Report - review-violationn.vercel.app/request.html

Report Overview

Submitted URL
review-violationn.vercel.app/request.html
IP
76.76.21.61
ASN
#16509 AMAZON-02
Submitted
2024-05-07 18:39:56
Access
public
Website Title
review-violationn.vercel.app/request.html
Final URL
review-violationn.vercel.app/request.html
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
8

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
review-violationn.vercel.app	unknown	unknown	No data	No data	1.9 kB	18 kB	76.76.21.61
cdn.glitch.global	282615	2021-09-09	2022-01-13	2024-04-13	498 B	7.4 kB	151.101.66.132

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-05-06	medium	review-violationn.vercel.app/	Facebook, Inc.
2024-05-06	medium	review-violationn.vercel.app/	Facebook, Inc.
2024-05-06	medium	review-violationn.vercel.app/	Facebook, Inc.
2024-05-06	medium	review-violationn.vercel.app/	Facebook, Inc.

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (0)

HTTP Transactions (5)

URL IP Response Size

review-violationn.vercel.app/Action%20_%20Required_files/home.png

76.76.21.61

404 Not Found

39 B

URL GET HTTP/2
review-violationn.vercel.app/Action%20_%20Required_files/home.png
IP
76.76.21.61:443
ASN
#16509 AMAZON-02

Requested by
https://review-violationn.vercel.app/request.html
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4
ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT

File type
ASCII text
Size
39 B (39 bytes)
Hash
d4ac7f1bba70ba87c56e6d93092b7cca
96492a95a7f9153eed58a3598c4cce56edc6f8d1
91218093a08027e8f69c8051f9deef1fe6c22b278b3f6bdf761e7587cb272774

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Facebook, Inc.

HTTP Headers

GET /Action%20_%20Required_files/home.png HTTP/1.1
Host: review-violationn.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://review-violationn.vercel.app/request.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
cache-control: public, max-age=0, must-revalidate
content-type: text/plain; charset=utf-8
date: Tue, 07 May 2024 18:39:32 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-error: NOT_FOUND
x-vercel-id: arn1::vdskl-1715107172331-c38bc8bce1cd
content-length: 39
X-Firefox-Spdy: h2

cdn.glitch.global/cbf8be26-0413-4201-9418-b298e829656a/download%20(1).jfif?v=1698098011376

151.101.66.132

200 OK

6.7 kB

URL GET HTTP/2
cdn.glitch.global/cbf8be26-0413-4201-9418-b298e829656a/download%20(1).jfif?v=1698098011376
IP
151.101.66.132:443
ASN
#54113 FASTLY

Requested by
https://review-violationn.vercel.app/request.html
Certificate
IssuerLet's Encrypt
Subjectcdn.glitch.global
FingerprintF2:EB:85:15:C1:89:0D:2A:EF:A5:2E:07:1E:4F:69:31:EF:1C:8C:06
ValiditySun, 31 Mar 2024 19:31:34 GMT - Sat, 29 Jun 2024 19:31:33 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 466x275, components 3
Size
6.7 kB (6672 bytes)
Hash
50ab27ee56b456f752c3ab47d593b6ed
121479561aa5f11f6e88915a20f4c3c97a2ae035
a6aaca4023daaa66aeb85fa91a18a688ff46621acb7bb5ced681bea5bd13c75f

HTTP Headers

GET /cbf8be26-0413-4201-9418-b298e829656a/download%20(1).jfif?v=1698098011376 HTTP/1.1
Host: cdn.glitch.global
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://review-violationn.vercel.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-amz-id-2: 4NJ61BXX9YvebSvgtRnxUcEXHrxo1f5rrwqetbLBSlFuvjUH9wrr/Yc7YEmZaFF8Wlw4u9Nbya8=
x-amz-request-id: C9ZGATGKNEK0H2DR
last-modified: Mon, 23 Oct 2023 21:53:32 GMT
etag: "50ab27ee56b456f752c3ab47d593b6ed"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000
content-type: image/jpeg
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
access-control-allow-methods: GET, HEAD, POST
access-control-allow-origin: *
content-security-policy: script-src 'none'
accept-ranges: bytes
age: 2606339
date: Tue, 07 May 2024 18:39:32 GMT
x-served-by: cache-iad-kcgs7200165-IAD, cache-hel1410031-HEL
x-cache: HIT, HIT
x-cache-hits: 6335, 0
x-timer: S1715107172.425015,VS0,VE1
content-length: 6672
X-Firefox-Spdy: h2

review-violationn.vercel.app/style1.css

76.76.21.61

200 OK

6.5 kB

URL GET HTTP/2
review-violationn.vercel.app/style1.css
IP
76.76.21.61:443
ASN
#16509 AMAZON-02

Requested by
https://review-violationn.vercel.app/request.html
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4
ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT

File type
ASCII text
Size
6.5 kB (6536 bytes)
Hash
de26711e269183a63729217f05224766
d50780d1c8e4f1c69cfbb11b7c8fccaf30652a4c
fa9d8389842ce7055c21c75b0fa67263bcf8b93bb96316b1165f0cba32d0cb79

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Facebook, Inc.

HTTP Headers

GET /style1.css HTTP/1.1
Host: review-violationn.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://review-violationn.vercel.app/request.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
age: 0
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="style1.css"
content-encoding: br
content-type: text/css; charset=utf-8
date: Tue, 07 May 2024 18:39:32 GMT
etag: W/"de26711e269183a63729217f05224766"
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::rqbqv-1715107172330-1aa421401ff4
X-Firefox-Spdy: h2

review-violationn.vercel.app/favicon.ico

76.76.21.61

404 Not Found

39 B

URL GET HTTP/2
review-violationn.vercel.app/favicon.ico
IP
76.76.21.61:443
ASN
#16509 AMAZON-02

Requested by
https://review-violationn.vercel.app/request.html
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4
ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT

File type
ASCII text, with no line terminators
Size
39 B (39 bytes)
Hash
ebbfc186049b57814df4973aac4a24cb
3a6b51526582d19a21a365962d8f9ae0d60ba47e
af0c10b9bb4fc6616ce960677e651b73a362583043fe1b454b72997a571b6751

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Facebook, Inc.

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: review-violationn.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://review-violationn.vercel.app/request.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
cache-control: public, max-age=0, must-revalidate
content-type: text/plain; charset=utf-8
date: Tue, 07 May 2024 18:39:32 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-error: NOT_FOUND
x-vercel-id: arn1::7qff2-1715107172600-2477d8737c0b
content-length: 39
X-Firefox-Spdy: h2

review-violationn.vercel.app/request.html

76.76.21.61

200 OK

9.3 kB

URL User Request GET HTTP/2
review-violationn.vercel.app/request.html
IP
76.76.21.61:443
ASN
#16509 AMAZON-02

Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4
ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT

File type
HTML document, ASCII text, with very long lines (9902), with no line terminators
Size
9.3 kB (9338 bytes)
Hash
ee96a6c62b85f4871c5911d966db6bd4
0bafcff511530353888ceb66adba28f0e71b5091
209dbfe1d6cf04f534e028e5fb8eac9cc544a6a6df5305642c7f793694149ec6

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Facebook, Inc.

HTTP Headers

GET /request.html HTTP/1.1
Host: review-violationn.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 0
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="request.html"
content-encoding: br
content-type: text/html; charset=utf-8
date: Tue, 07 May 2024 18:39:32 GMT
etag: W/"a8a0776437cd337d07338d01cef6e4d5"
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::rqbqv-1715107171836-3e9565102107
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (0)

HTTP Transactions (5)

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers