Report - managerads.d2bgzedfwytyy5.amplifyapp.com/

Report Overview

Submitted URL
managerads.d2bgzedfwytyy5.amplifyapp.com/
IP
54.230.111.36
ASN
#16509 AMAZON-02
Submitted
2024-05-10 15:57:59
Access
public
Website Title
Meta For Business
Final URL
managerads.d2bgzedfwytyy5.amplifyapp.com/#/
Tags
meta facebook phishing social
urlquery detections
Phishing - Facebook

Detections

urlquery
24
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-05-10	2.2 kB	387 kB	216.58.207.227
ipapi.co	195030	2016-04-19	2017-01-31	2024-05-09	466 B	71 kB	104.26.8.44
managerads.d2bgzedfwytyy5.amplifyapp.com	unknown	unknown	No data	No data	8.7 kB	3.1 MB	54.230.111.22
www.gstatic.com	unknown	2008-02-11	2016-07-26	2024-05-10	1.0 kB	2.2 MB	142.250.74.99

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (5)

	URL	Size	First Seen	Last Seen
	managerads.d2bgzedfwytyy5.amplifyapp.com/main.dart.js	2.4 MB	2024-05-09	2024-05-11
Pretty URL managerads.d2bgzedfwytyy5.amplifyapp.com/main.dart.js IP 54.230.111.22 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-09 21:42:48 Last Seen2024-05-11 21:28:05 Times Seen3 Hash c172314993ba4b35b9ccc8a10926082d 75020e56ae161a9456f68d284e32107fa70907b2 dd6346de91f1eafddb6ad6796bd6c533c3ed50fdcfab73d587f79f8dddd0f286 Loading...

	www.gstatic.com/flutter-canvaskit/45f6e009110df4f34ec2cf99f63cf73b71b7a420/canvaskit.js	96 kB	2023-05-16	2024-05-20
Pretty URL www.gstatic.com/flutter-canvaskit/45f6e009110df4f34ec2cf99f63cf73b71b7a420/canvaskit.js IP 142.250.74.99 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-16 05:41:40 Last Seen2024-05-20 20:29:29 Times Seen2157 Hash 76f7d822f42397160c5dfc69cbc9b2de a7739ae575812316ab0924225becfa3941f5b3da 86c5d12e43e93359933fbe2f8575d2bfd1ee595aa581b6111943de2d77975e31 Loading...

	managerads.d2bgzedfwytyy5.amplifyapp.com/	0 B	2023-03-07	2024-05-20
Pretty URL managerads.d2bgzedfwytyy5.amplifyapp.com/ IP 54.230.111.22 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-20 21:09:02 Times Seen37892863 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	managerads.d2bgzedfwytyy5.amplifyapp.com/	0 B	2023-03-07	2024-05-20
Pretty URL managerads.d2bgzedfwytyy5.amplifyapp.com/ IP 54.230.111.22 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-20 21:09:02 Times Seen37892863 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	managerads.d2bgzedfwytyy5.amplifyapp.com/flutter.js	15 kB	2023-05-16	2024-05-20
Pretty URL managerads.d2bgzedfwytyy5.amplifyapp.com/flutter.js IP 54.230.111.22 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-16 05:41:40 Last Seen2024-05-20 20:29:29 Times Seen2420 Hash 6b515e434cea20006b3ef1726d2c8894 65e782370bc35a4f5e37922f12debfae61eff946 ebef4683c7634467e3e792e993cd8e28d44940d4299dd8f3f8ce8ea3c1f20b67 Loading...

HTTP Transactions (25)

URL IP Response Size

managerads.d2bgzedfwytyy5.amplifyapp.com/icons/Icon-192.png

54.230.111.22

200 OK

5.3 kB

URL GET HTTP/3
managerads.d2bgzedfwytyy5.amplifyapp.com/icons/Icon-192.png
IP
54.230.111.22:443
ASN
#16509 AMAZON-02

Requested by
https://managerads.d2bgzedfwytyy5.amplifyapp.com/
Certificate
IssuerAmazon
Subject*.d2bgzedfwytyy5.amplifyapp.com
FingerprintFC:F6:CD:5F:74:72:3A:FC:E4:A7:EC:B5:8D:84:E6:60:08:F3:89:9C
ValidityFri, 10 May 2024 00:00:00 GMT - Sun, 08 Jun 2025 23:59:59 GMT

File type
PNG image data, 192 x 192, 8-bit/color RGB, non-interlaced
Size
5.3 kB (5292 bytes)
Hash
ac9a721a12bbc803b44f645561ecb1e1
293b2825c89d2abd4b17e2f5ac30c30f5ba3724f
3dce99077602f70421c1c6b2a240bc9b83d64d86681d45f2154143310c980be3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Facebook

HTTP Headers

GET /icons/Icon-192.png HTTP/1.1
Host: managerads.d2bgzedfwytyy5.amplifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://managerads.d2bgzedfwytyy5.amplifyapp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: image/png
content-length: 5292
alt-svc: h3=":443"; ma=86400
date: Fri, 10 May 2024 15:57:34 GMT
server: AmazonS3
accept-ranges: bytes
etag: "ac9a721a12bbc803b44f645561ecb1e1"
last-modified: Fri, 10 May 2024 15:07:48 GMT
cache-control: public, max-age=0, s-maxage=2
x-cache: Miss from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 95waihBoQ0BIxH-88yHljsp8P17ustVhWMJTm6FidZg_lXiy7RHE_Q==

managerads.d2bgzedfwytyy5.amplifyapp.com/favicon.png

54.230.111.22

200 OK

14 kB

URL GET HTTP/3
managerads.d2bgzedfwytyy5.amplifyapp.com/favicon.png
IP
54.230.111.22:443
ASN
#16509 AMAZON-02

Requested by
https://managerads.d2bgzedfwytyy5.amplifyapp.com/
Certificate
IssuerAmazon
Subject*.d2bgzedfwytyy5.amplifyapp.com
FingerprintFC:F6:CD:5F:74:72:3A:FC:E4:A7:EC:B5:8D:84:E6:60:08:F3:89:9C
ValidityFri, 10 May 2024 00:00:00 GMT - Sun, 08 Jun 2025 23:59:59 GMT

File type
PNG image data, 480 x 480, 8-bit/color RGBA, non-interlaced
Size
14 kB (14026 bytes)
Hash
7a2dbfdec08b3a38d668b605d78df964
87dba0baa4bffbb072a921c7c6a5199c26f83aba
c770ce547af85df31198c63f7eba9cba64ff3a48f8eb127d4ea12181453036c8

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Facebook

HTTP Headers

GET /favicon.png HTTP/1.1
Host: managerads.d2bgzedfwytyy5.amplifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://managerads.d2bgzedfwytyy5.amplifyapp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: image/png
content-length: 14026
alt-svc: h3=":443"; ma=86400
date: Fri, 10 May 2024 15:57:34 GMT
server: AmazonS3
accept-ranges: bytes
etag: "7a2dbfdec08b3a38d668b605d78df964"
last-modified: Fri, 10 May 2024 15:07:48 GMT
cache-control: public, max-age=0, s-maxage=2
x-cache: Miss from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: cr-8pk-FBQhaYpV83GQAZNofB5rB4MiO59zK4MdcTtQweK8QMbGGOg==

www.gstatic.com/flutter-canvaskit/45f6e009110df4f34ec2cf99f63cf73b71b7a420/canvaskit.js

142.250.74.99

200 OK

26 kB

URL GET HTTP/2
www.gstatic.com/flutter-canvaskit/45f6e009110df4f34ec2cf99f63cf73b71b7a420/canvaskit.js
IP
142.250.74.99:443
ASN
#15169 GOOGLE

Requested by
https://managerads.d2bgzedfwytyy5.amplifyapp.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
JavaScript source, ASCII text, with very long lines (545)
Size
26 kB (26292 bytes)
Hash
76f7d822f42397160c5dfc69cbc9b2de
a7739ae575812316ab0924225becfa3941f5b3da
86c5d12e43e93359933fbe2f8575d2bfd1ee595aa581b6111943de2d77975e31

HTTP Headers

GET /flutter-canvaskit/45f6e009110df4f34ec2cf99f63cf73b71b7a420/canvaskit.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://managerads.d2bgzedfwytyy5.amplifyapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/flutter-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="flutter-team"
report-to: {"group":"flutter-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/flutter-team"}]}
content-length: 26292
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 10 May 2024 03:39:12 GMT
expires: Sat, 10 May 2025 03:39:12 GMT
cache-control: public, max-age=31536000
age: 44304
last-modified: Tue, 13 Jun 2023 20:54:33 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.gstatic.com/flutter-canvaskit/45f6e009110df4f34ec2cf99f63cf73b71b7a420/canvaskit.wasm

142.250.74.99

200 OK

2.1 MB

URL GET HTTP/3
www.gstatic.com/flutter-canvaskit/45f6e009110df4f34ec2cf99f63cf73b71b7a420/canvaskit.wasm
IP
142.250.74.99:443
ASN
#15169 GOOGLE

Requested by
https://managerads.d2bgzedfwytyy5.amplifyapp.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
WebAssembly (wasm) binary module version 0x1 (MVP)
Size
2.1 MB (2142317 bytes)
Hash
f48eaf57cada79163ec6dec7929486ea
9c2e3dfd5ea427fc42c8358fcec9be13b47534d0
65d6b549c3d21e2d9dc4f0504fc9462936a1e511fd538a8ce4a5d45a8e0c95cf

HTTP Headers

GET /flutter-canvaskit/45f6e009110df4f34ec2cf99f63cf73b71b7a420/canvaskit.wasm HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://managerads.d2bgzedfwytyy5.amplifyapp.com/
Origin: https://managerads.d2bgzedfwytyy5.amplifyapp.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-encoding: br
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/flutter-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="flutter-team"
report-to: {"group":"flutter-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/flutter-team"}]}
content-length: 2142317
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 09 May 2024 02:50:33 GMT
expires: Fri, 09 May 2025 02:50:33 GMT
cache-control: public, max-age=31536000
age: 133623
last-modified: Tue, 13 Jun 2023 20:54:55 GMT
content-type: application/wasm
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

managerads.d2bgzedfwytyy5.amplifyapp.com/assets/FontManifest.json

54.230.111.22

200 OK

670 B

URL GET HTTP/3
managerads.d2bgzedfwytyy5.amplifyapp.com/assets/FontManifest.json
IP
54.230.111.22:443
ASN
#16509 AMAZON-02

Requested by
https://managerads.d2bgzedfwytyy5.amplifyapp.com/
Certificate
IssuerAmazon
Subject*.d2bgzedfwytyy5.amplifyapp.com
FingerprintFC:F6:CD:5F:74:72:3A:FC:E4:A7:EC:B5:8D:84:E6:60:08:F3:89:9C
ValidityFri, 10 May 2024 00:00:00 GMT - Sun, 08 Jun 2025 23:59:59 GMT

File type
JSON text data
Size
670 B (670 bytes)
Hash
5a32d4310a6f5d9a6b651e75ba0d7372
1eea93fdd82fad31ce32e9b9428e415dfc737da3
2cd9411b540e5c6e15ac65523a3601bee668aeca9104e1de136fc34b3a912771

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Facebook

HTTP Headers

GET /assets/FontManifest.json HTTP/1.1
Host: managerads.d2bgzedfwytyy5.amplifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://managerads.d2bgzedfwytyy5.amplifyapp.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/json
content-length: 670
alt-svc: h3=":443"; ma=86400
date: Fri, 10 May 2024 15:57:36 GMT
server: AmazonS3
accept-ranges: bytes
etag: "5a32d4310a6f5d9a6b651e75ba0d7372"
last-modified: Fri, 10 May 2024 15:07:48 GMT
cache-control: public, max-age=0, s-maxage=2
x-cache: Miss from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: J2FNaVXC3GjLfgLcdY_uPW5fi6k76Ra5Ertn00KX6d8md5R1OFvmfA==

fonts.gstatic.com/s/roboto/v20/KFOmCnqEu92Fr1Me5WZLCzYlKw.ttf

216.58.207.227

200 OK

91 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v20/KFOmCnqEu92Fr1Me5WZLCzYlKw.ttf
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://managerads.d2bgzedfwytyy5.amplifyapp.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
TrueType Font data, 18 tables, 1st "GDEF", 13 names, Microsoft, language 0x409, Copyright 2011 Google Inc. All Rights Reserved.RobotoRegularVersion 2.137; 2017Roboto-RegularRob
Size
91 kB (91230 bytes)
Hash
11eabca2251325cfc5589c9c6fb57b46
096c9245b6a192d1403a82848e104a65f578a8ec
017c0be9aaa6d0359737e1fa762ad304c0e0107927faff5a6c1f415c7f5244ed

HTTP Headers

GET /s/roboto/v20/KFOmCnqEu92Fr1Me5WZLCzYlKw.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://managerads.d2bgzedfwytyy5.amplifyapp.com/
Origin: https://managerads.d2bgzedfwytyy5.amplifyapp.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 91230
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 10 May 2024 03:28:39 GMT
expires: Sat, 10 May 2025 03:28:39 GMT
cache-control: public, max-age=31536000
age: 44938
last-modified: Wed, 24 Jul 2019 01:18:48 GMT
content-type: font/ttf
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

managerads.d2bgzedfwytyy5.amplifyapp.com/assets/AssetManifest.bin

54.230.111.22

200 OK

1.3 kB

URL GET HTTP/3
managerads.d2bgzedfwytyy5.amplifyapp.com/assets/AssetManifest.bin
IP
54.230.111.22:443
ASN
#16509 AMAZON-02

Requested by
https://managerads.d2bgzedfwytyy5.amplifyapp.com/
Certificate
IssuerAmazon
Subject*.d2bgzedfwytyy5.amplifyapp.com
FingerprintFC:F6:CD:5F:74:72:3A:FC:E4:A7:EC:B5:8D:84:E6:60:08:F3:89:9C
ValidityFri, 10 May 2024 00:00:00 GMT - Sun, 08 Jun 2025 23:59:59 GMT

File type
data
Size
1.3 kB (1287 bytes)
Hash
8b1cf21a141e282cc9fcc19ad6b2028b
c7efbc9d05f7e18d34d946a736e5487e1e1c550e
65597af2671c420356b08d5cdbbefb567b1bda6b6613b32908c970b9342631fb

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Facebook

HTTP Headers

GET /assets/AssetManifest.bin HTTP/1.1
Host: managerads.d2bgzedfwytyy5.amplifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://managerads.d2bgzedfwytyy5.amplifyapp.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/octet-stream
content-length: 1287
alt-svc: h3=":443"; ma=86400
date: Fri, 10 May 2024 15:57:39 GMT
server: AmazonS3
accept-ranges: bytes
etag: "8b1cf21a141e282cc9fcc19ad6b2028b"
last-modified: Fri, 10 May 2024 15:07:48 GMT
cache-control: public, max-age=0, s-maxage=2
x-cache: Miss from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: wLVLCGHp1MX1IhzdjGccaBnnhAB6vhjTU4yQB_HGGoWFC7VHHmDJag==

fonts.gstatic.com/s/a/9ecfd020e9cc0b676025df8390c0dc8cc2062523540887dd04bec0ef4d5a449c.ttf

216.58.207.227

200 OK

69 kB

URL GET HTTP/2
fonts.gstatic.com/s/a/9ecfd020e9cc0b676025df8390c0dc8cc2062523540887dd04bec0ef4d5a449c.ttf
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://managerads.d2bgzedfwytyy5.amplifyapp.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
TrueType Font data, 13 tables, 1st "GDEF", 8 names, Microsoft, language 0x409
Size
69 kB (68574 bytes)
Hash
c67db2ad4a5ca29b517da8eabafd2459
c54a0034e60d6445caee8533684b3cea13420c81
9ecfd020e9cc0b676025df8390c0dc8cc2062523540887dd04bec0ef4d5a449c

HTTP Headers

GET /s/a/9ecfd020e9cc0b676025df8390c0dc8cc2062523540887dd04bec0ef4d5a449c.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://managerads.d2bgzedfwytyy5.amplifyapp.com
DNT: 1
Connection: keep-alive
Referer: https://managerads.d2bgzedfwytyy5.amplifyapp.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 68574
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 08 May 2024 16:32:01 GMT
expires: Thu, 08 May 2025 16:32:01 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 16:10:30 GMT
content-type: font/ttf
vary: Accept-Encoding
age: 170738
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/a/a24a61e9a408f85504dcdcd11edc4995adceb4ab585c0011f39cfbe193248b71.ttf

216.58.207.227

200 OK

69 kB

URL GET HTTP/2
fonts.gstatic.com/s/a/a24a61e9a408f85504dcdcd11edc4995adceb4ab585c0011f39cfbe193248b71.ttf
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://managerads.d2bgzedfwytyy5.amplifyapp.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
TrueType Font data, 13 tables, 1st "GDEF", 8 names, Microsoft, language 0x409
Size
69 kB (69233 bytes)
Hash
8360fdd61fd8609ef10e61c40c0eca11
c80e173f72d4f31827d75c4ec934ede660d35b16
a24a61e9a408f85504dcdcd11edc4995adceb4ab585c0011f39cfbe193248b71

HTTP Headers

GET /s/a/a24a61e9a408f85504dcdcd11edc4995adceb4ab585c0011f39cfbe193248b71.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://managerads.d2bgzedfwytyy5.amplifyapp.com
DNT: 1
Connection: keep-alive
Referer: https://managerads.d2bgzedfwytyy5.amplifyapp.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 69233
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 09 May 2024 02:21:37 GMT
expires: Fri, 09 May 2025 02:21:37 GMT
cache-control: public, max-age=31536000
age: 135362
last-modified: Wed, 27 Apr 2022 16:12:33 GMT
content-type: font/ttf
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ipapi.co/json

104.26.8.44

200 OK

70 kB

URL GET HTTP/2
ipapi.co/json
IP
104.26.8.44:443
ASN
#13335 CLOUDFLARENET

Requested by
https://managerads.d2bgzedfwytyy5.amplifyapp.com/
Certificate
IssuerLet's Encrypt
Subjectipapi.co
Fingerprint00:84:39:1A:E6:F9:D4:22:11:8B:2A:D1:2F:B1:91:03:18:BB:9E:3D
ValidityTue, 07 May 2024 17:57:49 GMT - Mon, 05 Aug 2024 17:57:48 GMT

File type
JSON text data
Size
70 kB (69863 bytes)
Hash
3ea894357e15788b101c2525a13d7ced
e75b69db5ebe486b46035f39fc9c8c4374aec970
1f97c1464ed28eaafaf0cdfe7bff7aa3ede2a10054dbd8c2d3c98fcd3281c035

HTTP Headers

GET /json HTTP/1.1
Host: ipapi.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://managerads.d2bgzedfwytyy5.amplifyapp.com
DNT: 1
Connection: keep-alive
Referer: https://managerads.d2bgzedfwytyy5.amplifyapp.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 10 May 2024 15:57:39 GMT
content-type: application/json
allow: HEAD, OPTIONS, OPTIONS, POST, GET
x-frame-options: DENY
vary: Host, origin
access-control-allow-origin: https://managerads.d2bgzedfwytyy5.amplifyapp.com
x-content-type-options: nosniff
referrer-policy: same-origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ji4PgybYFeHf5ux%2BKAbj417WRAGlnNSog1VVl3Ttbly%2FhK6M3n7WTYFGN3GQpBefVSt8qpmFdI51K1NQFqWRPuNj%2FSdo9E%2BQKFZ0uJTFxR51yozjKLHNZ9O9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881b20503e8b5694-OSL
content-encoding: br
X-Firefox-Spdy: h2

managerads.d2bgzedfwytyy5.amplifyapp.com/assets/assets/images/metav2.png

54.230.111.22

200 OK

651 B

URL GET HTTP/3
managerads.d2bgzedfwytyy5.amplifyapp.com/assets/assets/images/metav2.png
IP
54.230.111.22:443
ASN
#16509 AMAZON-02

Requested by
https://managerads.d2bgzedfwytyy5.amplifyapp.com/
Certificate
IssuerAmazon
Subject*.d2bgzedfwytyy5.amplifyapp.com
FingerprintFC:F6:CD:5F:74:72:3A:FC:E4:A7:EC:B5:8D:84:E6:60:08:F3:89:9C
ValidityFri, 10 May 2024 00:00:00 GMT - Sun, 08 Jun 2025 23:59:59 GMT

File type
PNG image data, 54 x 12, 8-bit gray+alpha, non-interlaced
Size
651 B (651 bytes)
Hash
82f724aa56db0da424f206b9991fd62e
c0334262e1a6720efb47fa3334e8dd6437377836
d96115050f54fd0c168f20fb496755ce4a6857a57446dbdad9310bfc1d79fcb8

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Facebook

HTTP Headers

GET /assets/assets/images/metav2.png HTTP/1.1
Host: managerads.d2bgzedfwytyy5.amplifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://managerads.d2bgzedfwytyy5.amplifyapp.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: image/png
content-length: 651
alt-svc: h3=":443"; ma=86400
date: Fri, 10 May 2024 15:57:39 GMT
server: AmazonS3
accept-ranges: bytes
etag: "82f724aa56db0da424f206b9991fd62e"
last-modified: Fri, 10 May 2024 15:07:48 GMT
cache-control: public, max-age=0, s-maxage=2
x-cache: Miss from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: EL1X9bh8hhghWYZ-Oqn5lP1vVw0gbNv9EOPTRYcroo4KVdwVV8oPnw==

managerads.d2bgzedfwytyy5.amplifyapp.com/assets/assets/images/meta.png

54.230.111.22

200 OK

651 B

URL GET HTTP/3
managerads.d2bgzedfwytyy5.amplifyapp.com/assets/assets/images/meta.png
IP
54.230.111.22:443
ASN
#16509 AMAZON-02

Requested by
https://managerads.d2bgzedfwytyy5.amplifyapp.com/
Certificate
IssuerAmazon
Subject*.d2bgzedfwytyy5.amplifyapp.com
FingerprintFC:F6:CD:5F:74:72:3A:FC:E4:A7:EC:B5:8D:84:E6:60:08:F3:89:9C
ValidityFri, 10 May 2024 00:00:00 GMT - Sun, 08 Jun 2025 23:59:59 GMT

File type
PNG image data, 54 x 12, 8-bit gray+alpha, non-interlaced
Size
651 B (651 bytes)
Hash
82f724aa56db0da424f206b9991fd62e
c0334262e1a6720efb47fa3334e8dd6437377836
d96115050f54fd0c168f20fb496755ce4a6857a57446dbdad9310bfc1d79fcb8

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Facebook

HTTP Headers

GET /assets/assets/images/meta.png HTTP/1.1
Host: managerads.d2bgzedfwytyy5.amplifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://managerads.d2bgzedfwytyy5.amplifyapp.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: image/png
content-length: 651
alt-svc: h3=":443"; ma=86400
date: Fri, 10 May 2024 15:57:39 GMT
server: AmazonS3
accept-ranges: bytes
etag: "82f724aa56db0da424f206b9991fd62e"
last-modified: Fri, 10 May 2024 15:07:48 GMT
cache-control: public, max-age=0, s-maxage=2
x-cache: Miss from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: LFzWaPO5W_gLFoLXy8Ialfr8FLCFmY2KIcnLXmhI8f3oXjI1eSvyfA==

managerads.d2bgzedfwytyy5.amplifyapp.com/assets/assets/images/fbv2.jpg

54.230.111.22

200 OK

3.1 kB

URL GET HTTP/3
managerads.d2bgzedfwytyy5.amplifyapp.com/assets/assets/images/fbv2.jpg
IP
54.230.111.22:443
ASN
#16509 AMAZON-02

