Report - studentfinance-help.firebaseapp.com/

Report Overview

Submitted URL
studentfinance-help.firebaseapp.com/
IP
199.36.158.100
ASN
#54113 FASTLY
Submitted
2023-06-04 00:17:02
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
54

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
studentfinance-help.firebaseapp.com	unknown	2012-10-15	2022-09-09	2023-05-10	4.4 kB	196 kB	199.36.158.100
ocsp.pki.goog	175	2016-06-13	2018-07-01	2023-06-03	350 B	712 B	142.250.74.131
mitmdetection.services.mozilla.com	67826	1994-10-18	2019-07-22	2023-06-03	368 B	326 B	54.230.111.70
logon.slc.co.uk	691057	1996-08-01	2017-02-21	2023-05-25	585 B	0 B	0.0.0.0

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

Scan Date	Severity	Indicator
2023-06-03	medium	studentfinance-help.firebaseapp.com/
2023-06-03	medium	studentfinance-help.firebaseapp.com/
2023-06-03	medium	studentfinance-help.firebaseapp.com/
2023-06-03	medium	studentfinance-help.firebaseapp.com/
2023-06-03	medium	studentfinance-help.firebaseapp.com/
2023-06-03	medium	studentfinance-help.firebaseapp.com/
2023-06-03	medium	studentfinance-help.firebaseapp.com/
2023-06-03	medium	studentfinance-help.firebaseapp.com/
2023-06-03	medium	studentfinance-help.firebaseapp.com/

PhishTank

Scan Date	Severity	Indicator
2022-09-08	medium	studentfinance-help.firebaseapp.com/
2022-09-08	medium	studentfinance-help.firebaseapp.com/_nuxt/6.8310018a6cba33937b290.3200485732128655.js
2022-09-08	medium	studentfinance-help.firebaseapp.com/_nuxt/1.b08eb46f9539ce4cf10b5.282838449419822.js
2022-09-08	medium	studentfinance-help.firebaseapp.com/_nuxt/7.6bd0739d414c1aebe7f95.282838449419822.js
2022-09-08	medium	studentfinance-help.firebaseapp.com/_nuxt/0.deee027fc4a7570644975.282838449419822.js
2022-09-08	medium	studentfinance-help.firebaseapp.com/_nuxt/2.63bf7b29bb92b4d542805.282838449419822.js
2022-09-08	medium	studentfinance-help.firebaseapp.com/_nuxt/5.0062251f59fa1b9f9e705.282838449419822.js
2022-09-08	medium	studentfinance-help.firebaseapp.com/_nuxt/8.b1e414a87eae4b3b8c395.282838449419822.js
2022-09-08	medium	studentfinance-help.firebaseapp.com/favicon.ico

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator
2023-06-04	medium	studentfinance-help.firebaseapp.com
2023-06-04	medium	studentfinance-help.firebaseapp.com
2023-06-04	medium	studentfinance-help.firebaseapp.com
2023-06-04	medium	studentfinance-help.firebaseapp.com
2023-06-04	medium	studentfinance-help.firebaseapp.com
2023-06-04	medium	studentfinance-help.firebaseapp.com
2023-06-04	medium	studentfinance-help.firebaseapp.com
2023-06-04	medium	studentfinance-help.firebaseapp.com
2023-06-04	medium	studentfinance-help.firebaseapp.com

ThreatFox

No alerts detected

JavaScript (0)

HTTP Transactions (12)

URL IP Response Size

studentfinance-help.firebaseapp.com/

199.36.158.100

200 OK

822 B

URL User Request GET HTTP/2
studentfinance-help.firebaseapp.com/
IP
199.36.158.100:443
ASN
#54113 FASTLY

Certificate
IssuerGoogle Trust Services LLC
Subjectfirebaseapp.com
FingerprintB0:E0:C7:02:C8:03:C6:35:EB:2E:6C:0D:88:2A:18:D3:8F:1A:5E:AB
ValidityWed, 10 May 2023 15:01:49 GMT - Tue, 08 Aug 2023 15:01:48 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1663)
Size
822 B (822 bytes)
Hash
87cc92345cc69826d5dd06fabbf6db3e
956041a464ba2fd30dfcf876cc0f26139c7111af
3b7593479036d38c5b7434d840d197ed72048fdc813fd56f087492f822661b61

Detections

Analyzer	Verdict	Alert
openphish	HM Revenue & Customs
phishtank	Other
quad9	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: studentfinance-help.firebaseapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: text/html; charset=utf-8
etag: "9de462f870c84c08e84aabfb14e3d4fce25806fda0ae27fd2c01920784d16436-br"
last-modified: Mon, 05 Sep 2022 16:54:53 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Sun, 04 Jun 2023 00:16:45 GMT
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1685837805.881532,VS0,VE178
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 822
X-Firefox-Spdy: h2

ocsp.pki.goog/s/gts1d4int/js5AeODGNU4

142.250.74.131

472 B

URL
ocsp.pki.goog/s/gts1d4int/js5AeODGNU4
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
03470e63c7f28d8965c3702c7e1420de
918a5397f693c122ea31344a008f7c390fbe412c
121e9afd5abcfe11e6192e0bd54276fad249c59ffef3fb39e364b32eff410e24

HTTP Headers

POST /s/gts1d4int/js5AeODGNU4 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Jun 2023 00:16:45 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

studentfinance-help.firebaseapp.com/_nuxt/6.8310018a6cba33937b290.3200485732128655.js

199.36.158.100

200 OK

1.1 kB

URL GET HTTP/3
studentfinance-help.firebaseapp.com/_nuxt/6.8310018a6cba33937b290.3200485732128655.js
IP
199.36.158.100:443
ASN
#54113 FASTLY

Requested by
https://studentfinance-help.firebaseapp.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectfirebaseapp.com
FingerprintB0:E0:C7:02:C8:03:C6:35:EB:2E:6C:0D:88:2A:18:D3:8F:1A:5E:AB
ValidityWed, 10 May 2023 15:01:49 GMT - Tue, 08 Aug 2023 15:01:48 GMT

File type
ASCII text, with very long lines (2509), with no line terminators
Size
1.1 kB (1100 bytes)
Hash
1b4e90dfa7712caa67ef488f556cbbd3
607a57eae2f3b0efc42e46d582527f82c97436ca
804dc876f51067c2b510fa2c69b98dfe0180e0bac6aa3e3347b6b20fba80ec64

Detections

Analyzer	Verdict	Alert
openphish	HM Revenue & Customs
phishtank	Other
quad9	Sinkholed

HTTP Headers

GET /_nuxt/6.8310018a6cba33937b290.3200485732128655.js HTTP/1.1
Host: studentfinance-help.firebaseapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://studentfinance-help.firebaseapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 1100
cache-control: max-age=3600
content-encoding: br
content-type: text/javascript; charset=utf-8
etag: "bb50934e4e91e6a62ed5b9b8364c5c865888b39a94fd2d9d6a0fef0dc57c0ba3-br"
last-modified: Mon, 05 Sep 2022 16:54:53 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Sun, 04 Jun 2023 00:16:45 GMT
x-served-by: cache-bma1645-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1685837805.467745,VS0,VE116
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

studentfinance-help.firebaseapp.com/_nuxt/1.b08eb46f9539ce4cf10b5.282838449419822.js

199.36.158.100

200 OK

61 kB

URL GET HTTP/3
studentfinance-help.firebaseapp.com/_nuxt/1.b08eb46f9539ce4cf10b5.282838449419822.js
IP
199.36.158.100:443
ASN
#54113 FASTLY

Requested by
https://studentfinance-help.firebaseapp.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectfirebaseapp.com
FingerprintB0:E0:C7:02:C8:03:C6:35:EB:2E:6C:0D:88:2A:18:D3:8F:1A:5E:AB
ValidityWed, 10 May 2023 15:01:49 GMT - Tue, 08 Aug 2023 15:01:48 GMT

File type
ASCII text, with very long lines (65485)
Size
61 kB (61038 bytes)
Hash
a4ef06a4c2e02b00439b686a6937af4a
1b276f1a6679fa4f884a1208ccae874b02208fd8
72079009071ee91a3c660b8a792768cb054b88d29c84ece1a7384bb09bff0a5d

Detections

Analyzer	Verdict	Alert
openphish	HM Revenue & Customs
phishtank	Other
quad9	Sinkholed

HTTP Headers

GET /_nuxt/1.b08eb46f9539ce4cf10b5.282838449419822.js HTTP/1.1
Host: studentfinance-help.firebaseapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://studentfinance-help.firebaseapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 61038
cache-control: max-age=3600
content-encoding: br
content-type: text/javascript; charset=utf-8
etag: "721205c9ea7832ea0542c9dbdc3495a0eac5c1b699efe1b56e61f72138094b3b-br"
last-modified: Mon, 05 Sep 2022 16:54:53 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Sun, 04 Jun 2023 00:16:45 GMT
x-served-by: cache-bma1645-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1685837805.469539,VS0,VE139
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

studentfinance-help.firebaseapp.com/_nuxt/7.6bd0739d414c1aebe7f95.282838449419822.js

199.36.158.100

200 OK

23 kB

URL GET HTTP/3
studentfinance-help.firebaseapp.com/_nuxt/7.6bd0739d414c1aebe7f95.282838449419822.js
IP
199.36.158.100:443
ASN
#54113 FASTLY

Requested by
https://studentfinance-help.firebaseapp.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectfirebaseapp.com
FingerprintB0:E0:C7:02:C8:03:C6:35:EB:2E:6C:0D:88:2A:18:D3:8F:1A:5E:AB
ValidityWed, 10 May 2023 15:01:49 GMT - Tue, 08 Aug 2023 15:01:48 GMT

File type
ASCII text, with very long lines (65485)
Size
23 kB (23219 bytes)
Hash
b2f03a0bcc435fbc2fa993fcb9629b53
29044227791494846c0bcea4c14c53d7be674c6a
b1d7de8363e54b93a0439e647a4b3ee8eb0e7691cb056a294bfe319a6841d987

Detections

Analyzer	Verdict	Alert
openphish	HM Revenue & Customs
phishtank	Other
quad9	Sinkholed

HTTP Headers

GET /_nuxt/7.6bd0739d414c1aebe7f95.282838449419822.js HTTP/1.1
Host: studentfinance-help.firebaseapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://studentfinance-help.firebaseapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 23219
cache-control: max-age=3600
content-encoding: br
content-type: text/javascript; charset=utf-8
etag: "61ffb6eab41e4d28d009c329d77037f303817b875634db874f6dd5e521613825-br"
last-modified: Mon, 05 Sep 2022 16:54:53 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Sun, 04 Jun 2023 00:16:45 GMT
x-served-by: cache-bma1645-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1685837805.470077,VS0,VE146
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

studentfinance-help.firebaseapp.com/_nuxt/0.deee027fc4a7570644975.282838449419822.js

199.36.158.100

200 OK

68 kB

URL GET HTTP/3
studentfinance-help.firebaseapp.com/_nuxt/0.deee027fc4a7570644975.282838449419822.js
IP
199.36.158.100:443
ASN
#54113 FASTLY

Requested by
https://studentfinance-help.firebaseapp.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectfirebaseapp.com
FingerprintB0:E0:C7:02:C8:03:C6:35:EB:2E:6C:0D:88:2A:18:D3:8F:1A:5E:AB
ValidityWed, 10 May 2023 15:01:49 GMT - Tue, 08 Aug 2023 15:01:48 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
68 kB (67778 bytes)
Hash
66ae0f2fbe37eecd11f4bb4f3295899f
b6f415a6264b4893cde9148471c7ae3d7f78b711
da580eff305e91c9ece7a85c9818e88a5511f6f04ebd44ca32cfda887d2879d1

Detections

Analyzer	Verdict	Alert
openphish	HM Revenue & Customs
phishtank	Other
quad9	Sinkholed

HTTP Headers

GET /_nuxt/0.deee027fc4a7570644975.282838449419822.js HTTP/1.1
Host: studentfinance-help.firebaseapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://studentfinance-help.firebaseapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 67778
cache-control: max-age=3600
content-encoding: br
content-type: text/javascript; charset=utf-8
etag: "6707612beb0abddb79033f582f948c7e1fed749538d437d7e7ac319b53c6f867-br"
last-modified: Mon, 05 Sep 2022 16:54:53 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Sun, 04 Jun 2023 00:16:45 GMT
x-served-by: cache-bma1645-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1685837805.471053,VS0,VE176
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

studentfinance-help.firebaseapp.com/_nuxt/2.63bf7b29bb92b4d542805.282838449419822.js

199.36.158.100

200 OK

6.4 kB

URL GET HTTP/3
studentfinance-help.firebaseapp.com/_nuxt/2.63bf7b29bb92b4d542805.282838449419822.js
IP
199.36.158.100:443
ASN
#54113 FASTLY

Requested by
https://studentfinance-help.firebaseapp.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectfirebaseapp.com
FingerprintB0:E0:C7:02:C8:03:C6:35:EB:2E:6C:0D:88:2A:18:D3:8F:1A:5E:AB
ValidityWed, 10 May 2023 15:01:49 GMT - Tue, 08 Aug 2023 15:01:48 GMT

File type
ASCII text, with very long lines (20131), with no line terminators
Size
6.4 kB (6352 bytes)
Hash
e747fbc73d62cf917a241760dd1fb3cf
badcd6118378cf65d2ed8e2663690f3489748233
87815345900fec9178c2a6ccce61f87790a5077d8bddbcd66928bb0567f8a3a0

Detections

Analyzer	Verdict	Alert
openphish	HM Revenue & Customs
phishtank	Other
quad9	Sinkholed

HTTP Headers

GET /_nuxt/2.63bf7b29bb92b4d542805.282838449419822.js HTTP/1.1
Host: studentfinance-help.firebaseapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://studentfinance-help.firebaseapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 6352
cache-control: max-age=3600
content-encoding: br
content-type: text/javascript; charset=utf-8
etag: "06c9104fa43932f44f30b01926972f5ded4e337146423ffb3573e185217a004b-br"
last-modified: Mon, 05 Sep 2022 16:54:53 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Sun, 04 Jun 2023 00:16:45 GMT
x-served-by: cache-bma1645-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1685837806.718287,VS0,VE119
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

studentfinance-help.firebaseapp.com/_nuxt/5.0062251f59fa1b9f9e705.282838449419822.js

199.36.158.100

200 OK

7.9 kB

URL GET HTTP/3
studentfinance-help.firebaseapp.com/_nuxt/5.0062251f59fa1b9f9e705.282838449419822.js
IP
199.36.158.100:443
ASN
#54113 FASTLY

Requested by
https://studentfinance-help.firebaseapp.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectfirebaseapp.com
FingerprintB0:E0:C7:02:C8:03:C6:35:EB:2E:6C:0D:88:2A:18:D3:8F:1A:5E:AB
ValidityWed, 10 May 2023 15:01:49 GMT - Tue, 08 Aug 2023 15:01:48 GMT

File type
Unicode text, UTF-8 text, with very long lines (65533), with no line terminators
Size
7.9 kB (7864 bytes)
Hash
4edcaeadd764671e499ee5fbb744f2d2
48448b4444fc46cf9fee34665870ea33cd80feab
88448ef8d28d888494a42a12875ef1c2ded375d42f17afd8ef7aa4183d5e50da

Detections

Analyzer	Verdict	Alert
openphish	HM Revenue & Customs
phishtank	Other
quad9	Sinkholed

HTTP Headers

GET /_nuxt/5.0062251f59fa1b9f9e705.282838449419822.js HTTP/1.1
Host: studentfinance-help.firebaseapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://studentfinance-help.firebaseapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 7864
cache-control: max-age=3600
content-encoding: br
content-type: text/javascript; charset=utf-8
etag: "3f58506abd58185c7e5093052484e385f76e0e338a5eafee93c3253906bab7c7-br"
last-modified: Mon, 05 Sep 2022 16:54:53 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Sun, 04 Jun 2023 00:16:45 GMT
x-served-by: cache-bma1645-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1685837806.719142,VS0,VE120
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

studentfinance-help.firebaseapp.com/_nuxt/8.b1e414a87eae4b3b8c395.282838449419822.js

199.36.158.100

200 OK

23 kB

URL GET HTTP/3
studentfinance-help.firebaseapp.com/_nuxt/8.b1e414a87eae4b3b8c395.282838449419822.js
IP
199.36.158.100:443
ASN
#54113 FASTLY

Requested by
https://studentfinance-help.firebaseapp.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectfirebaseapp.com
FingerprintB0:E0:C7:02:C8:03:C6:35:EB:2E:6C:0D:88:2A:18:D3:8F:1A:5E:AB
ValidityWed, 10 May 2023 15:01:49 GMT - Tue, 08 Aug 2023 15:01:48 GMT

File type
ASCII text, with very long lines (65485)
Size
23 kB (23109 bytes)
Hash
1001edc6fc1e13c7d16a60861f7b3e95
35d3abec12611b50a1fbf17e8705e22369e0c1b9
5b1e897afbdcb2d808c46d600ae913d149b8c747153f91cfda9722140de4d839

Detections

Analyzer	Verdict	Alert
openphish	HM Revenue & Customs
phishtank	Other
quad9	Sinkholed

HTTP Headers

GET /_nuxt/8.b1e414a87eae4b3b8c395.282838449419822.js HTTP/1.1
Host: studentfinance-help.firebaseapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://studentfinance-help.firebaseapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 23109
cache-control: max-age=3600
content-encoding: br
content-type: text/javascript; charset=utf-8
etag: "e118a74d7339c077c9f9f24909a4a1fb75856d92dffba5c08f8d8cae59aedce3-br"
last-modified: Mon, 05 Sep 2022 16:54:53 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Sun, 04 Jun 2023 00:16:45 GMT
x-served-by: cache-bma1645-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1685837806.718685,VS0,VE138
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

mitmdetection.services.mozilla.com/

54.230.111.70

0 B

URL
mitmdetection.services.mozilla.com/
IP
54.230.111.70:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

HEAD / HTTP/1.1
Host: mitmdetection.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
content-type: application/xml
date: Sun, 04 Jun 2023 00:16:46 GMT
server: AmazonS3
x-cache: Error from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: FIDoRKR95pc82AYB7KJEcK9nU1PRXhvH3qSIj4dJnyv6SQ0It58P1g==
X-Firefox-Spdy: h2

studentfinance-help.firebaseapp.com/favicon.ico

0.0.0.0

0 B

URL GET
studentfinance-help.firebaseapp.com/favicon.ico
IP
0.0.0.0:0
ASN
#0

Requested by
https://studentfinance-help.firebaseapp.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectfirebaseapp.com
FingerprintB0:E0:C7:02:C8:03:C6:35:EB:2E:6C:0D:88:2A:18:D3:8F:1A:5E:AB
ValidityWed, 10 May 2023 15:01:49 GMT - Tue, 08 Aug 2023 15:01:48 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
openphish	HM Revenue & Customs
phishtank	Other
quad9	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: studentfinance-help.firebaseapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://studentfinance-help.firebaseapp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

logon.slc.co.uk/welcome/secured/login?_locale=en_GB&cookieConsent=accept

0.0.0.0

0 B

URL User Request GET
logon.slc.co.uk/welcome/secured/login?_locale=en_GB&cookieConsent=accept
IP
0.0.0.0:0
ASN
#0

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /welcome/secured/login?_locale=en_GB&cookieConsent=accept HTTP/1.1
Host: logon.slc.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://studentfinance-help.firebaseapp.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (0)

HTTP Transactions (12)

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL GET HTTP/3

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/3

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/3

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/3

IP

ASN

Requested by

Certificate

File type

Size