Report - expensive-gem-ostrich.glitch.me/

Report Overview

Submitted URL
expensive-gem-ostrich.glitch.me/
IP
54.175.15.222
ASN
#14618 AMAZON-AES
Submitted
2024-05-10 15:21:09
Access
public
Website Title
Fishtopia Gimkit
Final URL
expensive-gem-ostrich.glitch.me/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
12
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17	2024-05-09	900 B	36 kB	104.17.25.14
expensive-gem-ostrich.glitch.me	unknown	2008-07-18	2023-03-16	2023-03-16	2.0 kB	3.4 kB	54.175.15.222
ajax.googleapis.com	12905	2005-01-25	2013-08-16	2024-05-09	446 B	32 kB	142.250.74.106
ka-f.fontawesome.com	3598	2012-10-18	2019-12-17	2024-05-09	1.5 kB	46 kB	172.67.139.119
unpkg.com	11693	2016-01-06	2016-01-08	2024-05-09	854 B	52 kB	104.17.249.203
kit.fontawesome.com	1868	2012-10-18	2019-12-16	2024-05-09	471 B	12 kB	104.18.40.68
ocsp.r2m03.amazontrust.com	unknown	2007-05-11	2023-02-21	2024-05-09	338 B	942 B	54.230.218.11

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2024-05-10 15:20:44	medium	Client IP	54.175.15.222	ET HUNTING Suspicious Glitch Hosted TLS SNI Request - Possible Phishing Landing
2024-05-10 15:20:44	medium	Client IP	54.175.15.222	ET HUNTING Suspicious Glitch Hosted TLS SNI Request - Possible Phishing Landing
2024-05-10 15:20:44	low	Client IP	54.175.15.222	ET INFO Observed Online Application Hosting Domain (glitch .me in TLS SNI)
2024-05-10 15:20:44	low	Client IP	54.175.15.222	ET INFO Observed Online Application Hosting Domain (glitch .me in TLS SNI)
2024-05-10 15:20:45	medium	Client IP	54.175.15.222	ET HUNTING Suspicious Glitch Hosted TLS SNI Request - Possible Phishing Landing
2024-05-10 15:20:45	medium	Client IP	54.175.15.222	ET HUNTING Suspicious Glitch Hosted TLS SNI Request - Possible Phishing Landing
2024-05-10 15:20:45	low	Client IP	54.175.15.222	ET INFO Observed Online Application Hosting Domain (glitch .me in TLS SNI)
2024-05-10 15:20:45	low	Client IP	54.175.15.222	ET INFO Observed Online Application Hosting Domain (glitch .me in TLS SNI)
2024-05-10 15:20:54	medium	Client IP	54.175.15.222	ET HUNTING Suspicious Glitch Hosted TLS SNI Request - Possible Phishing Landing
2024-05-10 15:20:54	low	Client IP	54.175.15.222	ET INFO Observed Online Application Hosting Domain (glitch .me in TLS SNI)
2024-05-10 15:20:54	medium	Client IP	54.175.15.222	ET HUNTING Suspicious Glitch Hosted TLS SNI Request - Possible Phishing Landing
2024-05-10 15:20:54	low	Client IP	54.175.15.222	ET INFO Observed Online Application Hosting Domain (glitch .me in TLS SNI)

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (5)

	URL	Size	First Seen	Last Seen
	expensive-gem-ostrich.glitch.me/auth.js	1.2 kB	2024-05-10	2024-05-10
Pretty URL expensive-gem-ostrich.glitch.me/auth.js IP 54.175.15.222 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-10 17:21:10 Last Seen2024-05-10 17:21:11 Times Seen2 Hash 50915a81a5ac3097b227c60dd69ba95e 260108342871e48d4c4f3960553b3681f63a6bc5 a0ae4ab51fc36e65ead40edb906310ac8065e7f579d4df4bd0176c48e00a8007 Loading...

	kit.fontawesome.com/391ee27491.js	12 kB	2024-05-10	2024-05-10
Pretty URL kit.fontawesome.com/391ee27491.js IP 104.18.40.68 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-10 17:21:10 Last Seen2024-05-10 17:21:11 Times Seen2 Hash 353158c9d5997ee0167f3fd8919b685a 4e658d5fc74a0b3ffacd6071d533422626c92574 a617037c90be3fee6986ccf6dda392839507acdb1d68c3fabded8451d49853dd Loading...

	ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js	90 kB	2023-03-07	2024-05-20
Pretty URL ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js IP 142.250.74.106 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:01 Last Seen2024-05-20 21:43:12 Times Seen145958 Hash dc5e7f18c8d36ac1d3d4753a87c98d0a c8e1c8b386dc5b7a9184c763c88d19a346eb3342 f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d Loading...

	unpkg.com/axios/dist/axios.min.js	42 kB	2024-03-15	2024-05-20
Pretty URL unpkg.com/axios/dist/axios.min.js IP 104.17.249.203 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-15 17:36:33 Last Seen2024-05-20 09:30:04 Times Seen11336 Hash 3b5b3d36fde8ffe8ed76b1efbfc65410 d63107d0912fdb387530d5ce2d512c928d73d122 29d600462a30694efd15b9848b4ca42d178cd067009275c35a30580121114304 Loading...

	cdnjs.cloudflare.com/ajax/libs/socket.io/2.2.0/socket.io.dev.js	154 kB	2024-05-10	2024-05-10
Pretty URL cdnjs.cloudflare.com/ajax/libs/socket.io/2.2.0/socket.io.dev.js IP 104.17.24.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-10 17:21:10 Last Seen2024-05-10 17:21:11 Times Seen2 Hash 3bccb5980916656ee81f9f86bb290754 f8d4ac7dbf728073ad0adb7f650f92c3d2e411b3 8b63ab862dfdec758f9fddebb025135bc1c1a2ca3ae6f63f54d4e5966f4abaaa Loading...

HTTP Transactions (14)

	URL	IP	Response	Size
	ocsp.r2m03.amazontrust.com/	54.230.218.11		471 B
URL ocsp.r2m03.amazontrust.com/ IP 54.230.218.11:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash 0adbdc74383c8b4b4ea0d2bc8d982639 823eb7ec53e4c9f4b986487c365748f2893ecaf0 31933a65d62f0ae87c723ba9f0264bf17872295df49f2dd7ea9f21746b683c34 HTTP Headers `POST / HTTP/1.1 Host: ocsp.r2m03.amazontrust.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: max-age=7200 Date: Fri, 10 May 2024 15:20:44 GMT Last-Modified: Fri, 10 May 2024 13:43:54 GMT Server: ECAcc (ska/F73C) X-Cache: Miss from cloudfront Via: 1.1 3bff78035f818b6a3185b0f5f4586410.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: vfYszjvcfYrYRAZi5gNx-99DBtso86LLZ4i6I3jCjVFUTs8p1Oa0JQ== Age: 5810`

	cdnjs.cloudflare.com/ajax/libs/bowser/1.9.4/bowser.min.js	104.17.25.14		2.6 kB
URL cdnjs.cloudflare.com/ajax/libs/bowser/1.9.4/bowser.min.js IP 104.17.25.14:0 ASN #13335 CLOUDFLARENET File type JavaScript source, ASCII text, with very long lines (7791) Size 2.6 kB (2561 bytes) Hash 557e1db8c44d751c997a04f411a61598 849afb67561b75e90bc3ca310db3a82742a064ac b52f6b6011741e76cefa2be41164bbc9b33bba334b9ad15b03abad37b609d983 HTTP Headers `GET /ajax/libs/bowser/1.9.4/bowser.min.js HTTP/1.1 Host: cdnjs.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://expensive-gem-ostrich.glitch.me/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Fri, 10 May 2024 15:20:45 GMT content-type: application/javascript; charset=utf-8 content-length: 2561 access-control-allow-origin: * cache-control: public, max-age=30672000 content-encoding: br etag: "5eb03d90-1edd" last-modified: Mon, 04 May 2020 16:06:40 GMT cf-cdnjs-via: cfworker/kv cross-origin-resource-policy: cross-origin timing-allow-origin: * x-content-type-options: nosniff vary: Accept-Encoding cf-cache-status: HIT age: 42376 expires: Wed, 30 Apr 2025 15:20:45 GMT accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Pz5FBOgTBZqNpqonO2ID6Wab0fG3%2BHcVzld0O5Z8pQzTG2F9Yeic43IFDHqpQ%2FFVKjWFDtJvPy8fEUV6YfEExaFia1qM%2BpPHaS0%2BRiJY5QxCN4PmLI86Zk3McUbff%2FQl3H4XZLkr"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} strict-transport-security: max-age=15780000 server: cloudflare cf-ray: 881aea414ad9b4ff-OSL alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	expensive-gem-ostrich.glitch.me/___glitch_loading_status___	54.175.15.222		0 B
URL expensive-gem-ostrich.glitch.me/___glitch_loading_status___ IP 54.175.15.222:0 ASN #14618 AMAZON-AES File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /___glitch_loading_status___ HTTP/1.1 Host: expensive-gem-ostrich.glitch.me User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: https://expensive-gem-ostrich.glitch.me Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: DHReoEKQMpcqe/cdgFWTdA== DNT: 1 Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Date: Fri, 10 May 2024 15:20:45 GMT Connection: upgrade upgrade: websocket sec-websocket-accept: exwjCPWFGUE0w5bzyR1LDSTLOTA=`

	expensive-gem-ostrich.glitch.me/	54.175.15.222	200 OK	821 B
URL User Request GET HTTP/2 expensive-gem-ostrich.glitch.me/ IP 54.175.15.222:443 ASN #14618 AMAZON-AES Certificate IssuerAmazon Subjectglitch.com Fingerprint57:4F:13:8A:33:42:32:7C:F7:C9:C5:1F:DF:C1:35:65:F0:E9:70:EE ValidityMon, 04 Dec 2023 00:00:00 GMT - Wed, 01 Jan 2025 23:59:59 GMT File type HTML document, ASCII text Size 821 B (821 bytes) Hash 6731a4b60c768004ad4f180eba1c72e3 22779216815dd3aa7cbd45daeb4f2b0c0f23e3a0 cb97e97b18ae338b3a13e46fcd82a6125f80236263b8152311e2a5d7b43f0178 HTTP Headers `GET / HTTP/1.1 Host: expensive-gem-ostrich.glitch.me User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK date: Fri, 10 May 2024 15:20:54 GMT content-type: text/html; charset=UTF-8 content-length: 821 x-powered-by: Express access-control-allow-origin: * access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept accept-ranges: bytes cache-control: public, max-age=0 last-modified: Mon, 09 Jan 2023 21:04:59 GMT etag: W/"335-1859859c878" X-Firefox-Spdy: h2`

