| amzn-recover-your-account.github.io/ | 185.199.108.153 | | 97 B |
URL amzn-recover-your-account.github.io/ IP185.199.108.153:0
File typeHTML document, ASCII text Hash1797d8188d635f8da70ef45049b7d972 7deb7e31e72f35c37ee3cca854b5585687445a47 e626d3804fcbb0a4c19f2ada1ef29eff0ef96e3d316c77668998030d8f86b727
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Amazon | OpenPhish | phishing | Amazon.com Inc. |
GET / HTTP/1.1
Host: amzn-recover-your-account.github.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: GitHub.com
content-type: text/html; charset=utf-8
permissions-policy: interest-cohort=()
last-modified: Wed, 10 Mar 2021 00:47:29 GMT
access-control-allow-origin: *
strict-transport-security: max-age=31556952
etag: "60481721-61"
expires: Thu, 18 Apr 2024 00:21:24 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: EE8E:2E541F:595F7E5:5B4C2CB:6620652C
accept-ranges: bytes
age: 595
date: Thu, 18 Apr 2024 06:10:41 GMT
via: 1.1 varnish
x-served-by: cache-hel1410034-HEL
x-cache: HIT
x-cache-hits: 0
x-timer: S1713420642.683489,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: af01351ec934e3aafc6cf240f8cb39c5b8ffcd17
content-length: 97
X-Firefox-Spdy: h2
|
|
| amzn-recover-your-account.github.io/user-resolution/index.html | 185.199.108.153 | 200 OK | 5.4 kB |
URL User Request GET HTTP/2amzn-recover-your-account.github.io/user-resolution/index.html IP185.199.108.153:443
CertificateIssuerDigiCert Inc Subject*.github.io Fingerprint97:D8:C5:70:0F:12:24:6C:88:BC:FA:06:7E:8C:A7:4D:A8:62:67:28 ValidityFri, 15 Mar 2024 00:00:00 GMT - Fri, 14 Mar 2025 23:59:59 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (2071) Hash803b8889e39394a870c517bbd412f221 52de313977d9bd8d725809ea600ae695a612afb8 e1571536a167627776576980c0ffbcb02d4347c225b3c7b58adda7e3dd9c25ca
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Amazon | urlquery | suspicious | Suspicious - Suspicious Javascript code | OpenPhish | phishing | Amazon.com Inc. | PhishTank | phishing | Other |
GET /user-resolution/index.html HTTP/1.1
Host: amzn-recover-your-account.github.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amzn-recover-your-account.github.io/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: text/html; charset=utf-8
permissions-policy: interest-cohort=()
last-modified: Wed, 10 Mar 2021 00:47:29 GMT
access-control-allow-origin: *
strict-transport-security: max-age=31556952
etag: W/"60481721-42ab"
expires: Thu, 18 Apr 2024 06:20:42 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: A0E0:263237:3BFE050:3D3DF3E:6620B961
accept-ranges: bytes
age: 0
date: Thu, 18 Apr 2024 06:10:42 GMT
via: 1.1 varnish
x-served-by: cache-hel1410034-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1713420642.025015,VS0,VE129
vary: Accept-Encoding
x-fastly-request-id: f824bd9c1ec22ba5fd2ab93d05b08d50fea4bb1d
content-length: 5379
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/jquery-form-validator/2.3.26/jquery.form-validator.min.js | 104.17.24.14 | 200 OK | 8.2 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/jquery-form-validator/2.3.26/jquery.form-validator.min.js IP104.17.24.14:443
Requested byhttps://amzn-recover-your-account.github.io/user-resolution/index.html CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (29177) Hash65d26571933bceaf63fb8cc76e7cbee3 ced024e4ee91e3b87f0d068c35008118c7fb60e8 f1264020dbe3f8813dceb1e15a7d5f4a48f2142e413cb310e7a256f4999d949a
GET /ajax/libs/jquery-form-validator/2.3.26/jquery.form-validator.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amzn-recover-your-account.github.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:10:42 GMT
content-type: application/javascript; charset=utf-8
content-length: 8247
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec2-72c7"
last-modified: Mon, 04 May 2020 16:11:46 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 221720
expires: Tue, 08 Apr 2025 06:10:42 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KDOZFatHPplBs%2BteCkgKFJ2umziKcr8rVhDySvS8ivE7Y5y4kePkDto5G4HEnIzRg04DDCIm%2FaDu2S8f9X0idJjatOnP53Bg%2B2O1zu9QRyWcZJ3gyOakXhKMe8ThFIDYLRdKyiRw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87627e45fd9556cb-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ajax.googleapis.com/ajax/libs/jquery/1.10.2/jquery.min.js | 172.217.21.170 | 200 OK | 33 kB |
URL GET HTTP/2ajax.googleapis.com/ajax/libs/jquery/1.10.2/jquery.min.js IP172.217.21.170:443
Requested byhttps://amzn-recover-your-account.github.io/user-resolution/index.html CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
File typeJavaScript source, ASCII text, with very long lines (32072) Hashe0e0559014b222245deb26b6ae8bd940 e2f3603e23711f6446f278a411d905623d65201e 89a15e9c40bc6b14809f236ee8cd3ed1ea42393c1f6ca55c7855cd779b3f922e
GET /ajax/libs/jquery/1.10.2/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amzn-recover-your-account.github.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 32954
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 23:58:22 GMT
expires: Tue, 15 Apr 2025 23:58:22 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 195140
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| amzn-recover-your-account.github.io/assets/css/main.css | 185.199.108.153 | 200 OK | 31 kB |
URL GET HTTP/2amzn-recover-your-account.github.io/assets/css/main.css IP185.199.108.153:443
Requested byhttps://amzn-recover-your-account.github.io/user-resolution/index.html CertificateIssuerDigiCert Inc Subject*.github.io Fingerprint97:D8:C5:70:0F:12:24:6C:88:BC:FA:06:7E:8C:A7:4D:A8:62:67:28 ValidityFri, 15 Mar 2024 00:00:00 GMT - Fri, 14 Mar 2025 23:59:59 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hash38355fda9095b8f07e0c8ab8745e598f 63ef6de181795f6092c75361c2a047a91e1f702a 5eb6ebdddf1ecf5b1673709cc728fcb55a4b14109f882a188dd219e0d3f35cf1
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Amazon | OpenPhish | phishing | Amazon.com Inc. |
GET /assets/css/main.css HTTP/1.1
Host: amzn-recover-your-account.github.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amzn-recover-your-account.github.io/user-resolution/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: text/css; charset=utf-8
permissions-policy: interest-cohort=()
last-modified: Wed, 10 Mar 2021 00:47:29 GMT
access-control-allow-origin: *
strict-transport-security: max-age=31556952
etag: W/"60481721-2b569"
expires: Thu, 18 Apr 2024 06:20:42 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 7938:29EF9F:420B7E1:4383187:6620B962
accept-ranges: bytes
age: 0
date: Thu, 18 Apr 2024 06:10:42 GMT
via: 1.1 varnish
x-served-by: cache-hel1410034-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1713420642.224354,VS0,VE125
vary: Accept-Encoding
x-fastly-request-id: a9586d8fc8dddf7786dae04d7bbff97c50c03938
content-length: 30829
X-Firefox-Spdy: h2
|
|
| m.media-amazon.com/images/G/01/AUIClients/AmazonUIBaseCSS-sprite_1x-c4a765aedd886dc04d89e7e93b6a02c59ecb7013._V2_.png | 151.101.129.16 | 200 OK | 28 kB |
URL GET HTTP/2m.media-amazon.com/images/G/01/AUIClients/AmazonUIBaseCSS-sprite_1x-c4a765aedd886dc04d89e7e93b6a02c59ecb7013._V2_.png IP151.101.129.16:443
Requested byhttps://amzn-recover-your-account.github.io/user-resolution/index.html CertificateIssuerDigiCert Inc Subjectimages-na.ssl-images-amazon.com FingerprintB6:F4:62:54:F1:7F:55:22:93:2C:25:70:B0:AA:0F:F9:73:11:2D:88 ValidityMon, 18 Mar 2024 00:00:00 GMT - Sun, 09 Mar 2025 23:59:59 GMT
File typePNG image data, 400 x 750, 8-bit colormap, non-interlaced Hash1b5a1fb097715b1604b21aba92ef6a3e c4a765aedd886dc04d89e7e93b6a02c59ecb7013 437e95a363a4291060e34ba170e043274e0155821e9be374f35de3c4f13cbaa5
GET /images/G/01/AUIClients/AmazonUIBaseCSS-sprite_1x-c4a765aedd886dc04d89e7e93b6a02c59ecb7013._V2_.png HTTP/1.1
Host: m.media-amazon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amzn-recover-your-account.github.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/png
x-amz-ir-id: e7813be5-eb12-4625-aa62-cde45e3882bc
cache-control: max-age=630720000,public
last-modified: Fri, 22 Sep 2017 00:23:19 GMT
access-control-allow-origin: *
timing-allow-origin: https://www.amazon.com
expires: Mon, 21 Sep 2043 11:52:38 GMT
x-nginx-cache-status: MISS
accept-ranges: bytes
age: 1045144
date: Thu, 18 Apr 2024 06:10:42 GMT
x-served-by: cache-iad-kjyo7100116-IAD, cache-hel1410032-HEL
x-cache: HIT from fastly, MISS from fastly
server-timing: provider;desc="fy"
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 27972
X-Firefox-Spdy: h2
|
|
| amzn-recover-your-account.github.io/assets/img/amazon.png | 185.199.108.153 | 200 OK | 176 kB |
URL GET HTTP/2amzn-recover-your-account.github.io/assets/img/amazon.png IP185.199.108.153:443
Requested byhttps://amzn-recover-your-account.github.io/user-resolution/index.html CertificateIssuerDigiCert Inc Subject*.github.io Fingerprint97:D8:C5:70:0F:12:24:6C:88:BC:FA:06:7E:8C:A7:4D:A8:62:67:28 ValidityFri, 15 Mar 2024 00:00:00 GMT - Fri, 14 Mar 2025 23:59:59 GMT
File typeMS Windows icon resource - 9 icons, 256x256 with PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced, 32 bits/pixel, -128x-128, 32 bits/pixel Size176 kB (176470 bytes) Hash5146fa7cf9db97fc08c531b8eaa3156a 37a039c14e5cd3c097589b1c39df9b9d7eb934bd 2364bfda73f73d1aceb3073e546d8a711a6b07888fb95534f40820664030bd40
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Amazon | OpenPhish | phishing | Amazon.com Inc. |
GET /assets/img/amazon.png HTTP/1.1
Host: amzn-recover-your-account.github.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amzn-recover-your-account.github.io/user-resolution/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/png
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Wed, 10 Mar 2021 00:47:29 GMT
access-control-allow-origin: *
strict-transport-security: max-age=31556952
etag: "60481721-2b156"
expires: Thu, 18 Apr 2024 06:20:42 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 1AD2:2C8D98:5F72173:6186389:6620B962
accept-ranges: bytes
age: 0
date: Thu, 18 Apr 2024 06:10:42 GMT
via: 1.1 varnish
x-served-by: cache-hel1410034-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1713420643.571477,VS0,VE209
vary: Accept-Encoding
x-fastly-request-id: 4e611e1948dad77c26437ae4f541f65c0b569697
content-length: 176470
X-Firefox-Spdy: h2
|
|
| api.bigdatacloud.net/data/network-by-ip?ip=91.90.42.154&localityLanguage=id&key=a3c206f8f431460e940be56dadc88804 | 13.248.207.97 | 403 Forbidden | 91 B |
URL GET HTTP/2api.bigdatacloud.net/data/network-by-ip?ip=91.90.42.154&localityLanguage=id&key=a3c206f8f431460e940be56dadc88804 IP13.248.207.97:443
Requested byhttps://amzn-recover-your-account.github.io/user-resolution/index.html CertificateIssuerAmazon Subject*.bigdatacloud.net FingerprintCC:4B:85:95:A2:50:98:D4:22:87:A0:39:E7:CC:17:6B:F5:8A:C1:7A ValidityMon, 01 Apr 2024 00:00:00 GMT - Tue, 29 Apr 2025 23:59:59 GMT
File typeASCII text, with no line terminators Hashe1cb240a4d036cf2825f189657354e5f 3ce5f4448492c80a1fc5b2860b030a543767c3c6 cd3ab3507d5e02fc27e418582c9d9219631a64dbe3f5815bca9c5088771b5f9d
GET /data/network-by-ip?ip=91.90.42.154&localityLanguage=id&key=a3c206f8f431460e940be56dadc88804 HTTP/1.1
Host: api.bigdatacloud.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://amzn-recover-your-account.github.io
DNT: 1
Connection: keep-alive
Referer: https://amzn-recover-your-account.github.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
date: Thu, 18 Apr 2024 06:10:42 GMT
content-type: application/json
access-control-allow-origin: *
x-response-time-ms: 0.02
X-Firefox-Spdy: h2
|
|
| api.bigdatacloud.net/data/client-info | 13.248.207.97 | 200 OK | 478 B |
URL GET HTTP/2api.bigdatacloud.net/data/client-info IP13.248.207.97:443
Requested byhttps://amzn-recover-your-account.github.io/user-resolution/index.html CertificateIssuerAmazon Subject*.bigdatacloud.net FingerprintCC:4B:85:95:A2:50:98:D4:22:87:A0:39:E7:CC:17:6B:F5:8A:C1:7A ValidityMon, 01 Apr 2024 00:00:00 GMT - Tue, 29 Apr 2025 23:59:59 GMT
File typeASCII text, with very long lines (551), with no line terminators Hashd830691e0a8e4ec88686e22058155bf0 b2056e154d6c84254f547cf9cacb46b3bf828542 9fb39877bd6c0773c7450bc4aa72b3e6d973dec03aeae385a30f99bbb1782f6a
GET /data/client-info HTTP/1.1
Host: api.bigdatacloud.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://amzn-recover-your-account.github.io
DNT: 1
Connection: keep-alive
Referer: https://amzn-recover-your-account.github.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:10:42 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: *
content-encoding: gzip
vary: Accept-Encoding
x-response-time-ms: 4.28
X-Firefox-Spdy: h2
|
|