Report - www.luckygiftbox.online/sweeps/ID/iPhone14Pro-IN-AnimationFlag/index.html

Report Overview

Visited public
2023-08-16 09:02:41
Tags
URL
www.luckygiftbox.online/sweeps/ID/iPhone14Pro-IN-AnimationFlag/index.html
Finishing URL
www.luckygiftbox.online/sweeps/ID/iPhone14Pro-IN-AnimationFlag/index.html#
IP / ASN
54.230.111.8
#16509 AMAZON-02
Title
Menangkan iPhone 14 Pro

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
ocsp.r2m01.amazontrust.com	unknown	2007-05-11	2022-10-12 22:43:53	2023-08-15 21:22:47	340 B	863 B	108.157.228.227
www.luckygiftbox.online	unknown	2022-11-17	2022-11-23 14:31:21	2023-05-21 00:02:18	5.0 kB	110 kB	54.230.111.66
poavoabe.net	unknown	2022-10-03	2022-10-03 18:42:50	2023-08-13 20:44:48	1.0 kB	28 kB	139.45.197.251

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-08-16	medium	poavoabe.net	Sinkholed
2023-08-16	medium	poavoabe.net	Sinkholed

ThreatFox

No alerts detected

JavaScript (5)

	URL	From	Size	First Seen	Last Seen
	www.luckygiftbox.online/sweeps/ID/iPhone14Pro-IN-AnimationFlag/index.html	ScriptElement	0 B	0001-01-01	2025-05-11
Pretty URL www.luckygiftbox.online/sweeps/ID/iPhone14Pro-IN-AnimationFlag/index.html IP 54.230.111.66 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-05-11 11:59 Times Seen4654047 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.luckygiftbox.online/sweeps/ID/iPhone14Pro-IN-AnimationFlag/index.html	ScriptElement	337 B	2023-05-24	2024-08-21
Pretty URL www.luckygiftbox.online/sweeps/ID/iPhone14Pro-IN-AnimationFlag/index.html IP 54.230.111.66 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-24 01:02 Last Seen2024-08-21 08:36 Times Seen1 Hash de07293c618cee113c1ec5602ce2f25d a3614e63f08f8dc02dc0413336ff312ef4cd39bd 2158b270c3e08e7a40525d7de9570efecc22b6b2098e0501a8a349303ad7c2a8 Loading...

	www.luckygiftbox.online/sweeps/ID/iPhone14Pro-IN-AnimationFlag/index.html	ScriptElement	0 B	0001-01-01	2025-05-11
Pretty URL www.luckygiftbox.online/sweeps/ID/iPhone14Pro-IN-AnimationFlag/index.html IP 54.230.111.66 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-05-11 11:59 Times Seen4654047 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.luckygiftbox.online/sweeps/ID/iPhone14Pro-IN-AnimationFlag/index.html	ScriptElement	0 B	0001-01-01	2025-05-11
Pretty URL www.luckygiftbox.online/sweeps/ID/iPhone14Pro-IN-AnimationFlag/index.html IP 54.230.111.66 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-05-11 11:59 Times Seen4654047 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	poavoabe.net/pfe/current/micro.tag.min.js?z=5542487&sw=/sw-check-permissions-d059b.js	ScriptElement	27 kB	2023-08-04	2024-10-04
Pretty URL poavoabe.net/pfe/current/micro.tag.min.js?z=5542487&sw=/sw-check-permissions-d059b.js IP 139.45.197.251 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-04 14:02 Last Seen2024-10-04 11:24 Times Seen710 Hash ea426fdfcf9eb0f3b57b50a6195abb4b 585193ede98eccf348aa754d373404f957ffc863 8bff789be40b8393590ce6ecf50acd90cb3000b36c75a748d64a05db3f4f84f6 Loading...

HTTP Transactions (12)

URL IP Response Size

ocsp.r2m01.amazontrust.com/

108.157.228.227

471 B

URL
ocsp.r2m01.amazontrust.com/
IP
108.157.228.227:0
ASN
#0

File type
data
Size
471 B (471 bytes)
Hash
3ce29377b2db1bc3ce8e6f407fc3543e
908aed0171ac29f93fd0662408f1dcca5905b7f5
dfb57e0625f7806e6de683e56a22553911343bd0b11dd43a6472fbdef319266d

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: max-age=7200
Date: Wed, 16 Aug 2023 09:02:24 GMT
Server: ECAcc (amb/6B09)
X-Cache: Miss from cloudfront
Via: 1.1 ff51bc3614c373d274030fe4ca1a34fc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: ARN56-P2
X-Amz-Cf-Id: DP8qNYiOVyMdFa1qnwxr220dctoQnZXv_WgkWIBGfckL-lp2XNQC4A==

www.luckygiftbox.online/sweeps/ID/iPhone14Pro-IN-AnimationFlag/flag.png

54.230.111.66

200 OK

396 B

URL GET HTTP/2
www.luckygiftbox.online/sweeps/ID/iPhone14Pro-IN-AnimationFlag/flag.png
IP
54.230.111.66:443
ASN
#16509 AMAZON-02

Requested by
https://www.luckygiftbox.online/sweeps/ID/iPhone14Pro-IN-AnimationFlag/index.html
Certificate
IssuerAmazon
Subjectluckygiftbox.online
Fingerprint5C:76:42:4E:52:E7:34:D3:58:9B:30:74:47:72:24:55:F8:C1:09:20
ValidityThu, 17 Nov 2022 00:00:00 GMT - Sat, 16 Dec 2023 23:59:59 GMT

File type
PNG image data, 35 x 24, 8-bit/color RGBA, non-interlaced\012- data
Size
396 B (396 bytes)
Hash
4946ce8ece16515620550ffaa4794454
a2ce2cc55eb329be83209b35501cf23f0f8a0891
8d39313e9143edeee5d38c05fce025fa4edffd461b46ddd6bcc9a7eddcc50e0f

HTTP Headers

GET /sweeps/ID/iPhone14Pro-IN-AnimationFlag/flag.png HTTP/1.1
Host: www.luckygiftbox.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.luckygiftbox.online/sweeps/ID/iPhone14Pro-IN-AnimationFlag/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 396
last-modified: Wed, 23 Nov 2022 12:59:05 GMT
accept-ranges: bytes
server: AmazonS3
date: Wed, 16 Aug 2023 09:02:26 GMT
etag: "4946ce8ece16515620550ffaa4794454"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 0VPlts0-YGd9QCIk6fbNIhacJc6lW_0dKIDIiXxeWigLzkq6r7V4rg==
X-Firefox-Spdy: h2

www.luckygiftbox.online/sweeps/ID/iPhone14Pro-IN-AnimationFlag/c02173e7e4e2e6e95265f3f52dba5132a5a6e151.gif

54.230.111.66

200 OK

32 kB

URL GET HTTP/2
www.luckygiftbox.online/sweeps/ID/iPhone14Pro-IN-AnimationFlag/c02173e7e4e2e6e95265f3f52dba5132a5a6e151.gif
IP
54.230.111.66:443
ASN
#16509 AMAZON-02

Requested by
https://www.luckygiftbox.online/sweeps/ID/iPhone14Pro-IN-AnimationFlag/index.html
Certificate
IssuerAmazon
Subjectluckygiftbox.online
Fingerprint5C:76:42:4E:52:E7:34:D3:58:9B:30:74:47:72:24:55:F8:C1:09:20
ValidityThu, 17 Nov 2022 00:00:00 GMT - Sat, 16 Dec 2023 23:59:59 GMT

File type
GIF image data, version 89a, 253 x 365\012- data
Size
32 kB (31896 bytes)
Hash
b2d36d1ca4afbbfcebe40a17bd0464a4
c02173e7e4e2e6e95265f3f52dba5132a5a6e151
a84ce04c95dc5d49848bed021f1531285004bc92585d28cdc4e69d2b5ea02bde

HTTP Headers

GET /sweeps/ID/iPhone14Pro-IN-AnimationFlag/c02173e7e4e2e6e95265f3f52dba5132a5a6e151.gif HTTP/1.1
Host: www.luckygiftbox.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.luckygiftbox.online/sweeps/ID/iPhone14Pro-IN-AnimationFlag/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/gif
content-length: 31896
last-modified: Wed, 23 Nov 2022 12:54:23 GMT
accept-ranges: bytes
server: AmazonS3
date: Wed, 16 Aug 2023 09:02:26 GMT
etag: "b2d36d1ca4afbbfcebe40a17bd0464a4"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Xt2jd5-OPse-iT3VWZ1w-2cGM4kcuR03G3QAFx0Y647GQ08wME6tpA==
X-Firefox-Spdy: h2

www.luckygiftbox.online/sweeps/ID/iPhone14Pro-IN-AnimationFlag/798de66f3f946ccb50a6c1e181b82b4660619f2c.png

54.230.111.66

200 OK

4.2 kB

URL GET HTTP/2
www.luckygiftbox.online/sweeps/ID/iPhone14Pro-IN-AnimationFlag/798de66f3f946ccb50a6c1e181b82b4660619f2c.png
IP
54.230.111.66:443
ASN
#16509 AMAZON-02

Requested by
https://www.luckygiftbox.online/sweeps/ID/iPhone14Pro-IN-AnimationFlag/index.html
Certificate
IssuerAmazon
Subjectluckygiftbox.online
Fingerprint5C:76:42:4E:52:E7:34:D3:58:9B:30:74:47:72:24:55:F8:C1:09:20
ValidityThu, 17 Nov 2022 00:00:00 GMT - Sat, 16 Dec 2023 23:59:59 GMT

File type
PNG image data, 251 x 44, 8-bit/color RGBA, non-interlaced\012- data
Size
4.2 kB (4169 bytes)
Hash
145dea4399a43eb197347f68088011b6
ebdbe0ab6e0579512a1d33907cbbfb01fe9f3d97
fe5f3db73f035587e4704cf88b5ce316e762b1cb8cce55a618164227462d15c3

HTTP Headers

GET /sweeps/ID/iPhone14Pro-IN-AnimationFlag/798de66f3f946ccb50a6c1e181b82b4660619f2c.png HTTP/1.1
Host: www.luckygiftbox.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.luckygiftbox.online/sweeps/ID/iPhone14Pro-IN-AnimationFlag/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 4169
last-modified: Thu, 24 Nov 2022 05:46:23 GMT
accept-ranges: bytes
server: AmazonS3
date: Wed, 16 Aug 2023 09:02:26 GMT
etag: "145dea4399a43eb197347f68088011b6"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: CIyJ08wxvqdcWsteIvFKPp0ePNkPQ6uMk8-G5qAzmOlw8R4Lpw1idw==
X-Firefox-Spdy: h2

poavoabe.net/zone?&pub=0&zone_id=5542487&is_mobile=false&domain=www.luckygiftbox.online&var=&ymid=&var_3=&var_4=&dsig=&action=prerequest

139.45.197.251

200 OK

0 B

URL POST HTTP/2
poavoabe.net/zone?&pub=0&zone_id=5542487&is_mobile=false&domain=www.luckygiftbox.online&var=&ymid=&var_3=&var_4=&dsig=&action=prerequest
IP
139.45.197.251:443
ASN
#9002 RETN Limited

Requested by
https://www.luckygiftbox.online/sweeps/ID/iPhone14Pro-IN-AnimationFlag/index.html
Certificate
IssuerLet's Encrypt
Subjectpoavoabe.net
Fingerprint18:6A:82:BF:72:96:BE:97:DF:0D:31:EF:7C:BE:2F:07:38:42:21:FE
ValidityWed, 31 May 2023 05:22:50 GMT - Tue, 29 Aug 2023 05:22:49 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /zone?&pub=0&zone_id=5542487&is_mobile=false&domain=www.luckygiftbox.online&var=&ymid=&var_3=&var_4=&dsig=&action=prerequest HTTP/1.1
Host: poavoabe.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.luckygiftbox.online
DNT: 1
Connection: keep-alive
Referer: https://www.luckygiftbox.online/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 16 Aug 2023 09:02:22 GMT
content-length: 0
x-trace-id: 09053e70276468423d4150970ab42b02
access-control-allow-origin: https://www.luckygiftbox.online
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

www.luckygiftbox.online/sweeps/ID/iPhone14Pro-IN-AnimationFlag/index.html

54.230.111.66

200 OK

10 kB

URL User Request GET HTTP/2
www.luckygiftbox.online/sweeps/ID/iPhone14Pro-IN-AnimationFlag/index.html
IP
54.230.111.66:443
ASN
#16509 AMAZON-02

Certificate
IssuerAmazon
Subjectluckygiftbox.online
Fingerprint5C:76:42:4E:52:E7:34:D3:58:9B:30:74:47:72:24:55:F8:C1:09:20
ValidityThu, 17 Nov 2022 00:00:00 GMT - Sat, 16 Dec 2023 23:59:59 GMT

File type
gzip compressed data, from Unix\012- data
Size
10 kB (10159 bytes)
Hash
aa51da13e7770eeb682912b0bcdde1f8
246c36a13a9d2c3080fd0b48cbf4559f306d344e
6e4009bb6485942030df04469df006703bd82f8069492e1a81a295917220b29c

HTTP Headers

GET /sweeps/ID/iPhone14Pro-IN-AnimationFlag/index.html HTTP/1.1
Host: www.luckygiftbox.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/html
last-modified: Wed, 23 Nov 2022 12:54:25 GMT
server: AmazonS3
content-encoding: gzip
date: Wed, 16 Aug 2023 09:02:25 GMT
etag: W/"4f69caace88dbc27fbf697d80cd77008"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: hQHaWvORDExvQvb6oclAV151t30uU1bl8DPkX-Bv25XqJeX-zn7aGw==
X-Firefox-Spdy: h2

www.luckygiftbox.online/sweeps/ID/iPhone14Pro-IN-AnimationFlag/1d936c9181a86fc7d77dc67ad3a3f2d194557253.png

54.230.111.66

200 OK

48 kB

URL GET HTTP/2
www.luckygiftbox.online/sweeps/ID/iPhone14Pro-IN-AnimationFlag/1d936c9181a86fc7d77dc67ad3a3f2d194557253.png
IP
54.230.111.66:443
ASN
#16509 AMAZON-02

Requested by
https://www.luckygiftbox.online/sweeps/ID/iPhone14Pro-IN-AnimationFlag/index.html
Certificate
IssuerAmazon
Subjectluckygiftbox.online
Fingerprint5C:76:42:4E:52:E7:34:D3:58:9B:30:74:47:72:24:55:F8:C1:09:20
ValidityThu, 17 Nov 2022 00:00:00 GMT - Sat, 16 Dec 2023 23:59:59 GMT

File type
PNG image data, 414 x 736, 8-bit colormap, non-interlaced\012- data
Size
48 kB (47495 bytes)
Hash
a66a7278909b71cde6a87ae400e2de8b
1d936c9181a86fc7d77dc67ad3a3f2d194557253
52e9e7f992721ed81bdb6146fe578eb67437eeb378d7c87a46928996ff219b1c

HTTP Headers

GET /sweeps/ID/iPhone14Pro-IN-AnimationFlag/1d936c9181a86fc7d77dc67ad3a3f2d194557253.png HTTP/1.1
Host: www.luckygiftbox.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.luckygiftbox.online/sweeps/ID/iPhone14Pro-IN-AnimationFlag/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 47495
last-modified: Wed, 23 Nov 2022 12:54:19 GMT
accept-ranges: bytes
server: AmazonS3
date: Wed, 16 Aug 2023 09:02:26 GMT
etag: "a66a7278909b71cde6a87ae400e2de8b"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: t9Bch3S9J5x0yfgI_P2qSp93kNuYsR710fgzhQcagXjhsIm32wYkJw==
X-Firefox-Spdy: h2

www.luckygiftbox.online/sweeps/ID/iPhone14Pro-IN-AnimationFlag/99e01d3e0c461a43735019cc73db8074aa7ab504.png

54.230.111.66

200 OK

96 B

URL GET HTTP/2
www.luckygiftbox.online/sweeps/ID/iPhone14Pro-IN-AnimationFlag/99e01d3e0c461a43735019cc73db8074aa7ab504.png
IP
54.230.111.66:443
ASN
#16509 AMAZON-02

Requested by
https://www.luckygiftbox.online/sweeps/ID/iPhone14Pro-IN-AnimationFlag/index.html
Certificate
IssuerAmazon
Subjectluckygiftbox.online
Fingerprint5C:76:42:4E:52:E7:34:D3:58:9B:30:74:47:72:24:55:F8:C1:09:20
ValidityThu, 17 Nov 2022 00:00:00 GMT - Sat, 16 Dec 2023 23:59:59 GMT

File type
PNG image data, 16 x 16, 1-bit colormap, non-interlaced\012- data
Size
96 B (96 bytes)
Hash
35b9ee99fe32d3d68f7807c43d768092
99e01d3e0c461a43735019cc73db8074aa7ab504
cfee15b8d3ffca2475ecab6e25900ed1454d9c327fca1942728629452ad00ee6

HTTP Headers

GET /sweeps/ID/iPhone14Pro-IN-AnimationFlag/99e01d3e0c461a43735019cc73db8074aa7ab504.png HTTP/1.1
Host: www.luckygiftbox.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.luckygiftbox.online/sweeps/ID/iPhone14Pro-IN-AnimationFlag/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 96
date: Wed, 16 Aug 2023 09:02:27 GMT
last-modified: Wed, 23 Nov 2022 12:54:22 GMT
etag: "35b9ee99fe32d3d68f7807c43d768092"
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: W-ybXzBd0oXmLg-8DW4wGswjHkK8XQ81M6grY_5X-Gdrqnbkr_FKQA==
X-Firefox-Spdy: h2

www.luckygiftbox.online/sw-check-permissions-d059b.js

54.230.111.66

200 OK

566 B

URL GET HTTP/2
www.luckygiftbox.online/sw-check-permissions-d059b.js
IP
54.230.111.66:443
ASN
#16509 AMAZON-02

Requested by
https://www.luckygiftbox.online/sweeps/ID/iPhone14Pro-IN-AnimationFlag/index.html
Certificate
IssuerAmazon
Subjectluckygiftbox.online
Fingerprint5C:76:42:4E:52:E7:34:D3:58:9B:30:74:47:72:24:55:F8:C1:09:20
ValidityThu, 17 Nov 2022 00:00:00 GMT - Sat, 16 Dec 2023 23:59:59 GMT

File type
Java source, ASCII text
Size
566 B (566 bytes)
Hash
f00fb1589a4d4c66fad3ca6cba27724d
d21b13fbacad6db749a08ea119c8746974032ef6
0d62f2d87a8a6d5c798d17063e4e3bf2936c304d76d953ab35b88aefbd8ccb02

HTTP Headers

GET /sw-check-permissions-d059b.js HTTP/1.1
Host: www.luckygiftbox.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://www.luckygiftbox.online/sweeps/ID/iPhone14Pro-IN-AnimationFlag/index.html
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 566
last-modified: Fri, 25 Nov 2022 10:12:08 GMT
accept-ranges: bytes
server: AmazonS3
date: Wed, 16 Aug 2023 09:02:27 GMT
etag: "f00fb1589a4d4c66fad3ca6cba27724d"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: yJkFtrfo3Db9XaSmRTJLWlovHJgGyLoBKxllo_cN0riaRkZ-JmJanA==
X-Firefox-Spdy: h2

poavoabe.net/pfe/current/micro.tag.min.js?z=5542487&sw=/sw-check-permissions-d059b.js

139.45.197.251

200 OK

27 kB

URL GET HTTP/2
poavoabe.net/pfe/current/micro.tag.min.js?z=5542487&sw=/sw-check-permissions-d059b.js
IP
139.45.197.251:443
ASN
#9002 RETN Limited

Requested by
https://www.luckygiftbox.online/sweeps/ID/iPhone14Pro-IN-AnimationFlag/index.html
Certificate
IssuerLet's Encrypt
Subjectpoavoabe.net
Fingerprint18:6A:82:BF:72:96:BE:97:DF:0D:31:EF:7C:BE:2F:07:38:42:21:FE
ValidityWed, 31 May 2023 05:22:50 GMT - Tue, 29 Aug 2023 05:22:49 GMT

File type
ASCII text, with very long lines (26779), with no line terminators
Size
27 kB (26779 bytes)
Hash
ea426fdfcf9eb0f3b57b50a6195abb4b
585193ede98eccf348aa754d373404f957ffc863
8bff789be40b8393590ce6ecf50acd90cb3000b36c75a748d64a05db3f4f84f6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pfe/current/micro.tag.min.js?z=5542487&sw=/sw-check-permissions-d059b.js HTTP/1.1
Host: poavoabe.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.luckygiftbox.online/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 16 Aug 2023 09:02:22 GMT
content-type: application/javascript
last-modified: Fri, 04 Aug 2023 11:40:02 GMT
etag: W/"64cce392-689b"
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2

www.luckygiftbox.online/sweeps/ID/iPhone14Pro-IN-AnimationFlag/style.css

54.230.111.66

200 OK

2.1 kB

URL GET HTTP/2
www.luckygiftbox.online/sweeps/ID/iPhone14Pro-IN-AnimationFlag/style.css
IP
54.230.111.66:443
ASN
#16509 AMAZON-02

Requested by
https://www.luckygiftbox.online/sweeps/ID/iPhone14Pro-IN-AnimationFlag/index.html
Certificate
IssuerAmazon
Subjectluckygiftbox.online
Fingerprint5C:76:42:4E:52:E7:34:D3:58:9B:30:74:47:72:24:55:F8:C1:09:20
ValidityThu, 17 Nov 2022 00:00:00 GMT - Sat, 16 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (2279), with no line terminators
Size
2.1 kB (2125 bytes)
Hash
0f1536f246fff2d6ae9b24a2c7857dc7
2a1a923e73ca5065e5fb0777cd44aeaf2b66f5db
de90a268bd0d0003f491c32b82845dbf4d82a11baac5bbdba92b03dce0b4a415

HTTP Headers

GET /sweeps/ID/iPhone14Pro-IN-AnimationFlag/style.css HTTP/1.1
Host: www.luckygiftbox.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.luckygiftbox.online/sweeps/ID/iPhone14Pro-IN-AnimationFlag/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
last-modified: Wed, 23 Nov 2022 12:54:26 GMT
server: AmazonS3
content-encoding: br
date: Wed, 16 Aug 2023 09:02:26 GMT
etag: W/"5e1f5f4c96dc20f233a6ef9d8cc271ff"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: aD7-kG_I19bI5fpgcJKtm4V7hXFEOrvtUU0NyWabFuhLuOk4iKnVqQ==
X-Firefox-Spdy: h2

www.luckygiftbox.online/sweeps/ID/iPhone14Pro-IN-AnimationFlag/2ef289afa287fa1e905a9eb520974fb963c1fe98.png

54.230.111.66

200 OK

8.7 kB

URL GET HTTP/2
www.luckygiftbox.online/sweeps/ID/iPhone14Pro-IN-AnimationFlag/2ef289afa287fa1e905a9eb520974fb963c1fe98.png
IP
54.230.111.66:443
ASN
#16509 AMAZON-02

Requested by
https://www.luckygiftbox.online/sweeps/ID/iPhone14Pro-IN-AnimationFlag/index.html
Certificate
IssuerAmazon
Subjectluckygiftbox.online
Fingerprint5C:76:42:4E:52:E7:34:D3:58:9B:30:74:47:72:24:55:F8:C1:09:20
ValidityThu, 17 Nov 2022 00:00:00 GMT - Sat, 16 Dec 2023 23:59:59 GMT

File type
PNG image data, 395 x 77, 8-bit/color RGBA, non-interlaced\012- data
Size
8.7 kB (8660 bytes)
Hash
bec6b8eab9d6e094df42a0e1b8230994
2ef289afa287fa1e905a9eb520974fb963c1fe98
ca9a2744b49c225c39ddd78239e2b4e1703f2f8ee03d6bc22a9f53532ac94046

HTTP Headers

GET /sweeps/ID/iPhone14Pro-IN-AnimationFlag/2ef289afa287fa1e905a9eb520974fb963c1fe98.png HTTP/1.1
Host: www.luckygiftbox.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.luckygiftbox.online/sweeps/ID/iPhone14Pro-IN-AnimationFlag/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
content-length: 8660
last-modified: Wed, 23 Nov 2022 12:54:20 GMT
accept-ranges: bytes
server: AmazonS3
date: Wed, 16 Aug 2023 09:02:26 GMT
etag: "bec6b8eab9d6e094df42a0e1b8230994"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: PDuvBsxbThTQkr4Efmj5pDb4i2GHV7vIqb12hRodNSQWb0idz3-J3g==
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (5)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (12)

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type