Report - luxl.cashappcard.club/c/aed76ea9a72a3fa0?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME_

Report Overview

Visited public
2023-10-24 04:00:35
Tags
URL
luxl.cashappcard.club/c/aed76ea9a72a3fa0?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Finishing URL
luxl.cashappcard.club/c/aed76ea9a72a3fa0?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
IP / ASN
52.19.101.114
#16509 AMAZON-02
Title
Get your CASH - Cash App BONUS

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
tt.stfilecamp.com	unknown	2021-09-06	2022-03-08 16:47:05	2023-10-22 22:00:22	1.3 kB	488 kB	205.185.216.42
cdn.stfilecamp.com	400667	2021-09-06	2021-09-06 17:32:03	2023-10-22 22:00:22	1.2 kB	42 kB	205.185.216.42
stormtrk.com	289095	2019-05-15	2019-05-17 20:09:53	2023-10-22 22:00:23	787 B	33 kB	104.26.4.120
luxl.cashappcard.club	unknown	2023-09-27	2023-10-03 10:00:25	2023-10-21 14:00:20	722 B	23 kB	52.19.101.114
cdn-adef.akamaized.net	125719	2014-03-18	2018-02-06 08:56:01	2023-10-23 11:03:32	3.7 kB	247 kB	23.36.76.194
api.imotech.video	140520	2019-11-08	2021-01-28 14:59:54	2023-10-23 00:30:49	6.5 kB	26 kB	104.166.188.188
cdnjs.claudflare.io	unknown	2021-08-09	2021-08-12 10:01:46	2023-10-22 22:00:21	451 B	92 kB	206.189.196.86
route.frest.pro	unknown	2022-10-19	2023-01-02 14:11:29	2023-10-22 22:00:22	514 B	746 B	172.67.211.109

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2023-10-14	medium	luxl.cashappcard.club/c/aed76ea9a72a3fa0?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__	Square, Inc.

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-10-24	medium	claudflare.io	Sinkholed

ThreatFox

No alerts detected

JavaScript (11)

	URL	From	Size	First Seen	Last Seen
	tt.stfilecamp.com/jsfiles/second_back_multi_bigo.js	ScriptElement	2.3 kB	2023-03-08	2024-09-20
Pretty URL tt.stfilecamp.com/jsfiles/second_back_multi_bigo.js IP 205.185.216.42 ASN #20446 STACKPATH-CDN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:39 Last Seen2024-09-20 21:37 Times Seen21 Hash 96af925d55cad494665471c73ac01b04 5d2b1c06d2edb1a1ba9a5335c5dbb73c508b879b 1109fbd42583528695ba5995a756fd0fd09a992a85f50e54862e4b13c1cf75c2 Loading...

	cdn.stfilecamp.com/fp.min.js	ScriptElement	32 kB	2023-04-06	2025-05-09
Pretty URL cdn.stfilecamp.com/fp.min.js IP 205.185.216.42 ASN #20446 STACKPATH-CDN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-06 21:01 Last Seen2025-05-09 18:17 Times Seen568 Hash 198f2f5b0a649f41fe890c59d37319aa f24629687612889bb59f610df3879afcd766fb80 d2bc2cb800679f495a7731c105b2e2047965800515f98008867ab33edc940912 Loading...

	cdn.stfilecamp.com/multi_push.js	ScriptElement	1.1 kB	2023-03-07	2024-08-21
Pretty URL cdn.stfilecamp.com/multi_push.js IP 205.185.216.42 ASN #20446 STACKPATH-CDN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2024-08-21 09:42 Times Seen51 Hash a50322f9d3f3fafe3fb02be02285e433 c0a894b3bfa545832c3ad1c2f145005d02e50ac4 cb763e10664b93ac12aaead7af7b0838195e45eb89f678ebb3f5776b147f5d99 Loading...

	tt.stfilecamp.com/jsfiles/site-protect2.0.js	ScriptElement	3.1 kB	2023-03-07	2025-03-07
Pretty URL tt.stfilecamp.com/jsfiles/site-protect2.0.js IP 205.185.216.42 ASN #20446 STACKPATH-CDN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-03-07 04:00 Times Seen89 Hash fc96ab06b0f9fcea6731405215ae5daf 8af9f27d895eb69754919a2fc0d74760fecd3860 9243e166cbcd628fd992eba59544ebf99328fd4db7c0c08c2fb28a7af14d759e Loading...

	cdnjs.claudflare.io/ajax/libs/jquery/3.6.0/d/jquery.min.js?1696402910	ScriptElement	92 kB	2023-10-15	2023-10-31
Pretty URL cdnjs.claudflare.io/ajax/libs/jquery/3.6.0/d/jquery.min.js?1696402910 IP 206.189.196.86 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-15 10:00 Last Seen2023-10-31 09:00 Times Seen7 Hash b5c3d25047eb3415e401a40da41e5118 d0a4ccdf5cd564dd297e783911dd108e5f6a8ef3 8877058afffb4c9b8bffde8daf79fc766ad4234631f9446ebe1df65d877b34f9 Loading...

	cdn-adef.akamaized.net/landings/283148/1696402910/js/canvas-scratch.js?1696402910	ScriptElement	6.5 kB	2023-10-20	2023-10-24
Pretty URL cdn-adef.akamaized.net/landings/283148/1696402910/js/canvas-scratch.js?1696402910 IP 23.36.76.194 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-20 22:00 Last Seen2023-10-24 06:00 Times Seen3 Hash 3a7fb854caf6c278c14e86d216d1edec 3cecc1d6aa9509c7a9cfcaf2c79a42f7d3b7c9ca 0511a0eac20b207c0fb4cbab01ec325db9a56316e16f321624a7d76c24747c27 Loading...

	cdn-adef.akamaized.net/landings/283148/1696402910/js/main.js?1696402910	ScriptElement	9.8 kB	2023-10-20	2023-10-24
Pretty URL cdn-adef.akamaized.net/landings/283148/1696402910/js/main.js?1696402910 IP 23.36.76.194 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-20 22:00 Last Seen2023-10-24 06:00 Times Seen3 Hash c420dc0249fc264d41b706092c5fc7f2 e18fbeab2fb32c77972aee77f337d83ee4f4986f 35e21fba5f6b28dca1c8105d3cfdb903933bdfd02d1bb3bf0d150180d3925ff4 Loading...

	cdn-adef.akamaized.net/landings/283148/1696402910/js/collector.js?1696402910	ScriptElement	5.6 kB	2023-10-15	2024-08-21
Pretty URL cdn-adef.akamaized.net/landings/283148/1696402910/js/collector.js?1696402910 IP 23.36.76.194 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-15 10:00 Last Seen2024-08-21 04:39 Times Seen9 Hash 93e4a4c9c70b874b19f31dc31f0aaa16 80dd02667e6dbbcb27e9640432206428a08861c2 b9c056ce3df686a7b1462e24754bb83f4b522f167a79f38e6e2e467341c71ad0 Loading...

	luxl.cashappcard.club/c/aed76ea9a72a3fa0?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__	ScriptElement	128 B	2023-10-15	2024-08-21
Pretty URL luxl.cashappcard.club/c/aed76ea9a72a3fa0?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__ IP 52.19.101.114 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-10-15 10:00 Last Seen2024-08-21 04:39 Times Seen6 Hash 649fd883513ab731dc5ac4453d84bae7 4763c1a9570c74830cc94adfae7077aab12bec86 8f82953bf90a1a2bcd6e591b2157707b83d35e47c943f3f47b46991981e38e8a Loading...

	api.imotech.video/ad/events.js?pixel_id=903883351103051008	ScriptElement	64 kB	2023-10-15	2023-10-29
Pretty URL api.imotech.video/ad/events.js?pixel_id=903883351103051008 IP 104.166.188.188 ASN #21859 ZEN-ECN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-15 10:00 Last Seen2023-10-29 19:16 Times Seen8 Hash 23dcfaf1121f59dae1a879f3caa81803 b07663ff8d798e149fd233449578e919ae436658 e0e073c811c4eb13048220e8c0cab51d0c447e16ef2d674da9e84bb6cd634726 Loading...

	cdn.stfilecamp.com/stormtrk.js	ScriptElement	6.8 kB	2023-03-12	2025-03-07
Pretty URL cdn.stfilecamp.com/stormtrk.js IP 205.185.216.42 ASN #20446 STACKPATH-CDN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 06:32 Last Seen2025-03-07 06:00 Times Seen131 Hash 39e5f8ad757fe438c784e8d883e47ab0 6b2905489485100c83605f43186c5843031e1f3b e421906cc3be04e5f6795074c0a91e5a194f218b3f8c57adfed0f4d315dd445a Loading...

HTTP Transactions (26)

URL IP Response Size

cdn-adef.akamaized.net/landings/283148/1696402910/css/style.css?1696402910

23.36.76.194

200 OK

2.0 kB

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/283148/1696402910/css/style.css?1696402910
IP
23.36.76.194:443
ASN
#20940 Akamai International B.V.

Requested by
https://luxl.cashappcard.club/c/aed76ea9a72a3fa0?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
Unicode text, UTF-8 text, with CRLF line terminators
Size
2.0 kB (1980 bytes)
Hash
ada51aa333cceacda11ab9605e004e0a
f96761fbb59b413bcd16e088e88d0c28a11bd874
c33b7d13fecd62cc5c182d12e567d9703128b206b25f156a3883cc521e58676e

HTTP Headers

GET /landings/283148/1696402910/css/style.css?1696402910 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://luxl.cashappcard.club/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: nxXvk+RCxLUgdC2xG0NGuK3Pov55POJ3CxFptDd+Y8scKLQGwMVCwRKGd6LmA8LIMGNttHryvdI=
x-amz-request-id: C238PEGMYC4HW6NX
Last-Modified: Wed, 04 Oct 2023 07:01:53 GMT
ETag: "ada51aa333cceacda11ab9605e004e0a"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: text/css
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Tue, 24 Oct 2023 04:00:17 GMT
Content-Length: 1980
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/283148/1696402910/js/main.js?1696402910

23.36.76.194

200 OK

5.0 kB

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/283148/1696402910/js/main.js?1696402910
IP
23.36.76.194:443
ASN
#20940 Akamai International B.V.

Requested by
https://luxl.cashappcard.club/c/aed76ea9a72a3fa0?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (3559), with CRLF line terminators
Size
5.0 kB (5038 bytes)
Hash
c420dc0249fc264d41b706092c5fc7f2
e18fbeab2fb32c77972aee77f337d83ee4f4986f
35e21fba5f6b28dca1c8105d3cfdb903933bdfd02d1bb3bf0d150180d3925ff4

HTTP Headers

GET /landings/283148/1696402910/js/main.js?1696402910 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://luxl.cashappcard.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: vA8FFfJlvBSEwmvx9vhq7xDOO7wCmtGoePXt131HH6yPK2l/vzlgCR7pApYCKfZRF18GfHF5LhE=
x-amz-request-id: C232G27MKBK85T1K
Last-Modified: Wed, 04 Oct 2023 07:01:53 GMT
ETag: "c420dc0249fc264d41b706092c5fc7f2"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Tue, 24 Oct 2023 04:00:17 GMT
Content-Length: 5038
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/283148/1696402910/js/canvas-scratch.js?1696402910

23.36.76.194

200 OK

1.7 kB

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/283148/1696402910/js/canvas-scratch.js?1696402910
IP
23.36.76.194:443
ASN
#20940 Akamai International B.V.

Requested by
https://luxl.cashappcard.club/c/aed76ea9a72a3fa0?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
ASCII text
Size
1.7 kB (1662 bytes)
Hash
3a7fb854caf6c278c14e86d216d1edec
3cecc1d6aa9509c7a9cfcaf2c79a42f7d3b7c9ca
0511a0eac20b207c0fb4cbab01ec325db9a56316e16f321624a7d76c24747c27

HTTP Headers

GET /landings/283148/1696402910/js/canvas-scratch.js?1696402910 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://luxl.cashappcard.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: A1N+Cqun38gU91x1n0Mjg2bBuWUWPaA1cshx3hezAVJfeLWZnR0C8OrkXKBxyeYtdvgf+NR+A70=
x-amz-request-id: C23308Z5VBFWKRKE
Last-Modified: Wed, 04 Oct 2023 07:01:53 GMT
ETag: "3a7fb854caf6c278c14e86d216d1edec"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Tue, 24 Oct 2023 04:00:17 GMT
Content-Length: 1662
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/283148/1696402910/js/collector.js?1696402910

23.36.76.194

200 OK

1.3 kB

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/283148/1696402910/js/collector.js?1696402910
IP
23.36.76.194:443
ASN
#20940 Akamai International B.V.

Requested by
https://luxl.cashappcard.club/c/aed76ea9a72a3fa0?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
ASCII text, with CRLF line terminators
Size
1.3 kB (1293 bytes)
Hash
93e4a4c9c70b874b19f31dc31f0aaa16
80dd02667e6dbbcb27e9640432206428a08861c2
b9c056ce3df686a7b1462e24754bb83f4b522f167a79f38e6e2e467341c71ad0

HTTP Headers

GET /landings/283148/1696402910/js/collector.js?1696402910 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://luxl.cashappcard.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: oCjHZxfUXgoUQ/JSGHa05ae2JHt4C6Zvnn8qWDnkRgHoNTMHOXP7rb6LWRwE0Im27GjX8ooi1ww=
x-amz-request-id: C23A1EGSGNH7DZ04
Last-Modified: Wed, 04 Oct 2023 07:01:53 GMT
ETag: "93e4a4c9c70b874b19f31dc31f0aaa16"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Tue, 24 Oct 2023 04:00:17 GMT
Content-Length: 1293
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

api.imotech.video/ad/events.js?pixel_id=903883351103051008

104.166.188.188

200 OK

22 kB

URL GET HTTP/2
api.imotech.video/ad/events.js?pixel_id=903883351103051008
IP
104.166.188.188:443
ASN
#21859 ZEN-ECN

Requested by
https://luxl.cashappcard.club/c/aed76ea9a72a3fa0?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerGlobalSign nv-sa
Subject*.imotech.video
Fingerprint08:2D:1A:49:D3:E7:0E:CD:C5:00:C3:FA:2D:4F:D0:DB:9B:E6:6B:EE
ValidityWed, 12 Jul 2023 02:46:27 GMT - Mon, 12 Aug 2024 02:46:26 GMT

File type
Unicode text, UTF-8 text, with very long lines (63765), with no line terminators
Size
22 kB (21627 bytes)
Hash
23dcfaf1121f59dae1a879f3caa81803
b07663ff8d798e149fd233449578e919ae436658
e0e073c811c4eb13048220e8c0cab51d0c447e16ef2d674da9e84bb6cd634726

HTTP Headers

GET /ad/events.js?pixel_id=903883351103051008 HTTP/1.1
Host: api.imotech.video
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://luxl.cashappcard.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: openresty
date: Tue, 24 Oct 2023 04:00:17 GMT
content-type: application/javascript;charset=utf-8
content-length: 21627
access-control-allow-origin: *
bigotraceresponse: 00-1f70479fc940b40d93165efcf47764ba-0-00
content-encoding: gzip
cache-control: private, max-age=900
X-Firefox-Spdy: h2

cdnjs.claudflare.io/ajax/libs/jquery/3.6.0/d/jquery.min.js?1696402910

206.189.196.86

200 OK

92 kB

URL GET HTTP/1.1
cdnjs.claudflare.io/ajax/libs/jquery/3.6.0/d/jquery.min.js?1696402910
IP
206.189.196.86:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://luxl.cashappcard.club/c/aed76ea9a72a3fa0?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerLet's Encrypt
Subjectcdnjs.claudflare.io
Fingerprint18:7C:79:BA:FF:48:8B:AA:43:33:E2:1F:F8:A6:0C:12:EA:07:A9:13
ValidityWed, 04 Oct 2023 20:01:27 GMT - Tue, 02 Jan 2024 20:01:26 GMT

File type
ASCII text, with very long lines (65447)
Size
92 kB (92013 bytes)
Hash
b5c3d25047eb3415e401a40da41e5118
d0a4ccdf5cd564dd297e783911dd108e5f6a8ef3
8877058afffb4c9b8bffde8daf79fc766ad4234631f9446ebe1df65d877b34f9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ajax/libs/jquery/3.6.0/d/jquery.min.js?1696402910 HTTP/1.1
Host: cdnjs.claudflare.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://luxl.cashappcard.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.22.0 (Ubuntu)
Date: Tue, 24 Oct 2023 04:00:17 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 92013
Connection: keep-alive
Cache-Control: public, max-age=43200
Expires: Tue, 24 Oct 2023 16:00:17 GMT

cdn-adef.akamaized.net/landings/283148/1696402910/images/logo.png

23.36.76.194

200 OK

8.5 kB

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/283148/1696402910/images/logo.png
IP
23.36.76.194:443
ASN
#20940 Akamai International B.V.

Requested by
https://luxl.cashappcard.club/c/aed76ea9a72a3fa0?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
PNG image data, 300 x 68, 4-bit colormap, non-interlaced\012- data
Size
8.5 kB (8491 bytes)
Hash
a0157852d2a3d6e9aefbd7c23419e566
27d57dbdf88d42be5defcea6a1675d4932d13664
3b6b61919a663134edcdfe300b4de7e821ffa07cc72c15611988fb86fbba935c

HTTP Headers

GET /landings/283148/1696402910/images/logo.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://luxl.cashappcard.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: IcD6j5luRyi11avH0SAWP/ThgyIlBkoEK1Ckc7X89Y1CXCIT3LV+Hhh0V3pVVSyAgGtMt+/o+LU=
x-amz-request-id: 0TJBWCV3HJFAHD9C
Last-Modified: Wed, 04 Oct 2023 07:01:53 GMT
ETag: "a0157852d2a3d6e9aefbd7c23419e566"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 8491
Date: Tue, 24 Oct 2023 04:00:18 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/283148/1696402910/images/modalImg.png

23.36.76.194

200 OK

156 kB

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/283148/1696402910/images/modalImg.png
IP
23.36.76.194:443
ASN
#20940 Akamai International B.V.

Requested by
https://luxl.cashappcard.club/c/aed76ea9a72a3fa0?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
PNG image data, 744 x 450, 8-bit/color RGBA, non-interlaced\012- data
Size
156 kB (156052 bytes)
Hash
b455862233020904c288e800b66d94ae
e748b869561314242c6eb681c2e5235e52d8479a
021aed6b5c3faec547872ebcfdf5698a33ccedf6d5d73aa63f60e27af6e4a579

HTTP Headers

GET /landings/283148/1696402910/images/modalImg.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://luxl.cashappcard.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: lUykow8whc6MyPaLSuO6pCqcOVi8daLh43eB+iothR/bpN7dYEnet8blciDJccxqHCHDzu+js2g=
x-amz-request-id: 0TJE0S521GT2Y8JX
Last-Modified: Wed, 04 Oct 2023 07:01:53 GMT
ETag: "b455862233020904c288e800b66d94ae"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 156052
Date: Tue, 24 Oct 2023 04:00:18 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/283148/1696402910/images/cardsAfter.png

23.36.76.194

200 OK

64 kB

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/283148/1696402910/images/cardsAfter.png
IP
23.36.76.194:443
ASN
#20940 Akamai International B.V.

Requested by
https://luxl.cashappcard.club/c/aed76ea9a72a3fa0?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
PNG image data, 997 x 902, 8-bit/color RGBA, non-interlaced\012- data
Size
64 kB (64163 bytes)
Hash
74d879117359c9c53532166769b154bc
237e6d57552b51d9476ca60f81d2f6c54e40bbf5
beec6ee62646521bf3edc212c162607c469346d31a3dfb9707593b4d3a636315

HTTP Headers

GET /landings/283148/1696402910/images/cardsAfter.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://luxl.cashappcard.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: pl8oajp7Uu8iqCy4cj8c86MXjlhP0v1xpe8pAb9i2JSUlJ/2HTDQFtHc+8wfL+2PYD8ySewzMNY=
x-amz-request-id: 0TJ178V7NAQ1YB0F
Last-Modified: Wed, 04 Oct 2023 07:01:52 GMT
ETag: "74d879117359c9c53532166769b154bc"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 64163
Date: Tue, 24 Oct 2023 04:00:18 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

api.imotech.video/bigoad/trackingview?extra=%7B%22action%22%3A%22log_iframe_bbg%22%2C%22pixel_id%22%3A%22903883351103051008%22%2C%22wst%22%3A267%2C%22drt%22%3A1519%2C%22lgt%22%3A1530%7D&pixel_id=log_pixel_id

104.166.188.188

200 OK

104 B

URL POST HTTP/2
api.imotech.video/bigoad/trackingview?extra=%7B%22action%22%3A%22log_iframe_bbg%22%2C%22pixel_id%22%3A%22903883351103051008%22%2C%22wst%22%3A267%2C%22drt%22%3A1519%2C%22lgt%22%3A1530%7D&pixel_id=log_pixel_id
IP
104.166.188.188:443
ASN
#21859 ZEN-ECN

Requested by
https://luxl.cashappcard.club/c/aed76ea9a72a3fa0?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerGlobalSign nv-sa
Subject*.imotech.video
Fingerprint08:2D:1A:49:D3:E7:0E:CD:C5:00:C3:FA:2D:4F:D0:DB:9B:E6:6B:EE
ValidityWed, 12 Jul 2023 02:46:27 GMT - Mon, 12 Aug 2024 02:46:26 GMT

File type
ASCII text, with no line terminators
Size
104 B (104 bytes)
Hash
5b1d73d6ddfcf70c2881b53230c07e25
2821431ed2e0a86b3cb66c3fbff0b69d590ec4bc
578ccaa1aade330ea0014e20c0f1770eb10c6bc914cfb79384d354693f592d8d

HTTP Headers

POST /bigoad/trackingview?extra=%7B%22action%22%3A%22log_iframe_bbg%22%2C%22pixel_id%22%3A%22903883351103051008%22%2C%22wst%22%3A267%2C%22drt%22%3A1519%2C%22lgt%22%3A1530%7D&pixel_id=log_pixel_id HTTP/1.1
Host: api.imotech.video
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://luxl.cashappcard.club
DNT: 1
Connection: keep-alive
Referer: https://luxl.cashappcard.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers

HTTP/2 200 OK
server: openresty
date: Tue, 24 Oct 2023 04:00:18 GMT
content-type: application/json
content-length: 104
bigotraceresponse: 00-9e24c2026ce3feffc1adfc9fc52def88-0-00
X-Firefox-Spdy: h2

api.imotech.video/bigoad/trackingview?extra=%7B%22action%22%3A%22log_no_bbg%22%2C%22pixel_id%22%3A%22903883351103051008%22%2C%22wst%22%3A267%2C%22drt%22%3A1519%2C%22lgt%22%3A1721%7D&pixel_id=log_pixel_id

104.166.188.188

200 OK

104 B

URL POST HTTP/2
api.imotech.video/bigoad/trackingview?extra=%7B%22action%22%3A%22log_no_bbg%22%2C%22pixel_id%22%3A%22903883351103051008%22%2C%22wst%22%3A267%2C%22drt%22%3A1519%2C%22lgt%22%3A1721%7D&pixel_id=log_pixel_id
IP
104.166.188.188:443
ASN
#21859 ZEN-ECN

Requested by
https://luxl.cashappcard.club/c/aed76ea9a72a3fa0?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerGlobalSign nv-sa
Subject*.imotech.video
Fingerprint08:2D:1A:49:D3:E7:0E:CD:C5:00:C3:FA:2D:4F:D0:DB:9B:E6:6B:EE
ValidityWed, 12 Jul 2023 02:46:27 GMT - Mon, 12 Aug 2024 02:46:26 GMT

