Report - ployed-to-the-github-pages-environment-by-the-pages-build.pages.dev/?gdhhn%20fgFGB%20NBVCFDsdtfyghmplace=s.pousson@iau-aiu.net&henjemekvhnfhjklfbkjhgfdEWRTYUIJKLN%20hgfdexsDRYUHJKN%20uytr456yuiJKNBGtr%20fbGFDERghjGYUHIJKNLGFtrf/

Report Overview

Submitted URL
ployed-to-the-github-pages-environment-by-the-pages-build.pages.dev/?gdhhn%20fgFGB%20NBVCFDsdtfyghmplace=s.pousson@iau-aiu.net&henjemekvhnfhjklfbkjhgfdEWRTYUIJKLN%20hgfdexsDRYUHJKN%20uytr456yuiJKNBGtr%20fbGFDERghjGYUHIJKNLGFtrf/
IP
172.66.46.242
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-23 22:50:44
Access
public
Website Title
Webmail Login
Final URL
ployed-to-the-github-pages-environment-by-the-pages-build.pages.dev/?gdhhn%20fgFGB%20NBVCFDsdtfyghmplace=s.pousson@iau-aiu.net&henjemekvhnfhjklfbkjhgfdEWRTYUIJKLN%20hgfdexsDRYUHJKN%20uytr456yuiJKNBGtr%20fbGFDERghjGYUHIJKNLGFtrf/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
14

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
ployed-to-the-github-pages-environment-by-the-pages-build.pages.dev	unknown	unknown	No data	No data	4.9 kB	208 kB	172.66.46.242

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-04-23	medium	ployed-to-the-github-pages-environment-by-the-pages-build.pages.dev	Sinkholed
2024-04-23	medium	ployed-to-the-github-pages-environment-by-the-pages-build.pages.dev	Sinkholed
2024-04-23	medium	ployed-to-the-github-pages-environment-by-the-pages-build.pages.dev	Sinkholed
2024-04-23	medium	ployed-to-the-github-pages-environment-by-the-pages-build.pages.dev	Sinkholed
2024-04-23	medium	ployed-to-the-github-pages-environment-by-the-pages-build.pages.dev	Sinkholed
2024-04-23	medium	ployed-to-the-github-pages-environment-by-the-pages-build.pages.dev	Sinkholed
2024-04-23	medium	ployed-to-the-github-pages-environment-by-the-pages-build.pages.dev	Sinkholed

ThreatFox

No alerts detected

JavaScript (3)

	URL	Size	First Seen	Last Seen
	ployed-to-the-github-pages-environment-by-the-pages-build.pages.dev/static/js/main.f499cf14.js	145 kB	2024-04-24	2024-04-24
Pretty URL ployed-to-the-github-pages-environment-by-the-pages-build.pages.dev/static/js/main.f499cf14.js IP 172.66.46.242 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 00:50:50 Last Seen2024-04-24 00:50:52 Times Seen2 Hash 7f82b4d5f8efacc1f97cbfee4e4abfb8 2bb0214e9cc8e7f68a94d31f11a06906f58e5d1a cc36c15b7e92ffc8cd1b0e45aa0dd87d171577bdd32451027311fa466dad73ad Loading...

	ployed-to-the-github-pages-environment-by-the-pages-build.pages.dev/static/js/948.b6536313.chunk.js	13 kB	2024-04-24	2024-04-24
Pretty URL ployed-to-the-github-pages-environment-by-the-pages-build.pages.dev/static/js/948.b6536313.chunk.js IP 172.66.46.242 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 00:50:52 Last Seen2024-04-24 00:50:52 Times Seen2 Hash b44845a7057c3469afc51915764b0889 7b15264a61cfa239ba082a8170fd4ccb51654877 d559bd4eea0ed81df051e75af5ec883d3f6e65aef3629dff6412bc162ca8c48d Loading...

