Report - notifyhubss.net/4ca45aa41ud5544e3clae95a5eela407efca.html__;!!OepYZ6Q!8V6tIxBPrJJrIPaXStTlykqJlMywygLyK7PWAFztl65g1MA8bTRotZRN6_ikxvM1ML0h

Report Overview

Submitted URL
notifyhubss.net/4ca45aa41ud5544e3clae95a5eela407efca.html__;!!OepYZ6Q!8V6tIxBPrJJrIPaXStTlykqJlMywygLyK7PWAFztl65g1MA8bTRotZRN6_ikxvM1ML0h_5P3dyWULq83CSdWLaqs1w/
IP
104.26.9.237
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-26 18:05:24
Access
public
Website Title
Sign in to your account
Final URL
notifyhubss.net/4ca45aa41ud5544e3clae95a5eela407efca.html__;!!OepYZ6Q!8V6tIxBPrJJrIPaXStTlykqJlMywygLyK7PWAFztl65g1MA8bTRotZRN6_ikxvM1ML0h_5P3dyWULq83CSdWLaqs1w/
Tags
microsoft phishing
urlquery detections
Phishing - Microsoft

Detections

urlquery
13
Network Intrusion Detection
0
Threat Detection Systems
4

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
lp.cybeready.net	unknown	2014-01-26	2015-12-30	2024-04-17	3.5 kB	213 kB	104.26.8.233
notifyhubss.net	unknown	2020-04-30	2021-07-09	2024-04-17	3.4 kB	11 kB	172.67.72.147
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17	2024-04-25	893 B	33 kB	104.17.25.14

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-04-26	medium	notifyhubss.net/4ca45aa41ud5544e3clae95a5eela407efca.html__;!!OepYZ6Q!8V6tIxBPrJJrIPaXStTlykqJlMywygLyK7PWAFztl65g1MA8bTRotZRN6_ikxvM1ML0h_5P3dyWULq83CSdWLaqs1w/	Outlook
2024-04-26	medium	notifyhubss.net/4ca45aa41ud5544e3clae95a5eela407efca.html__;!!OepYZ6Q!8V6tIxBPrJJrIPaXStTlykqJlMywygLyK7PWAFztl65g1MA8bTRotZRN6_ikxvM1ML0h_5P3dyWULq83CSdWLaqs1w/	Outlook

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (7)

	URL	Size	First Seen	Last Seen
	unknown	247 B	2024-04-26	2024-04-26
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-26 20:05:25 Last Seen2024-04-26 20:05:25 Times Seen1 Hash 84093a192ff2e8d746c75324fb627ef1 b280aaa240696ca55961fba0efd067080004ebfc 52e50f0ffecd76cbdb9f13a4771e8ecd4399160a80022f04b9966b32bb7fc657 Loading...

	notifyhubss.net/cdn-cgi/challenge-platform/scripts/jsd/main.js	7.8 kB	2024-04-26	2024-04-26
Pretty URL notifyhubss.net/cdn-cgi/challenge-platform/scripts/jsd/main.js IP 172.67.72.147 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-26 20:05:25 Last Seen2024-04-26 20:05:25 Times Seen2 Hash 3966d1752da03dbb95dd73504b97df13 64e1f8166e3d4f6a4ad962c514ab94502bb51869 764b299b867ceae1ca8b8ef7afef33a07b3b6a0b3c78ecce66ca47ea2c5cf4ca Loading...

	notifyhubss.net/4ca45aa41ud5544e3clae95a5eela407efca.html__;!!OepYZ6Q!8V6tIxBPrJJrIPaXStTlykqJlMywygLyK7PWAFztl65g1MA8bTRotZRN6_ikxvM1ML0h_5P3dyWULq83CSdWLaqs1w/	63 B	2024-04-26	2024-04-26
Pretty URL notifyhubss.net/4ca45aa41ud5544e3clae95a5eela407efca.html__;!!OepYZ6Q!8V6tIxBPrJJrIPaXStTlykqJlMywygLyK7PWAFztl65g1MA8bTRotZRN6_ikxvM1ML0h_5P3dyWULq83CSdWLaqs1w/ IP 172.67.72.147 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-26 20:05:25 Last Seen2024-04-26 20:05:25 Times Seen1 Hash dff184ed202807834f5a0b560edd0498 7cef1d7ac1a3e3e1698d3d23ba84187d418e7a69 56d1643bd271c498447c3b7d16a308a58137b37b317d11cc5cbf13f1638919ab Loading...

	cdnjs.cloudflare.com/ajax/libs/jquery/2.1.3/jquery.min.js	84 kB	2023-03-07	2024-05-07
Pretty URL cdnjs.cloudflare.com/ajax/libs/jquery/2.1.3/jquery.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14:40 Last Seen2024-05-07 18:23:47 Times Seen10927 Hash 7f9fb969ce353c5d77707836391eb28d 62c4042e9ebc691a5372d653b424512a561d1670 2051d61446d4dbffb03727031022a08c84528ab44d203a7669c101e5fbdd5515 Loading...

	lp.cybeready.net/Forms/MS-online/validator.js	1.1 kB	2023-03-07	2024-05-04
Pretty URL lp.cybeready.net/Forms/MS-online/validator.js IP 104.26.8.233 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:00:15 Last Seen2024-05-04 17:32:50 Times Seen286 Hash 1fcbee9832d717ec42da9239564aff2b c89b6868b60376a2d519d277eefe80a4b72187dc 531af0d0ceaca3ebdc13b4285eb12ca7089f628a149e842c5a2205b959018e4c Loading...

	lp.cybeready.net/common/landing-page.js	4.0 kB	2023-03-07	2024-05-04
Pretty URL lp.cybeready.net/common/landing-page.js IP 104.26.8.233 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:35 Last Seen2024-05-04 17:32:50 Times Seen371 Hash ac5716b9ccc0d5eb31e94d8c873227d4 39ed1b79df1f4a7eedc7f245f0cabb0618246951 633d39e293d4a1e9f9c461323d6d3913f3ee51ab8cc901e4c45356cf022634ca Loading...

	notifyhubss.net/4ca45aa41ud5544e3clae95a5eela407efca.html__;!!OepYZ6Q!8V6tIxBPrJJrIPaXStTlykqJlMywygLyK7PWAFztl65g1MA8bTRotZRN6_ikxvM1ML0h_5P3dyWULq83CSdWLaqs1w/	1.1 kB	2024-04-26	2024-04-26
Pretty URL notifyhubss.net/4ca45aa41ud5544e3clae95a5eela407efca.html__;!!OepYZ6Q!8V6tIxBPrJJrIPaXStTlykqJlMywygLyK7PWAFztl65g1MA8bTRotZRN6_ikxvM1ML0h_5P3dyWULq83CSdWLaqs1w/ IP 172.67.72.147 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-26 20:05:25 Last Seen2024-04-26 20:05:25 Times Seen1 Hash 0b2360823259c30bc6d3a73fc0f7027b eb61a75ddd40205c9eaff8ca591700bc2c78b0a0 f6719a4085a833a5b866e04533a0595b75db2de0b6570e6f2366b8b00f625832 Loading...

HTTP Transactions (15)

URL IP Response Size

cdnjs.cloudflare.com/ajax/libs/font-awesome/4.3.0/css/font-awesome.min.css

104.17.25.14

200 OK

4.4 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/font-awesome/4.3.0/css/font-awesome.min.css
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://notifyhubss.net/4ca45aa41ud5544e3clae95a5eela407efca.html__;!!OepYZ6Q!8V6tIxBPrJJrIPaXStTlykqJlMywygLyK7PWAFztl65g1MA8bTRotZRN6_ikxvM1ML0h_5P3dyWULq83CSdWLaqs1w/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (23577)
Size
4.4 kB (4364 bytes)
Hash
04425bbdc6243fc6e54bf8984fe50330
8c15c6bd82c71e9ef1bb11cf24e502fe07518ac5
541ac58217a8ade1a5e292a65a0661dc9db7a49ae13654943817a4fbc6761afd

HTTP Headers

GET /ajax/libs/font-awesome/4.3.0/css/font-awesome.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://notifyhubss.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 26 Apr 2024 18:04:59 GMT
content-type: text/css; charset=utf-8
content-length: 4364
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "65993750-110c"
last-modified: Sat, 06 Jan 2024 12:19:44 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 865042
expires: Wed, 16 Apr 2025 18:04:59 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=u6K4H8SusTbJwq3Xm5cLh6SBY%2FJVsnXofoIL0IN4CSYKClfKIEnF5wPFnJX9puvwW1HjWBOFUUK78XkKJuWbSXFVswOtLr%2BL1k6JrscWVuK%2FtfxDpDVf4cekEDgJFPHi6oyaJw1m"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87a87f96bf5c56c5-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/jquery/2.1.3/jquery.min.js

104.17.25.14

200 OK

27 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/jquery/2.1.3/jquery.min.js
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://notifyhubss.net/4ca45aa41ud5544e3clae95a5eela407efca.html__;!!OepYZ6Q!8V6tIxBPrJJrIPaXStTlykqJlMywygLyK7PWAFztl65g1MA8bTRotZRN6_ikxvM1ML0h_5P3dyWULq83CSdWLaqs1w/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (32180)
Size
27 kB (26660 bytes)
Hash
7f9fb969ce353c5d77707836391eb28d
62c4042e9ebc691a5372d653b424512a561d1670
2051d61446d4dbffb03727031022a08c84528ab44d203a7669c101e5fbdd5515

HTTP Headers

GET /ajax/libs/jquery/2.1.3/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://notifyhubss.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 26 Apr 2024 18:04:59 GMT
content-type: application/javascript; charset=utf-8
content-length: 26660
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-14983"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 955999
expires: Wed, 16 Apr 2025 18:04:59 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UvJ2IZFLlH3R6fiyUiCqBEWh9%2FM64jQwldNwTB6grmsE40hTVP0gPtU8G9I6nzTzrx7X%2BV0IKZr79iAMa%2F0nP7%2FMg8V%2BirXTd9gXBCnCExMwsUW0L69Ic%2BNdjHPwfMR5KGRaN0yQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87a87f96bf6156c5-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

lp.cybeready.net/Forms/MS-online/bannerlogo.png

104.26.8.233

200 OK

1.0 kB

URL GET HTTP/2
lp.cybeready.net/Forms/MS-online/bannerlogo.png
IP
104.26.8.233:443
ASN
#13335 CLOUDFLARENET

Requested by
https://notifyhubss.net/4ca45aa41ud5544e3clae95a5eela407efca.html__;!!OepYZ6Q!8V6tIxBPrJJrIPaXStTlykqJlMywygLyK7PWAFztl65g1MA8bTRotZRN6_ikxvM1ML0h_5P3dyWULq83CSdWLaqs1w/
Certificate
IssuerLet's Encrypt
Subjectcybeready.net
FingerprintBB:28:14:F8:09:02:DF:1E:F0:B6:74:8B:09:67:6A:55:A6:0D:A0:38
ValidityTue, 16 Apr 2024 23:13:46 GMT - Mon, 15 Jul 2024 23:13:45 GMT

File type
PNG image data, 159 x 35, 8-bit colormap, non-interlaced
Size
1.0 kB (1024 bytes)
Hash
24bfcce4b67e345caac4ce3849b26d5d
fd6b6d847ade5480f290cbce319cdee74016d859
de8d43f95c8743f71d53a6ca3d5dc0b3d2c29e96b7c565e52cf5a86c416c2400

HTTP Headers

GET /Forms/MS-online/bannerlogo.png HTTP/1.1
Host: lp.cybeready.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://notifyhubss.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 26 Apr 2024 18:04:59 GMT
content-type: image/png
content-length: 1024
cf-bgj: imgq:100,h2pri
cf-polished: origSize=4585
etag: "9f09a27d4f69b3557c7433574a29d726"
last-modified: Mon, 09 May 2016 08:37:46 GMT
x-amz-id-2: oyREWeQpA7ftqsQ93j0SqJILSposezh8Gx8VKDj4nQorPklo2baX903qbosTcstbY/EGKBy4xcg=
x-amz-request-id: VG7FS237CKAWP6CE
cache-control: max-age=14400
cf-cache-status: HIT
age: 1838
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IPzlcYv88tZZQsLRPbf8U1jBDIimxPd5QMku%2Bd6gT%2Bas%2Fq08IQT5mdLKjI06Tyx0%2F8QAAqD%2FYK3KYA%2BLDxJOm2GnfJ9JyLvyFOydbJijucP%2BFQKVXlQ76HIm2%2Bef%2FDsWy%2BI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a87f971c670b65-OSL
X-Firefox-Spdy: h2

lp.cybeready.net/Forms/MS-online/microsoft_logo.png

104.26.8.233

200 OK

653 B

URL GET HTTP/2
lp.cybeready.net/Forms/MS-online/microsoft_logo.png
IP
104.26.8.233:443
ASN
#13335 CLOUDFLARENET

Requested by
https://notifyhubss.net/4ca45aa41ud5544e3clae95a5eela407efca.html__;!!OepYZ6Q!8V6tIxBPrJJrIPaXStTlykqJlMywygLyK7PWAFztl65g1MA8bTRotZRN6_ikxvM1ML0h_5P3dyWULq83CSdWLaqs1w/
Certificate
IssuerLet's Encrypt
Subjectcybeready.net
FingerprintBB:28:14:F8:09:02:DF:1E:F0:B6:74:8B:09:67:6A:55:A6:0D:A0:38
ValidityTue, 16 Apr 2024 23:13:46 GMT - Mon, 15 Jul 2024 23:13:45 GMT

File type
PNG image data, 100 x 22, 8-bit colormap, non-interlaced
Size
653 B (653 bytes)
Hash
366222d8d10fa25f28a5c4b8c738a887
d64ae75cb36ee9bca1076b259ee3e8dc1f3fa09c
3f58f0f3a9d3cad69e0d008d752af773b81a2d29f92c855b796dc2cc3a8813f9

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Microsoft

HTTP Headers

GET /Forms/MS-online/microsoft_logo.png HTTP/1.1
Host: lp.cybeready.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://notifyhubss.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 26 Apr 2024 18:04:59 GMT
content-type: image/png
content-length: 653
cf-bgj: imgq:100,h2pri
cf-polished: origSize=1040
etag: "e4b675007dc6492ee590131d1f7dfbb3"
last-modified: Mon, 09 May 2016 08:37:44 GMT
x-amz-id-2: nuwL9vgbG/ekq/RxW2LQEr28j8DSzrvH3FxL7wr6F8zpO6fbKuJvzN8J9lBR0tO5f31McrZ1/vA=
x-amz-request-id: VTGQNQ6R8VGQHTMD
cache-control: max-age=14400
cf-cache-status: HIT
age: 1838
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fAATSdYIJeSK03kEl%2FFO8AKMOcaibIxUWB4RiH%2BXrh1lKo77oiOkqc%2BJi42CC2Z%2FiLA1CjNJmuisZrcNf83fWWsN35bpJxTP9%2B139RdRI4j69zSDnclVW4%2FnrndbvznGpC0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a87f971c6e0b65-OSL
X-Firefox-Spdy: h2

lp.cybeready.net/Forms/MS-online/heroillustration.jpg

104.26.8.233

200 OK

197 kB

URL GET HTTP/2
lp.cybeready.net/Forms/MS-online/heroillustration.jpg
IP
104.26.8.233:443
ASN
#13335 CLOUDFLARENET

Requested by
https://notifyhubss.net/4ca45aa41ud5544e3clae95a5eela407efca.html__;!!OepYZ6Q!8V6tIxBPrJJrIPaXStTlykqJlMywygLyK7PWAFztl65g1MA8bTRotZRN6_ikxvM1ML0h_5P3dyWULq83CSdWLaqs1w/
Certificate
IssuerLet's Encrypt
Subjectcybeready.net
FingerprintBB:28:14:F8:09:02:DF:1E:F0:B6:74:8B:09:67:6A:55:A6:0D:A0:38
ValidityTue, 16 Apr 2024 23:13:46 GMT - Mon, 15 Jul 2024 23:13:45 GMT

File type
JPEG image data, progressive, precision 8, 1420x1080, components 3
Size
197 kB (196768 bytes)
Hash
65a2cb0d1e14633606d9d0cdda66bf39
1653696f5d951a6046008160a7c2dda9c27ce6f2
7d07ffc8f9e7620f82bbc8d3930ebf428f185d6d3f8cde05580ecb3530c5bbea

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Microsoft

HTTP Headers

GET /Forms/MS-online/heroillustration.jpg HTTP/1.1
Host: lp.cybeready.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lp.cybeready.net/Forms/MS-online/index.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 26 Apr 2024 18:04:59 GMT
content-type: image/jpeg
content-length: 196768
cf-bgj: imgq:100,h2pri
cf-polished: origSize=203294
etag: "65283b123eb235e6176ae98c02ac5b1c"
last-modified: Mon, 09 May 2016 08:37:52 GMT
x-amz-id-2: alQHO9NmGNQqky2qSfG0BDV3rkEEiS8hpK+fj80pduyhAIwaKiLl9IY9ZrGkPQUTaFjn62qZ3Fs=
x-amz-request-id: VST104F4VYX7PMTP
cache-control: max-age=14400
cf-cache-status: HIT
age: 1838
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=n4CXCq%2FJLq7%2Fp988vIMHIqQ9G7RBWVVR4i5cBaE3THSwH%2F11RNOJ6kiEy7j81OO5yxbWLlcpmF%2Bn47Iv%2FRa4CXfY5pgAT%2FyN80jTsxn6Xs9pTuBRHD0IUU%2BTEnf1%2FDvz3DQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a87f982de40b65-OSL
X-Firefox-Spdy: h2

notifyhubss.net/cdn-cgi/challenge-platform/scripts/jsd/main.js

172.67.72.147

302 Found

0 B

URL GET HTTP/2
notifyhubss.net/cdn-cgi/challenge-platform/scripts/jsd/main.js
IP
172.67.72.147:443
ASN
#13335 CLOUDFLARENET

Requested by
https://notifyhubss.net/4ca45aa41ud5544e3clae95a5eela407efca.html__;!!OepYZ6Q!8V6tIxBPrJJrIPaXStTlykqJlMywygLyK7PWAFztl65g1MA8bTRotZRN6_ikxvM1ML0h_5P3dyWULq83CSdWLaqs1w/
Certificate
IssuerLet's Encrypt
Subjectnotifyhubss.net
Fingerprint15:15:D9:8E:39:C7:06:EB:3E:95:E9:60:79:C1:C8:71:91:A7:DF:07
ValiditySat, 06 Apr 2024 23:22:32 GMT - Fri, 05 Jul 2024 23:22:31 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: notifyhubss.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
date: Fri, 26 Apr 2024 18:04:59 GMT
content-length: 0
cache-control: max-age=300, public
access-control-allow-origin: *
location: /cdn-cgi/challenge-platform/h/b/scripts/jsd/471dc2adc340/main.js
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bL%2B8XbUvce7bazQP2gNq%2FvMXPPAvSIKrmlIpxMhdJK79PvxR9%2FXFZWVttSPbkTiCacaxrwK8f1qwAN6lzw%2Fu18KnWGmoaIqX%2BgqgX7Pi7pXHtpPezNHQMZNBA8A%2BHRRreg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a87f987de5712e-OSL
X-Firefox-Spdy: h2

notifyhubss.net/cdn-cgi/challenge-platform/h/b/jsd/r/87a87f943f6a712e

172.67.72.147

200 OK

0 B

URL POST HTTP/2
notifyhubss.net/cdn-cgi/challenge-platform/h/b/jsd/r/87a87f943f6a712e
IP
172.67.72.147:443
ASN
#13335 CLOUDFLARENET

Requested by
https://notifyhubss.net/4ca45aa41ud5544e3clae95a5eela407efca.html__;!!OepYZ6Q!8V6tIxBPrJJrIPaXStTlykqJlMywygLyK7PWAFztl65g1MA8bTRotZRN6_ikxvM1ML0h_5P3dyWULq83CSdWLaqs1w/
Certificate
IssuerLet's Encrypt
Subjectnotifyhubss.net
Fingerprint15:15:D9:8E:39:C7:06:EB:3E:95:E9:60:79:C1:C8:71:91:A7:DF:07
ValiditySat, 06 Apr 2024 23:22:32 GMT - Fri, 05 Jul 2024 23:22:31 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /cdn-cgi/challenge-platform/h/b/jsd/r/87a87f943f6a712e HTTP/1.1
Host: notifyhubss.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12405
Origin: https://notifyhubss.net
DNT: 1
Connection: keep-alive
Referer: https://notifyhubss.net/4ca45aa41ud5544e3clae95a5eela407efca.html__;!!OepYZ6Q!8V6tIxBPrJJrIPaXStTlykqJlMywygLyK7PWAFztl65g1MA8bTRotZRN6_ikxvM1ML0h_5P3dyWULq83CSdWLaqs1w/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 26 Apr 2024 18:04:59 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
set-cookie: cf_clearance=D9f9wAyhSY8FCUw4d0oZBe81ZwQbbcSBiYXZIB_Lh_c-1714154699-1.0.1.1-603MeVnRyNCQQfYgTfr3zm8Bn.OgMQiemFrCbL5tniNEMPFpjyPP.I2g9Bkqabhjr0YMQdce.Zk9YCYCy5mb.w; path=/; expires=Sat, 26-Apr-25 18:04:59 GMT; domain=.notifyhubss.net; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zA7l30uqX6KvD3ZsupeBlSTUHpN8Yz%2Bt78zQe11Mw2xLl20J2D5R9l7FiEjQAC7WNqjYXajf%2B7OhLOfeuwbKU7AIG6mjXgdMJ%2F1sptA7zYZ0We5u49uMpNsw6h68OQ1j9A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a87f997f0f712e-OSL
X-Firefox-Spdy: h2

notifyhubss.net/4ca45aa41ud5544e3clae95a5eela407efca.html__;!!OepYZ6Q!8V6tIxBPrJJrIPaXStTlykqJlMywygLyK7PWAFztl65g1MA8bTRotZRN6_ikxvM1ML0h_5P3dyWULq83CSdWLaqs1w/

172.67.72.147

200 OK

0 B

URL POST HTTP/2
notifyhubss.net/4ca45aa41ud5544e3clae95a5eela407efca.html__;!!OepYZ6Q!8V6tIxBPrJJrIPaXStTlykqJlMywygLyK7PWAFztl65g1MA8bTRotZRN6_ikxvM1ML0h_5P3dyWULq83CSdWLaqs1w/
IP
172.67.72.147:443
ASN
#13335 CLOUDFLARENET

Requested by
https://notifyhubss.net/4ca45aa41ud5544e3clae95a5eela407efca.html__;!!OepYZ6Q!8V6tIxBPrJJrIPaXStTlykqJlMywygLyK7PWAFztl65g1MA8bTRotZRN6_ikxvM1ML0h_5P3dyWULq83CSdWLaqs1w/
Certificate
IssuerLet's Encrypt
Subjectnotifyhubss.net
Fingerprint15:15:D9:8E:39:C7:06:EB:3E:95:E9:60:79:C1:C8:71:91:A7:DF:07
ValiditySat, 06 Apr 2024 23:22:32 GMT - Fri, 05 Jul 2024 23:22:31 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Outlook

HTTP Headers

POST /4ca45aa41ud5544e3clae95a5eela407efca.html__;!!OepYZ6Q!8V6tIxBPrJJrIPaXStTlykqJlMywygLyK7PWAFztl65g1MA8bTRotZRN6_ikxvM1ML0h_5P3dyWULq83CSdWLaqs1w/ HTTP/1.1
Host: notifyhubss.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: json
X-Requested-With: XMLHttpRequest
Content-Length: 65
Origin: https://notifyhubss.net
DNT: 1
Connection: keep-alive
Referer: https://notifyhubss.net/4ca45aa41ud5544e3clae95a5eela407efca.html__;!!OepYZ6Q!8V6tIxBPrJJrIPaXStTlykqJlMywygLyK7PWAFztl65g1MA8bTRotZRN6_ikxvM1ML0h_5P3dyWULq83CSdWLaqs1w/
Cookie: requestid=8502f5c2f46ca85fb184a16e9b3cc3f9
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 26 Apr 2024 18:04:59 GMT
content-type: application/octet-stream
content-length: 0
set-cookie: requestid=f51c0438cbe1ad5de49f0dd364ae1a7d
requestid=6f4c9ad71e14bc17d7eacb55776374c0
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gMIZXpkFftux3DapUWwB9sRuP4o4z6M0goeA30myrgSO0iom0MwQLlXyu%2FMbhzJDkvNAcpi94y9U9Fil0fvZcXANOSTYE4FrZiBO1SBj1pX7TaKnbTyRHmVDb9%2BOxZQHrA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a87f998f37712e-OSL
X-Firefox-Spdy: h2

notifyhubss.net/4ca45aa41ud5544e3clae95a5eela407efca.html__;!!OepYZ6Q!8V6tIxBPrJJrIPaXStTlykqJlMywygLyK7PWAFztl65g1MA8bTRotZRN6_ikxvM1ML0h_5P3dyWULq83CSdWLaqs1w/

172.67.72.147

200 OK

0 B

URL POST HTTP/2
notifyhubss.net/4ca45aa41ud5544e3clae95a5eela407efca.html__;!!OepYZ6Q!8V6tIxBPrJJrIPaXStTlykqJlMywygLyK7PWAFztl65g1MA8bTRotZRN6_ikxvM1ML0h_5P3dyWULq83CSdWLaqs1w/
IP
172.67.72.147:443
ASN
#13335 CLOUDFLARENET

Requested by
https://notifyhubss.net/4ca45aa41ud5544e3clae95a5eela407efca.html__;!!OepYZ6Q!8V6tIxBPrJJrIPaXStTlykqJlMywygLyK7PWAFztl65g1MA8bTRotZRN6_ikxvM1ML0h_5P3dyWULq83CSdWLaqs1w/
Certificate
IssuerLet's Encrypt
Subjectnotifyhubss.net
Fingerprint15:15:D9:8E:39:C7:06:EB:3E:95:E9:60:79:C1:C8:71:91:A7:DF:07
ValiditySat, 06 Apr 2024 23:22:32 GMT - Fri, 05 Jul 2024 23:22:31 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Outlook

HTTP Headers

POST /4ca45aa41ud5544e3clae95a5eela407efca.html__;!!OepYZ6Q!8V6tIxBPrJJrIPaXStTlykqJlMywygLyK7PWAFztl65g1MA8bTRotZRN6_ikxvM1ML0h_5P3dyWULq83CSdWLaqs1w/ HTTP/1.1
Host: notifyhubss.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: json
X-Requested-With: XMLHttpRequest
Content-Length: 109
Origin: https://notifyhubss.net
DNT: 1
Connection: keep-alive
Referer: https://notifyhubss.net/4ca45aa41ud5544e3clae95a5eela407efca.html__;!!OepYZ6Q!8V6tIxBPrJJrIPaXStTlykqJlMywygLyK7PWAFztl65g1MA8bTRotZRN6_ikxvM1ML0h_5P3dyWULq83CSdWLaqs1w/
Cookie: requestid=6f4c9ad71e14bc17d7eacb55776374c0; cf_clearance=D9f9wAyhSY8FCUw4d0oZBe81ZwQbbcSBiYXZIB_Lh_c-1714154699-1.0.1.1-603MeVnRyNCQQfYgTfr3zm8Bn.OgMQiemFrCbL5tniNEMPFpjyPP.I2g9Bkqabhjr0YMQdce.Zk9YCYCy5mb.w
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 26 Apr 2024 18:05:22 GMT
content-type: application/octet-stream
content-length: 0
set-cookie: requestid=63ed3fa53510e716bdf3af1960998a9e
requestid=a222156c44dbb299dc9791527589a041
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fN8KYz36to0RqUgQe66QxQWFBFwHDjKHQTSj%2FGMgUnVxRSVbbbOg8FJ%2BcdUbVsI1AzbU%2B6V5%2Bb36QQYjhD6YAIiK7ZC5qg9FGHiuRh8052UBTHb6gk3xzkUXjSrELa9krA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a880269b0c712e-OSL
X-Firefox-Spdy: h2

lp.cybeready.net/Forms/MS-online/sanitize.css

104.26.8.233

200 OK

526 B

URL GET HTTP/2
lp.cybeready.net/Forms/MS-online/sanitize.css
IP
104.26.8.233:443
ASN
#13335 CLOUDFLARENET

Requested by
https://notifyhubss.net/4ca45aa41ud5544e3clae95a5eela407efca.html__;!!OepYZ6Q!8V6tIxBPrJJrIPaXStTlykqJlMywygLyK7PWAFztl65g1MA8bTRotZRN6_ikxvM1ML0h_5P3dyWULq83CSdWLaqs1w/
Certificate
IssuerLet's Encrypt
Subjectcybeready.net
FingerprintBB:28:14:F8:09:02:DF:1E:F0:B6:74:8B:09:67:6A:55:A6:0D:A0:38
ValidityTue, 16 Apr 2024 23:13:46 GMT - Mon, 15 Jul 2024 23:13:45 GMT

File type
ASCII text, with very long lines (526), with no line terminators
Size
526 B (526 bytes)
Hash
2675cf7988f6a7a71b241bb7dbe69dec
7900859c6bf14e7c3a72db9bd4a9e49901f78173
4e9b51d07ce50cf3d2e065c34ba5f30d95d75227cd7642ae8d262d6772867e61

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Microsoft

HTTP Headers

GET /Forms/MS-online/sanitize.css HTTP/1.1
Host: lp.cybeready.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://notifyhubss.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 26 Apr 2024 18:04:59 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=1014
etag: W/"61d79c3e015865ed0bca45e77eeac723"
last-modified: Mon, 09 May 2016 08:37:44 GMT
x-amz-id-2: HtxRyFtarpcGrcBTbmx/RAbYILShVqV/HXqBpX/hmjs8rUubW99GKMVr+ffagH9uRbjSEX3c1aQ=
x-amz-request-id: 53P3SQSENC68HHA9
cache-control: max-age=14400
cf-cache-status: HIT
age: 1838
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uvo7qCutCG2VWa%2FPB8JXJFeV1rz%2BLcc8XPcqJtTfOzvVzTJ488%2FUWGhcI42AEuyB3KFs%2B%2FDm%2FKGnD%2BFYHOC45GQEWWxJzZR8E%2Bx8dhn0GRh%2BmTGO7FiSlvXZhtyER0w%2FhmI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a87f972c790b65-OSL
content-encoding: br
X-Firefox-Spdy: h2

lp.cybeready.net/Forms/MS-online/index.css

104.26.8.233

200 OK

2.4 kB

URL GET HTTP/2
lp.cybeready.net/Forms/MS-online/index.css
IP
104.26.8.233:443
ASN
#13335 CLOUDFLARENET

Requested by
https://notifyhubss.net/4ca45aa41ud5544e3clae95a5eela407efca.html__;!!OepYZ6Q!8V6tIxBPrJJrIPaXStTlykqJlMywygLyK7PWAFztl65g1MA8bTRotZRN6_ikxvM1ML0h_5P3dyWULq83CSdWLaqs1w/
Certificate
IssuerLet's Encrypt
Subjectcybeready.net
FingerprintBB:28:14:F8:09:02:DF:1E:F0:B6:74:8B:09:67:6A:55:A6:0D:A0:38
ValidityTue, 16 Apr 2024 23:13:46 GMT - Mon, 15 Jul 2024 23:13:45 GMT

File type
ASCII text, with very long lines (2426), with no line terminators
Size
2.4 kB (2426 bytes)
Hash
8a755011320e63395ea79047f1b5073c
cdf05a68a5c6fe1c2566f63f92c3997f7352ab6f
bd5d2516f5c4a874a8f3d1c03b60ce1c33854626f0bb98ef55e56dda4e46db56

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Microsoft

HTTP Headers

GET /Forms/MS-online/index.css HTTP/1.1
Host: lp.cybeready.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://notifyhubss.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 26 Apr 2024 18:04:59 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=3105
etag: W/"f381725154f2d810562dc42f32c6bee2"
last-modified: Mon, 09 May 2016 08:37:42 GMT
x-amz-id-2: vNTVwsgZ/ssYJbpp0SHi+ulC+ZofQkDC16C0QRIkFdu6XYefnXiQtiQWaxwW73EmLrcrcRkjwY4=
x-amz-request-id: VG74JFR04HJXXY4Y
cache-control: max-age=14400
cf-cache-status: HIT
age: 1838
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FZ8x%2FlhMrR3aQ7DoSWd1HLx70DF69ZjnfNcpMQu%2FTD3V4QIMzj8NYHfcSHRJ7m2Vt2%2BnFPgkBrDP7zntiSnKUghZDcij7FU9qgxvnAyM9seSkCdBT%2BnOxa8S9d%2BL5AN0h%2FY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a87f972c810b65-OSL
content-encoding: br
X-Firefox-Spdy: h2

lp.cybeready.net/Forms/MS-online/validator.js

104.26.8.233

200 OK

1.1 kB

URL GET HTTP/2
lp.cybeready.net/Forms/MS-online/validator.js
IP
104.26.8.233:443
ASN
#13335 CLOUDFLARENET

Requested by
https://notifyhubss.net/4ca45aa41ud5544e3clae95a5eela407efca.html__;!!OepYZ6Q!8V6tIxBPrJJrIPaXStTlykqJlMywygLyK7PWAFztl65g1MA8bTRotZRN6_ikxvM1ML0h_5P3dyWULq83CSdWLaqs1w/
Certificate
IssuerLet's Encrypt
Subjectcybeready.net
FingerprintBB:28:14:F8:09:02:DF:1E:F0:B6:74:8B:09:67:6A:55:A6:0D:A0:38
ValidityTue, 16 Apr 2024 23:13:46 GMT - Mon, 15 Jul 2024 23:13:45 GMT

File type
ASCII text, with very long lines (1158), with no line terminators
Size
1.1 kB (1141 bytes)
Hash
739cde09074e2d13657b46670db603ff
a3a8a20ccd8af534d0693fa9984ad57e9fb7d0d3
ab0eab4eb25b68afc38087d490df3e23b0e902130a9ae4326a6901b045a32d8b

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Microsoft

HTTP Headers

GET /Forms/MS-online/validator.js HTTP/1.1
Host: lp.cybeready.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://notifyhubss.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 26 Apr 2024 18:04:59 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=1569
etag: W/"844cb6b1728575eb4bc8bc531bb5a4f3"
last-modified: Mon, 09 May 2016 10:28:26 GMT
x-amz-id-2: zAeZmrBbHpjB2Wch38Za3vj7dfDT5GX963N6ddI2jLmyLq53vqs88+NFo+f5yk9sg6Oytuj+nrQ=
x-amz-request-id: B1C0XJZFX1GTCBRJ
cache-control: max-age=14400
cf-cache-status: HIT
age: 1838
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=a8Fxtq842cftRfJEtQ9WuM9WZJy%2BNahfsI15mODFD%2BVMu4hyAjAQ4Sedq%2B3S%2FjEa%2FDl2p5JSLrFBEj%2Fw87pbeH89ZCwwax1QtptMzvjSXhE43zm6BasIRdRCtv0vxstbUQ0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a87f971c620b65-OSL
content-encoding: br
X-Firefox-Spdy: h2

notifyhubss.net/cdn-cgi/challenge-platform/h/b/scripts/jsd/471dc2adc340/main.js

172.67.72.147

200 OK

7.8 kB

URL GET HTTP/2
notifyhubss.net/cdn-cgi/challenge-platform/h/b/scripts/jsd/471dc2adc340/main.js
IP
172.67.72.147:443
ASN
#13335 CLOUDFLARENET

Requested by
https://notifyhubss.net/4ca45aa41ud5544e3clae95a5eela407efca.html__;!!OepYZ6Q!8V6tIxBPrJJrIPaXStTlykqJlMywygLyK7PWAFztl65g1MA8bTRotZRN6_ikxvM1ML0h_5P3dyWULq83CSdWLaqs1w/
Certificate
IssuerLet's Encrypt
Subjectnotifyhubss.net
Fingerprint15:15:D9:8E:39:C7:06:EB:3E:95:E9:60:79:C1:C8:71:91:A7:DF:07
ValiditySat, 06 Apr 2024 23:22:32 GMT - Fri, 05 Jul 2024 23:22:31 GMT

File type
JavaScript source, ASCII text, with very long lines (7782), with no line terminators
Size
7.8 kB (7782 bytes)
Hash
3966d1752da03dbb95dd73504b97df13
64e1f8166e3d4f6a4ad962c514ab94502bb51869
764b299b867ceae1ca8b8ef7afef33a07b3b6a0b3c78ecce66ca47ea2c5cf4ca

HTTP Headers

GET /cdn-cgi/challenge-platform/h/b/scripts/jsd/471dc2adc340/main.js HTTP/1.1
Host: notifyhubss.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 26 Apr 2024 18:04:59 GMT
content-type: application/javascript; charset=UTF-8
cache-control: max-age=14400, public
vary: accept-encoding
content-encoding: br
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=d98Lohnrsmq9RqEsjL4Ln2z0n5kVSU6i9h0J0ZA1t39sBvvnMHLn9BPOgCP6ikYVLHtZZzuIt8qwLVp3A%2FW8jmxJg%2BiK2LLv0rCcvFzgZuPyoaZ2LOBSoC2uO0c50oFjaQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a87f989e16712e-OSL
X-Firefox-Spdy: h2

lp.cybeready.net/Forms/MS-online/favicon.ico

0.0.0.0

0 B

URL GET
lp.cybeready.net/Forms/MS-online/favicon.ico
IP
0.0.0.0:0
ASN
#0

Requested by
https://notifyhubss.net/4ca45aa41ud5544e3clae95a5eela407efca.html__;!!OepYZ6Q!8V6tIxBPrJJrIPaXStTlykqJlMywygLyK7PWAFztl65g1MA8bTRotZRN6_ikxvM1ML0h_5P3dyWULq83CSdWLaqs1w/
Certificate
IssuerLet's Encrypt
Subjectcybeready.net
FingerprintBB:28:14:F8:09:02:DF:1E:F0:B6:74:8B:09:67:6A:55:A6:0D:A0:38
ValidityTue, 16 Apr 2024 23:13:46 GMT - Mon, 15 Jul 2024 23:13:45 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /Forms/MS-online/favicon.ico HTTP/1.1
Host: lp.cybeready.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://notifyhubss.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 26 Apr 2024 18:04:59 GMT
content-type: image/x-icon
x-amz-id-2: 6INuEGBZE9oJXJPNfkMWFQpfrRs9jtzvoDFiiiK62HrjxfzS3ZnRb6xYEQaIn7RVI1dJidVwvKk=
x-amz-request-id: Q8KWSW825386B3NQ
last-modified: Mon, 09 May 2016 08:37:47 GMT
etag: W/"12e3dac858061d088023b2bd48e2fa96"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1837
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=01V1KNnDme4vsWzxQGhMvfqUhMF4mLQ8t1WnC5YjvQJ%2BiyVGf0RDY53aHsfFIiRljbyNJwevclQNIoY6naMqyyKbQubJ0SqDlOmLZAICTJfkETDiOI1WdudR0ccuQlAy2Ao%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a87f986e580b65-OSL
content-encoding: br
X-Firefox-Spdy: h2

lp.cybeready.net/common/landing-page.js

104.26.8.233

200 OK

4.0 kB

URL GET HTTP/2
lp.cybeready.net/common/landing-page.js
IP
104.26.8.233:443
ASN
#13335 CLOUDFLARENET

Requested by
https://notifyhubss.net/4ca45aa41ud5544e3clae95a5eela407efca.html__;!!OepYZ6Q!8V6tIxBPrJJrIPaXStTlykqJlMywygLyK7PWAFztl65g1MA8bTRotZRN6_ikxvM1ML0h_5P3dyWULq83CSdWLaqs1w/
Certificate
IssuerLet's Encrypt
Subjectcybeready.net
FingerprintBB:28:14:F8:09:02:DF:1E:F0:B6:74:8B:09:67:6A:55:A6:0D:A0:38
ValidityTue, 16 Apr 2024 23:13:46 GMT - Mon, 15 Jul 2024 23:13:45 GMT

File type
JavaScript source, ASCII text, with very long lines (4058), with no line terminators
Size
4.0 kB (4037 bytes)
Hash
31c9d5c1c040c6f1d6e924471ce8179b
051fbd8b0dd9cc8567fcb71fedf2726d0c7cb321
13935b3ce2cace0bb7bd02421279995e5a519bc5622c494ee1536a1ef880f670

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Microsoft

HTTP Headers

GET /common/landing-page.js HTTP/1.1
Host: lp.cybeready.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://notifyhubss.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 26 Apr 2024 18:04:59 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=7666
etag: W/"dc85792ec27e1c3bf02af986d07c81eb"
last-modified: Thu, 19 Nov 2015 18:47:02 GMT
x-amz-id-2: z8RsqbBiz1nWYtfNZb1HCsklBEOD8IM7WIC09NRnrI1IXGsWrJYoWs/x8VuE967G4EdDqZTcWR4=
x-amz-request-id: BGDVSRCCTTP72NXR
cache-control: max-age=14400
cf-cache-status: HIT
age: 1838
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mDpilNM8nHn7tnBQNjUrY1LKf9zwXtaBRRphfeYYJm20ZroBjc8c4bKeCeVzWLO5uNZU4bZsjlF2DijadVrPfoJyUo0sZaqnpCcSfSVrxXMSXznoonFsw%2FrYTKSihkZSdEI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a87f971c720b65-OSL
content-encoding: br
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (7)

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (15)

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size