Report - u953927-429.web.app/

Domain Summary

Domain	Rank	First Seen	Last Seen	Sent	Received	IP
ocsp.pki.goog (1)	175	2018-07-01 08:43:07	2023-06-06 05:09:25	350	712	142.250.74.3
u953927-429.web.app (2)	unknown	2023-06-05 14:48:10	2023-06-05 23:00:14	923	238486	199.36.158.100

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

Scan Date	Severity	Indicator	Alert
2023-06-05	medium	u953927-429.web.app/
2023-06-05	medium	u953927-429.web.app/

PhishTank

Scan Date	Severity	Indicator	Alert
2023-06-06	medium	u953927-429.web.app/
2023-06-06	medium	u953927-429.web.app/favicon.ico

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-06-06	medium	u953927-429.web.app
2023-06-06	medium	u953927-429.web.app

ThreatFox

No alerts detected

JavaScript (0)

HTTP Transactions (3)

URL IP Response Size

u953927-429.web.app/

199.36.158.100

200 OK

118698

URL User Request GET HTTP/2

u953927-429.web.app/
IP

199.36.158.100:443
ASN

#54113 FASTLY

Certificate

IssuerGoogle Trust Services LLC

Subjectweb.app

Fingerprint4E:21:5F:50:F4:50:7E:03:EA:B2:34:D3:10:A5:7D:22:77:B1:BF:22

ValidityWed, 10 May 2023 14:59:43 GMT - Tue, 08 Aug 2023 14:59:42 GMT

Magic

HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (65403), with CRLF line terminators

Size

118698
Hash

3ce8eacbf964c16d3a6fa64c7ecda5ac

2fde8e5c646aa18f13b7197d734511bf7b41f6cd

f44550d1bad3f3d0830af1b538fbcfe0db3caf80188306e4213e3decd26e246f

Detections

Analyzer	Verdict	Alert
openphish	Generic/Spear Phishing
phishtank	Other
quad9	Sinkholed

HTTP Headers

                                        GET / HTTP/1.1
Host: u953927-429.web.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: text/html; charset=utf-8
etag: "882ca9259bf6db780a817ba3c6bdd4fe56a5d1e7af901faf335849a734c596d3-br"
last-modified: Wed, 17 May 2023 22:57:39 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Tue, 06 Jun 2023 05:27:09 GMT
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1686029229.218409,VS0,VE2
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 118698
X-Firefox-Spdy: h2

ocsp.pki.goog/s/gts1d4int/wrllXI_-LL8

142.250.74.3

472

URL

ocsp.pki.goog/s/gts1d4int/wrllXI_-LL8
IP

142.250.74.3:0
ASN

#15169 GOOGLE

Magic

data

Size

472
Hash

89450551b8a5d60bb38fc1fa19a46f4b

b146c696ea3a152475469f4b0ee49c9698d0a685

068c6d6c245bf0438476c5208158d772d1eae8376b0f748928a0a68a49f5a6bc

HTTP Headers

                                        POST /s/gts1d4int/wrllXI_-LL8 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Jun 2023 05:27:09 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

u953927-429.web.app/favicon.ico

199.36.158.100

404 Not Found

118558

URL GET HTTP/3

u953927-429.web.app/favicon.ico
IP

199.36.158.100:443
ASN

#54113 FASTLY

Requested by

https://u953927-429.web.app/
Certificate

IssuerGoogle Trust Services LLC

Subjectweb.app

Fingerprint4E:21:5F:50:F4:50:7E:03:EA:B2:34:D3:10:A5:7D:22:77:B1:BF:22

ValidityWed, 10 May 2023 14:59:43 GMT - Tue, 08 Aug 2023 14:59:42 GMT

Magic

HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (65396), with CRLF line terminators

Size

118558
Hash

c75a8748812a266ab2df807c80189178

7f8a03f87dd5f3d55314724326544431ab346122

01c5607500cf3d324b809f76cb9025d2a977f4151832e486cc14b736f96062c1

Detections

Analyzer	Verdict	Alert
openphish	Generic/Spear Phishing
phishtank	Other
quad9	Sinkholed

HTTP Headers

                                        GET /favicon.ico HTTP/1.1
Host: u953927-429.web.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://u953927-429.web.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/3 404 Not Found
content-length: 118558
cache-control: max-age=3600
content-encoding: gzip
content-type: text/html; charset=utf-8
etag: "36df76378a233c4f58e3c3a4dc5ef41161c3581a75559b374a2e135f9f25e626"
last-modified: Wed, 17 May 2023 22:57:39 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Tue, 06 Jun 2023 05:27:09 GMT
x-served-by: cache-bma1676-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1686029230.841647,VS0,VE2
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

Report Overview

URL

IP

ASN

Submitted

Access

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (0)

HTTP Transactions (3)

URL User Request GET HTTP/2

IP

ASN

Certificate

Magic

Size

Hash

Detections

HTTP Headers

URL

IP

ASN

Magic

Size

Hash

HTTP Headers

URL GET HTTP/3

IP

ASN

Requested by

Certificate

Magic

Size

Hash

Detections

HTTP Headers