	cdnjs.cloudflare.com/ajax/libs/socket.io/2.2.0/socket.io.dev.js	104.17.24.14	200 OK	32 kB
URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/socket.io/2.2.0/socket.io.dev.js IP 104.17.24.14:443 ASN #13335 CLOUDFLARENET Requested by https://expensive-gem-ostrich.glitch.me/ Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT File type JavaScript source, ASCII text Size 32 kB (31655 bytes) Hash 3bccb5980916656ee81f9f86bb290754 f8d4ac7dbf728073ad0adb7f650f92c3d2e411b3 8b63ab862dfdec758f9fddebb025135bc1c1a2ca3ae6f63f54d4e5966f4abaaa HTTP Headers `GET /ajax/libs/socket.io/2.2.0/socket.io.dev.js HTTP/1.1 Host: cdnjs.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://expensive-gem-ostrich.glitch.me/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Fri, 10 May 2024 15:20:54 GMT content-type: application/javascript; charset=utf-8 content-length: 31655 access-control-allow-origin: * cache-control: public, max-age=30672000 content-encoding: br etag: "5eb03fd5-25b25" last-modified: Mon, 04 May 2020 16:16:21 GMT cf-cdnjs-via: cfworker/kv cross-origin-resource-policy: cross-origin timing-allow-origin: * x-content-type-options: nosniff vary: Accept-Encoding cf-cache-status: HIT age: 786559 expires: Wed, 30 Apr 2025 15:20:54 GMT accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5xfVXXn%2BPpv%2BwHXluwVD34L2hColw4kOjrQGKETBK2O%2FDP0LJ39%2FBGor76UoEGP5S4981Wo3wYyd4hf5O9n7h8jG0weN4pCOZofq0KelFRTRP%2FFKQRAMfl%2BNpqTBnlr%2FY3Kk2miZ"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} strict-transport-security: max-age=15780000 server: cloudflare cf-ray: 881aea7fa9fc712d-OSL alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	expensive-gem-ostrich.glitch.me/auth.js	54.175.15.222	200 OK	1.2 kB
URL GET HTTP/2 expensive-gem-ostrich.glitch.me/auth.js IP 54.175.15.222:443 ASN #14618 AMAZON-AES Requested by https://expensive-gem-ostrich.glitch.me/ Certificate IssuerAmazon Subjectglitch.com Fingerprint57:4F:13:8A:33:42:32:7C:F7:C9:C5:1F:DF:C1:35:65:F0:E9:70:EE ValidityMon, 04 Dec 2023 00:00:00 GMT - Wed, 01 Jan 2025 23:59:59 GMT File type JavaScript source, ASCII text Size 1.2 kB (1213 bytes) Hash 50915a81a5ac3097b227c60dd69ba95e 260108342871e48d4c4f3960553b3681f63a6bc5 a0ae4ab51fc36e65ead40edb906310ac8065e7f579d4df4bd0176c48e00a8007 HTTP Headers `GET /auth.js HTTP/1.1 Host: expensive-gem-ostrich.glitch.me User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://expensive-gem-ostrich.glitch.me/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK date: Fri, 10 May 2024 15:20:55 GMT content-type: application/javascript; charset=UTF-8 content-length: 1213 x-powered-by: Express access-control-allow-origin: * access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept accept-ranges: bytes cache-control: public, max-age=0 last-modified: Mon, 09 Jan 2023 21:05:01 GMT etag: W/"4bd-1859859d048" X-Firefox-Spdy: h2`

	ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js	142.250.74.106	200 OK	31 kB
URL GET HTTP/2 ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js IP 142.250.74.106:443 ASN #15169 GOOGLE Requested by https://expensive-gem-ostrich.glitch.me/ Certificate IssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT File type JavaScript source, ASCII text, with very long lines (65451) Size 31 kB (31021 bytes) Hash dc5e7f18c8d36ac1d3d4753a87c98d0a c8e1c8b386dc5b7a9184c763c88d19a346eb3342 f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d HTTP Headers `GET /ajax/libs/jquery/3.5.1/jquery.min.js HTTP/1.1 Host: ajax.googleapis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://expensive-gem-ostrich.glitch.me/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK accept-ranges: bytes content-encoding: gzip access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers" report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]} timing-allow-origin: * content-length: 31021 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Fri, 10 May 2024 02:27:35 GMT expires: Sat, 10 May 2025 02:27:35 GMT cache-control: public, max-age=31536000, stale-while-revalidate=2592000 age: 46400 last-modified: Fri, 08 May 2020 07:05:03 GMT content-type: text/javascript; charset=UTF-8 vary: Accept-Encoding alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ka-f.fontawesome.com/releases/v5.15.4/css/free.min.css?token=391ee27491	172.67.139.119	200 OK	13 kB
URL GET HTTP/2 ka-f.fontawesome.com/releases/v5.15.4/css/free.min.css?token=391ee27491 IP 172.67.139.119:443 ASN #13335 CLOUDFLARENET Requested by https://expensive-gem-ostrich.glitch.me/ Certificate IssuerGoogle Trust Services LLC Subjectka-f.fontawesome.com FingerprintB7:87:04:20:5C:0E:FA:B1:92:D1:3B:91:3F:39:7C:48:5C:CB:01:EA ValidityFri, 03 May 2024 11:08:04 GMT - Thu, 01 Aug 2024 11:08:03 GMT File type gzip compressed data, from Unix Size 13 kB (12907 bytes) Hash dab08db74c35a90949cb27e38cd23297 edaaf90a330c185f51fe93986593e4e50e303efb 14439f189a44eb905b9d412e2f8ed012bb5eb8568fc0477091fb1fcebc7502e4 HTTP Headers `GET /releases/v5.15.4/css/free.min.css?token=391ee27491 HTTP/1.1 Host: ka-f.fontawesome.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://expensive-gem-ostrich.glitch.me/ Origin: https://expensive-gem-ostrich.glitch.me DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Fri, 10 May 2024 15:20:55 GMT content-type: text/css access-control-allow-origin: * access-control-allow-methods: GET access-control-max-age: 3000 last-modified: Wed, 04 Aug 2021 18:53:09 GMT etag: W/"a12ec7ebe75a4d59a5dd6b79e2ba2e16" cache-control: max-age=31556926 access-control-allow-headers: fa-kit-token content-encoding: gzip vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: _oi-F2JLF1x8ASOMdM6g8x4oriEMZsVzswcEAVodDLKHoUgeFCxHRA== cf-cache-status: MISS report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xHid2oEN692M8Dm%2B2zLNmQUxsg%2FgPhcvS3nJvPAText51qs%2Bw%2BIxTL%2BpxS75w4rdStlo3nc36tK1yJ%2FmTVZFmsHQEfN83syry7By5n6gKNv4%2B%2FiVujxBYLKGjTI2UPAs%2F4rnLO7mTg%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 881aea81da2f56a5-OSL alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	unpkg.com/axios/dist/axios.min.js	104.17.249.203	302 Found	9.0 kB
URL GET HTTP/2 unpkg.com/axios/dist/axios.min.js IP 104.17.249.203:443 ASN #13335 CLOUDFLARENET Requested by https://expensive-gem-ostrich.glitch.me/ Certificate IssuerGoogle Trust Services LLC Subjectunpkg.com Fingerprint2E:F1:F6:31:28:EC:29:20:41:F4:58:4B:B1:CF:51:16:77:7E:BF:E3 ValidityMon, 01 Apr 2024 02:40:24 GMT - Sun, 30 Jun 2024 02:40:23 GMT File type ASCII text, with no line terminators Size 9.0 kB (8951 bytes) Hash a24d7c80a1a0e65a5789d8ed055e68b0 e3646941215d3a4e589a91ea2cc194854c46d21b 3e75686868171c7497560cf03b959c165b1924cf438388ec9c0b9655396d2bb6 HTTP Headers `GET /axios/dist/axios.min.js HTTP/1.1 Host: unpkg.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://expensive-gem-ostrich.glitch.me/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 302 Found date: Fri, 10 May 2024 15:20:54 GMT content-type: text/plain; charset=utf-8 access-control-allow-origin: * cache-control: public, s-maxage=600, max-age=60 location: /axios@1.6.8/dist/axios.min.js vary: Accept, Accept-Encoding content-encoding: br via: 1.1 fly.io fly-request-id: 01HXHGZSBC7W30SRTTG2PM0K91-arn cf-cache-status: HIT age: 517 strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff server: cloudflare cf-ray: 881aea7f9c465693-OSL X-Firefox-Spdy: h2

	unpkg.com/axios@1.6.8/dist/axios.min.js	104.17.249.203	200 OK	42 kB
URL GET HTTP/2 unpkg.com/axios@1.6.8/dist/axios.min.js IP 104.17.249.203:443 ASN #13335 CLOUDFLARENET Requested by https://expensive-gem-ostrich.glitch.me/ Certificate IssuerGoogle Trust Services LLC Subjectunpkg.com Fingerprint2E:F1:F6:31:28:EC:29:20:41:F4:58:4B:B1:CF:51:16:77:7E:BF:E3 ValidityMon, 01 Apr 2024 02:40:24 GMT - Sun, 30 Jun 2024 02:40:23 GMT File type JavaScript source, ASCII text, with very long lines (41442) Size 42 kB (41481 bytes) Hash 3b5b3d36fde8ffe8ed76b1efbfc65410 d63107d0912fdb387530d5ce2d512c928d73d122 29d600462a30694efd15b9848b4ca42d178cd067009275c35a30580121114304 HTTP Headers `GET /axios@1.6.8/dist/axios.min.js HTTP/1.1 Host: unpkg.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://expensive-gem-ostrich.glitch.me/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Fri, 10 May 2024 15:20:55 GMT content-type: application/javascript; charset=utf-8 access-control-allow-origin: * content-encoding: br cache-control: public, max-age=31536000 last-modified: Sat, 26 Oct 1985 08:15:00 GMT etag: "a209-1jEH0JEv2zh1MNXOLVEsko1z0SI" via: 1.1 fly.io fly-request-id: 01HWR4SQ10CZK3T39W1B2GFCAN-arn cf-cache-status: HIT age: 852161 vary: Accept-Encoding strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff server: cloudflare cf-ray: 881aea7fdc995693-OSL X-Firefox-Spdy: h2