Requested by
https://managerads.d2bgzedfwytyy5.amplifyapp.com/
Certificate
IssuerAmazon
Subject*.d2bgzedfwytyy5.amplifyapp.com
FingerprintFC:F6:CD:5F:74:72:3A:FC:E4:A7:EC:B5:8D:84:E6:60:08:F3:89:9C
ValidityFri, 10 May 2024 00:00:00 GMT - Sun, 08 Jun 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPCM), density 236x236, segment length 16, progressive, precision 8, 236x236, components 3
Size
3.1 kB (3053 bytes)
Hash
e165af495d51ef5b46cad3d602a2a5f8
e3d73bf45f360750678f666b4fa51553aad7090d
171f1b3ac7b11ef605b96f91537ed2cc32ab21d7233733114a923d21d552b021

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Facebook

HTTP Headers

GET /assets/assets/images/fbv2.jpg HTTP/1.1
Host: managerads.d2bgzedfwytyy5.amplifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://managerads.d2bgzedfwytyy5.amplifyapp.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: image/jpeg
content-length: 3053
alt-svc: h3=":443"; ma=86400
date: Fri, 10 May 2024 15:57:40 GMT
server: AmazonS3
accept-ranges: bytes
etag: "e165af495d51ef5b46cad3d602a2a5f8"
last-modified: Fri, 10 May 2024 15:07:48 GMT
cache-control: public, max-age=0, s-maxage=2
x-cache: Miss from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: wxss4691i-Xp2VILIyrQDDtWi-Z3TLH3TEIf3rahjnL6Ej9Mg8zoIw==

managerads.d2bgzedfwytyy5.amplifyapp.com/assets/assets/images/avatar.png

54.230.111.22

200 OK

58 kB

URL GET HTTP/3
managerads.d2bgzedfwytyy5.amplifyapp.com/assets/assets/images/avatar.png
IP
54.230.111.22:443
ASN
#16509 AMAZON-02

Requested by
https://managerads.d2bgzedfwytyy5.amplifyapp.com/
Certificate
IssuerAmazon
Subject*.d2bgzedfwytyy5.amplifyapp.com
FingerprintFC:F6:CD:5F:74:72:3A:FC:E4:A7:EC:B5:8D:84:E6:60:08:F3:89:9C
ValidityFri, 10 May 2024 00:00:00 GMT - Sun, 08 Jun 2025 23:59:59 GMT

File type
PNG image data, 662 x 664, 8-bit/color RGBA, non-interlaced
Size
58 kB (58407 bytes)
Hash
02fb04256d936e0d83a6340a1d1f3af4
b8bfe3b59f0dc0d7841d17f4352ac2ce0feb2238
0734468737b7eaf71a997b518a6b70a4ec17d136f41bf3bb562429bbea1de8cb

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Facebook

HTTP Headers

GET /assets/assets/images/avatar.png HTTP/1.1
Host: managerads.d2bgzedfwytyy5.amplifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://managerads.d2bgzedfwytyy5.amplifyapp.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: image/png
content-length: 58407
alt-svc: h3=":443"; ma=86400
date: Fri, 10 May 2024 15:57:40 GMT
server: AmazonS3
accept-ranges: bytes
etag: "02fb04256d936e0d83a6340a1d1f3af4"
last-modified: Fri, 10 May 2024 15:07:48 GMT
cache-control: public, max-age=0, s-maxage=2
x-cache: Miss from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: RfvhyH86kwv4v95hQ37bo3d2eLeJ0euryyo4YsrIIrHuvZ1-px7pTg==

managerads.d2bgzedfwytyy5.amplifyapp.com/assets/assets/images/bg.jpg

54.230.111.22

200 OK

81 kB

URL GET HTTP/3
managerads.d2bgzedfwytyy5.amplifyapp.com/assets/assets/images/bg.jpg
IP
54.230.111.22:443
ASN
#16509 AMAZON-02

Requested by
https://managerads.d2bgzedfwytyy5.amplifyapp.com/
Certificate
IssuerAmazon
Subject*.d2bgzedfwytyy5.amplifyapp.com
FingerprintFC:F6:CD:5F:74:72:3A:FC:E4:A7:EC:B5:8D:84:E6:60:08:F3:89:9C
ValidityFri, 10 May 2024 00:00:00 GMT - Sun, 08 Jun 2025 23:59:59 GMT

File type
JPEG image data, baseline, precision 8, 1920x175, components 3
Size
81 kB (80630 bytes)
Hash
49a366b72644f04ea8efccf9550fb0a5
54492aa337fc8ee34297a04fd789d202fba78d58
289d99b21fae145c868238c0c499dcf8e84bea445b63e47e3406acfe98e20a34

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Facebook

HTTP Headers

GET /assets/assets/images/bg.jpg HTTP/1.1
Host: managerads.d2bgzedfwytyy5.amplifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://managerads.d2bgzedfwytyy5.amplifyapp.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: image/jpeg
content-length: 80630
alt-svc: h3=":443"; ma=86400
date: Fri, 10 May 2024 15:57:40 GMT
server: AmazonS3
accept-ranges: bytes
etag: "49a366b72644f04ea8efccf9550fb0a5"
last-modified: Fri, 10 May 2024 15:07:48 GMT
cache-control: public, max-age=0, s-maxage=2
x-cache: Miss from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: MwJENpUQ1Y4dEjnX-DAkHHvx8djL-T9-IytRWD3mwr7P_gSb7SAFcA==

managerads.d2bgzedfwytyy5.amplifyapp.com/assets/fonts/MaterialIcons-Regular.otf

54.230.111.22

200 OK

11 kB

URL GET HTTP/3
managerads.d2bgzedfwytyy5.amplifyapp.com/assets/fonts/MaterialIcons-Regular.otf
IP
54.230.111.22:443
ASN
#16509 AMAZON-02

Requested by
https://managerads.d2bgzedfwytyy5.amplifyapp.com/
Certificate
IssuerAmazon
Subject*.d2bgzedfwytyy5.amplifyapp.com
FingerprintFC:F6:CD:5F:74:72:3A:FC:E4:A7:EC:B5:8D:84:E6:60:08:F3:89:9C
ValidityFri, 10 May 2024 00:00:00 GMT - Sun, 08 Jun 2025 23:59:59 GMT

File type
gzip compressed data, from Unix
Size
11 kB (10668 bytes)
Hash
5e7669d36c3e22508a02c5aa709d73b5
aac25644208cd65c51699b4a429ad3b037760159
2e9f72e36e2d0abc9e4dc824992508d80fc961d4803e460e3bed1f9869f92c7a

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Facebook

HTTP Headers

GET /assets/fonts/MaterialIcons-Regular.otf HTTP/1.1
Host: managerads.d2bgzedfwytyy5.amplifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://managerads.d2bgzedfwytyy5.amplifyapp.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: font/otf
alt-svc: h3=":443"; ma=86400
x-amz-cf-pop: OSL50-P1
date: Fri, 10 May 2024 15:57:37 GMT
server: AmazonS3
etag: W/"0f341cb48f96334dfc114136d18a1db6"
last-modified: Fri, 10 May 2024 15:07:48 GMT
cache-control: public, max-age=0, s-maxage=2
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-id: LsRZv_zYEmcf7BHI7rVUp7il0uDb1LCp9EKZ_Y-f4hWMhur7JJRw1g==

managerads.d2bgzedfwytyy5.amplifyapp.com/main.dart.js

54.230.111.22

200 OK

2.4 MB

URL GET HTTP/3
managerads.d2bgzedfwytyy5.amplifyapp.com/main.dart.js
IP
54.230.111.22:443
ASN
#16509 AMAZON-02

Requested by
https://managerads.d2bgzedfwytyy5.amplifyapp.com/
Certificate
IssuerAmazon
Subject*.d2bgzedfwytyy5.amplifyapp.com
FingerprintFC:F6:CD:5F:74:72:3A:FC:E4:A7:EC:B5:8D:84:E6:60:08:F3:89:9C
ValidityFri, 10 May 2024 00:00:00 GMT - Sun, 08 Jun 2025 23:59:59 GMT

File type

Size
2.4 MB (2363277 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Facebook

HTTP Headers

GET /main.dart.js HTTP/1.1
Host: managerads.d2bgzedfwytyy5.amplifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://managerads.d2bgzedfwytyy5.amplifyapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: application/javascript
alt-svc: h3=":443"; ma=86400
x-amz-cf-pop: OSL50-P1
date: Fri, 10 May 2024 15:57:34 GMT
server: AmazonS3
etag: W/"c172314993ba4b35b9ccc8a10926082d"
last-modified: Fri, 10 May 2024 15:07:48 GMT
cache-control: public, max-age=0, s-maxage=2
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-id: 8i8qPWPNYBnBYQLc34f_-YH8RU8NWBfPG_IKw6gPyoIgRA09k0979A==

managerads.d2bgzedfwytyy5.amplifyapp.com/assets/AssetManifest.json

54.230.111.22

200 OK

1.2 kB

URL GET HTTP/3
managerads.d2bgzedfwytyy5.amplifyapp.com/assets/AssetManifest.json
IP
54.230.111.22:443
ASN
#16509 AMAZON-02

Requested by
https://managerads.d2bgzedfwytyy5.amplifyapp.com/
Certificate
IssuerAmazon
Subject*.d2bgzedfwytyy5.amplifyapp.com
FingerprintFC:F6:CD:5F:74:72:3A:FC:E4:A7:EC:B5:8D:84:E6:60:08:F3:89:9C
ValidityFri, 10 May 2024 00:00:00 GMT - Sun, 08 Jun 2025 23:59:59 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (1235), with no line terminators
Size
1.2 kB (1167 bytes)
Hash
0a2516d2ead7350939600c65cd9b6f04
ab2715847814fbf494aea3e3b32b1705628b57b3
6121bf070bf6818b81d81bf457c688ca53e21ae083fca3a927ec3422d7ba678e

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Facebook

HTTP Headers

GET /assets/AssetManifest.json HTTP/1.1
Host: managerads.d2bgzedfwytyy5.amplifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://managerads.d2bgzedfwytyy5.amplifyapp.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: application/json
alt-svc: h3=":443"; ma=86400
x-amz-cf-pop: OSL50-P1
date: Fri, 10 May 2024 15:57:39 GMT
server: AmazonS3
etag: W/"ffcce918f60617fed6fdd5c787356cc5"
last-modified: Fri, 10 May 2024 15:07:48 GMT
cache-control: public, max-age=0, s-maxage=2
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-id: ZglGcYXlLeGsnCCOCTLr3YqgGfOaQliZfIEpbsrgke8gyLmXh77bXw==

fonts.gstatic.com/s/a/705290b12f58c6d70aafcaaf461dbc3d2f7f19d0f4362af1843b107d95d4960a.ttf

216.58.207.227

200 OK

155 kB

URL GET HTTP/2
fonts.gstatic.com/s/a/705290b12f58c6d70aafcaaf461dbc3d2f7f19d0f4362af1843b107d95d4960a.ttf
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://managerads.d2bgzedfwytyy5.amplifyapp.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
TrueType Font data, 13 tables, 1st "GDEF", 8 names, Microsoft, language 0x409
Size
155 kB (154584 bytes)
Hash
9ba5c294b162c2688a1541ea64f36fb3
257c4afc8725d026f06e0208e2ae7bfe079f1452
705290b12f58c6d70aafcaaf461dbc3d2f7f19d0f4362af1843b107d95d4960a

HTTP Headers

GET /s/a/705290b12f58c6d70aafcaaf461dbc3d2f7f19d0f4362af1843b107d95d4960a.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://managerads.d2bgzedfwytyy5.amplifyapp.com
DNT: 1
Connection: keep-alive
Referer: https://managerads.d2bgzedfwytyy5.amplifyapp.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 69504
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 10 May 2024 01:56:47 GMT
expires: Sat, 10 May 2025 01:56:47 GMT
cache-control: public, max-age=31536000
age: 50452
last-modified: Wed, 27 Apr 2022 16:07:02 GMT
content-type: font/ttf
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

managerads.d2bgzedfwytyy5.amplifyapp.com/

54.230.111.22

200 OK

1.9 kB

URL User Request GET HTTP/2
managerads.d2bgzedfwytyy5.amplifyapp.com/
IP
54.230.111.22:443
ASN
#16509 AMAZON-02

Certificate
IssuerAmazon
Subject*.d2bgzedfwytyy5.amplifyapp.com
FingerprintFC:F6:CD:5F:74:72:3A:FC:E4:A7:EC:B5:8D:84:E6:60:08:F3:89:9C
ValidityFri, 10 May 2024 00:00:00 GMT - Sun, 08 Jun 2025 23:59:59 GMT

File type
HTML document, ASCII text, with very long lines (2045), with no line terminators
Size
1.9 kB (1884 bytes)
Hash
4811e277f2f6ecced03ffcfe84fa3ec1
719ad9a955e6d9ddaf596f539c0950e03025329a
368dd13626846230eea38dc5f2b1936082df614197d131bec5a5eae901d2053f

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Facebook

HTTP Headers

GET / HTTP/1.1
Host: managerads.d2bgzedfwytyy5.amplifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/html
date: Fri, 10 May 2024 15:57:32 GMT
server: AmazonS3
etag: W/"9105159675b17008fb69291e2b40d322"
last-modified: Fri, 10 May 2024 15:07:48 GMT
cache-control: public, max-age=0, s-maxage=2
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: 2vhExguImVX6wF0IDpMD_4iWhguRjkmqhx3SDXVdwFzkK07Tbkjs8g==
X-Firefox-Spdy: h2

managerads.d2bgzedfwytyy5.amplifyapp.com/assets/packages/font_awesome_flutter/lib/fonts/fa-brands-400.ttf

54.230.111.22

200 OK

169 kB

URL GET HTTP/3
managerads.d2bgzedfwytyy5.amplifyapp.com/assets/packages/font_awesome_flutter/lib/fonts/fa-brands-400.ttf
IP
54.230.111.22:443
ASN
#16509 AMAZON-02

Requested by
https://managerads.d2bgzedfwytyy5.amplifyapp.com/
Certificate
IssuerAmazon
Subject*.d2bgzedfwytyy5.amplifyapp.com
FingerprintFC:F6:CD:5F:74:72:3A:FC:E4:A7:EC:B5:8D:84:E6:60:08:F3:89:9C
ValidityFri, 10 May 2024 00:00:00 GMT - Sun, 08 Jun 2025 23:59:59 GMT

File type
TrueType Font data, 10 tables, 1st "OS/2", 7 names, Microsoft, language 0x409
Size
169 kB (169196 bytes)
Hash
d7791ef376c159f302b8ad90a748d2ab
8484ebfc7efecdb9abe12f03f94014a32b6781cc
e68cb27bed42fe434be64d0d6296d8dc5b81686a725fe31d4293509f8598636e

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Facebook

HTTP Headers

GET /assets/packages/font_awesome_flutter/lib/fonts/fa-brands-400.ttf HTTP/1.1
Host: managerads.d2bgzedfwytyy5.amplifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://managerads.d2bgzedfwytyy5.amplifyapp.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: font/ttf
alt-svc: h3=":443"; ma=86400
x-amz-cf-pop: OSL50-P1
date: Fri, 10 May 2024 15:57:37 GMT
server: AmazonS3
etag: W/"d7791ef376c159f302b8ad90a748d2ab"
last-modified: Fri, 10 May 2024 15:07:48 GMT
cache-control: public, max-age=0, s-maxage=2
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-id: cpcgieWDT8TdVxHdWTCKL-bQK_Tc_WDdX2029zSs4x27vbzMVFfnHQ==

managerads.d2bgzedfwytyy5.amplifyapp.com/assets/packages/cupertino_icons/assets/CupertinoIcons.ttf

54.230.111.22

200 OK

1.2 kB

URL GET HTTP/3
managerads.d2bgzedfwytyy5.amplifyapp.com/assets/packages/cupertino_icons/assets/CupertinoIcons.ttf
IP
54.230.111.22:443
ASN
#16509 AMAZON-02

Requested by
https://managerads.d2bgzedfwytyy5.amplifyapp.com/
Certificate
IssuerAmazon
Subject*.d2bgzedfwytyy5.amplifyapp.com
FingerprintFC:F6:CD:5F:74:72:3A:FC:E4:A7:EC:B5:8D:84:E6:60:08:F3:89:9C
ValidityFri, 10 May 2024 00:00:00 GMT - Sun, 08 Jun 2025 23:59:59 GMT

File type
TrueType Font data, 12 tables, 1st "OS/2", 7 names, Microsoft, language 0x409
Size
1.2 kB (1236 bytes)
Hash
57d849d738900cfd590e9adc7e208250
41985b8972e5289666d6054b2242f562f1d6e11a
7faebfc34fcf9aeed5ed14c8d859995da91d26ee4d515a5d5a632a14cc6b3d98

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Facebook

HTTP Headers

GET /assets/packages/cupertino_icons/assets/CupertinoIcons.ttf HTTP/1.1
Host: managerads.d2bgzedfwytyy5.amplifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://managerads.d2bgzedfwytyy5.amplifyapp.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: font/ttf
alt-svc: h3=":443"; ma=86400
x-amz-cf-pop: OSL50-P1
date: Fri, 10 May 2024 15:57:37 GMT
server: AmazonS3
etag: W/"57d849d738900cfd590e9adc7e208250"
last-modified: Fri, 10 May 2024 15:07:48 GMT
cache-control: public, max-age=0, s-maxage=2
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-id: HgKXULjQc9YwrEER9SfvN4GWN4duNDMvKzfqri2K7g22SJwQwVpCgg==

managerads.d2bgzedfwytyy5.amplifyapp.com/assets/packages/font_awesome_flutter/lib/fonts/fa-regular-400.ttf

54.230.111.22

200 OK

49 kB

URL GET HTTP/3
managerads.d2bgzedfwytyy5.amplifyapp.com/assets/packages/font_awesome_flutter/lib/fonts/fa-regular-400.ttf
IP
54.230.111.22:443
ASN
#16509 AMAZON-02

Requested by
https://managerads.d2bgzedfwytyy5.amplifyapp.com/
Certificate
IssuerAmazon
Subject*.d2bgzedfwytyy5.amplifyapp.com
FingerprintFC:F6:CD:5F:74:72:3A:FC:E4:A7:EC:B5:8D:84:E6:60:08:F3:89:9C
ValidityFri, 10 May 2024 00:00:00 GMT - Sun, 08 Jun 2025 23:59:59 GMT

File type
TrueType Font data, 10 tables, 1st "OS/2", 7 names, Microsoft, language 0x409
Size
49 kB (49012 bytes)
Hash
5070443340d1d8cceb516d02c3d6dee7
2edcbf8f12c01ef48617b87fd497c07fbe85087c
6b04ad8cd0e6be09eb285526cc0e4f66f84ae231d7eeffa4569f65b9fc3d511d

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Facebook

HTTP Headers

GET /assets/packages/font_awesome_flutter/lib/fonts/fa-regular-400.ttf HTTP/1.1
Host: managerads.d2bgzedfwytyy5.amplifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://managerads.d2bgzedfwytyy5.amplifyapp.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: font/ttf
alt-svc: h3=":443"; ma=86400
x-amz-cf-pop: OSL50-P1
date: Fri, 10 May 2024 15:57:37 GMT
server: AmazonS3
etag: W/"5070443340d1d8cceb516d02c3d6dee7"
last-modified: Fri, 10 May 2024 15:07:48 GMT
cache-control: public, max-age=0, s-maxage=2
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-id: EGalXaxrWsqi3HGB2CInTCDuNv-wuAi7Li5nLd3Vy9SWDdawUPMbMQ==

managerads.d2bgzedfwytyy5.amplifyapp.com/flutter.js

54.230.111.22

200 OK

15 kB

URL GET HTTP/2
managerads.d2bgzedfwytyy5.amplifyapp.com/flutter.js
IP
54.230.111.22:443
ASN
#16509 AMAZON-02

Requested by
https://managerads.d2bgzedfwytyy5.amplifyapp.com/
Certificate
IssuerAmazon
Subject*.d2bgzedfwytyy5.amplifyapp.com
FingerprintFC:F6:CD:5F:74:72:3A:FC:E4:A7:EC:B5:8D:84:E6:60:08:F3:89:9C
ValidityFri, 10 May 2024 00:00:00 GMT - Sun, 08 Jun 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with CRLF line terminators
Size
15 kB (14623 bytes)
Hash
6b515e434cea20006b3ef1726d2c8894
65e782370bc35a4f5e37922f12debfae61eff946
ebef4683c7634467e3e792e993cd8e28d44940d4299dd8f3f8ce8ea3c1f20b67

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Facebook

HTTP Headers

GET /flutter.js HTTP/1.1
Host: managerads.d2bgzedfwytyy5.amplifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://managerads.d2bgzedfwytyy5.amplifyapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
date: Fri, 10 May 2024 15:57:33 GMT
server: AmazonS3
etag: W/"6b515e434cea20006b3ef1726d2c8894"
last-modified: Fri, 10 May 2024 15:07:48 GMT
cache-control: public, max-age=0, s-maxage=2
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: 1smRv4hb3LUbduLi1vhuSqwsVXEfSPFKnKcrWne25pplS67hExbR6Q==
X-Firefox-Spdy: h2

managerads.d2bgzedfwytyy5.amplifyapp.com/assets/packages/font_awesome_flutter/lib/fonts/fa-solid-900.ttf

54.230.111.22

200 OK

357 kB

URL GET HTTP/3
managerads.d2bgzedfwytyy5.amplifyapp.com/assets/packages/font_awesome_flutter/lib/fonts/fa-solid-900.ttf
IP
54.230.111.22:443
ASN
#16509 AMAZON-02

Requested by
https://managerads.d2bgzedfwytyy5.amplifyapp.com/
Certificate
IssuerAmazon
Subject*.d2bgzedfwytyy5.amplifyapp.com
FingerprintFC:F6:CD:5F:74:72:3A:FC:E4:A7:EC:B5:8D:84:E6:60:08:F3:89:9C
ValidityFri, 10 May 2024 00:00:00 GMT - Sun, 08 Jun 2025 23:59:59 GMT

File type
TrueType Font data, 10 tables, 1st "OS/2", 7 names, Microsoft, language 0x409
Size
357 kB (357256 bytes)
Hash
658b490c9da97710b01bd0f8825fce94
0c454d0b88ea5736402cdd5a19ae767765dcba6d
2395721ec2a7ba59d9ea05e0567339ca73d280e8768fb3f7eceb6fd2c1824913

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Facebook

HTTP Headers

GET /assets/packages/font_awesome_flutter/lib/fonts/fa-solid-900.ttf HTTP/1.1
Host: managerads.d2bgzedfwytyy5.amplifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://managerads.d2bgzedfwytyy5.amplifyapp.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: font/ttf
alt-svc: h3=":443"; ma=86400
x-amz-cf-pop: OSL50-P1
date: Fri, 10 May 2024 15:57:37 GMT
server: AmazonS3
etag: W/"658b490c9da97710b01bd0f8825fce94"
last-modified: Fri, 10 May 2024 15:07:48 GMT
cache-control: public, max-age=0, s-maxage=2
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-id: MxOUzMDRi0ULqlPdjGNQNEU2K1UQdbMQQUXVkaz3E_yw-5whmyCNSA==

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (5)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (25)

URL GET HTTP/3

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/3

IP

ASN

Requested by

Certificate

File type

Size

Hash