File type
ASCII text, with no line terminators
Size
104 B (104 bytes)
Hash
f650ee7295b0cfee0e0e0710a7fd3627
3f56b1c16546a4d2514fe38e5a14a42442f82e22
1a72e8105f380fe1b8938965b116df09d72c3e1d94c6963960861640458d6718

HTTP Headers

POST /bigoad/trackingview?extra=%7B%22action%22%3A%22log_no_bbg%22%2C%22pixel_id%22%3A%22903883351103051008%22%2C%22wst%22%3A267%2C%22drt%22%3A1519%2C%22lgt%22%3A1721%7D&pixel_id=log_pixel_id HTTP/1.1
Host: api.imotech.video
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://luxl.cashappcard.club
DNT: 1
Connection: keep-alive
Referer: https://luxl.cashappcard.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers

HTTP/2 200 OK
server: openresty
date: Tue, 24 Oct 2023 04:00:18 GMT
content-type: application/json
content-length: 104
bigotraceresponse: 00-e9bade85b234ab382a8c82344308e6cc-0-00
X-Firefox-Spdy: h2

api.imotech.video/bigoad/trackingview?it=1698120019177&title=Get%20your%20CASH%20-%20Cash%20App%20BONUS&referer=&resolution=1024*1280&lang=en-US&url=https%3A%2F%2Fluxl.cashappcard.club%2Fc%2Faed76ea9a72a3fa0%3Fcid%3D__SID__%26sub1%3D__CAMPAIGN_NAME__%26sub2%3D__SID__%26sub3%3D__GROUP_NAME__%26sub4%3D__AD_ID__%26sub5%3D__APPID__%26sub6%3D__GAID__%26sub7%3D__AD_EXT__%26source_id%3D__PUBLISHER_ID__%26aff_sub%3D__CAMPAIGN_NAME__%26s1%3D__CAMPAIGN_NAME__%26sid%3D__CAMPAIGN_NAME__&host=luxl.cashappcard.club&cookie_id=BA1.1.2601080573.1698120019&session_id=BA1.1.2482138637.1698120019&pixel_id=903883351103051008&timestamp_ms=1698120019178&extra=%7B%22action%22%3A%22page_view%22%2C%22configId%22%3A%22903883351103051008%22%2C%22wst%22%3A267%2C%22drt%22%3A1519%2C%22lgt%22%3A1530%7D

104.166.188.188

200 OK

104 B

URL POST HTTP/2
api.imotech.video/bigoad/trackingview?it=1698120019177&title=Get%20your%20CASH%20-%20Cash%20App%20BONUS&referer=&resolution=1024*1280&lang=en-US&url=https%3A%2F%2Fluxl.cashappcard.club%2Fc%2Faed76ea9a72a3fa0%3Fcid%3D__SID__%26sub1%3D__CAMPAIGN_NAME__%26sub2%3D__SID__%26sub3%3D__GROUP_NAME__%26sub4%3D__AD_ID__%26sub5%3D__APPID__%26sub6%3D__GAID__%26sub7%3D__AD_EXT__%26source_id%3D__PUBLISHER_ID__%26aff_sub%3D__CAMPAIGN_NAME__%26s1%3D__CAMPAIGN_NAME__%26sid%3D__CAMPAIGN_NAME__&host=luxl.cashappcard.club&cookie_id=BA1.1.2601080573.1698120019&session_id=BA1.1.2482138637.1698120019&pixel_id=903883351103051008&timestamp_ms=1698120019178&extra=%7B%22action%22%3A%22page_view%22%2C%22configId%22%3A%22903883351103051008%22%2C%22wst%22%3A267%2C%22drt%22%3A1519%2C%22lgt%22%3A1530%7D
IP
104.166.188.188:443
ASN
#21859 ZEN-ECN

Requested by
https://luxl.cashappcard.club/c/aed76ea9a72a3fa0?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerGlobalSign nv-sa
Subject*.imotech.video
Fingerprint08:2D:1A:49:D3:E7:0E:CD:C5:00:C3:FA:2D:4F:D0:DB:9B:E6:6B:EE
ValidityWed, 12 Jul 2023 02:46:27 GMT - Mon, 12 Aug 2024 02:46:26 GMT

File type
ASCII text, with no line terminators
Size
104 B (104 bytes)
Hash
ef9619ca111920b2d0fa30d3b4e50dc9
e68969d330e8b4834d1f0cfaaf4ad77a4821dcd8
8a71bd474a6cc6b9fbb81cde9dfedeff27bb06ea5fdf4ef11604d9158306554e

HTTP Headers

POST /bigoad/trackingview?it=1698120019177&title=Get%20your%20CASH%20-%20Cash%20App%20BONUS&referer=&resolution=1024*1280&lang=en-US&url=https%3A%2F%2Fluxl.cashappcard.club%2Fc%2Faed76ea9a72a3fa0%3Fcid%3D__SID__%26sub1%3D__CAMPAIGN_NAME__%26sub2%3D__SID__%26sub3%3D__GROUP_NAME__%26sub4%3D__AD_ID__%26sub5%3D__APPID__%26sub6%3D__GAID__%26sub7%3D__AD_EXT__%26source_id%3D__PUBLISHER_ID__%26aff_sub%3D__CAMPAIGN_NAME__%26s1%3D__CAMPAIGN_NAME__%26sid%3D__CAMPAIGN_NAME__&host=luxl.cashappcard.club&cookie_id=BA1.1.2601080573.1698120019&session_id=BA1.1.2482138637.1698120019&pixel_id=903883351103051008&timestamp_ms=1698120019178&extra=%7B%22action%22%3A%22page_view%22%2C%22configId%22%3A%22903883351103051008%22%2C%22wst%22%3A267%2C%22drt%22%3A1519%2C%22lgt%22%3A1530%7D HTTP/1.1
Host: api.imotech.video
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://luxl.cashappcard.club
DNT: 1
Connection: keep-alive
Referer: https://luxl.cashappcard.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers

HTTP/2 200 OK
server: openresty
date: Tue, 24 Oct 2023 04:00:18 GMT
content-type: application/json
content-length: 104
bigotraceresponse: 00-6729990180741ffc170b35d29a505c3e-0-00
X-Firefox-Spdy: h2

api.imotech.video/bigoad/trackingview?it=1698120019177&title=Get%20your%20CASH%20-%20Cash%20App%20BONUS&referer=&resolution=1024*1280&lang=en-US&url=https%3A%2F%2Fluxl.cashappcard.club%2Fc%2Faed76ea9a72a3fa0%3Fcid%3D__SID__%26sub1%3D__CAMPAIGN_NAME__%26sub2%3D__SID__%26sub3%3D__GROUP_NAME__%26sub4%3D__AD_ID__%26sub5%3D__APPID__%26sub6%3D__GAID__%26sub7%3D__AD_EXT__%26source_id%3D__PUBLISHER_ID__%26aff_sub%3D__CAMPAIGN_NAME__%26s1%3D__CAMPAIGN_NAME__%26sid%3D__CAMPAIGN_NAME__&host=luxl.cashappcard.club&cookie_id=BA1.1.2601080573.1698120019&session_id=BA1.1.2482138637.1698120019&pixel_id=903883351103051008&timestamp_ms=1698120019177&extra=%7B%22action%22%3A%22init%22%2C%22configId%22%3A%22903883351103051008%22%2C%22wst%22%3A267%2C%22drt%22%3A1519%2C%22lgt%22%3A1530%7D

104.166.188.188

200 OK

104 B

URL POST HTTP/2
api.imotech.video/bigoad/trackingview?it=1698120019177&title=Get%20your%20CASH%20-%20Cash%20App%20BONUS&referer=&resolution=1024*1280&lang=en-US&url=https%3A%2F%2Fluxl.cashappcard.club%2Fc%2Faed76ea9a72a3fa0%3Fcid%3D__SID__%26sub1%3D__CAMPAIGN_NAME__%26sub2%3D__SID__%26sub3%3D__GROUP_NAME__%26sub4%3D__AD_ID__%26sub5%3D__APPID__%26sub6%3D__GAID__%26sub7%3D__AD_EXT__%26source_id%3D__PUBLISHER_ID__%26aff_sub%3D__CAMPAIGN_NAME__%26s1%3D__CAMPAIGN_NAME__%26sid%3D__CAMPAIGN_NAME__&host=luxl.cashappcard.club&cookie_id=BA1.1.2601080573.1698120019&session_id=BA1.1.2482138637.1698120019&pixel_id=903883351103051008&timestamp_ms=1698120019177&extra=%7B%22action%22%3A%22init%22%2C%22configId%22%3A%22903883351103051008%22%2C%22wst%22%3A267%2C%22drt%22%3A1519%2C%22lgt%22%3A1530%7D
IP
104.166.188.188:443
ASN
#21859 ZEN-ECN

Requested by
https://luxl.cashappcard.club/c/aed76ea9a72a3fa0?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerGlobalSign nv-sa
Subject*.imotech.video
Fingerprint08:2D:1A:49:D3:E7:0E:CD:C5:00:C3:FA:2D:4F:D0:DB:9B:E6:6B:EE
ValidityWed, 12 Jul 2023 02:46:27 GMT - Mon, 12 Aug 2024 02:46:26 GMT

File type
ASCII text, with no line terminators
Size
104 B (104 bytes)
Hash
7afc89ffdeca4cc99ab4d8f6e7873a22
0f13e64f01678139aa262824620f7047a1d8e3f4
69fe3e308e6ead93d62ca89a643f0219b24e51b3bf3a07e011dfcae0ffeae714

HTTP Headers

POST /bigoad/trackingview?it=1698120019177&title=Get%20your%20CASH%20-%20Cash%20App%20BONUS&referer=&resolution=1024*1280&lang=en-US&url=https%3A%2F%2Fluxl.cashappcard.club%2Fc%2Faed76ea9a72a3fa0%3Fcid%3D__SID__%26sub1%3D__CAMPAIGN_NAME__%26sub2%3D__SID__%26sub3%3D__GROUP_NAME__%26sub4%3D__AD_ID__%26sub5%3D__APPID__%26sub6%3D__GAID__%26sub7%3D__AD_EXT__%26source_id%3D__PUBLISHER_ID__%26aff_sub%3D__CAMPAIGN_NAME__%26s1%3D__CAMPAIGN_NAME__%26sid%3D__CAMPAIGN_NAME__&host=luxl.cashappcard.club&cookie_id=BA1.1.2601080573.1698120019&session_id=BA1.1.2482138637.1698120019&pixel_id=903883351103051008&timestamp_ms=1698120019177&extra=%7B%22action%22%3A%22init%22%2C%22configId%22%3A%22903883351103051008%22%2C%22wst%22%3A267%2C%22drt%22%3A1519%2C%22lgt%22%3A1530%7D HTTP/1.1
Host: api.imotech.video
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://luxl.cashappcard.club
DNT: 1
Connection: keep-alive
Referer: https://luxl.cashappcard.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers

HTTP/2 200 OK
server: openresty
date: Tue, 24 Oct 2023 04:00:18 GMT
content-type: application/json
content-length: 104
bigotraceresponse: 00-b55cdfc0d3eabc6baeff66878ce10d94-0-00
X-Firefox-Spdy: h2

route.frest.pro/is_redirect

172.67.211.109

200 OK

17 B

URL POST HTTP/2
route.frest.pro/is_redirect
IP
172.67.211.109:443
ASN
#13335 CLOUDFLARENET

Requested by
https://luxl.cashappcard.club/c/aed76ea9a72a3fa0?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerGoogle Trust Services LLC
Subjectfrest.pro
FingerprintA1:6D:80:97:81:5F:7D:81:A1:3A:F7:AD:B0:7C:80:EF:AF:09:8F:04
ValiditySun, 08 Oct 2023 16:23:46 GMT - Sat, 06 Jan 2024 16:23:45 GMT

File type
JSON data\012- , ASCII text
Size
17 B (17 bytes)
Hash
6dec798efb56f56f33660938f6249ff6
e889219883cef38754dc1e5df7ca5277b3b314c8
b493cdb3b30ea63f6a924f814dfccfcfe305dac02106f9994ce2bcb2e8ed28c4

HTTP Headers

POST /is_redirect HTTP/1.1
Host: route.frest.pro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 10
Origin: https://luxl.cashappcard.club
DNT: 1
Connection: keep-alive
Referer: https://luxl.cashappcard.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 24 Oct 2023 04:00:18 GMT
content-type: application/json
content-length: 17
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Content-Type, Access-Control-Allow-Headers, X-Requested-With
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KwTmLS8MiMbtm%2B9AxqnXcbi1%2BQPj2O5sZPLOD8ETIQoze4uj2vrUgkVlyXOm0pMzoyNvVMtJiPCzix2KtQFvPMxhNPOd8aqJIcK%2FZzcqLc6JJcheZUMQzYex00k8YdVC2qs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81af4fe33c331bfe-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

tt.stfilecamp.com/jsfiles/second_back_multi_bigo.js

205.185.216.42

200 OK

2.3 kB

URL GET HTTP/1.1
tt.stfilecamp.com/jsfiles/second_back_multi_bigo.js
IP
205.185.216.42:443
ASN
#20446 STACKPATH-CDN

Requested by
https://luxl.cashappcard.club/c/aed76ea9a72a3fa0?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerLet's Encrypt
Subjectstfilecamp.com
Fingerprint6B:B2:F3:D7:42:0D:85:30:43:C7:AA:0A:52:05:37:3D:73:88:9B:9C
ValidityFri, 29 Sep 2023 07:01:52 GMT - Thu, 28 Dec 2023 07:01:51 GMT

File type
HTML document, ASCII text
Size
2.3 kB (2307 bytes)
Hash
96af925d55cad494665471c73ac01b04
5d2b1c06d2edb1a1ba9a5335c5dbb73c508b879b
1109fbd42583528695ba5995a756fd0fd09a992a85f50e54862e4b13c1cf75c2

HTTP Headers

GET /jsfiles/second_back_multi_bigo.js HTTP/1.1
Host: tt.stfilecamp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://luxl.cashappcard.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 24 Oct 2023 04:00:18 GMT
Connection: Keep-Alive
Cache-Control: max-age=3600
Content-Length: 2307
Content-Type: text/javascript
Last-Modified: Mon, 27 Feb 2023 13:49:23 GMT
Accept-Ranges: bytes
x-rgw-object-type: Normal
etag: "96af925d55cad494665471c73ac01b04"
x-amz-request-id: tx00000754a781582fb7744-0065374152-7a12c4b1-nyc3c
strict-transport-security: max-age=15552000; includeSubDomains; preload
Vary: Access-Control-Request-Headers,Access-Control-Request-Method,Origin
X-HW: 1698120018.dop220.sk1.t,1698120018.cds003.sk1.shn,1698120018.dop220.sk1.t,1698120018.cds239.sk1.pr

tt.stfilecamp.com/jsfiles/site-protect2.0.js

205.185.216.42

200 OK

3.1 kB

URL GET HTTP/1.1
tt.stfilecamp.com/jsfiles/site-protect2.0.js
IP
205.185.216.42:443
ASN
#20446 STACKPATH-CDN

Requested by
https://luxl.cashappcard.club/c/aed76ea9a72a3fa0?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerLet's Encrypt
Subjectstfilecamp.com
Fingerprint6B:B2:F3:D7:42:0D:85:30:43:C7:AA:0A:52:05:37:3D:73:88:9B:9C
ValidityFri, 29 Sep 2023 07:01:52 GMT - Thu, 28 Dec 2023 07:01:51 GMT

File type
ASCII text
Size
3.1 kB (3137 bytes)
Hash
fc96ab06b0f9fcea6731405215ae5daf
8af9f27d895eb69754919a2fc0d74760fecd3860
9243e166cbcd628fd992eba59544ebf99328fd4db7c0c08c2fb28a7af14d759e

HTTP Headers

GET /jsfiles/site-protect2.0.js HTTP/1.1
Host: tt.stfilecamp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://luxl.cashappcard.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 24 Oct 2023 04:00:19 GMT
Connection: Keep-Alive
Cache-Control: max-age=3600
Content-Length: 3137
Content-Type: text/javascript
Last-Modified: Mon, 27 Feb 2023 13:49:23 GMT
Accept-Ranges: bytes
x-rgw-object-type: Normal
etag: "fc96ab06b0f9fcea6731405215ae5daf"
x-amz-request-id: tx00000fe08f945062a33a7-0065374152-7a12c4e8-nyc3c
strict-transport-security: max-age=15552000; includeSubDomains; preload
Vary: Access-Control-Request-Headers,Access-Control-Request-Method,Origin
X-HW: 1698120018.dop225.sk1.t,1698120018.cds214.sk1.shn,1698120018.dop225.sk1.t,1698120019.cds231.sk1.pr

tt.stfilecamp.com/static/group.png

205.185.216.42

200 OK

480 kB

URL GET HTTP/1.1
tt.stfilecamp.com/static/group.png
IP
205.185.216.42:443
ASN
#20446 STACKPATH-CDN

Requested by
https://luxl.cashappcard.club/c/aed76ea9a72a3fa0?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerLet's Encrypt
Subjectstfilecamp.com
Fingerprint6B:B2:F3:D7:42:0D:85:30:43:C7:AA:0A:52:05:37:3D:73:88:9B:9C
ValidityFri, 29 Sep 2023 07:01:52 GMT - Thu, 28 Dec 2023 07:01:51 GMT

File type
PNG image data, 998 x 900, 8-bit/color RGBA, non-interlaced\012- data
Size
480 kB (480395 bytes)
Hash
75ce79eb698adf7e83f690015001cd47
fd5a7554d7d29f2c2c7a2903f1e8fe4ae0539287
4b10ee63368f4b594655c205b9b8fc1c424adf3731cf65d297771235d0f50b18

HTTP Headers

GET /static/group.png HTTP/1.1
Host: tt.stfilecamp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://luxl.cashappcard.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 24 Oct 2023 04:00:18 GMT
Connection: Keep-Alive
Cache-Control: max-age=3600
Content-Length: 480395
Content-Type: image/png
Last-Modified: Mon, 11 Sep 2023 13:10:42 GMT
Accept-Ranges: bytes
x-rgw-object-type: Normal
etag: "75ce79eb698adf7e83f690015001cd47"
x-amz-request-id: tx000008f595947a885c3bf-0065374152-7a12c4e8-nyc3c
strict-transport-security: max-age=15552000; includeSubDomains; preload
Vary: Access-Control-Request-Headers,Access-Control-Request-Method,Origin
X-HW: 1698120018.dop001.sk1.t,1698120018.cds231.sk1.shn,1698120018.dop001.sk1.t,1698120018.cds255.sk1.pr

cdn-adef.akamaized.net/images/favicon.ico

23.36.76.194

200 OK

4.1 kB

URL GET HTTP/1.1
cdn-adef.akamaized.net/images/favicon.ico
IP
23.36.76.194:443
ASN
#20940 Akamai International B.V.

Requested by
https://luxl.cashappcard.club/c/aed76ea9a72a3fa0?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data
Size
4.1 kB (4103 bytes)
Hash
4cdf3256cd7b8ec3917adb79d6bf457e
bc615337e9223183a126c8fb649774866fb53e69
fbfff44a653dc193b93620f1035d221d3aaddf3238742270b3385482986ef7f0

HTTP Headers

GET /images/favicon.ico HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://luxl.cashappcard.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: mzbDFFn0Yhqdz4XL9s4sX6yByljdNVrKhKiK+UtK4DVRgNzfBI6OtL7EakQiGwqEsC19uC++cQI=
x-amz-request-id: 78F19547EBC3B810
Last-Modified: Wed, 07 Nov 2018 08:41:38 GMT
ETag: "4cdf3256cd7b8ec3917adb79d6bf457e"
Accept-Ranges: bytes
Content-Type: image/x-icon
Content-Length: 4103
Server: AmazonS3
Date: Tue, 24 Oct 2023 04:00:19 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn.stfilecamp.com/multi_push.js

205.185.216.42

200 OK

1.1 kB

URL GET HTTP/1.1
cdn.stfilecamp.com/multi_push.js
IP
205.185.216.42:443
ASN
#20446 STACKPATH-CDN

Requested by
https://luxl.cashappcard.club/c/aed76ea9a72a3fa0?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerLet's Encrypt
Subjectstfilecamp.com
FingerprintC8:F2:82:03:44:08:54:DB:7D:D9:9F:D1:7D:8A:97:B3:4D:91:57:32
ValidityTue, 26 Sep 2023 11:10:19 GMT - Mon, 25 Dec 2023 11:10:18 GMT

File type
ASCII text
Size
1.1 kB (1072 bytes)
Hash
a50322f9d3f3fafe3fb02be02285e433
c0a894b3bfa545832c3ad1c2f145005d02e50ac4
cb763e10664b93ac12aaead7af7b0838195e45eb89f678ebb3f5776b147f5d99

HTTP Headers

GET /multi_push.js HTTP/1.1
Host: cdn.stfilecamp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://luxl.cashappcard.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 24 Oct 2023 04:00:19 GMT
Connection: Keep-Alive
Cache-Control: max-age=3600
Content-Length: 1072
Content-Type: text/javascript
Last-Modified: Thu, 07 Jul 2022 14:21:23 GMT
Accept-Ranges: bytes
x-rgw-object-type: Normal
etag: "a50322f9d3f3fafe3fb02be02285e433"
x-amz-request-id: tx00000ec2f3745eef290a2-0065374153-3c6f4933-sfo3a
strict-transport-security: max-age=15552000; includeSubDomains; preload
Vary: Access-Control-Request-Headers,Access-Control-Request-Method,Origin
X-HW: 1698120018.dop208.sk1.t,1698120018.cds015.sk1.shn,1698120018.dop208.sk1.t,1698120019.cds203.sk1.pr

cdn.stfilecamp.com/stormtrk.js

205.185.216.42

200 OK

6.8 kB

URL GET HTTP/1.1
cdn.stfilecamp.com/stormtrk.js
IP
205.185.216.42:443
ASN
#20446 STACKPATH-CDN

Requested by
https://luxl.cashappcard.club/c/aed76ea9a72a3fa0?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerLet's Encrypt
Subjectstfilecamp.com
FingerprintC8:F2:82:03:44:08:54:DB:7D:D9:9F:D1:7D:8A:97:B3:4D:91:57:32
ValidityTue, 26 Sep 2023 11:10:19 GMT - Mon, 25 Dec 2023 11:10:18 GMT

File type
ASCII text
Size
6.8 kB (6807 bytes)
Hash
39e5f8ad757fe438c784e8d883e47ab0
6b2905489485100c83605f43186c5843031e1f3b
e421906cc3be04e5f6795074c0a91e5a194f218b3f8c57adfed0f4d315dd445a

HTTP Headers

GET /stormtrk.js HTTP/1.1
Host: cdn.stfilecamp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://luxl.cashappcard.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 24 Oct 2023 04:00:19 GMT
Connection: Keep-Alive
Cache-Control: max-age=3198
Content-Length: 6807
Content-Type: text/javascript
Last-Modified: Sat, 24 Dec 2022 08:48:24 GMT
Accept-Ranges: bytes
x-rgw-object-type: Normal
etag: "39e5f8ad757fe438c784e8d883e47ab0"
x-amz-request-id: tx00000cfc5e256d20957c2-0065373fc1-3c6f48c0-sfo3a
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-envoy-upstream-healthchecked-cluster: 
Vary: Access-Control-Request-Headers,Access-Control-Request-Method,Origin
X-HW: 1698120018.dop208.sk1.t,1698120018.cds015.sk1.shn,1698120019.dop208.sk1.t,1698120019.cds014.sk1.c

api.imotech.video/bigoad/trackingview?extra=%7B%22action%22%3A%22log_page_loaded%22%2C%22pixel_num%22%3A%22single%22%2C%22pixel_id%22%3A%22903883351103051008%22%2C%22wst%22%3A267%2C%22drt%22%3A1519%2C%22lgt%22%3A2432%7D&pixel_id=log_pixel_id

104.166.188.188

200 OK

104 B

URL POST HTTP/2
api.imotech.video/bigoad/trackingview?extra=%7B%22action%22%3A%22log_page_loaded%22%2C%22pixel_num%22%3A%22single%22%2C%22pixel_id%22%3A%22903883351103051008%22%2C%22wst%22%3A267%2C%22drt%22%3A1519%2C%22lgt%22%3A2432%7D&pixel_id=log_pixel_id
IP
104.166.188.188:443
ASN
#21859 ZEN-ECN

Requested by
https://luxl.cashappcard.club/c/aed76ea9a72a3fa0?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerGlobalSign nv-sa
Subject*.imotech.video
Fingerprint08:2D:1A:49:D3:E7:0E:CD:C5:00:C3:FA:2D:4F:D0:DB:9B:E6:6B:EE
ValidityWed, 12 Jul 2023 02:46:27 GMT - Mon, 12 Aug 2024 02:46:26 GMT

File type
ASCII text, with no line terminators
Size
104 B (104 bytes)
Hash
2ba983e3b47a0a27100e511c2bc3da68
ba4ef7989c6f6a4f6ab686a09dba8e4d7b0b38c1
f5aa98fe7a01ca4c2887b7a4b5c73e20e3580b57b93bbbe2fb8824b5ac9b7938

HTTP Headers

POST /bigoad/trackingview?extra=%7B%22action%22%3A%22log_page_loaded%22%2C%22pixel_num%22%3A%22single%22%2C%22pixel_id%22%3A%22903883351103051008%22%2C%22wst%22%3A267%2C%22drt%22%3A1519%2C%22lgt%22%3A2432%7D&pixel_id=log_pixel_id HTTP/1.1
Host: api.imotech.video
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://luxl.cashappcard.club
DNT: 1
Connection: keep-alive
Referer: https://luxl.cashappcard.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers

HTTP/2 200 OK
server: openresty
date: Tue, 24 Oct 2023 04:00:19 GMT
content-type: application/json
content-length: 104
bigotraceresponse: 00-1f3fdb09a2237341ea07e613a87d39dc-0-00
X-Firefox-Spdy: h2

stormtrk.com/api/1.0/ping/pong?location=https%3A%2F%2Fluxl.cashappcard.club%2Fc%2Faed76ea9a72a3fa0%3Fcid%3D__SID__%26sub1%3D__CAMPAIGN_NAME__%26sub2%3D__SID__%26sub3%3D__GROUP_NAME__%26sub4%3D__AD_ID__%26sub5%3D__APPID__%26sub6%3D__GAID__%26sub7%3D__AD_EXT__%26source_id%3D__PUBLISHER_ID__%26aff_sub%3D__CAMPAIGN_NAME__%26s1%3D__CAMPAIGN_NAME__%26sid%3D__CAMPAIGN_NAME__

104.26.4.120

200 OK

32 kB

URL GET HTTP/2
stormtrk.com/api/1.0/ping/pong?location=https%3A%2F%2Fluxl.cashappcard.club%2Fc%2Faed76ea9a72a3fa0%3Fcid%3D__SID__%26sub1%3D__CAMPAIGN_NAME__%26sub2%3D__SID__%26sub3%3D__GROUP_NAME__%26sub4%3D__AD_ID__%26sub5%3D__APPID__%26sub6%3D__GAID__%26sub7%3D__AD_EXT__%26source_id%3D__PUBLISHER_ID__%26aff_sub%3D__CAMPAIGN_NAME__%26s1%3D__CAMPAIGN_NAME__%26sid%3D__CAMPAIGN_NAME__
IP
104.26.4.120:443
ASN
#13335 CLOUDFLARENET

Requested by
https://luxl.cashappcard.club/c/aed76ea9a72a3fa0?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint12:CF:2B:DC:A1:B5:77:12:91:68:E8:DD:F0:22:9A:1B:06:84:6A:74
ValidityFri, 09 Dec 2022 00:00:00 GMT - Sat, 09 Dec 2023 23:59:59 GMT

File type
JSON data\012- , ASCII text, with very long lines (485)
Size
32 kB (32046 bytes)
Hash
9f72892b1dc23729a5256bb8c86029c5
915c440e883ece57bdea55f630f3790ede4a1019
406d3f5216a074e945400de12f4d78dba9d0467aa77fa04cec34d80e93afce43

HTTP Headers

GET /api/1.0/ping/pong?location=https%3A%2F%2Fluxl.cashappcard.club%2Fc%2Faed76ea9a72a3fa0%3Fcid%3D__SID__%26sub1%3D__CAMPAIGN_NAME__%26sub2%3D__SID__%26sub3%3D__GROUP_NAME__%26sub4%3D__AD_ID__%26sub5%3D__APPID__%26sub6%3D__GAID__%26sub7%3D__AD_EXT__%26source_id%3D__PUBLISHER_ID__%26aff_sub%3D__CAMPAIGN_NAME__%26s1%3D__CAMPAIGN_NAME__%26sid%3D__CAMPAIGN_NAME__ HTTP/1.1
Host: stormtrk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://luxl.cashappcard.club
DNT: 1
Connection: keep-alive
Referer: https://luxl.cashappcard.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 24 Oct 2023 04:00:19 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Content-Type, Access-Control-Allow-Headers, X-Requested-With
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IyiT5TBm6FRvNIjn6oCuE%2BLPhWT6eC273VcjIE7zADxnZ9zRDx9IChuuLesiycvRn0cnSsW3EfxEwUiP7qHDwWJgu1n7iEmYyfdqEI2Zmcrt%2F%2FdJ67QZANM6QoyAaA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81af4fe959cbb4fa-OSL
content-encoding: br
X-Firefox-Spdy: h2

api.imotech.video/bigoad/trackingview?it=1698120019177&title=Get%20your%20CASH%20-%20Cash%20App%20BONUS&referer=&resolution=1024*1280&lang=en-US&url=https%3A%2F%2Fluxl.cashappcard.club%2Fc%2Faed76ea9a72a3fa0%3Fcid%3D__SID__%26sub1%3D__CAMPAIGN_NAME__%26sub2%3D__SID__%26sub3%3D__GROUP_NAME__%26sub4%3D__AD_ID__%26sub5%3D__APPID__%26sub6%3D__GAID__%26sub7%3D__AD_EXT__%26source_id%3D__PUBLISHER_ID__%26aff_sub%3D__CAMPAIGN_NAME__%26s1%3D__CAMPAIGN_NAME__%26sid%3D__CAMPAIGN_NAME__&host=luxl.cashappcard.club&cookie_id=BA1.1.2601080573.1698120019&session_id=BA1.1.2482138637.1698120019&pixel_id=903883351103051008&timestamp_ms=1698120033124&extra=%7B%22action%22%3A%22leave%22%2C%22configId%22%3A%22903883351103051008%22%2C%22type%22%3A1%2C%22wst%22%3A267%2C%22drt%22%3A1519%2C%22tdt%22%3A2434%2C%22lgt%22%3A15476%7D

104.166.188.188

104 B

URL
api.imotech.video/bigoad/trackingview?it=1698120019177&title=Get%20your%20CASH%20-%20Cash%20App%20BONUS&referer=&resolution=1024*1280&lang=en-US&url=https%3A%2F%2Fluxl.cashappcard.club%2Fc%2Faed76ea9a72a3fa0%3Fcid%3D__SID__%26sub1%3D__CAMPAIGN_NAME__%26sub2%3D__SID__%26sub3%3D__GROUP_NAME__%26sub4%3D__AD_ID__%26sub5%3D__APPID__%26sub6%3D__GAID__%26sub7%3D__AD_EXT__%26source_id%3D__PUBLISHER_ID__%26aff_sub%3D__CAMPAIGN_NAME__%26s1%3D__CAMPAIGN_NAME__%26sid%3D__CAMPAIGN_NAME__&host=luxl.cashappcard.club&cookie_id=BA1.1.2601080573.1698120019&session_id=BA1.1.2482138637.1698120019&pixel_id=903883351103051008&timestamp_ms=1698120033124&extra=%7B%22action%22%3A%22leave%22%2C%22configId%22%3A%22903883351103051008%22%2C%22type%22%3A1%2C%22wst%22%3A267%2C%22drt%22%3A1519%2C%22tdt%22%3A2434%2C%22lgt%22%3A15476%7D
IP
104.166.188.188:0
ASN
#21859 ZEN-ECN

Certificate
IssuerGlobalSign nv-sa
Subject*.imotech.video
Fingerprint08:2D:1A:49:D3:E7:0E:CD:C5:00:C3:FA:2D:4F:D0:DB:9B:E6:6B:EE
ValidityWed, 12 Jul 2023 02:46:27 GMT - Mon, 12 Aug 2024 02:46:26 GMT

File type
ASCII text, with no line terminators
Size
104 B (104 bytes)
Hash
3c04b84e996cb89dd7613f5b4ebce20d
8160bb1981d991c312a815b1964b6684c72b7981
8802c3ce31f3a42cf465573b0e8c80624e0878ca19191aa80c4c39c2ef86b796

HTTP Headers

POST /bigoad/trackingview?it=1698120019177&title=Get%20your%20CASH%20-%20Cash%20App%20BONUS&referer=&resolution=1024*1280&lang=en-US&url=https%3A%2F%2Fluxl.cashappcard.club%2Fc%2Faed76ea9a72a3fa0%3Fcid%3D__SID__%26sub1%3D__CAMPAIGN_NAME__%26sub2%3D__SID__%26sub3%3D__GROUP_NAME__%26sub4%3D__AD_ID__%26sub5%3D__APPID__%26sub6%3D__GAID__%26sub7%3D__AD_EXT__%26source_id%3D__PUBLISHER_ID__%26aff_sub%3D__CAMPAIGN_NAME__%26s1%3D__CAMPAIGN_NAME__%26sid%3D__CAMPAIGN_NAME__&host=luxl.cashappcard.club&cookie_id=BA1.1.2601080573.1698120019&session_id=BA1.1.2482138637.1698120019&pixel_id=903883351103051008&timestamp_ms=1698120033124&extra=%7B%22action%22%3A%22leave%22%2C%22configId%22%3A%22903883351103051008%22%2C%22type%22%3A1%2C%22wst%22%3A267%2C%22drt%22%3A1519%2C%22tdt%22%3A2434%2C%22lgt%22%3A15476%7D HTTP/1.1
Host: api.imotech.video
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://luxl.cashappcard.club
DNT: 1
Connection: keep-alive
Referer: https://luxl.cashappcard.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers

HTTP/2 200 OK
server: openresty
date: Tue, 24 Oct 2023 04:00:32 GMT
content-type: application/json
content-length: 104
bigotraceresponse: 00-1f0429af8ca030e452e753832c8c825c-0-00
X-Firefox-Spdy: h2

api.imotech.video/ad/pixelfile.html

104.166.188.188

200 OK

1.9 kB

URL GET HTTP/2
api.imotech.video/ad/pixelfile.html
IP
104.166.188.188:443
ASN
#21859 ZEN-ECN

Requested by
https://luxl.cashappcard.club/c/aed76ea9a72a3fa0?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerGlobalSign nv-sa
Subject*.imotech.video
Fingerprint08:2D:1A:49:D3:E7:0E:CD:C5:00:C3:FA:2D:4F:D0:DB:9B:E6:6B:EE
ValidityWed, 12 Jul 2023 02:46:27 GMT - Mon, 12 Aug 2024 02:46:26 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1954), with no line terminators
Size
1.9 kB (1888 bytes)
Hash
a68c3fd612781cf83ba376590dcc0d98
8b105bb0d774d95049b96a8dba785276789cde39
d3d89a8fe5379c59c594b886d54504462d96fba4e8e86ec32107b26124b0681f

HTTP Headers

GET /ad/pixelfile.html HTTP/1.1
Host: api.imotech.video
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://luxl.cashappcard.club/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: openresty
date: Tue, 24 Oct 2023 04:00:18 GMT
content-type: text/html;charset=utf-8
bigotraceresponse: 00-2d5aaa897a4912635ee3fa73e0a16657-0-00
content-encoding: gzip
X-Firefox-Spdy: h2

cdn.stfilecamp.com/fp.min.js

205.185.216.42

200 OK

32 kB

URL GET HTTP/1.1
cdn.stfilecamp.com/fp.min.js
IP
205.185.216.42:443
ASN
#20446 STACKPATH-CDN

Requested by
https://luxl.cashappcard.club/c/aed76ea9a72a3fa0?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerLet's Encrypt
Subjectstfilecamp.com
FingerprintC8:F2:82:03:44:08:54:DB:7D:D9:9F:D1:7D:8A:97:B3:4D:91:57:32
ValidityTue, 26 Sep 2023 11:10:19 GMT - Mon, 25 Dec 2023 11:10:18 GMT

File type

Size
32 kB (31705 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /fp.min.js HTTP/1.1
Host: cdn.stfilecamp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://luxl.cashappcard.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 24 Oct 2023 04:00:20 GMT
Connection: Keep-Alive
Cache-Control: max-age=3600
Content-Length: 31705
Content-Type: text/javascript
Last-Modified: Mon, 13 Jun 2022 11:23:14 GMT
Accept-Ranges: bytes
x-rgw-object-type: Normal
etag: "198f2f5b0a649f41fe890c59d37319aa"
x-amz-request-id: tx00000347b81d45f23fe0e-0065374154-3c6f48ac-sfo3a
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-envoy-upstream-healthchecked-cluster: 
Vary: Access-Control-Request-Headers,Access-Control-Request-Method,Origin
X-HW: 1698120018.dop208.sk1.t,1698120018.cds015.sk1.shn,1698120019.dop208.sk1.t,1698120020.cds237.sk1.pr

luxl.cashappcard.club/c/aed76ea9a72a3fa0?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__

52.19.101.114

200 OK

22 kB

URL User Request GET HTTP/2
luxl.cashappcard.club/c/aed76ea9a72a3fa0?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
IP
52.19.101.114:443
ASN
#16509 AMAZON-02

Certificate
IssuerLet's Encrypt
Subjectluxl.cashappcard.club
FingerprintEF:11:EF:D3:28:65:BF:3D:23:A3:93:22:27:83:B0:61:33:C5:79:D8
ValidityWed, 27 Sep 2023 21:15:22 GMT - Tue, 26 Dec 2023 21:15:21 GMT

File type

Size
22 kB (22414 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Square, Inc.

HTTP Headers

GET /c/aed76ea9a72a3fa0?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__ HTTP/1.1
Host: luxl.cashappcard.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Tue, 24 Oct 2023 04:00:17 GMT
content-type: text/html; charset=utf-8
set-cookie: unique_id=65374151000dc730; Path=/; Expires=Sat, 23 Dec 2023 04:00:17 GMT; Secure; SameSite=None
unique_id2=65374151000dd015; Path=/; Expires=Mon, 22 Jan 2024 04:00:17 GMT; Secure; SameSite=None
impression=; Path=/; Expires=Tue, 24 Oct 2023 04:00:17 GMT; Secure; SameSite=None
65374151000dd015_sl=[283148]; Path=/; Expires=Tue, 07 Nov 2023 04:00:17 GMT; Secure; SameSite=None
content-encoding: gzip
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (11)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by