Report - account.1mb.site/

Report Overview

Visited public
2025-06-18 22:39:42
Tags
Submit Tags
URL
account.1mb.site/
Finishing URL
account.1mb.site/
IP / ASN
146.190.2.74
#14061 DIGITALOCEAN-ASN
Title
1MB / Error

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
account.1mb.site	unknown	2018-09-14	2025-06-18	2025-06-18	970 B	3.6 kB	146.190.2.74
fonts.googleapis.com	8877	2005-01-25	2012-05-23	2025-06-18	471 B	3.2 kB	142.250.178.74
fonts.gstatic.com	unknown	2008-02-11	2014-04-02	2025-06-18	1.1 kB	58 kB	142.250.74.35

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2025-06-18	medium	1mb.site	Sinkholed
2025-06-18	medium	1mb.site	Sinkholed

ThreatFox

No alerts detected

JavaScript (0)

HTTP Transactions (5)

URL IP Response Size

GET account.1mb.site/

146.190.2.74

200 OK

1.5 kB

URL User Request GET
account.1mb.site/
IP
146.190.2.74:443
ASN
#14061 DIGITALOCEAN-ASN

Certificate
IssuerLet's Encrypt
Subject*.1mb.site
Fingerprint50:DA:F2:FE:06:5C:F9:DE:51:CC:40:66:97:15:A4:83:58:37:74:0E
ValiditySun, 30 Mar 2025 22:54:33 GMT - Sat, 28 Jun 2025 22:54:32 GMT

File type
HTML document, ASCII text
Size
1.5 kB (1452 bytes)
Hash
3b670f65276b51809f79f0f2e1cee199
8008f5ac0fd1ddf518b6d89907d7a07b1b9ed3b2
a78ab25d38220f080338d92d7a89d2d77e2badad3717394f04ba69234ce0e80c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: account.1mb.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Wed, 18 Jun 2025 22:39:20 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Set-Cookie: PHPSESSID=t8q8avq25m3a2bnibthc9ib6b1; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Content-Encoding: gzip

GET fonts.googleapis.com/css2?family=Quicksand:wght@400;700&display=swap

142.250.178.74

200 OK

2.5 kB

URL GET
fonts.googleapis.com/css2?family=Quicksand:wght@400;700&display=swap
IP
142.250.178.74:443
ASN
#15169 GOOGLE

Requested by
https://account.1mb.site/
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
FingerprintFF:78:1F:2C:E7:6A:27:90:8B:25:07:97:DD:25:4A:FA:6F:1F:0F:31
ValidityMon, 19 May 2025 08:42:52 GMT - Mon, 11 Aug 2025 08:42:51 GMT

File type
ASCII text
Size
2.5 kB (2502 bytes)
Hash
0a92f3e4448a762ac5b09d0c915577f5
7454acd92dad76ba436abb27531e4f76b5c781b0
d7bcea070bab8569fefa5f9584028ced6ab4eab02fc4ab800126b8049bc1c61e

HTTP Headers

GET /css2?family=Quicksand:wght@400;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://account.1mb.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 18 Jun 2025 22:39:21 GMT
date: Wed, 18 Jun 2025 22:39:21 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET account.1mb.site/favicon.ico

146.190.2.74

200 OK

1.5 kB

URL GET
account.1mb.site/favicon.ico
IP
146.190.2.74:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://account.1mb.site/
Certificate
IssuerLet's Encrypt
Subject*.1mb.site
Fingerprint50:DA:F2:FE:06:5C:F9:DE:51:CC:40:66:97:15:A4:83:58:37:74:0E
ValiditySun, 30 Mar 2025 22:54:33 GMT - Sat, 28 Jun 2025 22:54:32 GMT

File type
HTML document, ASCII text
Size
1.5 kB (1452 bytes)
Hash
3b670f65276b51809f79f0f2e1cee199
8008f5ac0fd1ddf518b6d89907d7a07b1b9ed3b2
a78ab25d38220f080338d92d7a89d2d77e2badad3717394f04ba69234ce0e80c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: account.1mb.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://account.1mb.site/
Cookie: PHPSESSID=t8q8avq25m3a2bnibthc9ib6b1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Wed, 18 Jun 2025 22:39:21 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Content-Encoding: gzip

GET fonts.gstatic.com/s/quicksand/v36/6xKtdSZaM9iE8KbpRA_hK1QN.woff2

142.250.74.35

200 OK

28 kB

URL GET
fonts.gstatic.com/s/quicksand/v36/6xKtdSZaM9iE8KbpRA_hK1QN.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://account.1mb.site/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintE1:0C:8D:E3:24:8F:B1:9F:BA:8E:CF:BE:4B:8F:D6:6A:39:8A:9D:7A
ValidityMon, 19 May 2025 08:42:51 GMT - Mon, 11 Aug 2025 08:42:50 GMT

File type
Web Open Font Format (Version 2), TrueType, length 28360, version 1.0
Size
28 kB (28360 bytes)
Hash
f5533ba6e403a4420497fad8ff9c65ae
d625878704bfe83583edf135a7a0391718b6231d
8192446b20409fc7b5b7b00741bcb77cebcf615a3ee4fabc9ed6396ca88c0595

HTTP Headers

GET /s/quicksand/v36/6xKtdSZaM9iE8KbpRA_hK1QN.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://account.1mb.site
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 28360
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 17 Jun 2025 02:37:52 GMT
expires: Wed, 17 Jun 2026 02:37:52 GMT
cache-control: public, max-age=31536000
age: 158489
last-modified: Tue, 11 Mar 2025 01:07:51 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/quicksand/v36/6xKtdSZaM9iE8KbpRA_hK1QN.woff2

142.250.74.35

200 OK

28 kB

URL GET
fonts.gstatic.com/s/quicksand/v36/6xKtdSZaM9iE8KbpRA_hK1QN.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://account.1mb.site/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintE1:0C:8D:E3:24:8F:B1:9F:BA:8E:CF:BE:4B:8F:D6:6A:39:8A:9D:7A
ValidityMon, 19 May 2025 08:42:51 GMT - Mon, 11 Aug 2025 08:42:50 GMT

File type
Web Open Font Format (Version 2), TrueType, length 28360, version 1.0
Size
28 kB (28360 bytes)
Hash
f5533ba6e403a4420497fad8ff9c65ae
d625878704bfe83583edf135a7a0391718b6231d
8192446b20409fc7b5b7b00741bcb77cebcf615a3ee4fabc9ed6396ca88c0595

HTTP Headers

GET /s/quicksand/v36/6xKtdSZaM9iE8KbpRA_hK1QN.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://account.1mb.site
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 28360
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 17 Jun 2025 02:37:52 GMT
expires: Wed, 17 Jun 2026 02:37:52 GMT
cache-control: public, max-age=31536000
age: 158489
last-modified: Tue, 11 Mar 2025 01:07:51 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (0)

HTTP Transactions (5)

URL User Request GET

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers