Report - 154.23.179.1:8000/appsec_dashboard/c354e9c9ae5321e6b4927bec450c22a7/

Report Overview

Submitted URL
154.23.179.1:8000/appsec_dashboard/c354e9c9ae5321e6b4927bec450c22a7/
IP
154.23.179.1
ASN
#140227 Hong Kong Communications International Co., Limited
Submitted
2024-05-05 11:27:29
Access
public
Website Title
AppSec Scorecard
Final URL
154.23.179.1:8000/appsec_dashboard/c354e9c9ae5321e6b4927bec450c22a7/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
36

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
154.23.179.1:8000	unknown	unknown	No data	No data	7.6 kB	2.5 MB	154.23.179.1
code.ionicframework.com	14473	2013-09-02	2014-02-05	2024-05-03	448 B	263 kB	104.26.6.173
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-05-05	1.1 kB	31 kB	216.58.207.227
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-05-05	455 B	10 kB	142.250.74.106

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-05-05	medium	154.23.179.1	Sinkholed
2024-05-05	medium	154.23.179.1	Sinkholed
2024-05-05	medium	154.23.179.1	Sinkholed
2024-05-05	medium	154.23.179.1	Sinkholed
2024-05-05	medium	154.23.179.1	Sinkholed
2024-05-05	medium	154.23.179.1	Sinkholed
2024-05-05	medium	154.23.179.1	Sinkholed
2024-05-05	medium	154.23.179.1	Sinkholed
2024-05-05	medium	154.23.179.1	Sinkholed
2024-05-05	medium	154.23.179.1	Sinkholed
2024-05-05	medium	154.23.179.1	Sinkholed
2024-05-05	medium	154.23.179.1	Sinkholed
2024-05-05	medium	154.23.179.1	Sinkholed
2024-05-05	medium	154.23.179.1	Sinkholed
2024-05-05	medium	154.23.179.1	Sinkholed
2024-05-05	medium	154.23.179.1	Sinkholed
2024-05-05	medium	154.23.179.1	Sinkholed
2024-05-05	medium	154.23.179.1	Sinkholed

ThreatFox

No alerts detected

JavaScript (11)

	URL	Size	First Seen	Last Seen
	154.23.179.1:8000/static/chartjs/chartjs-gauge.js	12 kB	2024-05-05	2024-05-05
Pretty URL 154.23.179.1:8000/static/chartjs/chartjs-gauge.js IP 154.23.179.1 ASN #140227 Hong Kong Communications International Co., Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-05 13:27:35 Last Seen2024-05-05 13:27:36 Times Seen2 Hash 1d4f82fcc956c60c3b09b13e579ebd84 bb6357e2fbfb78d3d077bdca67b15b1b792935ac 0169489489765680dfaa84d01d044180aed387a2c95cf610385b20d2e14f0d36 Loading...

	154.23.179.1:8000/appsec_dashboard/c354e9c9ae5321e6b4927bec450c22a7/	44 B	2023-04-01	2024-05-05
Pretty URL 154.23.179.1:8000/appsec_dashboard/c354e9c9ae5321e6b4927bec450c22a7/ IP 154.23.179.1 ASN #140227 Hong Kong Communications International Co., Limited Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-01 10:57:34 Last Seen2024-05-05 13:27:35 Times Seen16 Hash 1d0b96d16eead002194833b16eca5d96 65d0e98f07ff5db8e260141d2fa612514ac91acb c4d5a0f3c41df1a5578e0dacc58318e27108e3c84c2f469ec3fea7b6a686d863 Loading...

	154.23.179.1:8000/static/adminlte/plugins/jquery.min.js	90 kB	2023-03-07	2024-05-18
Pretty URL 154.23.179.1:8000/static/adminlte/plugins/jquery.min.js IP 154.23.179.1 ASN #140227 Hong Kong Communications International Co., Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:27 Last Seen2024-05-18 00:29:21 Times Seen5073 Hash 12b69d0ae6c6f0c42942ae6da2896e84 d2cc8d43ce1c854b1172e42b1209502ad563db83 6150a35c0f486c46cadf0e230e2aa159c7c23ecfbb5611b64ee3f25fcbff341f Loading...

	154.23.179.1:8000/appsec_dashboard/c354e9c9ae5321e6b4927bec450c22a7/	103 B	2024-05-05	2024-05-05
Pretty URL 154.23.179.1:8000/appsec_dashboard/c354e9c9ae5321e6b4927bec450c22a7/ IP 154.23.179.1 ASN #140227 Hong Kong Communications International Co., Limited Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-05 13:27:35 Last Seen2024-05-05 13:27:35 Times Seen1 Hash 381cc7833d722babe92bca1a4fc4924d 6f7ef144a789d567e73c9a13444c99e15d6fd409 2de9c185bc2558a60191d5280ddc41a183f794e5b37302694e1791d2430bb306 Loading...

	154.23.179.1:8000/static/adminlte/plugins/bootstrap/bootstrap.bundle.min.js	79 kB	2023-03-07	2024-05-18
Pretty URL 154.23.179.1:8000/static/adminlte/plugins/bootstrap/bootstrap.bundle.min.js IP 154.23.179.1 ASN #140227 Hong Kong Communications International Co., Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:59 Last Seen2024-05-18 19:24:35 Times Seen15781 Hash a454220fc07088bf1fdd19313b6bfd50 265a733cb7fbc481fd2510a659a85ad55c93c895 7f3145c87d3570154f633975e8a4f8d30aa38603edaba145501e9c90ddbe186c Loading...

	154.23.179.1:8000/static/adminlte/plugins/overlayScrollbars/js/jquery.overlayScrollbars.min.js	42 kB	2023-03-14	2024-05-05
Pretty URL 154.23.179.1:8000/static/adminlte/plugins/overlayScrollbars/js/jquery.overlayScrollbars.min.js IP 154.23.179.1 ASN #140227 Hong Kong Communications International Co., Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 19:14:36 Last Seen2024-05-05 13:27:36 Times Seen37 Hash b9248cb54d63e2b173e6fafc3d1654c4 8d3d4c908db775e6e9dd658250f1e1ec3a80b81a 92d19fd35b64fd48bbd5b3d31dca62b260a164542fe5af298cf05037233c7749 Loading...

	154.23.179.1:8000/static/chartjs/Chart.bundle.js	695 kB	2024-05-05	2024-05-05
Pretty URL 154.23.179.1:8000/static/chartjs/Chart.bundle.js IP 154.23.179.1 ASN #140227 Hong Kong Communications International Co., Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-05 13:27:36 Last Seen2024-05-05 13:27:36 Times Seen2 Hash 356260bbfdff666efd3c2482356223f8 dc69a226529e4a21d9e9efd4485a0b98bd73ecdd 105377e0809444ec0abff8a029d4cccc5bffc5f8c785cd4cadd9faeb73dc3386 Loading...

	154.23.179.1:8000/static/adminlte/plugins/jquery-ui.min.js	254 kB	2023-03-07	2024-05-18
Pretty URL 154.23.179.1:8000/static/adminlte/plugins/jquery-ui.min.js IP 154.23.179.1 ASN #140227 Hong Kong Communications International Co., Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:19:34 Last Seen2024-05-18 18:16:25 Times Seen7321 Hash c15b1008dec3c8967ea657a7bb4baaec 78489e580adaef931e6e5b131dab556c397e4a1a 28ce75d953678c4942df47a11707a15e3c756021cf89090e3e6aa7ad6b6971c3 Loading...

	154.23.179.1:8000/static/adminlte/dashboard/js/adminlte.min.js	24 kB	2023-03-08	2024-05-05
Pretty URL 154.23.179.1:8000/static/adminlte/dashboard/js/adminlte.min.js IP 154.23.179.1 ASN #140227 Hong Kong Communications International Co., Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 12:02:01 Last Seen2024-05-05 13:27:36 Times Seen13 Hash 13bf932ea26e92b6182b1d1ab974eebf 01e603f6d6e6b33ed77b114ef0e23a583f960018 fd26ef754ba89459ae243babe0b1c979e1ee99b6e3a2a21a528920e49dd75652 Loading...

	154.23.179.1:8000/appsec_dashboard/c354e9c9ae5321e6b4927bec450c22a7/	2.4 kB	2024-05-05	2024-05-05
Pretty URL 154.23.179.1:8000/appsec_dashboard/c354e9c9ae5321e6b4927bec450c22a7/ IP 154.23.179.1 ASN #140227 Hong Kong Communications International Co., Limited Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-05 13:27:36 Last Seen2024-05-05 13:27:36 Times Seen1 Hash 74622dce30b3b8956071264784d3fba8 93c50f55106cc54fc268fa1769d622a70b86e9d7 7bfc317eb02ade1368d0960eeed9c8bb53f7fb73d23da12de86df03f20528a29 Loading...

	154.23.179.1:8000/static/jqueryknob/jquery.knob.min.js	11 kB	2023-03-07	2024-05-17
Pretty URL 154.23.179.1:8000/static/jqueryknob/jquery.knob.min.js IP 154.23.179.1 ASN #140227 Hong Kong Communications International Co., Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01:33 Last Seen2024-05-17 15:11:05 Times Seen206 Hash e708020309de1747a08957f691324ac8 4df8f239f9a18fcdd446d2238e6c1b0e32ea52d5 db5e38abe34e33f5d4e99c52a914c9f0fd16fc2918eb35dcea65d8b78fa617db Loading...

HTTP Transactions (22)

URL IP Response Size

154.23.179.1:8000/appsec_dashboard/c354e9c9ae5321e6b4927bec450c22a7/

154.23.179.1

200 OK

52 kB

URL User Request GET HTTP/1.1
154.23.179.1:8000/appsec_dashboard/c354e9c9ae5321e6b4927bec450c22a7/
IP
154.23.179.1:8000
ASN
#140227 Hong Kong Communications International Co., Limited

File type
HTML document, Unicode text, UTF-8 text, with very long lines (336)
Size
52 kB (51489 bytes)
Hash
52db9d2ccb5f74003e2914062ca98259
f75472c09a0dd6ca994f13de8ffe52e6fe65ac07
2baa520cd15e55d524f96c5bfef48473daf790c106d49bde4c4259bc7bebf65a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /appsec_dashboard/c354e9c9ae5321e6b4927bec450c22a7/ HTTP/1.1
Host: 154.23.179.1:8000
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: gunicorn
Date: Sun, 05 May 2024 11:27:02 GMT
Connection: keep-alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=utf-8

154.23.179.1:8000/static/others/css/spinner.css

154.23.179.1

200 OK

4.3 kB

URL GET HTTP/1.1
154.23.179.1:8000/static/others/css/spinner.css
IP
154.23.179.1:8000
ASN
#140227 Hong Kong Communications International Co., Limited

Requested by
http://154.23.179.1:8000/appsec_dashboard/c354e9c9ae5321e6b4927bec450c22a7/

File type
ASCII text
Size
4.3 kB (4281 bytes)
Hash
60aae40bc1df5cde4dad89f07de0b604
0b8c4acb62a492290eca872242b849f4808cfc06
0c174293aa45c20df3a2b1c0c9c83288086f245a15f64031a22755d3cc09d05a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/others/css/spinner.css HTTP/1.1
Host: 154.23.179.1:8000
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://154.23.179.1:8000/appsec_dashboard/c354e9c9ae5321e6b4927bec450c22a7/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: gunicorn
Date: Sun, 05 May 2024 11:27:03 GMT
Connection: keep-alive
Content-Type: text/css; charset="utf-8"
Cache-Control: max-age=60, public
Access-Control-Allow-Origin: *
Last-Modified: Sat, 09 Mar 2024 21:19:26 GMT
ETag: "65ecd25e-10b9"
Content-Length: 4281

154.23.179.1:8000/static/adminlte/plugins/fontawesome-free/css/all.min.css

154.23.179.1

200 OK

57 kB

URL GET HTTP/1.1
154.23.179.1:8000/static/adminlte/plugins/fontawesome-free/css/all.min.css
IP
154.23.179.1:8000
ASN
#140227 Hong Kong Communications International Co., Limited

Requested by
http://154.23.179.1:8000/appsec_dashboard/c354e9c9ae5321e6b4927bec450c22a7/

File type
ASCII text, with very long lines (56656)
Size
57 kB (56842 bytes)
Hash
41d394990448b2c2b1afe840e837dc8e
29250ef1fa6bfbda364a1112a86b2fb7157dd44b
f8de3f57f49b005896d4c3c10979df9cff5048ddfe29ebbe36507ed1ebff60a4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/adminlte/plugins/fontawesome-free/css/all.min.css HTTP/1.1
Host: 154.23.179.1:8000
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://154.23.179.1:8000/appsec_dashboard/c354e9c9ae5321e6b4927bec450c22a7/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: gunicorn
Date: Sun, 05 May 2024 11:27:03 GMT
Connection: keep-alive
Content-Type: text/css; charset="utf-8"
Cache-Control: max-age=60, public
Access-Control-Allow-Origin: *
Last-Modified: Sat, 09 Mar 2024 21:19:26 GMT
ETag: "65ecd25e-de0a"
Content-Length: 56842

154.23.179.1:8000/static/adminlte/plugins/overlayScrollbars/css/OverlayScrollbars.min.css

154.23.179.1

200 OK

20 kB

URL GET HTTP/1.1
154.23.179.1:8000/static/adminlte/plugins/overlayScrollbars/css/OverlayScrollbars.min.css
IP
154.23.179.1:8000
ASN
#140227 Hong Kong Communications International Co., Limited

Requested by
http://154.23.179.1:8000/appsec_dashboard/c354e9c9ae5321e6b4927bec450c22a7/

File type
ASCII text, with very long lines (19243)
Size
20 kB (19470 bytes)
Hash
eecdf1a424a68e5ee7c2a5c2ab9d62f1
7d7cdccce8b7b79df4e812380d06408ce335992d
7df82b8eed52fe2aa69b1adf0feb904d177286ce98568bfc496c401cf2d37614

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/adminlte/plugins/overlayScrollbars/css/OverlayScrollbars.min.css HTTP/1.1
Host: 154.23.179.1:8000
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://154.23.179.1:8000/appsec_dashboard/c354e9c9ae5321e6b4927bec450c22a7/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: gunicorn
Date: Sun, 05 May 2024 11:27:03 GMT
Connection: keep-alive
Content-Type: text/css; charset="utf-8"
Cache-Control: max-age=60, public
Access-Control-Allow-Origin: *
Last-Modified: Sat, 09 Mar 2024 21:19:26 GMT
ETag: "65ecd25e-4c0e"
Content-Length: 19470

154.23.179.1:8000/static/adminlte/plugins/overlayScrollbars/js/jquery.overlayScrollbars.min.js

154.23.179.1

200 OK

42 kB

URL GET HTTP/1.1
154.23.179.1:8000/static/adminlte/plugins/overlayScrollbars/js/jquery.overlayScrollbars.min.js
IP
154.23.179.1:8000
ASN
#140227 Hong Kong Communications International Co., Limited

Requested by
http://154.23.179.1:8000/appsec_dashboard/c354e9c9ae5321e6b4927bec450c22a7/

File type
JavaScript source, ASCII text, with very long lines (41849)
Size
42 kB (42076 bytes)
Hash
b9248cb54d63e2b173e6fafc3d1654c4
8d3d4c908db775e6e9dd658250f1e1ec3a80b81a
92d19fd35b64fd48bbd5b3d31dca62b260a164542fe5af298cf05037233c7749

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/adminlte/plugins/overlayScrollbars/js/jquery.overlayScrollbars.min.js HTTP/1.1
Host: 154.23.179.1:8000
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://154.23.179.1:8000/appsec_dashboard/c354e9c9ae5321e6b4927bec450c22a7/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: gunicorn
Date: Sun, 05 May 2024 11:27:04 GMT
Connection: keep-alive
Content-Type: text/javascript; charset="utf-8"
Cache-Control: max-age=60, public
Access-Control-Allow-Origin: *
Last-Modified: Sat, 09 Mar 2024 21:19:26 GMT
ETag: "65ecd25e-a45c"
Content-Length: 42076

154.23.179.1:8000/static/adminlte/dashboard/js/adminlte.min.js

154.23.179.1

200 OK

24 kB

URL GET HTTP/1.1
154.23.179.1:8000/static/adminlte/dashboard/js/adminlte.min.js
IP
154.23.179.1:8000
ASN
#140227 Hong Kong Communications International Co., Limited

Requested by
http://154.23.179.1:8000/appsec_dashboard/c354e9c9ae5321e6b4927bec450c22a7/

File type
JavaScript source, ASCII text, with very long lines (23479)
Size
24 kB (23706 bytes)
Hash
13bf932ea26e92b6182b1d1ab974eebf
01e603f6d6e6b33ed77b114ef0e23a583f960018
fd26ef754ba89459ae243babe0b1c979e1ee99b6e3a2a21a528920e49dd75652

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/adminlte/dashboard/js/adminlte.min.js HTTP/1.1
Host: 154.23.179.1:8000
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://154.23.179.1:8000/appsec_dashboard/c354e9c9ae5321e6b4927bec450c22a7/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: gunicorn
Date: Sun, 05 May 2024 11:27:04 GMT
Connection: keep-alive
Content-Type: text/javascript; charset="utf-8"
Cache-Control: max-age=60, public
Access-Control-Allow-Origin: *
Last-Modified: Sat, 09 Mar 2024 21:19:26 GMT
ETag: "65ecd25e-5c9a"
Content-Length: 23706

154.23.179.1:8000/static/adminlte/plugins/jquery.min.js

154.23.179.1

200 OK

90 kB

URL GET HTTP/1.1
154.23.179.1:8000/static/adminlte/plugins/jquery.min.js
IP
154.23.179.1:8000
ASN
#140227 Hong Kong Communications International Co., Limited

Requested by
http://154.23.179.1:8000/appsec_dashboard/c354e9c9ae5321e6b4927bec450c22a7/

File type
JavaScript source, ASCII text, with very long lines (65451)
Size
90 kB (89475 bytes)
Hash
12b69d0ae6c6f0c42942ae6da2896e84
d2cc8d43ce1c854b1172e42b1209502ad563db83
6150a35c0f486c46cadf0e230e2aa159c7c23ecfbb5611b64ee3f25fcbff341f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/adminlte/plugins/jquery.min.js HTTP/1.1
Host: 154.23.179.1:8000
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://154.23.179.1:8000/appsec_dashboard/c354e9c9ae5321e6b4927bec450c22a7/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: gunicorn
Date: Sun, 05 May 2024 11:27:04 GMT
Connection: keep-alive
Content-Type: text/javascript; charset="utf-8"
Cache-Control: max-age=60, public
Access-Control-Allow-Origin: *
Last-Modified: Sat, 09 Mar 2024 21:19:26 GMT
ETag: "65ecd25e-15d83"
Content-Length: 89475

code.ionicframework.com/ionicons/2.0.1/css/ionicons.min.css

104.26.6.173

200 OK

262 kB

URL GET HTTP/2
code.ionicframework.com/ionicons/2.0.1/css/ionicons.min.css
IP
104.26.6.173:443
ASN
#13335 CLOUDFLARENET

Requested by
http://154.23.179.1:8000/appsec_dashboard/c354e9c9ae5321e6b4927bec450c22a7/
Certificate
IssuerLet's Encrypt
Subjectionicframework.com
Fingerprint17:47:17:DD:40:82:11:D1:3F:4D:04:70:0E:52:2A:C1:E2:E3:09:FE
ValidityMon, 29 Apr 2024 02:27:17 GMT - Sun, 28 Jul 2024 02:27:16 GMT

File type
Unicode text, UTF-8 text, with very long lines (50806)
Size
262 kB (261674 bytes)
Hash
1690997909aae14b023a6580d4a2f33f
a4fd9551382a3b5c9c43e14adb8c4c4149cd2352
92ac508220f5bb60ec94e07650528eb66625f82a4740ada068cde05365781286

HTTP Headers

GET /ionicons/2.0.1/css/ionicons.min.css HTTP/1.1
Host: code.ionicframework.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://154.23.179.1:8000/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 05 May 2024 11:27:03 GMT
content-type: text/css; charset=utf-8
last-modified: Thu, 13 Apr 2023 16:20:19 GMT
access-control-allow-origin: *
etag: W/"64382bc3-c854"
expires: Tue, 30 Apr 2024 02:17:26 GMT
cache-control: max-age=31536000
x-proxy-cache: MISS
x-github-request-id: 2DC4:0E9A:3AD287E:3C854E3:66305259
age: 48061
via: 1.1 varnish
x-served-by: cache-osl6539-OSL
x-cache: HIT
x-cache-hits: 0
x-timer: S1714860362.100154,VS0,VE19
vary: Accept-Encoding
x-fastly-request-id: 4a3ac1baa436113291809d62d9590917b1fac0dc
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0YLc0I5aCyur7ik5%2F4gQFjStHR%2BOgSo5%2BM6GYIaqJsAefi52W37B7MRluq4%2B0CaRd2%2FR2hmt4Cm2KB87Q%2F2KcHUTNEMnCdeSeGY7bQUctRdUVVZEcXdNRhkT5d%2Fa3mkSPEwtChHwKVXv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87f0610e48d956b9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

154.23.179.1:8000/static/chartjs/chartjs-gauge.js

154.23.179.1

200 OK

12 kB

URL GET HTTP/1.1
154.23.179.1:8000/static/chartjs/chartjs-gauge.js
IP
154.23.179.1:8000
ASN
#140227 Hong Kong Communications International Co., Limited

Requested by
http://154.23.179.1:8000/appsec_dashboard/c354e9c9ae5321e6b4927bec450c22a7/

File type
JavaScript source, ASCII text
Size
12 kB (11519 bytes)
Hash
1d4f82fcc956c60c3b09b13e579ebd84
bb6357e2fbfb78d3d077bdca67b15b1b792935ac
0169489489765680dfaa84d01d044180aed387a2c95cf610385b20d2e14f0d36

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/chartjs/chartjs-gauge.js HTTP/1.1
Host: 154.23.179.1:8000
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://154.23.179.1:8000/appsec_dashboard/c354e9c9ae5321e6b4927bec450c22a7/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: gunicorn
Date: Sun, 05 May 2024 11:27:04 GMT
Connection: keep-alive
Content-Type: text/javascript; charset="utf-8"
Cache-Control: max-age=60, public
Access-Control-Allow-Origin: *
Last-Modified: Sat, 09 Mar 2024 21:19:26 GMT
ETag: "65ecd25e-2cff"
Content-Length: 11519

154.23.179.1:8000/static/adminlte/plugins/bootstrap/bootstrap.bundle.min.js

154.23.179.1

200 OK

79 kB

URL GET HTTP/1.1
154.23.179.1:8000/static/adminlte/plugins/bootstrap/bootstrap.bundle.min.js
IP
154.23.179.1:8000
ASN
#140227 Hong Kong Communications International Co., Limited

Requested by
http://154.23.179.1:8000/appsec_dashboard/c354e9c9ae5321e6b4927bec450c22a7/

File type
JavaScript source, ASCII text, with very long lines (65297)
Size
79 kB (78635 bytes)
Hash
a454220fc07088bf1fdd19313b6bfd50
265a733cb7fbc481fd2510a659a85ad55c93c895
7f3145c87d3570154f633975e8a4f8d30aa38603edaba145501e9c90ddbe186c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/adminlte/plugins/bootstrap/bootstrap.bundle.min.js HTTP/1.1
Host: 154.23.179.1:8000
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://154.23.179.1:8000/appsec_dashboard/c354e9c9ae5321e6b4927bec450c22a7/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: gunicorn
Date: Sun, 05 May 2024 11:27:04 GMT
Connection: keep-alive
Content-Type: text/javascript; charset="utf-8"
Cache-Control: max-age=60, public
Access-Control-Allow-Origin: *
Last-Modified: Sat, 09 Mar 2024 21:19:26 GMT
ETag: "65ecd25e-1332b"
Content-Length: 78635

154.23.179.1:8000/static/jqueryknob/jquery.knob.min.js

154.23.179.1

200 OK

11 kB

URL GET HTTP/1.1
154.23.179.1:8000/static/jqueryknob/jquery.knob.min.js
IP
154.23.179.1:8000
ASN
#140227 Hong Kong Communications International Co., Limited

Requested by
http://154.23.179.1:8000/appsec_dashboard/c354e9c9ae5321e6b4927bec450c22a7/

File type
JavaScript source, ASCII text, with very long lines (10804), with no line terminators
Size
11 kB (10804 bytes)
Hash
e708020309de1747a08957f691324ac8
4df8f239f9a18fcdd446d2238e6c1b0e32ea52d5
db5e38abe34e33f5d4e99c52a914c9f0fd16fc2918eb35dcea65d8b78fa617db

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/jqueryknob/jquery.knob.min.js HTTP/1.1
Host: 154.23.179.1:8000
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://154.23.179.1:8000/appsec_dashboard/c354e9c9ae5321e6b4927bec450c22a7/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: gunicorn
Date: Sun, 05 May 2024 11:27:04 GMT
Connection: keep-alive
Content-Type: text/javascript; charset="utf-8"
Cache-Control: max-age=60, public
Access-Control-Allow-Origin: *
Last-Modified: Sat, 09 Mar 2024 21:19:26 GMT
ETag: "65ecd25e-2a34"
Content-Length: 10804

154.23.179.1:8000/static/adminlte/dashboard/css/adminlte.min.css

154.23.179.1

200 OK

603 kB

URL GET HTTP/1.1
154.23.179.1:8000/static/adminlte/dashboard/css/adminlte.min.css
IP
154.23.179.1:8000
ASN
#140227 Hong Kong Communications International Co., Limited

Requested by
http://154.23.179.1:8000/appsec_dashboard/c354e9c9ae5321e6b4927bec450c22a7/

File type
ASCII text, with very long lines (65141)
Size
603 kB (602813 bytes)
Hash
910ac55aefb30feb1e68afb805213a3e
85a868fa4f880d51104775004f059955da73af3b
12f9018fd11c48eb11d1d3714b2459351e29bfadaefd08199ea31165de8be29d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/adminlte/dashboard/css/adminlte.min.css HTTP/1.1
Host: 154.23.179.1:8000
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://154.23.179.1:8000/appsec_dashboard/c354e9c9ae5321e6b4927bec450c22a7/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: gunicorn
Date: Sun, 05 May 2024 11:27:03 GMT
Connection: keep-alive
Content-Type: text/css; charset="utf-8"
Cache-Control: max-age=60, public
Access-Control-Allow-Origin: *
Last-Modified: Sat, 09 Mar 2024 21:19:26 GMT
ETag: "65ecd25e-932bd"
Content-Length: 602813

154.23.179.1:8000/static/chartjs/Chart.bundle.js

154.23.179.1

200 OK

695 kB

URL GET HTTP/1.1
154.23.179.1:8000/static/chartjs/Chart.bundle.js
IP
154.23.179.1:8000
ASN
#140227 Hong Kong Communications International Co., Limited

Requested by
http://154.23.179.1:8000/appsec_dashboard/c354e9c9ae5321e6b4927bec450c22a7/

File type
JavaScript source, ASCII text
Size
695 kB (695035 bytes)
Hash
356260bbfdff666efd3c2482356223f8
dc69a226529e4a21d9e9efd4485a0b98bd73ecdd
105377e0809444ec0abff8a029d4cccc5bffc5f8c785cd4cadd9faeb73dc3386

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/chartjs/Chart.bundle.js HTTP/1.1
Host: 154.23.179.1:8000
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://154.23.179.1:8000/appsec_dashboard/c354e9c9ae5321e6b4927bec450c22a7/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: gunicorn
Date: Sun, 05 May 2024 11:27:04 GMT
Connection: keep-alive
Content-Type: text/javascript; charset="utf-8"
Cache-Control: max-age=60, public
Access-Control-Allow-Origin: *
Last-Modified: Sat, 09 Mar 2024 21:19:26 GMT
ETag: "65ecd25e-a9afb"
Content-Length: 695035

154.23.179.1:8000/static/img/mobsf_icon.png

154.23.179.1

200 OK

6.6 kB

URL GET HTTP/1.1
154.23.179.1:8000/static/img/mobsf_icon.png
IP
154.23.179.1:8000
ASN
#140227 Hong Kong Communications International Co., Limited

Requested by
http://154.23.179.1:8000/appsec_dashboard/c354e9c9ae5321e6b4927bec450c22a7/

File type
PNG image data, 246 x 210, 8-bit/color RGBA, non-interlaced
Size
6.6 kB (6608 bytes)
Hash
6f7516137b3c49da81d620517acdce03
f5e4f1bb9dd3a567869e8eb932e8e330cac463ed
5cf1a81102271847f151ee21887ffda8394a553200c1716599e869e99c8b8b83

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/img/mobsf_icon.png HTTP/1.1
Host: 154.23.179.1:8000
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://154.23.179.1:8000/appsec_dashboard/c354e9c9ae5321e6b4927bec450c22a7/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: gunicorn
Date: Sun, 05 May 2024 11:27:05 GMT
Connection: keep-alive
Content-Type: image/png
Cache-Control: max-age=60, public
Access-Control-Allow-Origin: *
Last-Modified: Sat, 09 Mar 2024 21:19:26 GMT
ETag: "65ecd25e-19d0"
Content-Length: 6608

fonts.gstatic.com/s/sourcesanspro/v22/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2

216.58.207.227

200 OK

15 kB

URL GET HTTP/2
fonts.gstatic.com/s/sourcesanspro/v22/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
http://154.23.179.1:8000/appsec_dashboard/c354e9c9ae5321e6b4927bec450c22a7/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 14892, version 1.0
Size
15 kB (14892 bytes)
Hash
9ec6deaf6bada919e20b98f9f7b718b1
501d36403ad8205e4644532600019ecb10f5cb0a
7b348b30ea1fe43857e68fc462c29e5c6e63c97666af75135c4396a272e54762

HTTP Headers

GET /s/sourcesanspro/v22/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://154.23.179.1:8000
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14892
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 May 2024 10:17:48 GMT
expires: Sat, 03 May 2025 10:17:48 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 01 Jun 2023 22:52:56 GMT
content-type: font/woff2
age: 176958
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/sourcesanspro/v22/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2

216.58.207.227

200 OK

15 kB

URL GET HTTP/2
fonts.gstatic.com/s/sourcesanspro/v22/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
http://154.23.179.1:8000/appsec_dashboard/c354e9c9ae5321e6b4927bec450c22a7/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 14712, version 1.0
Size
15 kB (14712 bytes)
Hash
3afeae0d768769f5e5f30ac9805c5b70
3ada17c2b462db3e7a1fd85c3f4670dfe7704f4d
0d0a6262c545e8bbc895116e5afb22579c468d7abb77e378f377d6fed57c1dce

HTTP Headers

GET /s/sourcesanspro/v22/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://154.23.179.1:8000
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14712
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 18:02:35 GMT
expires: Fri, 02 May 2025 18:02:35 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 01 Jun 2023 22:52:57 GMT
content-type: font/woff2
age: 235471
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

154.23.179.1:8000/static/adminlte/plugins/fontawesome-free/webfonts/fa-brands-400.woff2

154.23.179.1

200 OK

75 kB

URL GET HTTP/1.1
154.23.179.1:8000/static/adminlte/plugins/fontawesome-free/webfonts/fa-brands-400.woff2
IP
154.23.179.1:8000
ASN
#140227 Hong Kong Communications International Co., Limited

Requested by
http://154.23.179.1:8000/appsec_dashboard/c354e9c9ae5321e6b4927bec450c22a7/

File type
Web Open Font Format (Version 2), TrueType, length 75336, version 330.32636
Size
75 kB (75336 bytes)
Hash
cccc9d29470e879e40eb70249d9a2705
5fe986cda635681b4b6bbd6111df2f26d7fca286
d3caf12591d194712facd10bca14f0a924edb59c24447a3fd994a48286db8843

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/adminlte/plugins/fontawesome-free/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: 154.23.179.1:8000
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: http://154.23.179.1:8000/static/adminlte/plugins/fontawesome-free/css/all.min.css
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: gunicorn
Date: Sun, 05 May 2024 11:27:06 GMT
Connection: keep-alive
Content-Type: font/woff2
Cache-Control: max-age=60, public
Access-Control-Allow-Origin: *
Last-Modified: Sat, 09 Mar 2024 21:19:26 GMT
ETag: "65ecd25e-12648"
Content-Length: 75336

154.23.179.1:8000/download/c354e9c9ae5321e6b4927bec450c22a7-icon.png

154.23.179.1

200 OK

54 kB

URL GET HTTP/1.1
154.23.179.1:8000/download/c354e9c9ae5321e6b4927bec450c22a7-icon.png
IP
154.23.179.1:8000
ASN
#140227 Hong Kong Communications International Co., Limited

Requested by
http://154.23.179.1:8000/appsec_dashboard/c354e9c9ae5321e6b4927bec450c22a7/

File type
PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced
Size
54 kB (54474 bytes)
Hash
9a1a7b8a50825f6e341fda2694e37591
4cbd8970c312cf88d1adeb05c5c822d449a4d299
2405b4f0f840b0e7c56b21930ede2992ff57b8235bd793b093ac35eb9c080252

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /download/c354e9c9ae5321e6b4927bec450c22a7-icon.png HTTP/1.1
Host: 154.23.179.1:8000
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://154.23.179.1:8000/appsec_dashboard/c354e9c9ae5321e6b4927bec450c22a7/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: gunicorn
Date: Sun, 05 May 2024 11:27:05 GMT
Connection: keep-alive
Content-Type: image/png
Content-Length: 54474

154.23.179.1:8000/static/adminlte/plugins/fontawesome-free/webfonts/fa-solid-900.woff2

154.23.179.1

200 OK

76 kB

URL GET HTTP/1.1
154.23.179.1:8000/static/adminlte/plugins/fontawesome-free/webfonts/fa-solid-900.woff2
IP
154.23.179.1:8000
ASN
#140227 Hong Kong Communications International Co., Limited

Requested by
http://154.23.179.1:8000/appsec_dashboard/c354e9c9ae5321e6b4927bec450c22a7/

File type
Web Open Font Format (Version 2), TrueType, length 75728, version 330.32636
Size
76 kB (75728 bytes)
Hash
44d537ab79f921fde5a28b2c1636f397
b2879f9e1d0985a96842bf7f55a2b2cc4c636d04
3d1080625d3030e88357b3ac9aa377dcec23f1b529c4ad03f7a9a435ccae04be

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/adminlte/plugins/fontawesome-free/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: 154.23.179.1:8000
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: http://154.23.179.1:8000/static/adminlte/plugins/fontawesome-free/css/all.min.css
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: gunicorn
Date: Sun, 05 May 2024 11:27:06 GMT
Connection: keep-alive
Content-Type: font/woff2
Cache-Control: max-age=60, public
Access-Control-Allow-Origin: *
Last-Modified: Sat, 09 Mar 2024 21:19:26 GMT
ETag: "65ecd25e-127d0"
Content-Length: 75728

154.23.179.1:8000/static/img/favicon.ico

154.23.179.1

200 OK

370 kB

URL GET HTTP/1.1
154.23.179.1:8000/static/img/favicon.ico
IP
154.23.179.1:8000
ASN
#140227 Hong Kong Communications International Co., Limited

Requested by
http://154.23.179.1:8000/appsec_dashboard/c354e9c9ae5321e6b4927bec450c22a7/

File type
MS Windows icon resource - 6 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel
Size
370 kB (370070 bytes)
Hash
b4c0f27b1b8ca2f2fe903c0661dfc4e6
cb86ba4b04bcaccf4df7b77443d9da405b4133bb
49d4c44292ffe6c30273d925e86377837c9236bf1d8c1dd1bad61fcde50edf1f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/img/favicon.ico HTTP/1.1
Host: 154.23.179.1:8000
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://154.23.179.1:8000/appsec_dashboard/c354e9c9ae5321e6b4927bec450c22a7/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: gunicorn
Date: Sun, 05 May 2024 11:27:06 GMT
Connection: keep-alive
Content-Type: image/x-icon
Cache-Control: max-age=60, public
Access-Control-Allow-Origin: *
Last-Modified: Sat, 09 Mar 2024 21:19:26 GMT
ETag: "65ecd25e-5a596"
Content-Length: 370070

154.23.179.1:8000/static/adminlte/plugins/jquery-ui.min.js

154.23.179.1

200 OK

254 kB

URL GET HTTP/1.1
154.23.179.1:8000/static/adminlte/plugins/jquery-ui.min.js
IP
154.23.179.1:8000
ASN
#140227 Hong Kong Communications International Co., Limited

Requested by
http://154.23.179.1:8000/appsec_dashboard/c354e9c9ae5321e6b4927bec450c22a7/

File type
JavaScript source, ASCII text, with very long lines (32074)
Size
254 kB (253669 bytes)
Hash
c15b1008dec3c8967ea657a7bb4baaec
78489e580adaef931e6e5b131dab556c397e4a1a
28ce75d953678c4942df47a11707a15e3c756021cf89090e3e6aa7ad6b6971c3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/adminlte/plugins/jquery-ui.min.js HTTP/1.1
Host: 154.23.179.1:8000
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://154.23.179.1:8000/appsec_dashboard/c354e9c9ae5321e6b4927bec450c22a7/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: gunicorn
Date: Sun, 05 May 2024 11:27:04 GMT
Connection: keep-alive
Content-Type: text/javascript; charset="utf-8"
Cache-Control: max-age=60, public
Access-Control-Allow-Origin: *
Last-Modified: Sat, 09 Mar 2024 21:19:26 GMT
ETag: "65ecd25e-3dee5"
Content-Length: 253669

fonts.googleapis.com/css?family=Source+Sans+Pro:300,400,400i,700

142.250.74.106

200 OK

9.5 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Source+Sans+Pro:300,400,400i,700
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
http://154.23.179.1:8000/appsec_dashboard/c354e9c9ae5321e6b4927bec450c22a7/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
ASCII text, with very long lines (9733), with no line terminators
Size
9.5 kB (9509 bytes)
Hash
bdda5a3a4603330a56c4dfc9eef017a1
3a9538c488abd3076771c696d82b5c30384b25dc
e0743b660689e512f7ecb7d99cb7fc23f08f2211ee510b66f43525e4e286f5e0

HTTP Headers

GET /css?family=Source+Sans+Pro:300,400,400i,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://154.23.179.1:8000/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 05 May 2024 11:27:03 GMT
date: Sun, 05 May 2024 11:27:03 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (11)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML