 14:40:22 Last Seen2024-03-29 14:40:22 Times Seen1 Hash a65c59eb8e9b099836ea2dedf6985a3b cfe0deadbe92fcfbd41e04c03f7dd0f34ec15b50 7a878a5887a915c9dbc4379bcc401506c3afa2a31b1e50cb01ea498d9118ac4f Loading...

	#34 Eval - 38f9f2e14d68780af56c4706ff399345	28 B	2024-03-29	2024-03-29
Pretty Observations First Seen2024-03-29 14:40:22 Last Seen2024-03-29 14:40:22 Times Seen1 Hash 38f9f2e14d68780af56c4706ff399345 07aad40038942ad0a8651cfcd8a7afe1e72090ad 4b679d6a72280fca158fb06d350b8ade4dc5e66d77fd83e579a9de16d3308e57 Loading...

	#35 Eval - df74fef4880ffa447a3fa25c2c90aebe	28 B	2024-03-29	2024-03-29
Pretty Observations First Seen2024-03-29 14:40:22 Last Seen2024-03-29 14:40:22 Times Seen1 Hash df74fef4880ffa447a3fa25c2c90aebe a68ab90e5942e665f5606a988516c7d1bf011bf5 2d583eb07a5159ad6c477f80fc88184e9fc5d729edea786f3312299d2766e44a Loading...

	#36 Eval - 81e4cfa083c0ab67ab1b0eac5c664ffa	28 B	2024-03-29	2024-03-29
Pretty Observations First Seen2024-03-29 14:40:22 Last Seen2024-03-29 14:40:22 Times Seen1 Hash 81e4cfa083c0ab67ab1b0eac5c664ffa a6e80c76c66742ccbb44ce8947980a24fc8942aa 460c32a049d92acb965ccd0300b984bdc967e41667a4061b41c3a624f01def4f Loading...

	#37 Eval - 211fb414bda9cab6f9d23661f139d8e2	28 B	2024-03-29	2024-03-29
Pretty Observations First Seen2024-03-29 14:40:22 Last Seen2024-03-29 14:40:22 Times Seen1 Hash 211fb414bda9cab6f9d23661f139d8e2 28973c5106acc3ffa213dc41874e070da32e1d10 9f396ce921082364e3301780fbd3b8a43f2f2467f191972d508bb05e6f6f6b44 Loading...

	#38 Eval - 629919d337af7462e3e8438f1f499087	28 B	2024-03-29	2024-03-29
Pretty Observations First Seen2024-03-29 14:40:22 Last Seen2024-03-29 14:40:22 Times Seen1 Hash 629919d337af7462e3e8438f1f499087 c91fddf7a1f568b060313613c9ac7d5cc69d2bcb 9d5ad458fadfaf54b0473e7599faf277918c2cc303220cef180d1e260cb05674 Loading...

	#39 Eval - 80ee69d64dfc32c75e504e982f2c9773	28 B	2024-03-29	2024-03-29
Pretty Observations First Seen2024-03-29 14:40:22 Last Seen2024-03-29 14:40:22 Times Seen1 Hash 80ee69d64dfc32c75e504e982f2c9773 e414cb39d72fb591dd4b5d05ce23b5d8ea5e9a57 91bf6acf508d5794a510aaad8ee84bfc1af8b0906dba0b4e37cb9325e53bf77d Loading...

	#40 Eval - 14942ac41a0681dee9a2c96dec79671f	28 B	2024-03-29	2024-03-29
Pretty Observations First Seen2024-03-29 14:40:22 Last Seen2024-03-29 14:40:22 Times Seen1 Hash 14942ac41a0681dee9a2c96dec79671f b62aeb4ff0d063cffe44fd13fc4fbb243e39adbd b2b3007874bf4816602d9eaa22638bd545ba6eeeeebf6b7e996d38f2937f5545 Loading...

	#41 Eval - c5bd830b25ded6f2f7290800d23b6fbf	28 B	2024-03-29	2024-03-29
Pretty Observations First Seen2024-03-29 14:40:22 Last Seen2024-03-29 14:40:22 Times Seen1 Hash c5bd830b25ded6f2f7290800d23b6fbf acccb96e5165fa1dc119248bfb4f27c7a554c99a 7a7a86d1229b6bedb315312447e8c806cecf50581197b25a65ca9880e1b54cd0 Loading...

	#42 Eval - 3f6dde9eea240add8027a4fa51b7cdd6	28 B	2024-03-29	2024-03-29
Pretty Observations First Seen2024-03-29 14:40:22 Last Seen2024-03-29 14:40:22 Times Seen1 Hash 3f6dde9eea240add8027a4fa51b7cdd6 650a6503c53bc827173d016bafcf272c0ff687c9 95bffa388ce20c6037b6b055474ec9307bd567f7b17c05865ee7b7697b3ee9ff Loading...

	#43 Eval - bc93039d6be4af4ece4fba0c6ce4f474	28 B	2024-03-29	2024-03-29
Pretty Observations First Seen2024-03-29 14:40:22 Last Seen2024-03-29 14:40:22 Times Seen1 Hash bc93039d6be4af4ece4fba0c6ce4f474 265fbd17b589b95aa4c0f69d9b1d4caced70638b 2ce4a5be8b3a971cb32118c5d31e9914be3046a3b7fb9035f7ad008c005f81f9 Loading...

	#44 Eval - a129ff1ba39368d1ccd827114b46d037	28 B	2024-03-29	2024-03-29
Pretty Observations First Seen2024-03-29 14:40:22 Last Seen2024-03-29 14:40:22 Times Seen1 Hash a129ff1ba39368d1ccd827114b46d037 06d02b185647fdfd3fc034596e3e8893f17f24c4 892c97cfdfed07456936a38ffeab7c240ae953192a4fea2785a2765a649337a4 Loading...

	#45 Eval - 359e399825897234fc20b0701649a55d	28 B	2024-03-29	2024-03-29
Pretty Observations First Seen2024-03-29 14:40:22 Last Seen2024-03-29 14:40:22 Times Seen1 Hash 359e399825897234fc20b0701649a55d 2bab21819c8584fe056bf68cf78955ff97eb963c 8b7974b0a9b1a3b225a46b36223ae9a9bf9db9953b9501941168713d91cda5d7 Loading...

	#46 Eval - a908a7e7762c6667ffbee1f12c690a10	28 B	2024-03-29	2024-03-29
Pretty Observations First Seen2024-03-29 14:40:22 Last Seen2024-03-29 14:40:22 Times Seen1 Hash a908a7e7762c6667ffbee1f12c690a10 1bb2269b29226730d173fd048f740f521aa37329 56d0b654e32866447bb89582d93feccb54766ba5388d2785f871d60610c0a7d1 Loading...

	#47 Eval - 0bbc1e642a136d7849dcc4af29ed9111	28 B	2024-03-29	2024-03-29
Pretty Observations First Seen2024-03-29 14:40:22 Last Seen2024-03-29 14:40:22 Times Seen1 Hash 0bbc1e642a136d7849dcc4af29ed9111 e677c51e3aafdb86f12e9e1be095be31e69ca931 eb2c26d7c161ea2f5d09882f81bd15f3e8316f05b1a40262a2efeea5b1b76d0f Loading...