	ployed-to-the-github-pages-environment-by-the-pages-build.pages.dev/static/js/339.1bcbaa67.chunk.js	92 kB	2024-04-24	2024-04-24
Pretty URL ployed-to-the-github-pages-environment-by-the-pages-build.pages.dev/static/js/339.1bcbaa67.chunk.js IP 172.66.46.242 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 00:50:52 Last Seen2024-04-24 00:50:52 Times Seen2 Hash 1e91dd67f7d8d9573e4bd0248ce144dc 0749ee549c187589bfa61692ae1151f3d074fb7a 61c88bcf4ec233bd81e83352611361e550f86d2530fda73509843163623ee58f Loading...

HTTP Transactions (7)

URL IP Response Size

ployed-to-the-github-pages-environment-by-the-pages-build.pages.dev/static/media/hobspot-loader.b653093eceea45b8803d.webp

172.66.46.242

200 OK

22 kB

URL GET HTTP/3
ployed-to-the-github-pages-environment-by-the-pages-build.pages.dev/static/media/hobspot-loader.b653093eceea45b8803d.webp
IP
172.66.46.242:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ployed-to-the-github-pages-environment-by-the-pages-build.pages.dev/?gdhhn%20fgFGB%20NBVCFDsdtfyghmplace=s.pousson@iau-aiu.net&henjemekvhnfhjklfbkjhgfdEWRTYUIJKLN%20hgfdexsDRYUHJKN%20uytr456yuiJKNBGtr%20fbGFDERghjGYUHIJKNLGFtrf/
Certificate
IssuerGoogle Trust Services LLC
Subject
Fingerprint0B:23:FD:6B:1C:D9:A4:5A:E4:08:B8:C3:7F:76:A5:20:74:DC:C7:75
ValidityMon, 22 Apr 2024 13:59:29 GMT - Sun, 21 Jul 2024 13:59:28 GMT

File type
RIFF (little-endian) data, Web/P image
Size
22 kB (21534 bytes)
Hash
e76f2d5b6a8ba83aaa4c60e14bb487a2
aaa50f02fb8ac8996cb750c7f16df39717c39933
73e627ad21ec6683805e79d9d99b7086310b9317de2e525c8e013ec14f90b37e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/media/hobspot-loader.b653093eceea45b8803d.webp HTTP/1.1
Host: ployed-to-the-github-pages-environment-by-the-pages-build.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ployed-to-the-github-pages-environment-by-the-pages-build.pages.dev/?gdhhn%20fgFGB%20NBVCFDsdtfyghmplace=s.pousson@iau-aiu.net&henjemekvhnfhjklfbkjhgfdEWRTYUIJKLN%20hgfdexsDRYUHJKN%20uytr456yuiJKNBGtr%20fbGFDERghjGYUHIJKNLGFtrf/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 23 Apr 2024 22:50:19 GMT
content-type: image/webp
content-length: 21534
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "ca09553a4f8bfaa91ddffcb62d10bd8c"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=n%2FIaegqKQtHSW1ftFy05lswkHP9VJZH2tGlVvs8EJfHRDcMxK%2Fbxo5hGoo411zVOIoAFzmAkmuimgi%2BQeEHKxITPY2nh8q20yEsnbCcHfRjyXJf5goMLhhdCW007iq0bVHKbUeQtw%2F%2FrR8agV27xVITrS89pekVEYCK64dF%2FRu5%2Fyed7zSlLEzoyFMzQDbJstq9t9qtE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8791697198f1569c-OSL
alt-svc: h3=":443"; ma=86400

ployed-to-the-github-pages-environment-by-the-pages-build.pages.dev/static/js/main.f499cf14.js

172.66.46.242

200 OK

54 kB

URL GET HTTP/3
ployed-to-the-github-pages-environment-by-the-pages-build.pages.dev/static/js/main.f499cf14.js
IP
172.66.46.242:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ployed-to-the-github-pages-environment-by-the-pages-build.pages.dev/?gdhhn%20fgFGB%20NBVCFDsdtfyghmplace=s.pousson@iau-aiu.net&henjemekvhnfhjklfbkjhgfdEWRTYUIJKLN%20hgfdexsDRYUHJKN%20uytr456yuiJKNBGtr%20fbGFDERghjGYUHIJKNLGFtrf/
Certificate
IssuerGoogle Trust Services LLC
Subject
Fingerprint0B:23:FD:6B:1C:D9:A4:5A:E4:08:B8:C3:7F:76:A5:20:74:DC:C7:75
ValidityMon, 22 Apr 2024 13:59:29 GMT - Sun, 21 Jul 2024 13:59:28 GMT

File type
JavaScript source, ASCII text, with very long lines (65465)
Size
54 kB (53950 bytes)
Hash
7f82b4d5f8efacc1f97cbfee4e4abfb8
2bb0214e9cc8e7f68a94d31f11a06906f58e5d1a
cc36c15b7e92ffc8cd1b0e45aa0dd87d171577bdd32451027311fa466dad73ad

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/main.f499cf14.js HTTP/1.1
Host: ployed-to-the-github-pages-environment-by-the-pages-build.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ployed-to-the-github-pages-environment-by-the-pages-build.pages.dev/?gdhhn%20fgFGB%20NBVCFDsdtfyghmplace=s.pousson@iau-aiu.net&henjemekvhnfhjklfbkjhgfdEWRTYUIJKLN%20hgfdexsDRYUHJKN%20uytr456yuiJKNBGtr%20fbGFDERghjGYUHIJKNLGFtrf/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 23 Apr 2024 22:50:19 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"49c00c93d93600a29d7f1d2e4c4d08c1"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=r%2B0XQRexEEYyMi800Qn6bsBW5W3LVimjvB87fIvzdCcmZDwxctXdLBm7G2eepVHbA7S7nR2WdCrNx0S2BohnFF5xao9hYiiLUrGqD1ja4sGxS%2BX3vWrWgfa0KeP8Ksw4ggGe8FxsVqWakRI6C6JFe0VqyAdRSebqQ3PxX%2Bf4I0TdEKkFrmM2a1jGpEpGVmNBLkonDrm4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87916970881a569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

ployed-to-the-github-pages-environment-by-the-pages-build.pages.dev/static/css/main.c7608fba.css

172.66.46.242

200 OK

5.2 kB

URL GET HTTP/3
ployed-to-the-github-pages-environment-by-the-pages-build.pages.dev/static/css/main.c7608fba.css
IP
172.66.46.242:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ployed-to-the-github-pages-environment-by-the-pages-build.pages.dev/?gdhhn%20fgFGB%20NBVCFDsdtfyghmplace=s.pousson@iau-aiu.net&henjemekvhnfhjklfbkjhgfdEWRTYUIJKLN%20hgfdexsDRYUHJKN%20uytr456yuiJKNBGtr%20fbGFDERghjGYUHIJKNLGFtrf/
Certificate
IssuerGoogle Trust Services LLC
Subject
Fingerprint0B:23:FD:6B:1C:D9:A4:5A:E4:08:B8:C3:7F:76:A5:20:74:DC:C7:75
ValidityMon, 22 Apr 2024 13:59:29 GMT - Sun, 21 Jul 2024 13:59:28 GMT

File type
ASCII text
Size
5.2 kB (5243 bytes)
Hash
27a721f27a99ebcc409e49a86c189ea8
d05546bcc3357eba8f59ed7f112f0825ef4cf98f
dbcce1f388695b2fbc8efc9b475b1ac2e194349421a7bb5bb909b8327f17f1d3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/css/main.c7608fba.css HTTP/1.1
Host: ployed-to-the-github-pages-environment-by-the-pages-build.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ployed-to-the-github-pages-environment-by-the-pages-build.pages.dev/?gdhhn%20fgFGB%20NBVCFDsdtfyghmplace=s.pousson@iau-aiu.net&henjemekvhnfhjklfbkjhgfdEWRTYUIJKLN%20hgfdexsDRYUHJKN%20uytr456yuiJKNBGtr%20fbGFDERghjGYUHIJKNLGFtrf/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 23 Apr 2024 22:50:19 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"90377ce04b9fd21208948348ddd1b55a"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JyaaJ6zxYLEvfUnasYY4jpc%2B66oKVDxlhXcME1%2B1BruzX%2Fy2o0SdIefrrEP%2FU6gqibwBYb5MCZffLHTMcRcXHj6OicN8LfjteKFRE7CsQAFaZUOpsgF6z8RcXj6dLKoD4qIXrutO8UmsZWzaiavJzjrkCVuzxfQbGmJHWoMyhypcuU4L5EI4lrdKz6FKIZ2sgWIufHnk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87916970881b569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

ployed-to-the-github-pages-environment-by-the-pages-build.pages.dev/?gdhhn%20fgFGB%20NBVCFDsdtfyghmplace=s.pousson@iau-aiu.net&henjemekvhnfhjklfbkjhgfdEWRTYUIJKLN%20hgfdexsDRYUHJKN%20uytr456yuiJKNBGtr%20fbGFDERghjGYUHIJKNLGFtrf/

172.66.46.242

200 OK

14 kB

URL User Request GET HTTP/2
ployed-to-the-github-pages-environment-by-the-pages-build.pages.dev/?gdhhn%20fgFGB%20NBVCFDsdtfyghmplace=s.pousson@iau-aiu.net&henjemekvhnfhjklfbkjhgfdEWRTYUIJKLN%20hgfdexsDRYUHJKN%20uytr456yuiJKNBGtr%20fbGFDERghjGYUHIJKNLGFtrf/
IP
172.66.46.242:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subject
Fingerprint0B:23:FD:6B:1C:D9:A4:5A:E4:08:B8:C3:7F:76:A5:20:74:DC:C7:75
ValidityMon, 22 Apr 2024 13:59:29 GMT - Sun, 21 Jul 2024 13:59:28 GMT

File type
HTML document, ASCII text, with very long lines (14280), with no line terminators
Size
14 kB (14280 bytes)
Hash
ac33f4855daa7414af4794cd25cb2545
d0130b3053095a5685865fcda2fb1f43f44862c8
55c3d8363b9d3fb3d84062053eae7e8156e4f3fde46d3359f5cce9ef5116059e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /?gdhhn%20fgFGB%20NBVCFDsdtfyghmplace=s.pousson@iau-aiu.net&henjemekvhnfhjklfbkjhgfdEWRTYUIJKLN%20hgfdexsDRYUHJKN%20uytr456yuiJKNBGtr%20fbGFDERghjGYUHIJKNLGFtrf/ HTTP/1.1
Host: ployed-to-the-github-pages-environment-by-the-pages-build.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 23 Apr 2024 22:50:19 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"72880145b172fb1a65fd19d8c508ebc7"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=X0N0jVKVYZ%2FTdAaWtjyuH7ZIqbj5AP7D80Zc4QoOgIXEOcAeaBeRClAdKBa2kIB7M6TAuzgH2A59NMa4gTTevAFcq2QE7SChFZ9vdyxiIADL8S6veYX%2FdsRqrsj4XyZEjv%2FM6%2FTzuwLRtQAa3wpiq3sjirAR5%2Fyqrok2ijB3R6VZsSGIoUXAdfhgN%2BXzR%2FTOymn8POID"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8791696e3bba5694-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ployed-to-the-github-pages-environment-by-the-pages-build.pages.dev/static/js/948.b6536313.chunk.js

172.66.46.242

200 OK

13 kB

URL GET HTTP/3
ployed-to-the-github-pages-environment-by-the-pages-build.pages.dev/static/js/948.b6536313.chunk.js
IP
172.66.46.242:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ployed-to-the-github-pages-environment-by-the-pages-build.pages.dev/?gdhhn%20fgFGB%20NBVCFDsdtfyghmplace=s.pousson@iau-aiu.net&henjemekvhnfhjklfbkjhgfdEWRTYUIJKLN%20hgfdexsDRYUHJKN%20uytr456yuiJKNBGtr%20fbGFDERghjGYUHIJKNLGFtrf/
Certificate
IssuerGoogle Trust Services LLC
Subject
Fingerprint0B:23:FD:6B:1C:D9:A4:5A:E4:08:B8:C3:7F:76:A5:20:74:DC:C7:75
ValidityMon, 22 Apr 2024 13:59:29 GMT - Sun, 21 Jul 2024 13:59:28 GMT

File type
JavaScript source, ASCII text, with very long lines (12672)
Size
13 kB (12719 bytes)
Hash
b44845a7057c3469afc51915764b0889
7b15264a61cfa239ba082a8170fd4ccb51654877
d559bd4eea0ed81df051e75af5ec883d3f6e65aef3629dff6412bc162ca8c48d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/948.b6536313.chunk.js HTTP/1.1
Host: ployed-to-the-github-pages-environment-by-the-pages-build.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ployed-to-the-github-pages-environment-by-the-pages-build.pages.dev/?gdhhn%20fgFGB%20NBVCFDsdtfyghmplace=s.pousson@iau-aiu.net&henjemekvhnfhjklfbkjhgfdEWRTYUIJKLN%20hgfdexsDRYUHJKN%20uytr456yuiJKNBGtr%20fbGFDERghjGYUHIJKNLGFtrf/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 23 Apr 2024 22:50:19 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"c248676c9e91cba176dd8f83fb5218fc"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RgE0M%2FfdAU0J%2FdASQAoVRQ7CzSV9qdXF9lVOAHAg3tT9oygSUUs6ZfUN%2BfXY4yUQ5ImcDdPuLDtpzFogTDqJoVZeVfRTIOtIHB67L%2F36u6iEK%2B81krCWQUHEbwEZU%2FIhCbobQbJfymldZsE4nAqloaBd8D4bNhhBeK4hLphHEL39Rh0SdgRePSFys%2FTniVtZTaSd5bC5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8791697188e7569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

ployed-to-the-github-pages-environment-by-the-pages-build.pages.dev/static/js/339.1bcbaa67.chunk.js

172.66.46.242

200 OK

92 kB

URL GET HTTP/3
ployed-to-the-github-pages-environment-by-the-pages-build.pages.dev/static/js/339.1bcbaa67.chunk.js
IP
172.66.46.242:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ployed-to-the-github-pages-environment-by-the-pages-build.pages.dev/?gdhhn%20fgFGB%20NBVCFDsdtfyghmplace=s.pousson@iau-aiu.net&henjemekvhnfhjklfbkjhgfdEWRTYUIJKLN%20hgfdexsDRYUHJKN%20uytr456yuiJKNBGtr%20fbGFDERghjGYUHIJKNLGFtrf/
Certificate
IssuerGoogle Trust Services LLC
Subject
Fingerprint0B:23:FD:6B:1C:D9:A4:5A:E4:08:B8:C3:7F:76:A5:20:74:DC:C7:75
ValidityMon, 22 Apr 2024 13:59:29 GMT - Sun, 21 Jul 2024 13:59:28 GMT

File type
JavaScript source, ASCII text, with very long lines (65460)
Size
92 kB (91863 bytes)
Hash
1e91dd67f7d8d9573e4bd0248ce144dc
0749ee549c187589bfa61692ae1151f3d074fb7a
61c88bcf4ec233bd81e83352611361e550f86d2530fda73509843163623ee58f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/339.1bcbaa67.chunk.js HTTP/1.1
Host: ployed-to-the-github-pages-environment-by-the-pages-build.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ployed-to-the-github-pages-environment-by-the-pages-build.pages.dev/?gdhhn%20fgFGB%20NBVCFDsdtfyghmplace=s.pousson@iau-aiu.net&henjemekvhnfhjklfbkjhgfdEWRTYUIJKLN%20hgfdexsDRYUHJKN%20uytr456yuiJKNBGtr%20fbGFDERghjGYUHIJKNLGFtrf/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 23 Apr 2024 22:50:19 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"6a5cfa5bb1dff4b0d5b154ff94a6cd5e"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SFs%2FMbQtvXS9GQyn5eut30%2FhvGDH59%2BBZOrxff%2Bl8Nm1GqmJnViZEQFHu0zvTV%2FkD9DvziADgFoaCew4wRwHrcE10nCqf4q8LrvqWsQNEgeAUIZGkqx%2BLTzBRaoJh29tksL%2FEZIcpkLF6xVLMaM7zm88Pv8kWAtYMrilGnIQhIq26Bup7rbKu228rconSCWmYBuMNf%2Fh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8791697188e0569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

ployed-to-the-github-pages-environment-by-the-pages-build.pages.dev/static/css/948.0bf9239e.chunk.css

172.66.46.242

200 OK

2.3 kB

URL GET HTTP/3
ployed-to-the-github-pages-environment-by-the-pages-build.pages.dev/static/css/948.0bf9239e.chunk.css
IP
172.66.46.242:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ployed-to-the-github-pages-environment-by-the-pages-build.pages.dev/?gdhhn%20fgFGB%20NBVCFDsdtfyghmplace=s.pousson@iau-aiu.net&henjemekvhnfhjklfbkjhgfdEWRTYUIJKLN%20hgfdexsDRYUHJKN%20uytr456yuiJKNBGtr%20fbGFDERghjGYUHIJKNLGFtrf/
Certificate
IssuerGoogle Trust Services LLC
Subject
Fingerprint0B:23:FD:6B:1C:D9:A4:5A:E4:08:B8:C3:7F:76:A5:20:74:DC:C7:75
ValidityMon, 22 Apr 2024 13:59:29 GMT - Sun, 21 Jul 2024 13:59:28 GMT

File type
ASCII text, with very long lines (2333), with no line terminators
Size
2.3 kB (2332 bytes)
Hash
4e92e2fb59eadd07a0eb9876f814237c
7ec5a6e8ac677d49ee124d0194af669b9a92ced1
0cdd358b34e3e1baa5cf7cc52a6def08cc795358d895bdef01e13f904997b8f7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/css/948.0bf9239e.chunk.css HTTP/1.1
Host: ployed-to-the-github-pages-environment-by-the-pages-build.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ployed-to-the-github-pages-environment-by-the-pages-build.pages.dev/?gdhhn%20fgFGB%20NBVCFDsdtfyghmplace=s.pousson@iau-aiu.net&henjemekvhnfhjklfbkjhgfdEWRTYUIJKLN%20hgfdexsDRYUHJKN%20uytr456yuiJKNBGtr%20fbGFDERghjGYUHIJKNLGFtrf/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 23 Apr 2024 22:50:19 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"6a001cdae09d5f021715cd6a11f9fed5"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yn8OSzIJ6tXG7BDbpXWVb2wqER8XK3Zi5TsS0Q3mTfF2w0ScdMgp5B0F1bQLc%2FMacDru0q5Kdq1pEhV9IRwNAFcCbPkkFWBNmK%2BcpmyIlMlw8qxEm4zjDXBAWWRL%2FOHc4qH1qptGNjIN95hJkW9DvIqQv%2FYOizDw8crBlqpzc7nkqM3ygaRcJO674IZJIg4VO%2FvYkgEm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8791697188e4569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (3)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (7)

URL GET HTTP/3

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/3

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/3

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL User Request GET HTTP/2

IP