	kit.fontawesome.com/391ee27491.js	104.18.40.68	200 OK	12 kB
URL GET HTTP/2 kit.fontawesome.com/391ee27491.js IP 104.18.40.68:443 ASN #13335 CLOUDFLARENET Requested by https://expensive-gem-ostrich.glitch.me/ Certificate IssuerDigiCert Inc Subject.fontawesome.com Fingerprint93:F9:69:8C:73:B0:08:60:65:F3:39:41:39:66:D3:2B:78:3A:6E:3D ValidityMon, 04 Dec 2023 00:00:00 GMT - Fri, 03 Jan 2025 23:59:59 GMT File type JavaScript source, ASCII text, with very long lines (11461) Size 12 kB (11892 bytes) Hash 353158c9d5997ee0167f3fd8919b685a 4e658d5fc74a0b3ffacd6071d533422626c92574 a617037c90be3fee6986ccf6dda392839507acdb1d68c3fabded8451d49853dd HTTP Headers `GET /391ee27491.js HTTP/1.1 Host: kit.fontawesome.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://expensive-gem-ostrich.glitch.me DNT: 1 Connection: keep-alive Referer: https://expensive-gem-ostrich.glitch.me/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Fri, 10 May 2024 15:20:55 GMT content-type: text/javascript access-control-allow-headers: accept, accept-langauge, content-language, content-type, fa-kit-token access-control-allow-methods: GET, OPTIONS access-control-allow-origin: * access-control-max-age: 3000 cache-control: max-age=60, public, stale-while-revalidate=30 vary: origin, accept-encoding, access-control-request-headers, access-control-request-method x-request-id: F84pyd2KsYrZJeuWQVZC cf-cache-status: MISS server: cloudflare cf-ray: 881aea7f98870b06-OSL content-encoding: gzip X-Firefox-Spdy: h2

	expensive-gem-ostrich.glitch.me/favicon.ico	54.175.15.222	404 Not Found	41 B
URL GET HTTP/2 expensive-gem-ostrich.glitch.me/favicon.ico IP 54.175.15.222:443 ASN #14618 AMAZON-AES Requested by https://expensive-gem-ostrich.glitch.me/ Certificate IssuerAmazon Subjectglitch.com Fingerprint57:4F:13:8A:33:42:32:7C:F7:C9:C5:1F:DF:C1:35:65:F0:E9:70:EE ValidityMon, 04 Dec 2023 00:00:00 GMT - Wed, 01 Jan 2025 23:59:59 GMT File type troff or preprocessor input, ASCII text, with no line terminators Size 41 B (41 bytes) Hash a669c41f7646dea82e4ec966c33a85a6 9714df6e4fe016796f40a8a584df016fca3a12f4 da724a54f718e48363f539e58c6254871629e92346a178271bd284939c492695 HTTP Headers `GET /favicon.ico HTTP/1.1 Host: expensive-gem-ostrich.glitch.me User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://expensive-gem-ostrich.glitch.me/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/2 404 Not Found date: Fri, 10 May 2024 15:20:55 GMT content-type: application/json; charset=utf-8 content-length: 41 x-powered-by: Express access-control-allow-origin: * access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept etag: W/"29-ez+/4q2ZCrnbP3rYG8Hi5f+25uE" X-Firefox-Spdy: h2`

