Report - superioritydingy.com/watch.1687527349142?key=7f0153520c32bddad716936f1957fa80&kw=["pika","labs"]&refer=https://pikalabs.org/&tz=5.5&dev=r&res=14.31&uuid=ea586142-dfd2-44f1-81be-37dd01f66c9b:2:1

Report Overview

Visitedpublic

2023-12-21 10:34:35

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Host Summary

Host	Rank	Registered	First Seen	Last Seen	Sent	Received	IP	Fingerprints
superioritydingy.com	unknown	2023-12-15	2023-12-20 13:38:05	2023-12-21 05:49:48	5.1 kB	6.7 kB	173.233.137.36
cdn.cloudimagesb.com	23099	2020-10-06	2021-02-12 17:15:41	2023-12-20 12:05:51	493 B	145 kB	45.133.44.9

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-12-21	medium	superioritydingy.com	Sinkholed
2023-12-21	medium	superioritydingy.com	Sinkholed
2023-12-21	medium	superioritydingy.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (2)

	URL	From	Size	First Seen	Last Seen
	superioritydingy.com/api/users?token=L3dhdGNoLjE2ODc1MjczNDkxNDI_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%3D%3D&uuid=ea586142-dfd2-44f1-81be-37dd01f66c9b%3A2%3A1&pii=&in=false	ScriptElement	196 B	2024-08-20	2024-08-20
URL superioritydingy.com/api/users?token=L3dhdGNoLjE2ODc1MjczNDkxNDI_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%3D%3D&uuid=ea586142-dfd2-44f1-81be-37dd01f66c9b%3A2%3A1&pii=&in=false IP / ASN 173.233.137.36 #7979 SERVERS-COM Introduced by ScriptElement Embedded true Resource Info First Seen 2024-08-20 Last Seen 2024-08-20 Times Seen 1 Size 196 B (196 bytes) MD5 9d99eb51b9150509f9b0ae709c2be030 SHA1 c7f08343d88868b8910a4e71558a7b2f0487e0aa SHA256 bb1e6019c50de5948eb019a52f82876aa51312a0d8e92a56b384fd627af418ab Format Code Loading...

	superioritydingy.com/api/users?token=L3dhdGNoLjE2ODc1MjczNDkxNDI_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%3D%3D&uuid=ea586142-dfd2-44f1-81be-37dd01f66c9b%3A2%3A1&pii=&in=false	ScriptElement	2.1 kB	2024-08-20	2024-08-20
URL superioritydingy.com/api/users?token=L3dhdGNoLjE2ODc1MjczNDkxNDI_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%3D%3D&uuid=ea586142-dfd2-44f1-81be-37dd01f66c9b%3A2%3A1&pii=&in=false IP / ASN 173.233.137.36 #7979 SERVERS-COM Introduced by ScriptElement Embedded true Resource Info First Seen 2024-08-20 Last Seen 2024-08-20 Times Seen 1 Size 2.1 kB (2094 bytes) MD5 ff9715b7ea93145d0436372ca8242646 SHA1 f3b93ee47e485b0a32401863832f39a08ac83f8a SHA256 0979ca5d0c69d75685ca14d20a48e249d0dcb25671a0dbc5e224fb1f964af987 Format Code Loading...

HTTP Transactions (4)

URL IP Response Size

superioritydingy.com/watch.1687527349142?key=7f0153520c32bddad716936f1957fa80&kw=[%22pika%22,%22labs%22]&refer=https://pikalabs.org/&tz=5.5&dev=r&res=14.31&uuid=ea586142-dfd2-44f1-81be-37dd01f66c9b:2:1

173.233.137.36

1.4 kB

URL HTTPS

IP / ASN

173.233.137.36

#7979 SERVERS-COM

Requested byN/A

Resource Info

File typeHTML document, ASCII text, with very long lines (616)

First Seen2024-08-20

Last Seen2024-08-20

Times Seen1

Size1.4 kB (1365 bytes)

MD5e511c997cd485b2eb19e0c7c49d3c6d4

SHA11dfc490a0d2f781722cd565c89f34fa47316ce96

SHA256983afc120f33ef1fb56ef482a5a8bf0bedc71807a79cfdc5eb5dd2048c55806d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /watch.1687527349142?key=7f0153520c32bddad716936f1957fa80&kw=[%22pika%22,%22labs%22]&refer=https://pikalabs.org/&tz=5.5&dev=r&res=14.31&uuid=ea586142-dfd2-44f1-81be-37dd01f66c9b:2:1 HTTP/1.1
Host: superioritydingy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 21 Dec 2023 10:34:09 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Set-Cookie: u_pl=21285632; expires=Fri, 22 Dec 2023 10:34:09 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.XV98CG3gcDuQGEkQuN2hQsbuxfxfAUqfim1NbpI-Wpc; expires=Thu, 21 Dec 2023 10:35:09 GMT; secure; SameSite=None
uid_id2=ea586142-dfd2-44f1-81be-37dd01f66c9b:2:1; expires=Thu, 28 Dec 2023 10:34:09 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 6b3bb0942baae32010e1e36d78f05731
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

GET superioritydingy.com/api/users?token=L3dhdGNoLjE2ODc1MjczNDkxNDI_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%3D%3D&uuid=ea586142-dfd2-44f1-81be-37dd01f66c9b%3A2%3A1&pii=&in=false

173.233.137.36

200 OK

1.9 kB

URL User Request GET HTTPS

IP / ASN

173.233.137.36

#7979 SERVERS-COM

Requested byN/A

Resource Info

File typeHTML document, ASCII text, with very long lines (2601)

First Seen2024-08-20

Last Seen2024-08-20

Times Seen1

Size1.9 kB (1855 bytes)

MD5b6e9ebd34c431e140ad61e4fb7eabe3e

SHA11698a5cb1a6e276ccd7bcf5c8a1c066bf88e3083

SHA25621ced8060140dcf76595a0164dc54378f26ad97ab11887cfc2e85db59c5d895e

Certificate Info

IssuerLet's Encrypt

Subjectsuperioritydingy.com

FingerprintDD:5E:38:9F:CF:14:09:BC:0E:91:2E:45:81:0D:D6:09:6A:06:EE:3F

ValidityFri, 15 Dec 2023 09:53:35 GMT - Thu, 14 Mar 2024 09:53:34 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /api/users?token=L3dhdGNoLjE2ODc1MjczNDkxNDI_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%3D%3D&uuid=ea586142-dfd2-44f1-81be-37dd01f66c9b%3A2%3A1&pii=&in=false HTTP/1.1
Host: superioritydingy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://superioritydingy.com/watch.1687527349142?key=7f0153520c32bddad716936f1957fa80&kw=[%22pika%22,%22labs%22]&refer=https://pikalabs.org/&tz=5.5&dev=r&res=14.31&uuid=ea586142-dfd2-44f1-81be-37dd01f66c9b:2:1
Cookie: u_pl=21285632; ain=eyJhbGciOiJIUzI1NiJ9.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.XV98CG3gcDuQGEkQuN2hQsbuxfxfAUqfim1NbpI-Wpc; uid_id2=ea586142-dfd2-44f1-81be-37dd01f66c9b:2:1; cjs=t
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 21 Dec 2023 10:34:10 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://pikalabs.org/
Access-Control-Allow-Origin: https://pikalabs.org/
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=ea586142-dfd2-44f1-81be-37dd01f66c9b:2:1; expires=Thu, 28 Dec 2023 10:34:10 GMT; secure; SameSite=None
iprc6aefbf6eab4708cd13f00e2a117f5d18=3569806; expires=Thu, 21 Dec 2023 14:34:10 GMT; secure; SameSite=None
pdhtkv=true; expires=Fri, 22 Dec 2023 10:34:10 GMT; secure; SameSite=None
uncs=1; expires=Fri, 22 Dec 2023 10:34:10 GMT; secure; SameSite=None
pdhtkv5=true; expires=Fri, 22 Dec 2023 10:34:10 GMT; secure; SameSite=None
uncs5=1; expires=Fri, 22 Dec 2023 10:34:10 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 4f3ad10ab059f3b56403f4cc4525d5c8
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

GET cdn.cloudimagesb.com/cti/7d/00/a0/7d00a008556ebc4e68d1de531274e928/1658920033.png

45.133.44.9

200 OK

144 kB

URL GET HTTPS

cdn.cloudimagesb.com/cti/7d/00/a0/7d00a008556ebc4e68d1de531274e928/1658920033.png

IP / ASN

45.133.44.9

#39572 DataWeb Global Group B.V.

Requested byhttps://superioritydingy.com/api/users?token=L3dhdGNoLjE2ODc1MjczNDkxNDI_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%3D%3D&uuid=ea586142-dfd2-44f1-81be-37dd01f66c9b%3A2%3A1&pii=&in=false

Resource Info

File typePNG image data, 300 x 250, 8-bit/color RGBA, non-interlaced

First Seen2023-04-09

Last Seen2024-08-21

Times Seen2111

Size144 kB (144379 bytes)

MD533c304429dc1a4408a96e6a74ffa2feb

SHA1c45fa8e65528d1bb2b46bf8a28af9eeaa1903d04

SHA256dbed482e5948ead5587d30a22306a5b611305f704de940bd22c76daf90e0a314

Certificate Info

IssuerLet's Encrypt

Subjectcdn.cloudimagesb.com

Fingerprint71:EC:C0:22:20:76:60:90:92:4C:5C:F3:AD:17:3C:41:B5:00:25:AF

ValidityThu, 23 Nov 2023 05:00:53 GMT - Wed, 21 Feb 2024 05:00:52 GMT

HTTP Headers

GET /cti/7d/00/a0/7d00a008556ebc4e68d1de531274e928/1658920033.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://superioritydingy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 21 Dec 2023 10:34:10 GMT
content-type: image/png
content-length: 144379
server: nginx/1.21.6
last-modified: Wed, 27 Jul 2022 11:07:21 GMT
etag: "62e11c69-233fb"
expires: Sat, 23 Dec 2023 10:34:10 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

GET superioritydingy.com/favicon.ico

192.243.61.227

200 OK

0 B

URL GET HTTPS

superioritydingy.com/favicon.ico

IP / ASN

192.243.61.227

#39572 DataWeb Global Group B.V.

Resource Info

File typeN/A

First Seen0001-01-01

Last Seen2025-08-06

Times Seen5691118

Size0 B (0 bytes)

MD5d41d8cd98f00b204e9800998ecf8427e

SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Certificate Info

IssuerLet's Encrypt

Subjectsuperioritydingy.com

FingerprintDD:5E:38:9F:CF:14:09:BC:0E:91:2E:45:81:0D:D6:09:6A:06:EE:3F

ValidityFri, 15 Dec 2023 09:53:35 GMT - Thu, 14 Mar 2024 09:53:34 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: superioritydingy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://superioritydingy.com/api/users?token=L3dhdGNoLjE2ODc1MjczNDkxNDI_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%3D%3D&uuid=ea586142-dfd2-44f1-81be-37dd01f66c9b%3A2%3A1&pii=&in=false
Cookie: u_pl=21285632; ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoyMTI4NTYzMiwiayI6IjdmMDE1MzUyMGMzMmJkZGFkNzE2OTM2ZjE5NTdmYTgwIiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjozMjA1Njg3LCJwaWQiOjE0MTA4MzYsImFuIjp0cnVlLCJsYW4iOnRydWUsImNpZCI6MywiYWlkIjo1LCJwdCI6NCwicGsiOiJ0Mzd3ZzRucDRxIiwiY3BrcyI6eyIyOCI6ImM5M2U2NDkzOWZmN2E5NGFmMjc2MzcyNjE1NDY3OGMzIn0sInQiOjF9LCJ1Ijp7InUiOjEsImF1IjoxLCJkIjp7ImlkIjo5MDc1MzQ1NywiaWRzIjoiIiwiaWMiOmZhbHNlLCJuIjoiRGVza3RvcCxFbXVsYXRvciIsInYiOiJVbmtub3duIiwibSI6IlVua25vd24iLCJmIjoxLCJmbiI6IkRlc2t0b3AiLCJvaWQiOjM4OTE0LCJvbiI6IldpbmRvd3MiLCJvdiI6IjEwLjAiLCJiaWQiOjEyMDYyNSwiYm4iOiJGaXJlZm94IiwiYnYiOiIxMDUuMCIsInd2IjpmYWxzZSwiZSI6ZmFsc2UsImFiIjpmYWxzZX0sImMiOnsiaWQiOjE2MiwiYyI6Ik5PIiwibiI6Ik5vcndheSJ9LCJhIjpmYWxzZSwiY3IiOnsibiI6IkJsaXggU29sdXRpb25zIn0sInhmIjoiIiwiaXhmIjpmYWxzZSwiaWd4ZiI6ZmFsc2UsInVwIjp0cnVlLCJyIjoiaHR0cHM6Ly9waWthbGFicy5vcmcvIiwiYXIiOltdfX0.XV98CG3gcDuQGEkQuN2hQsbuxfxfAUqfim1NbpI-Wpc; uid_id2=ea586142-dfd2-44f1-81be-37dd01f66c9b:2:1; cjs=t
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 21 Dec 2023 10:34:10 GMT
Content-Type: image/x-icon
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 16df872ce1a8e9ec165aef08764037b7
Strict-Transport-Security: max-age=0; includeSubdomains