Report - claimdanahadiah.efiles.my.id/login.php

Report Overview

Submitted URL
claimdanahadiah.efiles.my.id/login.php
IP
172.67.140.109
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-24 09:26:09
Access
public
Website Title
DANA - Apa pun transaksinya selalu ada DANA
Final URL
claimdanahadiah.efiles.my.id/login.php
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
64

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-04-24	475 B	18 kB	142.250.74.106
code.jquery.com	634	2005-12-10	2012-05-21	2024-04-23	422 B	32 kB	151.101.66.137
claimdanahadiah.efiles.my.id	unknown	unknown	No data	No data	7.7 kB	107 kB	172.67.140.109
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-04-23	1.7 kB	147 kB	216.58.207.227
aus5.mozilla.org	2548	1998-01-24	2015-10-27	2024-04-22	512 B	1.2 kB	35.244.181.201

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-04-23	medium	claimdanahadiah.efiles.my.id/	DANA
2024-04-23	medium	claimdanahadiah.efiles.my.id/	DANA
2024-04-23	medium	claimdanahadiah.efiles.my.id/	DANA
2024-04-23	medium	claimdanahadiah.efiles.my.id/	DANA
2024-04-23	medium	claimdanahadiah.efiles.my.id/	DANA
2024-04-23	medium	claimdanahadiah.efiles.my.id/	DANA
2024-04-23	medium	claimdanahadiah.efiles.my.id/	DANA
2024-04-23	medium	claimdanahadiah.efiles.my.id/	DANA
2024-04-23	medium	claimdanahadiah.efiles.my.id/	DANA
2024-04-23	medium	claimdanahadiah.efiles.my.id/	DANA
2024-04-23	medium	claimdanahadiah.efiles.my.id/	DANA
2024-04-23	medium	claimdanahadiah.efiles.my.id/	DANA
2024-04-23	medium	claimdanahadiah.efiles.my.id/	DANA
2024-04-23	medium	claimdanahadiah.efiles.my.id/	DANA
2024-04-23	medium	claimdanahadiah.efiles.my.id/	DANA
2024-04-23	medium	claimdanahadiah.efiles.my.id/	DANA

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-04-24	medium	efiles.my.id	Sinkholed
2024-04-24	medium	efiles.my.id	Sinkholed
2024-04-24	medium	efiles.my.id	Sinkholed
2024-04-24	medium	efiles.my.id	Sinkholed
2024-04-24	medium	efiles.my.id	Sinkholed
2024-04-24	medium	efiles.my.id	Sinkholed
2024-04-24	medium	efiles.my.id	Sinkholed
2024-04-24	medium	efiles.my.id	Sinkholed
2024-04-24	medium	efiles.my.id	Sinkholed
2024-04-24	medium	efiles.my.id	Sinkholed
2024-04-24	medium	efiles.my.id	Sinkholed
2024-04-24	medium	efiles.my.id	Sinkholed
2024-04-24	medium	efiles.my.id	Sinkholed
2024-04-24	medium	efiles.my.id	Sinkholed
2024-04-24	medium	efiles.my.id	Sinkholed
2024-04-24	medium	efiles.my.id	Sinkholed

ThreatFox

No alerts detected

JavaScript (13)

	URL	Size	First Seen	Last Seen
	claimdanahadiah.efiles.my.id/login.php	135 B	2023-06-29	2024-05-05
Pretty URL claimdanahadiah.efiles.my.id/login.php IP 172.67.140.109 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-29 14:59:08 Last Seen2024-05-05 07:51:45 Times Seen711 Hash 8135d55bdb3fdd9003e5226986c539f4 17796aff7fea44999042478f0340bdc87776acab 0c472d92c58eac469153a6fa27f2fb758ae436804afed1b0689bd9e33c15a0eb Loading...

	claimdanahadiah.efiles.my.id/login.php	66 B	2023-06-29	2024-05-05
Pretty URL claimdanahadiah.efiles.my.id/login.php IP 172.67.140.109 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-29 14:59:08 Last Seen2024-05-05 07:51:45 Times Seen700 Hash b7ec93a09110dfd8bb76196fe658a2ca fa0e9eecd598aa16a419e4e799c4694469ecf9f3 5ef8108dc8ed8de6d3ce2b0a190bcde518ac3f55143f767074e421359a2ee58a Loading...

	claimdanahadiah.efiles.my.id/login.php	214 B	2023-06-29	2024-05-05
Pretty URL claimdanahadiah.efiles.my.id/login.php IP 172.67.140.109 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-29 14:59:08 Last Seen2024-05-05 07:51:45 Times Seen687 Hash d5d8d7e5364c28cf2a6bdb2d1b533425 38c68da0d60983a3f9fa085872d27ad97f5707d0 73e91b6f1b1b5cf60d3701b6e287a052b09787492ee66fd00288d6d29c5b1f75 Loading...

	claimdanahadiah.efiles.my.id/login.php	690 B	2023-06-29	2024-05-05
Pretty URL claimdanahadiah.efiles.my.id/login.php IP 172.67.140.109 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-29 14:59:08 Last Seen2024-05-05 07:51:45 Times Seen697 Hash 37b6cc906dee95ba31d6dc3561093274 cf09a304a41aafdb080861bc47d37f346def78d4 f2e9070c480bcec6af473420c44054580f46caddad6daed002db97fe1790daac Loading...

	code.jquery.com/jquery-3.5.1.min.js	90 kB	2023-03-07	2024-05-06
Pretty URL code.jquery.com/jquery-3.5.1.min.js IP 151.101.66.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:01 Last Seen2024-05-06 03:39:53 Times Seen141660 Hash dc5e7f18c8d36ac1d3d4753a87c98d0a c8e1c8b386dc5b7a9184c763c88d19a346eb3342 f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d Loading...

	claimdanahadiah.efiles.my.id/login.php	689 B	2023-06-29	2024-05-05
Pretty URL claimdanahadiah.efiles.my.id/login.php IP 172.67.140.109 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-29 14:59:08 Last Seen2024-05-05 07:51:45 Times Seen712 Hash b05c8bd1528cb5466392fb8d88178905 84590a391d262608fef98d82cc37bc399c656c6a c5ed1f676d19f816f1f227611469605003b0e57edc27aaf55f51a654aa6134e2 Loading...

	claimdanahadiah.efiles.my.id/login.php	429 B	2023-06-29	2024-05-05
Pretty URL claimdanahadiah.efiles.my.id/login.php IP 172.67.140.109 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-29 14:59:08 Last Seen2024-05-05 07:51:45 Times Seen687 Hash 4d1528243a309f4162fe80c2cde9ae93 8f3ed458f48f58e15538686dc001fd0ae8fe2079 917bd4fc4ff0da5f10b0e353b4dc49b8cf8962d64e04c7f8095fa046360a2d40 Loading...

	claimdanahadiah.efiles.my.id/login.php	385 B	2023-06-30	2024-05-03
Pretty URL claimdanahadiah.efiles.my.id/login.php IP 172.67.140.109 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-30 13:24:45 Last Seen2024-05-03 07:00:06 Times Seen494 Hash e53dd890537cb82df8bdb8b263d68b65 9cfa3a52757641af1f9b5306d974d2755201e4fd 8fcdeb22f835d59cbc08d2183aed7c944b8ddaed88592d3d9d0f7513e36583d2 Loading...

	claimdanahadiah.efiles.my.id/login.php	307 B	2023-06-30	2024-05-03
Pretty URL claimdanahadiah.efiles.my.id/login.php IP 172.67.140.109 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-30 13:24:45 Last Seen2024-05-03 07:00:06 Times Seen494 Hash df4e0d67a093f28be8e21892df8bd0c3 9516b9f3d95e107d4ce97961401f68d6f36c84a4 fb64d18d5d3f33a9f556552f2321e3aa2b68aa93b3b417549ed298c2ff5c9164 Loading...

	claimdanahadiah.efiles.my.id/login.php	401 B	2023-06-30	2024-05-03
Pretty URL claimdanahadiah.efiles.my.id/login.php IP 172.67.140.109 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-30 13:24:45 Last Seen2024-05-03 06:30:18 Times Seen454 Hash 4c28d412cbc4b680c5b0bf9b00888db1 e8064f30f12f8740d8e38dd50eca327c191c2ba7 4d03a6ec6823d126e58e1c8fe43dbc14650d5c1bdecdb98139de50ffdb07b648 Loading...

	claimdanahadiah.efiles.my.id/login.php	156 B	2023-06-29	2024-05-05
Pretty URL claimdanahadiah.efiles.my.id/login.php IP 172.67.140.109 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-29 14:59:08 Last Seen2024-05-05 07:51:45 Times Seen696 Hash 00c3ff7222ce30d0151b609ce9b1dd00 28fbd8656f7edc3e6f92e420aa6c8bba22be6049 aaaee6f16237a69ade0d0a8e1246b230292a6eead0155f688c49e8de8b5a35c2 Loading...

	claimdanahadiah.efiles.my.id/ast/jquery.mask.min.js	7.9 kB	2023-06-29	2024-05-05
Pretty URL claimdanahadiah.efiles.my.id/ast/jquery.mask.min.js IP 172.67.140.109 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-29 14:59:08 Last Seen2024-05-05 07:51:45 Times Seen910 Hash 2e961f240d376e0a83c885a07f00762e e9f1d4a792dc3fb06f8d65d68a607738f3b4070c 470a65fdd4c44fa96ef232acb2a308ca73a3f17d6accc399d0c7a28a21d532d9 Loading...

	claimdanahadiah.efiles.my.id/login.php	382 B	2023-06-29	2024-05-05
Pretty URL claimdanahadiah.efiles.my.id/login.php IP 172.67.140.109 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-29 14:59:08 Last Seen2024-05-05 07:51:45 Times Seen703 Hash 7544c9acf4737e54470eb118ba8361a5 6a4d26abaec547bb911dcd1d131505512c3d5dfc 15d88dfd919c1a4ae658e43cfb9c9bc3dc298440028e47b065e43b2218c52f21 Loading...

HTTP Transactions (22)

URL IP Response Size

code.jquery.com/jquery-3.5.1.min.js

151.101.66.137

200 OK

31 kB

URL GET HTTP/2
code.jquery.com/jquery-3.5.1.min.js
IP
151.101.66.137:443
ASN
#54113 FASTLY

Requested by
https://claimdanahadiah.efiles.my.id/login.php
Certificate
IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65451)
Size
31 kB (30879 bytes)
Hash
dc5e7f18c8d36ac1d3d4753a87c98d0a
c8e1c8b386dc5b7a9184c763c88d19a346eb3342
f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d

HTTP Headers

GET /jquery-3.5.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://claimdanahadiah.efiles.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-15d84"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 24 Apr 2024 09:25:46 GMT
age: 3907587
x-served-by: cache-lga21981-LGA, cache-hel1410026-HEL
x-cache: HIT, HIT
x-cache-hits: 36, 212410
x-timer: S1713950746.104659,VS0,VE0
vary: Accept-Encoding
content-length: 30879
X-Firefox-Spdy: h2

claimdanahadiah.efiles.my.id/ast/img/load_spin.png

172.67.140.109

200 OK

5.1 kB

URL GET HTTP/3
claimdanahadiah.efiles.my.id/ast/img/load_spin.png
IP
172.67.140.109:443
ASN
#13335 CLOUDFLARENET

Requested by
https://claimdanahadiah.efiles.my.id/login.php
Certificate
IssuerGoogle Trust Services LLC
Subjectefiles.my.id
Fingerprint6C:A5:65:6B:67:95:09:3D:A9:20:4F:A9:82:B3:FE:43:6D:02:8F:5A
ValiditySun, 24 Mar 2024 15:54:11 GMT - Sat, 22 Jun 2024 15:54:10 GMT

File type
PNG image data, 200 x 200, 8-bit gray+alpha, non-interlaced
Size
5.1 kB (5078 bytes)
Hash
e8e4e4432355a07040a7327673850223
b07f6cfaacb6a2093778b08dd8d9b8f7d718c119
50b4bad00572d07c6158459a5cb93b1b3f9bdea95d393aa56970afded2f58913

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DANA
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ast/img/load_spin.png HTTP/1.1
Host: claimdanahadiah.efiles.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://claimdanahadiah.efiles.my.id/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 09:25:46 GMT
content-type: image/png
content-length: 5078
last-modified: Tue, 01 Nov 2022 20:12:08 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1yXKlRHH80nGSBFiWa5lunBesXgSz3ou8D4yi%2BHvrcZQr30wHK7cpWq11K9RO5SmC2tjWMjh36KPE%2BC0njbys5eP%2FBgBMoutq0dHihRevLXs0mXtCW0Qh1frRAOMOc%2BHEVq%2BUniI%2FBpsE4ie9SAO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87950c4279470b45-OSL
alt-svc: h3=":443"; ma=86400

claimdanahadiah.efiles.my.id/ast/img/dana_logo.png

172.67.140.109

200 OK

13 kB

URL GET HTTP/3
claimdanahadiah.efiles.my.id/ast/img/dana_logo.png
IP
172.67.140.109:443
ASN
#13335 CLOUDFLARENET

Requested by
https://claimdanahadiah.efiles.my.id/login.php
Certificate
IssuerGoogle Trust Services LLC
Subjectefiles.my.id
Fingerprint6C:A5:65:6B:67:95:09:3D:A9:20:4F:A9:82:B3:FE:43:6D:02:8F:5A
ValiditySun, 24 Mar 2024 15:54:11 GMT - Sat, 22 Jun 2024 15:54:10 GMT

File type
PNG image data, 382 x 112, 8-bit/color RGBA, interlaced
Size
13 kB (12786 bytes)
Hash
6fd5a7d18a8f7c04bc5effcdc5235987
c4852c577f44fcdf78fb439a30ea2c6c6983b140
c67e5431f9c00bb690ea8b8add63d5ca9250bf2925f2c2a691eeee498ac75853

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DANA
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ast/img/dana_logo.png HTTP/1.1
Host: claimdanahadiah.efiles.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://claimdanahadiah.efiles.my.id/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 09:25:46 GMT
content-type: image/png
content-length: 12786
last-modified: Mon, 31 Oct 2022 06:38:08 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Tn%2BX5Ul4V8WztJISg1u0T1LXdFxfY0rlAfftwVIpGzrP3aty20QGcyE4XWk4D7r9APCFs1zrMgptt90d26GbE3QeFavnnjrWKxvl86rxf1yy0HNQ5LdGeGFJlQPImDzTT6Ie2SNC1YDXKsOGh3eA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87950c4269370b45-OSL
alt-svc: h3=":443"; ma=86400

claimdanahadiah.efiles.my.id/ast/img/dana_text.png

172.67.140.109

200 OK

1.5 kB

URL GET HTTP/3
claimdanahadiah.efiles.my.id/ast/img/dana_text.png
IP
172.67.140.109:443
ASN
#13335 CLOUDFLARENET

Requested by
https://claimdanahadiah.efiles.my.id/login.php
Certificate
IssuerGoogle Trust Services LLC
Subjectefiles.my.id
Fingerprint6C:A5:65:6B:67:95:09:3D:A9:20:4F:A9:82:B3:FE:43:6D:02:8F:5A
ValiditySun, 24 Mar 2024 15:54:11 GMT - Sat, 22 Jun 2024 15:54:10 GMT

File type
PNG image data, 252 x 58, 8-bit colormap, non-interlaced
Size
1.5 kB (1466 bytes)
Hash
fd841b9e9127fb1190033b5194629e01
3e0110740cfb85144a8c31836dc5d72af8545a3c
7b29d4f79db97e3b622e8e4ff6fc2cc8e12189d1b32e105fb48315b2c052c339

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DANA
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ast/img/dana_text.png HTTP/1.1
Host: claimdanahadiah.efiles.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://claimdanahadiah.efiles.my.id/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 09:25:46 GMT
content-type: image/png
content-length: 1466
last-modified: Mon, 31 Oct 2022 06:38:06 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=u61Esa7TWq78DncWZFm4EuE7JsCpa3GoRbzwgcIFFNkBTHxxa3Kxfxqc9DFY%2ByroTlsobHJYT1Utbz8BjMWJZ53W1Y%2BwSTaV%2FOccpt3o8WW5xg2k6%2FAQqi37tRK7bN68my9o%2Fqi5MVgES3EuaA7L"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87950c42693f0b45-OSL
alt-svc: h3=":443"; ma=86400

claimdanahadiah.efiles.my.id/ast/img/kom.png

172.67.140.109

200 OK

8.5 kB

URL GET HTTP/3
claimdanahadiah.efiles.my.id/ast/img/kom.png
IP
172.67.140.109:443
ASN
#13335 CLOUDFLARENET