	ka-f.fontawesome.com/releases/v5.15.4/css/free-v4-shims.min.css?token=391ee27491	172.67.139.119	200 OK	27 kB
URL GET HTTP/2 ka-f.fontawesome.com/releases/v5.15.4/css/free-v4-shims.min.css?token=391ee27491 IP 172.67.139.119:443 ASN #13335 CLOUDFLARENET Requested by https://expensive-gem-ostrich.glitch.me/ Certificate IssuerGoogle Trust Services LLC Subjectka-f.fontawesome.com FingerprintB7:87:04:20:5C:0E:FA:B1:92:D1:3B:91:3F:39:7C:48:5C:CB:01:EA ValidityFri, 03 May 2024 11:08:04 GMT - Thu, 01 Aug 2024 11:08:03 GMT File type ASCII text, with very long lines (26500) Size 27 kB (26682 bytes) Hash 76f34b71fc9fb641507ff6a822cc07f5 73ed2f8f21cd40fb496e61306acbb5849d4dbff4 6dea47458a4cd7cd7312cc780a53c62e0c8b3ccc8d0b13c1ac0ea6e3dfcecea8 HTTP Headers `GET /releases/v5.15.4/css/free-v4-shims.min.css?token=391ee27491 HTTP/1.1 Host: ka-f.fontawesome.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://expensive-gem-ostrich.glitch.me/ Origin: https://expensive-gem-ostrich.glitch.me DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Fri, 10 May 2024 15:20:55 GMT content-type: text/css access-control-allow-origin: * access-control-allow-methods: GET access-control-max-age: 3000 last-modified: Wed, 04 Aug 2021 18:53:09 GMT etag: W/"76f34b71fc9fb641507ff6a822cc07f5" cache-control: max-age=31556926 access-control-allow-headers: fa-kit-token content-encoding: gzip vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: KLO1G7SQFmrQyjRtjgRpLvp8lisYgljnoLI98gen1_-zX5lkA6dyCQ== cf-cache-status: MISS report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RXDdXnHs10YYccNuNBGlv4rY8n%2FUftDn36%2FWR6fHyRxkSroi3h1fpvtQSNyFhVYeyRfQUJGTIXCvLG1RZyLdELQx13ehJTOEHi%2B5rMESy9niWwAz9c0sDQxACnxPc8%2B8JHEDHTQgPw%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 881aea81ea3756a5-OSL alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	ka-f.fontawesome.com/releases/v5.15.4/css/free-v4-font-face.min.css?token=391ee27491	172.67.139.119	200 OK	3.0 kB
URL GET HTTP/2 ka-f.fontawesome.com/releases/v5.15.4/css/free-v4-font-face.min.css?token=391ee27491 IP 172.67.139.119:443 ASN #13335 CLOUDFLARENET Requested by https://expensive-gem-ostrich.glitch.me/ Certificate IssuerGoogle Trust Services LLC Subjectka-f.fontawesome.com FingerprintB7:87:04:20:5C:0E:FA:B1:92:D1:3B:91:3F:39:7C:48:5C:CB:01:EA ValidityFri, 03 May 2024 11:08:04 GMT - Thu, 01 Aug 2024 11:08:03 GMT File type ASCII text, with very long lines (3007), with no line terminators Size 3.0 kB (2956 bytes) Hash 164aeedbf1c90c5467de5320f9f2d89e 63fdf9f59785c7b84dc82523cc76d81773e9c60b 676748e7bec72f0310e785f353d6b9e33305b577b57a08c57f98d1ce9e77ed25 HTTP Headers GET /releases/v5.15.4/css/free-v4-font-face.min.css?token=391ee27491 HTTP/1.1 Host: ka-f.fontawesome.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://expensive-gem-ostrich.glitch.me/ Origin: https://expensive-gem-ostrich.glitch.me DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK date: Fri, 10 May 2024 15:20:55 GMT content-type: text/css access-control-allow-origin: * access-control-allow-methods: GET access-control-max-age: 3000 last-modified: Wed, 04 Aug 2021 18:53:09 GMT etag: W/"f2e0b2680d9b0bcb6e0039c4424e5a59" cache-control: max-age=31556926 access-control-allow-headers: fa-kit-token content-encoding: gzip vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: XU3ISmjEDLFoD8Xf0t8KCqbaTLqzoBEBap3rFu8bL3WHAWIyGoaqqg== cf-cache-status: MISS report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gPMphTkThJhqYNn9ewbWfcM2KiWTXG%2F%2FJefO1L0ibJiXlgpcBCX3fNpB6HRx2IVO4lLgO1AStCMO3qS%2Fvm2IrohquJmKoAbS47XIK%2FsBlBt%2BNbSlLT41hxp7i7hziq71SCB5TukZHA%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 881aea81da2856a5-OSL alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (5)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (14)

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type