| cdnjs.cloudflare.com/ajax/libs/font-awesome/4.3.0/css/font-awesome.min.css |  104.17.24.14 | 200 OK | 4.4 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/font-awesome/4.3.0/css/font-awesome.min.css IP104.17.24.14:443
Requested byhttps://notifyhubss.net/4eb99a164u669e4824lbb78cffdl4cbd476b.html__;!!oepyz6q!6f5onc-f2viba0mlrclulvrtd4y8rdwugsyukvszlgml1du8axxeifbp79377kcqmyf26mgqfpadil66ravz2gjcshm_ CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeASCII text, with very long lines (23577) Hash04425bbdc6243fc6e54bf8984fe50330 8c15c6bd82c71e9ef1bb11cf24e502fe07518ac5 541ac58217a8ade1a5e292a65a0661dc9db7a49ae13654943817a4fbc6761afd
GET /ajax/libs/font-awesome/4.3.0/css/font-awesome.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://notifyhubss.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 15:32:24 GMT
content-type: text/css; charset=utf-8
content-length: 4364
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "65993750-110c"
last-modified: Sat, 06 Jan 2024 12:19:44 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 240648
expires: Thu, 24 Apr 2025 15:32:24 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SBRsN0n3wFBvqjai5%2BZIGQZwJSIDPOff%2BrdQl9z2niAp6blZ4SdtVx3YPOD7kxRN1LNLT82pprQB%2BCun%2BDNpZbBSjUHJsZWFiKGlZhjMyxJP1phdX9Ow2%2FLdSrjmhWzha00psqf%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87e98b13fb650b41-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/jquery/2.1.3/jquery.min.js | 104.17.24.14 | 200 OK | 27 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/jquery/2.1.3/jquery.min.js IP104.17.24.14:443
Requested byhttps://notifyhubss.net/4eb99a164u669e4824lbb78cffdl4cbd476b.html__;!!oepyz6q!6f5onc-f2viba0mlrclulvrtd4y8rdwugsyukvszlgml1du8axxeifbp79377kcqmyf26mgqfpadil66ravz2gjcshm_ CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (32180) Hash7f9fb969ce353c5d77707836391eb28d 62c4042e9ebc691a5372d653b424512a561d1670 2051d61446d4dbffb03727031022a08c84528ab44d203a7669c101e5fbdd5515
GET /ajax/libs/jquery/2.1.3/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://notifyhubss.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 15:32:24 GMT
content-type: application/javascript; charset=utf-8
content-length: 26660
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-14983"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 338743
expires: Thu, 24 Apr 2025 15:32:24 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hWe1GJAIPMeJKDOvUIXVAYJzO7KmuH%2FWnBVzQXZk%2FnnkIJ0NkA88SuTs87Mksm1BuuGbGyplHw6NCwGCoo9ARa15ZECBC9tBDktRQU5PHn1YqtOJWys6ikhEb2x9n5eZL1Sy5v0f"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87e98b142bba0b41-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| lp.cybeready.net/Forms/MS-online/microsoft_logo.png | 104.26.9.233 | 200 OK | 653 B |
URL GET HTTP/2lp.cybeready.net/Forms/MS-online/microsoft_logo.png IP104.26.9.233:443
Requested byhttps://notifyhubss.net/4eb99a164u669e4824lbb78cffdl4cbd476b.html__;!!oepyz6q!6f5onc-f2viba0mlrclulvrtd4y8rdwugsyukvszlgml1du8axxeifbp79377kcqmyf26mgqfpadil66ravz2gjcshm_ CertificateIssuerLet's Encrypt Subjectcybeready.net FingerprintBB:28:14:F8:09:02:DF:1E:F0:B6:74:8B:09:67:6A:55:A6:0D:A0:38 ValidityTue, 16 Apr 2024 23:13:46 GMT - Mon, 15 Jul 2024 23:13:45 GMT
File typePNG image data, 100 x 22, 8-bit colormap, non-interlaced Hash366222d8d10fa25f28a5c4b8c738a887 d64ae75cb36ee9bca1076b259ee3e8dc1f3fa09c 3f58f0f3a9d3cad69e0d008d752af773b81a2d29f92c855b796dc2cc3a8813f9
| Analyzer | Verdict | Alert |
|---|
| urlquery | phishing | Phishing - Microsoft |
GET /Forms/MS-online/microsoft_logo.png HTTP/1.1
Host: lp.cybeready.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://notifyhubss.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 04 May 2024 15:32:24 GMT
content-type: image/png
content-length: 653
cf-bgj: imgq:100,h2pri
cf-polished: origSize=1040
etag: "e4b675007dc6492ee590131d1f7dfbb3"
last-modified: Mon, 09 May 2016 08:37:44 GMT
x-amz-id-2: +i9U6W/5x0bNP40758JR/KSKraKGe430KzQu6et6c0p22bhpqFUNa2wHbAla1/HP5qrGCZ8gHPA=
x-amz-request-id: K6E4XH6HAEC9CB9H
cache-control: max-age=14400
cf-cache-status: HIT
age: 4823
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pi6S3lnYND%2FcCbZUp2C60rTW%2BVAPZzCA19F2OWLM5W2rSYuG0kph98PfWHEemrTqWCuWfCqgR%2B0eX7FLf4RxfAMEG038hsmrm4oavw5DlxUAgjuiw0NaSi2eDWWNhDSZwjQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87e98b149b5b568e-OSL
X-Firefox-Spdy: h2
|
|
| lp.cybeready.net/Forms/MS-online/bannerlogo.png | 104.26.9.233 | 200 OK | 1.0 kB |
URL GET HTTP/2lp.cybeready.net/Forms/MS-online/bannerlogo.png IP104.26.9.233:443
Requested byhttps://notifyhubss.net/4eb99a164u669e4824lbb78cffdl4cbd476b.html__;!!oepyz6q!6f5onc-f2viba0mlrclulvrtd4y8rdwugsyukvszlgml1du8axxeifbp79377kcqmyf26mgqfpadil66ravz2gjcshm_ CertificateIssuerLet's Encrypt Subjectcybeready.net FingerprintBB:28:14:F8:09:02:DF:1E:F0:B6:74:8B:09:67:6A:55:A6:0D:A0:38 ValidityTue, 16 Apr 2024 23:13:46 GMT - Mon, 15 Jul 2024 23:13:45 GMT
File typePNG image data, 159 x 35, 8-bit colormap, non-interlaced Hash24bfcce4b67e345caac4ce3849b26d5d fd6b6d847ade5480f290cbce319cdee74016d859 de8d43f95c8743f71d53a6ca3d5dc0b3d2c29e96b7c565e52cf5a86c416c2400
GET /Forms/MS-online/bannerlogo.png HTTP/1.1
Host: lp.cybeready.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://notifyhubss.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 04 May 2024 15:32:24 GMT
content-type: image/png
content-length: 1024
cf-bgj: imgq:100,h2pri
cf-polished: origSize=4585
etag: "9f09a27d4f69b3557c7433574a29d726"
last-modified: Mon, 09 May 2016 08:37:46 GMT
x-amz-id-2: DhBamxYZSxaTnPJHZlgIIclNmmxlFYPv34xiQ6i+mWjFIobuVynV1vsVyERDrDuBsu5wwjlMuWY=
x-amz-request-id: 2KZV6CA5AVSHMV5H
cache-control: max-age=14400
cf-cache-status: HIT
age: 4823
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hetrV1foInBficDkxfqMj3SnFZ64kkipZ5qQ5mACU528vFN9gFogQUBHThbFH%2FhfuEDXF92R2gV9NTYy4ZBO6qcmbAIV86Vc7OUoXr4Y9Rt%2BbQG4tTbRqYYa3OxCIcS84KI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87e98b149b59568e-OSL
X-Firefox-Spdy: h2
|
|
| notifyhubss.net/cdn-cgi/challenge-platform/scripts/jsd/main.js |  172.67.72.147 | 302 Found | 0 B |
URL GET HTTP/2notifyhubss.net/cdn-cgi/challenge-platform/scripts/jsd/main.js IP172.67.72.147:443
Requested byhttps://notifyhubss.net/4eb99a164u669e4824lbb78cffdl4cbd476b.html__;!!oepyz6q!6f5onc-f2viba0mlrclulvrtd4y8rdwugsyukvszlgml1du8axxeifbp79377kcqmyf26mgqfpadil66ravz2gjcshm_ CertificateIssuerLet's Encrypt Subjectnotifyhubss.net Fingerprint15:15:D9:8E:39:C7:06:EB:3E:95:E9:60:79:C1:C8:71:91:A7:DF:07 ValiditySat, 06 Apr 2024 23:22:32 GMT - Fri, 05 Jul 2024 23:22:31 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: notifyhubss.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: requestid=2740221cd1957966f3712445c57aa73b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
date: Sat, 04 May 2024 15:32:24 GMT
content-length: 0
access-control-allow-origin: *
cache-control: max-age=300, public
location: /cdn-cgi/challenge-platform/h/g/scripts/jsd/d0ff3ebede6b/main.js
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XBy6mdCTuxWRh81ranqgcuE41bR8POf6Pq%2BtxP%2FSmotEvShewQtggR7%2BEI5kext6oNR%2FBWCoYTz9EDwo2OqsDbxQwWYuyiBqQoxzrUHSmBMoUmebevpVNOoVr8n5OZhNnQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87e98b1648b35694-OSL
X-Firefox-Spdy: h2
|
|
| lp.cybeready.net/Forms/MS-online/heroillustration.jpg | 104.26.9.233 | 200 OK | 197 kB |
URL GET HTTP/2lp.cybeready.net/Forms/MS-online/heroillustration.jpg IP104.26.9.233:443
Requested byhttps://notifyhubss.net/4eb99a164u669e4824lbb78cffdl4cbd476b.html__;!!oepyz6q!6f5onc-f2viba0mlrclulvrtd4y8rdwugsyukvszlgml1du8axxeifbp79377kcqmyf26mgqfpadil66ravz2gjcshm_ CertificateIssuerLet's Encrypt Subjectcybeready.net FingerprintBB:28:14:F8:09:02:DF:1E:F0:B6:74:8B:09:67:6A:55:A6:0D:A0:38 ValidityTue, 16 Apr 2024 23:13:46 GMT - Mon, 15 Jul 2024 23:13:45 GMT
File typeJPEG image data, progressive, precision 8, 1420x1080, components 3 Size197 kB (196768 bytes) Hash65a2cb0d1e14633606d9d0cdda66bf39 1653696f5d951a6046008160a7c2dda9c27ce6f2 7d07ffc8f9e7620f82bbc8d3930ebf428f185d6d3f8cde05580ecb3530c5bbea
| Analyzer | Verdict | Alert |
|---|
| urlquery | phishing | Phishing - Microsoft |
GET /Forms/MS-online/heroillustration.jpg HTTP/1.1
Host: lp.cybeready.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lp.cybeready.net/Forms/MS-online/index.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 04 May 2024 15:32:24 GMT
content-type: image/jpeg
content-length: 196768
cf-bgj: imgq:100,h2pri
cf-polished: origSize=203294
etag: "65283b123eb235e6176ae98c02ac5b1c"
last-modified: Mon, 09 May 2016 08:37:52 GMT
x-amz-id-2: PBVUmFnYN29i+r97qr38wL4x1nZIgwRkWgw85UDdGpRSgidt/1dStuuJAKjRKjsY+LQhsnmzx9M=
x-amz-request-id: 2KZKBRSBP1A4WK71
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ufvDq1%2BE%2FhgS1BAM4M2lvNbE8mqAraXbEmCUkGWZq%2BbzZQXhUKe9YbtklxOJgXccWZ4dUAoae8s%2FPbpTl19MP%2B0ogVwjxXLToN0qe%2FLtdWN4p43OWEPM%2FfBl%2B6Ba2IYpWwE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87e98b160d86568e-OSL
X-Firefox-Spdy: h2
|
|
| notifyhubss.net/cdn-cgi/challenge-platform/h/g/jsd/r/87e98b1099005694 | 172.67.72.147 | 200 OK | 0 B |
URL POST HTTP/2notifyhubss.net/cdn-cgi/challenge-platform/h/g/jsd/r/87e98b1099005694 IP172.67.72.147:443
Requested byhttps://notifyhubss.net/4eb99a164u669e4824lbb78cffdl4cbd476b.html__;!!oepyz6q!6f5onc-f2viba0mlrclulvrtd4y8rdwugsyukvszlgml1du8axxeifbp79377kcqmyf26mgqfpadil66ravz2gjcshm_ CertificateIssuerLet's Encrypt Subjectnotifyhubss.net Fingerprint15:15:D9:8E:39:C7:06:EB:3E:95:E9:60:79:C1:C8:71:91:A7:DF:07 ValiditySat, 06 Apr 2024 23:22:32 GMT - Fri, 05 Jul 2024 23:22:31 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/challenge-platform/h/g/jsd/r/87e98b1099005694 HTTP/1.1
Host: notifyhubss.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12397
Origin: https://notifyhubss.net
DNT: 1
Connection: keep-alive
Referer: https://notifyhubss.net/4eb99a164u669e4824lbb78cffdl4cbd476b.html__;!!oepyz6q!6f5onc-f2viba0mlrclulvrtd4y8rdwugsyukvszlgml1du8axxeifbp79377kcqmyf26mgqfpadil66ravz2gjcshm_
Cookie: requestid=2740221cd1957966f3712445c57aa73b
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 04 May 2024 15:32:24 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
set-cookie: cf_clearance=ir3qGjdb7U2T3LysxItsUDOE6G7WAHcNudzqKNKaJSA-1714836744-1.0.1.1-c1f47FEiV1w4hqqTuYnWJyBOmkIZaeqAlejntHelv9FXeSQ5tPRDxgr9LiShF8eN57JXJHFnWFJgO2UcD.6v_Q; path=/; expires=Sun, 04-May-25 15:32:24 GMT; domain=.notifyhubss.net; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gA6LeyGYVOYHf5HpqlDoBCgxldvqw1NK2xdQFmICO9%2BlwgnN%2BQiRYnKe%2Bg5kp3WI0ObaFdtWuTzOMWIjWxMmf%2FL01DXK6LmK3ZOmZlUFfoGH%2Fd%2BjaM%2Fk3MaFpunq%2Fg%2BioA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e98b179ab05694-OSL
X-Firefox-Spdy: h2
|
|
| lp.cybeready.net/Forms/MS-online/favicon.ico | 104.26.9.233 | | 448 B |
URL GET lp.cybeready.net/Forms/MS-online/favicon.ico IP104.26.9.233:0
Requested byhttps://notifyhubss.net/4eb99a164u669e4824lbb78cffdl4cbd476b.html__;!!oepyz6q!6f5onc-f2viba0mlrclulvrtd4y8rdwugsyukvszlgml1du8axxeifbp79377kcqmyf26mgqfpadil66ravz2gjcshm_ CertificateIssuerLet's Encrypt Subjectcybeready.net FingerprintBB:28:14:F8:09:02:DF:1E:F0:B6:74:8B:09:67:6A:55:A6:0D:A0:38 ValidityTue, 16 Apr 2024 23:13:46 GMT - Mon, 15 Jul 2024 23:13:45 GMT
File typeMS Windows icon resource - 6 icons, -128x-128, 16 colors, 72x72, 16 colors Hash12e3dac858061d088023b2bd48e2fa96 e08ce1a144eceae0c3c2ea7a9d6fbc5658f24ce5 90cdaf487716184e4034000935c605d1633926d348116d198f355a98b8c6cd21
| Analyzer | Verdict | Alert |
|---|
| urlquery | phishing | Phishing - Microsoft |
GET /Forms/MS-online/favicon.ico HTTP/1.1
Host: lp.cybeready.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://notifyhubss.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 04 May 2024 15:32:24 GMT
content-type: image/x-icon
x-amz-id-2: T3AeNOBPKrBv7mpzia55H7wVBd+vUXceEvFZutxO6n+E7udW+hSHp/lKosbbB3C9FLjAPIOggxo=
x-amz-request-id: 2KZS7NC9PJGFW7JP
last-modified: Mon, 09 May 2016 08:37:47 GMT
etag: W/"12e3dac858061d088023b2bd48e2fa96"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=G%2FJ2hjjOS%2FyYaQ5rPouBKZdj7P%2BuJDWSY%2BsDH2ls33d5j%2Fu8VU0d5VkKRlAbNhl%2FEqpfkqXqjn4r2%2ByTTi0aIPWzB8Q5NGXSZPST%2Bo4g4DXU2P4JanS4lth971H1FqMIRQc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87e98b16fecf568e-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| lp.cybeready.net/common/landing-page.js | 104.26.9.233 | 200 OK | 12 kB |
URL GET HTTP/2lp.cybeready.net/common/landing-page.js IP104.26.9.233:443
Requested byhttps://notifyhubss.net/4eb99a164u669e4824lbb78cffdl4cbd476b.html__;!!oepyz6q!6f5onc-f2viba0mlrclulvrtd4y8rdwugsyukvszlgml1du8axxeifbp79377kcqmyf26mgqfpadil66ravz2gjcshm_ CertificateIssuerLet's Encrypt Subjectcybeready.net FingerprintBB:28:14:F8:09:02:DF:1E:F0:B6:74:8B:09:67:6A:55:A6:0D:A0:38 ValidityTue, 16 Apr 2024 23:13:46 GMT - Mon, 15 Jul 2024 23:13:45 GMT
File typeJavaScript source, ASCII text, with very long lines (590) Hashac5716b9ccc0d5eb31e94d8c873227d4 39ed1b79df1f4a7eedc7f245f0cabb0618246951 633d39e293d4a1e9f9c461323d6d3913f3ee51ab8cc901e4c45356cf022634ca
| Analyzer | Verdict | Alert |
|---|
| urlquery | phishing | Phishing - Microsoft |
GET /common/landing-page.js HTTP/1.1
Host: lp.cybeready.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://notifyhubss.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 15:32:24 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=7666
etag: W/"dc85792ec27e1c3bf02af986d07c81eb"
last-modified: Thu, 19 Nov 2015 18:47:02 GMT
x-amz-id-2: 73CUDecqmGTce5WvP+Giz7PqDsR7LOYJLB503cLZfcOgSCoOdeVmsugtWKzGIKLDIsb1dWCeW8o=
x-amz-request-id: 2KZMCVRCH37QWTP7
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FMtl6pxDhg%2BFlo1jNkEfFamgfGSaUrJxSGqhJdJcVgZUsr8epVq4z8Gd1fW32qP2pzy30fA0gvD6UzfreJB4Gz5MnaE1BfpUSsud5I8HKjdo68x%2FEhY7Rjc4sofGU8NMuD8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87e98b14ab7d568e-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| lp.cybeready.net/Forms/MS-online/validator.js | 104.26.9.233 | 200 OK | 11 kB |
URL GET HTTP/2lp.cybeready.net/Forms/MS-online/validator.js IP104.26.9.233:443
Requested byhttps://notifyhubss.net/4eb99a164u669e4824lbb78cffdl4cbd476b.html__;!!oepyz6q!6f5onc-f2viba0mlrclulvrtd4y8rdwugsyukvszlgml1du8axxeifbp79377kcqmyf26mgqfpadil66ravz2gjcshm_ CertificateIssuerLet's Encrypt Subjectcybeready.net FingerprintBB:28:14:F8:09:02:DF:1E:F0:B6:74:8B:09:67:6A:55:A6:0D:A0:38 ValidityTue, 16 Apr 2024 23:13:46 GMT - Mon, 15 Jul 2024 23:13:45 GMT
Hash1fcbee9832d717ec42da9239564aff2b c89b6868b60376a2d519d277eefe80a4b72187dc 531af0d0ceaca3ebdc13b4285eb12ca7089f628a149e842c5a2205b959018e4c
| Analyzer | Verdict | Alert |
|---|
| urlquery | phishing | Phishing - Microsoft |
GET /Forms/MS-online/validator.js HTTP/1.1
Host: lp.cybeready.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://notifyhubss.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 15:32:24 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=1569
etag: W/"844cb6b1728575eb4bc8bc531bb5a4f3"
last-modified: Mon, 09 May 2016 10:28:26 GMT
x-amz-id-2: k1XACv91Kjct784PxM/6p1sEjbQc9jtBvi6yCQjjHZkbVQzsCGpl6ZcjCvvdxLS9c4PXRgjylqk=
x-amz-request-id: 2KZHB5G9SGJWFGEK
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=afWT6lPwpbVw0gnnJlmm5cR%2FZjJ00dA4Oe%2BuS6QL1IJPsqsEqTE0vWYY0xrtZKbqdeteum5xlfUvu5sY5cJmiQRDZ%2FKFktScohBc7rCNhm60ijWmQwHndudua%2B5GzNEiGs8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87e98b14ab7c568e-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| notifyhubss.net/4eb99a164u669e4824lbb78cffdl4cbd476b.html__;!!oepyz6q!6f5onc-f2viba0mlrclulvrtd4y8rdwugsyukvszlgml1du8axxeifbp79377kcqmyf26mgqfpadil66ravz2gjcshm_ | 172.67.72.147 | 200 OK | 0 B |
URL User Request GET HTTP/2notifyhubss.net/4eb99a164u669e4824lbb78cffdl4cbd476b.html__;!!oepyz6q!6f5onc-f2viba0mlrclulvrtd4y8rdwugsyukvszlgml1du8axxeifbp79377kcqmyf26mgqfpadil66ravz2gjcshm_ IP172.67.72.147:443
CertificateIssuerLet's Encrypt Subjectnotifyhubss.net Fingerprint15:15:D9:8E:39:C7:06:EB:3E:95:E9:60:79:C1:C8:71:91:A7:DF:07 ValiditySat, 06 Apr 2024 23:22:32 GMT - Fri, 05 Jul 2024 23:22:31 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /4eb99a164u669e4824lbb78cffdl4cbd476b.html__;!!oepyz6q!6f5onc-f2viba0mlrclulvrtd4y8rdwugsyukvszlgml1du8axxeifbp79377kcqmyf26mgqfpadil66ravz2gjcshm_ HTTP/1.1
Host: notifyhubss.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: json
X-Requested-With: XMLHttpRequest
Content-Length: 109
Origin: https://notifyhubss.net
DNT: 1
Connection: keep-alive
Referer: https://notifyhubss.net/4eb99a164u669e4824lbb78cffdl4cbd476b.html__;!!oepyz6q!6f5onc-f2viba0mlrclulvrtd4y8rdwugsyukvszlgml1du8axxeifbp79377kcqmyf26mgqfpadil66ravz2gjcshm_
Cookie: requestid=a93eba72604745b8e052fd48b1b6c220; cf_clearance=ir3qGjdb7U2T3LysxItsUDOE6G7WAHcNudzqKNKaJSA-1714836744-1.0.1.1-c1f47FEiV1w4hqqTuYnWJyBOmkIZaeqAlejntHelv9FXeSQ5tPRDxgr9LiShF8eN57JXJHFnWFJgO2UcD.6v_Q
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 04 May 2024 15:32:47 GMT
content-type: application/octet-stream
content-length: 0
set-cookie: requestid=d10383cdd36d6c5fc097adc891c46a43
requestid=36c432c5db61584d3924ecaf65565adb
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=E7GxwS9JgbMrCUsyzvAMX0%2FXC%2BKzPzDjYz0Wk%2FhOCk1KIYtCLdU2RKuVRTUKE4CCewuSimpLkuaWWERsQRBaAo6MjA5YiuqgoPi55HmDfgeVXA3oZZe4I7MaOazKicUpVA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e98ba42f415694-OSL
X-Firefox-Spdy: h2
|
|
| lp.cybeready.net/Forms/MS-online/index.css | 104.26.9.233 | 200 OK | 2.4 kB |
URL GET HTTP/2lp.cybeready.net/Forms/MS-online/index.css IP104.26.9.233:443
Requested byhttps://notifyhubss.net/4eb99a164u669e4824lbb78cffdl4cbd476b.html__;!!oepyz6q!6f5onc-f2viba0mlrclulvrtd4y8rdwugsyukvszlgml1du8axxeifbp79377kcqmyf26mgqfpadil66ravz2gjcshm_ CertificateIssuerLet's Encrypt Subjectcybeready.net FingerprintBB:28:14:F8:09:02:DF:1E:F0:B6:74:8B:09:67:6A:55:A6:0D:A0:38 ValidityTue, 16 Apr 2024 23:13:46 GMT - Mon, 15 Jul 2024 23:13:45 GMT
File typeASCII text, with very long lines (2426), with no line terminators Hash8a755011320e63395ea79047f1b5073c cdf05a68a5c6fe1c2566f63f92c3997f7352ab6f bd5d2516f5c4a874a8f3d1c03b60ce1c33854626f0bb98ef55e56dda4e46db56
| Analyzer | Verdict | Alert |
|---|
| urlquery | phishing | Phishing - Microsoft |
GET /Forms/MS-online/index.css HTTP/1.1
Host: lp.cybeready.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://notifyhubss.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 15:32:24 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=3105
etag: W/"f381725154f2d810562dc42f32c6bee2"
last-modified: Mon, 09 May 2016 08:37:42 GMT
x-amz-id-2: ZWkICQVK0OqHzSaw13/hppFhSUBUNH+PTdXXIdV4Imqw30UBZGKN+0u/xaXCLPt63DxxUkxt1e8=
x-amz-request-id: 2KZWTVRZNHXP3XN8
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=a9u3BatscWJ4giGzYYHxZfIZttOCWbyb9vRnbmVt6mpLAgo2VELqfx9X00yOB%2BVjOKUuwBXhRMfiCKHtwX5OR9k725EPXkWOqd%2FI2K%2FekQEai5ZIpSfta8ivwcs9v%2BhSBAI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87e98b149b57568e-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| lp.cybeready.net/Forms/MS-online/sanitize.css | 104.26.9.233 | 200 OK | 526 B |
URL GET HTTP/2lp.cybeready.net/Forms/MS-online/sanitize.css IP104.26.9.233:443
Requested byhttps://notifyhubss.net/4eb99a164u669e4824lbb78cffdl4cbd476b.html__;!!oepyz6q!6f5onc-f2viba0mlrclulvrtd4y8rdwugsyukvszlgml1du8axxeifbp79377kcqmyf26mgqfpadil66ravz2gjcshm_ CertificateIssuerLet's Encrypt Subjectcybeready.net FingerprintBB:28:14:F8:09:02:DF:1E:F0:B6:74:8B:09:67:6A:55:A6:0D:A0:38 ValidityTue, 16 Apr 2024 23:13:46 GMT - Mon, 15 Jul 2024 23:13:45 GMT
File typeASCII text, with very long lines (526), with no line terminators Hash2675cf7988f6a7a71b241bb7dbe69dec 7900859c6bf14e7c3a72db9bd4a9e49901f78173 4e9b51d07ce50cf3d2e065c34ba5f30d95d75227cd7642ae8d262d6772867e61
| Analyzer | Verdict | Alert |
|---|
| urlquery | phishing | Phishing - Microsoft |
GET /Forms/MS-online/sanitize.css HTTP/1.1
Host: lp.cybeready.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://notifyhubss.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 15:32:24 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=1014
etag: W/"61d79c3e015865ed0bca45e77eeac723"
last-modified: Mon, 09 May 2016 08:37:44 GMT
x-amz-id-2: tU37I35R3VyyDTBuEl0fPx9QqyfCnugfoHHxMWppd80DPsY2q2VIsZSTcmPg/PQfSTyUEXs1ExY=
x-amz-request-id: JC7JWP2811F88S44
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xc9iz1AqtefANT5dGTOp3U65sqGh0h5tDEv82kMxCWHDIL5iUrX6N0EvBDjQQwQjXYf5bL05ZFADJVkyqJGUE72djL8LtiDxcOgVxbCaSl2tMqydkyP%2BG9Qm1ZcWmgCtTC4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87e98b149b6e568e-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| notifyhubss.net/cdn-cgi/challenge-platform/h/g/scripts/jsd/d0ff3ebede6b/main.js | 172.67.72.147 | 200 OK | 7.8 kB |
URL GET HTTP/2notifyhubss.net/cdn-cgi/challenge-platform/h/g/scripts/jsd/d0ff3ebede6b/main.js IP172.67.72.147:443
Requested byhttps://notifyhubss.net/4eb99a164u669e4824lbb78cffdl4cbd476b.html__;!!oepyz6q!6f5onc-f2viba0mlrclulvrtd4y8rdwugsyukvszlgml1du8axxeifbp79377kcqmyf26mgqfpadil66ravz2gjcshm_ CertificateIssuerLet's Encrypt Subjectnotifyhubss.net Fingerprint15:15:D9:8E:39:C7:06:EB:3E:95:E9:60:79:C1:C8:71:91:A7:DF:07 ValiditySat, 06 Apr 2024 23:22:32 GMT - Fri, 05 Jul 2024 23:22:31 GMT
File typeJavaScript source, ASCII text, with very long lines (7844), with no line terminators Hash028e5929210e136ffc567412ee1f29b0 f2f99122ff78671bf9d6f20dfeb74eb0c98f1c93 b785ab4f5ed9dbf8410eaaf789baa57c251ccb85cd824b203a3ab3ec283f10b4
GET /cdn-cgi/challenge-platform/h/g/scripts/jsd/d0ff3ebede6b/main.js HTTP/1.1
Host: notifyhubss.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: requestid=2740221cd1957966f3712445c57aa73b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 15:32:24 GMT
content-type: application/javascript; charset=UTF-8
cache-control: max-age=14400, public
x-content-type-options: nosniff
content-encoding: br
vary: accept-encoding
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CMorBXIQLmnsfbkNCjKMg7CDgPmfKg1m1IgsqmX1DfGIIORJW%2BCns43lQGB%2BEKUoz58n0GcCrYYekxqW6ew13Qn4soqasQ7z0D0Jzx9ypGctXo9ZPsk9mQsDP9GSVkvCdA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e98b1678fd5694-OSL
X-Firefox-Spdy: h2
|
|