Requested by
https://claimdanahadiah.efiles.my.id/login.php
Certificate
IssuerGoogle Trust Services LLC
Subjectefiles.my.id
Fingerprint6C:A5:65:6B:67:95:09:3D:A9:20:4F:A9:82:B3:FE:43:6D:02:8F:5A
ValiditySun, 24 Mar 2024 15:54:11 GMT - Sat, 22 Jun 2024 15:54:10 GMT

File type
PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced
Size
8.5 kB (8484 bytes)
Hash
74adb66e545a68df7e5a0442a02fa8e7
a1692d3bfbde3c0cb3a8bc9b9b1fb2de4d570e85
4285db40c51cc53230cab0490df40566e285b48fb2b2e4729b42ff2a26c74480

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DANA
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ast/img/kom.png HTTP/1.1
Host: claimdanahadiah.efiles.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://claimdanahadiah.efiles.my.id/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 09:25:46 GMT
content-type: image/png
content-length: 8484
last-modified: Wed, 23 Aug 2023 07:11:10 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AtH5quDYZZaMhv0aYHP8ZAVx2ZmfbbdbZWCEs%2FEnpekfM7U5rJvdHdJu4AUYKQaVUGdR87Up9TeMfGjDieH1Nqaj1rak4S7IgRhf%2Fq%2F1qGWLj6QNDWHjTg2d0TxNRG2HIO6HTeTQAEexvyahjkVp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87950c4279440b45-OSL
alt-svc: h3=":443"; ma=86400

claimdanahadiah.efiles.my.id/ast/img/indo.png

172.67.140.109

200 OK

741 B

URL GET HTTP/3
claimdanahadiah.efiles.my.id/ast/img/indo.png
IP
172.67.140.109:443
ASN
#13335 CLOUDFLARENET

Requested by
https://claimdanahadiah.efiles.my.id/login.php
Certificate
IssuerGoogle Trust Services LLC
Subjectefiles.my.id
Fingerprint6C:A5:65:6B:67:95:09:3D:A9:20:4F:A9:82:B3:FE:43:6D:02:8F:5A
ValiditySun, 24 Mar 2024 15:54:11 GMT - Sat, 22 Jun 2024 15:54:10 GMT

File type
PNG image data, 80 x 45, 8-bit colormap, non-interlaced
Size
741 B (741 bytes)
Hash
c15c95b8db17f44e5826bb7839278578
5be0ab5aba6201a0a3a3423f9db8008ed2385430
af52bfb0ab7606d185db1457ddc3edceb61c7fe9675e099cae3e3be1eccf152c

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DANA
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ast/img/indo.png HTTP/1.1
Host: claimdanahadiah.efiles.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://claimdanahadiah.efiles.my.id/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 09:25:46 GMT
content-type: image/png
content-length: 741
last-modified: Sat, 29 Oct 2022 18:42:20 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hRWvPuBPpXhDmNC60Z2gjcrrOMiHcpyBhxlftgU%2B86ESlL%2BTNMDDT%2FAOgrcgpOLQv2ayn9JgQp%2FFG%2FID4JBR5nfFDkaWGsbUKxFoCX%2FX1gom09DiTFzMNyrzx4bEh00CDjELVmb0w6kdYbJTRzmk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87950c42794b0b45-OSL
alt-svc: h3=":443"; ma=86400

claimdanahadiah.efiles.my.id/ast/img/bi.png

172.67.140.109

200 OK

16 kB

URL GET HTTP/3
claimdanahadiah.efiles.my.id/ast/img/bi.png
IP
172.67.140.109:443
ASN
#13335 CLOUDFLARENET

Requested by
https://claimdanahadiah.efiles.my.id/login.php
Certificate
IssuerGoogle Trust Services LLC
Subjectefiles.my.id
Fingerprint6C:A5:65:6B:67:95:09:3D:A9:20:4F:A9:82:B3:FE:43:6D:02:8F:5A
ValiditySun, 24 Mar 2024 15:54:11 GMT - Sat, 22 Jun 2024 15:54:10 GMT

File type
PNG image data, 360 x 200, 8-bit/color RGBA, non-interlaced
Size
16 kB (16542 bytes)
Hash
6e77df79b301b9fb95fdf50d66e3ceb7
1c93476fccf582d5ea0fa88ec8b1becc00d9edb5
4262dc8d42209d7e2a597f7f1098880e75ad0f6a53a66da1a7bd094a5f778199

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DANA
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ast/img/bi.png HTTP/1.1
Host: claimdanahadiah.efiles.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://claimdanahadiah.efiles.my.id/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 09:25:46 GMT
content-type: image/png
content-length: 16542
last-modified: Wed, 23 Aug 2023 07:11:02 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=I%2FSF3RXwZHbxBghWTAm0rQ9l6LCXmq0G6zXUITe4E01RUUGoLRj1U8YvlTNr%2BZMAAGeET6aocZmr5cNLB1WMELsd%2Fe8m1PIO%2F7nqhMq4QNOImaOjZrOyHgz4zgVZMs8CZR5dXqtWofbXWogH5gxj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87950c4269400b45-OSL
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

216.58.207.227

200 OK

48 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://claimdanahadiah.efiles.my.id/login.php
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
Web Open Font Format (Version 2), TrueType, length 48236, version 1.0
Size
48 kB (48236 bytes)
Hash
015c126a3520c9a8f6a27979d0266e96
2acf956561d44434a6d84204670cf849d3215d5f
3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa

HTTP Headers

GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://claimdanahadiah.efiles.my.id
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:35:00 GMT
expires: Fri, 18 Apr 2025 02:35:00 GMT
cache-control: public, max-age=31536000
age: 543046
last-modified: Thu, 14 Dec 2023 02:08:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

claimdanahadiah.efiles.my.id/ast/img/load_bg.png

172.67.140.109

200 OK

7.9 kB

URL GET HTTP/3
claimdanahadiah.efiles.my.id/ast/img/load_bg.png
IP
172.67.140.109:443
ASN
#13335 CLOUDFLARENET

Requested by
https://claimdanahadiah.efiles.my.id/login.php
Certificate
IssuerGoogle Trust Services LLC
Subjectefiles.my.id
Fingerprint6C:A5:65:6B:67:95:09:3D:A9:20:4F:A9:82:B3:FE:43:6D:02:8F:5A
ValiditySun, 24 Mar 2024 15:54:11 GMT - Sat, 22 Jun 2024 15:54:10 GMT

File type
PNG image data, 300 x 300, 8-bit gray+alpha, non-interlaced
Size
7.9 kB (7863 bytes)
Hash
bf1d4a90de7e29b2be55237982cb30b4
ef942049631b598767fda52d54458b9f9680ee87
46518758f002d85cff9220609163f23b7e9f8f2721561d1e0ba79c4f17425c58

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DANA
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ast/img/load_bg.png HTTP/1.1
Host: claimdanahadiah.efiles.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://claimdanahadiah.efiles.my.id/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 09:25:46 GMT
content-type: image/png
content-length: 7863
last-modified: Tue, 01 Nov 2022 20:12:02 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1oUuyvKlVui2mO1F1VCqCTBW1OdCcNTmebAYR30mg0fp2Jdyt3T7VawH%2F3wMQ11VhOv8zQhNOL3iymoE%2Fn3kfIUR5HM9t4DXW1cX7X6ugkXPE9TdmbDEFIdyw%2BN1hxiX27hD7fQi%2BxRQo5SpEOIK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87950c4279460b45-OSL
alt-svc: h3=":443"; ma=86400

claimdanahadiah.efiles.my.id/ast/jquery.mask.min.js

172.67.140.109

200 OK

3.9 kB

URL GET HTTP/3
claimdanahadiah.efiles.my.id/ast/jquery.mask.min.js
IP
172.67.140.109:443
ASN
#13335 CLOUDFLARENET

Requested by
https://claimdanahadiah.efiles.my.id/login.php
Certificate
IssuerGoogle Trust Services LLC
Subjectefiles.my.id
Fingerprint6C:A5:65:6B:67:95:09:3D:A9:20:4F:A9:82:B3:FE:43:6D:02:8F:5A
ValiditySun, 24 Mar 2024 15:54:11 GMT - Sat, 22 Jun 2024 15:54:10 GMT

File type
JavaScript source, ASCII text, with very long lines (551)
Size
3.9 kB (3858 bytes)
Hash
2e961f240d376e0a83c885a07f00762e
e9f1d4a792dc3fb06f8d65d68a607738f3b4070c
470a65fdd4c44fa96ef232acb2a308ca73a3f17d6accc399d0c7a28a21d532d9

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DANA
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ast/jquery.mask.min.js HTTP/1.1
Host: claimdanahadiah.efiles.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://claimdanahadiah.efiles.my.id/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 09:25:46 GMT
content-type: text/javascript
last-modified: Fri, 28 Apr 2023 03:08:52 GMT
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=J1%2F%2BC8iOo%2BKtLRM4YZ4X8woYoGRhDf1hOhwDHz6fcvzGhLlcZWigJzjyabUz60zDoEA3Yx5F2zw%2BkiwKMKUiAghrizIAwCQZCYd3bO4nAmmvAGKcL5Z8mv%2FlYiXKl2JuZcOhQSwf0hceAuofJVsX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87950c42794e0b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

claimdanahadiah.efiles.my.id/ast/img/hero.svg

172.67.140.109

200 OK

22 kB

URL GET HTTP/3
claimdanahadiah.efiles.my.id/ast/img/hero.svg
IP
172.67.140.109:443
ASN
#13335 CLOUDFLARENET

Requested by
https://claimdanahadiah.efiles.my.id/login.php
Certificate
IssuerGoogle Trust Services LLC
Subjectefiles.my.id
Fingerprint6C:A5:65:6B:67:95:09:3D:A9:20:4F:A9:82:B3:FE:43:6D:02:8F:5A
ValiditySun, 24 Mar 2024 15:54:11 GMT - Sat, 22 Jun 2024 15:54:10 GMT

File type
SVG Scalable Vector Graphics image
Size
22 kB (21862 bytes)
Hash
bc0ceea50591f74883dd9b92b19b852c
5617f0be48b9a0973c24ff0e1d200201549a4a50
a3d7991adee411105f2ddd533c34d0f0afd141187bc13503fd035de014f954d8

