Report - luxl.cashappcard.club/c/2ecf914ce8d75b25?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME_

Report Overview

Visited public
2023-10-15 08:00:43
Tags
URL
luxl.cashappcard.club/c/2ecf914ce8d75b25?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Finishing URL
luxl.cashappcard.club/c/2ecf914ce8d75b25?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
IP / ASN
52.19.101.114
#16509 AMAZON-02
Title
Win Cash App 1000$ card

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
tt.stfilecamp.com	unknown	2021-09-06	2022-03-08 16:47:05	2023-09-19 04:00:45	859 B	6.7 kB	205.185.216.10
route.frest.pro	unknown	2022-10-19	2023-01-02 14:11:29	2023-09-19 04:00:45	514 B	750 B	172.67.211.109
cdn.stfilecamp.com	400667	2021-09-06	2021-09-06 17:32:03	2023-09-26 14:12:09	1.2 kB	41 kB	205.185.216.42
stormtrk.com	289095	2019-05-15	2019-05-17 20:09:53	2023-09-20 15:04:54	787 B	33 kB	104.26.5.120
cdn-adef.akamaized.net	125719	2014-03-18	2018-02-06 08:56:01	2023-10-13 18:28:42	6.2 kB	966 kB	184.51.252.165
api.imotech.video	140520	2019-11-08	2021-01-28 14:59:54	2023-10-14 01:49:58	6.4 kB	25 kB	169.136.117.29
cdnjs.claudflare.io	unknown	2021-08-09	2021-08-12 10:01:46	2023-09-19 04:00:44	451 B	92 kB	206.189.196.86
luxl.cashappcard.club	unknown	2023-09-27	2023-10-03 10:00:25	2023-10-15 06:00:30	720 B	163 kB	52.19.101.114

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-10-15	medium	claudflare.io	Sinkholed

ThreatFox

No alerts detected

JavaScript (10)

	URL	From	Size	First Seen	Last Seen
	cdn.stfilecamp.com/fp.min.js	ScriptElement	32 kB	2023-04-06	2025-05-09
Pretty URL cdn.stfilecamp.com/fp.min.js IP 205.185.216.42 ASN #20446 STACKPATH-CDN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-06 21:01 Last Seen2025-05-09 18:17 Times Seen568 Hash 198f2f5b0a649f41fe890c59d37319aa f24629687612889bb59f610df3879afcd766fb80 d2bc2cb800679f495a7731c105b2e2047965800515f98008867ab33edc940912 Loading...

	cdn-adef.akamaized.net/landings/283149/1696402869/js/collector.js?1696402869	ScriptElement	5.6 kB	2023-10-15	2024-08-21
Pretty URL cdn-adef.akamaized.net/landings/283149/1696402869/js/collector.js?1696402869 IP 184.51.252.165 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-15 10:00 Last Seen2024-08-21 04:39 Times Seen9 Hash 93e4a4c9c70b874b19f31dc31f0aaa16 80dd02667e6dbbcb27e9640432206428a08861c2 b9c056ce3df686a7b1462e24754bb83f4b522f167a79f38e6e2e467341c71ad0 Loading...

	cdn.stfilecamp.com/multi_push.js	ScriptElement	1.1 kB	2023-03-07	2024-08-21
Pretty URL cdn.stfilecamp.com/multi_push.js IP 205.185.216.42 ASN #20446 STACKPATH-CDN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2024-08-21 09:42 Times Seen51 Hash a50322f9d3f3fafe3fb02be02285e433 c0a894b3bfa545832c3ad1c2f145005d02e50ac4 cb763e10664b93ac12aaead7af7b0838195e45eb89f678ebb3f5776b147f5d99 Loading...

	tt.stfilecamp.com/jsfiles/site-protect2.0.js	ScriptElement	3.1 kB	2023-03-07	2025-03-07
Pretty URL tt.stfilecamp.com/jsfiles/site-protect2.0.js IP 205.185.216.10 ASN #20446 STACKPATH-CDN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-03-07 04:00 Times Seen89 Hash fc96ab06b0f9fcea6731405215ae5daf 8af9f27d895eb69754919a2fc0d74760fecd3860 9243e166cbcd628fd992eba59544ebf99328fd4db7c0c08c2fb28a7af14d759e Loading...

	cdn.stfilecamp.com/stormtrk.js	ScriptElement	6.8 kB	2023-03-12	2025-03-07
Pretty URL cdn.stfilecamp.com/stormtrk.js IP 205.185.216.42 ASN #20446 STACKPATH-CDN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 06:32 Last Seen2025-03-07 06:00 Times Seen131 Hash 39e5f8ad757fe438c784e8d883e47ab0 6b2905489485100c83605f43186c5843031e1f3b e421906cc3be04e5f6795074c0a91e5a194f218b3f8c57adfed0f4d315dd445a Loading...

	tt.stfilecamp.com/jsfiles/second_back_multi_bigo.js	ScriptElement	2.3 kB	2023-03-08	2024-09-20
Pretty URL tt.stfilecamp.com/jsfiles/second_back_multi_bigo.js IP 205.185.216.10 ASN #20446 STACKPATH-CDN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:39 Last Seen2024-09-20 21:37 Times Seen21 Hash 96af925d55cad494665471c73ac01b04 5d2b1c06d2edb1a1ba9a5335c5dbb73c508b879b 1109fbd42583528695ba5995a756fd0fd09a992a85f50e54862e4b13c1cf75c2 Loading...

	cdnjs.claudflare.io/ajax/libs/jquery/3.6.0/d/jquery.min.js?1696402869	ScriptElement	92 kB	2023-10-15	2023-10-31
Pretty URL cdnjs.claudflare.io/ajax/libs/jquery/3.6.0/d/jquery.min.js?1696402869 IP 206.189.196.86 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-15 10:00 Last Seen2023-10-31 09:00 Times Seen7 Hash b5c3d25047eb3415e401a40da41e5118 d0a4ccdf5cd564dd297e783911dd108e5f6a8ef3 8877058afffb4c9b8bffde8daf79fc766ad4234631f9446ebe1df65d877b34f9 Loading...

	cdn-adef.akamaized.net/landings/283149/1696402869/js/main.js?1696402869	ScriptElement	3.0 kB	2023-10-15	2023-10-15
Pretty URL cdn-adef.akamaized.net/landings/283149/1696402869/js/main.js?1696402869 IP 184.51.252.165 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-15 10:00 Last Seen2023-10-15 10:00 Times Seen1 Hash a8ec5f10e93c84975fb103b372e405e0 f265d416fb7ea301bbe7abe38a7b1524a4e99ba4 a833f1ed0a3196353f40d46c4d1e02ddc27f9b1d02cbbddfd9f7dcd3799d180e Loading...

	luxl.cashappcard.club/c/2ecf914ce8d75b25?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__	ScriptElement	128 B	2023-10-15	2024-08-21
Pretty URL luxl.cashappcard.club/c/2ecf914ce8d75b25?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__ IP 52.19.101.114 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-10-15 10:00 Last Seen2024-08-21 04:39 Times Seen6 Hash 649fd883513ab731dc5ac4453d84bae7 4763c1a9570c74830cc94adfae7077aab12bec86 8f82953bf90a1a2bcd6e591b2157707b83d35e47c943f3f47b46991981e38e8a Loading...

	api.imotech.video/ad/events.js?pixel_id=903883351103051008	ScriptElement	64 kB	2023-10-15	2023-10-29
Pretty URL api.imotech.video/ad/events.js?pixel_id=903883351103051008 IP 169.136.117.29 ASN #10122 BIGO TECHNOLOGY PTE. LTD. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-15 10:00 Last Seen2023-10-29 19:16 Times Seen8 Hash 23dcfaf1121f59dae1a879f3caa81803 b07663ff8d798e149fd233449578e919ae436658 e0e073c811c4eb13048220e8c0cab51d0c447e16ef2d674da9e84bb6cd634726 Loading...

HTTP Transactions (30)

URL IP Response Size

cdn-adef.akamaized.net/landings/283149/1696402869/js/main.js?1696402869

184.51.252.165

200 OK

1.1 kB

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/283149/1696402869/js/main.js?1696402869
IP
184.51.252.165:443
ASN
#20940 Akamai International B.V.

Requested by
https://luxl.cashappcard.club/c/2ecf914ce8d75b25?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
Unicode text, UTF-8 text, with CRLF line terminators
Size
1.1 kB (1094 bytes)
Hash
a8ec5f10e93c84975fb103b372e405e0
f265d416fb7ea301bbe7abe38a7b1524a4e99ba4
a833f1ed0a3196353f40d46c4d1e02ddc27f9b1d02cbbddfd9f7dcd3799d180e

HTTP Headers

GET /landings/283149/1696402869/js/main.js?1696402869 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://luxl.cashappcard.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: 3Gh6lVMpOD+s9jHSdHX9O/67cUQCFBeIvAbeqSCFYMDlfsGtoKQSxTNjxEOnnm0/BTJdpYv91As=
x-amz-request-id: B1RY4JPNST0K95N9
Last-Modified: Wed, 04 Oct 2023 07:01:14 GMT
ETag: "a8ec5f10e93c84975fb103b372e405e0"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sun, 15 Oct 2023 08:00:25 GMT
Content-Length: 1094
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/283149/1696402869/js/collector.js?1696402869

184.51.252.165

200 OK

1.3 kB

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/283149/1696402869/js/collector.js?1696402869
IP
184.51.252.165:443
ASN
#20940 Akamai International B.V.

Requested by
https://luxl.cashappcard.club/c/2ecf914ce8d75b25?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
ASCII text, with CRLF line terminators
Size
1.3 kB (1293 bytes)
Hash
93e4a4c9c70b874b19f31dc31f0aaa16
80dd02667e6dbbcb27e9640432206428a08861c2
b9c056ce3df686a7b1462e24754bb83f4b522f167a79f38e6e2e467341c71ad0

HTTP Headers

GET /landings/283149/1696402869/js/collector.js?1696402869 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://luxl.cashappcard.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: y44+/y3Dsb3jAFLaRnvHk8O6XUeHSz0CqUXUl8htMQSj96mBGLyGDLnya0hmRkHxxYZdmXRh07w=
x-amz-request-id: 9BD4S7ZGGAGMGBT6
Last-Modified: Wed, 04 Oct 2023 07:01:14 GMT
ETag: "93e4a4c9c70b874b19f31dc31f0aaa16"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sun, 15 Oct 2023 08:00:25 GMT
Content-Length: 1293
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/283149/1696402869/css/main.css?1696402869

184.51.252.165

200 OK

2.4 kB

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/283149/1696402869/css/main.css?1696402869
IP
184.51.252.165:443
ASN
#20940 Akamai International B.V.

Requested by
https://luxl.cashappcard.club/c/2ecf914ce8d75b25?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
Unicode text, UTF-8 text, with CRLF line terminators
Size
2.4 kB (2392 bytes)
Hash
f0dfc5da498e33f2eff68037f870fc8d
1dc244a3dc9f415ed32a91d5e47d21271a58653d
77dd6e43e67491c2379f82d030e7d8e2a243faffd5ee8216fd47cc72e6042335

HTTP Headers

GET /landings/283149/1696402869/css/main.css?1696402869 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://luxl.cashappcard.club/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: W2ldzU/09DYxBZA981ScbtDfAzheEcsGuXfsnATdP0cN/B/eVZQEUG4+Z2KfjUCh9I1IOp3zTXM=
x-amz-request-id: XHQ27WQRP2S1MKQ0
Last-Modified: Wed, 04 Oct 2023 07:01:13 GMT
ETag: "f0dfc5da498e33f2eff68037f870fc8d"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: text/css
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sun, 15 Oct 2023 08:00:25 GMT
Content-Length: 2392
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/283149/1696402869/css/reset.css?1696402869

184.51.252.165

200 OK

771 B

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/283149/1696402869/css/reset.css?1696402869
IP
184.51.252.165:443
ASN
#20940 Akamai International B.V.

Requested by
https://luxl.cashappcard.club/c/2ecf914ce8d75b25?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
ASCII text, with CRLF line terminators
Size
771 B (771 bytes)
Hash
c2074f54548d3a792494a9ecf89ab540
40ec9d7ec09fb46cafc688ad39a1c440e98dabfa
52a7ea02e13eb37a355302eb6767a81f93ed49a238b4e4abb6e4c4b0fc0828fa

HTTP Headers

GET /landings/283149/1696402869/css/reset.css?1696402869 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://luxl.cashappcard.club/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: 3d9e87VJOP2ORcsDyhARhrGfIpGdaoN5iWC6/ufFiX+ep/j/i5i/78BfJmbiTSWcWPw2kKHtooc=
x-amz-request-id: J8G2B65VXZ7E3XRX
Last-Modified: Wed, 04 Oct 2023 07:01:13 GMT
ETag: "c2074f54548d3a792494a9ecf89ab540"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: text/css
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sun, 15 Oct 2023 08:00:25 GMT
Content-Length: 771
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

api.imotech.video/ad/events.js?pixel_id=903883351103051008

169.136.117.29

200 OK

22 kB

URL GET HTTP/2
api.imotech.video/ad/events.js?pixel_id=903883351103051008
IP
169.136.117.29:443
ASN
#10122 BIGO TECHNOLOGY PTE. LTD.

Requested by
https://luxl.cashappcard.club/c/2ecf914ce8d75b25?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerGlobalSign nv-sa
Subject*.imotech.video
Fingerprint08:2D:1A:49:D3:E7:0E:CD:C5:00:C3:FA:2D:4F:D0:DB:9B:E6:6B:EE
ValidityWed, 12 Jul 2023 02:46:27 GMT - Mon, 12 Aug 2024 02:46:26 GMT

File type
Unicode text, UTF-8 text, with very long lines (63765), with no line terminators
Size
22 kB (21627 bytes)
Hash
23dcfaf1121f59dae1a879f3caa81803
b07663ff8d798e149fd233449578e919ae436658
e0e073c811c4eb13048220e8c0cab51d0c447e16ef2d674da9e84bb6cd634726

HTTP Headers

GET /ad/events.js?pixel_id=903883351103051008 HTTP/1.1
Host: api.imotech.video
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://luxl.cashappcard.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: openresty/1.13.6.1
date: Sun, 15 Oct 2023 08:00:25 GMT
content-type: application/javascript;charset=utf-8
content-length: 21627
access-control-allow-origin: *
bigotraceresponse: 00-e5d297ef44e0b429cff3e2929b25fed5-0-00
content-encoding: gzip
cache-control: private, max-age=900
X-Firefox-Spdy: h2

cdn-adef.akamaized.net/landings/283149/1696402869/css/animation.css?1696402869

184.51.252.165

200 OK

867 B

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/283149/1696402869/css/animation.css?1696402869
IP
184.51.252.165:443
ASN
#20940 Akamai International B.V.

Requested by
https://luxl.cashappcard.club/c/2ecf914ce8d75b25?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
ASCII text, with CRLF line terminators
Size
867 B (867 bytes)
Hash
c02cb1619580d7b05678eacc83e1041f
cc117679b2ae0d4514a21f31aa801829663decd1
13561506d34e15c1fa8ff62f3157159a759b9325485aabf0b47d795d6145060d

HTTP Headers

GET /landings/283149/1696402869/css/animation.css?1696402869 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://luxl.cashappcard.club/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: yYACF5EjiXs1kck0tEt+A8ojFUhGPGKq6TM557fM0QnBTGtkL/mG9uSWkRLu1u53avBubt35I4I=
x-amz-request-id: YCZ0XFY855QV9PBM
Last-Modified: Wed, 04 Oct 2023 07:01:13 GMT
ETag: "c02cb1619580d7b05678eacc83e1041f"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: text/css
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sun, 15 Oct 2023 08:00:26 GMT
Content-Length: 867
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdnjs.claudflare.io/ajax/libs/jquery/3.6.0/d/jquery.min.js?1696402869

206.189.196.86

200 OK

92 kB

URL GET HTTP/1.1
cdnjs.claudflare.io/ajax/libs/jquery/3.6.0/d/jquery.min.js?1696402869
IP
206.189.196.86:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://luxl.cashappcard.club/c/2ecf914ce8d75b25?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerLet's Encrypt
Subjectcdnjs.claudflare.io
Fingerprint18:7C:79:BA:FF:48:8B:AA:43:33:E2:1F:F8:A6:0C:12:EA:07:A9:13
ValidityWed, 04 Oct 2023 20:01:27 GMT - Tue, 02 Jan 2024 20:01:26 GMT

File type
ASCII text, with very long lines (65447)
Size
92 kB (92013 bytes)
Hash
b5c3d25047eb3415e401a40da41e5118
d0a4ccdf5cd564dd297e783911dd108e5f6a8ef3
8877058afffb4c9b8bffde8daf79fc766ad4234631f9446ebe1df65d877b34f9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ajax/libs/jquery/3.6.0/d/jquery.min.js?1696402869 HTTP/1.1
Host: cdnjs.claudflare.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://luxl.cashappcard.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.22.0 (Ubuntu)
Date: Sun, 15 Oct 2023 08:00:26 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 92013
Connection: keep-alive
Cache-Control: public, max-age=43200
Expires: Sun, 15 Oct 2023 20:00:26 GMT

cdn-adef.akamaized.net/landings/283149/1696402869/images/sparks.png

184.51.252.165

200 OK

20 kB

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/283149/1696402869/images/sparks.png
IP
184.51.252.165:443
ASN
#20940 Akamai International B.V.

Requested by
https://luxl.cashappcard.club/c/2ecf914ce8d75b25?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
PNG image data, 613 x 724, 8-bit colormap, non-interlaced\012- data
Size
20 kB (20132 bytes)
Hash
73752c315eceb6ddd6b8d212f0f8f945
146a3b0ef9a5304cf768b2b09555041fd82f6d22
f47fc00309a6af71a145bf391ba6550c47f8949b61270aaab441dddcb9e6be7b

HTTP Headers

GET /landings/283149/1696402869/images/sparks.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://luxl.cashappcard.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: kOaY9xN4JevLlmMhNcB1AfoMF9LJ84XJ2yQ8UXMyd9RI6EXQzLQHjqFjzj9QuEK7G6G5X56Z73Y=
x-amz-request-id: 5QCXC7DE29B6HTK5
Last-Modified: Wed, 04 Oct 2023 07:01:13 GMT
ETag: "73752c315eceb6ddd6b8d212f0f8f945"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 20132
Date: Sun, 15 Oct 2023 08:00:26 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/283149/1696402869/images/chest-closed.png

184.51.252.165

200 OK

57 kB

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/283149/1696402869/images/chest-closed.png
IP
184.51.252.165:443
ASN
#20940 Akamai International B.V.

Requested by
https://luxl.cashappcard.club/c/2ecf914ce8d75b25?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
PNG image data, 290 x 260, 8-bit/color RGBA, non-interlaced\012- data
Size
57 kB (56644 bytes)
Hash
fc8af1ab78bb423e2623b06d62b8a0a7
db478c5fdf1488a978f1e4a2d09eae53ef86b28a
fce39aa10e7d39afcf436da54716ad4a83d20231112cc5e22260eeb742d3bf02

HTTP Headers

GET /landings/283149/1696402869/images/chest-closed.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://luxl.cashappcard.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: OjAjdWwq2A+6vE2wlyva89UuSj4SPAjdHNtImOD11XXyud56XNFNYbgAx7WKGHg3GUonMC5ziOw=
x-amz-request-id: 67RRWQFTKEH18KCZ
Last-Modified: Wed, 04 Oct 2023 07:01:13 GMT
ETag: "fc8af1ab78bb423e2623b06d62b8a0a7"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 56644
Date: Sun, 15 Oct 2023 08:00:26 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

luxl.cashappcard.club/c/2ecf914ce8d75b25?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__

52.19.101.114

200 OK

163 kB

URL User Request GET HTTP/2
luxl.cashappcard.club/c/2ecf914ce8d75b25?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
IP
52.19.101.114:443
ASN
#16509 AMAZON-02

Certificate
IssuerLet's Encrypt
Subjectluxl.cashappcard.club
FingerprintEF:11:EF:D3:28:65:BF:3D:23:A3:93:22:27:83:B0:61:33:C5:79:D8
ValidityWed, 27 Sep 2023 21:15:22 GMT - Tue, 26 Dec 2023 21:15:21 GMT

File type
gzip compressed data, from Unix\012- data
Size
163 kB (162707 bytes)
Hash
bbdc28f64fda2b41bc2d27dbb7f6a34c
b4cd98120658075d09c1d4859b8c69cc7d0185f4
7c7b4fc1c6dadb4d48135ffd6d367696ffd8c7eb9b8d54e9d9837040753b7459

HTTP Headers

GET /c/2ecf914ce8d75b25?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__ HTTP/1.1
Host: luxl.cashappcard.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 15 Oct 2023 08:00:25 GMT
content-type: text/html; charset=utf-8
set-cookie: unique_id=652b9c190009efa7; Path=/; Expires=Thu, 14 Dec 2023 08:00:25 GMT; Secure; SameSite=None
unique_id2=652b9c190009f77a; Path=/; Expires=Sat, 13 Jan 2024 08:00:25 GMT; Secure; SameSite=None
impression=; Path=/; Expires=Sun, 15 Oct 2023 08:00:25 GMT; Secure; SameSite=None
652b9c190009f77a_sl=[283149]; Path=/; Expires=Sun, 29 Oct 2023 08:00:25 GMT; Secure; SameSite=None
content-encoding: gzip
X-Firefox-Spdy: h2

cdn-adef.akamaized.net/landings/283149/1696402869/images/button-bg.jpg

184.51.252.165

200 OK

12 kB

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/283149/1696402869/images/button-bg.jpg
IP
184.51.252.165:443
ASN
#20940 Akamai International B.V.

Requested by
https://luxl.cashappcard.club/c/2ecf914ce8d75b25?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
JPEG image data, baseline, precision 8, 492x125, components 3\012- data
Size
12 kB (12175 bytes)
Hash
05323dfe73ed4a1b02e147e7e679c4fd
e09f2a2018a66638e2a8636500dfc3e00b7a8c9e
654a51d1b5f027e6523e567e87fd485e42e12d214fae18b0076ba78b19d80902

HTTP Headers

GET /landings/283149/1696402869/images/button-bg.jpg HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn-adef.akamaized.net/landings/283149/1696402869/css/main.css?1696402869
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: eqKQNYcz498K3aOC7eW+CkYO/PxUIdvVFUiPRtIGvl037bab4t0hhAMDD3nwnO7LCSKj9cBCkQ4=
x-amz-request-id: 4DERPZ7HNS11MC3K
Last-Modified: Wed, 04 Oct 2023 07:01:12 GMT
ETag: "05323dfe73ed4a1b02e147e7e679c4fd"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 12175
Date: Sun, 15 Oct 2023 08:00:26 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/283149/1696402869/images/popup-decor-2.png

184.51.252.165

200 OK

145 kB

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/283149/1696402869/images/popup-decor-2.png
IP
184.51.252.165:443
ASN
#20940 Akamai International B.V.

Requested by
https://luxl.cashappcard.club/c/2ecf914ce8d75b25?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
PNG image data, 1003 x 447, 8-bit/color RGBA, non-interlaced\012- data
Size
145 kB (144690 bytes)
Hash
56fe7771e67281cd2557c1cca3cd9aa0
b6e0ed8977b8245433589a6f72cba1f0fe5e8477
e935b15debc750cd2bca3c4c6018231c6b2fc2092f4ea51d9945ec892d77b160

HTTP Headers

GET /landings/283149/1696402869/images/popup-decor-2.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://luxl.cashappcard.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: P1YDqFtfJugzFLeR1FcQIvAIbWiOPclhQtqEvB7mkanb0bMG+R+jaV7OROakb22PWJayiUu5fks=
x-amz-request-id: 67RGB131SJWJM94M
Last-Modified: Wed, 04 Oct 2023 07:01:13 GMT
ETag: "56fe7771e67281cd2557c1cca3cd9aa0"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 144690
Date: Sun, 15 Oct 2023 08:00:26 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/283149/1696402869/images/popup-bg.jpg

184.51.252.165

200 OK

172 kB

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/283149/1696402869/images/popup-bg.jpg
IP
184.51.252.165:443
ASN
#20940 Akamai International B.V.

Requested by
https://luxl.cashappcard.club/c/2ecf914ce8d75b25?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
JPEG image data, baseline, precision 8, 800x700, components 3\012- data
Size
172 kB (172328 bytes)
Hash
04a62d2e54e58cfc58ec19d1e12c543e
031fcd502bbf8a87844014c8bd8018452ceb3c7b
aee0e42eb9f5da6e2fac3c821258a357d02f64db405fcd20b49ff87db5c08470

HTTP Headers

GET /landings/283149/1696402869/images/popup-bg.jpg HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn-adef.akamaized.net/landings/283149/1696402869/css/main.css?1696402869
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: zIMl/vwaZWOPj5+u0/tR+SoIGMhcTpzUJcYn2xhKYLlDfLKPO8YZ61NtrQv9FfRMqOKNnqXSB4Y=
x-amz-request-id: W9JG7RTZQTNPK2C2
Last-Modified: Wed, 04 Oct 2023 07:01:12 GMT
ETag: "04a62d2e54e58cfc58ec19d1e12c543e"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 172328
Date: Sun, 15 Oct 2023 08:00:26 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/283149/1696402869/images/main-bg.jpg

184.51.252.165

200 OK

387 kB

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/283149/1696402869/images/main-bg.jpg
IP
184.51.252.165:443
ASN
#20940 Akamai International B.V.

Requested by
https://luxl.cashappcard.club/c/2ecf914ce8d75b25?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
JPEG image data, baseline, precision 8, 1920x1000, components 3\012- data
Size
387 kB (387168 bytes)
Hash
aadfd0c27e9f8a0b5eace3eb485cc9ca
8f1cc33e8659bdbf89db6a2a974affe3e1b13b53
2a81056dce7871e1bbed9c61726298759b38af93532a060ed6aa97514f9e96d7

HTTP Headers

GET /landings/283149/1696402869/images/main-bg.jpg HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn-adef.akamaized.net/landings/283149/1696402869/css/main.css?1696402869
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: UwZZCf4T1a4ljIiqyZyLOHwqMsmkx4W6cX7F0DLcjGqLAMeg5zLddnHhVSB5p5dEyyJORUNCj7Y=
x-amz-request-id: 67RN4MG2MTTCHEFM
Last-Modified: Wed, 04 Oct 2023 07:01:12 GMT
ETag: "aadfd0c27e9f8a0b5eace3eb485cc9ca"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 387168
Date: Sun, 15 Oct 2023 08:00:26 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

api.imotech.video/bigoad/trackingview?extra=%7B%22action%22%3A%22log_iframe_bbg%22%2C%22pixel_id%22%3A%22903883351103051008%22%2C%22wst%22%3A556%2C%22drt%22%3A1957%2C%22lgt%22%3A1968%7D&pixel_id=log_pixel_id

169.136.117.29

200 OK

104 B

URL POST HTTP/2
api.imotech.video/bigoad/trackingview?extra=%7B%22action%22%3A%22log_iframe_bbg%22%2C%22pixel_id%22%3A%22903883351103051008%22%2C%22wst%22%3A556%2C%22drt%22%3A1957%2C%22lgt%22%3A1968%7D&pixel_id=log_pixel_id
IP
169.136.117.29:443
ASN
#10122 BIGO TECHNOLOGY PTE. LTD.

Requested by
https://luxl.cashappcard.club/c/2ecf914ce8d75b25?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerGlobalSign nv-sa
Subject*.imotech.video
Fingerprint08:2D:1A:49:D3:E7:0E:CD:C5:00:C3:FA:2D:4F:D0:DB:9B:E6:6B:EE
ValidityWed, 12 Jul 2023 02:46:27 GMT - Mon, 12 Aug 2024 02:46:26 GMT

File type
ASCII text, with no line terminators
Size
104 B (104 bytes)
Hash
2ff4936973c33d23c5d450777107b8a4
775e097c927a170b2e92bf9a01d3cee10ea5868f
faa925a9ccf2a9c0e4aa3d6d54138577cf16b9475a9bbe2cd7c0ba3ddd398057

HTTP Headers

POST /bigoad/trackingview?extra=%7B%22action%22%3A%22log_iframe_bbg%22%2C%22pixel_id%22%3A%22903883351103051008%22%2C%22wst%22%3A556%2C%22drt%22%3A1957%2C%22lgt%22%3A1968%7D&pixel_id=log_pixel_id HTTP/1.1
Host: api.imotech.video
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://luxl.cashappcard.club
DNT: 1
Connection: keep-alive
Referer: https://luxl.cashappcard.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers

HTTP/2 200 OK
server: openresty/1.13.6.1
date: Sun, 15 Oct 2023 08:00:26 GMT
content-type: application/json
content-length: 104
bigotraceresponse: 00-02b750d61a1119ba3bb05dc62d972ae7-0-00
X-Firefox-Spdy: h2

tt.stfilecamp.com/jsfiles/second_back_multi_bigo.js

205.185.216.10

200 OK

2.3 kB

URL GET HTTP/1.1
tt.stfilecamp.com/jsfiles/second_back_multi_bigo.js
IP
205.185.216.10:443
ASN
#20446 STACKPATH-CDN

Requested by
https://luxl.cashappcard.club/c/2ecf914ce8d75b25?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerLet's Encrypt
Subjectstfilecamp.com
Fingerprint6B:B2:F3:D7:42:0D:85:30:43:C7:AA:0A:52:05:37:3D:73:88:9B:9C
ValidityFri, 29 Sep 2023 07:01:52 GMT - Thu, 28 Dec 2023 07:01:51 GMT

File type
HTML document, ASCII text
Size
2.3 kB (2307 bytes)
Hash
96af925d55cad494665471c73ac01b04
5d2b1c06d2edb1a1ba9a5335c5dbb73c508b879b
1109fbd42583528695ba5995a756fd0fd09a992a85f50e54862e4b13c1cf75c2

HTTP Headers

GET /jsfiles/second_back_multi_bigo.js HTTP/1.1
Host: tt.stfilecamp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://luxl.cashappcard.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 15 Oct 2023 08:00:26 GMT
Connection: Keep-Alive
Cache-Control: max-age=304
Content-Length: 2307
Content-Type: text/javascript
Last-Modified: Mon, 27 Feb 2023 13:49:23 GMT
Accept-Ranges: bytes
x-rgw-object-type: Normal
etag: "96af925d55cad494665471c73ac01b04"
x-amz-request-id: tx00000cf7ca52cc2912b53-00652b8f3a-7a12decc-nyc3c
strict-transport-security: max-age=15552000; includeSubDomains; preload
Vary: Access-Control-Request-Headers,Access-Control-Request-Method,Origin
X-HW: 1697356826.dop203.sk1.t,1697356826.cds217.sk1.shn,1697356826.dop203.sk1.t,1697356826.cds239.sk1.c

tt.stfilecamp.com/jsfiles/site-protect2.0.js

205.185.216.10

200 OK

3.1 kB

URL GET HTTP/1.1
tt.stfilecamp.com/jsfiles/site-protect2.0.js
IP
205.185.216.10:443
ASN
#20446 STACKPATH-CDN

Requested by
https://luxl.cashappcard.club/c/2ecf914ce8d75b25?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerLet's Encrypt
Subjectstfilecamp.com
Fingerprint6B:B2:F3:D7:42:0D:85:30:43:C7:AA:0A:52:05:37:3D:73:88:9B:9C
ValidityFri, 29 Sep 2023 07:01:52 GMT - Thu, 28 Dec 2023 07:01:51 GMT

File type
ASCII text
Size
3.1 kB (3137 bytes)
Hash
fc96ab06b0f9fcea6731405215ae5daf
8af9f27d895eb69754919a2fc0d74760fecd3860
9243e166cbcd628fd992eba59544ebf99328fd4db7c0c08c2fb28a7af14d759e

HTTP Headers

GET /jsfiles/site-protect2.0.js HTTP/1.1
Host: tt.stfilecamp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://luxl.cashappcard.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 15 Oct 2023 08:00:26 GMT
Connection: Keep-Alive
Cache-Control: max-age=401
Content-Length: 3137
Content-Type: text/javascript
Last-Modified: Mon, 27 Feb 2023 13:49:23 GMT
Accept-Ranges: bytes
x-rgw-object-type: Normal
etag: "fc96ab06b0f9fcea6731405215ae5daf"
x-amz-request-id: tx00000b2f9bcbe87c8cf56-00652b8f9a-7a12809a-nyc3c
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-envoy-upstream-healthchecked-cluster: 
Vary: Access-Control-Request-Headers,Access-Control-Request-Method,Origin
X-HW: 1697356826.dop209.sk1.t,1697356826.cds002.sk1.shn,1697356826.dop209.sk1.t,1697356826.cds231.sk1.c

route.frest.pro/is_redirect

172.67.211.109

200 OK

17 B

URL POST HTTP/2
route.frest.pro/is_redirect
IP
172.67.211.109:443
ASN
#13335 CLOUDFLARENET

Requested by
https://luxl.cashappcard.club/c/2ecf914ce8d75b25?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerGoogle Trust Services LLC
Subjectfrest.pro
FingerprintA1:6D:80:97:81:5F:7D:81:A1:3A:F7:AD:B0:7C:80:EF:AF:09:8F:04
ValiditySun, 08 Oct 2023 16:23:46 GMT - Sat, 06 Jan 2024 16:23:45 GMT

File type
JSON data\012- , ASCII text
Size
17 B (17 bytes)
Hash
6dec798efb56f56f33660938f6249ff6
e889219883cef38754dc1e5df7ca5277b3b314c8
b493cdb3b30ea63f6a924f814dfccfcfe305dac02106f9994ce2bcb2e8ed28c4

HTTP Headers

POST /is_redirect HTTP/1.1
Host: route.frest.pro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 10
Origin: https://luxl.cashappcard.club
DNT: 1
Connection: keep-alive
Referer: https://luxl.cashappcard.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 15 Oct 2023 08:00:26 GMT
content-type: application/json
content-length: 17
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Content-Type, Access-Control-Allow-Headers, X-Requested-With
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DPSq6SZOspsqjSDEqFSrBjJ8O8caNWiJZJgsRi%2FQdP4vr%2FEUMdYrJMRLrUi39kItY0cu%2FgHbfFxsX4gkeQ1%2BPK7huo7PswDU6cgLrP8uyHgJiE9Ay0mNEVwqJphh0Wt%2B99U%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 816687477bfab512-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

api.imotech.video/bigoad/trackingview?extra=%7B%22action%22%3A%22log_no_bbg%22%2C%22pixel_id%22%3A%22903883351103051008%22%2C%22wst%22%3A556%2C%22drt%22%3A1957%2C%22lgt%22%3A2250%7D&pixel_id=log_pixel_id

169.136.117.29

200 OK

104 B

URL POST HTTP/2
api.imotech.video/bigoad/trackingview?extra=%7B%22action%22%3A%22log_no_bbg%22%2C%22pixel_id%22%3A%22903883351103051008%22%2C%22wst%22%3A556%2C%22drt%22%3A1957%2C%22lgt%22%3A2250%7D&pixel_id=log_pixel_id
IP
169.136.117.29:443
ASN
#10122 BIGO TECHNOLOGY PTE. LTD.

Requested by
https://luxl.cashappcard.club/c/2ecf914ce8d75b25?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerGlobalSign nv-sa
Subject*.imotech.video
Fingerprint08:2D:1A:49:D3:E7:0E:CD:C5:00:C3:FA:2D:4F:D0:DB:9B:E6:6B:EE
ValidityWed, 12 Jul 2023 02:46:27 GMT - Mon, 12 Aug 2024 02:46:26 GMT

File type
ASCII text, with no line terminators
Size
104 B (104 bytes)
Hash
aa5ffae5e58ed2d36854950a4a4c4479
f76ceaf49de11334d5669c68199eda64cce654e4
8240c1235c6fe27853323c01289877829a3b6e32a2391e14dccd3345dc8a5a9e

HTTP Headers

POST /bigoad/trackingview?extra=%7B%22action%22%3A%22log_no_bbg%22%2C%22pixel_id%22%3A%22903883351103051008%22%2C%22wst%22%3A556%2C%22drt%22%3A1957%2C%22lgt%22%3A2250%7D&pixel_id=log_pixel_id HTTP/1.1
Host: api.imotech.video
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://luxl.cashappcard.club
DNT: 1
Connection: keep-alive
Referer: https://luxl.cashappcard.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers

HTTP/2 200 OK
server: openresty/1.13.6.1
date: Sun, 15 Oct 2023 08:00:26 GMT
content-type: application/json
content-length: 104
bigotraceresponse: 00-3cbec45ec4274a9ca48ee4dfc045b39f-0-00
X-Firefox-Spdy: h2

api.imotech.video/bigoad/trackingview?it=1697356827315&title=Win%20Cash%20App%201000%24%20card&referer=&resolution=1024*1280&lang=en-US&url=https%3A%2F%2Fluxl.cashappcard.club%2Fc%2F2ecf914ce8d75b25%3Fcid%3D__SID__%26sub1%3D__CAMPAIGN_NAME__%26sub2%3D__SID__%26sub3%3D__GROUP_NAME__%26sub4%3D__AD_ID__%26sub5%3D__APPID__%26sub6%3D__GAID__%26sub7%3D__AD_EXT__%26source_id%3D__PUBLISHER_ID__%26aff_sub%3D__CAMPAIGN_NAME__%26s1%3D__CAMPAIGN_NAME__%26sid%3D__CAMPAIGN_NAME__&host=luxl.cashappcard.club&cookie_id=BA1.1.7550034406.1697356827&session_id=BA1.1.5823131576.1697356827&pixel_id=903883351103051008&timestamp_ms=1697356827315&extra=%7B%22action%22%3A%22init%22%2C%22configId%22%3A%22903883351103051008%22%2C%22wst%22%3A556%2C%22drt%22%3A1957%2C%22lgt%22%3A1966%7D

169.136.117.29

200 OK

104 B

URL POST HTTP/2
api.imotech.video/bigoad/trackingview?it=1697356827315&title=Win%20Cash%20App%201000%24%20card&referer=&resolution=1024*1280&lang=en-US&url=https%3A%2F%2Fluxl.cashappcard.club%2Fc%2F2ecf914ce8d75b25%3Fcid%3D__SID__%26sub1%3D__CAMPAIGN_NAME__%26sub2%3D__SID__%26sub3%3D__GROUP_NAME__%26sub4%3D__AD_ID__%26sub5%3D__APPID__%26sub6%3D__GAID__%26sub7%3D__AD_EXT__%26source_id%3D__PUBLISHER_ID__%26aff_sub%3D__CAMPAIGN_NAME__%26s1%3D__CAMPAIGN_NAME__%26sid%3D__CAMPAIGN_NAME__&host=luxl.cashappcard.club&cookie_id=BA1.1.7550034406.1697356827&session_id=BA1.1.5823131576.1697356827&pixel_id=903883351103051008&timestamp_ms=1697356827315&extra=%7B%22action%22%3A%22init%22%2C%22configId%22%3A%22903883351103051008%22%2C%22wst%22%3A556%2C%22drt%22%3A1957%2C%22lgt%22%3A1966%7D
IP
169.136.117.29:443
ASN
#10122 BIGO TECHNOLOGY PTE. LTD.

Requested by
https://luxl.cashappcard.club/c/2ecf914ce8d75b25?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerGlobalSign nv-sa
Subject*.imotech.video
Fingerprint08:2D:1A:49:D3:E7:0E:CD:C5:00:C3:FA:2D:4F:D0:DB:9B:E6:6B:EE
ValidityWed, 12 Jul 2023 02:46:27 GMT - Mon, 12 Aug 2024 02:46:26 GMT

File type
ASCII text, with no line terminators
Size
104 B (104 bytes)
Hash
60b13aa47283b07cdd06585ef39a76d4
6e0abdf9914b709d74dbd91e661fd1a26252ddf0
c200dd18d39a08deadb227b7467d3c85303ab023f85684144ca8703ad9b48784

HTTP Headers

POST /bigoad/trackingview?it=1697356827315&title=Win%20Cash%20App%201000%24%20card&referer=&resolution=1024*1280&lang=en-US&url=https%3A%2F%2Fluxl.cashappcard.club%2Fc%2F2ecf914ce8d75b25%3Fcid%3D__SID__%26sub1%3D__CAMPAIGN_NAME__%26sub2%3D__SID__%26sub3%3D__GROUP_NAME__%26sub4%3D__AD_ID__%26sub5%3D__APPID__%26sub6%3D__GAID__%26sub7%3D__AD_EXT__%26source_id%3D__PUBLISHER_ID__%26aff_sub%3D__CAMPAIGN_NAME__%26s1%3D__CAMPAIGN_NAME__%26sid%3D__CAMPAIGN_NAME__&host=luxl.cashappcard.club&cookie_id=BA1.1.7550034406.1697356827&session_id=BA1.1.5823131576.1697356827&pixel_id=903883351103051008&timestamp_ms=1697356827315&extra=%7B%22action%22%3A%22init%22%2C%22configId%22%3A%22903883351103051008%22%2C%22wst%22%3A556%2C%22drt%22%3A1957%2C%22lgt%22%3A1966%7D HTTP/1.1
Host: api.imotech.video
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://luxl.cashappcard.club
DNT: 1
Connection: keep-alive
Referer: https://luxl.cashappcard.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers

HTTP/2 200 OK
server: openresty/1.13.6.1
date: Sun, 15 Oct 2023 08:00:26 GMT
content-type: application/json
content-length: 104
bigotraceresponse: 00-ca3319c62a3c5ff6322bf32bcb9da833-0-00
X-Firefox-Spdy: h2

api.imotech.video/ad/pixelfile.html

169.136.117.29

200 OK

901 B

URL GET HTTP/2
api.imotech.video/ad/pixelfile.html
IP
169.136.117.29:443
ASN
#10122 BIGO TECHNOLOGY PTE. LTD.

Requested by
https://luxl.cashappcard.club/c/2ecf914ce8d75b25?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerGlobalSign nv-sa
Subject*.imotech.video
Fingerprint08:2D:1A:49:D3:E7:0E:CD:C5:00:C3:FA:2D:4F:D0:DB:9B:E6:6B:EE
ValidityWed, 12 Jul 2023 02:46:27 GMT - Mon, 12 Aug 2024 02:46:26 GMT

File type
gzip compressed data, from Unix\012- data
Size
901 B (901 bytes)
Hash
3ccc50937a9b025a961cac125b2f24c1
ac49399772bc94263308c8112c89c143d3a4b6c7
11eeb2dcf28a0bc57169d9340c8ebbfadecbc10b528dddacf4186cf6f8ba7859

HTTP Headers

GET /ad/pixelfile.html HTTP/1.1
Host: api.imotech.video
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://luxl.cashappcard.club/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: openresty/1.13.6.1
date: Sun, 15 Oct 2023 08:00:26 GMT
content-type: text/html;charset=utf-8
bigotraceresponse: 00-fc3398180ce039c72334999442e20c66-0-00
content-encoding: gzip
X-Firefox-Spdy: h2

cdn-adef.akamaized.net/images/favicon.ico

184.51.252.165

200 OK

4.1 kB

URL GET HTTP/1.1
cdn-adef.akamaized.net/images/favicon.ico
IP
184.51.252.165:443
ASN
#20940 Akamai International B.V.

Requested by
https://luxl.cashappcard.club/c/2ecf914ce8d75b25?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data
Size
4.1 kB (4103 bytes)
Hash
4cdf3256cd7b8ec3917adb79d6bf457e
bc615337e9223183a126c8fb649774866fb53e69
fbfff44a653dc193b93620f1035d221d3aaddf3238742270b3385482986ef7f0

HTTP Headers

GET /images/favicon.ico HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://luxl.cashappcard.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: IjvSRVcJlrA8KRtuHCIvySb7T9M4setamspkp4J4t5oLIH6qyzaHxu8PdVPZHXMCPnB1SRcSZOs=
x-amz-request-id: 9B7689322D7626CA
Last-Modified: Wed, 07 Nov 2018 08:41:38 GMT
ETag: "4cdf3256cd7b8ec3917adb79d6bf457e"
Accept-Ranges: bytes
Content-Type: image/x-icon
Content-Length: 4103
Server: AmazonS3
X-Akamai-EW-Subworker: 8096267
Date: Sun, 15 Oct 2023 08:00:27 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn.stfilecamp.com/multi_push.js

205.185.216.42

200 OK

1.1 kB

URL GET HTTP/1.1
cdn.stfilecamp.com/multi_push.js
IP
205.185.216.42:443
ASN
#20446 STACKPATH-CDN

Requested by
https://luxl.cashappcard.club/c/2ecf914ce8d75b25?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerLet's Encrypt
Subjectstfilecamp.com
FingerprintC8:F2:82:03:44:08:54:DB:7D:D9:9F:D1:7D:8A:97:B3:4D:91:57:32
ValidityTue, 26 Sep 2023 11:10:19 GMT - Mon, 25 Dec 2023 11:10:18 GMT

File type
ASCII text
Size
1.1 kB (1072 bytes)
Hash
a50322f9d3f3fafe3fb02be02285e433
c0a894b3bfa545832c3ad1c2f145005d02e50ac4
cb763e10664b93ac12aaead7af7b0838195e45eb89f678ebb3f5776b147f5d99

HTTP Headers

GET /multi_push.js HTTP/1.1
Host: cdn.stfilecamp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://luxl.cashappcard.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 15 Oct 2023 08:00:27 GMT
Connection: Keep-Alive
Cache-Control: max-age=3600
Content-Length: 1072
Content-Type: text/javascript
Last-Modified: Thu, 07 Jul 2022 14:21:23 GMT
Accept-Ranges: bytes
x-rgw-object-type: Normal
etag: "a50322f9d3f3fafe3fb02be02285e433"
x-amz-request-id: tx00000793466f0d9d4d93b-00652b9c1b-3c6f48ac-sfo3a
strict-transport-security: max-age=15552000; includeSubDomains; preload
Vary: Access-Control-Request-Headers,Access-Control-Request-Method,Origin
X-HW: 1697356826.dop021.sk1.t,1697356826.cds022.sk1.shn,1697356826.dop021.sk1.t,1697356827.cds203.sk1.pr

cdn.stfilecamp.com/stormtrk.js

205.185.216.42

200 OK

6.8 kB

URL GET HTTP/1.1
cdn.stfilecamp.com/stormtrk.js
IP
205.185.216.42:443
ASN
#20446 STACKPATH-CDN

Requested by
https://luxl.cashappcard.club/c/2ecf914ce8d75b25?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerLet's Encrypt
Subjectstfilecamp.com
FingerprintC8:F2:82:03:44:08:54:DB:7D:D9:9F:D1:7D:8A:97:B3:4D:91:57:32
ValidityTue, 26 Sep 2023 11:10:19 GMT - Mon, 25 Dec 2023 11:10:18 GMT

File type
ASCII text
Size
6.8 kB (6807 bytes)
Hash
39e5f8ad757fe438c784e8d883e47ab0
6b2905489485100c83605f43186c5843031e1f3b
e421906cc3be04e5f6795074c0a91e5a194f218b3f8c57adfed0f4d315dd445a

HTTP Headers

GET /stormtrk.js HTTP/1.1
Host: cdn.stfilecamp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://luxl.cashappcard.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 15 Oct 2023 08:00:27 GMT
Connection: Keep-Alive
Cache-Control: max-age=1366
Content-Length: 6807
Content-Type: text/javascript
Last-Modified: Sat, 24 Dec 2022 08:48:24 GMT
Accept-Ranges: bytes
x-rgw-object-type: Normal
etag: "39e5f8ad757fe438c784e8d883e47ab0"
x-amz-request-id: tx0000046bea514019642f1-00652b9361-3c6f48c0-sfo3a
strict-transport-security: max-age=15552000; includeSubDomains; preload
Vary: Access-Control-Request-Headers,Access-Control-Request-Method,Origin
X-HW: 1697356826.dop021.sk1.t,1697356826.cds022.sk1.shn,1697356827.dop021.sk1.t,1697356827.cds014.sk1.c

api.imotech.video/bigoad/trackingview?extra=%7B%22action%22%3A%22log_page_loaded%22%2C%22pixel_num%22%3A%22single%22%2C%22pixel_id%22%3A%22903883351103051008%22%2C%22wst%22%3A556%2C%22drt%22%3A1957%2C%22lgt%22%3A2867%7D&pixel_id=log_pixel_id

169.136.117.29

200 OK

104 B

URL POST HTTP/2
api.imotech.video/bigoad/trackingview?extra=%7B%22action%22%3A%22log_page_loaded%22%2C%22pixel_num%22%3A%22single%22%2C%22pixel_id%22%3A%22903883351103051008%22%2C%22wst%22%3A556%2C%22drt%22%3A1957%2C%22lgt%22%3A2867%7D&pixel_id=log_pixel_id
IP
169.136.117.29:443
ASN
#10122 BIGO TECHNOLOGY PTE. LTD.

Requested by
https://luxl.cashappcard.club/c/2ecf914ce8d75b25?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerGlobalSign nv-sa
Subject*.imotech.video
Fingerprint08:2D:1A:49:D3:E7:0E:CD:C5:00:C3:FA:2D:4F:D0:DB:9B:E6:6B:EE
ValidityWed, 12 Jul 2023 02:46:27 GMT - Mon, 12 Aug 2024 02:46:26 GMT

File type
ASCII text, with no line terminators
Size
104 B (104 bytes)
Hash
2bbf64e756b1794664a9947502cbb060
2f0638f30d5a600166f4b1b2d0c9f50c962e5050
acf1554d3a75fde19ac766340caa2492677b04680d6b0a3daf96ba6368b5494f

HTTP Headers

POST /bigoad/trackingview?extra=%7B%22action%22%3A%22log_page_loaded%22%2C%22pixel_num%22%3A%22single%22%2C%22pixel_id%22%3A%22903883351103051008%22%2C%22wst%22%3A556%2C%22drt%22%3A1957%2C%22lgt%22%3A2867%7D&pixel_id=log_pixel_id HTTP/1.1
Host: api.imotech.video
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://luxl.cashappcard.club
DNT: 1
Connection: keep-alive
Referer: https://luxl.cashappcard.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers

HTTP/2 200 OK
server: openresty/1.13.6.1
date: Sun, 15 Oct 2023 08:00:27 GMT
content-type: application/json
content-length: 104
bigotraceresponse: 00-319499b78d25092d6dc2914063017e25-0-00
X-Firefox-Spdy: h2

stormtrk.com/api/1.0/ping/pong?location=https%3A%2F%2Fluxl.cashappcard.club%2Fc%2F2ecf914ce8d75b25%3Fcid%3D__SID__%26sub1%3D__CAMPAIGN_NAME__%26sub2%3D__SID__%26sub3%3D__GROUP_NAME__%26sub4%3D__AD_ID__%26sub5%3D__APPID__%26sub6%3D__GAID__%26sub7%3D__AD_EXT__%26source_id%3D__PUBLISHER_ID__%26aff_sub%3D__CAMPAIGN_NAME__%26s1%3D__CAMPAIGN_NAME__%26sid%3D__CAMPAIGN_NAME__

104.26.5.120

200 OK

32 kB

URL GET HTTP/2
stormtrk.com/api/1.0/ping/pong?location=https%3A%2F%2Fluxl.cashappcard.club%2Fc%2F2ecf914ce8d75b25%3Fcid%3D__SID__%26sub1%3D__CAMPAIGN_NAME__%26sub2%3D__SID__%26sub3%3D__GROUP_NAME__%26sub4%3D__AD_ID__%26sub5%3D__APPID__%26sub6%3D__GAID__%26sub7%3D__AD_EXT__%26source_id%3D__PUBLISHER_ID__%26aff_sub%3D__CAMPAIGN_NAME__%26s1%3D__CAMPAIGN_NAME__%26sid%3D__CAMPAIGN_NAME__
IP
104.26.5.120:443
ASN
#13335 CLOUDFLARENET

Requested by
https://luxl.cashappcard.club/c/2ecf914ce8d75b25?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint12:CF:2B:DC:A1:B5:77:12:91:68:E8:DD:F0:22:9A:1B:06:84:6A:74
ValidityFri, 09 Dec 2022 00:00:00 GMT - Sat, 09 Dec 2023 23:59:59 GMT

File type
JSON data\012- , ASCII text, with very long lines (485)
Size
32 kB (32048 bytes)
Hash
a3ae6020a4e0e0ab60f0f20ebc5b1c76
ff463803eddc614cb23747fca3e827ff835aa0c1
75fe6e69c36022aa929ebc56bda571006c33d6d626785ba3aa04ba6b8191d02d

HTTP Headers

GET /api/1.0/ping/pong?location=https%3A%2F%2Fluxl.cashappcard.club%2Fc%2F2ecf914ce8d75b25%3Fcid%3D__SID__%26sub1%3D__CAMPAIGN_NAME__%26sub2%3D__SID__%26sub3%3D__GROUP_NAME__%26sub4%3D__AD_ID__%26sub5%3D__APPID__%26sub6%3D__GAID__%26sub7%3D__AD_EXT__%26source_id%3D__PUBLISHER_ID__%26aff_sub%3D__CAMPAIGN_NAME__%26s1%3D__CAMPAIGN_NAME__%26sid%3D__CAMPAIGN_NAME__ HTTP/1.1
Host: stormtrk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://luxl.cashappcard.club
DNT: 1
Connection: keep-alive
Referer: https://luxl.cashappcard.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 15 Oct 2023 08:00:28 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Content-Type, Access-Control-Allow-Headers, X-Requested-With
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=20bKjkFUsaVQTXssR0pMigy9V0HVsBJjoQcQpWcajAb4%2Ba00oKw5w2rdd5NjvPF9iUmcGch2SHgCQ%2F8Tp%2BSWkKjeeWp5AV0lwS6GEryaO7lOU97zDYgNyoG5TAeXbw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8166874cc8abb521-OSL
content-encoding: br
X-Firefox-Spdy: h2

api.imotech.video/bigoad/trackingview?it=1697356827315&title=Win%20Cash%20App%201000%24%20card&referer=&resolution=1024*1280&lang=en-US&url=https%3A%2F%2Fluxl.cashappcard.club%2Fc%2F2ecf914ce8d75b25%3Fcid%3D__SID__%26sub1%3D__CAMPAIGN_NAME__%26sub2%3D__SID__%26sub3%3D__GROUP_NAME__%26sub4%3D__AD_ID__%26sub5%3D__APPID__%26sub6%3D__GAID__%26sub7%3D__AD_EXT__%26source_id%3D__PUBLISHER_ID__%26aff_sub%3D__CAMPAIGN_NAME__%26s1%3D__CAMPAIGN_NAME__%26sid%3D__CAMPAIGN_NAME__&host=luxl.cashappcard.club&cookie_id=BA1.1.7550034406.1697356827&session_id=BA1.1.5823131576.1697356827&pixel_id=903883351103051008&timestamp_ms=1697356841312&extra=%7B%22action%22%3A%22leave%22%2C%22configId%22%3A%22903883351103051008%22%2C%22type%22%3A1%2C%22wst%22%3A556%2C%22drt%22%3A1957%2C%22tdt%22%3A2868%2C%22lgt%22%3A15964%7D

169.136.117.29

104 B

URL
api.imotech.video/bigoad/trackingview?it=1697356827315&title=Win%20Cash%20App%201000%24%20card&referer=&resolution=1024*1280&lang=en-US&url=https%3A%2F%2Fluxl.cashappcard.club%2Fc%2F2ecf914ce8d75b25%3Fcid%3D__SID__%26sub1%3D__CAMPAIGN_NAME__%26sub2%3D__SID__%26sub3%3D__GROUP_NAME__%26sub4%3D__AD_ID__%26sub5%3D__APPID__%26sub6%3D__GAID__%26sub7%3D__AD_EXT__%26source_id%3D__PUBLISHER_ID__%26aff_sub%3D__CAMPAIGN_NAME__%26s1%3D__CAMPAIGN_NAME__%26sid%3D__CAMPAIGN_NAME__&host=luxl.cashappcard.club&cookie_id=BA1.1.7550034406.1697356827&session_id=BA1.1.5823131576.1697356827&pixel_id=903883351103051008&timestamp_ms=1697356841312&extra=%7B%22action%22%3A%22leave%22%2C%22configId%22%3A%22903883351103051008%22%2C%22type%22%3A1%2C%22wst%22%3A556%2C%22drt%22%3A1957%2C%22tdt%22%3A2868%2C%22lgt%22%3A15964%7D
IP
169.136.117.29:0
ASN
#10122 BIGO TECHNOLOGY PTE. LTD.

Certificate
IssuerGlobalSign nv-sa
Subject*.imotech.video
Fingerprint08:2D:1A:49:D3:E7:0E:CD:C5:00:C3:FA:2D:4F:D0:DB:9B:E6:6B:EE
ValidityWed, 12 Jul 2023 02:46:27 GMT - Mon, 12 Aug 2024 02:46:26 GMT

File type
ASCII text, with no line terminators
Size
104 B (104 bytes)
Hash
f8a5e28c5b5eba788a1172b75a4750b7
0ffe6f992d361f520dbc16e5b1a35d20125f6f9a
d59ec48cad89d9e78dc979cf5309977f159ed73cefee889e8130aec9dbf671c3

HTTP Headers

POST /bigoad/trackingview?it=1697356827315&title=Win%20Cash%20App%201000%24%20card&referer=&resolution=1024*1280&lang=en-US&url=https%3A%2F%2Fluxl.cashappcard.club%2Fc%2F2ecf914ce8d75b25%3Fcid%3D__SID__%26sub1%3D__CAMPAIGN_NAME__%26sub2%3D__SID__%26sub3%3D__GROUP_NAME__%26sub4%3D__AD_ID__%26sub5%3D__APPID__%26sub6%3D__GAID__%26sub7%3D__AD_EXT__%26source_id%3D__PUBLISHER_ID__%26aff_sub%3D__CAMPAIGN_NAME__%26s1%3D__CAMPAIGN_NAME__%26sid%3D__CAMPAIGN_NAME__&host=luxl.cashappcard.club&cookie_id=BA1.1.7550034406.1697356827&session_id=BA1.1.5823131576.1697356827&pixel_id=903883351103051008&timestamp_ms=1697356841312&extra=%7B%22action%22%3A%22leave%22%2C%22configId%22%3A%22903883351103051008%22%2C%22type%22%3A1%2C%22wst%22%3A556%2C%22drt%22%3A1957%2C%22tdt%22%3A2868%2C%22lgt%22%3A15964%7D HTTP/1.1
Host: api.imotech.video
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://luxl.cashappcard.club
DNT: 1
Connection: keep-alive
Referer: https://luxl.cashappcard.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers

HTTP/2 200 OK
server: openresty/1.13.6.1
date: Sun, 15 Oct 2023 08:00:40 GMT
content-type: application/json
content-length: 104
bigotraceresponse: 00-20acf5a701e860c65c71d89fdeba9a97-0-00
X-Firefox-Spdy: h2

cdn-adef.akamaized.net/landings/283149/1696402869/images/prize.png

184.51.252.165

200 OK

156 kB

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/283149/1696402869/images/prize.png
IP
184.51.252.165:443
ASN
#20940 Akamai International B.V.

Requested by
https://luxl.cashappcard.club/c/2ecf914ce8d75b25?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
PNG image data, 744 x 450, 8-bit/color RGBA, non-interlaced\012- data
Size
156 kB (156052 bytes)
Hash
b455862233020904c288e800b66d94ae
e748b869561314242c6eb681c2e5235e52d8479a
021aed6b5c3faec547872ebcfdf5698a33ccedf6d5d73aa63f60e27af6e4a579

HTTP Headers

GET /landings/283149/1696402869/images/prize.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://luxl.cashappcard.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: WI8hR1gnGtH9BT56JnOsT07rVX30Dd5oBq9qA2aR7iq+M1u57sS8GZxAJjBNGp/SFMm8gJ1KYeY=
x-amz-request-id: RZ85G8JFNWPH9HCF
Last-Modified: Wed, 04 Oct 2023 07:01:13 GMT
ETag: "b455862233020904c288e800b66d94ae"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 156052
Date: Sun, 15 Oct 2023 08:00:26 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

api.imotech.video/bigoad/trackingview?it=1697356827315&title=Win%20Cash%20App%201000%24%20card&referer=&resolution=1024*1280&lang=en-US&url=https%3A%2F%2Fluxl.cashappcard.club%2Fc%2F2ecf914ce8d75b25%3Fcid%3D__SID__%26sub1%3D__CAMPAIGN_NAME__%26sub2%3D__SID__%26sub3%3D__GROUP_NAME__%26sub4%3D__AD_ID__%26sub5%3D__APPID__%26sub6%3D__GAID__%26sub7%3D__AD_EXT__%26source_id%3D__PUBLISHER_ID__%26aff_sub%3D__CAMPAIGN_NAME__%26s1%3D__CAMPAIGN_NAME__%26sid%3D__CAMPAIGN_NAME__&host=luxl.cashappcard.club&cookie_id=BA1.1.7550034406.1697356827&session_id=BA1.1.5823131576.1697356827&pixel_id=903883351103051008&timestamp_ms=1697356827315&extra=%7B%22action%22%3A%22page_view%22%2C%22configId%22%3A%22903883351103051008%22%2C%22wst%22%3A556%2C%22drt%22%3A1957%2C%22lgt%22%3A1967%7D

169.136.117.29

200 OK

104 B

URL POST HTTP/2
api.imotech.video/bigoad/trackingview?it=1697356827315&title=Win%20Cash%20App%201000%24%20card&referer=&resolution=1024*1280&lang=en-US&url=https%3A%2F%2Fluxl.cashappcard.club%2Fc%2F2ecf914ce8d75b25%3Fcid%3D__SID__%26sub1%3D__CAMPAIGN_NAME__%26sub2%3D__SID__%26sub3%3D__GROUP_NAME__%26sub4%3D__AD_ID__%26sub5%3D__APPID__%26sub6%3D__GAID__%26sub7%3D__AD_EXT__%26source_id%3D__PUBLISHER_ID__%26aff_sub%3D__CAMPAIGN_NAME__%26s1%3D__CAMPAIGN_NAME__%26sid%3D__CAMPAIGN_NAME__&host=luxl.cashappcard.club&cookie_id=BA1.1.7550034406.1697356827&session_id=BA1.1.5823131576.1697356827&pixel_id=903883351103051008&timestamp_ms=1697356827315&extra=%7B%22action%22%3A%22page_view%22%2C%22configId%22%3A%22903883351103051008%22%2C%22wst%22%3A556%2C%22drt%22%3A1957%2C%22lgt%22%3A1967%7D
IP
169.136.117.29:443
ASN
#10122 BIGO TECHNOLOGY PTE. LTD.

Requested by
https://luxl.cashappcard.club/c/2ecf914ce8d75b25?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerGlobalSign nv-sa
Subject*.imotech.video
Fingerprint08:2D:1A:49:D3:E7:0E:CD:C5:00:C3:FA:2D:4F:D0:DB:9B:E6:6B:EE
ValidityWed, 12 Jul 2023 02:46:27 GMT - Mon, 12 Aug 2024 02:46:26 GMT

File type
ASCII text, with no line terminators
Size
104 B (104 bytes)
Hash
db93726f7adcb139e1bf5ae77992ac49
eee71e048844613fef3b93766fc8177b4e432a52
162bfb107b0c22aebb154a089601676d17ea195cc87b66c46a7f7729732b35de

HTTP Headers

POST /bigoad/trackingview?it=1697356827315&title=Win%20Cash%20App%201000%24%20card&referer=&resolution=1024*1280&lang=en-US&url=https%3A%2F%2Fluxl.cashappcard.club%2Fc%2F2ecf914ce8d75b25%3Fcid%3D__SID__%26sub1%3D__CAMPAIGN_NAME__%26sub2%3D__SID__%26sub3%3D__GROUP_NAME__%26sub4%3D__AD_ID__%26sub5%3D__APPID__%26sub6%3D__GAID__%26sub7%3D__AD_EXT__%26source_id%3D__PUBLISHER_ID__%26aff_sub%3D__CAMPAIGN_NAME__%26s1%3D__CAMPAIGN_NAME__%26sid%3D__CAMPAIGN_NAME__&host=luxl.cashappcard.club&cookie_id=BA1.1.7550034406.1697356827&session_id=BA1.1.5823131576.1697356827&pixel_id=903883351103051008&timestamp_ms=1697356827315&extra=%7B%22action%22%3A%22page_view%22%2C%22configId%22%3A%22903883351103051008%22%2C%22wst%22%3A556%2C%22drt%22%3A1957%2C%22lgt%22%3A1967%7D HTTP/1.1
Host: api.imotech.video
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://luxl.cashappcard.club
DNT: 1
Connection: keep-alive
Referer: https://luxl.cashappcard.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 200 OK
server: openresty/1.13.6.1
date: Sun, 15 Oct 2023 08:00:26 GMT
content-type: application/json
content-length: 104
bigotraceresponse: 00-edb866f150406f6902068f53eaf8bfe7-0-00
X-Firefox-Spdy: h2

cdn.stfilecamp.com/fp.min.js

205.185.216.42

200 OK

32 kB

URL GET HTTP/1.1
cdn.stfilecamp.com/fp.min.js
IP
205.185.216.42:443
ASN
#20446 STACKPATH-CDN

Requested by
https://luxl.cashappcard.club/c/2ecf914ce8d75b25?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerLet's Encrypt
Subjectstfilecamp.com
FingerprintC8:F2:82:03:44:08:54:DB:7D:D9:9F:D1:7D:8A:97:B3:4D:91:57:32
ValidityTue, 26 Sep 2023 11:10:19 GMT - Mon, 25 Dec 2023 11:10:18 GMT

File type

Size
32 kB (31705 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /fp.min.js HTTP/1.1
Host: cdn.stfilecamp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://luxl.cashappcard.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 15 Oct 2023 08:00:28 GMT
Connection: Keep-Alive
Cache-Control: max-age=119
Content-Length: 31705
Content-Type: text/javascript
Last-Modified: Mon, 13 Jun 2022 11:23:14 GMT
Accept-Ranges: bytes
x-rgw-object-type: Normal
etag: "198f2f5b0a649f41fe890c59d37319aa"
x-amz-request-id: tx00000c7105acae9337c5b-00652b8e83-3c6f493d-sfo3a
strict-transport-security: max-age=15552000; includeSubDomains; preload
Vary: Access-Control-Request-Headers,Access-Control-Request-Method,Origin
X-HW: 1697356826.dop021.sk1.t,1697356826.cds022.sk1.shn,1697356828.dop021.sk1.t,1697356828.cds237.sk1.c

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (10)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by