Report - netflixgpt-72225.firebaseapp.com/

Report Overview

Submitted URL
netflixgpt-72225.firebaseapp.com/
IP
199.36.158.100
ASN
#54113 FASTLY
Submitted
2024-05-04 17:27:27
Access
public
Website Title
Vite + React
Final URL
netflixgpt-72225.firebaseapp.com/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
8

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
netflixgpt-72225.firebaseapp.com	unknown	unknown	No data	No data	1.9 kB	62 kB	199.36.158.100
cdn.cookielaw.org	502	2011-06-20	2013-12-28	2024-05-04	530 B	17 kB	104.19.177.52
assets.nflxext.com	3871	2011-02-11	2015-07-22	2024-05-04	589 B	108 kB	45.57.91.1

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-05-03	medium	netflixgpt-72225.firebaseapp.com/	Generic/Spear Phishing
2024-05-03	medium	netflixgpt-72225.firebaseapp.com/	Generic/Spear Phishing
2024-05-03	medium	netflixgpt-72225.firebaseapp.com/	Generic/Spear Phishing
2024-05-03	medium	netflixgpt-72225.firebaseapp.com/	Generic/Spear Phishing

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (1)

	URL	Size	First Seen	Last Seen
	netflixgpt-72225.firebaseapp.com/assets/index-iwGxcU9V.js	199 kB	2024-05-04	2024-05-04
Pretty URL netflixgpt-72225.firebaseapp.com/assets/index-iwGxcU9V.js IP 199.36.158.100 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-04 19:27:33 Last Seen2024-05-04 19:27:33 Times Seen2 Hash 53416cec20992a388a48f9af5bbdeea6 d3621af275afbfb9c2ef31cab51347ffecf82259 8ef56b08eb840058c8d76af58a1238a959bd6460f093013b928da553b8e2fd41 Loading...

HTTP Transactions (6)

URL IP Response Size

netflixgpt-72225.firebaseapp.com/

199.36.158.100

200 OK

187 B

URL User Request GET HTTP/2
netflixgpt-72225.firebaseapp.com/
IP
199.36.158.100:443
ASN
#54113 FASTLY

Certificate
IssuerGoogle Trust Services LLC
Subjectfirebaseapp.com
Fingerprint6D:BD:C9:A0:A6:73:A0:9B:87:1C:93:A6:7E:16:92:6F:B5:1B:FB:4D
ValidityThu, 21 Mar 2024 15:15:15 GMT - Wed, 19 Jun 2024 15:15:14 GMT

File type
HTML document, ASCII text
Size
187 B (187 bytes)
Hash
8aa95250520c6d3220d2ea4bb706b7f1
82bc9d21bc2886f0e5be0b3d99265c330f23d0ff
b6a785599064e7f49531313acc65afb50da3ae9dae739bb8cac9fb22557f1c10

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Generic/Spear Phishing

HTTP Headers

GET / HTTP/1.1
Host: netflixgpt-72225.firebaseapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: text/html; charset=utf-8
etag: "995b57315352dde2cae20dea864338a18dd30dc42739e3cd64eee54b900980c1-br"
last-modified: Fri, 03 May 2024 18:22:40 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Sat, 04 May 2024 17:27:01 GMT
x-served-by: cache-hel1410030-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1714843621.490739,VS0,VE103
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 187
X-Firefox-Spdy: h2

netflixgpt-72225.firebaseapp.com/assets/index-iwGxcU9V.js

199.36.158.100

200 OK

57 kB

URL GET HTTP/3
netflixgpt-72225.firebaseapp.com/assets/index-iwGxcU9V.js
IP
199.36.158.100:443
ASN
#54113 FASTLY

Requested by
https://netflixgpt-72225.firebaseapp.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectfirebaseapp.com
Fingerprint6D:BD:C9:A0:A6:73:A0:9B:87:1C:93:A6:7E:16:92:6F:B5:1B:FB:4D
ValidityThu, 21 Mar 2024 15:15:15 GMT - Wed, 19 Jun 2024 15:15:14 GMT

File type
JavaScript source, ASCII text, with very long lines (37526)
Size
57 kB (57034 bytes)
Hash
53416cec20992a388a48f9af5bbdeea6
d3621af275afbfb9c2ef31cab51347ffecf82259
8ef56b08eb840058c8d76af58a1238a959bd6460f093013b928da553b8e2fd41

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Generic/Spear Phishing

HTTP Headers

GET /assets/index-iwGxcU9V.js HTTP/1.1
Host: netflixgpt-72225.firebaseapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://netflixgpt-72225.firebaseapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 57034
cache-control: max-age=3600
content-encoding: br
content-type: text/javascript; charset=utf-8
etag: "1140edd6590769e13c2e1231013ab715112681121bed40a8de64ab024d98c0e4-br"
last-modified: Fri, 03 May 2024 18:22:40 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Sat, 04 May 2024 17:27:02 GMT
x-served-by: cache-hel1410027-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1714843622.025826,VS0,VE97
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

netflixgpt-72225.firebaseapp.com/assets/index-BJ0uFKHg.css

199.36.158.100

200 OK

1.6 kB

URL GET HTTP/3
netflixgpt-72225.firebaseapp.com/assets/index-BJ0uFKHg.css
IP
199.36.158.100:443
ASN
#54113 FASTLY

Requested by
https://netflixgpt-72225.firebaseapp.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectfirebaseapp.com
Fingerprint6D:BD:C9:A0:A6:73:A0:9B:87:1C:93:A6:7E:16:92:6F:B5:1B:FB:4D
ValidityThu, 21 Mar 2024 15:15:15 GMT - Wed, 19 Jun 2024 15:15:14 GMT

File type
ASCII text, with very long lines (6129)
Size
1.6 kB (1557 bytes)
Hash
3a612bb3c4ff135bcdc38c986c7f27a4
24381433ab35764fdb91eeeee3383bccfd59a909
0383e188d02f433dce1900e486a1d00920b653f623ecae0f63c0a06320e8b71e

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Generic/Spear Phishing

HTTP Headers

GET /assets/index-BJ0uFKHg.css HTTP/1.1
Host: netflixgpt-72225.firebaseapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://netflixgpt-72225.firebaseapp.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 1557
cache-control: max-age=3600
content-encoding: br
content-type: text/css; charset=utf-8
etag: "9dd7ddc5decf121ca8ed283971f3185a563267384669eb9af50ac35683215815-br"
last-modified: Fri, 03 May 2024 18:22:40 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Sat, 04 May 2024 17:27:02 GMT
x-served-by: cache-hel1410027-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1714843622.026604,VS0,VE179
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn.cookielaw.org/logos/dd6b162f-1a32-456a-9cfe-897231c7763c/4345ea78-053c-46d2-b11e-09adaef973dc/Netflix_Logo_PMS.png

104.19.177.52

16 kB

URL GET
cdn.cookielaw.org/logos/dd6b162f-1a32-456a-9cfe-897231c7763c/4345ea78-053c-46d2-b11e-09adaef973dc/Netflix_Logo_PMS.png
IP
104.19.177.52:0
ASN
#13335 CLOUDFLARENET

Requested by
https://netflixgpt-72225.firebaseapp.com/

File type
PNG image data, 1801 x 756, 8-bit/color RGBA, non-interlaced
Size
16 kB (16386 bytes)
Hash
dcc4094709a2dc14af288844556ff9b7
0dd0347c55ca4f5332e11d5b742babf8aebf8d6f
675dd7b68acf580f893bec532f5b260b8f984b67734a9a6831334b2ff4aad384

HTTP Headers

GET /logos/dd6b162f-1a32-456a-9cfe-897231c7763c/4345ea78-053c-46d2-b11e-09adaef973dc/Netflix_Logo_PMS.png HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://netflixgpt-72225.firebaseapp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 17:27:02 GMT
content-type: application/octet-stream
content-length: 16386
content-md5: 3MQJRwmi3BSvKIhEVW/5tw==
last-modified: Mon, 18 May 2020 21:10:31 GMT
etag: 0x8D7FB6FE5CFC000
x-ms-request-id: 226f34b6-c01e-0042-5908-7c8003000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 30
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87ea32ff69a31c16-OSL
X-Firefox-Spdy: h2

assets.nflxext.com/ffe/siteui/vlv3/4d7bb476-6d8b-4c49-a8c3-7739fddd135c/53529d7d-a14c-4416-8478-fd7d29361c0d/US-en-20240429-popsignuptwoweeks-perspective_alpha_website_small.jpg

45.57.91.1

108 kB

URL GET
assets.nflxext.com/ffe/siteui/vlv3/4d7bb476-6d8b-4c49-a8c3-7739fddd135c/53529d7d-a14c-4416-8478-fd7d29361c0d/US-en-20240429-popsignuptwoweeks-perspective_alpha_website_small.jpg
IP
45.57.91.1:0
ASN
#40027 NETFLIX-ASN

Requested by
https://netflixgpt-72225.firebaseapp.com/

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 2000x1125, components 3
Size
108 kB (107521 bytes)
Hash
10d2480373fddd5730e82e68609eab7d
956cf2e841a3b96225841ff18ff18ce232f5a351
add017c85455e8b3325bb3be687f7be5b1599b452e7a63db8831f797f809bd29

HTTP Headers

GET /ffe/siteui/vlv3/4d7bb476-6d8b-4c49-a8c3-7739fddd135c/53529d7d-a14c-4416-8478-fd7d29361c0d/US-en-20240429-popsignuptwoweeks-perspective_alpha_website_small.jpg HTTP/1.1
Host: assets.nflxext.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://netflixgpt-72225.firebaseapp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 May 2024 17:27:02 GMT
Content-Type: image/jpeg
Content-Length: 107521
Connection: keep-alive
Content-MD5: ENJIA3P93Vcw6C5oYJ6rfQ==
Last-Modified: Wed, 01 May 2024 13:50:42 GMT
Cache-Control: max-age=604801
Expires: Sat, 11 May 2024 17:27:03 GMT
Accept-Ranges: bytes

netflixgpt-72225.firebaseapp.com/vite.svg

199.36.158.100

200 OK

673 B

URL GET HTTP/3
netflixgpt-72225.firebaseapp.com/vite.svg
IP
199.36.158.100:443
ASN
#54113 FASTLY

Requested by
https://netflixgpt-72225.firebaseapp.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectfirebaseapp.com
Fingerprint6D:BD:C9:A0:A6:73:A0:9B:87:1C:93:A6:7E:16:92:6F:B5:1B:FB:4D
ValidityThu, 21 Mar 2024 15:15:15 GMT - Wed, 19 Jun 2024 15:15:14 GMT

File type
SVG Scalable Vector Graphics image
Size
673 B (673 bytes)
Hash
8e3a10e157f75ada21ab742c022d5430
f7f39d7237b791a945d52a5cd7a8fb365f313366
4a748afd443918bb16591c834c401dae33e87861ab5dbad0811c3a3b4a9214fb

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Generic/Spear Phishing

HTTP Headers

GET /vite.svg HTTP/1.1
Host: netflixgpt-72225.firebaseapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://netflixgpt-72225.firebaseapp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 673
cache-control: max-age=3600
content-encoding: br
content-type: image/svg+xml
etag: "699a02e0e68a579f687d364bbbe7633161244f35af068220aee37b1b33dfb3c7-br"
last-modified: Fri, 03 May 2024 18:22:40 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Sat, 04 May 2024 17:27:02 GMT
x-served-by: cache-hel1410027-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1714843622.454359,VS0,VE191
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (1)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (6)

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/3

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/3

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET

IP

ASN

Requested by

File type

Size

Hash

HTTP Headers

URL GET

IP

ASN

Requested by

File type

Size

Hash

HTTP Headers

URL GET HTTP/3