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DANA
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ast/img/hero.svg HTTP/1.1
Host: claimdanahadiah.efiles.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://claimdanahadiah.efiles.my.id/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 09:25:46 GMT
content-type: image/svg+xml
last-modified: Fri, 28 Apr 2023 12:19:38 GMT
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9nlopL8qkr436LU16y6fw8lbEmSLZe4IgnNJqlaGyLmnKrsfcE1faZc%2BmDDTkwfnXes5jBTvT5mpuHAVxmyjXvYCB%2F05ALxvGd524Tqm2AgEx7jkytozsELX46M5EToeqJ7v8kfx%2BpyPTA6N6QuN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87950c42693b0b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

216.58.207.227

200 OK

48 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://claimdanahadiah.efiles.my.id/login.php
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
Web Open Font Format (Version 2), TrueType, length 48236, version 1.0
Size
48 kB (48236 bytes)
Hash
015c126a3520c9a8f6a27979d0266e96
2acf956561d44434a6d84204670cf849d3215d5f
3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa

HTTP Headers

GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://claimdanahadiah.efiles.my.id
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:35:00 GMT
expires: Fri, 18 Apr 2025 02:35:00 GMT
cache-control: public, max-age=31536000
age: 543050
last-modified: Thu, 14 Dec 2023 02:08:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

216.58.207.227

200 OK

48 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://claimdanahadiah.efiles.my.id/login.php
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
Web Open Font Format (Version 2), TrueType, length 48236, version 1.0
Size
48 kB (48236 bytes)
Hash
015c126a3520c9a8f6a27979d0266e96
2acf956561d44434a6d84204670cf849d3215d5f
3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa

HTTP Headers

GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://claimdanahadiah.efiles.my.id
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:35:00 GMT
expires: Fri, 18 Apr 2025 02:35:00 GMT
cache-control: public, max-age=31536000
age: 543050
last-modified: Thu, 14 Dec 2023 02:08:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml

35.244.181.201

444 B

URL
aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml
IP
35.244.181.201:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
XML 1.0 document, ASCII text, with very long lines (332)
Size
444 B (444 bytes)
Hash
3b324dec137a87ef7e24a30a65b13dd0
c0faa95b2f1018e264b3a14aaf50d1003e6c27b3
6cd0b591d9239fc8564627e92a804fc261951b1cbaf5fa58a8ada3cc13f51463

HTTP Headers

GET /update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml HTTP/1.1
Host: aus5.mozilla.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: no-cache
Pragma: no-cache
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
rule-id: unknown
rule-data-version: unknown
content-signature: x5u=https://content-signature-2.cdn.mozilla.net/chains/aus.content-signature.mozilla.org-2024-06-09-11-51-10.chain; p384ecdsa=KCUszTBi0JHNTsHXFi9kDXzs4hht2RHaRZ_mP1lYrhTFwtrMYBkbwi_BjISmviA1UpTNBgTmm59I3sGW86zfbOLmQTqEqWf9qzYbt1Ghy_Tz7RBawK6niOyKZYxJ5D_8
strict-transport-security: max-age=31536000;
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'
x-proxy-cache-status: EXPIRED
content-encoding: gzip
via: 1.1 google
date: Wed, 24 Apr 2024 09:24:47 GMT
content-type: text/xml; charset=utf-8
vary: Accept-Encoding
content-length: 444
age: 77
cache-control: public,max-age=90
alt-svc: clear
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Open+Sans:wght@400;600;700&display=swap

142.250.74.106

200 OK

18 kB

URL GET HTTP/2
fonts.googleapis.com/css2?family=Open+Sans:wght@400;600;700&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://claimdanahadiah.efiles.my.id/login.php
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT

File type
ASCII text, with very long lines (1572)
Size
18 kB (17451 bytes)
Hash
71b2730c1cecf7a0768725bd944422c5
8dfa323cb988538bce8556a99bb5bd556e3593d1
851699a18b631a7bd68efc99598701293a6065b463fced7b68d8d6d9227bd8e7

HTTP Headers

GET /css2?family=Open+Sans:wght@400;600;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://claimdanahadiah.efiles.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 24 Apr 2024 09:25:46 GMT
date: Wed, 24 Apr 2024 09:25:46 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

claimdanahadiah.efiles.my.id/ast/00b9d2e9f52e505c013c16bb638a42a4.css

172.67.140.109

200 OK

666 B

URL GET HTTP/3
claimdanahadiah.efiles.my.id/ast/00b9d2e9f52e505c013c16bb638a42a4.css
IP
172.67.140.109:443
ASN
#13335 CLOUDFLARENET

Requested by
https://claimdanahadiah.efiles.my.id/login.php
Certificate
IssuerGoogle Trust Services LLC
Subjectefiles.my.id
Fingerprint6C:A5:65:6B:67:95:09:3D:A9:20:4F:A9:82:B3:FE:43:6D:02:8F:5A
ValiditySun, 24 Mar 2024 15:54:11 GMT - Sat, 22 Jun 2024 15:54:10 GMT

File type
ASCII text, with very long lines (666), with no line terminators
Size
666 B (666 bytes)
Hash
f04c34e455649c317cbfe449a7c5b10e
07c192cd6c0d6b6a96ddd3fe56ffc5762c2f6eb7
963ee000ea25a124a63e7dd4ded8a9adc4d3501de7d0bf47f78f6fa4bc4ee472

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DANA
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ast/00b9d2e9f52e505c013c16bb638a42a4.css HTTP/1.1
Host: claimdanahadiah.efiles.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://claimdanahadiah.efiles.my.id/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 09:25:46 GMT
content-type: text/css
last-modified: Fri, 28 Apr 2023 17:53:58 GMT
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xxS6ZJC9ZMNCdQ9Igsjkh3rDgG0V1L%2B4EnidRzVkN1WtDnPG80wbOPwKzF6lvqnBK6z0Nx27lt65HCkrJf8B52qBaE2oPE0zwYek%2Bkz9C89xpgOlVKcHBhkHkyTakMpuqFE0Il2frvSwI27x4MIz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87950c42692c0b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

claimdanahadiah.efiles.my.id/ast/3fadc676582b9542004b502ee03df3a3.css

172.67.140.109

200 OK

1.6 kB

URL GET HTTP/3
claimdanahadiah.efiles.my.id/ast/3fadc676582b9542004b502ee03df3a3.css
IP
172.67.140.109:443
ASN
#13335 CLOUDFLARENET

Requested by
https://claimdanahadiah.efiles.my.id/login.php
Certificate
IssuerGoogle Trust Services LLC
Subjectefiles.my.id
Fingerprint6C:A5:65:6B:67:95:09:3D:A9:20:4F:A9:82:B3:FE:43:6D:02:8F:5A
ValiditySun, 24 Mar 2024 15:54:11 GMT - Sat, 22 Jun 2024 15:54:10 GMT

File type
ASCII text, with very long lines (1561), with no line terminators
Size
1.6 kB (1561 bytes)
Hash
553a4feacebe4a339e3f83b082684ff8
7334803536f6429c43ad344da92e22414e5882c2
94e570a73c7171a271962b2c59739196b2101bba6ce3257e1e60743013cdaf32

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DANA
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ast/3fadc676582b9542004b502ee03df3a3.css HTTP/1.1
Host: claimdanahadiah.efiles.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://claimdanahadiah.efiles.my.id/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 09:25:46 GMT
content-type: text/css
last-modified: Fri, 28 Apr 2023 17:52:48 GMT
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6q0NUYC5J%2FFaBbZjIKL9rVRrHcMtIG4k12rdctmDHfm66xUZlLfVkYuP4WN0AwABE8qvObZGCoEmBoVqhEXbHsSeLVuJklDN6DkTM2nenJ%2Bq9e1PP3eqPCHMtzt0St5cUdDZAjMc4M9I4RBXgbSS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87950c4269330b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

claimdanahadiah.efiles.my.id/ast/47e4c58f6b9789b8a33f2525cf084599.css

172.67.140.109

200 OK

790 B

URL GET HTTP/3
claimdanahadiah.efiles.my.id/ast/47e4c58f6b9789b8a33f2525cf084599.css
IP
172.67.140.109:443
ASN
#13335 CLOUDFLARENET

Requested by
https://claimdanahadiah.efiles.my.id/login.php
Certificate
IssuerGoogle Trust Services LLC
Subjectefiles.my.id
Fingerprint6C:A5:65:6B:67:95:09:3D:A9:20:4F:A9:82:B3:FE:43:6D:02:8F:5A
ValiditySun, 24 Mar 2024 15:54:11 GMT - Sat, 22 Jun 2024 15:54:10 GMT

File type
ASCII text, with very long lines (790), with no line terminators
Size
790 B (790 bytes)
Hash
8308d2ea1d6ea02c0cb00f298799633e
6deedbf3eea7d45bd140179d681c8f78613073d6
fe9df1a47b206f90c0f6a9bd88239d8eb22313978376f04d9e3fab4a35317380

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DANA
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ast/47e4c58f6b9789b8a33f2525cf084599.css HTTP/1.1
Host: claimdanahadiah.efiles.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://claimdanahadiah.efiles.my.id/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 09:25:46 GMT
content-type: text/css
last-modified: Fri, 28 Apr 2023 17:52:26 GMT
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=81RUsRtBLTHefwuwfo6GqR5Zk1Qo56Z4M%2FyFwqfQyUTYy7ACp6UlTs7CHj0L%2BIMoytpinY%2FPB%2Ff10nWSBWTwHy%2FJkyg%2BJoft3nl0I5XaTgx6r7qCxKVYYYrdBG%2BYrb0IyhjFl8hdDqCzWOgooGGl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87950c4269360b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

claimdanahadiah.efiles.my.id/ast/8d62ea654fcf0e4cae001e344ee2592c.css

172.67.140.109

200 OK

3.9 kB

URL GET HTTP/3
claimdanahadiah.efiles.my.id/ast/8d62ea654fcf0e4cae001e344ee2592c.css
IP
172.67.140.109:443
ASN
#13335 CLOUDFLARENET

Requested by
https://claimdanahadiah.efiles.my.id/login.php
Certificate
IssuerGoogle Trust Services LLC
Subjectefiles.my.id
Fingerprint6C:A5:65:6B:67:95:09:3D:A9:20:4F:A9:82:B3:FE:43:6D:02:8F:5A
ValiditySun, 24 Mar 2024 15:54:11 GMT - Sat, 22 Jun 2024 15:54:10 GMT

File type
ASCII text, with very long lines (3850), with no line terminators
Size
3.9 kB (3850 bytes)
Hash
6a47026eae042cc9152e2ba28cae1688
11f91794ddadcd088a8e78720abd5cce59700198
a2a6e6317012a338c0dc67124f68f969166edc9f7c3f75d54ff48942d785e709

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DANA
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ast/8d62ea654fcf0e4cae001e344ee2592c.css HTTP/1.1
Host: claimdanahadiah.efiles.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://claimdanahadiah.efiles.my.id/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 09:25:46 GMT
content-type: text/css
last-modified: Fri, 28 Apr 2023 17:53:16 GMT
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=W9DyF7uPyDpYVyZ4ehSm3ixbFOnmlO7GDsFs7czV56KkVT24mjCaAK38DSiWGiSp5KPH5DutKSsvJjiCZYsupEPdhs9WJ5KeCoGfBQxJXeSIY0iYHuDjLYtl79EOx%2FQy%2Fml%2FEVPpNd7YS50nCw3%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87950c4259210b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

claimdanahadiah.efiles.my.id/ast/6990a7033bbaeadc2040ac863ff124fd.css

172.67.140.109

200 OK

1.3 kB

URL GET HTTP/3
claimdanahadiah.efiles.my.id/ast/6990a7033bbaeadc2040ac863ff124fd.css
IP
172.67.140.109:443
ASN
#13335 CLOUDFLARENET

Requested by
https://claimdanahadiah.efiles.my.id/login.php
Certificate
IssuerGoogle Trust Services LLC
Subjectefiles.my.id
Fingerprint6C:A5:65:6B:67:95:09:3D:A9:20:4F:A9:82:B3:FE:43:6D:02:8F:5A
ValiditySun, 24 Mar 2024 15:54:11 GMT - Sat, 22 Jun 2024 15:54:10 GMT

File type
ASCII text, with very long lines (1257), with no line terminators
Size
1.3 kB (1256 bytes)
Hash
796bea86fc60b4c910fdf85827a336c7
65488a6086a885e21a54a69760fd0f3ca1b54988
3d8b3158ea0217ce63a3fd40b132ac3c621b5012817e77fb20459ed67cc6b99c

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DANA
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ast/6990a7033bbaeadc2040ac863ff124fd.css HTTP/1.1
Host: claimdanahadiah.efiles.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://claimdanahadiah.efiles.my.id/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 09:25:46 GMT
content-type: text/css
last-modified: Sat, 29 Apr 2023 19:38:08 GMT
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=A1N9mdLY0C179xzt7lxD08xAvnbYMSO5SNZL3cN4JYWsLhJwAk1jh2p0LxJ7iojQY0JIm9I%2FiMlbziOLwSLq15EWmJfVawUTvDgeLQBVDQzkxMWItWApNcGeiy29aOgkA4F9VlyP77H0CIBQLKxF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87950c4269300b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

claimdanahadiah.efiles.my.id/login.php

172.67.140.109

200 OK

9.8 kB

URL User Request GET HTTP/2
claimdanahadiah.efiles.my.id/login.php
IP
172.67.140.109:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectefiles.my.id
Fingerprint6C:A5:65:6B:67:95:09:3D:A9:20:4F:A9:82:B3:FE:43:6D:02:8F:5A
ValiditySun, 24 Mar 2024 15:54:11 GMT - Sat, 22 Jun 2024 15:54:10 GMT

File type
HTML document, ASCII text, with very long lines (10299), with no line terminators
Size
9.8 kB (9843 bytes)
Hash
4e218e2afc900bad867e57660030251a
dfb7a6e68de809cb15d38c78453e2d979cc562a3
02a688a59cbfd1826572149e8a383c2eee9a644abbbb80ead00de028df202abc

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DANA
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /login.php HTTP/1.1
Host: claimdanahadiah.efiles.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 24 Apr 2024 09:25:45 GMT
content-type: text/html; charset=UTF-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=v%2B7pldEdVpcAlct5LQx3OuNhiRQceytULU0KQgWowFOAFS6SY3HFmBVy3BVpUZDAXz%2B0nsD8FkhtKtk0Tub4SgpgPMSb8TSVIWzsC%2BtJ8gATFMzHHySGJfYtnLga3dUFk5YZ3%2FXqu2XAmxXauPDN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87950c3d2eb456ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

claimdanahadiah.efiles.my.id/favicon.ico

172.67.140.109

404 Not Found

315 B

URL GET HTTP/3
claimdanahadiah.efiles.my.id/favicon.ico
IP
172.67.140.109:443
ASN
#13335 CLOUDFLARENET

Requested by
https://claimdanahadiah.efiles.my.id/login.php
Certificate
IssuerGoogle Trust Services LLC
Subjectefiles.my.id
Fingerprint6C:A5:65:6B:67:95:09:3D:A9:20:4F:A9:82:B3:FE:43:6D:02:8F:5A
ValiditySun, 24 Mar 2024 15:54:11 GMT - Sat, 22 Jun 2024 15:54:10 GMT

File type
HTML document, ASCII text, with very long lines (326), with no line terminators
Size
315 B (315 bytes)
Hash
97ef40509b73c101d6815511c3adf98d
a4242322497ea630ea72e26ba297a95a2bbe5ccd
322c1f60d9d454c801f7cff3173ef16b61cf9963a64e09a4d9e21d36218b56be

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DANA
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: claimdanahadiah.efiles.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://claimdanahadiah.efiles.my.id/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Wed, 24 Apr 2024 09:25:47 GMT
content-type: text/html; charset=iso-8859-1
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UVpHKaeAtEBDcSD1V%2B3bj8u04s5HFIIHQxT%2FnaiNby%2BpMG6JlFbmnWhcl0oHWVki8LrdJbDDNnzaNJbLmWxSvhMPqKIIcXBIWkz98mSmH9VXPCXhjZwWEn4AjmlI8iXG%2Bw%2BQFz7up48qlekRn02q"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87950c479cc40b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (13)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML