Report - ifunnyweb.com/new/auth/jcgxa6/YmdmbnBjQHRlbXBsZWNwYS5jb20=

Report Overview

Visited public
2023-09-30 21:28:16
Tags
phishing microsoft outlook
Submit Tags
URL
ifunnyweb.com/new/auth/jcgxa6/YmdmbnBjQHRlbXBsZWNwYS5jb20=
Finishing URL
closingwithnurezsdoc.click/a5r7/0GOOVcB2NHI8oab6KOZu4NeIik6LrxJCUdPsrmcoLxFKHBX5O2SX2ARKi0Zn9c5TiqLDd1IZLGz6dL0Ng1AR8tI2heC?id=YmdmbnBjQHRlbXBsZWNwYS5jb20=
IP / ASN
38.123.253.191
#395111 KVCNET-2009
Title
TvjtFbOoD2RN1KIfx8qH9fp9HP7J8L2HWSjWitZmRHTaN
Phishing - Microsoft Outlook

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
ifunnyweb.com	unknown	2019-11-08	2014-10-06 23:50:02	2023-09-30 22:41:35	514 B	339 B	38.123.253.191
cdn.jsdelivr.net	439	2012-05-16	2012-09-30 02:15:09	2023-09-29 18:12:39	464 B	26 kB	151.101.65.229
aadcdn.msauthimages.net	4795	2018-11-12	2019-08-14 20:34:06	2023-09-30 05:17:31	1.1 kB	18 kB	152.199.23.72
closingwithnurezsdoc.click	unknown	2023-09-12	2023-09-19 13:15:28	2023-09-30 22:41:41	9.2 kB	301 kB	188.114.96.1

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-09-30	medium	closingwithnurezsdoc.click	Sinkholed
2023-09-30	medium	closingwithnurezsdoc.click	Sinkholed
2023-09-30	medium	closingwithnurezsdoc.click	Sinkholed
2023-09-30	medium	closingwithnurezsdoc.click	Sinkholed
2023-09-30	medium	closingwithnurezsdoc.click	Sinkholed
2023-09-30	medium	closingwithnurezsdoc.click	Sinkholed
2023-09-30	medium	closingwithnurezsdoc.click	Sinkholed
2023-09-30	medium	closingwithnurezsdoc.click	Sinkholed
2023-09-30	medium	closingwithnurezsdoc.click	Sinkholed
2023-09-30	medium	closingwithnurezsdoc.click	Sinkholed
2023-09-30	medium	closingwithnurezsdoc.click	Sinkholed

ThreatFox

No alerts detected

JavaScript (12)

	URL	From	Size	First Seen	Last Seen
	unknown	ScriptElement	35 B	2023-08-22	2024-08-21
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-22 20:31 Last Seen2024-08-21 08:17 Times Seen28556 Hash a8bc5fced60dd7daabc7b81817a69624 088a51b1577626c6aae5eb011c40e339dcc08379 73573a3a9e780ba52d80a82d5502c81502e03c7605f8102340494e36c3b7ae0c Loading...

	data:text/javascript;base64,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	ScriptElement	16 kB	2024-08-21	2024-08-21
Pretty URL data:text/javascript;base64,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 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-21 05:26 Last Seen2024-08-21 05:26 Times Seen1 Hash 5dd02b52733069a01ab7dc2a132b7b7d f58cfdaf378cf8632c4ad9c6c5c65173e00184cb 44138ca500eb183da8f229df10d74c828abc6c50ca30c4cf868d08c5927112f9 Loading...

	closingwithnurezsdoc.click/a5r7/633DF4t2CiH/sc-ppk0pA6brLRKZggfXXiYVILsdwIwBia6v2zERsMEm0N2Lxc3b05Rvui0bmRfS5I6t6e78DKM9krwZ9bD	ScriptElement	32 kB	2023-09-30	2023-09-30
Pretty URL closingwithnurezsdoc.click/a5r7/633DF4t2CiH/sc-ppk0pA6brLRKZggfXXiYVILsdwIwBia6v2zERsMEm0N2Lxc3b05Rvui0bmRfS5I6t6e78DKM9krwZ9bD IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-30 23:28 Last Seen2023-09-30 23:28 Times Seen1 Hash 4ecfc3c41b2959e7fad0af02a919113a bbd3bae37d9e22d17629be312c152946c8ddd84c e629c50b807a11ce7459dd20b4981a8b7bef3ebfe374f505e389513358501d64 Loading...

	closingwithnurezsdoc.click/a5r7/643Y4XWUwVG/jq-w23zreLYkzWTuiPmSFhYAB2EHe69Y0dE9R1RsLF0StIS51ivtmFrt44At2t27XN6TUPzMnk2RV868TOd	ScriptElement	87 kB	2023-03-07	2025-07-17
Pretty URL closingwithnurezsdoc.click/a5r7/643Y4XWUwVG/jq-w23zreLYkzWTuiPmSFhYAB2EHe69Y0dE9R1RsLF0StIS51ivtmFrt44At2t27XN6TUPzMnk2RV868TOd IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10 Last Seen2025-07-17 01:39 Times Seen59317 Hash a46fb81762396b7bf2020774a2fb4d9e fb5edd7a663dc8dda7ec10815a7cd82a30fc98a7 d30b6114fb9496ae46b2a8cdf59379c8ffdb957534bd1dd73e626c7c61c7e67d Loading...

		Size	First Seen	Last Seen
	#1 Eval - 1b7a7c976548f4fc02a61deac0141d5d	1.1 kB	2024-08-21 05:26	2024-08-21 05:26
Pretty Observations First Seen2024-08-21 05:26 Last Seen2024-08-21 05:26 Times Seen1 Hash 1b7a7c976548f4fc02a61deac0141d5d c1ac0ee2577cde6aceae97bce359ba2a67167ec4 21f389a8f1fcb806b5aaf7685819dabeecaf3ed10eacea9aafa60289e280c9d6 Loading...

	#2 Eval - 9e925e9341b490bfd3b4c4ca3b0c1ef2	4 B	2023-03-07 01:03	2025-07-17 09:33
Pretty Observations First Seen2023-03-07 01:03 Last Seen2025-07-17 09:33 Times Seen418857 Hash 9e925e9341b490bfd3b4c4ca3b0c1ef2 c2543fff3bfa6f144c2f06a7de6cd10c0b650cae 1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408 Loading...

	#3 Eval - 15542524ac8365a6f533d1aee99afb8c	519 B	2024-08-21 05:26	2024-08-21 05:26
Pretty Observations First Seen2024-08-21 05:26 Last Seen2024-08-21 05:26 Times Seen1 Hash 15542524ac8365a6f533d1aee99afb8c 9a5e5e6269e843a18dcb55d1625d4c5bc6874ead 0ee3e413841853a6ddec2a3f58fbd19fcee904141641af46d1f09cf5a21c3ca4 Loading...

	#4 Eval - 62e25eae867bb2c422126d57971906fc	163 B	2023-09-22 02:33	2024-08-21 06:07
Pretty Observations First Seen2023-09-22 02:33 Last Seen2024-08-21 06:07 Times Seen7143 Hash 62e25eae867bb2c422126d57971906fc 81d0898bace510a76f96dfea087fbaa5e05235b8 6afa1f750904a72226860727e2f8dd4891abc6dac37bf07bdd60d7afbd207a4a Loading...

		Size	First Seen	Last Seen
	#1 Write - 1b29b5778a5da9f14c5a9688e286da77	4.0 kB	2024-08-21 05:26	2024-08-21 05:26
Pretty Observations First Seen2024-08-21 05:26 Last Seen2024-08-21 05:26 Times Seen1 Hash 1b29b5778a5da9f14c5a9688e286da77 cefc071f00cd43e40bb5d515221159c8e7b776d9 0e987c6d50dd8ad2853cee5525808afd1b0a606caafa03dcc83ae7b2a627bcf8 Loading...

	#2 Write - adfb1bc5b6ba91ec5ab5c54ddc225a7a	3.6 kB	2023-09-22 02:30	2024-08-21 06:07
Pretty Observations First Seen2023-09-22 02:30 Last Seen2024-08-21 06:07 Times Seen41377 Hash adfb1bc5b6ba91ec5ab5c54ddc225a7a 16d4d2247f8f343811417dce829fe7595e73995c ca2d1c64f76c12b39444ddb57fb6a2def9521e9d0d29df80eb309ac34ed23b80 Loading...

	#3 Write - 2d5313d50a9820319b2cece73f4cdb12	1.1 kB	2024-08-21 05:26	2024-08-21 05:26
Pretty Observations First Seen2024-08-21 05:26 Last Seen2024-08-21 05:26 Times Seen1 Hash 2d5313d50a9820319b2cece73f4cdb12 cb729011c1caaa7d7670e2740ed1250af9889beb f6fdeba45b83aa15803006564fa193996c8a3d206cc01601cdb123e71a9db7f0 Loading...

	#4 Write - 6769d4e7cbff1f4f2f5773f244e67c6b	12 kB	2024-08-21 05:26	2024-08-21 05:26
Pretty Observations First Seen2024-08-21 05:26 Last Seen2024-08-21 05:26 Times Seen1 Hash 6769d4e7cbff1f4f2f5773f244e67c6b c59b2922c888140c9da9161d67dfb8c0abf82f1a 24d469c7ec411d27c7e1efe889d58a14597654714806d5c979a57bce631e615c Loading...

HTTP Transactions (15)

URL IP Response Size

ifunnyweb.com/new/auth/jcgxa6/YmdmbnBjQHRlbXBsZWNwYS5jb20=

38.123.253.191

20 B

URL
ifunnyweb.com/new/auth/jcgxa6/YmdmbnBjQHRlbXBsZWNwYS5jb20=
IP
38.123.253.191:0
ASN
#395111 KVCNET-2009

File type
gzip compressed data, from Unix\012- data
Size
20 B (20 bytes)
Hash
7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Microsoft Outlook

HTTP Headers

GET /new/auth/jcgxa6/YmdmbnBjQHRlbXBsZWNwYS5jb20= HTTP/1.1
Host: ifunnyweb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 30 Sep 2023 21:27:59 GMT
Server: Apache
refresh: 0;url=https://closingwithnurezsdoc.click/a5r7/#bgfnpc@templecpa.com
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

cdn.jsdelivr.net/npm/bootstrap@5.0.2/dist/css/bootstrap.min.css

151.101.65.229

25 kB

URL
cdn.jsdelivr.net/npm/bootstrap@5.0.2/dist/css/bootstrap.min.css
IP
151.101.65.229:0
ASN
#54113 FASTLY

File type
Unicode text, UTF-8 text, with very long lines (65306)
Size
25 kB (25360 bytes)
Hash
abe91756d18b7cd60871a2f47c1e8192
7c1c9e0573e5cea8bad3733be2fc63aa8c68ea8d
7633b7c0c97d19e682feee8afa2738523fcb2a14544a550572caeecd2eefe66b

HTTP Headers

GET /npm/bootstrap@5.0.2/dist/css/bootstrap.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://closingwithnurezsdoc.click/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 5.0.2
x-jsd-version-type: version
etag: W/"260c5-fByeBXPlzqi603M74vxjqoxo6o0"
content-encoding: br
accept-ranges: bytes
date: Sat, 30 Sep 2023 21:28:01 GMT
age: 9632524
x-served-by: cache-fra-eddf8230097-FRA, cache-bma1625-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 25360
X-Firefox-Spdy: h2

GET aadcdn.msauthimages.net/dbd5a2dd-aok5oh-v2ksdk8wm-u5opzraed3c78ycc95m77iwcdk/logintenantbranding/0/illustration?ts=638242569085134200

152.199.23.72

200 OK

8.5 kB

URL GET HTTP/2
aadcdn.msauthimages.net/dbd5a2dd-aok5oh-v2ksdk8wm-u5opzraed3c78ycc95m77iwcdk/logintenantbranding/0/illustration?ts=638242569085134200
IP
152.199.23.72:443
ASN
#15133 EDGECAST

Requested by
https://closingwithnurezsdoc.click/a5r7/0GOOVcB2NHI8oab6KOZu4NeIik6LrxJCUdPsrmcoLxFKHBX5O2SX2ARKi0Zn9c5TiqLDd1IZLGz6dL0Ng1AR8tI2heC?id=YmdmbnBjQHRlbXBsZWNwYS5jb20=
Certificate
IssuerMicrosoft Corporation
Subjectaadcdn.msauthimages.net
Fingerprint6B:EB:AC:06:FC:06:82:11:17:1C:6B:72:7D:B5:95:2D:CF:E7:A3:5D
ValidityWed, 08 Mar 2023 11:16:34 GMT - Sat, 02 Mar 2024 11:16:34 GMT

File type
PNG image data, 306 x 130, 8-bit/color RGBA, non-interlaced\012- data
Size
8.5 kB (8546 bytes)
Hash
635d9d8008e2e25b7222743b7c97ca8d
83712c40ae20734435fd500ea93d21f1b48032fc
94a01b67604f657f0751d598a7478387bd1011101d9187d0183d2c655245da32

HTTP Headers

GET /dbd5a2dd-aok5oh-v2ksdk8wm-u5opzraed3c78ycc95m77iwcdk/logintenantbranding/0/illustration?ts=638242569085134200 HTTP/1.1
Host: aadcdn.msauthimages.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://closingwithnurezsdoc.click/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
cache-control: public, max-age=86400
content-md5: Y12dgAji4ltyInQ7fJfKjQ==
content-type: image/*
date: Sat, 30 Sep 2023 21:28:08 GMT
etag: 0x8DB7E3C2AEF7610
last-modified: Thu, 06 Jul 2023 16:15:08 GMT
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: fda61c3e-a01e-002a-2ae5-f39cf2000000
x-ms-version: 2009-09-19
content-length: 8546
X-Firefox-Spdy: h2

GET aadcdn.msauthimages.net/dbd5a2dd-aok5oh-v2ksdk8wm-u5opzraed3c78ycc95m77iwcdk/logintenantbranding/0/bannerlogo?ts=638242571199166733

152.199.23.72

200 OK

8.5 kB

URL GET HTTP/2
aadcdn.msauthimages.net/dbd5a2dd-aok5oh-v2ksdk8wm-u5opzraed3c78ycc95m77iwcdk/logintenantbranding/0/bannerlogo?ts=638242571199166733
IP
152.199.23.72:443
ASN
#15133 EDGECAST

Requested by
https://closingwithnurezsdoc.click/a5r7/0GOOVcB2NHI8oab6KOZu4NeIik6LrxJCUdPsrmcoLxFKHBX5O2SX2ARKi0Zn9c5TiqLDd1IZLGz6dL0Ng1AR8tI2heC?id=YmdmbnBjQHRlbXBsZWNwYS5jb20=
Certificate
IssuerMicrosoft Corporation
Subjectaadcdn.msauthimages.net
Fingerprint6B:EB:AC:06:FC:06:82:11:17:1C:6B:72:7D:B5:95:2D:CF:E7:A3:5D
ValidityWed, 08 Mar 2023 11:16:34 GMT - Sat, 02 Mar 2024 11:16:34 GMT

File type
PNG image data, 306 x 130, 8-bit/color RGBA, non-interlaced\012- data
Size
8.5 kB (8546 bytes)
Hash
635d9d8008e2e25b7222743b7c97ca8d
83712c40ae20734435fd500ea93d21f1b48032fc
94a01b67604f657f0751d598a7478387bd1011101d9187d0183d2c655245da32

HTTP Headers

GET /dbd5a2dd-aok5oh-v2ksdk8wm-u5opzraed3c78ycc95m77iwcdk/logintenantbranding/0/bannerlogo?ts=638242571199166733 HTTP/1.1
Host: aadcdn.msauthimages.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://closingwithnurezsdoc.click/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
cache-control: public, max-age=86400
content-md5: Y12dgAji4ltyInQ7fJfKjQ==
content-type: image/*
date: Sat, 30 Sep 2023 21:28:09 GMT
etag: 0x8DB7E3CA920F5C0
last-modified: Thu, 06 Jul 2023 16:18:40 GMT
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 760feeb2-301e-0017-1ee5-f3eae9000000
x-ms-version: 2009-09-19
content-length: 8546
X-Firefox-Spdy: h2

GET closingwithnurezsdoc.click/a5r7/6c5gWgZt24p/lg-TdCZmGxYvrBBWM7HbCuDqRMnHarHskTe0PPvfTDLR4jH0TjAlmGa45VSZuaR0X9wyS7RHUaoUrrAPCF3

188.114.96.1

200 OK

16 kB

URL GET HTTP/3
closingwithnurezsdoc.click/a5r7/6c5gWgZt24p/lg-TdCZmGxYvrBBWM7HbCuDqRMnHarHskTe0PPvfTDLR4jH0TjAlmGa45VSZuaR0X9wyS7RHUaoUrrAPCF3
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://closingwithnurezsdoc.click/a5r7/0GOOVcB2NHI8oab6KOZu4NeIik6LrxJCUdPsrmcoLxFKHBX5O2SX2ARKi0Zn9c5TiqLDd1IZLGz6dL0Ng1AR8tI2heC?id=YmdmbnBjQHRlbXBsZWNwYS5jb20=
Certificate
IssuerGoogle Trust Services LLC
Subjectclosingwithnurezsdoc.click
Fingerprint15:02:E9:EA:AF:38:C7:E1:8D:4E:CE:9A:9D:77:23:1C:5D:9B:12:E7
ValidityTue, 19 Sep 2023 10:14:25 GMT - Mon, 18 Dec 2023 10:14:24 GMT

File type

Size
16 kB (15789 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /a5r7/6c5gWgZt24p/lg-TdCZmGxYvrBBWM7HbCuDqRMnHarHskTe0PPvfTDLR4jH0TjAlmGa45VSZuaR0X9wyS7RHUaoUrrAPCF3 HTTP/1.1
Host: closingwithnurezsdoc.click
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://closingwithnurezsdoc.click/a5r7/0GOOVcB2NHI8oab6KOZu4NeIik6LrxJCUdPsrmcoLxFKHBX5O2SX2ARKi0Zn9c5TiqLDd1IZLGz6dL0Ng1AR8tI2heC?id=YmdmbnBjQHRlbXBsZWNwYS5jb20=
Cookie: PHPSESSID=6q0l71dev1232t4b3svm2hnf1d; cf_clearance=BRuFv3ZURhLnj26XhpY2gq6xgkKbs6rZDhkcy_5mdNo-1696109281-0-1-69b0ef05.6b0d8b6b.438cce4a-0.2.1696109281
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 30 Sep 2023 21:28:07 GMT
content-type: image/svg+xml
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Iz3YMZvyKL%2FMeSjnSYbyoUOIi5VjHR15ut1TaP%2BtGw5LkYg%2BArwUDPfFLqjLtVOGeytukUqwJ3tjJUuLEi9Tl38J0vk82vXp6%2FyaY0rUVD2SDn0tp%2BZkAVgwvR54LupdWi%2BxdArhLSnG8OTUQA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 80ef8dc39f1b5687-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET closingwithnurezsdoc.click/a5r7/6uZ3GxvOGZ5/e-aLDjcEGC4EtXAWg3Z6tcerKoUJeMIkhuUQrOknv6k7qQHIjshbQPUiFopX8AxlVFGhuswqiI1rtjkAmT

188.114.96.1

200 OK

1.2 kB

URL GET HTTP/3
closingwithnurezsdoc.click/a5r7/6uZ3GxvOGZ5/e-aLDjcEGC4EtXAWg3Z6tcerKoUJeMIkhuUQrOknv6k7qQHIjshbQPUiFopX8AxlVFGhuswqiI1rtjkAmT
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://closingwithnurezsdoc.click/a5r7/0GOOVcB2NHI8oab6KOZu4NeIik6LrxJCUdPsrmcoLxFKHBX5O2SX2ARKi0Zn9c5TiqLDd1IZLGz6dL0Ng1AR8tI2heC?id=YmdmbnBjQHRlbXBsZWNwYS5jb20=
Certificate
IssuerGoogle Trust Services LLC
Subjectclosingwithnurezsdoc.click
Fingerprint15:02:E9:EA:AF:38:C7:E1:8D:4E:CE:9A:9D:77:23:1C:5D:9B:12:E7
ValidityTue, 19 Sep 2023 10:14:25 GMT - Mon, 18 Dec 2023 10:14:24 GMT

File type
HTML document, ASCII text, with very long lines (1223), with no line terminators
Size
1.2 kB (1195 bytes)
Hash
016a2201af171f6ed8a29e4d70217f6d
5122cae87dc0c423657225d1c4d3b5d0f24e3436
e0720f3a352e1ef7e0578118456f87920611c72b31d46de3606a32091189f022

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /a5r7/6uZ3GxvOGZ5/e-aLDjcEGC4EtXAWg3Z6tcerKoUJeMIkhuUQrOknv6k7qQHIjshbQPUiFopX8AxlVFGhuswqiI1rtjkAmT HTTP/1.1
Host: closingwithnurezsdoc.click
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://closingwithnurezsdoc.click/a5r7/0GOOVcB2NHI8oab6KOZu4NeIik6LrxJCUdPsrmcoLxFKHBX5O2SX2ARKi0Zn9c5TiqLDd1IZLGz6dL0Ng1AR8tI2heC?id=YmdmbnBjQHRlbXBsZWNwYS5jb20=
Cookie: PHPSESSID=6q0l71dev1232t4b3svm2hnf1d; cf_clearance=BRuFv3ZURhLnj26XhpY2gq6xgkKbs6rZDhkcy_5mdNo-1696109281-0-1-69b0ef05.6b0d8b6b.438cce4a-0.2.1696109281
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 30 Sep 2023 21:28:07 GMT
content-type: image/svg+xml
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=veKChTfpDstcJr8lH8LuOr3YcsbNyQRNupnrBRxReu7SA9r0qbRDYy6RRnvpbFgZSFc50kpNL309N5igHSlJ8mMYwZJ2VL9ptUAS09nuPiCBD3MVKILPL9yTP%2F5lpQR89y7Jcm656hZDETchDg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 80ef8dc39f1e5687-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET closingwithnurezsdoc.click/a5r7/633DF4t2CiH/sc-ppk0pA6brLRKZggfXXiYVILsdwIwBia6v2zERsMEm0N2Lxc3b05Rvui0bmRfS5I6t6e78DKM9krwZ9bD

188.114.96.1

200 OK

32 kB

URL GET HTTP/3
closingwithnurezsdoc.click/a5r7/633DF4t2CiH/sc-ppk0pA6brLRKZggfXXiYVILsdwIwBia6v2zERsMEm0N2Lxc3b05Rvui0bmRfS5I6t6e78DKM9krwZ9bD
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://closingwithnurezsdoc.click/a5r7/0GOOVcB2NHI8oab6KOZu4NeIik6LrxJCUdPsrmcoLxFKHBX5O2SX2ARKi0Zn9c5TiqLDd1IZLGz6dL0Ng1AR8tI2heC?id=YmdmbnBjQHRlbXBsZWNwYS5jb20=
Certificate
IssuerGoogle Trust Services LLC
Subjectclosingwithnurezsdoc.click
Fingerprint15:02:E9:EA:AF:38:C7:E1:8D:4E:CE:9A:9D:77:23:1C:5D:9B:12:E7
ValidityTue, 19 Sep 2023 10:14:25 GMT - Mon, 18 Dec 2023 10:14:24 GMT

File type
ASCII text, with very long lines (9001), with CRLF line terminators
Size
32 kB (31744 bytes)
Hash
4ecfc3c41b2959e7fad0af02a919113a
bbd3bae37d9e22d17629be312c152946c8ddd84c
e629c50b807a11ce7459dd20b4981a8b7bef3ebfe374f505e389513358501d64

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /a5r7/633DF4t2CiH/sc-ppk0pA6brLRKZggfXXiYVILsdwIwBia6v2zERsMEm0N2Lxc3b05Rvui0bmRfS5I6t6e78DKM9krwZ9bD HTTP/1.1
Host: closingwithnurezsdoc.click
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://closingwithnurezsdoc.click/a5r7/0GOOVcB2NHI8oab6KOZu4NeIik6LrxJCUdPsrmcoLxFKHBX5O2SX2ARKi0Zn9c5TiqLDd1IZLGz6dL0Ng1AR8tI2heC?id=YmdmbnBjQHRlbXBsZWNwYS5jb20=
Cookie: PHPSESSID=6q0l71dev1232t4b3svm2hnf1d; cf_clearance=BRuFv3ZURhLnj26XhpY2gq6xgkKbs6rZDhkcy_5mdNo-1696109281-0-1-69b0ef05.6b0d8b6b.438cce4a-0.2.1696109281
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 30 Sep 2023 21:28:07 GMT
content-type: text/javascript;charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=p6py10src4oyJ2sdrUItBWWe5w32JsSXT7MAWAgXZZ4EZqnmR9RYO%2BL1%2FJMrnz6jQtLUxSHH8mO9b0X4EG2HclF8ZGGJseB50MTnF6DVU9HejMDyE1oK%2FkVJgD%2Bt99m0X9ia8veZVeY2KuUTNQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 80ef8dc39f275687-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET closingwithnurezsdoc.click/a5r7/643Y4XWUwVG/jq-w23zreLYkzWTuiPmSFhYAB2EHe69Y0dE9R1RsLF0StIS51ivtmFrt44At2t27XN6TUPzMnk2RV868TOd

188.114.96.1

200 OK

87 kB

URL GET HTTP/3
closingwithnurezsdoc.click/a5r7/643Y4XWUwVG/jq-w23zreLYkzWTuiPmSFhYAB2EHe69Y0dE9R1RsLF0StIS51ivtmFrt44At2t27XN6TUPzMnk2RV868TOd
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://closingwithnurezsdoc.click/a5r7/0GOOVcB2NHI8oab6KOZu4NeIik6LrxJCUdPsrmcoLxFKHBX5O2SX2ARKi0Zn9c5TiqLDd1IZLGz6dL0Ng1AR8tI2heC?id=YmdmbnBjQHRlbXBsZWNwYS5jb20=
Certificate
IssuerGoogle Trust Services LLC
Subjectclosingwithnurezsdoc.click
Fingerprint15:02:E9:EA:AF:38:C7:E1:8D:4E:CE:9A:9D:77:23:1C:5D:9B:12:E7
ValidityTue, 19 Sep 2023 10:14:25 GMT - Mon, 18 Dec 2023 10:14:24 GMT

File type
ASCII text, with very long lines (65450), with CRLF line terminators
Size
87 kB (86927 bytes)
Hash
a46fb81762396b7bf2020774a2fb4d9e
fb5edd7a663dc8dda7ec10815a7cd82a30fc98a7
d30b6114fb9496ae46b2a8cdf59379c8ffdb957534bd1dd73e626c7c61c7e67d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /a5r7/643Y4XWUwVG/jq-w23zreLYkzWTuiPmSFhYAB2EHe69Y0dE9R1RsLF0StIS51ivtmFrt44At2t27XN6TUPzMnk2RV868TOd HTTP/1.1
Host: closingwithnurezsdoc.click
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://closingwithnurezsdoc.click/a5r7/0GOOVcB2NHI8oab6KOZu4NeIik6LrxJCUdPsrmcoLxFKHBX5O2SX2ARKi0Zn9c5TiqLDd1IZLGz6dL0Ng1AR8tI2heC?id=YmdmbnBjQHRlbXBsZWNwYS5jb20=
Cookie: PHPSESSID=6q0l71dev1232t4b3svm2hnf1d; cf_clearance=BRuFv3ZURhLnj26XhpY2gq6xgkKbs6rZDhkcy_5mdNo-1696109281-0-1-69b0ef05.6b0d8b6b.438cce4a-0.2.1696109281
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 30 Sep 2023 21:28:07 GMT
content-type: text/javascript;charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eJLz8YznXzmR6tjw7clYedsYju3whbAQxIi0OZ1BG2TvtKw26pDeARiXhTxx8p6oNhGfojTF3i3Mnr1EEDhRbHMXytWV0iTuGujqethXiTw0x7Fk8SxTCATrLZyAOlqytgibJDI%2B5wL5o41Zzg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 80ef8dc38f0a5687-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET closingwithnurezsdoc.click/a5r7/0GOOVcB2NHI8oab6KOZu4NeIik6LrxJCUdPsrmcoLxFKHBX5O2SX2ARKi0Zn9c5TiqLDd1IZLGz6dL0Ng1AR8tI2heC?id=YmdmbnBjQHRlbXBsZWNwYS5jb20=

188.114.96.1

200 OK

21 kB

URL User Request GET HTTP/3
closingwithnurezsdoc.click/a5r7/0GOOVcB2NHI8oab6KOZu4NeIik6LrxJCUdPsrmcoLxFKHBX5O2SX2ARKi0Zn9c5TiqLDd1IZLGz6dL0Ng1AR8tI2heC?id=YmdmbnBjQHRlbXBsZWNwYS5jb20=
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectclosingwithnurezsdoc.click
Fingerprint15:02:E9:EA:AF:38:C7:E1:8D:4E:CE:9A:9D:77:23:1C:5D:9B:12:E7
ValidityTue, 19 Sep 2023 10:14:25 GMT - Mon, 18 Dec 2023 10:14:24 GMT

File type
HTML document, ASCII text, with very long lines (20913), with no line terminators
Size
21 kB (20913 bytes)
Hash
23182fab19dca5fcd762124abaa440a5
6c375ca08411f4e2fab869365be775dd6fd76e0b
bf6c93c309773763654aa50b071c160be60f6e9d369096c8a622c31c72ccadb7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /a5r7/0GOOVcB2NHI8oab6KOZu4NeIik6LrxJCUdPsrmcoLxFKHBX5O2SX2ARKi0Zn9c5TiqLDd1IZLGz6dL0Ng1AR8tI2heC?id=YmdmbnBjQHRlbXBsZWNwYS5jb20= HTTP/1.1
Host: closingwithnurezsdoc.click
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://closingwithnurezsdoc.click/a5r7/
Cookie: PHPSESSID=6q0l71dev1232t4b3svm2hnf1d; cf_clearance=BRuFv3ZURhLnj26XhpY2gq6xgkKbs6rZDhkcy_5mdNo-1696109281-0-1-69b0ef05.6b0d8b6b.438cce4a-0.2.1696109281
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 30 Sep 2023 21:28:06 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bT081oZZ2LRWyiIdbPHO4wJ2QtVWPrv16Fhrswy2xp9zE0zsUf31lzmrxQYTgKtuV5c42CR0%2BsBrEx4evJnGT0TspLZg%2B44ENyf8wgxbz3falfRLFmzGHwLCVm0KDwn4ptH9DvhCwwmu%2FV8Atg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 80ef8dc2cde65687-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

POST closingwithnurezsdoc.click/a5r7/3KfYX65ZM0gtFb0mQMvc89YExu

188.114.96.1

200 OK

363 B

URL POST HTTP/3
closingwithnurezsdoc.click/a5r7/3KfYX65ZM0gtFb0mQMvc89YExu
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://closingwithnurezsdoc.click/a5r7/0GOOVcB2NHI8oab6KOZu4NeIik6LrxJCUdPsrmcoLxFKHBX5O2SX2ARKi0Zn9c5TiqLDd1IZLGz6dL0Ng1AR8tI2heC?id=YmdmbnBjQHRlbXBsZWNwYS5jb20=
Certificate
IssuerGoogle Trust Services LLC
Subjectclosingwithnurezsdoc.click
Fingerprint15:02:E9:EA:AF:38:C7:E1:8D:4E:CE:9A:9D:77:23:1C:5D:9B:12:E7
ValidityTue, 19 Sep 2023 10:14:25 GMT - Mon, 18 Dec 2023 10:14:24 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (389), with no line terminators
Size
363 B (363 bytes)
Hash
9b55c1836b516b0233a075ef92b8ffa5
6831b42a812b86025d81a0078a10077a508c7182
6a1e6c413c439765453d679acaba80ac6309f014edc776c8ad20005ee4f7dac0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /a5r7/3KfYX65ZM0gtFb0mQMvc89YExu HTTP/1.1
Host: closingwithnurezsdoc.click
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 35
Origin: https://closingwithnurezsdoc.click
DNT: 1
Connection: keep-alive
Referer: https://closingwithnurezsdoc.click/a5r7/0GOOVcB2NHI8oab6KOZu4NeIik6LrxJCUdPsrmcoLxFKHBX5O2SX2ARKi0Zn9c5TiqLDd1IZLGz6dL0Ng1AR8tI2heC?id=YmdmbnBjQHRlbXBsZWNwYS5jb20=
Cookie: PHPSESSID=6q0l71dev1232t4b3svm2hnf1d; cf_clearance=BRuFv3ZURhLnj26XhpY2gq6xgkKbs6rZDhkcy_5mdNo-1696109281-0-1-69b0ef05.6b0d8b6b.438cce4a-0.2.1696109281
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 30 Sep 2023 21:28:08 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=139qv5rMD5FMbyqWoAXQvXv4M0AKh0NFZcji9xZVPmdZpL7%2BkAqYVhqnkyIdJm9X8xSPo2BDZ5wIne8%2Bn%2BvhC%2FZxUfJJbzQNguByoJrFZ9b6g9LMTIDkfdB9N4GhzY7ULllYRifQ2ijyP4SZLA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 80ef8dc63ac95687-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET closingwithnurezsdoc.click/a5r7/6tLixRl80w6/fi-scftnSUeGKmqKXGeA8K1rwaGh80nxACl5nAwGYCJIAM9JWmhHHYoUCbUVwGAYeLHqOpw9b3nZEWlvX78

188.114.96.1

200 OK

738 B

URL GET HTTP/3
closingwithnurezsdoc.click/a5r7/6tLixRl80w6/fi-scftnSUeGKmqKXGeA8K1rwaGh80nxACl5nAwGYCJIAM9JWmhHHYoUCbUVwGAYeLHqOpw9b3nZEWlvX78
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://closingwithnurezsdoc.click/a5r7/0GOOVcB2NHI8oab6KOZu4NeIik6LrxJCUdPsrmcoLxFKHBX5O2SX2ARKi0Zn9c5TiqLDd1IZLGz6dL0Ng1AR8tI2heC?id=YmdmbnBjQHRlbXBsZWNwYS5jb20=
Certificate
IssuerGoogle Trust Services LLC
Subjectclosingwithnurezsdoc.click
Fingerprint15:02:E9:EA:AF:38:C7:E1:8D:4E:CE:9A:9D:77:23:1C:5D:9B:12:E7
ValidityTue, 19 Sep 2023 10:14:25 GMT - Mon, 18 Dec 2023 10:14:24 GMT

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (824), with no line terminators
Size
738 B (738 bytes)
Hash
4caf7d5099e1b4873bc1516e16100b82
34cb52b209fec3a0cb6c9f70ce2a2c5c1ada9684
af513b86747f83d86ea7bf0a70593984e6c7ea6144a1dacba89fc267cd16acd7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /a5r7/6tLixRl80w6/fi-scftnSUeGKmqKXGeA8K1rwaGh80nxACl5nAwGYCJIAM9JWmhHHYoUCbUVwGAYeLHqOpw9b3nZEWlvX78 HTTP/1.1
Host: closingwithnurezsdoc.click
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://closingwithnurezsdoc.click/a5r7/0GOOVcB2NHI8oab6KOZu4NeIik6LrxJCUdPsrmcoLxFKHBX5O2SX2ARKi0Zn9c5TiqLDd1IZLGz6dL0Ng1AR8tI2heC?id=YmdmbnBjQHRlbXBsZWNwYS5jb20=
Cookie: PHPSESSID=6q0l71dev1232t4b3svm2hnf1d; cf_clearance=BRuFv3ZURhLnj26XhpY2gq6xgkKbs6rZDhkcy_5mdNo-1696109281-0-1-69b0ef05.6b0d8b6b.438cce4a-0.2.1696109281
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 30 Sep 2023 21:28:08 GMT
content-type: image/svg+xml
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MCXXGdgMkP4OG3pQv9tZLW%2BOkQWix%2BRcMFF5DXB8DVFEJVoYhrN0giMCOytD3vBoQn2XvtDJatZzfhUt2yFdPsWQlhCX8Z0Gadd1s6sUJEj5R06of9nEDX7RjJrRIQg9gsvN01HrgSj7mlLPSA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 80ef8dc71c0e5687-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET closingwithnurezsdoc.click/a5r7/6xJ1SyHvzw8/bg-8GDc1deXsKT2cPxe6EG9Y5vIE9PlGYw6k7W7u1c0RH6sVrS5YviyZRbtXLS1jSYWSVX4rm1jqiYxIkVV

188.114.96.1

200 OK

17 kB

URL GET HTTP/3
closingwithnurezsdoc.click/a5r7/6xJ1SyHvzw8/bg-8GDc1deXsKT2cPxe6EG9Y5vIE9PlGYw6k7W7u1c0RH6sVrS5YviyZRbtXLS1jSYWSVX4rm1jqiYxIkVV
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://closingwithnurezsdoc.click/a5r7/0GOOVcB2NHI8oab6KOZu4NeIik6LrxJCUdPsrmcoLxFKHBX5O2SX2ARKi0Zn9c5TiqLDd1IZLGz6dL0Ng1AR8tI2heC?id=YmdmbnBjQHRlbXBsZWNwYS5jb20=
Certificate
IssuerGoogle Trust Services LLC
Subjectclosingwithnurezsdoc.click
Fingerprint15:02:E9:EA:AF:38:C7:E1:8D:4E:CE:9A:9D:77:23:1C:5D:9B:12:E7
ValidityTue, 19 Sep 2023 10:14:25 GMT - Mon, 18 Dec 2023 10:14:24 GMT

File type

Size
17 kB (16693 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /a5r7/6xJ1SyHvzw8/bg-8GDc1deXsKT2cPxe6EG9Y5vIE9PlGYw6k7W7u1c0RH6sVrS5YviyZRbtXLS1jSYWSVX4rm1jqiYxIkVV HTTP/1.1
Host: closingwithnurezsdoc.click
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://closingwithnurezsdoc.click/a5r7/0GOOVcB2NHI8oab6KOZu4NeIik6LrxJCUdPsrmcoLxFKHBX5O2SX2ARKi0Zn9c5TiqLDd1IZLGz6dL0Ng1AR8tI2heC?id=YmdmbnBjQHRlbXBsZWNwYS5jb20=
Cookie: PHPSESSID=6q0l71dev1232t4b3svm2hnf1d; cf_clearance=BRuFv3ZURhLnj26XhpY2gq6xgkKbs6rZDhkcy_5mdNo-1696109281-0-1-69b0ef05.6b0d8b6b.438cce4a-0.2.1696109281
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 30 Sep 2023 21:28:07 GMT
content-type: image/svg+xml
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6v2TWGXf4FvLoV5b8%2B%2FOBm0tZGRIDQkLQwS7qm2oJGb9jV4Z%2Bz%2BSAqxvjS90oaLMqns1ZG638qY6HDPw97xbnrH%2F6LTyu3On3GSMAgRcNwRhzXtAwle%2F5fabCZqALwypK5cKKaqYgKzm98NwVA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 80ef8dc5aa175687-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET closingwithnurezsdoc.click/a5r7/6X903psgF5m/bg-80UZg8hytJI3uKX8AsqJksoQz1aOW9bex9gf28SRbfOgOCNwonzipymcEON6XBZSEDGgcUkI7JKH4n2k

188.114.96.1

200 OK

17 kB

URL GET HTTP/3
closingwithnurezsdoc.click/a5r7/6X903psgF5m/bg-80UZg8hytJI3uKX8AsqJksoQz1aOW9bex9gf28SRbfOgOCNwonzipymcEON6XBZSEDGgcUkI7JKH4n2k
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://closingwithnurezsdoc.click/a5r7/0GOOVcB2NHI8oab6KOZu4NeIik6LrxJCUdPsrmcoLxFKHBX5O2SX2ARKi0Zn9c5TiqLDd1IZLGz6dL0Ng1AR8tI2heC?id=YmdmbnBjQHRlbXBsZWNwYS5jb20=
Certificate
IssuerGoogle Trust Services LLC
Subjectclosingwithnurezsdoc.click
Fingerprint15:02:E9:EA:AF:38:C7:E1:8D:4E:CE:9A:9D:77:23:1C:5D:9B:12:E7
ValidityTue, 19 Sep 2023 10:14:25 GMT - Mon, 18 Dec 2023 10:14:24 GMT

File type

Size
17 kB (16693 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /a5r7/6X903psgF5m/bg-80UZg8hytJI3uKX8AsqJksoQz1aOW9bex9gf28SRbfOgOCNwonzipymcEON6XBZSEDGgcUkI7JKH4n2k HTTP/1.1
Host: closingwithnurezsdoc.click
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://closingwithnurezsdoc.click/a5r7/0GOOVcB2NHI8oab6KOZu4NeIik6LrxJCUdPsrmcoLxFKHBX5O2SX2ARKi0Zn9c5TiqLDd1IZLGz6dL0Ng1AR8tI2heC?id=YmdmbnBjQHRlbXBsZWNwYS5jb20=
Cookie: PHPSESSID=6q0l71dev1232t4b3svm2hnf1d; cf_clearance=BRuFv3ZURhLnj26XhpY2gq6xgkKbs6rZDhkcy_5mdNo-1696109281-0-1-69b0ef05.6b0d8b6b.438cce4a-0.2.1696109281
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 30 Sep 2023 21:28:07 GMT
content-type: image/svg+xml
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4xpIYAA5Hq9XYuEZIONOKzlCm1pAnQDqxPjCDDUoKNM61nGf5I01qXnhY9MIG04q6B7lj5juQNKKDCj3gttZaTBpp%2BCKW0kqk5YVFrjB4O60rbAwZIpbZjxDojLnulP6ATdqr5UQtKo2%2FpVIog%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 80ef8dc5aa195687-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET closingwithnurezsdoc.click/a5r7/617vSyucqau/st-xUhk8HA58Hcm3eOQrgWvynrcsvisfbT6X6vCHbqD7RY1FwAuUxWAtBk4NqkhoxOTYCVNomJIJxbBVFQN

188.114.96.1

200 OK

100 kB

URL GET HTTP/3
closingwithnurezsdoc.click/a5r7/617vSyucqau/st-xUhk8HA58Hcm3eOQrgWvynrcsvisfbT6X6vCHbqD7RY1FwAuUxWAtBk4NqkhoxOTYCVNomJIJxbBVFQN
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://closingwithnurezsdoc.click/a5r7/0GOOVcB2NHI8oab6KOZu4NeIik6LrxJCUdPsrmcoLxFKHBX5O2SX2ARKi0Zn9c5TiqLDd1IZLGz6dL0Ng1AR8tI2heC?id=YmdmbnBjQHRlbXBsZWNwYS5jb20=
Certificate
IssuerGoogle Trust Services LLC
Subjectclosingwithnurezsdoc.click
Fingerprint15:02:E9:EA:AF:38:C7:E1:8D:4E:CE:9A:9D:77:23:1C:5D:9B:12:E7
ValidityTue, 19 Sep 2023 10:14:25 GMT - Mon, 18 Dec 2023 10:14:24 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
100 kB (99637 bytes)
Hash
46cbc7b3a2bc352c21dacfa8e53506e1
23c14c5b63943d14299186fe506830e2c4519e2c
ef31d8623adbb36fb0dbe3d3028bbcee3b97a12d1b0fdedf590251d841c10815

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /a5r7/617vSyucqau/st-xUhk8HA58Hcm3eOQrgWvynrcsvisfbT6X6vCHbqD7RY1FwAuUxWAtBk4NqkhoxOTYCVNomJIJxbBVFQN HTTP/1.1
Host: closingwithnurezsdoc.click
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://closingwithnurezsdoc.click/a5r7/0GOOVcB2NHI8oab6KOZu4NeIik6LrxJCUdPsrmcoLxFKHBX5O2SX2ARKi0Zn9c5TiqLDd1IZLGz6dL0Ng1AR8tI2heC?id=YmdmbnBjQHRlbXBsZWNwYS5jb20=
Cookie: PHPSESSID=6q0l71dev1232t4b3svm2hnf1d; cf_clearance=BRuFv3ZURhLnj26XhpY2gq6xgkKbs6rZDhkcy_5mdNo-1696109281-0-1-69b0ef05.6b0d8b6b.438cce4a-0.2.1696109281
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 30 Sep 2023 21:28:07 GMT
content-type: text/css;charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gzc6Nc0iMdoDwm07WKwYkWzSXmNwh6QMtFmDk6yIXCfHDFu1aIzRLYLDUKDsBVdQzcGRvIad0R96DfExJk4r2FTshKUMjsr5aV%2Fxo6rwvC6yVjo17%2FuUl87M8pK1vdNHKcYT%2Ffub7rVLYbvbWw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 80ef8dc38f095687-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET closingwithnurezsdoc.click/a5r7/6w2oVUUE24m/si-che7r5OUXU0qWD94Z3CAKEz9n1IVfXTGUutGgBehx4TtzglVYz5saYcatIJncjtCQwJ8iPiPyMqPxWdR

188.114.96.1

200 OK

2.5 kB

URL GET HTTP/3
closingwithnurezsdoc.click/a5r7/6w2oVUUE24m/si-che7r5OUXU0qWD94Z3CAKEz9n1IVfXTGUutGgBehx4TtzglVYz5saYcatIJncjtCQwJ8iPiPyMqPxWdR
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://closingwithnurezsdoc.click/a5r7/0GOOVcB2NHI8oab6KOZu4NeIik6LrxJCUdPsrmcoLxFKHBX5O2SX2ARKi0Zn9c5TiqLDd1IZLGz6dL0Ng1AR8tI2heC?id=YmdmbnBjQHRlbXBsZWNwYS5jb20=
Certificate
IssuerGoogle Trust Services LLC
Subjectclosingwithnurezsdoc.click
Fingerprint15:02:E9:EA:AF:38:C7:E1:8D:4E:CE:9A:9D:77:23:1C:5D:9B:12:E7
ValidityTue, 19 Sep 2023 10:14:25 GMT - Mon, 18 Dec 2023 10:14:24 GMT

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (2507), with no line terminators
Size
2.5 kB (2471 bytes)
Hash
1fd08d9074a9c642a912a8296ea51cdd
52c9db034d0a2149abd69d364fedd08f0e29d3b5
c48af56aad4426315ee4da4fadfaa93727fe6ce1d5e2b4aabc2417d3be07c0e6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /a5r7/6w2oVUUE24m/si-che7r5OUXU0qWD94Z3CAKEz9n1IVfXTGUutGgBehx4TtzglVYz5saYcatIJncjtCQwJ8iPiPyMqPxWdR HTTP/1.1
Host: closingwithnurezsdoc.click
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://closingwithnurezsdoc.click/a5r7/0GOOVcB2NHI8oab6KOZu4NeIik6LrxJCUdPsrmcoLxFKHBX5O2SX2ARKi0Zn9c5TiqLDd1IZLGz6dL0Ng1AR8tI2heC?id=YmdmbnBjQHRlbXBsZWNwYS5jb20=
Cookie: PHPSESSID=6q0l71dev1232t4b3svm2hnf1d; cf_clearance=BRuFv3ZURhLnj26XhpY2gq6xgkKbs6rZDhkcy_5mdNo-1696109281-0-1-69b0ef05.6b0d8b6b.438cce4a-0.2.1696109281
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 30 Sep 2023 21:28:07 GMT
content-type: image/svg+xml
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZnVGsdZyeHGo5htnv7XFIKt5ZbnNhmV4Hvj0Q%2B2vnv88imNJHYQ86FVlWfzbQzraZZjF7U9Li3auB%2BWTi%2FqYAx6vrAr5Q8L3knUweo%2BC3fKLbIBf3oC6gquugjoxPyIuUPRrrmDIwfIiwQtusw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 80ef8dc39f225687-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (12)

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

HTTP Transactions (15)

URL

IP

ASN

File type

Size

Hash

Detections

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2