HTTP Transactions (24)

URL IP Response Size

ri8hc4gbb.cc.rs6.net/tn.jsp?f=001594Msdcsdf_78mmJ_r7MvCfZ7eJyiivGT0Jq4oxzc4fcl_GGavSUUq7p2PCi-wkgwQT7nbLxZwCxVz4LdXXKmresIkJw6FS_aUJiFOWeBRLok7D_PfXcCfXMWJdzXBfTdWmyJ_UYkW5-ElqXs57MpbFk0VgoZRgDZ1t4lKP2allvh8kBqDI3Gw==&c=&ch==&__=//T5m4d8f8pWmDNhkDJDSU/T5m4d8f8pWmDNhkDJDSU/amFzb25AcHNpLWluYy51cw==

208.75.122.11

0 B

URL
ri8hc4gbb.cc.rs6.net/tn.jsp?f=001594Msdcsdf_78mmJ_r7MvCfZ7eJyiivGT0Jq4oxzc4fcl_GGavSUUq7p2PCi-wkgwQT7nbLxZwCxVz4LdXXKmresIkJw6FS_aUJiFOWeBRLok7D_PfXcCfXMWJdzXBfTdWmyJ_UYkW5-ElqXs57MpbFk0VgoZRgDZ1t4lKP2allvh8kBqDI3Gw==&c=&ch==&__=//T5m4d8f8pWmDNhkDJDSU/T5m4d8f8pWmDNhkDJDSU/amFzb25AcHNpLWluYy51cw==
IP
208.75.122.11:0
ASN
#40444 ASN-CC

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /tn.jsp?f=001594Msdcsdf_78mmJ_r7MvCfZ7eJyiivGT0Jq4oxzc4fcl_GGavSUUq7p2PCi-wkgwQT7nbLxZwCxVz4LdXXKmresIkJw6FS_aUJiFOWeBRLok7D_PfXcCfXMWJdzXBfTdWmyJ_UYkW5-ElqXs57MpbFk0VgoZRgDZ1t4lKP2allvh8kBqDI3Gw==&c=&ch==&__=//T5m4d8f8pWmDNhkDJDSU/T5m4d8f8pWmDNhkDJDSU/amFzb25AcHNpLWluYy51cw== HTTP/1.1
Host: ri8hc4gbb.cc.rs6.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
Date: Fri, 29 Mar 2024 13:39:48 GMT
Server: Apache
P3P: CP="CAO DSP TAIa OUR NOR UNI"
Location: https://bedfoundation.net/newwayforu/k4843//T5m4d8f8pWmDNhkDJDSU/T5m4d8f8pWmDNhkDJDSU/amFzb25AcHNpLWluYy51cw==
Content-Length: 0
Cache-Control: private, no-cache, no-store, max-age=0, must-revalidate, no-cache="Set-Cookie"
Pragma: no-cache
Connection: close
Content-Type: text/html;charset=ISO-8859-1

bedfoundation.net/newwayforu/k4843//T5m4d8f8pWmDNhkDJDSU/T5m4d8f8pWmDNhkDJDSU/amFzb25AcHNpLWluYy51cw==

103.191.241.46

0 B

URL
bedfoundation.net/newwayforu/k4843//T5m4d8f8pWmDNhkDJDSU/T5m4d8f8pWmDNhkDJDSU/amFzb25AcHNpLWluYy51cw==
IP
103.191.241.46:0
ASN
#150142 Wolast Technologies

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /newwayforu/k4843//T5m4d8f8pWmDNhkDJDSU/T5m4d8f8pWmDNhkDJDSU/amFzb25AcHNpLWluYy51cw== HTTP/1.1
Host: bedfoundation.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
refresh: 0;url=https://luxuway.com/Mjason@psi-inc.us
content-type: text/html; charset=UTF-8
content-length: 0
date: Fri, 29 Mar 2024 13:39:49 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

luxuway.com/cdn-cgi/challenge-platform/h/g/flow/ov1/544673234:1711717806:X8EYk6W47ASwfpm82gPBUFbLUKTZO4e5vNanNy_93aI/86c044aaaafab523/ccdff016502082a

104.21.86.163

19 kB

URL
luxuway.com/cdn-cgi/challenge-platform/h/g/flow/ov1/544673234:1711717806:X8EYk6W47ASwfpm82gPBUFbLUKTZO4e5vNanNy_93aI/86c044aaaafab523/ccdff016502082a
IP
104.21.86.163:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (15948), with no line terminators
Size
19 kB (19120 bytes)
Hash
35042a73918bc5cb6bcc5319e7df719f
de0099a2798fdd1670dfbee19c165bb20326712e
ca4a7c13abc8599a04847b6b8f11be1ded7ea2828945513ab41207a885d706b0

HTTP Headers

POST /cdn-cgi/challenge-platform/h/g/flow/ov1/544673234:1711717806:X8EYk6W47ASwfpm82gPBUFbLUKTZO4e5vNanNy_93aI/86c044aaaafab523/ccdff016502082a HTTP/1.1
Host: luxuway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://luxuway.com/Mjason@psi-inc.us
Content-type: application/x-www-form-urlencoded
CF-Challenge: ccdff016502082a
Content-Length: 1901
Origin: https://luxuway.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 29 Mar 2024 13:39:49 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: kB0A58Ox7KodsKWB8ZB2AK3iFafzXqz6/3fkhNq0g8lZQjx7jVSvVfo3bFACXO+b$Ih3p22eQuqAh1Gy4w2d0jQ==
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=t0MqfXkho1g31DcXMe7kAL0zsM3YTTIhuHw4FXAu5dm6tofu7rVm%2F18DAxurBV2vlQGQZv7oF9bfpYjNMg5UGcdR5CStYkvudwRaBEDrMOUAWssywE11L4bNcTxHpQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86c044ac8d34712e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/8d7ju/0x4AAAAAAADnPIDROrmt1Wwj/light/normal

104.17.3.184

28 kB

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/8d7ju/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
IP
104.17.3.184:0
ASN
#13335 CLOUDFLARENET

File type
HTML document, ASCII text, with very long lines (41919)
Size
28 kB (27915 bytes)
Hash
58aa80bb2e28c9ac19f9114670ab8811
e25b29dff951258af7736e0cccfaaa21bb96784a
1bdcb120f741806483aeb514af10f11fe80ad6331191318af43a899884f4513d

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/8d7ju/0x4AAAAAAADnPIDROrmt1Wwj/light/normal HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 29 Mar 2024 13:39:58 GMT
content-type: text/html; charset=UTF-8
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
content-security-policy: frame-src https://challenges.cloudflare.com/ blob:; base-uri 'self'
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: cross-origin
document-policy: js-profiling
origin-agent-cluster: ?1
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
server: cloudflare
cf-ray: 86c044e3f9247131-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/401256254:1711718007:U9uKWRinex4k30fCCKT4vzWioeT4kycg0LdUjfAYgU4/86c044ad3f267131/eb9fa15f3fa33b3

104.17.3.184

10 kB

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/401256254:1711718007:U9uKWRinex4k30fCCKT4vzWioeT4kycg0LdUjfAYgU4/86c044ad3f267131/eb9fa15f3fa33b3
IP
104.17.3.184:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (968), with no line terminators
Size
10 kB (10127 bytes)
Hash
c01b142bc1c655f733001cc24ed9fa03
d56c6306dc78787b4ab4a25fe81e450532584f6a
920032566d4c5a1b130267048b54e86a7c389d0d696ec9d4b9c406f84badc028

HTTP Headers

POST /cdn-cgi/challenge-platform/h/g/flow/ov1/401256254:1711718007:U9uKWRinex4k30fCCKT4vzWioeT4kycg0LdUjfAYgU4/86c044ad3f267131/eb9fa15f3fa33b3 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/xqsrl/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: eb9fa15f3fa33b3
Content-Length: 39522
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 29 Mar 2024 13:39:56 GMT
content-type: text/html; charset=UTF-8
cf-chl-out: GaIT284ImWQ0cfGe+WbPGdc/7LemfDAILjXWi2yycf+c4tI+R16wG9IMBrdnHj0LmEg5ARclEEikr76NfvuTpmx/xWp+VbmQPuCGYHoab34=$oRSFd1hBErPTsmNC5VdXPA==
cf-chl-out-s: uT5zTZPBfbqFSHrPIgJQqxT5GNppFBDpudHNf7CY62pQtg4JCjOThBlqsGhybauq72BA55d/qjAB7IhckEZ5gqclZNd82WGJFXoCQpV4i8bxeFHaOf3KBJE3hO4+3Y/zVjrCLadKXSeGH5kPFmHyYw==$QyEGGK/jqsxMueoVZiJhfQ==
server: cloudflare
cf-ray: 86c044d45a9e7131-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D

104.17.3.184

9.7 kB

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D
IP
104.17.3.184:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 2 x 2, 8-bit/color RGB, non-interlaced
Size
9.7 kB (9663 bytes)
Hash
be5b3acb072f28d496c98b0f66dbe445
dc730555804e7cf3a3d6da67b49c491a64d75abf
3b3229673319ec2252e63471a2c090146da882bac751732c80a8877a19a10ef6

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/xqsrl/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 29 Mar 2024 13:39:50 GMT
content-type: image/png
cache-control: max-age=2629800, public
server: cloudflare
cf-ray: 86c044ad9f7b7131-OSL
alt-svc: h3=":443"; ma=86400

unpkg.com/axios/dist/axios.min.js

104.16.124.175

302 Found

42 kB

URL GET HTTP/2
unpkg.com/axios/dist/axios.min.js
IP
104.16.124.175:443
ASN
#13335 CLOUDFLARENET

Requested by
https://luxuway.com/beebb091955c06fa68b3eb8afc0bae516606c4b3aaf30PASbeebb091955c06fa68b3eb8afc0bae516606c4b3aaf32
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF7:B6:41:CA:15:FD:D1:0C:27:39:55:5D:C5:CE:3F:1C:A6:BB:9D:6F
ValidityTue, 02 May 2023 00:00:00 GMT - Wed, 01 May 2024 23:59:59 GMT

File type

Size
42 kB (41481 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /axios/dist/axios.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://luxuway.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Fri, 29 Mar 2024 13:40:03 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /axios@1.6.8/dist/axios.min.js
vary: Accept, Accept-Encoding
content-encoding: br
via: 1.1 fly.io
fly-request-id: 01HT56SQMTJ1VDV00RMZCCPY17-arn
cf-cache-status: HIT
age: 229
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 86c045044f3f56ab-OSL
X-Firefox-Spdy: h2

luxuway.com/APP-5E01WK/b1f77fad1ca11ef54ba06706bde3aaae6606c4b448db0

104.21.86.163

200 OK

105 kB

URL GET HTTP/3
luxuway.com/APP-5E01WK/b1f77fad1ca11ef54ba06706bde3aaae6606c4b448db0
IP
104.21.86.163:443
ASN
#13335 CLOUDFLARENET

Requested by
https://luxuway.com/beebb091955c06fa68b3eb8afc0bae516606c4b3aaf30PASbeebb091955c06fa68b3eb8afc0bae516606c4b3aaf32
Certificate
IssuerGoogle Trust Services LLC
Subjectluxuway.com
FingerprintE7:AF:EF:DB:A3:3A:76:34:38:63:D2:53:50:A0:9B:70:EC:0A:07:9E
ValidityTue, 19 Mar 2024 20:01:57 GMT - Mon, 17 Jun 2024 20:01:56 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
105 kB (105369 bytes)
Hash
8e6b0f88563f9c33f78bce65cf287df7
ef7765cd2a7d64ed27dd7344702597aff6f8c397
a7057bebfff43e7281ca31da00d40bd88c8d02d1576b9c45891dd56a3853269a

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Microsoft

HTTP Headers

GET /APP-5E01WK/b1f77fad1ca11ef54ba06706bde3aaae6606c4b448db0 HTTP/1.1
Host: luxuway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://luxuway.com/beebb091955c06fa68b3eb8afc0bae516606c4b3aaf30PASbeebb091955c06fa68b3eb8afc0bae516606c4b3aaf32
Cookie: cf_clearance=FHK30u9WPreiyXnJSgBXh7lPVjKQ7L2oD75HN835NVs-1711719598-1.0.1.1-LBmZN1QNDjLY1ePfzokgsn8WZ.3Cac7dHJM6AoQz5ncB99lzv4Cth9p.CtcGa5mDqSviZEOy.n5dXxsE3rxfZA; PHPSESSID=7dcd9e0af78ca5bdb2a69a63f87b2411
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 29 Mar 2024 13:40:05 GMT
content-type: text/css
last-modified: Thu, 28 Mar 2024 13:53:30 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BtBsyIItj5B8W6RqPDNiBw49Bx0jNC2oZJDu8wG%2FWIoJp2lzZF5a09wnyEuFv73eZC01egE2K%2BaRKFAMBKPFZtSWDsVIqlegyVivV8bCQfTK3T6cltbgWuulZKm%2FXg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86c0450778da712e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

luxuway.com/ASSETS/img/BIMG-6606c4b4e6a2d.css

104.21.86.163

200 OK

306 kB

URL GET HTTP/3
luxuway.com/ASSETS/img/BIMG-6606c4b4e6a2d.css
IP
104.21.86.163:443
ASN
#13335 CLOUDFLARENET

Requested by
https://luxuway.com/beebb091955c06fa68b3eb8afc0bae516606c4b3aaf30PASbeebb091955c06fa68b3eb8afc0bae516606c4b3aaf32
Certificate
IssuerGoogle Trust Services LLC
Subjectluxuway.com
FingerprintE7:AF:EF:DB:A3:3A:76:34:38:63:D2:53:50:A0:9B:70:EC:0A:07:9E
ValidityTue, 19 Mar 2024 20:01:57 GMT - Mon, 17 Jun 2024 20:01:56 GMT

File type
PNG image data, 1920 x 1080, 8-bit/color RGBA, non-interlaced
Size
306 kB (306493 bytes)
Hash
7d07c247e8dfd5bfaf9a7169b5c402bd
392cc7836ca5418f3e65cc67f5680b2a359399dc
345f500582fb5cfc20df5426c6b54bb0bcaa62eb0249a4a661dc9716a9edc006

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Microsoft
urlquery	phishing	Phishing - Microsoft Outlook

HTTP Headers

GET /ASSETS/img/BIMG-6606c4b4e6a2d.css HTTP/1.1
Host: luxuway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: cf_clearance=FHK30u9WPreiyXnJSgBXh7lPVjKQ7L2oD75HN835NVs-1711719598-1.0.1.1-LBmZN1QNDjLY1ePfzokgsn8WZ.3Cac7dHJM6AoQz5ncB99lzv4Cth9p.CtcGa5mDqSviZEOy.n5dXxsE3rxfZA; PHPSESSID=7dcd9e0af78ca5bdb2a69a63f87b2411
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 29 Mar 2024 13:40:07 GMT
content-type: image/png
last-modified: Thu, 28 Mar 2024 13:53:30 GMT
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WVzzZMHppSXRweIGWxE3dqZe%2B7XkMJFVMta6lsXDDembuqwoDbm2VPhVrNwQzQfVu5B1JshZ5redPYJoyY1A3wlqrPaHmmwHYEKjlMCRFVA%2BZHnhcQUeVz1ESK%2F1Lg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86c0450b1bb7712e-OSL
alt-svc: h3=":443"; ma=86400

unpkg.com/axios@1.6.8/dist/axios.min.js

104.16.124.175

200 OK

42 kB

URL GET HTTP/2
unpkg.com/axios@1.6.8/dist/axios.min.js
IP
104.16.124.175:443
ASN
#13335 CLOUDFLARENET

Requested by
https://luxuway.com/beebb091955c06fa68b3eb8afc0bae516606c4b3aaf30PASbeebb091955c06fa68b3eb8afc0bae516606c4b3aaf32
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF7:B6:41:CA:15:FD:D1:0C:27:39:55:5D:C5:CE:3F:1C:A6:BB:9D:6F
ValidityTue, 02 May 2023 00:00:00 GMT - Wed, 01 May 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (41442)
Size
42 kB (41481 bytes)
Hash
3b5b3d36fde8ffe8ed76b1efbfc65410
d63107d0912fdb387530d5ce2d512c928d73d122
29d600462a30694efd15b9848b4ca42d178cd067009275c35a30580121114304

HTTP Headers

GET /axios@1.6.8/dist/axios.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://luxuway.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 29 Mar 2024 13:40:03 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"a209-1jEH0JEv2zh1MNXOLVEsko1z0SI"
via: 1.1 fly.io
fly-request-id: 01HS1FGRYZKY14C0JK748EAY1W-arn
cf-cache-status: HIT
age: 1199045
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 86c045046f5156ab-OSL
content-encoding: br
X-Firefox-Spdy: h2

luxuway.com/Mjason@psi-inc.us

104.21.86.163

302 Found

5.5 kB

URL User Request POST HTTP/3
luxuway.com/Mjason@psi-inc.us
IP
104.21.86.163:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectluxuway.com
FingerprintE7:AF:EF:DB:A3:3A:76:34:38:63:D2:53:50:A0:9B:70:EC:0A:07:9E
ValidityTue, 19 Mar 2024 20:01:57 GMT - Mon, 17 Jun 2024 20:01:56 GMT

File type

Size
5.5 kB (5502 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /Mjason@psi-inc.us HTTP/1.1
Host: luxuway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://luxuway.com/Mjason@psi-inc.us?__cf_chl_tk=_YIV8d5Q1ltGaB8L9Mi76t8BKRB_qMALK4i85XfOxMM-1711719598-0.0.1.1-1599
Content-Type: application/x-www-form-urlencoded
Content-Length: 4048
Origin: https://luxuway.com
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Sec-Fetch-User: ?1
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 302 Found
date: Fri, 29 Mar 2024 13:40:03 GMT
content-type: text/html; charset=UTF-8
location: ./beebb091955c06fa68b3eb8afc0bae516606c4b3aaf30PASbeebb091955c06fa68b3eb8afc0bae516606c4b3aaf32
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: cf_clearance=FHK30u9WPreiyXnJSgBXh7lPVjKQ7L2oD75HN835NVs-1711719598-1.0.1.1-LBmZN1QNDjLY1ePfzokgsn8WZ.3Cac7dHJM6AoQz5ncB99lzv4Cth9p.CtcGa5mDqSviZEOy.n5dXxsE3rxfZA; path=/; expires=Sat, 29-Mar-25 13:40:03 GMT; domain=.luxuway.com; HttpOnly; Secure; SameSite=None
PHPSESSID=7dcd9e0af78ca5bdb2a69a63f87b2411; path=/
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yUQQ%2BxSurchWvtJz%2FGHfWFJiRJdeoRKoWZohsaJw4yznxtI9Gkrw1VuyJkbyBZfMDFr8jui8LLOe7S5aNAn%2FzaHKr7BD6YqqtXKhhBYFCQcfJB%2BYz4M97CATGLwJow%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86c04500cb50712e-OSL
alt-svc: h3=":443"; ma=86400

luxuway.com/beebb091955c06fa68b3eb8afc0bae516606c4b3aaf30PASbeebb091955c06fa68b3eb8afc0bae516606c4b3aaf32

104.21.86.163

200 OK

5.5 kB

URL User Request GET HTTP/3
luxuway.com/beebb091955c06fa68b3eb8afc0bae516606c4b3aaf30PASbeebb091955c06fa68b3eb8afc0bae516606c4b3aaf32
IP
104.21.86.163:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectluxuway.com
FingerprintE7:AF:EF:DB:A3:3A:76:34:38:63:D2:53:50:A0:9B:70:EC:0A:07:9E
ValidityTue, 19 Mar 2024 20:01:57 GMT - Mon, 17 Jun 2024 20:01:56 GMT

File type
HTML document, ASCII text, with very long lines (5541), with no line terminators
Size
5.5 kB (5502 bytes)
Hash
2f758eca3137b2adcc77513af703b31c
3a07dc5f18b6adefabaecc734781c960172e3841
1964a2ad97a815ddebe97c95a9c03ea84f0388bbf19899b495b68b7245695e04

HTTP Headers

GET /beebb091955c06fa68b3eb8afc0bae516606c4b3aaf30PASbeebb091955c06fa68b3eb8afc0bae516606c4b3aaf32 HTTP/1.1
Host: luxuway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://luxuway.com/Mjason@psi-inc.us?__cf_chl_tk=_YIV8d5Q1ltGaB8L9Mi76t8BKRB_qMALK4i85XfOxMM-1711719598-0.0.1.1-1599
DNT: 1
Connection: keep-alive
Cookie: cf_clearance=FHK30u9WPreiyXnJSgBXh7lPVjKQ7L2oD75HN835NVs-1711719598-1.0.1.1-LBmZN1QNDjLY1ePfzokgsn8WZ.3Cac7dHJM6AoQz5ncB99lzv4Cth9p.CtcGa5mDqSviZEOy.n5dXxsE3rxfZA; PHPSESSID=7dcd9e0af78ca5bdb2a69a63f87b2411
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Sec-Fetch-User: ?1
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 29 Mar 2024 13:40:03 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EhEeL0jBaxHd8vsU4SqI0aDvCYhK%2F1rnwEZ38IVZ2X%2FHWVl8t2z8nVCryWj1AvArfst8pWaCqu%2F5lrivUYQxq%2Fc8heJM4tJII1OHX8tpv6xP2ZydwiXkYRiCHqVBdQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86c045035d15712e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

luxuway.com/jm/b1f77fad1ca11ef54ba06706bde3aaae6606c4b3bada0

104.21.86.163

200 OK

6.4 kB

URL GET HTTP/3
luxuway.com/jm/b1f77fad1ca11ef54ba06706bde3aaae6606c4b3bada0
IP
104.21.86.163:443
ASN
#13335 CLOUDFLARENET

