r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 388f6fea5bafa378266622b72311a6ee
447f102dc12172ce1ba44c5e94e1d7bb49d43372
a597afb4d4f7f3c82f0f2857322226fc69dc92e099bfd0605f7a0cd562be9d21
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A597AFB4D4F7F3C82F0F2857322226FC69DC92E099BFD0605F7A0CD562BE9D21"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8936
Expires: Thu, 08 Dec 2022 05:03:17 GMT
Date: Thu, 08 Dec 2022 02:34:21 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash f2acd891dc6eb1f09f57a2b086791781
1e2088306501a61edcca1ade62c4d54f23b3b083
51148fed95cc00d60dc3640350f135b1b2763ff0e3cfbffc40f0948317894be9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "51148FED95CC00D60DC3640350F135B1B2763FF0E3CFBFFC40F0948317894BE9"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8349
Expires: Thu, 08 Dec 2022 04:53:30 GMT
Date: Thu, 08 Dec 2022 02:34:21 GMT
Connection: keep-alive
mateemask.net/
200 OK 8.0 kB IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with very long lines (19383), with CRLF line terminators
Hash aa83ff4c613afd769cbbdf668321e750
2baed0889c24a457e3f94cbc42d6e1c1e842cf84
94112d64d0340ca0163c5679b6f9470f2b370e286d922fe89526de9a26cbad06
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET / HTTP/1.1
Host: mateemask.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 02:34:21 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 06 Dec 2022 16:44:21 GMT
Vary: Accept-Encoding
X-Powered-By: ASP.NET
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=H51F%2Bf%2BykhPZLT7dCSqSfEIeXwOdmvae%2BWPw897aAHk7IXJYp1DtDwC%2BmpdhbFDmKGaplBSEi3Me44AZVTsO6jQNa46P%2BgbSx2z7JaDGG69KJu98YzmYoXzw4s%2FeSDsV"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 776219fcc8fd0b51-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 08 Dec 2022 02:08:07 GMT
content-type: application/json
age: 1574
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 00e7703bd74975689fc9050356aaca6b
9788fe6a36d6f278e8da329ebc5dd87bcd212317
593bc437ff8a8233516c62613d50220fcb25b9f967ed5fb384c253f0db135103
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "593BC437FF8A8233516C62613D50220FCB25B9F967ED5FB384C253F0DB135103"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4043
Expires: Thu, 08 Dec 2022 03:41:44 GMT
Date: Thu, 08 Dec 2022 02:34:21 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: k3WSkftY/QHeFY71Q6OzTGtUkQUivGjTTH+ZOjjSEy6Nljg7p+6u67n3O231YlffTGcPJ4qkH60=
x-amz-request-id: 4N3YMXRRXPJ9D9MA
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 08 Dec 2022 01:47:44 GMT
age: 2797
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 02:34:21 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
mateemask.net/css/normalize.css
200 OK 3.2 kB URL HTTP/1.1 mateemask.net/css/normalize.css
IP
Hash a374526bdf1ad36c19e8f090f3cd9eaa
0ead1b536b4527b4e975166482111231b5d01d0e
109cdc6a8286720e85a5fae5c0ae8bf6b044be54f827a8f9ffed438e1cab72d4
Analyzer Verdict Alert openphish Crypto/Wallet
GET /css/normalize.css HTTP/1.1
Host: mateemask.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mateemask.net/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 02:34:22 GMT
Content-Type: text/css
Content-Length: 3198
Connection: keep-alive
Content-Encoding: gzip
Last-Modified: Thu, 10 Nov 2022 18:12:42 GMT
ETag: "115347630f5d81:0"
Vary: Accept-Encoding
X-Powered-By: ASP.NET
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 117
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CgZlAIunZ1hmyIh3uQvfx6lby1hLeHgOmhOnlfeG7FH4pVAmdlS9MhLLszZBDDrs7Ve%2BwKei5fZh1kAVKNTYTwPbDNLZjpl37rk%2Fv3fyLHGgjlfgUv%2BjT%2FM8Cd9ZBbnn"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 776219ff698a0b51-OSL
alt-svc: h2=":443"; ma=60
mateemask.net/css/metamask-staging-2.webflow.css
200 OK 17 kB URL HTTP/1.1 mateemask.net/css/metamask-staging-2.webflow.css
IP
Hash 8ccc92334e009f2e8d81f71b50039492
2d6249d4dded2951a9d1fe63a7e79fa67490ea03
9328052916bf40d9c09af88b1e7850434f370afafd2693a91342c973474b329e
Analyzer Verdict Alert openphish Crypto/Wallet
GET /css/metamask-staging-2.webflow.css HTTP/1.1
Host: mateemask.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mateemask.net/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 02:34:22 GMT
Content-Type: text/css
Content-Length: 16704
Connection: keep-alive
Content-Encoding: gzip
Last-Modified: Fri, 11 Nov 2022 08:13:18 GMT
ETag: "0237a74a5f5d81:0"
Vary: Accept-Encoding
X-Powered-By: ASP.NET
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 118
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JEyUEUSZxiq8mcORDmB71n7dUwyYf%2BLxs6mSoZOoXiYQg30MTm7UEmDQ6IfxJ32Qbuw5m1v8NBef%2Bqzh9sryK4Rl00mHIoYOsgXRddcHfQH19rrCA80FyvbVpp0%2F38DN"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 776219ff682a0b31-OSL
alt-svc: h2=":443"; ma=60
mateemask.net/js/analytics.js
200 OK 25 kB URL HTTP/1.1 mateemask.net/js/analytics.js
IP
File type ASCII text, with very long lines (1325)
Hash 724b22fdeabacbcfd86b88055b1f2ed4
ada32d80b0636f7cbc90d1c8028fe3f180c35588
909cf71f76c26d697a5424d5ef6d8a25dc8fd1d4df93584e6c88d8cb86cb9e70
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /js/analytics.js HTTP/1.1
Host: mateemask.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mateemask.net/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 02:34:22 GMT
Content-Type: application/javascript
Content-Length: 24733
Connection: keep-alive
Content-Encoding: gzip
Last-Modified: Thu, 10 Nov 2022 18:32:00 GMT
ETag: "346dc3b832f5d81:0"
Vary: Accept-Encoding
X-Powered-By: ASP.NET
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 118
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tiHb0tuLyUWMCJH5%2Buj6HFeYccZ9lYbtG%2FXA29sSc0LJFOFrl1bjpaxBBkPcNkPPf5HCC%2BctUvQtnh0GcMdYSOs40C6L%2BJRNsEMLiL6mlt8athSN5p5jLMBlZ8bo5FVE"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 776219ff6ee40b55-OSL
alt-svc: h2=":443"; ma=60
mateemask.net/css/webflow.css
200 OK 9.3 kB URL HTTP/1.1 mateemask.net/css/webflow.css
IP
File type Unicode text, UTF-8 text, with very long lines (2587)
Hash 62bb67ca96532826c0f83ba023f3841f
04b1da3e75f0f21c9a634cd8e5e012522aa0e305
67348b1cbd4dbc0ed6bd422bd7f7da7180bdf77d190a5114787dbd10c64eeaae
Analyzer Verdict Alert openphish Crypto/Wallet
GET /css/webflow.css HTTP/1.1
Host: mateemask.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mateemask.net/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 02:34:22 GMT
Content-Type: text/css
Content-Length: 9277
Connection: keep-alive
Content-Encoding: gzip
Last-Modified: Thu, 10 Nov 2022 18:12:42 GMT
ETag: "04947630f5d81:0"
Vary: Accept-Encoding
X-Powered-By: ASP.NET
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 118
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FX%2Fnrm3r4P%2BRrrqxAVudoq%2BivECDrfoN2wDEGTzbTyOi7tf8i5aHw7bzk1rGCYx7w0HvTE5SwTWN%2BVwJVN%2FRyKR%2Bw92LNPu7CKjjEu2mqGBAyz%2BW9FavyiQ7DVQpRznr"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 776219ff6ac1b509-OSL
alt-svc: h2=":443"; ma=60
mateemask.net/js/gtag.js
200 OK 36 kB IP
File type ASCII text, with very long lines (1896)
Hash eb1799eaccee6a9d525f0b48aa5ab6e8
c882fb8b2258bbf64bc452e565e982bbe05da69c
5d839379d31c2a63c9860d6eb32bdc6cd3d9da4aad94f830cef9d894d7bccf06
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /js/gtag.js HTTP/1.1
Host: mateemask.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mateemask.net/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 02:34:22 GMT
Content-Type: application/javascript
Content-Length: 35678
Connection: keep-alive
Content-Encoding: gzip
Last-Modified: Thu, 10 Nov 2022 18:32:00 GMT
ETag: "01080b832f5d81:0"
Vary: Accept-Encoding
X-Powered-By: ASP.NET
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 118
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mYhRDma0MJLeIarRUDEyqgSGjIZYKNawPXklAMv19UYo3sKe3gl3L3SDut%2BF%2F9RLba9BKXjQpTKlqtYBSrcvybXJxOVu6DOMw4dkmByBCnfeC1ZkxZu5o%2BYcwJOD3D%2FY"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 776219ff6aab1c02-OSL
alt-svc: h2=":443"; ma=60
mateemask.net/js/webfont.js
200 OK 6.5 kB URL HTTP/1.1 mateemask.net/js/webfont.js
IP
File type ASCII text, with very long lines (2134)
Hash de748a8e6e392f2de0a6c2e5709a4cea
3fbce77eb09223b2ae4e35ee43b429093542d814
f21f56bc6d537aef9d020e64fa3cd9ff66d3430a468931799a3a33fc5ec038ed
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /js/webfont.js HTTP/1.1
Host: mateemask.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mateemask.net/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 02:34:22 GMT
Content-Type: application/javascript
Content-Length: 6461
Connection: keep-alive
Content-Encoding: gzip
Last-Modified: Thu, 10 Nov 2022 18:32:00 GMT
ETag: "844ad3b832f5d81:0"
Vary: Accept-Encoding
X-Powered-By: ASP.NET
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 118
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9pY3gxDDLzU%2BfphBcK%2F928MGg7tT%2FvfDFfwOXLTCdUkiMdFGg3pzoNPes0yQh6LOXusshokCqtdabaajZgZq%2FvEJ3FDE7O325uvpBCtNxtfMctriFFPW7IyEPfdh4OrE"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 776219ff6b41fac4-OSL
alt-svc: h2=":443"; ma=60
mateemask.net/js/jquery-3.5.1.min.dc5e7f18c8.js
200 OK 40 kB URL HTTP/1.1 mateemask.net/js/jquery-3.5.1.min.dc5e7f18c8.js
IP
File type ASCII text, with very long lines (65451)
Hash ba8a8242ecb2b46d0de05e51e503a1e5
4eff38e79787942f38aa9f2682ee220c45370c29
4d897c5e328ac1c91f487b11cb0d0a67b87c3828a594590736b65e83586ada50
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /js/jquery-3.5.1.min.dc5e7f18c8.js HTTP/1.1
Host: mateemask.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mateemask.net/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 02:34:22 GMT
Content-Type: application/javascript
Content-Length: 39819
Connection: keep-alive
Content-Encoding: gzip
Last-Modified: Thu, 10 Nov 2022 18:32:00 GMT
ETag: "43a9c4b832f5d81:0"
Vary: Accept-Encoding
X-Powered-By: ASP.NET
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 118
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=39oc%2BXpq2CYXaUaC9BeL7a%2BdJHV3Kje9EqC4MCaI0Vqx%2BP92EHUOqAru5TvPjfbGTD4FMzFXfX2NncZvYnGLNKZr91NJ%2B4MrxfbGX1grVhImtxr4zpYwDH%2BngN3D63w%2F"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 776219ff9acfb509-OSL
alt-svc: h2=":443"; ma=60
mateemask.net/metameask.com/logo.js
404 Not Found 681 B URL HTTP/1.1 mateemask.net/metameask.com/logo.js
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 31e9fc60acd51416a2d46d438f110c87
3f2d477fbc4f31f7c1cdce67fa62b91dbcf3be31
7f5761616dfd681c53b9e4262352899378044d0bae11f301a7190d66bf5a4702
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /metameask.com/logo.js HTTP/1.1
Host: mateemask.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mateemask.net/
HTTP/1.1 404 Not Found
Date: Thu, 08 Dec 2022 02:34:22 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: ASP.NET
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gbZ1Cj4EDetLShdE1LHwEgVhbtltiDCl1pZmMrtz95vcpMl9p%2FlOrXXGWn9L61ZCzx4Ym08kyH7pq5FwI%2BxOGPvl98lSXe2XsdvyryCh2teUHoPbsd%2FGuzqhgCX%2BJvLt"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 776219ff88310b31-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
mateemask.net/js/enterprise.js
200 OK 826 B URL HTTP/1.1 mateemask.net/js/enterprise.js
IP
File type ASCII text, with very long lines (1104), with no line terminators
Hash c229db39c77aed1d7b935a2cae4dedbc
877ceb118256f3c6ab0ce17c927ab3f2941fada5
18453b55298111492bb40232dbb1ebe5ddc7796f6346f3f0ee3a77c40f67024c
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /js/enterprise.js HTTP/1.1
Host: mateemask.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mateemask.net/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 02:34:22 GMT
Content-Type: application/javascript
Content-Length: 826
Connection: keep-alive
Content-Encoding: gzip
Last-Modified: Thu, 10 Nov 2022 18:12:42 GMT
ETag: "ddcf6d630f5d81:0"
Vary: Accept-Encoding
X-Powered-By: ASP.NET
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3OBgsWoXNfEQHdy4r7Eiv4KGWV521r9poPpRyrh8fYNDOmgD5C9%2FmnNqgeGXJ47vij%2FdPBaklG3wspuMCzvVi57fMcUBXB3ttXt7CA72zeMMaf8pROVhWGlXzU0%2Fgrf1"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 776219ff898e0b51-OSL
alt-svc: h2=":443"; ma=60
metameask.com/images/mm-shop-hoodie-p-500.png
404 Not Found 681 B URL HTTP/1.1 metameask.com/images/mm-shop-hoodie-p-500.png
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 31e9fc60acd51416a2d46d438f110c87
3f2d477fbc4f31f7c1cdce67fa62b91dbcf3be31
7f5761616dfd681c53b9e4262352899378044d0bae11f301a7190d66bf5a4702
GET /images/mm-shop-hoodie-p-500.png HTTP/1.1
Host: metameask.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mateemask.net/
HTTP/1.1 404 Not Found
Date: Thu, 08 Dec 2022 02:34:22 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: ASP.NET
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 42
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pZdHWyMX7F8AmZ5K4lKWVJ6wVsIcC%2FQ3eDW0rj31hNqpmyRGlcPIHJRkOX%2BtfH9xR%2FQRErRws%2Bkr%2BVK8UN%2FclWpvMouCk5TFsLBATnrJPGiGrICodkLk5cpFiFl3%2FTKE"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77621a00df98b506-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
sdk.51.la/js-sdk-pro.min.js
200 OK 13 kB URL HTTP/1.1 sdk.51.la/js-sdk-pro.min.js
IP
ASN #45102 Alibaba US Technology Co., Ltd.
File type Unicode text, UTF-8 text, with very long lines (34110)
Hash 29243483fe441404931c046d27be80a6
92a0c68b0169eff0addb8cc05a53f6e009d41d47
4865f22b0a68c6a0a6c2d3cbedb9a190ffbea105c4f1e2a5806172919456f3b1
GET /js-sdk-pro.min.js HTTP/1.1
Host: sdk.51.la
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mateemask.net/
HTTP/1.1 200 OK
Server: openresty
Date: Thu, 08 Dec 2022 02:34:22 GMT
Content-Type: application/javascript; charset=utf-8
Last-Modified: Fri, 15 Jul 2022 04:05:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"62d0e7a4-861a"
Cache-Control: max-age=1296000
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
mateemask.net/js/common.js
200 OK 623 B URL HTTP/1.1 mateemask.net/js/common.js
IP
File type ASCII text, with CRLF line terminators
Hash a2551ebe00964720da6025e7c9151b14
73b4ebb2e3a80aba76c1dbdb7a6f17a98c76d86b
733ab25aee8224ef0b89bba9adfdc060a096da103f9a8ead97ec583f3419d28b
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /js/common.js HTTP/1.1
Host: mateemask.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mateemask.net/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 02:34:22 GMT
Content-Type: application/javascript
Content-Length: 623
Connection: keep-alive
Content-Encoding: gzip
Last-Modified: Thu, 10 Nov 2022 18:12:43 GMT
ETag: "3405e730f5d81:0"
Vary: Accept-Encoding
X-Powered-By: ASP.NET
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XxGIv5xJdomZ7rdH9zzE%2BXO6LLB7tky8BDQjJ8V%2BOwclhxF0CZdRkK86EylmeAAnM%2FFGzD1xHCZGEaWamwZH3QTeRTy6IoexTOaE576VZjAdU4IAvPG732r5RVj76x3l"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 776219ffbb51fac4-OSL
alt-svc: h2=":443"; ma=60
mateemask.net/z_stat-1280416669_1280416669.js
404 Not Found 681 B URL HTTP/1.1 mateemask.net/z_stat-1280416669_1280416669.js
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 31e9fc60acd51416a2d46d438f110c87
3f2d477fbc4f31f7c1cdce67fa62b91dbcf3be31
7f5761616dfd681c53b9e4262352899378044d0bae11f301a7190d66bf5a4702
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /z_stat-1280416669_1280416669.js HTTP/1.1
Host: mateemask.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mateemask.net/
HTTP/1.1 404 Not Found
Date: Thu, 08 Dec 2022 02:34:22 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: ASP.NET
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hdPRTH5p4yx8mvV68%2BdluuPddjRaOluCyw655JBI44tn6a09zsRd1QcKaWfd4HTNFxJEO8bSo567ZVQviYNHCNm5WiZ0anoypNvVU646H6CAWWMp7dOMphkrARVqmxCu"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 776219ffcadfb509-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
mateemask.net/images/mm-logo.svg
200 OK 3.4 kB URL HTTP/1.1 mateemask.net/images/mm-logo.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1001)
Hash 87be17a9cf110cd7f0eac1a80168a17b
03cc112c56de079e9a24c409b58b2b5f6f33c416
d6348b9a47784f6df546d997ded0d0f85afcd562283b06913f349cc595f7442b
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /images/mm-logo.svg HTTP/1.1
Host: mateemask.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mateemask.net/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 02:34:22 GMT
Content-Type: image/svg+xml
Content-Length: 3425
Connection: keep-alive
Content-Encoding: gzip
Last-Modified: Thu, 10 Nov 2022 18:09:26 GMT
ETag: "0f74912ff5d81:0"
Vary: Accept-Encoding
X-Powered-By: ASP.NET
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 116
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xwQj9eHjZ5dWOcQVCokXagNfF00lJDiritQFFClQyDhMtsjw3f9armIiNUljpRZxquqgTJlOKiSF8QTwqq724FfGfStbkEN2jXIKlEOecKCjOKy2lr6ZgUw4QxNEsBqy"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 77621a011b8ffac4-OSL
alt-svc: h2=":443"; ma=60
mateemask.net/images/dapp-compound.png
200 OK 11 kB URL HTTP/1.1 mateemask.net/images/dapp-compound.png
IP
File type PNG image data, 280 x 280, 8-bit/color RGBA, non-interlaced\012- data
Hash 3818f9cfccbd94fad91a10d3c5ee356c
7c6af849177aa8bf6ef9bcbf801dc375e1997900
20a34c84f82590d99a060210ea362878975f21cfd65c3a70c54e7fb99dce1f76
Analyzer Verdict Alert openphish Crypto/Wallet
GET /images/dapp-compound.png HTTP/1.1
Host: mateemask.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mateemask.net/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 02:34:22 GMT
Content-Type: image/png
Content-Length: 11355
Connection: keep-alive
Last-Modified: Thu, 10 Nov 2022 18:09:23 GMT
ETag: "b4659902ff5d81:0"
X-Powered-By: ASP.NET
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cXnD1%2B2ajvs3xYQ1GTKkVliRBkjxl7Mar2bmGHd56u4OiANKsV39QgfFid0iiTqqvff5zv64YlXnQRXZcFtlugtu5Nl01ZhA0VyUwbfN7i3TKcN9qLCUwlnFHVZSlSni"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77621a00dc391c02-OSL
alt-svc: h2=":443"; ma=60
mateemask.net/images/dapp-maker.png
200 OK 6.9 kB URL HTTP/1.1 mateemask.net/images/dapp-maker.png
IP
File type PNG image data, 280 x 280, 8-bit/color RGBA, non-interlaced\012- data
Hash 720871ca002e89a10d26e5c516066311
8648fe12645cd5c3473a73faba1d42cef78de444
f0d7356ee903d26301b8960783f70c108efc0382f20c804e0d09872a5443ce96
Analyzer Verdict Alert openphish Crypto/Wallet
GET /images/dapp-maker.png HTTP/1.1
Host: mateemask.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mateemask.net/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 02:34:22 GMT
Content-Type: image/png
Content-Length: 6852
Connection: keep-alive
Last-Modified: Thu, 10 Nov 2022 18:09:22 GMT
ETag: "61be948f2ff5d81:0"
X-Powered-By: ASP.NET
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TL2%2BCcfVsk5%2BebncdB6Fh%2FaX7Qxs64mDOblHDsebMHFaEYtG3s733n95zTGNLrRMyd3oCqW%2FY9akctKDc%2FV%2FDDSx%2FSAP0oZIQq%2BFd0DIOi7Jh%2Fyl4qxrwX6G7PoHSlDA"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77621a00d9d10b51-OSL
alt-svc: h2=":443"; ma=60
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 08 Dec 2022 02:07:58 GMT
age: 1584
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
mateemask.net/fonts/EuclidCircularB-Regular-WebXL.woff2
200 OK 45 kB URL HTTP/1.1 mateemask.net/fonts/EuclidCircularB-Regular-WebXL.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 45196, version 3.66\012- data
Hash 2d75957df3bb3aa6ed84f6591b0d5a1a
906424e75625f63b0188471067065794d0348536
8ff3b303322168b49a14878f195dbaf76d9da16e35094d1f83fa23245450155b
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /fonts/EuclidCircularB-Regular-WebXL.woff2 HTTP/1.1
Host: mateemask.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://mateemask.net/css/metamask-staging-2.webflow.css
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 02:34:22 GMT
Content-Type: application/font-woff2
Content-Length: 45196
Connection: keep-alive
Last-Modified: Thu, 10 Nov 2022 18:09:29 GMT
ETag: "45efa2932ff5d81:0"
X-Powered-By: ASP.NET
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 117
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KWNHkZsgHQx%2BX7Zkrvx3Hu5t9kZaKUakFZmyY0CThz3ijQ1y3CPluKk4OrpKX8628WG93aN8M2mgSOPTXM%2BTa23aw087BJddjO9VknD6repkaVwgJFDtxcK3DD0FsOVu"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77621a023a1e0b51-OSL
alt-svc: h2=":443"; ma=60
mateemask.net/metameask.com/logo.js
404 Not Found 681 B URL HTTP/1.1 mateemask.net/metameask.com/logo.js
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 31e9fc60acd51416a2d46d438f110c87
3f2d477fbc4f31f7c1cdce67fa62b91dbcf3be31
7f5761616dfd681c53b9e4262352899378044d0bae11f301a7190d66bf5a4702
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /metameask.com/logo.js HTTP/1.1
Host: mateemask.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mateemask.net/
HTTP/1.1 404 Not Found
Date: Thu, 08 Dec 2022 02:34:22 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: ASP.NET
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 0
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZzSDzSJXqbP0UFklaOK3mejR4IhFOQK3bckCQL9f6aHPO87QdIvAECyNqRMu8WDAgC%2FjlqW6XXCbNlm30l%2BtkbswEFu76rQ1S0yi3t%2B9Ai7Vb426feOIeHJFWlaBJNja"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77621a022c971c02-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
mateemask.net/fonts/EuclidCircularB-Bold-WebXL.woff2
200 OK 44 kB URL HTTP/1.1 mateemask.net/fonts/EuclidCircularB-Bold-WebXL.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 44544, version 3.66\012- data
Hash 9024d0bf73943172297c4628d0054e20
36c3795e7b297d06589e15ef59592683d9ed0974
88fad87880ae6bb0d733c967419d5f0d68da547a88ad67e7af41f18dae2e20df
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /fonts/EuclidCircularB-Bold-WebXL.woff2 HTTP/1.1
Host: mateemask.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://mateemask.net/css/metamask-staging-2.webflow.css
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 02:34:22 GMT
Content-Type: application/font-woff2
Content-Length: 44544
Connection: keep-alive
Last-Modified: Thu, 10 Nov 2022 18:09:29 GMT
ETag: "d84774932ff5d81:0"
X-Powered-By: ASP.NET
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 117
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZSh0a2l1iuxpqJv3TS1zKyq1Jy8CaeAkf1lH4gR%2FUJCUTjGigRDESCLEreUP3lj%2BnYHeF%2BEG%2FT2qxFFK6rccy5ibeln70O8eZRZZKNXvq1TtSuG9cveAJ4GSsR7c4CI7"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77621a023a240b51-OSL
alt-svc: h2=":443"; ma=60
mateemask.net/images/social-35.svg
200 OK 402 B URL HTTP/1.1 mateemask.net/images/social-35.svg
IP
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 4cc91bc2e4054ff5b275a149c64af129
9347818499ae1c9a618386352bc8b14e2371fc60
ad9a952881eaa3fff7ed34bede3c542a601e73b576128b8592b2bcae1b78498d
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /images/social-35.svg HTTP/1.1
Host: mateemask.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mateemask.net/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 02:34:22 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 10 Nov 2022 18:09:26 GMT
ETag: W/"edafae912ff5d81:0"
X-Powered-By: ASP.NET
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AELrBNYqDnkn7SQqeDxOXqm0XSLcQFUcc9Osbup4%2B9kDO3NKHN01Tzrl41hQ4kEJ%2FrIhQT480nACXmNVRTcQd96pcl1TjBZMiAY29w60M4j3sgnTe6oas9sBanm9H7YX"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77621a011b71b509-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
metameask.com/images/mm-shop-hoodie-p-500.png
404 Not Found 681 B URL HTTP/1.1 metameask.com/images/mm-shop-hoodie-p-500.png
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 31e9fc60acd51416a2d46d438f110c87
3f2d477fbc4f31f7c1cdce67fa62b91dbcf3be31
7f5761616dfd681c53b9e4262352899378044d0bae11f301a7190d66bf5a4702
GET /images/mm-shop-hoodie-p-500.png HTTP/1.1
Host: metameask.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mateemask.net/
HTTP/1.1 404 Not Found
Date: Thu, 08 Dec 2022 02:34:22 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: ASP.NET
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 42
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=02b8y7%2FEFwIT7boSBS%2FeeCngdQnNhDnSo1B3um%2FN6DV2aYEP0up6NEQb4N0RRVszhtu0EKvReMRIo76Gy6bKo81VLKGujxC56O18aWVAvr4faO%2BRzMh12usJElHEAm5z"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77621a02885cb506-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
mateemask.net/www.gstatic.com/recaptcha/releases/UrRmT3mBwY326qQxUfVlHu1P/recaptcha__zh_cn.js
404 Not Found 681 B URL HTTP/1.1 mateemask.net/www.gstatic.com/recaptcha/releases/UrRmT3mBwY326qQxUfVlHu1P/recaptcha__zh_cn.js
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 31e9fc60acd51416a2d46d438f110c87
3f2d477fbc4f31f7c1cdce67fa62b91dbcf3be31
7f5761616dfd681c53b9e4262352899378044d0bae11f301a7190d66bf5a4702
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /www.gstatic.com/recaptcha/releases/UrRmT3mBwY326qQxUfVlHu1P/recaptcha__zh_cn.js HTTP/1.1
Host: mateemask.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mateemask.net/
HTTP/1.1 404 Not Found
Date: Thu, 08 Dec 2022 02:34:22 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: ASP.NET
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LORUx6dw0I16g3mNaqMsd1mHi8xyJuw51TliqkbJIbbDRbEyCBmotQmMAKL4m%2FsO7uzOlLU57bGiFSrTzmlZW9cqB4j5d%2BBoDk91DKhzM8tMM1CV1C6X%2BeIPCjB9LbFv"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77621a014b9efac4-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
mateemask.net/images/dapp-gitcoin.png
200 OK 8.0 kB URL HTTP/1.1 mateemask.net/images/dapp-gitcoin.png
IP
File type PNG image data, 280 x 280, 8-bit/color RGBA, non-interlaced\012- data
Hash c710e9a5c39e89136a73edf0a1c99abe
aca40362b7d87533d00250e102ba852d19e2231c
7077eb7da3a6f399014d67a1032ab6d67f099055a1a2594cb4753022b843dc43
Analyzer Verdict Alert openphish Crypto/Wallet
GET /images/dapp-gitcoin.png HTTP/1.1
Host: mateemask.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mateemask.net/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 02:34:22 GMT
Content-Type: image/png
Content-Length: 7998
Connection: keep-alive
Last-Modified: Thu, 10 Nov 2022 18:09:23 GMT
ETag: "edc0de8f2ff5d81:0"
X-Powered-By: ASP.NET
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=atWvquvm2nemOGnZlrnAudFXUacYKRqWraSPWblfhaeNa5fUbA4ncUGAYEnUhlN%2B9hqCW%2F%2FrG8P7R2sRv5q%2BlUqsqGs2j5FU60vDX6Vlg0fDuS0PSb3G5XrEiLM0RqjX"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77621a00d8800b31-OSL
alt-svc: h2=":443"; ma=60
mateemask.net/images/wallet-illo.svg
200 OK 13 kB URL HTTP/1.1 mateemask.net/images/wallet-illo.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1199)
Hash 618a07e5e56be457d4ce0f89dbbd561c
6f5dbf7f719b28130b04175a6d8bea087e17bbe9
f1bc70765eddaf34fa2ce59290eec4120ccefd42ab9f25f0bed2a9660e2f09d8
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /images/wallet-illo.svg HTTP/1.1
Host: mateemask.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mateemask.net/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 02:34:22 GMT
Content-Type: image/svg+xml
Content-Length: 12853
Connection: keep-alive
Content-Encoding: gzip
Last-Modified: Thu, 10 Nov 2022 18:09:26 GMT
ETag: "0f74912ff5d81:0"
Vary: Accept-Encoding
X-Powered-By: ASP.NET
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VmRm%2BoyiHp6%2FYKtR1Ok7835jk7LNQMZquOa3JaEkMX1iOCAdDvU0l5FaUVaXciziSiLpu9%2BSjjIMkCAHVU19%2F9vPwpZ3jXTG%2FuDn9QEqzV5KSwIX5RB7ujyGoK2fciyr"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 77621a025a2f0b51-OSL
alt-svc: h2=":443"; ma=60
ocsp.digicert.com/
200 OK 471 B IP
Hash 053aff7451e55d4269dd9610ab070f3f
b3376256d11d159b0c7280ba1515b78d7d9e12ca
24114ca560fe70d03185bd66985603fd5a03dc310aa9a8ea7a7b3723ed46ce3e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4930
Cache-Control: max-age=114878
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 02:34:22 GMT
Etag: "639057aa-1d7"
Expires: Fri, 09 Dec 2022 10:29:00 GMT
Last-Modified: Wed, 07 Dec 2022 09:06:50 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
mateemask.net/js/v2.js
200 OK 149 kB IP
File type ASCII text, with very long lines (65536), with no line terminators
Size 149 kB (149448 bytes)
Hash 8535c962083795017bdf2dbf568914f8
7c0197d7dc92ac497de962ec67416dbd88bace9c
53dd759d81376c3a6e0595acebeabf9b2761fb465b3519da1e6bc221ac023107
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /js/v2.js HTTP/1.1
Host: mateemask.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mateemask.net/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 02:34:22 GMT
Content-Type: application/javascript
Content-Length: 149448
Connection: keep-alive
Content-Encoding: gzip
Last-Modified: Thu, 10 Nov 2022 18:32:00 GMT
ETag: "01080b832f5d81:0"
Vary: Accept-Encoding
X-Powered-By: ASP.NET
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Fr9jUGCS9PKVn0GHcoRJ%2BiK5dIpAASKEvf9I7KlAo5%2FucDkXj3oH2g37xykcxjp%2BvacYEe152kSq%2FbRZNyjXPJvExhWkb3NYGrVvK2tN7y%2B%2Bwa%2BfBVa8CTbZWiGT2G%2Bo"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 776219ff9eea0b55-OSL
alt-svc: h2=":443"; ma=60
mateemask.net/images/dapp-aave.png
200 OK 14 kB URL HTTP/1.1 mateemask.net/images/dapp-aave.png
IP
File type PNG image data, 560 x 560, 8-bit/color RGBA, non-interlaced\012- data
Hash 521a00d54b7fe1cb1d7712b655ca54a6
8c5aa52335bf25183781e62843ede770bf6877ba
506d6d9d5ad22253976f2906bbf141c94d19eb15466ed62b8c6cfb887bf07b55
Analyzer Verdict Alert openphish Crypto/Wallet
GET /images/dapp-aave.png HTTP/1.1
Host: mateemask.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mateemask.net/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 02:34:22 GMT
Content-Type: image/png
Content-Length: 14347
Connection: keep-alive
Last-Modified: Thu, 10 Nov 2022 18:09:24 GMT
ETag: "8ae082902ff5d81:0"
X-Powered-By: ASP.NET
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IsJDFdUg1Q4qB3MB1WC2ux0aA4R6MX3LM8K7emtsSEde4hneiJaZDDBD3%2BdILvSv8GRYdTxzULws6L4zzgxiCfXAl5lKmlyzYmrtRRdkyNuPrYEPkO1DMpMGoaxaLm8s"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77621a0369450b31-OSL
alt-svc: h2=":443"; ma=60
mateemask.net/images/Explore-illo.svg
200 OK 13 kB URL HTTP/1.1 mateemask.net/images/Explore-illo.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1527)
Hash 622c26c1167d3d2edeb28e48c0a5a511
c7ba07a83b2d202bed058f97a87c1035855c6bae
779ba6f1815bd6100595b6d40e863bdb021e5dc10664d6f99fe234b0af7cf3ac
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /images/Explore-illo.svg HTTP/1.1
Host: mateemask.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mateemask.net/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 02:34:22 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 10 Nov 2022 18:09:25 GMT
ETag: W/"83f93f912ff5d81:0"
X-Powered-By: ASP.NET
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=x2lzuPiwREsrGjSoj5y48rrxFPgMMcHRwr95IxruAgv%2BaOZmcFH3WWkounkcV4BjvPOhTxTH5hvFFaXnz4ebZkM8FNJI%2FJTdOvQ9NAdOtzrnqZwwEgsXv9vvhAHMIo0W"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77621a027c35b509-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
mateemask.net/z_stat-1280416669_1280416669.js
404 Not Found 681 B URL HTTP/1.1 mateemask.net/z_stat-1280416669_1280416669.js
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 31e9fc60acd51416a2d46d438f110c87
3f2d477fbc4f31f7c1cdce67fa62b91dbcf3be31
7f5761616dfd681c53b9e4262352899378044d0bae11f301a7190d66bf5a4702
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /z_stat-1280416669_1280416669.js HTTP/1.1
Host: mateemask.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mateemask.net/
HTTP/1.1 404 Not Found
Date: Thu, 08 Dec 2022 02:34:22 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: ASP.NET
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 0
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jInm87Z101V2lgEOXfSBFYtW8UEvIKCU8JLdUC4dEDG%2BLoXbhttKZpCEf7FU3JjwguUSkyQFLpIs0fiXJaCgLch79CrQIu7Rt3f0oVKabuXaiQyARordVHORnztLUOZR"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77621a04d9980b31-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
mateemask.net/images/dapp-opensea.png
200 OK 6.5 kB URL HTTP/1.1 mateemask.net/images/dapp-opensea.png
IP
File type PNG image data, 280 x 280, 8-bit/color RGBA, non-interlaced\012- data
Hash f82776f839cec899c9c87a680226aabf
43f5dedb6216cb02ee568fcb66cb19fc296c3a85
c62a1f30cdb6aff5eafdfccb45383032e61bf70aa0573572a4428347a1b5b116
Analyzer Verdict Alert openphish Crypto/Wallet
GET /images/dapp-opensea.png HTTP/1.1
Host: mateemask.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mateemask.net/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 02:34:22 GMT
Content-Type: image/png
Content-Length: 6533
Connection: keep-alive
Last-Modified: Thu, 10 Nov 2022 18:09:22 GMT
ETag: "6d346f8f2ff5d81:0"
X-Powered-By: ASP.NET
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=D1oQfDO9Xq0r%2BVL7VF9KV5X7fP5W2s8FaN1qVqICWG8a1Fa58D0rIoENo91J8gz5OtUrd6xo4mhdfRElJoPTf03j7WxRoYHeETvI%2BtUYliwNznWEwR9QaqUUIXOBxutg"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77621a0458220b55-OSL
alt-svc: h2=":443"; ma=60
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 1tbCbs+3TrwPb4pbg0YNfg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: bSDF2HF25Bxrq+hrxcSJ0UxWvdE=
mateemask.net/images/dapp-rarible.png
200 OK 6.8 kB URL HTTP/1.1 mateemask.net/images/dapp-rarible.png
IP
File type PNG image data, 560 x 560, 8-bit/color RGBA, non-interlaced\012- data
Hash b9f7c0fd11c34c044799e673947103f8
491baab057af39b2b24bf0c671d0eb05454b8c48
29db12a282df5639db8fa232831bbe9a7220884eecf79f1776f1b27237a4597c
Analyzer Verdict Alert openphish Crypto/Wallet
GET /images/dapp-rarible.png HTTP/1.1
Host: mateemask.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mateemask.net/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 02:34:23 GMT
Content-Type: image/png
Content-Length: 6840
Connection: keep-alive
Last-Modified: Thu, 10 Nov 2022 18:09:21 GMT
ETag: "3d5ff98e2ff5d81:0"
X-Powered-By: ASP.NET
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=44MVOyaQCjkVeDvYUNVGMqBiC%2B6l%2B3q31uFOhKWUkwRSnWA%2FpV23xQWrbtcUTXJPovZ7jjTJVZwTwssroqDrz3nFua%2BLY2PI86nOsu5QPoHxQZUOkCeaE5BH6C5hX0V1"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77621a04ed57b509-OSL
alt-svc: h2=":443"; ma=60
mateemask.net/images/dapp-axieinfinity.png
200 OK 43 kB URL HTTP/1.1 mateemask.net/images/dapp-axieinfinity.png
IP
File type PNG image data, 560 x 560, 8-bit/color RGBA, non-interlaced\012- data
Hash 5f662391fe3ddc927134ba8e15263eaf
ab5ea7aacdc8c97238247f59761abc02033b2a67
7faefc7f99e94d6251527c95794a5fdfb3e644baf25ae56f4e13afd125246421
Analyzer Verdict Alert openphish Crypto/Wallet
GET /images/dapp-axieinfinity.png HTTP/1.1
Host: mateemask.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mateemask.net/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 02:34:23 GMT
Content-Type: image/png
Content-Length: 42713
Connection: keep-alive
Last-Modified: Thu, 10 Nov 2022 18:09:24 GMT
ETag: "ee5d82902ff5d81:0"
X-Powered-By: ASP.NET
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XbpR1LizmJnWzdxf0PzhHgxW8Y%2BL%2BdqGhQlB3tEyZZhWsTaGgu1GpNNx6A3wvt2mGawX0WLxeGM62foDk7QP14pFaR9GcFpFpAK3J9HVMbC8otxbLMSPtWbdWvtcGOqf"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77621a03ba820b51-OSL
alt-svc: h2=":443"; ma=60
mateemask.net/images/Browse-illo.svg
200 OK 11 kB URL HTTP/1.1 mateemask.net/images/Browse-illo.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2226)
Hash 2a44633d12db297d022d80b062955f14
1833dc348885749af8ce3e17957ab711f0907760
4e3b62773744613fff4e8af579a70d647de35a44ff7c112d481a35861668b97b
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /images/Browse-illo.svg HTTP/1.1
Host: mateemask.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mateemask.net/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 02:34:23 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 10 Nov 2022 18:09:25 GMT
ETag: W/"a4f93b912ff5d81:0"
X-Powered-By: ASP.NET
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=45WcBmX%2FSQPA6A3oc7a6sqfcVHqZZw7BuxxMYimTEFrLJ2rhRx1T3ztyO%2F6oRazeCBreEVcp%2BEViK3RsWo5DaLM7MpWdENGjq%2F4FfJc1ZefcDHVyJiEOWOcCUvxxFYTl"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77621a02abcbfac4-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
mateemask.net/images/dapp-uniswap.png
200 OK 10 kB URL HTTP/1.1 mateemask.net/images/dapp-uniswap.png
IP
File type PNG image data, 280 x 280, 8-bit/color RGBA, non-interlaced\012- data
Hash 1948962ad395727d902bd6b5fcd01807
f7e85e096b084ef6d9f550afbcd702fd889031a5
ad0237265584181a6797c454ca123aa5d3df08001ae39b27bddfc66856b6751b
Analyzer Verdict Alert openphish Crypto/Wallet
GET /images/dapp-uniswap.png HTTP/1.1
Host: mateemask.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mateemask.net/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 02:34:23 GMT
Content-Type: image/png
Content-Length: 10268
Connection: keep-alive
Last-Modified: Thu, 10 Nov 2022 18:09:21 GMT
ETag: "8816a28e2ff5d81:0"
X-Powered-By: ASP.NET
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0DAOlmf4fyOz%2FEK2bkGtG1lvMJY6VJjx%2F70f4jqubq31purH7QRqA%2BTxn8KXcFyNR98lY%2Babu5HWXGZVFofxC5tRSXj6G44BYmXEn5lufHHJTnqozfho6IAu3oGjyKqT"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77621a0509a10b31-OSL
alt-svc: h2=":443"; ma=60
metameask.com/images/webclip.png
404 Not Found 681 B URL HTTP/1.1 metameask.com/images/webclip.png
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 31e9fc60acd51416a2d46d438f110c87
3f2d477fbc4f31f7c1cdce67fa62b91dbcf3be31
7f5761616dfd681c53b9e4262352899378044d0bae11f301a7190d66bf5a4702
GET /images/webclip.png HTTP/1.1
Host: metameask.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mateemask.net/
HTTP/1.1 404 Not Found
Date: Thu, 08 Dec 2022 02:34:23 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: ASP.NET
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 117
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Z%2F7wJG9CnrIG9%2F6GLdZeugUBUTEbk01ok0af%2FNEunS8y13BLEcR7OAuoG794x%2BgkyCnoztU0rQqnctioC30%2BFbtAyVZc0M215qkwUuPKXw1hbIfvOIDEo0smv6HSkTJA"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77621a08ab79b506-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
metameask.com/images/favicon.ico
404 Not Found 681 B URL HTTP/1.1 metameask.com/images/favicon.ico
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 31e9fc60acd51416a2d46d438f110c87
3f2d477fbc4f31f7c1cdce67fa62b91dbcf3be31
7f5761616dfd681c53b9e4262352899378044d0bae11f301a7190d66bf5a4702
GET /images/favicon.ico HTTP/1.1
Host: metameask.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mateemask.net/
HTTP/1.1 404 Not Found
Date: Thu, 08 Dec 2022 02:34:23 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: ASP.NET
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 117
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RQLX4GaVBxyUQkmKZvvTQigP32DJLxV1DEbJnO28ZJ3RQ0n%2Bkw9FlB6aP5YcyolHC0CswVF1DyfZGXjhwOibOgP6UedMZdTVb4x0GQdMjB9eqS38RBafkutcgzTcQ%2B0r"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77621a08bacbb4ff-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
mateemask.net/images/hero2.2.png
200 OK 590 kB URL HTTP/1.1 mateemask.net/images/hero2.2.png
IP
File type PNG image data, 1752 x 1452, 8-bit/color RGBA, non-interlaced\012- data
Size 590 kB (589568 bytes)
Hash d0ec70f4c666fbf6ad0d30a52d08c5c9
e48f0688bc4f592824840478d12c05df0dd12002
3f4bfc7c6cc471e9d95936dc109852c4f6a4bf1163b63eeabfe840565d5ad8d1
Analyzer Verdict Alert openphish Crypto/Wallet
GET /images/hero2.2.png HTTP/1.1
Host: mateemask.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mateemask.net/css/metamask-staging-2.webflow.css
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 02:34:23 GMT
Content-Type: image/png
Content-Length: 589568
Connection: keep-alive
Last-Modified: Thu, 10 Nov 2022 18:09:34 GMT
ETag: "2ce873962ff5d81:0"
X-Powered-By: ASP.NET
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mkkqJhisgU3eU3AkBxqeSuWgiwqu1d5KQpi95NmqRRySYCx1O9og3pEIQKkc7Akmx97WL8CmM3pDAkq7SIHYmc%2Bpfomnl2TefC%2Bicz%2F3Ega7bLPx7c9BrutmEN%2Fb22xC"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77621a024c9d1c02-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6700
Expires: Thu, 08 Dec 2022 04:26:04 GMT
Date: Thu, 08 Dec 2022 02:34:24 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6700
Expires: Thu, 08 Dec 2022 04:26:04 GMT
Date: Thu, 08 Dec 2022 02:34:24 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6700
Expires: Thu, 08 Dec 2022 04:26:04 GMT
Date: Thu, 08 Dec 2022 02:34:24 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6700
Expires: Thu, 08 Dec 2022 04:26:04 GMT
Date: Thu, 08 Dec 2022 02:34:24 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6700
Expires: Thu, 08 Dec 2022 04:26:04 GMT
Date: Thu, 08 Dec 2022 02:34:24 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F377ab47f-a48d-4112-a562-b49a358636f1.png
200 OK 4.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F377ab47f-a48d-4112-a562-b49a358636f1.png
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2f5ce4070e5050733be6bded399afe53
77cf1dd30e86f5568a8e64cb42f536cf2af9301c
7fe19657e1add41e913e9a326023ff484180ca17615175ddc5d2ab57217566bc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F377ab47f-a48d-4112-a562-b49a358636f1.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4538
x-amzn-requestid: 143f359f-c0fd-4d32-8de5-cc2c2804bb39
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cy4gIHzXoAMFqmg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6391079a-27db2e3c6de7216e3c17caea;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 21:37:30 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ba2tqr7qzoTbVkNM_hFETgyCLbCLvAEQjFA2jSU83qYRz6j-uIpk6Q==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 22:14:58 GMT
age: 15566
etag: "77cf1dd30e86f5568a8e64cb42f536cf2af9301c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F95d68d20-ce48-4bc4-a89b-d42a294520bc.jpeg
200 OK 6.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F95d68d20-ce48-4bc4-a89b-d42a294520bc.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 077c8b656d9ac4ecba7aea40ecaa4e0c
84b9d58a1cf4174f1a55b1c3475a09d579094f19
abf13120589f3c11466a6b3f65874565a78b3a25b047b2089dafdae0cdf71c08
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F95d68d20-ce48-4bc4-a89b-d42a294520bc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6656
x-amzn-requestid: 623488c8-42b4-43d0-a274-f35f4e2695c6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cy4AwH11IAMFfCw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639106d1-1226750c2e9dbe517b1211e3;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 21:34:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Wvq8PJEuXz7Yf5QE2phHXPYPCLWzIR1MXWiJKyN84yHINqK6H_ZQrQ==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 22:05:39 GMT
age: 16125
etag: "84b9d58a1cf4174f1a55b1c3475a09d579094f19"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2019d3bc-b4a4-4afc-ad84-3ab33b8036ec.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2019d3bc-b4a4-4afc-ad84-3ab33b8036ec.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fbdf939d23b987fd36a86b7a1258b10d
2cad45ad8e56699db3457501cf1e488fe85d479a
285a8a3d3ec439f493ca5d586477c3e3ed3b9e5d7a0133da73c426b69e112cb1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2019d3bc-b4a4-4afc-ad84-3ab33b8036ec.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10861
x-amzn-requestid: ad568a35-9eba-4c6d-a09d-97e518fbf503
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cy4gIFN4oAMFqrw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6391079a-434ca8281e48538e69e72e05;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 21:37:30 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 4MrxT27cyrFqR70ofprhh4FbJAfVpKb787jT3TsH0l7BxQOf2tWh6g==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 22:02:15 GMT
age: 16329
etag: "2cad45ad8e56699db3457501cf1e488fe85d479a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9519925e-95b7-4e66-b317-84c1708c7f84.jpeg
200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9519925e-95b7-4e66-b317-84c1708c7f84.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b87d6543345f73653ed4a49b37d7c959
c4f26846b8b72293368ff16915d49297cf12bbb9
aee6aa42e4b5b83b81f74801ff8f0039fc6d38036f42ee81875813c856cf5eef
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9519925e-95b7-4e66-b317-84c1708c7f84.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8659
x-amzn-requestid: 6f420d07-65d5-4bb2-9f1f-e56025de497b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: czFSYFArIAMF46w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63911c0f-0a295e5c48228d5806b4f107;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 23:04:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: TSh1BNzzIPhWCfYEiqvQJckSPAyhHobe-HK6msEVeEJ1ruX-_rMSSA==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 23:35:32 GMT
age: 10732
etag: "c4f26846b8b72293368ff16915d49297cf12bbb9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e6c8e9d-aef1-4772-8747-82ef7e4ceeb1.jpeg
200 OK 6.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e6c8e9d-aef1-4772-8747-82ef7e4ceeb1.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fb1ea0161d261518c99909aff49e6f58
c3b915cb579b651db25442fea0bbedd0d292c0fc
d877a21abfd883a368da0136c4e56d7f590fa9e9ea09dec3675823211fe56385
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e6c8e9d-aef1-4772-8747-82ef7e4ceeb1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6110
x-amzn-requestid: 2ebf542a-dacc-472a-81c0-0c69cb1ec143
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ctEQAH2doAMFljA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638eb3ff-7173ff7941b57fa163e3cc6b;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 03:16:15 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 5fxuPjC35VBDaymSCPY_iBxDnQY4CFHgolHSmnDhCRUjzw5UzY7ovA==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 04:14:32 GMT
age: 80392
etag: "c3b915cb579b651db25442fea0bbedd0d292c0fc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8a21d707-1bf7-4b7f-a23b-7e8f38dd40c5.jpeg
200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8a21d707-1bf7-4b7f-a23b-7e8f38dd40c5.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3d44d17585c9a536c8da0e75ed90d175
9dc35d0f6b251004bc1ddc83aea9ee71c95aedd1
6d14a5b5c43b39244434560a83a2bfea6604a4d072943b6147293b7adfd1b7b7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8a21d707-1bf7-4b7f-a23b-7e8f38dd40c5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10164
x-amzn-requestid: a0cb7259-0a07-44f5-91cd-e96b8d9c9cac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cnAPOGSnoAMFUUQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638c472e-799b6ee425e29fb70ff7e4ea;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 07:07:26 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 5Q2LRCrEYVZz_KldQARUQ26O1mv0G7rMAPQXGkBzUnERF-WjtZPMJA==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 12:11:17 GMT
age: 51787
etag: "9dc35d0f6b251004bc1ddc83aea9ee71c95aedd1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
collect-v6.51.la/v6/collect?dt=4
200 0 B URL HTTP/1.1 collect-v6.51.la/v6/collect?dt=4
IP
ASN #4837 CHINA UNICOM China169 Backbone
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /v6/collect?dt=4 HTTP/1.1
Host: collect-v6.51.la
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Length: 289
Origin: http://mateemask.net
Connection: keep-alive
Referer: http://mateemask.net/
HTTP/1.1 200
Server: CloudWAF
Date: Thu, 08 Dec 2022 02:34:24 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: HWWAFSESID=f440f81a5f7801b768c; path=/
HWWAFSESTIME=1670466861992; path=/
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Access-Control-Allow-Origin: http://mateemask.net
Access-Control-Allow-Credentials: true
mateemask.net/js/webflow.js
200 OK 0 B URL HTTP/1.1 mateemask.net/js/webflow.js
IP
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /js/webflow.js HTTP/1.1
Host: mateemask.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mateemask.net/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 02:34:22 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: gzip
Last-Modified: Thu, 10 Nov 2022 18:32:00 GMT
ETag: "c387d2b832f5d81:0"
Vary: Accept-Encoding
X-Powered-By: ASP.NET
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 118
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BADVD6rqEeWLPd4AcCALY3ZgC0VVwYNBFt82UYICKMWNgxBvpD%2FwQJrTLQmDAOo0BJcKopsBzvz3W2FNo%2FXVcNLgV0oj7LhH8MpOmpiGoSyLTYkdSgWXDXt1g5nhIoTy"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 776219ffbb291c02-OSL
alt-svc: h2=":443"; ma=60
104.21.92.156
95.101.11.115
104.21.92.156
35.241.9.150
93.184.220.29
103.143.19.103