Report - www.maskmeta.cyou/

Report Overview

Visited public
2023-11-03 11:38:16
Tags
URL
www.maskmeta.cyou/
Finishing URL
www.maskmeta.cyou/
IP / ASN
194.124.216.72
#3214 xTom GmbH
Title
MetaMask - A crypto wallet & gateway to blockchain apps

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
i.ytimg.com	109	2007-12-11	2012-10-03 19:11:04	2023-11-03 09:40:54	894 B	22 kB	142.250.74.182
fonts.gstatic.com	unknown	2008-02-11	2014-09-09 02:40:21	2023-11-03 09:30:40	3.7 kB	99 kB	216.58.207.227
yt3.ggpht.com	203	2008-01-16	2014-01-15 17:55:17	2023-11-03 05:10:13	485 B	3.2 kB	142.250.74.161
perf.hsforms.com	10768	2013-09-18	2020-07-03 15:11:28	2023-11-03 07:52:03	508 B	1.1 kB	104.18.160.125
jnn-pa.googleapis.com	2640	2005-01-25	2021-11-16 07:12:21	2023-11-03 10:02:32	2.5 kB	35 kB	142.250.74.74
fonts.googleapis.com	8877	2005-01-25	2013-06-10 22:14:26	2023-11-03 09:31:26	450 B	1.4 kB	142.250.74.106
www.maskmeta.cyou	unknown	2023-09-21	2023-11-02 17:45:18	2023-11-03 02:21:51	13 kB	2.3 MB	194.124.216.72
forms.hsforms.com	5160	2013-09-18	2018-03-07 16:21:13	2023-11-03 08:31:20	482 B	3.2 kB	104.18.160.125
www.youtube.com	90	2005-02-15	2013-04-13 09:43:20	2023-11-03 05:09:34	5.8 kB	1.1 MB	172.217.21.174
www.google.com	7	1997-09-15	2015-05-10 13:11:19	2023-09-20 20:05:47	4.5 kB	357 kB	142.250.74.164
www.gstatic.com	unknown	2008-02-11	2016-07-26 11:37:06	2023-11-03 10:14:24	3.9 kB	442 kB	142.250.74.35

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2023-11-02	medium	www.maskmeta.cyou/	Crypto/Wallet
2023-11-02	medium	www.maskmeta.cyou/	Crypto/Wallet
2023-11-02	medium	www.maskmeta.cyou/	Crypto/Wallet
2023-11-02	medium	www.maskmeta.cyou/	Crypto/Wallet
2023-11-02	medium	www.maskmeta.cyou/	Crypto/Wallet
2023-11-02	medium	www.maskmeta.cyou/	Crypto/Wallet
2023-11-02	medium	www.maskmeta.cyou/	Crypto/Wallet
2023-11-02	medium	www.maskmeta.cyou/	Crypto/Wallet
2023-11-02	medium	www.maskmeta.cyou/	Crypto/Wallet
2023-11-02	medium	www.maskmeta.cyou/	Crypto/Wallet
2023-11-02	medium	www.maskmeta.cyou/	Crypto/Wallet
2023-11-02	medium	www.maskmeta.cyou/	Crypto/Wallet
2023-11-02	medium	www.maskmeta.cyou/	Crypto/Wallet
2023-11-02	medium	www.maskmeta.cyou/	Crypto/Wallet
2023-11-02	medium	www.maskmeta.cyou/	Crypto/Wallet
2023-11-02	medium	www.maskmeta.cyou/	Crypto/Wallet
2023-11-02	medium	www.maskmeta.cyou/	Crypto/Wallet
2023-11-02	medium	www.maskmeta.cyou/	Crypto/Wallet
2023-11-02	medium	www.maskmeta.cyou/	Crypto/Wallet
2023-11-02	medium	www.maskmeta.cyou/	Crypto/Wallet
2023-11-02	medium	www.maskmeta.cyou/	Crypto/Wallet
2023-11-02	medium	www.maskmeta.cyou/	Crypto/Wallet
2023-11-02	medium	www.maskmeta.cyou/	Crypto/Wallet
2023-11-02	medium	www.maskmeta.cyou/	Crypto/Wallet
2023-11-02	medium	www.maskmeta.cyou/	Crypto/Wallet
2023-11-02	medium	www.maskmeta.cyou/	Crypto/Wallet
2023-11-02	medium	www.maskmeta.cyou/	Crypto/Wallet
2023-11-02	medium	www.maskmeta.cyou/	Crypto/Wallet
2023-11-02	medium	www.maskmeta.cyou/	Crypto/Wallet

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (164)

	URL	From	Size	First Seen	Last Seen
	www.youtube.com/s/player/9d15588c/player_ias.vflset/en_US/base.js	ScriptElement	2.4 MB	2023-11-01	2023-11-08
Pretty URL www.youtube.com/s/player/9d15588c/player_ias.vflset/en_US/base.js IP 172.217.21.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-01 16:19 Last Seen2023-11-08 08:31 Times Seen916 Hash fc1b6b72d00a8f12c728d41730980d5a 6e2c1a91c7802aed7603a0f2bac758d29a9ef30f ff66acf8eba8a719216c7d21bed3c0e6daef74c80ade61a784a21db4913ad8f4 Loading...

	forms.hsforms.com/embed/v3/form/4795067/2b64112b-f442-4840-9ace-b11dccd5f744?callback=hs_reqwest_0&hutk=	ScriptElement	5.8 kB	2023-11-03	2023-11-03
Pretty URL forms.hsforms.com/embed/v3/form/4795067/2b64112b-f442-4840-9ace-b11dccd5f744?callback=hs_reqwest_0&hutk= IP 104.18.160.125 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-03 12:38 Last Seen2023-11-03 12:38 Times Seen1 Hash 1700f58db34cb53b413c353cf49d370c 47958f3c7f75d75c2724e41395ebf83e2931298f cf8936a468aa91216c20913df910d73d233e90c2bc32ef0fc761d364049df3d6 Loading...

	www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm&co=aHR0cHM6Ly93d3cubWFza21ldGEuY3lvdTo0NDM.&hl=en&v=3sU2vDRVDmUU2E0Ro4VadvPr&size=invisible&badge=inline&cb=9pap6faml05z	ScriptElement	75 B	2023-03-07	2025-05-11
Pretty URL www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm&co=aHR0cHM6Ly93d3cubWFza21ldGEuY3lvdTo0NDM.&hl=en&v=3sU2vDRVDmUU2E0Ro4VadvPr&size=invisible&badge=inline&cb=9pap6faml05z IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:15 Last Seen2025-05-11 13:25 Times Seen14266 Hash dca9d53787fff314e5bd1a123b28906a 1350c858f60bbb03d1b53b05cbad6cea82ff29d1 2475d902b4182bac667d464a44c89ee405e5cfd64156b30f811557cf2b347e2f Loading...

	www.youtube.com/s/player/9d15588c/www-embed-player.vflset/www-embed-player.js	ScriptElement	328 kB	2023-11-01	2023-11-08
Pretty URL www.youtube.com/s/player/9d15588c/www-embed-player.vflset/www-embed-player.js IP 172.217.21.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-01 16:19 Last Seen2023-11-08 08:31 Times Seen843 Hash a7c1c62310f68f1a1c6a0b75b5039eec f0907153b862018c2938c3ce5c7d1faf060903ed 781ca116ffbdbcc5677786946676f2fa8bd27fbb34137972524a4a11cc885a28 Loading...

	www.gstatic.com/recaptcha/releases/3sU2vDRVDmUU2E0Ro4VadvPr/recaptcha__en.js	ScriptElement	478 kB	2023-11-02	2023-11-10
Pretty URL www.gstatic.com/recaptcha/releases/3sU2vDRVDmUU2E0Ro4VadvPr/recaptcha__en.js IP 142.250.74.35 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-02 08:53 Last Seen2023-11-10 04:27 Times Seen4605 Hash 0de5995e9ac19853eeffb8bbe74e6a7d 719e6fbcd0b38df859a6f7a8c51a820d7bf5970d c7f150e7d0ed3cf657e531221f2640209e6daebed0fbaa6ab7e430ce8eb56a37 Loading...

	www.maskmeta.cyou/gtag/js.js	ScriptElement	104 kB	2023-03-07	2025-05-10
Pretty URL www.maskmeta.cyou/gtag/js.js IP 194.124.216.72 ASN #3214 xTom GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:59 Last Seen2025-05-10 22:20 Times Seen22 Hash ec11cf95bdd50e2064356c44fa85f4ab 4ff856f051e417e44d8b4a9a51c376c72dc016b5 bcfbcedea9f3c8632fd5ac2bd6b803a7a6472f4a3eb6452e8c7d03a7af083fdc Loading...

	www.google.com/recaptcha/enterprise/bframe?hl=en&v=3sU2vDRVDmUU2E0Ro4VadvPr&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm	ScriptElement	0 B	0001-01-01	2025-05-11
Pretty URL www.google.com/recaptcha/enterprise/bframe?hl=en&v=3sU2vDRVDmUU2E0Ro4VadvPr&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-05-11 14:25 Times Seen4655039 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.youtube.com/embed/YVgfHZMFFFQ?enablejsapi=1&origin=https%3A%2F%2Fmetamask.io	ScriptElement	108 B	2023-08-01	2025-05-11
Pretty URL www.youtube.com/embed/YVgfHZMFFFQ?enablejsapi=1&origin=https%3A%2F%2Fmetamask.io IP 172.217.21.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-01 01:42 Last Seen2025-05-11 13:48 Times Seen46292 Hash 6247dd5d2d787d98a0d5e4966146d550 51dcfa67e8318f689e1a4589a9def15c6f9a23bd cbb9ab7439a233ff75c44799819b7a7de5fdb18f4e30f0236430bc751530c211 Loading...

	www.youtube.com/embed/YVgfHZMFFFQ?enablejsapi=1&origin=https%3A%2F%2Fmetamask.io	ScriptElement	134 B	2023-03-07	2025-05-11
Pretty URL www.youtube.com/embed/YVgfHZMFFFQ?enablejsapi=1&origin=https%3A%2F%2Fmetamask.io IP 172.217.21.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02 Last Seen2025-05-11 13:48 Times Seen39957 Hash e18eb9d0972d240f1a5456179bb6523b 65255f106adcff2907a98e295a8e7a38fe2884c4 3d68db2b85d5a2915743399f09dc438963f0c50f68b02df05d47a372661603e8 Loading...

	www.google-analytics.com/analytics.js	ScriptElement	4.7 kB	2023-04-11	2025-05-11
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-05-11 14:25 Times Seen341133 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	www.maskmeta.cyou/	ScriptElement	69 B	2023-03-07	2024-08-21
Pretty URL www.maskmeta.cyou/ IP 194.124.216.72 ASN #3214 xTom GmbH Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 22:02 Last Seen2024-08-21 06:12 Times Seen14 Hash 5bfe438db73c17486a5a13927299f222 b3d7752c6ef9e6e6a0fe269719cd2599d291270c 56b8b12efd27f854b5c610c39dfe21eb70b4358b2a5bd221e89283aad6909634 Loading...

	www.youtube.com/embed/YVgfHZMFFFQ?enablejsapi=1&origin=https%3A%2F%2Fmetamask.io	ScriptElement	2.1 kB	2023-10-25	2025-05-11
Pretty URL www.youtube.com/embed/YVgfHZMFFFQ?enablejsapi=1&origin=https%3A%2F%2Fmetamask.io IP 172.217.21.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-10-25 23:30 Last Seen2025-05-11 13:48 Times Seen37990 Hash e795f2b1b495c31028edb86cb4f4e7b5 d5d0d2d9e1538e5869ff9828d64664b94d6de653 02c0ff09b0683b8853beac78e1dd6a3af9a8e10691130f6e1ff99647756e541f Loading...

	www.maskmeta.cyou/	ScriptElement	209 B	2023-03-10	2025-04-24
Pretty URL www.maskmeta.cyou/ IP 194.124.216.72 ASN #3214 xTom GmbH Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-10 13:56 Last Seen2025-04-24 11:58 Times Seen70 Hash 66e47ac826e0dcef5eccdc28248ad6f2 d8b2c6d92a715712236b91445a74822ae99f9dda f78800a04e9d8f5f15f063d1929b9448c9b4710c8c23881413957d8d4c070bc6 Loading...

	www.maskmeta.cyou/forms/v2.js	ScriptElement	584 kB	2023-03-07	2024-08-21
Pretty URL www.maskmeta.cyou/forms/v2.js IP 194.124.216.72 ASN #3214 xTom GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:59 Last Seen2024-08-21 06:51 Times Seen22 Hash ac8d91738c2c24a19b3af80a4da17919 edd091b78ad1f925d6722a20ca82d51299d7eeef 7b01eefec75fa2dedde4c39ef0d71394acf5a68474c93ffd5a0e05db0bf75503 Loading...

	www.youtube.com/s/player/9d15588c/player_ias.vflset/en_US/embed.js	ScriptElement	56 kB	2023-11-01	2023-11-08
Pretty URL www.youtube.com/s/player/9d15588c/player_ias.vflset/en_US/embed.js IP 172.217.21.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-01 18:50 Last Seen2023-11-08 08:31 Times Seen831 Hash 00fcd8f19f33cdd43dfbd93f93b1cacf 22652f87a2dbe4da673b3b8957c76f122e803559 84903214c4c40def6908be4fb42fd9f2b01ef82af69eee3ec6c8dbcbdaa6a7e7 Loading...

	unknown	ScriptElement	38 kB	2023-10-13	2023-11-04
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-13 09:46 Last Seen2023-11-04 07:38 Times Seen430 Hash 5285669a995362a19b937a27edde79d6 636a0e93e467c3428775c05e64d6aed60f0db24b 3c2a82baa45695e26f0050791ecb1a513794d413b9113cc2ff3ae967ee43c517 Loading...

	www.maskmeta.cyou/	ScriptElement	172 B	2023-03-11	2024-08-21
Pretty URL www.maskmeta.cyou/ IP 194.124.216.72 ASN #3214 xTom GmbH Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-11 10:03 Last Seen2024-08-21 06:12 Times Seen13 Hash f1c01ab4d4455aa7a60670e3bebbaff6 da5452b532134321a1e942bde158c7a47dbf5a6c cda05169862ebe0c9b1dfd87fe1e7677fa65718295e88afb16b6568e41981866 Loading...

	www.youtube.com/embed/YVgfHZMFFFQ?enablejsapi=1&origin=https%3A%2F%2Fmetamask.io	ScriptElement	84 kB	2024-08-20	2024-08-20
Pretty URL www.youtube.com/embed/YVgfHZMFFFQ?enablejsapi=1&origin=https%3A%2F%2Fmetamask.io IP 172.217.21.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 21:17 Last Seen2024-08-20 21:17 Times Seen1 Hash 3cc1f9fea39c8fce5d314206867cd36c 15e550ec9506642e3d32805d92eb5ec4bafe71fc 6eaef84dc756608a7128e3e24c6ab2078e5b33325bf56691147e1a28319bb8e4 Loading...

	www.maskmeta.cyou/js/jquery-3.5.1.min.dc5e7f18c8.js	ScriptElement	90 kB	2023-03-07	2025-05-11
Pretty URL www.maskmeta.cyou/js/jquery-3.5.1.min.dc5e7f18c8.js IP 194.124.216.72 ASN #3214 xTom GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-11 13:49 Times Seen108951 Hash dc5e7f18c8d36ac1d3d4753a87c98d0a c8e1c8b386dc5b7a9184c763c88d19a346eb3342 f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d Loading...

	www.youtube.com/embed/YVgfHZMFFFQ?enablejsapi=1&origin=https%3A%2F%2Fmetamask.io	ScriptElement	1.0 kB	2023-06-13	2025-05-11
Pretty URL www.youtube.com/embed/YVgfHZMFFFQ?enablejsapi=1&origin=https%3A%2F%2Fmetamask.io IP 172.217.21.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-13 01:22 Last Seen2025-05-11 13:48 Times Seen39963 Hash fe81353f0c3e106bb59598d92fd49a12 cd09955588a1d236a25a76d3f774418a829cb5c4 a366197fa3629365ab26195a99befce51c8f8ec90252df02e0b4cb44bd52d020 Loading...

	www.youtube.com/embed/YVgfHZMFFFQ?enablejsapi=1&origin=https%3A%2F%2Fmetamask.io	ScriptElement	26 B	2023-03-07	2025-05-11
Pretty URL www.youtube.com/embed/YVgfHZMFFFQ?enablejsapi=1&origin=https%3A%2F%2Fmetamask.io IP 172.217.21.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02 Last Seen2025-05-11 13:48 Times Seen39950 Hash 173a08c5d6adc5c93611a599bcb2c717 735a7301e66ae2c3584357f7bf0bf09eefb62df0 271e6368679a21c3416e2a0325db33d6bc445d601c72a49914081b5efd0cdf3f Loading...

	www.maskmeta.cyou/	ScriptElement	117 B	2023-03-11	2024-08-21
Pretty URL www.maskmeta.cyou/ IP 194.124.216.72 ASN #3214 xTom GmbH Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-11 10:03 Last Seen2024-08-21 06:12 Times Seen12 Hash c4cfec4478d1cf85703968c450a81add 8729e2010d522ac569d20e3f8fb82a02b068ec20 98268e1c9ad1a3613a827959dfad04a82b4c553547d5ed84bd4ba79b0d396439 Loading...

	www.youtube.com/embed/YVgfHZMFFFQ?enablejsapi=1&origin=https%3A%2F%2Fmetamask.io	ScriptElement	74 B	2023-06-26	2025-05-03
Pretty URL www.youtube.com/embed/YVgfHZMFFFQ?enablejsapi=1&origin=https%3A%2F%2Fmetamask.io IP 172.217.21.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-26 22:06 Last Seen2025-05-03 16:42 Times Seen18840 Hash ccb754e8fcd1e8e893b7bed4939523ca 68a319410da1aef2fd70a8ebc458817aaecbfdd1 d84a8e7de97afc23d0e458cfb0adccb09dfc8ef4ed8b9a6159d8ceb091fe03f0 Loading...

	www.maskmeta.cyou/js/webflow.js	ScriptElement	568 kB	2023-03-07	2025-05-10
Pretty URL www.maskmeta.cyou/js/webflow.js IP 194.124.216.72 ASN #3214 xTom GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18 Last Seen2025-05-10 22:20 Times Seen95 Hash aa932307fd6818913c360441a1d21397 5d832542de495c05a829b2cdba867b8e508a69dc 8de8a14b1b42b80ff2a89d3afaccd40bad8e6f1b507cc20fe78408c8ff7aa252 Loading...

	www.google.com/recaptcha/enterprise.js?onload=hsRecaptchaLoadCallback&render=explicit&isolated=true	ScriptElement	1.0 kB	2023-11-03	2023-11-09
Pretty URL www.google.com/recaptcha/enterprise.js?onload=hsRecaptchaLoadCallback&render=explicit&isolated=true IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-03 12:38 Last Seen2023-11-09 14:37 Times Seen7 Hash ca445e0df8314d77d3379a952f63c0d2 f54afdecc94ba50b0cfbb9c4575ec38c6ea220e5 65e4a80ef2db9200ad31b69f5a00d380699f5f9bb32b624ae930954f516cdd7e Loading...

	www.youtube.com/s/player/9d15588c/player_ias.vflset/en_US/remote.js	ScriptElement	119 kB	2023-11-01	2023-11-08
Pretty URL www.youtube.com/s/player/9d15588c/player_ias.vflset/en_US/remote.js IP 172.217.21.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-01 18:50 Last Seen2023-11-08 08:25 Times Seen699 Hash f402c83698e962790e687760233c98ac 7b4ea70005245292f4e1c36e896c3320a662e6c6 6840401b7255512c5b9900409a9644d4e9b3cec94134f2154c1b93f80dc7bbc0 Loading...

	www.maskmeta.cyou/sandbox%20eval%20code		147 B	2023-04-11	2025-05-11
Pretty URL www.maskmeta.cyou/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-05-11 14:25 Times Seen341934 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	www.youtube.com/embed/YVgfHZMFFFQ?enablejsapi=1&origin=https%3A%2F%2Fmetamask.io	ScriptElement	13 B	2023-03-07	2025-05-11
Pretty URL www.youtube.com/embed/YVgfHZMFFFQ?enablejsapi=1&origin=https%3A%2F%2Fmetamask.io IP 172.217.21.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02 Last Seen2025-05-11 13:48 Times Seen39776 Hash d8fb965e7ead2924508e97e5326bd3b1 fae376d0cb54d4433b7bdc9aba04690cd6cb5d27 57bb660c2fdf4369ff8e37f99b26963dba87c120b80c443ff3d31e030ab3a0f5 Loading...

	www.maskmeta.cyou/ajax/libs/webfont/1.6.26/webfont.js	ScriptElement	13 kB	2023-03-07	2025-05-11
Pretty URL www.maskmeta.cyou/ajax/libs/webfont/1.6.26/webfont.js IP 194.124.216.72 ASN #3214 xTom GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-05-11 12:35 Times Seen17544 Hash 7c96a5f11d9741541d5e3c42ff6380d7 d3fa2564c021cf730e58ffddb138cf6b57ed126e 81016ac6be850b72df5d4faa0c3cec8e2c1b0ba0045712144a6766adfad40bee Loading...

	www.maskmeta.cyou/	ScriptElement	364 B	2023-09-21	2024-08-21
Pretty URL www.maskmeta.cyou/ IP 194.124.216.72 ASN #3214 xTom GmbH Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-21 02:26 Last Seen2024-08-21 06:12 Times Seen12 Hash 236c65c1fb32d93c2b354fb2567a6ba5 b0e6c896883bda942d02c83294e11625793f3c55 9419c1be1bd6c9501cc559e76d92e35d0decb90256cd21072361e3ad1ec5c945 Loading...

	www.maskmeta.cyou/logo.js	ScriptElement	46 kB	2023-03-07	2025-05-06
Pretty URL www.maskmeta.cyou/logo.js IP 194.124.216.72 ASN #3214 xTom GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02 Last Seen2025-05-06 11:44 Times Seen59 Hash 62e0e533c3ce4dc08ebf2a640f22164c 9a930c6f184104a9f7403244a841d0fe208b27d9 6137618d3823a779dd702a546f64a767860341256ed661e1204b2dbdfc680ef4 Loading...

	www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm&co=aHR0cHM6Ly93d3cubWFza21ldGEuY3lvdTo0NDM.&hl=en&v=3sU2vDRVDmUU2E0Ro4VadvPr&size=invisible&badge=inline&cb=9pap6faml05z	ScriptElement	52 kB	2024-08-20	2024-08-20
Pretty URL www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm&co=aHR0cHM6Ly93d3cubWFza21ldGEuY3lvdTo0NDM.&hl=en&v=3sU2vDRVDmUU2E0Ro4VadvPr&size=invisible&badge=inline&cb=9pap6faml05z IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 21:17 Last Seen2024-08-20 21:17 Times Seen1 Hash eff4c8b557148836e76670ccc27aec79 48108a93ac45b907239888643486870de1c596db 69fbd07516f0f83ecfac969649d0768138d1dbfe772fdfa353b211811f300906 Loading...

	www.youtube.com/embed/YVgfHZMFFFQ?enablejsapi=1&origin=https%3A%2F%2Fmetamask.io	ScriptElement	25 B	2023-03-07	2024-08-21
Pretty URL www.youtube.com/embed/YVgfHZMFFFQ?enablejsapi=1&origin=https%3A%2F%2Fmetamask.io IP 172.217.21.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:07 Last Seen2024-08-21 09:43 Times Seen285 Hash a380800e184ee801a069441f70dadb33 03971b67464e316379a5a0a033581a5eb729c79a bd5c42d504f846cf27d974fc60481f57efaada8ae04373db9579498547f6c216 Loading...

		Size	First Seen	Last Seen
	#1 Eval - c6b9f576bcc89ca57643e198833d3e70	26 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen433 Hash c6b9f576bcc89ca57643e198833d3e70 6e8992500a10923f0dc2e2aa2c60cfa235e52601 403125651e7ce6756e99a6a32c7bd7a2e4f589d8e009e915c6799c29c6684f97 Loading...

	#2 Eval - 362968a10b0ad18abf80da819fdb31cb	79 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen433 Hash 362968a10b0ad18abf80da819fdb31cb b757b8714778d5a156e6e7549f1361ffb6c2b434 a738116d635040cdd3685a363c5c07de0aad3ab590060ea4ca5c6e55be43d7b2 Loading...

	#3 Eval - 293efcdaa90375b742e19410ba039122	22 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen432 Hash 293efcdaa90375b742e19410ba039122 5486f9eda749433633880ebdbd437a113864bb82 18ca9dbe14ca384c4b2ea6f84f1a58ff4eedadacac12afca2e57f4b56f0be0c5 Loading...

	#4 Eval - e101e4d491b896b2063bbecd7f577ac2	97 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen433 Hash e101e4d491b896b2063bbecd7f577ac2 bcb2fbb7288ff19c675d9f7c80fd7e088a17d7a0 497aba780ee84cee3b4e3f4d7d54553a3de18fb50c3ab828c3e4076b81ae2506 Loading...

	#5 Eval - 16c670c8392b7af73de1fd7ff549833d	138 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen433 Hash 16c670c8392b7af73de1fd7ff549833d 724f79b3fc254a653c80e3b16f075d8548659a4b c575e307b812f1917600a250bab85095bdc01abfa8fdc84cfb71c1c4003e58ae Loading...

	#6 Eval - 57cec4137b614c87cb4e24a3d003a3e0	1 B	2023-03-07 01:02	2025-05-11 13:48
Pretty Observations First Seen2023-03-07 01:02 Last Seen2025-05-11 13:48 Times Seen10282 Hash 57cec4137b614c87cb4e24a3d003a3e0 23eb4d3f4155395a74e9d534f97ff4c1908f5aac 18f5384d58bcb1bba0bcd9e6a6781d1a6ac2cc280c330ecbab6cb7931b721552 Loading...

	#7 Eval - 247f446520368ec74083b375841a0011	96 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen433 Hash 247f446520368ec74083b375841a0011 5ac70c0e1d7807cef8dd217eec75d3c3a57b128a 636175358c3ba34ca58dc6e2e2d6761114898d82326ac7ea202d9b13845b980d Loading...

	#8 Eval - ec8b3ee72e18b20cff6ec76a3bfe61a2	552 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen433 Hash ec8b3ee72e18b20cff6ec76a3bfe61a2 b3f3601b3ae2903778613b12dc3c94fe9b53d69c dc13c9e82e17b36e0992447a4efa494941ea13f6ec10f674c3bc91da8d33c2d6 Loading...

	#9 Eval - 8fa14cdd754f91cc6554c9e71929cce7	1 B	2023-03-07 01:02	2025-05-11 14:01
Pretty Observations First Seen2023-03-07 01:02 Last Seen2025-05-11 14:01 Times Seen10368 Hash 8fa14cdd754f91cc6554c9e71929cce7 4a0a19218e082a343a1b17e5333409af9d98f0f5 252f10c83610ebca1a059c0bae8255eba2f95be4d1d7bcfa89d7248a82d9f111 Loading...

	#10 Eval - 2dcbad7477fd40561e8b8198f173bd47	2 B	2023-03-13 18:22	2025-05-05 14:12
Pretty Observations First Seen2023-03-13 18:22 Last Seen2025-05-05 14:12 Times Seen1404 Hash 2dcbad7477fd40561e8b8198f173bd47 c41a4b4ae13ef007bf159e37752b1d297454b600 18558cfbecef7f60340e1cc4976baa3ab6722350137755039d3fe4ea9b435bee Loading...

	#11 Eval - b1ef78dc90036717ab86416e201284cf	132 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen433 Hash b1ef78dc90036717ab86416e201284cf abf4dcc0aaf6c456a18db5956b17a00748ad4ab6 d35bc701f6deabe99536e54b53a253964e18b21324a44af4336031d3f064bb31 Loading...

	#12 Eval - d2de0afae235a838528695d18f6ba0d5	648 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen433 Hash d2de0afae235a838528695d18f6ba0d5 065f021e7280fe585e69c67704adfc5b743927b2 68b6e036110aa45db8bb00e87459e83d96b5e4d2339f17fe1ff3ee6895e9b5b9 Loading...

	#13 Eval - b2bbb7ba524c49fc9e13bef9b2bbc080	22 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen433 Hash b2bbb7ba524c49fc9e13bef9b2bbc080 042ec45e54a104c1a355d51068a6428776f6f843 7f27317836fc5308951ebecf39ad039456defbfeb9f9f84f719dca052aa1325e Loading...

	#14 Eval - 4a8a08f09d37b73795649038408b5f33	1 B	2023-03-07 01:15	2025-05-11 11:08
Pretty Observations First Seen2023-03-07 01:15 Last Seen2025-05-11 11:08 Times Seen6980 Hash 4a8a08f09d37b73795649038408b5f33 84a516841ba77a5b4648de2cd0dfcb30ea46dbb4 2e7d2c03a9507ae265ecf5b5356885a53393a2029d241394997265a1a25aefc6 Loading...

	#15 Eval - 760dc64f18f2a541880fc8c21c188671	82 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen433 Hash 760dc64f18f2a541880fc8c21c188671 708735d9dfdf6e7e0b8b3e7262cd9456d24251d3 dcc7abf365126b88d7d084c6ea89e2c1e74624d1c3c826e356b0f8c43e5f04c1 Loading...

	#16 Eval - 05b8c74cbd96fbf2de4c1a352702fbf4	6 B	2023-03-07 01:02	2025-05-11 13:48
Pretty Observations First Seen2023-03-07 01:02 Last Seen2025-05-11 13:48 Times Seen60860 Hash 05b8c74cbd96fbf2de4c1a352702fbf4 320ad267d8d969f285eda5c184f5455bd29c8c95 44ff7b02c80d38b26dd6aa31d9470aed81b32e10331a3c994fb1a9945fd847ba Loading...

	#17 Eval - 96d66a4d9708fdb6dd5597f3bbc7d624	195 B	2023-03-08 14:47	2025-05-11 12:49
Pretty Observations First Seen2023-03-08 14:47 Last Seen2025-05-11 12:49 Times Seen44681 Hash 96d66a4d9708fdb6dd5597f3bbc7d624 e10a66fa8a836f6f948941262b70e1fc928a446e 3cabac574ada654802fc1c4518d870f0791a9a3ac31371677e75fb683e47ce89 Loading...

	#18 Eval - f0ac05c8101087742370002b47b717a4	16 kB	2023-10-22 03:51	2024-08-21 03:53
Pretty Observations First Seen2023-10-22 03:51 Last Seen2024-08-21 03:53 Times Seen2 Hash f0ac05c8101087742370002b47b717a4 47754b0708113b9f41e1ca66f45c3f0a84844fd3 8b80d0e58d4cc3e4bf01cc96bec4b6b18b703aa266f4d6f07a89d3d7739241e1 Loading...

	#19 Eval - 04db42f1e864c3aa8dd86b9a989364b6	283 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen433 Hash 04db42f1e864c3aa8dd86b9a989364b6 c42b12a93d53abb215c76321d85e2f1970a8668b a1e5916875e16d9f5df174f6928206b149620d1617dde001cebd6b35690bb112 Loading...

	#20 Eval - 1cd3c693132f4c31b5b5e5f4c5eed6bd	2 B	2023-03-26 08:08	2024-12-24 19:59
Pretty Observations First Seen2023-03-26 08:08 Last Seen2024-12-24 19:59 Times Seen467 Hash 1cd3c693132f4c31b5b5e5f4c5eed6bd 6924110cde4fa051bfdc600a60620dc7aa9d3c6a eb3102a6cb586765d01fad324523ec0bc67b9efd6a2d9589c135adfedf7922cc Loading...

	#21 Eval - 782a8ad994762b8610cd032c0ac8e0bf	391 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen432 Hash 782a8ad994762b8610cd032c0ac8e0bf 7420b99e785b63d8751f820e6057e7d6d21f4c47 3580c36efe6858608db95585973bce182c3f8f93d19b032719920858792ec9e7 Loading...

	#22 Eval - 588b746363b0deb91aeaa640aea4b037	22 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen433 Hash 588b746363b0deb91aeaa640aea4b037 bce53548a648fe17e6140ef1b75a0269400a5cf4 41080b08182e0b8e5780d2ffdc8d995fe5415dcc173ab8ab40943623c2da7a8a Loading...

	#23 Eval - b44370d8c32a85d9111af6ed6578a003	319 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen433 Hash b44370d8c32a85d9111af6ed6578a003 04cc5de2190a031b6f059ce736846aacd8df1e3b a73bd454ee960f49477baff226b8d7ecd40ca9a486c17c59e7baf7e7dfcaf272 Loading...

	#24 Eval - 35e018481ba481a540d7658ca767fb2e	2 B	2023-03-12 21:10	2024-11-13 01:23
Pretty Observations First Seen2023-03-12 21:10 Last Seen2024-11-13 01:23 Times Seen698 Hash 35e018481ba481a540d7658ca767fb2e 53036e88b0d0043589dae8649aaa2aadafd2d76f df61f15e8281f8c60dc591fbd27d4e9f782f369af61ccfb54fb6699ab083d9f0 Loading...

	#25 Eval - 8fe660bf0b38d652ea28f70967fb9ae3	70 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen433 Hash 8fe660bf0b38d652ea28f70967fb9ae3 d59be5f9a8da8136677e1b13a789d87e9c3827c2 1c99f70b86baa0fb339544eab46198c9751d9445c03994ea34413bb390cd41df Loading...

	#26 Eval - e39fab68e0fd4df0a2d79f1808fece08	210 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen433 Hash e39fab68e0fd4df0a2d79f1808fece08 d61c9707e95a7e949f39990f89968e8564efc962 8375f9a9109468f8887be9d85ba667e62dea6671b089020af21235596fe95453 Loading...

	#27 Eval - 878ac27d295bb9cf7cd7e243e4f55cac	17 kB	2024-08-20 21:17	2024-08-20 21:17
Pretty Observations First Seen2024-08-20 21:17 Last Seen2024-08-20 21:17 Times Seen1 Hash 878ac27d295bb9cf7cd7e243e4f55cac d75dae81b14b34df2732552ca0ea11417e68820d 7161d64188dd03b762d292cc13362851322215b45bacfb9c7a9c1ec777127d75 Loading...

	#28 Eval - 885e137c3d6a19d2c304f32e27fa34d9	22 B	2023-10-13 09:47	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:47 Last Seen2024-08-21 04:53 Times Seen1233 Hash 885e137c3d6a19d2c304f32e27fa34d9 d3640e49392f353a89efc8cc20087cfcfa4f47a0 de7e883d0c05bc451a88f0b0645c6469fc7498038237a7e93898d9893adc701f Loading...

	#29 Eval - acc48c8ede642543902126a0b74f984b	114 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen433 Hash acc48c8ede642543902126a0b74f984b aaf26f2de017016515b8fec4292827be5ecad06a 7d76fcd54b777552ecb351c05cdf470f6e9475aedbc18d43d97da0d064516394 Loading...

	#30 Eval - 61dd5129926640f538cc972870a4b20c	141 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen433 Hash 61dd5129926640f538cc972870a4b20c 8b4029c7b7e762a10f1f24dd92931be11336b7aa 35b3a1236bde0d4f34718ee0bbbbbb22cd6d49821bab1e6acdc6bd3cb57b24c1 Loading...

	#31 Eval - 6d1da64e705bb119454cd3d6a13cb760	2 B	2023-03-08 03:54	2024-12-23 20:46
Pretty Observations First Seen2023-03-08 03:54 Last Seen2024-12-23 20:46 Times Seen849 Hash 6d1da64e705bb119454cd3d6a13cb760 24b93222f678a89dabe998f3a07dfcee1c20c351 4bb31fdd9ddc129ac98674194a967d5edea8075e1406b4e82255244ba9d88205 Loading...

	#32 Eval - 38f99abbc1d339c277c0669e7bc373c0	2 B	2023-05-11 01:36	2025-01-16 07:50
Pretty Observations First Seen2023-05-11 01:36 Last Seen2025-01-16 07:50 Times Seen945 Hash 38f99abbc1d339c277c0669e7bc373c0 cfe86a1ce53f1c1323a31d22bcd96b3ce30dd986 495496f0156b1a6cf5cbebd2d575c02cc9c68884300c14a6a759bc4129d41057 Loading...

	#33 Eval - c346f8b9d1e9eb245747ab817ecc88c8	251 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen433 Hash c346f8b9d1e9eb245747ab817ecc88c8 292e588817e0032270735316564b8764926e48d1 d4e824c2a04b20f1e8293b2ced6d131b97abd19d089f918cec038bacecbf47d8 Loading...

	#34 Eval - 6a7b2ac8565e96240d69a00519308fce	351 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen433 Hash 6a7b2ac8565e96240d69a00519308fce be17e2f7efda00d846eb4221b9817a72f6618ab4 d1472da2595653ad1d3ec287ed55e52894da3fdbd6c1f82c447f13c692e6d84a Loading...

	#35 Eval - 13a014cb9de9f7cad88d5dafb70ecb41	2 B	2023-03-26 07:31	2025-01-31 06:52
Pretty Observations First Seen2023-03-26 07:31 Last Seen2025-01-31 06:52 Times Seen560 Hash 13a014cb9de9f7cad88d5dafb70ecb41 fa114377ef35b25ecaa4d57e5084641543e02588 601b2c2473811afea7864a21e4b965a970afa4ce9eaf85dbdf01414bca66c12c Loading...

	#36 Eval - cd81e03312df01f05cc795ff9a9dfb93	2 B	2023-09-09 09:03	2025-01-02 16:46
Pretty Observations First Seen2023-09-09 09:03 Last Seen2025-01-02 16:46 Times Seen1401 Hash cd81e03312df01f05cc795ff9a9dfb93 0bd93afaa144f25dad06e9b84bc2699138203122 1e6fad3dedf13d835bf7b2f6e76521a0377617a96870d88119219e0aacc9013b Loading...

	#37 Eval - 30964c1d343b9a2672affd7db56913b4	94 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen433 Hash 30964c1d343b9a2672affd7db56913b4 0257ac1f583989a7223163cf2e1897c099e3cc78 fad0cda4f6216d777300074e463fb6e6769edbf54da04fde84c48dd3e87a0934 Loading...

	#38 Eval - 7e7ec59d1f4b21021577ff562dc3d48b	2 B	2023-04-10 11:58	2025-03-16 14:36
Pretty Observations First Seen2023-04-10 11:58 Last Seen2025-03-16 14:36 Times Seen1116 Hash 7e7ec59d1f4b21021577ff562dc3d48b b86f6db284d374188d561d46b45b188d5631609a 7a7db4726ec27397cbbd002d9819a07656cce115b481522a6caa6e24d4725695 Loading...

	#39 Eval - bcd31290689eef9a2ad75c309adb7b5f	146 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen433 Hash bcd31290689eef9a2ad75c309adb7b5f feb2fb4c1ec4329036834d92c3a603c9c74103f6 e94fd788c026eff9ad62b22772122ada10f09bd887588393924985eb7470ee27 Loading...

	#40 Eval - bd1099d61cbf73a850a83f783b110ade	266 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen433 Hash bd1099d61cbf73a850a83f783b110ade ee63caa3680b5789ba5e8c4253b30f2ab435a15b 7ba1c11d7f22814ac00448992cb60bc000ba76b717f6c367c7288442de7ddd25 Loading...

	#41 Eval - 61fb00958f1d95f01bb34870efd47936	22 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen433 Hash 61fb00958f1d95f01bb34870efd47936 1e3c43f4db70a8d6390bd141ae052224ae37bda8 700055a643eaac6cb01091d1e56c1138887aaf739ad228840995365c8fcbab56 Loading...

	#42 Eval - f465da03521180d47c811a98c793a2d6	9 B	2023-03-07 01:02	2025-05-11 12:27
Pretty Observations First Seen2023-03-07 01:02 Last Seen2025-05-11 12:27 Times Seen36945 Hash f465da03521180d47c811a98c793a2d6 9b76105ff4c8bb84cd630914d772f4cc73df0155 e8183224e440eb4578fd87c4c47735f9ede4c43b1c6ebbdcd7033e98aba6a009 Loading...

	#43 Eval - 0c838d73b30362667accde0c3c15e3c0	39 kB	2023-10-20 23:39	2024-08-21 04:00
Pretty Observations First Seen2023-10-20 23:39 Last Seen2024-08-21 04:00 Times Seen2 Hash 0c838d73b30362667accde0c3c15e3c0 88c40e61773e007ccac5904f1568e0af8def57d8 db2c40d4808e5c8bde16bb56936e226bbe9760d9ed31ccb4c9ca9b31fffab353 Loading...

	#44 Eval - 90d64eeba8247d656ef6b4800ec0f52f	2 B	2023-03-07 23:42	2025-02-24 18:19
Pretty Observations First Seen2023-03-07 23:42 Last Seen2025-02-24 18:19 Times Seen454 Hash 90d64eeba8247d656ef6b4800ec0f52f 64c38cf29a15ea03a3844b4bbabeaa53f7a42d28 e4ebeb2baaed60915a0c4d99048bd8d5b5a2aba870e3f2c9d5eaaf1442364ffe Loading...

	#45 Eval - d9200a83f7c50f15e48aa308114d284e	238 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen433 Hash d9200a83f7c50f15e48aa308114d284e 693e42a51e73fe124824e65baf603a33f40145fc d55415d9a2f5268ffdd29ac0804d9914f9c54b93f86010963295dc6db0537e53 Loading...

	#46 Eval - 0563fcd3c81eef58e50b984c70677036	159 B	2023-03-07 01:02	2024-08-22 11:17
Pretty Observations First Seen2023-03-07 01:02 Last Seen2024-08-22 11:17 Times Seen17943 Hash 0563fcd3c81eef58e50b984c70677036 297f56d56ec1918a65a72c146da33d3ffb468684 ed2b7d8395578b6813022e5d55ce8066479d2def9c664882260f1516472c1838 Loading...

	#47 Eval - 1151f24be3c63db056f10938a42ab0ea	27 B	2023-03-07 01:02	2024-08-22 11:17
Pretty Observations First Seen2023-03-07 01:02 Last Seen2024-08-22 11:17 Times Seen17952 Hash 1151f24be3c63db056f10938a42ab0ea 5284a27f38597741e877ab31328cc8178b005676 0bc774ed3674af6aae8dd2c83bf89261e13ee293742afeda5161156a54bfc8ee Loading...

	#48 Eval - 32191d95335f21649b14a49e196c0288	159 B	2023-04-15 12:07	2024-08-22 11:17
Pretty Observations First Seen2023-04-15 12:07 Last Seen2024-08-22 11:17 Times Seen6573 Hash 32191d95335f21649b14a49e196c0288 de54f260b642889df0c269de5e775054a5271655 5a620cbe51d36bc6110f64ad96ef3ff812001b685b2d837c912dd86484c4ab00 Loading...

	#49 Eval - 488ceb925db89840e04ece37be4e9855	2 B	2023-03-08 07:07	2025-04-08 16:35
Pretty Observations First Seen2023-03-08 07:07 Last Seen2025-04-08 16:35 Times Seen836 Hash 488ceb925db89840e04ece37be4e9855 2eb5a3b6d89c53470ebf5237326c088ddbb59fa1 14030a5e22dbcd54c8fb6d5d83b183bba9270bfc717f193f2072e2e809c57644 Loading...

	#50 Eval - 212442b518ea7734d164c4b89233ea91	92 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen433 Hash 212442b518ea7734d164c4b89233ea91 1260b992a596efae0afef43ee31d2a729d65f117 8fdfcadb0814ab9e2247fd4660bd9901d803709dc9fdcd55d0ea4891c8f70d09 Loading...

	#51 Eval - 225d2f79e206488ebb1e22cb9d120e54	262 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen433 Hash 225d2f79e206488ebb1e22cb9d120e54 9e2993d328344cae38ef95b654f6c62e2f287e5d cf06c6f0f1334da858a412016034e971761bbdfff2c8db359946a0841083d1e6 Loading...

	#52 Eval - 4c62bc4fd3c4e105cb3fb62fb748d59c	203 B	2023-06-16 07:31	2025-05-11 12:27
Pretty Observations First Seen2023-06-16 07:31 Last Seen2025-05-11 12:27 Times Seen36905 Hash 4c62bc4fd3c4e105cb3fb62fb748d59c f6e2d1e74e35ec4c4740ba02e890b98bda11417f 9f4a6a370cd350425d8ac08047e7646116468672e99765ca198e6d463ee5286d Loading...

	#53 Eval - 474e6c59d39ab2b9f9eb79ab75b9da90	2 B	2023-03-08 21:58	2025-04-10 10:47
Pretty Observations First Seen2023-03-08 21:58 Last Seen2025-04-10 10:47 Times Seen895 Hash 474e6c59d39ab2b9f9eb79ab75b9da90 ed3ecb50026ed6678c2461bc4c914ecbdbecb738 30dbca900d1617441c40eeee84d3ad783dc9d0b4a1d572ac5882806229791cf6 Loading...

	#54 Eval - e750f0fd851c436c37a0f033959b538d	646 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen433 Hash e750f0fd851c436c37a0f033959b538d 95b17e263399f9ed1896a358e9b61e1fa76960fd c19bf47ebc087922721c96c11ea4338fcc0333fdaa353cd34f69e82f61be003e Loading...

	#55 Eval - 4c1538ad6e6f5bdbf6fbf87d4267af7d	266 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen433 Hash 4c1538ad6e6f5bdbf6fbf87d4267af7d 04eef1cb230feb97a31f4622a9b46bd71ff223e8 227c1034951451f694c92dbf5cecad12b8fea22553c40fc24116e7ead5ba0a44 Loading...

	#56 Eval - 23362528b09e5303eee0ab30cc772700	140 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen433 Hash 23362528b09e5303eee0ab30cc772700 344fd965f73269e70f3ec4bb35bd6f45b933336d 1be52947fab2b35140b4ddd9c526ac28c6a5f828f704ece90eb3bf5e4ab3c101 Loading...

	#57 Eval - 5123adb028f225105159b6d719ed80d3	22 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen433 Hash 5123adb028f225105159b6d719ed80d3 adc3b16ff834221f59c41f6dad7aaf8ec6d67225 6e05abdfb630770d3804ba69e13e37a2e7f0383661d3c5522177b75e5944bf6b Loading...

	#58 Eval - 979e73c53bac94982cd395440df25ace	236 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen433 Hash 979e73c53bac94982cd395440df25ace 909295657a6c1e4ca5f815588ab3f7d607fc6ed4 39d72fae7ce9549d82b06490947857fec517a3f858a1e083124718b1d570af22 Loading...

	#59 Eval - 93172019221b6b5fe618850bc5a951dc	78 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen433 Hash 93172019221b6b5fe618850bc5a951dc 315f4142eddd7e5c86969971c420086006df2107 17ca08f2133ecc82bed01b9cbc1eb3a97d96f978627c7618eeacbf1585cbb058 Loading...

	#60 Eval - 03364cb369b7e92af94249ed19f33abd	169 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen433 Hash 03364cb369b7e92af94249ed19f33abd fee8c29ac0cfce72fba3cdbaf1c16444068d00c3 b9264790a2cf1be2f0affffe273ae96148bb3cd9cec1bc84f6155acad318bb0a Loading...

	#61 Eval - 9dd4e461268c8034f5c8564e155c67a6	1 B	2023-03-07 01:02	2025-05-11 11:43
Pretty Observations First Seen2023-03-07 01:02 Last Seen2025-05-11 11:43 Times Seen7248 Hash 9dd4e461268c8034f5c8564e155c67a6 11f6ad8ec52a2984abaafd7c3b516503785c2072 2d711642b726b04401627ca9fbac32f5c8530fb1903cc4db02258717921a4881 Loading...

	#62 Eval - cd2ad8746b8c1108dce33970e25af4f8	576 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen433 Hash cd2ad8746b8c1108dce33970e25af4f8 82653922b724312ee01f315e53eb9c8aff56a960 cc5d3437cd3a969e332a3125a1d12cd3df8f84f9545a37ef12c94a55e139fb95 Loading...

	#63 Eval - b5251b7138fe3de12d729b84800a34a6	2 B	2023-03-07 12:23	2025-02-27 03:04
Pretty Observations First Seen2023-03-07 12:23 Last Seen2025-02-27 03:04 Times Seen568 Hash b5251b7138fe3de12d729b84800a34a6 0902463bd62a2018c40d0501d4bbaba7aebdfd40 69b0e7fd31affd0c89b5adb3844febd3824e27da69bf11a4d2147c3793fac56f Loading...

	#64 Eval - 9d0137bffa0f20d5e8e9f54f2c84cf0a	10 B	2023-03-07 01:02	2025-05-11 12:27
Pretty Observations First Seen2023-03-07 01:02 Last Seen2025-05-11 12:27 Times Seen36954 Hash 9d0137bffa0f20d5e8e9f54f2c84cf0a 39edf6d919f82b9692a2edfecc78427a82567c42 269d4d56785ffc82f3ed05d8ee3b84fc18d7474663ddd06c6fd285165190bb19 Loading...

	#65 Eval - 7c78233c733894c77663924364f86c99	92 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen433 Hash 7c78233c733894c77663924364f86c99 a25ab07f8a5fbdf0e0384acb2495abd3c1bb352b db7934b259c763765621962fbe9fa794ee6fdda4470e7a93644c2f41ea2d4acf Loading...

	#66 Eval - fb5fedcaeacadda9d7e9252481ab9d84	138 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen433 Hash fb5fedcaeacadda9d7e9252481ab9d84 3e2e4eb8ed551af8b8db79162a4ac7d6c0a04e44 08fcf380fa79fd2700f15b7048151c1300c222b2e142c26d8f293fd159ab7fdd Loading...

	#67 Eval - bae3f90cb000352645e35fad60da411c	35 B	2023-03-07 01:02	2025-05-11 13:48
Pretty Observations First Seen2023-03-07 01:02 Last Seen2025-05-11 13:48 Times Seen51749 Hash bae3f90cb000352645e35fad60da411c 00023f94c170125b979cb1914925d06ab1abfbce 1e3606d95ce27d593157594820335681a9380f51a96147303cd8000e60a95e12 Loading...

	#68 Eval - dcd845bcee53eda39453be52b7a71e91	56 B	2024-08-20 21:17	2024-08-20 21:17
Pretty Observations First Seen2024-08-20 21:17 Last Seen2024-08-20 21:17 Times Seen1 Hash dcd845bcee53eda39453be52b7a71e91 13c934ac1949596937a8d390a906b765c01098f3 f7a7caf4fcbdf504fbaa98b5412af1414c85a6196235ec110a50fba329a58ae7 Loading...

	#69 Eval - cf120153657c55d47cfee162fe93c0a1	77 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen432 Hash cf120153657c55d47cfee162fe93c0a1 8bb71de9d5fbb825414f79ee926a6395dc8cb7a4 d87de0736f8eed1cd781e6467f5932f3fa9ef52489b8ce78e17aa169cbd0f986 Loading...

	#70 Eval - a86ac3e77ec40d4ea85d1ff12bf87422	130 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen432 Hash a86ac3e77ec40d4ea85d1ff12bf87422 ffae325347d72881c4fd2eabf0f74b4209c757a5 b511c00d85454f9e98b816ad5388299c983921af1c3e2f5e38ff17110382d0e6 Loading...

	#71 Eval - 800073914110d68c715618bd38c5f08f	56 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen433 Hash 800073914110d68c715618bd38c5f08f e8eb8944497fa38e583dd4bcfb071c49dbbd0ec1 e70522b9de1d1e37d9797079dae2ecb7d2bffd53abb17416e7dd9219e257a1fc Loading...

	#72 Eval - 569407fc564cb2179e45764884015f14	578 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen433 Hash 569407fc564cb2179e45764884015f14 fb7f04ca90eff0ac2102bcd21f6422ffb797beeb 57e465c0ed44fceb6fac41d4774526494142313ad150bfacef85a9a27b262a9e Loading...

	#73 Eval - d48a24ae9672ee573050e4d3aeeebe4d	29 B	2023-03-07 01:02	2025-05-11 13:48
Pretty Observations First Seen2023-03-07 01:02 Last Seen2025-05-11 13:48 Times Seen51919 Hash d48a24ae9672ee573050e4d3aeeebe4d 8f8c4d27852980a1ec5a8b1aba30769001314ec8 53e5b7d706a350fe98d52499058624e15cddc1541f17370f94a899a386c50255 Loading...

	#74 Eval - 58cb04894f518510d23377daf067fc40	146 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen433 Hash 58cb04894f518510d23377daf067fc40 07989c22140ac0ef5c1c00f0030efab1322c25d6 c15bc6a1baf0460b537a9171562a8c638e64f8373704dc807a83edc9f4a4f256 Loading...

	#75 Eval - 0d80d99d7f209071a284c9ab6d14accf	83 B	2023-03-07 01:02	2025-05-11 13:48
Pretty Observations First Seen2023-03-07 01:02 Last Seen2025-05-11 13:48 Times Seen53652 Hash 0d80d99d7f209071a284c9ab6d14accf c91e7389c28a7b35eeb114484808a20cddb8c20e 0cb21d1de060008bab472c15c63e6f15828de601f85deff00d701d26c0f6819a Loading...

	#76 Eval - 7ab2200d24b19f1824cef3f53b5b69ca	2 B	2023-10-13 09:46	2025-04-08 16:35
Pretty Observations First Seen2023-10-13 09:46 Last Seen2025-04-08 16:35 Times Seen867 Hash 7ab2200d24b19f1824cef3f53b5b69ca 82bfc5d597ed9e2fa09923f0c61991a53ced14aa 91597823f4fe25e64d3bb6ac364d0fa044745a59235c6924ba75071eff63997f Loading...

	#77 Eval - 1121d3d019c3359757391053d1c1a7b8	145 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen433 Hash 1121d3d019c3359757391053d1c1a7b8 143688795c82c5c40677b36e81991963bae27b92 296122a34faa41e08206abc2256e6266b9787d106d0ef0bb52bb403dcf0a0dda Loading...

	#78 Eval - 10bda702f312265e6987b80330a46960	107 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen433 Hash 10bda702f312265e6987b80330a46960 b330659f766fe8683419eb3ed28e8c7c6355bb05 36cb855f4244d1fcd6192f8b56ad3bf873a7d64231e569c34cb61e77d5617d37 Loading...

	#79 Eval - 6755458e2b19cdff753e1154afcbe4a3	79 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen433 Hash 6755458e2b19cdff753e1154afcbe4a3 1340b159a86aa309ddb9ff2de254ccb4fa71158f e1eb5fd7adbfd2b7322ea4337dadfbb6797d802ebb32383f36edcd56bfddf9bc Loading...

	#80 Eval - c9f7198c57735fa7a7a8ac2cc18dd542	9 B	2023-03-07 01:02	2025-05-11 13:48
Pretty Observations First Seen2023-03-07 01:02 Last Seen2025-05-11 13:48 Times Seen25618 Hash c9f7198c57735fa7a7a8ac2cc18dd542 d78ec33d89c7283a59982f10f71e7e305fa1ce93 ebf49dcd836f810084c14e0f2dab4dc1768bbdc5980481bf201fcf76771dff7a Loading...

	#81 Eval - ff44570aca8241914870afbc310cdb85	1 B	0001-01-01 00:00	2025-05-11 14:13
Pretty Observations First Seen0001-01-01 00:00 Last Seen2025-05-11 14:13 Times Seen174710 Hash ff44570aca8241914870afbc310cdb85 58668e7669fd564d99db5d581fcdb6a5618440b5 6da43b944e494e885e69af021f93c6d9331c78aa228084711429160a5bbd15b5 Loading...

	#82 Eval - f0e976b756b6afe7f40bca206a2d7150	29 B	2023-03-07 01:02	2025-05-11 13:48
Pretty Observations First Seen2023-03-07 01:02 Last Seen2025-05-11 13:48 Times Seen42531 Hash f0e976b756b6afe7f40bca206a2d7150 db9bee9a7bba93a60330ec5ef1334d9c164fcd56 029b84af88c5d6ced58173997a15fa47011e198e5449027d87e2f7b871f332c2 Loading...

	#83 Eval - 7dc2c476c6ccbd80181bd324384ea894	22 B	2023-10-13 09:47	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:47 Last Seen2024-08-21 04:53 Times Seen1231 Hash 7dc2c476c6ccbd80181bd324384ea894 1f1f55ece4b8eb31dfaee05c3b08d8dfc19685bf 46370a37ee616c1a60a35a0b564e04dddab73b92cd11d8b738368fd10b28351b Loading...

	#84 Eval - a84631328b75981766408c958b4e3992	25 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen432 Hash a84631328b75981766408c958b4e3992 cdfb45c0fc39aa15e728648ce60e641fca72dbec 346f1aeba0f375feb16b3be27fd6e9a49c17b39e1c1349e05c957ca650f52a21 Loading...

	#85 Eval - a931635074a5017da74948b67e16c76f	206 B	2023-03-07 01:02	2025-05-11 12:49
Pretty Observations First Seen2023-03-07 01:02 Last Seen2025-05-11 12:49 Times Seen44735 Hash a931635074a5017da74948b67e16c76f a6799582ad16a7c1ab8221c166268130df6691d2 1fb437ac78114eda813a7c4d5771b6d3aa34908a5ca3b743d5eb5c79088cf82c Loading...

	#86 Eval - 90749cdccc92b64023af65b2c2e09841	52 B	2023-06-30 03:07	2025-01-10 21:02
Pretty Observations First Seen2023-06-30 03:07 Last Seen2025-01-10 21:02 Times Seen37627 Hash 90749cdccc92b64023af65b2c2e09841 c462a67f6bc05d361593fd7bdc0821fc6fbb27b4 23f5d7bca8a3fd67ad081a77c0f5ab552436896346a404b9a58840870ec9eb1d Loading...

	#87 Eval - 800618943025315f869e4e1f09471012	1 B	2023-03-07 01:15	2025-05-11 05:06
Pretty Observations First Seen2023-03-07 01:15 Last Seen2025-05-11 05:06 Times Seen8566 Hash 800618943025315f869e4e1f09471012 e69f20e9f683920d3fb4329abd951e878b1f9372 f67ab10ad4e4c53121b6a5fe4da9c10ddee905b978d3788d2723d7bfacbe28a9 Loading...

	#88 Eval - f036ffa3030561f0aa25102fc72911eb	165 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen433 Hash f036ffa3030561f0aa25102fc72911eb 590889886ee606f734148da80d8291bd2b7f611f 08760b71d4c6c018ff146c8cf055160f83e1448bad95a87d80becda925698184 Loading...

	#89 Eval - 9ffc4d017c208d4e899a2dffbbf5d9d3	167 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen433 Hash 9ffc4d017c208d4e899a2dffbbf5d9d3 0ab8325c808299230e0e5143c1aed4640c5a282e beb75135d8df6217fe2d1f8a9c17380b5a0fb6f993d8f1d438e6d6dd62e95c68 Loading...

	#90 Eval - 24cc3dc813f384fde380df619f1525cb	19 B	2023-03-07 01:02	2025-05-11 12:27
Pretty Observations First Seen2023-03-07 01:02 Last Seen2025-05-11 12:27 Times Seen46836 Hash 24cc3dc813f384fde380df619f1525cb 56399e3ce57ff98d68c7de98a563e572230dff6b 5421715bbdaf2550e31d10fc28d444310a8fe7147bbddecf0abb490358a1553b Loading...

	#91 Eval - 0864b4bb6b4edc4aedac969fe2776693	62 B	2023-10-13 09:47	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:47 Last Seen2024-08-21 04:53 Times Seen1231 Hash 0864b4bb6b4edc4aedac969fe2776693 a11f92051a10ac896b4fb9c491cdfb020a03222e 8c6a7c304f4357251c394c2c95f9897105af3bcdb8cfa7342cab05738bdbf1b3 Loading...

	#92 Eval - 60872112d34a0557e08eaa8b7c6978a6	264 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen433 Hash 60872112d34a0557e08eaa8b7c6978a6 7a8d77ee9be4a49e77992a1b7f3f2debc865e9fb fc8c2e2a294de395ff2e71f097bfed15a2e2347c34db1ea621125f25904176b3 Loading...

	#93 Eval - 283aaf753c398118bac56510008bfd7f	2 B	2023-03-07 01:15	2025-03-06 02:53
Pretty Observations First Seen2023-03-07 01:15 Last Seen2025-03-06 02:53 Times Seen1161 Hash 283aaf753c398118bac56510008bfd7f 58b127eced957a57286b7ef26b2eb40e3a4e3017 e0456716716c8ea8a7f7e3f0fb8f282864a36a2ad328e5e9cfccac654ecc20e0 Loading...

	#94 Eval - 2510c39011c5be704182423e3a695e91	1 B	2023-03-07 01:15	2025-05-11 06:24
Pretty Observations First Seen2023-03-07 01:15 Last Seen2025-05-11 06:24 Times Seen9394 Hash 2510c39011c5be704182423e3a695e91 27d5482eebd075de44389774fce28c69f45c8a75 aaa9402664f1a41f40ebbc52c9993eb66aeb366602958fdfaa283b71e64db123 Loading...

	#95 Eval - 1366464388c9759d14938570b1019ae9	75 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen433 Hash 1366464388c9759d14938570b1019ae9 d96ad377447b71c419dbd4f12a4265c00ad2cd9e 7916a5d6b27b20e57356114d71615b2c0aa382dabfb75b703b4cbfd931890a24 Loading...

	#96 Eval - 51a7ad6fc8afbd9e35d91a0713a9256d	564 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen433 Hash 51a7ad6fc8afbd9e35d91a0713a9256d 278447689e97063f030fc0cbcedecc66a99ac717 f10d93d264e958d770ae0825118f8e04a81d8d9e27a7d27b832f072cc5e6f75e Loading...

	#97 Eval - c1b72ce15d6601c9550d59f07d4a569d	78 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen433 Hash c1b72ce15d6601c9550d59f07d4a569d 04023d5a54e9aaefe555c32fe10a63616d226e86 20ab9443616dfe9b9a8edf1113cbb6308b413b144bf7806b563529d0aa8d1534 Loading...

	#98 Eval - dc52026376638e45e3674ccd1c63c155	72 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen433 Hash dc52026376638e45e3674ccd1c63c155 c215ec29800c47e0f10e14b08ec8d92b56f91fdb 4d5d2d185cebdc29e59ef7cd0c98d5bf31829f5749b7f5c489203836c3f7f422 Loading...

	#99 Eval - 6677d4c13d96eadde68c2ff06a753723	25 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen433 Hash 6677d4c13d96eadde68c2ff06a753723 8cec18570254db87f7f4e6f51a506028c4bbc8ef 6163352a8eeaf59171845599d242d2aebe6e6ecd31fa04e703b95aee1202f619 Loading...

	#100 Eval - 843bbcfcfda13851986e73073aae28cc	95 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen433 Hash 843bbcfcfda13851986e73073aae28cc f9470a4ca88588b49db747f9eb479e1309b31e4f 80b0ee3aff64afdf44215548ed76be6bac81fbb482de0db3c37fd5c39b246200 Loading...

	#101 Eval - 37a6259cc0c1dae299a7866489dff0bd	4 B	2023-03-07 01:02	2025-05-11 12:49
Pretty Observations First Seen2023-03-07 01:02 Last Seen2025-05-11 12:49 Times Seen61504 Hash 37a6259cc0c1dae299a7866489dff0bd 2be88ca4242c76e8253ac62474851065032d6833 74234e98afe7498fb5daf1f36ac2d78acc339464f950703b8c019892f982b90b Loading...

	#102 Eval - 0275a6fe563612fd0fe2f420ca5d9936	55 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen433 Hash 0275a6fe563612fd0fe2f420ca5d9936 662f9220a3b4195a6f17148c56c72dc8021cbef7 45cd46f6294b5bc2d80bbaa8471daaf9579b161d3475d977d16771bb064c5c1e Loading...

	#103 Eval - 22d558b3c0c31d7c7438559f9826ae66	132 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen433 Hash 22d558b3c0c31d7c7438559f9826ae66 ac13b8784c37476f01a60973f50a43fdf5ec4683 d19d361abc1801a7605978adf78b7930173f05b5674fc1a2441ca305db196578 Loading...

	#104 Eval - 5b567623e6b1d60aed90c35048532539	253 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen433 Hash 5b567623e6b1d60aed90c35048532539 952894a37acc45344651cf2614a7e1d7bd96b43d 9ed8774c6ebb40119709c464074bb7bb677a25e40bcee11f8276a0451a96ab22 Loading...

	#105 Eval - afffb04a1f2e8f0cc035cfe28bf455a8	131 B	2023-07-02 14:54	2024-08-22 11:17
Pretty Observations First Seen2023-07-02 14:54 Last Seen2024-08-22 11:17 Times Seen20347 Hash afffb04a1f2e8f0cc035cfe28bf455a8 920c52f3e931c79600ab73dca9d4baceaa721aa3 1224c72af04d20c26e9dea6a1295f8703ef495872d17d051e94ac95dab0cf66a Loading...

	#106 Eval - ff1a1ca4c1447a8326b28853b98ce536	2 B	2023-03-07 01:27	2025-03-04 23:03
Pretty Observations First Seen2023-03-07 01:27 Last Seen2025-03-04 23:03 Times Seen749 Hash ff1a1ca4c1447a8326b28853b98ce536 b593a257fe404b2e2346f914bdb378491ca0477f 00f66b3bf18f5c43bc2a906b6f9b6515c68b76afd0e6f42bc85b69fcd0931e0f Loading...

	#107 Eval - d61e8636bcd16f1abfe2309dffe36af8	118 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen433 Hash d61e8636bcd16f1abfe2309dffe36af8 33700947b804cd80988f5a66afa94d80eaef8a65 f47a65f38cf22b9150057feed43e04aad3c6647dd0d6b5520c8e2c98fdb41f3c Loading...

	#108 Eval - ab2fc62039e2de44fadac7215826aa6c	249 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen433 Hash ab2fc62039e2de44fadac7215826aa6c b7054ce9af122003c3a249ae25aba97012d1aeff 0800f57e85e0f3774a5af175b5587bcd1c7f7f6e9fce0fe76921e601b30302ca Loading...

	#109 Eval - 9bc8b6d131a627ca0ed634b08098bc01	77 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen433 Hash 9bc8b6d131a627ca0ed634b08098bc01 fc706717d932e3efb7901cb5530e4d330c364066 fcee9e9d48a994fac98c81cf86c86b48df209f955653aecd6f54edc4b0fb528e Loading...

	#110 Eval - 32e46c8ca8cfced5934bb5e79df69404	64 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen433 Hash 32e46c8ca8cfced5934bb5e79df69404 347918f0608365915526d3fd9c1461a27dc485cb 1bedb0ede07fce8d2b442efb52a9ad64741025546253b21bf71bdf032cd3832a Loading...

	#111 Eval - a3823d3c0ce9d1451426b8378a52430f	134 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen433 Hash a3823d3c0ce9d1451426b8378a52430f 6d0a689d11b9b3ee213bc8b2900917040ab88c52 65ce24225027d51232eeac469920ac0d65a99a2e95cddf92fbe1cea79b28d3ba Loading...

	#112 Eval - fbade9e36a3f36d3d676c1b808451dd7	1 B	2023-03-07 01:02	2025-05-09 14:04
Pretty Observations First Seen2023-03-07 01:02 Last Seen2025-05-09 14:04 Times Seen4589 Hash fbade9e36a3f36d3d676c1b808451dd7 395df8f7c51f007019cb30201c49e884b46b92fa 594e519ae499312b29433b7dd8a97ff068defcba9755b6d5d00e84c524d67b06 Loading...

	#113 Eval - 38d66c22a1d4a2fa891333ea8bff88f4	2 B	2023-03-07 12:02	2025-04-03 12:24
Pretty Observations First Seen2023-03-07 12:02 Last Seen2025-04-03 12:24 Times Seen613 Hash 38d66c22a1d4a2fa891333ea8bff88f4 d648ffb7e2a24548a988447b8f35f6c40720fa23 c89f00df0ea96d830dc1df88e21b937e7c51605a4eff9cb8d3e2bae35a1e6abf Loading...

	#114 Eval - e89f6cb75ccdae3adb8d4285a8800a37	79 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen433 Hash e89f6cb75ccdae3adb8d4285a8800a37 4354402dc0579907f6ed26dd236de3b818956994 1b2bb03d6540587dea311790c568da22ba78ec6712bda53be4a4005e9a4607a2 Loading...

	#115 Eval - accc263c798b953d6b997a6eef163a47	22 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen433 Hash accc263c798b953d6b997a6eef163a47 82fdfde23e08df2a5c81a083e4f78032e8c8e57a ac0396bed75c7fb9c7f60b70ed789588f1f39fae441ae2ccaacda4acc28644e0 Loading...

	#116 Eval - 71b2aea0f17c5501fa7ae7b46bb7d2a8	22 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen433 Hash 71b2aea0f17c5501fa7ae7b46bb7d2a8 a52c2a6ca4c5156d567d50163dabcf72fde3ec9c 26628fdc08ba014140c3f4f103dcb15a7d3d949570ee83f2ea05fde104279e11 Loading...

	#117 Eval - e382e56b275b078326b7cb603af065dc	34 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen380 Hash e382e56b275b078326b7cb603af065dc 7570a14049e046ad96aee40869d74e984302b9e6 3a49d57ccc45a82e46d7acce7317f60831d0a8a57a511ffb0d4894a876ad14ea Loading...

	#118 Eval - 370b0dc3463c51449bc5065058bd39a5	16 kB	2023-10-13 09:47	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:47 Last Seen2024-08-21 04:53 Times Seen1234 Hash 370b0dc3463c51449bc5065058bd39a5 483c8db61e092691514e22b6ec3ac9cd16f19101 d9ec3eea1586bee3c7d9c47f2b26e73ba2989ebf0b9d6112c3a6081dcce49f28 Loading...

	#119 Eval - 98d73328f1014f89ce6a88e2976ebbc4	44 kB	2024-08-20 21:17	2024-08-20 21:17
Pretty Observations First Seen2024-08-20 21:17 Last Seen2024-08-20 21:17 Times Seen1 Hash 98d73328f1014f89ce6a88e2976ebbc4 1b7dbe4284a1a82bade1c20a0e540e99f0f04cd5 74bfec1c0f1e9718af51a342dd54f887ac64a3c3bfed595cc08129943426fbe7 Loading...

	#120 Eval - d3cb757121f725fe825a1176031a1c14	2 B	2023-03-13 21:05	2025-03-16 12:43
Pretty Observations First Seen2023-03-13 21:05 Last Seen2025-03-16 12:43 Times Seen694 Hash d3cb757121f725fe825a1176031a1c14 364b4594cb84856c1eefa049565fb14dcefb688e cf4e39ae462a0f95b17df439ce97a49187cbbdda9c658129ff5f5cd27a2884bc Loading...

	#121 Eval - 0a37be69df999c49727b7a50cae9cec4	59 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen433 Hash 0a37be69df999c49727b7a50cae9cec4 c13e6e5240304611a83ea44aafd577d524c93ba6 5826cab9ec16df3d94f4c6f414eab46c743562022ee5d164695035d877d06b93 Loading...

	#122 Eval - 5c1fb60fd69b88a142ca6059f201a6c0	463 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen433 Hash 5c1fb60fd69b88a142ca6059f201a6c0 c5818e2456ded89d791eeecd366298d99dd81895 2f5c568d003332845698ea109d5413da18ffb913db93c923c09c9d8967a20ffe Loading...

	#123 Eval - 2d5c225722c0ac7b578cac3099e29886	449 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen432 Hash 2d5c225722c0ac7b578cac3099e29886 b814f821f8ea269e062232a7c824eb9c52462280 1b512d9ddd879a469e77620ab85bdec2a4c3ff2c8221590c954dfb91ff6ec418 Loading...

	#124 Eval - bd4496eb0285aba06273987971f6063a	35 B	2023-03-07 01:02	2025-05-10 22:43
Pretty Observations First Seen2023-03-07 01:02 Last Seen2025-05-10 22:43 Times Seen38091 Hash bd4496eb0285aba06273987971f6063a 8c7d085c9d54b41debd437430b6852de7f898857 f2a353ed5469812b863c5fbeb58b4d46b864ba4e20a49f57f9c44c7cda45f46b Loading...

	#125 Eval - 9be5f6606c8a463a15615ba27d6086c3	63 B	2023-03-13 02:11	2024-08-22 11:17
Pretty Observations First Seen2023-03-13 02:11 Last Seen2024-08-22 11:17 Times Seen25387 Hash 9be5f6606c8a463a15615ba27d6086c3 86a2fe727ef0ec4e23f1be261de127f0713e3f32 57e4541e6b4799c76812f6de6ff4aa7605c94d3cc7aebb5e8770c57efa4d28f0 Loading...

	#126 Eval - b1c1096d53b2e6e12418d5b26f2a3ee6	79 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen432 Hash b1c1096d53b2e6e12418d5b26f2a3ee6 776ac68f2c41ebb5fbab73f19778f8fc18715a70 f27337ebb4b6cd00dce7cb8be585606abc3cce78488c003c1d9c128650a08048 Loading...

	#127 Eval - 4025d7ffd242b341947538ca6f4d56aa	293 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen433 Hash 4025d7ffd242b341947538ca6f4d56aa 50ace9b4d1baadeb560de5efb2e46bf9fd53b7a7 59827755a29fe3b804a6df9abaaa65d20217f63ce0e4329ef0af5bec317ec71a Loading...

	#128 Eval - 8d8b85adc4d2474a84fbca1381afb3c7	83 B	2023-03-07 01:02	2025-05-11 12:27
Pretty Observations First Seen2023-03-07 01:02 Last Seen2025-05-11 12:27 Times Seen44890 Hash 8d8b85adc4d2474a84fbca1381afb3c7 3815645d5a8680fd3ed4ce5a3b82f8d432448698 3eb8abc484d33a620c974de75babdd2caae4fff7dc8daad7d860dd41c93ee611 Loading...

	#129 Eval - 58e7c4de4b2dad03589e81de9c9c4ecc	54 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen433 Hash 58e7c4de4b2dad03589e81de9c9c4ecc f1086827376875c7c2a7e768da45d6cc8de2a8e5 9b4343eb337f85e5f775808a01117bb7e5110561812cef84781ec7bfaffd668f Loading...

	#130 Eval - a26655ae79d78f7d26bbceccad7b5352	349 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen433 Hash a26655ae79d78f7d26bbceccad7b5352 4d2407c2cd78cf39ba0a58b45fcea036f42b7efd 7a4d587f90fa9c5695969d7a7c00e7dd583f9529a80b3958a961740b79cf9976 Loading...

	#131 Eval - abddf71459ba4c38376eb2cc3bfc288f	285 B	2023-10-13 09:46	2024-08-21 04:53
Pretty Observations First Seen2023-10-13 09:46 Last Seen2024-08-21 04:53 Times Seen432 Hash abddf71459ba4c38376eb2cc3bfc288f 38f4352b026906429b25dd8ae39052e0b46326d3 fba1249a2afdbd4df7314e5372281c0754c0550aba73835486982fbd49404dec Loading...

HTTP Transactions (70)

URL IP Response Size

www.maskmeta.cyou/images/mm-logo.svg

194.124.216.72

200 OK

12 kB

URL GET HTTP/2
www.maskmeta.cyou/images/mm-logo.svg
IP
194.124.216.72:443
ASN
#3214 xTom GmbH

Requested by
https://www.maskmeta.cyou/
Certificate
IssuerLet's Encrypt
Subjectmaskmeta.cyou
FingerprintE7:E2:E7:63:F9:FE:1F:17:39:8E:BF:47:A8:8A:01:56:89:2F:77:3F
ValidityThu, 02 Nov 2023 15:43:25 GMT - Wed, 31 Jan 2024 15:43:24 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1001)
Size
12 kB (12019 bytes)
Hash
51bcea2625eb2c6e9268a7377a792c86
5eeb306e6584eed1747c36c11724f193711d430e
5e722754f038988ba4b6d7f380d60191eba3b6e01d4a00749a28b79c53521f5b

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /images/mm-logo.svg HTTP/1.1
Host: www.maskmeta.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 03 Nov 2023 11:37:54 GMT
content-type: image/svg+xml
content-length: 12019
last-modified: Fri, 10 Sep 2021 16:15:20 GMT
etag: "613b8498-2ef3"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

www.maskmeta.cyou/images/social-35.svg

194.124.216.72

200 OK

602 B

URL GET HTTP/2
www.maskmeta.cyou/images/social-35.svg
IP
194.124.216.72:443
ASN
#3214 xTom GmbH

Requested by
https://www.maskmeta.cyou/
Certificate
IssuerLet's Encrypt
Subjectmaskmeta.cyou
FingerprintE7:E2:E7:63:F9:FE:1F:17:39:8E:BF:47:A8:8A:01:56:89:2F:77:3F
ValidityThu, 02 Nov 2023 15:43:25 GMT - Wed, 31 Jan 2024 15:43:24 GMT

File type
SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
602 B (602 bytes)
Hash
d5e7fa6bfac5cb057e4974b17d5f0e53
fd3f64fd6b8fc6bb097bcd065337c70d8d2cef37
bcba47e61462fcaa7a59953d7af48a777438587b79faf7fcda5831cea8e9a7da

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /images/social-35.svg HTTP/1.1
Host: www.maskmeta.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 03 Nov 2023 11:37:54 GMT
content-type: image/svg+xml
content-length: 602
last-modified: Fri, 10 Sep 2021 16:15:20 GMT
etag: "613b8498-25a"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

www.maskmeta.cyou/images/wallet-illo.svg

194.124.216.72

200 OK

36 kB

URL GET HTTP/2
www.maskmeta.cyou/images/wallet-illo.svg
IP
194.124.216.72:443
ASN
#3214 xTom GmbH

Requested by
https://www.maskmeta.cyou/
Certificate
IssuerLet's Encrypt
Subjectmaskmeta.cyou
FingerprintE7:E2:E7:63:F9:FE:1F:17:39:8E:BF:47:A8:8A:01:56:89:2F:77:3F
ValidityThu, 02 Nov 2023 15:43:25 GMT - Wed, 31 Jan 2024 15:43:24 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1199)
Size
36 kB (36437 bytes)
Hash
63ad7f01f67accd6aafb47999640abe5
5ed10575a1a39d5b02840416a281fb1e655bd423
596228062de19a21cfda4d3129b3a5d397c5a71509e096b8f67fb8c4f22aa56d

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /images/wallet-illo.svg HTTP/1.1
Host: www.maskmeta.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 03 Nov 2023 11:37:54 GMT
content-type: image/svg+xml
content-length: 36437
last-modified: Fri, 10 Sep 2021 16:15:20 GMT
etag: "613b8498-8e55"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

www.maskmeta.cyou/images/Explore-illo.svg

194.124.216.72

200 OK

37 kB

URL GET HTTP/2
www.maskmeta.cyou/images/Explore-illo.svg
IP
194.124.216.72:443
ASN
#3214 xTom GmbH

Requested by
https://www.maskmeta.cyou/
Certificate
IssuerLet's Encrypt
Subjectmaskmeta.cyou
FingerprintE7:E2:E7:63:F9:FE:1F:17:39:8E:BF:47:A8:8A:01:56:89:2F:77:3F
ValidityThu, 02 Nov 2023 15:43:25 GMT - Wed, 31 Jan 2024 15:43:24 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1527)
Size
37 kB (36835 bytes)
Hash
46fb450c5ecf6da758bca0975551f056
629157e884b450ecf5a94d38d736db3c7428245f
8ba2b37fd4f2f3c19c10109bc6111d3d71692c78f9351f1eb2a8cab5231b77b5

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /images/Explore-illo.svg HTTP/1.1
Host: www.maskmeta.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 03 Nov 2023 11:37:54 GMT
content-type: image/svg+xml
content-length: 36835
last-modified: Fri, 10 Sep 2021 16:15:20 GMT
etag: "613b8498-8fe3"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

i.ytimg.com/vi_webp/YVgfHZMFFFQ/sddefault.webp

142.250.74.182

200 OK

18 kB

URL GET HTTP/2
i.ytimg.com/vi_webp/YVgfHZMFFFQ/sddefault.webp
IP
142.250.74.182:443
ASN
#15169 GOOGLE

Requested by
https://www.maskmeta.cyou/
Certificate
IssuerGoogle Trust Services LLC
Subjectedgestatic.com
Fingerprint30:FC:ED:56:9F:85:39:F1:1B:87:3B:5E:09:20:49:BB:39:CC:EA:8D
ValidityMon, 16 Oct 2023 08:02:25 GMT - Mon, 08 Jan 2024 08:02:24 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 640x480, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
18 kB (18434 bytes)
Hash
d288755975f12c1b804cce683a56b56b
af27df3ca58c18ccfa231b3ad5089e11b29fb4e1
f27731898ea8846c9a9f428fb8cbe2da7c832a4bb6032af7b4b7f0c64f81de55

HTTP Headers

GET /vi_webp/YVgfHZMFFFQ/sddefault.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 18434
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 Nov 2023 09:50:28 GMT
expires: Fri, 03 Nov 2023 11:50:28 GMT
cache-control: public, max-age=7200
age: 6446
etag: "1582837014"
content-type: image/webp
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.maskmeta.cyou/images/Browse-illo.svg

194.124.216.72

200 OK

28 kB

URL GET HTTP/2
www.maskmeta.cyou/images/Browse-illo.svg
IP
194.124.216.72:443
ASN
#3214 xTom GmbH

Requested by
https://www.maskmeta.cyou/
Certificate
IssuerLet's Encrypt
Subjectmaskmeta.cyou
FingerprintE7:E2:E7:63:F9:FE:1F:17:39:8E:BF:47:A8:8A:01:56:89:2F:77:3F
ValidityThu, 02 Nov 2023 15:43:25 GMT - Wed, 31 Jan 2024 15:43:24 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2226)
Size
28 kB (28164 bytes)
Hash
afeafb6a9f14bd7771c63015be5a05c9
78683c75d81cf80440f083e9fb4bb2987748e290
517c0c6b44ede59070fb138aab7e875b9c230a227295f9612c32dabb9b0bdb13

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /images/Browse-illo.svg HTTP/1.1
Host: www.maskmeta.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 03 Nov 2023 11:37:54 GMT
content-type: image/svg+xml
content-length: 28164
last-modified: Fri, 10 Sep 2021 16:15:20 GMT
etag: "613b8498-6e04"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

www.maskmeta.cyou/images/dapp-aave.png

194.124.216.72

200 OK

14 kB

URL GET HTTP/2
www.maskmeta.cyou/images/dapp-aave.png
IP
194.124.216.72:443
ASN
#3214 xTom GmbH

Requested by
https://www.maskmeta.cyou/
Certificate
IssuerLet's Encrypt
Subjectmaskmeta.cyou
FingerprintE7:E2:E7:63:F9:FE:1F:17:39:8E:BF:47:A8:8A:01:56:89:2F:77:3F
ValidityThu, 02 Nov 2023 15:43:25 GMT - Wed, 31 Jan 2024 15:43:24 GMT

File type
PNG image data, 560 x 560, 8-bit/color RGBA, non-interlaced\012- data
Size
14 kB (14347 bytes)
Hash
521a00d54b7fe1cb1d7712b655ca54a6
8c5aa52335bf25183781e62843ede770bf6877ba
506d6d9d5ad22253976f2906bbf141c94d19eb15466ed62b8c6cfb887bf07b55

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /images/dapp-aave.png HTTP/1.1
Host: www.maskmeta.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 03 Nov 2023 11:37:54 GMT
content-type: image/png
content-length: 14347
last-modified: Fri, 10 Sep 2021 16:15:20 GMT
etag: "613b8498-380b"
expires: Sun, 03 Dec 2023 11:37:54 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

www.maskmeta.cyou/images/dapp-axieinfinity.png

194.124.216.72

200 OK

43 kB

URL GET HTTP/2
www.maskmeta.cyou/images/dapp-axieinfinity.png
IP
194.124.216.72:443
ASN
#3214 xTom GmbH

Requested by
https://www.maskmeta.cyou/
Certificate
IssuerLet's Encrypt
Subjectmaskmeta.cyou
FingerprintE7:E2:E7:63:F9:FE:1F:17:39:8E:BF:47:A8:8A:01:56:89:2F:77:3F
ValidityThu, 02 Nov 2023 15:43:25 GMT - Wed, 31 Jan 2024 15:43:24 GMT

File type
PNG image data, 560 x 560, 8-bit/color RGBA, non-interlaced\012- data
Size
43 kB (42713 bytes)
Hash
5f662391fe3ddc927134ba8e15263eaf
ab5ea7aacdc8c97238247f59761abc02033b2a67
7faefc7f99e94d6251527c95794a5fdfb3e644baf25ae56f4e13afd125246421

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /images/dapp-axieinfinity.png HTTP/1.1
Host: www.maskmeta.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 03 Nov 2023 11:37:54 GMT
content-type: image/png
content-length: 42713
last-modified: Fri, 10 Sep 2021 16:15:20 GMT
etag: "613b8498-a6d9"
expires: Sun, 03 Dec 2023 11:37:54 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

www.maskmeta.cyou/images/dapp-compound.png

194.124.216.72

200 OK

11 kB

URL GET HTTP/2
www.maskmeta.cyou/images/dapp-compound.png
IP
194.124.216.72:443
ASN
#3214 xTom GmbH

Requested by
https://www.maskmeta.cyou/
Certificate
IssuerLet's Encrypt
Subjectmaskmeta.cyou
FingerprintE7:E2:E7:63:F9:FE:1F:17:39:8E:BF:47:A8:8A:01:56:89:2F:77:3F
ValidityThu, 02 Nov 2023 15:43:25 GMT - Wed, 31 Jan 2024 15:43:24 GMT

File type
PNG image data, 280 x 280, 8-bit/color RGBA, non-interlaced\012- data
Size
11 kB (11355 bytes)
Hash
3818f9cfccbd94fad91a10d3c5ee356c
7c6af849177aa8bf6ef9bcbf801dc375e1997900
20a34c84f82590d99a060210ea362878975f21cfd65c3a70c54e7fb99dce1f76

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /images/dapp-compound.png HTTP/1.1
Host: www.maskmeta.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 03 Nov 2023 11:37:54 GMT
content-type: image/png
content-length: 11355
last-modified: Fri, 10 Sep 2021 16:15:20 GMT
etag: "613b8498-2c5b"
expires: Sun, 03 Dec 2023 11:37:54 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

www.maskmeta.cyou/images/dapp-gitcoin.png

194.124.216.72

200 OK

8.0 kB

URL GET HTTP/2
www.maskmeta.cyou/images/dapp-gitcoin.png
IP
194.124.216.72:443
ASN
#3214 xTom GmbH

Requested by
https://www.maskmeta.cyou/
Certificate
IssuerLet's Encrypt
Subjectmaskmeta.cyou
FingerprintE7:E2:E7:63:F9:FE:1F:17:39:8E:BF:47:A8:8A:01:56:89:2F:77:3F
ValidityThu, 02 Nov 2023 15:43:25 GMT - Wed, 31 Jan 2024 15:43:24 GMT

File type
PNG image data, 280 x 280, 8-bit/color RGBA, non-interlaced\012- data
Size
8.0 kB (7998 bytes)
Hash
c710e9a5c39e89136a73edf0a1c99abe
aca40362b7d87533d00250e102ba852d19e2231c
7077eb7da3a6f399014d67a1032ab6d67f099055a1a2594cb4753022b843dc43

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /images/dapp-gitcoin.png HTTP/1.1
Host: www.maskmeta.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 03 Nov 2023 11:37:54 GMT
content-type: image/png
content-length: 7998
last-modified: Fri, 10 Sep 2021 16:15:20 GMT
etag: "613b8498-1f3e"
expires: Sun, 03 Dec 2023 11:37:54 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

www.maskmeta.cyou/images/dapp-maker.png

194.124.216.72

200 OK

6.9 kB

URL GET HTTP/2
www.maskmeta.cyou/images/dapp-maker.png
IP
194.124.216.72:443
ASN
#3214 xTom GmbH

Requested by
https://www.maskmeta.cyou/
Certificate
IssuerLet's Encrypt
Subjectmaskmeta.cyou
FingerprintE7:E2:E7:63:F9:FE:1F:17:39:8E:BF:47:A8:8A:01:56:89:2F:77:3F
ValidityThu, 02 Nov 2023 15:43:25 GMT - Wed, 31 Jan 2024 15:43:24 GMT

File type
PNG image data, 280 x 280, 8-bit/color RGBA, non-interlaced\012- data
Size
6.9 kB (6852 bytes)
Hash
720871ca002e89a10d26e5c516066311
8648fe12645cd5c3473a73faba1d42cef78de444
f0d7356ee903d26301b8960783f70c108efc0382f20c804e0d09872a5443ce96

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /images/dapp-maker.png HTTP/1.1
Host: www.maskmeta.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 03 Nov 2023 11:37:54 GMT
content-type: image/png
content-length: 6852
last-modified: Fri, 10 Sep 2021 16:15:20 GMT
etag: "613b8498-1ac4"
expires: Sun, 03 Dec 2023 11:37:54 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

www.maskmeta.cyou/images/dapp-opensea.png

194.124.216.72

200 OK

6.5 kB

URL GET HTTP/2
www.maskmeta.cyou/images/dapp-opensea.png
IP
194.124.216.72:443
ASN
#3214 xTom GmbH

Requested by
https://www.maskmeta.cyou/
Certificate
IssuerLet's Encrypt
Subjectmaskmeta.cyou
FingerprintE7:E2:E7:63:F9:FE:1F:17:39:8E:BF:47:A8:8A:01:56:89:2F:77:3F
ValidityThu, 02 Nov 2023 15:43:25 GMT - Wed, 31 Jan 2024 15:43:24 GMT

File type
PNG image data, 280 x 280, 8-bit/color RGBA, non-interlaced\012- data
Size
6.5 kB (6533 bytes)
Hash
f82776f839cec899c9c87a680226aabf
43f5dedb6216cb02ee568fcb66cb19fc296c3a85
c62a1f30cdb6aff5eafdfccb45383032e61bf70aa0573572a4428347a1b5b116

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /images/dapp-opensea.png HTTP/1.1
Host: www.maskmeta.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 03 Nov 2023 11:37:54 GMT
content-type: image/png
content-length: 6533
last-modified: Fri, 10 Sep 2021 16:15:20 GMT
etag: "613b8498-1985"
expires: Sun, 03 Dec 2023 11:37:54 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

www.maskmeta.cyou/images/dapp-rarible.png

194.124.216.72

200 OK

6.8 kB

URL GET HTTP/2
www.maskmeta.cyou/images/dapp-rarible.png
IP
194.124.216.72:443
ASN
#3214 xTom GmbH

Requested by
https://www.maskmeta.cyou/
Certificate
IssuerLet's Encrypt
Subjectmaskmeta.cyou
FingerprintE7:E2:E7:63:F9:FE:1F:17:39:8E:BF:47:A8:8A:01:56:89:2F:77:3F
ValidityThu, 02 Nov 2023 15:43:25 GMT - Wed, 31 Jan 2024 15:43:24 GMT

File type
PNG image data, 560 x 560, 8-bit/color RGBA, non-interlaced\012- data
Size
6.8 kB (6840 bytes)
Hash
b9f7c0fd11c34c044799e673947103f8
491baab057af39b2b24bf0c671d0eb05454b8c48
29db12a282df5639db8fa232831bbe9a7220884eecf79f1776f1b27237a4597c

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /images/dapp-rarible.png HTTP/1.1
Host: www.maskmeta.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 03 Nov 2023 11:37:54 GMT
content-type: image/png
content-length: 6840
last-modified: Fri, 10 Sep 2021 16:15:20 GMT
etag: "613b8498-1ab8"
expires: Sun, 03 Dec 2023 11:37:54 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

www.maskmeta.cyou/images/dapp-uniswap.png

194.124.216.72

200 OK

10 kB

URL GET HTTP/2
www.maskmeta.cyou/images/dapp-uniswap.png
IP
194.124.216.72:443
ASN
#3214 xTom GmbH

Requested by
https://www.maskmeta.cyou/
Certificate
IssuerLet's Encrypt
Subjectmaskmeta.cyou
FingerprintE7:E2:E7:63:F9:FE:1F:17:39:8E:BF:47:A8:8A:01:56:89:2F:77:3F
ValidityThu, 02 Nov 2023 15:43:25 GMT - Wed, 31 Jan 2024 15:43:24 GMT

File type
PNG image data, 280 x 280, 8-bit/color RGBA, non-interlaced\012- data
Size
10 kB (10268 bytes)
Hash
1948962ad395727d902bd6b5fcd01807
f7e85e096b084ef6d9f550afbcd702fd889031a5
ad0237265584181a6797c454ca123aa5d3df08001ae39b27bddfc66856b6751b

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /images/dapp-uniswap.png HTTP/1.1
Host: www.maskmeta.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 03 Nov 2023 11:37:54 GMT
content-type: image/png
content-length: 10268
last-modified: Fri, 10 Sep 2021 16:15:20 GMT
etag: "613b8498-281c"
expires: Sun, 03 Dec 2023 11:37:54 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

www.maskmeta.cyou/images/mm-shop-hoodie.webp

194.124.216.72

200 OK

40 kB

URL GET HTTP/2
www.maskmeta.cyou/images/mm-shop-hoodie.webp
IP
194.124.216.72:443
ASN
#3214 xTom GmbH

Requested by
https://www.maskmeta.cyou/
Certificate
IssuerLet's Encrypt
Subjectmaskmeta.cyou
FingerprintE7:E2:E7:63:F9:FE:1F:17:39:8E:BF:47:A8:8A:01:56:89:2F:77:3F
ValidityThu, 02 Nov 2023 15:43:25 GMT - Wed, 31 Jan 2024 15:43:24 GMT

File type
RIFF (little-endian) data, Web/P image\012- data
Size
40 kB (40434 bytes)
Hash
e3357edaca1414398f4718c0c0816513
e909e243cd3891d283e4567d39d18c7108d5b693
12101946345b34460572862174ba2b964eed74d428181cd26686a95f6e2456c3

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /images/mm-shop-hoodie.webp HTTP/1.1
Host: www.maskmeta.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 03 Nov 2023 11:37:54 GMT
content-type: image/webp
content-length: 40434
last-modified: Tue, 19 Sep 2023 04:04:48 GMT
etag: "65091de0-9df2"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

www.maskmeta.cyou/images/hero2.2.png

194.124.216.72

200 OK

590 kB

URL GET HTTP/2
www.maskmeta.cyou/images/hero2.2.png
IP
194.124.216.72:443
ASN
#3214 xTom GmbH

Requested by
https://www.maskmeta.cyou/
Certificate
IssuerLet's Encrypt
Subjectmaskmeta.cyou
FingerprintE7:E2:E7:63:F9:FE:1F:17:39:8E:BF:47:A8:8A:01:56:89:2F:77:3F
ValidityThu, 02 Nov 2023 15:43:25 GMT - Wed, 31 Jan 2024 15:43:24 GMT

File type
PNG image data, 1752 x 1452, 8-bit/color RGBA, non-interlaced\012- data
Size
590 kB (589568 bytes)
Hash
d0ec70f4c666fbf6ad0d30a52d08c5c9
e48f0688bc4f592824840478d12c05df0dd12002
3f4bfc7c6cc471e9d95936dc109852c4f6a4bf1163b63eeabfe840565d5ad8d1

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /images/hero2.2.png HTTP/1.1
Host: www.maskmeta.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/css/metamask-staging-2.webflow.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 03 Nov 2023 11:37:54 GMT
content-type: image/png
content-length: 589568
last-modified: Fri, 10 Sep 2021 16:16:30 GMT
etag: "613b84de-8ff00"
expires: Sun, 03 Dec 2023 11:37:54 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

www.maskmeta.cyou/fonts/EuclidCircularB-Regular-WebXL.woff2

194.124.216.72

200 OK

45 kB

URL GET HTTP/2
www.maskmeta.cyou/fonts/EuclidCircularB-Regular-WebXL.woff2
IP
194.124.216.72:443
ASN
#3214 xTom GmbH

Requested by
https://www.maskmeta.cyou/
Certificate
IssuerLet's Encrypt
Subjectmaskmeta.cyou
FingerprintE7:E2:E7:63:F9:FE:1F:17:39:8E:BF:47:A8:8A:01:56:89:2F:77:3F
ValidityThu, 02 Nov 2023 15:43:25 GMT - Wed, 31 Jan 2024 15:43:24 GMT

File type
Web Open Font Format (Version 2), TrueType, length 45196, version 3.66\012- data
Size
45 kB (45196 bytes)
Hash
2d75957df3bb3aa6ed84f6591b0d5a1a
906424e75625f63b0188471067065794d0348536
8ff3b303322168b49a14878f195dbaf76d9da16e35094d1f83fa23245450155b

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /fonts/EuclidCircularB-Regular-WebXL.woff2 HTTP/1.1
Host: www.maskmeta.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/css/metamask-staging-2.webflow.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 03 Nov 2023 11:37:54 GMT
content-type: font/woff2
content-length: 45196
last-modified: Fri, 10 Sep 2021 16:16:34 GMT
etag: "613b84e2-b08c"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

www.maskmeta.cyou/fonts/EuclidCircularB-Bold-WebXL.woff2

194.124.216.72

200 OK

44 kB

URL GET HTTP/2
www.maskmeta.cyou/fonts/EuclidCircularB-Bold-WebXL.woff2
IP
194.124.216.72:443
ASN
#3214 xTom GmbH

Requested by
https://www.maskmeta.cyou/
Certificate
IssuerLet's Encrypt
Subjectmaskmeta.cyou
FingerprintE7:E2:E7:63:F9:FE:1F:17:39:8E:BF:47:A8:8A:01:56:89:2F:77:3F
ValidityThu, 02 Nov 2023 15:43:25 GMT - Wed, 31 Jan 2024 15:43:24 GMT

File type
Web Open Font Format (Version 2), TrueType, length 44544, version 3.66\012- data
Size
44 kB (44544 bytes)
Hash
9024d0bf73943172297c4628d0054e20
36c3795e7b297d06589e15ef59592683d9ed0974
88fad87880ae6bb0d733c967419d5f0d68da547a88ad67e7af41f18dae2e20df

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /fonts/EuclidCircularB-Bold-WebXL.woff2 HTTP/1.1
Host: www.maskmeta.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/css/metamask-staging-2.webflow.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 03 Nov 2023 11:37:54 GMT
content-type: font/woff2
content-length: 44544
last-modified: Fri, 10 Sep 2021 16:16:34 GMT
etag: "613b84e2-ae00"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

forms.hsforms.com/embed/v3/form/4795067/2b64112b-f442-4840-9ace-b11dccd5f744?callback=hs_reqwest_0&hutk=

104.18.160.125

200 OK

2.1 kB

URL GET HTTP/1.1
forms.hsforms.com/embed/v3/form/4795067/2b64112b-f442-4840-9ace-b11dccd5f744?callback=hs_reqwest_0&hutk=
IP
104.18.160.125:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.maskmeta.cyou/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint1E:9D:91:27:86:63:DC:7B:9D:15:4E:99:31:FC:AA:1D:DC:9E:06:3B
ValidityThu, 18 May 2023 00:00:00 GMT - Fri, 17 May 2024 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (5788), with no line terminators
Size
2.1 kB (2111 bytes)
Hash
1700f58db34cb53b413c353cf49d370c
47958f3c7f75d75c2724e41395ebf83e2931298f
cf8936a468aa91216c20913df910d73d233e90c2bc32ef0fc761d364049df3d6

HTTP Headers

GET /embed/v3/form/4795067/2b64112b-f442-4840-9ace-b11dccd5f744?callback=hs_reqwest_0&hutk= HTTP/1.1
Host: forms.hsforms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 03 Nov 2023 11:37:55 GMT
Content-Type: application/javascript;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Trace: 2BB9D1BBBA5320F8D91CB9C68E908AC0E9D2D655A6000000000000000000
X-Origin-Hublet: na1
Vary: origin
Content-Disposition: attachment; filename=no-rfd.txt
X-Content-Type-Options: nosniff
Access-Control-Allow-Credentials: false
Access-Control-Expose-Headers: X-Origin-Hublet
Cache-Control: max-age=0, no-cache, no-store
X-Robots-Tag: none
x-envoy-upstream-service-time: 12
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-evy-trace-served-by-pod: iad02/star-hubspot-td/envoy-proxy-79986f96f-jt4pd
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
X-HubSpot-Correlation-Id: b83e70ba-23d8-4caa-851b-a9a896349b17
x-request-id: b83e70ba-23d8-4caa-851b-a9a896349b17
CF-Cache-Status: DYNAMIC
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Server: cloudflare
CF-RAY: 820453f6de1d569a-OSL
Content-Encoding: br
alt-svc: h3=":443"; ma=86400

www.youtube.com/s/player/9d15588c/player_ias.vflset/en_US/embed.js

172.217.21.174

200 OK

18 kB

URL GET HTTP/3
www.youtube.com/s/player/9d15588c/player_ias.vflset/en_US/embed.js
IP
172.217.21.174:443
ASN
#15169 GOOGLE

Requested by
https://www.youtube.com/embed/YVgfHZMFFFQ?enablejsapi=1&origin=https%3A%2F%2Fmetamask.io
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintFD:EE:45:21:A2:3C:95:82:9B:BA:3F:7A:59:3C:F6:C2:7B:C7:84:8F
ValidityMon, 16 Oct 2023 08:02:35 GMT - Mon, 08 Jan 2024 08:02:34 GMT

File type
ASCII text, with very long lines (3391)
Size
18 kB (17508 bytes)
Hash
00fcd8f19f33cdd43dfbd93f93b1cacf
22652f87a2dbe4da673b3b8957c76f122e803559
84903214c4c40def6908be4fb42fd9f2b01ef82af69eee3ec6c8dbcbdaa6a7e7

HTTP Headers

GET /s/player/9d15588c/player_ias.vflset/en_US/embed.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/YVgfHZMFFFQ?enablejsapi=1&origin=https%3A%2F%2Fmetamask.io
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 17508
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 01 Nov 2023 07:37:55 GMT
expires: Thu, 31 Oct 2024 07:37:55 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 01 Nov 2023 01:51:00 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 187200
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.youtube.com/s/player/9d15588c/www-player.css

172.217.21.174

200 OK

49 kB

URL GET HTTP/3
www.youtube.com/s/player/9d15588c/www-player.css
IP
172.217.21.174:443
ASN
#15169 GOOGLE

Requested by
https://www.youtube.com/embed/YVgfHZMFFFQ?enablejsapi=1&origin=https%3A%2F%2Fmetamask.io
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintFD:EE:45:21:A2:3C:95:82:9B:BA:3F:7A:59:3C:F6:C2:7B:C7:84:8F
ValidityMon, 16 Oct 2023 08:02:35 GMT - Mon, 08 Jan 2024 08:02:34 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
49 kB (48897 bytes)
Hash
8dc2aaffee01544d7c0dfdc2d7600ce0
1499c1b257ee75da64ef5046d3ac9002ab302cb4
59640f904cf8abdc7a1d4189f3bb6ab83bfd60a8dd251a0abb5d5d3ab8a11b24

HTTP Headers

GET /s/player/9d15588c/www-player.css HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/YVgfHZMFFFQ?enablejsapi=1&origin=https%3A%2F%2Fmetamask.io
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 48897
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 01 Nov 2023 07:28:21 GMT
expires: Thu, 31 Oct 2024 07:28:21 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 01 Nov 2023 01:51:00 GMT
content-type: text/css
vary: Accept-Encoding, Origin
age: 187774
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.maskmeta.cyou/forms/v2.js

194.124.216.72

200 OK

172 kB

URL GET HTTP/2
www.maskmeta.cyou/forms/v2.js
IP
194.124.216.72:443
ASN
#3214 xTom GmbH

Requested by
https://www.maskmeta.cyou/
Certificate
IssuerLet's Encrypt
Subjectmaskmeta.cyou
FingerprintE7:E2:E7:63:F9:FE:1F:17:39:8E:BF:47:A8:8A:01:56:89:2F:77:3F
ValidityThu, 02 Nov 2023 15:43:25 GMT - Wed, 31 Jan 2024 15:43:24 GMT

File type
gzip compressed data, from Unix\012- data
Size
172 kB (171594 bytes)
Hash
cb15f230be11783ec3adfbb28e5d27a6
eeb5c44541cfb5bba5db3b155424b32123d76c92
794c71eac53b361625cff532e75f273b6a0987a85b39b36db7986f09b71a6e47

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /forms/v2.js HTTP/1.1
Host: www.maskmeta.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 03 Nov 2023 11:37:54 GMT
content-type: application/javascript
last-modified: Fri, 10 Sep 2021 16:18:28 GMT
vary: Accept-Encoding
etag: W/"613b8554-8e7e2"
expires: Fri, 03 Nov 2023 23:37:54 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

www.youtube.com/s/player/9d15588c/www-embed-player.vflset/www-embed-player.js

172.217.21.174

200 OK

98 kB

URL GET HTTP/3
www.youtube.com/s/player/9d15588c/www-embed-player.vflset/www-embed-player.js
IP
172.217.21.174:443
ASN
#15169 GOOGLE

Requested by
https://www.youtube.com/embed/YVgfHZMFFFQ?enablejsapi=1&origin=https%3A%2F%2Fmetamask.io
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintFD:EE:45:21:A2:3C:95:82:9B:BA:3F:7A:59:3C:F6:C2:7B:C7:84:8F
ValidityMon, 16 Oct 2023 08:02:35 GMT - Mon, 08 Jan 2024 08:02:34 GMT

File type
ASCII text, with very long lines (682)
Size
98 kB (98339 bytes)
Hash
a7c1c62310f68f1a1c6a0b75b5039eec
f0907153b862018c2938c3ce5c7d1faf060903ed
781ca116ffbdbcc5677786946676f2fa8bd27fbb34137972524a4a11cc885a28

HTTP Headers

GET /s/player/9d15588c/www-embed-player.vflset/www-embed-player.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/YVgfHZMFFFQ?enablejsapi=1&origin=https%3A%2F%2Fmetamask.io
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 98339
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 01 Nov 2023 07:28:21 GMT
expires: Thu, 31 Oct 2024 07:28:21 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 01 Nov 2023 01:51:00 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 187774
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/3
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/enterprise/bframe?hl=en&v=3sU2vDRVDmUU2E0Ro4VadvPr&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintEB:59:E9:F3:0F:CE:D8:1A:8C:BB:EE:7D:2E:B7:B8:39:73:7A:CE:28
ValidityMon, 16 Oct 2023 08:10:00 GMT - Mon, 08 Jan 2024 08:09:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Size
16 kB (15552 bytes)
Hash
285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7

HTTP Headers

GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Oct 2023 22:20:01 GMT
expires: Sat, 26 Oct 2024 22:20:01 GMT
cache-control: public, max-age=31536000
age: 566274
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/changaone/v20/xfu00W3wXn3QLUJXhzq42AHiuQ.woff2

216.58.207.227

200 OK

7.9 kB

URL GET HTTP/2
fonts.gstatic.com/s/changaone/v20/xfu00W3wXn3QLUJXhzq42AHiuQ.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.maskmeta.cyou/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintEB:59:E9:F3:0F:CE:D8:1A:8C:BB:EE:7D:2E:B7:B8:39:73:7A:CE:28
ValidityMon, 16 Oct 2023 08:10:00 GMT - Mon, 08 Jan 2024 08:09:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 7900, version 1.0\012- data
Size
7.9 kB (7900 bytes)
Hash
61e86e7a20ecf3ba181ca4b9a9a1cdbd
482a65cffc69109af26669d64accbef71db3b836
fbd0536d5b92c0dbe6ad2637800ae8da10c20755b564a3575bd12bba57f73b18

HTTP Headers

GET /s/changaone/v20/xfu00W3wXn3QLUJXhzq42AHiuQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.maskmeta.cyou
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7900
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Oct 2023 18:15:30 GMT
expires: Sat, 26 Oct 2024 18:15:30 GMT
cache-control: public, max-age=31536000
age: 580945
last-modified: Thu, 24 Aug 2023 21:10:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.maskmeta.cyou/css/normalize.css

194.124.216.72

200 OK

18 kB

URL GET HTTP/2
www.maskmeta.cyou/css/normalize.css
IP
194.124.216.72:443
ASN
#3214 xTom GmbH

Requested by
https://www.maskmeta.cyou/
Certificate
IssuerLet's Encrypt
Subjectmaskmeta.cyou
FingerprintE7:E2:E7:63:F9:FE:1F:17:39:8E:BF:47:A8:8A:01:56:89:2F:77:3F
ValidityThu, 02 Nov 2023 15:43:25 GMT - Wed, 31 Jan 2024 15:43:24 GMT

File type
gzip compressed data, from Unix\012- data
Size
18 kB (18247 bytes)
Hash
093e57ec70621b48b203728a5f17f1fb
de68672ba458edf528d9c9313c78282ca773f79e
72356db52dce44ca38e6f2f3e40812697938bce0047d56045dca7e5398b182b7

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /css/normalize.css HTTP/1.1
Host: www.maskmeta.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 03 Nov 2023 11:37:54 GMT
content-type: text/css
last-modified: Fri, 10 Sep 2021 16:18:28 GMT
vary: Accept-Encoding
etag: W/"613b8554-1e5c"
expires: Fri, 03 Nov 2023 23:37:54 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

fonts.gstatic.com/s/changaone/v20/xfu20W3wXn3QLUJXhzq42ATSu5_f.woff2

216.58.207.227

200 OK

8.4 kB

URL GET HTTP/2
fonts.gstatic.com/s/changaone/v20/xfu20W3wXn3QLUJXhzq42ATSu5_f.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.maskmeta.cyou/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintEB:59:E9:F3:0F:CE:D8:1A:8C:BB:EE:7D:2E:B7:B8:39:73:7A:CE:28
ValidityMon, 16 Oct 2023 08:10:00 GMT - Mon, 08 Jan 2024 08:09:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 8404, version 1.0\012- data
Size
8.4 kB (8404 bytes)
Hash
141119ae119bf7ca75e10ef82f66e442
adebf435aa078db3c116cb9faae15f2ad81d3ac5
c6afeb967afd466210e4061473c4855684e84b7e850b248c0533e6288acfbaff

HTTP Headers

GET /s/changaone/v20/xfu20W3wXn3QLUJXhzq42ATSu5_f.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.maskmeta.cyou
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8404
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Oct 2023 18:24:00 GMT
expires: Sat, 26 Oct 2024 18:24:00 GMT
cache-control: public, max-age=31536000
age: 580435
last-modified: Thu, 24 Aug 2023 20:56:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.youtube.com/s/player/9d15588c/player_ias.vflset/en_US/base.js

172.217.21.174

200 OK

775 kB

URL GET HTTP/3
www.youtube.com/s/player/9d15588c/player_ias.vflset/en_US/base.js
IP
172.217.21.174:443
ASN
#15169 GOOGLE

Requested by
https://www.youtube.com/embed/YVgfHZMFFFQ?enablejsapi=1&origin=https%3A%2F%2Fmetamask.io
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintFD:EE:45:21:A2:3C:95:82:9B:BA:3F:7A:59:3C:F6:C2:7B:C7:84:8F
ValidityMon, 16 Oct 2023 08:02:35 GMT - Mon, 08 Jan 2024 08:02:34 GMT

File type
ASCII text, with very long lines (555)
Size
775 kB (774756 bytes)
Hash
fc1b6b72d00a8f12c728d41730980d5a
6e2c1a91c7802aed7603a0f2bac758d29a9ef30f
ff66acf8eba8a719216c7d21bed3c0e6daef74c80ade61a784a21db4913ad8f4

HTTP Headers

GET /s/player/9d15588c/player_ias.vflset/en_US/base.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/YVgfHZMFFFQ?enablejsapi=1&origin=https%3A%2F%2Fmetamask.io
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-encoding: gzip
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 774756
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 01 Nov 2023 07:37:23 GMT
expires: Thu, 31 Oct 2024 07:37:23 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 01 Nov 2023 01:51:00 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 187232
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.maskmeta.cyou/logo.js

194.124.216.72

200 OK

13 kB

URL GET HTTP/2
www.maskmeta.cyou/logo.js
IP
194.124.216.72:443
ASN
#3214 xTom GmbH

Requested by
https://www.maskmeta.cyou/
Certificate
IssuerLet's Encrypt
Subjectmaskmeta.cyou
FingerprintE7:E2:E7:63:F9:FE:1F:17:39:8E:BF:47:A8:8A:01:56:89:2F:77:3F
ValidityThu, 02 Nov 2023 15:43:25 GMT - Wed, 31 Jan 2024 15:43:24 GMT

File type
gzip compressed data, from Unix\012- data
Size
13 kB (12921 bytes)
Hash
a720ccd03054421a31d48f1148c94d4b
5c039007f70ffd1292b515a28824e6ea4f42750e
4f8ebfae984b035cc3f0e7a882d487689084c84739397377a84685c3bdb3cd13

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /logo.js HTTP/1.1
Host: www.maskmeta.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 03 Nov 2023 11:37:54 GMT
content-type: application/javascript
last-modified: Fri, 10 Sep 2021 16:18:28 GMT
vary: Accept-Encoding
etag: W/"613b8554-b430"
expires: Fri, 03 Nov 2023 23:37:54 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

www.maskmeta.cyou/metamask.io/images/favicon.html

194.124.216.72

404 Not Found

146 B

URL GET HTTP/2
www.maskmeta.cyou/metamask.io/images/favicon.html
IP
194.124.216.72:443
ASN
#3214 xTom GmbH

Requested by
https://www.maskmeta.cyou/
Certificate
IssuerLet's Encrypt
Subjectmaskmeta.cyou
FingerprintE7:E2:E7:63:F9:FE:1F:17:39:8E:BF:47:A8:8A:01:56:89:2F:77:3F
ValidityThu, 02 Nov 2023 15:43:25 GMT - Wed, 31 Jan 2024 15:43:24 GMT

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
146 B (146 bytes)
Hash
8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /metamask.io/images/favicon.html HTTP/1.1
Host: www.maskmeta.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
server: nginx
date: Fri, 03 Nov 2023 11:37:55 GMT
content-type: text/html
content-length: 146
X-Firefox-Spdy: h2

www.google.com/recaptcha/enterprise.js?onload=hsRecaptchaLoadCallback&render=explicit&isolated=true

142.250.74.164

200 OK

192 kB

URL GET HTTP/2
www.google.com/recaptcha/enterprise.js?onload=hsRecaptchaLoadCallback&render=explicit&isolated=true
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
https://www.maskmeta.cyou/
Certificate
IssuerGoogle Trust Services LLC
Subjectwww.google.com
FingerprintF5:CC:DA:B5:BA:1E:14:14:44:CC:27:90:92:CC:60:1F:5F:08:AF:77
ValidityMon, 16 Oct 2023 08:10:46 GMT - Mon, 08 Jan 2024 08:10:45 GMT

File type
ASCII text, with very long lines (1022)
Size
192 kB (191990 bytes)
Hash
6e982746dd21d96b621902a398c8a218
8a6d139e1ce24f4e149998d8fbbb0cfbfadd249a
d429bb46cf31712fda8b3a7f0212ec70b036f7f2b9b235b5fcc84658591f3633

HTTP Headers

GET /recaptcha/enterprise.js?onload=hsRecaptchaLoadCallback&render=explicit&isolated=true HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
expires: Fri, 03 Nov 2023 11:37:55 GMT
date: Fri, 03 Nov 2023 11:37:55 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.maskmeta.cyou/css/webflow.css

194.124.216.72

200 OK

34 kB

URL GET HTTP/2
www.maskmeta.cyou/css/webflow.css
IP
194.124.216.72:443
ASN
#3214 xTom GmbH

Requested by
https://www.maskmeta.cyou/
Certificate
IssuerLet's Encrypt
Subjectmaskmeta.cyou
FingerprintE7:E2:E7:63:F9:FE:1F:17:39:8E:BF:47:A8:8A:01:56:89:2F:77:3F
ValidityThu, 02 Nov 2023 15:43:25 GMT - Wed, 31 Jan 2024 15:43:24 GMT

File type
gzip compressed data, from Unix\012- data
Size
34 kB (33493 bytes)
Hash
b9de0c7001e21e90dc91815fd1a6f58d
a6b804f595726dff793589c8ffa46b21e72d7c61
d624cbbdf573522698236095cb8c6a259dc6cfa8e96786a4c068be215ba9bf05

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /css/webflow.css HTTP/1.1
Host: www.maskmeta.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 03 Nov 2023 11:37:54 GMT
content-type: text/css
last-modified: Fri, 10 Sep 2021 16:18:28 GMT
vary: Accept-Encoding
etag: W/"613b8554-98c5"
expires: Fri, 03 Nov 2023 23:37:54 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

www.gstatic.com/recaptcha/releases/3sU2vDRVDmUU2E0Ro4VadvPr/styles__ltr.css

142.250.74.35

200 OK

25 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/releases/3sU2vDRVDmUU2E0Ro4VadvPr/styles__ltr.css
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm&co=aHR0cHM6Ly93d3cubWFza21ldGEuY3lvdTo0NDM.&hl=en&v=3sU2vDRVDmUU2E0Ro4VadvPr&size=invisible&badge=inline&cb=9pap6faml05z
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintEB:59:E9:F3:0F:CE:D8:1A:8C:BB:EE:7D:2E:B7:B8:39:73:7A:CE:28
ValidityMon, 16 Oct 2023 08:10:00 GMT - Mon, 08 Jan 2024 08:09:59 GMT

File type
ASCII text, with very long lines (56398), with no line terminators
Size
25 kB (24606 bytes)
Hash
eb4bc511f79f7a1573b45f5775b3a99b
d910fb51ad7316aa54f055079374574698e74b35
7859a62e04b0acb06516eb12454de6673883ecfaeaed6c254659bca7cd59c050

HTTP Headers

GET /recaptcha/releases/3sU2vDRVDmUU2E0Ro4VadvPr/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24606
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 Nov 2023 10:47:27 GMT
expires: Sat, 02 Nov 2024 10:47:27 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 30 Oct 2023 02:02:02 GMT
content-type: text/css
vary: Accept-Encoding
age: 3029
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

perf.hsforms.com/embed/v3/counters.gif?key=forms-next-recaptcha-viewed&count=1&portalId=4795067

104.18.160.125

200 OK

35 B

URL GET HTTP/3
perf.hsforms.com/embed/v3/counters.gif?key=forms-next-recaptcha-viewed&count=1&portalId=4795067
IP
104.18.160.125:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.maskmeta.cyou/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint1E:9D:91:27:86:63:DC:7B:9D:15:4E:99:31:FC:AA:1D:DC:9E:06:3B
ValidityThu, 18 May 2023 00:00:00 GMT - Fri, 17 May 2024 23:59:59 GMT

File type
GIF image data, version 89a, 1 x 1\012- data
Size
35 B (35 bytes)
Hash
c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992

HTTP Headers

GET /embed/v3/counters.gif?key=forms-next-recaptcha-viewed&count=1&portalId=4795067 HTTP/1.1
Host: perf.hsforms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 03 Nov 2023 11:37:56 GMT
content-type: image/gif
content-length: 35
x-trace: 2B495745272CA0CEDCF6ED6627397722C6A66FB843000000000000000000
cache-control: max-age=0, no-cache, no-store
vary: origin, Accept-Encoding
access-control-allow-credentials: false
x-content-type-options: nosniff
access-control-expose-headers: X-Origin-Hublet
x-robots-tag: none
x-envoy-upstream-service-time: 17
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-evy-trace-served-by-pod: iad02/star-hubspot-td/envoy-proxy-79986f96f-rwf2n
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-hubspot-correlation-id: f36fb4da-3132-4abf-b579-3505466720e6
x-request-id: f36fb4da-3132-4abf-b579-3505466720e6
last-modified: Fri, 03 Nov 2023 11:37:56 GMT
cf-cache-status: MISS
accept-ranges: bytes
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 820453ff2f680b55-OSL
alt-svc: h3=":443"; ma=86400

www.maskmeta.cyou/gtag/js.js

194.124.216.72

200 OK

236 kB

URL GET HTTP/2
www.maskmeta.cyou/gtag/js.js
IP
194.124.216.72:443
ASN
#3214 xTom GmbH

Requested by
https://www.maskmeta.cyou/
Certificate
IssuerLet's Encrypt
Subjectmaskmeta.cyou
FingerprintE7:E2:E7:63:F9:FE:1F:17:39:8E:BF:47:A8:8A:01:56:89:2F:77:3F
ValidityThu, 02 Nov 2023 15:43:25 GMT - Wed, 31 Jan 2024 15:43:24 GMT

File type
ASCII text, with very long lines (2077)
Size
236 kB (235577 bytes)
Hash
e20b46e9decc09d9e9444d4ef971fb52
f0afc49fa2328b8349f6eb33d61e75fa8787790a
6f6a8f2fefaf4093dc609663a60daee63c0b28a0ac4064dd2a9a4f026962a622

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /gtag/js.js HTTP/1.1
Host: www.maskmeta.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 03 Nov 2023 11:37:54 GMT
content-type: application/javascript
last-modified: Fri, 10 Sep 2021 16:18:28 GMT
vary: Accept-Encoding
etag: W/"613b8554-1949c"
expires: Fri, 03 Nov 2023 23:37:54 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

www.maskmeta.cyou/ajax/libs/webfont/1.6.26/webfont.js

194.124.216.72

200 OK

21 kB

URL GET HTTP/2
www.maskmeta.cyou/ajax/libs/webfont/1.6.26/webfont.js
IP
194.124.216.72:443
ASN
#3214 xTom GmbH

Requested by
https://www.maskmeta.cyou/
Certificate
IssuerLet's Encrypt
Subjectmaskmeta.cyou
FingerprintE7:E2:E7:63:F9:FE:1F:17:39:8E:BF:47:A8:8A:01:56:89:2F:77:3F
ValidityThu, 02 Nov 2023 15:43:25 GMT - Wed, 31 Jan 2024 15:43:24 GMT

File type
gzip compressed data, from Unix\012- data
Size
21 kB (21066 bytes)
Hash
073013d01319de3ac70107e6f0b8875e
bac2b35f378cb6ff072d9cf9b497cade0e3f153f
372e122845d5619169d89df424932c4bdf475fa373f9ddcebf067b5b777153ce

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /ajax/libs/webfont/1.6.26/webfont.js HTTP/1.1
Host: www.maskmeta.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 03 Nov 2023 11:37:54 GMT
content-type: application/javascript
last-modified: Fri, 10 Sep 2021 16:18:28 GMT
vary: Accept-Encoding
etag: W/"613b8554-3384"
expires: Fri, 03 Nov 2023 23:37:54 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/3
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/enterprise/bframe?hl=en&v=3sU2vDRVDmUU2E0Ro4VadvPr&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintEB:59:E9:F3:0F:CE:D8:1A:8C:BB:EE:7D:2E:B7:B8:39:73:7A:CE:28
ValidityMon, 16 Oct 2023 08:10:00 GMT - Mon, 08 Jan 2024 08:09:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Size
16 kB (15552 bytes)
Hash
285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7

HTTP Headers

GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Oct 2023 22:20:01 GMT
expires: Sat, 26 Oct 2024 22:20:01 GMT
cache-control: public, max-age=31536000
age: 566275
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.google.com/recaptcha/enterprise/webworker.js?hl=en&v=3sU2vDRVDmUU2E0Ro4VadvPr

142.250.74.164

200 OK

2.3 kB

URL GET HTTP/3
www.google.com/recaptcha/enterprise/webworker.js?hl=en&v=3sU2vDRVDmUU2E0Ro4VadvPr
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm&co=aHR0cHM6Ly93d3cubWFza21ldGEuY3lvdTo0NDM.&hl=en&v=3sU2vDRVDmUU2E0Ro4VadvPr&size=invisible&badge=inline&cb=9pap6faml05z
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintFD:EE:45:21:A2:3C:95:82:9B:BA:3F:7A:59:3C:F6:C2:7B:C7:84:8F
ValidityMon, 16 Oct 2023 08:02:35 GMT - Mon, 08 Jan 2024 08:02:34 GMT

File type
gzip compressed data\012- data
Size
2.3 kB (2338 bytes)
Hash
74706ed3628f57f62a9a167ceee0ed91
7a31f43d5d7b468472d9db96a492d4631ac416b6
718a7b82f67a521aefbb3fe6957b3c59ec42b9617331577271b8af293a905272

HTTP Headers

GET /recaptcha/enterprise/webworker.js?hl=en&v=3sU2vDRVDmUU2E0Ro4VadvPr HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm&co=aHR0cHM6Ly93d3cubWFza21ldGEuY3lvdTo0NDM.&hl=en&v=3sU2vDRVDmUU2E0Ro4VadvPr&size=invisible&badge=inline&cb=9pap6faml05z
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: text/javascript; charset=UTF-8
expires: Fri, 03 Nov 2023 11:37:56 GMT
date: Fri, 03 Nov 2023 11:37:56 GMT
cache-control: private, max-age=300
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/recaptcha/releases/3sU2vDRVDmUU2E0Ro4VadvPr/recaptcha__en.js

142.250.74.35

200 OK

191 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/releases/3sU2vDRVDmUU2E0Ro4VadvPr/recaptcha__en.js
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm&co=aHR0cHM6Ly93d3cubWFza21ldGEuY3lvdTo0NDM.&hl=en&v=3sU2vDRVDmUU2E0Ro4VadvPr&size=invisible&badge=inline&cb=9pap6faml05z
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintEB:59:E9:F3:0F:CE:D8:1A:8C:BB:EE:7D:2E:B7:B8:39:73:7A:CE:28
ValidityMon, 16 Oct 2023 08:10:00 GMT - Mon, 08 Jan 2024 08:09:59 GMT

File type
ASCII text, with very long lines (537)
Size
191 kB (191376 bytes)
Hash
0de5995e9ac19853eeffb8bbe74e6a7d
719e6fbcd0b38df859a6f7a8c51a820d7bf5970d
c7f150e7d0ed3cf657e531221f2640209e6daebed0fbaa6ab7e430ce8eb56a37

HTTP Headers

GET /recaptcha/releases/3sU2vDRVDmUU2E0Ro4VadvPr/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 191376
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 01 Nov 2023 15:07:32 GMT
expires: Thu, 31 Oct 2024 15:07:32 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 30 Oct 2023 02:02:02 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 160224
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

i.ytimg.com/vi/YVgfHZMFFFQ/default.jpg

142.250.74.182

200 OK

2.5 kB

URL GET HTTP/3
i.ytimg.com/vi/YVgfHZMFFFQ/default.jpg
IP
142.250.74.182:443
ASN
#15169 GOOGLE

Requested by
https://www.youtube.com/embed/YVgfHZMFFFQ?enablejsapi=1&origin=https%3A%2F%2Fmetamask.io
Certificate
IssuerGoogle Trust Services LLC
Subjectedgestatic.com
Fingerprint30:FC:ED:56:9F:85:39:F1:1B:87:3B:5E:09:20:49:BB:39:CC:EA:8D
ValidityMon, 16 Oct 2023 08:02:25 GMT - Mon, 08 Jan 2024 08:02:24 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 120x90, components 3\012- data
Size
2.5 kB (2528 bytes)
Hash
45fee137d2228a1f262812895de57314
7bc9d830a8bac5d4cfdc56ff1224225a9bf1f982
dd603175ee9073585d706f1d8c6f328e6b06bc9e28faae47a5b92f09cd837c75

HTTP Headers

GET /vi/YVgfHZMFFFQ/default.jpg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 2528
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 Nov 2023 11:19:36 GMT
expires: Fri, 03 Nov 2023 13:19:36 GMT
cache-control: public, max-age=7200
etag: "1582837014"
content-type: image/jpeg
vary: Origin
age: 1100
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create

142.250.74.74

200 OK

0 B

URL POST HTTP/2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP
142.250.74.74:443
ASN
#15169 GOOGLE

Requested by
https://www.youtube.com/embed/YVgfHZMFFFQ?enablejsapi=1&origin=https%3A%2F%2Fmetamask.io
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintFA:D7:68:E4:12:7D:FE:22:87:DE:95:F1:1E:49:5A:49:FA:12:1E:B9
ValidityMon, 16 Oct 2023 08:10:01 GMT - Mon, 08 Jan 2024 08:10:00 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Fri, 03 Nov 2023 11:37:56 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.google.com/js/th/PCqCuqRWleJvAFB5HssaUTeU1BO5ETzC_zrpZ-5DxRc.js

142.250.74.164

200 OK

15 kB

URL GET HTTP/3
www.google.com/js/th/PCqCuqRWleJvAFB5HssaUTeU1BO5ETzC_zrpZ-5DxRc.js
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
https://www.youtube.com/embed/YVgfHZMFFFQ?enablejsapi=1&origin=https%3A%2F%2Fmetamask.io
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintFD:EE:45:21:A2:3C:95:82:9B:BA:3F:7A:59:3C:F6:C2:7B:C7:84:8F
ValidityMon, 16 Oct 2023 08:02:35 GMT - Mon, 08 Jan 2024 08:02:34 GMT

File type
ASCII text, with very long lines (37481)
Size
15 kB (14755 bytes)
Hash
5285669a995362a19b937a27edde79d6
636a0e93e467c3428775c05e64d6aed60f0db24b
3c2a82baa45695e26f0050791ecb1a513794d413b9113cc2ff3ae967ee43c517

HTTP Headers

GET /js/th/PCqCuqRWleJvAFB5HssaUTeU1BO5ETzC_zrpZ-5DxRc.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14755
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Oct 2023 11:15:58 GMT
expires: Wed, 30 Oct 2024 11:15:58 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 10 Oct 2023 07:30:00 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 260518
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.youtube.com/s/player/9d15588c/player_ias.vflset/en_US/remote.js

172.217.21.174

200 OK

34 kB

URL GET HTTP/3
www.youtube.com/s/player/9d15588c/player_ias.vflset/en_US/remote.js
IP
172.217.21.174:443
ASN
#15169 GOOGLE

Requested by
https://www.youtube.com/embed/YVgfHZMFFFQ?enablejsapi=1&origin=https%3A%2F%2Fmetamask.io
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintFD:EE:45:21:A2:3C:95:82:9B:BA:3F:7A:59:3C:F6:C2:7B:C7:84:8F
ValidityMon, 16 Oct 2023 08:02:35 GMT - Mon, 08 Jan 2024 08:02:34 GMT

File type
ASCII text, with very long lines (537)
Size
34 kB (33507 bytes)
Hash
f402c83698e962790e687760233c98ac
7b4ea70005245292f4e1c36e896c3320a662e6c6
6840401b7255512c5b9900409a9644d4e9b3cec94134f2154c1b93f80dc7bbc0

HTTP Headers

GET /s/player/9d15588c/player_ias.vflset/en_US/remote.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/YVgfHZMFFFQ?enablejsapi=1&origin=https%3A%2F%2Fmetamask.io
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 33507
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 01 Nov 2023 07:37:23 GMT
expires: Thu, 31 Oct 2024 07:37:23 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 01 Nov 2023 01:51:00 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 187233
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create

142.250.74.74

200 OK

32 kB

URL POST HTTP/2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP
142.250.74.74:443
ASN
#15169 GOOGLE

Requested by
https://www.youtube.com/embed/YVgfHZMFFFQ?enablejsapi=1&origin=https%3A%2F%2Fmetamask.io
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintFA:D7:68:E4:12:7D:FE:22:87:DE:95:F1:1E:49:5A:49:FA:12:1E:B9
ValidityMon, 16 Oct 2023 08:10:01 GMT - Mon, 08 Jan 2024 08:10:00 GMT

File type
JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Size
32 kB (32249 bytes)
Hash
4f6c36b01fcb42911857f26ab7a10f8b
6dd96237ed6bb77edca21d8dc7de013c2fff8012
b83b2c23991dab86c14ffe35e4a3252a61a2d9c00dd5e1b5f9c3fef22be5e7dd

HTTP Headers

POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Fri, 03 Nov 2023 11:37:56 GMT
server: ESF
cache-control: private
content-length: 32249
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT

142.250.74.74

200 OK

0 B

URL POST HTTP/3
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP
142.250.74.74:443
ASN
#15169 GOOGLE

Requested by
https://www.youtube.com/embed/YVgfHZMFFFQ?enablejsapi=1&origin=https%3A%2F%2Fmetamask.io
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintFA:D7:68:E4:12:7D:FE:22:87:DE:95:F1:1E:49:5A:49:FA:12:1E:B9
ValidityMon, 16 Oct 2023 08:10:01 GMT - Mon, 08 Jan 2024 08:10:00 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Fri, 03 Nov 2023 11:37:57 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT

142.250.74.74

200 OK

110 B

URL POST HTTP/3
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP
142.250.74.74:443
ASN
#15169 GOOGLE

Requested by
https://www.youtube.com/embed/YVgfHZMFFFQ?enablejsapi=1&origin=https%3A%2F%2Fmetamask.io
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintFA:D7:68:E4:12:7D:FE:22:87:DE:95:F1:1E:49:5A:49:FA:12:1E:B9
ValidityMon, 16 Oct 2023 08:10:01 GMT - Mon, 08 Jan 2024 08:10:00 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
110 B (110 bytes)
Hash
1bdc7d1e46c89347f352cafc59481b3b
67af4809dc7352ecd96823dfcd7e45020f279b08
b698f330fd241bbefce564a648543e27a073a157a82a011f048a6cc1c8ce3d96

HTTP Headers

POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1222
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Fri, 03 Nov 2023 11:37:57 GMT
server: ESF
cache-control: private
content-length: 110
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/recaptcha/releases/3sU2vDRVDmUU2E0Ro4VadvPr/styles__ltr.css

142.250.74.35

200 OK

25 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/releases/3sU2vDRVDmUU2E0Ro4VadvPr/styles__ltr.css
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm&co=aHR0cHM6Ly93d3cubWFza21ldGEuY3lvdTo0NDM.&hl=en&v=3sU2vDRVDmUU2E0Ro4VadvPr&size=invisible&badge=inline&cb=9pap6faml05z
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintEB:59:E9:F3:0F:CE:D8:1A:8C:BB:EE:7D:2E:B7:B8:39:73:7A:CE:28
ValidityMon, 16 Oct 2023 08:10:00 GMT - Mon, 08 Jan 2024 08:09:59 GMT

File type
ASCII text, with very long lines (56398), with no line terminators
Size
25 kB (24606 bytes)
Hash
eb4bc511f79f7a1573b45f5775b3a99b
d910fb51ad7316aa54f055079374574698e74b35
7859a62e04b0acb06516eb12454de6673883ecfaeaed6c254659bca7cd59c050

HTTP Headers

GET /recaptcha/releases/3sU2vDRVDmUU2E0Ro4VadvPr/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24606
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 Nov 2023 10:47:27 GMT
expires: Sat, 02 Nov 2024 10:47:27 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 30 Oct 2023 02:02:02 GMT
content-type: text/css
vary: Accept-Encoding
age: 3030
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/recaptcha/releases/3sU2vDRVDmUU2E0Ro4VadvPr/recaptcha__en.js

142.250.74.35

200 OK

191 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/releases/3sU2vDRVDmUU2E0Ro4VadvPr/recaptcha__en.js
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm&co=aHR0cHM6Ly93d3cubWFza21ldGEuY3lvdTo0NDM.&hl=en&v=3sU2vDRVDmUU2E0Ro4VadvPr&size=invisible&badge=inline&cb=9pap6faml05z
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintEB:59:E9:F3:0F:CE:D8:1A:8C:BB:EE:7D:2E:B7:B8:39:73:7A:CE:28
ValidityMon, 16 Oct 2023 08:10:00 GMT - Mon, 08 Jan 2024 08:09:59 GMT

File type
ASCII text, with very long lines (537)
Size
191 kB (191376 bytes)
Hash
0de5995e9ac19853eeffb8bbe74e6a7d
719e6fbcd0b38df859a6f7a8c51a820d7bf5970d
c7f150e7d0ed3cf657e531221f2640209e6daebed0fbaa6ab7e430ce8eb56a37

HTTP Headers

GET /recaptcha/releases/3sU2vDRVDmUU2E0Ro4VadvPr/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 191376
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 01 Nov 2023 15:07:32 GMT
expires: Thu, 31 Oct 2024 15:07:32 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 30 Oct 2023 02:02:02 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 160225
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.youtube.com/generate_204?8R3mIg

172.217.21.174

204 No Content

0 B

URL GET HTTP/3
www.youtube.com/generate_204?8R3mIg
IP
172.217.21.174:443
ASN
#15169 GOOGLE

Requested by
https://www.youtube.com/embed/YVgfHZMFFFQ?enablejsapi=1&origin=https%3A%2F%2Fmetamask.io
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintFD:EE:45:21:A2:3C:95:82:9B:BA:3F:7A:59:3C:F6:C2:7B:C7:84:8F
ValidityMon, 16 Oct 2023 08:02:35 GMT - Mon, 08 Jan 2024 08:02:34 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /generate_204?8R3mIg HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/YVgfHZMFFFQ?enablejsapi=1&origin=https%3A%2F%2Fmetamask.io
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
content-length: 0
cross-origin-resource-policy: cross-origin
date: Fri, 03 Nov 2023 11:37:57 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

yt3.ggpht.com/ytc/APkrFKauCeUBZZUfQdBcWGLfqZ9nV8P6uKcVDO4VmtCx=s68-c-k-c0x00ffffff-no-rj

142.250.74.161

200 OK

2.7 kB

URL GET HTTP/2
yt3.ggpht.com/ytc/APkrFKauCeUBZZUfQdBcWGLfqZ9nV8P6uKcVDO4VmtCx=s68-c-k-c0x00ffffff-no-rj
IP
142.250.74.161:443
ASN
#15169 GOOGLE

Requested by
https://www.youtube.com/embed/YVgfHZMFFFQ?enablejsapi=1&origin=https%3A%2F%2Fmetamask.io
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
FingerprintCB:BB:D8:FC:60:AA:94:8F:47:5C:88:BB:C3:30:22:92:26:D3:85:2F
ValidityMon, 16 Oct 2023 08:09:46 GMT - Mon, 08 Jan 2024 08:09:45 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 68x68, components 3\012- data
Size
2.7 kB (2716 bytes)
Hash
6b9680c9e0e4b8f66f2eb05e767c68eb
1bac27e970d3f77973c4e877f56acc1b844885bd
73360daef1e2781c6fe96e9150f10f2e4bbfe239940e15aa93cad4a901e10ce7

HTTP Headers

GET /ytc/APkrFKauCeUBZZUfQdBcWGLfqZ9nV8P6uKcVDO4VmtCx=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.jpg"
x-content-type-options: nosniff
server: fife
content-length: 2716
x-xss-protection: 0
date: Fri, 03 Nov 2023 08:07:43 GMT
expires: Sat, 04 Nov 2023 08:07:43 GMT
cache-control: public, max-age=86400, no-transform
age: 12614
etag: "v1c"
content-type: image/jpeg
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

15 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm&co=aHR0cHM6Ly93d3cubWFza21ldGEuY3lvdTo0NDM.&hl=en&v=3sU2vDRVDmUU2E0Ro4VadvPr&size=invisible&badge=inline&cb=9pap6faml05z
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintEB:59:E9:F3:0F:CE:D8:1A:8C:BB:EE:7D:2E:B7:B8:39:73:7A:CE:28
ValidityMon, 16 Oct 2023 08:10:00 GMT - Mon, 08 Jan 2024 08:09:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Size
15 kB (15344 bytes)
Hash
5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc

HTTP Headers

GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Nov 2023 23:51:35 GMT
expires: Fri, 01 Nov 2024 23:51:35 GMT
cache-control: public, max-age=31536000
age: 42382
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmYUtfBBc4.woff2

216.58.207.227

200 OK

15 kB

URL GET HTTP/3
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/enterprise/bframe?hl=en&v=3sU2vDRVDmUU2E0Ro4VadvPr&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintEB:59:E9:F3:0F:CE:D8:1A:8C:BB:EE:7D:2E:B7:B8:39:73:7A:CE:28
ValidityMon, 16 Oct 2023 08:10:00 GMT - Mon, 08 Jan 2024 08:09:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15340, version 1.0\012- data
Size
15 kB (15340 bytes)
Hash
19b7a0adfdd4f808b53af7e2ce2ad4e5
81d5d4c7b5035ad10cce63cf7100295e0c51fdda
c912a9ce0c3122d4b2b29ad26bfe06b0390d1a5bdaa5d6128692c0befd1dfbbd

HTTP Headers

GET /s/roboto/v18/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15340
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Nov 2023 15:15:32 GMT
expires: Fri, 01 Nov 2024 15:15:32 GMT
cache-control: public, max-age=31536000
age: 73345
last-modified: Mon, 16 Oct 2017 17:33:16 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/3
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/enterprise/bframe?hl=en&v=3sU2vDRVDmUU2E0Ro4VadvPr&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintEB:59:E9:F3:0F:CE:D8:1A:8C:BB:EE:7D:2E:B7:B8:39:73:7A:CE:28
ValidityMon, 16 Oct 2023 08:10:00 GMT - Mon, 08 Jan 2024 08:09:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Size
16 kB (15552 bytes)
Hash
285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7

HTTP Headers

GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Oct 2023 22:20:01 GMT
expires: Sat, 26 Oct 2024 22:20:01 GMT
cache-control: public, max-age=31536000
age: 566276
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/recaptcha/api2/refresh_2x.png

142.250.74.35

200 OK

600 B

URL GET HTTP/3
www.gstatic.com/recaptcha/api2/refresh_2x.png
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/enterprise/bframe?hl=en&v=3sU2vDRVDmUU2E0Ro4VadvPr&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintEB:59:E9:F3:0F:CE:D8:1A:8C:BB:EE:7D:2E:B7:B8:39:73:7A:CE:28
ValidityMon, 16 Oct 2023 08:10:00 GMT - Mon, 08 Jan 2024 08:09:59 GMT

File type
PNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced\012- data
Size
600 B (600 bytes)
Hash
0f2a4639b8a4cb30c76e8333c00d30a6
57e273a270bb864970d747c74b3f0a7c8e515b13
44b988703019cd6bfa86c91840fecf2a42b611b364e3eea2f4eb63bf62714e98

HTTP Headers

GET /recaptcha/api2/refresh_2x.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/3sU2vDRVDmUU2E0Ro4VadvPr/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 600
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Nov 2023 15:12:23 GMT
expires: Thu, 09 Nov 2023 15:12:23 GMT
cache-control: public, max-age=604800
age: 73535
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.google.com/recaptcha/enterprise/payload?p=06AFcWeA7VzZbnOvTc8jrTii3-sQtgcwiOJk1sQskPR-EAy_xdOnpBqvj2HPwXLLQuB9Uu0a2ftyuv4UbMerzvTT21lBVrztzLZGCtf1iFavnPkVELS5b5PUqYWZ1z3ta-Pi0tpfBDHF05V1lxy5ABsFA_v8Ujr4lj56xW_nlAZjjI_vvt53NUJZXMa5WebvxiTPXKdLJIzBFb&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm

142.250.74.164

200 OK

35 kB

URL GET HTTP/3
www.google.com/recaptcha/enterprise/payload?p=06AFcWeA7VzZbnOvTc8jrTii3-sQtgcwiOJk1sQskPR-EAy_xdOnpBqvj2HPwXLLQuB9Uu0a2ftyuv4UbMerzvTT21lBVrztzLZGCtf1iFavnPkVELS5b5PUqYWZ1z3ta-Pi0tpfBDHF05V1lxy5ABsFA_v8Ujr4lj56xW_nlAZjjI_vvt53NUJZXMa5WebvxiTPXKdLJIzBFb&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/enterprise/bframe?hl=en&v=3sU2vDRVDmUU2E0Ro4VadvPr&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintFD:EE:45:21:A2:3C:95:82:9B:BA:3F:7A:59:3C:F6:C2:7B:C7:84:8F
ValidityMon, 16 Oct 2023 08:02:35 GMT - Mon, 08 Jan 2024 08:02:34 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 450x450, components 3\012- data
Size
35 kB (34729 bytes)
Hash
39bd08abc37f54e52669654c754225e0
103ed98b7545816863e6baffa79f6860c89e964a
ab8f4c0268818e3557b102e95426c2376e95135a8cdce15f38f68ae66e9cc45d

HTTP Headers

GET /recaptcha/enterprise/payload?p=06AFcWeA7VzZbnOvTc8jrTii3-sQtgcwiOJk1sQskPR-EAy_xdOnpBqvj2HPwXLLQuB9Uu0a2ftyuv4UbMerzvTT21lBVrztzLZGCtf1iFavnPkVELS5b5PUqYWZ1z3ta-Pi0tpfBDHF05V1lxy5ABsFA_v8Ujr4lj56xW_nlAZjjI_vvt53NUJZXMa5WebvxiTPXKdLJIzBFb&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/enterprise/bframe?hl=en&v=3sU2vDRVDmUU2E0Ro4VadvPr&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm
Cookie: _GRECAPTCHA=09ABQWEJpF4ZwO_HSH6KwIH2r_R3S-iHUxGK9myFx4v9NNdrcz1ewFXUtQE6FQ_Re9XdNapkcBCQA6XxDiwdaJGcM
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: image/jpeg
expires: Fri, 03 Nov 2023 11:37:58 GMT
date: Fri, 03 Nov 2023 11:37:58 GMT
cache-control: private, max-age=30
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/recaptcha/api2/audio_2x.png

142.250.74.35

200 OK

530 B

URL GET HTTP/3
www.gstatic.com/recaptcha/api2/audio_2x.png
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/enterprise/bframe?hl=en&v=3sU2vDRVDmUU2E0Ro4VadvPr&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintEB:59:E9:F3:0F:CE:D8:1A:8C:BB:EE:7D:2E:B7:B8:39:73:7A:CE:28
ValidityMon, 16 Oct 2023 08:10:00 GMT - Mon, 08 Jan 2024 08:09:59 GMT

File type
PNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced\012- data
Size
530 B (530 bytes)
Hash
88e0f42c9fa4f94aa8bcd54d1685c180
5ad9d47a49b82718baa3be88550a0b3350270c42
89c62095126fca89ea1511cf35b49b8306162946b0c26d6f60c5506c51d85992

HTTP Headers

GET /recaptcha/api2/audio_2x.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/3sU2vDRVDmUU2E0Ro4VadvPr/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 530
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Oct 2023 05:32:22 GMT
expires: Tue, 07 Nov 2023 05:32:22 GMT
cache-control: public, max-age=604800
age: 281136
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8

172.217.21.174

200 OK

31 B

URL POST HTTP/3
www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8
IP
172.217.21.174:443
ASN
#15169 GOOGLE

Requested by
https://www.youtube.com/embed/YVgfHZMFFFQ?enablejsapi=1&origin=https%3A%2F%2Fmetamask.io
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintFD:EE:45:21:A2:3C:95:82:9B:BA:3F:7A:59:3C:F6:C2:7B:C7:84:8F
ValidityMon, 16 Oct 2023 08:02:35 GMT - Mon, 08 Jan 2024 08:02:34 GMT

File type
JSON data\012- , ASCII text
Size
31 B (31 bytes)
Hash
5e1fa6fd9abd549a576f3f24b1d3c8d4
d5335d7f7d33be6a0b663f03b2df4df2521c4a87
d7d5e54ad1e33d7ab49c664323ced79cb9723ff15e9764cd0edc3e15208e8336

HTTP Headers

POST /youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Request-Time: 1699011479703
Content-Type: application/json
X-Goog-Visitor-Id: CgtZQkI2WTU3UUZEUSiSt5OqBjIICgJOTxICEgA%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20231031.01.00
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1699011475850&flash=0&frm=2&u_tz&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=31&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C0%2C0%2C0%2C0&vis=1&wgl=true&ca_type=image
Content-Length: 16085
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/YVgfHZMFFFQ?enablejsapi=1&origin=https%3A%2F%2Fmetamask.io
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: br
date: Fri, 03 Nov 2023 11:37:59 GMT
server: scaffolding on HTTPServer2
content-length: 31
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+112; expires=Sun, 02-Nov-2025 11:37:59 GMT; path=/; domain=.youtube.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Fri, 03 Nov 2023 11:37:59 GMT
cache-control: private

www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8

172.217.21.174

200 OK

31 B

URL POST HTTP/3
www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8
IP
172.217.21.174:443
ASN
#15169 GOOGLE

Requested by
https://www.youtube.com/embed/YVgfHZMFFFQ?enablejsapi=1&origin=https%3A%2F%2Fmetamask.io
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintFD:EE:45:21:A2:3C:95:82:9B:BA:3F:7A:59:3C:F6:C2:7B:C7:84:8F
ValidityMon, 16 Oct 2023 08:02:35 GMT - Mon, 08 Jan 2024 08:02:34 GMT

File type
JSON data\012- , ASCII text
Size
31 B (31 bytes)
Hash
5e1fa6fd9abd549a576f3f24b1d3c8d4
d5335d7f7d33be6a0b663f03b2df4df2521c4a87
d7d5e54ad1e33d7ab49c664323ced79cb9723ff15e9764cd0edc3e15208e8336

HTTP Headers

POST /youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Request-Time: 1699011492766
Content-Type: application/json
X-Goog-Visitor-Id: CgtZQkI2WTU3UUZEUSiSt5OqBjIICgJOTxICEgA%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20231031.01.00
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1699011475850&flash=0&frm=2&u_tz&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=31&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C0%2C0%2C0%2C0&vis=1&wgl=true&ca_type=image
Content-Length: 803
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/YVgfHZMFFFQ?enablejsapi=1&origin=https%3A%2F%2Fmetamask.io
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: br
date: Fri, 03 Nov 2023 11:38:12 GMT
server: scaffolding on HTTPServer2
content-length: 31
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+712; expires=Sun, 02-Nov-2025 11:38:12 GMT; path=/; domain=.youtube.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Fri, 03 Nov 2023 11:38:12 GMT
cache-control: private

www.google.com/recaptcha/enterprise/bframe?hl=en&v=3sU2vDRVDmUU2E0Ro4VadvPr&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm

142.250.74.164

200 OK

7.3 kB

URL GET HTTP/3
www.google.com/recaptcha/enterprise/bframe?hl=en&v=3sU2vDRVDmUU2E0Ro4VadvPr&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
https://www.maskmeta.cyou/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintFD:EE:45:21:A2:3C:95:82:9B:BA:3F:7A:59:3C:F6:C2:7B:C7:84:8F
ValidityMon, 16 Oct 2023 08:02:35 GMT - Mon, 08 Jan 2024 08:02:34 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (7486), with no line terminators
Size
7.3 kB (7255 bytes)
Hash
0c79af5d003281121db8953e8c95fb68
bc0e071a716e90d92f029bb3f9ceda7562ec0c5b
2e531bec2ed23b49f079c8f783c83c92166dd3596c30b9261d2adb46af55098a

HTTP Headers

GET /recaptcha/enterprise/bframe?hl=en&v=3sU2vDRVDmUU2E0Ro4VadvPr&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: text/html; charset=utf-8
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 03 Nov 2023 11:37:57 GMT
content-security-policy: script-src 'nonce-C0UuYAJ7XPWEor9D962KTg' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.maskmeta.cyou/js/jquery-3.5.1.min.dc5e7f18c8.js

194.124.216.72

200 OK

90 kB

URL GET HTTP/2
www.maskmeta.cyou/js/jquery-3.5.1.min.dc5e7f18c8.js
IP
194.124.216.72:443
ASN
#3214 xTom GmbH

Requested by
https://www.maskmeta.cyou/
Certificate
IssuerLet's Encrypt
Subjectmaskmeta.cyou
FingerprintE7:E2:E7:63:F9:FE:1F:17:39:8E:BF:47:A8:8A:01:56:89:2F:77:3F
ValidityThu, 02 Nov 2023 15:43:25 GMT - Wed, 31 Jan 2024 15:43:24 GMT

File type
ASCII text, with very long lines (65451)
Size
90 kB (89476 bytes)
Hash
dc5e7f18c8d36ac1d3d4753a87c98d0a
c8e1c8b386dc5b7a9184c763c88d19a346eb3342
f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /js/jquery-3.5.1.min.dc5e7f18c8.js HTTP/1.1
Host: www.maskmeta.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 03 Nov 2023 11:37:54 GMT
content-type: application/javascript
last-modified: Fri, 10 Sep 2021 16:18:28 GMT
vary: Accept-Encoding
etag: W/"613b8554-15d84"
expires: Fri, 03 Nov 2023 23:37:54 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

www.google.com/recaptcha/enterprise/reload?k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm

142.250.74.164

200 OK

41 kB

URL POST HTTP/3
www.google.com/recaptcha/enterprise/reload?k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/enterprise/bframe?hl=en&v=3sU2vDRVDmUU2E0Ro4VadvPr&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintFD:EE:45:21:A2:3C:95:82:9B:BA:3F:7A:59:3C:F6:C2:7B:C7:84:8F
ValidityMon, 16 Oct 2023 08:02:35 GMT - Mon, 08 Jan 2024 08:02:34 GMT

File type
ASCII text, with very long lines (40960)
Size
41 kB (40965 bytes)
Hash
c4331ae26fab902ec9e2247868fa75ef
529769a2c014874cf96640753f6235df06b429af
cf028a4d9484a65499b9e8577a611028bdee17a821be842b08792de9d89bbddb

HTTP Headers

POST /recaptcha/enterprise/reload?k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-protobuffer
Content-Length: 8330
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/enterprise/bframe?hl=en&v=3sU2vDRVDmUU2E0Ro4VadvPr&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: application/json; charset=utf-8
content-encoding: gzip
date: Fri, 03 Nov 2023 11:37:57 GMT
expires: Fri, 03 Nov 2023 11:37:57 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
set-cookie: _GRECAPTCHA=09ABQWEJpF4ZwO_HSH6KwIH2r_R3S-iHUxGK9myFx4v9NNdrcz1ewFXUtQE6FQ_Re9XdNapkcBCQA6XxDiwdaJGcM;Path=/recaptcha;Expires=Wed, 01-May-2024 11:37:57 GMT;Secure;HttpOnly;Priority=HIGH;SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/recaptcha/api2/logo_48.png

142.250.74.35

200 OK

2.2 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/api2/logo_48.png
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm&co=aHR0cHM6Ly93d3cubWFza21ldGEuY3lvdTo0NDM.&hl=en&v=3sU2vDRVDmUU2E0Ro4VadvPr&size=invisible&badge=inline&cb=9pap6faml05z
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintEB:59:E9:F3:0F:CE:D8:1A:8C:BB:EE:7D:2E:B7:B8:39:73:7A:CE:28
ValidityMon, 16 Oct 2023 08:10:00 GMT - Mon, 08 Jan 2024 08:09:59 GMT

File type
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Size
2.2 kB (2228 bytes)
Hash
ef9941290c50cd3866e2ba6b793f010d
4736508c795667dcea21f8d864233031223b7832
1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a

HTTP Headers

GET /recaptcha/api2/logo_48.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/3sU2vDRVDmUU2E0Ro4VadvPr/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 2228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Oct 2023 05:14:09 GMT
expires: Tue, 07 Nov 2023 05:14:09 GMT
cache-control: public, max-age=604800
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
age: 282227
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/recaptcha/api2/info_2x.png

142.250.74.35

200 OK

665 B

URL GET HTTP/3
www.gstatic.com/recaptcha/api2/info_2x.png
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/enterprise/bframe?hl=en&v=3sU2vDRVDmUU2E0Ro4VadvPr&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintEB:59:E9:F3:0F:CE:D8:1A:8C:BB:EE:7D:2E:B7:B8:39:73:7A:CE:28
ValidityMon, 16 Oct 2023 08:10:00 GMT - Mon, 08 Jan 2024 08:09:59 GMT

File type
PNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced\012- data
Size
665 B (665 bytes)
Hash
07bf314aab04047b9e9a959ee6f63da3
17bef6602672e2fd9956381e01356245144003e5
55eaf62cb05da20088dc12b39d7d254d046cb1fd61ddf3ae641f1439efd0a5ee

HTTP Headers

GET /recaptcha/api2/info_2x.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/3sU2vDRVDmUU2E0Ro4VadvPr/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 665
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 28 Oct 2023 11:00:47 GMT
expires: Sat, 04 Nov 2023 11:00:47 GMT
cache-control: public, max-age=604800
age: 520631
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.maskmeta.cyou/js/webflow.js

194.124.216.72

200 OK

568 kB

URL GET HTTP/2
www.maskmeta.cyou/js/webflow.js
IP
194.124.216.72:443
ASN
#3214 xTom GmbH

Requested by
https://www.maskmeta.cyou/
Certificate
IssuerLet's Encrypt
Subjectmaskmeta.cyou
FingerprintE7:E2:E7:63:F9:FE:1F:17:39:8E:BF:47:A8:8A:01:56:89:2F:77:3F
ValidityThu, 02 Nov 2023 15:43:25 GMT - Wed, 31 Jan 2024 15:43:24 GMT

File type

Size
568 kB (568434 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /js/webflow.js HTTP/1.1
Host: www.maskmeta.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 03 Nov 2023 11:37:54 GMT
content-type: application/javascript
last-modified: Fri, 10 Sep 2021 16:18:28 GMT
vary: Accept-Encoding
etag: W/"613b8554-8ac72"
expires: Fri, 03 Nov 2023 23:37:54 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm&co=aHR0cHM6Ly93d3cubWFza21ldGEuY3lvdTo0NDM.&hl=en&v=3sU2vDRVDmUU2E0Ro4VadvPr&size=invisible&badge=inline&cb=9pap6faml05z

142.250.74.164

200 OK

60 kB

URL GET HTTP/3
www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm&co=aHR0cHM6Ly93d3cubWFza21ldGEuY3lvdTo0NDM.&hl=en&v=3sU2vDRVDmUU2E0Ro4VadvPr&size=invisible&badge=inline&cb=9pap6faml05z
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
https://www.maskmeta.cyou/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintFD:EE:45:21:A2:3C:95:82:9B:BA:3F:7A:59:3C:F6:C2:7B:C7:84:8F
ValidityMon, 16 Oct 2023 08:02:35 GMT - Mon, 08 Jan 2024 08:02:34 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (51770)
Size
60 kB (60280 bytes)
Hash
a1d21e62b20f71f9d46053c26e3fe906
fef9ae4a1bbc61bd480922b5f3db0b10850c430e
5f0b22075194af4138a56f6c8b0652af0ca1c1ebcefc78d04ce11548a590edf5

HTTP Headers

GET /recaptcha/enterprise/anchor?ar=1&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm&co=aHR0cHM6Ly93d3cubWFza21ldGEuY3lvdTo0NDM.&hl=en&v=3sU2vDRVDmUU2E0Ro4VadvPr&size=invisible&badge=inline&cb=9pap6faml05z HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: text/html; charset=utf-8
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 03 Nov 2023 11:37:56 GMT
content-security-policy: script-src 'nonce-xf2KXe95_OVYK80sejtojQ' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.googleapis.com/css?family=Changa+One:400,400italic

142.250.74.106

200 OK

800 B

URL GET HTTP/2
fonts.googleapis.com/css?family=Changa+One:400,400italic
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://www.maskmeta.cyou/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintFA:D7:68:E4:12:7D:FE:22:87:DE:95:F1:1E:49:5A:49:FA:12:1E:B9
ValidityMon, 16 Oct 2023 08:10:01 GMT - Mon, 08 Jan 2024 08:10:00 GMT

File type
ASCII text, with very long lines (816), with no line terminators
Size
800 B (800 bytes)
Hash
d649df21660305e95bf70d4282367324
4a3aeaf4830f03b873105998d8ceaa017bc0b65c
338d6967247111e7857d08db563973e8782b09601225fece0af3420e5cd2fa56

HTTP Headers

GET /css?family=Changa+One:400,400italic HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 03 Nov 2023 11:37:54 GMT
date: Fri, 03 Nov 2023 11:37:54 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.youtube.com/embed/YVgfHZMFFFQ?enablejsapi=1&origin=https%3A%2F%2Fmetamask.io

172.217.21.174

200 OK

93 kB

URL GET HTTP/2
www.youtube.com/embed/YVgfHZMFFFQ?enablejsapi=1&origin=https%3A%2F%2Fmetamask.io
IP
172.217.21.174:443
ASN
#15169 GOOGLE

Requested by
https://www.maskmeta.cyou/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintFD:EE:45:21:A2:3C:95:82:9B:BA:3F:7A:59:3C:F6:C2:7B:C7:84:8F
ValidityMon, 16 Oct 2023 08:02:35 GMT - Mon, 08 Jan 2024 08:02:34 GMT

File type

Size
93 kB (93435 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /embed/YVgfHZMFFFQ?enablejsapi=1&origin=https%3A%2F%2Fmetamask.io HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 03 Nov 2023 11:37:55 GMT
strict-transport-security: max-age=31536000
cross-origin-resource-policy: cross-origin
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
origin-trial: AvC9UlR6RDk2crliDsFl66RWLnTbHrDbp+DiY6AYz/PNQ4G4tdUTjrHYr2sghbkhGQAVxb7jaPTHpEVBz0uzQwkAAAB4eyJvcmlnaW4iOiJodHRwczovL3lvdXR1YmUuY29tOjQ0MyIsImZlYXR1cmUiOiJXZWJWaWV3WFJlcXVlc3RlZFdpdGhEZXByZWNhdGlvbiIsImV4cGlyeSI6MTcxOTUzMjc5OSwiaXNTdWJkb21haW4iOnRydWV9
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=Vdv3kWZct60; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=YBB6Y57QFDQ; Domain=.youtube.com; Expires=Wed, 01-May-2024 11:37:55 GMT; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_PRIVACY_METADATA=CgJOTxICEgA%3D; Domain=.youtube.com; Expires=Wed, 01-May-2024 11:37:55 GMT; Path=/; Secure; HttpOnly; SameSite=lax
CONSENT=PENDING+514; expires=Sun, 02-Nov-2025 11:37:54 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.maskmeta.cyou/

194.124.216.72

200 OK

19 kB

URL User Request GET HTTP/2
www.maskmeta.cyou/
IP
194.124.216.72:443
ASN
#3214 xTom GmbH

Certificate
IssuerLet's Encrypt
Subjectmaskmeta.cyou
FingerprintE7:E2:E7:63:F9:FE:1F:17:39:8E:BF:47:A8:8A:01:56:89:2F:77:3F
ValidityThu, 02 Nov 2023 15:43:25 GMT - Wed, 31 Jan 2024 15:43:24 GMT

File type

Size
19 kB (18569 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET / HTTP/1.1
Host: www.maskmeta.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 03 Nov 2023 11:37:53 GMT
content-type: text/html
last-modified: Tue, 19 Sep 2023 04:26:42 GMT
vary: Accept-Encoding
etag: W/"65092302-4889"
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

www.maskmeta.cyou/css/metamask-staging-2.webflow.css

194.124.216.72

200 OK

136 kB

URL GET HTTP/2
www.maskmeta.cyou/css/metamask-staging-2.webflow.css
IP
194.124.216.72:443
ASN
#3214 xTom GmbH

Requested by
https://www.maskmeta.cyou/
Certificate
IssuerLet's Encrypt
Subjectmaskmeta.cyou
FingerprintE7:E2:E7:63:F9:FE:1F:17:39:8E:BF:47:A8:8A:01:56:89:2F:77:3F
ValidityThu, 02 Nov 2023 15:43:25 GMT - Wed, 31 Jan 2024 15:43:24 GMT

File type
ASCII text
Size
136 kB (136243 bytes)
Hash
dadc10770c97fe8d4774255bf653d705
fa9d847244c99978cd9a0c793a2202c8892dce74
11139400a1789a74b931014f8543c82c0fd793d9de7473f420c82dc8eb9d703d

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /css/metamask-staging-2.webflow.css HTTP/1.1
Host: www.maskmeta.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 03 Nov 2023 11:37:54 GMT
content-type: text/css
last-modified: Fri, 10 Sep 2021 16:18:28 GMT
vary: Accept-Encoding
etag: W/"613b8554-21433"
expires: Fri, 03 Nov 2023 23:37:54 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

www.maskmeta.cyou/metamask.io/images/webclip.html

194.124.216.72

404 Not Found

146 B

URL GET HTTP/2
www.maskmeta.cyou/metamask.io/images/webclip.html
IP
194.124.216.72:443
ASN
#3214 xTom GmbH

Requested by
https://www.maskmeta.cyou/
Certificate
IssuerLet's Encrypt
Subjectmaskmeta.cyou
FingerprintE7:E2:E7:63:F9:FE:1F:17:39:8E:BF:47:A8:8A:01:56:89:2F:77:3F
ValidityThu, 02 Nov 2023 15:43:25 GMT - Wed, 31 Jan 2024 15:43:24 GMT

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with no line terminators
Size
146 B (146 bytes)
Hash
40b3fc14254227ec5012d996bf90c4e1
b0dd06eb5a779151151101337889ff09953f8ac0
740816c1b61e4a8443c26d30d3eecfea04815fca8cd605a142f9d8a35f86ceca

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /metamask.io/images/webclip.html HTTP/1.1
Host: www.maskmeta.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
server: nginx
date: Fri, 03 Nov 2023 11:37:55 GMT
content-type: text/html
content-length: 146
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (164)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by