Requested by
https://luxuway.com/beebb091955c06fa68b3eb8afc0bae516606c4b3aaf30PASbeebb091955c06fa68b3eb8afc0bae516606c4b3aaf32
Certificate
IssuerGoogle Trust Services LLC
Subjectluxuway.com
FingerprintE7:AF:EF:DB:A3:3A:76:34:38:63:D2:53:50:A0:9B:70:EC:0A:07:9E
ValidityTue, 19 Mar 2024 20:01:57 GMT - Mon, 17 Jun 2024 20:01:56 GMT

File type
JavaScript source, ASCII text, with very long lines (6376), with no line terminators
Size
6.4 kB (6357 bytes)
Hash
1e07a363eef4b40ab4a38d5e4371da5c
7351be2a378540a016aec380141927221a45f19b
01ba4de80540981fd34be681b5c1fce8b205e341ac6fa73a61817068ff566510

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Microsoft

HTTP Headers

GET /jm/b1f77fad1ca11ef54ba06706bde3aaae6606c4b3bada0 HTTP/1.1
Host: luxuway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://luxuway.com/beebb091955c06fa68b3eb8afc0bae516606c4b3aaf30PASbeebb091955c06fa68b3eb8afc0bae516606c4b3aaf32
Cookie: cf_clearance=FHK30u9WPreiyXnJSgBXh7lPVjKQ7L2oD75HN835NVs-1711719598-1.0.1.1-LBmZN1QNDjLY1ePfzokgsn8WZ.3Cac7dHJM6AoQz5ncB99lzv4Cth9p.CtcGa5mDqSviZEOy.n5dXxsE3rxfZA; PHPSESSID=7dcd9e0af78ca5bdb2a69a63f87b2411
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 29 Mar 2024 13:40:03 GMT
content-type: text/javascript
last-modified: Thu, 28 Mar 2024 13:53:30 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4Yobkjx6AGaUvlU1dkzyIsM5%2Bhp2eYCxMBwkZtoNJXhm35nfrbl%2FIleM18%2Fwue2RuOJHCGPow7k1oxDQEO7HLPN7xnNPkcwEaLfAgkicmHmJ8SUctxjlKIIcAo1vqg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86c045043dc0712e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

luxuway.com/ic/b1f77fad1ca11ef54ba06706bde3aaae6606c4b448da8

104.21.86.163

200 OK

17 kB

URL GET HTTP/3
luxuway.com/ic/b1f77fad1ca11ef54ba06706bde3aaae6606c4b448da8
IP
104.21.86.163:443
ASN
#13335 CLOUDFLARENET

Requested by
https://luxuway.com/beebb091955c06fa68b3eb8afc0bae516606c4b3aaf30PASbeebb091955c06fa68b3eb8afc0bae516606c4b3aaf32
Certificate
IssuerGoogle Trust Services LLC
Subjectluxuway.com
FingerprintE7:AF:EF:DB:A3:3A:76:34:38:63:D2:53:50:A0:9B:70:EC:0A:07:9E
ValidityTue, 19 Mar 2024 20:01:57 GMT - Mon, 17 Jun 2024 20:01:56 GMT

File type
MS Windows icon resource - 6 icons, -128x-128, 16 colors, 72x72, 16 colors
Size
17 kB (17174 bytes)
Hash
12e3dac858061d088023b2bd48e2fa96
e08ce1a144eceae0c3c2ea7a9d6fbc5658f24ce5
90cdaf487716184e4034000935c605d1633926d348116d198f355a98b8c6cd21

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Microsoft

HTTP Headers

GET /ic/b1f77fad1ca11ef54ba06706bde3aaae6606c4b448da8 HTTP/1.1
Host: luxuway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://luxuway.com/beebb091955c06fa68b3eb8afc0bae516606c4b3aaf30PASbeebb091955c06fa68b3eb8afc0bae516606c4b3aaf32
Cookie: cf_clearance=FHK30u9WPreiyXnJSgBXh7lPVjKQ7L2oD75HN835NVs-1711719598-1.0.1.1-LBmZN1QNDjLY1ePfzokgsn8WZ.3Cac7dHJM6AoQz5ncB99lzv4Cth9p.CtcGa5mDqSviZEOy.n5dXxsE3rxfZA; PHPSESSID=7dcd9e0af78ca5bdb2a69a63f87b2411
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 29 Mar 2024 13:40:05 GMT
content-type: image/x-icon
last-modified: Thu, 28 Mar 2024 13:53:30 GMT
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=eradvhHCHZ3QiXTnMHba%2BkTwaw%2BS%2B9lC65taxN%2BRPezjyrnjA5kiVd95vZ%2Bfn24XHLCeqcc7j8ko1jQH02tGQXT84GYlcwFUZJLf1E%2BcYozjP0g3h2MokyOIfrLVZQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86c0450e1e50712e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

luxuway.com/boot/b1f77fad1ca11ef54ba06706bde3aaae6606c4b3bad9e

104.21.86.163

200 OK

51 kB

URL GET HTTP/3
luxuway.com/boot/b1f77fad1ca11ef54ba06706bde3aaae6606c4b3bad9e
IP
104.21.86.163:443
ASN
#13335 CLOUDFLARENET

Requested by
https://luxuway.com/beebb091955c06fa68b3eb8afc0bae516606c4b3aaf30PASbeebb091955c06fa68b3eb8afc0bae516606c4b3aaf32
Certificate
IssuerGoogle Trust Services LLC
Subjectluxuway.com
FingerprintE7:AF:EF:DB:A3:3A:76:34:38:63:D2:53:50:A0:9B:70:EC:0A:07:9E
ValidityTue, 19 Mar 2024 20:01:57 GMT - Mon, 17 Jun 2024 20:01:56 GMT

File type
JavaScript source, ASCII text, with very long lines (50758)
Size
51 kB (51039 bytes)
Hash
67176c242e1bdc20603c878dee836df3
27a71b00383d61ef3c489326b3564d698fc1227c
56c12a125b021d21a69e61d7190cefa168d6c28ce715265cea1b3b0112d169c4

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Microsoft

HTTP Headers

GET /boot/b1f77fad1ca11ef54ba06706bde3aaae6606c4b3bad9e HTTP/1.1
Host: luxuway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://luxuway.com/beebb091955c06fa68b3eb8afc0bae516606c4b3aaf30PASbeebb091955c06fa68b3eb8afc0bae516606c4b3aaf32
Cookie: cf_clearance=FHK30u9WPreiyXnJSgBXh7lPVjKQ7L2oD75HN835NVs-1711719598-1.0.1.1-LBmZN1QNDjLY1ePfzokgsn8WZ.3Cac7dHJM6AoQz5ncB99lzv4Cth9p.CtcGa5mDqSviZEOy.n5dXxsE3rxfZA; PHPSESSID=7dcd9e0af78ca5bdb2a69a63f87b2411
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 29 Mar 2024 13:40:04 GMT
content-type: text/javascript
last-modified: Thu, 28 Mar 2024 13:53:30 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2Bh%2BnQyBgGfRvFEYYGBxoOoEMqLHhGwfPva7WnZBv%2Br7djzkvqwo2uUc7P5hGc7J43Ko%2FXytJpMJJUH3Yd9MLlax%2BzgUwqUDNsicpwYWNh1fl9dpdgQ9RbnEqFIuqew%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86c045043dbe712e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

luxuway.com/favicon.ico

104.21.86.163

404 Not Found

315 B

URL GET HTTP/3
luxuway.com/favicon.ico
IP
104.21.86.163:443
ASN
#13335 CLOUDFLARENET

Requested by
https://luxuway.com/beebb091955c06fa68b3eb8afc0bae516606c4b3aaf30PASbeebb091955c06fa68b3eb8afc0bae516606c4b3aaf32
Certificate
IssuerGoogle Trust Services LLC
Subjectluxuway.com
FingerprintE7:AF:EF:DB:A3:3A:76:34:38:63:D2:53:50:A0:9B:70:EC:0A:07:9E
ValidityTue, 19 Mar 2024 20:01:57 GMT - Mon, 17 Jun 2024 20:01:56 GMT

File type
HTML document, ASCII text, with very long lines (326), with no line terminators
Size
315 B (315 bytes)
Hash
97ef40509b73c101d6815511c3adf98d
a4242322497ea630ea72e26ba297a95a2bbe5ccd
322c1f60d9d454c801f7cff3173ef16b61cf9963a64e09a4d9e21d36218b56be

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Microsoft

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: luxuway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://luxuway.com/beebb091955c06fa68b3eb8afc0bae516606c4b3aaf30PASbeebb091955c06fa68b3eb8afc0bae516606c4b3aaf32
Cookie: cf_clearance=FHK30u9WPreiyXnJSgBXh7lPVjKQ7L2oD75HN835NVs-1711719598-1.0.1.1-LBmZN1QNDjLY1ePfzokgsn8WZ.3Cac7dHJM6AoQz5ncB99lzv4Cth9p.CtcGa5mDqSviZEOy.n5dXxsE3rxfZA; PHPSESSID=7dcd9e0af78ca5bdb2a69a63f87b2411
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Fri, 29 Mar 2024 13:40:04 GMT
content-type: text/html; charset=iso-8859-1
cache-control: max-age=14400
cf-cache-status: HIT
age: 2
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Lx5gV7173In8rT7BkI%2FdAdA0QWEC%2FnDAm6QtErSrKq2iDlgikE9QeWeBsA7GzTIDTVdKvfETO%2BTsDE8ex0%2F4Desih13yBA0sDOKrx83cjhW%2Fi2YMVyPtsmbgQU2oIg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86c0450758b2712e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

luxuway.com/Mjason@psi-inc.us

104.21.86.163

403 Forbidden

16 kB

URL User Request GET HTTP/3
luxuway.com/Mjason@psi-inc.us
IP
104.21.86.163:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectluxuway.com
FingerprintE7:AF:EF:DB:A3:3A:76:34:38:63:D2:53:50:A0:9B:70:EC:0A:07:9E
ValidityTue, 19 Mar 2024 20:01:57 GMT - Mon, 17 Jun 2024 20:01:56 GMT

File type
HTML document, ASCII text, with very long lines (15616), with no line terminators
Size
16 kB (15616 bytes)
Hash
2be90da95c610306eb2cf04e9bd0c095
20102d7e096e04c080b5889fa8942e35adb9c84a
279c5cdcda4a5ceac0f1b2600180812f5977ccee5926b33e8521c9dfeaaf7315

HTTP Headers

GET /Mjason@psi-inc.us HTTP/1.1
Host: luxuway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: cf_chl_rc_m=1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 403 Forbidden
date: Fri, 29 Mar 2024 13:39:58 GMT
content-type: text/html; charset=UTF-8
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
origin-agent-cluster: ?1
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
x-frame-options: SAMEORIGIN
cf-mitigated: challenge
cf-chl-out: HwaPOJzTG3bkTtoZyQ5h2nazJZz2d6NyRaycdmGXAo7tha6xCAG/NTdxd1FKepFZ9iZ6AYUP1rwplDt9QLNeN0/fTNqn6YxdY+Qmh9QhwVJwD6GdlhcOBLBAvJlkBr+g6ZeRs/bqV1+cV6TaVpDduA==$hb6G65/tmMZf6mHrj5RRGA==
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TYmKK1fFtRX1pdXZt4cCSantwJF2wrWX8fgGzOj4ptlfNk9iybSgj6NFzDYHjKSN9wJuB3%2FLAx2NVjSDqOJUZWhFFsagsvmpAPRjOG0VlGFO5ePTe%2BoOOnXPxAMxbA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86c044e1bbf6712e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

luxuway.com/e/b1f77fad1ca11ef54ba06706bde3aaae6606c4b448f22

104.21.86.163

200 OK

513 B

URL GET HTTP/3
luxuway.com/e/b1f77fad1ca11ef54ba06706bde3aaae6606c4b448f22
IP
104.21.86.163:443
ASN
#13335 CLOUDFLARENET

Requested by
https://luxuway.com/beebb091955c06fa68b3eb8afc0bae516606c4b3aaf30PASbeebb091955c06fa68b3eb8afc0bae516606c4b3aaf32
Certificate
IssuerGoogle Trust Services LLC
Subjectluxuway.com
FingerprintE7:AF:EF:DB:A3:3A:76:34:38:63:D2:53:50:A0:9B:70:EC:0A:07:9E
ValidityTue, 19 Mar 2024 20:01:57 GMT - Mon, 17 Jun 2024 20:01:56 GMT

File type
SVG Scalable Vector Graphics image
Size
513 B (513 bytes)
Hash
adc405f5fd089662209870ca5d2106f7
3a8b776df84bf251afc6ddd802cc5bbeddfb0e36
e7bacc97751689afaae192e103fe9851664365c57c7d783560860ad456db7e49

