Report - invisiblefriends.network/

Report Overview

Submitted URL
invisiblefriends.network/
IP
76.76.21.21
ASN
#16509 AMAZON-02
Submitted
2022-09-28 20:38:36
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
32

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	4.4 kB	23.36.77.32
code.jquery.com	634	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	410 B	85 kB	69.16.175.10
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	75 kB	34.120.237.76
rndmcharacters.s3.amazonaws.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	6.5 kB	5.7 kB	52.216.109.59
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	329 B	797 B	93.184.220.29
ocsp.globalsign.com	2075	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	356 B	1.9 kB	104.18.20.226
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	35.164.56.167
ocsp.sca1b.amazontrust.com	1015	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.7 kB	4.8 kB	54.230.245.39
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	143.204.55.35
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	34.160.144.191
www.invisiblefriends.network	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	10 kB	4.2 MB	76.76.21.21
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	993 B	2.1 kB	142.250.74.3
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	384 B	76 kB	142.250.74.72
region1.google-analytics.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	685 B	575 B	216.239.34.36
invisiblefriends.network	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	786 B	573 B	76.76.21.21
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
cdn.jsdelivr.net	439	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	389 B	373 kB	151.101.85.229
ka-f.fontawesome.com	3598	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.8 kB	4.3 kB	172.64.202.28

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-09-28	medium	www.invisiblefriends.network/img/twitter-logo.svg	Phishing
2022-09-28	medium	www.invisiblefriends.network/scripts/write.js	Phishing
2022-09-28	medium	www.invisiblefriends.network/media/FatFrank-Regular.15cbcb57.woff	Phishing
2022-09-28	medium	www.invisiblefriends.network/metamask/img/renard.jpeg	Phishing
2022-09-28	medium	www.invisiblefriends.network/metamask/scripts/input.js	Phishing
2022-09-28	medium	www.invisiblefriends.network/media/FatFrank-Regular.af55af9b.woff2	Phishing
2022-09-28	medium	www.invisiblefriends.network/scripts/write.js	Phishing
2022-09-28	medium	www.invisiblefriends.network/media/FatFrank-Regular.1d9f766c.ttf	Phishing
2022-09-28	medium	www.invisiblefriends.network/img/instagram.svg	Phishing
2022-09-28	medium	www.invisiblefriends.network/metamask/img/logo.svg	Phishing
2022-09-28	medium	www.invisiblefriends.network/img/discord-logo.svg	Phishing
2022-09-28	medium	invisiblefriends.network/	Phishing
2022-09-28	medium	www.invisiblefriends.network/	Phishing
2022-09-28	medium	www.invisiblefriends.network/img/footer.svg	Phishing
2022-09-28	medium	www.invisiblefriends.network/scripts/app.js	Phishing
2022-09-28	medium	invisiblefriends.network/	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (8)

	URL	Size	First Seen	Last Seen
	www.googletagmanager.com/gtag/js?id=G-DG2GQN3PQL	213 kB	2023-03-08	2023-03-08
Pretty URL www.googletagmanager.com/gtag/js?id=G-DG2GQN3PQL IP 142.250.74.72 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:12:32 Last Seen2023-03-08 03:12:32 Times Seen1 Hash b3344cf7908472441b812aed5cc31614 1326b6c92a3938a8b0b9e50f75fcc37dcb014e60 d6c2fb4e85da9fe7d6325ce1b6e2cbd5e96b75c8edba3efbe9635c54f5310d78 Loading...

	www.invisiblefriends.network/	190 B	2023-03-07	2023-03-17
Pretty URL www.invisiblefriends.network/ IP 76.76.21.21 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:26:44 Last Seen2023-03-17 10:12:03 Times Seen1 Hash 76700f799123630ee5bf4d61e9a7145e 75a66f46b84224191a7076d23d1259c811fdaf5a d8b020b7f0c905fbe31566f6921a683b67a201b7973e1d8ee8ea9eb116d3ca0e Loading...

	www.invisiblefriends.network/scripts/app.js	4.6 kB	2023-03-07	2023-03-17
Pretty URL www.invisiblefriends.network/scripts/app.js IP 76.76.21.21 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:26:44 Last Seen2023-03-17 10:12:03 Times Seen1 Hash dc97ff02189eca3d9f37366c1875ef91 59a7030dd108b661955a96623327a0241f43c85b 4f7348bac4167a7806633c47fdb73ec80095db3102a7939b44d247220745cc8d Loading...

	www.invisiblefriends.network/	1.1 kB	2023-03-07	2023-03-17
Pretty URL www.invisiblefriends.network/ IP 76.76.21.21 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:26:44 Last Seen2023-03-17 10:12:03 Times Seen1 Hash 6d2867c3ddb184d6203a049258755107 9d9dcc973da09f26a30bd139ad26f209b00cfa02 3f3fbd0bb306d4210dd13d015f821bf2ba808e93095c20d07163c14d875c08e1 Loading...

	kit.fontawesome.com/a0135e494a.js	11 kB	2023-03-07	2023-03-17
Pretty URL kit.fontawesome.com/a0135e494a.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:26:44 Last Seen2023-03-17 10:12:03 Times Seen1 Hash c5607325cbd5d37ca0a4cef96de88464 8d2a664882b7e875e1fecbe450f124b9805dc932 bd645e3cf146169db4ee9f9a1debb9e163a6aeb0c4acc688214a45069d583ece Loading...

	www.invisiblefriends.network/metamask/scripts/input.js	349 B	2023-03-07	2023-03-17
Pretty URL www.invisiblefriends.network/metamask/scripts/input.js IP 76.76.21.21 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:26:44 Last Seen2023-03-17 10:12:03 Times Seen1 Hash 50ebe7a094bf88ff28a292656bf5fa1d c19224a844ad79a7e2f09d185776c99529c3f771 e7a0fccc7c8918b344811e70833b670b5bdf262e9236c10e51f34db333170668 Loading...

	unknown	0 B	2023-03-07	2024-04-20
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-20 15:24:23 Times Seen36974532 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.invisiblefriends.network/	153 B	2023-03-07	2023-03-17
Pretty URL www.invisiblefriends.network/ IP 76.76.21.21 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:26:44 Last Seen2023-03-17 10:12:03 Times Seen1 Hash 05f93b422ba7e74cbad34bc01ceb01da 37c69d7f23dde31c827055e8e6a7dcdc0e3d857f 9fbbdfbb24d0092c10f21ebf8e7d1e6d3252011058aeba010bd0fa4bb46f016e Loading...

HTTP Transactions (73)

URL IP Response Size

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7fb7c70f7f4e2cee27eb0e7d875931f7
98fca3817a551b1daecebae103a48e718b8b5a53
2a40f957a6b1734aa3f87cff51b673f0536732db15b09033dd604879692df349

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A40F957A6B1734AA3F87CFF51B673F0536732DB15B09033DD604879692DF349"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10672
Expires: Wed, 28 Sep 2022 23:36:17 GMT
Date: Wed, 28 Sep 2022 20:38:25 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

143.204.55.35

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.35:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 28 Sep 2022 20:15:39 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: beUxBbilQrzal-Ue4_BogsKtPtEZzsL-kcZGadVKXe-0vr1u8Hyt9Q==
Age: 1366

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1017811d25642601e984edc1676d118d
c177c4f7a897584bf91347fa4990c83d6bfd0321
f35bb3a8c877dd8d3c5920f3c917722f12b157aff398e2ec30fab51fa6caa2ef

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F35BB3A8C877DD8D3C5920F3C917722F12B157AFF398E2EC30FAB51FA6CAA2EF"
Last-Modified: Mon, 26 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3129
Expires: Wed, 28 Sep 2022 21:30:34 GMT
Date: Wed, 28 Sep 2022 20:38:25 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: apRfaThTDyxpsQZ7FboSnHMdr1JjLjVj86+T8O1bSFpH+ZTIDDIFHvSEH1HxluFZYQBaAZcVlRQ=
x-amz-request-id: PV5AGNSBHQNTRSJ4
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 28 Sep 2022 19:50:11 GMT
age: 2894
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
etag: "6113f8408c59aebe188d6af273b90743"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 20:38:25 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e03b16f3cf78c01b1b43b984ab3bd922
e33b11635b16e3c3fb7bbbc28219009e9d58816b
f370d0dca8f3224acfddfa60fc951aab59cb92da5779dd05c757d6ce946ed69f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F370D0DCA8F3224ACFDDFA60FC951AAB59CB92DA5779DD05C757D6CE946ED69F"
Last-Modified: Tue, 27 Sep 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Thu, 29 Sep 2022 02:38:25 GMT
Date: Wed, 28 Sep 2022 20:38:25 GMT
Connection: keep-alive

www.invisiblefriends.network/css/mobile.css

76.76.21.21

200 OK

754 B

URL HTTP/2
www.invisiblefriends.network/css/mobile.css
IP
76.76.21.21:0
ASN
#16509 AMAZON-02

File type
ASCII text
Size
754 B (754 bytes)
Hash
327c6610d764ad888d1e683c0f634d4c
f08a86b31ca6c4d46ece30abe37dfe1c50be27c7
e722948c0acc2f00656fb30e277eb5ee55fc97448cb9b481428d93386cf9c78b

HTTP Headers

GET /css/mobile.css HTTP/1.1
Host: www.invisiblefriends.network
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.invisiblefriends.network/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 3859336
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="mobile.css"
content-type: text/css; charset=utf-8
date: Wed, 28 Sep 2022 20:38:25 GMT
etag: W/"e722948c0acc2f00656fb30e277eb5ee55fc97448cb9b481428d93386cf9c78b"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1:arn1::skrl6-1664397505879-2e46c2d3c456
content-length: 754
X-Firefox-Spdy: h2

www.invisiblefriends.network/img/twitter-logo.svg

76.76.21.21

200 OK

715 B

URL HTTP/2
www.invisiblefriends.network/img/twitter-logo.svg
IP
76.76.21.21:0
ASN
#16509 AMAZON-02

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (715), with no line terminators
Size
715 B (715 bytes)
Hash
b9c6b113f20e3acb5d0ed173d195f484
89cba6f1c9bd30950289b2d1b3cd03d60ff2c91d
c01041ef1592449fe86298c0e1542c45e5be8d39fe456fbdfb4e5c98ca689eb4

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /img/twitter-logo.svg HTTP/1.1
Host: www.invisiblefriends.network
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.invisiblefriends.network/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 3859331
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="twitter-logo.svg"
content-type: image/svg+xml
date: Wed, 28 Sep 2022 20:38:25 GMT
etag: W/"c01041ef1592449fe86298c0e1542c45e5be8d39fe456fbdfb4e5c98ca689eb4"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1:arn1::skrl6-1664397505885-f9804bdb7a23
content-length: 715
X-Firefox-Spdy: h2

www.invisiblefriends.network/scripts/write.js

76.76.21.21

404 Not Found

39 B

URL HTTP/2
www.invisiblefriends.network/scripts/write.js
IP
76.76.21.21:0
ASN
#16509 AMAZON-02

File type
ASCII text
Size
39 B (39 bytes)
Hash
d4ac7f1bba70ba87c56e6d93092b7cca
96492a95a7f9153eed58a3598c4cce56edc6f8d1
91218093a08027e8f69c8051f9deef1fe6c22b278b3f6bdf761e7587cb272774

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /scripts/write.js HTTP/1.1
Host: www.invisiblefriends.network
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.invisiblefriends.network/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
cache-control: public, max-age=0, must-revalidate
content-type: text/plain; charset=utf-8
date: Wed, 28 Sep 2022 20:38:25 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: MISS
x-vercel-error: NOT_FOUND
x-vercel-id: arn1::qqkrl-1664397505893-c3f00fbf782a
content-length: 39
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
75eebff373cf84ae810a9e326f9e3d03
a5b22b0eee98dda385cb4e90d119205bc5f3a25f
f2089c63c7c2b3024972aba8cbc12dfcffc79dfc1ef9f7be801c79e7737b0d71

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 20:38:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtag/js?id=G-DG2GQN3PQL

142.250.74.72

200 OK

75 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=G-DG2GQN3PQL
IP
142.250.74.72:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (17807)
Size
75 kB (74883 bytes)
Hash
62d33a6077cb6a0bcdbd2a661e073bc1
0862001dd5d9d599db0e28e267ff838edc0f9e7b
b464b25016959e866ca41258903d3c0ef15e3938167c9e87c2bcd1d5aa0a347b

HTTP Headers

GET /gtag/js?id=G-DG2GQN3PQL HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.invisiblefriends.network/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 28 Sep 2022 20:38:25 GMT
expires: Wed, 28 Sep 2022 20:38:25 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 74883
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

cdn.jsdelivr.net/gh/ethereum/web3.js/dist/web3.min.js

151.101.85.229

200 OK

372 kB

URL HTTP/2
cdn.jsdelivr.net/gh/ethereum/web3.js/dist/web3.min.js
IP
151.101.85.229:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (64135)
Size
372 kB (372383 bytes)
Hash
e52ec98736587eb17261fd20d02006ff
4ff6bb11e3944a495c162e3b685b6481c1ace575
ab9e2794a763856e4a7d3c4ecb4d30d2bc80af19babe08df1a8f21dc9b3f6494

HTTP Headers

GET /gh/ethereum/web3.js/dist/web3.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.invisiblefriends.network/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 3.0.0
x-jsd-version-type: version
etag: W/"13b809-XwSuevaXcvR48RWY2ysOS+KLNSc"
content-encoding: gzip
accept-ranges: bytes
date: Wed, 28 Sep 2022 20:38:25 GMT
age: 17203
x-served-by: cache-fra19149-FRA, cache-bma1634-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 372383
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
75eebff373cf84ae810a9e326f9e3d03
a5b22b0eee98dda385cb4e90d119205bc5f3a25f
f2089c63c7c2b3024972aba8cbc12dfcffc79dfc1ef9f7be801c79e7737b0d71

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 20:38:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1

104.18.20.226

200 OK

1.5 kB

URL HTTP/1.1
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.5 kB (1462 bytes)
Hash
9a5f40134eef38301c9ec6c42e3e9f88
233d49b11a88c322a50988ed95844fc7b6250e04
5d82f5c50b017aa273529ea0eb55348e5a11a7705cebda6d8e4935eb306d13a5

HTTP Headers

POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 20:38:26 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "D3B63C95CA4D03BF5602611F1A67336D32CF0E9C"
Expires: Thu, 29 Sep 2022 07:00:00 GMT
Last-Modified: Wed, 28 Sep 2022 19:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 3248
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 751f485cabf2b517-OSL

www.invisiblefriends.network/img/rcc.png

76.76.21.21

200 OK

55 kB

URL HTTP/2
www.invisiblefriends.network/img/rcc.png
IP
76.76.21.21:0
ASN
#16509 AMAZON-02

File type
PNG image data, 1200 x 1200, 8-bit grayscale, non-interlaced\012- data
Size
55 kB (54934 bytes)
Hash
47f0d9789c0e15f285b12df4c43c3a47
b4f94f9b102d633d411381c8209f0babed635002
0f156f451d4231156212967fef8d0320cf5d7106468f4465fa039be4b8a05c33

HTTP Headers

GET /img/rcc.png HTTP/1.1
Host: www.invisiblefriends.network
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.invisiblefriends.network/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 0
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="rcc.png"
content-type: image/png
date: Wed, 28 Sep 2022 20:38:26 GMT
etag: W/"0f156f451d4231156212967fef8d0320cf5d7106468f4465fa039be4b8a05c33"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: MISS
x-vercel-id: arn1:arn1::bbqqv-1664397505887-2b29a78c188a
content-length: 54934
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.35

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.35:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Wed, 28 Sep 2022 20:29:34 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Wed, 28 Sep 2022 21:10:59 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: S27pQIg1F9Ozz030n15nnVjZR4UhWNCWdL0lzJyzegVxLewMO3aKbw==
Age: 533

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
3526d5ce1381ba26cbc553db057e1915
fe01c920696448e8bf12e6fff877bce8281d34a2
09604aed7cbca7971bfcb5afcb53591600b944f28eff21aa65dc601e78cdda53

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4195
Cache-Control: max-age=131898
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 20:38:26 GMT
Etag: "63340099-1d7"
Expires: Fri, 30 Sep 2022 09:16:44 GMT
Last-Modified: Wed, 28 Sep 2022 08:06:49 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471

www.invisiblefriends.network/css/main.css

76.76.21.21

200 OK

27 kB

URL HTTP/2
www.invisiblefriends.network/css/main.css
IP
76.76.21.21:0
ASN
#16509 AMAZON-02

File type
Unicode text, UTF-8 (with BOM) text
Size
27 kB (26649 bytes)
Hash
e609a2e94e8434e13966559d12c6cedf
8f42f4ead978d4cbcea478db8bfbca605334ddda
81950a05216ccbc71336540215bc172c3247e2a19a1d50ff01dc4fa36449caea

HTTP Headers

GET /css/main.css HTTP/1.1
Host: www.invisiblefriends.network
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.invisiblefriends.network/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
age: 0
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="main.css"
content-encoding: br
content-type: text/css; charset=utf-8
date: Wed, 28 Sep 2022 20:38:26 GMT
etag: W/"8774a148c7e7e6e7e46c999ba03269fd0bd105c9941a1b5733930d73cebaec0b"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: MISS
x-vercel-id: arn1:arn1::ffsmv-1664397505878-821ed4cd36c4
X-Firefox-Spdy: h2

www.invisiblefriends.network/media/FatFrank-Regular.15cbcb57.woff

76.76.21.21

404 Not Found

3.0 kB

URL HTTP/2
www.invisiblefriends.network/media/FatFrank-Regular.15cbcb57.woff
IP
76.76.21.21:0
ASN
#16509 AMAZON-02

File type
data
Size
3.0 kB (3030 bytes)
Hash
e2be964a7460eb2b38d61b589107fed1
70f9fb0bd57cd7770476c8abc9c0ef114969d6cf
61692b261f9e2dd40271791e9e1b0ec42099a2982217ea48fac5055c33216dd0

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /media/FatFrank-Regular.15cbcb57.woff HTTP/1.1
Host: www.invisiblefriends.network
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.invisiblefriends.network/css/v2.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
cache-control: public, max-age=0, must-revalidate
content-type: text/plain; charset=utf-8
date: Wed, 28 Sep 2022 20:38:26 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: MISS
x-vercel-error: NOT_FOUND
x-vercel-id: arn1::ffsmv-1664397506453-ddc9a09310f6
content-length: 39
X-Firefox-Spdy: h2

www.invisiblefriends.network/img/maingif.gif

76.76.21.21

200 OK

4.0 MB

URL HTTP/2
www.invisiblefriends.network/img/maingif.gif
IP
76.76.21.21:0
ASN
#16509 AMAZON-02

File type
GIF image data, version 89a, 600 x 600\012- data
Size
4.0 MB (3980810 bytes)
Hash
dfbb5ffd0ebca136d1f6f77f71c415f8
4ed882a550f537353fe16c0f7226bcbfa2efb871
4cd27c45cf35b0c741227fd0d72fb4372de96b739f0ffa02044346e683b6101e

HTTP Headers

GET /img/maingif.gif HTTP/1.1
Host: www.invisiblefriends.network
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.invisiblefriends.network/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 0
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="maingif.gif"
content-type: image/gif
date: Wed, 28 Sep 2022 20:38:26 GMT
etag: W/"4cd27c45cf35b0c741227fd0d72fb4372de96b739f0ffa02044346e683b6101e"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: MISS
x-vercel-id: arn1:arn1::w89bx-1664397505881-3619207493dd
content-length: 3980810
X-Firefox-Spdy: h2

push.services.mozilla.com/

35.164.56.167

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.164.56.167:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: trQSTYFostVSMRhRmTGcWw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 74Q30Zp6fv5yChSTcpkBxuUfJ2o=

www.invisiblefriends.network/metamask/img/renard.jpeg

76.76.21.21

200 OK

72 kB

URL HTTP/2
www.invisiblefriends.network/metamask/img/renard.jpeg
IP
76.76.21.21:0
ASN
#16509 AMAZON-02

File type
PNG image data, 1200 x 1200, 8-bit/color RGBA, non-interlaced\012- data
Size
72 kB (71610 bytes)
Hash
c2a7833c2a2525303f5b96c4c8362046
751e3a68b1bf28707029d466f209d263f98b537d
b137a78bfe0d2c52fa50341897bfe24239c6e1ecf4f329a7c1ae599cd5f23985

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /metamask/img/renard.jpeg HTTP/1.1
Host: www.invisiblefriends.network
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.invisiblefriends.network/metamask/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 3026919
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="renard.jpeg"
content-type: image/jpeg
date: Wed, 28 Sep 2022 20:38:26 GMT
etag: W/"b137a78bfe0d2c52fa50341897bfe24239c6e1ecf4f329a7c1ae599cd5f23985"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1:arn1::qqkrl-1664397506858-7339489156a7
content-length: 71610
X-Firefox-Spdy: h2

www.invisiblefriends.network/metamask/scripts/input.js

76.76.21.21

200 OK

349 B

URL HTTP/2
www.invisiblefriends.network/metamask/scripts/input.js
IP
76.76.21.21:0
ASN
#16509 AMAZON-02

File type
ASCII text
Size
349 B (349 bytes)
Hash
50ebe7a094bf88ff28a292656bf5fa1d
c19224a844ad79a7e2f09d185776c99529c3f771
e7a0fccc7c8918b344811e70833b670b5bdf262e9236c10e51f34db333170668

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /metamask/scripts/input.js HTTP/1.1
Host: www.invisiblefriends.network
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.invisiblefriends.network/metamask/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 3026919
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="input.js"
content-type: application/javascript; charset=utf-8
date: Wed, 28 Sep 2022 20:38:26 GMT
etag: W/"e7a0fccc7c8918b344811e70833b670b5bdf262e9236c10e51f34db333170668"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1:arn1::hsh6g-1664397506859-061adaff13b5
content-length: 349
X-Firefox-Spdy: h2

www.invisiblefriends.network/media/FatFrank-Regular.af55af9b.woff2

76.76.21.21

404 Not Found

39 B

URL HTTP/2
www.invisiblefriends.network/media/FatFrank-Regular.af55af9b.woff2
IP
76.76.21.21:0
ASN
#16509 AMAZON-02

File type
ASCII text
Size
39 B (39 bytes)
Hash
d4ac7f1bba70ba87c56e6d93092b7cca
96492a95a7f9153eed58a3598c4cce56edc6f8d1
91218093a08027e8f69c8051f9deef1fe6c22b278b3f6bdf761e7587cb272774

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /media/FatFrank-Regular.af55af9b.woff2 HTTP/1.1
Host: www.invisiblefriends.network
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.invisiblefriends.network/css/v2.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
cache-control: public, max-age=0, must-revalidate
content-type: text/plain; charset=utf-8
date: Wed, 28 Sep 2022 20:38:26 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: MISS
x-vercel-error: NOT_FOUND
x-vercel-id: arn1::p4sn4-1664397506904-c21f3fe5158c
content-length: 39
X-Firefox-Spdy: h2

www.invisiblefriends.network/scripts/write.js

76.76.21.21

404 Not Found

39 B

URL HTTP/2
www.invisiblefriends.network/scripts/write.js
IP
76.76.21.21:0
ASN
#16509 AMAZON-02

File type
ASCII text
Size
39 B (39 bytes)
Hash
d4ac7f1bba70ba87c56e6d93092b7cca
96492a95a7f9153eed58a3598c4cce56edc6f8d1
91218093a08027e8f69c8051f9deef1fe6c22b278b3f6bdf761e7587cb272774

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /scripts/write.js HTTP/1.1
Host: www.invisiblefriends.network
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.invisiblefriends.network/
Cookie: _ga_DG2GQN3PQL=GS1.1.1664397503.1.0.1664397503.0.0.0; _ga=GA1.1.1573569956.1664397504
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
cache-control: public, max-age=0, must-revalidate
content-type: text/plain; charset=utf-8
date: Wed, 28 Sep 2022 20:38:26 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: MISS
x-vercel-error: NOT_FOUND
x-vercel-id: arn1::2dd6f-1664397506945-61197a77b91f
content-length: 39
X-Firefox-Spdy: h2

www.invisiblefriends.network/media/FatFrank-Regular.1d9f766c.ttf

76.76.21.21

404 Not Found

39 B

URL HTTP/2
www.invisiblefriends.network/media/FatFrank-Regular.1d9f766c.ttf
IP
76.76.21.21:0
ASN
#16509 AMAZON-02

File type
ASCII text
Size
39 B (39 bytes)
Hash
d4ac7f1bba70ba87c56e6d93092b7cca
96492a95a7f9153eed58a3598c4cce56edc6f8d1
91218093a08027e8f69c8051f9deef1fe6c22b278b3f6bdf761e7587cb272774

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /media/FatFrank-Regular.1d9f766c.ttf HTTP/1.1
Host: www.invisiblefriends.network
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.invisiblefriends.network/css/v2.css
Cookie: _ga_DG2GQN3PQL=GS1.1.1664397503.1.0.1664397503.0.0.0; _ga=GA1.1.1573569956.1664397504
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
cache-control: public, max-age=0, must-revalidate
content-type: text/plain; charset=utf-8
date: Wed, 28 Sep 2022 20:38:26 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: MISS
x-vercel-error: NOT_FOUND
x-vercel-id: arn1::p4sn4-1664397506947-e96a2b2e76cb
content-length: 39
X-Firefox-Spdy: h2

code.jquery.com/jquery-3.6.0.js

69.16.175.10

200 OK

85 kB

URL HTTP/2
code.jquery.com/jquery-3.6.0.js
IP
69.16.175.10:0
ASN
#20446 STACKPATH-CDN

File type
ASCII text
Size
85 kB (84714 bytes)
Hash
416559bad4fc1149eba631e644a23a6e
20f8f18f94c74dbc1bde934719cbfa87d51828cf
37508a443be057a2fab1c4eee8d03632f406eaed15d09a26ac8dabe7877616e2

HTTP Headers

GET /jquery-3.6.0.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.invisiblefriends.network
Connection: keep-alive
Referer: https://www.invisiblefriends.network/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 28 Sep 2022 20:38:26 GMT
content-encoding: gzip
content-length: 84714
content-type: application/javascript; charset=utf-8
last-modified: Wed, 16 Feb 2022 10:50:39 GMT
accept-ranges: bytes
server: nginx
etag: W/"620cd6ff-46744"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1664397506.dop230.sk1.t,1664397506.cds254.sk1.hn,1664397506.cds214.sk1.c
X-Firefox-Spdy: h2

www.invisiblefriends.network/img/instagram.svg

76.76.21.21

200 OK

394 B

URL HTTP/2
www.invisiblefriends.network/img/instagram.svg
IP
76.76.21.21:0
ASN
#16509 AMAZON-02

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (393)
Size
394 B (394 bytes)
Hash
8323b3af61fd3fdf1eb792147dc00ef1
5465ee5231f93a5165389865864f1321ce5505d1
fa2fdbe9a673e9db3b1703d68f2b40ac935686fb2c7046773d49dfb6f20dd730

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /img/instagram.svg HTTP/1.1
Host: www.invisiblefriends.network
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.invisiblefriends.network/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 0
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="instagram.svg"
content-type: image/svg+xml
date: Wed, 28 Sep 2022 20:38:27 GMT
etag: W/"fa2fdbe9a673e9db3b1703d68f2b40ac935686fb2c7046773d49dfb6f20dd730"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: MISS
x-vercel-id: arn1:arn1::2dd6f-1664397506934-829ace6c0f33
content-length: 394
X-Firefox-Spdy: h2

ocsp.sca1b.amazontrust.com/

54.230.245.39

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.39:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
18088b744dad0475ec6a2a02cdb142f5
4dcbb31ba61a6c42dcd6eb6c659440f379bcb912
4cf0f3e2a26864c87358a0ad10673158489ab17b94bd8a5f4d20276ff9d3a946

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=93224
Date: Wed, 28 Sep 2022 20:38:27 GMT
Etag: "63336337-1d7"
Expires: Thu, 29 Sep 2022 22:32:11 GMT
Last-Modified: Tue, 27 Sep 2022 20:55:19 GMT
Server: ECS (nyb/1D1C)
X-Cache: Miss from cloudfront
Via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: cGyRn2kWKP-R9_XWJ52RGT8x3Aq5UCOgmdHNPsyqYh6eup-sHNUi4w==
Age: 5812

ocsp.sca1b.amazontrust.com/

54.230.245.39

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.39:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
18088b744dad0475ec6a2a02cdb142f5
4dcbb31ba61a6c42dcd6eb6c659440f379bcb912
4cf0f3e2a26864c87358a0ad10673158489ab17b94bd8a5f4d20276ff9d3a946

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 20:38:27 GMT
Last-Modified: Wed, 28 Sep 2022 19:33:17 GMT
Server: ECS (nyb/1D0C)
X-Cache: Miss from cloudfront
Via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: xjC_nlVDcMtr3k_v-AIc1gF0LlFO3KkgYXji0-zpxIRKAHVFXxxBHA==
Age: 3910

ocsp.sca1b.amazontrust.com/

54.230.245.110

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.110:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
18088b744dad0475ec6a2a02cdb142f5
4dcbb31ba61a6c42dcd6eb6c659440f379bcb912
4cf0f3e2a26864c87358a0ad10673158489ab17b94bd8a5f4d20276ff9d3a946

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 20:38:27 GMT
Last-Modified: Wed, 28 Sep 2022 19:33:53 GMT
Server: ECS (nyb/1D17)
X-Cache: Miss from cloudfront
Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: XTCESFVOvJQTwbhYWZmKJ_mVbh2zCuI56-Je3u96TxvD6PV37SauDA==
Age: 3874

ocsp.sca1b.amazontrust.com/

54.230.245.39

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.39:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
18088b744dad0475ec6a2a02cdb142f5
4dcbb31ba61a6c42dcd6eb6c659440f379bcb912
4cf0f3e2a26864c87358a0ad10673158489ab17b94bd8a5f4d20276ff9d3a946

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 20:38:27 GMT
Last-Modified: Wed, 28 Sep 2022 20:07:04 GMT
Server: ECS (bsa/EB21)
X-Cache: Miss from cloudfront
Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: rfJs7Yk8z1OOBYnHI3vv863NjVqzhKTyUcYfF466fA5LoNoIoBl2SQ==
Age: 1883

ocsp.sca1b.amazontrust.com/

54.230.245.39

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.39:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
18088b744dad0475ec6a2a02cdb142f5
4dcbb31ba61a6c42dcd6eb6c659440f379bcb912
4cf0f3e2a26864c87358a0ad10673158489ab17b94bd8a5f4d20276ff9d3a946

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 20:38:27 GMT
Last-Modified: Wed, 28 Sep 2022 19:04:18 GMT
Server: ECS (nyb/1D28)
X-Cache: Miss from cloudfront
Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: -yLKqW7i2VaBhhP6BBLuEIKHdSJRf6vqbDtWaevgDFD489DkESc4_A==
Age: 5649

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
15cc1791864e78e4f2d1219e1bc4e4af
4be1a8496350a8144ae81e10bfe413930628c41e
4fe223392c71727585b3e429b7042d076263242036179a1d5fcc812a3c6cee10

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 20:38:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

region1.google-analytics.com/g/collect?v=2&tid=G-DG2GQN3PQL&gtm=2oe9q0&_p=899607775&cid=1573569956.1664397504&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1664397503&sct=1&seg=0&dl=https%3A%2F%2Fwww.invisiblefriends.network%2F&dt=Invisible%20Friends&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1

216.239.34.36

204 No Content

0 B

URL HTTP/2
region1.google-analytics.com/g/collect?v=2&tid=G-DG2GQN3PQL&gtm=2oe9q0&_p=899607775&cid=1573569956.1664397504&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1664397503&sct=1&seg=0&dl=https%3A%2F%2Fwww.invisiblefriends.network%2F&dt=Invisible%20Friends&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP
216.239.34.36:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-DG2GQN3PQL&gtm=2oe9q0&_p=899607775&cid=1573569956.1664397504&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1664397503&sct=1&seg=0&dl=https%3A%2F%2Fwww.invisiblefriends.network%2F&dt=Invisible%20Friends&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.invisiblefriends.network
Connection: keep-alive
Referer: https://www.invisiblefriends.network/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://www.invisiblefriends.network
date: Wed, 28 Sep 2022 20:38:27 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
4364fa358f76c1635458dab5d598f857
d15fc7359711b1651235fa1be66accc03fe26c1c
6449bf062dbb79683071f367ca142c175ef304485cb4d3711feb4763146e4fa7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6449BF062DBB79683071F367CA142C175EF304485CB4D3711FEB4763146E4FA7"
Last-Modified: Wed, 28 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6996
Expires: Wed, 28 Sep 2022 22:35:03 GMT
Date: Wed, 28 Sep 2022 20:38:27 GMT
Connection: keep-alive

www.invisiblefriends.network/metamask/img/logo.svg

76.76.21.21

200 OK

1.7 kB

URL HTTP/2
www.invisiblefriends.network/metamask/img/logo.svg
IP
76.76.21.21:0
ASN
#16509 AMAZON-02

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3231), with no line terminators
Size
1.7 kB (1666 bytes)
Hash
e961e0ff71cefd6e3310084ee30ac105
024ffded61e8512315ab5cf26afe3f96c7e30a44
4b07b4344eed7edbee042b62e8e2c335f687aa30483999b0ef6eb8371be368de

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /metamask/img/logo.svg HTTP/1.1
Host: www.invisiblefriends.network
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.invisiblefriends.network/metamask/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
age: 0
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="logo.svg"
content-encoding: br
content-type: image/svg+xml
date: Wed, 28 Sep 2022 20:38:27 GMT
etag: W/"b855851451c3eb7220bc7331d6cf7f19dad4580ebc35610211f028848ba7fc34"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: MISS
x-vercel-id: arn1:arn1::6bcbk-1664397506859-7827f81cae8f
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
4364fa358f76c1635458dab5d598f857
d15fc7359711b1651235fa1be66accc03fe26c1c
6449bf062dbb79683071f367ca142c175ef304485cb4d3711feb4763146e4fa7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6449BF062DBB79683071F367CA142C175EF304485CB4D3711FEB4763146E4FA7"
Last-Modified: Wed, 28 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6996
Expires: Wed, 28 Sep 2022 22:35:03 GMT
Date: Wed, 28 Sep 2022 20:38:27 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ffa6dde-b51e-43f8-bfcb-3f442d674928.jpeg

34.120.237.76

200 OK

8.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ffa6dde-b51e-43f8-bfcb-3f442d674928.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.5 kB (8500 bytes)
Hash
6139c878a7d2bd32c61fc8287996eb5b
9c4692ea64832895fbd107d91f879728b6a440c7
3839df92f0a10c1433d5b576df50c9f7953912ae4f425012262f08ee8a59ce2e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ffa6dde-b51e-43f8-bfcb-3f442d674928.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8500
x-amzn-requestid: 626c21ec-f29b-4b69-b275-c22c864c2409
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3VmENnIAMFeTQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c23-75eccc381fbd6e5d4ff59c06;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:33:23 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Eyy8qoYVCJbt6b6hTGJ-rOrYex9RuX1InyZbpHkeu9yQqPUEvowKcw==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:48:58 GMT
etag: "9c4692ea64832895fbd107d91f879728b6a440c7"
content-type: image/jpeg
age: 82169
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F693de74c-173e-4d9b-8317-35601f30ffd7.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
13 kB (13299 bytes)
Hash
ad84ed0c5b2090df7996007514cf1984
651600f2ef18cecc2e38370069bbb5e1d86f68e0
a3d0729e1d43afeadd2dd8273c858b8839d9e476f773c8ec9d96b5969a9e0b4a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F693de74c-173e-4d9b-8317-35601f30ffd7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 13299
x-amzn-requestid: 926df8b6-beec-470d-b0b3-33be326cd379
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3UPF8YIAMF3Nw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c1a-343e91e735af43d01fc83ddd;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:33:14 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: fcxclGRP3zfWwb6opjYU2bL9VAq_mCSNjFtfp9iMLq6tbZu57EDqpQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:50:04 GMT
etag: "651600f2ef18cecc2e38370069bbb5e1d86f68e0"
content-type: image/jpeg
age: 82103
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79631135-a10c-43bf-85d2-fa2236b96883.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
13 kB (13213 bytes)
Hash
62e68c3cd08dd94d910507512a67e85f
3d4fa8701f17e8818c25584ef5f04bfbee8440cd
058d798963f83f5fb88ab728185f755c5353fa981d93e1b6ff869089f501586b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79631135-a10c-43bf-85d2-fa2236b96883.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 13213
x-amzn-requestid: 09f8fee2-6830-4bec-af40-f2fb6547bc63
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZFkreH5poAMFdxg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63321b16-0afbf5e01a013e6f0db53da1;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 21:35:18 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: CwkfEPDseHez7mArqwz8tmC3WHFwXAZF1OSColucaQ5vG2hvBIDWOg==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:39:01 GMT
age: 82766
etag: "3d4fa8701f17e8818c25584ef5f04bfbee8440cd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

14 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0369629e-f44d-439f-a279-b5ae6ecc0cf1.png
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
14 kB (14464 bytes)
Hash
aa5cad224dbddd71881bd07255beb4da
bc214d60be395d4cf753216ff8f9691c33d25e75
82935e52aa59929a448d17a5a2d58fda86bb5c25bf6628a05bd904f82517dada

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0369629e-f44d-439f-a279-b5ae6ecc0cf1.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 14464
x-amzn-requestid: 5cbbafdb-3f69-4ee2-9e46-c1ff0ed4ef14
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3UPFiooAMFulA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c1a-633a649700e040b91deadb64;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:33:14 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: cNryG5vkxZuFATZfcNW9Z1-0teUBWLRyWslX1onwYlDCQBUjU2xVdA==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:46:03 GMT
age: 82344
etag: "bc214d60be395d4cf753216ff8f9691c33d25e75"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad593ee0-d404-46e3-b129-229e09b263b0.png
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (12016 bytes)
Hash
4b794c6812cb546de0295e087ebe66a7
a54803cca7d3c509c195f65961e1110c8ec56f55
6a207f75eb3951f3dea5252bc8d185cd604d3d657f15b838774e8087e91f37f5

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad593ee0-d404-46e3-b129-229e09b263b0.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12016
x-amzn-requestid: ec1b3715-5d0f-4045-aa5b-b70a55c81d72
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3e3EtyIAMFdZg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c5e-201dd1ef1426a09965c68dab;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:34:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: pR4b1-lZZRMnWf-PdXFGXaHBCGAfOyp3AjeuCvtu5imWmf9N9l2wKQ==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:48:38 GMT
age: 82189
etag: "a54803cca7d3c509c195f65961e1110c8ec56f55"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb9a3b058-92c9-490e-9cbb-736f7e46510d.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.5 kB (7455 bytes)
Hash
ea3890e460356d6ecc3ba4e405ac2e9e
b383135e2ebc23fe80eb0d594b198cb8c89327a5
8fcff053ce6e5750136bf876bad5b2916935f13ea039912d977928b086f0a48b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb9a3b058-92c9-490e-9cbb-736f7e46510d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7455
x-amzn-requestid: e99c9f33-b72a-4070-80cf-06fb4a87d1df
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZG4S6EcAoAMFX1A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6332a0df-04122b4a345dbc3f3918af98;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 07:06:07 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: yprErfM7s7P7jJPJT-HQZ2Z_AAN4946Tjwyn1g4r7yiA6IF0yLdQTQ==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Wed, 28 Sep 2022 05:22:11 GMT
age: 54976
etag: "b383135e2ebc23fe80eb0d594b198cb8c89327a5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.invisiblefriends.network/apple-touch-icon.png

76.76.21.21

404 Not Found

39 B

URL HTTP/2
www.invisiblefriends.network/apple-touch-icon.png
IP
76.76.21.21:0
ASN
#16509 AMAZON-02

File type
ASCII text
Size
39 B (39 bytes)
Hash
d4ac7f1bba70ba87c56e6d93092b7cca
96492a95a7f9153eed58a3598c4cce56edc6f8d1
91218093a08027e8f69c8051f9deef1fe6c22b278b3f6bdf761e7587cb272774

HTTP Headers

GET /apple-touch-icon.png HTTP/1.1
Host: www.invisiblefriends.network
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.invisiblefriends.network/
Cookie: _ga_DG2GQN3PQL=GS1.1.1664397503.1.0.1664397503.0.0.0; _ga=GA1.1.1573569956.1664397504
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
cache-control: public, max-age=0, must-revalidate
content-type: text/plain; charset=utf-8
date: Wed, 28 Sep 2022 20:38:28 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: MISS
x-vercel-error: NOT_FOUND
x-vercel-id: arn1::hsh6g-1664397508056-e4a7a83fe6e6
content-length: 39
X-Firefox-Spdy: h2

www.invisiblefriends.network/favicon.png

76.76.21.21

200 OK

682 B

URL HTTP/2
www.invisiblefriends.network/favicon.png
IP
76.76.21.21:0
ASN
#16509 AMAZON-02

File type
PNG image data, 32 x 32, 8-bit gray+alpha, non-interlaced\012- data
Size
682 B (682 bytes)
Hash
706bec5fc0854bf370adaea553cc0f4c
b4a8c2633af3cfce5a360a316cefa1c7967fa482
3c3d1786fdf1c5e340d3475e6607e0255cb0882dd2a15d540f41c2acaa06803b

HTTP Headers

GET /favicon.png HTTP/1.1
Host: www.invisiblefriends.network
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.invisiblefriends.network/
Cookie: _ga_DG2GQN3PQL=GS1.1.1664397503.1.0.1664397503.0.0.0; _ga=GA1.1.1573569956.1664397504
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 0
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="favicon.png"
content-type: image/png
date: Wed, 28 Sep 2022 20:38:28 GMT
etag: W/"3c3d1786fdf1c5e340d3475e6607e0255cb0882dd2a15d540f41c2acaa06803b"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: MISS
x-vercel-id: arn1:arn1::skrl6-1664397508056-1c2ca342598b
content-length: 682
X-Firefox-Spdy: h2

rndmcharacters.s3.amazonaws.com/InvisibleFriends-Previews/invsble_7.mp4

52.216.109.59

206 Partial Content

0 B

URL HTTP/1.1
rndmcharacters.s3.amazonaws.com/InvisibleFriends-Previews/invsble_7.mp4
IP
52.216.109.59:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /InvisibleFriends-Previews/invsble_7.mp4 HTTP/1.1
Host: rndmcharacters.s3.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://www.invisiblefriends.network/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 206 Partial Content
x-amz-id-2: e2Xrw6HL6nexctE1fXirdR96FaJyzwh3pkdrjM8JpX+H2fZzE4w21BNdFO2ckZXM03IL3TgkNTs=
x-amz-request-id: P90PM0PYP4CARX2D
Date: Wed, 28 Sep 2022 20:38:28 GMT
Last-Modified: Thu, 27 Jan 2022 20:28:33 GMT
ETag: "a450982148347ce6987636b3bbf77efe"
Accept-Ranges: bytes
Content-Range: bytes 0-1153198/1153199
Content-Type: video/mp4
Server: AmazonS3
Content-Length: 1153199

rndmcharacters.s3.amazonaws.com/InvisibleFriends-Previews/invsble_14.mp4

52.216.109.59

206 Partial Content

0 B

URL HTTP/1.1
rndmcharacters.s3.amazonaws.com/InvisibleFriends-Previews/invsble_14.mp4
IP
52.216.109.59:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /InvisibleFriends-Previews/invsble_14.mp4 HTTP/1.1
Host: rndmcharacters.s3.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://www.invisiblefriends.network/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 206 Partial Content
x-amz-id-2: m31FSsthmrbFq5SrtAQvbJwzkHYCzIIQg2bswqsux75tdK3YGIU3VuBflceFDfuBdQNVQzdCKDI=
x-amz-request-id: 35G6AYEKNK9QB5CS
Date: Wed, 28 Sep 2022 20:38:29 GMT
Last-Modified: Thu, 27 Jan 2022 20:28:36 GMT
ETag: "4f8d7e82e0b427697742308bb48ede89"
Accept-Ranges: bytes
Content-Range: bytes 0-1175850/1175851
Content-Type: video/mp4
Server: AmazonS3
Content-Length: 1175851

www.invisiblefriends.network/img/discord-logo.svg

76.76.21.21

200 OK

0 B

URL HTTP/2
www.invisiblefriends.network/img/discord-logo.svg
IP
76.76.21.21:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /img/discord-logo.svg HTTP/1.1
Host: www.invisiblefriends.network
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.invisiblefriends.network/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
age: 0
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="discord-logo.svg"
content-encoding: br
content-type: image/svg+xml
date: Wed, 28 Sep 2022 20:38:26 GMT
etag: W/"c528fd136e0deb6c1ab428e08a10ff09575544c787426c03dcd14958063e828b"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: MISS
x-vercel-id: arn1:arn1::psv2z-1664397505895-1cc318ec5407
X-Firefox-Spdy: h2

rndmcharacters.s3.amazonaws.com/InvisibleFriends-Previews/invsble_4.mp4

52.216.109.59

206 Partial Content

0 B

URL HTTP/1.1
rndmcharacters.s3.amazonaws.com/InvisibleFriends-Previews/invsble_4.mp4
IP
52.216.109.59:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /InvisibleFriends-Previews/invsble_4.mp4 HTTP/1.1
Host: rndmcharacters.s3.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://www.invisiblefriends.network/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 206 Partial Content
x-amz-id-2: cer55Rr+G/nkPtd71lAnH7d7RGm+TPeriKfNpX4T7Z2EaqtADnPjaPX9EY/7o4ZibK3oQ5LsERk=
x-amz-request-id: P90N59VS1WNNS1VD
Date: Wed, 28 Sep 2022 20:38:28 GMT
Last-Modified: Thu, 27 Jan 2022 20:28:29 GMT
ETag: "8573fbee8c698f89c6f9146cfa85ebaa"
Accept-Ranges: bytes
Content-Range: bytes 0-1108841/1108842
Content-Type: video/mp4
Server: AmazonS3
Content-Length: 1108842

rndmcharacters.s3.amazonaws.com/InvisibleFriends-Previews/invsble_5.mp4

52.216.109.59

206 Partial Content

0 B

URL HTTP/1.1
rndmcharacters.s3.amazonaws.com/InvisibleFriends-Previews/invsble_5.mp4
IP
52.216.109.59:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /InvisibleFriends-Previews/invsble_5.mp4 HTTP/1.1
Host: rndmcharacters.s3.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://www.invisiblefriends.network/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 206 Partial Content
x-amz-id-2: x9g2DPl/3CqDxx17szPVvwCEclWfYZNQrzmZtgTY0YwY/+xNgvRjYXrtPXqq8A4mYgfVypQFcnc=
x-amz-request-id: P90NJFYWW0JAE7JY
Date: Wed, 28 Sep 2022 20:38:28 GMT
Last-Modified: Thu, 27 Jan 2022 20:28:33 GMT
ETag: "5f8629d626c32321928192b96ea1a671"
Accept-Ranges: bytes
Content-Range: bytes 0-1563282/1563283
Content-Type: video/mp4
Server: AmazonS3
Content-Length: 1563283

invisiblefriends.network/

76.76.21.21

308 Permanent Redirect

0 B

URL HTTP/1.0
invisiblefriends.network/
IP
76.76.21.21:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: invisiblefriends.network
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.0 308 Permanent Redirect
Content-Type: text/plain
Location: https://invisiblefriends.network/
Refresh: 0;url=https://invisiblefriends.network/
server: Vercel

ka-f.fontawesome.com/releases/v6.2.0/css/free-v4-font-face.min.css?token=a0135e494a

172.64.202.28

200 OK

0 B

URL HTTP/2
ka-f.fontawesome.com/releases/v6.2.0/css/free-v4-font-face.min.css?token=a0135e494a
IP
172.64.202.28:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /releases/v6.2.0/css/free-v4-font-face.min.css?token=a0135e494a HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.invisiblefriends.network/
Origin: https://www.invisiblefriends.network
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 28 Sep 2022 20:38:27 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Tue, 30 Aug 2022 16:04:58 GMT
etag: W/"a0adfe3c7bd1fa905b7f3b5ecea27889"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c7bc88f9ff8de3d242027cfc3a87b4fe.cloudfront.net (CloudFront)
x-amz-cf-pop: MAD56-P4
x-amz-cf-id: N-Oo4EbPztRAhJTN-U5e4BNhfx2RweQRD7txAPjbfT8k2POkXy_42Q==
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Tu7I7bQgjKvM8hDaUwr%2B0%2BrKr71C5WOEAjikfMKl2fHb18o4lKCR7b5txOKpBcURjhwCL68WrI3mxFver7HBaX8bcYcQYNIM%2F%2BeT2vGVlVZLvukIg7%2FdZg%2FMObXnCC6F6G7JCw7ATA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 751f486439510656-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

rndmcharacters.s3.amazonaws.com/InvisibleFriends-Previews/invsble_13.mp4

52.216.109.59

206 Partial Content

0 B

URL HTTP/1.1
rndmcharacters.s3.amazonaws.com/InvisibleFriends-Previews/invsble_13.mp4
IP
52.216.109.59:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /InvisibleFriends-Previews/invsble_13.mp4 HTTP/1.1
Host: rndmcharacters.s3.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://www.invisiblefriends.network/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 206 Partial Content
x-amz-id-2: 8rQEXbnEIET4t1N6hrBHdPeqMt7JYDWkWXJnmoN2E172qa5l4LZWyQRfZzh5QdrAv0QQLjjL+Xc=
x-amz-request-id: 35G91YRPQJNPY56N
Date: Wed, 28 Sep 2022 20:38:29 GMT
Last-Modified: Thu, 27 Jan 2022 20:28:36 GMT
ETag: "46c35e182f42813b0925193941d79a58"
Accept-Ranges: bytes
Content-Range: bytes 0-1004983/1004984
Content-Type: video/mp4
Server: AmazonS3
Content-Length: 1004984

rndmcharacters.s3.amazonaws.com/InvisibleFriends-Previews/invsble_11.mp4

52.216.109.59

206 Partial Content

0 B

URL HTTP/1.1
rndmcharacters.s3.amazonaws.com/InvisibleFriends-Previews/invsble_11.mp4
IP
52.216.109.59:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /InvisibleFriends-Previews/invsble_11.mp4 HTTP/1.1
Host: rndmcharacters.s3.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://www.invisiblefriends.network/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 206 Partial Content
x-amz-id-2: x7F+A1vMPsx+TdBfof66iuB90rJG3bDc3lqiv7plG2RN5CMNFjsmJdIpQyENB6Rj1UI5VZEfXi0=
x-amz-request-id: P90ZWRNHKPB08WA5
Date: Wed, 28 Sep 2022 20:38:28 GMT
Last-Modified: Thu, 27 Jan 2022 20:28:36 GMT
ETag: "fa0f20f7893f7d4898559db5024cead8"
Accept-Ranges: bytes
Content-Range: bytes 0-857795/857796
Content-Type: video/mp4
Server: AmazonS3
Content-Length: 857796

ka-f.fontawesome.com/releases/v6.2.0/css/free-v4-shims.min.css?token=a0135e494a

172.64.202.28

200 OK

0 B

URL HTTP/2
ka-f.fontawesome.com/releases/v6.2.0/css/free-v4-shims.min.css?token=a0135e494a
IP
172.64.202.28:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /releases/v6.2.0/css/free-v4-shims.min.css?token=a0135e494a HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.invisiblefriends.network/
Origin: https://www.invisiblefriends.network
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 28 Sep 2022 20:38:27 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Tue, 30 Aug 2022 16:04:58 GMT
etag: W/"58dea8f45bf2685132179a837507637a"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 692bdfe152e6ef77a699493426f0198a.cloudfront.net (CloudFront)
x-amz-cf-pop: MAD56-P4
x-amz-cf-id: pQSj4uLyq7vhxOBOBE_CfpENlf3KBlxZx4n_dUnBv1S7ZFgS4VeeHQ==
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Q0%2B5nfBr%2FxDA7CYeUbPk5HVmV9hh1CJ4ukTmm8p6XT1bWOeI0kqQbJA4NkbDbZhR1%2B0PBnnn7XuMRB5hQ1sxwJk3FQYF90vicMYA4628k9jMVVpLvdiW7EOpjeSNxVLTF9KMYpZjbw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 751f486439570656-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.invisiblefriends.network/

76.76.21.21

200 OK

0 B

URL HTTP/2
www.invisiblefriends.network/
IP
76.76.21.21:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: www.invisiblefriends.network
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
access-control-allow-origin: *
age: 100584
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="index.html"
content-encoding: br
content-type: text/html; charset=utf-8
date: Wed, 28 Sep 2022 20:38:25 GMT
etag: W/"6b38e85e9fcd125be6eae7a31cbbbb650a53e823c850fe70bdb18795fa927106"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1:arn1::7n4p2-1664397505772-5932c00fdd1c
X-Firefox-Spdy: h2

www.invisiblefriends.network/img/footer.svg

76.76.21.21

200 OK

0 B

URL HTTP/2
www.invisiblefriends.network/img/footer.svg
IP
76.76.21.21:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /img/footer.svg HTTP/1.1
Host: www.invisiblefriends.network
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.invisiblefriends.network/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
age: 3859331
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="footer.svg"
content-encoding: br
content-type: image/svg+xml
date: Wed, 28 Sep 2022 20:38:25 GMT
etag: W/"1a2c2e12aec1a69f5d545226847306ee1719954945ed9f5f29ca6802b47c8ec6"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1:arn1::skrl6-1664397505891-30ee51a762d9
X-Firefox-Spdy: h2

www.invisiblefriends.network/scripts/app.js

76.76.21.21

200 OK

0 B

URL HTTP/2
www.invisiblefriends.network/scripts/app.js
IP
76.76.21.21:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /scripts/app.js HTTP/1.1
Host: www.invisiblefriends.network
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.invisiblefriends.network/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
age: 0
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="app.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 28 Sep 2022 20:38:26 GMT
etag: W/"4f7348bac4167a7806633c47fdb73ec80095db3102a7939b44d247220745cc8d"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: MISS
x-vercel-id: arn1:arn1::p4sn4-1664397505891-46237613a2ad
X-Firefox-Spdy: h2

ka-f.fontawesome.com/releases/v6.2.0/css/free.min.css?token=a0135e494a

172.64.202.28

200 OK

0 B

URL HTTP/2
ka-f.fontawesome.com/releases/v6.2.0/css/free.min.css?token=a0135e494a
IP
172.64.202.28:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /releases/v6.2.0/css/free.min.css?token=a0135e494a HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.invisiblefriends.network/
Origin: https://www.invisiblefriends.network
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 28 Sep 2022 20:38:27 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Tue, 30 Aug 2022 16:04:58 GMT
etag: W/"0fb4e5b70c498af98f246511192b899d"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 82fa0ad2b8dc70386d3b3ffa35c3e26a.cloudfront.net (CloudFront)
x-amz-cf-pop: MAD56-P4
x-amz-cf-id: fy5izOc0WZtvbGJYLcJ6Sa0lefruQM6rODBb8aber2Io8NgvdaYG6Q==
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VOmq5wt1tBzte5JRpNMBb6OMomURMf2ZvLXLPl9LOvab%2FpaLIJdXBRTDHAFUO34fd054vBurceMoSuN5Gtl5Qd0h3Oqr%2FxvOafDfAnmPZUvKUz7epJjZcW3QxK3eo8IlrncCicqsLg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 751f4864394d0656-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

rndmcharacters.s3.amazonaws.com/InvisibleFriends-Previews/invsble_8.mp4

52.216.109.59

206 Partial Content

0 B

URL HTTP/1.1
rndmcharacters.s3.amazonaws.com/InvisibleFriends-Previews/invsble_8.mp4
IP
52.216.109.59:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /InvisibleFriends-Previews/invsble_8.mp4 HTTP/1.1
Host: rndmcharacters.s3.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://www.invisiblefriends.network/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 206 Partial Content
x-amz-id-2: NAgOb4DxajvGTpB8QAGaN240TpD52Luc0fplGJ8w7AoTARbvCAWCC6XiJAfGrwGuVLvolA0y5iM=
x-amz-request-id: P90RS554MZGK5BDT
Date: Wed, 28 Sep 2022 20:38:28 GMT
Last-Modified: Thu, 27 Jan 2022 20:28:33 GMT
ETag: "14e5e68cd42effe47b0b8738eee84d07"
Accept-Ranges: bytes
Content-Range: bytes 0-1274573/1274574
Content-Type: video/mp4
Server: AmazonS3
Content-Length: 1274574

www.invisiblefriends.network/css/v2.css

76.76.21.21

200 OK

0 B

URL HTTP/2
www.invisiblefriends.network/css/v2.css
IP
76.76.21.21:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css/v2.css HTTP/1.1
Host: www.invisiblefriends.network
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.invisiblefriends.network/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
age: 0
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="v2.css"
content-encoding: br
content-type: text/css; charset=utf-8
date: Wed, 28 Sep 2022 20:38:26 GMT
etag: W/"85831ec8b26e8aa3f0e8fa431bab0778d1c28c237af71fd72ffc87f23462605a"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: MISS
x-vercel-id: arn1:arn1::2dd6f-1664397505877-f290477f3195
X-Firefox-Spdy: h2

www.invisiblefriends.network/metamask/css/main.css

76.76.21.21

200 OK

0 B

URL HTTP/2
www.invisiblefriends.network/metamask/css/main.css
IP
76.76.21.21:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /metamask/css/main.css HTTP/1.1
Host: www.invisiblefriends.network
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.invisiblefriends.network/metamask/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
age: 3859329
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="main.css"
content-encoding: br
content-type: text/css; charset=utf-8
date: Wed, 28 Sep 2022 20:38:26 GMT
etag: W/"895862bcb899a930e81757462d33026821ea9cc5da1551b003968d6c0e1c12c8"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1:arn1::2dd6f-1664397506865-42ad9c570408
X-Firefox-Spdy: h2

ka-f.fontawesome.com/releases/v6.2.0/css/free-v5-font-face.min.css?token=a0135e494a

172.64.202.28

200 OK

0 B

URL HTTP/2
ka-f.fontawesome.com/releases/v6.2.0/css/free-v5-font-face.min.css?token=a0135e494a
IP
172.64.202.28:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /releases/v6.2.0/css/free-v5-font-face.min.css?token=a0135e494a HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.invisiblefriends.network/
Origin: https://www.invisiblefriends.network
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 28 Sep 2022 20:38:27 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Tue, 30 Aug 2022 16:04:58 GMT
etag: W/"e2e288c32f411dc30c0c399302a30654"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
x-cache: Hit from cloudfront
via: 1.1 8774389ba30eacd908b7572400bf30e6.cloudfront.net (CloudFront)
x-amz-cf-pop: BRU50-C1
x-amz-cf-id: nhRFICbab6bBmauUNmuWNjMF7bm_Krq7nmpo25tTILVkogoiGzuDLg==
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=d4lSUvn2ig2bbzPvh%2Bu3nPb6%2F0YP5lw1NQj3FHbEniDi35S6rtJbZLPC3MEs4iiJAO3Onjl9ZjGuZEQo8wGXJxTr5UV9TAF5wjEmNg%2FtazyiWGi%2FEYF2PcQGKpT6up5%2Fffp3ruW%2Fwg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 751f4864394f0656-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

rndmcharacters.s3.amazonaws.com/InvisibleFriends-Previews/invsble_6.mp4

52.216.109.59

206 Partial Content

0 B

URL HTTP/1.1
rndmcharacters.s3.amazonaws.com/InvisibleFriends-Previews/invsble_6.mp4
IP
52.216.109.59:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /InvisibleFriends-Previews/invsble_6.mp4 HTTP/1.1
Host: rndmcharacters.s3.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://www.invisiblefriends.network/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 206 Partial Content
x-amz-id-2: +Lba6//N+N7FqhXm3x/yvfQQJSBPcgs5iG6Ne5Ydr6tsOCg8Y+f0oARId5s1bl0wnI5orlxQxYg=
x-amz-request-id: P90GEE4KTQT32Q3K
Date: Wed, 28 Sep 2022 20:38:28 GMT
Last-Modified: Thu, 27 Jan 2022 20:28:33 GMT
ETag: "1b3336d1d06076f3fc0aca9a36d1b3d3"
Accept-Ranges: bytes
Content-Range: bytes 0-1075091/1075092
Content-Type: video/mp4
Server: AmazonS3
Content-Length: 1075092

rndmcharacters.s3.amazonaws.com/InvisibleFriends-Previews/invsble_9.mp4

52.216.109.59

206 Partial Content

0 B

URL HTTP/1.1
rndmcharacters.s3.amazonaws.com/InvisibleFriends-Previews/invsble_9.mp4
IP
52.216.109.59:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /InvisibleFriends-Previews/invsble_9.mp4 HTTP/1.1
Host: rndmcharacters.s3.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://www.invisiblefriends.network/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 206 Partial Content
x-amz-id-2: RvKutPacSUtIzJIPW/TxyQY4lsNCvLFLluVyyio8cymU8/K8jTpeiQCFLRFWoJ83UMKMyu0rdE4=
x-amz-request-id: P90X7SWS98SH1AB6
Date: Wed, 28 Sep 2022 20:38:28 GMT
Last-Modified: Thu, 27 Jan 2022 20:28:34 GMT
ETag: "c60525dcf332e2b0c6a418a47beb4367"
Accept-Ranges: bytes
Content-Range: bytes 0-926983/926984
Content-Type: video/mp4
Server: AmazonS3
Content-Length: 926984

www.invisiblefriends.network/metamask/font/stylesheet.css

76.76.21.21

200 OK

0 B

URL HTTP/2
www.invisiblefriends.network/metamask/font/stylesheet.css
IP
76.76.21.21:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /metamask/font/stylesheet.css HTTP/1.1
Host: www.invisiblefriends.network
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.invisiblefriends.network/metamask/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
age: 3859329
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="stylesheet.css"
content-encoding: br
content-type: text/css; charset=utf-8
date: Wed, 28 Sep 2022 20:38:26 GMT
etag: W/"a7bca1337d77303c8d27896c09837f5fc25379e8573057f7b16350ab732a7529"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1:arn1::7n4p2-1664397506858-a9a956e5d727
X-Firefox-Spdy: h2

rndmcharacters.s3.amazonaws.com/InvisibleFriends-Previews/invsble_2.mp4

52.216.109.59

206 Partial Content

0 B

URL HTTP/1.1
rndmcharacters.s3.amazonaws.com/InvisibleFriends-Previews/invsble_2.mp4
IP
52.216.109.59:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /InvisibleFriends-Previews/invsble_2.mp4 HTTP/1.1
Host: rndmcharacters.s3.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://www.invisiblefriends.network/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 206 Partial Content
x-amz-id-2: XfDYOLdnUn0p813NNhTIXPK9x+U8vjW74/2PA0PspxSMp/lLzWfuFdPnPiDBrOgKSVFijrktHD0=
x-amz-request-id: P90MP3R7A65HCHJK
Date: Wed, 28 Sep 2022 20:38:28 GMT
Last-Modified: Thu, 27 Jan 2022 20:28:29 GMT
ETag: "53313bdd64391fbf094e081eb43b3b56"
Accept-Ranges: bytes
Content-Range: bytes 0-800814/800815
Content-Type: video/mp4
Server: AmazonS3
Content-Length: 800815

rndmcharacters.s3.amazonaws.com/InvisibleFriends-Previews/invsble_1.mp4

52.216.109.59

206 Partial Content

0 B

URL HTTP/1.1
rndmcharacters.s3.amazonaws.com/InvisibleFriends-Previews/invsble_1.mp4
IP
52.216.109.59:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /InvisibleFriends-Previews/invsble_1.mp4 HTTP/1.1
Host: rndmcharacters.s3.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://www.invisiblefriends.network/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 206 Partial Content
x-amz-id-2: Z3gpqItXXbeifYcsucRalUC3TlWEopeGa7fQQrlKXBAkGati4M2bVc5UyEDQAKU6ne/Oj2drskw=
x-amz-request-id: P90R5V8HB55JGP0K
Date: Wed, 28 Sep 2022 20:38:28 GMT
Last-Modified: Thu, 27 Jan 2022 20:28:29 GMT
ETag: "f6e52318639395c1d0b28a2ab58520e1"
Accept-Ranges: bytes
Content-Range: bytes 0-786874/786875
Content-Type: video/mp4
Server: AmazonS3
Content-Length: 786875

rndmcharacters.s3.amazonaws.com/InvisibleFriends-Previews/invsble_10.mp4

52.216.109.59

206 Partial Content

0 B

URL HTTP/1.1
rndmcharacters.s3.amazonaws.com/InvisibleFriends-Previews/invsble_10.mp4
IP
52.216.109.59:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /InvisibleFriends-Previews/invsble_10.mp4 HTTP/1.1
Host: rndmcharacters.s3.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://www.invisiblefriends.network/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 206 Partial Content
x-amz-id-2: Pdg9m0g4XTvTJKzPOej6EeXw5BhjCdmHFHJVe14Fou/m7VXRySeAn85JvUnZBhRbEm75TwwAfEA=
x-amz-request-id: P90TBHX5VXX4FGAV
Date: Wed, 28 Sep 2022 20:38:28 GMT
Last-Modified: Thu, 27 Jan 2022 20:28:36 GMT
ETag: "e2215f9c25aa81a3ffcde3f21c921306"
Accept-Ranges: bytes
Content-Range: bytes 0-1386952/1386953
Content-Type: video/mp4
Server: AmazonS3
Content-Length: 1386953

invisiblefriends.network/

76.76.21.21

308 Permanent Redirect

0 B

URL HTTP/2
invisiblefriends.network/
IP
76.76.21.21:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: invisiblefriends.network
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 308 Permanent Redirect
cache-control: public, max-age=0, must-revalidate
content-type: text/html
date: Wed, 28 Sep 2022 20:38:25 GMT
location: https://www.invisiblefriends.network/
refresh: 0;url=https://www.invisiblefriends.network/
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: MISS
x-vercel-id: arn1::7fnxs-1664397505502-2ecd413751f0
X-Firefox-Spdy: h2

rndmcharacters.s3.amazonaws.com/InvisibleFriends-Previews/invsble_3.mp4

52.216.109.59

206 Partial Content

0 B

URL HTTP/1.1
rndmcharacters.s3.amazonaws.com/InvisibleFriends-Previews/invsble_3.mp4
IP
52.216.109.59:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /InvisibleFriends-Previews/invsble_3.mp4 HTTP/1.1
Host: rndmcharacters.s3.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://www.invisiblefriends.network/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 206 Partial Content
x-amz-id-2: 6BSNn/Ik4VP4IQGVfqH7becN1621wq7MzW6bBiiPvTQfAXtVixLPiCI/0OkL1GE0IQ2QS/tIZ7E=
x-amz-request-id: P90W1J0VQZBYK720
Date: Wed, 28 Sep 2022 20:38:28 GMT
Last-Modified: Thu, 27 Jan 2022 20:28:29 GMT
ETag: "22f3b203cebf313bf8879cc86bb0c733"
Accept-Ranges: bytes
Content-Range: bytes 0-1366241/1366242
Content-Type: video/mp4
Server: AmazonS3
Content-Length: 1366242

rndmcharacters.s3.amazonaws.com/InvisibleFriends-Previews/invsble_12.mp4

52.216.109.59

206 Partial Content

0 B

URL HTTP/1.1
rndmcharacters.s3.amazonaws.com/InvisibleFriends-Previews/invsble_12.mp4
IP
52.216.109.59:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /InvisibleFriends-Previews/invsble_12.mp4 HTTP/1.1
Host: rndmcharacters.s3.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://www.invisiblefriends.network/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 206 Partial Content
x-amz-id-2: b4kDFIg2IOm8Ta6f8oQNV3jXR1rxT5qBcsOazcR8+EjDEcY4+5Bx3L1Xk+Is+JMpIaSkpN+lH8M=
x-amz-request-id: P90V1G56HP5DNADB
Date: Wed, 28 Sep 2022 20:38:28 GMT
Last-Modified: Thu, 27 Jan 2022 20:28:36 GMT
ETag: "6e37ab181c1cb7115a6c7a42d96a264c"
Accept-Ranges: bytes
Content-Range: bytes 0-1069162/1069163
Content-Type: video/mp4
Server: AmazonS3
Content-Length: 1069163

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (8)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (73)

URL HTTP/1.1