Report - tga.dev/

Report Overview

Submitted URL
tga.dev/
IP
3.70.101.28
ASN
#16509 AMAZON-02
Submitted
2024-05-10 17:51:43
Access
public
Website Title
Telegram Beta
Final URL
tga.dev/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
82

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
tga.dev	unknown	2023-05-18	2023-06-02	2024-04-11	20 kB	1.5 MB	18.192.231.252
zws2.web.telegram.org	144268	2003-12-15	2021-06-24	2024-05-04	1.2 kB	438 B	149.154.167.99

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-05-08	medium	tga.dev/	Telegram
2024-05-08	medium	tga.dev/	Telegram
2024-05-08	medium	tga.dev/	Telegram
2024-05-08	medium	tga.dev/	Telegram
2024-05-08	medium	tga.dev/	Telegram
2024-05-08	medium	tga.dev/	Telegram
2024-05-08	medium	tga.dev/	Telegram
2024-05-08	medium	tga.dev/	Telegram
2024-05-08	medium	tga.dev/	Telegram
2024-05-08	medium	tga.dev/	Telegram
2024-05-08	medium	tga.dev/	Telegram
2024-05-08	medium	tga.dev/	Telegram
2024-05-08	medium	tga.dev/	Telegram
2024-05-08	medium	tga.dev/	Telegram
2024-05-08	medium	tga.dev/	Telegram
2024-05-08	medium	tga.dev/	Telegram
2024-05-08	medium	tga.dev/	Telegram
2024-05-08	medium	tga.dev/	Telegram
2024-05-08	medium	tga.dev/	Telegram
2024-05-08	medium	tga.dev/	Telegram
2024-05-08	medium	tga.dev/	Telegram
2024-05-08	medium	tga.dev/	Telegram
2024-05-08	medium	tga.dev/	Telegram
2024-05-08	medium	tga.dev/	Telegram
2024-05-08	medium	tga.dev/	Telegram
2024-05-08	medium	tga.dev/	Telegram
2024-05-08	medium	tga.dev/	Telegram
2024-05-08	medium	tga.dev/	Telegram
2024-05-08	medium	tga.dev/	Telegram
2024-05-08	medium	tga.dev/	Telegram
2024-05-08	medium	tga.dev/	Telegram
2024-05-08	medium	tga.dev/	Telegram
2024-05-08	medium	tga.dev/	Telegram
2024-05-08	medium	tga.dev/	Telegram
2024-05-08	medium	tga.dev/	Telegram
2024-05-08	medium	tga.dev/	Telegram
2024-05-08	medium	tga.dev/	Telegram
2024-05-08	medium	tga.dev/	Telegram
2024-05-08	medium	tga.dev/	Telegram
2024-05-08	medium	tga.dev/	Telegram
2024-05-08	medium	tga.dev/	Telegram

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (6)

	URL	Size	First Seen	Last Seen
	tga.dev/src_lib_rlottie_RLottie_ts.5cd1a1ad43c298be5865.js	25 kB	2024-05-09	2024-05-10
Pretty URL tga.dev/src_lib_rlottie_RLottie_ts.5cd1a1ad43c298be5865.js IP 18.192.231.252 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-09 07:55:24 Last Seen2024-05-10 19:51:46 Times Seen4 Hash 9063e1485f35f093535000809e8c8d19 86ef6008238017e3fa749879d079b6dd787f0220 1f4801a4f660a8229f26a6610dabe519c37a680f61a3dd786c8f365b0b212c7d Loading...

	tga.dev/vendors-node_modules_qr-code-styling_lib_qr-code-styling_js.756dd536589c8fdb7d94.js	46 kB	2023-07-27	2024-05-10
Pretty URL tga.dev/vendors-node_modules_qr-code-styling_lib_qr-code-styling_js.756dd536589c8fdb7d94.js IP 18.192.231.252 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-27 09:32:35 Last Seen2024-05-10 19:51:45 Times Seen15 Hash 863f75790a817ddefdf33d19cdebf0f9 b0d7a5f22c2a73d90303936607bb24597665dcfe 63b717adcd903698aa00fc8796d33a6c59af79c12bf3833d6198a1ca6e7d5737 Loading...

	tga.dev/redirect.js	325 B	2023-07-27	2024-05-20
Pretty URL tga.dev/redirect.js IP 18.192.231.252 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-27 09:32:34 Last Seen2024-05-20 08:19:57 Times Seen277 Hash 17773b57b87a678c98e26a7cac72df6c 7422857aa75ee81cabcec2eed6c4a6168f363ee1 375141f2d3f04c733276dbff5d9208ff36b2db6a64abcee723179ac24797974f Loading...

	tga.dev/compatTest.js	2.2 kB	2024-02-24	2024-05-17
Pretty URL tga.dev/compatTest.js IP 18.192.231.252 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-02-24 23:46:30 Last Seen2024-05-17 20:45:16 Times Seen37 Hash b328e15f89116105372eddac365cb6f2 da1979ab60b891ec53dd318be90a09a83124bd87 22c6b05f0b138dddb5711fdb998be90abf8093e271085bda6448bd6bc72c95d2 Loading...

	tga.dev/main.54eb51fe8317e53e4e28.js	1.5 MB	2024-05-10	2024-05-10
Pretty URL tga.dev/main.54eb51fe8317e53e4e28.js IP 18.192.231.252 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-10 19:51:45 Last Seen2024-05-10 19:51:45 Times Seen2 Hash db6e9d03e834f3cdfd471627d2eead5a 5374ba2e7a97c85f7fa75cda12f4a6dbace8c6c6 1e0e513f8244b2babb7a360d13595804a607baee6d832d60211acec345bd123b Loading...

	tga.dev/src_util_fallbackLangPack_ts.9fc550d166525b7e7d21.js	21 kB	2024-05-09	2024-05-10
Pretty URL tga.dev/src_util_fallbackLangPack_ts.9fc550d166525b7e7d21.js IP 18.192.231.252 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-09 07:55:24 Last Seen2024-05-10 19:51:45 Times Seen2 Hash 03b0f9b2cc43cd22aa18b6b72f968200 9cd65dfed101850c7029b7fb74fe466c4c8cd2af 98cf277b6653b539e776767305803dbe1a50054fda5b158088f2aebfa6971537 Loading...

HTTP Transactions (43)

URL IP Response Size

tga.dev/

18.192.231.252

200 OK

1.0 kB

URL User Request GET HTTP/2
tga.dev/
IP
18.192.231.252:443
ASN
#16509 AMAZON-02

Certificate
IssuerLet's Encrypt
Subject*.webz.dev
Fingerprint5C:6E:C2:F5:40:FD:AB:C7:68:58:F0:B2:99:0F:5E:17:BB:5B:8B:65
ValidityWed, 10 Apr 2024 20:21:12 GMT - Tue, 09 Jul 2024 20:21:11 GMT

File type
HTML document, ASCII text, with very long lines (445)
Size
1.0 kB (1018 bytes)
Hash
fa9703ae9b44130b0788a94a605fcb81
42e36e617dd086d7c1793890a65af0f039231e5b
6f9c48c98d64d29d464ce4d33ffe66d343a8ec4672f463059ae10a51ac864aa0

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET / HTTP/1.1
Host: tga.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
age: 38048
cache-control: public,max-age=0,must-revalidate
cache-status: "Netlify Edge"; hit
content-encoding: br
content-type: text/html; charset=UTF-8
date: Fri, 10 May 2024 17:51:15 GMT
etag: "465d0030124053db49b9bf83c79a966a-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01HXHT2W48M60ZHA9DG0D6CXSH
content-length: 1018
X-Firefox-Spdy: h2

tga.dev/compatTest.js

18.192.231.252

200 OK

739 B

URL GET HTTP/2
tga.dev/compatTest.js
IP
18.192.231.252:443
ASN
#16509 AMAZON-02

Requested by
https://tga.dev/
Certificate
IssuerLet's Encrypt
Subject*.webz.dev
Fingerprint5C:6E:C2:F5:40:FD:AB:C7:68:58:F0:B2:99:0F:5E:17:BB:5B:8B:65
ValidityWed, 10 Apr 2024 20:21:12 GMT - Tue, 09 Jul 2024 20:21:11 GMT

File type
JavaScript source, ASCII text, with very long lines (413)
Size
739 B (739 bytes)
Hash
b328e15f89116105372eddac365cb6f2
da1979ab60b891ec53dd318be90a09a83124bd87
22c6b05f0b138dddb5711fdb998be90abf8093e271085bda6448bd6bc72c95d2

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /compatTest.js HTTP/1.1
Host: tga.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tga.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public,max-age=0,must-revalidate
cache-status: "Netlify Edge"; fwd=miss
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Fri, 10 May 2024 17:51:15 GMT
etag: "534582053b13020665c5942f119aa06a-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01HXHT2WCMT2RXFD6E4CWRNHDH
content-length: 739
X-Firefox-Spdy: h2

tga.dev/redirect.js

18.192.231.252

200 OK

325 B

URL GET HTTP/2
tga.dev/redirect.js
IP
18.192.231.252:443
ASN
#16509 AMAZON-02

Requested by
https://tga.dev/
Certificate
IssuerLet's Encrypt
Subject*.webz.dev
Fingerprint5C:6E:C2:F5:40:FD:AB:C7:68:58:F0:B2:99:0F:5E:17:BB:5B:8B:65
ValidityWed, 10 Apr 2024 20:21:12 GMT - Tue, 09 Jul 2024 20:21:11 GMT

File type
ASCII text
Size
325 B (325 bytes)
Hash
17773b57b87a678c98e26a7cac72df6c
7422857aa75ee81cabcec2eed6c4a6168f363ee1
375141f2d3f04c733276dbff5d9208ff36b2db6a64abcee723179ac24797974f

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /redirect.js HTTP/1.1
Host: tga.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tga.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public,max-age=0,must-revalidate
cache-status: "Netlify Edge"; fwd=miss
content-type: application/javascript; charset=UTF-8
date: Fri, 10 May 2024 17:51:15 GMT
etag: "0bab5b68385bfea579502e25363ec4fd-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01HXHT2WCFQC9259N76VVEY066
content-length: 325
X-Firefox-Spdy: h2

tga.dev/main.54eb51fe8317e53e4e28.js

18.192.231.252

200 OK

244 kB

URL GET HTTP/2
tga.dev/main.54eb51fe8317e53e4e28.js
IP
18.192.231.252:443
ASN
#16509 AMAZON-02

Requested by
https://tga.dev/
Certificate
IssuerLet's Encrypt
Subject*.webz.dev
Fingerprint5C:6E:C2:F5:40:FD:AB:C7:68:58:F0:B2:99:0F:5E:17:BB:5B:8B:65
ValidityWed, 10 Apr 2024 20:21:12 GMT - Tue, 09 Jul 2024 20:21:11 GMT

File type
JavaScript source, ASCII text, with very long lines (326)
Size
244 kB (243598 bytes)
Hash
db6e9d03e834f3cdfd471627d2eead5a
5374ba2e7a97c85f7fa75cda12f4a6dbace8c6c6
1e0e513f8244b2babb7a360d13595804a607baee6d832d60211acec345bd123b

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /main.54eb51fe8317e53e4e28.js HTTP/1.1
Host: tga.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tga.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public,max-age=0,must-revalidate
cache-status: "Netlify Edge"; fwd=miss
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Fri, 10 May 2024 17:51:15 GMT
etag: "5f108fa31a9d15375d5a2e9fea0ffea4-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01HXHT2WCH965N5ZQR2V3CZR7A
X-Firefox-Spdy: h2

tga.dev/chat-bg-pattern-light.ee148af944f6580293ae.png

18.192.231.252

200 OK

273 kB

URL GET HTTP/2
tga.dev/chat-bg-pattern-light.ee148af944f6580293ae.png
IP
18.192.231.252:443
ASN
#16509 AMAZON-02

Requested by
https://tga.dev/
Certificate
IssuerLet's Encrypt
Subject*.webz.dev
Fingerprint5C:6E:C2:F5:40:FD:AB:C7:68:58:F0:B2:99:0F:5E:17:BB:5B:8B:65
ValidityWed, 10 Apr 2024 20:21:12 GMT - Tue, 09 Jul 2024 20:21:11 GMT

File type
PNG image data, 1123 x 2307, 4-bit colormap, non-interlaced
Size
273 kB (272875 bytes)
Hash
3d558d8de7082a2b2355076c8988c3fd
d74980e29b0ec2f102b0dcd614503fd42a255b85
00745db819d91c37bf0f59bee00ab2efe9766fddcb726ff1bcb6847748b2bbc7

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /chat-bg-pattern-light.ee148af944f6580293ae.png HTTP/1.1
Host: tga.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tga.dev/main.ff4a812f12975c19c92b.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public,max-age=0,must-revalidate
cache-status: "Netlify Edge"; fwd=miss
content-type: image/png
date: Fri, 10 May 2024 17:51:16 GMT
etag: "b4577f2e323f32f90a1e6a35fc316b6f-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01HXHT2WZSM3Q8APPWVEJ8FH0X
content-length: 272875
X-Firefox-Spdy: h2

tga.dev/KFOlCnqEu92Fr1MmEU9fBBc4AMP6lQ.324b1e6d0f5ae7c6ab42.woff2

18.192.231.252

200 OK

11 kB

URL GET HTTP/2
tga.dev/KFOlCnqEu92Fr1MmEU9fBBc4AMP6lQ.324b1e6d0f5ae7c6ab42.woff2
IP
18.192.231.252:443
ASN
#16509 AMAZON-02

Requested by
https://tga.dev/
Certificate
IssuerLet's Encrypt
Subject*.webz.dev
Fingerprint5C:6E:C2:F5:40:FD:AB:C7:68:58:F0:B2:99:0F:5E:17:BB:5B:8B:65
ValidityWed, 10 Apr 2024 20:21:12 GMT - Tue, 09 Jul 2024 20:21:11 GMT

File type
Web Open Font Format (Version 2), TrueType, length 11056, version 1.0
Size
11 kB (11056 bytes)
Hash
07db243db21ed0a6b4ff05ff429686b7
5d62925fdd7ed8e80f206d095ed093994f13d276
ce897833ac6e362df7c91ac8223fe511c6defcf33964928a81004600a2dd4c2e

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /KFOlCnqEu92Fr1MmEU9fBBc4AMP6lQ.324b1e6d0f5ae7c6ab42.woff2 HTTP/1.1
Host: tga.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://tga.dev/main.ff4a812f12975c19c92b.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public,max-age=0,must-revalidate
cache-status: "Netlify Edge"; fwd=miss
content-type: font/woff2
date: Fri, 10 May 2024 17:51:16 GMT
etag: "6e7083a4065bbd4e28f84371f1a14657-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01HXHT2WZZA05E5XP34GFEGP0J
content-length: 11056
X-Firefox-Spdy: h2

tga.dev/chat-bg-br.f34cc96fbfb048812820.png

18.192.231.252

200 OK

1.9 kB

URL GET HTTP/2
tga.dev/chat-bg-br.f34cc96fbfb048812820.png
IP
18.192.231.252:443
ASN
#16509 AMAZON-02

Requested by
https://tga.dev/
Certificate
IssuerLet's Encrypt
Subject*.webz.dev
Fingerprint5C:6E:C2:F5:40:FD:AB:C7:68:58:F0:B2:99:0F:5E:17:BB:5B:8B:65
ValidityWed, 10 Apr 2024 20:21:12 GMT - Tue, 09 Jul 2024 20:21:11 GMT

File type
PNG image data, 50 x 50, 8-bit/color RGB, non-interlaced
Size
1.9 kB (1920 bytes)
Hash
ff2989744d4813c906047582226abd28
41b973276f7a99af05115b89b401aceb02f573c8
3151f7930d821bccf4a76cbbe4a3533e2b56bdff696f260c864ab639ac7526ea

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /chat-bg-br.f34cc96fbfb048812820.png HTTP/1.1
Host: tga.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tga.dev/main.ff4a812f12975c19c92b.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public,max-age=0,must-revalidate
cache-status: "Netlify Edge"; fwd=miss
content-type: image/png
date: Fri, 10 May 2024 17:51:16 GMT
etag: "3083e522870c897ac3648a5a563f5045-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01HXHT2WZS9FD7HSCY2BSF24WC
content-length: 1920
X-Firefox-Spdy: h2

tga.dev/notification.mp3

18.192.231.252

206 Partial Content

11 kB

URL GET HTTP/2
tga.dev/notification.mp3
IP
18.192.231.252:443
ASN
#16509 AMAZON-02

Requested by
https://tga.dev/
Certificate
IssuerLet's Encrypt
Subject*.webz.dev
Fingerprint5C:6E:C2:F5:40:FD:AB:C7:68:58:F0:B2:99:0F:5E:17:BB:5B:8B:65
ValidityWed, 10 Apr 2024 20:21:12 GMT - Tue, 09 Jul 2024 20:21:11 GMT

File type
Audio file with ID3 version 2.3.0, contains: MPEG ADTS, layer III, v1, 128 kbps, 44.1 kHz, JntStereo
Size
11 kB (10880 bytes)
Hash
eba09b6a457792c52fc610b5f9f974b3
95e6e0f7648e28ea21bc434054ea59aba3a35aea
86093551f5a7f68c7dcac947bd8dc54c6a79dd9a5d83f7e40116d640eb28c7d6

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /notification.mp3 HTTP/1.1
Host: tga.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://tga.dev/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 206 Partial Content
accept-ranges: bytes
age: 0
cache-control: public,max-age=0,must-revalidate
cache-status: "Netlify Edge"; fwd=miss
content-range: bytes 0-10879/10880
content-type: audio/mpeg
date: Fri, 10 May 2024 17:51:16 GMT
etag: "7126b690128a82a9d821b115bea711ac-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01HXHT2X0C1XAS1060Z8N7ZQHP
content-length: 10880
X-Firefox-Spdy: h2

tga.dev/src_lib_mediaWorker_index_worker_ts.ee9db7b2eb2388705d10.js

18.192.231.252

200 OK

9.3 kB

URL GET HTTP/2
tga.dev/src_lib_mediaWorker_index_worker_ts.ee9db7b2eb2388705d10.js
IP
18.192.231.252:443
ASN
#16509 AMAZON-02

Requested by
https://tga.dev/
Certificate
IssuerLet's Encrypt
Subject*.webz.dev
Fingerprint5C:6E:C2:F5:40:FD:AB:C7:68:58:F0:B2:99:0F:5E:17:BB:5B:8B:65
ValidityWed, 10 Apr 2024 20:21:12 GMT - Tue, 09 Jul 2024 20:21:11 GMT

File type
JavaScript source, ASCII text, with very long lines (312)
Size
9.3 kB (9311 bytes)
Hash
1a58b4bbd6978c429e85464a7914e04c
a4e0ac908bcf5703615efb3ab81dea1f451e301c
75a9bd89330485de8d1e795e8a3b3453a54f5adb2bb7ee11b0bbdf20b8900e4c

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /src_lib_mediaWorker_index_worker_ts.ee9db7b2eb2388705d10.js HTTP/1.1
Host: tga.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tga.dev/
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public,max-age=0,must-revalidate
cache-status: "Netlify Edge"; hit
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Fri, 10 May 2024 17:51:17 GMT
etag: "a37a86f6fba0fdd9d61ef81663d85c22-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01HXHT2XG0QEX2AYR7P6D9QXS6
content-length: 9311
X-Firefox-Spdy: h2

tga.dev/icon-dev-192x192.png

18.192.231.252

200 OK

15 kB

URL GET HTTP/2
tga.dev/icon-dev-192x192.png
IP
18.192.231.252:443
ASN
#16509 AMAZON-02

Requested by
https://tga.dev/
Certificate
IssuerLet's Encrypt
Subject*.webz.dev
Fingerprint5C:6E:C2:F5:40:FD:AB:C7:68:58:F0:B2:99:0F:5E:17:BB:5B:8B:65
ValidityWed, 10 Apr 2024 20:21:12 GMT - Tue, 09 Jul 2024 20:21:11 GMT

File type
PNG image data, 192 x 192, 8-bit colormap, non-interlaced
Size
15 kB (14885 bytes)
Hash
6fcacf1bd211d97c4cc9df69c2f8f2bc
91ecc2a1a3010f362f51185e7360b8f37d78df49
b462b8d86cd5de8280822344e2ab69270848e0d2c9590ec00ad2dd9ee1641097

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /icon-dev-192x192.png HTTP/1.1
Host: tga.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tga.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 1
cache-control: public,max-age=0,must-revalidate
cache-status: "Netlify Edge"; fwd=miss
content-type: image/png
date: Fri, 10 May 2024 17:51:17 GMT
etag: "4d09f4fa80ec809311712b19dd2bb781-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01HXHT2XFD1P56AE60DYG6H2FC
content-length: 14885
X-Firefox-Spdy: h2

tga.dev/favicon.svg

18.192.231.252

200 OK

892 B

URL GET HTTP/2
tga.dev/favicon.svg
IP
18.192.231.252:443
ASN
#16509 AMAZON-02

Requested by
https://tga.dev/
Certificate
IssuerLet's Encrypt
Subject*.webz.dev
Fingerprint5C:6E:C2:F5:40:FD:AB:C7:68:58:F0:B2:99:0F:5E:17:BB:5B:8B:65
ValidityWed, 10 Apr 2024 20:21:12 GMT - Tue, 09 Jul 2024 20:21:11 GMT

File type
SVG Scalable Vector Graphics image
Size
892 B (892 bytes)
Hash
d9ee2d4b0edd9f8ba2fb7242162c2c47
398522893cf2cdefb5176f11bc67eab31c2d7382
a462f1c5333e16b48335054493cfd1d0a13a96847b4b9ffe2cf24403e6e86010

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /favicon.svg HTTP/1.1
Host: tga.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tga.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 1
cache-control: public,max-age=0,must-revalidate
cache-status: "Netlify Edge"; fwd=miss
content-type: image/svg+xml
date: Fri, 10 May 2024 17:51:17 GMT
etag: "0a0061a0720ba97c59a92873d6e8f257-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01HXHT2XFGCKY5PP08DQG0HQEH
content-length: 892
X-Firefox-Spdy: h2

tga.dev/src_lib_mediaWorker_index_worker_ts.ee9db7b2eb2388705d10.js

18.192.231.252

200 OK

9.3 kB

URL GET HTTP/2
tga.dev/src_lib_mediaWorker_index_worker_ts.ee9db7b2eb2388705d10.js
IP
18.192.231.252:443
ASN
#16509 AMAZON-02

Requested by
https://tga.dev/
Certificate
IssuerLet's Encrypt
Subject*.webz.dev
Fingerprint5C:6E:C2:F5:40:FD:AB:C7:68:58:F0:B2:99:0F:5E:17:BB:5B:8B:65
ValidityWed, 10 Apr 2024 20:21:12 GMT - Tue, 09 Jul 2024 20:21:11 GMT

File type
JavaScript source, ASCII text, with very long lines (312)
Size
9.3 kB (9311 bytes)
Hash
1a58b4bbd6978c429e85464a7914e04c
a4e0ac908bcf5703615efb3ab81dea1f451e301c
75a9bd89330485de8d1e795e8a3b3453a54f5adb2bb7ee11b0bbdf20b8900e4c

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /src_lib_mediaWorker_index_worker_ts.ee9db7b2eb2388705d10.js HTTP/1.1
Host: tga.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tga.dev/
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public,max-age=0,must-revalidate
cache-status: "Netlify Edge"; hit
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Fri, 10 May 2024 17:51:17 GMT
etag: "a37a86f6fba0fdd9d61ef81663d85c22-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01HXHT2XG15Q50MB7GKKC8JCE0
content-length: 9311
X-Firefox-Spdy: h2

tga.dev/src_lib_mediaWorker_index_worker_ts.ee9db7b2eb2388705d10.js

18.192.231.252

200 OK

9.3 kB

URL GET HTTP/2
tga.dev/src_lib_mediaWorker_index_worker_ts.ee9db7b2eb2388705d10.js
IP
18.192.231.252:443
ASN
#16509 AMAZON-02

Requested by
https://tga.dev/
Certificate
IssuerLet's Encrypt
Subject*.webz.dev
Fingerprint5C:6E:C2:F5:40:FD:AB:C7:68:58:F0:B2:99:0F:5E:17:BB:5B:8B:65
ValidityWed, 10 Apr 2024 20:21:12 GMT - Tue, 09 Jul 2024 20:21:11 GMT

File type
JavaScript source, ASCII text, with very long lines (312)
Size
9.3 kB (9311 bytes)
Hash
1a58b4bbd6978c429e85464a7914e04c
a4e0ac908bcf5703615efb3ab81dea1f451e301c
75a9bd89330485de8d1e795e8a3b3453a54f5adb2bb7ee11b0bbdf20b8900e4c

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /src_lib_mediaWorker_index_worker_ts.ee9db7b2eb2388705d10.js HTTP/1.1
Host: tga.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tga.dev/
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public,max-age=0,must-revalidate
cache-status: "Netlify Edge"; hit
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Fri, 10 May 2024 17:51:17 GMT
etag: "a37a86f6fba0fdd9d61ef81663d85c22-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01HXHT2XG0EJ7DR46PFYQM0GEH
content-length: 9311
X-Firefox-Spdy: h2

tga.dev/vendors-node_modules_pako_dist_pako_inflate_js.5f75bdcaf063c6c088d2.js

18.192.231.252

200 OK

24 kB

URL GET HTTP/2
tga.dev/vendors-node_modules_pako_dist_pako_inflate_js.5f75bdcaf063c6c088d2.js
IP
18.192.231.252:443
ASN
#16509 AMAZON-02

Requested by
https://tga.dev/src_lib_mediaWorker_index_worker_ts.ee9db7b2eb2388705d10.js
Certificate
IssuerLet's Encrypt
Subject*.webz.dev
Fingerprint5C:6E:C2:F5:40:FD:AB:C7:68:58:F0:B2:99:0F:5E:17:BB:5B:8B:65
ValidityWed, 10 Apr 2024 20:21:12 GMT - Tue, 09 Jul 2024 20:21:11 GMT

File type
JavaScript source, ASCII text
Size
24 kB (24019 bytes)
Hash
abfd10612afcd4832510fed36e0cb359
9efac7841a02c0f42b759cfb1031450ef3f03a1f
59aadb6a5951b1b0873cf4d18aa71b1e73328f2cfa445c1752eb80566d6aeca6

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /vendors-node_modules_pako_dist_pako_inflate_js.5f75bdcaf063c6c088d2.js HTTP/1.1
Host: tga.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tga.dev/src_lib_mediaWorker_index_worker_ts.ee9db7b2eb2388705d10.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public,max-age=0,must-revalidate
cache-status: "Netlify Edge"; hit
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Fri, 10 May 2024 17:51:17 GMT
etag: "e035d5d0faa1df441e5ffea8b717dc0c-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01HXHT2XQCCWPVDJPRYA0Q8A9N
content-length: 24019
X-Firefox-Spdy: h2

tga.dev/vendors-node_modules_pako_dist_pako_inflate_js.5f75bdcaf063c6c088d2.js

18.192.231.252

200 OK

24 kB

URL GET HTTP/2
tga.dev/vendors-node_modules_pako_dist_pako_inflate_js.5f75bdcaf063c6c088d2.js
IP
18.192.231.252:443
ASN
#16509 AMAZON-02

Requested by
https://tga.dev/src_lib_mediaWorker_index_worker_ts.ee9db7b2eb2388705d10.js
Certificate
IssuerLet's Encrypt
Subject*.webz.dev
Fingerprint5C:6E:C2:F5:40:FD:AB:C7:68:58:F0:B2:99:0F:5E:17:BB:5B:8B:65
ValidityWed, 10 Apr 2024 20:21:12 GMT - Tue, 09 Jul 2024 20:21:11 GMT

File type
JavaScript source, ASCII text
Size
24 kB (24019 bytes)
Hash
abfd10612afcd4832510fed36e0cb359
9efac7841a02c0f42b759cfb1031450ef3f03a1f
59aadb6a5951b1b0873cf4d18aa71b1e73328f2cfa445c1752eb80566d6aeca6

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /vendors-node_modules_pako_dist_pako_inflate_js.5f75bdcaf063c6c088d2.js HTTP/1.1
Host: tga.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tga.dev/src_lib_mediaWorker_index_worker_ts.ee9db7b2eb2388705d10.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public,max-age=0,must-revalidate
cache-status: "Netlify Edge"; hit
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Fri, 10 May 2024 17:51:17 GMT
etag: "e035d5d0faa1df441e5ffea8b717dc0c-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01HXHT2XMEPFTHC813A791Y33G
content-length: 24019
X-Firefox-Spdy: h2

tga.dev/vendors-node_modules_pako_dist_pako_inflate_js.5f75bdcaf063c6c088d2.js

18.192.231.252

200 OK

24 kB

URL GET HTTP/2
tga.dev/vendors-node_modules_pako_dist_pako_inflate_js.5f75bdcaf063c6c088d2.js
IP
18.192.231.252:443
ASN
#16509 AMAZON-02

Requested by
https://tga.dev/src_lib_mediaWorker_index_worker_ts.ee9db7b2eb2388705d10.js
Certificate
IssuerLet's Encrypt
Subject*.webz.dev
Fingerprint5C:6E:C2:F5:40:FD:AB:C7:68:58:F0:B2:99:0F:5E:17:BB:5B:8B:65
ValidityWed, 10 Apr 2024 20:21:12 GMT - Tue, 09 Jul 2024 20:21:11 GMT

File type
JavaScript source, ASCII text
Size
24 kB (24019 bytes)
Hash
abfd10612afcd4832510fed36e0cb359
9efac7841a02c0f42b759cfb1031450ef3f03a1f
59aadb6a5951b1b0873cf4d18aa71b1e73328f2cfa445c1752eb80566d6aeca6

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /vendors-node_modules_pako_dist_pako_inflate_js.5f75bdcaf063c6c088d2.js HTTP/1.1
Host: tga.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tga.dev/src_lib_mediaWorker_index_worker_ts.ee9db7b2eb2388705d10.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public,max-age=0,must-revalidate
cache-status: "Netlify Edge"; hit
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Fri, 10 May 2024 17:51:17 GMT
etag: "e035d5d0faa1df441e5ffea8b717dc0c-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01HXHT2XQT2FESG1ER7J2ABT43
content-length: 24019
X-Firefox-Spdy: h2

tga.dev/vendors-node_modules_pako_dist_pako_inflate_js.5f75bdcaf063c6c088d2.js

18.192.231.252

200 OK

24 kB

URL GET HTTP/2
tga.dev/vendors-node_modules_pako_dist_pako_inflate_js.5f75bdcaf063c6c088d2.js
IP
18.192.231.252:443
ASN
#16509 AMAZON-02

Requested by
https://tga.dev/src_lib_mediaWorker_index_worker_ts.ee9db7b2eb2388705d10.js
Certificate
IssuerLet's Encrypt
Subject*.webz.dev
Fingerprint5C:6E:C2:F5:40:FD:AB:C7:68:58:F0:B2:99:0F:5E:17:BB:5B:8B:65
ValidityWed, 10 Apr 2024 20:21:12 GMT - Tue, 09 Jul 2024 20:21:11 GMT

File type
JavaScript source, ASCII text
Size
24 kB (24019 bytes)
Hash
abfd10612afcd4832510fed36e0cb359
9efac7841a02c0f42b759cfb1031450ef3f03a1f
59aadb6a5951b1b0873cf4d18aa71b1e73328f2cfa445c1752eb80566d6aeca6

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /vendors-node_modules_pako_dist_pako_inflate_js.5f75bdcaf063c6c088d2.js HTTP/1.1
Host: tga.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tga.dev/src_lib_mediaWorker_index_worker_ts.ee9db7b2eb2388705d10.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public,max-age=0,must-revalidate
cache-status: "Netlify Edge"; hit
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Fri, 10 May 2024 17:51:17 GMT
etag: "e035d5d0faa1df441e5ffea8b717dc0c-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01HXHT2XMXBQXSD1KQFMJ95DK4
content-length: 24019
X-Firefox-Spdy: h2

tga.dev/main.ff4a812f12975c19c92b.css

18.192.231.252

200 OK

28 kB

URL GET HTTP/2
tga.dev/main.ff4a812f12975c19c92b.css
IP
18.192.231.252:443
ASN
#16509 AMAZON-02

Requested by
https://tga.dev/
Certificate
IssuerLet's Encrypt
Subject*.webz.dev
Fingerprint5C:6E:C2:F5:40:FD:AB:C7:68:58:F0:B2:99:0F:5E:17:BB:5B:8B:65
ValidityWed, 10 Apr 2024 20:21:12 GMT - Tue, 09 Jul 2024 20:21:11 GMT

File type
ASCII text, with very long lines (792)
Size
28 kB (28196 bytes)
Hash
aeaee61918dbe048a1441280d60aa431
d3626eeb4b710a66776a026d3ed886aaafe8261b
46eb83da6a0db2f57550a7d7cf94d26d7c4f6b5680c4722adcaa9ba1411b9b28

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /main.ff4a812f12975c19c92b.css HTTP/1.1
Host: tga.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tga.dev/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public,max-age=0,must-revalidate
cache-status: "Netlify Edge"; fwd=miss
content-encoding: br
content-type: text/css; charset=UTF-8
date: Fri, 10 May 2024 17:51:15 GMT
etag: "3da4721eccbf9fd4df87dda7d12c8744-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01HXHT2WCJYGAT1HM3ZKDY7541
X-Firefox-Spdy: h2

tga.dev/src_lib_mediaWorker_index_worker_ts.ee9db7b2eb2388705d10.js

18.192.231.252

200 OK

18 kB

URL GET HTTP/2
tga.dev/src_lib_mediaWorker_index_worker_ts.ee9db7b2eb2388705d10.js
IP
18.192.231.252:443
ASN
#16509 AMAZON-02

Requested by
https://tga.dev/
Certificate
IssuerLet's Encrypt
Subject*.webz.dev
Fingerprint5C:6E:C2:F5:40:FD:AB:C7:68:58:F0:B2:99:0F:5E:17:BB:5B:8B:65
ValidityWed, 10 Apr 2024 20:21:12 GMT - Tue, 09 Jul 2024 20:21:11 GMT

File type
JavaScript source, ASCII text, with very long lines (312)
Size
18 kB (18465 bytes)
Hash
1a58b4bbd6978c429e85464a7914e04c
a4e0ac908bcf5703615efb3ab81dea1f451e301c
75a9bd89330485de8d1e795e8a3b3453a54f5adb2bb7ee11b0bbdf20b8900e4c

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /src_lib_mediaWorker_index_worker_ts.ee9db7b2eb2388705d10.js HTTP/1.1
Host: tga.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tga.dev/
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 1
cache-control: public,max-age=0,must-revalidate
cache-status: "Netlify Edge"; fwd=miss
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Fri, 10 May 2024 17:51:17 GMT
etag: "a37a86f6fba0fdd9d61ef81663d85c22-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01HXHT2XFYFTGBM4VWQDYK2BAH
X-Firefox-Spdy: h2

tga.dev/vendors-node_modules_qr-code-styling_lib_qr-code-styling_js.756dd536589c8fdb7d94.js

18.192.231.252

200 OK

21 kB

URL GET HTTP/2
tga.dev/vendors-node_modules_qr-code-styling_lib_qr-code-styling_js.756dd536589c8fdb7d94.js
IP
18.192.231.252:443
ASN
#16509 AMAZON-02

Requested by
https://tga.dev/
Certificate
IssuerLet's Encrypt
Subject*.webz.dev
Fingerprint5C:6E:C2:F5:40:FD:AB:C7:68:58:F0:B2:99:0F:5E:17:BB:5B:8B:65
ValidityWed, 10 Apr 2024 20:21:12 GMT - Tue, 09 Jul 2024 20:21:11 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (45633)
Size
21 kB (20574 bytes)
Hash
863f75790a817ddefdf33d19cdebf0f9
b0d7a5f22c2a73d90303936607bb24597665dcfe
63b717adcd903698aa00fc8796d33a6c59af79c12bf3833d6198a1ca6e7d5737

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /vendors-node_modules_qr-code-styling_lib_qr-code-styling_js.756dd536589c8fdb7d94.js HTTP/1.1
Host: tga.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tga.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public,max-age=0,must-revalidate
cache-status: "Netlify Edge"; fwd=miss
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Fri, 10 May 2024 17:51:16 GMT
etag: "1f5bc025824d41b1f69e31af0c4da1f3-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01HXHT2X04NM9B968T1JBPRPX2
X-Firefox-Spdy: h2

tga.dev/vendors-node_modules_mp4box_dist_mp4box_all_js.ae4c1ac754ab954b0df3.js

18.192.231.252

200 OK

48 kB

URL GET HTTP/2
tga.dev/vendors-node_modules_mp4box_dist_mp4box_all_js.ae4c1ac754ab954b0df3.js
IP
18.192.231.252:443
ASN
#16509 AMAZON-02

Requested by
https://tga.dev/src_lib_mediaWorker_index_worker_ts.ee9db7b2eb2388705d10.js
Certificate
IssuerLet's Encrypt
Subject*.webz.dev
Fingerprint5C:6E:C2:F5:40:FD:AB:C7:68:58:F0:B2:99:0F:5E:17:BB:5B:8B:65
ValidityWed, 10 Apr 2024 20:21:12 GMT - Tue, 09 Jul 2024 20:21:11 GMT

File type
JavaScript source, ASCII text
Size
48 kB (47926 bytes)
Hash
c45bd2047e2c8ff555e1b201bc9bf002
ac50d9ee170c2f026ae8822b2b46cac84e239271
58f4991b5416c845769562384e27842d7e9170970c6200aba5b10f6fe82a29d3

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /vendors-node_modules_mp4box_dist_mp4box_all_js.ae4c1ac754ab954b0df3.js HTTP/1.1
Host: tga.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tga.dev/src_lib_mediaWorker_index_worker_ts.ee9db7b2eb2388705d10.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public,max-age=0,must-revalidate
cache-status: "Netlify Edge"; hit
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Fri, 10 May 2024 17:51:17 GMT
etag: "fc3187a20505f4f3953df1cf581dc492-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01HXHT2XYFK7AFDFC11KMJPXAG
content-length: 47926
X-Firefox-Spdy: h2

tga.dev/vendors-node_modules_mp4box_dist_mp4box_all_js.ae4c1ac754ab954b0df3.js

18.192.231.252

200 OK

48 kB

URL GET HTTP/2
tga.dev/vendors-node_modules_mp4box_dist_mp4box_all_js.ae4c1ac754ab954b0df3.js
IP
18.192.231.252:443
ASN
#16509 AMAZON-02

Requested by
https://tga.dev/src_lib_mediaWorker_index_worker_ts.ee9db7b2eb2388705d10.js
Certificate
IssuerLet's Encrypt
Subject*.webz.dev
Fingerprint5C:6E:C2:F5:40:FD:AB:C7:68:58:F0:B2:99:0F:5E:17:BB:5B:8B:65
ValidityWed, 10 Apr 2024 20:21:12 GMT - Tue, 09 Jul 2024 20:21:11 GMT

File type
JavaScript source, ASCII text
Size
48 kB (47926 bytes)
Hash
c45bd2047e2c8ff555e1b201bc9bf002
ac50d9ee170c2f026ae8822b2b46cac84e239271
58f4991b5416c845769562384e27842d7e9170970c6200aba5b10f6fe82a29d3

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /vendors-node_modules_mp4box_dist_mp4box_all_js.ae4c1ac754ab954b0df3.js HTTP/1.1
Host: tga.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tga.dev/src_lib_mediaWorker_index_worker_ts.ee9db7b2eb2388705d10.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public,max-age=0,must-revalidate
cache-status: "Netlify Edge"; hit
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Fri, 10 May 2024 17:51:17 GMT
etag: "fc3187a20505f4f3953df1cf581dc492-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01HXHT2XY060EDFFZTMX3QDSTX
content-length: 47926
X-Firefox-Spdy: h2

tga.dev/vendors-node_modules_mp4box_dist_mp4box_all_js.ae4c1ac754ab954b0df3.js

18.192.231.252

200 OK

48 kB

URL GET HTTP/2
tga.dev/vendors-node_modules_mp4box_dist_mp4box_all_js.ae4c1ac754ab954b0df3.js
IP
18.192.231.252:443
ASN
#16509 AMAZON-02

Requested by
https://tga.dev/src_lib_mediaWorker_index_worker_ts.ee9db7b2eb2388705d10.js
Certificate
IssuerLet's Encrypt
Subject*.webz.dev
Fingerprint5C:6E:C2:F5:40:FD:AB:C7:68:58:F0:B2:99:0F:5E:17:BB:5B:8B:65
ValidityWed, 10 Apr 2024 20:21:12 GMT - Tue, 09 Jul 2024 20:21:11 GMT

File type
JavaScript source, ASCII text
Size
48 kB (47926 bytes)
Hash
c45bd2047e2c8ff555e1b201bc9bf002
ac50d9ee170c2f026ae8822b2b46cac84e239271
58f4991b5416c845769562384e27842d7e9170970c6200aba5b10f6fe82a29d3

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /vendors-node_modules_mp4box_dist_mp4box_all_js.ae4c1ac754ab954b0df3.js HTTP/1.1
Host: tga.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tga.dev/src_lib_mediaWorker_index_worker_ts.ee9db7b2eb2388705d10.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public,max-age=0,must-revalidate
cache-status: "Netlify Edge"; hit
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Fri, 10 May 2024 17:51:17 GMT
etag: "fc3187a20505f4f3953df1cf581dc492-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01HXHT2XY5KF5G5AWQJEAMC17C
content-length: 47926
X-Firefox-Spdy: h2

tga.dev/vendors-node_modules_mp4box_dist_mp4box_all_js.ae4c1ac754ab954b0df3.js

18.192.231.252

200 OK

62 kB

URL GET HTTP/2
tga.dev/vendors-node_modules_mp4box_dist_mp4box_all_js.ae4c1ac754ab954b0df3.js
IP
18.192.231.252:443
ASN
#16509 AMAZON-02

Requested by
https://tga.dev/src_lib_mediaWorker_index_worker_ts.ee9db7b2eb2388705d10.js
Certificate
IssuerLet's Encrypt
Subject*.webz.dev
Fingerprint5C:6E:C2:F5:40:FD:AB:C7:68:58:F0:B2:99:0F:5E:17:BB:5B:8B:65
ValidityWed, 10 Apr 2024 20:21:12 GMT - Tue, 09 Jul 2024 20:21:11 GMT

File type
JavaScript source, ASCII text
Size
62 kB (62342 bytes)
Hash
c45bd2047e2c8ff555e1b201bc9bf002
ac50d9ee170c2f026ae8822b2b46cac84e239271
58f4991b5416c845769562384e27842d7e9170970c6200aba5b10f6fe82a29d3

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /vendors-node_modules_mp4box_dist_mp4box_all_js.ae4c1ac754ab954b0df3.js HTTP/1.1
Host: tga.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tga.dev/src_lib_mediaWorker_index_worker_ts.ee9db7b2eb2388705d10.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public,max-age=0,must-revalidate
cache-status: "Netlify Edge"; fwd=miss
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Fri, 10 May 2024 17:51:17 GMT
etag: "fc3187a20505f4f3953df1cf581dc492-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01HXHT2XXS7GSFMBX6EG6HCEZ5
X-Firefox-Spdy: h2

tga.dev/src_config_ts.c672704034f2ebdc752e.js

18.192.231.252

200 OK

7.2 kB

URL GET HTTP/2
tga.dev/src_config_ts.c672704034f2ebdc752e.js
IP
18.192.231.252:443
ASN
#16509 AMAZON-02

Requested by
https://tga.dev/src_api_gramjs_worker_worker_ts-src_util_Deferred_ts-src_util_emoji_parseEmojiOnlyString_ts.4fb2d2272bfb526d2284.js
Certificate
IssuerLet's Encrypt
Subject*.webz.dev
Fingerprint5C:6E:C2:F5:40:FD:AB:C7:68:58:F0:B2:99:0F:5E:17:BB:5B:8B:65
ValidityWed, 10 Apr 2024 20:21:12 GMT - Tue, 09 Jul 2024 20:21:11 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (573)
Size
7.2 kB (7208 bytes)
Hash
947ba1c5d3ea413328e6c48057ad2be2
a8b8521590e6611acc261019127581fe3abdb39e
6833b06acfd9aa3302b1c6f736f76a8c945b8583461c2c486b27e20a3caa4692

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /src_config_ts.c672704034f2ebdc752e.js HTTP/1.1
Host: tga.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tga.dev/src_lib_mediaWorker_index_worker_ts.ee9db7b2eb2388705d10.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public,max-age=0,must-revalidate
cache-status: "Netlify Edge"; hit
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Fri, 10 May 2024 17:51:17 GMT
etag: "64675fbe798f54705b122709ff3d84da-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01HXHT2YANE0MSMCPTA602JFJG
content-length: 7208
X-Firefox-Spdy: h2

tga.dev/src_api_gramjs_worker_worker_ts-src_util_Deferred_ts-src_util_emoji_parseEmojiOnlyString_ts.4fb2d2272bfb526d2284.js

18.192.231.252

200 OK

100 kB

URL GET HTTP/2
tga.dev/src_api_gramjs_worker_worker_ts-src_util_Deferred_ts-src_util_emoji_parseEmojiOnlyString_ts.4fb2d2272bfb526d2284.js
IP
18.192.231.252:443
ASN
#16509 AMAZON-02

Requested by
https://tga.dev/
Certificate
IssuerLet's Encrypt
Subject*.webz.dev
Fingerprint5C:6E:C2:F5:40:FD:AB:C7:68:58:F0:B2:99:0F:5E:17:BB:5B:8B:65
ValidityWed, 10 Apr 2024 20:21:12 GMT - Tue, 09 Jul 2024 20:21:11 GMT

File type
JavaScript source, ASCII text, with very long lines (355)
Size
100 kB (99947 bytes)
Hash
b3ed0c62fdfbb7ce753da32f6368bf20
31b6888b6f635fbd1eef40d5437117be978f9bef
21052073a5006d7dc43e4957630e934d4aaed400918d15552fc6b4c0993e93c7

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /src_api_gramjs_worker_worker_ts-src_util_Deferred_ts-src_util_emoji_parseEmojiOnlyString_ts.4fb2d2272bfb526d2284.js HTTP/1.1
Host: tga.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tga.dev/
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public,max-age=0,must-revalidate
cache-status: "Netlify Edge"; fwd=miss
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Fri, 10 May 2024 17:51:16 GMT
etag: "8d561291007bce9182d467cd4266783a-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01HXHT2X3XJ96N7DQAV20PF9DK
X-Firefox-Spdy: h2

tga.dev/vendors-node_modules_buffer_index_js.45268dee2535cd31950d.js

18.192.231.252

200 OK

22 kB

URL GET HTTP/2
tga.dev/vendors-node_modules_buffer_index_js.45268dee2535cd31950d.js
IP
18.192.231.252:443
ASN
#16509 AMAZON-02

Requested by
https://tga.dev/src_api_gramjs_worker_worker_ts-src_util_Deferred_ts-src_util_emoji_parseEmojiOnlyString_ts.4fb2d2272bfb526d2284.js
Certificate
IssuerLet's Encrypt
Subject*.webz.dev
Fingerprint5C:6E:C2:F5:40:FD:AB:C7:68:58:F0:B2:99:0F:5E:17:BB:5B:8B:65
ValidityWed, 10 Apr 2024 20:21:12 GMT - Tue, 09 Jul 2024 20:21:11 GMT

File type
JavaScript source, ASCII text
Size
22 kB (21788 bytes)
Hash
bf23a610cbcc7f74bd4137b3f412149e
5213ad9007ceafd9be4d1eca5cd951ba82744e83
2bba376204d1210639b72fe935f90b77cfc2af97aff39de1dac04ebf68303b30

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /vendors-node_modules_buffer_index_js.45268dee2535cd31950d.js HTTP/1.1
Host: tga.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tga.dev/src_api_gramjs_worker_worker_ts-src_util_Deferred_ts-src_util_emoji_parseEmojiOnlyString_ts.4fb2d2272bfb526d2284.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public,max-age=0,must-revalidate
cache-status: "Netlify Edge"; fwd=miss
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Fri, 10 May 2024 17:51:17 GMT
etag: "f7f203a34de90652c842c88ca8e9a73b-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01HXHT2XV2V9CC0B3EYJXNN27Z
X-Firefox-Spdy: h2

tga.dev/rlottie-wasm.51d175377b5332e82d64.js

18.192.231.252

200 OK

26 kB

URL GET HTTP/2
tga.dev/rlottie-wasm.51d175377b5332e82d64.js
IP
18.192.231.252:443
ASN
#16509 AMAZON-02

Requested by
https://tga.dev/src_lib_mediaWorker_index_worker_ts.ee9db7b2eb2388705d10.js
Certificate
IssuerLet's Encrypt
Subject*.webz.dev
Fingerprint5C:6E:C2:F5:40:FD:AB:C7:68:58:F0:B2:99:0F:5E:17:BB:5B:8B:65
ValidityWed, 10 Apr 2024 20:21:12 GMT - Tue, 09 Jul 2024 20:21:11 GMT

File type
JavaScript source, ASCII text, with very long lines (312)
Size
26 kB (25766 bytes)
Hash
dee0b5a2f2d8533ccc49b6949d2f942d
d71623fb971b85bac16ba1b243d04dfb3ef516db
0ef3fc6b7fe94349a8ebb2eeae0b8464d5250931bd70e96fa9b6e182d8a1bd9f

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /rlottie-wasm.51d175377b5332e82d64.js HTTP/1.1
Host: tga.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tga.dev/src_lib_mediaWorker_index_worker_ts.ee9db7b2eb2388705d10.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 1
cache-control: public,max-age=0,must-revalidate
cache-status: "Netlify Edge"; hit
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Fri, 10 May 2024 17:51:18 GMT
etag: "a5d2260c43f70d7a85b87aa1b8cf9b5a-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01HXHT2YJYJ6M8W51VMMMPGN8A
content-length: 25766
X-Firefox-Spdy: h2

tga.dev/rlottie-wasm.51d175377b5332e82d64.js

18.192.231.252

200 OK

26 kB

URL GET HTTP/2
tga.dev/rlottie-wasm.51d175377b5332e82d64.js
IP
18.192.231.252:443
ASN
#16509 AMAZON-02

Requested by
https://tga.dev/src_lib_mediaWorker_index_worker_ts.ee9db7b2eb2388705d10.js
Certificate
IssuerLet's Encrypt
Subject*.webz.dev
Fingerprint5C:6E:C2:F5:40:FD:AB:C7:68:58:F0:B2:99:0F:5E:17:BB:5B:8B:65
ValidityWed, 10 Apr 2024 20:21:12 GMT - Tue, 09 Jul 2024 20:21:11 GMT

File type
JavaScript source, ASCII text, with very long lines (312)
Size
26 kB (25766 bytes)
Hash
dee0b5a2f2d8533ccc49b6949d2f942d
d71623fb971b85bac16ba1b243d04dfb3ef516db
0ef3fc6b7fe94349a8ebb2eeae0b8464d5250931bd70e96fa9b6e182d8a1bd9f

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /rlottie-wasm.51d175377b5332e82d64.js HTTP/1.1
Host: tga.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tga.dev/src_lib_mediaWorker_index_worker_ts.ee9db7b2eb2388705d10.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 1
cache-control: public,max-age=0,must-revalidate
cache-status: "Netlify Edge"; hit
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Fri, 10 May 2024 17:51:18 GMT
etag: "a5d2260c43f70d7a85b87aa1b8cf9b5a-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01HXHT2YKMS75HNQ4MHH41FZX4
content-length: 25766
X-Firefox-Spdy: h2

tga.dev/rlottie-wasm.51d175377b5332e82d64.js

18.192.231.252

200 OK

26 kB

URL GET HTTP/2
tga.dev/rlottie-wasm.51d175377b5332e82d64.js
IP
18.192.231.252:443
ASN
#16509 AMAZON-02

Requested by
https://tga.dev/src_lib_mediaWorker_index_worker_ts.ee9db7b2eb2388705d10.js
Certificate
IssuerLet's Encrypt
Subject*.webz.dev
Fingerprint5C:6E:C2:F5:40:FD:AB:C7:68:58:F0:B2:99:0F:5E:17:BB:5B:8B:65
ValidityWed, 10 Apr 2024 20:21:12 GMT - Tue, 09 Jul 2024 20:21:11 GMT

File type
JavaScript source, ASCII text, with very long lines (312)
Size
26 kB (25766 bytes)
Hash
dee0b5a2f2d8533ccc49b6949d2f942d
d71623fb971b85bac16ba1b243d04dfb3ef516db
0ef3fc6b7fe94349a8ebb2eeae0b8464d5250931bd70e96fa9b6e182d8a1bd9f

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /rlottie-wasm.51d175377b5332e82d64.js HTTP/1.1
Host: tga.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tga.dev/src_lib_mediaWorker_index_worker_ts.ee9db7b2eb2388705d10.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 1
cache-control: public,max-age=0,must-revalidate
cache-status: "Netlify Edge"; hit
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Fri, 10 May 2024 17:51:18 GMT
etag: "a5d2260c43f70d7a85b87aa1b8cf9b5a-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01HXHT2YM8DSSXM6AF5KW2W377
content-length: 25766
X-Firefox-Spdy: h2

tga.dev/rlottie-wasm.wasm

18.192.231.252

0 B

URL
tga.dev/rlottie-wasm.wasm
IP
18.192.231.252:0
ASN
#16509 AMAZON-02

Certificate
IssuerLet's Encrypt
Subject*.webz.dev
Fingerprint5C:6E:C2:F5:40:FD:AB:C7:68:58:F0:B2:99:0F:5E:17:BB:5B:8B:65
ValidityWed, 10 Apr 2024 20:21:12 GMT - Tue, 09 Jul 2024 20:21:11 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /rlottie-wasm.wasm HTTP/1.1
Host: tga.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tga.dev/src_lib_mediaWorker_index_worker_ts.ee9db7b2eb2388705d10.js
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
If-None-Match: "fe7fff5092fc7774bd7585280c8b758c-ssl-df"
TE: trailers

HTTP/2 304 Not Modified
cache-control: public,max-age=0,must-revalidate
cache-status: "Netlify Edge"; hit
date: Fri, 10 May 2024 17:51:18 GMT
etag: "fe7fff5092fc7774bd7585280c8b758c-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01HXHT2YW58830C5AKZE2MVN2B
X-Firefox-Spdy: h2

tga.dev/src_api_gramjs_apiBuilders_messages_ts.9f1418d037e87e198351.js

18.192.231.252

200 OK

142 kB

URL GET HTTP/2
tga.dev/src_api_gramjs_apiBuilders_messages_ts.9f1418d037e87e198351.js
IP
18.192.231.252:443
ASN
#16509 AMAZON-02

Requested by
https://tga.dev/src_api_gramjs_worker_worker_ts-src_util_Deferred_ts-src_util_emoji_parseEmojiOnlyString_ts.4fb2d2272bfb526d2284.js
Certificate
IssuerLet's Encrypt
Subject*.webz.dev
Fingerprint5C:6E:C2:F5:40:FD:AB:C7:68:58:F0:B2:99:0F:5E:17:BB:5B:8B:65
ValidityWed, 10 Apr 2024 20:21:12 GMT - Tue, 09 Jul 2024 20:21:11 GMT

File type
JavaScript source, ASCII text, with very long lines (325)
Size
142 kB (142174 bytes)
Hash
2aaa2324818c59a92894dcb4f5aafdfa
d998fabeb83261aec0abfa6b2d4517a78febc443
f70d4e0d668d7e63034981318179454f8f6cf221b5d3f88ed77f737ef295800d

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /src_api_gramjs_apiBuilders_messages_ts.9f1418d037e87e198351.js HTTP/1.1
Host: tga.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tga.dev/src_api_gramjs_worker_worker_ts-src_util_Deferred_ts-src_util_emoji_parseEmojiOnlyString_ts.4fb2d2272bfb526d2284.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public,max-age=0,must-revalidate
cache-status: "Netlify Edge"; fwd=miss
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Fri, 10 May 2024 17:51:18 GMT
etag: "3ffc9a571d2652e5fad6dd64f27e467f-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01HXHT2YKS25488EK34JTQJD71
X-Firefox-Spdy: h2

tga.dev/rlottie-wasm.wasm

18.192.231.252

0 B

URL
tga.dev/rlottie-wasm.wasm
IP
18.192.231.252:0
ASN
#16509 AMAZON-02

Certificate
IssuerLet's Encrypt
Subject*.webz.dev
Fingerprint5C:6E:C2:F5:40:FD:AB:C7:68:58:F0:B2:99:0F:5E:17:BB:5B:8B:65
ValidityWed, 10 Apr 2024 20:21:12 GMT - Tue, 09 Jul 2024 20:21:11 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /rlottie-wasm.wasm HTTP/1.1
Host: tga.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tga.dev/src_lib_mediaWorker_index_worker_ts.ee9db7b2eb2388705d10.js
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
If-None-Match: "fe7fff5092fc7774bd7585280c8b758c-ssl-df"
TE: trailers

HTTP/2 304 Not Modified
cache-control: public,max-age=0,must-revalidate
cache-status: "Netlify Edge"; hit
date: Fri, 10 May 2024 17:51:18 GMT
etag: "fe7fff5092fc7774bd7585280c8b758c-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01HXHT2YXQE2F85Z5JDVPD61MW
X-Firefox-Spdy: h2

tga.dev/QrPlane.a921709f266564f65b7e.tgs

18.192.231.252

2.1 kB

URL
tga.dev/QrPlane.a921709f266564f65b7e.tgs
IP
18.192.231.252:0
ASN
#16509 AMAZON-02

Certificate
IssuerLet's Encrypt
Subject*.webz.dev
Fingerprint5C:6E:C2:F5:40:FD:AB:C7:68:58:F0:B2:99:0F:5E:17:BB:5B:8B:65
ValidityWed, 10 Apr 2024 20:21:12 GMT - Tue, 09 Jul 2024 20:21:11 GMT

File type
gzip compressed data, was "PlaneLogoPlain.json", last modified: Fri Dec 17 11:58:31 2021, from Unix
Size
2.1 kB (2105 bytes)
Hash
9fe5425a55be5cfd60c1ee5f2ca2c733
6055dbe3afe9575b921a9863534e91428a847021
486cbe566d05f023f3c72ec00b55f921deb1f7aed2efb630fe717425e2d98d0a

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /QrPlane.a921709f266564f65b7e.tgs HTTP/1.1
Host: tga.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tga.dev/src_lib_mediaWorker_index_worker_ts.ee9db7b2eb2388705d10.js
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public,max-age=0,must-revalidate
cache-status: "Netlify Edge"; fwd=miss
content-encoding: br
content-type: application/octet-stream
date: Fri, 10 May 2024 17:51:18 GMT
etag: "3a69099a8681ff9da0baf412012c462f-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01HXHT2YZ4CK2NYHSMK0466839
content-length: 2105
X-Firefox-Spdy: h2

zws2.web.telegram.org/apiws

149.154.167.99

0 B

URL
zws2.web.telegram.org/apiws
IP
149.154.167.99:0
ASN
#62041 Telegram Messenger Inc

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /apiws HTTP/1.1
Host: zws2.web.telegram.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://tga.dev
Sec-WebSocket-Protocol: binary
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 8MAGcFBwdgB2ZybxSjeVmw==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Server: nginx/1.18.0
Date: Fri, 10 May 2024 17:51:19 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: j+fsN80khUOsA5Hmbff04wEqCtk=
Sec-WebSocket-Protocol: binary

tga.dev/blank.8dd283bceccca95a48d8.png

18.192.231.252

200 OK

68 B

URL GET HTTP/2
tga.dev/blank.8dd283bceccca95a48d8.png
IP
18.192.231.252:443
ASN
#16509 AMAZON-02

Requested by
https://tga.dev/
Certificate
IssuerLet's Encrypt
Subject*.webz.dev
Fingerprint5C:6E:C2:F5:40:FD:AB:C7:68:58:F0:B2:99:0F:5E:17:BB:5B:8B:65
ValidityWed, 10 Apr 2024 20:21:12 GMT - Tue, 09 Jul 2024 20:21:11 GMT

File type
PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced
Size
68 B (68 bytes)
Hash
91e42db1c66c0b276abf6234dc50b2eb
c1986af3c26609b8b7d8933f99c51c1a89e9ea6b
63ef318d96b5d0d0ceba6e04a4e622b1158335cdc67c49e27839132c6f655058

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /blank.8dd283bceccca95a48d8.png HTTP/1.1
Host: tga.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tga.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public,max-age=0,must-revalidate
cache-status: "Netlify Edge"; fwd=miss
content-type: image/png
date: Fri, 10 May 2024 17:51:22 GMT
etag: "2fdf5e0d6578684d3f63b4bf1ddb6b02-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01HXHT3307WJGFWG4DPN26CHQ6
content-length: 68
X-Firefox-Spdy: h2

tga.dev/blank.8dd283bceccca95a48d8.png

18.192.231.252

200 OK

68 B

URL GET HTTP/2
tga.dev/blank.8dd283bceccca95a48d8.png
IP
18.192.231.252:443
ASN
#16509 AMAZON-02

Requested by
https://tga.dev/
Certificate
IssuerLet's Encrypt
Subject*.webz.dev
Fingerprint5C:6E:C2:F5:40:FD:AB:C7:68:58:F0:B2:99:0F:5E:17:BB:5B:8B:65
ValidityWed, 10 Apr 2024 20:21:12 GMT - Tue, 09 Jul 2024 20:21:11 GMT

File type
PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced
Size
68 B (68 bytes)
Hash
91e42db1c66c0b276abf6234dc50b2eb
c1986af3c26609b8b7d8933f99c51c1a89e9ea6b
63ef318d96b5d0d0ceba6e04a4e622b1158335cdc67c49e27839132c6f655058

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /blank.8dd283bceccca95a48d8.png HTTP/1.1
Host: tga.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tga.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public,max-age=0,must-revalidate
cache-status: "Netlify Edge"; hit
content-type: image/png
date: Fri, 10 May 2024 17:51:22 GMT
etag: "2fdf5e0d6578684d3f63b4bf1ddb6b02-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01HXHT3359P2JG5GHJMHMEKSPD
content-length: 68
X-Firefox-Spdy: h2

tga.dev/blank.8dd283bceccca95a48d8.png

18.192.231.252

200 OK

68 B

URL GET HTTP/2
tga.dev/blank.8dd283bceccca95a48d8.png
IP
18.192.231.252:443
ASN
#16509 AMAZON-02

Requested by
https://tga.dev/
Certificate
IssuerLet's Encrypt
Subject*.webz.dev
Fingerprint5C:6E:C2:F5:40:FD:AB:C7:68:58:F0:B2:99:0F:5E:17:BB:5B:8B:65
ValidityWed, 10 Apr 2024 20:21:12 GMT - Tue, 09 Jul 2024 20:21:11 GMT

File type
PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced
Size
68 B (68 bytes)
Hash
91e42db1c66c0b276abf6234dc50b2eb
c1986af3c26609b8b7d8933f99c51c1a89e9ea6b
63ef318d96b5d0d0ceba6e04a4e622b1158335cdc67c49e27839132c6f655058

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /blank.8dd283bceccca95a48d8.png HTTP/1.1
Host: tga.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tga.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public,max-age=0,must-revalidate
cache-status: "Netlify Edge"; hit
content-type: image/png
date: Fri, 10 May 2024 17:51:22 GMT
etag: "2fdf5e0d6578684d3f63b4bf1ddb6b02-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01HXHT335XVD5SN3E5TVTCDGCE
content-length: 68
X-Firefox-Spdy: h2

tga.dev/src_lib_rlottie_RLottie_ts.5cd1a1ad43c298be5865.js

18.192.231.252

200 OK

25 kB

URL GET HTTP/2
tga.dev/src_lib_rlottie_RLottie_ts.5cd1a1ad43c298be5865.js
IP
18.192.231.252:443
ASN
#16509 AMAZON-02

Requested by
https://tga.dev/
Certificate
IssuerLet's Encrypt
Subject*.webz.dev
Fingerprint5C:6E:C2:F5:40:FD:AB:C7:68:58:F0:B2:99:0F:5E:17:BB:5B:8B:65
ValidityWed, 10 Apr 2024 20:21:12 GMT - Tue, 09 Jul 2024 20:21:11 GMT

File type
JavaScript source, ASCII text, with very long lines (312)
Size
25 kB (25030 bytes)
Hash
9063e1485f35f093535000809e8c8d19
86ef6008238017e3fa749879d079b6dd787f0220
1f4801a4f660a8229f26a6610dabe519c37a680f61a3dd786c8f365b0b212c7d

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /src_lib_rlottie_RLottie_ts.5cd1a1ad43c298be5865.js HTTP/1.1
Host: tga.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tga.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public,max-age=0,must-revalidate
cache-status: "Netlify Edge"; fwd=miss
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Fri, 10 May 2024 17:51:16 GMT
etag: "d5152879065c0164e8b916b465f3c80e-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01HXHT2X0506HSQ1EQ03QWKSF2
X-Firefox-Spdy: h2

zws2.web.telegram.org/apiws

149.154.167.99

101 Switching Protocols

0 B

URL GET HTTP/1.1
zws2.web.telegram.org/apiws
IP
149.154.167.99:443
ASN
#62041 Telegram Messenger Inc

Requested by
https://tga.dev/
Certificate
IssuerGoDaddy.com, Inc.
Subject*.web.telegram.org
Fingerprint74:51:4A:F8:C5:D2:E1:36:68:30:25:98:05:27:E8:6F:57:FC:E0:3B
ValidityWed, 30 Aug 2023 00:40:43 GMT - Mon, 30 Sep 2024 00:40:43 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /apiws HTTP/1.1
Host: zws2.web.telegram.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://tga.dev
Sec-WebSocket-Protocol: binary
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 8MAGcFBwdgB2ZybxSjeVmw==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Server: nginx/1.18.0
Date: Fri, 10 May 2024 17:51:19 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: j+fsN80khUOsA5Hmbff04wEqCtk=
Sec-WebSocket-Protocol: binary

tga.dev/vendors-node_modules_cryptography_aes_dist_es_aes_js-node_modules_async-mutex_lib_index_js-no-294d8e.d5b648bb2433d5eb3618.js

18.192.231.252

200 OK

110 kB

URL GET HTTP/2
tga.dev/vendors-node_modules_cryptography_aes_dist_es_aes_js-node_modules_async-mutex_lib_index_js-no-294d8e.d5b648bb2433d5eb3618.js
IP
18.192.231.252:443
ASN
#16509 AMAZON-02

Requested by
https://tga.dev/src_api_gramjs_worker_worker_ts-src_util_Deferred_ts-src_util_emoji_parseEmojiOnlyString_ts.4fb2d2272bfb526d2284.js
Certificate
IssuerLet's Encrypt
Subject*.webz.dev
Fingerprint5C:6E:C2:F5:40:FD:AB:C7:68:58:F0:B2:99:0F:5E:17:BB:5B:8B:65
ValidityWed, 10 Apr 2024 20:21:12 GMT - Tue, 09 Jul 2024 20:21:11 GMT

File type

Size
110 kB (110351 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /vendors-node_modules_cryptography_aes_dist_es_aes_js-node_modules_async-mutex_lib_index_js-no-294d8e.d5b648bb2433d5eb3618.js HTTP/1.1
Host: tga.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tga.dev/src_api_gramjs_worker_worker_ts-src_util_Deferred_ts-src_util_emoji_parseEmojiOnlyString_ts.4fb2d2272bfb526d2284.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public,max-age=0,must-revalidate
cache-status: "Netlify Edge"; fwd=miss
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Fri, 10 May 2024 17:51:17 GMT
etag: "bb38ea2f8457c2ab952294206d3da10b-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01HXHT2Y0ZKFBFPXDHXRJJCJDC
X-Firefox-Spdy: h2

tga.dev/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.465390c6e54c60f4a15f.woff2

18.192.231.252

200 OK

11 kB

URL GET HTTP/2
tga.dev/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.465390c6e54c60f4a15f.woff2
IP
18.192.231.252:443
ASN
#16509 AMAZON-02

Requested by
https://tga.dev/
Certificate
IssuerLet's Encrypt
Subject*.webz.dev
Fingerprint5C:6E:C2:F5:40:FD:AB:C7:68:58:F0:B2:99:0F:5E:17:BB:5B:8B:65
ValidityWed, 10 Apr 2024 20:21:12 GMT - Tue, 09 Jul 2024 20:21:11 GMT

File type
Web Open Font Format (Version 2), TrueType, length 11016, version 1.0
Size
11 kB (11016 bytes)
Hash
15fa3062f8929bd3b05fdca5259db412
6ff06a34f68ad0324ddec1bbe4d453c959178b36
5d1bc9b443f3f81fa4b4ad4634c1bb9702194c1898e3a9de0ab5e2cdc0e9f479

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /KFOmCnqEu92Fr1Mu4mxKKTU1Kg.465390c6e54c60f4a15f.woff2 HTTP/1.1
Host: tga.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://tga.dev/main.ff4a812f12975c19c92b.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public,max-age=0,must-revalidate
cache-status: "Netlify Edge"; fwd=miss
content-type: font/woff2
date: Fri, 10 May 2024 17:51:16 GMT
etag: "c1d5c49e14280d61e6d9e95b3baaf8d1-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01HXHT2WZ7E0BYCGVYBXVYFDZF
content-length: 11016
X-Firefox-Spdy: h2

tga.dev/src_util_fallbackLangPack_ts.9fc550d166525b7e7d21.js

18.192.231.252

200 OK

21 kB

URL GET HTTP/2
tga.dev/src_util_fallbackLangPack_ts.9fc550d166525b7e7d21.js
IP
18.192.231.252:443
ASN
#16509 AMAZON-02

Requested by
https://tga.dev/
Certificate
IssuerLet's Encrypt
Subject*.webz.dev
Fingerprint5C:6E:C2:F5:40:FD:AB:C7:68:58:F0:B2:99:0F:5E:17:BB:5B:8B:65
ValidityWed, 10 Apr 2024 20:21:12 GMT - Tue, 09 Jul 2024 20:21:11 GMT

File type

Size
21 kB (20834 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /src_util_fallbackLangPack_ts.9fc550d166525b7e7d21.js HTTP/1.1
Host: tga.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tga.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public,max-age=0,must-revalidate
cache-status: "Netlify Edge"; fwd=miss
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Fri, 10 May 2024 17:51:16 GMT
etag: "fde8362ecba965fdf1acf6a567d45f73-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01HXHT2WZDHVP67NTC0BMK7DXY
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (6)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (43)

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/2

IP