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Microsoft

HTTP Headers

GET /e/b1f77fad1ca11ef54ba06706bde3aaae6606c4b448f22 HTTP/1.1
Host: luxuway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://luxuway.com/beebb091955c06fa68b3eb8afc0bae516606c4b3aaf30PASbeebb091955c06fa68b3eb8afc0bae516606c4b3aaf32
Cookie: cf_clearance=FHK30u9WPreiyXnJSgBXh7lPVjKQ7L2oD75HN835NVs-1711719598-1.0.1.1-LBmZN1QNDjLY1ePfzokgsn8WZ.3Cac7dHJM6AoQz5ncB99lzv4Cth9p.CtcGa5mDqSviZEOy.n5dXxsE3rxfZA; PHPSESSID=7dcd9e0af78ca5bdb2a69a63f87b2411
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 29 Mar 2024 13:40:04 GMT
content-type: image/svg+xml
last-modified: Thu, 28 Mar 2024 13:53:30 GMT
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lg4qGFgJsdimBo4SZSFUTyfsZUhDfm%2F0%2FNi5RoYkwAnfCy3U1GQi3FqS6qgjQCsqThr8A2j9kFDiuIiKGcGHp3rRwO8tx1hauUDA4RyiyUyaaMKVLAmwoDyhYsr9Kg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86c0450768d0712e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

luxuway.com/2

104.21.86.163

200 OK

36 kB

URL GET HTTP/3
luxuway.com/2
IP
104.21.86.163:443
ASN
#13335 CLOUDFLARENET

Requested by
https://luxuway.com/beebb091955c06fa68b3eb8afc0bae516606c4b3aaf30PASbeebb091955c06fa68b3eb8afc0bae516606c4b3aaf32
Certificate
IssuerGoogle Trust Services LLC
Subjectluxuway.com
FingerprintE7:AF:EF:DB:A3:3A:76:34:38:63:D2:53:50:A0:9B:70:EC:0A:07:9E
ValidityTue, 19 Mar 2024 20:01:57 GMT - Mon, 17 Jun 2024 20:01:56 GMT

File type

Size
36 kB (36126 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /2 HTTP/1.1
Host: luxuway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://luxuway.com/beebb091955c06fa68b3eb8afc0bae516606c4b3aaf30PASbeebb091955c06fa68b3eb8afc0bae516606c4b3aaf32
Cookie: cf_clearance=FHK30u9WPreiyXnJSgBXh7lPVjKQ7L2oD75HN835NVs-1711719598-1.0.1.1-LBmZN1QNDjLY1ePfzokgsn8WZ.3Cac7dHJM6AoQz5ncB99lzv4Cth9p.CtcGa5mDqSviZEOy.n5dXxsE3rxfZA; PHPSESSID=7dcd9e0af78ca5bdb2a69a63f87b2411
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 29 Mar 2024 13:40:04 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rX1epOw1qtEQVlm0MKjtQmvKsEd%2BmO2Qi%2F5ykBWw8U%2BXQBIk4Cc75KXjlGdHsDyqBLRpIBKqLgS%2BUMdSkZndqi0bJoVBW3ocNFMtaTksqnU5612utgMib%2Bc%2F8BKweA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86c04506a815712e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

luxuway.com/o/b1f77fad1ca11ef54ba06706bde3aaae6606c4b448f1b

104.21.86.163

200 OK

3.7 kB

URL GET HTTP/3
luxuway.com/o/b1f77fad1ca11ef54ba06706bde3aaae6606c4b448f1b
IP
104.21.86.163:443
ASN
#13335 CLOUDFLARENET

Requested by
https://luxuway.com/beebb091955c06fa68b3eb8afc0bae516606c4b3aaf30PASbeebb091955c06fa68b3eb8afc0bae516606c4b3aaf32
Certificate
IssuerGoogle Trust Services LLC
Subjectluxuway.com
FingerprintE7:AF:EF:DB:A3:3A:76:34:38:63:D2:53:50:A0:9B:70:EC:0A:07:9E
ValidityTue, 19 Mar 2024 20:01:57 GMT - Mon, 17 Jun 2024 20:01:56 GMT

File type
SVG Scalable Vector Graphics image
Size
3.7 kB (3651 bytes)
Hash
d633a913e6f3b1f45774b9874dfc85e0
5ba1344048578062c93cfddfdf8458477eaca476
c1fbfbd9a81fc4d9c9539a65bdfb4c6738926b8d4681b0346706196413e92714

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Microsoft

HTTP Headers

GET /o/b1f77fad1ca11ef54ba06706bde3aaae6606c4b448f1b HTTP/1.1
Host: luxuway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://luxuway.com/beebb091955c06fa68b3eb8afc0bae516606c4b3aaf30PASbeebb091955c06fa68b3eb8afc0bae516606c4b3aaf32
Cookie: cf_clearance=FHK30u9WPreiyXnJSgBXh7lPVjKQ7L2oD75HN835NVs-1711719598-1.0.1.1-LBmZN1QNDjLY1ePfzokgsn8WZ.3Cac7dHJM6AoQz5ncB99lzv4Cth9p.CtcGa5mDqSviZEOy.n5dXxsE3rxfZA; PHPSESSID=7dcd9e0af78ca5bdb2a69a63f87b2411
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 29 Mar 2024 13:40:04 GMT
content-type: image/svg+xml
last-modified: Thu, 28 Mar 2024 13:53:30 GMT
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=F8wgOyMsP8AyvUTutzui4AWHli55hIf9klkf4LcAZozVH31Vt1yeWTorzL34hmuuMFIU4MAUfucJIv3HZ0VcP23OTEJjcoMwzZEuh1u1FKHIhdqlXvwMs3463IOrsA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86c0450768cb712e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

luxuway.com/jq/b1f77fad1ca11ef54ba06706bde3aaae6606c4b3bad94

104.21.86.163

200 OK

86 kB

URL GET HTTP/3
luxuway.com/jq/b1f77fad1ca11ef54ba06706bde3aaae6606c4b3bad94
IP
104.21.86.163:443
ASN
#13335 CLOUDFLARENET

Requested by
https://luxuway.com/beebb091955c06fa68b3eb8afc0bae516606c4b3aaf30PASbeebb091955c06fa68b3eb8afc0bae516606c4b3aaf32
Certificate
IssuerGoogle Trust Services LLC
Subjectluxuway.com
FingerprintE7:AF:EF:DB:A3:3A:76:34:38:63:D2:53:50:A0:9B:70:EC:0A:07:9E
ValidityTue, 19 Mar 2024 20:01:57 GMT - Mon, 17 Jun 2024 20:01:56 GMT

File type
JavaScript source, ASCII text, with very long lines (32065)
Size
86 kB (85578 bytes)
Hash
2f6b11a7e914718e0290410e85366fe9
69bb69e25ca7d5ef0935317584e6153f3fd9a88c
05b85d96f41fff14d8f608dad03ab71e2c1017c2da0914d7c59291bad7a54f8e

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Microsoft

HTTP Headers

GET /jq/b1f77fad1ca11ef54ba06706bde3aaae6606c4b3bad94 HTTP/1.1
Host: luxuway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://luxuway.com/beebb091955c06fa68b3eb8afc0bae516606c4b3aaf30PASbeebb091955c06fa68b3eb8afc0bae516606c4b3aaf32
Cookie: cf_clearance=FHK30u9WPreiyXnJSgBXh7lPVjKQ7L2oD75HN835NVs-1711719598-1.0.1.1-LBmZN1QNDjLY1ePfzokgsn8WZ.3Cac7dHJM6AoQz5ncB99lzv4Cth9p.CtcGa5mDqSviZEOy.n5dXxsE3rxfZA; PHPSESSID=7dcd9e0af78ca5bdb2a69a63f87b2411
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 29 Mar 2024 13:40:03 GMT
content-type: text/javascript
last-modified: Thu, 28 Mar 2024 13:53:30 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Iqeww2M%2FODAj9Qij8KmY4iE5xBmEfzGI8CcuVLfv%2FNDbEjYmlIx%2Bbu86w9s3Ezok%2BC00HGX2QrJe8cZiNJrEVqxcdrsTTPGbksUhWHRuBt4zs2upZkKQSOD8ibCXug%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86c045043dbb712e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

luxuway.com/api-as1f?email=jason@psi-inc.us&data=logo

104.21.86.163

200 OK

80 B

URL GET HTTP/3
luxuway.com/api-as1f?email=jason@psi-inc.us&data=logo
IP
104.21.86.163:443
ASN
#13335 CLOUDFLARENET

Requested by
https://luxuway.com/beebb091955c06fa68b3eb8afc0bae516606c4b3aaf30PASbeebb091955c06fa68b3eb8afc0bae516606c4b3aaf32
Certificate
IssuerGoogle Trust Services LLC
Subjectluxuway.com
FingerprintE7:AF:EF:DB:A3:3A:76:34:38:63:D2:53:50:A0:9B:70:EC:0A:07:9E
ValidityTue, 19 Mar 2024 20:01:57 GMT - Mon, 17 Jun 2024 20:01:56 GMT

File type
troff or preprocessor input, ASCII text, with no line terminators
Size
80 B (80 bytes)
Hash
0e1c04462431358e220271a7686e416a
536c680d77860bf3bbd536b29054b6ce61ac362f
155c20b3b7f8ecea5a7258a4cdd321196aa3003162028135b15089304ebb4793

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Microsoft Outlook

HTTP Headers

GET /api-as1f?email=jason@psi-inc.us&data=logo HTTP/1.1
Host: luxuway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://luxuway.com/beebb091955c06fa68b3eb8afc0bae516606c4b3aaf30PASbeebb091955c06fa68b3eb8afc0bae516606c4b3aaf32
Cookie: cf_clearance=FHK30u9WPreiyXnJSgBXh7lPVjKQ7L2oD75HN835NVs-1711719598-1.0.1.1-LBmZN1QNDjLY1ePfzokgsn8WZ.3Cac7dHJM6AoQz5ncB99lzv4Cth9p.CtcGa5mDqSviZEOy.n5dXxsE3rxfZA; PHPSESSID=7dcd9e0af78ca5bdb2a69a63f87b2411
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 29 Mar 2024 13:40:04 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZlbLwuZD%2FgUfBir32cwePj1wCe2BiDCLPqCJLVFjOJ%2F4OwpTNOnD4JtpiXY8%2B4tM5Zc4%2BksOhw%2F%2BUsrV5tn%2BNsuFnFNAoMdEumFXu%2FIVGbvs%2BFblUqVYlt7Nwb%2Ftcg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86c0450778d6712e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

luxuway.com/api-as1f?email=jason@psi-inc.us&data=background

104.21.86.163

200 OK

86 B

URL GET HTTP/3
luxuway.com/api-as1f?email=jason@psi-inc.us&data=background
IP
104.21.86.163:443
ASN
#13335 CLOUDFLARENET

Requested by
https://luxuway.com/beebb091955c06fa68b3eb8afc0bae516606c4b3aaf30PASbeebb091955c06fa68b3eb8afc0bae516606c4b3aaf32
Certificate
IssuerGoogle Trust Services LLC
Subjectluxuway.com
FingerprintE7:AF:EF:DB:A3:3A:76:34:38:63:D2:53:50:A0:9B:70:EC:0A:07:9E
ValidityTue, 19 Mar 2024 20:01:57 GMT - Mon, 17 Jun 2024 20:01:56 GMT

File type
troff or preprocessor input, ASCII text, with no line terminators
Size
86 B (86 bytes)
Hash
6adc0108e428f20af038405427a2972e
caa07d624a4b539215beb897137aeda9d25d2c04
d901dd381f6405e276d5de0d8f14b26a948339b81ba4da5c6ced021dc8ebb5f3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Microsoft Outlook

HTTP Headers

GET /api-as1f?email=jason@psi-inc.us&data=background HTTP/1.1
Host: luxuway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://luxuway.com/beebb091955c06fa68b3eb8afc0bae516606c4b3aaf30PASbeebb091955c06fa68b3eb8afc0bae516606c4b3aaf32
Cookie: cf_clearance=FHK30u9WPreiyXnJSgBXh7lPVjKQ7L2oD75HN835NVs-1711719598-1.0.1.1-LBmZN1QNDjLY1ePfzokgsn8WZ.3Cac7dHJM6AoQz5ncB99lzv4Cth9p.CtcGa5mDqSviZEOy.n5dXxsE3rxfZA; PHPSESSID=7dcd9e0af78ca5bdb2a69a63f87b2411
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 29 Mar 2024 13:40:04 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=42qz4bkjMgk86bXe%2FO%2Fd%2FJlwC8LK40%2ByK99p3inJuDtFOowaGLnhgSbgBSFKvWxX4WPFMI4DhhrVWunkDNaSEbkQHePbcnA1j%2BPXa6S8sgxtPW%2BXdbpbVFXkoS7z8g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86c0450778d7712e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

luxuway.com/ASSETS/img/LIMG-6606c4b4a77e3.css

104.21.86.163

200 OK

1.6 kB

URL GET HTTP/3
luxuway.com/ASSETS/img/LIMG-6606c4b4a77e3.css
IP
104.21.86.163:443
ASN
#13335 CLOUDFLARENET

Requested by
https://luxuway.com/beebb091955c06fa68b3eb8afc0bae516606c4b3aaf30PASbeebb091955c06fa68b3eb8afc0bae516606c4b3aaf32
Certificate
IssuerGoogle Trust Services LLC
Subjectluxuway.com
FingerprintE7:AF:EF:DB:A3:3A:76:34:38:63:D2:53:50:A0:9B:70:EC:0A:07:9E
ValidityTue, 19 Mar 2024 20:01:57 GMT - Mon, 17 Jun 2024 20:01:56 GMT

File type
PNG image data, 108 x 24, 8-bit colormap, non-interlaced
Size
1.6 kB (1637 bytes)
Hash
ee236805d05e24861ce1b6b0e7d94b8d
d46828cf9df268ddaf62facf15590a447116aeb8
175986272200fb72da9a598d30016bbda9ddcaa9e6e3f07eb94bc74196d4b805

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Microsoft

HTTP Headers

GET /ASSETS/img/LIMG-6606c4b4a77e3.css HTTP/1.1
Host: luxuway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: cf_clearance=FHK30u9WPreiyXnJSgBXh7lPVjKQ7L2oD75HN835NVs-1711719598-1.0.1.1-LBmZN1QNDjLY1ePfzokgsn8WZ.3Cac7dHJM6AoQz5ncB99lzv4Cth9p.CtcGa5mDqSviZEOy.n5dXxsE3rxfZA; PHPSESSID=7dcd9e0af78ca5bdb2a69a63f87b2411
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 29 Mar 2024 13:40:05 GMT
content-type: image/png
last-modified: Thu, 28 Mar 2024 13:53:30 GMT
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LIQp7yZR4AyBqBFkW7qrLFgk34NkDIYJHuGMyTLu24pTcJf4zS8%2BR%2BFfSbuzXOFLZnW6YLmeLQpc9F9meGjHAhjOTf%2BMBxdWIkvLYoYlJ%2FcZqhmkfgwKm1kMMhkF4w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86c045097a7e712e-OSL
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (54)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations