Report Overview

  1. Submitted URL

    based-dawn-fb4d.cqenceeijatuzatmk.workers.dev/489efdc3-4cd9-49fd-8fbb-ce5173a98a73

  2. IP

    188.114.97.1

    ASN

    #13335 CLOUDFLARENET

  3. Submitted

    2024-05-10 17:23:24

    Access

    public

  4. Website Title

    Suspected phishing site | Cloudflare

  5. Final URL

    based-dawn-fb4d.cqenceeijatuzatmk.workers.dev/489efdc3-4cd9-49fd-8fbb-ce5173a98a73

  6. Tags

  7. urlquery detections

    Suspicious - Sinkholed / Blocked

Detections

  2. urlquery

    2

  3. Network Intrusion Detection

    2

  4. Threat Detection Systems

    8

Domain Summary

Domain / FQDNRankRegisteredFirst SeenLast Seen
based-dawn-fb4d.cqenceeijatuzatmk.workers.devunknown2019-02-082023-08-162024-03-28

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

SeveritySource IPDestination IPAlert
lowClient IP 188.114.96.1
ET INFO Observed Cloudflare workers.dev Domain in TLS SNI
lowClient IP 188.114.96.1
ET INFO Observed Cloudflare workers.dev Domain in TLS SNI

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected


OpenPhish
SeverityIndicatorAlert
mediumbased-dawn-fb4d.cqenceeijatuzatmk.workers.dev/Office365
mediumbased-dawn-fb4d.cqenceeijatuzatmk.workers.dev/Office365
mediumbased-dawn-fb4d.cqenceeijatuzatmk.workers.dev/Office365
mediumbased-dawn-fb4d.cqenceeijatuzatmk.workers.dev/Office365

PhishTank

No alerts detected


mnemonic secure dns

No alerts detected


Quad9 DNS

No alerts detected


ThreatFox

No alerts detected


JavaScript (3)

HTTP Transactions (4)

URLIPResponseSize
based-dawn-fb4d.cqenceeijatuzatmk.workers.dev/cdn-cgi/images/icon-exclamation.png?1376755637
188.114.96.1200 OK452 B
based-dawn-fb4d.cqenceeijatuzatmk.workers.dev/favicon.ico
188.114.96.1200 OK4.4 kB
based-dawn-fb4d.cqenceeijatuzatmk.workers.dev/489efdc3-4cd9-49fd-8fbb-ce5173a98a73
188.114.96.1200 OK4.4 kB
based-dawn-fb4d.cqenceeijatuzatmk.workers.dev/cdn-cgi/styles/cf.errors.css
188.114.96.1200 OK24 kB