Report - luxl.cashappcard.club/c/2ecf914ce8d75b25?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME_

Report Overview

Visited public
2023-10-31 08:00:30
Tags
URL
luxl.cashappcard.club/c/2ecf914ce8d75b25?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Finishing URL
luxl.cashappcard.club/c/2ecf914ce8d75b25?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
IP / ASN
52.19.101.114
#16509 AMAZON-02
Title
$1000 Cash App Gift Card

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
route.frest.pro	unknown	2022-10-19	2023-01-02 14:11:29	2023-10-30 05:48:25	514 B	748 B	104.21.77.196
cdn-adef.akamaized.net	125719	2014-03-18	2018-02-06 08:56:01	2023-10-30 13:22:04	5.7 kB	223 kB	23.36.76.96
luxl.cashappcard.club	unknown	2023-09-27	2023-10-03 10:00:25	2023-10-24 04:00:08	720 B	4.3 kB	52.19.101.114
ocsp.pki.goog	175	2016-06-13	2018-07-01 08:43:07	2023-10-30 05:09:55	666 B	1.4 kB	142.250.74.131
fonts.gstatic.com	unknown	2008-02-11	2014-09-09 02:40:21	2023-10-30 12:36:38	1.1 kB	36 kB	216.58.207.227
cdnjs.claudflare.io	unknown	2021-08-09	2021-08-12 10:01:46	2023-10-30 05:48:24	451 B	92 kB	206.189.196.86
cdn.stfilecamp.com	400667	2021-09-06	2021-09-06 17:32:03	2023-10-30 13:22:04	1.2 kB	42 kB	205.185.216.42
tt.stfilecamp.com	unknown	2021-09-06	2022-03-08 16:47:05	2023-10-29 19:16:27	854 B	6.6 kB	205.185.216.42
stormtrk.com	289095	2019-05-15	2019-05-17 20:09:53	2023-10-30 13:22:04	789 B	1.2 kB	172.67.69.203

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-10-31	medium	claudflare.io	Sinkholed

ThreatFox

No alerts detected

JavaScript (8)

	URL	From	Size	First Seen	Last Seen
	tt.stfilecamp.com/jsfiles/second_back_multi.js	ScriptElement	2.2 kB	2023-03-07	2024-10-17
Pretty URL tt.stfilecamp.com/jsfiles/second_back_multi.js IP 205.185.216.42 ASN #20446 STACKPATH-CDN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2024-10-17 14:06 Times Seen52 Hash 4034050f2be05cd41b77c4bb153f89eb 395187f1b6ad0a67fcdede70756a1c455903d84d 717b9e3b39eb201ec4cf8ade5f0ce9f2f2537b02b0b7f822ae159a8d1496df60 Loading...

	cdn.stfilecamp.com/stormtrk.js	ScriptElement	6.8 kB	2023-03-12	2025-03-07
Pretty URL cdn.stfilecamp.com/stormtrk.js IP 205.185.216.42 ASN #20446 STACKPATH-CDN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 06:32 Last Seen2025-03-07 06:00 Times Seen131 Hash 39e5f8ad757fe438c784e8d883e47ab0 6b2905489485100c83605f43186c5843031e1f3b e421906cc3be04e5f6795074c0a91e5a194f218b3f8c57adfed0f4d315dd445a Loading...

	cdn.stfilecamp.com/fp.min.js	ScriptElement	32 kB	2023-04-06	2025-05-09
Pretty URL cdn.stfilecamp.com/fp.min.js IP 205.185.216.42 ASN #20446 STACKPATH-CDN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-06 21:01 Last Seen2025-05-09 18:17 Times Seen568 Hash 198f2f5b0a649f41fe890c59d37319aa f24629687612889bb59f610df3879afcd766fb80 d2bc2cb800679f495a7731c105b2e2047965800515f98008867ab33edc940912 Loading...

	cdnjs.claudflare.io/ajax/libs/jquery/3.6.0/d/jquery.min.js?1698669520	ScriptElement	92 kB	2023-10-15	2023-10-31
Pretty URL cdnjs.claudflare.io/ajax/libs/jquery/3.6.0/d/jquery.min.js?1698669520 IP 206.189.196.86 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-15 10:00 Last Seen2023-10-31 09:00 Times Seen7 Hash b5c3d25047eb3415e401a40da41e5118 d0a4ccdf5cd564dd297e783911dd108e5f6a8ef3 8877058afffb4c9b8bffde8daf79fc766ad4234631f9446ebe1df65d877b34f9 Loading...

	cdn-adef.akamaized.net/landings/283980/1698669520/js/script.js?1698669520	ScriptElement	2.6 kB	2023-07-15	2024-08-21
Pretty URL cdn-adef.akamaized.net/landings/283980/1698669520/js/script.js?1698669520 IP 23.36.76.96 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-15 10:00 Last Seen2024-08-21 04:36 Times Seen5 Hash bc399c721447a081345292e5214d5de5 e7c2d5de1540f5c0fa5e812a3b80a48407165586 9cfc4986b44b3b0a2f8be16bf98d295bf4c315fe0536b86b3ce58d2a839e0b47 Loading...

	cdn-adef.akamaized.net/landings/283980/1698669520/js/collector.js?1698669520	ScriptElement	5.6 kB	2023-06-20	2024-10-17
Pretty URL cdn-adef.akamaized.net/landings/283980/1698669520/js/collector.js?1698669520 IP 23.36.76.96 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-20 06:01 Last Seen2024-10-17 14:06 Times Seen23 Hash f2b084c56561aec35e77c7bff672d092 fe6ace52724040f8b5814a2b6ca215b2c5c208a4 01263e02d9f2e53b49c8ae2cfd1f84b0a51f6680354d748d2bb8656ad04835d9 Loading...

	cdn.stfilecamp.com/multi_push.js	ScriptElement	1.1 kB	2023-03-07	2024-08-21
Pretty URL cdn.stfilecamp.com/multi_push.js IP 205.185.216.42 ASN #20446 STACKPATH-CDN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2024-08-21 09:42 Times Seen51 Hash a50322f9d3f3fafe3fb02be02285e433 c0a894b3bfa545832c3ad1c2f145005d02e50ac4 cb763e10664b93ac12aaead7af7b0838195e45eb89f678ebb3f5776b147f5d99 Loading...

	tt.stfilecamp.com/jsfiles/site-protect2.0.js	ScriptElement	3.1 kB	2023-03-07	2025-03-07
Pretty URL tt.stfilecamp.com/jsfiles/site-protect2.0.js IP 205.185.216.42 ASN #20446 STACKPATH-CDN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-03-07 04:00 Times Seen89 Hash fc96ab06b0f9fcea6731405215ae5daf 8af9f27d895eb69754919a2fc0d74760fecd3860 9243e166cbcd628fd992eba59544ebf99328fd4db7c0c08c2fb28a7af14d759e Loading...

HTTP Transactions (25)

URL IP Response Size

cdn-adef.akamaized.net/landings/283980/1698669520/css/style.css?1698669520

23.36.76.96

200 OK

1.5 kB

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/283980/1698669520/css/style.css?1698669520
IP
23.36.76.96:443
ASN
#20940 Akamai International B.V.

Requested by
https://luxl.cashappcard.club/c/2ecf914ce8d75b25?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
ASCII text, with CRLF line terminators
Size
1.5 kB (1513 bytes)
Hash
83c82d168a281480048b48bdd18babb1
e5137858950e55866c581f46cb733123f41edda4
15e32791730cc386244d6f6ce238d42cb47a72d01dafd0f21b3a15004dc489ad

HTTP Headers

GET /landings/283980/1698669520/css/style.css?1698669520 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://luxl.cashappcard.club/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: SPYAj0xrXjC3cfdcENPVXhlmA1Sw7J1MjDKLN1dCV4ypsoKby658hCBchK2Tf+0RofvRJ8lAR48=
x-amz-request-id: YSNB7ARKDD2RCF64
Last-Modified: Mon, 30 Oct 2023 12:38:42 GMT
ETag: "83c82d168a281480048b48bdd18babb1"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: text/css
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Tue, 31 Oct 2023 08:00:14 GMT
Content-Length: 1513
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/283980/1698669520/js/script.js?1698669520

23.36.76.96

200 OK

884 B

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/283980/1698669520/js/script.js?1698669520
IP
23.36.76.96:443
ASN
#20940 Akamai International B.V.

Requested by
https://luxl.cashappcard.club/c/2ecf914ce8d75b25?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
ASCII text, with CRLF line terminators
Size
884 B (884 bytes)
Hash
bc399c721447a081345292e5214d5de5
e7c2d5de1540f5c0fa5e812a3b80a48407165586
9cfc4986b44b3b0a2f8be16bf98d295bf4c315fe0536b86b3ce58d2a839e0b47

HTTP Headers

GET /landings/283980/1698669520/js/script.js?1698669520 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://luxl.cashappcard.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: +5GRBHlAR04Lb5yRDKHiaRwKC5q7s8H+0fXutMtX/7CV9HoespHYuunMfoGP0hmFLZp8u11Q0/U=
x-amz-request-id: YSN7ECS7B1HJY5R8
Last-Modified: Mon, 30 Oct 2023 12:38:42 GMT
ETag: "bc399c721447a081345292e5214d5de5"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Tue, 31 Oct 2023 08:00:14 GMT
Content-Length: 884
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/283980/1698669520/css/halloween.css?1698669520

23.36.76.96

200 OK

1.3 kB

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/283980/1698669520/css/halloween.css?1698669520
IP
23.36.76.96:443
ASN
#20940 Akamai International B.V.

Requested by
https://luxl.cashappcard.club/c/2ecf914ce8d75b25?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
ASCII text, with CRLF line terminators
Size
1.3 kB (1252 bytes)
Hash
12afa215a144faf624503548e14c14a7
881b0f8e6cee16d55dea8eac0e08abd61dcecee6
973d7834f41d9bb1ec8bcdeeb167d4ab3a83f3e2103502843342fa3a9d382b1c

HTTP Headers

GET /landings/283980/1698669520/css/halloween.css?1698669520 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://luxl.cashappcard.club/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: +YcbP4dXsJxSBqvuH3j9+n/rOV6MmNl9MFcwojLe+108RL6kuMSM+y9oenjNaD2HTHPb4kCoJDQ=
x-amz-request-id: YSNACQQR0ZX08G1N
Last-Modified: Mon, 30 Oct 2023 12:38:42 GMT
ETag: "12afa215a144faf624503548e14c14a7"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: text/css
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Tue, 31 Oct 2023 08:00:14 GMT
Content-Length: 1252
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/283980/1698669520/css/animations.css?1698669520

23.36.76.96

200 OK

998 B

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/283980/1698669520/css/animations.css?1698669520
IP
23.36.76.96:443
ASN
#20940 Akamai International B.V.

Requested by
https://luxl.cashappcard.club/c/2ecf914ce8d75b25?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
troff or preprocessor input, ASCII text, with CRLF line terminators
Size
998 B (998 bytes)
Hash
68578c1c851a57c5e8ac8a0de94ab75e
1fb82f3e8566f809953e1ed2a5b5ebf513e64ffe
84db6ef5d78b827ad3abfd598ba3ac78e4c520dc5c3cd4465dcad9fefb655c88

HTTP Headers

GET /landings/283980/1698669520/css/animations.css?1698669520 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://luxl.cashappcard.club/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: 8CsmGbLuarIFIFcjIgxyW8drtxOy8vLqD/50pHbq7uVuNWHWZC9z6gbBeQIvYt7DBd/PMPQCXVQ=
x-amz-request-id: 7JTABDFVH95C46BS
Last-Modified: Mon, 30 Oct 2023 12:38:42 GMT
ETag: "68578c1c851a57c5e8ac8a0de94ab75e"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: text/css
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Tue, 31 Oct 2023 08:00:14 GMT
Content-Length: 998
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

luxl.cashappcard.club/c/2ecf914ce8d75b25?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__

52.19.101.114

200 OK

3.7 kB

URL User Request GET HTTP/2
luxl.cashappcard.club/c/2ecf914ce8d75b25?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
IP
52.19.101.114:443
ASN
#16509 AMAZON-02

Certificate
IssuerLet's Encrypt
Subjectluxl.cashappcard.club
FingerprintEF:11:EF:D3:28:65:BF:3D:23:A3:93:22:27:83:B0:61:33:C5:79:D8
ValidityWed, 27 Sep 2023 21:15:22 GMT - Tue, 26 Dec 2023 21:15:21 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1192), with CRLF, LF line terminators
Size
3.7 kB (3722 bytes)
Hash
ecf212adae77e8031478fc0420df0b2a
7883252fb69b256e7a42172499957637c9787122
66cfca07fae249aa8f2ec1ba7f4a1f346ffb856b6ce17b75bbc7d0a8fb7a106f

HTTP Headers

GET /c/2ecf914ce8d75b25?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__ HTTP/1.1
Host: luxl.cashappcard.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Tue, 31 Oct 2023 08:00:14 GMT
content-type: text/html; charset=utf-8
set-cookie: unique_id=6540b40e00019f5f; Path=/; Expires=Sat, 30 Dec 2023 08:00:14 GMT; Secure; SameSite=None
unique_id2=6540b40e0001a783; Path=/; Expires=Mon, 29 Jan 2024 08:00:14 GMT; Secure; SameSite=None
impression=; Path=/; Expires=Tue, 31 Oct 2023 08:00:14 GMT; Secure; SameSite=None
6540b40e0001a783_sl=[283980]; Path=/; Expires=Tue, 14 Nov 2023 08:00:14 GMT; Secure; SameSite=None
content-encoding: gzip
X-Firefox-Spdy: h2

cdnjs.claudflare.io/ajax/libs/jquery/3.6.0/d/jquery.min.js?1698669520

206.189.196.86

200 OK

92 kB

URL GET HTTP/1.1
cdnjs.claudflare.io/ajax/libs/jquery/3.6.0/d/jquery.min.js?1698669520
IP
206.189.196.86:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://luxl.cashappcard.club/c/2ecf914ce8d75b25?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerLet's Encrypt
Subjectcdnjs.claudflare.io
Fingerprint18:7C:79:BA:FF:48:8B:AA:43:33:E2:1F:F8:A6:0C:12:EA:07:A9:13
ValidityWed, 04 Oct 2023 20:01:27 GMT - Tue, 02 Jan 2024 20:01:26 GMT

File type
ASCII text, with very long lines (65447)
Size
92 kB (92013 bytes)
Hash
b5c3d25047eb3415e401a40da41e5118
d0a4ccdf5cd564dd297e783911dd108e5f6a8ef3
8877058afffb4c9b8bffde8daf79fc766ad4234631f9446ebe1df65d877b34f9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ajax/libs/jquery/3.6.0/d/jquery.min.js?1698669520 HTTP/1.1
Host: cdnjs.claudflare.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://luxl.cashappcard.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.22.0 (Ubuntu)
Date: Tue, 31 Oct 2023 08:00:15 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 92013
Connection: keep-alive
Cache-Control: public, max-age=43200
Expires: Tue, 31 Oct 2023 20:00:15 GMT

cdn-adef.akamaized.net/landings/283980/1698669520/images/walmart1000_hw.png

23.36.76.96

200 OK

156 kB

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/283980/1698669520/images/walmart1000_hw.png
IP
23.36.76.96:443
ASN
#20940 Akamai International B.V.

Requested by
https://luxl.cashappcard.club/c/2ecf914ce8d75b25?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
PNG image data, 744 x 450, 8-bit/color RGBA, non-interlaced\012- data
Size
156 kB (156052 bytes)
Hash
b455862233020904c288e800b66d94ae
e748b869561314242c6eb681c2e5235e52d8479a
021aed6b5c3faec547872ebcfdf5698a33ccedf6d5d73aa63f60e27af6e4a579

HTTP Headers

GET /landings/283980/1698669520/images/walmart1000_hw.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://luxl.cashappcard.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: wOB3EYHsIvR6SpJiFODmgSpDGGOZou9jzqGYpD9TP0o3q/Z03YpEY06Rh7ew5SYXyLAd+Bhn+Mo=
x-amz-request-id: NQ2QWRFJVVE9G5K8
Last-Modified: Mon, 30 Oct 2023 12:38:42 GMT
ETag: "b455862233020904c288e800b66d94ae"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 156052
Date: Tue, 31 Oct 2023 08:00:16 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/283980/1698669520/images/pumpkin2.png

23.36.76.96

200 OK

11 kB

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/283980/1698669520/images/pumpkin2.png
IP
23.36.76.96:443
ASN
#20940 Akamai International B.V.

Requested by
https://luxl.cashappcard.club/c/2ecf914ce8d75b25?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
PNG image data, 257 x 184, 8-bit colormap, non-interlaced\012- data
Size
11 kB (10877 bytes)
Hash
9b3fdc8d2610c0ffb8efe73eebb54a30
0e87e9f1d038b52cdb6256184801708c48c8b5e3
518553c854236425e2393c421e66d5b2ab366d8c66b844bb3e6b30f7b52dc940

HTTP Headers

GET /landings/283980/1698669520/images/pumpkin2.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://luxl.cashappcard.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: eu9LuI36m485jVR2R145ih95QtWjzbGC62PI30tKhHvmwzdYPt4BuzkQzBjCsnPd8CyC/7lCJyI=
x-amz-request-id: NQ2GEZSNCH8S0C76
Last-Modified: Mon, 30 Oct 2023 12:38:42 GMT
ETag: "9b3fdc8d2610c0ffb8efe73eebb54a30"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 10877
Date: Tue, 31 Oct 2023 08:00:16 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/283980/1698669520/images/pumpkin.png

23.36.76.96

200 OK

11 kB

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/283980/1698669520/images/pumpkin.png
IP
23.36.76.96:443
ASN
#20940 Akamai International B.V.

Requested by
https://luxl.cashappcard.club/c/2ecf914ce8d75b25?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
PNG image data, 257 x 184, 8-bit colormap, non-interlaced\012- data
Size
11 kB (11232 bytes)
Hash
488d961dc6dc91dddab7f52069c3392c
e03a2c5269a7bb8eac0e61af9dd02dd0a1fea1e3
b77fef4d96e870201fc9d78aedcce47df5dba1238088ebe0fa9a0b10c48a4395

HTTP Headers

GET /landings/283980/1698669520/images/pumpkin.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://luxl.cashappcard.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: NDrJeFv3G/UygfBCxpRTKO5B5vukn4iN/GIYIgfPi1p0D6d90TM7g2tbMhdvqmeuLIRQYO6vm/M=
x-amz-request-id: 4SCCHMFQ2NA31BYT
Last-Modified: Mon, 30 Oct 2023 12:38:42 GMT
ETag: "488d961dc6dc91dddab7f52069c3392c"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 11232
Date: Tue, 31 Oct 2023 08:00:16 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/283980/1698669520/images/ico-like2.png

23.36.76.96

200 OK

220 B

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/283980/1698669520/images/ico-like2.png
IP
23.36.76.96:443
ASN
#20940 Akamai International B.V.

Requested by
https://luxl.cashappcard.club/c/2ecf914ce8d75b25?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
PNG image data, 13 x 12, 8-bit colormap, non-interlaced\012- data
Size
220 B (220 bytes)
Hash
e4c6e8dcd575bd5f346565ce8dbacfe7
29e5d4862f0470607f803d462bddf5f14cf57969
9e79a749ac5f41341fdff11f64845580207490915f72b09ec320e0db0fea224a

HTTP Headers

GET /landings/283980/1698669520/images/ico-like2.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://luxl.cashappcard.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: IrxWDGdbhR9+FGhjGgTNYcNX/aWDu1I21p6kgmNDyVenNo/ewq+9ZQZICtmndQEF12aXdudvZIE=
x-amz-request-id: NQ2THTJD5V87Q8XS
Last-Modified: Mon, 30 Oct 2023 12:38:42 GMT
ETag: "e4c6e8dcd575bd5f346565ce8dbacfe7"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 220
Date: Tue, 31 Oct 2023 08:00:16 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/283980/1698669520/images/gift.png

23.36.76.96

200 OK

4.3 kB

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/283980/1698669520/images/gift.png
IP
23.36.76.96:443
ASN
#20940 Akamai International B.V.

Requested by
https://luxl.cashappcard.club/c/2ecf914ce8d75b25?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
PNG image data, 84 x 84, 8-bit colormap, non-interlaced\012- data
Size
4.3 kB (4278 bytes)
Hash
fffce733f6fe691cbd72247e0858079a
6abcf141d1ba377a441ecd25d978d34416486d08
ed0ec5bec53f54f33990790fd15a7c8b9c3ba35bbb3a5d795e336a1e33c83b18

HTTP Headers

GET /landings/283980/1698669520/images/gift.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://luxl.cashappcard.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: HfMTw9ciy994L+XUbew6mddAY599M4hi/UF1VKesGahxPIt1G9kfMMYnMPBBmN2OgckKToqyW/s=
x-amz-request-id: NN58KSQ9T87RYSKN
Last-Modified: Mon, 30 Oct 2023 12:38:42 GMT
ETag: "fffce733f6fe691cbd72247e0858079a"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 4278
Date: Tue, 31 Oct 2023 08:00:16 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/283980/1698669520/images/sprites2.jpg

23.36.76.96

200 OK

20 kB

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/283980/1698669520/images/sprites2.jpg
IP
23.36.76.96:443
ASN
#20940 Akamai International B.V.

Requested by
https://luxl.cashappcard.club/c/2ecf914ce8d75b25?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 192x192, components 3\012- data
Size
20 kB (20068 bytes)
Hash
3d5813d0dc0e03ae25aa9aa60b064fea
970331d3110728e9342127330ecdd7b736acf8f4
3888663dd84f0c638de77d6fb74df9a76b4fbbb059a5d3b3678153663befc1d0

HTTP Headers

GET /landings/283980/1698669520/images/sprites2.jpg HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn-adef.akamaized.net/landings/283980/1698669520/css/style.css?1698669520
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: L40o4TJuyT6H2vd9OMLVfRvIKzV+OdZmy+NA1GHhBVlqefr4MXoYKGk0HFk/+UPbUb2Edj5f27I=
x-amz-request-id: NN507ZBA6ATFKTCH
Last-Modified: Mon, 30 Oct 2023 12:38:42 GMT
ETag: "3d5813d0dc0e03ae25aa9aa60b064fea"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 20068
Date: Tue, 31 Oct 2023 08:00:16 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
37b3028cf07488a33f613a616c46c797
95a0026760af8eac6d5ffe53dfac0a8b49b94329
a2b456913e8be63d8d9b58d7ef40ccc1b595e236d05d5a0f8ea111ca1763bebd

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Oct 2023 08:00:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/arvo/v14/tDbM2oWUg0MKoZw1-LPK8w.woff2

216.58.207.227

200 OK

17 kB

URL GET HTTP/2
fonts.gstatic.com/s/arvo/v14/tDbM2oWUg0MKoZw1-LPK8w.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://luxl.cashappcard.club/c/2ecf914ce8d75b25?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintBE:D3:D2:0A:C4:57:FB:0B:D7:17:48:C8:AB:52:49:39:3E:E9:3C:60
ValidityMon, 09 Oct 2023 08:10:32 GMT - Mon, 01 Jan 2024 08:10:31 GMT

File type
Web Open Font Format (Version 2), TrueType, length 17300, version 1.0\012- data
Size
17 kB (17300 bytes)
Hash
4422504365a339cdaaa4a6124e8a00a2
2708a7cc500d8fcc263e8cdf88f37c5f2eff9531
2c43a3f8c9ced2758c2f7cba58401a323439120bc6e985881a1bc01475c468ab

HTTP Headers

GET /s/arvo/v14/tDbM2oWUg0MKoZw1-LPK8w.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://luxl.cashappcard.club
DNT: 1
Connection: keep-alive
Referer: https://cdn-adef.akamaized.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17300
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Oct 2023 16:06:16 GMT
expires: Sat, 26 Oct 2024 16:06:16 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 10 Sep 2020 17:06:30 GMT
content-type: font/woff2
age: 316440
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdn.stfilecamp.com/multi_push.js

205.185.216.42

200 OK

1.1 kB

URL GET HTTP/1.1
cdn.stfilecamp.com/multi_push.js
IP
205.185.216.42:443
ASN
#20446 STACKPATH-CDN

Requested by
https://luxl.cashappcard.club/c/2ecf914ce8d75b25?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerLet's Encrypt
Subjectstfilecamp.com
FingerprintB9:69:70:B1:52:5D:FE:AE:F0:24:90:58:7D:85:5B:38:3E:38:9C:4F
ValidityThu, 26 Oct 2023 11:10:00 GMT - Wed, 24 Jan 2024 11:09:59 GMT

File type
ASCII text
Size
1.1 kB (1072 bytes)
Hash
a50322f9d3f3fafe3fb02be02285e433
c0a894b3bfa545832c3ad1c2f145005d02e50ac4
cb763e10664b93ac12aaead7af7b0838195e45eb89f678ebb3f5776b147f5d99

HTTP Headers

GET /multi_push.js HTTP/1.1
Host: cdn.stfilecamp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://luxl.cashappcard.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 31 Oct 2023 08:00:16 GMT
Connection: Keep-Alive
Cache-Control: max-age=1471
Content-Length: 1072
Content-Type: text/javascript
Last-Modified: Thu, 07 Jul 2022 14:21:23 GMT
Accept-Ranges: bytes
x-rgw-object-type: Normal
etag: "a50322f9d3f3fafe3fb02be02285e433"
x-amz-request-id: tx000001cd527d368ff1cdc-006540abbf-3c6f4933-sfo3a
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-envoy-upstream-healthchecked-cluster: 
Vary: Access-Control-Request-Headers,Access-Control-Request-Method,Origin
X-HW: 1698739216.dop222.sk1.t,1698739216.cds012.sk1.shn,1698739216.dop222.sk1.t,1698739216.cds203.sk1.c

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
37b3028cf07488a33f613a616c46c797
95a0026760af8eac6d5ffe53dfac0a8b49b94329
a2b456913e8be63d8d9b58d7ef40ccc1b595e236d05d5a0f8ea111ca1763bebd

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Oct 2023 08:00:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

tt.stfilecamp.com/jsfiles/second_back_multi.js

205.185.216.42

200 OK

2.2 kB

URL GET HTTP/1.1
tt.stfilecamp.com/jsfiles/second_back_multi.js
IP
205.185.216.42:443
ASN
#20446 STACKPATH-CDN

Requested by
https://luxl.cashappcard.club/c/2ecf914ce8d75b25?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerLet's Encrypt
Subjectstfilecamp.com
Fingerprint5E:7D:F2:17:40:08:20:A8:E8:71:5B:32:46:A8:70:D2:72:13:54:F5
ValiditySun, 29 Oct 2023 07:01:27 GMT - Sat, 27 Jan 2024 07:01:26 GMT

File type
HTML document, ASCII text
Size
2.2 kB (2209 bytes)
Hash
4034050f2be05cd41b77c4bb153f89eb
395187f1b6ad0a67fcdede70756a1c455903d84d
717b9e3b39eb201ec4cf8ade5f0ce9f2f2537b02b0b7f822ae159a8d1496df60

HTTP Headers

GET /jsfiles/second_back_multi.js HTTP/1.1
Host: tt.stfilecamp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://luxl.cashappcard.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 31 Oct 2023 08:00:16 GMT
Connection: Keep-Alive
Cache-Control: max-age=1534
Content-Length: 2209
Content-Type: text/javascript
Last-Modified: Mon, 27 Feb 2023 13:49:23 GMT
Accept-Ranges: bytes
x-rgw-object-type: Normal
etag: "4034050f2be05cd41b77c4bb153f89eb"
x-amz-request-id: tx00000059b7a2aae75572f-006540abfd-7a12c4b1-nyc3c
strict-transport-security: max-age=15552000; includeSubDomains; preload
Vary: Access-Control-Request-Headers,Access-Control-Request-Method,Origin
X-HW: 1698739216.dop012.sk1.t,1698739216.cds241.sk1.shn,1698739216.dop012.sk1.t,1698739216.cds203.sk1.c

tt.stfilecamp.com/jsfiles/site-protect2.0.js

205.185.216.42

200 OK

3.1 kB

URL GET HTTP/1.1
tt.stfilecamp.com/jsfiles/site-protect2.0.js
IP
205.185.216.42:443
ASN
#20446 STACKPATH-CDN

Requested by
https://luxl.cashappcard.club/c/2ecf914ce8d75b25?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerLet's Encrypt
Subjectstfilecamp.com
Fingerprint5E:7D:F2:17:40:08:20:A8:E8:71:5B:32:46:A8:70:D2:72:13:54:F5
ValiditySun, 29 Oct 2023 07:01:27 GMT - Sat, 27 Jan 2024 07:01:26 GMT

File type
ASCII text
Size
3.1 kB (3137 bytes)
Hash
fc96ab06b0f9fcea6731405215ae5daf
8af9f27d895eb69754919a2fc0d74760fecd3860
9243e166cbcd628fd992eba59544ebf99328fd4db7c0c08c2fb28a7af14d759e

HTTP Headers

GET /jsfiles/site-protect2.0.js HTTP/1.1
Host: tt.stfilecamp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://luxl.cashappcard.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 31 Oct 2023 08:00:16 GMT
Connection: Keep-Alive
Cache-Control: max-age=3446
Content-Length: 3137
Content-Type: text/javascript
Last-Modified: Mon, 27 Feb 2023 13:49:23 GMT
Accept-Ranges: bytes
x-rgw-object-type: Normal
etag: "fc96ab06b0f9fcea6731405215ae5daf"
x-amz-request-id: tx00000a75201c7d4a052fb-006540b376-7a12decc-nyc3c
strict-transport-security: max-age=15552000; includeSubDomains; preload
Vary: Access-Control-Request-Headers,Access-Control-Request-Method,Origin
X-HW: 1698739216.dop230.sk1.t,1698739216.cds221.sk1.shn,1698739216.dop230.sk1.t,1698739216.cds231.sk1.c

cdn.stfilecamp.com/stormtrk.js

205.185.216.42

200 OK

6.8 kB

URL GET HTTP/1.1
cdn.stfilecamp.com/stormtrk.js
IP
205.185.216.42:443
ASN
#20446 STACKPATH-CDN

Requested by
https://luxl.cashappcard.club/c/2ecf914ce8d75b25?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerLet's Encrypt
Subjectstfilecamp.com
FingerprintB9:69:70:B1:52:5D:FE:AE:F0:24:90:58:7D:85:5B:38:3E:38:9C:4F
ValidityThu, 26 Oct 2023 11:10:00 GMT - Wed, 24 Jan 2024 11:09:59 GMT

File type
ASCII text
Size
6.8 kB (6807 bytes)
Hash
39e5f8ad757fe438c784e8d883e47ab0
6b2905489485100c83605f43186c5843031e1f3b
e421906cc3be04e5f6795074c0a91e5a194f218b3f8c57adfed0f4d315dd445a

HTTP Headers

GET /stormtrk.js HTTP/1.1
Host: cdn.stfilecamp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://luxl.cashappcard.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 31 Oct 2023 08:00:16 GMT
Connection: Keep-Alive
Cache-Control: max-age=3495
Content-Length: 6807
Content-Type: text/javascript
Last-Modified: Sat, 24 Dec 2022 08:48:24 GMT
Accept-Ranges: bytes
x-rgw-object-type: Normal
etag: "39e5f8ad757fe438c784e8d883e47ab0"
x-amz-request-id: tx00000a57fe109c721a031-006540b3a7-3c6f48c0-sfo3a
strict-transport-security: max-age=15552000; includeSubDomains; preload
Vary: Access-Control-Request-Headers,Access-Control-Request-Method,Origin
X-HW: 1698739216.dop222.sk1.t,1698739216.cds012.sk1.shn,1698739216.dop222.sk1.t,1698739216.cds014.sk1.c

fonts.gstatic.com/s/arvo/v14/tDbM2oWUg0MKoZw1-LPK8w.woff2

216.58.207.227

200 OK

17 kB

URL GET HTTP/2
fonts.gstatic.com/s/arvo/v14/tDbM2oWUg0MKoZw1-LPK8w.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://luxl.cashappcard.club/c/2ecf914ce8d75b25?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintBE:D3:D2:0A:C4:57:FB:0B:D7:17:48:C8:AB:52:49:39:3E:E9:3C:60
ValidityMon, 09 Oct 2023 08:10:32 GMT - Mon, 01 Jan 2024 08:10:31 GMT

File type
Web Open Font Format (Version 2), TrueType, length 17300, version 1.0\012- data
Size
17 kB (17300 bytes)
Hash
4422504365a339cdaaa4a6124e8a00a2
2708a7cc500d8fcc263e8cdf88f37c5f2eff9531
2c43a3f8c9ced2758c2f7cba58401a323439120bc6e985881a1bc01475c468ab

HTTP Headers

GET /s/arvo/v14/tDbM2oWUg0MKoZw1-LPK8w.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://luxl.cashappcard.club
DNT: 1
Connection: keep-alive
Referer: https://cdn-adef.akamaized.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17300
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Oct 2023 16:06:16 GMT
expires: Sat, 26 Oct 2024 16:06:16 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 10 Sep 2020 17:06:30 GMT
content-type: font/woff2
age: 316440
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

route.frest.pro/is_redirect

104.21.77.196

200 OK

17 B

URL POST HTTP/2
route.frest.pro/is_redirect
IP
104.21.77.196:443
ASN
#13335 CLOUDFLARENET

Requested by
https://luxl.cashappcard.club/c/2ecf914ce8d75b25?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerGoogle Trust Services LLC
Subjectfrest.pro
FingerprintA1:6D:80:97:81:5F:7D:81:A1:3A:F7:AD:B0:7C:80:EF:AF:09:8F:04
ValiditySun, 08 Oct 2023 16:23:46 GMT - Sat, 06 Jan 2024 16:23:45 GMT

File type
JSON data\012- , ASCII text
Size
17 B (17 bytes)
Hash
6dec798efb56f56f33660938f6249ff6
e889219883cef38754dc1e5df7ca5277b3b314c8
b493cdb3b30ea63f6a924f814dfccfcfe305dac02106f9994ce2bcb2e8ed28c4

HTTP Headers

POST /is_redirect HTTP/1.1
Host: route.frest.pro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 10
Origin: https://luxl.cashappcard.club
DNT: 1
Connection: keep-alive
Referer: https://luxl.cashappcard.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 31 Oct 2023 08:00:16 GMT
content-type: application/json
content-length: 17
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Content-Type, Access-Control-Allow-Headers, X-Requested-With
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Q4xE1moRdx8GlbNeWLv3tXNQBSp0E0b7IXZqCVaTcbXE%2BkEc4gWl38jCfjVGvgTxkSGtowrB1f6sOQLD%2BDNam%2BsWxDhL2AWVDseDbhAQLyzgbzVGKpG0Zg%2Bv8qrdNULwWRQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81ea5d048e2d0b4d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdn-adef.akamaized.net/images/favicon.ico

23.36.76.96

200 OK

4.1 kB

URL GET HTTP/1.1
cdn-adef.akamaized.net/images/favicon.ico
IP
23.36.76.96:443
ASN
#20940 Akamai International B.V.

Requested by
https://luxl.cashappcard.club/c/2ecf914ce8d75b25?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data
Size
4.1 kB (4103 bytes)
Hash
4cdf3256cd7b8ec3917adb79d6bf457e
bc615337e9223183a126c8fb649774866fb53e69
fbfff44a653dc193b93620f1035d221d3aaddf3238742270b3385482986ef7f0

HTTP Headers

GET /images/favicon.ico HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://luxl.cashappcard.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: mzbDFFn0Yhqdz4XL9s4sX6yByljdNVrKhKiK+UtK4DVRgNzfBI6OtL7EakQiGwqEsC19uC++cQI=
x-amz-request-id: 78F19547EBC3B810
Last-Modified: Wed, 07 Nov 2018 08:41:38 GMT
ETag: "4cdf3256cd7b8ec3917adb79d6bf457e"
Accept-Ranges: bytes
Content-Type: image/x-icon
Content-Length: 4103
Server: AmazonS3
X-Akamai-EW-Subworker: 8096267
Date: Tue, 31 Oct 2023 08:00:16 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn.stfilecamp.com/fp.min.js

205.185.216.42

200 OK

32 kB

URL GET HTTP/1.1
cdn.stfilecamp.com/fp.min.js
IP
205.185.216.42:443
ASN
#20446 STACKPATH-CDN

Requested by
https://luxl.cashappcard.club/c/2ecf914ce8d75b25?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerLet's Encrypt
Subjectstfilecamp.com
FingerprintB9:69:70:B1:52:5D:FE:AE:F0:24:90:58:7D:85:5B:38:3E:38:9C:4F
ValidityThu, 26 Oct 2023 11:10:00 GMT - Wed, 24 Jan 2024 11:09:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (31370)
Size
32 kB (31705 bytes)
Hash
198f2f5b0a649f41fe890c59d37319aa
f24629687612889bb59f610df3879afcd766fb80
d2bc2cb800679f495a7731c105b2e2047965800515f98008867ab33edc940912

HTTP Headers

GET /fp.min.js HTTP/1.1
Host: cdn.stfilecamp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://luxl.cashappcard.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 31 Oct 2023 08:00:17 GMT
Connection: Keep-Alive
Cache-Control: max-age=356
Content-Length: 31705
Content-Type: text/javascript
Last-Modified: Mon, 13 Jun 2022 11:23:14 GMT
Accept-Ranges: bytes
x-rgw-object-type: Normal
etag: "198f2f5b0a649f41fe890c59d37319aa"
x-amz-request-id: tx0000037818052501a0b94-006540a765-3c6f487a-sfo3a
strict-transport-security: max-age=15552000; includeSubDomains; preload
Vary: Access-Control-Request-Headers,Access-Control-Request-Method,Origin
X-HW: 1698739216.dop222.sk1.t,1698739216.cds012.sk1.shn,1698739217.dop222.sk1.t,1698739217.cds237.sk1.c

stormtrk.com/api/1.0/ping/pong?location=https%3A%2F%2Fluxl.cashappcard.club%2Fc%2F2ecf914ce8d75b25%3Fcid%3D__SID__%26sub1%3D__CAMPAIGN_NAME__%26sub2%3D__SID__%26sub3%3D__GROUP_NAME__%26sub4%3D__AD_ID__%26sub5%3D__APPID__%26sub6%3D__GAID__%26sub7%3D__AD_EXT__%26source_id%3D__PUBLISHER_ID__%26aff_sub%3D__CAMPAIGN_NAME__%26s1%3D__CAMPAIGN_NAME__%26sid%3D__CAMPAIGN_NAME__

172.67.69.203

200 OK

486 B

URL GET HTTP/2
stormtrk.com/api/1.0/ping/pong?location=https%3A%2F%2Fluxl.cashappcard.club%2Fc%2F2ecf914ce8d75b25%3Fcid%3D__SID__%26sub1%3D__CAMPAIGN_NAME__%26sub2%3D__SID__%26sub3%3D__GROUP_NAME__%26sub4%3D__AD_ID__%26sub5%3D__APPID__%26sub6%3D__GAID__%26sub7%3D__AD_EXT__%26source_id%3D__PUBLISHER_ID__%26aff_sub%3D__CAMPAIGN_NAME__%26s1%3D__CAMPAIGN_NAME__%26sid%3D__CAMPAIGN_NAME__
IP
172.67.69.203:443
ASN
#13335 CLOUDFLARENET

Requested by
https://luxl.cashappcard.club/c/2ecf914ce8d75b25?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint12:CF:2B:DC:A1:B5:77:12:91:68:E8:DD:F0:22:9A:1B:06:84:6A:74
ValidityFri, 09 Dec 2022 00:00:00 GMT - Sat, 09 Dec 2023 23:59:59 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (507), with no line terminators
Size
486 B (486 bytes)
Hash
35f66cf4e448803ac4cda26f839cb294
cf1fc8d48d84e6abfbaa94151015c66ce0581c1b
0d74ab9c4a1baff54f69015fb65b57c8b8ffeef0b519a2c881a183ac07a138fd

HTTP Headers

GET /api/1.0/ping/pong?location=https%3A%2F%2Fluxl.cashappcard.club%2Fc%2F2ecf914ce8d75b25%3Fcid%3D__SID__%26sub1%3D__CAMPAIGN_NAME__%26sub2%3D__SID__%26sub3%3D__GROUP_NAME__%26sub4%3D__AD_ID__%26sub5%3D__APPID__%26sub6%3D__GAID__%26sub7%3D__AD_EXT__%26source_id%3D__PUBLISHER_ID__%26aff_sub%3D__CAMPAIGN_NAME__%26s1%3D__CAMPAIGN_NAME__%26sid%3D__CAMPAIGN_NAME__ HTTP/1.1
Host: stormtrk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://luxl.cashappcard.club
DNT: 1
Connection: keep-alive
Referer: https://luxl.cashappcard.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 31 Oct 2023 08:00:16 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Content-Type, Access-Control-Allow-Headers, X-Requested-With
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ievwf1Jm2EHiemtB7a6XwY7480s%2BKTpR9rz755oO4NqMWxL%2FblmTouXJNRgaG%2BEd0DFhujNAAldvyA7tUdZ%2BZTTx6B7JkT346hWlMynCo8lRLieLEYdrSp7S6AJOMg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81ea5d06eb2a0b41-OSL
content-encoding: br
X-Firefox-Spdy: h2

cdn-adef.akamaized.net/landings/283980/1698669520/js/collector.js?1698669520

23.36.76.96

200 OK

5.6 kB

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/283980/1698669520/js/collector.js?1698669520
IP
23.36.76.96:443
ASN
#20940 Akamai International B.V.

Requested by
https://luxl.cashappcard.club/c/2ecf914ce8d75b25?cid=__SID__&sub1=__CAMPAIGN_NAME__&sub2=__SID__&sub3=__GROUP_NAME__&sub4=__AD_ID__&sub5=__APPID__&sub6=__GAID__&sub7=__AD_EXT__&source_id=__PUBLISHER_ID__&aff_sub=__CAMPAIGN_NAME__&s1=__CAMPAIGN_NAME__&sid=__CAMPAIGN_NAME__
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
ASCII text, with very long lines (5895), with no line terminators
Size
5.6 kB (5569 bytes)
Hash
a13a8ae65bc731abed61279514bcf790
8e639e17f48cdda45e0c987ce69d2f721fe63a74
5b6d3cb46ac96154cabc64e26ce0c276be90b6bdab993ee3908e7c4aab9ac7a6

HTTP Headers

GET /landings/283980/1698669520/js/collector.js?1698669520 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://luxl.cashappcard.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: 8WVfDohLS14ds56SKkKTFwq3gUSoxJLkDvcrHjLKSbEBJh/e7V5AtGjBKIr8KW3hgafLL8xvQYE=
x-amz-request-id: YSN0FJPEVWFBVBN1
Last-Modified: Mon, 30 Oct 2023 12:38:42 GMT
ETag: "f2b084c56561aec35e77c7bff672d092"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Tue, 31 Oct 2023 08:00:14 GMT
Content-Length: 1291
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (8)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (25)

URL GET HTTP/1.1

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/1.1