Report - ronacanx.bitbucket.io/

Report Overview

Visited public
2023-11-28 09:04:16
Tags
URL
ronacanx.bitbucket.io/
Finishing URL
ronacanx.bitbucket.io/
IP / ASN
185.166.143.50
#16509 AMAZON-02
Title
ronacanx.bitbucket.io/

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
cdn.jsdelivr.net	439	2012-05-16	2012-09-30 02:15:09	2023-11-28 05:09:10	1.8 kB	87 kB	151.101.65.229
ronacanx.bitbucket.io	unknown	2013-03-07	2022-08-22 05:07:35	2023-10-20 03:25:46	5.5 kB	314 kB	185.166.143.48

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2023-10-19	medium	ronacanx.bitbucket.io/	Microsoft OneDrive
2023-10-19	medium	ronacanx.bitbucket.io/	Microsoft OneDrive
2023-10-19	medium	ronacanx.bitbucket.io/	Microsoft OneDrive
2023-10-19	medium	ronacanx.bitbucket.io/	Microsoft OneDrive
2023-10-19	medium	ronacanx.bitbucket.io/	Microsoft OneDrive
2023-10-19	medium	ronacanx.bitbucket.io/	Microsoft OneDrive
2023-10-19	medium	ronacanx.bitbucket.io/	Microsoft OneDrive
2023-10-19	medium	ronacanx.bitbucket.io/	Microsoft OneDrive
2023-10-19	medium	ronacanx.bitbucket.io/	Microsoft OneDrive
2023-10-19	medium	ronacanx.bitbucket.io/	Microsoft OneDrive
2023-10-19	medium	ronacanx.bitbucket.io/	Microsoft OneDrive
2023-10-19	medium	ronacanx.bitbucket.io/	Microsoft OneDrive

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (5)

	URL	From	Size	First Seen	Last Seen
	cdn.jsdelivr.net/npm/jquery@3.6.0/dist/jquery.slim.min.js	ScriptElement	72 kB	2023-03-07	2025-05-11
Pretty URL cdn.jsdelivr.net/npm/jquery@3.6.0/dist/jquery.slim.min.js IP 151.101.65.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02 Last Seen2025-05-11 06:23 Times Seen6100 Hash 1276065911521c5c22037a31365d179d d1c6704e94efe2d465fc161b6381e127d35acd81 bbb7b9921ca2b61948753a6edb63c78443663dc45d1621d18e102e1dcb34e512 Loading...

	cdn.jsdelivr.net/npm/popper.js@1.16.1/dist/umd/popper.min.js	ScriptElement	21 kB	2023-03-07	2025-05-10
Pretty URL cdn.jsdelivr.net/npm/popper.js@1.16.1/dist/umd/popper.min.js IP 151.101.65.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-10 21:14 Times Seen6219 Hash 1022eaf388cc780bcfeb6456157adb7d 313789ca0e31b654784dbba8b0f83f364f8683b4 fe28dc38bc057f6eb11180235bbe458b3295a39b674d889075d3d9a0b5071d9f Loading...

	cdn.jsdelivr.net/npm/bootstrap@4.6.1/dist/js/bootstrap.bundle.min.js	ScriptElement	83 kB	2023-03-07	2025-05-11
Pretty URL cdn.jsdelivr.net/npm/bootstrap@4.6.1/dist/js/bootstrap.bundle.min.js IP 151.101.65.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10 Last Seen2025-05-11 09:50 Times Seen1910 Hash 90146f01d8a2028ed6f2c3d2fba4ac9b 0363cb58b7a7b60ef7fbf82b8bceb6305232501a 7e02c082fedfc821a8a51fe004dab6896dd928876a21ccac8675142c2e2f7b1f Loading...

	ronacanx.bitbucket.io/jquery.min.js	ScriptElement	90 kB	2023-03-07	2025-05-11
Pretty URL ronacanx.bitbucket.io/jquery.min.js IP 185.166.143.48 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-11 11:03 Times Seen108938 Hash dc5e7f18c8d36ac1d3d4753a87c98d0a c8e1c8b386dc5b7a9184c763c88d19a346eb3342 f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d Loading...

	ronacanx.bitbucket.io/app.js	ScriptElement	2.9 kB	2023-09-22	2023-11-28
Pretty URL ronacanx.bitbucket.io/app.js IP 185.166.143.48 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-22 14:34 Last Seen2023-11-28 14:13 Times Seen4 Hash 620cb6437ac24f5d1202ab6aedc35335 0f9021ff865089b76de36feb63dbe143054d2d0a 9fc794155f074dc9898786979779a51335ec44e9ab8cde89cfd921cb651bfd8e Loading...

HTTP Transactions (16)

URL IP Response Size

cdn.jsdelivr.net/npm/bootstrap@4.6.1/dist/css/bootstrap.min.css

151.101.65.229

200 OK

26 kB

URL GET HTTP/2
cdn.jsdelivr.net/npm/bootstrap@4.6.1/dist/css/bootstrap.min.css
IP
151.101.65.229:443
ASN
#54113 FASTLY

Requested by
https://ronacanx.bitbucket.io/
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT

File type
ASCII text, with very long lines (65326)
Size
26 kB (26391 bytes)
Hash
d44328cee87c2b405213893ba35eaf78
1fb83fc595cf28bf9362d87610eadfa3b7bbbe59
0c5ed985fdbddc027124d4e6879ce1a1860832cda85e2b517c18d8fbd2fffc06

HTTP Headers

GET /npm/bootstrap@4.6.1/dist/css/bootstrap.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ronacanx.bitbucket.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 4.6.1
x-jsd-version-type: version
etag: W/"278e1-H7g/xZXPKL+TYth2EOrfo7e7vlk"
content-encoding: br
accept-ranges: bytes
date: Tue, 28 Nov 2023 09:03:58 GMT
age: 20593533
x-served-by: cache-fra-eddf8230108-FRA, cache-bma1677-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 26391
X-Firefox-Spdy: h2

cdn.jsdelivr.net/npm/jquery@3.6.0/dist/jquery.slim.min.js

151.101.65.229

200 OK

26 kB

URL GET HTTP/2
cdn.jsdelivr.net/npm/jquery@3.6.0/dist/jquery.slim.min.js
IP
151.101.65.229:443
ASN
#54113 FASTLY

Requested by
https://ronacanx.bitbucket.io/
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT

File type
ASCII text, with very long lines (65241)
Size
26 kB (26095 bytes)
Hash
1276065911521c5c22037a31365d179d
d1c6704e94efe2d465fc161b6381e127d35acd81
bbb7b9921ca2b61948753a6edb63c78443663dc45d1621d18e102e1dcb34e512

HTTP Headers

GET /npm/jquery@3.6.0/dist/jquery.slim.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ronacanx.bitbucket.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 3.6.0
x-jsd-version-type: version
etag: W/"11ab4-0cZwTpTv4tRl/BYbY4HhJ9NazYE"
content-encoding: br
accept-ranges: bytes
date: Tue, 28 Nov 2023 09:03:58 GMT
age: 6685270
x-served-by: cache-fra-eddf8230066-FRA, cache-bma1677-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 26095
X-Firefox-Spdy: h2

cdn.jsdelivr.net/npm/popper.js@1.16.1/dist/umd/popper.min.js

151.101.65.229

200 OK

7.8 kB

URL GET HTTP/2
cdn.jsdelivr.net/npm/popper.js@1.16.1/dist/umd/popper.min.js
IP
151.101.65.229:443
ASN
#54113 FASTLY

Requested by
https://ronacanx.bitbucket.io/
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT

File type
ASCII text, with very long lines (21060)
Size
7.8 kB (7831 bytes)
Hash
1022eaf388cc780bcfeb6456157adb7d
313789ca0e31b654784dbba8b0f83f364f8683b4
fe28dc38bc057f6eb11180235bbe458b3295a39b674d889075d3d9a0b5071d9f

HTTP Headers

GET /npm/popper.js@1.16.1/dist/umd/popper.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ronacanx.bitbucket.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 1.16.1
x-jsd-version-type: version
etag: W/"52f1-MTeJyg4xtlR4TbuosPg/Nk+Gg7Q"
content-encoding: br
accept-ranges: bytes
date: Tue, 28 Nov 2023 09:03:58 GMT
age: 6992444
x-served-by: cache-fra-eddf8230124-FRA, cache-bma1677-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 7831
X-Firefox-Spdy: h2

cdn.jsdelivr.net/npm/bootstrap@4.6.1/dist/js/bootstrap.bundle.min.js

151.101.65.229

200 OK

24 kB

URL GET HTTP/2
cdn.jsdelivr.net/npm/bootstrap@4.6.1/dist/js/bootstrap.bundle.min.js
IP
151.101.65.229:443
ASN
#54113 FASTLY

Requested by
https://ronacanx.bitbucket.io/
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT

File type
ASCII text, with very long lines (65299)
Size
24 kB (23650 bytes)
Hash
90146f01d8a2028ed6f2c3d2fba4ac9b
0363cb58b7a7b60ef7fbf82b8bceb6305232501a
7e02c082fedfc821a8a51fe004dab6896dd928876a21ccac8675142c2e2f7b1f

HTTP Headers

GET /npm/bootstrap@4.6.1/dist/js/bootstrap.bundle.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ronacanx.bitbucket.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 4.6.1
x-jsd-version-type: version
etag: W/"14535-A2PLWLentg73+/gri862MFIyUBo"
content-encoding: br
accept-ranges: bytes
date: Tue, 28 Nov 2023 09:03:58 GMT
age: 19640047
x-served-by: cache-fra-eddf8230130-FRA, cache-bma1677-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 23650
X-Firefox-Spdy: h2

ronacanx.bitbucket.io/im/lgs.png

185.166.143.48

200 OK

2.7 kB

URL GET HTTP/2
ronacanx.bitbucket.io/im/lgs.png
IP
185.166.143.48:443
ASN
#16509 AMAZON-02

Requested by
https://ronacanx.bitbucket.io/
Certificate
IssuerDigiCert Inc
Subject*.bitbucket.io
FingerprintD3:AE:AA:22:FC:15:43:47:F4:6B:2E:BE:73:DF:6C:9A:38:EC:4D:28
ValidityThu, 09 Feb 2023 00:00:00 GMT - Sat, 03 Feb 2024 23:59:59 GMT

File type
PNG image data, 185 x 46, 8-bit/color RGBA, non-interlaced\012- data
Size
2.7 kB (2673 bytes)
Hash
837677b9bfdbfe36a7de7692f6f53467
7a0abcf1b4882638540f7913eb4e59bd789383b0
e70db5fca6d17c281bb853b80dd399d0f2abba037d4e7b9d851d527fc751bec7

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Microsoft OneDrive

HTTP Headers

GET /im/lgs.png HTTP/1.1
Host: ronacanx.bitbucket.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ronacanx.bitbucket.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 09:03:58 GMT
content-type: image/png
content-length: 2673
server: AtlassianEdge
last-modified: Wed, 17 Aug 2022 09:48:38 GMT
etag: "49b304d05d0185176310f308c6d172ae"
x-used-mesh: False
vary: Accept-Language, Origin
content-language: en
x-view-name: bitbucket.apps.hosted.views.serve
x-dc-location: Micros-3
x-served-by: cf147416b470
x-version: f5dbb1d6a314
x-static-version: f5dbb1d6a314
x-request-count: 2716
x-render-time: 0.04110217094421387
x-b3-traceid: b3ec95e947ca4608b7c82060cdd44e59
x-b3-spanid: 95e44ddc06028c7b
content-security-policy: None
cache-control: max-age=900,max-age=900
x-usage-quota-remaining: 998436.877
x-usage-request-cost: 804.43
x-usage-user-time: 0.024133
x-usage-system-time: 0.000000
x-usage-input-ops: 0
x-usage-output-ops: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
atl-traceid: b3ec95e947ca4608b7c82060cdd44e59
report-to: {"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group": "endpoint-1", "include_subdomains": true, "max_age": 600}
nel: {"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to": "endpoint-1"}
strict-transport-security: max-age=63072000; preload
X-Firefox-Spdy: h2

ronacanx.bitbucket.io/app.js

185.166.143.48

200 OK

2.9 kB

URL GET HTTP/2
ronacanx.bitbucket.io/app.js
IP
185.166.143.48:443
ASN
#16509 AMAZON-02

Requested by
https://ronacanx.bitbucket.io/
Certificate
IssuerDigiCert Inc
Subject*.bitbucket.io
FingerprintD3:AE:AA:22:FC:15:43:47:F4:6B:2E:BE:73:DF:6C:9A:38:EC:4D:28
ValidityThu, 09 Feb 2023 00:00:00 GMT - Sat, 03 Feb 2024 23:59:59 GMT

File type
exported SGML document, ASCII text, with CRLF line terminators
Size
2.9 kB (2883 bytes)
Hash
620cb6437ac24f5d1202ab6aedc35335
0f9021ff865089b76de36feb63dbe143054d2d0a
9fc794155f074dc9898786979779a51335ec44e9ab8cde89cfd921cb651bfd8e

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Microsoft OneDrive

HTTP Headers

GET /app.js HTTP/1.1
Host: ronacanx.bitbucket.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ronacanx.bitbucket.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 09:03:58 GMT
content-type: text/javascript
content-length: 2883
server: AtlassianEdge
last-modified: Wed, 17 Aug 2022 09:48:38 GMT
etag: "49b304d05d0185176310f308c6d172ae"
x-used-mesh: False
vary: Accept-Language, Origin
content-language: en
x-view-name: bitbucket.apps.hosted.views.serve
x-dc-location: Micros-3
x-served-by: 5d28b0378b27
x-version: f5dbb1d6a314
x-static-version: f5dbb1d6a314
x-request-count: 2061
x-render-time: 0.07730555534362793
x-b3-traceid: c3fc53f070c5410b8a64d25e729e2f9a
x-b3-spanid: a9f2e927e52d46a8
content-security-policy: None
cache-control: max-age=900,max-age=900
x-usage-quota-remaining: 998217.001
x-usage-request-cost: 1034.67
x-usage-user-time: 0.031040
x-usage-system-time: 0.000000
x-usage-input-ops: 0
x-usage-output-ops: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
atl-traceid: c3fc53f070c5410b8a64d25e729e2f9a
report-to: {"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group": "endpoint-1", "include_subdomains": true, "max_age": 600}
nel: {"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to": "endpoint-1"}
strict-transport-security: max-age=63072000; preload
X-Firefox-Spdy: h2

ronacanx.bitbucket.io/

185.166.143.48

200 OK

2.4 kB

URL User Request GET HTTP/2
ronacanx.bitbucket.io/
IP
185.166.143.48:443
ASN
#16509 AMAZON-02

Certificate
IssuerDigiCert Inc
Subject*.bitbucket.io
FingerprintD3:AE:AA:22:FC:15:43:47:F4:6B:2E:BE:73:DF:6C:9A:38:EC:4D:28
ValidityThu, 09 Feb 2023 00:00:00 GMT - Sat, 03 Feb 2024 23:59:59 GMT

File type
gzip compressed data, max speed, from Unix\012- data
Size
2.4 kB (2380 bytes)
Hash
61997dd6ee0114387bdbc36272a6a1f8
329ffe2aa5db68c3c45a166e9012820ce6352f8e
e80c1ecf36763604ecfda673a9db59aee5414e54be8a0d2b0a4fb9bc97ed040e

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Microsoft OneDrive

HTTP Headers

GET / HTTP/1.1
Host: ronacanx.bitbucket.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 28 Nov 2023 09:03:58 GMT
content-type: text/html
server: AtlassianEdge
last-modified: Wed, 17 Aug 2022 09:48:38 GMT
etag: W/"49b304d05d0185176310f308c6d172ae"
x-used-mesh: False
vary: Accept-Language, Origin
content-language: en
x-view-name: bitbucket.apps.hosted.views.serve
x-dc-location: Micros-3
x-served-by: 0a78c895674f
x-version: f5dbb1d6a314
x-static-version: f5dbb1d6a314
x-request-count: 1107
x-render-time: 0.05141782760620117
x-b3-traceid: b2b3c491b1f649ecb9f3ab9adfde0e18
x-b3-spanid: 81e0edfda9ba3f9b
content-security-policy: None
cache-control: max-age=900,max-age=900
x-usage-quota-remaining: 999103.518
x-usage-request-cost: 911.33
x-usage-user-time: 0.027340
x-usage-system-time: 0.000000
x-usage-input-ops: 0
x-usage-output-ops: 0
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
atl-traceid: b2b3c491b1f649ecb9f3ab9adfde0e18
report-to: {"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group": "endpoint-1", "include_subdomains": true, "max_age": 600}
nel: {"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to": "endpoint-1"}
strict-transport-security: max-age=63072000; preload
X-Firefox-Spdy: h2

ronacanx.bitbucket.io/im/sd.png

185.166.143.48

200 OK

11 kB

URL GET HTTP/2
ronacanx.bitbucket.io/im/sd.png
IP
185.166.143.48:443
ASN
#16509 AMAZON-02

Requested by
https://ronacanx.bitbucket.io/
Certificate
IssuerDigiCert Inc
Subject*.bitbucket.io
FingerprintD3:AE:AA:22:FC:15:43:47:F4:6B:2E:BE:73:DF:6C:9A:38:EC:4D:28
ValidityThu, 09 Feb 2023 00:00:00 GMT - Sat, 03 Feb 2024 23:59:59 GMT

File type
PNG image data, 224 x 642, 8-bit/color RGB, non-interlaced\012- data
Size
11 kB (10589 bytes)
Hash
fbd1286e7afc3bce71bc53dbba9f05a5
a9062cd886efc5ce23040e477bd0c9198128c620
6efd73f720999eb847f24f7ed036b5c049012520bc78eb70037febc664b89dbb

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Microsoft OneDrive

HTTP Headers

GET /im/sd.png HTTP/1.1
Host: ronacanx.bitbucket.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ronacanx.bitbucket.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 09:03:58 GMT
content-type: image/png
content-length: 10589
server: AtlassianEdge
last-modified: Wed, 17 Aug 2022 09:48:38 GMT
etag: "49b304d05d0185176310f308c6d172ae"
x-used-mesh: False
vary: Accept-Language, Origin
content-language: en
x-view-name: bitbucket.apps.hosted.views.serve
x-dc-location: Micros-3
x-served-by: 0a78c895674f
x-version: f5dbb1d6a314
x-static-version: f5dbb1d6a314
x-request-count: 1202
x-render-time: 0.051572322845458984
x-b3-traceid: df109b81b78f4414ba232f0e7810d53e
x-b3-spanid: e35d0187e0f232ab
content-security-policy: None
cache-control: max-age=900,max-age=900
x-usage-quota-remaining: 997337.226
x-usage-request-cost: 922.87
x-usage-user-time: 0.024137
x-usage-system-time: 0.003549
x-usage-input-ops: 0
x-usage-output-ops: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
atl-traceid: df109b81b78f4414ba232f0e7810d53e
report-to: {"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group": "endpoint-1", "include_subdomains": true, "max_age": 600}
nel: {"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to": "endpoint-1"}
strict-transport-security: max-age=63072000; preload
X-Firefox-Spdy: h2

ronacanx.bitbucket.io/im/1.png

185.166.143.48

200 OK

26 kB

URL GET HTTP/2
ronacanx.bitbucket.io/im/1.png
IP
185.166.143.48:443
ASN
#16509 AMAZON-02

Requested by
https://ronacanx.bitbucket.io/
Certificate
IssuerDigiCert Inc
Subject*.bitbucket.io
FingerprintD3:AE:AA:22:FC:15:43:47:F4:6B:2E:BE:73:DF:6C:9A:38:EC:4D:28
ValidityThu, 09 Feb 2023 00:00:00 GMT - Sat, 03 Feb 2024 23:59:59 GMT

File type
PNG image data, 225 x 219, 8-bit/color RGBA, non-interlaced\012- data
Size
26 kB (26162 bytes)
Hash
165cce774e11ef47da6e392af5b432ab
3f50b915f3d5cdccd2108c6876b5460b01462880
317c97e8160e912d38fccd519808e1d82d65850daed75e2faf151c8dc3257c87

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Microsoft OneDrive

HTTP Headers

GET /im/1.png HTTP/1.1
Host: ronacanx.bitbucket.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ronacanx.bitbucket.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 09:03:59 GMT
content-type: image/png
content-length: 26162
server: AtlassianEdge
last-modified: Wed, 17 Aug 2022 09:48:38 GMT
etag: "49b304d05d0185176310f308c6d172ae"
x-used-mesh: False
vary: Accept-Language, Origin
content-language: en
x-view-name: bitbucket.apps.hosted.views.serve
x-dc-location: Micros-3
x-served-by: 5d28b0378b27
x-version: f5dbb1d6a314
x-static-version: f5dbb1d6a314
x-request-count: 1168
x-render-time: 0.06022286415100098
x-b3-traceid: b575853cd10746958667d095b890bfce
x-b3-spanid: ecfb098b590d7668
content-security-policy: None
cache-control: max-age=900,max-age=900
x-usage-quota-remaining: 995930.722
x-usage-request-cost: 1436.23
x-usage-user-time: 0.029087
x-usage-system-time: 0.000000
x-usage-input-ops: 56
x-usage-output-ops: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
atl-traceid: b575853cd10746958667d095b890bfce
report-to: {"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group": "endpoint-1", "include_subdomains": true, "max_age": 600}
nel: {"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to": "endpoint-1"}
strict-transport-security: max-age=63072000; preload
X-Firefox-Spdy: h2

ronacanx.bitbucket.io/im/to.png

185.166.143.48

200 OK

30 kB

URL GET HTTP/2
ronacanx.bitbucket.io/im/to.png
IP
185.166.143.48:443
ASN
#16509 AMAZON-02

Requested by
https://ronacanx.bitbucket.io/
Certificate
IssuerDigiCert Inc
Subject*.bitbucket.io
FingerprintD3:AE:AA:22:FC:15:43:47:F4:6B:2E:BE:73:DF:6C:9A:38:EC:4D:28
ValidityThu, 09 Feb 2023 00:00:00 GMT - Sat, 03 Feb 2024 23:59:59 GMT

File type
PNG image data, 374 x 111, 8-bit/color RGBA, non-interlaced\012- data
Size
30 kB (29469 bytes)
Hash
cb4706a0a85cfadc03c7eb2995bd8d1f
d114185c5702be346ab4068a7b3a76607d1f77ee
ace11d6484e85960c469994b99edbdd5ac1942a563fc23f03a3c560c306ae205

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Microsoft OneDrive

HTTP Headers

GET /im/to.png HTTP/1.1
Host: ronacanx.bitbucket.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ronacanx.bitbucket.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 09:03:59 GMT
content-type: image/png
content-length: 29469
server: AtlassianEdge
last-modified: Wed, 17 Aug 2022 09:48:38 GMT
etag: "49b304d05d0185176310f308c6d172ae"
x-used-mesh: False
vary: Accept-Language, Origin
content-language: en
x-view-name: bitbucket.apps.hosted.views.serve
x-dc-location: Micros-3
x-served-by: f770bb0d4336
x-version: f5dbb1d6a314
x-static-version: f5dbb1d6a314
x-request-count: 1814
x-render-time: 0.0652921199798584
x-b3-traceid: 0b9fca8c8eca4880a25489eef881a8a5
x-b3-spanid: 5a8a188fee98452a
content-security-policy: None
cache-control: max-age=900,max-age=900
x-usage-quota-remaining: 995809.895
x-usage-request-cost: 1565.30
x-usage-user-time: 0.029578
x-usage-system-time: 0.001381
x-usage-input-ops: 64
x-usage-output-ops: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
atl-traceid: 0b9fca8c8eca4880a25489eef881a8a5
report-to: {"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group": "endpoint-1", "include_subdomains": true, "max_age": 600}
nel: {"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to": "endpoint-1"}
strict-transport-security: max-age=63072000; preload
X-Firefox-Spdy: h2

ronacanx.bitbucket.io/im/2.png

185.166.143.48

200 OK

29 kB

URL GET HTTP/2
ronacanx.bitbucket.io/im/2.png
IP
185.166.143.48:443
ASN
#16509 AMAZON-02

Requested by
https://ronacanx.bitbucket.io/
Certificate
IssuerDigiCert Inc
Subject*.bitbucket.io
FingerprintD3:AE:AA:22:FC:15:43:47:F4:6B:2E:BE:73:DF:6C:9A:38:EC:4D:28
ValidityThu, 09 Feb 2023 00:00:00 GMT - Sat, 03 Feb 2024 23:59:59 GMT

File type
PNG image data, 224 x 212, 8-bit/color RGB, non-interlaced\012- data
Size
29 kB (29102 bytes)
Hash
bc1e79a14dc64a3919739a5e031df997
9f49dbbb3fd66181f2d3b87d9991612ae5e43ff6
9d0ca28edcbdf3f54552949f7e83a766561f6e4c31d5ead8a7084efbaf803089

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Microsoft OneDrive

HTTP Headers

GET /im/2.png HTTP/1.1
Host: ronacanx.bitbucket.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ronacanx.bitbucket.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 09:03:59 GMT
content-type: image/png
content-length: 29102
server: AtlassianEdge
last-modified: Wed, 17 Aug 2022 09:48:38 GMT
etag: "49b304d05d0185176310f308c6d172ae"
x-used-mesh: False
vary: Accept-Language, Origin
content-language: en
x-view-name: bitbucket.apps.hosted.views.serve
x-dc-location: Micros-3
x-served-by: 5d28b0378b27
x-version: f5dbb1d6a314
x-static-version: f5dbb1d6a314
x-request-count: 1179
x-render-time: 0.05627107620239258
x-b3-traceid: 0025122b4f3b40a6823864cda0911ab1
x-b3-spanid: 1ba1190adc468328
content-security-policy: None
cache-control: max-age=900,max-age=900
x-usage-quota-remaining: 995884.694
x-usage-request-cost: 1482.47
x-usage-user-time: 0.027170
x-usage-system-time: 0.001304
x-usage-input-ops: 64
x-usage-output-ops: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
atl-traceid: 0025122b4f3b40a6823864cda0911ab1
report-to: {"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group": "endpoint-1", "include_subdomains": true, "max_age": 600}
nel: {"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to": "endpoint-1"}
strict-transport-security: max-age=63072000; preload
X-Firefox-Spdy: h2

ronacanx.bitbucket.io/im/3.png

185.166.143.48

200 OK

42 kB

URL GET HTTP/2
ronacanx.bitbucket.io/im/3.png
IP
185.166.143.48:443
ASN
#16509 AMAZON-02

Requested by
https://ronacanx.bitbucket.io/
Certificate
IssuerDigiCert Inc
Subject*.bitbucket.io
FingerprintD3:AE:AA:22:FC:15:43:47:F4:6B:2E:BE:73:DF:6C:9A:38:EC:4D:28
ValidityThu, 09 Feb 2023 00:00:00 GMT - Sat, 03 Feb 2024 23:59:59 GMT

File type
PNG image data, 223 x 216, 8-bit/color RGB, non-interlaced\012- data
Size
42 kB (42176 bytes)
Hash
caa7ed6c22eece69ea04594a38b7ecf8
24b7763e27f37c235a2a7fd1b2ae31f51f920a02
673ad26bdafdd622a86b91670b4799babcce2059e048a431b1ec6d3e2fab402a

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Microsoft OneDrive

HTTP Headers

GET /im/3.png HTTP/1.1
Host: ronacanx.bitbucket.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ronacanx.bitbucket.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 09:03:59 GMT
content-type: image/png
content-length: 42176
server: AtlassianEdge
last-modified: Wed, 17 Aug 2022 09:48:38 GMT
etag: "49b304d05d0185176310f308c6d172ae"
x-used-mesh: False
vary: Accept-Language, Origin
content-language: en
x-view-name: bitbucket.apps.hosted.views.serve
x-dc-location: Micros-3
x-served-by: 280103fdb0bb
x-version: f5dbb1d6a314
x-static-version: f5dbb1d6a314
x-request-count: 2244
x-render-time: 0.05770707130432129
x-b3-traceid: 280f86ec9cf14a3a8e4491f3730175e5
x-b3-spanid: 5e5710373f1944e8
content-security-policy: None
cache-control: max-age=900,max-age=900
x-usage-quota-remaining: 995601.741
x-usage-request-cost: 1766.27
x-usage-user-time: 0.030988
x-usage-system-time: 0.000000
x-usage-input-ops: 88
x-usage-output-ops: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
atl-traceid: 280f86ec9cf14a3a8e4491f3730175e5
report-to: {"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group": "endpoint-1", "include_subdomains": true, "max_age": 600}
nel: {"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to": "endpoint-1"}
strict-transport-security: max-age=63072000; preload
X-Firefox-Spdy: h2

ronacanx.bitbucket.io/im/4.png

185.166.143.48

200 OK

63 kB

URL GET HTTP/2
ronacanx.bitbucket.io/im/4.png
IP
185.166.143.48:443
ASN
#16509 AMAZON-02

Requested by
https://ronacanx.bitbucket.io/
Certificate
IssuerDigiCert Inc
Subject*.bitbucket.io
FingerprintD3:AE:AA:22:FC:15:43:47:F4:6B:2E:BE:73:DF:6C:9A:38:EC:4D:28
ValidityThu, 09 Feb 2023 00:00:00 GMT - Sat, 03 Feb 2024 23:59:59 GMT

File type
PNG image data, 217 x 208, 8-bit/color RGB, non-interlaced\012- data
Size
63 kB (62643 bytes)
Hash
0db6c5b94c208f6937517dd5095d5e1e
45f035aded71fce56aed59ef7cfad25872e2de4d
2c415e01b58d1a42f13173a3be1fb8096e82e96196fcd0316621711b08356da2

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Microsoft OneDrive

HTTP Headers

GET /im/4.png HTTP/1.1
Host: ronacanx.bitbucket.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ronacanx.bitbucket.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 09:03:59 GMT
content-type: image/png
content-length: 62643
server: AtlassianEdge
last-modified: Wed, 17 Aug 2022 09:48:38 GMT
etag: "49b304d05d0185176310f308c6d172ae"
x-used-mesh: False
vary: Accept-Language, Origin
content-language: en
x-view-name: bitbucket.apps.hosted.views.serve
x-dc-location: Micros-3
x-served-by: 0a78c895674f
x-version: f5dbb1d6a314
x-static-version: f5dbb1d6a314
x-request-count: 1966
x-render-time: 0.05122184753417969
x-b3-traceid: 9be1b072eb71473ebf794340c1d9e8e4
x-b3-spanid: 4e8e9d1c043497fb
content-security-policy: None
cache-control: max-age=900,max-age=900
x-usage-quota-remaining: 993882.332
x-usage-request-cost: 1962.37
x-usage-user-time: 0.023582
x-usage-system-time: 0.003289
x-usage-input-ops: 128
x-usage-output-ops: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
atl-traceid: 9be1b072eb71473ebf794340c1d9e8e4
report-to: {"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group": "endpoint-1", "include_subdomains": true, "max_age": 600}
nel: {"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to": "endpoint-1"}
strict-transport-security: max-age=63072000; preload
X-Firefox-Spdy: h2

ronacanx.bitbucket.io/favicon.ico

185.166.143.48

404 Not Found

14 B

URL GET HTTP/2
ronacanx.bitbucket.io/favicon.ico
IP
185.166.143.48:443
ASN
#16509 AMAZON-02

Requested by
https://ronacanx.bitbucket.io/
Certificate
IssuerDigiCert Inc
Subject*.bitbucket.io
FingerprintD3:AE:AA:22:FC:15:43:47:F4:6B:2E:BE:73:DF:6C:9A:38:EC:4D:28
ValidityThu, 09 Feb 2023 00:00:00 GMT - Sat, 03 Feb 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
14 B (14 bytes)
Hash
5251010ec9e364492c236bf8b9983928
a22e9c3b6a9f5c70de4f76a464810ecba1fb97c3
3521021a2e875fbc52ae82e2a3fea5024d507bbc919f504ca8521292c3fe14d3

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Microsoft OneDrive

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: ronacanx.bitbucket.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ronacanx.bitbucket.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
date: Tue, 28 Nov 2023 09:03:59 GMT
content-type: text/plain
content-length: 14
server: AtlassianEdge
last-modified: Wed, 17 Aug 2022 09:48:38 GMT
etag: "49b304d05d0185176310f308c6d172ae"
x-used-mesh: False
vary: Accept-Language, Origin
content-language: en
x-view-name: bitbucket.apps.hosted.views.serve
x-dc-location: Micros-3
x-served-by: cf147416b470
x-version: f5dbb1d6a314
x-static-version: f5dbb1d6a314
x-request-count: 1947
x-render-time: 0.040587663650512695
x-b3-traceid: 02e59883b0634937a78940c8a89b11b9
x-b3-spanid: 9b11b98a8c04987a
content-security-policy: None
cache-control: max-age=900,max-age=900
x-usage-quota-remaining: 993027.275
x-usage-request-cost: 906.87
x-usage-user-time: 0.027206
x-usage-system-time: 0.000000
x-usage-input-ops: 0
x-usage-output-ops: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
atl-traceid: 02e59883b0634937a78940c8a89b11b9
report-to: {"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group": "endpoint-1", "include_subdomains": true, "max_age": 600}
nel: {"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to": "endpoint-1"}
strict-transport-security: max-age=63072000; preload
X-Firefox-Spdy: h2

ronacanx.bitbucket.io/jquery.min.js

185.166.143.48

200 OK

90 kB

URL GET HTTP/2
ronacanx.bitbucket.io/jquery.min.js
IP
185.166.143.48:443
ASN
#16509 AMAZON-02

Requested by
https://ronacanx.bitbucket.io/
Certificate
IssuerDigiCert Inc
Subject*.bitbucket.io
FingerprintD3:AE:AA:22:FC:15:43:47:F4:6B:2E:BE:73:DF:6C:9A:38:EC:4D:28
ValidityThu, 09 Feb 2023 00:00:00 GMT - Sat, 03 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65451)
Size
90 kB (89476 bytes)
Hash
dc5e7f18c8d36ac1d3d4753a87c98d0a
c8e1c8b386dc5b7a9184c763c88d19a346eb3342
f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Microsoft OneDrive

HTTP Headers

GET /jquery.min.js HTTP/1.1
Host: ronacanx.bitbucket.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ronacanx.bitbucket.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 28 Nov 2023 09:03:58 GMT
content-type: text/javascript
server: AtlassianEdge
last-modified: Wed, 17 Aug 2022 09:48:38 GMT
x-used-mesh: False
vary: Accept-Language, Origin, Accept-Encoding
content-language: en
x-view-name: bitbucket.apps.hosted.views.serve
x-dc-location: Micros-3
x-served-by: 280103fdb0bb
x-version: f5dbb1d6a314
x-static-version: f5dbb1d6a314
x-request-count: 1634
x-render-time: 0.05365419387817383
x-b3-traceid: 43b105e642d646e19099c33c8b347475
x-b3-spanid: 574743b8c33c9909
content-security-policy: None
cache-control: max-age=900,max-age=900
x-usage-quota-remaining: 998250.325
x-usage-request-cost: 994.83
x-usage-user-time: 0.028100
x-usage-system-time: 0.001745
x-usage-input-ops: 0
x-usage-output-ops: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
atl-traceid: 43b105e642d646e19099c33c8b347475
report-to: {"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group": "endpoint-1", "include_subdomains": true, "max_age": 600}
nel: {"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to": "endpoint-1"}
strict-transport-security: max-age=63072000; preload
content-encoding: gzip
X-Firefox-Spdy: h2

ronacanx.bitbucket.io/im/lg.png

185.166.143.48

200 OK

1.6 kB

URL GET HTTP/2
ronacanx.bitbucket.io/im/lg.png
IP
185.166.143.48:443
ASN
#16509 AMAZON-02

Requested by
https://ronacanx.bitbucket.io/
Certificate
IssuerDigiCert Inc
Subject*.bitbucket.io
FingerprintD3:AE:AA:22:FC:15:43:47:F4:6B:2E:BE:73:DF:6C:9A:38:EC:4D:28
ValidityThu, 09 Feb 2023 00:00:00 GMT - Sat, 03 Feb 2024 23:59:59 GMT

File type
PNG image data, 142 x 49, 8-bit/color RGBA, non-interlaced\012- data
Size
1.6 kB (1606 bytes)
Hash
ec8a1b650cdec04fbf1e696def9c4540
7a708a7d245670fa0aea463f377d16c13862d899
de290893e2fd4365a4500e39e1a9115cd58af6d3aa3035958a1e44060ba911ea

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Microsoft OneDrive

HTTP Headers

GET /im/lg.png HTTP/1.1
Host: ronacanx.bitbucket.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ronacanx.bitbucket.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 28 Nov 2023 09:03:58 GMT
content-type: image/png
content-length: 1606
server: AtlassianEdge
last-modified: Wed, 17 Aug 2022 09:48:38 GMT
etag: "49b304d05d0185176310f308c6d172ae"
x-used-mesh: False
vary: Accept-Language, Origin
content-language: en
x-view-name: bitbucket.apps.hosted.views.serve
x-dc-location: Micros-3
x-served-by: 5d28b0378b27
x-version: f5dbb1d6a314
x-static-version: f5dbb1d6a314
x-request-count: 1166
x-render-time: 0.03851580619812012
x-b3-traceid: 12599c3373af42d0b8843b7e81db534d
x-b3-spanid: d435bd18e7b3488b
content-security-policy: None
cache-control: max-age=900,max-age=900
x-usage-quota-remaining: 997392.899
x-usage-request-cost: 857.63
x-usage-user-time: 0.025729
x-usage-system-time: 0.000000
x-usage-input-ops: 0
x-usage-output-ops: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
atl-traceid: 12599c3373af42d0b8843b7e81db534d
report-to: {"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group": "endpoint-1", "include_subdomains": true, "max_age": 600}
nel: {"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to": "endpoint-1"}
strict-transport-security: max-age=63072000; preload
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (5)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (16)

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by