Report - jdcu-mobile.com/home/Login/login.php

Report Overview

Visited public
2025-05-25 09:07:15
Tags
Submit Tags
URL
jdcu-mobile.com/home/Login/login.php
Finishing URL
jdcu-mobile.com/home/Login/login.php
IP / ASN
172.86.77.133
#14956 ROUTERHOSTING
Title
Jeanne D'Arc Credit Union

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

110

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
fonts.gstatic.com	unknown	2008-02-11	2014-04-02	2025-05-21	1.1 kB	33 kB	142.250.74.35
assets.orb.alkamitech.com	29430	2010-02-11	2020-10-26	2025-05-23	1.1 kB	96 kB	3.167.2.13
jdcu-mobile.com	unknown	unknown	No data	No data	26 kB	3.7 MB	172.86.77.133

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2025-05-25	medium	jdcu-mobile.com	Sinkholed
2025-05-25	medium	jdcu-mobile.com	Sinkholed
2025-05-25	medium	jdcu-mobile.com	Sinkholed
2025-05-25	medium	jdcu-mobile.com	Sinkholed
2025-05-25	medium	jdcu-mobile.com	Sinkholed
2025-05-25	medium	jdcu-mobile.com	Sinkholed
2025-05-25	medium	jdcu-mobile.com	Sinkholed
2025-05-25	medium	jdcu-mobile.com	Sinkholed
2025-05-25	medium	jdcu-mobile.com	Sinkholed
2025-05-25	medium	jdcu-mobile.com	Sinkholed
2025-05-25	medium	jdcu-mobile.com	Sinkholed
2025-05-25	medium	jdcu-mobile.com	Sinkholed
2025-05-25	medium	jdcu-mobile.com	Sinkholed
2025-05-25	medium	jdcu-mobile.com	Sinkholed
2025-05-25	medium	jdcu-mobile.com	Sinkholed
2025-05-25	medium	jdcu-mobile.com	Sinkholed
2025-05-25	medium	jdcu-mobile.com	Sinkholed
2025-05-25	medium	jdcu-mobile.com	Sinkholed
2025-05-25	medium	jdcu-mobile.com	Sinkholed
2025-05-25	medium	jdcu-mobile.com	Sinkholed
2025-05-25	medium	jdcu-mobile.com	Sinkholed
2025-05-25	medium	jdcu-mobile.com	Sinkholed
2025-05-25	medium	jdcu-mobile.com	Sinkholed
2025-05-25	medium	jdcu-mobile.com	Sinkholed
2025-05-25	medium	jdcu-mobile.com	Sinkholed
2025-05-25	medium	jdcu-mobile.com	Sinkholed
2025-05-25	medium	jdcu-mobile.com	Sinkholed
2025-05-25	medium	jdcu-mobile.com	Sinkholed
2025-05-25	medium	jdcu-mobile.com	Sinkholed
2025-05-25	medium	jdcu-mobile.com	Sinkholed
2025-05-25	medium	jdcu-mobile.com	Sinkholed
2025-05-25	medium	jdcu-mobile.com	Sinkholed
2025-05-25	medium	jdcu-mobile.com	Sinkholed
2025-05-25	medium	jdcu-mobile.com	Sinkholed
2025-05-25	medium	jdcu-mobile.com	Sinkholed
2025-05-25	medium	jdcu-mobile.com	Sinkholed
2025-05-25	medium	jdcu-mobile.com	Sinkholed
2025-05-25	medium	jdcu-mobile.com	Sinkholed
2025-05-25	medium	jdcu-mobile.com	Sinkholed
2025-05-25	medium	jdcu-mobile.com	Sinkholed
2025-05-25	medium	jdcu-mobile.com	Sinkholed
2025-05-25	medium	jdcu-mobile.com	Sinkholed
2025-05-25	medium	jdcu-mobile.com	Sinkholed
2025-05-25	medium	jdcu-mobile.com	Sinkholed
2025-05-25	medium	jdcu-mobile.com	Sinkholed
2025-05-25	medium	jdcu-mobile.com	Sinkholed
2025-05-25	medium	jdcu-mobile.com	Sinkholed
2025-05-25	medium	jdcu-mobile.com	Sinkholed
2025-05-25	medium	jdcu-mobile.com	Sinkholed
2025-05-25	medium	jdcu-mobile.com	Sinkholed
2025-05-25	medium	jdcu-mobile.com	Sinkholed
2025-05-25	medium	jdcu-mobile.com	Sinkholed
2025-05-25	medium	jdcu-mobile.com	Sinkholed
2025-05-25	medium	jdcu-mobile.com	Sinkholed
2025-05-25	medium	jdcu-mobile.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (35)

	URL	From	Size	First Seen	Last Seen
	jdcu-mobile.com/home/Login/asset/jquery.mmenu.min.js.download	ScriptElement	13 kB	2023-08-30	2025-05-25
Pretty URL jdcu-mobile.com/home/Login/asset/jquery.mmenu.min.js.download IP 172.86.77.133 ASN #14956 ROUTERHOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-30 03:51 Last Seen2025-05-25 09:07 Times Seen6 Hash fa5cb84e94dffe98bc6880ceb6596930 e09c746cbd227d7f58e06246db3cafc0dac0f535 fd4beed87c22b3dbeb80e6c4674feb0c2e5fc0f9f97012791be351198b5f3688 Loading...

	jdcu-mobile.com/home/Login/asset/helpers.min.js.download	ScriptElement	998 B	2023-08-30	2025-05-25
Pretty URL jdcu-mobile.com/home/Login/asset/helpers.min.js.download IP 172.86.77.133 ASN #14956 ROUTERHOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-30 03:51 Last Seen2025-05-25 09:07 Times Seen6 Hash f6126c4346928048e1a206416a62918d 177333b1b4630facdb2aa9928a13d00b48b285d7 ab227bf69f86b722b0a984adc9368e15071d127d49e0127dc8f46da7dd63e2b2 Loading...

	jdcu-mobile.com/home/Login/asset/jquery-validate.min.js.download	ScriptElement	24 kB	2023-04-06	2025-07-08
Pretty URL jdcu-mobile.com/home/Login/asset/jquery-validate.min.js.download IP 172.86.77.133 ASN #14956 ROUTERHOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-06 13:19 Last Seen2025-07-08 04:27 Times Seen1759 Hash f7b447efb331a45dde576a832490fc6d 79498c8c7214beeb61d7c151c9ef819ebc1c547c 5c3aa33f77a00bc307a98564ffd04f9914d4c467a3b30fe47b491adce7d84670 Loading...

	jdcu-mobile.com/home/Login/asset/vue-router.min.js.download	ScriptElement	29 kB	2023-03-07	2025-07-07
Pretty URL jdcu-mobile.com/home/Login/asset/vue-router.min.js.download IP 172.86.77.133 ASN #14956 ROUTERHOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:45 Last Seen2025-07-07 19:07 Times Seen71 Hash 7869055c4b90df3fe87233fae961df28 7da526ac1d079ac39abb980b06dd111b1e93e3b8 d0f81c81c5abe721e7db434c08a19d4d32322944bcc52840da906fa7912fe532 Loading...

	jdcu-mobile.com/home/Login/asset/localization.min.js.download	ScriptElement	774 B	2023-03-07	2025-05-25
Pretty URL jdcu-mobile.com/home/Login/asset/localization.min.js.download IP 172.86.77.133 ASN #14956 ROUTERHOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:45 Last Seen2025-05-25 09:07 Times Seen71 Hash 3ce858c9820460b379cfb58c11824e8f be691a71c887f05b56782aacee225bd08a2afcb8 e6d340a28f4728d6fe59f7e397528486afea52f4c9346b781803793e9bfea154 Loading...

	jdcu-mobile.com/home/Login/asset/nativeHook.min.js.download	ScriptElement	681 B	2023-08-30	2025-05-25
Pretty URL jdcu-mobile.com/home/Login/asset/nativeHook.min.js.download IP 172.86.77.133 ASN #14956 ROUTERHOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-30 03:51 Last Seen2025-05-25 09:07 Times Seen6 Hash aa6133b78a453428433d82348215f6d0 cc719010a7c6e1b7be8fefbda07101eb07fcb483 5878bf7c94d85b0d2189762bed88288343a9d841ffba78cc72a51603a105509a Loading...

	jdcu-mobile.com/home/Login/asset/password-togglefication.min.js.download	ScriptElement	2.6 kB	2023-05-02	2025-05-25
Pretty URL jdcu-mobile.com/home/Login/asset/password-togglefication.min.js.download IP 172.86.77.133 ASN #14956 ROUTERHOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-02 20:55 Last Seen2025-05-25 09:07 Times Seen68 Hash 5bd5e1d2d62c6bbefc0849c28b2f85b3 72bde91377f748d4ec76ad4cc4f90b2a460be13e 1d30a7787a9c01b0ff619834de3f9f200fce2a43ac99a6efe56fb1f3161a657c Loading...

	jdcu-mobile.com/home/Login/asset/iscroll-lite.min.js.download	ScriptElement	10 kB	2023-08-30	2025-05-25
Pretty URL jdcu-mobile.com/home/Login/asset/iscroll-lite.min.js.download IP 172.86.77.133 ASN #14956 ROUTERHOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-30 03:51 Last Seen2025-05-25 09:07 Times Seen6 Hash 6f0cb91fd548a0f735f92457cb4d6c8f e71867cd30caac923497a84c8dcce1be24fa9feb 451291a314b8071894179df06bec23f67fa88fa4de865bd33bc61921d7d7dc11 Loading...

	jdcu-mobile.com/home/Login/asset/jquery-ui.min.js.download	ScriptElement	255 kB	2023-03-07	2025-07-08
Pretty URL jdcu-mobile.com/home/Login/asset/jquery-ui.min.js.download IP 172.86.77.133 ASN #14956 ROUTERHOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:16 Last Seen2025-07-08 04:07 Times Seen714 Hash 842e3946fa938e62f185abb29ab00dc7 c72ff777806f59b02c8e9fd84ac258051d2a2b39 793cb14b4ae48e92c4a35eae5d34b4b95092e3cd7995ce342b6895a560ef7526 Loading...

	jdcu-mobile.com/home/Login/asset/ua-parser.min.js.download	ScriptElement	20 kB	2023-05-02	2025-05-25
Pretty URL jdcu-mobile.com/home/Login/asset/ua-parser.min.js.download IP 172.86.77.133 ASN #14956 ROUTERHOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-02 20:55 Last Seen2025-05-25 09:07 Times Seen68 Hash c6008677a0fca0573e21815b3bb62e7c 08e14b097ee319fae9b5fdf2a91c7f37b5271918 ed35c5add67ec412941c7b29fa9b173cbb9ace46cb20f401873a9a39e81509f4 Loading...

	jdcu-mobile.com/home/Login/asset/iris-vue.umd.min.js.download	ScriptElement	1.4 MB	2023-05-02	2025-05-25
Pretty URL jdcu-mobile.com/home/Login/asset/iris-vue.umd.min.js.download IP 172.86.77.133 ASN #14956 ROUTERHOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-02 15:56 Last Seen2025-05-25 09:07 Times Seen6 Hash b725eee376496109691e67b256c31593 2ba99a2e8efaf574fd81017499b8e9555b6a4193 30a42be8b89b88e1e6d2551420cdc62b0707c6eb809417e987684d1eadfed37d Loading...

	jdcu-mobile.com/home/Login/asset/custom-elements-es5-adapter.js.download	ScriptElement	954 B	2023-03-07	2025-07-07
Pretty URL jdcu-mobile.com/home/Login/asset/custom-elements-es5-adapter.js.download IP 172.86.77.133 ASN #14956 ROUTERHOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:45 Last Seen2025-07-07 02:04 Times Seen114 Hash 79106fd9b808b3bbd70d54b934850301 67fb3e5866ca6c833d1ad76d50634b660cfba061 a938b29d41b6db51ad77e0ca4b71689cae58417b993749c4129dc678047ce993 Loading...

	jdcu-mobile.com/home/Login/asset/orb-shell.min.js.download	ScriptElement	86 kB	2023-03-09	2025-05-25
Pretty URL jdcu-mobile.com/home/Login/asset/orb-shell.min.js.download IP 172.86.77.133 ASN #14956 ROUTERHOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 06:25 Last Seen2025-05-25 09:07 Times Seen86 Hash dd4005b3d77647f3487c86ee1aec9770 76bfb07f77da03766d7ac8cfb7720cb580cfc0fe 44a91c2204ed83fa9abda03298409e49eb39071e520a41b27f57a94ea1adcebd Loading...

	jdcu-mobile.com/home/Login/asset/utils.min.js.download	ScriptElement	825 B	2023-08-30	2025-05-25
Pretty URL jdcu-mobile.com/home/Login/asset/utils.min.js.download IP 172.86.77.133 ASN #14956 ROUTERHOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-30 03:51 Last Seen2025-05-25 09:07 Times Seen6 Hash 1b53b8401be2213bf819d77dd10a707b 0db8a3f94383ecef7e67f5e0ceaab269cd1d210a 79d135e2c59f6ef43bccff550ddefa1af09e8c60c8021f90c2c449be5739328f Loading...

	jdcu-mobile.com/home/Login/asset/screen.min.js.download	ScriptElement	5.4 kB	2023-08-30	2025-05-25
Pretty URL jdcu-mobile.com/home/Login/asset/screen.min.js.download IP 172.86.77.133 ASN #14956 ROUTERHOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-30 03:51 Last Seen2025-05-25 09:07 Times Seen6 Hash 2e6d86db059ed0aa7d000057f6fe8fca 6a320ca98ecce6dcf12de3a4cf9a64115b1c5796 b17ee3ead7d822b6e42096d37e8e8f25d3dcb6f503f46e4adcf6e28826622a0a Loading...

	jdcu-mobile.com/home/Login/asset/machineauthentication.bundle.min.js.download	ScriptElement	56 kB	2023-03-07	2025-07-04
Pretty URL jdcu-mobile.com/home/Login/asset/machineauthentication.bundle.min.js.download IP 172.86.77.133 ASN #14956 ROUTERHOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:45 Last Seen2025-07-04 05:45 Times Seen88 Hash 402fb8b1664936dd26675bfa1c1d66b3 507efa980e6ba8da719d2673e382e6cc4fc6bd75 ef9675a8b388f4103a542922a4acbc7666c74c89fb634b719f520e6695333b3f Loading...

	jdcu-mobile.com/home/Login/asset/RiskEvaluation.2.14.0.min.js.download	ScriptElement	37 kB	2023-05-02	2025-05-25
Pretty URL jdcu-mobile.com/home/Login/asset/RiskEvaluation.2.14.0.min.js.download IP 172.86.77.133 ASN #14956 ROUTERHOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-02 20:55 Last Seen2025-05-25 09:07 Times Seen55 Hash 62e8f0dd8051b72bcf83ace138a5bee7 227c2174b43995bbf4cf017cf72c149cd68ee971 5bc185ed0f7738bfaf2b8729bdaf2e105759f8ced86cf52c78678acba27b65cb Loading...

	jdcu-mobile.com/home/Login/asset/popper.min.js.download	ScriptElement	21 kB	2023-03-07	2025-07-08
Pretty URL jdcu-mobile.com/home/Login/asset/popper.min.js.download IP 172.86.77.133 ASN #14956 ROUTERHOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-07-08 05:31 Times Seen6902 Hash 1022eaf388cc780bcfeb6456157adb7d 313789ca0e31b654784dbba8b0f83f364f8683b4 fe28dc38bc057f6eb11180235bbe458b3295a39b674d889075d3d9a0b5071d9f Loading...

	jdcu-mobile.com/home/Login/asset/jquery.min.js.download	ScriptElement	90 kB	2023-03-07	2025-07-08
Pretty URL jdcu-mobile.com/home/Login/asset/jquery.min.js.download IP 172.86.77.133 ASN #14956 ROUTERHOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-07-08 06:54 Times Seen234730 Hash 8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e Loading...

	jdcu-mobile.com/home/Login/asset/feature-detect-ts.min.js.download	ScriptElement	1.1 kB	2023-05-02	2025-05-25
Pretty URL jdcu-mobile.com/home/Login/asset/feature-detect-ts.min.js.download IP 172.86.77.133 ASN #14956 ROUTERHOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-02 20:55 Last Seen2025-05-25 09:07 Times Seen68 Hash b7ad1b4581240edc2e6769b837852e10 2d7804a2e46cd1a1656bdfe85176704a53bff25d 068afaf535e0b3dc9214eccb4d57f3a5baddd1340b961ad6a9346f990636d833 Loading...

	jdcu-mobile.com/home/Login/asset/jquery-helpers.min.js.download	ScriptElement	1.3 kB	2023-08-30	2025-05-25
Pretty URL jdcu-mobile.com/home/Login/asset/jquery-helpers.min.js.download IP 172.86.77.133 ASN #14956 ROUTERHOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-30 03:51 Last Seen2025-05-25 09:07 Times Seen6 Hash 6fdce59e4f0128dbea780db2ea55ac14 128e4527d59156a1723d487bc2eb836f44203f65 c6c3c9ab854b636eaec68c2d772cf2fafdb1e19216133e87cfe8d94a5aa903e1 Loading...

	jdcu-mobile.com/home/Login/asset/jquery.extensions.min.js.download	ScriptElement	237 B	2023-08-30	2025-05-25
Pretty URL jdcu-mobile.com/home/Login/asset/jquery.extensions.min.js.download IP 172.86.77.133 ASN #14956 ROUTERHOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-30 03:51 Last Seen2025-05-25 09:07 Times Seen6 Hash b04764de549c98c0a908807e310249a2 8f2cedfdf4b79044209afeaaa9a505a22cd6ebe8 c578537e206905615dee3c417746a312d9c137a213b661a834d2675673b416ca Loading...

	jdcu-mobile.com/home/Login/asset/showBrowserSupport.min.js.download	ScriptElement	448 B	2023-03-08	2025-07-04
Pretty URL jdcu-mobile.com/home/Login/asset/showBrowserSupport.min.js.download IP 172.86.77.133 ASN #14956 ROUTERHOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 00:22 Last Seen2025-07-04 05:45 Times Seen89 Hash f49a9e2ef11191c63a7feb69b088c1ad 95cfdd630eb32bb46d2958e771e7f13205799fac 49332bd5120dd4d27040186401f44c6351f0cea5448e3818e02d946b5d2ed2ec Loading...

	jdcu-mobile.com/home/Login/asset/vue.runtime.min.js.download	ScriptElement	75 kB	2023-05-02	2025-05-25
Pretty URL jdcu-mobile.com/home/Login/asset/vue.runtime.min.js.download IP 172.86.77.133 ASN #14956 ROUTERHOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-02 20:55 Last Seen2025-05-25 09:07 Times Seen51 Hash 0477e9dddd1ab4dc795473c41fd13bb6 8ea9b4ac8c96cdbee42b6c7d96e1344045e3f2d2 ea01f2227c388aa7d5ee81aae2d1f9abe0edd3ae180d1570fb7a0f8d69e0bf28 Loading...

	jdcu-mobile.com/home/Login/asset/browser-support-ts.js.download	ScriptElement	25 kB	2023-05-02	2025-07-04
Pretty URL jdcu-mobile.com/home/Login/asset/browser-support-ts.js.download IP 172.86.77.133 ASN #14956 ROUTERHOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-02 20:55 Last Seen2025-07-04 05:45 Times Seen91 Hash f9180fb33da3004b24163c2d39d7a789 3db37e2dca13575949b52a7852915fd1270514c9 22e87ea1aa7adb835af129ff45720b414721e7c4f5852971b9f65c9a4745b831 Loading...

	jdcu-mobile.com/home/Login/asset/vuex.min.js.download	ScriptElement	12 kB	2023-03-07	2025-07-08
Pretty URL jdcu-mobile.com/home/Login/asset/vuex.min.js.download IP 172.86.77.133 ASN #14956 ROUTERHOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04 Last Seen2025-07-08 04:48 Times Seen416 Hash 9190541d2b0b2827d8f9a2b436ffdc3f 77835f215674523c7c5a9c87e08091df61bfa965 3efd92158a4c24f9995773fafede2577e1646f738152c03b807678b610583f3c Loading...

	jdcu-mobile.com/home/Login/login.php	ScriptElement	115 kB	2023-05-02	2025-05-25
Pretty URL jdcu-mobile.com/home/Login/login.php IP 172.86.77.133 ASN #14956 ROUTERHOSTING Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-02 20:55 Last Seen2025-05-25 09:07 Times Seen6 Hash 1b133a1786d1ce444b6c5ea8126a3c52 64156e9640526583b1d29a666bce8556178af13f 689cfadd47a0e9fd2e3cb423f4584df92fc08333e63054e3f0c9f7ead8084e7e Loading...

	jdcu-mobile.com/home/Login/login.php	ScriptElement	1.4 kB	2023-05-02	2025-05-25
Pretty URL jdcu-mobile.com/home/Login/login.php IP 172.86.77.133 ASN #14956 ROUTERHOSTING Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-02 20:55 Last Seen2025-05-25 09:07 Times Seen6 Hash 59dc65314552069aee81bbc538d6b82e fa9505b861d2ce909fcbcbc8f387469c835ecbdb 56a91504559df3ea6049cd324618e1d3726a87c9bff8b9fe78b7e0856af2f207 Loading...

	jdcu-mobile.com/home/Login/asset/polyfill.min.js.download	ScriptElement	39 kB	2023-03-07	2025-05-25
Pretty URL jdcu-mobile.com/home/Login/asset/polyfill.min.js.download IP 172.86.77.133 ASN #14956 ROUTERHOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:45 Last Seen2025-05-25 09:07 Times Seen68 Hash c4fd95e45632962aca254f8ff19642cf dc2ba87eb2eac03dc0c0701aa8486c0b3b150ecb 48e1664fdab52d24e0828cf0b90db2fe7af235947377d1dd751299c2d172f914 Loading...

	jdcu-mobile.com/home/Login/asset/login.min.js.download	ScriptElement	332 B	2023-03-07	2025-05-25
Pretty URL jdcu-mobile.com/home/Login/asset/login.min.js.download IP 172.86.77.133 ASN #14956 ROUTERHOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:45 Last Seen2025-05-25 09:07 Times Seen80 Hash 103b41c9ce3e08f8067ff20f53e3e9f3 3368f175d1af3ace2774ee44efbf3b51ba0b2384 15321edc5f2294bf588a2e217dc5ab6f5239f605863d38dc7576110c52635dae Loading...

	jdcu-mobile.com/home/Login/asset/KJcccw0RfexWtpLfSSgMUVwbbbb	ScriptElement	46 kB	2023-05-02	2025-05-25
Pretty URL jdcu-mobile.com/home/Login/asset/KJcccw0RfexWtpLfSSgMUVwbbbb IP 172.86.77.133 ASN #14956 ROUTERHOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-02 20:55 Last Seen2025-05-25 09:07 Times Seen6 Hash d30f310258e94223579f973043a324af 8102348a69aff310ff7d1fff2bb8407f9cef4791 f284bfd02b3b33306856119321ef027f0c0b22ffaa6d4fd639486c59b721723b Loading...

	jdcu-mobile.com/home/Login/asset/jquery-validate-sitetext.js.download	ScriptElement	1.4 kB	2023-03-07	2025-07-04
Pretty URL jdcu-mobile.com/home/Login/asset/jquery-validate-sitetext.js.download IP 172.86.77.133 ASN #14956 ROUTERHOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:45 Last Seen2025-07-04 05:45 Times Seen87 Hash 9445222da3dea5c566d023c15f9e9003 bbdf417999ca18354204b7810b0b38e439c43da4 a43a52193c997e9786236045aedef70e1f04daa149d17bbcea18120005719512 Loading...

	jdcu-mobile.com/home/Login/asset/iris.min.js.download	ScriptElement	154 kB	2023-05-02	2025-05-25
Pretty URL jdcu-mobile.com/home/Login/asset/iris.min.js.download IP 172.86.77.133 ASN #14956 ROUTERHOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-02 20:55 Last Seen2025-05-25 09:07 Times Seen71 Hash 21f57afd10f6dedcecf51b7cbc689776 2cd530c6c41c7d31218b0c32c65d5de44d30955e 4da39ccfb2afbb29d7295c9128af9cbdef01f402822e5fc5685d79d59999d242 Loading...

	jdcu-mobile.com/home/Login/asset/webcomponents-bundle.js.download	ScriptElement	119 kB	2023-03-07	2025-05-25
Pretty URL jdcu-mobile.com/home/Login/asset/webcomponents-bundle.js.download IP 172.86.77.133 ASN #14956 ROUTERHOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:41 Last Seen2025-05-25 09:07 Times Seen68 Hash cad01e08a27fc04dabbabff04f4b92fb ac82efa9aaf36038855f1334d822e42842440afd ef951cb1be55823837950435c81632045a2825bdb0239e8062cbc841573a1e21 Loading...

	jdcu-mobile.com/home/Login/login.php	ScriptElement	932 B	2023-08-30	2025-05-25
Pretty URL jdcu-mobile.com/home/Login/login.php IP 172.86.77.133 ASN #14956 ROUTERHOSTING Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-30 03:51 Last Seen2025-05-25 09:07 Times Seen6 Hash 54d15e0b097ebd8b5ba00fb1c6f98a88 6d30ae1c6d2ecaad32d4d7525004a3dae02d8282 a9c83d02db8eb8a42109d9e2afb0b3f9a85a778959983e9799c024e8a17fccae Loading...

HTTP Transactions (59)

URL IP Response Size

GET jdcu-mobile.com/home/Login/asset/ua-parser.min.js.download

172.86.77.133

200 OK

20 kB

URL GET
jdcu-mobile.com/home/Login/asset/ua-parser.min.js.download
IP
172.86.77.133:443
ASN
#14956 ROUTERHOSTING

Requested by
https://jdcu-mobile.com/home/Login/login.php
Certificate
IssuerLet's Encrypt
Subjectjdcu-mobile.com
Fingerprint8E:0D:05:AE:34:ED:A9:A7:07:FC:9F:9E:7B:57:47:5C:AF:65:4A:58
ValidityTue, 20 May 2025 17:54:11 GMT - Mon, 18 Aug 2025 17:54:10 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (19970)
Size
20 kB (20071 bytes)
Hash
c6008677a0fca0573e21815b3bb62e7c
08e14b097ee319fae9b5fdf2a91c7f37b5271918
ed35c5add67ec412941c7b29fa9b173cbb9ace46cb20f401873a9a39e81509f4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/Login/asset/ua-parser.min.js.download HTTP/1.1
Host: jdcu-mobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jdcu-mobile.com/home/Login/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 25 May 2025 09:06:43 GMT
content-type: text/javascript
content-length: 20071
last-modified: Sat, 29 Apr 2023 11:39:58 GMT
accept-ranges: bytes
x-served-by: jdcu-mobile.com
X-Firefox-Spdy: h2

GET jdcu-mobile.com/home/Login/asset/KJcccw0RfexWtpLfSSgMUVwbbbb

172.86.77.133

200 OK

46 kB

URL GET
jdcu-mobile.com/home/Login/asset/KJcccw0RfexWtpLfSSgMUVwbbbb
IP
172.86.77.133:443
ASN
#14956 ROUTERHOSTING

Requested by
https://jdcu-mobile.com/home/Login/login.php
Certificate
IssuerLet's Encrypt
Subjectjdcu-mobile.com
Fingerprint8E:0D:05:AE:34:ED:A9:A7:07:FC:9F:9E:7B:57:47:5C:AF:65:4A:58
ValidityTue, 20 May 2025 17:54:11 GMT - Mon, 18 Aug 2025 17:54:10 GMT

File type
ASCII text, with very long lines (45814), with no line terminators
Size
46 kB (45814 bytes)
Hash
d30f310258e94223579f973043a324af
8102348a69aff310ff7d1fff2bb8407f9cef4791
f284bfd02b3b33306856119321ef027f0c0b22ffaa6d4fd639486c59b721723b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/Login/asset/KJcccw0RfexWtpLfSSgMUVwbbbb HTTP/1.1
Host: jdcu-mobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jdcu-mobile.com/home/Login/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 25 May 2025 09:06:43 GMT
content-length: 45814
last-modified: Sat, 29 Apr 2023 11:40:04 GMT
accept-ranges: bytes
x-served-by: jdcu-mobile.com
X-Firefox-Spdy: h2

GET jdcu-mobile.com/home/Login/asset/screen.min.js.download

172.86.77.133

200 OK

5.4 kB

URL GET
jdcu-mobile.com/home/Login/asset/screen.min.js.download
IP
172.86.77.133:443
ASN
#14956 ROUTERHOSTING

Requested by
https://jdcu-mobile.com/home/Login/login.php
Certificate
IssuerLet's Encrypt
Subjectjdcu-mobile.com
Fingerprint8E:0D:05:AE:34:ED:A9:A7:07:FC:9F:9E:7B:57:47:5C:AF:65:4A:58
ValidityTue, 20 May 2025 17:54:11 GMT - Mon, 18 Aug 2025 17:54:10 GMT

File type
JavaScript source, ASCII text, with very long lines (5325)
Size
5.4 kB (5394 bytes)
Hash
2e6d86db059ed0aa7d000057f6fe8fca
6a320ca98ecce6dcf12de3a4cf9a64115b1c5796
b17ee3ead7d822b6e42096d37e8e8f25d3dcb6f503f46e4adcf6e28826622a0a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/Login/asset/screen.min.js.download HTTP/1.1
Host: jdcu-mobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jdcu-mobile.com/home/Login/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 25 May 2025 09:06:43 GMT
content-type: text/javascript
content-length: 5394
last-modified: Sat, 29 Apr 2023 11:40:04 GMT
accept-ranges: bytes
x-served-by: jdcu-mobile.com
X-Firefox-Spdy: h2

GET jdcu-mobile.com/home/Login/asset/theme.mobile.css

172.86.77.133

200 OK

217 kB

URL GET
jdcu-mobile.com/home/Login/asset/theme.mobile.css
IP
172.86.77.133:443
ASN
#14956 ROUTERHOSTING

Requested by
https://jdcu-mobile.com/home/Login/login.php
Certificate
IssuerLet's Encrypt
Subjectjdcu-mobile.com
Fingerprint8E:0D:05:AE:34:ED:A9:A7:07:FC:9F:9E:7B:57:47:5C:AF:65:4A:58
ValidityTue, 20 May 2025 17:54:11 GMT - Mon, 18 Aug 2025 17:54:10 GMT

File type
ASCII text
Size
217 kB (216604 bytes)
Hash
c301ad12c90ac8602402cb8257780822
77856f2811cd1aa1be00d00ce104caf9bc666f5e
e12d04c3a88272d4369369bb0d2619b9a8c205dda950328e0667561d757afebd

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/Login/asset/theme.mobile.css HTTP/1.1
Host: jdcu-mobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jdcu-mobile.com/home/Login/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 25 May 2025 09:06:43 GMT
content-type: text/css
content-length: 216604
last-modified: Sat, 29 Apr 2023 11:39:52 GMT
accept-ranges: bytes
x-served-by: jdcu-mobile.com
X-Firefox-Spdy: h2

GET jdcu-mobile.com/home/Login/asset/isotope.min.css

172.86.77.133

200 OK

17 kB

URL GET
jdcu-mobile.com/home/Login/asset/isotope.min.css
IP
172.86.77.133:443
ASN
#14956 ROUTERHOSTING

Requested by
https://jdcu-mobile.com/home/Login/login.php
Certificate
IssuerLet's Encrypt
Subjectjdcu-mobile.com
Fingerprint8E:0D:05:AE:34:ED:A9:A7:07:FC:9F:9E:7B:57:47:5C:AF:65:4A:58
ValidityTue, 20 May 2025 17:54:11 GMT - Mon, 18 Aug 2025 17:54:10 GMT

File type
ASCII text, with very long lines (5613)
Size
17 kB (17439 bytes)
Hash
84c1f8600a4badd6c807e90e7c42e60c
e1c61a58d84983e5d5a3be10beb10c26c8c1607b
d6f1305973001f8814bcfba04d8ca202a3957b78c7276798c2eb84603540209d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/Login/asset/isotope.min.css HTTP/1.1
Host: jdcu-mobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jdcu-mobile.com/home/Login/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 25 May 2025 09:06:43 GMT
content-type: text/css
content-length: 17439
last-modified: Sat, 29 Apr 2023 11:47:44 GMT
accept-ranges: bytes
x-served-by: jdcu-mobile.com
X-Firefox-Spdy: h2

GET jdcu-mobile.com/home/Login/asset/jquery.min.js.download

172.86.77.133

200 OK

90 kB

URL GET
jdcu-mobile.com/home/Login/asset/jquery.min.js.download
IP
172.86.77.133:443
ASN
#14956 ROUTERHOSTING

Requested by
https://jdcu-mobile.com/home/Login/login.php
Certificate
IssuerLet's Encrypt
Subjectjdcu-mobile.com
Fingerprint8E:0D:05:AE:34:ED:A9:A7:07:FC:9F:9E:7B:57:47:5C:AF:65:4A:58
ValidityTue, 20 May 2025 17:54:11 GMT - Mon, 18 Aug 2025 17:54:10 GMT

File type
JavaScript source, ASCII text, with very long lines (65447)
Size
90 kB (89501 bytes)
Hash
8fb8fee4fcc3cc86ff6c724154c49c42
b82d238d4e31fdf618bae8ac11a6c812c03dd0d4
ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/Login/asset/jquery.min.js.download HTTP/1.1
Host: jdcu-mobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jdcu-mobile.com/home/Login/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 25 May 2025 09:06:43 GMT
content-type: text/javascript
content-length: 89501
last-modified: Sat, 29 Apr 2023 11:39:56 GMT
accept-ranges: bytes
x-served-by: jdcu-mobile.com
X-Firefox-Spdy: h2

GET jdcu-mobile.com/home/Login/asset/nativeHook.min.js.download

172.86.77.133

200 OK

681 B

URL GET
jdcu-mobile.com/home/Login/asset/nativeHook.min.js.download
IP
172.86.77.133:443
ASN
#14956 ROUTERHOSTING

Requested by
https://jdcu-mobile.com/home/Login/login.php
Certificate
IssuerLet's Encrypt
Subjectjdcu-mobile.com
Fingerprint8E:0D:05:AE:34:ED:A9:A7:07:FC:9F:9E:7B:57:47:5C:AF:65:4A:58
ValidityTue, 20 May 2025 17:54:11 GMT - Mon, 18 Aug 2025 17:54:10 GMT

File type
ASCII text, with very long lines (608)
Size
681 B (681 bytes)
Hash
aa6133b78a453428433d82348215f6d0
cc719010a7c6e1b7be8fefbda07101eb07fcb483
5878bf7c94d85b0d2189762bed88288343a9d841ffba78cc72a51603a105509a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/Login/asset/nativeHook.min.js.download HTTP/1.1
Host: jdcu-mobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jdcu-mobile.com/home/Login/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 25 May 2025 09:06:43 GMT
content-type: text/javascript
content-length: 681
last-modified: Sat, 29 Apr 2023 11:39:58 GMT
accept-ranges: bytes
x-served-by: jdcu-mobile.com
X-Firefox-Spdy: h2

GET jdcu-mobile.com/home/Login/asset/showBrowserSupport.min.js.download

172.86.77.133

200 OK

448 B

URL GET
jdcu-mobile.com/home/Login/asset/showBrowserSupport.min.js.download
IP
172.86.77.133:443
ASN
#14956 ROUTERHOSTING

Requested by
https://jdcu-mobile.com/home/Login/login.php
Certificate
IssuerLet's Encrypt
Subjectjdcu-mobile.com
Fingerprint8E:0D:05:AE:34:ED:A9:A7:07:FC:9F:9E:7B:57:47:5C:AF:65:4A:58
ValidityTue, 20 May 2025 17:54:11 GMT - Mon, 18 Aug 2025 17:54:10 GMT

File type
JavaScript source, ASCII text, with very long lines (396)
Size
448 B (448 bytes)
Hash
f49a9e2ef11191c63a7feb69b088c1ad
95cfdd630eb32bb46d2958e771e7f13205799fac
49332bd5120dd4d27040186401f44c6351f0cea5448e3818e02d946b5d2ed2ec

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/Login/asset/showBrowserSupport.min.js.download HTTP/1.1
Host: jdcu-mobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jdcu-mobile.com/home/Login/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 25 May 2025 09:06:43 GMT
content-type: text/javascript
content-length: 448
last-modified: Sat, 29 Apr 2023 11:40:02 GMT
accept-ranges: bytes
x-served-by: jdcu-mobile.com
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

142.250.74.35

200 OK

16 kB

URL GET
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://jdcu-mobile.com/home/Login/login.php
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint58:93:D6:74:22:41:22:FC:10:8C:BD:51:81:F5:29:DE:00:91:9B:FD
ValidityTue, 29 Apr 2025 19:29:18 GMT - Tue, 22 Jul 2025 19:29:17 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://jdcu-mobile.com
DNT: 1
Connection: keep-alive
Referer: https://jdcu-mobile.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 22 May 2025 09:32:24 GMT
expires: Fri, 22 May 2026 09:32:24 GMT
cache-control: public, max-age=31536000
age: 257659
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET jdcu-mobile.com/home/Login/asset/jquery-ui.min.css

172.86.77.133

200 OK

31 kB

URL GET
jdcu-mobile.com/home/Login/asset/jquery-ui.min.css
IP
172.86.77.133:443
ASN
#14956 ROUTERHOSTING

Requested by
https://jdcu-mobile.com/home/Login/login.php
Certificate
IssuerLet's Encrypt
Subjectjdcu-mobile.com
Fingerprint8E:0D:05:AE:34:ED:A9:A7:07:FC:9F:9E:7B:57:47:5C:AF:65:4A:58
ValidityTue, 20 May 2025 17:54:11 GMT - Mon, 18 Aug 2025 17:54:10 GMT

File type
ASCII text, with very long lines (29517)
Size
31 kB (31322 bytes)
Hash
a5572f750a0871beec3e5c771118f593
152d246c50c28633dd803f49e28fe5d7635701e6
75d3513cd72651dab00071d36b00c1546142fa141167f7fc770af9bce061028e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/Login/asset/jquery-ui.min.css HTTP/1.1
Host: jdcu-mobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jdcu-mobile.com/home/Login/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 25 May 2025 09:06:43 GMT
content-type: text/css
content-length: 31322
last-modified: Sat, 29 Apr 2023 11:39:50 GMT
accept-ranges: bytes
x-served-by: jdcu-mobile.com
X-Firefox-Spdy: h2

GET jdcu-mobile.com/home/Login/asset/iris.android.min.css

172.86.77.133

200 OK

100 kB

URL GET
jdcu-mobile.com/home/Login/asset/iris.android.min.css
IP
172.86.77.133:443
ASN
#14956 ROUTERHOSTING

Requested by
https://jdcu-mobile.com/home/Login/login.php
Certificate
IssuerLet's Encrypt
Subjectjdcu-mobile.com
Fingerprint8E:0D:05:AE:34:ED:A9:A7:07:FC:9F:9E:7B:57:47:5C:AF:65:4A:58
ValidityTue, 20 May 2025 17:54:11 GMT - Mon, 18 Aug 2025 17:54:10 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
100 kB (100316 bytes)
Hash
5ec0e797673bae96b38ac4809c58ddf4
778e4654ec2780ff0bc2f7918a04360b3362e637
d1408609c5065c7c0120c8dc3b004b5495a3fec583273053e020da09d99a5948

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/Login/asset/iris.android.min.css HTTP/1.1
Host: jdcu-mobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jdcu-mobile.com/home/Login/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 25 May 2025 09:06:43 GMT
content-type: text/css
content-length: 100316
last-modified: Sat, 29 Apr 2023 11:39:50 GMT
accept-ranges: bytes
x-served-by: jdcu-mobile.com
X-Firefox-Spdy: h2

GET jdcu-mobile.com/home/Login/asset/custom-elements-es5-adapter.js.download

172.86.77.133

200 OK

954 B

URL GET
jdcu-mobile.com/home/Login/asset/custom-elements-es5-adapter.js.download
IP
172.86.77.133:443
ASN
#14956 ROUTERHOSTING

Requested by
https://jdcu-mobile.com/home/Login/login.php
Certificate
IssuerLet's Encrypt
Subjectjdcu-mobile.com
Fingerprint8E:0D:05:AE:34:ED:A9:A7:07:FC:9F:9E:7B:57:47:5C:AF:65:4A:58
ValidityTue, 20 May 2025 17:54:11 GMT - Mon, 18 Aug 2025 17:54:10 GMT

File type
JavaScript source, ASCII text, with very long lines (390)
Size
954 B (954 bytes)
Hash
79106fd9b808b3bbd70d54b934850301
67fb3e5866ca6c833d1ad76d50634b660cfba061
a938b29d41b6db51ad77e0ca4b71689cae58417b993749c4129dc678047ce993

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/Login/asset/custom-elements-es5-adapter.js.download HTTP/1.1
Host: jdcu-mobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jdcu-mobile.com/home/Login/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 25 May 2025 09:06:43 GMT
content-type: text/javascript
content-length: 954
last-modified: Sat, 29 Apr 2023 11:39:56 GMT
accept-ranges: bytes
x-served-by: jdcu-mobile.com
X-Firefox-Spdy: h2

GET jdcu-mobile.com/home/Login/asset/vue-router.min.js.download

172.86.77.133

200 OK

29 kB

URL GET
jdcu-mobile.com/home/Login/asset/vue-router.min.js.download
IP
172.86.77.133:443
ASN
#14956 ROUTERHOSTING

Requested by
https://jdcu-mobile.com/home/Login/login.php
Certificate
IssuerLet's Encrypt
Subjectjdcu-mobile.com
Fingerprint8E:0D:05:AE:34:ED:A9:A7:07:FC:9F:9E:7B:57:47:5C:AF:65:4A:58
ValidityTue, 20 May 2025 17:54:11 GMT - Mon, 18 Aug 2025 17:54:10 GMT

File type
JavaScript source, ASCII text, with very long lines (29066)
Size
29 kB (29206 bytes)
Hash
7869055c4b90df3fe87233fae961df28
7da526ac1d079ac39abb980b06dd111b1e93e3b8
d0f81c81c5abe721e7db434c08a19d4d32322944bcc52840da906fa7912fe532

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/Login/asset/vue-router.min.js.download HTTP/1.1
Host: jdcu-mobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jdcu-mobile.com/home/Login/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 25 May 2025 09:06:43 GMT
content-type: text/javascript
content-length: 29206
last-modified: Sat, 29 Apr 2023 11:40:02 GMT
accept-ranges: bytes
x-served-by: jdcu-mobile.com
X-Firefox-Spdy: h2

GET jdcu-mobile.com/home/Login/asset/base.min.css

172.86.77.133

200 OK

2.2 kB

URL GET
jdcu-mobile.com/home/Login/asset/base.min.css
IP
172.86.77.133:443
ASN
#14956 ROUTERHOSTING

Requested by
https://jdcu-mobile.com/home/Login/login.php
Certificate
IssuerLet's Encrypt
Subjectjdcu-mobile.com
Fingerprint8E:0D:05:AE:34:ED:A9:A7:07:FC:9F:9E:7B:57:47:5C:AF:65:4A:58
ValidityTue, 20 May 2025 17:54:11 GMT - Mon, 18 Aug 2025 17:54:10 GMT

File type
ASCII text, with very long lines (2205)
Size
2.2 kB (2247 bytes)
Hash
4865f8669fe9034f06986bd3eaa1916d
a08bd0342480700f5b66d7913d5a3486a7da908f
f555d3efaa4e368224cc19b0b261b00da4183e8a5247d3858e8ce7e2aa764558

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/Login/asset/base.min.css HTTP/1.1
Host: jdcu-mobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jdcu-mobile.com/home/Login/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 25 May 2025 09:06:43 GMT
content-type: text/css
content-length: 2247
last-modified: Sat, 29 Apr 2023 11:39:50 GMT
accept-ranges: bytes
x-served-by: jdcu-mobile.com
X-Firefox-Spdy: h2

GET jdcu-mobile.com/home/Login/asset/iris.shim.mobile.min.css

172.86.77.133

200 OK

611 B

URL GET
jdcu-mobile.com/home/Login/asset/iris.shim.mobile.min.css
IP
172.86.77.133:443
ASN
#14956 ROUTERHOSTING

Requested by
https://jdcu-mobile.com/home/Login/login.php
Certificate
IssuerLet's Encrypt
Subjectjdcu-mobile.com
Fingerprint8E:0D:05:AE:34:ED:A9:A7:07:FC:9F:9E:7B:57:47:5C:AF:65:4A:58
ValidityTue, 20 May 2025 17:54:11 GMT - Mon, 18 Aug 2025 17:54:10 GMT

File type
ASCII text, with very long lines (557)
Size
611 B (611 bytes)
Hash
2b495c471e337eac5d280f5519c6fc53
285689d6b41833ced6b63a3f82892d2901d4039b
06dee56fb4e2677948bc2f6ce7e20e9900e3c7431843ae3d9c9d975ff03889a7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/Login/asset/iris.shim.mobile.min.css HTTP/1.1
Host: jdcu-mobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jdcu-mobile.com/home/Login/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 25 May 2025 09:06:43 GMT
content-type: text/css
content-length: 611
last-modified: Sat, 29 Apr 2023 11:39:50 GMT
accept-ranges: bytes
x-served-by: jdcu-mobile.com
X-Firefox-Spdy: h2

GET jdcu-mobile.com/home/Login/asset/iris-foundation.min.css

172.86.77.133

200 OK

51 kB

URL GET
jdcu-mobile.com/home/Login/asset/iris-foundation.min.css
IP
172.86.77.133:443
ASN
#14956 ROUTERHOSTING

Requested by
https://jdcu-mobile.com/home/Login/login.php
Certificate
IssuerLet's Encrypt
Subjectjdcu-mobile.com
Fingerprint8E:0D:05:AE:34:ED:A9:A7:07:FC:9F:9E:7B:57:47:5C:AF:65:4A:58
ValidityTue, 20 May 2025 17:54:11 GMT - Mon, 18 Aug 2025 17:54:10 GMT

File type
ASCII text, with very long lines (50964)
Size
51 kB (51310 bytes)
Hash
0160c354e11f9e1f2ffcd720f880dc2e
7c3b5681a9483a0f37110476e04375e7e88d8fcc
037e5f8a4d2ef765d97f6c14e087cab4f8f27a1ac2a6a7584793b1a76a08fb8f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/Login/asset/iris-foundation.min.css HTTP/1.1
Host: jdcu-mobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jdcu-mobile.com/home/Login/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 25 May 2025 09:06:43 GMT
content-type: text/css
content-length: 51310
last-modified: Sat, 29 Apr 2023 11:39:50 GMT
accept-ranges: bytes
x-served-by: jdcu-mobile.com
X-Firefox-Spdy: h2

GET jdcu-mobile.com/home/Login/asset/css

172.86.77.133

200 OK

6.5 kB

URL GET
jdcu-mobile.com/home/Login/asset/css
IP
172.86.77.133:443
ASN
#14956 ROUTERHOSTING

Requested by
https://jdcu-mobile.com/home/Login/login.php
Certificate
IssuerLet's Encrypt
Subjectjdcu-mobile.com
Fingerprint8E:0D:05:AE:34:ED:A9:A7:07:FC:9F:9E:7B:57:47:5C:AF:65:4A:58
ValidityTue, 20 May 2025 17:54:11 GMT - Mon, 18 Aug 2025 17:54:10 GMT

File type
ASCII text
Size
6.5 kB (6509 bytes)
Hash
a61f3f062a8279745cb9f50b9cef9a62
aeb140ad0e45cf0a8fc04b3a9da7db9b0fb5a605
f323fc9e13fd6a7758914ff9eefe58a1828eceaf1fe979659b1117694910c1e4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/Login/asset/css HTTP/1.1
Host: jdcu-mobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jdcu-mobile.com/home/Login/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 25 May 2025 09:06:43 GMT
content-length: 6509
last-modified: Sat, 29 Apr 2023 11:39:52 GMT
accept-ranges: bytes
x-served-by: jdcu-mobile.com
X-Firefox-Spdy: h2

GET jdcu-mobile.com/home/Login/asset/orb-shell.min.js.download

172.86.77.133

200 OK

86 kB

URL GET
jdcu-mobile.com/home/Login/asset/orb-shell.min.js.download
IP
172.86.77.133:443
ASN
#14956 ROUTERHOSTING

Requested by
https://jdcu-mobile.com/home/Login/login.php
Certificate
IssuerLet's Encrypt
Subjectjdcu-mobile.com
Fingerprint8E:0D:05:AE:34:ED:A9:A7:07:FC:9F:9E:7B:57:47:5C:AF:65:4A:58
ValidityTue, 20 May 2025 17:54:11 GMT - Mon, 18 Aug 2025 17:54:10 GMT

File type
JavaScript source, ASCII text, with very long lines (42923)
Size
86 kB (86221 bytes)
Hash
dd4005b3d77647f3487c86ee1aec9770
76bfb07f77da03766d7ac8cfb7720cb580cfc0fe
44a91c2204ed83fa9abda03298409e49eb39071e520a41b27f57a94ea1adcebd

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/Login/asset/orb-shell.min.js.download HTTP/1.1
Host: jdcu-mobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jdcu-mobile.com/home/Login/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 25 May 2025 09:06:43 GMT
content-type: text/javascript
content-length: 86221
last-modified: Sat, 29 Apr 2023 11:39:56 GMT
accept-ranges: bytes
x-served-by: jdcu-mobile.com
X-Firefox-Spdy: h2

GET assets.orb.alkamitech.com/production/themesets/374de16e-f621-49be-8447-c74eeb28c192/themes/theme-builder/jeannedarc/assets/images/background-mobile1.jpg

3.167.2.13

200 OK

1.1 kB

URL GET
assets.orb.alkamitech.com/production/themesets/374de16e-f621-49be-8447-c74eeb28c192/themes/theme-builder/jeannedarc/assets/images/background-mobile1.jpg
IP
3.167.2.13:443
ASN
#0

Requested by
https://jdcu-mobile.com/home/Login/login.php
Certificate
IssuerGlobalSign nv-sa
Subject*.orb.alkamitech.com
Fingerprint60:C4:A8:11:E9:91:91:36:90:38:11:AB:31:BC:20:28:87:4A:2B:32
ValidityThu, 07 Nov 2024 15:57:25 GMT - Tue, 09 Dec 2025 15:57:24 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1x300, components 3
Size
1.1 kB (1064 bytes)
Hash
264c139d8397deb128c3a6a80aa072ca
6516c8dfc353c3e377f3bcb87e607744a64ceb7b
d596d66fb05307f7302e8a550fce9d654240fb9200eda8bae4e5a20dfa943a8e

HTTP Headers

GET /production/themesets/374de16e-f621-49be-8447-c74eeb28c192/themes/theme-builder/jeannedarc/assets/images/background-mobile1.jpg HTTP/1.1
Host: assets.orb.alkamitech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jdcu-mobile.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
content-length: 1064
x-amz-replication-status: COMPLETED
last-modified: Tue, 30 Jul 2024 15:19:31 GMT
x-amz-server-side-encryption: AES256
content-disposition: form-data; name="images/background-mobile1.jpg"; filename="images/background-mobile1.jpg"; filename*=utf-8''images%2Fbackground-mobile1.jpg
x-amz-version-id: xLKRNcMlCONuQMsiFDoyTQ4oMcfGCCIK
accept-ranges: bytes
server: AmazonS3
date: Sun, 25 May 2025 08:22:26 GMT
etag: "264c139d8397deb128c3a6a80aa072ca"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 ac3e1d7135d19671e1860c67a45b3f70.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: CqxId1ABPjF8R3E3BG4OBlaQYLjuj5s_AYRAbkaGCGgPc7NvFgpTZg==
age: 2659
X-Firefox-Spdy: h2

GET jdcu-mobile.com/home/Login/login.php

172.86.77.133

200 OK

152 kB

URL User Request GET
jdcu-mobile.com/home/Login/login.php
IP
172.86.77.133:443
ASN
#14956 ROUTERHOSTING

Certificate
IssuerLet's Encrypt
Subjectjdcu-mobile.com
Fingerprint8E:0D:05:AE:34:ED:A9:A7:07:FC:9F:9E:7B:57:47:5C:AF:65:4A:58
ValidityTue, 20 May 2025 17:54:11 GMT - Mon, 18 Aug 2025 17:54:10 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
152 kB (152016 bytes)
Hash
46147751086a79c7152e0a8d6460d124
46cd53947326a8ee05c4a87edd9c555cf5f64bb7
bf7a3ada6a8870b6e71935a6560cdf374135c86612010e3c0e17ebb330a684ae

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/Login/login.php HTTP/1.1
Host: jdcu-mobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 25 May 2025 09:06:42 GMT
content-type: text/html; charset=UTF-8
x-served-by: jdcu-mobile.com
content-encoding: gzip
X-Firefox-Spdy: h2

GET jdcu-mobile.com/home/Login/asset/5quo9qOC8XRzp01ZQr4oZAbbbb

172.86.77.133

404 Not Found

315 B

URL GET
jdcu-mobile.com/home/Login/asset/5quo9qOC8XRzp01ZQr4oZAbbbb
IP
172.86.77.133:443
ASN
#14956 ROUTERHOSTING

Requested by
https://jdcu-mobile.com/home/Login/login.php
Certificate
IssuerLet's Encrypt
Subjectjdcu-mobile.com
Fingerprint8E:0D:05:AE:34:ED:A9:A7:07:FC:9F:9E:7B:57:47:5C:AF:65:4A:58
ValidityTue, 20 May 2025 17:54:11 GMT - Mon, 18 Aug 2025 17:54:10 GMT

File type
HTML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/Login/asset/5quo9qOC8XRzp01ZQr4oZAbbbb HTTP/1.1
Host: jdcu-mobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jdcu-mobile.com/home/Login/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
server: nginx/1.18.0 (Ubuntu)
date: Sun, 25 May 2025 09:06:43 GMT
content-type: text/html; charset=iso-8859-1
content-encoding: gzip
X-Firefox-Spdy: h2

GET jdcu-mobile.com/home/Login/asset/webcomponents-bundle.js.download

172.86.77.133

200 OK

119 kB

URL GET
jdcu-mobile.com/home/Login/asset/webcomponents-bundle.js.download
IP
172.86.77.133:443
ASN
#14956 ROUTERHOSTING

Requested by
https://jdcu-mobile.com/home/Login/login.php
Certificate
IssuerLet's Encrypt
Subjectjdcu-mobile.com
Fingerprint8E:0D:05:AE:34:ED:A9:A7:07:FC:9F:9E:7B:57:47:5C:AF:65:4A:58
ValidityTue, 20 May 2025 17:54:11 GMT - Mon, 18 Aug 2025 17:54:10 GMT

File type
JavaScript source, ASCII text, with very long lines (1650)
Size
119 kB (119318 bytes)
Hash
cad01e08a27fc04dabbabff04f4b92fb
ac82efa9aaf36038855f1334d822e42842440afd
ef951cb1be55823837950435c81632045a2825bdb0239e8062cbc841573a1e21

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/Login/asset/webcomponents-bundle.js.download HTTP/1.1
Host: jdcu-mobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jdcu-mobile.com/home/Login/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 25 May 2025 09:06:43 GMT
content-type: text/javascript
content-length: 119318
last-modified: Sat, 29 Apr 2023 11:39:56 GMT
accept-ranges: bytes
x-served-by: jdcu-mobile.com
X-Firefox-Spdy: h2

GET jdcu-mobile.com/home/Login/asset/isotope.min.js.download

172.86.77.133

404 Not Found

315 B

URL GET
jdcu-mobile.com/home/Login/asset/isotope.min.js.download
IP
172.86.77.133:443
ASN
#14956 ROUTERHOSTING

Requested by
https://jdcu-mobile.com/home/Login/login.php
Certificate
IssuerLet's Encrypt
Subjectjdcu-mobile.com
Fingerprint8E:0D:05:AE:34:ED:A9:A7:07:FC:9F:9E:7B:57:47:5C:AF:65:4A:58
ValidityTue, 20 May 2025 17:54:11 GMT - Mon, 18 Aug 2025 17:54:10 GMT

File type
HTML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/Login/asset/isotope.min.js.download HTTP/1.1
Host: jdcu-mobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jdcu-mobile.com/home/Login/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
server: nginx/1.18.0 (Ubuntu)
date: Sun, 25 May 2025 09:06:44 GMT
content-type: text/html; charset=iso-8859-1
content-encoding: gzip
X-Firefox-Spdy: h2

GET jdcu-mobile.com/home/Login/asset/favicon.png

172.86.77.133

200 OK

1.6 kB

URL GET
jdcu-mobile.com/home/Login/asset/favicon.png
IP
172.86.77.133:443
ASN
#14956 ROUTERHOSTING

Requested by
https://jdcu-mobile.com/home/Login/login.php
Certificate
IssuerLet's Encrypt
Subjectjdcu-mobile.com
Fingerprint8E:0D:05:AE:34:ED:A9:A7:07:FC:9F:9E:7B:57:47:5C:AF:65:4A:58
ValidityTue, 20 May 2025 17:54:11 GMT - Mon, 18 Aug 2025 17:54:10 GMT

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
Size
1.6 kB (1584 bytes)
Hash
0432ebc2c3a4c6d2a51e5c8f0d9e89f6
887efab54df2f377710dc72ccba15393e6ee1771
bf840cf2f7fbe6dac86d1a4d5cb0f34ec1ac6a0fe69ed53f8fae20de92d18994

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/Login/asset/favicon.png HTTP/1.1
Host: jdcu-mobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jdcu-mobile.com/home/Login/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 25 May 2025 09:06:44 GMT
content-type: image/png
content-length: 1584
last-modified: Sat, 29 Apr 2023 16:57:38 GMT
accept-ranges: bytes
x-served-by: jdcu-mobile.com
X-Firefox-Spdy: h2

GET jdcu-mobile.com/home/Login/asset/idle-timeout-ts.min.js.download

172.86.77.133

404 Not Found

315 B

URL GET
jdcu-mobile.com/home/Login/asset/idle-timeout-ts.min.js.download
IP
172.86.77.133:443
ASN
#14956 ROUTERHOSTING

Requested by
https://jdcu-mobile.com/home/Login/login.php
Certificate
IssuerLet's Encrypt
Subjectjdcu-mobile.com
Fingerprint8E:0D:05:AE:34:ED:A9:A7:07:FC:9F:9E:7B:57:47:5C:AF:65:4A:58
ValidityTue, 20 May 2025 17:54:11 GMT - Mon, 18 Aug 2025 17:54:10 GMT

File type
HTML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/Login/asset/idle-timeout-ts.min.js.download HTTP/1.1
Host: jdcu-mobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jdcu-mobile.com/home/Login/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
server: nginx/1.18.0 (Ubuntu)
date: Sun, 25 May 2025 09:06:43 GMT
content-type: text/html; charset=iso-8859-1
content-encoding: gzip
X-Firefox-Spdy: h2

GET jdcu-mobile.com/home/Login/asset/utils.min.js.download

172.86.77.133

200 OK

825 B

URL GET
jdcu-mobile.com/home/Login/asset/utils.min.js.download
IP
172.86.77.133:443
ASN
#14956 ROUTERHOSTING

Requested by
https://jdcu-mobile.com/home/Login/login.php
Certificate
IssuerLet's Encrypt
Subjectjdcu-mobile.com
Fingerprint8E:0D:05:AE:34:ED:A9:A7:07:FC:9F:9E:7B:57:47:5C:AF:65:4A:58
ValidityTue, 20 May 2025 17:54:11 GMT - Mon, 18 Aug 2025 17:54:10 GMT

File type
JavaScript source, ASCII text, with very long lines (757)
Size
825 B (825 bytes)
Hash
1b53b8401be2213bf819d77dd10a707b
0db8a3f94383ecef7e67f5e0ceaab269cd1d210a
79d135e2c59f6ef43bccff550ddefa1af09e8c60c8021f90c2c449be5739328f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/Login/asset/utils.min.js.download HTTP/1.1
Host: jdcu-mobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jdcu-mobile.com/home/Login/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 25 May 2025 09:06:43 GMT
content-type: text/javascript
content-length: 825
last-modified: Sat, 29 Apr 2023 11:40:00 GMT
accept-ranges: bytes
x-served-by: jdcu-mobile.com
X-Firefox-Spdy: h2

GET jdcu-mobile.com/home/Login/asset/idle-modal-ts.min.js.download

172.86.77.133

404 Not Found

315 B

URL GET
jdcu-mobile.com/home/Login/asset/idle-modal-ts.min.js.download
IP
172.86.77.133:443
ASN
#14956 ROUTERHOSTING

Requested by
https://jdcu-mobile.com/home/Login/login.php
Certificate
IssuerLet's Encrypt
Subjectjdcu-mobile.com
Fingerprint8E:0D:05:AE:34:ED:A9:A7:07:FC:9F:9E:7B:57:47:5C:AF:65:4A:58
ValidityTue, 20 May 2025 17:54:11 GMT - Mon, 18 Aug 2025 17:54:10 GMT

File type
HTML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/Login/asset/idle-modal-ts.min.js.download HTTP/1.1
Host: jdcu-mobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jdcu-mobile.com/home/Login/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
server: nginx/1.18.0 (Ubuntu)
date: Sun, 25 May 2025 09:06:44 GMT
content-type: text/html; charset=iso-8859-1
content-encoding: gzip
X-Firefox-Spdy: h2

GET jdcu-mobile.com/home/Login/asset/password-togglefication.min.js.download

172.86.77.133

200 OK

2.6 kB

URL GET
jdcu-mobile.com/home/Login/asset/password-togglefication.min.js.download
IP
172.86.77.133:443
ASN
#14956 ROUTERHOSTING

Requested by
https://jdcu-mobile.com/home/Login/login.php
Certificate
IssuerLet's Encrypt
Subjectjdcu-mobile.com
Fingerprint8E:0D:05:AE:34:ED:A9:A7:07:FC:9F:9E:7B:57:47:5C:AF:65:4A:58
ValidityTue, 20 May 2025 17:54:11 GMT - Mon, 18 Aug 2025 17:54:10 GMT

File type
JavaScript source, ASCII text, with very long lines (2505)
Size
2.6 kB (2591 bytes)
Hash
5bd5e1d2d62c6bbefc0849c28b2f85b3
72bde91377f748d4ec76ad4cc4f90b2a460be13e
1d30a7787a9c01b0ff619834de3f9f200fce2a43ac99a6efe56fb1f3161a657c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/Login/asset/password-togglefication.min.js.download HTTP/1.1
Host: jdcu-mobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jdcu-mobile.com/home/Login/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 25 May 2025 09:06:43 GMT
content-type: text/javascript
content-length: 2591
last-modified: Sat, 29 Apr 2023 11:40:00 GMT
accept-ranges: bytes
x-served-by: jdcu-mobile.com
X-Firefox-Spdy: h2

GET jdcu-mobile.com/home/Login/asset/aec7706684

172.86.77.133

404 Not Found

315 B

URL GET
jdcu-mobile.com/home/Login/asset/aec7706684
IP
172.86.77.133:443
ASN
#14956 ROUTERHOSTING

Requested by
https://jdcu-mobile.com/home/Login/login.php
Certificate
IssuerLet's Encrypt
Subjectjdcu-mobile.com
Fingerprint8E:0D:05:AE:34:ED:A9:A7:07:FC:9F:9E:7B:57:47:5C:AF:65:4A:58
ValidityTue, 20 May 2025 17:54:11 GMT - Mon, 18 Aug 2025 17:54:10 GMT

File type
HTML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/Login/asset/aec7706684 HTTP/1.1
Host: jdcu-mobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jdcu-mobile.com/home/Login/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
server: nginx/1.18.0 (Ubuntu)
date: Sun, 25 May 2025 09:06:43 GMT
content-type: text/html; charset=iso-8859-1
content-encoding: gzip
X-Firefox-Spdy: h2

GET jdcu-mobile.com/home/Login/asset/iris-foundation.min(1).css

172.86.77.133

200 OK

51 kB

URL GET
jdcu-mobile.com/home/Login/asset/iris-foundation.min(1).css
IP
172.86.77.133:443
ASN
#14956 ROUTERHOSTING

Requested by
https://jdcu-mobile.com/home/Login/login.php
Certificate
IssuerLet's Encrypt
Subjectjdcu-mobile.com
Fingerprint8E:0D:05:AE:34:ED:A9:A7:07:FC:9F:9E:7B:57:47:5C:AF:65:4A:58
ValidityTue, 20 May 2025 17:54:11 GMT - Mon, 18 Aug 2025 17:54:10 GMT

File type
ASCII text, with very long lines (50964)
Size
51 kB (51310 bytes)
Hash
0160c354e11f9e1f2ffcd720f880dc2e
7c3b5681a9483a0f37110476e04375e7e88d8fcc
037e5f8a4d2ef765d97f6c14e087cab4f8f27a1ac2a6a7584793b1a76a08fb8f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/Login/asset/iris-foundation.min(1).css HTTP/1.1
Host: jdcu-mobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jdcu-mobile.com/home/Login/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 25 May 2025 09:06:43 GMT
content-type: text/css
content-length: 51310
last-modified: Sat, 29 Apr 2023 11:39:54 GMT
accept-ranges: bytes
x-served-by: jdcu-mobile.com
X-Firefox-Spdy: h2

GET jdcu-mobile.com/home/Login/asset/localization.min.js.download

172.86.77.133

200 OK

774 B

URL GET
jdcu-mobile.com/home/Login/asset/localization.min.js.download
IP
172.86.77.133:443
ASN
#14956 ROUTERHOSTING

Requested by
https://jdcu-mobile.com/home/Login/login.php
Certificate
IssuerLet's Encrypt
Subjectjdcu-mobile.com
Fingerprint8E:0D:05:AE:34:ED:A9:A7:07:FC:9F:9E:7B:57:47:5C:AF:65:4A:58
ValidityTue, 20 May 2025 17:54:11 GMT - Mon, 18 Aug 2025 17:54:10 GMT

File type
JavaScript source, ASCII text, with very long lines (728)
Size
774 B (774 bytes)
Hash
3ce858c9820460b379cfb58c11824e8f
be691a71c887f05b56782aacee225bd08a2afcb8
e6d340a28f4728d6fe59f7e397528486afea52f4c9346b781803793e9bfea154

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/Login/asset/localization.min.js.download HTTP/1.1
Host: jdcu-mobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jdcu-mobile.com/home/Login/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 25 May 2025 09:06:43 GMT
content-type: text/javascript
content-length: 774
last-modified: Sat, 29 Apr 2023 11:39:54 GMT
accept-ranges: bytes
x-served-by: jdcu-mobile.com
X-Firefox-Spdy: h2

GET jdcu-mobile.com/home/Login/asset/jquery.mmenu.min.js.download

172.86.77.133

200 OK

13 kB

URL GET
jdcu-mobile.com/home/Login/asset/jquery.mmenu.min.js.download
IP
172.86.77.133:443
ASN
#14956 ROUTERHOSTING

Requested by
https://jdcu-mobile.com/home/Login/login.php
Certificate
IssuerLet's Encrypt
Subjectjdcu-mobile.com
Fingerprint8E:0D:05:AE:34:ED:A9:A7:07:FC:9F:9E:7B:57:47:5C:AF:65:4A:58
ValidityTue, 20 May 2025 17:54:11 GMT - Mon, 18 Aug 2025 17:54:10 GMT

File type
JavaScript source, ASCII text, with very long lines (12572)
Size
13 kB (12647 bytes)
Hash
fa5cb84e94dffe98bc6880ceb6596930
e09c746cbd227d7f58e06246db3cafc0dac0f535
fd4beed87c22b3dbeb80e6c4674feb0c2e5fc0f9f97012791be351198b5f3688

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/Login/asset/jquery.mmenu.min.js.download HTTP/1.1
Host: jdcu-mobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jdcu-mobile.com/home/Login/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 25 May 2025 09:06:43 GMT
content-type: text/javascript
content-length: 12647
last-modified: Sat, 29 Apr 2023 11:39:58 GMT
accept-ranges: bytes
x-served-by: jdcu-mobile.com
X-Firefox-Spdy: h2

GET assets.orb.alkamitech.com/production/themesets/374de16e-f621-49be-8447-c74eeb28c192/themes/theme-builder/jeannedarc/assets/images/brand-logo-tall.png

3.167.2.13

200 OK

94 kB

URL GET
assets.orb.alkamitech.com/production/themesets/374de16e-f621-49be-8447-c74eeb28c192/themes/theme-builder/jeannedarc/assets/images/brand-logo-tall.png
IP
3.167.2.13:443
ASN
#0

Requested by
https://jdcu-mobile.com/home/Login/login.php
Certificate
IssuerGlobalSign nv-sa
Subject*.orb.alkamitech.com
Fingerprint60:C4:A8:11:E9:91:91:36:90:38:11:AB:31:BC:20:28:87:4A:2B:32
ValidityThu, 07 Nov 2024 15:57:25 GMT - Tue, 09 Dec 2025 15:57:24 GMT

File type
PNG image data, 400 x 400, 8-bit/color RGBA, non-interlaced
Size
94 kB (93737 bytes)
Hash
743dc2e0c9da87856b2def35c16d137c
77c40162e3f45db5f7f66514df1713ce69bafd96
ddd9de1b83d9b725bbd68b7ce32d3dbfc6dc14776f5e6e933e293d3db1c8a6f4

HTTP Headers

GET /production/themesets/374de16e-f621-49be-8447-c74eeb28c192/themes/theme-builder/jeannedarc/assets/images/brand-logo-tall.png HTTP/1.1
Host: assets.orb.alkamitech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jdcu-mobile.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
content-length: 93737
x-amz-replication-status: COMPLETED
last-modified: Tue, 30 Jul 2024 15:19:31 GMT
x-amz-server-side-encryption: AES256
content-disposition: form-data; name="images/brand-logo-tall.png"; filename="images/brand-logo-tall.png"; filename*=utf-8''images%2Fbrand-logo-tall.png
x-amz-version-id: Vcs3sJwAKLoEZ3VTQcwR0zuvHQM_aiz3
accept-ranges: bytes
server: AmazonS3
date: Sun, 25 May 2025 08:22:27 GMT
cache-control: max-age=3600
etag: "743dc2e0c9da87856b2def35c16d137c"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 ac3e1d7135d19671e1860c67a45b3f70.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: cAs8EiTXIqTW_fX8mqvgq1H9Sdua42q0iDqC0MdQSTlHzRe6TqVx-w==
age: 2658
X-Firefox-Spdy: h2

GET jdcu-mobile.com/home/Login/asset/idle-timeout-ts.min.js.download

172.86.77.133

404 Not Found

315 B

URL GET
jdcu-mobile.com/home/Login/asset/idle-timeout-ts.min.js.download
IP
172.86.77.133:443
ASN
#14956 ROUTERHOSTING

Requested by
https://jdcu-mobile.com/home/Login/login.php
Certificate
IssuerLet's Encrypt
Subjectjdcu-mobile.com
Fingerprint8E:0D:05:AE:34:ED:A9:A7:07:FC:9F:9E:7B:57:47:5C:AF:65:4A:58
ValidityTue, 20 May 2025 17:54:11 GMT - Mon, 18 Aug 2025 17:54:10 GMT

File type
HTML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/Login/asset/idle-timeout-ts.min.js.download HTTP/1.1
Host: jdcu-mobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jdcu-mobile.com/home/Login/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
server: nginx/1.18.0 (Ubuntu)
date: Sun, 25 May 2025 09:06:43 GMT
content-type: text/html; charset=iso-8859-1
content-encoding: gzip
X-Firefox-Spdy: h2

GET jdcu-mobile.com/home/Login/asset/iris-components.min.css

172.86.77.133

200 OK

364 kB

URL GET
jdcu-mobile.com/home/Login/asset/iris-components.min.css
IP
172.86.77.133:443
ASN
#14956 ROUTERHOSTING

Requested by
https://jdcu-mobile.com/home/Login/login.php
Certificate
IssuerLet's Encrypt
Subjectjdcu-mobile.com
Fingerprint8E:0D:05:AE:34:ED:A9:A7:07:FC:9F:9E:7B:57:47:5C:AF:65:4A:58
ValidityTue, 20 May 2025 17:54:11 GMT - Mon, 18 Aug 2025 17:54:10 GMT

File type
ASCII text, with very long lines (65310)
Size
364 kB (363761 bytes)
Hash
f395807f2c2d9b8f3abbe01762a1c7b9
c3ef70bee05886102e851e7399912d37cf08883d
735401b005d7e75701833cfc9bc019f39df978f69442d18172b864df8204bbd2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/Login/asset/iris-components.min.css HTTP/1.1
Host: jdcu-mobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jdcu-mobile.com/home/Login/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 25 May 2025 09:06:43 GMT
content-type: text/css
content-length: 363761
last-modified: Sat, 29 Apr 2023 11:39:54 GMT
accept-ranges: bytes
x-served-by: jdcu-mobile.com
X-Firefox-Spdy: h2

GET jdcu-mobile.com/home/Login/asset/iris.min.js.download

172.86.77.133

200 OK

154 kB

URL GET
jdcu-mobile.com/home/Login/asset/iris.min.js.download
IP
172.86.77.133:443
ASN
#14956 ROUTERHOSTING

Requested by
https://jdcu-mobile.com/home/Login/login.php
Certificate
IssuerLet's Encrypt
Subjectjdcu-mobile.com
Fingerprint8E:0D:05:AE:34:ED:A9:A7:07:FC:9F:9E:7B:57:47:5C:AF:65:4A:58
ValidityTue, 20 May 2025 17:54:11 GMT - Mon, 18 Aug 2025 17:54:10 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
154 kB (153896 bytes)
Hash
21f57afd10f6dedcecf51b7cbc689776
2cd530c6c41c7d31218b0c32c65d5de44d30955e
4da39ccfb2afbb29d7295c9128af9cbdef01f402822e5fc5685d79d59999d242

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/Login/asset/iris.min.js.download HTTP/1.1
Host: jdcu-mobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jdcu-mobile.com/home/Login/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 25 May 2025 09:06:43 GMT
content-type: text/javascript
content-length: 153896
last-modified: Sat, 29 Apr 2023 11:39:56 GMT
accept-ranges: bytes
x-served-by: jdcu-mobile.com
X-Firefox-Spdy: h2

GET jdcu-mobile.com/home/Login/asset/jquery-validate.min.js.download

172.86.77.133

200 OK

24 kB

URL GET
jdcu-mobile.com/home/Login/asset/jquery-validate.min.js.download
IP
172.86.77.133:443
ASN
#14956 ROUTERHOSTING

Requested by
https://jdcu-mobile.com/home/Login/login.php
Certificate
IssuerLet's Encrypt
Subjectjdcu-mobile.com
Fingerprint8E:0D:05:AE:34:ED:A9:A7:07:FC:9F:9E:7B:57:47:5C:AF:65:4A:58
ValidityTue, 20 May 2025 17:54:11 GMT - Mon, 18 Aug 2025 17:54:10 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (24291)
Size
24 kB (24430 bytes)
Hash
f7b447efb331a45dde576a832490fc6d
79498c8c7214beeb61d7c151c9ef819ebc1c547c
5c3aa33f77a00bc307a98564ffd04f9914d4c467a3b30fe47b491adce7d84670

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/Login/asset/jquery-validate.min.js.download HTTP/1.1
Host: jdcu-mobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jdcu-mobile.com/home/Login/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 25 May 2025 09:06:43 GMT
content-type: text/javascript
content-length: 24430
last-modified: Sat, 29 Apr 2023 11:39:58 GMT
accept-ranges: bytes
x-served-by: jdcu-mobile.com
X-Firefox-Spdy: h2

GET jdcu-mobile.com/home/Login/asset/vue.runtime.min.js.download

172.86.77.133

200 OK

75 kB

URL GET
jdcu-mobile.com/home/Login/asset/vue.runtime.min.js.download
IP
172.86.77.133:443
ASN
#14956 ROUTERHOSTING

Requested by
https://jdcu-mobile.com/home/Login/login.php
Certificate
IssuerLet's Encrypt
Subjectjdcu-mobile.com
Fingerprint8E:0D:05:AE:34:ED:A9:A7:07:FC:9F:9E:7B:57:47:5C:AF:65:4A:58
ValidityTue, 20 May 2025 17:54:11 GMT - Mon, 18 Aug 2025 17:54:10 GMT

File type
JavaScript source, ASCII text, with very long lines (65364)
Size
75 kB (75407 bytes)
Hash
0477e9dddd1ab4dc795473c41fd13bb6
8ea9b4ac8c96cdbee42b6c7d96e1344045e3f2d2
ea01f2227c388aa7d5ee81aae2d1f9abe0edd3ae180d1570fb7a0f8d69e0bf28

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/Login/asset/vue.runtime.min.js.download HTTP/1.1
Host: jdcu-mobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jdcu-mobile.com/home/Login/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 25 May 2025 09:06:43 GMT
content-type: text/javascript
content-length: 75407
last-modified: Sat, 29 Apr 2023 11:40:00 GMT
accept-ranges: bytes
x-served-by: jdcu-mobile.com
X-Firefox-Spdy: h2

GET jdcu-mobile.com/home/Login/asset/machineauthentication.bundle.min.js.download

172.86.77.133

200 OK

56 kB

URL GET
jdcu-mobile.com/home/Login/asset/machineauthentication.bundle.min.js.download
IP
172.86.77.133:443
ASN
#14956 ROUTERHOSTING

Requested by
https://jdcu-mobile.com/home/Login/login.php
Certificate
IssuerLet's Encrypt
Subjectjdcu-mobile.com
Fingerprint8E:0D:05:AE:34:ED:A9:A7:07:FC:9F:9E:7B:57:47:5C:AF:65:4A:58
ValidityTue, 20 May 2025 17:54:11 GMT - Mon, 18 Aug 2025 17:54:10 GMT

File type
JavaScript source, ASCII text, with very long lines (6579), with CRLF, LF line terminators
Size
56 kB (56417 bytes)
Hash
402fb8b1664936dd26675bfa1c1d66b3
507efa980e6ba8da719d2673e382e6cc4fc6bd75
ef9675a8b388f4103a542922a4acbc7666c74c89fb634b719f520e6695333b3f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/Login/asset/machineauthentication.bundle.min.js.download HTTP/1.1
Host: jdcu-mobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jdcu-mobile.com/home/Login/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 25 May 2025 09:06:43 GMT
content-type: text/javascript
content-length: 56417
last-modified: Sat, 29 Apr 2023 11:40:02 GMT
accept-ranges: bytes
x-served-by: jdcu-mobile.com
X-Firefox-Spdy: h2

GET jdcu-mobile.com/home/Login/asset/login.min.js.download

172.86.77.133

200 OK

332 B

URL GET
jdcu-mobile.com/home/Login/asset/login.min.js.download
IP
172.86.77.133:443
ASN
#14956 ROUTERHOSTING

Requested by
https://jdcu-mobile.com/home/Login/login.php
Certificate
IssuerLet's Encrypt
Subjectjdcu-mobile.com
Fingerprint8E:0D:05:AE:34:ED:A9:A7:07:FC:9F:9E:7B:57:47:5C:AF:65:4A:58
ValidityTue, 20 May 2025 17:54:11 GMT - Mon, 18 Aug 2025 17:54:10 GMT

File type
JavaScript source, ASCII text
Size
332 B (332 bytes)
Hash
103b41c9ce3e08f8067ff20f53e3e9f3
3368f175d1af3ace2774ee44efbf3b51ba0b2384
15321edc5f2294bf588a2e217dc5ab6f5239f605863d38dc7576110c52635dae

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/Login/asset/login.min.js.download HTTP/1.1
Host: jdcu-mobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jdcu-mobile.com/home/Login/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 25 May 2025 09:06:43 GMT
content-type: text/javascript
content-length: 332
last-modified: Sat, 29 Apr 2023 11:40:02 GMT
accept-ranges: bytes
x-served-by: jdcu-mobile.com
X-Firefox-Spdy: h2

GET jdcu-mobile.com/home/Login/asset/vuex.min.js.download

172.86.77.133

200 OK

12 kB

URL GET
jdcu-mobile.com/home/Login/asset/vuex.min.js.download
IP
172.86.77.133:443
ASN
#14956 ROUTERHOSTING

Requested by
https://jdcu-mobile.com/home/Login/login.php
Certificate
IssuerLet's Encrypt
Subjectjdcu-mobile.com
Fingerprint8E:0D:05:AE:34:ED:A9:A7:07:FC:9F:9E:7B:57:47:5C:AF:65:4A:58
ValidityTue, 20 May 2025 17:54:11 GMT - Mon, 18 Aug 2025 17:54:10 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (12467)
Size
12 kB (12536 bytes)
Hash
9190541d2b0b2827d8f9a2b436ffdc3f
77835f215674523c7c5a9c87e08091df61bfa965
3efd92158a4c24f9995773fafede2577e1646f738152c03b807678b610583f3c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/Login/asset/vuex.min.js.download HTTP/1.1
Host: jdcu-mobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jdcu-mobile.com/home/Login/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 25 May 2025 09:06:43 GMT
content-type: text/javascript
content-length: 12536
last-modified: Sat, 29 Apr 2023 11:40:02 GMT
accept-ranges: bytes
x-served-by: jdcu-mobile.com
X-Firefox-Spdy: h2

GET jdcu-mobile.com/home/Login/asset/browser-support-ts.js.download

172.86.77.133

200 OK

25 kB

URL GET
jdcu-mobile.com/home/Login/asset/browser-support-ts.js.download
IP
172.86.77.133:443
ASN
#14956 ROUTERHOSTING

Requested by
https://jdcu-mobile.com/home/Login/login.php
Certificate
IssuerLet's Encrypt
Subjectjdcu-mobile.com
Fingerprint8E:0D:05:AE:34:ED:A9:A7:07:FC:9F:9E:7B:57:47:5C:AF:65:4A:58
ValidityTue, 20 May 2025 17:54:11 GMT - Mon, 18 Aug 2025 17:54:10 GMT

File type
JavaScript source, ASCII text, with CRLF, LF line terminators
Size
25 kB (25332 bytes)
Hash
f9180fb33da3004b24163c2d39d7a789
3db37e2dca13575949b52a7852915fd1270514c9
22e87ea1aa7adb835af129ff45720b414721e7c4f5852971b9f65c9a4745b831

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/Login/asset/browser-support-ts.js.download HTTP/1.1
Host: jdcu-mobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jdcu-mobile.com/home/Login/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 25 May 2025 09:06:43 GMT
content-type: text/javascript
content-length: 25332
last-modified: Sat, 29 Apr 2023 11:40:02 GMT
accept-ranges: bytes
x-served-by: jdcu-mobile.com
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

142.250.74.35

200 OK

16 kB

URL GET
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://jdcu-mobile.com/home/Login/login.php
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint58:93:D6:74:22:41:22:FC:10:8C:BD:51:81:F5:29:DE:00:91:9B:FD
ValidityTue, 29 Apr 2025 19:29:18 GMT - Tue, 22 Jul 2025 19:29:17 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://jdcu-mobile.com
DNT: 1
Connection: keep-alive
Referer: https://jdcu-mobile.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 22 May 2025 09:38:30 GMT
expires: Fri, 22 May 2026 09:38:30 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 257293
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET jdcu-mobile.com/home/Login/asset/font-icons.css

172.86.77.133

200 OK

118 kB

URL GET
jdcu-mobile.com/home/Login/asset/font-icons.css
IP
172.86.77.133:443
ASN
#14956 ROUTERHOSTING

Requested by
https://jdcu-mobile.com/home/Login/login.php
Certificate
IssuerLet's Encrypt
Subjectjdcu-mobile.com
Fingerprint8E:0D:05:AE:34:ED:A9:A7:07:FC:9F:9E:7B:57:47:5C:AF:65:4A:58
ValidityTue, 20 May 2025 17:54:11 GMT - Mon, 18 Aug 2025 17:54:10 GMT

File type
ASCII text
Size
118 kB (117683 bytes)
Hash
3a47e0fc1542994310b50a377aac4809
cdb292c63cce2d140a7746f26d974de263b3776d
e0c12ebd9dd26acdef7f9cc7d76de6ae322e659291bcce766f6608945499f1d0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/Login/asset/font-icons.css HTTP/1.1
Host: jdcu-mobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jdcu-mobile.com/home/Login/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 25 May 2025 09:06:43 GMT
content-type: text/css
content-length: 117683
last-modified: Sat, 29 Apr 2023 11:39:52 GMT
accept-ranges: bytes
x-served-by: jdcu-mobile.com
X-Firefox-Spdy: h2

GET jdcu-mobile.com/home/Login/asset/iris-components.shim.mobile.min.css

172.86.77.133

200 OK

910 B

URL GET
jdcu-mobile.com/home/Login/asset/iris-components.shim.mobile.min.css
IP
172.86.77.133:443
ASN
#14956 ROUTERHOSTING

Requested by
https://jdcu-mobile.com/home/Login/login.php
Certificate
IssuerLet's Encrypt
Subjectjdcu-mobile.com
Fingerprint8E:0D:05:AE:34:ED:A9:A7:07:FC:9F:9E:7B:57:47:5C:AF:65:4A:58
ValidityTue, 20 May 2025 17:54:11 GMT - Mon, 18 Aug 2025 17:54:10 GMT

File type
ASCII text, with very long lines (683)
Size
910 B (910 bytes)
Hash
d24e2ebf6975329280b7625df786edc4
68266c7dd1e678d7cc8ba0fcd6a25429a543b6f5
344665f5bc46e5d8ae9e8f33f98b1987b1f4dc91b6b852073f6d8b45b747fcab

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/Login/asset/iris-components.shim.mobile.min.css HTTP/1.1
Host: jdcu-mobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jdcu-mobile.com/home/Login/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 25 May 2025 09:06:43 GMT
content-type: text/css
content-length: 910
last-modified: Sat, 29 Apr 2023 11:39:54 GMT
accept-ranges: bytes
x-served-by: jdcu-mobile.com
X-Firefox-Spdy: h2

GET jdcu-mobile.com/home/Login/asset/jquery.extensions.min.js.download

172.86.77.133

200 OK

237 B

URL GET
jdcu-mobile.com/home/Login/asset/jquery.extensions.min.js.download
IP
172.86.77.133:443
ASN
#14956 ROUTERHOSTING

Requested by
https://jdcu-mobile.com/home/Login/login.php
Certificate
IssuerLet's Encrypt
Subjectjdcu-mobile.com
Fingerprint8E:0D:05:AE:34:ED:A9:A7:07:FC:9F:9E:7B:57:47:5C:AF:65:4A:58
ValidityTue, 20 May 2025 17:54:11 GMT - Mon, 18 Aug 2025 17:54:10 GMT

File type
JavaScript source, ASCII text
Size
237 B (237 bytes)
Hash
b04764de549c98c0a908807e310249a2
8f2cedfdf4b79044209afeaaa9a505a22cd6ebe8
c578537e206905615dee3c417746a312d9c137a213b661a834d2675673b416ca

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/Login/asset/jquery.extensions.min.js.download HTTP/1.1
Host: jdcu-mobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jdcu-mobile.com/home/Login/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 25 May 2025 09:06:43 GMT
content-type: text/javascript
content-length: 237
last-modified: Sat, 29 Apr 2023 11:40:00 GMT
accept-ranges: bytes
x-served-by: jdcu-mobile.com
X-Firefox-Spdy: h2

GET jdcu-mobile.com/home/Login/asset/jquery-helpers.min.js.download

172.86.77.133

200 OK

1.3 kB

URL GET
jdcu-mobile.com/home/Login/asset/jquery-helpers.min.js.download
IP
172.86.77.133:443
ASN
#14956 ROUTERHOSTING

Requested by
https://jdcu-mobile.com/home/Login/login.php
Certificate
IssuerLet's Encrypt
Subjectjdcu-mobile.com
Fingerprint8E:0D:05:AE:34:ED:A9:A7:07:FC:9F:9E:7B:57:47:5C:AF:65:4A:58
ValidityTue, 20 May 2025 17:54:11 GMT - Mon, 18 Aug 2025 17:54:10 GMT

File type
JavaScript source, ASCII text, with very long lines (1227)
Size
1.3 kB (1304 bytes)
Hash
6fdce59e4f0128dbea780db2ea55ac14
128e4527d59156a1723d487bc2eb836f44203f65
c6c3c9ab854b636eaec68c2d772cf2fafdb1e19216133e87cfe8d94a5aa903e1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/Login/asset/jquery-helpers.min.js.download HTTP/1.1
Host: jdcu-mobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jdcu-mobile.com/home/Login/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 25 May 2025 09:06:43 GMT
content-type: text/javascript
content-length: 1304
last-modified: Sat, 29 Apr 2023 11:40:00 GMT
accept-ranges: bytes
x-served-by: jdcu-mobile.com
X-Firefox-Spdy: h2

GET jdcu-mobile.com/home/Login/asset/isotope.min.js.download

172.86.77.133

404 Not Found

315 B

URL GET
jdcu-mobile.com/home/Login/asset/isotope.min.js.download
IP
172.86.77.133:443
ASN
#14956 ROUTERHOSTING

Requested by
https://jdcu-mobile.com/home/Login/login.php
Certificate
IssuerLet's Encrypt
Subjectjdcu-mobile.com
Fingerprint8E:0D:05:AE:34:ED:A9:A7:07:FC:9F:9E:7B:57:47:5C:AF:65:4A:58
ValidityTue, 20 May 2025 17:54:11 GMT - Mon, 18 Aug 2025 17:54:10 GMT

File type
HTML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/Login/asset/isotope.min.js.download HTTP/1.1
Host: jdcu-mobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jdcu-mobile.com/home/Login/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
server: nginx/1.18.0 (Ubuntu)
date: Sun, 25 May 2025 09:06:43 GMT
content-type: text/html; charset=iso-8859-1
content-encoding: gzip
X-Firefox-Spdy: h2

GET jdcu-mobile.com/home/Login/asset/polyfill.min.js.download

172.86.77.133

200 OK

39 kB

URL GET
jdcu-mobile.com/home/Login/asset/polyfill.min.js.download
IP
172.86.77.133:443
ASN
#14956 ROUTERHOSTING

Requested by
https://jdcu-mobile.com/home/Login/login.php
Certificate
IssuerLet's Encrypt
Subjectjdcu-mobile.com
Fingerprint8E:0D:05:AE:34:ED:A9:A7:07:FC:9F:9E:7B:57:47:5C:AF:65:4A:58
ValidityTue, 20 May 2025 17:54:11 GMT - Mon, 18 Aug 2025 17:54:10 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (12942), with LF, NEL line terminators
Size
39 kB (38701 bytes)
Hash
c4fd95e45632962aca254f8ff19642cf
dc2ba87eb2eac03dc0c0701aa8486c0b3b150ecb
48e1664fdab52d24e0828cf0b90db2fe7af235947377d1dd751299c2d172f914

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/Login/asset/polyfill.min.js.download HTTP/1.1
Host: jdcu-mobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jdcu-mobile.com/home/Login/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 25 May 2025 09:06:43 GMT
content-type: text/javascript
content-length: 38701
last-modified: Sat, 29 Apr 2023 11:39:56 GMT
accept-ranges: bytes
x-served-by: jdcu-mobile.com
X-Firefox-Spdy: h2

GET jdcu-mobile.com/home/Login/asset/popper.min.js.download

172.86.77.133

200 OK

21 kB

URL GET
jdcu-mobile.com/home/Login/asset/popper.min.js.download
IP
172.86.77.133:443
ASN
#14956 ROUTERHOSTING

Requested by
https://jdcu-mobile.com/home/Login/login.php
Certificate
IssuerLet's Encrypt
Subjectjdcu-mobile.com
Fingerprint8E:0D:05:AE:34:ED:A9:A7:07:FC:9F:9E:7B:57:47:5C:AF:65:4A:58
ValidityTue, 20 May 2025 17:54:11 GMT - Mon, 18 Aug 2025 17:54:10 GMT

File type
JavaScript source, ASCII text, with very long lines (21060)
Size
21 kB (21233 bytes)
Hash
1022eaf388cc780bcfeb6456157adb7d
313789ca0e31b654784dbba8b0f83f364f8683b4
fe28dc38bc057f6eb11180235bbe458b3295a39b674d889075d3d9a0b5071d9f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/Login/asset/popper.min.js.download HTTP/1.1
Host: jdcu-mobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jdcu-mobile.com/home/Login/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 25 May 2025 09:06:43 GMT
content-type: text/javascript
content-length: 21233
last-modified: Sat, 29 Apr 2023 11:39:56 GMT
accept-ranges: bytes
x-served-by: jdcu-mobile.com
X-Firefox-Spdy: h2

GET jdcu-mobile.com/home/Login/asset/jquery-ui.min.js.download

172.86.77.133

200 OK

255 kB

URL GET
jdcu-mobile.com/home/Login/asset/jquery-ui.min.js.download
IP
172.86.77.133:443
ASN
#14956 ROUTERHOSTING

Requested by
https://jdcu-mobile.com/home/Login/login.php
Certificate
IssuerLet's Encrypt
Subjectjdcu-mobile.com
Fingerprint8E:0D:05:AE:34:ED:A9:A7:07:FC:9F:9E:7B:57:47:5C:AF:65:4A:58
ValidityTue, 20 May 2025 17:54:11 GMT - Mon, 18 Aug 2025 17:54:10 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (64399)
Size
255 kB (255082 bytes)
Hash
842e3946fa938e62f185abb29ab00dc7
c72ff777806f59b02c8e9fd84ac258051d2a2b39
793cb14b4ae48e92c4a35eae5d34b4b95092e3cd7995ce342b6895a560ef7526

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/Login/asset/jquery-ui.min.js.download HTTP/1.1
Host: jdcu-mobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jdcu-mobile.com/home/Login/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 25 May 2025 09:06:43 GMT
content-type: text/javascript
content-length: 255082
last-modified: Sat, 29 Apr 2023 11:39:58 GMT
accept-ranges: bytes
x-served-by: jdcu-mobile.com
X-Firefox-Spdy: h2

GET jdcu-mobile.com/home/Login/asset/idle-modal-ts.min.js.download

172.86.77.133

404 Not Found

315 B

URL GET
jdcu-mobile.com/home/Login/asset/idle-modal-ts.min.js.download
IP
172.86.77.133:443
ASN
#14956 ROUTERHOSTING

Requested by
https://jdcu-mobile.com/home/Login/login.php
Certificate
IssuerLet's Encrypt
Subjectjdcu-mobile.com
Fingerprint8E:0D:05:AE:34:ED:A9:A7:07:FC:9F:9E:7B:57:47:5C:AF:65:4A:58
ValidityTue, 20 May 2025 17:54:11 GMT - Mon, 18 Aug 2025 17:54:10 GMT

File type
HTML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/Login/asset/idle-modal-ts.min.js.download HTTP/1.1
Host: jdcu-mobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jdcu-mobile.com/home/Login/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
server: nginx/1.18.0 (Ubuntu)
date: Sun, 25 May 2025 09:06:43 GMT
content-type: text/html; charset=iso-8859-1
content-encoding: gzip
X-Firefox-Spdy: h2

GET jdcu-mobile.com/home/Login/asset/feature-detect-ts.min.js.download

172.86.77.133

200 OK

1.1 kB

URL GET
jdcu-mobile.com/home/Login/asset/feature-detect-ts.min.js.download
IP
172.86.77.133:443
ASN
#14956 ROUTERHOSTING

Requested by
https://jdcu-mobile.com/home/Login/login.php
Certificate
IssuerLet's Encrypt
Subjectjdcu-mobile.com
Fingerprint8E:0D:05:AE:34:ED:A9:A7:07:FC:9F:9E:7B:57:47:5C:AF:65:4A:58
ValidityTue, 20 May 2025 17:54:11 GMT - Mon, 18 Aug 2025 17:54:10 GMT

File type
JavaScript source, ASCII text, with very long lines (1041)
Size
1.1 kB (1121 bytes)
Hash
b7ad1b4581240edc2e6769b837852e10
2d7804a2e46cd1a1656bdfe85176704a53bff25d
068afaf535e0b3dc9214eccb4d57f3a5baddd1340b961ad6a9346f990636d833

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/Login/asset/feature-detect-ts.min.js.download HTTP/1.1
Host: jdcu-mobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jdcu-mobile.com/home/Login/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 25 May 2025 09:06:43 GMT
content-type: text/javascript
content-length: 1121
last-modified: Sat, 29 Apr 2023 11:40:00 GMT
accept-ranges: bytes
x-served-by: jdcu-mobile.com
X-Firefox-Spdy: h2

GET jdcu-mobile.com/home/Login/asset/RiskEvaluation.2.14.0.min.js.download

172.86.77.133

200 OK

37 kB

URL GET
jdcu-mobile.com/home/Login/asset/RiskEvaluation.2.14.0.min.js.download
IP
172.86.77.133:443
ASN
#14956 ROUTERHOSTING

Requested by
https://jdcu-mobile.com/home/Login/login.php
Certificate
IssuerLet's Encrypt
Subjectjdcu-mobile.com
Fingerprint8E:0D:05:AE:34:ED:A9:A7:07:FC:9F:9E:7B:57:47:5C:AF:65:4A:58
ValidityTue, 20 May 2025 17:54:11 GMT - Mon, 18 Aug 2025 17:54:10 GMT

File type
JavaScript source, ASCII text, with very long lines (29615)
Size
37 kB (36846 bytes)
Hash
62e8f0dd8051b72bcf83ace138a5bee7
227c2174b43995bbf4cf017cf72c149cd68ee971
5bc185ed0f7738bfaf2b8729bdaf2e105759f8ced86cf52c78678acba27b65cb

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/Login/asset/RiskEvaluation.2.14.0.min.js.download HTTP/1.1
Host: jdcu-mobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jdcu-mobile.com/home/Login/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 25 May 2025 09:06:43 GMT
content-type: text/javascript
content-length: 36846
last-modified: Sat, 29 Apr 2023 11:40:06 GMT
accept-ranges: bytes
x-served-by: jdcu-mobile.com
X-Firefox-Spdy: h2

GET jdcu-mobile.com/home/Login/asset/iscroll-lite.min.js.download

172.86.77.133

200 OK

10 kB

URL GET
jdcu-mobile.com/home/Login/asset/iscroll-lite.min.js.download
IP
172.86.77.133:443
ASN
#14956 ROUTERHOSTING

Requested by
https://jdcu-mobile.com/home/Login/login.php
Certificate
IssuerLet's Encrypt
Subjectjdcu-mobile.com
Fingerprint8E:0D:05:AE:34:ED:A9:A7:07:FC:9F:9E:7B:57:47:5C:AF:65:4A:58
ValidityTue, 20 May 2025 17:54:11 GMT - Mon, 18 Aug 2025 17:54:10 GMT

File type
JavaScript source, ASCII text, with very long lines (10068)
Size
10 kB (10298 bytes)
Hash
6f0cb91fd548a0f735f92457cb4d6c8f
e71867cd30caac923497a84c8dcce1be24fa9feb
451291a314b8071894179df06bec23f67fa88fa4de865bd33bc61921d7d7dc11

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/Login/asset/iscroll-lite.min.js.download HTTP/1.1
Host: jdcu-mobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jdcu-mobile.com/home/Login/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 25 May 2025 09:06:43 GMT
content-type: text/javascript
content-length: 10298
last-modified: Sat, 29 Apr 2023 11:40:00 GMT
accept-ranges: bytes
x-served-by: jdcu-mobile.com
X-Firefox-Spdy: h2

GET jdcu-mobile.com/home/Login/asset/5quo9qOC8XRzp01ZQr4oZAbbbb

172.86.77.133

404 Not Found

315 B

URL GET
jdcu-mobile.com/home/Login/asset/5quo9qOC8XRzp01ZQr4oZAbbbb
IP
172.86.77.133:443
ASN
#14956 ROUTERHOSTING

Requested by
https://jdcu-mobile.com/home/Login/login.php
Certificate
IssuerLet's Encrypt
Subjectjdcu-mobile.com
Fingerprint8E:0D:05:AE:34:ED:A9:A7:07:FC:9F:9E:7B:57:47:5C:AF:65:4A:58
ValidityTue, 20 May 2025 17:54:11 GMT - Mon, 18 Aug 2025 17:54:10 GMT

File type
HTML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/Login/asset/5quo9qOC8XRzp01ZQr4oZAbbbb HTTP/1.1
Host: jdcu-mobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jdcu-mobile.com/home/Login/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
server: nginx/1.18.0 (Ubuntu)
date: Sun, 25 May 2025 09:06:43 GMT
content-type: text/html; charset=iso-8859-1
content-encoding: gzip
X-Firefox-Spdy: h2

GET jdcu-mobile.com/home/Login/asset/jquery-validate-sitetext.js.download

172.86.77.133

200 OK

1.4 kB

URL GET
jdcu-mobile.com/home/Login/asset/jquery-validate-sitetext.js.download
IP
172.86.77.133:443
ASN
#14956 ROUTERHOSTING

Requested by
https://jdcu-mobile.com/home/Login/login.php
Certificate
IssuerLet's Encrypt
Subjectjdcu-mobile.com
Fingerprint8E:0D:05:AE:34:ED:A9:A7:07:FC:9F:9E:7B:57:47:5C:AF:65:4A:58
ValidityTue, 20 May 2025 17:54:11 GMT - Mon, 18 Aug 2025 17:54:10 GMT

File type
CSV ASCII text
Size
1.4 kB (1354 bytes)
Hash
9445222da3dea5c566d023c15f9e9003
bbdf417999ca18354204b7810b0b38e439c43da4
a43a52193c997e9786236045aedef70e1f04daa149d17bbcea18120005719512

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/Login/asset/jquery-validate-sitetext.js.download HTTP/1.1
Host: jdcu-mobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jdcu-mobile.com/home/Login/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 25 May 2025 09:06:43 GMT
content-type: text/javascript
content-length: 1354
last-modified: Sat, 29 Apr 2023 11:39:58 GMT
accept-ranges: bytes
x-served-by: jdcu-mobile.com
X-Firefox-Spdy: h2

GET jdcu-mobile.com/home/Login/asset/helpers.min.js.download

172.86.77.133

200 OK

998 B

URL GET
jdcu-mobile.com/home/Login/asset/helpers.min.js.download
IP
172.86.77.133:443
ASN
#14956 ROUTERHOSTING

Requested by
https://jdcu-mobile.com/home/Login/login.php
Certificate
IssuerLet's Encrypt
Subjectjdcu-mobile.com
Fingerprint8E:0D:05:AE:34:ED:A9:A7:07:FC:9F:9E:7B:57:47:5C:AF:65:4A:58
ValidityTue, 20 May 2025 17:54:11 GMT - Mon, 18 Aug 2025 17:54:10 GMT

File type
ASCII text, with very long lines (928)
Size
998 B (998 bytes)
Hash
f6126c4346928048e1a206416a62918d
177333b1b4630facdb2aa9928a13d00b48b285d7
ab227bf69f86b722b0a984adc9368e15071d127d49e0127dc8f46da7dd63e2b2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/Login/asset/helpers.min.js.download HTTP/1.1
Host: jdcu-mobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jdcu-mobile.com/home/Login/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 25 May 2025 09:06:43 GMT
content-type: text/javascript
content-length: 998
last-modified: Sat, 29 Apr 2023 11:40:00 GMT
accept-ranges: bytes
x-served-by: jdcu-mobile.com
X-Firefox-Spdy: h2

GET jdcu-mobile.com/home/Login/asset/iris-vue.umd.min.js.download

172.86.77.133

200 OK

1.4 MB

URL GET
jdcu-mobile.com/home/Login/asset/iris-vue.umd.min.js.download
IP
172.86.77.133:443
ASN
#14956 ROUTERHOSTING

Requested by
https://jdcu-mobile.com/home/Login/login.php
Certificate
IssuerLet's Encrypt
Subjectjdcu-mobile.com
Fingerprint8E:0D:05:AE:34:ED:A9:A7:07:FC:9F:9E:7B:57:47:5C:AF:65:4A:58
ValidityTue, 20 May 2025 17:54:11 GMT - Mon, 18 Aug 2025 17:54:10 GMT

File type
JavaScript source, ASCII text, with very long lines (17522)
Size
1.4 MB (1420864 bytes)
Hash
b725eee376496109691e67b256c31593
2ba99a2e8efaf574fd81017499b8e9555b6a4193
30a42be8b89b88e1e6d2551420cdc62b0707c6eb809417e987684d1eadfed37d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/Login/asset/iris-vue.umd.min.js.download HTTP/1.1
Host: jdcu-mobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jdcu-mobile.com/home/Login/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 25 May 2025 09:06:43 GMT
content-type: text/javascript
content-length: 1420864
last-modified: Sat, 29 Apr 2023 11:40:04 GMT
accept-ranges: bytes
x-served-by: jdcu-mobile.com
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (35)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML